ioctl connects endpoint with TLS by default and add insecure flag (iotexproject#1051)

Author: Frankonly

cli/ioctl/cmd/account/account.go

@@ -54,6 +54,8 @@ func init() {
 	AccountCmd.AddCommand(accountUpdateCmd)
 	AccountCmd.PersistentFlags().StringVar(&config.ReadConfig.Endpoint, "endpoint",
 		config.ReadConfig.Endpoint, "set endpoint for once")
+	AccountCmd.PersistentFlags().BoolVar(&config.IsInsecure, "insecure",
+		false, "connect endpoint with insecure option")
 }
 
 // KsAccountToPrivateKey generates our PrivateKey interface from Keystore account
@@ -80,7 +82,7 @@ func KsAccountToPrivateKey(signer, password string) (keypair.PrivateKey, error)
 
 // GetAccountMeta gets account metadata
 func GetAccountMeta(addr string) (*iotextypes.AccountMeta, error) {
-	conn, err := util.ConnectToEndpoint()
+	conn, err := util.ConnectToEndpoint(config.IsInsecure)
 	if err != nil {
 		return nil, err
 	}

cli/ioctl/cmd/action/action.go

@@ -56,6 +56,8 @@ func init() {
 		config.ReadConfig.Endpoint, "set endpoint for once")
 	setActionFlags(actionTransferCmd, actionDeployCmd, actionInvokeCmd, actionClaimCmd,
 		actionDepositCmd)
+	ActionCmd.PersistentFlags().BoolVar(&config.IsInsecure, "insecure",
+		false, "connect endpoint with insecure option")
 }
 
 func setActionFlags(cmds ...*cobra.Command) {
@@ -76,7 +78,7 @@ func setActionFlags(cmds ...*cobra.Command) {
 
 // GetGasPrice gets the suggest gas price
 func GetGasPrice() (*big.Int, error) {
-	conn, err := util.ConnectToEndpoint()
+	conn, err := util.ConnectToEndpoint(config.IsInsecure)
 	if err != nil {
 		return nil, err
 	}
@@ -126,7 +128,7 @@ func sendAction(elp action.Envelope) (string, error) {
 	fmt.Println()
 
 	request := &iotexapi.SendActionRequest{Action: selp}
-	conn, err := util.ConnectToEndpoint()
+	conn, err := util.ConnectToEndpoint(config.IsInsecure)
 	if err != nil {
 		return "", err
 	}

cli/ioctl/cmd/action/actionhash.go

@@ -20,6 +20,7 @@ import (
 
 	"github.com/iotexproject/iotex-address/address"
 	"github.com/iotexproject/iotex-core/cli/ioctl/cmd/alias"
+	"github.com/iotexproject/iotex-core/cli/ioctl/cmd/config"
 	"github.com/iotexproject/iotex-core/cli/ioctl/util"
 	"github.com/iotexproject/iotex-core/pkg/keypair"
 	"github.com/iotexproject/iotex-core/pkg/log"
@@ -45,7 +46,7 @@ var actionHashCmd = &cobra.Command{
 // getActionByHash gets action of IoTeX Blockchain by hash
 func getActionByHash(args []string) (string, error) {
 	hash := args[0]
-	conn, err := util.ConnectToEndpoint()
+	conn, err := util.ConnectToEndpoint(config.IsInsecure)
 	if err != nil {
 		return "", err
 	}

cli/ioctl/cmd/bc/bc.go

@@ -31,11 +31,13 @@ func init() {
 	BCCmd.AddCommand(bcInfoCmd)
 	BCCmd.PersistentFlags().StringVar(&config.ReadConfig.Endpoint, "endpoint",
 		config.ReadConfig.Endpoint, "set endpoint for once")
+	BCCmd.PersistentFlags().BoolVar(&config.IsInsecure, "insecure",
+		false, "connect endpoint with insecure option")
 }
 
 // GetChainMeta gets block chain metadata
 func GetChainMeta() (*iotextypes.ChainMeta, error) {
-	conn, err := util.ConnectToEndpoint()
+	conn, err := util.ConnectToEndpoint(config.IsInsecure)
 	if err != nil {
 		return nil, err
 	}

cli/ioctl/cmd/bc/bcblock.go

@@ -16,6 +16,7 @@ import (
 	"google.golang.org/grpc/status"
 
 	"github.com/iotexproject/iotex-core/cli/ioctl/cmd/action"
+	"github.com/iotexproject/iotex-core/cli/ioctl/cmd/config"
 	"github.com/iotexproject/iotex-core/cli/ioctl/util"
 	"github.com/iotexproject/iotex-core/cli/ioctl/validator"
 	"github.com/iotexproject/iotex-core/protogen/iotexapi"
@@ -83,7 +84,7 @@ func getBlock(args []string) (string, error) {
 
 // GetBlockMetaByHeight gets block metadata by height
 func GetBlockMetaByHeight(height uint64) (*iotextypes.BlockMeta, error) {
-	conn, err := util.ConnectToEndpoint()
+	conn, err := util.ConnectToEndpoint(config.IsInsecure)
 	if err != nil {
 		return nil, err
 	}
@@ -114,7 +115,7 @@ func GetBlockMetaByHeight(height uint64) (*iotextypes.BlockMeta, error) {
 
 // GetBlockMetaByHash gets block metadata by hash
 func GetBlockMetaByHash(hash string) (*iotextypes.BlockMeta, error) {
-	conn, err := util.ConnectToEndpoint()
+	conn, err := util.ConnectToEndpoint(config.IsInsecure)
 	if err != nil {
 		return nil, err
 	}

cli/ioctl/cmd/config/config.go

@@ -48,8 +48,12 @@ type Config struct {
 	Aliases  map[string]string `yaml:"aliases"`
 }
 
-// ReadConfig represents the current config read from local
-var ReadConfig Config
+var (
+	// ReadConfig represents the current config read from local
+	ReadConfig Config
+	// IsInsecure represents the connect option of grpc dial
+	IsInsecure bool
+)
 
 func init() {
 	ConfigDir = os.Getenv("HOME") + "/.config/ioctl/default"

cli/ioctl/cmd/node/node.go

@@ -23,4 +23,6 @@ func init() {
 	NodeCmd.AddCommand(nodeRewardCmd)
 	NodeCmd.PersistentFlags().StringVar(&config.ReadConfig.Endpoint, "endpoint",
 		config.ReadConfig.Endpoint, "set endpoint for once")
+	NodeCmd.PersistentFlags().BoolVar(&config.IsInsecure, "insecure",
+		false, "connect endpoint with insecure option")
 }

cli/ioctl/cmd/node/nodedelegate.go

@@ -20,6 +20,7 @@ import (
 	"github.com/iotexproject/iotex-core/action/protocol/poll"
 	"github.com/iotexproject/iotex-core/cli/ioctl/cmd/alias"
 	"github.com/iotexproject/iotex-core/cli/ioctl/cmd/bc"
+	"github.com/iotexproject/iotex-core/cli/ioctl/cmd/config"
 	"github.com/iotexproject/iotex-core/cli/ioctl/util"
 	"github.com/iotexproject/iotex-core/pkg/util/byteutil"
 	"github.com/iotexproject/iotex-core/protogen/iotexapi"
@@ -68,7 +69,7 @@ func delegates() (string, error) {
 		}
 		epochNum = chainMeta.Epoch.Num
 	}
-	conn, err := util.ConnectToEndpoint()
+	conn, err := util.ConnectToEndpoint(config.IsInsecure)
 	if err != nil {
 		return "", err
 	}
@@ -125,7 +126,7 @@ func nextDelegates() (string, error) {
 		return "", err
 	}
 	epochNum = chainMeta.Epoch.Num + 1
-	conn, err := util.ConnectToEndpoint()
+	conn, err := util.ConnectToEndpoint(config.IsInsecure)
 	if err != nil {
 		return "", err
 	}

cli/ioctl/cmd/node/nodereward.go

@@ -16,6 +16,7 @@ import (
 
 	"github.com/iotexproject/iotex-core/action/protocol/rewarding"
 	"github.com/iotexproject/iotex-core/cli/ioctl/cmd/alias"
+	"github.com/iotexproject/iotex-core/cli/ioctl/cmd/config"
 	"github.com/iotexproject/iotex-core/cli/ioctl/util"
 	"github.com/iotexproject/iotex-core/protogen/iotexapi"
 )
@@ -42,7 +43,7 @@ var nodeRewardCmd = &cobra.Command{
 }
 
 func rewardPool() (string, error) {
-	conn, err := util.ConnectToEndpoint()
+	conn, err := util.ConnectToEndpoint(config.IsInsecure)
 	if err != nil {
 		return "", err
 	}
@@ -91,7 +92,7 @@ func reward(args []string) (string, error) {
 	if err != nil {
 		return "", err
 	}
-	conn, err := util.ConnectToEndpoint()
+	conn, err := util.ConnectToEndpoint(config.IsInsecure)
 	if err != nil {
 		return "", err
 	}

cli/ioctl/cmd/version/version.go

@@ -35,6 +35,13 @@ var VersionCmd = &cobra.Command{
 	},
 }
 
+func init() {
+	VersionCmd.PersistentFlags().StringVar(&config.ReadConfig.Endpoint, "endpoint",
+		config.ReadConfig.Endpoint, "set endpoint for once")
+	VersionCmd.PersistentFlags().BoolVar(&config.IsInsecure, "insecure",
+		false, "connect endpoint with insecure option")
+}
+
 func version() (string, error) {
 	versionInfo := &iotextypes.ServerMeta{
 		PackageVersion:  ver.PackageVersion,
@@ -44,7 +51,7 @@ func version() (string, error) {
 		BuildTime:       ver.BuildTime,
 	}
 	fmt.Printf("Client:\n%+v\n\n", versionInfo)
-	conn, err := util.ConnectToEndpoint()
+	conn, err := util.ConnectToEndpoint(config.IsInsecure)
 	if err != nil {
 		return "", err
 	}

cli/ioctl/util/util.go

@@ -7,12 +7,14 @@
 package util
 
 import (
+	"crypto/tls"
 	"fmt"
 	"math/big"
 	"strings"
 
 	"github.com/ethereum/go-ethereum/common"
 	"google.golang.org/grpc"
+	"google.golang.org/grpc/credentials"
 
 	"github.com/iotexproject/iotex-address/address"
 	"github.com/iotexproject/iotex-core/cli/ioctl/cmd/config"
@@ -28,12 +30,15 @@ const (
 )
 
 // ConnectToEndpoint starts a new connection
-func ConnectToEndpoint() (*grpc.ClientConn, error) {
+func ConnectToEndpoint(isInsecure bool) (*grpc.ClientConn, error) {
 	endpoint := config.ReadConfig.Endpoint
 	if endpoint == "" {
 		return nil, fmt.Errorf(`use "ioctl config set endpoint" to config endpoint first`)
 	}
-	return grpc.Dial(endpoint, grpc.WithInsecure())
+	if isInsecure {
+		return grpc.Dial(endpoint, grpc.WithInsecure())
+	}
+	return grpc.Dial(endpoint, grpc.WithTransportCredentials(credentials.NewTLS(&tls.Config{})))
 }
 
 // StringToRau converts different unit string into Rau big int