Add cookie support

Signed-off-by: Johannes Larsson <[email protected]>

Author: johanneslarsson

README.md

@@ -90,6 +90,23 @@ Follow the [installation guide](https://github.com/ankitpokhrel/jira-cli/wiki/In
 2. Run `jira init`, select installation type as `Cloud`, and provide required details to generate a config file required
    for the tool.
 
+#### Cloud server without personal access token
+Some tenants has disabled the ability to create personal Jira API tokens. The alternative then is to use the browser session cookie/token `tenant.session.token`. These will last for a day before they expire.
+
+1. Configure your cli by creating the `~/.config/.jira/.config.yml`
+```
+installation: cloud
+server: https://<COMPANY>.atlassian.net
+auth_type: cookie
+```
+
+2. Login to Jira with your browser. View the developer extension and find the cookie value of `tenant.session.token`. Then set `JIRA_SESSION_TOKEN` as that value.
+
+```
+export JIRA_SESSION_TOKEN=ey..
+```
+
+
 #### On-premise installation
 
 1. Export required environment variables:
@@ -672,7 +689,7 @@ $ jira sprint add SPRINT_ID ISSUE-1 ISSUE-2
 
 ### Releases
 
-Interact with releases (project versions).  
+Interact with releases (project versions).
 Ensure the [feature is enabled](https://support.atlassian.com/jira-software-cloud/docs/enable-releases-and-versions/) on your instance.
 
 #### List

internal/cmd/root/root.go

@@ -160,6 +160,10 @@ func checkForJiraToken(server string, login string) {
 		return
 	}
 
+	if os.Getenv("JIRA_SESSION_TOKEN") != "" {
+		return
+	}
+
 	netrcConfig, _ := netrc.Read(server, login)
 	if netrcConfig != nil {
 		return
@@ -170,13 +174,13 @@ func checkForJiraToken(server string, login string) {
 		return
 	}
 
-	msg := fmt.Sprintf(`The tool needs a Jira API token to function.
+	msg := fmt.Sprintf(`The tool needs a Jira API or Session token to function.
 
 For cloud server: you can generate the token using this link: %s
 For local server: you can use the password you use to log in to Jira for basic auth or get a token from your Jira profile for PAT.
 
 After generating the token, you can either:
-  - Export API token to your shell as a JIRA_API_TOKEN env variable
+  - Export API token to your shell as a JIRA_API_TOKEN or JIRA_SESSION_TOKEN env variable
   - Or, you can use a .netrc file to define required machine details
 
 Once you are done with the above steps, run 'jira init' to generate the config if you haven't already.

pkg/jira/client.go

@@ -281,6 +281,9 @@ func (c *Client) request(ctx context.Context, method, endpoint string, body []by
 		}
 	case string(AuthTypeBearer):
 		req.Header.Add("Authorization", "Bearer "+c.token)
+	case string(AuthTypeCookie):
+		jiraSessionToken, _ := os.LookupEnv("JIRA_SESSION_TOKEN")
+		req.Header.Add("Cookie", "tenant.session.token="+jiraSessionToken)
 	case string(AuthTypeBasic):
 		req.SetBasicAuth(c.login, c.token)
 	}

pkg/jira/types.go

@@ -7,6 +7,8 @@ import (
 const (
 	// AuthTypeBasic is a basic auth.
 	AuthTypeBasic AuthType = "basic"
+	// AuthTypeBasic is a cookie auth.
+	AuthTypeCookie AuthType = "cookie"
 	// AuthTypeBearer is a bearer auth.
 	AuthTypeBearer AuthType = "bearer"
 	// AuthTypeMTLS is a mTLS auth.