Thomas
Thomas•6mo ago

Use Deno permissions in your own CLI

If I create a CLI with Deno, can I somehow reuse or pass on the permissions? 
> mycli --allow-read
> mycli --allow-read
1 Reply
Deno AI Helper
Deno AI Helper•6mo ago
Yes, you can design your Deno CLI to accept permission flags and pass them on to the Deno runtime when executing scripts. The documentation mentions that Deno's permission system allows you to grant access to specific entities (like files or servers) rather than to everything, and you can use command-line flags to enable these permissions. For example, if your CLI needs to read from the file system, you can pass the --allow-read flag when invoking your CLI, and then your CLI can pass this flag to the Deno runtime when it runs a Deno script. Here's a simplified example of how you might handle this in your CLI: 
# User invokes your CLI with a permission flag
> mycli --allow-read
# User invokes your CLI with a permission flag
> mycli --allow-read
In your CLI's code, you would need to parse the command-line arguments and include the appropriate permission flags when using Deno.run to execute a Deno script: 
// mycli.ts
const { args } = Deno;

// You would parse the args to find permission flags like --allow-read
// For simplicity, let's assume args includes '--allow-read'

const cmd = [
  "deno",
  "run",
  ...args, // Include the permission flags passed to your CLI
  "your_script.ts",
];

const process = Deno.run({ cmd });
await process.status();
// mycli.ts
const { args } = Deno;

// You would parse the args to find permission flags like --allow-read
// For simplicity, let's assume args includes '--allow-read'

const cmd = [
  "deno",
  "run",
  ...args, // Include the permission flags passed to your CLI
  "your_script.ts",
];

const process = Deno.run({ cmd });
await process.status();
Remember that when you pass permission flags from your CLI to Deno scripts, you are effectively allowing those scripts to perform the operations permitted by those flags. It's important to handle permissions carefully to maintain the security of your application. 🦕 Always ensure that your CLI only requests the minimum permissions necessary for its operation, following the principle of least privilege.
Helpful Links: Permissions | Deno Docs Deno 1.36: More flexible security and expanded testing APIs Build a Cross-Platform CLI with Deno in 5 minutes Deno 1.29: Custom npm registry support
More Posts
Has someone worked on a win32/x11/mac native window creation using FFI?Using only operating system native libraries? No SDL, etc.How to unset white background of SVG in Jupyter notebook?I’ve got a Jupyter notebook with Deno kernel in VSCode that displays an SVG. The SVG has a forced whHow to get the Docker ARM image for DenoI keep getting this error when trying to deploy my code: ``` WARNING: The requested image's platfoDeno compiled bin not create fileHi, I have a script that create file with Deno.writeFileSync() on current location When run script