get-authkey: require tags to be specified

Tailnet-owned auth keys (which all OAuth-created keys are) must include tags, since there is no user to own the registered devices. Signed-off-by: Will Norris <will@tailscale.com>
3 years ago · 6ef834a6b7
parent 89bd414be6
commit 6ef834a6b7
1 changed files with 4 additions and 0 deletions
--- a/cmd/get-authkey/main.go
+++ b/cmd/get-authkey/main.go
@ -35,6 +35,10 @@ func main() {
 		log.Fatal("TS_API_CLIENT_ID and TS_API_CLIENT_SECRET must be set")
 	}

+	if *tags == "" {
+		log.Fatal("at least one tag must be specified")
+	}
+
 	baseUrl := os.Getenv("TS_BASE_URL")
 	if baseUrl == "" {
 		baseUrl = "https://api.tailscale.com"