gen-token.py

#!/usr/bin/env python

# usage:
# generate-dcos-token.py -m <master_token> -u [email protected] -e 365
# and you get the master_token from /var/lib/dcos/dcos-oauth/auth-token-secret

import jwt
import time
from datetime import datetime
from datetime import timedelta
import argparse

parser = argparse.ArgumentParser()

parser.add_argument(
        "-u",
        "--user",
        dest="user_email",
        required=True,
        help="user email address",
        metavar="USER"
        )

parser.add_argument(
        "-m",
        "--master-secret",
        dest="master_secret",
        required=True,
        help="master secret",
        metavar="MASTER-SECRET"
        )

parser.add_argument(
        "-e",
        "--expiration",
        dest="expiration",
        default=365,
        type=int,
        help="expiration time in days (default:365)",
        metavar="EXPIRATION"
        )

options = parser.parse_args()

exp_time = time.time() + (3600 * 24 * options.expiration)
token = jwt.encode({'exp': exp_time, 'uid': options.user_email}, options.master_secret, algorithm='HS256')
print (token.decode(encoding='UTF-8'))