npm - @alwaysmeticulous/cli - Versions diffs - 2.283.2 → 2.284.0 - Mend

@alwaysmeticulous/cli 2.283.2 → 2.284.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (54) hide show

package/dist/utils/cli-user-error.js ADDED Viewed

@@ -0,0 +1,27 @@
+"use strict";
+!function(){try{var e="undefined"!=typeof window?window:"undefined"!=typeof global?global:"undefined"!=typeof globalThis?globalThis:"undefined"!=typeof self?self:{},n=(new e.Error).stack;n&&(e._sentryDebugIds=e._sentryDebugIds||{},e._sentryDebugIds[n]="d52b108e-b149-5324-8993-33af0279182e")}catch(e){}}();
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.CliUserError = void 0;
+/**
+ * Thrown by command helpers (e.g. `resolveProjectIdentifier`,
+ * `handleAuthFailure`) when the command cannot proceed for a reason that
+ * is the user's responsibility — not a bug. `wrapHandler` prints the
+ * message and exits with the supplied code, without the generic
+ * `--help` tip or a stack trace.
+ *
+ * Use this instead of `process.exit(1)` inside utilities so that exit
+ * happens in one place (the top-level handler) and tests can assert on
+ * thrown behavior rather than process-level side effects.
+ */
+class CliUserError extends Error {
+    exitCode;
+    constructor(message, exitCode = 1) {
+        super(message);
+        this.name = "CliUserError";
+        this.exitCode = exitCode;
+    }
+}
+exports.CliUserError = CliUserError;
+//# sourceMappingURL=cli-user-error.js.map
+//# debugId=d52b108e-b149-5324-8993-33af0279182e

package/dist/utils/cli-user-error.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"cli-user-error.js","sources":["../../src/utils/cli-user-error.ts"],"sourceRoot":"","names":[],"mappings":";;;;;AAAA;;;;;;;;;;GAUG;AACH,MAAa,YAAa,SAAQ,KAAK;IAC5B,QAAQ,CAAS;IAE1B,YAAY,OAAe,EAAE,QAAQ,GAAG,CAAC;QACvC,KAAK,CAAC,OAAO,CAAC,CAAC;QACf,IAAI,CAAC,IAAI,GAAG,cAAc,CAAC;QAC3B,IAAI,CAAC,QAAQ,GAAG,QAAQ,CAAC;IAC3B,CAAC;CACF;AARD,oCAQC","debugId":"d52b108e-b149-5324-8993-33af0279182e"}

package/dist/utils/handle-auth-failure.d.ts ADDED Viewed

@@ -0,0 +1,17 @@
+/**
+ * Handles a 401/403 response from an OAuth-authenticated request.
+ *
+ * - When the stored access token is genuinely past its `exp`, clears
+ *   stored tokens so the next command kicks off a fresh OAuth login.
+ * - Otherwise (e.g. issuer/audience mismatch against the configured
+ *   backend), keeps the tokens and surfaces the backend's actual
+ *   rejection message plus a pointer to `meticulous auth logout`.
+ *
+ * Throws `CliUserError` when the error is an auth failure, so the
+ * command exits non-zero via `wrapHandler`. Returns `false` (no throw)
+ * when the error is not an auth failure — the caller should rethrow.
+ *
+ * Typical use at a call site:
+ *   try { ... } catch (error) { handleAuthFailure(error); throw error; }
+ */
+export declare const handleAuthFailure: (error: unknown) => false;

package/dist/utils/handle-auth-failure.js ADDED Viewed

@@ -0,0 +1,61 @@
+"use strict";
+!function(){try{var e="undefined"!=typeof window?window:"undefined"!=typeof global?global:"undefined"!=typeof globalThis?globalThis:"undefined"!=typeof self?self:{},n=(new e.Error).stack;n&&(e._sentryDebugIds=e._sentryDebugIds||{},e._sentryDebugIds[n]="a9ff3b13-559c-5b71-b2ff-d7b1ed03e03b")}catch(e){}}();
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.handleAuthFailure = void 0;
+const client_1 = require("@alwaysmeticulous/client");
+const cli_user_error_1 = require("./cli-user-error");
+/**
+ * Handles a 401/403 response from an OAuth-authenticated request.
+ *
+ * - When the stored access token is genuinely past its `exp`, clears
+ *   stored tokens so the next command kicks off a fresh OAuth login.
+ * - Otherwise (e.g. issuer/audience mismatch against the configured
+ *   backend), keeps the tokens and surfaces the backend's actual
+ *   rejection message plus a pointer to `meticulous auth logout`.
+ *
+ * Throws `CliUserError` when the error is an auth failure, so the
+ * command exits non-zero via `wrapHandler`. Returns `false` (no throw)
+ * when the error is not an auth failure — the caller should rethrow.
+ *
+ * Typical use at a call site:
+ *   try { ... } catch (error) { handleAuthFailure(error); throw error; }
+ */
+const handleAuthFailure = (error) => {
+    if (!(0, client_1.isFetchError)(error)) {
+        return false;
+    }
+    const status = error.response?.status;
+    if (status !== 401 && status !== 403) {
+        return false;
+    }
+    const stored = (0, client_1.getStoredOAuthTokens)();
+    const expired = stored ? (0, client_1.isJwtExpired)(stored.accessToken) : false;
+    if (expired) {
+        (0, client_1.clearOAuthTokens)();
+        throw new cli_user_error_1.CliUserError("Your stored OAuth token has expired and could not be refreshed. " +
+            "Re-run the command to start a fresh login.");
+    }
+    const serverMessage = extractServerMessage(error.response?.data);
+    const detail = serverMessage ? `: ${serverMessage}` : ".";
+    throw new cli_user_error_1.CliUserError(`Authentication failed (HTTP ${status})${detail}\n` +
+        "If the token is stale, run `meticulous auth logout` and re-run the command.");
+};
+exports.handleAuthFailure = handleAuthFailure;
+const extractServerMessage = (data) => {
+    if (!data) {
+        return null;
+    }
+    if (typeof data === "string") {
+        return data;
+    }
+    if (typeof data === "object") {
+        const message = data.message;
+        if (typeof message === "string") {
+            return message;
+        }
+    }
+    return null;
+};
+//# sourceMappingURL=handle-auth-failure.js.map
+//# debugId=a9ff3b13-559c-5b71-b2ff-d7b1ed03e03b

package/dist/utils/handle-auth-failure.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"handle-auth-failure.js","sources":["../../src/utils/handle-auth-failure.ts"],"sourceRoot":"","names":[],"mappings":";;;;;AAAA,qDAKkC;AAClC,qDAAgD;AAEhD;;;;;;;;;;;;;;;GAeG;AACI,MAAM,iBAAiB,GAAG,CAAC,KAAc,EAAS,EAAE;IACzD,IAAI,CAAC,IAAA,qBAAY,EAAC,KAAK,CAAC,EAAE,CAAC;QACzB,OAAO,KAAK,CAAC;IACf,CAAC;IACD,MAAM,MAAM,GAAG,KAAK,CAAC,QAAQ,EAAE,MAAM,CAAC;IACtC,IAAI,MAAM,KAAK,GAAG,IAAI,MAAM,KAAK,GAAG,EAAE,CAAC;QACrC,OAAO,KAAK,CAAC;IACf,CAAC;IAED,MAAM,MAAM,GAAG,IAAA,6BAAoB,GAAE,CAAC;IACtC,MAAM,OAAO,GAAG,MAAM,CAAC,CAAC,CAAC,IAAA,qBAAY,EAAC,MAAM,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC;IAElE,IAAI,OAAO,EAAE,CAAC;QACZ,IAAA,yBAAgB,GAAE,CAAC;QACnB,MAAM,IAAI,6BAAY,CACpB,kEAAkE;YAChE,4CAA4C,CAC/C,CAAC;IACJ,CAAC;IAED,MAAM,aAAa,GAAG,oBAAoB,CAAC,KAAK,CAAC,QAAQ,EAAE,IAAI,CAAC,CAAC;IACjE,MAAM,MAAM,GAAG,aAAa,CAAC,CAAC,CAAC,KAAK,aAAa,EAAE,CAAC,CAAC,CAAC,GAAG,CAAC;IAC1D,MAAM,IAAI,6BAAY,CACpB,+BAA+B,MAAM,IAAI,MAAM,IAAI;QACjD,6EAA6E,CAChF,CAAC;AACJ,CAAC,CAAC;AA1BW,QAAA,iBAAiB,qBA0B5B;AAEF,MAAM,oBAAoB,GAAG,CAAC,IAAa,EAAiB,EAAE;IAC5D,IAAI,CAAC,IAAI,EAAE,CAAC;QACV,OAAO,IAAI,CAAC;IACd,CAAC;IACD,IAAI,OAAO,IAAI,KAAK,QAAQ,EAAE,CAAC;QAC7B,OAAO,IAAI,CAAC;IACd,CAAC;IACD,IAAI,OAAO,IAAI,KAAK,QAAQ,EAAE,CAAC;QAC7B,MAAM,OAAO,GAAI,IAA8B,CAAC,OAAO,CAAC;QACxD,IAAI,OAAO,OAAO,KAAK,QAAQ,EAAE,CAAC;YAChC,OAAO,OAAO,CAAC;QACjB,CAAC;IACH,CAAC;IACD,OAAO,IAAI,CAAC;AACd,CAAC,CAAC","debugId":"a9ff3b13-559c-5b71-b2ff-d7b1ed03e03b"}

package/dist/utils/resolve-project-identifier.d.ts ADDED Viewed

@@ -0,0 +1,23 @@
+/**
+ * Resolves the project identifier for project-scoped CLI commands given the
+ * resolved API token.
+ *
+ * - OAuth tokens are user-scoped (not project-scoped), so they require a
+ *   stored project id (set via `meticulous auth set-project`).
+ * - Project-scoped API tokens already pin the project, so no extra
+ *   identifier is needed.
+ *
+ * Throws `CliUserError` when an OAuth caller has no project selected. The
+ * top-level `wrapHandler` catches it and exits non-zero with the message.
+ */
+export declare const resolveProjectIdentifier: (apiToken: string) => {
+    projectId?: string;
+};
+/**
+ * Best-effort lookup of the stored projectId for OAuth callers. Returns
+ * `undefined` for project-scoped API tokens (the token already pins the
+ * project) and for OAuth tokens with no stored project. Use this for calls
+ * where the project context is useful but not strictly required — e.g. agent
+ * telemetry — and a missing project should not abort the command.
+ */
+export declare const getProjectIdForOAuthCaller: (apiToken: string) => string | undefined;

package/dist/utils/resolve-project-identifier.js ADDED Viewed

@@ -0,0 +1,47 @@
+"use strict";
+!function(){try{var e="undefined"!=typeof window?window:"undefined"!=typeof global?global:"undefined"!=typeof globalThis?globalThis:"undefined"!=typeof self?self:{},n=(new e.Error).stack;n&&(e._sentryDebugIds=e._sentryDebugIds||{},e._sentryDebugIds[n]="f092b81e-09f7-584b-b411-20150da1cf58")}catch(e){}}();
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.getProjectIdForOAuthCaller = exports.resolveProjectIdentifier = void 0;
+const client_1 = require("@alwaysmeticulous/client");
+const cli_user_error_1 = require("./cli-user-error");
+/**
+ * Resolves the project identifier for project-scoped CLI commands given the
+ * resolved API token.
+ *
+ * - OAuth tokens are user-scoped (not project-scoped), so they require a
+ *   stored project id (set via `meticulous auth set-project`).
+ * - Project-scoped API tokens already pin the project, so no extra
+ *   identifier is needed.
+ *
+ * Throws `CliUserError` when an OAuth caller has no project selected. The
+ * top-level `wrapHandler` catches it and exits non-zero with the message.
+ */
+const resolveProjectIdentifier = (apiToken) => {
+    if (!(0, client_1.isOAuthJwt)(apiToken)) {
+        return {};
+    }
+    const projectId = (0, client_1.getStoredProjectId)();
+    if (!projectId) {
+        throw new cli_user_error_1.CliUserError("No project selected. Run `meticulous auth set-project` to choose " +
+            "one before running OAuth-authenticated commands.");
+    }
+    return { projectId };
+};
+exports.resolveProjectIdentifier = resolveProjectIdentifier;
+/**
+ * Best-effort lookup of the stored projectId for OAuth callers. Returns
+ * `undefined` for project-scoped API tokens (the token already pins the
+ * project) and for OAuth tokens with no stored project. Use this for calls
+ * where the project context is useful but not strictly required — e.g. agent
+ * telemetry — and a missing project should not abort the command.
+ */
+const getProjectIdForOAuthCaller = (apiToken) => {
+    if (!(0, client_1.isOAuthJwt)(apiToken)) {
+        return undefined;
+    }
+    return (0, client_1.getStoredProjectId)() ?? undefined;
+};
+exports.getProjectIdForOAuthCaller = getProjectIdForOAuthCaller;
+//# sourceMappingURL=resolve-project-identifier.js.map
+//# debugId=f092b81e-09f7-584b-b411-20150da1cf58

package/dist/utils/resolve-project-identifier.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"resolve-project-identifier.js","sources":["../../src/utils/resolve-project-identifier.ts"],"sourceRoot":"","names":[],"mappings":";;;;;AAAA,qDAA0E;AAC1E,qDAAgD;AAEhD;;;;;;;;;;;GAWG;AACI,MAAM,wBAAwB,GAAG,CACtC,QAAgB,EACQ,EAAE;IAC1B,IAAI,CAAC,IAAA,mBAAU,EAAC,QAAQ,CAAC,EAAE,CAAC;QAC1B,OAAO,EAAE,CAAC;IACZ,CAAC;IAED,MAAM,SAAS,GAAG,IAAA,2BAAkB,GAAE,CAAC;IACvC,IAAI,CAAC,SAAS,EAAE,CAAC;QACf,MAAM,IAAI,6BAAY,CACpB,mEAAmE;YACjE,kDAAkD,CACrD,CAAC;IACJ,CAAC;IACD,OAAO,EAAE,SAAS,EAAE,CAAC;AACvB,CAAC,CAAC;AAfW,QAAA,wBAAwB,4BAenC;AAEF;;;;;;GAMG;AACI,MAAM,0BAA0B,GAAG,CACxC,QAAgB,EACI,EAAE;IACtB,IAAI,CAAC,IAAA,mBAAU,EAAC,QAAQ,CAAC,EAAE,CAAC;QAC1B,OAAO,SAAS,CAAC;IACnB,CAAC;IACD,OAAO,IAAA,2BAAkB,GAAE,IAAI,SAAS,CAAC;AAC3C,CAAC,CAAC;AAPW,QAAA,0BAA0B,8BAOrC","debugId":"f092b81e-09f7-584b-b411-20150da1cf58"}

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@alwaysmeticulous/cli",
-  "version": "2.283.2",
+  "version": "2.284.0",
   "description": "The Meticulous CLI",
   "license": "ISC",
   "main": "dist/index.js",
@@ -24,17 +24,17 @@
     "tar": "^7.5.8",
     "yargs": "^17.5.1",
     "@alwaysmeticulous/api": "2.283.1",
+    "@alwaysmeticulous/client": "2.284.0",
     "@alwaysmeticulous/common": "2.283.1",
-    "@alwaysmeticulous/debug-workspace": "2.283.1",
-    "@alwaysmeticulous/client": "2.283.1",
-    "@alwaysmeticulous/downloading-helpers": "2.283.1",
-    "@alwaysmeticulous/remote-replay-launcher": "2.283.1",
+    "@alwaysmeticulous/debug-workspace": "2.284.0",
+    "@alwaysmeticulous/downloading-helpers": "2.284.0",
+    "@alwaysmeticulous/record": "2.283.1",
+    "@alwaysmeticulous/remote-replay-launcher": "2.284.0",
     "@alwaysmeticulous/replay-debugger-ui": "2.283.1",
+    "@alwaysmeticulous/replay-orchestrator-launcher": "2.284.0",
     "@alwaysmeticulous/sdk-bundles-api": "2.283.1",
-    "@alwaysmeticulous/record": "2.283.1",
-    "@alwaysmeticulous/tunnels-client": "2.283.1",
-    "@alwaysmeticulous/replay-orchestrator-launcher": "2.283.1",
-    "@alwaysmeticulous/sentry": "2.283.2"
+    "@alwaysmeticulous/sentry": "2.283.2",
+    "@alwaysmeticulous/tunnels-client": "2.283.1"
   },
   "devDependencies": {
     "@types/cli-progress": "^3.11.5",