@clawapps/cli 0.1.0

package/LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2026 ClawApps
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

package/README.md

@@ -0,0 +1,148 @@
+# @clawapps/cli
+
+[![License: MIT](https://img.shields.io/badge/License-MIT-yellow.svg)](LICENSE)
+[![Node.js](https://img.shields.io/badge/Node.js-%3E%3D18-green.svg)](https://nodejs.org/)
+
+**[中文文档](README_zh.md)**
+
+A command-line tool for authenticating with the [ClawApps](https://www.clawapps.ai) platform. Sign in via Google or Apple directly from your terminal — tokens are stored locally for use by AI agents and scripts.
+
+## Install
+
+```bash
+npm install -g @clawapps/cli
+```
+
+> **Not yet on npm?** Install from source:
+> ```bash
+> git clone git@github.com:ClawApps/clawapps-cli.git
+> cd clawapps-cli && npm install && npm run build && npm link
+> ```
+
+## Commands
+
+### `claw login`
+
+Sign in with Google or Apple. Opens a browser for OAuth, then stores tokens locally.
+
+```bash
+$ claw login
+? Choose login method: Google
+Opening browser for Google login...
+✔ Logged in as user@gmail.com
+```
+
+### `claw whoami`
+
+Show current account info. Auto-refreshes expired tokens.
+
+```bash
+$ claw whoami
+ClawApps Account
+──────────────────────────────
+Name:     Username
+Email:    user@gmail.com
+ID:       xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx
+Provider: google
+```
+
+### `claw logout`
+
+Sign out and clear local credentials.
+
+```bash
+$ claw logout
+Logged out successfully.
+```
+
+## How It Works
+
+```
+claw login
+  → Choose Google or Apple
+  → Local HTTP server starts on localhost (random port)
+  → Browser opens for OAuth
+  → Callback returns token to local server
+  → Token exchange: Google/Apple → OpenDigits → ClawApps
+  → Credentials saved to ~/.clawapps/credentials.json (0600)
+```
+
+**Google flow**: Implicit OAuth → local callback page extracts token from URL hash → POST to local server → exchange for ClawApps tokens.
+
+**Apple flow**: OpenDigits handles Apple OAuth → redirects to local callback with tokens in query params → exchange for ClawApps tokens.
+
+## Credentials
+
+Tokens are stored at `~/.clawapps/credentials.json` with file permissions `0600`.
+
+```json
+{
+  "provider": "google",
+  "access_token": "eyJ...",
+  "refresh_token": "eyJ...",
+  "logged_in_at": "2026-02-24T11:11:35.871Z"
+}
+```
+
+Use in scripts:
+
+```bash
+TOKEN=$(cat ~/.clawapps/credentials.json | jq -r .access_token)
+curl -H "Authorization: Bearer $TOKEN" https://api.clawapps.ai/api/v1/...
+```
+
+## Project Structure
+
+```
+clawapps-cli/
+├── bin/claw.js                # Entry point
+├── src/
+│   ├── index.ts               # Commander setup
+│   ├── commands/
+│   │   ├── login.ts           # OAuth flow orchestration
+│   │   ├── logout.ts          # Clear credentials
+│   │   └── whoami.ts          # User info with auto-refresh
+│   ├── auth/
+│   │   ├── server.ts          # Local HTTP callback server
+│   │   ├── google.ts          # Google OAuth URL builder
+│   │   ├── apple.ts           # Apple OAuth URL builder (via OD)
+│   │   └── exchange.ts        # Token exchange (OD → ClawApps)
+│   ├── lib/
+│   │   ├── config.ts          # API endpoints & constants
+│   │   ├── credentials.ts     # Read/write ~/.clawapps/credentials.json
+│   │   ├── api.ts             # HTTP request helpers
+│   │   └── types.ts           # TypeScript interfaces
+│   └── html/
+│       ├── callback.ts        # OAuth callback HTML templates
+│       └── logo-data.ts       # Logo (base64 embedded)
+├── package.json
+└── tsconfig.json
+```
+
+## Development
+
+```bash
+npm install          # Install dependencies
+npm run build        # Compile TypeScript
+npm run dev          # Watch mode
+node bin/claw.js     # Run locally
+```
+
+## Requirements
+
+- **Node.js >= 18** (uses native `fetch`)
+
+## Related
+
+- [clawapps-skill](https://github.com/ClawApps/clawapps-skill) — Agent Skill for managing apps on ClawApps
+
+## Contributing
+
+1. Fork the repository
+2. Create a feature branch (`git checkout -b feat/my-feature`)
+3. Commit your changes (use [Conventional Commits](https://www.conventionalcommits.org/))
+4. Push and open a Pull Request
+
+## License
+
+[MIT](LICENSE) - Copyright 2026 ClawApps

package/bin/claw.js

@@ -0,0 +1,2 @@
+#!/usr/bin/env node
+import '../dist/index.js';

package/dist/auth/apple.d.ts

@@ -0,0 +1,5 @@
+/**
+ * Build the Apple OAuth URL via OpenDigits.
+ * OD handles the Apple OAuth flow and redirects back to our localhost with tokens.
+ */
+export declare function buildAppleAuthUrl(redirectUri: string): string;

package/dist/auth/apple.js

@@ -0,0 +1,15 @@
+import { CONFIG } from '../lib/config.js';
+import { randomBytes } from 'node:crypto';
+/**
+ * Build the Apple OAuth URL via OpenDigits.
+ * OD handles the Apple OAuth flow and redirects back to our localhost with tokens.
+ */
+export function buildAppleAuthUrl(redirectUri) {
+    const state = randomBytes(16).toString('hex');
+    const params = new URLSearchParams({
+        redirect_uri: redirectUri,
+        state,
+    });
+    return `${CONFIG.OD_APPLE_AUTHORIZE}?${params.toString()}`;
+}
+//# sourceMappingURL=apple.js.map

package/dist/auth/apple.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"apple.js","sourceRoot":"","sources":["../../src/auth/apple.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,EAAE,MAAM,kBAAkB,CAAC;AAC1C,OAAO,EAAE,WAAW,EAAE,MAAM,aAAa,CAAC;AAE1C;;;GAGG;AACH,MAAM,UAAU,iBAAiB,CAAC,WAAmB;IACnD,MAAM,KAAK,GAAG,WAAW,CAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC;IAE9C,MAAM,MAAM,GAAG,IAAI,eAAe,CAAC;QACjC,YAAY,EAAE,WAAW;QACzB,KAAK;KACN,CAAC,CAAC;IAEH,OAAO,GAAG,MAAM,CAAC,kBAAkB,IAAI,MAAM,CAAC,QAAQ,EAAE,EAAE,CAAC;AAC7D,CAAC"}

package/dist/auth/exchange.d.ts

@@ -0,0 +1,6 @@
+import type { ODTokens, ClawTokens } from '../lib/types.js';
+/**
+ * Exchange a Google access_token for OpenDigits tokens.
+ */
+export declare function googleToOD(googleAccessToken: string): Promise<ODTokens>;
+export declare function odToClawApps(odTokens: ODTokens): Promise<ClawTokens>;

package/dist/auth/exchange.js

@@ -0,0 +1,25 @@
+import { CONFIG } from '../lib/config.js';
+import { apiPost } from '../lib/api.js';
+/**
+ * Exchange a Google access_token for OpenDigits tokens.
+ */
+export async function googleToOD(googleAccessToken) {
+    const res = await apiPost(CONFIG.OD_GOOGLE_AUTH, {
+        access_token: googleAccessToken,
+    });
+    if (!res.ok) {
+        throw new Error(`Google → OD exchange failed (${res.status}): ${JSON.stringify(res.data)}`);
+    }
+    return res.data.data;
+}
+export async function odToClawApps(odTokens) {
+    const res = await apiPost(CONFIG.CLAW_EXCHANGE, {
+        od_token: odTokens.access_token,
+        od_refresh_token: odTokens.refresh_token,
+    });
+    if (!res.ok) {
+        throw new Error(`OD → ClawApps exchange failed (${res.status}): ${JSON.stringify(res.data)}`);
+    }
+    return res.data.data;
+}
+//# sourceMappingURL=exchange.js.map

package/dist/auth/exchange.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"exchange.js","sourceRoot":"","sources":["../../src/auth/exchange.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,EAAE,MAAM,kBAAkB,CAAC;AAC1C,OAAO,EAAE,OAAO,EAAE,MAAM,eAAe,CAAC;AAUxC;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,UAAU,CAAC,iBAAyB;IACxD,MAAM,GAAG,GAAG,MAAM,OAAO,CAA0B,MAAM,CAAC,cAAc,EAAE;QACxE,YAAY,EAAE,iBAAiB;KAChC,CAAC,CAAC;IAEH,IAAI,CAAC,GAAG,CAAC,EAAE,EAAE,CAAC;QACZ,MAAM,IAAI,KAAK,CAAC,gCAAgC,GAAG,CAAC,MAAM,MAAM,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IAC9F,CAAC;IAED,OAAO,GAAG,CAAC,IAAI,CAAC,IAAI,CAAC;AACvB,CAAC;AAYD,MAAM,CAAC,KAAK,UAAU,YAAY,CAAC,QAAkB;IACnD,MAAM,GAAG,GAAG,MAAM,OAAO,CAA8B,MAAM,CAAC,aAAa,EAAE;QAC3E,QAAQ,EAAE,QAAQ,CAAC,YAAY;QAC/B,gBAAgB,EAAE,QAAQ,CAAC,aAAa;KACzC,CAAC,CAAC;IAEH,IAAI,CAAC,GAAG,CAAC,EAAE,EAAE,CAAC;QACZ,MAAM,IAAI,KAAK,CAAC,kCAAkC,GAAG,CAAC,MAAM,MAAM,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IAChG,CAAC;IAED,OAAO,GAAG,CAAC,IAAI,CAAC,IAAI,CAAC;AACvB,CAAC"}

package/dist/auth/google.d.ts

@@ -0,0 +1,5 @@
+/**
+ * Build the Google OAuth implicit flow URL.
+ * Uses response_type=token to get access_token in the URL hash fragment.
+ */
+export declare function buildGoogleAuthUrl(redirectUri: string): string;

package/dist/auth/google.js

@@ -0,0 +1,16 @@
+import { CONFIG } from '../lib/config.js';
+/**
+ * Build the Google OAuth implicit flow URL.
+ * Uses response_type=token to get access_token in the URL hash fragment.
+ */
+export function buildGoogleAuthUrl(redirectUri) {
+    const params = new URLSearchParams({
+        client_id: CONFIG.GOOGLE_CLIENT_ID,
+        redirect_uri: redirectUri,
+        response_type: 'token',
+        scope: 'openid email profile',
+        prompt: 'select_account',
+    });
+    return `https://accounts.google.com/o/oauth2/v2/auth?${params.toString()}`;
+}
+//# sourceMappingURL=google.js.map

package/dist/auth/google.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"google.js","sourceRoot":"","sources":["../../src/auth/google.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,EAAE,MAAM,kBAAkB,CAAC;AAE1C;;;GAGG;AACH,MAAM,UAAU,kBAAkB,CAAC,WAAmB;IACpD,MAAM,MAAM,GAAG,IAAI,eAAe,CAAC;QACjC,SAAS,EAAE,MAAM,CAAC,gBAAgB;QAClC,YAAY,EAAE,WAAW;QACzB,aAAa,EAAE,OAAO;QACtB,KAAK,EAAE,sBAAsB;QAC7B,MAAM,EAAE,gBAAgB;KACzB,CAAC,CAAC;IAEH,OAAO,gDAAgD,MAAM,CAAC,QAAQ,EAAE,EAAE,CAAC;AAC7E,CAAC"}

package/dist/auth/login-server.d.ts

@@ -0,0 +1,10 @@
+import type { ClawTokens } from '../lib/types.js';
+/**
+ * Start a local HTTP server that receives ClawApps tokens from the web login page redirect.
+ * The web page redirects to: http://localhost:{port}/callback?access_token=xxx&refresh_token=xxx
+ */
+export declare function startLoginCallbackServer(): Promise<{
+    port: number;
+    result: Promise<ClawTokens>;
+    close: () => void;
+}>;

package/dist/auth/login-server.js

@@ -0,0 +1,62 @@
+import { createServer } from 'node:http';
+import { URL } from 'node:url';
+import { CONFIG } from '../lib/config.js';
+import { getSuccessHtml, getErrorHtml } from '../html/callback.js';
+/**
+ * Start a local HTTP server that receives ClawApps tokens from the web login page redirect.
+ * The web page redirects to: http://localhost:{port}/callback?access_token=xxx&refresh_token=xxx
+ */
+export function startLoginCallbackServer() {
+    return new Promise((resolveServer, rejectServer) => {
+        let resultResolve;
+        let resultReject;
+        const resultPromise = new Promise((resolve, reject) => {
+            resultResolve = resolve;
+            resultReject = reject;
+        });
+        const server = createServer((req, res) => {
+            const port = server.address().port;
+            const url = new URL(req.url || '/', `http://localhost:${port}`);
+            if (url.pathname === '/callback') {
+                const accessToken = url.searchParams.get('access_token');
+                const refreshToken = url.searchParams.get('refresh_token');
+                if (accessToken && refreshToken) {
+                    res.writeHead(200, { 'Content-Type': 'text/html' });
+                    res.end(getSuccessHtml());
+                    resultResolve({ access_token: accessToken, refresh_token: refreshToken });
+                }
+                else {
+                    res.writeHead(200, { 'Content-Type': 'text/html' });
+                    res.end(getErrorHtml('Missing tokens. Please try again.'));
+                    resultReject(new Error('Callback missing tokens'));
+                }
+                return;
+            }
+            res.writeHead(404, { 'Content-Type': 'text/plain' });
+            res.end('Not found');
+        });
+        server.listen(0, '127.0.0.1', () => {
+            const addr = server.address();
+            const timeout = setTimeout(() => {
+                resultReject(new Error('Authentication timed out. Please try again.'));
+                server.close();
+            }, CONFIG.AUTH_TIMEOUT_MS);
+            resultPromise.finally(() => {
+                clearTimeout(timeout);
+                setTimeout(() => server.close(), 500);
+            });
+            resolveServer({
+                port: addr.port,
+                result: resultPromise,
+                close: () => {
+                    clearTimeout(timeout);
+                    server.close();
+                },
+            });
+        });
+        server.on('error', (err) => {
+            rejectServer(err);
+        });
+    });
+}
+//# sourceMappingURL=login-server.js.map

package/dist/auth/login-server.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"login-server.js","sourceRoot":"","sources":["../../src/auth/login-server.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAA6C,MAAM,WAAW,CAAC;AACpF,OAAO,EAAE,GAAG,EAAE,MAAM,UAAU,CAAC;AAC/B,OAAO,EAAE,MAAM,EAAE,MAAM,kBAAkB,CAAC;AAC1C,OAAO,EAAE,cAAc,EAAE,YAAY,EAAE,MAAM,qBAAqB,CAAC;AAGnE;;;GAGG;AACH,MAAM,UAAU,wBAAwB;IAKtC,OAAO,IAAI,OAAO,CAAC,CAAC,aAAa,EAAE,YAAY,EAAE,EAAE;QACjD,IAAI,aAA2C,CAAC;QAChD,IAAI,YAAoC,CAAC;QAEzC,MAAM,aAAa,GAAG,IAAI,OAAO,CAAa,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;YAChE,aAAa,GAAG,OAAO,CAAC;YACxB,YAAY,GAAG,MAAM,CAAC;QACxB,CAAC,CAAC,CAAC;QAEH,MAAM,MAAM,GAAG,YAAY,CAAC,CAAC,GAAoB,EAAE,GAAmB,EAAE,EAAE;YACxE,MAAM,IAAI,GAAI,MAAM,CAAC,OAAO,EAAuB,CAAC,IAAI,CAAC;YACzD,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,GAAG,CAAC,GAAG,IAAI,GAAG,EAAE,oBAAoB,IAAI,EAAE,CAAC,CAAC;YAEhE,IAAI,GAAG,CAAC,QAAQ,KAAK,WAAW,EAAE,CAAC;gBACjC,MAAM,WAAW,GAAG,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,cAAc,CAAC,CAAC;gBACzD,MAAM,YAAY,GAAG,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,eAAe,CAAC,CAAC;gBAE3D,IAAI,WAAW,IAAI,YAAY,EAAE,CAAC;oBAChC,GAAG,CAAC,SAAS,CAAC,GAAG,EAAE,EAAE,cAAc,EAAE,WAAW,EAAE,CAAC,CAAC;oBACpD,GAAG,CAAC,GAAG,CAAC,cAAc,EAAE,CAAC,CAAC;oBAC1B,aAAc,CAAC,EAAE,YAAY,EAAE,WAAW,EAAE,aAAa,EAAE,YAAY,EAAE,CAAC,CAAC;gBAC7E,CAAC;qBAAM,CAAC;oBACN,GAAG,CAAC,SAAS,CAAC,GAAG,EAAE,EAAE,cAAc,EAAE,WAAW,EAAE,CAAC,CAAC;oBACpD,GAAG,CAAC,GAAG,CAAC,YAAY,CAAC,mCAAmC,CAAC,CAAC,CAAC;oBAC3D,YAAa,CAAC,IAAI,KAAK,CAAC,yBAAyB,CAAC,CAAC,CAAC;gBACtD,CAAC;gBACD,OAAO;YACT,CAAC;YAED,GAAG,CAAC,SAAS,CAAC,GAAG,EAAE,EAAE,cAAc,EAAE,YAAY,EAAE,CAAC,CAAC;YACrD,GAAG,CAAC,GAAG,CAAC,WAAW,CAAC,CAAC;QACvB,CAAC,CAAC,CAAC;QAEH,MAAM,CAAC,MAAM,CAAC,CAAC,EAAE,WAAW,EAAE,GAAG,EAAE;YACjC,MAAM,IAAI,GAAG,MAAM,CAAC,OAAO,EAAsB,CAAC;YAElD,MAAM,OAAO,GAAG,UAAU,CAAC,GAAG,EAAE;gBAC9B,YAAa,CAAC,IAAI,KAAK,CAAC,6CAA6C,CAAC,CAAC,CAAC;gBACxE,MAAM,CAAC,KAAK,EAAE,CAAC;YACjB,CAAC,EAAE,MAAM,CAAC,eAAe,CAAC,CAAC;YAE3B,aAAa,CAAC,OAAO,CAAC,GAAG,EAAE;gBACzB,YAAY,CAAC,OAAO,CAAC,CAAC;gBACtB,UAAU,CAAC,GAAG,EAAE,CAAC,MAAM,CAAC,KAAK,EAAE,EAAE,GAAG,CAAC,CAAC;YACxC,CAAC,CAAC,CAAC;YAEH,aAAa,CAAC;gBACZ,IAAI,EAAE,IAAI,CAAC,IAAI;gBACf,MAAM,EAAE,aAAa;gBACrB,KAAK,EAAE,GAAG,EAAE;oBACV,YAAY,CAAC,OAAO,CAAC,CAAC;oBACtB,MAAM,CAAC,KAAK,EAAE,CAAC;gBACjB,CAAC;aACF,CAAC,CAAC;QACL,CAAC,CAAC,CAAC;QAEH,MAAM,CAAC,EAAE,CAAC,OAAO,EAAE,CAAC,GAAG,EAAE,EAAE;YACzB,YAAY,CAAC,GAAG,CAAC,CAAC;QACpB,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;AACL,CAAC"}

package/dist/auth/server.d.ts

@@ -0,0 +1,17 @@
+import type { AuthProvider, ODTokens } from '../lib/types.js';
+export interface CallbackResult {
+    provider: AuthProvider;
+    /** For Google: the Google access_token; For Apple: not used */
+    googleAccessToken?: string;
+    /** For Apple: OD tokens come directly in the callback */
+    odTokens?: ODTokens;
+}
+/**
+ * Start a local HTTP server to receive the OAuth callback.
+ * Returns a promise that resolves with the callback result.
+ */
+export declare function startCallbackServer(provider: AuthProvider): Promise<{
+    port: number;
+    result: Promise<CallbackResult>;
+    close: () => void;
+}>;

package/dist/auth/server.js

@@ -0,0 +1,102 @@
+import { createServer } from 'node:http';
+import { URL } from 'node:url';
+import { CONFIG } from '../lib/config.js';
+import { getGoogleCallbackHtml, getSuccessHtml, getErrorHtml } from '../html/callback.js';
+function handleRequest(ctx, req, res) {
+    const url = new URL(req.url || '/', `http://localhost:${ctx.port}`);
+    // Google: /callback serves HTML that extracts token from hash
+    if (url.pathname === '/callback' && ctx.provider === 'google') {
+        res.writeHead(200, { 'Content-Type': 'text/html' });
+        res.end(getGoogleCallbackHtml(ctx.port));
+        return;
+    }
+    // Google: /token receives the token POSTed by the callback HTML page
+    if (url.pathname === '/token' && req.method === 'POST') {
+        let body = '';
+        req.on('data', (chunk) => { body += chunk; });
+        req.on('end', () => {
+            try {
+                const data = JSON.parse(body);
+                const accessToken = data.access_token;
+                if (!accessToken) {
+                    res.writeHead(400, { 'Content-Type': 'application/json' });
+                    res.end(JSON.stringify({ error: 'Missing access_token' }));
+                    return;
+                }
+                res.writeHead(200, { 'Content-Type': 'application/json' });
+                res.end(JSON.stringify({ ok: true }));
+                ctx.resolve({ provider: 'google', googleAccessToken: accessToken });
+            }
+            catch {
+                res.writeHead(400, { 'Content-Type': 'application/json' });
+                res.end(JSON.stringify({ error: 'Invalid JSON' }));
+            }
+        });
+        return;
+    }
+    // Apple: /callback receives OD tokens as query params
+    if (url.pathname === '/callback' && ctx.provider === 'apple') {
+        const accessToken = url.searchParams.get('access_token');
+        const refreshToken = url.searchParams.get('refresh_token');
+        if (!accessToken || !refreshToken) {
+            res.writeHead(200, { 'Content-Type': 'text/html' });
+            res.end(getErrorHtml('Missing tokens in callback. Please try again.'));
+            ctx.reject(new Error('Apple callback missing tokens'));
+            return;
+        }
+        res.writeHead(200, { 'Content-Type': 'text/html' });
+        res.end(getSuccessHtml());
+        ctx.resolve({
+            provider: 'apple',
+            odTokens: { access_token: accessToken, refresh_token: refreshToken },
+        });
+        return;
+    }
+    // Fallback
+    res.writeHead(404, { 'Content-Type': 'text/plain' });
+    res.end('Not found');
+}
+/**
+ * Start a local HTTP server to receive the OAuth callback.
+ * Returns a promise that resolves with the callback result.
+ */
+export function startCallbackServer(provider) {
+    return new Promise((resolveServer, rejectServer) => {
+        let resultResolve;
+        let resultReject;
+        const resultPromise = new Promise((resolve, reject) => {
+            resultResolve = resolve;
+            resultReject = reject;
+        });
+        const server = createServer((req, res) => {
+            handleRequest({ port: server.address().port, provider, resolve: resultResolve, reject: resultReject }, req, res);
+        });
+        // Bind to 127.0.0.1 only for security, port 0 = system assigns
+        server.listen(0, '127.0.0.1', () => {
+            const addr = server.address();
+            // Set up timeout
+            const timeout = setTimeout(() => {
+                resultReject(new Error('Authentication timed out. Please try again.'));
+                server.close();
+            }, CONFIG.AUTH_TIMEOUT_MS);
+            // When result resolves or rejects, clean up
+            resultPromise.finally(() => {
+                clearTimeout(timeout);
+                // Give the browser a moment to receive the response
+                setTimeout(() => server.close(), 500);
+            });
+            resolveServer({
+                port: addr.port,
+                result: resultPromise,
+                close: () => {
+                    clearTimeout(timeout);
+                    server.close();
+                },
+            });
+        });
+        server.on('error', (err) => {
+            rejectServer(err);
+        });
+    });
+}
+//# sourceMappingURL=server.js.map

package/dist/auth/server.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"server.js","sourceRoot":"","sources":["../../src/auth/server.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAA6C,MAAM,WAAW,CAAC;AACpF,OAAO,EAAE,GAAG,EAAE,MAAM,UAAU,CAAC;AAC/B,OAAO,EAAE,MAAM,EAAE,MAAM,kBAAkB,CAAC;AAC1C,OAAO,EAAE,qBAAqB,EAAE,cAAc,EAAE,YAAY,EAAE,MAAM,qBAAqB,CAAC;AAkB1F,SAAS,aAAa,CAAC,GAAkB,EAAE,GAAoB,EAAE,GAAmB;IAClF,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,GAAG,CAAC,GAAG,IAAI,GAAG,EAAE,oBAAoB,GAAG,CAAC,IAAI,EAAE,CAAC,CAAC;IAEpE,8DAA8D;IAC9D,IAAI,GAAG,CAAC,QAAQ,KAAK,WAAW,IAAI,GAAG,CAAC,QAAQ,KAAK,QAAQ,EAAE,CAAC;QAC9D,GAAG,CAAC,SAAS,CAAC,GAAG,EAAE,EAAE,cAAc,EAAE,WAAW,EAAE,CAAC,CAAC;QACpD,GAAG,CAAC,GAAG,CAAC,qBAAqB,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC,CAAC;QACzC,OAAO;IACT,CAAC;IAED,qEAAqE;IACrE,IAAI,GAAG,CAAC,QAAQ,KAAK,QAAQ,IAAI,GAAG,CAAC,MAAM,KAAK,MAAM,EAAE,CAAC;QACvD,IAAI,IAAI,GAAG,EAAE,CAAC;QACd,GAAG,CAAC,EAAE,CAAC,MAAM,EAAE,CAAC,KAAK,EAAE,EAAE,GAAG,IAAI,IAAI,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC;QAC9C,GAAG,CAAC,EAAE,CAAC,KAAK,EAAE,GAAG,EAAE;YACjB,IAAI,CAAC;gBACH,MAAM,IAAI,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;gBAC9B,MAAM,WAAW,GAAG,IAAI,CAAC,YAAY,CAAC;gBACtC,IAAI,CAAC,WAAW,EAAE,CAAC;oBACjB,GAAG,CAAC,SAAS,CAAC,GAAG,EAAE,EAAE,cAAc,EAAE,kBAAkB,EAAE,CAAC,CAAC;oBAC3D,GAAG,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,EAAE,KAAK,EAAE,sBAAsB,EAAE,CAAC,CAAC,CAAC;oBAC3D,OAAO;gBACT,CAAC;gBACD,GAAG,CAAC,SAAS,CAAC,GAAG,EAAE,EAAE,cAAc,EAAE,kBAAkB,EAAE,CAAC,CAAC;gBAC3D,GAAG,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,EAAE,EAAE,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC;gBACtC,GAAG,CAAC,OAAO,CAAC,EAAE,QAAQ,EAAE,QAAQ,EAAE,iBAAiB,EAAE,WAAW,EAAE,CAAC,CAAC;YACtE,CAAC;YAAC,MAAM,CAAC;gBACP,GAAG,CAAC,SAAS,CAAC,GAAG,EAAE,EAAE,cAAc,EAAE,kBAAkB,EAAE,CAAC,CAAC;gBAC3D,GAAG,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,EAAE,KAAK,EAAE,cAAc,EAAE,CAAC,CAAC,CAAC;YACrD,CAAC;QACH,CAAC,CAAC,CAAC;QACH,OAAO;IACT,CAAC;IAED,sDAAsD;IACtD,IAAI,GAAG,CAAC,QAAQ,KAAK,WAAW,IAAI,GAAG,CAAC,QAAQ,KAAK,OAAO,EAAE,CAAC;QAC7D,MAAM,WAAW,GAAG,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,cAAc,CAAC,CAAC;QACzD,MAAM,YAAY,GAAG,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,eAAe,CAAC,CAAC;QAE3D,IAAI,CAAC,WAAW,IAAI,CAAC,YAAY,EAAE,CAAC;YAClC,GAAG,CAAC,SAAS,CAAC,GAAG,EAAE,EAAE,cAAc,EAAE,WAAW,EAAE,CAAC,CAAC;YACpD,GAAG,CAAC,GAAG,CAAC,YAAY,CAAC,+CAA+C,CAAC,CAAC,CAAC;YACvE,GAAG,CAAC,MAAM,CAAC,IAAI,KAAK,CAAC,+BAA+B,CAAC,CAAC,CAAC;YACvD,OAAO;QACT,CAAC;QAED,GAAG,CAAC,SAAS,CAAC,GAAG,EAAE,EAAE,cAAc,EAAE,WAAW,EAAE,CAAC,CAAC;QACpD,GAAG,CAAC,GAAG,CAAC,cAAc,EAAE,CAAC,CAAC;QAC1B,GAAG,CAAC,OAAO,CAAC;YACV,QAAQ,EAAE,OAAO;YACjB,QAAQ,EAAE,EAAE,YAAY,EAAE,WAAW,EAAE,aAAa,EAAE,YAAY,EAAE;SACrE,CAAC,CAAC;QACH,OAAO;IACT,CAAC;IAED,WAAW;IACX,GAAG,CAAC,SAAS,CAAC,GAAG,EAAE,EAAE,cAAc,EAAE,YAAY,EAAE,CAAC,CAAC;IACrD,GAAG,CAAC,GAAG,CAAC,WAAW,CAAC,CAAC;AACvB,CAAC;AAED;;;GAGG;AACH,MAAM,UAAU,mBAAmB,CAAC,QAAsB;IAKxD,OAAO,IAAI,OAAO,CAAC,CAAC,aAAa,EAAE,YAAY,EAAE,EAAE;QACjD,IAAI,aAA+C,CAAC;QACpD,IAAI,YAAoC,CAAC;QAEzC,MAAM,aAAa,GAAG,IAAI,OAAO,CAAiB,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;YACpE,aAAa,GAAG,OAAO,CAAC;YACxB,YAAY,GAAG,MAAM,CAAC;QACxB,CAAC,CAAC,CAAC;QAEH,MAAM,MAAM,GAAG,YAAY,CAAC,CAAC,GAAG,EAAE,GAAG,EAAE,EAAE;YACvC,aAAa,CACX,EAAE,IAAI,EAAG,MAAM,CAAC,OAAO,EAAuB,CAAC,IAAI,EAAE,QAAQ,EAAE,OAAO,EAAE,aAAc,EAAE,MAAM,EAAE,YAAa,EAAE,EAC/G,GAAG,EACH,GAAG,CACJ,CAAC;QACJ,CAAC,CAAC,CAAC;QAEH,+DAA+D;QAC/D,MAAM,CAAC,MAAM,CAAC,CAAC,EAAE,WAAW,EAAE,GAAG,EAAE;YACjC,MAAM,IAAI,GAAG,MAAM,CAAC,OAAO,EAAsB,CAAC;YAElD,iBAAiB;YACjB,MAAM,OAAO,GAAG,UAAU,CAAC,GAAG,EAAE;gBAC9B,YAAa,CAAC,IAAI,KAAK,CAAC,6CAA6C,CAAC,CAAC,CAAC;gBACxE,MAAM,CAAC,KAAK,EAAE,CAAC;YACjB,CAAC,EAAE,MAAM,CAAC,eAAe,CAAC,CAAC;YAE3B,4CAA4C;YAC5C,aAAa,CAAC,OAAO,CAAC,GAAG,EAAE;gBACzB,YAAY,CAAC,OAAO,CAAC,CAAC;gBACtB,oDAAoD;gBACpD,UAAU,CAAC,GAAG,EAAE,CAAC,MAAM,CAAC,KAAK,EAAE,EAAE,GAAG,CAAC,CAAC;YACxC,CAAC,CAAC,CAAC;YAEH,aAAa,CAAC;gBACZ,IAAI,EAAE,IAAI,CAAC,IAAI;gBACf,MAAM,EAAE,aAAa;gBACrB,KAAK,EAAE,GAAG,EAAE;oBACV,YAAY,CAAC,OAAO,CAAC,CAAC;oBACtB,MAAM,CAAC,KAAK,EAAE,CAAC;gBACjB,CAAC;aACF,CAAC,CAAC;QACL,CAAC,CAAC,CAAC;QAEH,MAAM,CAAC,EAAE,CAAC,OAAO,EAAE,CAAC,GAAG,EAAE,EAAE;YACzB,YAAY,CAAC,GAAG,CAAC,CAAC;QACpB,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;AACL,CAAC"}

package/dist/commands/credit.d.ts

@@ -0,0 +1 @@
+export declare function creditCommand(): Promise<void>;

package/dist/commands/credit.js

@@ -0,0 +1,28 @@
+import chalk from 'chalk';
+import open from 'open';
+import { loadCredentials } from '../lib/credentials.js';
+import { CONFIG } from '../lib/config.js';
+import { ensureValidToken } from './helpers/ensure-token.js';
+export async function creditCommand() {
+    const credentials = await loadCredentials();
+    if (!credentials) {
+        console.log(chalk.yellow('Not logged in. Run `claw login` first.'));
+        process.exit(1);
+    }
+    const token = await ensureValidToken(credentials);
+    if (!token) {
+        console.log(chalk.red('Session expired. Please run `claw login` again.'));
+        process.exit(1);
+    }
+    const url = `${CONFIG.CLAW_WEB_BASE}/credit?access_token=${encodeURIComponent(token.access_token)}&refresh_token=${encodeURIComponent(token.refresh_token)}`;
+    console.log(chalk.gray('Opening credit recharge page...'));
+    try {
+        await open(url);
+        console.log(chalk.green('Page opened in your browser.'));
+    }
+    catch {
+        console.log(chalk.yellow('Could not open browser automatically.'));
+        console.log(chalk.gray(`Please open this URL manually:\n${url}`));
+    }
+}
+//# sourceMappingURL=credit.js.map

package/dist/commands/credit.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"credit.js","sourceRoot":"","sources":["../../src/commands/credit.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,MAAM,OAAO,CAAC;AAC1B,OAAO,IAAI,MAAM,MAAM,CAAC;AACxB,OAAO,EAAE,eAAe,EAAE,MAAM,uBAAuB,CAAC;AACxD,OAAO,EAAE,MAAM,EAAE,MAAM,kBAAkB,CAAC;AAC1C,OAAO,EAAE,gBAAgB,EAAE,MAAM,2BAA2B,CAAC;AAE7D,MAAM,CAAC,KAAK,UAAU,aAAa;IACjC,MAAM,WAAW,GAAG,MAAM,eAAe,EAAE,CAAC;IAE5C,IAAI,CAAC,WAAW,EAAE,CAAC;QACjB,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,CAAC,wCAAwC,CAAC,CAAC,CAAC;QACpE,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAClB,CAAC;IAED,MAAM,KAAK,GAAG,MAAM,gBAAgB,CAAC,WAAW,CAAC,CAAC;IAClD,IAAI,CAAC,KAAK,EAAE,CAAC;QACX,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,iDAAiD,CAAC,CAAC,CAAC;QAC1E,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAClB,CAAC;IAED,MAAM,GAAG,GAAG,GAAG,MAAM,CAAC,aAAa,wBAAwB,kBAAkB,CAAC,KAAK,CAAC,YAAY,CAAC,kBAAkB,kBAAkB,CAAC,KAAK,CAAC,aAAa,CAAC,EAAE,CAAC;IAE7J,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,iCAAiC,CAAC,CAAC,CAAC;IAE3D,IAAI,CAAC;QACH,MAAM,IAAI,CAAC,GAAG,CAAC,CAAC;QAChB,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,KAAK,CAAC,8BAA8B,CAAC,CAAC,CAAC;IAC3D,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,CAAC,uCAAuC,CAAC,CAAC,CAAC;QACnE,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,mCAAmC,GAAG,EAAE,CAAC,CAAC,CAAC;IACpE,CAAC;AACH,CAAC"}

package/dist/commands/helpers/ensure-token.d.ts

@@ -0,0 +1,6 @@
+import type { Credentials } from '../../lib/types.js';
+/**
+ * Validates the current token, refreshes if expired.
+ * Returns updated credentials or null if session is invalid.
+ */
+export declare function ensureValidToken(credentials: Credentials): Promise<Credentials | null>;

package/dist/commands/helpers/ensure-token.js

@@ -0,0 +1,29 @@
+import { apiGet, apiPost } from '../../lib/api.js';
+import { saveCredentials } from '../../lib/credentials.js';
+import { CONFIG } from '../../lib/config.js';
+/**
+ * Validates the current token, refreshes if expired.
+ * Returns updated credentials or null if session is invalid.
+ */
+export async function ensureValidToken(credentials) {
+    // Try current token
+    const res = await apiGet(CONFIG.CLAW_ME, credentials.access_token);
+    if (res.ok)
+        return credentials;
+    // Token expired — try refresh
+    if (res.status === 401) {
+        const refreshRes = await apiPost(CONFIG.CLAW_REFRESH, { refresh_token: credentials.refresh_token });
+        if (!refreshRes.ok)
+            return null;
+        const newTokens = refreshRes.data.data;
+        const updated = {
+            ...credentials,
+            access_token: newTokens.access_token,
+            refresh_token: newTokens.refresh_token,
+        };
+        await saveCredentials(updated);
+        return updated;
+    }
+    return null;
+}
+//# sourceMappingURL=ensure-token.js.map

package/dist/commands/helpers/ensure-token.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"ensure-token.js","sourceRoot":"","sources":["../../../src/commands/helpers/ensure-token.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,EAAE,OAAO,EAAwB,MAAM,kBAAkB,CAAC;AACzE,OAAO,EAAE,eAAe,EAAE,MAAM,0BAA0B,CAAC;AAC3D,OAAO,EAAE,MAAM,EAAE,MAAM,qBAAqB,CAAC;AAG7C;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,gBAAgB,CACpC,WAAwB;IAExB,oBAAoB;IACpB,MAAM,GAAG,GAAG,MAAM,MAAM,CACtB,MAAM,CAAC,OAAO,EACd,WAAW,CAAC,YAAY,CACzB,CAAC;IAEF,IAAI,GAAG,CAAC,EAAE;QAAE,OAAO,WAAW,CAAC;IAE/B,8BAA8B;IAC9B,IAAI,GAAG,CAAC,MAAM,KAAK,GAAG,EAAE,CAAC;QACvB,MAAM,UAAU,GAAG,MAAM,OAAO,CAC9B,MAAM,CAAC,YAAY,EACnB,EAAE,aAAa,EAAE,WAAW,CAAC,aAAa,EAAE,CAC7C,CAAC;QAEF,IAAI,CAAC,UAAU,CAAC,EAAE;YAAE,OAAO,IAAI,CAAC;QAEhC,MAAM,SAAS,GAAG,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC;QACvC,MAAM,OAAO,GAAgB;YAC3B,GAAG,WAAW;YACd,YAAY,EAAE,SAAS,CAAC,YAAY;YACpC,aAAa,EAAE,SAAS,CAAC,aAAa;SACvC,CAAC;QAEF,MAAM,eAAe,CAAC,OAAO,CAAC,CAAC;QAC/B,OAAO,OAAO,CAAC;IACjB,CAAC;IAED,OAAO,IAAI,CAAC;AACd,CAAC"}

package/dist/commands/login.d.ts

@@ -0,0 +1 @@
+export declare function loginCommand(): Promise<void>;

package/dist/commands/login.js

@@ -0,0 +1,77 @@
+import chalk from 'chalk';
+import ora from 'ora';
+import open from 'open';
+import { loadCredentials, saveCredentials } from '../lib/credentials.js';
+import { apiGet } from '../lib/api.js';
+import { CONFIG } from '../lib/config.js';
+import { startLoginCallbackServer } from '../auth/login-server.js';
+import { ensureValidToken } from './helpers/ensure-token.js';
+export async function loginCommand() {
+    // Check if already logged in, refresh token if needed
+    const existing = await loadCredentials();
+    if (existing) {
+        try {
+            const validated = await ensureValidToken(existing);
+            if (validated) {
+                const res = await apiGet(CONFIG.CLAW_ME, validated.access_token);
+                if (res.ok) {
+                    const user = res.data.data;
+                    console.log(chalk.green(`Already logged in as ${chalk.bold(user.email || user.name || 'user')}.`));
+                    console.log(chalk.gray('Session refreshed. Run `claw logout` first to switch accounts.'));
+                    return;
+                }
+            }
+        }
+        catch {
+            // Token validation/refresh failed, continue with browser login
+        }
+    }
+    // Start local callback server to receive tokens from web
+    const { port, result, close } = await startLoginCallbackServer();
+    const callbackUrl = `http://localhost:${port}/callback`;
+    // Open web login page with callback
+    const loginUrl = `${CONFIG.CLAW_WEB_BASE}/login?callback=${encodeURIComponent(callbackUrl)}`;
+    console.log(chalk.gray('\nOpening browser for login...'));
+    console.log(chalk.gray(`If the browser doesn't open, visit:\n${loginUrl}\n`));
+    try {
+        await open(loginUrl);
+    }
+    catch {
+        console.log(chalk.yellow('Could not open browser automatically.'));
+        console.log(chalk.yellow('Please open the URL above manually.'));
+    }
+    const spinner = ora('Waiting for authentication...').start();
+    try {
+        const tokens = await result;
+        // Save credentials
+        await saveCredentials({
+            provider: 'google', // web login handles provider selection
+            access_token: tokens.access_token,
+            refresh_token: tokens.refresh_token,
+            logged_in_at: new Date().toISOString(),
+        });
+        spinner.text = 'Fetching user info...';
+        const userRes = await apiGet(CONFIG.CLAW_ME, tokens.access_token);
+        spinner.stop();
+        if (userRes.ok) {
+            const user = userRes.data.data;
+            const name = user.name || user.email || 'user';
+            console.log(chalk.green(`\nLogged in as ${chalk.bold(name)}`));
+            if (user.email) {
+                console.log(chalk.gray(`Email: ${user.email}`));
+            }
+        }
+        else {
+            console.log(chalk.green('\nLogin successful!'));
+            console.log(chalk.gray('Run `claw whoami` to see your account info.'));
+        }
+    }
+    catch (err) {
+        spinner.stop();
+        close();
+        const message = err instanceof Error ? err.message : 'Unknown error';
+        console.error(chalk.red(`\nLogin failed: ${message}`));
+        process.exit(1);
+    }
+}
+//# sourceMappingURL=login.js.map

package/dist/commands/login.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"login.js","sourceRoot":"","sources":["../../src/commands/login.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,MAAM,OAAO,CAAC;AAC1B,OAAO,GAAG,MAAM,KAAK,CAAC;AACtB,OAAO,IAAI,MAAM,MAAM,CAAC;AACxB,OAAO,EAAE,eAAe,EAAE,eAAe,EAAE,MAAM,uBAAuB,CAAC;AACzE,OAAO,EAAE,MAAM,EAAwB,MAAM,eAAe,CAAC;AAC7D,OAAO,EAAE,MAAM,EAAE,MAAM,kBAAkB,CAAC;AAC1C,OAAO,EAAE,wBAAwB,EAAE,MAAM,yBAAyB,CAAC;AACnE,OAAO,EAAE,gBAAgB,EAAE,MAAM,2BAA2B,CAAC;AAG7D,MAAM,CAAC,KAAK,UAAU,YAAY;IAChC,sDAAsD;IACtD,MAAM,QAAQ,GAAG,MAAM,eAAe,EAAE,CAAC;IACzC,IAAI,QAAQ,EAAE,CAAC;QACb,IAAI,CAAC;YACH,MAAM,SAAS,GAAG,MAAM,gBAAgB,CAAC,QAAQ,CAAC,CAAC;YACnD,IAAI,SAAS,EAAE,CAAC;gBACd,MAAM,GAAG,GAAG,MAAM,MAAM,CAA4B,MAAM,CAAC,OAAO,EAAE,SAAS,CAAC,YAAY,CAAC,CAAC;gBAC5F,IAAI,GAAG,CAAC,EAAE,EAAE,CAAC;oBACX,MAAM,IAAI,GAAG,GAAG,CAAC,IAAI,CAAC,IAAI,CAAC;oBAC3B,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,KAAK,CAAC,wBAAwB,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,KAAK,IAAI,IAAI,CAAC,IAAI,IAAI,MAAM,CAAC,GAAG,CAAC,CAAC,CAAC;oBACnG,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,gEAAgE,CAAC,CAAC,CAAC;oBAC1F,OAAO;gBACT,CAAC;YACH,CAAC;QACH,CAAC;QAAC,MAAM,CAAC;YACP,+DAA+D;QACjE,CAAC;IACH,CAAC;IAED,yDAAyD;IACzD,MAAM,EAAE,IAAI,EAAE,MAAM,EAAE,KAAK,EAAE,GAAG,MAAM,wBAAwB,EAAE,CAAC;IACjE,MAAM,WAAW,GAAG,oBAAoB,IAAI,WAAW,CAAC;IAExD,oCAAoC;IACpC,MAAM,QAAQ,GAAG,GAAG,MAAM,CAAC,aAAa,mBAAmB,kBAAkB,CAAC,WAAW,CAAC,EAAE,CAAC;IAE7F,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,gCAAgC,CAAC,CAAC,CAAC;IAC1D,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,wCAAwC,QAAQ,IAAI,CAAC,CAAC,CAAC;IAE9E,IAAI,CAAC;QACH,MAAM,IAAI,CAAC,QAAQ,CAAC,CAAC;IACvB,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,CAAC,uCAAuC,CAAC,CAAC,CAAC;QACnE,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,CAAC,qCAAqC,CAAC,CAAC,CAAC;IACnE,CAAC;IAED,MAAM,OAAO,GAAG,GAAG,CAAC,+BAA+B,CAAC,CAAC,KAAK,EAAE,CAAC;IAE7D,IAAI,CAAC;QACH,MAAM,MAAM,GAAG,MAAM,MAAM,CAAC;QAE5B,mBAAmB;QACnB,MAAM,eAAe,CAAC;YACpB,QAAQ,EAAE,QAAQ,EAAE,uCAAuC;YAC3D,YAAY,EAAE,MAAM,CAAC,YAAY;YACjC,aAAa,EAAE,MAAM,CAAC,aAAa;YACnC,YAAY,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;SACvC,CAAC,CAAC;QAEH,OAAO,CAAC,IAAI,GAAG,uBAAuB,CAAC;QAEvC,MAAM,OAAO,GAAG,MAAM,MAAM,CAA4B,MAAM,CAAC,OAAO,EAAE,MAAM,CAAC,YAAY,CAAC,CAAC;QAE7F,OAAO,CAAC,IAAI,EAAE,CAAC;QAEf,IAAI,OAAO,CAAC,EAAE,EAAE,CAAC;YACf,MAAM,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC;YAC/B,MAAM,IAAI,GAAG,IAAI,CAAC,IAAI,IAAI,IAAI,CAAC,KAAK,IAAI,MAAM,CAAC;YAC/C,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,KAAK,CAAC,kBAAkB,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC,CAAC;YAC/D,IAAI,IAAI,CAAC,KAAK,EAAE,CAAC;gBACf,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,UAAU,IAAI,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC;YAClD,CAAC;QACH,CAAC;aAAM,CAAC;YACN,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,KAAK,CAAC,qBAAqB,CAAC,CAAC,CAAC;YAChD,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,6CAA6C,CAAC,CAAC,CAAC;QACzE,CAAC;IACH,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,OAAO,CAAC,IAAI,EAAE,CAAC;QACf,KAAK,EAAE,CAAC;QACR,MAAM,OAAO,GAAG,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,CAAC;QACrE,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,mBAAmB,OAAO,EAAE,CAAC,CAAC,CAAC;QACvD,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAClB,CAAC;AACH,CAAC"}

package/dist/commands/logout.d.ts

@@ -0,0 +1 @@
+export declare function logoutCommand(): Promise<void>;