@cognite/cli 0.7.0-alpha.32 → 1.0.0-alpha.42

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (6) hide show
  1. package/_templates/app/new/root/package.json.ejs.t +2 -2
  2. package/_templates/app/new/src/App.tsx.ejs.t +1 -1
  3. package/dist/cli/cli.js +62 -43
  4. package/dist/deploy/index.d.ts +7 -0
  5. package/dist/deploy/index.js +5 -5
  6. package/package.json +2 -2
package/_templates/app/new/root/package.json.ejs.t CHANGED
@@ -20,8 +20,8 @@ to: '<%= useCurrentDir ? "" : ((directoryName || name) + "/") %>package.json'
20
20
  "test:ui": "vitest --ui",
21
21
  "lint": "eslint . --ext .js,.mjs,.cjs,.ts,.tsx",
22
22
  "lint:fix": "eslint . --fix --ext .js,.mjs,.cjs,.ts,.tsx",
23
- "deploy": "npx @cognite/cli@latest apps deploy --interactive --published",
24
- "deploy-preview": "npx @cognite/cli@latest apps deploy --interactive"
23
+ "deploy": "npx @cognite/cli@latest apps deploy --interactive",
24
+ "activate": "npx @cognite/cli@latest apps activate --interactive"
25
25
  },
26
26
  "dependencies": {
27
27
  "@cognite/aura": "^0.1.7",
package/_templates/app/new/src/App.tsx.ejs.t CHANGED
@@ -22,7 +22,7 @@ import { useEffect, useState } from 'react';
22
22
 
23
23
  import appConfig from '../app.json';
24
24
 
25
- const FLOWS_DOCUMENTATION_HREF = 'https://cognite-review-dune-docs-pre-release.mintlify.app/cdf/flows';
25
+ const FLOWS_DOCUMENTATION_HREF = 'https://docs.cognite.com/cdf/flows';
26
26
 
27
27
  const INTRO_COPY =
28
28
  "Build and deploy React apps to Cognite Data Fusion in minutes. Aura, Cognite's AI-native design system, comes pre-configured so your app looks and feels at home from day one. Follow the checklist below to get started.";
package/dist/cli/cli.js CHANGED
@@ -1,14 +1,14 @@
1
1
  #!/usr/bin/env node
2
- import{a as o,e as Se}from"../chunk-A5ASLC6T.js";import{writeSync as Kr}from"fs";import{Command as Gr}from"commander";var ke="https://docs.cognite.com/cdf/access/";function P(e){return e!==null&&typeof e=="object"}o(P,"isRecord");function B(e){return e instanceof Error&&"status"in e&&typeof e.status=="number"}o(B,"isHttpError");function Rt(e){switch(e){case 401:return`Your credentials are invalid or expired. Check your client ID and secret.
3
- See: ${ke}`;case 403:return`You don't have the required CDF capabilities. Please contact your CDF admin.
4
- See: ${ke}`;default:return}}o(Rt,"httpStatusHint");function N(e){let t=e instanceof Error?e:new Error(String(e));if(!B(t))return null;let n=Rt(t.status);return n?Object.assign(new Error(`${t.message}
5
- ${n}`),{cause:t}):null}o(N,"enrichedHttpError");function Lt(e){if(!P(e))return null;let t=e.missing;if(Array.isArray(t))return t;let n=e.data;if(P(n)){let r=n.error;if(P(r)&&Array.isArray(r.missing))return r.missing;if(Array.isArray(n.missing))return n.missing}return null}o(Lt,"findMissingArray");function Vt(e,t){if(!B(e)||e.status!==400)return!1;let n=Lt(e);return n?n.some(r=>P(r)&&typeof r.externalId=="string"&&t.includes(r.externalId)):!1}o(Vt,"isMissingExternalIdError");function ee(e,t){return B(e)&&e.status===404||Vt(e,t)}o(ee,"isNotFoundError");var Pe=["DRAFT","PUBLISHED","DEPRECATED","ARCHIVED"],Te=["ACTIVE","PREVIEW"],te=class te extends Error{constructor(t,n){super(`Version ${n} of app ${t} not found`),this.name="AppVersionNotFoundError",this.appExternalId=t,this.version=n}};o(te,"AppVersionNotFoundError");var w=te;function De(e,t){return e.includes(t)}o(De,"includesValue");function _t(e){return De(Pe,e)}o(_t,"isAppVersionLifecycleState");function Nt(e){return De(Te,e)}o(Nt,"isAppVersionAlias");function Ht(e){return typeof e.version=="string"&&_t(e.lifecycleState)&&typeof e.entrypoint=="string"&&typeof e.createdTime=="number"&&typeof e.createdBy=="string"&&typeof e.appExternalId=="string"&&(e.alias===void 0||Nt(e.alias))&&(e.comment===void 0||typeof e.comment=="string")}o(Ht,"isAppVersion");function xe(e){if(!P(e))throw new Error("Invalid version response: not an object");if(!Ht(e))throw new Error("Invalid version response: missing or malformed fields");return e}o(xe,"parseAppVersion");var ne=class ne{constructor(t){this.client=t}get appsBasePath(){return`/api/v1/projects/${encodeURIComponent(this.client.project)}/apphosting/apps`}async createApp(t,n,r){try{await this.client.post(this.appsBasePath,{data:{items:[{externalId:t,name:n,description:r}]}})}catch(i){throw N(i)??i}}async uploadVersion(t,n,r,i,s="index.html"){console.log(`\u{1F4E4} Uploading version ${n}...`);let a=new FormData;a.append("file",new Blob([new Uint8Array(r)]),i),a.append("version",n),a.append("entryPath",s);let p=encodeURIComponent(t),c=`${this.appsBasePath}/${p}/versions`,l=await this.client.authenticate(),d=`${this.client.getBaseUrl()}${c}`,m=new AbortController,u=setTimeout(()=>m.abort(),300*1e3),h;try{h=await fetch(d,{method:"POST",headers:{Authorization:`Bearer ${l}`},body:a,signal:m.signal})}catch(f){throw f instanceof Error&&f.name==="AbortError"?new Error("Upload timed out after 5 minutes"):f}finally{clearTimeout(u)}if(!h.ok){let f=await h.text(),k=f;try{let j=JSON.parse(f);if(P(j)){let A=j.error;if(typeof A=="string")k=A;else if(P(A)){let x=A.message,g=A.code;k=typeof x=="string"?x:g!=null?`Unknown error (code: ${g})`:f}else{let x=j.message;k=typeof x=="string"?x:f}}}catch{}let E=h.headers.get("x-request-id"),Y=E?` | X-Request-ID: ${E}`:"",_=Object.assign(new Error(`Upload failed: ${h.status} \u2014 ${k}${Y}`),{status:h.status});throw N(_)??_}console.log(`\u2705 Version ${n} uploaded`)}async getVersion(t,n){let r=encodeURIComponent(t),i=encodeURIComponent(n),s=`${this.appsBasePath}/${r}/versions/${i}`;try{let a=await this.client.get(s);return xe(a.data)}catch(a){throw ee(a,[t,n])?new w(t,n):N(a)??a}}async getActiveVersion(t){let n=encodeURIComponent(t),r=`${this.appsBasePath}/${n}/active`;try{let i=await this.client.get(r);return xe(i.data)}catch(i){if(ee(i,[t]))return null;throw N(i)??i}}async updateVersions(t,n){let r=encodeURIComponent(t),i=`${this.appsBasePath}/${r}/versions/update`;try{await this.client.post(i,{data:{items:n}})}catch(s){throw N(s)??s}}};o(ne,"AppHostingApi");var J=ne;var re=class re{constructor(t){this.api=new J(t)}getVersion(t,n){return this.api.getVersion(t,n)}uploadVersion(t,n,r,i,s){return this.api.uploadVersion(t,n,r,i,s)}async ensureApp(t,n,r){console.log("\u{1F50D} Ensuring app exists...");try{await this.api.createApp(t,n,r),console.log(`\u2705 App '${t}' created`)}catch(i){if(B(i)&&i.status===409){console.log(`\u2705 App '${t}' already exists`);return}throw i}}async publishVersion(t,n){await this.api.updateVersions(t,[{version:n,update:{lifecycleState:{set:"PUBLISHED"}}}])}async publishAndActivate(t,n){console.log(`\u{1F680} Publishing and activating version ${n}...`),await this.api.updateVersions(t,[{version:n,update:{lifecycleState:{set:"PUBLISHED"},alias:{set:"ACTIVE"}}}]),console.log(`\u2705 Version ${n} is now PUBLISHED and ACTIVE`)}async activateVersion(t,n){let r=null;try{r=await this.api.getActiveVersion(t)}catch{r=null}let i=r&&r.version!==n?r.version:void 0;return await this.api.updateVersions(t,[{version:n,update:{alias:{set:"ACTIVE"}}}]),{supersededVersion:i}}async deploy(t,n,r,i,s,a,p=!1){console.log(`
2
+ import{a as o,e as Ne}from"../chunk-A5ASLC6T.js";import{writeSync as vi}from"fs";import{Command as xi}from"commander";var Ke="https://docs.cognite.com/cdf/access/";function k(e){return e!==null&&typeof e=="object"}o(k,"isRecord");function H(e){return e instanceof Error&&"status"in e&&typeof e.status=="number"}o(H,"isHttpError");function xr(e){switch(e){case 401:return`Your credentials are invalid or expired. Check your client ID and secret.
3
+ See: ${Ke}`;case 403:return`You don't have the required CDF capabilities. Please contact your CDF admin.
4
+ See: ${Ke}`;default:return}}o(xr,"httpStatusHint");function j(e){let t=e instanceof Error?e:new Error(String(e));if(!H(t))return null;let r=xr(t.status);return r?Object.assign(new Error(`${t.message}
5
+ ${r}`),{cause:t}):null}o(j,"enrichedHttpError");function Pr(e){if(!k(e))return null;let t=e.missing;if(Array.isArray(t))return t;let r=e.data;if(k(r)){let n=r.error;if(k(n)&&Array.isArray(n.missing))return n.missing;if(Array.isArray(r.missing))return r.missing}return null}o(Pr,"findMissingArray");function br(e,t){if(!H(e)||e.status!==400)return!1;let r=Pr(e);return r?r.some(n=>k(n)&&typeof n.externalId=="string"&&t.includes(n.externalId)):!1}o(br,"isMissingExternalIdError");function se(e,t){return H(e)&&e.status===404||br(e,t)}o(se,"isNotFoundError");var Me=["DRAFT","PUBLISHED","DEPRECATED","ARCHIVED"],Ve=["ACTIVE","PREVIEW"],ae=class ae extends Error{constructor(t,r){super(`Version ${r} of app ${t} not found`),this.name="AppVersionNotFoundError",this.appExternalId=t,this.version=r}};o(ae,"AppVersionNotFoundError");var C=ae;function He(e,t){return e.includes(t)}o(He,"includesValue");function Ar(e){return He(Me,e)}o(Ar,"isAppVersionLifecycleState");function kr(e){return He(Ve,e)}o(kr,"isAppVersionAlias");function Dr(e){return typeof e.version=="string"&&Ar(e.lifecycleState)&&typeof e.entrypoint=="string"&&typeof e.createdTime=="number"&&typeof e.createdBy=="string"&&typeof e.appExternalId=="string"&&(e.alias===void 0||kr(e.alias))&&(e.comment===void 0||typeof e.comment=="string")}o(Dr,"isAppVersion");function je(e){if(!k(e))throw new Error("Invalid version response: not an object");if(!Dr(e))throw new Error("Invalid version response: missing or malformed fields");return e}o(je,"parseAppVersion");var pe=class pe{constructor(t){this.client=t}get appsBasePath(){return`/api/v1/projects/${encodeURIComponent(this.client.project)}/apphosting/apps`}async createApp(t,r,n){try{await this.client.post(this.appsBasePath,{data:{items:[{externalId:t,name:r,description:n}]}})}catch(i){throw j(i)??i}}async uploadVersion(t,r,n,i,s="index.html"){console.log(`\u{1F4E4} Uploading version ${r}...`);let a=new FormData;a.append("file",new Blob([new Uint8Array(n)]),i),a.append("version",r),a.append("entryPath",s);let p=encodeURIComponent(t),c=`${this.appsBasePath}/${p}/versions`,l=await this.client.authenticate(),m=`${this.client.getBaseUrl()}${c}`,d=new AbortController,u=setTimeout(()=>d.abort(),300*1e3),f;try{f=await fetch(m,{method:"POST",headers:{Authorization:`Bearer ${l}`},body:a,signal:d.signal})}catch(g){throw g instanceof Error&&g.name==="AbortError"?new Error("Upload timed out after 5 minutes"):g}finally{clearTimeout(u)}if(!f.ok){let g=await f.text(),b=g;try{let U=JSON.parse(g);if(k(U)){let x=U.error;if(typeof x=="string")b=x;else if(k(x)){let A=x.message,y=x.code;b=typeof A=="string"?A:y!=null?`Unknown error (code: ${y})`:g}else{let A=U.message;b=typeof A=="string"?A:g}}}catch{}let v=f.headers.get("x-request-id"),Z=v?` | X-Request-ID: ${v}`:"",K=Object.assign(new Error(`Upload failed: ${f.status} \u2014 ${b}${Z}`),{status:f.status});throw j(K)??K}console.log(`\u2705 Version ${r} uploaded`)}async getVersion(t,r){let n=encodeURIComponent(t),i=encodeURIComponent(r),s=`${this.appsBasePath}/${n}/versions/${i}`;try{let a=await this.client.get(s);return je(a.data)}catch(a){throw se(a,[t,r])?new C(t,r):j(a)??a}}async getActiveVersion(t){let r=encodeURIComponent(t),n=`${this.appsBasePath}/${r}/active`;try{let i=await this.client.get(n);return je(i.data)}catch(i){if(se(i,[t]))return null;throw j(i)??i}}async updateVersions(t,r){let n=encodeURIComponent(t),i=`${this.appsBasePath}/${n}/versions/update`;try{await this.client.post(i,{data:{items:r}})}catch(s){throw j(s)??s}}};o(pe,"AppHostingApi");var ee=pe;var ce=class ce{constructor(t){this.api=new ee(t)}getVersion(t,r){return this.api.getVersion(t,r)}uploadVersion(t,r,n,i,s){return this.api.uploadVersion(t,r,n,i,s)}async ensureApp(t,r,n){console.log("\u{1F50D} Ensuring app exists...");try{await this.api.createApp(t,r,n),console.log(`\u2705 App '${t}' created`)}catch(i){if(H(i)&&i.status===409){console.log(`\u2705 App '${t}' already exists`);return}throw i}}async publishVersion(t,r){await this.api.updateVersions(t,[{version:r,update:{lifecycleState:{set:"PUBLISHED"}}}])}async publishAndActivate(t,r){console.log(`\u{1F680} Publishing and activating version ${r}...`),await this.api.updateVersions(t,[{version:r,update:{lifecycleState:{set:"PUBLISHED"},alias:{set:"ACTIVE"}}}]),console.log(`\u2705 Version ${r} is now PUBLISHED and ACTIVE`)}async activateVersion(t,r){let n=null;try{n=await this.api.getActiveVersion(t)}catch{n=null}let i=n&&n.version!==r?n.version:void 0;return await this.api.updateVersions(t,[{version:r,update:{alias:{set:"ACTIVE"}}}]),{supersededVersion:i}}async deploy(t,r,n,i,s,a,p=!1){console.log(`
6
6
  \u{1F680} Deploying application via App Hosting API...
7
- `);try{await this.ensureApp(t,n,r),await this.uploadVersion(t,i,s,a),p&&await this.publishAndActivate(t,i),console.log(`
8
- \u2705 Deployment successful!`)}catch(c){let l=c instanceof Error?c.message:String(c);throw Object.assign(new Error(`Deployment failed: ${l}`),{cause:c})}}};o(re,"AppHostingClient");var y=re;import{existsSync as Zt,readFileSync as Xt}from"fs";import{resolve as en}from"path";import{array as Bt,boolean as Mt,check as Ie,forward as $e,literal as Kt,maxLength as Gt,minLength as zt,nonEmpty as H,object as Oe,optional as R,picklist as qt,pipe as T,safeParse as Yt,string as v,url as Jt}from"valibot";var oe=T(v(),H("must not be empty")),ie=T(v(),H("must not be empty"),Gt(256,"must be 256 characters or fewer")),se=T(v(),H("must not be empty"),Jt("must be a valid URL")),ae=T(v(),H("must not be empty")),pe=T(v(),H("must not be empty")),Wt=T(Oe({org:ae,project:pe,baseUrl:se,deployClientId:R(v(),""),deploySecretName:R(v(),""),published:R(Mt(),!1),idpType:R(qt(["cdf","entra_id"]),"cdf"),tenantId:R(v())}),$e(Ie(e=>e.idpType!=="entra_id"||!!e.tenantId,'must be set when idpType is "entra_id"'),["tenantId"]),$e(Ie(e=>!e.deployClientId||!!e.deploySecretName,"must be set when deployClientId is set"),["deploySecretName"])),Qt=Oe({name:oe,externalId:ie,versionTag:T(v(),H("must not be empty")),description:R(v(),""),deployments:T(Bt(Wt),zt(1,"must contain at least one deployment")),infra:R(Kt("appsApi"))});function ce(e){let t=Yt(Qt,e);if(t.success)return t.output;let n=t.issues[0],r=n.path?.map(s=>s.key).join(".")??"",i=r?`"${r}" `:"";throw new Error(`app.json: ${i}${n.message}`)}o(ce,"validateAppConfig");function C(e,t={}){let{validator:n=ce,existsSync:r=Zt,readFileSync:i=Xt}=t,s=en(e,"app.json");if(!r(s))throw new Error("No app.json found in current directory. Make sure you're running this command from your app's root directory.");let a=i(s,"utf-8"),p;try{p=JSON.parse(a)}catch{throw new Error("Failed to parse app.json \u2014 check that it contains valid JSON.")}return n(p)}o(C,"loadAppConfig");import{CogniteClient as kn}from"@cognite/sdk";import{CogniteClient as an}from"@cognite/sdk";var tn=o(()=>{let e=process.env.DEPLOYMENT_SECRETS;if(!e)return{};try{let t=JSON.parse(e),n={};for(let[r,i]of Object.entries(t))if(typeof i=="string"){let s=r.toLowerCase().replace(/_/g,"-");n[s]=i}return n}catch(t){return console.error("Error parsing DEPLOYMENT_SECRETS:",t),{}}},"loadSecretsFromEnv"),nn=o(e=>{let t;if(process.env.DEPLOYMENT_SECRET&&(t=process.env.DEPLOYMENT_SECRET),t||(t=tn()[e]),t||(t=process.env[e]),!t)throw new Error(`Secret not found in environment: ${e}`);return t},"getSecretFromEnv"),rn=o(e=>{if(!e)return"";try{return new URL(e).hostname.replace(/\.cognitedata\.com$/,"")}catch{let t=e.replace(/^https?:\/\//,"");return t=t.split("/")[0],t=t.split(":")[0],t=t.replace(/\.cognitedata\.com$/,""),t}},"extractClusterFromUrl"),on=o(async(e,t)=>{let n=`Basic ${btoa(`${e}:${t}`)}`,r=await fetch("https://auth.cognite.com/oauth2/token",{method:"POST",headers:{Authorization:n,"Content-Type":"application/x-www-form-urlencoded"},body:new URLSearchParams({grant_type:"client_credentials"})});if(!r.ok){let s=await r.text();throw new Error(`Failed to get token from CDF: ${r.status} ${r.statusText}
9
- ${s}`)}let i=await r.json();if(!i.access_token)throw new Error("No access token returned from CDF authentication");return i.access_token},"getTokenCdf"),sn=o(async(e,t,n,r)=>{if(!r)throw new Error("Entra ID authentication requires 'baseUrl' to be set in deployment configuration");let i=rn(r);if(!i)throw new Error(`Entra ID authentication requires 'baseUrl' to be a valid CDF URL (e.g., https://cluster.cognitedata.com), got: ${r}`);let s=`https://login.microsoftonline.com/${n}/oauth2/v2.0/token`,a=`https://${i}.cognitedata.com/.default`,p=await fetch(s,{method:"POST",headers:{"Content-Type":"application/x-www-form-urlencoded"},body:new URLSearchParams({client_id:e,client_secret:t,scope:a,grant_type:"client_credentials"})});if(!p.ok){let l=await p.text();throw new Error(`Failed to get token from Entra ID: ${p.status} ${p.statusText}
10
- ${l}`)}let c=await p.json();if(!c.access_token)throw new Error("No access token returned from Entra ID authentication");return c.access_token},"getTokenEntra"),le=o(async(e,t=process.env)=>{if(t.COGNITE_TOKEN)return t.COGNITE_TOKEN;let{deployClientId:n,deploySecretName:r,idpType:i="cdf",tenantId:s,baseUrl:a}=e,p=nn(r);if(i==="entra_id"){if(!s)throw new Error("Entra ID authentication requires 'tenantId' in deployment configuration");return sn(n,p,s,a)}return on(n,p)},"getToken");var M=o(async(e,t,n=process.env)=>{let r=await le(e,n),i=n.COGNITE_BASE_URL??e.baseUrl,s=new an({appId:t,project:e.project,baseUrl:i,oidcTokenProvider:o(async()=>r,"oidcTokenProvider")});return await s.authenticate(),s},"getSdk");import fn from"os";import gn from"path";import yn from"open";import{buildAuthorizationUrl as hn,calculatePKCECodeChallenge as Cn,discovery as wn,None as vn,randomPKCECodeVerifier as bn,randomState as En}from"openid-client";import pn from"https";import{authorizationCodeGrant as cn}from"openid-client";function Ue(e){return e.replace(/[&<>"']/g,t=>({"&":"&amp;","<":"&lt;",">":"&gt;",'"':"&quot;","'":"&#39;"})[t]??t)}o(Ue,"escapeHtml");function de(e,t,n){let r=Ue(t),i=Ue(n);return`<html><body style="font-family: system-ui; padding: 40px; text-align: center;">
11
- <h1>${r}</h1><p>${i}</p><p>You can close this window.</p>${e==="success"?`<style>
7
+ `);try{await this.ensureApp(t,r,n),await this.uploadVersion(t,i,s,a),p&&await this.publishAndActivate(t,i),console.log(`
8
+ \u2705 Deployment successful!`)}catch(c){let l=c instanceof Error?c.message:String(c);throw Object.assign(new Error(`Deployment failed: ${l}`),{cause:c})}}};o(ce,"AppHostingClient");var h=ce;import{existsSync as Kr,readFileSync as jr}from"fs";import{resolve as Mr}from"path";import{array as Ir,boolean as Tr,check as Be,forward as Ge,literal as $r,maxLength as Fr,minLength as Or,nonEmpty as M,object as Ye,optional as D,picklist as Rr,pipe as I,safeParse as _r,string as E,url as Ur}from"valibot";var le=I(E(),M("must not be empty")),me=I(E(),M("must not be empty"),Fr(256,"must be 256 characters or fewer")),de=I(E(),M("must not be empty"),Ur("must be a valid URL")),ue=I(E(),M("must not be empty")),ge=I(E(),M("must not be empty")),Lr=I(Ye({org:ue,project:ge,baseUrl:de,deployClientId:D(E(),""),deploySecretName:D(E(),""),published:D(Tr(),!1),idpType:D(Rr(["cdf","entra_id"]),"cdf"),tenantId:D(E()),scope:D(E())}),Ge(Be(e=>e.idpType!=="entra_id"||!!e.tenantId,'must be set when idpType is "entra_id"'),["tenantId"]),Ge(Be(e=>!e.deployClientId||!!e.deploySecretName,"must be set when deployClientId is set"),["deploySecretName"])),Nr=Ye({name:le,externalId:me,versionTag:I(E(),M("must not be empty")),description:D(E(),""),deployments:I(Ir(Lr),Or(1,"must contain at least one deployment")),infra:D($r("appsApi"))});function fe(e){let t=_r(Nr,e);if(t.success)return t.output;let r=t.issues[0],n=r.path?.map(s=>s.key).join(".")??"",i=n?`"${n}" `:"";throw new Error(`app.json: ${i}${r.message}`)}o(fe,"validateAppConfig");function w(e,t={}){let{validator:r=fe,existsSync:n=Kr,readFileSync:i=jr}=t,s=Mr(e,"app.json");if(!n(s))throw new Error("No app.json found in current directory. Make sure you're running this command from your app's root directory.");let a=i(s,"utf-8"),p;try{p=JSON.parse(a)}catch{throw new Error("Failed to parse app.json \u2014 check that it contains valid JSON.")}return r(p)}o(w,"loadAppConfig");import{CogniteClient as dn}from"@cognite/sdk";import{CogniteClient as Jr}from"@cognite/sdk";var Vr=o(()=>{let e=process.env.DEPLOYMENT_SECRETS;if(!e)return{};try{let t=JSON.parse(e),r={};for(let[n,i]of Object.entries(t))if(typeof i=="string"){let s=n.toLowerCase().replace(/_/g,"-");r[s]=i}return r}catch(t){return console.error("Error parsing DEPLOYMENT_SECRETS:",t),{}}},"loadSecretsFromEnv"),Hr=o(e=>{let t;if(process.env.DEPLOYMENT_SECRET&&(t=process.env.DEPLOYMENT_SECRET),t||(t=Vr()[e]),t||(t=process.env[e]),!t)throw new Error(`Secret not found in environment: ${e}`);return t},"getSecretFromEnv"),Br=o(e=>{if(!e)return"";try{return new URL(e).hostname.replace(/\.cognitedata\.com$/,"")}catch{let t=e.replace(/^https?:\/\//,"");return t=t.split("/")[0],t=t.split(":")[0],t=t.replace(/\.cognitedata\.com$/,""),t}},"extractClusterFromUrl"),Gr=o(async(e,t)=>{let r=`Basic ${btoa(`${e}:${t}`)}`,n=await fetch("https://auth.cognite.com/oauth2/token",{method:"POST",headers:{Authorization:r,"Content-Type":"application/x-www-form-urlencoded"},body:new URLSearchParams({grant_type:"client_credentials"})});if(!n.ok){let s=await n.text();throw new Error(`Failed to get token from CDF: ${n.status} ${n.statusText}
9
+ ${s}`)}let i=await n.json();if(!i.access_token)throw new Error("No access token returned from CDF authentication");return i.access_token},"getTokenCdf"),Yr=o(async(e,t,r,n,i)=>{let s;if(i)s=i;else{if(!n)throw new Error("Entra ID authentication requires 'baseUrl' to be set in deployment configuration");let l=Br(n);if(!l)throw new Error(`Entra ID authentication requires 'baseUrl' to be a valid CDF URL (e.g., https://cluster.cognitedata.com), got: ${n}`);s=`https://${l}.cognitedata.com/.default`}let a=`https://login.microsoftonline.com/${r}/oauth2/v2.0/token`,p=await fetch(a,{method:"POST",headers:{"Content-Type":"application/x-www-form-urlencoded"},body:new URLSearchParams({client_id:e,client_secret:t,scope:s,grant_type:"client_credentials"})});if(!p.ok){let l=await p.text();throw new Error(`Failed to get token from Entra ID: ${p.status} ${p.statusText}
10
+ ${l}`)}let c=await p.json();if(!c.access_token)throw new Error("No access token returned from Entra ID authentication");return c.access_token},"getTokenEntra"),ye=o(async(e,t=process.env)=>{if(t.COGNITE_TOKEN)return t.COGNITE_TOKEN;let{deployClientId:r,deploySecretName:n,idpType:i="cdf",tenantId:s,baseUrl:a,scope:p}=e,c=Hr(n);if(i==="entra_id"){if(!s)throw new Error("Entra ID authentication requires 'tenantId' in deployment configuration");return Yr(r,c,s,a,p)}return Gr(r,c)},"getToken");var B=o(async(e,t,r=process.env)=>{let n=await ye(e,r),i=r.COGNITE_BASE_URL??e.baseUrl,s=new Jr({appId:t,project:e.project,baseUrl:i,oidcTokenProvider:o(async()=>n,"oidcTokenProvider")});return await s.authenticate(),s},"getSdk");import en from"os";import tn from"path";import rn from"open";import{buildAuthorizationUrl as nn,calculatePKCECodeChallenge as on,discovery as sn,None as an,randomPKCECodeVerifier as pn,randomState as cn}from"openid-client";import Xr from"https";import{authorizationCodeGrant as qr}from"openid-client";function Je(e){return e.replace(/[&<>"']/g,t=>({"&":"&amp;","<":"&lt;",">":"&gt;",'"':"&quot;","'":"&#39;"})[t]??t)}o(Je,"escapeHtml");function he(e,t,r){let n=Je(t),i=Je(r);return`<html><body style="font-family: system-ui; padding: 40px; text-align: center;">
11
+ <h1>${n}</h1><p>${i}</p><p>You can close this window.</p>${e==="success"?`<style>
12
12
  @keyframes checkmark {
13
13
  0% { transform: scale(0); }
14
14
  50% { transform: scale(1.2); }
@@ -16,28 +16,28 @@ ${l}`)}let c=await p.json();if(!c.access_token)throw new Error("No access token
16
16
  }
17
17
  h1 { animation: checkmark 0.5s ease-out; }
18
18
  </style>`:""}
19
- </body></html>`}o(de,"generateHtml");async function ln(e,t,n,r,i,s){let a=new URL(e.url??"/",`https://${e.headers.host??"localhost"}`);if(a.pathname!=="/")return t.writeHead(404),t.end("Not found"),{shouldClose:!1};try{console.log("\u{1F504} Exchanging authorization code for tokens...");let p=await s.authorizationCodeGrant(n,a,{pkceCodeVerifier:r,expectedState:i});return t.writeHead(200,{"Content-Type":"text/html"}),t.end(de("success","Login Successful!","You can close this window and return to the terminal.")),{shouldClose:!0,tokens:p}}catch(p){let c=p instanceof Error?p:new Error(String(p));return t.writeHead(400,{"Content-Type":"text/html"}),t.end(de("error","Authentication Error",c.message)),{shouldClose:!0,error:c}}}o(ln,"handleCallback");function dn(e){let t=e/6e4,n=Math.round(t*10)/10;return`${n} ${n===1?"minute":"minutes"}`}o(dn,"formatTimeoutMinutes");function Fe(e,t,n,r,i,s={createServer:pn.createServer,setTimeout:globalThis.setTimeout,clearTimeout:globalThis.clearTimeout,authorizationCodeGrant:cn}){return new Promise((a,p)=>{let c,l=s.setTimeout(()=>{c?.close(),p(new Error(`Login timeout - no response received within ${dn(e.loginTimeout)}`))},e.loginTimeout);c=s.createServer(t,async(d,m)=>{try{let u=await ln(d,m,n,r,i,s);u.shouldClose&&(s.clearTimeout(l),c?.close(),u.error?p(u.error):u.tokens?a(u.tokens):p(new Error("No tokens received")))}catch(u){s.clearTimeout(l),c?.close(),p(u instanceof Error?u:new Error(String(u)))}}),c.on("error",d=>{s.clearTimeout(l),d.code==="EADDRINUSE"?console.error(`\u274C Port ${e.port} is already in use.`):console.error(`\u274C Server error: ${d.message}`),p(d)}),c.listen(e.port,"127.0.0.1",()=>{console.log(`\u{1F310} Local HTTPS server started on https://localhost:${e.port}`)})})}o(Fe,"startCallbackServer");import{execFileSync as mn}from"child_process";import me from"fs";import je from"path";function Re(e,t,n){return{key:n.readFileSync(e),cert:n.readFileSync(t)}}o(Re,"loadCertificates");function un(e,t,n,r){console.log("\u{1F510} Generating self-signed certificate for HTTPS..."),r.existsSync(e)||r.mkdirSync(e,{recursive:!0});try{return r.execFileSync("openssl",["req","-x509","-newkey","rsa:2048","-nodes","-sha256","-subj","/CN=localhost","-keyout",t,"-out",n,"-days","365"],{stdio:["ignore","pipe","ignore"]}),console.log("\u2705 Certificate generated and saved locally"),Re(t,n,r)}catch{throw new Error(`Failed to generate self-signed certificate. Make sure openssl is installed.
19
+ </body></html>`}o(he,"generateHtml");async function zr(e,t,r,n,i,s){let a=new URL(e.url??"/",`https://${e.headers.host??"localhost"}`);if(a.pathname!=="/")return t.writeHead(404),t.end("Not found"),{shouldClose:!1};try{console.log("\u{1F504} Exchanging authorization code for tokens...");let p=await s.authorizationCodeGrant(r,a,{pkceCodeVerifier:n,expectedState:i});return t.writeHead(200,{"Content-Type":"text/html"}),t.end(he("success","Login Successful!","You can close this window and return to the terminal.")),{shouldClose:!0,tokens:p}}catch(p){let c=p instanceof Error?p:new Error(String(p));return t.writeHead(400,{"Content-Type":"text/html"}),t.end(he("error","Authentication Error",c.message)),{shouldClose:!0,error:c}}}o(zr,"handleCallback");function Wr(e){let t=e/6e4,r=Math.round(t*10)/10;return`${r} ${r===1?"minute":"minutes"}`}o(Wr,"formatTimeoutMinutes");function Xe(e,t,r,n,i,s={createServer:Xr.createServer,setTimeout:globalThis.setTimeout,clearTimeout:globalThis.clearTimeout,authorizationCodeGrant:qr}){return new Promise((a,p)=>{let c,l=s.setTimeout(()=>{c?.close(),p(new Error(`Login timeout - no response received within ${Wr(e.loginTimeout)}`))},e.loginTimeout);c=s.createServer(t,async(m,d)=>{try{let u=await zr(m,d,r,n,i,s);u.shouldClose&&(s.clearTimeout(l),c?.close(),u.error?p(u.error):u.tokens?a(u.tokens):p(new Error("No tokens received")))}catch(u){s.clearTimeout(l),c?.close(),p(u instanceof Error?u:new Error(String(u)))}}),c.on("error",m=>{s.clearTimeout(l),m.code==="EADDRINUSE"?console.error(`\u274C Port ${e.port} is already in use.`):console.error(`\u274C Server error: ${m.message}`),p(m)}),c.listen(e.port,"127.0.0.1",()=>{console.log(`\u{1F310} Local HTTPS server started on https://localhost:${e.port}`)})})}o(Xe,"startCallbackServer");import{execFileSync as Qr}from"child_process";import Ee from"fs";import qe from"path";function ze(e,t,r){return{key:r.readFileSync(e),cert:r.readFileSync(t)}}o(ze,"loadCertificates");function Zr(e,t,r,n){console.log("\u{1F510} Generating self-signed certificate for HTTPS..."),n.existsSync(e)||n.mkdirSync(e,{recursive:!0});try{return n.execFileSync("openssl",["req","-x509","-newkey","rsa:2048","-nodes","-sha256","-subj","/CN=localhost","-keyout",t,"-out",r,"-days","365"],{stdio:["ignore","pipe","ignore"]}),console.log("\u2705 Certificate generated and saved locally"),ze(t,r,n)}catch{throw new Error(`Failed to generate self-signed certificate. Make sure openssl is installed.
20
20
  On macOS: openssl is pre-installed
21
21
  On Linux: sudo apt-get install openssl
22
- On Windows: Install OpenSSL or use WSL`)}}o(un,"generateCertificate");function Le(e,t={existsSync:me.existsSync,readFileSync:o(n=>me.readFileSync(n),"readFileSync"),mkdirSync:o((n,r)=>{me.mkdirSync(n,r)},"mkdirSync"),execFileSync:mn}){let n=je.join(e,"localhost-key.pem"),r=je.join(e,"localhost-cert.pem");return t.existsSync(n)&&t.existsSync(r)?Re(n,r,t):un(e,n,r,t)}o(Le,"getOrCreateCertificates");var An={authority:"https://auth.cognite.com",clientId:"0404baaa-0a90-43a2-aba7-a110b53fb41c",redirectUri:"https://localhost:3000/",port:3e3,loginTimeout:300*1e3,certDir:gn.join(fn.homedir(),".cdf-login")},Sn={open:yn,getOrCreateCertificates:Le,startCallbackServer:Fe,discovery:wn,buildAuthorizationUrl:hn,randomPKCECodeVerifier:bn,calculatePKCECodeChallenge:Cn,randomState:En,logger:console};async function _e(e,t=An,n){return n===void 0?Ve(e,t,Sn):Ve(e,t,n)}o(_e,"login");async function Ve(e,t,n){n.logger.log(`\u{1F510} Starting CDF login flow...
23
- `),n.logger.log(`\u{1F4E1} Fetching OpenID configuration from ${t.authority}...`);let r=await n.discovery(new URL(t.authority),t.clientId,void 0,vn()),i=n.randomPKCECodeVerifier(),s=await n.calculatePKCECodeChallenge(i),a=n.randomState(),p={redirect_uri:t.redirectUri,scope:"openid profile email",code_challenge:s,code_challenge_method:"S256",state:a};e&&(p.organization_hint=e);let c=n.buildAuthorizationUrl(r,p).toString(),l=n.getOrCreateCertificates(t.certDir);e&&n.logger.log(`\u{1F3E2} Organization: ${e}`),n.logger.log(`\u{1F680} Opening browser for authentication...
24
- `);try{await n.open(c)}catch(d){let m=d instanceof Error?d.message:String(d);n.logger.error("\u274C Failed to open browser automatically."),n.logger.error(` Reason: ${m}`),n.logger.error(`Please open this URL manually:
25
- `),n.logger.error(c),n.logger.error("")}return n.startCallbackServer(t,l,r,i,a)}o(Ve,"loginImpl");async function D(e,t,n={}){let{login:r=_e,getSdk:i=M,createClient:s=o(a=>new kn(a),"createClient")}=n;if(t.interactive){let a=t.orgHint||e.org||void 0,p=await r(a),c=s({appId:t.appId,project:e.project,baseUrl:e.baseUrl,getToken:o(async()=>p.access_token,"getToken")});return await c.authenticate(),c}return i(e,t.appId)}o(D,"getClientForDeployment");import{existsSync as xn}from"fs";import{resolve as Pn}from"path";import{config as Tn}from"dotenv";function I(e,t={existsSync:xn,config:Tn}){let n=Pn(e,".env");t.existsSync(n)&&(console.log(`Loading environment variables from ${n}`),t.config({path:n}))}o(I,"loadEnvFile");import Ne from"enquirer";var He="Enter custom target...";function Be(e,t){let n=t.map((r,i)=>` ${i}: ${r.org}/${r.project}`).join(`
22
+ On Windows: Install OpenSSL or use WSL`)}}o(Zr,"generateCertificate");function We(e,t={existsSync:Ee.existsSync,readFileSync:o(r=>Ee.readFileSync(r),"readFileSync"),mkdirSync:o((r,n)=>{Ee.mkdirSync(r,n)},"mkdirSync"),execFileSync:Qr}){let r=qe.join(e,"localhost-key.pem"),n=qe.join(e,"localhost-cert.pem");return t.existsSync(r)&&t.existsSync(n)?ze(r,n,t):Zr(e,r,n,t)}o(We,"getOrCreateCertificates");var ln={authority:"https://auth.cognite.com",clientId:"0404baaa-0a90-43a2-aba7-a110b53fb41c",redirectUri:"https://localhost:3000/",port:3e3,loginTimeout:300*1e3,certDir:tn.join(en.homedir(),".cdf-login")},mn={open:rn,getOrCreateCertificates:We,startCallbackServer:Xe,discovery:sn,buildAuthorizationUrl:nn,randomPKCECodeVerifier:pn,calculatePKCECodeChallenge:on,randomState:cn,logger:console};async function Ze(e,t=ln,r){return r===void 0?Qe(e,t,mn):Qe(e,t,r)}o(Ze,"login");async function Qe(e,t,r){r.logger.log(`\u{1F510} Starting CDF login flow...
23
+ `),r.logger.log(`\u{1F4E1} Fetching OpenID configuration from ${t.authority}...`);let n=await r.discovery(new URL(t.authority),t.clientId,void 0,an()),i=r.randomPKCECodeVerifier(),s=await r.calculatePKCECodeChallenge(i),a=r.randomState(),p={redirect_uri:t.redirectUri,scope:"openid profile email",code_challenge:s,code_challenge_method:"S256",state:a};e&&(p.organization_hint=e);let c=r.buildAuthorizationUrl(n,p).toString(),l=r.getOrCreateCertificates(t.certDir);e&&r.logger.log(`\u{1F3E2} Organization: ${e}`),r.logger.log(`\u{1F680} Opening browser for authentication...
24
+ `);try{await r.open(c)}catch(m){let d=m instanceof Error?m.message:String(m);r.logger.error("\u274C Failed to open browser automatically."),r.logger.error(` Reason: ${d}`),r.logger.error(`Please open this URL manually:
25
+ `),r.logger.error(c),r.logger.error("")}return r.startCallbackServer(t,l,n,i,a)}o(Qe,"loginImpl");async function T(e,t,r={}){let{login:n=Ze,getSdk:i=B,createClient:s=o(a=>new dn(a),"createClient")}=r;if(t.interactive){let a=t.orgHint||e.org||void 0,p=await n(a),c=s({appId:t.appId,project:e.project,baseUrl:e.baseUrl,getToken:o(async()=>p.access_token,"getToken")});return await c.authenticate(),c}return i(e,t.appId)}o(T,"getClientForDeployment");import{existsSync as un}from"fs";import{resolve as gn}from"path";import{config as fn}from"dotenv";function $(e,t={existsSync:un,config:fn}){let r=gn(e,".env");t.existsSync(r)&&(console.log(`Loading environment variables from ${r}`),t.config({path:r}))}o($,"loadEnvFile");import et from"enquirer";var tt="Enter custom target...";function rt(e,t){let r=t.map((n,i)=>` ${i}: ${n.org}/${n.project}`).join(`
26
26
  `);throw new Error(`Deployment "${e}" not found. Available deployments:
27
- ${n}`)}o(Be,"deploymentNotFoundError");function S(e,t){if(e.length===0)throw new Error("No deployments configured in app.json");if(t===void 0)return e[0];if(/^\d+$/.test(t)){let r=e[Number.parseInt(t)];if(r)return r;Be(t,e)}let n=e.find(r=>r.project===t||`${r.org}/${r.project}`===t);if(n)return n;Be(t,e)}o(S,"findDeployment");function $(e){let t=[];return e.deployClientId||t.push("deployClientId"),e.deploySecretName||t.push("deploySecretName"),t}o($,"getMissingCredentials");async function O(e,t){if(t.baseUrl&&t.project)return{org:t.org??"",project:t.project,baseUrl:t.baseUrl,deployClientId:"",deploySecretName:"",published:!1,idpType:"cdf"};if(t.deployment!==void 0)return S(e.deployments,t.deployment);let n=[...e.deployments.map(s=>`${s.org}/${s.project}`),He],{selected:r}=await Ne.prompt({type:"select",name:"selected",message:"Select deployment target",choices:n});if(r!==He){let s=e.deployments.find(a=>`${a.org}/${a.project}`===r);if(s)return s;throw new Error(`Deployment "${r}" could not be resolved from app.json.`)}let i=await Ne.prompt([{type:"input",name:"baseUrl",message:"CDF Base URL",initial:"https://api.cognitedata.com"},{type:"input",name:"project",message:"CDF Project",validate:o(s=>s?!0:"Project is required","validate")},{type:"input",name:"org",message:"Organization (for login hint)",initial:""}]);return{org:i.org||"",project:i.project,baseUrl:i.baseUrl,deployClientId:"",deploySecretName:"",published:!1,idpType:"cdf"}}o(O,"resolveDeployment");function U(e){e.infra!=="appsApi"&&(console.error(`
27
+ ${r}`)}o(rt,"deploymentNotFoundError");function P(e,t){if(e.length===0)throw new Error("No deployments configured in app.json");if(t===void 0)return e[0];if(/^\d+$/.test(t)){let n=e[Number.parseInt(t)];if(n)return n;rt(t,e)}let r=e.find(n=>n.project===t||`${n.org}/${n.project}`===t);if(r)return r;rt(t,e)}o(P,"findDeployment");function F(e){let t=[];return e.deployClientId||t.push("deployClientId"),e.deploySecretName||t.push("deploySecretName"),t}o(F,"getMissingCredentials");async function O(e,t){if(t.baseUrl&&t.project)return{org:t.org??"",project:t.project,baseUrl:t.baseUrl,deployClientId:"",deploySecretName:"",published:!1,idpType:"cdf"};if(t.deployment!==void 0)return P(e.deployments,t.deployment);let r=[...e.deployments.map(s=>`${s.org}/${s.project}`),tt],{selected:n}=await et.prompt({type:"select",name:"selected",message:"Select deployment target",choices:r});if(n!==tt){let s=e.deployments.find(a=>`${a.org}/${a.project}`===n);if(s)return s;throw new Error(`Deployment "${n}" could not be resolved from app.json.`)}let i=await et.prompt([{type:"input",name:"baseUrl",message:"CDF Base URL",initial:"https://api.cognitedata.com"},{type:"input",name:"project",message:"CDF Project",validate:o(s=>s?!0:"Project is required","validate")},{type:"input",name:"org",message:"Organization (for login hint)",initial:""}]);return{org:i.org||"",project:i.project,baseUrl:i.baseUrl,deployClientId:"",deploySecretName:"",published:!1,idpType:"cdf"}}o(O,"resolveDeployment");function R(e){e.infra!=="appsApi"&&(console.error(`
28
28
  \u26A0\uFE0F Legacy infrastructure is no longer supported.
29
29
 
30
30
  Your app.json is missing \`"infra": "appsApi"\`, which means it was created for
31
31
  the old CDF Application Registry. This deploy path has been removed.
32
32
 
33
33
  To migrate: add \`"infra": "appsApi"\` to your app.json, wire up the correct authentication and re-deploy.
34
- `),process.exit(1))}o(U,"assertAppHostingInfra");async function Dn(e){let t=process.cwd();I(t);let n=C(t);U(n);let r=e.interactive?await O(n,e):S(n.deployments,e.deployment);if(!e.interactive){let d=$(r);if(d.length>0)throw new Error(`Deployment ${r.org}/${r.project} is missing ${d.join(" and ")} in app.json. Use \`dune apps activate --interactive\` for browser-based authentication instead.`)}let i=await D(r,{interactive:e.interactive,appId:n.externalId,orgHint:e.org}),s=new y(i),{externalId:a,versionTag:p}=n,c;try{c=await s.getVersion(a,p)}catch(d){throw d instanceof w?new Error(`Version ${p} of ${a} has not been deployed yet. Run \`npx @cognite/cli apps deploy\` first.`):d}if(c.alias==="ACTIVE"){console.log(` ${a} @ ${p} is already ACTIVE \u2014 nothing to do.`);return}if(c.lifecycleState==="DEPRECATED"||c.lifecycleState==="ARCHIVED")throw new Error(`Cannot activate ${a} @ ${p}: version is ${c.lifecycleState} (terminal).`);c.lifecycleState==="DRAFT"&&(await s.publishVersion(a,p),console.log(`\u2713 Published ${a} @ ${p} is now PUBLISHED`));let{supersededVersion:l}=await s.activateVersion(a,p);console.log(`\u2713 Activated ${a} @ ${p} is now ACTIVE`),l&&console.log(` Superseded ${l} \u2192 PUBLISHED`)}o(Dn,"handleActivate");function Me(e){return e.command("activate").description("Activate the current app version (publish if needed, then set ACTIVE alias)").argument("[path]","Path to the app folder (only `.` is currently supported)",".").option("-d, --deployment <target>","Deployment target from app.json (index or name)").option("--interactive","Use browser-based authentication instead of env-var credentials",!1).option("--base-url <url>","CDF base URL (only with --interactive)").option("--project <project>","CDF project name (only with --interactive)").option("--org <org>","Organization hint for login (only with --interactive)").addHelpText("after",`
34
+ `),process.exit(1))}o(R,"assertAppHostingInfra");async function yn(e){let t=process.cwd();$(t);let r=w(t);R(r);let n=e.interactive?await O(r,e):P(r.deployments,e.deployment);if(!e.interactive){let m=F(n);if(m.length>0)throw new Error(`Deployment ${n.org}/${n.project} is missing ${m.join(" and ")} in app.json. Use \`dune apps activate --interactive\` for browser-based authentication instead.`)}let i=await T(n,{interactive:e.interactive,appId:r.externalId,orgHint:e.org}),s=new h(i),{externalId:a,versionTag:p}=r,c;try{c=await s.getVersion(a,p)}catch(m){throw m instanceof C?new Error(`Version ${p} of ${a} has not been deployed yet. Run \`npx @cognite/cli apps deploy\` first.`):m}if(c.alias==="ACTIVE"){console.log(` ${a} @ ${p} is already ACTIVE \u2014 nothing to do.`);return}if(c.lifecycleState==="DEPRECATED"||c.lifecycleState==="ARCHIVED")throw new Error(`Cannot activate ${a} @ ${p}: version is ${c.lifecycleState} (terminal).`);c.lifecycleState==="DRAFT"&&(await s.publishVersion(a,p),console.log(`\u2713 Published ${a} @ ${p} is now PUBLISHED`));let{supersededVersion:l}=await s.activateVersion(a,p);console.log(`\u2713 Activated ${a} @ ${p} is now ACTIVE`),l&&console.log(` Superseded ${l} \u2192 PUBLISHED`)}o(yn,"handleActivate");function nt(e){return e.command("activate").description("Activate the current app version (publish if needed, then set ACTIVE alias)").argument("[path]","Path to the app folder (only `.` is currently supported)",".").option("-d, --deployment <target>","Deployment target from app.json (index or name)").option("--interactive","Use browser-based authentication instead of env-var credentials",!1).option("--base-url <url>","CDF base URL (only with --interactive)").option("--project <project>","CDF project name (only with --interactive)").option("--org <org>","Organization hint for login (only with --interactive)").addHelpText("after",`
35
35
  Examples:
36
36
  npx @cognite/cli apps activate . Activate using env-var auth
37
- npx @cognite/cli apps activate . --interactive Activate using browser auth (no secrets needed)`).action((t,n)=>Dn(n))}o(Me,"registerActivateCommand");import{readdirSync as Bn}from"fs";import{basename as Xe,dirname as Mn,normalize as Kn,resolve as G}from"path";import{fileURLToPath as Gn,pathToFileURL as zn}from"url";import{Logger as qn,runner as Yn}from"hygen";import{safeParse as In}from"valibot";function K(e,t){return n=>{let r=In(t,n);return r.success?!0:`${e} ${r.issues[0].message}`}}o(K,"toPromptValidator");var Ke={name:K("App name",ie),displayName:K("Display name",oe),baseUrl:K("Base URL",se),org:K("Org",ae),project:K("Project",pe)};function $n(e,t){return e?async n=>{let r=t(n);return r===!0?e(n):r}:t}o($n,"composeValidators");function W(e){return e.map(t=>{if(!(t.name in Ke))return t;let n=Ke[t.name];return{...t,validate:$n(t.validate,n)}})}o(W,"applySchemaValidators");import{basename as ze}from"path";import qe from"enquirer";function Ge(e){return e.replace(/[A-Z]/g,(t,n)=>n===0?t.toLowerCase():`-${t.toLowerCase()}`)}o(Ge,"kebabCase");var On={type:"confirm",name:"useSpecKit",message:["Enable spec-driven development?"," Adds the github/spec-kit slash commands (/speckit.specify, .clarify, .plan, .tasks, .implement)"," to your app for use in Claude Code or Cursor. They walk you through writing SPEC.md and"," generating a plan, tasks, and implementation."].join(`
38
- `),initial:!1};async function Un(e){return!!(await e([On])).useSpecKit}o(Un,"promptForSpecKit");async function Fn(e,t,n){return e!==void 0?e:t?Un(n):!1}o(Fn,"resolveSpecKit");function Ye({isCurrentDir:e,dirName:t,onAppName:n,onUseSpecKit:r,presets:i={},specKit:s,prompt:a=qe.prompt.bind(qe)}){return()=>({prompt:o(async p=>{if(!Array.isArray(p))return a([p]);let c=Object.fromEntries(Object.entries(i).filter(g=>g[1]!==void 0)),l=Object.keys(c).length>0,d=e?ze(process.cwd()):t?ze(t):null,m=l&&d!==null,u=!m&&d?p.map(g=>g.name==="name"?{...g,initial:d}:g):p,h=W(u),f=m?{...c,name:d}:c,k=new Set(Object.keys(f)),E=h.filter(g=>!k.has(g.name)),Y=E.findIndex(g=>g.name==="baseUrl"),_;if(Y!==-1){let g=E.filter(jt=>jt.name!=="baseUrl"),X=g.length>0?await a(g):{},It=typeof X.cluster=="string"?X.cluster:"",$t=typeof f.cluster=="string"?f.cluster:"",Ot=`https://${(It||$t).trim().replace(/\/+$/,"")||"api"}.cognitedata.com`,Ut=E[Y],Ft=await a([{...Ut,initial:Ot}]);_={...X,...Ft}}else _=E.length>0?await a(E):{};let j={...f,..._},A=typeof j.name=="string"?j.name:"";A&&n(A);let x=await Fn(s,E.length>0,a);return r?.(x),{...j,name:A,useCurrentDir:e,directoryName:e?void 0:t??void 0,useSpecKit:x}},"prompt")})}o(Ye,"createAppPrompter");async function Je(e,t,n){let r=[];Object.values(t).some(s=>s!==void 0)&&n!==null&&r.push({key:"name",value:n,label:"directory"});for(let[s,a]of Object.entries(t))a!==void 0&&r.push({key:s,value:a,label:`--${Ge(s)}`});for(let{key:s,value:a,label:p}of r){let c=e.find(d=>d.name===s)?.validate;if(!c)continue;let l=await c(a);if(l!==!0)throw new Error(`Invalid ${p}: ${l}`)}}o(Je,"validatePresets");import{cpSync as Rn,mkdirSync as We,writeFileSync as Ln}from"fs";import{dirname as Qe,resolve as L}from"path";import{fileURLToPath as Vn}from"url";import{symlinkSync as jn}from"fs";function Q({target:e,linkPath:t,label:n,symlink:r=jn}){try{return r(e,t),!0}catch(i){if(i instanceof Error&&"code"in i&&i.code==="EEXIST")return!0;let s=i instanceof Error?i.message:String(i);return console.warn(`\u26A0\uFE0F Could not create ${n} symlink:`,s),!1}}o(Q,"symlinkOrWarn");var _n=L(Qe(Vn(import.meta.url)),"..","..","_vendor","spec-kit"),Nn={branch_numbering:"sequential"},Hn=[{from:"templates",to:".specify/templates"},{from:"scripts/bash",to:".specify/scripts/bash"},{from:"commands",to:".claude/commands"},{from:"commands",to:".cursor/commands"}];function Ze({appDir:e,vendorDir:t=_n}){let n=L(e,".specify"),r=L(n,"memory"),i=`prepare spec-kit install for appDir=${e}`;try{for(let{from:s,to:a}of Hn){let p=L(e,a);i=`copy ${s} to ${a}`,We(Qe(p),{recursive:!0}),Rn(L(t,s),p,{recursive:!0})}i=`write init-options.json under specifyDir=${n}`,Ln(L(n,"init-options.json"),`${JSON.stringify(Nn,null,2)}
39
- `),i=`link .specify/memory/constitution.md in specifyDir=${n}`,We(r,{recursive:!0}),Q({target:"../../AGENTS.md",linkPath:L(r,"constitution.md"),label:".specify/memory/constitution.md"})}catch(s){let a=s instanceof Error?s.message:String(s);throw new Error(`installSpecKit failed while ${i} (appDir=${e}, vendorDir=${t}): ${a}`,{cause:s})}}o(Ze,"installSpecKit");var et=G(Mn(Gn(import.meta.url)),"..","..","_templates");async function Jn(){let e=G(et,"app","new","prompt.js");return(await import(zn(e).href)).default}o(Jn,"loadPromptDefs");function Wn(e,t){return!e||t?null:Kn(e)}o(Wn,"resolveDirName");function Qn(e,t,n){if(e)return{cwd:process.cwd(),display:"."};let r=t??n;if(!r)throw new Error("App creation completed without a target directory or name.");return{cwd:G(process.cwd(),r),display:r}}o(Qn,"resolveAppLocation");function Zn(e,t,n){let r=` npm install
40
- npm run dev`,i="To deploy your app:",s="npx @cognite/cli apps deploy --interactive",a=n?`
37
+ npx @cognite/cli apps activate . --interactive Activate using browser auth (no secrets needed)`).action((t,r)=>yn(r))}o(nt,"registerActivateCommand");import{readdirSync as In}from"fs";import{basename as ut,dirname as Tn,normalize as $n,resolve as Y}from"path";import{fileURLToPath as Fn,pathToFileURL as On}from"url";import{Logger as Rn,runner as _n}from"hygen";import{safeParse as hn}from"valibot";function G(e,t){return r=>{let n=hn(t,r);return n.success?!0:`${e} ${n.issues[0].message}`}}o(G,"toPromptValidator");var ot={name:G("App name",me),displayName:G("Display name",le),baseUrl:G("Base URL",de),org:G("Org",ue),project:G("Project",ge)};function En(e,t){return e?async r=>{let n=t(r);return n===!0?e(r):n}:t}o(En,"composeValidators");function te(e){return e.map(t=>{if(!(t.name in ot))return t;let r=ot[t.name];return{...t,validate:En(t.validate,r)}})}o(te,"applySchemaValidators");import{basename as st}from"path";import at from"enquirer";function it(e){return e.replace(/[A-Z]/g,(t,r)=>r===0?t.toLowerCase():`-${t.toLowerCase()}`)}o(it,"kebabCase");var wn={type:"confirm",name:"useSpecKit",message:["Enable spec-driven development?"," Adds the github/spec-kit slash commands (/speckit.specify, .clarify, .plan, .tasks, .implement)"," to your app for use in Claude Code or Cursor. They walk you through writing SPEC.md and"," generating a plan, tasks, and implementation."].join(`
38
+ `),initial:!1};async function Cn(e){return!!(await e([wn])).useSpecKit}o(Cn,"promptForSpecKit");async function Sn(e,t,r){return e!==void 0?e:t?Cn(r):!1}o(Sn,"resolveSpecKit");function pt({isCurrentDir:e,dirName:t,onAppName:r,onUseSpecKit:n,presets:i={},specKit:s,prompt:a=at.prompt.bind(at)}){return()=>({prompt:o(async p=>{if(!Array.isArray(p))return a([p]);let c=Object.fromEntries(Object.entries(i).filter(y=>y[1]!==void 0)),l=Object.keys(c).length>0,m=e?st(process.cwd()):t?st(t):null,d=l&&m!==null,u=!d&&m?p.map(y=>y.name==="name"?{...y,initial:m}:y):p,f=te(u),g=d?{...c,name:m}:c,b=new Set(Object.keys(g)),v=f.filter(y=>!b.has(y.name)),Z=v.findIndex(y=>y.name==="baseUrl"),K;if(Z!==-1){let y=v.filter(vr=>vr.name!=="baseUrl"),ie=y.length>0?await a(y):{},hr=typeof ie.cluster=="string"?ie.cluster:"",Er=typeof g.cluster=="string"?g.cluster:"",wr=`https://${(hr||Er).trim().replace(/\/+$/,"")||"api"}.cognitedata.com`,Cr=v[Z],Sr=await a([{...Cr,initial:wr}]);K={...ie,...Sr}}else K=v.length>0?await a(v):{};let U={...g,...K},x=typeof U.name=="string"?U.name:"";x&&r(x);let A=await Sn(s,v.length>0,a);return n?.(A),{...U,name:x,useCurrentDir:e,directoryName:e?void 0:t??void 0,useSpecKit:A}},"prompt")})}o(pt,"createAppPrompter");async function ct(e,t,r){let n=[];Object.values(t).some(s=>s!==void 0)&&r!==null&&n.push({key:"name",value:r,label:"directory"});for(let[s,a]of Object.entries(t))a!==void 0&&n.push({key:s,value:a,label:`--${it(s)}`});for(let{key:s,value:a,label:p}of n){let c=e.find(m=>m.name===s)?.validate;if(!c)continue;let l=await c(a);if(l!==!0)throw new Error(`Invalid ${p}: ${l}`)}}o(ct,"validatePresets");import{cpSync as xn,mkdirSync as lt,writeFileSync as Pn}from"fs";import{dirname as mt,resolve as L}from"path";import{fileURLToPath as bn}from"url";import{symlinkSync as vn}from"fs";function re({target:e,linkPath:t,label:r,symlink:n=vn}){try{return n(e,t),!0}catch(i){if(i instanceof Error&&"code"in i&&i.code==="EEXIST")return!0;let s=i instanceof Error?i.message:String(i);return console.warn(`\u26A0\uFE0F Could not create ${r} symlink:`,s),!1}}o(re,"symlinkOrWarn");var An=L(mt(bn(import.meta.url)),"..","..","_vendor","spec-kit"),kn={branch_numbering:"sequential"},Dn=[{from:"templates",to:".specify/templates"},{from:"scripts/bash",to:".specify/scripts/bash"},{from:"commands",to:".claude/commands"},{from:"commands",to:".cursor/commands"}];function dt({appDir:e,vendorDir:t=An}){let r=L(e,".specify"),n=L(r,"memory"),i=`prepare spec-kit install for appDir=${e}`;try{for(let{from:s,to:a}of Dn){let p=L(e,a);i=`copy ${s} to ${a}`,lt(mt(p),{recursive:!0}),xn(L(t,s),p,{recursive:!0})}i=`write init-options.json under specifyDir=${r}`,Pn(L(r,"init-options.json"),`${JSON.stringify(kn,null,2)}
39
+ `),i=`link .specify/memory/constitution.md in specifyDir=${r}`,lt(n,{recursive:!0}),re({target:"../../AGENTS.md",linkPath:L(n,"constitution.md"),label:".specify/memory/constitution.md"})}catch(s){let a=s instanceof Error?s.message:String(s);throw new Error(`installSpecKit failed while ${i} (appDir=${e}, vendorDir=${t}): ${a}`,{cause:s})}}o(dt,"installSpecKit");var gt=Y(Tn(Fn(import.meta.url)),"..","..","_templates");async function Un(){let e=Y(gt,"app","new","prompt.js");return(await import(On(e).href)).default}o(Un,"loadPromptDefs");function Ln(e,t){return!e||t?null:$n(e)}o(Ln,"resolveDirName");function Nn(e,t,r){if(e)return{cwd:process.cwd(),display:"."};let n=t??r;if(!n)throw new Error("App creation completed without a target directory or name.");return{cwd:Y(process.cwd(),n),display:n}}o(Nn,"resolveAppLocation");function Kn(e,t,r){let n=` npm install
40
+ npm run dev`,i="To deploy your app:",s="npx @cognite/cli apps deploy --interactive",a=r?`
41
41
  To start spec-driven development:
42
42
  Run /speckit.specify in Claude Code or Cursor and describe your app.
43
43
  `:"",p=` # Or fully non-interactive (deploys first target from app.json):
@@ -45,7 +45,7 @@ To start spec-driven development:
45
45
  \u2705 App created successfully in current directory!
46
46
 
47
47
  Next steps:
48
- ${r}
48
+ ${n}
49
49
  ${a}
50
50
  ${i}
51
51
  ${s}
@@ -57,14 +57,14 @@ To open in Cursor:
57
57
  cursor "${t}"
58
58
  Or:
59
59
  cd "${t}"
60
- ${r}
60
+ ${n}
61
61
  ${a}
62
62
  ${i}
63
63
  cd "${t}"
64
64
  ${s}
65
65
  ${p}
66
- `)}o(Zn,"printSuccessMessage");async function Xn(e){try{let{execSkillsCli:t,pullAllArgs:n}=await import("../skills-GQ5TZKCM.js");console.log("\u{1F9E0} Pulling skills into your app..."),t(n(),{cwd:e,timeout:3e4,stdio:["pipe","pipe","inherit"]});let r=G(e,".agents","skills"),i=0;try{i=Bn(r).length}catch{console.warn(`Skills directory not found after pull \u2014 no skills may have been installed (expected: ${r})`)}let s=i>0?`${i} skills`:"skills";console.log(`\u2705 Installed ${s} successfully to
67
- ${r}`)}catch(t){let n=t instanceof Error?t.message:String(t);console.warn("\u26A0\uFE0F Could not pull skills:",n)}}o(Xn,"pullSkillsInto");async function er(e,t){let n=e==="."||e==="./",r=Wn(e,n),i=null,s=!1,a={displayName:t.displayName,description:t.description,org:t.org,project:t.project,cluster:t.cluster,baseUrl:t.baseUrl},p=await Jn(),c=W(p),l=n?Xe(process.cwd()):r?Xe(r):null;await Je(c,a,l);let d=Ye({isCurrentDir:n,dirName:r,onAppName:o(u=>{i=u},"onAppName"),onUseSpecKit:o(u=>{s=u},"onUseSpecKit"),presets:a,specKit:t.specKit});await Yn(["app","new"],{templates:et,cwd:process.cwd(),logger:new qn(console.log.bind(console)),createPrompter:d,debug:!!process.env.DEBUG});let m=Qn(n,r,i);Q({target:"AGENTS.md",linkPath:G(m.cwd,"CLAUDE.md"),label:"CLAUDE.md"}),s&&Ze({appDir:m.cwd}),Zn(n,m.display,s),await Xn(m.cwd)}o(er,"handleCreate");function tt(e){return e.command("create").description("Create a new application.").argument("[directory]","Target directory (. for current, or subdirectory name)").option("--display-name <name>","App display name (skips the prompt)").option("--description <description>","App description (skips the prompt)").option("--org <org>","Deployment org (skips the prompt)").option("--project <project>","Deployment project (skips the prompt)").option("--cluster <cluster>","CDF cluster, e.g. greenfield (skips the prompt)").option("--base-url <url>","CDF base URL, e.g. https://greenfield.cognitedata.com (skips the prompt; defaults to cluster-derived URL when omitted)").option("--spec-kit","Install spec-kit slash commands (skips the prompt)").option("--no-spec-kit","Skip spec-kit installation (skips the prompt)").addHelpText("after",`
66
+ `)}o(Kn,"printSuccessMessage");async function jn(e){try{let{execSkillsCli:t,pullAllArgs:r}=await import("../skills-GQ5TZKCM.js");console.log("\u{1F9E0} Pulling skills into your app..."),t(r(),{cwd:e,timeout:3e4,stdio:["pipe","pipe","inherit"]});let n=Y(e,".agents","skills"),i=0;try{i=In(n).length}catch{console.warn(`Skills directory not found after pull \u2014 no skills may have been installed (expected: ${n})`)}let s=i>0?`${i} skills`:"skills";console.log(`\u2705 Installed ${s} successfully to
67
+ ${n}`)}catch(t){let r=t instanceof Error?t.message:String(t);console.warn("\u26A0\uFE0F Could not pull skills:",r)}}o(jn,"pullSkillsInto");async function Mn(e,t){let r=e==="."||e==="./",n=Ln(e,r),i=null,s=!1,a={displayName:t.displayName,description:t.description,org:t.org,project:t.project,cluster:t.cluster,baseUrl:t.baseUrl},p=await Un(),c=te(p),l=r?ut(process.cwd()):n?ut(n):null;await ct(c,a,l);let m=pt({isCurrentDir:r,dirName:n,onAppName:o(u=>{i=u},"onAppName"),onUseSpecKit:o(u=>{s=u},"onUseSpecKit"),presets:a,specKit:t.specKit});await _n(["app","new"],{templates:gt,cwd:process.cwd(),logger:new Rn(console.log.bind(console)),createPrompter:m,debug:!!process.env.DEBUG});let d=Nn(r,n,i);re({target:"AGENTS.md",linkPath:Y(d.cwd,"CLAUDE.md"),label:"CLAUDE.md"}),s&&dt({appDir:d.cwd}),Kn(r,d.display,s),await jn(d.cwd)}o(Mn,"handleCreate");function ft(e){return e.command("create").description("Create a new application.").argument("[directory]","Target directory (. for current, or subdirectory name)").option("--display-name <name>","App display name (skips the prompt)").option("--description <description>","App description (skips the prompt)").option("--org <org>","Deployment org (skips the prompt)").option("--project <project>","Deployment project (skips the prompt)").option("--cluster <cluster>","CDF cluster, e.g. greenfield (skips the prompt)").option("--base-url <url>","CDF base URL, e.g. https://greenfield.cognitedata.com (skips the prompt; defaults to cluster-derived URL when omitted)").option("--spec-kit","Install spec-kit slash commands (skips the prompt)").option("--no-spec-kit","Skip spec-kit installation (skips the prompt)").addHelpText("after",`
68
68
  Non-interactive use (CI, scripts, AI agents):
69
69
  Pass [directory] plus --display-name, --description, --org, --project, --cluster, --base-url
70
70
  to skip every prompt. Missing flags fall back to the interactive prompt.
@@ -77,14 +77,14 @@ Examples:
77
77
  --display-name "My App" --description "My app" \\
78
78
  --org cog-atlas --project atlas-greenfield --cluster greenfield \\
79
79
  --base-url https://greenfield.cognitedata.com
80
- Fully non-interactive`).action(er)}o(tt,"registerCreateCommand");import{readFile as ar,unlink as pr}from"fs/promises";import{basename as cr}from"path";import rt from"fs";import ir from"path";import F from"fs";import b from"path";import{parseAndValidateManifestConfig as tr}from"@cognite/app-sdk/vite";import{BlobReader as nr,Uint8ArrayWriter as rr,ZipWriter as or}from"@zip.js/zip.js";var ue="package.json",fe="package-lock.json",nt="manifest.json",ge=class ge{constructor(t="dist",n={}){this.distPath=b.isAbsolute(t)?t:b.join(process.cwd(),t),this.appRoot=b.dirname(this.distPath),this.requireLockFile=n.requireLockFile??!1}validateBuildDirectory(){if(!F.existsSync(this.distPath))throw new Error(`Build directory "${this.distPath}" not found. Run build first.`);let t=b.join(this.appRoot,ue);if(!F.existsSync(t))throw new Error(`"${t}" not found. It is required for deployment.`);if(this.requireLockFile){let n=b.join(this.appRoot,fe);if(!F.existsSync(n))throw new Error(`"${n}" not found. It is required for deployment.`)}}async createZip(t="app.zip",n=!1){this.validateBuildDirectory(),console.log("\u{1F4E6} Packaging application...");let r=new or(new rr,{level:9}),i=o(async(c,l)=>{await r.add(l,new nr(await F.openAsBlob(c))),n&&console.log(` \u{1F4C4} ${l}`)},"addFile"),s=o(async c=>{let l=await F.promises.readdir(c,{withFileTypes:!0});for(let d of l){let m=b.join(c,d.name);d.isDirectory()?await s(m):await i(m,b.relative(this.distPath,m).replace(/\\/g,"/"))}},"addDir"),a;try{await s(this.distPath),await i(b.join(this.appRoot,ue),ue);let c=b.join(this.appRoot,nt);if(F.existsSync(c)){let l=F.readFileSync(c,"utf-8");tr(l,c),await i(c,nt)}this.requireLockFile&&await i(b.join(this.appRoot,fe),fe),a=await r.close()}catch(c){let l=c instanceof Error?c.message:String(c);throw new Error(`Failed to create zip: ${l}`)}await F.promises.writeFile(t,a);let p=(a.byteLength/1024/1024).toFixed(2);return console.log(`\u2705 App packaged: ${t} (${p} MB)`),t}};o(ge,"ApplicationPackager");var V=ge;var ye=o(async(e,t,n)=>{let r=await new V(`${n}/dist`,{requireLockFile:!0}).createZip("app.zip",!0);try{let{externalId:i,name:s,description:a,versionTag:p}=t,c=await M(e,n),l=new y(c),d=rt.readFileSync(r),m=ir.basename(r);await l.deploy(i,s,a,p,d,m,e.published)}finally{try{rt.unlinkSync(r)}catch{}}},"deploy");import{execSync as sr}from"child_process";function he(e,t=!0,n={execSync:sr}){console.log("\u{1F4E6} Building app with npm..."),n.execSync("npm run build",{cwd:e,stdio:t?"inherit":"pipe"}),console.log("\u2705 Build successful")}o(he,"buildApp");function ot(e,t){let{org:n,project:r,baseUrl:i}=e,s;try{s=new URL(i).hostname}catch{return null}let{externalId:a,versionTag:p}=t,c=new URLSearchParams({cluster:s,customAppVersion:p,workspace:"industrial-tools"});return`https://${n}.fusion.cognite.com/${r}/flows-apps/app/${encodeURIComponent(a)}?${c}`}o(ot,"generateFusionUrl");function it(e,t,n){let r=n?"\u{1F680} Deploy (Interactive)":"\u{1F680} Deploy",i=n?`${t.project} @ ${t.baseUrl}`:`${t.org}/${t.project}`;console.log(["",r,"=".repeat(r.length),`App: ${e.name} (${e.externalId})`,`Version: ${e.versionTag}`,`Target: ${i}`,""].join(`
81
- `))}o(it,"printDeployInfo");function st(e,t){console.log(`
82
- \u2705 Successfully deployed ${e.name} version ${e.versionTag} to ${t.org?`${t.org}/`:""}${t.project}`),console.log("\u{1F512} App is deployed in draft mode");let n=e.deployments.length>1?` -d ${t.project}`:"";console.log(`
83
- To publish: npx @cognite/cli apps publish .${n}`),console.log(`To activate: npx @cognite/cli apps activate .${n}`);let r=ot(t,e);r&&console.log(`
80
+ Fully non-interactive`).action(Mn)}o(ft,"registerCreateCommand");import{readFile as Xn,unlink as qn}from"fs/promises";import{basename as zn}from"path";import ht from"fs";import Yn from"path";import _ from"fs";import S from"path";import{parseAndValidateManifestConfig as Vn}from"@cognite/app-sdk/vite";import{BlobReader as Hn,Uint8ArrayWriter as Bn,ZipWriter as Gn}from"@zip.js/zip.js";var we="package.json",Ce="package-lock.json",yt="manifest.json",Se=class Se{constructor(t="dist",r={}){this.distPath=S.isAbsolute(t)?t:S.join(process.cwd(),t),this.appRoot=S.dirname(this.distPath),this.requireLockFile=r.requireLockFile??!1}validateBuildDirectory(){if(!_.existsSync(this.distPath))throw new Error(`Build directory "${this.distPath}" not found. Run build first.`);let t=S.join(this.appRoot,we);if(!_.existsSync(t))throw new Error(`"${t}" not found. It is required for deployment.`);if(this.requireLockFile){let r=S.join(this.appRoot,Ce);if(!_.existsSync(r))throw new Error(`"${r}" not found. It is required for deployment.`)}}async createZip(t="app.zip",r=!1){this.validateBuildDirectory(),console.log("\u{1F4E6} Packaging application...");let n=new Gn(new Bn,{level:9}),i=o(async(c,l)=>{await n.add(l,new Hn(await _.openAsBlob(c))),r&&console.log(` \u{1F4C4} ${l}`)},"addFile"),s=o(async c=>{let l=await _.promises.readdir(c,{withFileTypes:!0});for(let m of l){let d=S.join(c,m.name);m.isDirectory()?await s(d):await i(d,S.relative(this.distPath,d).replace(/\\/g,"/"))}},"addDir"),a;try{await s(this.distPath),await i(S.join(this.appRoot,we),we);let c=S.join(this.appRoot,yt);if(_.existsSync(c)){let l=_.readFileSync(c,"utf-8");Vn(l,c),await i(c,yt)}this.requireLockFile&&await i(S.join(this.appRoot,Ce),Ce),a=await n.close()}catch(c){let l=c instanceof Error?c.message:String(c);throw new Error(`Failed to create zip: ${l}`)}await _.promises.writeFile(t,a);let p=(a.byteLength/1024/1024).toFixed(2);return console.log(`\u2705 App packaged: ${t} (${p} MB)`),t}};o(Se,"ApplicationPackager");var N=Se;var ve=o(async(e,t,r)=>{let n=await new N(`${r}/dist`,{requireLockFile:!0}).createZip("app.zip",!0);try{let{externalId:i,name:s,description:a,versionTag:p}=t,c=await B(e,r),l=new h(c),m=ht.readFileSync(n),d=Yn.basename(n);await l.deploy(i,s,a,p,m,d,e.published)}finally{try{ht.unlinkSync(n)}catch{}}},"deploy");import{execSync as Jn}from"child_process";function xe(e,t=!0,r={execSync:Jn}){console.log("\u{1F4E6} Building app with npm..."),r.execSync("npm run build",{cwd:e,stdio:t?"inherit":"pipe"}),console.log("\u2705 Build successful")}o(xe,"buildApp");function Et(e,t){let{org:r,project:n,baseUrl:i}=e,s;try{s=new URL(i).hostname}catch{return null}let{externalId:a,versionTag:p}=t,c=new URLSearchParams({cluster:s,customAppVersion:p,workspace:"industrial-tools"});return`https://${r}.fusion.cognite.com/${n}/flows-apps/app/${encodeURIComponent(a)}?${c}`}o(Et,"generateFusionUrl");function wt(e,t,r){let n=r?"\u{1F680} Deploy (Interactive)":"\u{1F680} Deploy",i=r?`${t.project} @ ${t.baseUrl}`:`${t.org}/${t.project}`;console.log(["",n,"=".repeat(n.length),`App: ${e.name} (${e.externalId})`,`Version: ${e.versionTag}`,`Target: ${i}`,""].join(`
81
+ `))}o(wt,"printDeployInfo");function Ct(e,t){console.log(`
82
+ \u2705 Successfully deployed ${e.name} version ${e.versionTag} to ${t.org?`${t.org}/`:""}${t.project}`),console.log("\u{1F512} App is deployed in draft mode");let r=e.deployments.length>1?` -d ${t.project}`:"";console.log(`
83
+ To publish: npx @cognite/cli apps publish .${r}`),console.log(`To activate: npx @cognite/cli apps activate .${r}`);let n=Et(t,e);n&&console.log(`
84
84
  \u{1F517} Open your app:
85
- ${r}`)}o(st,"printDeployResult");async function lr(e,t,n,r,i){let s=$(t);if(s.length>0)throw new Error(`Deployment ${t.org}/${t.project} is missing ${s.join(" and ")} in app.json. Use \`cognite apps deploy --interactive\` for browser-based authentication instead.`);it(e,t,!1),r.skipBuild||he(n),console.log(`
86
- \u{1F4E4} Deploying to ${t.org}/${t.project}...`),await i({...t,published:!1},{externalId:e.externalId,name:e.name,description:e.description,versionTag:e.versionTag},n),st(e,t)}o(lr,"handleDeployNonInteractive");async function dr(e,t,n,r){it(e,t,!0),r.skipBuild||he(n);let i=await D(t,{interactive:!0,appId:e.externalId,orgHint:r.org});console.log(`
87
- \u{1F4E4} Deploying to ${t.project}...`);let s=await new V(`${n}/dist`).createZip("app.zip",!0);try{let a=await ar(s);await new y(i).deploy(e.externalId,e.name,e.description,e.versionTag,a,cr(s),!1),st(e,t)}finally{await pr(s).catch(()=>{})}}o(dr,"handleDeployInteractive");async function mr(e,t=process.cwd(),n={}){let{loadEnvFile:r=I,loadAppConfig:i=C,deploy:s=ye}=n;r(t);let a=i(t);if(U(a),e.interactive){let c=await O(a,e);await dr(a,c,t,e);return}let p=S(a.deployments,e.deployment);await lr(a,p,t,e,s)}o(mr,"handleDeploy");function at(e){return e.command("deploy").description("Deploy your app to Cognite Data Fusion. Use --interactive for browser-based login (no env-var secrets required).").option("-d, --deployment <target>","Deployment target (index or project name)").option("--skip-build","Skip the build step",!1).option("--interactive","Use browser-based authentication instead of env-var credentials",!1).option("--base-url <url>","CDF base URL (only with --interactive)").option("--project <project>","CDF project name (only with --interactive)").option("--org <org>","Organization hint for login (only with --interactive)").addHelpText("after",`
85
+ ${n}`)}o(Ct,"printDeployResult");async function Wn(e,t,r,n,i){let s=F(t);if(s.length>0)throw new Error(`Deployment ${t.org}/${t.project} is missing ${s.join(" and ")} in app.json. Use \`cognite apps deploy --interactive\` for browser-based authentication instead.`);wt(e,t,!1),n.skipBuild||xe(r),console.log(`
86
+ \u{1F4E4} Deploying to ${t.org}/${t.project}...`),await i({...t,published:!1},{externalId:e.externalId,name:e.name,description:e.description,versionTag:e.versionTag},r),Ct(e,t)}o(Wn,"handleDeployNonInteractive");async function Qn(e,t,r,n){wt(e,t,!0),n.skipBuild||xe(r);let i=await T(t,{interactive:!0,appId:e.externalId,orgHint:n.org});console.log(`
87
+ \u{1F4E4} Deploying to ${t.project}...`);let s=await new N(`${r}/dist`).createZip("app.zip",!0);try{let a=await Xn(s);await new h(i).deploy(e.externalId,e.name,e.description,e.versionTag,a,zn(s),!1),Ct(e,t)}finally{await qn(s).catch(()=>{})}}o(Qn,"handleDeployInteractive");async function Zn(e,t=process.cwd(),r={}){let{loadEnvFile:n=$,loadAppConfig:i=w,deploy:s=ve}=r;n(t);let a=i(t);if(R(a),e.interactive){let c=await O(a,e);await Qn(a,c,t,e);return}let p=P(a.deployments,e.deployment);await Wn(a,p,t,e,s)}o(Zn,"handleDeploy");function St(e){return e.command("deploy").description("Deploy your app to Cognite Data Fusion. Use --interactive for browser-based login (no env-var secrets required).").option("-d, --deployment <target>","Deployment target (index or project name)").option("--skip-build","Skip the build step",!1).option("--interactive","Use browser-based authentication instead of env-var credentials",!1).option("--base-url <url>","CDF base URL (only with --interactive)").option("--project <project>","CDF project name (only with --interactive)").option("--org <org>","Organization hint for login (only with --interactive)").addHelpText("after",`
88
88
  Environment (non-interactive):
89
89
  deployClientId and deploySecretName are configured per deployment in app.json.
90
90
  deploySecretName is the name of the environment variable that holds the client
@@ -98,19 +98,38 @@ Examples:
98
98
  npx @cognite/cli apps deploy -d my-project Deploy to project by name
99
99
  npx @cognite/cli apps deploy --skip-build Deploy without rebuilding
100
100
  npx @cognite/cli apps deploy --interactive Browser auth, prompts for target
101
- npx @cognite/cli apps deploy --interactive -d 0 Browser auth, target chosen non-interactively`).action(t=>mr(t))}o(at,"registerDeployCommand");async function ur(e){let t=process.cwd();I(t);let n=C(t);U(n);let r=e.interactive?await O(n,e):S(n.deployments,e.deployment);if(!e.interactive){let l=$(r);if(l.length>0)throw new Error(`Deployment ${r.org}/${r.project} is missing ${l.join(" and ")} in app.json. Use \`cognite apps publish --interactive\` for browser-based authentication instead.`)}let i=await D(r,{interactive:e.interactive,appId:n.externalId,orgHint:e.org}),s=new y(i),{externalId:a,versionTag:p}=n,c;try{c=await s.getVersion(a,p)}catch(l){throw l instanceof w?new Error(`Version ${p} of ${a} has not been deployed yet. Run \`npx @cognite/cli apps deploy\` first.`):l}if(c.alias==="ACTIVE"){console.log(` ${a} @ ${p} is already ACTIVE \u2014 nothing to do.`);return}if(c.lifecycleState==="PUBLISHED"){console.log(` ${a} @ ${p} is already PUBLISHED \u2014 nothing to do.`);return}if(c.lifecycleState==="DEPRECATED"||c.lifecycleState==="ARCHIVED")throw new Error(`Cannot publish ${a} @ ${p}: version is ${c.lifecycleState} (terminal).`);await s.publishVersion(a,p),console.log(`\u2713 Published ${a} @ ${p} is now PUBLISHED`),console.log(""),console.log("Run `npx @cognite/cli apps activate .` to make it active.")}o(ur,"handlePublish");function pt(e){return e.command("publish").description("Publish the current app version (transition DRAFT \u2192 PUBLISHED)").argument("[path]","Path to the app folder (only `.` is currently supported)",".").option("-d, --deployment <target>","Deployment target from app.json (index or name)").option("--interactive","Use browser-based authentication instead of env-var credentials",!1).option("--base-url <url>","CDF base URL (only with --interactive)").option("--project <project>","CDF project name (only with --interactive)").option("--org <org>","Organization hint for login (only with --interactive)").addHelpText("after",`
101
+ npx @cognite/cli apps deploy --interactive -d 0 Browser auth, target chosen non-interactively`).action(t=>Zn(t))}o(St,"registerDeployCommand");async function eo(e){let t=process.cwd();$(t);let r=w(t);R(r);let n=e.interactive?await O(r,e):P(r.deployments,e.deployment);if(!e.interactive){let l=F(n);if(l.length>0)throw new Error(`Deployment ${n.org}/${n.project} is missing ${l.join(" and ")} in app.json. Use \`cognite apps publish --interactive\` for browser-based authentication instead.`)}let i=await T(n,{interactive:e.interactive,appId:r.externalId,orgHint:e.org}),s=new h(i),{externalId:a,versionTag:p}=r,c;try{c=await s.getVersion(a,p)}catch(l){throw l instanceof C?new Error(`Version ${p} of ${a} has not been deployed yet. Run \`npx @cognite/cli apps deploy\` first.`):l}if(c.alias==="ACTIVE"){console.log(` ${a} @ ${p} is already ACTIVE \u2014 nothing to do.`);return}if(c.lifecycleState==="PUBLISHED"){console.log(` ${a} @ ${p} is already PUBLISHED \u2014 nothing to do.`);return}if(c.lifecycleState==="DEPRECATED"||c.lifecycleState==="ARCHIVED")throw new Error(`Cannot publish ${a} @ ${p}: version is ${c.lifecycleState} (terminal).`);await s.publishVersion(a,p),console.log(`\u2713 Published ${a} @ ${p} is now PUBLISHED`),console.log(""),console.log("Run `npx @cognite/cli apps activate .` to make it active.")}o(eo,"handlePublish");function vt(e){return e.command("publish").description("Publish the current app version (transition DRAFT \u2192 PUBLISHED)").argument("[path]","Path to the app folder (only `.` is currently supported)",".").option("-d, --deployment <target>","Deployment target from app.json (index or name)").option("--interactive","Use browser-based authentication instead of env-var credentials",!1).option("--base-url <url>","CDF base URL (only with --interactive)").option("--project <project>","CDF project name (only with --interactive)").option("--org <org>","Organization hint for login (only with --interactive)").addHelpText("after",`
102
102
  Examples:
103
103
  npx @cognite/cli apps publish . Publish using env-var auth
104
- npx @cognite/cli apps publish . --interactive Publish using browser auth (no secrets needed)`).action((t,n)=>ur(n))}o(pt,"registerPublishCommand");function fr(e){return e.alias==="ACTIVE"?"ACTIVE":e.lifecycleState}o(fr,"describeStatus");async function gr(e){let t=process.cwd();I(t);let n=C(t);U(n);let r=e.interactive?await O(n,e):S(n.deployments,e.deployment);if(!e.interactive){let a=$(r);if(a.length>0)throw new Error(`Deployment ${r.org}/${r.project} is missing ${a.join(" and ")} in app.json. Use \`cognite apps status --interactive\` for browser-based authentication instead.`)}let i=await D(r,{interactive:e.interactive,appId:n.externalId,orgHint:e.org}),s=new y(i);console.log(""),console.log(`App: ${n.name} (${n.externalId})`),console.log(`Version: ${n.versionTag} (local)`);try{let a=await s.getVersion(n.externalId,n.versionTag),p=fr(a);console.log(`Status: ${p}`),a.lifecycleState==="DRAFT"&&(console.log(""),console.log("Run `npx @cognite/cli apps publish .` to publish this version."))}catch(a){if(a instanceof w){console.log("Status: not deployed yet"),console.log(""),console.log("Run `npx @cognite/cli apps deploy` to upload this version.");return}throw a}}o(gr,"handleStatus");function ct(e){return e.command("status").description("Show the deployment status of the current app version").argument("[path]","Path to the app folder (only `.` is currently supported)",".").option("-d, --deployment <target>","Deployment target from app.json (index or name)").option("--interactive","Use browser-based authentication instead of env-var credentials",!1).option("--base-url <url>","CDF base URL (only with --interactive)").option("--project <project>","CDF project name (only with --interactive)").option("--org <org>","Organization hint for login (only with --interactive)").addHelpText("after",`
104
+ npx @cognite/cli apps publish . --interactive Publish using browser auth (no secrets needed)`).action((t,r)=>eo(r))}o(vt,"registerPublishCommand");function to(e){return e.alias==="ACTIVE"?"ACTIVE":e.lifecycleState}o(to,"describeStatus");async function ro(e){let t=process.cwd();$(t);let r=w(t);R(r);let n=e.interactive?await O(r,e):P(r.deployments,e.deployment);if(!e.interactive){let a=F(n);if(a.length>0)throw new Error(`Deployment ${n.org}/${n.project} is missing ${a.join(" and ")} in app.json. Use \`cognite apps status --interactive\` for browser-based authentication instead.`)}let i=await T(n,{interactive:e.interactive,appId:r.externalId,orgHint:e.org}),s=new h(i);console.log(""),console.log(`App: ${r.name} (${r.externalId})`),console.log(`Version: ${r.versionTag} (local)`);try{let a=await s.getVersion(r.externalId,r.versionTag),p=to(a);console.log(`Status: ${p}`),a.lifecycleState==="DRAFT"&&(console.log(""),console.log("Run `npx @cognite/cli apps publish .` to publish this version."))}catch(a){if(a instanceof C){console.log("Status: not deployed yet"),console.log(""),console.log("Run `npx @cognite/cli apps deploy` to upload this version.");return}throw a}}o(ro,"handleStatus");function xt(e){return e.command("status").description("Show the deployment status of the current app version").argument("[path]","Path to the app folder (only `.` is currently supported)",".").option("-d, --deployment <target>","Deployment target from app.json (index or name)").option("--interactive","Use browser-based authentication instead of env-var credentials",!1).option("--base-url <url>","CDF base URL (only with --interactive)").option("--project <project>","CDF project name (only with --interactive)").option("--org <org>","Organization hint for login (only with --interactive)").addHelpText("after",`
105
105
  Examples:
106
106
  npx @cognite/cli apps status . Status using env-var auth
107
- npx @cognite/cli apps status . --interactive Status using browser auth (no secrets needed)`).action((t,n)=>gr(n))}o(ct,"registerStatusCommand");function lt(e){let t=e.command("apps").description("Manage Fusion Custom Apps \u2014 create, deploy, and manage version lifecycle");return tt(t),at(t),ct(t),pt(t),Me(t),Se(t),t}o(lt,"registerAppsCommand");var dt=1e3,yr=new Set(["baseUrl","url","project","deployment","source","path","name","displayName","description"]);function hr(e){return Object.fromEntries(Object.entries(e).map(([t,n])=>typeof n=="boolean"?[t,n]:yr.has(t)?[t,n]:[t,"[REDACTED]"]))}o(hr,"sanitize");function Cr(e){let t=[],n=e;for(;n;)n.parent&&t.unshift(n.name()),n=n.parent;return t.join(" ")}o(Cr,"getCommandPath");function mt(e){try{let t=e(process.cwd());return{appExternalId:t.externalId,appVersionTag:t.versionTag}}catch{return{}}}o(mt,"tryLoadAppConfig");function Ce(e){return e.filter(t=>!t.startsWith("-")).join(" ")||"unknown"}o(Ce,"commandFromArgv");function ut(e,t,n=C){e.hook("postAction",async(r,i)=>{try{let s={command:Cr(i),options:hr(i.opts()),success:!0,...mt(n)};t.track("Flows.CLI.Command",s),await t.flush(dt)}catch{}})}o(ut,"instrument");async function ft(e,t,n=C){try{let r={command:Ce(t),options:{},success:!1,...mt(n)};e.track("Flows.CLI.Command",r),await e.flush(dt)}catch{}}o(ft,"trackFailure");var wr="ERR_USE_AFTER_CLOSE";function yt(e){return e instanceof Error&&"code"in e&&e.code===wr}o(yt,"isReadlineClosedError");function vr(e){let t=Object.getPrototypeOf(e);return t===Object.prototype||t===null}o(vr,"isPlainObject");function we(e){return e==null||yt(e)?!0:e instanceof Error?!1:!!(typeof e=="object"&&e!==null&&vr(e)&&Object.keys(e).length===0)}o(we,"isPromptCancel");var gt=!1;function ht(){gt||(gt=!0,process.on("uncaughtException",e=>{yt(e)&&(console.error(`
108
- Cancelled.`),process.exit(130)),console.error(e),process.exit(1)}),process.on("unhandledRejection",e=>{we(e)&&(console.error(`
109
- Cancelled.`),process.exit(130)),console.error(e),process.exit(1)}))}o(ht,"installCancelHandler");import Ct from"mixpanel";var br="5c4d853e7c3b77b1eb4468d5329b278c",z="cognite-cli",Er=2e3,wt={env:process.env,init:Ct.init.bind(Ct)},Ar={track:o(()=>{},"track"),flush:o(async()=>{},"flush")};function ve(e=process.env){return e.COGNITE_TELEMETRY_DISABLED==="1"||e.DO_NOT_TRACK==="1"}o(ve,"isTelemetryDisabled");function Sr(e){return e.COGNITE_TELEMETRY_DEBUG==="1"}o(Sr,"isDebug");function vt(e={}){let t=e.env??wt.env,n=e.init??wt.init,r=e.packageName,i=e.cliVersion,s=Sr(t);if(ve(t))return s&&process.stderr.write(`[telemetry] disabled \u2014 noop tracker
110
- `),Ar;let a,p=new Set;function c(){if(a)return a;try{return a=n(br,{geolocate:!1,keepAlive:!1}),a}catch{return}}return o(c,"getClient"),{track(l,d={}){let m=c();if(!m)return;let u={...d,applicationId:z,...r&&{packageName:r},...i&&{cliVersion:i},nodeVersion:process.version,platform:process.platform};s&&process.stderr.write(`[telemetry] track ${l} ${JSON.stringify(u)}
111
- `);let h=o(()=>{},"finish"),f=new Promise(k=>{h=k});p.add(f);try{m.track(l,u,h)}catch{h()}f.finally(()=>p.delete(f))},async flush(l=Er){if(p.size===0)return;let d,m=new Promise(u=>{d=setTimeout(u,l),d.unref?.()});try{await Promise.race([Promise.allSettled([...p]),m])}finally{d&&clearTimeout(d)}s&&process.stderr.write(`[telemetry] flush done (${p.size} still pending)
112
- `)}}}o(vt,"createTelemetry");var kr=1e3,xr="https://0a118cb02e3be57b1838bcfb5783a2bf@o4508040730968064.ingest.de.sentry.io/4510719268290640",Pr={captureError:o(async()=>{},"captureError"),flush:o(async()=>{},"flush")};function Tr(e){return e.packageName&&e.cliVersion?`${e.packageName}@${e.cliVersion}`:e.cliVersion??"unknown"}o(Tr,"buildRelease");var Dr="192.0.2.0";function Ir(e){let t={...e.user,email:void 0,username:void 0,ip_address:Dr,id:void 0};return{...e,user:t,server_name:void 0}}o(Ir,"scrubPii");function bt(e={}){let t=e.env??process.env;if(ve(t))return Pr;let n=Tr(e),r="production",i=null,s=null;function a(){return{dsn:xr,release:n,environment:r,defaultIntegrations:!1,integrations:[],sendDefaultPii:!1,enableLogs:!1,initialScope:{tags:{component:"cli",applicationId:z},contexts:{cli:{applicationId:z,node:process.version,platform:process.platform}}},beforeSend:Ir}}o(a,"buildInitOptions");async function p(){return i||(s||(s=(async()=>{try{let c=e.sdk??await import("@sentry/node");return c.init(a()),i=c,c}catch{return null}})()),s)}return o(p,"ensureSdk"),{async captureError(c,l){try{let d=await p();if(!d)return;let m={level:"fatal"};l?.command&&(m.tags={command:l.command},m.contexts={cli:{applicationId:z,node:process.version,platform:process.platform,command:l.command}}),d.captureException(c,m)}catch{}},async flush(c=kr){try{if(!i)return;await i.flush(c)}catch{}}}}o(bt,"createErrorReporter");import{mkdirSync as $r,readFileSync as Or,writeFileSync as Ur}from"fs";import{homedir as Fr}from"os";import{resolve as Z}from"path";import{debuglog as jr}from"util";import{lt as Rr,parse as Et}from"semver";var Lr="https://registry.npmjs.org/@cognite/cli/latest",Vr=1500,At="upgrade-check.json",St=Z(process.env.XDG_CACHE_HOME||Z(Fr(),".cache"),"@cognite","cli"),be=jr("cognite-dune");function _r(e,t){return!e||!t||!Et(e)||!Et(t)?!1:Rr(e,t)}o(_r,"isOutdated");async function Nr({timeout:e=Vr,registryUrl:t=Lr,fetchImpl:n=globalThis.fetch}={}){if(typeof n!="function")return null;try{let r=await n(t,{signal:AbortSignal.timeout(e)});if(!r?.ok)return null;let i=await r.json();return typeof i?.version=="string"?i.version:null}catch(r){return be("fetchLatestVersion failed (%s): %O",t,r),null}}o(Nr,"fetchLatestVersion");function Hr(e=St,t=864e5){try{let n=Or(Z(e,At),"utf-8"),r=JSON.parse(n);return typeof r.latest!="string"||typeof r.fetchedAt!="number"||Date.now()-r.fetchedAt>t?null:{latest:r.latest,fetchedAt:r.fetchedAt}}catch(n){return be("readUpgradeCheckCache failed (%s): %O",e,n),null}}o(Hr,"readUpgradeCheckCache");function Br(e,t){try{$r(e,{recursive:!0});let n={latest:t,fetchedAt:Date.now()};Ur(Z(e,At),JSON.stringify(n))}catch(n){be("writeUpgradeCheckCache failed (%s): %O",e,n)}}o(Br,"writeUpgradeCheckCache");async function Mr({cacheDir:e=St,...t}={}){let n=await Nr(t);n&&Br(e,n)}o(Mr,"startBackgroundUpgradeCheck");function kt(e,{onOutdated:t,cacheDir:n,...r}={}){let i=Hr(n);if(i){_r(e,i.latest)&&t?.(e,i.latest);return}Mr({cacheDir:n,...r})}o(kt,"preActionUpgradeCheck");import{default as ua,chalkStderr as xt}from"chalk";function Pt(e,t){let n=[`\u26A0 Update available: ${e} -> ${t}`," Run npx @cognite/cli@latest"],r=Math.max(...n.map(p=>[...p].length))+2,i="\u2500".repeat(r),s=o(p=>`\u2502 ${p}${" ".repeat(r-1-[...p].length)}\u2502`,"pad"),a=[`\u250C${i}\u2510`,...n.map(s),`\u2514${i}\u2518`].join(`
113
- `);return xt.bold.yellow(a)}o(Pt,"formatUpgradeWarning");function zr(e){return e instanceof Error&&"code"in e&&typeof e.code=="string"&&e.code==="DEP0040"}o(zr,"isDep0040Warning");var Ae=process,qr=Ae.emit.bind(Ae);Ae.emit=function(e,...t){return e==="warning"&&zr(t[0])?!1:qr(e,...t)};ht();var q=new Gr;q.name("cognite").description("Build and deploy React apps to Cognite Data Fusion").version("0.7.0-alpha.32").showHelpAfterError().configureOutput({writeOut:o(e=>Kr(1,e),"writeOut")});q.hook("preAction",()=>{kt("0.7.0-alpha.32",{onOutdated:o((e,t)=>{console.warn(`
114
- ${Pt(e,t)}
115
- `)},"onOutdated")})});lt(q);var Dt=vt({packageName:"@cognite/cli",cliVersion:"0.7.0-alpha.32"}),Tt=bt({packageName:"@cognite/cli",cliVersion:"0.7.0-alpha.32"});ut(q,Dt);var Ee=process.argv.slice(2);q.parseAsync(Ee,{from:"user"}).catch(async e=>{await ft(Dt,Ee),we(e)&&(console.error(`
116
- Cancelled.`),process.exit(130)),await Tt.captureError(e,{command:Ce(Ee)}),await Tt.flush(),console.error(e instanceof Error?`\u274C ${e.message}`:e),process.exit(1)});
107
+ npx @cognite/cli apps status . --interactive Status using browser auth (no secrets needed)`).action((t,r)=>ro(r))}o(xt,"registerStatusCommand");function Pt(e){let t=e.command("apps").description("Manage Fusion Custom Apps \u2014 create, deploy, and manage version lifecycle");return ft(t),St(t),xt(t),vt(t),nt(t),Ne(t),t}o(Pt,"registerAppsCommand");import{existsSync as Vo,mkdirSync as Ho,writeFileSync as Bo}from"fs";import{dirname as Te,join as $e}from"path";import{execFile as oo}from"child_process";import{promisify as io}from"util";import{platform as no}from"os";function J(e={}){let{platform:t=no}=e;return t()==="darwin"}o(J,"isMacOS");var so="cognite-dune",ao=io(oo),po=o((e,t)=>ao(e,t),"defaultExecFile"),co=-25300,Tp=co&255;async function bt(e,t,r={}){if(!J(r))throw new Error("Keychain storage is only supported on macOS");let{execFile:n=po}=r;await n("security",["add-generic-password","-a",e,"-s",so,"-w",Buffer.from(t,"utf-8").toString("base64"),"-U"])}o(bt,"storeKeyInKeychain");import{pbkdf2 as uo,randomBytes as go}from"crypto";import{promisify as fo}from"util";import{CompactEncrypt as yo,base64url as ho,compactDecrypt as Kp}from"jose";var lo=new TextEncoder,mo=new TextDecoder,At={encode:o(e=>lo.encode(e),"encode"),decode:o(e=>mo.decode(e),"decode")};var Eo=fo(uo),Pe=6e5,wo="sha512",Co="PBKDF2-HMAC-SHA512",So=16,vo="A256GCM",xo=32,kt=2e6;async function Po(e,t,r){return await Eo(e,t,r,xo,wo)}o(Po,"deriveKey");async function Dt(e,t,r=Pe){if(!Number.isInteger(r)||r<1||r>kt)throw new Error(`Invalid iterations: must be an integer between 1 and ${kt}`);let n=go(So),i=await Po(t,n,r);return await new yo(At.encode(e)).setProtectedHeader({alg:"dir",enc:vo,kdf:Co,kdf_iter:r,kdf_salt:ho.encode(n)}).encrypt(i)}o(Dt,"encryptStringAsJwe");import{calculateJwkThumbprint as bo,exportJWK as Ao,exportPKCS8 as ko,exportSPKI as Do,generateKeyPair as Io}from"jose";async function It(){let{publicKey:e,privateKey:t}=await Io("EdDSA",{extractable:!0}),r=await ko(t),n=await Do(e),i=await Ao(e),s=await bo(i);return{privateKeyPem:r,publicKeyPem:n,kid:s}}o(It,"generateSigningKeyPair");import{existsSync as Zp,readdirSync as ec}from"fs";import{join as rc}from"path";import{homedir as To}from"os";import{join as Tt}from"path";function q(e={}){let{env:t=process.env,homedir:r=To}=e,n=t.DUNE_HOME?.trim()||Tt(r(),".dune");return{home:n,keysDir:Tt(n,"keys")}}o(q,"getConfig");var $t=".pub.pem",Ft=".key.jwe";var Ot=".meta.json";function Rt(e,t){let r=e.getUTCFullYear(),n=e.getUTCMonth()+t,i=new Date(Date.UTC(r,n+1,0)).getUTCDate(),s=Math.min(e.getUTCDate(),i);return new Date(Date.UTC(r,n,s))}o(Rt,"addMonthsClamped");function be(e){return e.toISOString().slice(0,10)}o(be,"formatIsoDate");function _t(e=new Date){return be(e)}o(_t,"todayIso");import $o,{Chalk as Fo}from"chalk";var Ae=new Fo({level:0});function Ut(e){return e.isTTY?$o:Ae}o(Ut,"chalkForStream");function Oo(e){return e.replace(/-----BEGIN [^-]+-----/g,"").replace(/-----END [^-]+-----/g,"").replace(/\s+/g,"")}o(Oo,"pemBodyOneLine");function Lt(e,t=Ae,r=new Date){let n=e.issuedAt??_t(r),i=Oo(e.publicKeyPem),s=" ",a=o((c,l)=>`${s}${t.cyan(c)}${t.dim(":")} ${l}
108
+ `,"kv"),p="";return p+=`
109
+ ${t.bold("Add this entry to")} ${t.magenta("services/app-hosting/config/signing-keys.yaml")} ${t.bold("under")} ${t.cyan("public_keys:")}
110
+
111
+ `,p+=`${t.dim("-")} ${t.cyan("kid")}${t.dim(":")} ${t.green(e.kid)}
112
+ `,p+=a("public_key",t.green(i)),p+=a("email",t.yellow(e.email)),p+=a("capabilities",`${t.dim("[")}${t.yellow("developer")}${t.dim("]")}`),p+=a("issued_at",t.green(n)),p+=a("expires",t.green(e.expires)),p+=a("revoked_at",t.dim("null")),p}o(Lt,"renderRegistryEntry");import{email as Ro,pipe as _o,safeParse as Uo,string as Lo}from"valibot";var No=_o(Lo(),Ro());function z(e,t="email"){let r=e.trim();if(!r)throw new Error(`${t} is required`);if(!Uo(No,r).success)throw new Error(`${t} must look like an email (user@example.com); got "${e}"`);return r}o(z,"parseEmail");function W(e,t="--expires"){let r=Number(e);if(!Number.isInteger(r)||r<1||r>12)throw new Error(`${t} must be an integer between 1 and 12 (months); got "${e}"`);return r}o(W,"parseExpiryMonths");import Mo from"enquirer";import{execFileSync as Ko}from"child_process";function Nt(e={}){let{execFileSync:t=Ko}=e;try{return String(t("git",["config","--get","user.email"],{encoding:"utf-8",stdio:["ignore","pipe","ignore"]})).trim()||void 0}catch{return}}o(Nt,"gitUserEmail");var ne=3,Kt=`Key expiry in months (${1}-${12})`,jt="Email address for the registry entry",Mt=`Passphrase for the encrypted private key (min ${15} chars)`,Vt="Confirm passphrase",Ht=o(()=>`Passphrase must be at least ${15} characters`,"passphraseTooShortMsg"),Bt=o(e=>`Passphrases do not match (attempt ${e}/${ne}).
113
+ `,"passphraseMismatchMsg"),Gt=`Passphrase confirmation failed after ${ne} attempts`;async function Ie(e){return Mo.prompt(e)}o(Ie,"defaultPrompt");function Yt(e){return t=>{try{return e(t),!0}catch(r){return r instanceof Error?r.message:"Invalid"}}}o(Yt,"parserAsValidator");async function Jt(e={}){let{prompt:t=Ie}=e,{months:r}=await t({type:"input",name:"months",message:Kt,initial:String(6),validate:Yt(n=>W(n,"expiry"))});return W(r,"expiry")}o(Jt,"promptExpiryMonths");async function Xt(e={}){let{prompt:t=Ie,gitUserEmail:r=Nt}=e,{email:n}=await t({type:"input",name:"email",message:jt,initial:r(),validate:Yt(i=>z(i,"email"))});return z(n,"email")}o(Xt,"promptEmail");async function qt(e={}){let{prompt:t=Ie,stderr:r=process.stderr}=e;for(let n=1;n<=ne;n+=1){let{passphrase:i}=await t({type:"password",name:"passphrase",message:Mt,validate:o(a=>a.length>=15?!0:Ht(),"validate")}),{confirm:s}=await t({type:"password",name:"confirm",message:Vt});if(i===s)return i;r.write(Bt(n))}throw new Error(Gt)}o(qt,"promptPassphrase");function Go(e){return{writeFileSync:e.writeFileSync??Bo,mkdirSync:e.mkdirSync??Ho,existsSync:e.existsSync??Vo,generateSigningKeyPair:e.generateSigningKeyPair??It,encryptStringAsJwe:e.encryptStringAsJwe??Dt,storeKeyInKeychain:e.storeKeyInKeychain??bt,isMacOS:e.isMacOS??J,promptExpiryMonths:e.promptExpiryMonths??Jt,promptEmail:e.promptEmail??Xt,promptPassphrase:e.promptPassphrase??qt}}o(Go,"resolveDeps");function Wt(e,t={}){let r=Go(t);e.command("keys").description("Manage code signing keys").command("generate").description("Generate an Ed25519 keypair for code signing").option("-o, --output <path>","Encrypted private key output path (forces file storage even on macOS)").option("--no-keychain","Skip macOS Keychain and write a passphrase-encrypted private key under ~/.dune/keys/ instead").option("-e, --expires <months>",`Validity in months (${1}-${12}); skips the interactive prompt`).option("--email <address>","Email address for the registry entry; skips the interactive prompt").action(i=>Jo(i,r))}o(Wt,"registerKeysCommand");function zt(e,t,r){let n=$e(q().keysDir,`${e}${$t}`);return r.mkdirSync(Te(n),{recursive:!0}),r.writeFileSync(n,t),n}o(zt,"writePublicKey");async function Yo(e,t,r,n,i){let s=n??$e(q().keysDir,`${e}${Ft}`);if(i.mkdirSync(Te(s),{recursive:!0}),i.existsSync(s))throw new Error(`Refusing to overwrite existing key at ${s}. Delete it first if you really want to regenerate: rm ${s}`);let a=await i.encryptStringAsJwe(t,r);return i.writeFileSync(s,a,{mode:384}),s}o(Yo,"writeEncryptedPrivateKey");async function Jo(e,t,r=new Date){let n=e.keychain!==!1&&t.isMacOS()&&!e.output,i=e.expires!==void 0?W(e.expires):await t.promptExpiryMonths(),s=be(Rt(r,i)),a=e.email!==void 0?z(e.email,"--email"):await t.promptEmail(),p=n?null:await t.promptPassphrase();process.stderr.write(`
114
+ Generating Ed25519 keypair...
115
+
116
+ `);let{privateKeyPem:c,publicKeyPem:l,kid:m}=await t.generateSigningKeyPair();if(n){await t.storeKeyInKeychain(m,c);let f=zt(m,l,t);process.stderr.write(`Public key: ${f}
117
+ `),process.stderr.write(`Private key: macOS Keychain (service: cognite-dune, account: ${m})
118
+ `)}else{if(p===null)throw new Error("passphrase is required when not using Keychain");let f=await Yo(m,c,p,e.output,t),g=zt(m,l,t);process.stderr.write(`Public key: ${g}
119
+ `),process.stderr.write(`Private key: ${f} (JWE, AES-256-GCM, PBKDF2-SHA512 x${Pe.toLocaleString()})
120
+ `),t.isMacOS()||process.stderr.write(` (macOS Keychain integration is the default on darwin; on this OS we use the file.)
121
+ `)}let d=$e(q().keysDir,`${m}${Ot}`);t.mkdirSync(Te(d),{recursive:!0}),t.writeFileSync(d,JSON.stringify({email:a}));let u=Ut(process.stderr);process.stderr.write(`
122
+ Signing identity (kid): ${u.green(m)}
123
+ `),process.stderr.write(`Expires: ${s} (${i} month${i===1?"":"s"} from today)
124
+ `),process.stderr.write(Lt({kid:m,publicKeyPem:l,email:a,expires:s},u,r)),process.stderr.write(`
125
+ ${u.bold("Next:")} open a PR against the ${u.magenta("infrastructure")} repo with that block, then \`${u.cyan(`cognite sign -s ${m}`)}\`
126
+ `)}o(Jo,"handleGenerate");var Qt=1e3,Xo=new Set(["baseUrl","url","project","deployment","source","path","name","displayName","description"]);function qo(e){return Object.fromEntries(Object.entries(e).map(([t,r])=>typeof r=="boolean"?[t,r]:Xo.has(t)?[t,r]:[t,"[REDACTED]"]))}o(qo,"sanitize");function zo(e){let t=[],r=e;for(;r;)r.parent&&t.unshift(r.name()),r=r.parent;return t.join(" ")}o(zo,"getCommandPath");function Zt(e){try{let t=e(process.cwd());return{appExternalId:t.externalId,appVersionTag:t.versionTag}}catch{return{}}}o(Zt,"tryLoadAppConfig");function Fe(e){return e.filter(t=>!t.startsWith("-")).join(" ")||"unknown"}o(Fe,"commandFromArgv");function er(e,t,r=w){e.hook("postAction",async(n,i)=>{try{let s={command:zo(i),options:qo(i.opts()),success:!0,...Zt(r)};t.track("Flows.CLI.Command",s),await t.flush(Qt)}catch{}})}o(er,"instrument");async function tr(e,t,r=w){try{let n={command:Fe(t),options:{},success:!1,...Zt(r)};e.track("Flows.CLI.Command",n),await e.flush(Qt)}catch{}}o(tr,"trackFailure");var Wo="ERR_USE_AFTER_CLOSE";function nr(e){return e instanceof Error&&"code"in e&&e.code===Wo}o(nr,"isReadlineClosedError");function Qo(e){let t=Object.getPrototypeOf(e);return t===Object.prototype||t===null}o(Qo,"isPlainObject");function Oe(e){return e==null||nr(e)?!0:e instanceof Error?!1:!!(typeof e=="object"&&e!==null&&Qo(e)&&Object.keys(e).length===0)}o(Oe,"isPromptCancel");var rr=!1;function or(){rr||(rr=!0,process.on("uncaughtException",e=>{nr(e)&&(console.error(`
127
+ Cancelled.`),process.exit(130)),console.error(e),process.exit(1)}),process.on("unhandledRejection",e=>{Oe(e)&&(console.error(`
128
+ Cancelled.`),process.exit(130)),console.error(e),process.exit(1)}))}o(or,"installCancelHandler");import ir from"mixpanel";var Zo="5c4d853e7c3b77b1eb4468d5329b278c",Q="cognite-cli",ei=2e3,sr={env:process.env,init:ir.init.bind(ir)},ti={track:o(()=>{},"track"),flush:o(async()=>{},"flush")};function Re(e=process.env){return e.COGNITE_TELEMETRY_DISABLED==="1"||e.DO_NOT_TRACK==="1"}o(Re,"isTelemetryDisabled");function ri(e){return e.COGNITE_TELEMETRY_DEBUG==="1"}o(ri,"isDebug");function ar(e={}){let t=e.env??sr.env,r=e.init??sr.init,n=e.packageName,i=e.cliVersion,s=ri(t);if(Re(t))return s&&process.stderr.write(`[telemetry] disabled \u2014 noop tracker
129
+ `),ti;let a,p=new Set;function c(){if(a)return a;try{return a=r(Zo,{geolocate:!1,keepAlive:!1}),a}catch{return}}return o(c,"getClient"),{track(l,m={}){let d=c();if(!d)return;let u={...m,applicationId:Q,...n&&{packageName:n},...i&&{cliVersion:i},nodeVersion:process.version,platform:process.platform};s&&process.stderr.write(`[telemetry] track ${l} ${JSON.stringify(u)}
130
+ `);let f=o(()=>{},"finish"),g=new Promise(b=>{f=b});p.add(g);try{d.track(l,u,f)}catch{f()}g.finally(()=>p.delete(g))},async flush(l=ei){if(p.size===0)return;let m,d=new Promise(u=>{m=setTimeout(u,l),m.unref?.()});try{await Promise.race([Promise.allSettled([...p]),d])}finally{m&&clearTimeout(m)}s&&process.stderr.write(`[telemetry] flush done (${p.size} still pending)
131
+ `)}}}o(ar,"createTelemetry");var ni=1e3,oi="https://0a118cb02e3be57b1838bcfb5783a2bf@o4508040730968064.ingest.de.sentry.io/4510719268290640",ii={captureError:o(async()=>{},"captureError"),flush:o(async()=>{},"flush")};function si(e){return e.packageName&&e.cliVersion?`${e.packageName}@${e.cliVersion}`:e.cliVersion??"unknown"}o(si,"buildRelease");var ai="192.0.2.0";function pi(e){let t={...e.user,email:void 0,username:void 0,ip_address:ai,id:void 0};return{...e,user:t,server_name:void 0}}o(pi,"scrubPii");function pr(e={}){let t=e.env??process.env;if(Re(t))return ii;let r=si(e),n="production",i=null,s=null;function a(){return{dsn:oi,release:r,environment:n,defaultIntegrations:!1,integrations:[],sendDefaultPii:!1,enableLogs:!1,initialScope:{tags:{component:"cli",applicationId:Q},contexts:{cli:{applicationId:Q,node:process.version,platform:process.platform}}},beforeSend:pi}}o(a,"buildInitOptions");async function p(){return i||(s||(s=(async()=>{try{let c=e.sdk??await import("@sentry/node");return c.init(a()),i=c,c}catch{return null}})()),s)}return o(p,"ensureSdk"),{async captureError(c,l){try{let m=await p();if(!m)return;let d={level:"fatal"};l?.command&&(d.tags={command:l.command},d.contexts={cli:{applicationId:Q,node:process.version,platform:process.platform,command:l.command}}),m.captureException(c,d)}catch{}},async flush(c=ni){try{if(!i)return;await i.flush(c)}catch{}}}}o(pr,"createErrorReporter");import{mkdirSync as ci,readFileSync as li,writeFileSync as mi}from"fs";import{homedir as di}from"os";import{resolve as oe}from"path";import{debuglog as ui}from"util";import{lt as gi,parse as cr}from"semver";var fi="https://registry.npmjs.org/@cognite/cli/latest",yi=1500,lr="upgrade-check.json",mr=oe(process.env.XDG_CACHE_HOME||oe(di(),".cache"),"@cognite","cli"),_e=ui("cognite-dune");function hi(e,t){return!e||!t||!cr(e)||!cr(t)?!1:gi(e,t)}o(hi,"isOutdated");async function Ei({timeout:e=yi,registryUrl:t=fi,fetchImpl:r=globalThis.fetch}={}){if(typeof r!="function")return null;try{let n=await r(t,{signal:AbortSignal.timeout(e)});if(!n?.ok)return null;let i=await n.json();return typeof i?.version=="string"?i.version:null}catch(n){return _e("fetchLatestVersion failed (%s): %O",t,n),null}}o(Ei,"fetchLatestVersion");function wi(e=mr,t=864e5){try{let r=li(oe(e,lr),"utf-8"),n=JSON.parse(r);return typeof n.latest!="string"||typeof n.fetchedAt!="number"||Date.now()-n.fetchedAt>t?null:{latest:n.latest,fetchedAt:n.fetchedAt}}catch(r){return _e("readUpgradeCheckCache failed (%s): %O",e,r),null}}o(wi,"readUpgradeCheckCache");function Ci(e,t){try{ci(e,{recursive:!0});let r={latest:t,fetchedAt:Date.now()};mi(oe(e,lr),JSON.stringify(r))}catch(r){_e("writeUpgradeCheckCache failed (%s): %O",e,r)}}o(Ci,"writeUpgradeCheckCache");async function Si({cacheDir:e=mr,...t}={}){let r=await Ei(t);r&&Ci(e,r)}o(Si,"startBackgroundUpgradeCheck");function dr(e,{onOutdated:t,cacheDir:r,...n}={}){let i=wi(r);if(i){hi(e,i.latest)&&t?.(e,i.latest);return}Si({cacheDir:r,...n})}o(dr,"preActionUpgradeCheck");import{default as wl,chalkStderr as ur}from"chalk";function gr(e,t){let r=[`\u26A0 Update available: ${e} -> ${t}`," Run npx @cognite/cli@latest"],n=Math.max(...r.map(p=>[...p].length))+2,i="\u2500".repeat(n),s=o(p=>`\u2502 ${p}${" ".repeat(n-1-[...p].length)}\u2502`,"pad"),a=[`\u250C${i}\u2510`,...r.map(s),`\u2514${i}\u2518`].join(`
132
+ `);return ur.bold.yellow(a)}o(gr,"formatUpgradeWarning");function Pi(e){return e instanceof Error&&"code"in e&&typeof e.code=="string"&&e.code==="DEP0040"}o(Pi,"isDep0040Warning");var Le=process,bi=Le.emit.bind(Le);Le.emit=function(e,...t){return e==="warning"&&Pi(t[0])?!1:bi(e,...t)};or();var V=new xi;V.name("cognite").description("Build and deploy React apps to Cognite Data Fusion").version("1.0.0-alpha.42").showHelpAfterError().configureOutput({writeOut:o(e=>vi(1,e),"writeOut")});V.hook("preAction",()=>{dr("1.0.0-alpha.42",{onOutdated:o((e,t)=>{console.warn(`
133
+ ${gr(e,t)}
134
+ `)},"onOutdated")})});Pt(V);Wt(V);var yr=ar({packageName:"@cognite/cli",cliVersion:"1.0.0-alpha.42"}),fr=pr({packageName:"@cognite/cli",cliVersion:"1.0.0-alpha.42"});er(V,yr);var Ue=process.argv.slice(2);V.parseAsync(Ue,{from:"user"}).catch(async e=>{await tr(yr,Ue),Oe(e)&&(console.error(`
135
+ Cancelled.`),process.exit(130)),await fr.captureError(e,{command:Fe(Ue)}),await fr.flush(),console.error(e instanceof Error?`\u274C ${e.message}`:e),process.exit(1)});
package/dist/deploy/index.d.ts CHANGED
@@ -11,6 +11,13 @@ type Deployment = {
11
11
  idpType?: "cdf" | "entra_id";
12
12
  /** Tenant ID for Entra ID authentication. Required when idpType is "entra_id" */
13
13
  tenantId?: string;
14
+ /**
15
+ * OAuth scope for Entra ID authentication. When set, overrides the scope
16
+ * that would otherwise be derived from baseUrl
17
+ * (e.g. "https://<cluster>.cognitedata.com/.default").
18
+ * Use this for non-standard CDF environments such as private-link deployments.
19
+ */
20
+ scope?: string;
14
21
  };
15
22
  type App = {
16
23
  externalId: string;
package/dist/deploy/index.js CHANGED
@@ -1,9 +1,9 @@
1
1
  import{a as s}from"../chunk-EI7MMDWY.js";import J from"fs";import ut from"path";var j="https://docs.cognite.com/cdf/access/";function f(e){return e!==null&&typeof e=="object"}s(f,"isRecord");function S(e){return e instanceof Error&&"status"in e&&typeof e.status=="number"}s(S,"isHttpError");function K(e){switch(e){case 401:return`Your credentials are invalid or expired. Check your client ID and secret.
2
2
  See: ${j}`;case 403:return`You don't have the required CDF capabilities. Please contact your CDF admin.
3
3
  See: ${j}`;default:return}}s(K,"httpStatusHint");function w(e){let t=e instanceof Error?e:new Error(String(e));if(!S(t))return null;let n=K(t.status);return n?Object.assign(new Error(`${t.message}
4
- ${n}`),{cause:t}):null}s(w,"enrichedHttpError");function W(e){if(!f(e))return null;let t=e.missing;if(Array.isArray(t))return t;let n=e.data;if(f(n)){let r=n.error;if(f(r)&&Array.isArray(r.missing))return r.missing;if(Array.isArray(n.missing))return n.missing}return null}s(W,"findMissingArray");function Z(e,t){if(!S(e)||e.status!==400)return!1;let n=W(e);return n?n.some(r=>f(r)&&typeof r.externalId=="string"&&t.includes(r.externalId)):!1}s(Z,"isMissingExternalIdError");function x(e,t){return S(e)&&e.status===404||Z(e,t)}s(x,"isNotFoundError");var H=["DRAFT","PUBLISHED","DEPRECATED","ARCHIVED"],q=["ACTIVE","PREVIEW"],I=class I extends Error{constructor(t,n){super(`Version ${n} of app ${t} not found`),this.name="AppVersionNotFoundError",this.appExternalId=t,this.version=n}};s(I,"AppVersionNotFoundError");var C=I;function M(e,t){return e.includes(t)}s(M,"includesValue");function X(e){return M(H,e)}s(X,"isAppVersionLifecycleState");function Q(e){return M(q,e)}s(Q,"isAppVersionAlias");function tt(e){return typeof e.version=="string"&&X(e.lifecycleState)&&typeof e.entrypoint=="string"&&typeof e.createdTime=="number"&&typeof e.createdBy=="string"&&typeof e.appExternalId=="string"&&(e.alias===void 0||Q(e.alias))&&(e.comment===void 0||typeof e.comment=="string")}s(tt,"isAppVersion");function N(e){if(!f(e))throw new Error("Invalid version response: not an object");if(!tt(e))throw new Error("Invalid version response: missing or malformed fields");return e}s(N,"parseAppVersion");var T=class T{constructor(t){this.client=t}get appsBasePath(){return`/api/v1/projects/${encodeURIComponent(this.client.project)}/apphosting/apps`}async createApp(t,n,r){try{await this.client.post(this.appsBasePath,{data:{items:[{externalId:t,name:n,description:r}]}})}catch(o){throw w(o)??o}}async uploadVersion(t,n,r,o,i="index.html"){console.log(`\u{1F4E4} Uploading version ${n}...`);let c=new FormData;c.append("file",new Blob([new Uint8Array(r)]),o),c.append("version",n),c.append("entryPath",i);let p=encodeURIComponent(t),a=`${this.appsBasePath}/${p}/versions`,l=await this.client.authenticate(),h=`${this.client.getBaseUrl()}${a}`,d=new AbortController,Y=setTimeout(()=>d.abort(),300*1e3),y;try{y=await fetch(h,{method:"POST",headers:{Authorization:`Bearer ${l}`},body:c,signal:d.signal})}catch(g){throw g instanceof Error&&g.name==="AbortError"?new Error("Upload timed out after 5 minutes"):g}finally{clearTimeout(Y)}if(!y.ok){let g=await y.text(),V=g;try{let $=JSON.parse(g);if(f($)){let A=$.error;if(typeof A=="string")V=A;else if(f(A)){let E=A.message,B=A.code;V=typeof E=="string"?E:B!=null?`Unknown error (code: ${B})`:g}else{let E=$.message;V=typeof E=="string"?E:g}}}catch{}let O=y.headers.get("x-request-id"),G=O?` | X-Request-ID: ${O}`:"",U=Object.assign(new Error(`Upload failed: ${y.status} \u2014 ${V}${G}`),{status:y.status});throw w(U)??U}console.log(`\u2705 Version ${n} uploaded`)}async getVersion(t,n){let r=encodeURIComponent(t),o=encodeURIComponent(n),i=`${this.appsBasePath}/${r}/versions/${o}`;try{let c=await this.client.get(i);return N(c.data)}catch(c){throw x(c,[t,n])?new C(t,n):w(c)??c}}async getActiveVersion(t){let n=encodeURIComponent(t),r=`${this.appsBasePath}/${n}/active`;try{let o=await this.client.get(r);return N(o.data)}catch(o){if(x(o,[t]))return null;throw w(o)??o}}async updateVersions(t,n){let r=encodeURIComponent(t),o=`${this.appsBasePath}/${r}/versions/update`;try{await this.client.post(o,{data:{items:n}})}catch(i){throw w(i)??i}}};s(T,"AppHostingApi");var v=T;var b=class b{constructor(t){this.api=new v(t)}getVersion(t,n){return this.api.getVersion(t,n)}uploadVersion(t,n,r,o,i){return this.api.uploadVersion(t,n,r,o,i)}async ensureApp(t,n,r){console.log("\u{1F50D} Ensuring app exists...");try{await this.api.createApp(t,n,r),console.log(`\u2705 App '${t}' created`)}catch(o){if(S(o)&&o.status===409){console.log(`\u2705 App '${t}' already exists`);return}throw o}}async publishVersion(t,n){await this.api.updateVersions(t,[{version:n,update:{lifecycleState:{set:"PUBLISHED"}}}])}async publishAndActivate(t,n){console.log(`\u{1F680} Publishing and activating version ${n}...`),await this.api.updateVersions(t,[{version:n,update:{lifecycleState:{set:"PUBLISHED"},alias:{set:"ACTIVE"}}}]),console.log(`\u2705 Version ${n} is now PUBLISHED and ACTIVE`)}async activateVersion(t,n){let r=null;try{r=await this.api.getActiveVersion(t)}catch{r=null}let o=r&&r.version!==n?r.version:void 0;return await this.api.updateVersions(t,[{version:n,update:{alias:{set:"ACTIVE"}}}]),{supersededVersion:o}}async deploy(t,n,r,o,i,c,p=!1){console.log(`
4
+ ${n}`),{cause:t}):null}s(w,"enrichedHttpError");function W(e){if(!f(e))return null;let t=e.missing;if(Array.isArray(t))return t;let n=e.data;if(f(n)){let r=n.error;if(f(r)&&Array.isArray(r.missing))return r.missing;if(Array.isArray(n.missing))return n.missing}return null}s(W,"findMissingArray");function Z(e,t){if(!S(e)||e.status!==400)return!1;let n=W(e);return n?n.some(r=>f(r)&&typeof r.externalId=="string"&&t.includes(r.externalId)):!1}s(Z,"isMissingExternalIdError");function x(e,t){return S(e)&&e.status===404||Z(e,t)}s(x,"isNotFoundError");var H=["DRAFT","PUBLISHED","DEPRECATED","ARCHIVED"],q=["ACTIVE","PREVIEW"],I=class I extends Error{constructor(t,n){super(`Version ${n} of app ${t} not found`),this.name="AppVersionNotFoundError",this.appExternalId=t,this.version=n}};s(I,"AppVersionNotFoundError");var C=I;function M(e,t){return e.includes(t)}s(M,"includesValue");function X(e){return M(H,e)}s(X,"isAppVersionLifecycleState");function Q(e){return M(q,e)}s(Q,"isAppVersionAlias");function tt(e){return typeof e.version=="string"&&X(e.lifecycleState)&&typeof e.entrypoint=="string"&&typeof e.createdTime=="number"&&typeof e.createdBy=="string"&&typeof e.appExternalId=="string"&&(e.alias===void 0||Q(e.alias))&&(e.comment===void 0||typeof e.comment=="string")}s(tt,"isAppVersion");function N(e){if(!f(e))throw new Error("Invalid version response: not an object");if(!tt(e))throw new Error("Invalid version response: missing or malformed fields");return e}s(N,"parseAppVersion");var T=class T{constructor(t){this.client=t}get appsBasePath(){return`/api/v1/projects/${encodeURIComponent(this.client.project)}/apphosting/apps`}async createApp(t,n,r){try{await this.client.post(this.appsBasePath,{data:{items:[{externalId:t,name:n,description:r}]}})}catch(o){throw w(o)??o}}async uploadVersion(t,n,r,o,i="index.html"){console.log(`\u{1F4E4} Uploading version ${n}...`);let c=new FormData;c.append("file",new Blob([new Uint8Array(r)]),o),c.append("version",n),c.append("entryPath",i);let l=encodeURIComponent(t),a=`${this.appsBasePath}/${l}/versions`,p=await this.client.authenticate(),h=`${this.client.getBaseUrl()}${a}`,d=new AbortController,Y=setTimeout(()=>d.abort(),300*1e3),y;try{y=await fetch(h,{method:"POST",headers:{Authorization:`Bearer ${p}`},body:c,signal:d.signal})}catch(g){throw g instanceof Error&&g.name==="AbortError"?new Error("Upload timed out after 5 minutes"):g}finally{clearTimeout(Y)}if(!y.ok){let g=await y.text(),V=g;try{let v=JSON.parse(g);if(f(v)){let A=v.error;if(typeof A=="string")V=A;else if(f(A)){let E=A.message,B=A.code;V=typeof E=="string"?E:B!=null?`Unknown error (code: ${B})`:g}else{let E=v.message;V=typeof E=="string"?E:g}}}catch{}let U=y.headers.get("x-request-id"),G=U?` | X-Request-ID: ${U}`:"",O=Object.assign(new Error(`Upload failed: ${y.status} \u2014 ${V}${G}`),{status:y.status});throw w(O)??O}console.log(`\u2705 Version ${n} uploaded`)}async getVersion(t,n){let r=encodeURIComponent(t),o=encodeURIComponent(n),i=`${this.appsBasePath}/${r}/versions/${o}`;try{let c=await this.client.get(i);return N(c.data)}catch(c){throw x(c,[t,n])?new C(t,n):w(c)??c}}async getActiveVersion(t){let n=encodeURIComponent(t),r=`${this.appsBasePath}/${n}/active`;try{let o=await this.client.get(r);return N(o.data)}catch(o){if(x(o,[t]))return null;throw w(o)??o}}async updateVersions(t,n){let r=encodeURIComponent(t),o=`${this.appsBasePath}/${r}/versions/update`;try{await this.client.post(o,{data:{items:n}})}catch(i){throw w(i)??i}}};s(T,"AppHostingApi");var $=T;var b=class b{constructor(t){this.api=new $(t)}getVersion(t,n){return this.api.getVersion(t,n)}uploadVersion(t,n,r,o,i){return this.api.uploadVersion(t,n,r,o,i)}async ensureApp(t,n,r){console.log("\u{1F50D} Ensuring app exists...");try{await this.api.createApp(t,n,r),console.log(`\u2705 App '${t}' created`)}catch(o){if(S(o)&&o.status===409){console.log(`\u2705 App '${t}' already exists`);return}throw o}}async publishVersion(t,n){await this.api.updateVersions(t,[{version:n,update:{lifecycleState:{set:"PUBLISHED"}}}])}async publishAndActivate(t,n){console.log(`\u{1F680} Publishing and activating version ${n}...`),await this.api.updateVersions(t,[{version:n,update:{lifecycleState:{set:"PUBLISHED"},alias:{set:"ACTIVE"}}}]),console.log(`\u2705 Version ${n} is now PUBLISHED and ACTIVE`)}async activateVersion(t,n){let r=null;try{r=await this.api.getActiveVersion(t)}catch{r=null}let o=r&&r.version!==n?r.version:void 0;return await this.api.updateVersions(t,[{version:n,update:{alias:{set:"ACTIVE"}}}]),{supersededVersion:o}}async deploy(t,n,r,o,i,c,l=!1){console.log(`
5
5
  \u{1F680} Deploying application via App Hosting API...
6
- `);try{await this.ensureApp(t,n,r),await this.uploadVersion(t,o,i,c),p&&await this.publishAndActivate(t,o),console.log(`
7
- \u2705 Deployment successful!`)}catch(a){let l=a instanceof Error?a.message:String(a);throw Object.assign(new Error(`Deployment failed: ${l}`),{cause:a})}}};s(b,"AppHostingClient");var P=b;import m from"fs";import u from"path";import{parseAndValidateManifestConfig as et}from"@cognite/app-sdk/vite";import{BlobReader as nt,Uint8ArrayWriter as rt,ZipWriter as ot}from"@zip.js/zip.js";var R="package.json",L="package-lock.json",z="manifest.json",D=class D{constructor(t="dist",n={}){this.distPath=u.isAbsolute(t)?t:u.join(process.cwd(),t),this.appRoot=u.dirname(this.distPath),this.requireLockFile=n.requireLockFile??!1}validateBuildDirectory(){if(!m.existsSync(this.distPath))throw new Error(`Build directory "${this.distPath}" not found. Run build first.`);let t=u.join(this.appRoot,R);if(!m.existsSync(t))throw new Error(`"${t}" not found. It is required for deployment.`);if(this.requireLockFile){let n=u.join(this.appRoot,L);if(!m.existsSync(n))throw new Error(`"${n}" not found. It is required for deployment.`)}}async createZip(t="app.zip",n=!1){this.validateBuildDirectory(),console.log("\u{1F4E6} Packaging application...");let r=new ot(new rt,{level:9}),o=s(async(a,l)=>{await r.add(l,new nt(await m.openAsBlob(a))),n&&console.log(` \u{1F4C4} ${l}`)},"addFile"),i=s(async a=>{let l=await m.promises.readdir(a,{withFileTypes:!0});for(let h of l){let d=u.join(a,h.name);h.isDirectory()?await i(d):await o(d,u.relative(this.distPath,d).replace(/\\/g,"/"))}},"addDir"),c;try{await i(this.distPath),await o(u.join(this.appRoot,R),R);let a=u.join(this.appRoot,z);if(m.existsSync(a)){let l=m.readFileSync(a,"utf-8");et(l,a),await o(a,z)}this.requireLockFile&&await o(u.join(this.appRoot,L),L),c=await r.close()}catch(a){let l=a instanceof Error?a.message:String(a);throw new Error(`Failed to create zip: ${l}`)}await m.promises.writeFile(t,c);let p=(c.byteLength/1024/1024).toFixed(2);return console.log(`\u2705 App packaged: ${t} (${p} MB)`),t}};s(D,"ApplicationPackager");var k=D;import{CogniteClient as lt}from"@cognite/sdk";var st=s(()=>{let e=process.env.DEPLOYMENT_SECRETS;if(!e)return{};try{let t=JSON.parse(e),n={};for(let[r,o]of Object.entries(t))if(typeof o=="string"){let i=r.toLowerCase().replace(/_/g,"-");n[i]=o}return n}catch(t){return console.error("Error parsing DEPLOYMENT_SECRETS:",t),{}}},"loadSecretsFromEnv"),it=s(e=>{let t;if(process.env.DEPLOYMENT_SECRET&&(t=process.env.DEPLOYMENT_SECRET),t||(t=st()[e]),t||(t=process.env[e]),!t)throw new Error(`Secret not found in environment: ${e}`);return t},"getSecretFromEnv"),at=s(e=>{if(!e)return"";try{return new URL(e).hostname.replace(/\.cognitedata\.com$/,"")}catch{let t=e.replace(/^https?:\/\//,"");return t=t.split("/")[0],t=t.split(":")[0],t=t.replace(/\.cognitedata\.com$/,""),t}},"extractClusterFromUrl"),ct=s(async(e,t)=>{let n=`Basic ${btoa(`${e}:${t}`)}`,r=await fetch("https://auth.cognite.com/oauth2/token",{method:"POST",headers:{Authorization:n,"Content-Type":"application/x-www-form-urlencoded"},body:new URLSearchParams({grant_type:"client_credentials"})});if(!r.ok){let i=await r.text();throw new Error(`Failed to get token from CDF: ${r.status} ${r.statusText}
8
- ${i}`)}let o=await r.json();if(!o.access_token)throw new Error("No access token returned from CDF authentication");return o.access_token},"getTokenCdf"),pt=s(async(e,t,n,r)=>{if(!r)throw new Error("Entra ID authentication requires 'baseUrl' to be set in deployment configuration");let o=at(r);if(!o)throw new Error(`Entra ID authentication requires 'baseUrl' to be a valid CDF URL (e.g., https://cluster.cognitedata.com), got: ${r}`);let i=`https://login.microsoftonline.com/${n}/oauth2/v2.0/token`,c=`https://${o}.cognitedata.com/.default`,p=await fetch(i,{method:"POST",headers:{"Content-Type":"application/x-www-form-urlencoded"},body:new URLSearchParams({client_id:e,client_secret:t,scope:c,grant_type:"client_credentials"})});if(!p.ok){let l=await p.text();throw new Error(`Failed to get token from Entra ID: ${p.status} ${p.statusText}
9
- ${l}`)}let a=await p.json();if(!a.access_token)throw new Error("No access token returned from Entra ID authentication");return a.access_token},"getTokenEntra"),_=s(async(e,t=process.env)=>{if(t.COGNITE_TOKEN)return t.COGNITE_TOKEN;let{deployClientId:n,deploySecretName:r,idpType:o="cdf",tenantId:i,baseUrl:c}=e,p=it(r);if(o==="entra_id"){if(!i)throw new Error("Entra ID authentication requires 'tenantId' in deployment configuration");return pt(n,p,i,c)}return ct(n,p)},"getToken");var F=s(async(e,t,n=process.env)=>{let r=await _(e,n),o=n.COGNITE_BASE_URL??e.baseUrl,i=new lt({appId:t,project:e.project,baseUrl:o,oidcTokenProvider:s(async()=>r,"oidcTokenProvider")});return await i.authenticate(),i},"getSdk");var dt=s(async(e,t,n)=>{let r=await new k(`${n}/dist`,{requireLockFile:!0}).createZip("app.zip",!0);try{let{externalId:o,name:i,description:c,versionTag:p}=t,a=await F(e,n),l=new P(a),h=J.readFileSync(r),d=ut.basename(r);await l.deploy(o,i,c,p,h,d,e.published)}finally{try{J.unlinkSync(r)}catch{}}},"deploy");export{P as AppHostingClient,k as ApplicationPackager,dt as deploy,F as getSdk,_ as getToken};
6
+ `);try{await this.ensureApp(t,n,r),await this.uploadVersion(t,o,i,c),l&&await this.publishAndActivate(t,o),console.log(`
7
+ \u2705 Deployment successful!`)}catch(a){let p=a instanceof Error?a.message:String(a);throw Object.assign(new Error(`Deployment failed: ${p}`),{cause:a})}}};s(b,"AppHostingClient");var P=b;import m from"fs";import u from"path";import{parseAndValidateManifestConfig as et}from"@cognite/app-sdk/vite";import{BlobReader as nt,Uint8ArrayWriter as rt,ZipWriter as ot}from"@zip.js/zip.js";var R="package.json",L="package-lock.json",z="manifest.json",D=class D{constructor(t="dist",n={}){this.distPath=u.isAbsolute(t)?t:u.join(process.cwd(),t),this.appRoot=u.dirname(this.distPath),this.requireLockFile=n.requireLockFile??!1}validateBuildDirectory(){if(!m.existsSync(this.distPath))throw new Error(`Build directory "${this.distPath}" not found. Run build first.`);let t=u.join(this.appRoot,R);if(!m.existsSync(t))throw new Error(`"${t}" not found. It is required for deployment.`);if(this.requireLockFile){let n=u.join(this.appRoot,L);if(!m.existsSync(n))throw new Error(`"${n}" not found. It is required for deployment.`)}}async createZip(t="app.zip",n=!1){this.validateBuildDirectory(),console.log("\u{1F4E6} Packaging application...");let r=new ot(new rt,{level:9}),o=s(async(a,p)=>{await r.add(p,new nt(await m.openAsBlob(a))),n&&console.log(` \u{1F4C4} ${p}`)},"addFile"),i=s(async a=>{let p=await m.promises.readdir(a,{withFileTypes:!0});for(let h of p){let d=u.join(a,h.name);h.isDirectory()?await i(d):await o(d,u.relative(this.distPath,d).replace(/\\/g,"/"))}},"addDir"),c;try{await i(this.distPath),await o(u.join(this.appRoot,R),R);let a=u.join(this.appRoot,z);if(m.existsSync(a)){let p=m.readFileSync(a,"utf-8");et(p,a),await o(a,z)}this.requireLockFile&&await o(u.join(this.appRoot,L),L),c=await r.close()}catch(a){let p=a instanceof Error?a.message:String(a);throw new Error(`Failed to create zip: ${p}`)}await m.promises.writeFile(t,c);let l=(c.byteLength/1024/1024).toFixed(2);return console.log(`\u2705 App packaged: ${t} (${l} MB)`),t}};s(D,"ApplicationPackager");var k=D;import{CogniteClient as lt}from"@cognite/sdk";var st=s(()=>{let e=process.env.DEPLOYMENT_SECRETS;if(!e)return{};try{let t=JSON.parse(e),n={};for(let[r,o]of Object.entries(t))if(typeof o=="string"){let i=r.toLowerCase().replace(/_/g,"-");n[i]=o}return n}catch(t){return console.error("Error parsing DEPLOYMENT_SECRETS:",t),{}}},"loadSecretsFromEnv"),it=s(e=>{let t;if(process.env.DEPLOYMENT_SECRET&&(t=process.env.DEPLOYMENT_SECRET),t||(t=st()[e]),t||(t=process.env[e]),!t)throw new Error(`Secret not found in environment: ${e}`);return t},"getSecretFromEnv"),at=s(e=>{if(!e)return"";try{return new URL(e).hostname.replace(/\.cognitedata\.com$/,"")}catch{let t=e.replace(/^https?:\/\//,"");return t=t.split("/")[0],t=t.split(":")[0],t=t.replace(/\.cognitedata\.com$/,""),t}},"extractClusterFromUrl"),ct=s(async(e,t)=>{let n=`Basic ${btoa(`${e}:${t}`)}`,r=await fetch("https://auth.cognite.com/oauth2/token",{method:"POST",headers:{Authorization:n,"Content-Type":"application/x-www-form-urlencoded"},body:new URLSearchParams({grant_type:"client_credentials"})});if(!r.ok){let i=await r.text();throw new Error(`Failed to get token from CDF: ${r.status} ${r.statusText}
8
+ ${i}`)}let o=await r.json();if(!o.access_token)throw new Error("No access token returned from CDF authentication");return o.access_token},"getTokenCdf"),pt=s(async(e,t,n,r,o)=>{let i;if(o)i=o;else{if(!r)throw new Error("Entra ID authentication requires 'baseUrl' to be set in deployment configuration");let p=at(r);if(!p)throw new Error(`Entra ID authentication requires 'baseUrl' to be a valid CDF URL (e.g., https://cluster.cognitedata.com), got: ${r}`);i=`https://${p}.cognitedata.com/.default`}let c=`https://login.microsoftonline.com/${n}/oauth2/v2.0/token`,l=await fetch(c,{method:"POST",headers:{"Content-Type":"application/x-www-form-urlencoded"},body:new URLSearchParams({client_id:e,client_secret:t,scope:i,grant_type:"client_credentials"})});if(!l.ok){let p=await l.text();throw new Error(`Failed to get token from Entra ID: ${l.status} ${l.statusText}
9
+ ${p}`)}let a=await l.json();if(!a.access_token)throw new Error("No access token returned from Entra ID authentication");return a.access_token},"getTokenEntra"),_=s(async(e,t=process.env)=>{if(t.COGNITE_TOKEN)return t.COGNITE_TOKEN;let{deployClientId:n,deploySecretName:r,idpType:o="cdf",tenantId:i,baseUrl:c,scope:l}=e,a=it(r);if(o==="entra_id"){if(!i)throw new Error("Entra ID authentication requires 'tenantId' in deployment configuration");return pt(n,a,i,c,l)}return ct(n,a)},"getToken");var F=s(async(e,t,n=process.env)=>{let r=await _(e,n),o=n.COGNITE_BASE_URL??e.baseUrl,i=new lt({appId:t,project:e.project,baseUrl:o,oidcTokenProvider:s(async()=>r,"oidcTokenProvider")});return await i.authenticate(),i},"getSdk");var dt=s(async(e,t,n)=>{let r=await new k(`${n}/dist`,{requireLockFile:!0}).createZip("app.zip",!0);try{let{externalId:o,name:i,description:c,versionTag:l}=t,a=await F(e,n),p=new P(a),h=J.readFileSync(r),d=ut.basename(r);await p.deploy(o,i,c,l,h,d,e.published)}finally{try{J.unlinkSync(r)}catch{}}},"deploy");export{P as AppHostingClient,k as ApplicationPackager,dt as deploy,F as getSdk,_ as getToken};
package/package.json CHANGED
@@ -1,6 +1,6 @@
1
1
  {
2
2
  "name": "@cognite/cli",
3
- "version": "0.7.0-alpha.32",
3
+ "version": "1.0.0-alpha.42",
4
4
  "description": "CLI for Cognite Data Fusion",
5
5
  "license": "Apache-2.0",
6
6
  "author": "Cognite",
@@ -100,7 +100,7 @@
100
100
  "react-dom": "^19.2.6",
101
101
  "tsup": "^8.4.0",
102
102
  "typescript": "^5.0.0",
103
- "vitest": "^2.1.8"
103
+ "vitest": "^3.2.4"
104
104
  },
105
105
  "engines": {
106
106
  "node": ">=20"