@eide/foir-cli 0.1.22 → 0.1.23

package/dist/auth/credentials.d.ts

@@ -7,23 +7,25 @@ export interface StoredCredentials {
         email: string;
         name: string;
     };
-    selectedProject?: {
-        id: string;
-        name: string;
-        tenantId: string;
-        apiKey?: string;
-        apiKeyId?: string;
-    };
 }
 export declare function getCredentialsDir(): string;
 export declare function getCredentialsPath(): string;
 export declare function getCredentials(): Promise<StoredCredentials | null>;
 export declare function writeCredentials(credentials: StoredCredentials): Promise<void>;
-export declare function updateCredentials(updates: Partial<StoredCredentials>): Promise<void>;
 export declare function deleteCredentials(): Promise<void>;
 export declare function isTokenExpired(credentials: StoredCredentials): boolean;
 export declare function getValidCredentials(refreshFn?: (refreshToken: string) => Promise<{
     accessToken: string;
     expiresAt: string;
 }>): Promise<StoredCredentials | null>;
+export interface ProjectContext {
+    id: string;
+    name: string;
+    tenantId: string;
+    apiKey?: string;
+    apiKeyId?: string;
+}
+export declare function getProjectContext(): Promise<ProjectContext | null>;
+export declare function writeProjectContext(project: ProjectContext): Promise<void>;
+export declare function deleteProjectContext(): Promise<void>;
 //# sourceMappingURL=credentials.d.ts.map

package/dist/auth/credentials.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"credentials.d.ts","sourceRoot":"","sources":["../../src/auth/credentials.ts"],"names":[],"mappings":"AAIA,MAAM,WAAW,iBAAiB;IAChC,WAAW,EAAE,MAAM,CAAC;IACpB,YAAY,EAAE,MAAM,CAAC;IACrB,SAAS,EAAE,MAAM,CAAC;IAClB,IAAI,EAAE;QACJ,EAAE,EAAE,MAAM,CAAC;QACX,KAAK,EAAE,MAAM,CAAC;QACd,IAAI,EAAE,MAAM,CAAC;KACd,CAAC;IACF,eAAe,CAAC,EAAE;QAChB,EAAE,EAAE,MAAM,CAAC;QACX,IAAI,EAAE,MAAM,CAAC;QACb,QAAQ,EAAE,MAAM,CAAC;QACjB,MAAM,CAAC,EAAE,MAAM,CAAC;QAChB,QAAQ,CAAC,EAAE,MAAM,CAAC;KACnB,CAAC;CACH;AAED,wBAAgB,iBAAiB,IAAI,MAAM,CAE1C;AAED,wBAAgB,kBAAkB,IAAI,MAAM,CAE3C;AAaD,wBAAsB,cAAc,IAAI,OAAO,CAAC,iBAAiB,GAAG,IAAI,CAAC,CAUxE;AAED,wBAAsB,gBAAgB,CACpC,WAAW,EAAE,iBAAiB,GAC7B,OAAO,CAAC,IAAI,CAAC,CAMf;AAED,wBAAsB,iBAAiB,CACrC,OAAO,EAAE,OAAO,CAAC,iBAAiB,CAAC,GAClC,OAAO,CAAC,IAAI,CAAC,CAMf;AAED,wBAAsB,iBAAiB,IAAI,OAAO,CAAC,IAAI,CAAC,CAQvD;AAED,wBAAgB,cAAc,CAAC,WAAW,EAAE,iBAAiB,GAAG,OAAO,CAItE;AAED,wBAAsB,mBAAmB,CACvC,SAAS,CAAC,EAAE,CACV,YAAY,EAAE,MAAM,KACjB,OAAO,CAAC;IAAE,WAAW,EAAE,MAAM,CAAC;IAAC,SAAS,EAAE,MAAM,CAAA;CAAE,CAAC,GACvD,OAAO,CAAC,iBAAiB,GAAG,IAAI,CAAC,CAoBnC"}
+{"version":3,"file":"credentials.d.ts","sourceRoot":"","sources":["../../src/auth/credentials.ts"],"names":[],"mappings":"AAQA,MAAM,WAAW,iBAAiB;IAChC,WAAW,EAAE,MAAM,CAAC;IACpB,YAAY,EAAE,MAAM,CAAC;IACrB,SAAS,EAAE,MAAM,CAAC;IAClB,IAAI,EAAE;QACJ,EAAE,EAAE,MAAM,CAAC;QACX,KAAK,EAAE,MAAM,CAAC;QACd,IAAI,EAAE,MAAM,CAAC;KACd,CAAC;CACH;AAED,wBAAgB,iBAAiB,IAAI,MAAM,CAE1C;AAED,wBAAgB,kBAAkB,IAAI,MAAM,CAE3C;AAYD,wBAAsB,cAAc,IAAI,OAAO,CAAC,iBAAiB,GAAG,IAAI,CAAC,CAUxE;AAED,wBAAsB,gBAAgB,CACpC,WAAW,EAAE,iBAAiB,GAC7B,OAAO,CAAC,IAAI,CAAC,CAMf;AAED,wBAAsB,iBAAiB,IAAI,OAAO,CAAC,IAAI,CAAC,CAQvD;AAED,wBAAgB,cAAc,CAAC,WAAW,EAAE,iBAAiB,GAAG,OAAO,CAItE;AAED,wBAAsB,mBAAmB,CACvC,SAAS,CAAC,EAAE,CACV,YAAY,EAAE,MAAM,KACjB,OAAO,CAAC;IAAE,WAAW,EAAE,MAAM,CAAC;IAAC,SAAS,EAAE,MAAM,CAAA;CAAE,CAAC,GACvD,OAAO,CAAC,iBAAiB,GAAG,IAAI,CAAC,CAoBnC;AAMD,MAAM,WAAW,cAAc;IAC7B,EAAE,EAAE,MAAM,CAAC;IACX,IAAI,EAAE,MAAM,CAAC;IACb,QAAQ,EAAE,MAAM,CAAC;IACjB,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,QAAQ,CAAC,EAAE,MAAM,CAAC;CACnB;AA4CD,wBAAsB,iBAAiB,IAAI,OAAO,CAAC,cAAc,GAAG,IAAI,CAAC,CAUxE;AAED,wBAAsB,mBAAmB,CACvC,OAAO,EAAE,cAAc,GACtB,OAAO,CAAC,IAAI,CAAC,CAOf;AAED,wBAAsB,oBAAoB,IAAI,OAAO,CAAC,IAAI,CAAC,CAQ1D"}

package/dist/auth/credentials.js

@@ -1,5 +1,5 @@
-import { promises as fs } from 'fs';
-import { join } from 'path';
+import { promises as fs, statSync } from 'fs';
+import { join, dirname } from 'path';
 import { homedir } from 'os';
 export function getCredentialsDir() {
     return join(homedir(), '.foir');
@@ -7,8 +7,7 @@ export function getCredentialsDir() {
 export function getCredentialsPath() {
     return join(getCredentialsDir(), 'credentials.json');
 }
-async function ensureCredentialsDir() {
-    const dir = getCredentialsDir();
+async function ensureDir(dir) {
     try {
         await fs.mkdir(dir, { recursive: true, mode: 0o700 });
     }
@@ -31,19 +30,12 @@ export async function getCredentials() {
     }
 }
 export async function writeCredentials(credentials) {
-    await ensureCredentialsDir();
+    await ensureDir(getCredentialsDir());
     const path = getCredentialsPath();
     await fs.writeFile(path, JSON.stringify(credentials, null, 2), {
         mode: 0o600,
     });
 }
-export async function updateCredentials(updates) {
-    const existing = await getCredentials();
-    if (!existing) {
-        throw new Error('No credentials found. Run `foir login` first.');
-    }
-    await writeCredentials({ ...existing, ...updates });
-}
 export async function deleteCredentials() {
     try {
         await fs.unlink(getCredentialsPath());
@@ -77,3 +69,72 @@ export async function getValidCredentials(refreshFn) {
     }
     return credentials;
 }
+const REPO_ROOT_MARKERS = [
+    '.git',
+    'foir.config.ts',
+    '.foirrc.ts',
+    'foir.config.js',
+    '.foirrc.js',
+    'foir.config.mjs',
+    '.foirrc.mjs',
+];
+/**
+ * Walk up from cwd looking for markers that indicate the repo root.
+ * Returns cwd as fallback if no marker is found.
+ */
+function findRepoRoot(from = process.cwd()) {
+    let dir = from;
+    // eslint-disable-next-line no-constant-condition
+    while (true) {
+        for (const marker of REPO_ROOT_MARKERS) {
+            try {
+                statSync(join(dir, marker));
+                return dir;
+            }
+            catch {
+                // not found, continue
+            }
+        }
+        const parent = dirname(dir);
+        if (parent === dir) {
+            return from; // filesystem root reached, fallback to cwd
+        }
+        dir = parent;
+    }
+}
+function getProjectContextDir() {
+    return join(findRepoRoot(), '.foir');
+}
+function getProjectContextPath() {
+    return join(getProjectContextDir(), 'project.json');
+}
+export async function getProjectContext() {
+    try {
+        const content = await fs.readFile(getProjectContextPath(), 'utf-8');
+        return JSON.parse(content);
+    }
+    catch (error) {
+        if (error.code === 'ENOENT') {
+            return null;
+        }
+        throw error;
+    }
+}
+export async function writeProjectContext(project) {
+    const dir = getProjectContextDir();
+    await ensureDir(dir);
+    const filePath = getProjectContextPath();
+    await fs.writeFile(filePath, JSON.stringify(project, null, 2), {
+        mode: 0o600,
+    });
+}
+export async function deleteProjectContext() {
+    try {
+        await fs.unlink(getProjectContextPath());
+    }
+    catch (error) {
+        if (error.code !== 'ENOENT') {
+            throw error;
+        }
+    }
+}

package/dist/commands/context.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"context.d.ts","sourceRoot":"","sources":["../../src/commands/context.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC;AAEzC,OAAO,EAGL,KAAK,aAAa,EACnB,MAAM,kBAAkB,CAAC;AA8B1B,wBAAgB,uBAAuB,CACrC,OAAO,EAAE,OAAO,EAChB,UAAU,EAAE,MAAM,aAAa,GAC9B,IAAI,CAmIN"}
+{"version":3,"file":"context.d.ts","sourceRoot":"","sources":["../../src/commands/context.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC;AAMzC,OAAO,EAGL,KAAK,aAAa,EACnB,MAAM,kBAAkB,CAAC;AA8B1B,wBAAgB,uBAAuB,CACrC,OAAO,EAAE,OAAO,EAChB,UAAU,EAAE,MAAM,aAAa,GAC9B,IAAI,CAkIN"}

package/dist/commands/context.js

@@ -1,4 +1,4 @@
-import { getCredentials, updateCredentials } from '../auth/credentials.js';
+import { getCredentials, getProjectContext, writeProjectContext, } from '../auth/credentials.js';
 import { getApiUrl, getGraphQLEndpoint, } from '../lib/config.js';
 import { withErrorHandler } from '../lib/errors.js';
 import { formatList, success } from '../lib/output.js';
@@ -34,9 +34,10 @@ export function registerContextCommands(program, globalOpts) {
             throw new Error('Not logged in. Run `foir login` first.');
         const apiUrl = getApiUrl(opts);
         const data = await gqlRequest(apiUrl, credentials.accessToken, `query { sessionContext { projectId availableProjects { id name tenantId } } }`);
+        const projectContext = await getProjectContext();
         const projects = data.sessionContext.availableProjects.map((p) => ({
             ...p,
-            current: p.id === credentials.selectedProject?.id ? '*' : '',
+            current: p.id === projectContext?.id ? '*' : '',
         }));
         formatList(projects, opts, {
             columns: [
@@ -61,12 +62,10 @@ export function registerContextCommands(program, globalOpts) {
         const project = data.sessionContext.availableProjects.find((p) => p.id === projectId);
         if (!project)
             throw new Error(`Project "${projectId}" not found.`);
-        await updateCredentials({
-            selectedProject: {
-                id: project.id,
-                name: project.name,
-                tenantId: project.tenantId,
-            },
+        await writeProjectContext({
+            id: project.id,
+            name: project.name,
+            tenantId: project.tenantId,
         });
         success(`Switched to project: ${project.name}`);
         console.log('Run `foir select-project` to provision a new API key for this project.');

package/dist/commands/select-project.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"select-project.d.ts","sourceRoot":"","sources":["../../src/commands/select-project.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC;AAEzC,OAAO,EAGL,KAAK,aAAa,EACnB,MAAM,kBAAkB,CAAC;AAgL1B,wBAAgB,4BAA4B,CAC1C,OAAO,EAAE,OAAO,EAChB,UAAU,EAAE,MAAM,aAAa,GAC9B,IAAI,CAoGN"}
+{"version":3,"file":"select-project.d.ts","sourceRoot":"","sources":["../../src/commands/select-project.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC;AAEzC,OAAO,EAGL,KAAK,aAAa,EACnB,MAAM,kBAAkB,CAAC;AAgL1B,wBAAgB,4BAA4B,CAC1C,OAAO,EAAE,OAAO,EAChB,UAAU,EAAE,MAAM,aAAa,GAC9B,IAAI,CAmGN"}

package/dist/commands/select-project.js

@@ -1,5 +1,5 @@
 import inquirer from 'inquirer';
-import { getCredentials, updateCredentials } from '../auth/credentials.js';
+import { getCredentials, writeProjectContext } from '../auth/credentials.js';
 import { getApiUrl, getGraphQLEndpoint, } from '../lib/config.js';
 import { withErrorHandler } from '../lib/errors.js';
 const CLI_API_KEY_NAME = 'Foir CLI';
@@ -130,16 +130,15 @@ export function registerSelectProjectCommand(program, globalOpts) {
         }
         console.log('\nProvisioning API key for CLI access...');
         const { apiKey, apiKeyId } = await provisionApiKey(apiUrl, credentials.accessToken, selectedProject.id, selectedProject.tenantId);
-        await updateCredentials({
-            selectedProject: {
-                id: selectedProject.id,
-                name: selectedProject.name,
-                tenantId: selectedProject.tenantId,
-                apiKey,
-                apiKeyId,
-            },
+        await writeProjectContext({
+            id: selectedProject.id,
+            name: selectedProject.name,
+            tenantId: selectedProject.tenantId,
+            apiKey,
+            apiKeyId,
         });
         console.log(`\n✓ Selected project: ${selectedProject.name}`);
         console.log('✓ API key provisioned for CLI access');
+        console.log('  (stored in .foir/project.json for this repository)');
     }));
 }

package/dist/commands/whoami.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"whoami.d.ts","sourceRoot":"","sources":["../../src/commands/whoami.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC;AAEzC,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,kBAAkB,CAAC;AAItD,wBAAgB,qBAAqB,CACnC,OAAO,EAAE,OAAO,EAChB,UAAU,EAAE,MAAM,aAAa,GAC9B,IAAI,CAwDN"}
+{"version":3,"file":"whoami.d.ts","sourceRoot":"","sources":["../../src/commands/whoami.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC;AAMzC,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,kBAAkB,CAAC;AAItD,wBAAgB,qBAAqB,CACnC,OAAO,EAAE,OAAO,EAChB,UAAU,EAAE,MAAM,aAAa,GAC9B,IAAI,CAyDN"}

package/dist/commands/whoami.js

@@ -1,4 +1,4 @@
-import { getCredentials, isTokenExpired } from '../auth/credentials.js';
+import { getCredentials, getProjectContext, isTokenExpired, } from '../auth/credentials.js';
 import { withErrorHandler } from '../lib/errors.js';
 import { formatOutput } from '../lib/output.js';
 export function registerWhoamiCommand(program, globalOpts) {
@@ -19,12 +19,13 @@ export function registerWhoamiCommand(program, globalOpts) {
             process.exit(1);
         }
         const expired = isTokenExpired(credentials);
+        const projectContext = await getProjectContext();
         if (opts.json || opts.jsonl) {
             formatOutput({
                 authenticated: true,
                 tokenValid: !expired,
                 user: credentials.user,
-                selectedProject: credentials.selectedProject ?? null,
+                selectedProject: projectContext ?? null,
             }, opts);
             return;
         }
@@ -33,17 +34,17 @@ export function registerWhoamiCommand(program, globalOpts) {
         console.log(`User:    ${credentials.user.name} <${credentials.user.email}>`);
         console.log(`User ID: ${credentials.user.id}`);
         console.log(`Token:   ${expired ? '⚠ Expired' : '✓ Valid'}`);
-        if (credentials.selectedProject) {
+        if (projectContext) {
             console.log('');
-            console.log('Selected Project');
+            console.log('Selected Project (this repo)');
             console.log('─'.repeat(40));
-            console.log(`Name:      ${credentials.selectedProject.name}`);
-            console.log(`ID:        ${credentials.selectedProject.id}`);
-            console.log(`Tenant ID: ${credentials.selectedProject.tenantId}`);
+            console.log(`Name:      ${projectContext.name}`);
+            console.log(`ID:        ${projectContext.id}`);
+            console.log(`Tenant ID: ${projectContext.tenantId}`);
         }
         else {
             console.log('');
-            console.log('No project selected.');
+            console.log('No project selected for this repository.');
             console.log('Run `foir select-project` to choose a project.');
         }
     }));

package/dist/lib/client.d.ts

@@ -5,6 +5,7 @@ import { type GlobalOptions } from './config.js';
  * Auth priority:
  *   1. FOIR_API_KEY env var (CI / headless / LLM mode)
  *   2. Stored credentials from ~/.foir/credentials.json (interactive)
+ * Project context is read from .foir/project.json in the current repo.
  */
 export declare function createClient(options?: GlobalOptions): Promise<GraphQLClient>;
 /**

package/dist/lib/client.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"client.d.ts","sourceRoot":"","sources":["../../src/lib/client.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,aAAa,EAAE,MAAM,iBAAiB,CAAC;AAEhD,OAAO,EAAiC,KAAK,aAAa,EAAE,MAAM,aAAa,CAAC;AAEhF;;;;;GAKG;AACH,wBAAsB,YAAY,CAChC,OAAO,CAAC,EAAE,aAAa,GACtB,OAAO,CAAC,aAAa,CAAC,CAiCxB;AAED;;GAEG;AACH,wBAAsB,WAAW,CAC/B,OAAO,CAAC,EAAE,aAAa,GACtB,OAAO,CAAC;IAAE,MAAM,EAAE,MAAM,CAAC;IAAC,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAA;CAAE,CAAC,CA2B9D"}
+{"version":3,"file":"client.d.ts","sourceRoot":"","sources":["../../src/lib/client.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,aAAa,EAAE,MAAM,iBAAiB,CAAC;AAMhD,OAAO,EAAiC,KAAK,aAAa,EAAE,MAAM,aAAa,CAAC;AAEhF;;;;;;GAMG;AACH,wBAAsB,YAAY,CAChC,OAAO,CAAC,EAAE,aAAa,GACtB,OAAO,CAAC,aAAa,CAAC,CAkCxB;AAED;;GAEG;AACH,wBAAsB,WAAW,CAC/B,OAAO,CAAC,EAAE,aAAa,GACtB,OAAO,CAAC;IAAE,MAAM,EAAE,MAAM,CAAC;IAAC,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAA;CAAE,CAAC,CA4B9D"}

package/dist/lib/client.js

@@ -1,11 +1,12 @@
 import { GraphQLClient } from 'graphql-request';
-import { getCredentials, isTokenExpired } from '../auth/credentials.js';
+import { getCredentials, getProjectContext, isTokenExpired, } from '../auth/credentials.js';
 import { getApiUrl, getGraphQLEndpoint } from './config.js';
 /**
  * Create an authenticated GraphQL client.
  * Auth priority:
  *   1. FOIR_API_KEY env var (CI / headless / LLM mode)
  *   2. Stored credentials from ~/.foir/credentials.json (interactive)
+ * Project context is read from .foir/project.json in the current repo.
  */
 export async function createClient(options) {
     const apiUrl = getApiUrl(options);
@@ -28,9 +29,10 @@ export async function createClient(options) {
         throw new Error('Session expired. Run `foir login` to re-authenticate.');
     }
     headers['Authorization'] = `Bearer ${credentials.accessToken}`;
-    if (credentials.selectedProject) {
-        headers['x-tenant-id'] = credentials.selectedProject.tenantId;
-        headers['x-project-id'] = credentials.selectedProject.id;
+    const project = await getProjectContext();
+    if (project) {
+        headers['x-tenant-id'] = project.tenantId;
+        headers['x-project-id'] = project.id;
     }
     return new GraphQLClient(endpoint, { headers });
 }
@@ -53,9 +55,10 @@ export async function getRestAuth(options) {
         throw new Error('Session expired. Run `foir login` to re-authenticate.');
     }
     headers['Authorization'] = `Bearer ${credentials.accessToken}`;
-    if (credentials.selectedProject) {
-        headers['x-tenant-id'] = credentials.selectedProject.tenantId;
-        headers['x-project-id'] = credentials.selectedProject.id;
+    const project = await getProjectContext();
+    if (project) {
+        headers['x-tenant-id'] = project.tenantId;
+        headers['x-project-id'] = project.id;
     }
     return { apiUrl, headers };
 }

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@eide/foir-cli",
-  "version": "0.1.22",
+  "version": "0.1.23",
   "description": "Universal platform CLI for EIDE — scriptable, composable resource management",
   "type": "module",
   "publishConfig": {