@forjio/suppuo-cli 0.1.0

package/bin/cli.js

@@ -0,0 +1,2 @@
+#!/usr/bin/env node
+import '../dist/index.js';

package/dist/commands/auth.d.ts

@@ -0,0 +1,9 @@
+import { Command } from 'commander';
+/**
+ * `auth login` / `auth whoami` / `auth logout` — OIDC device flow.
+ *
+ * Real implementation once Huudis M1 lands. For the template, stubs
+ * print clear "not yet wired" messages so cargo-culting into a product
+ * doesn't accidentally ship a fake login.
+ */
+export declare const auth: Command;

package/dist/commands/auth.js

@@ -0,0 +1,31 @@
+import { Command } from 'commander';
+import chalk from 'chalk';
+/**
+ * `auth login` / `auth whoami` / `auth logout` — OIDC device flow.
+ *
+ * Real implementation once Huudis M1 lands. For the template, stubs
+ * print clear "not yet wired" messages so cargo-culting into a product
+ * doesn't accidentally ship a fake login.
+ */
+export const auth = new Command('auth').description('Authenticate against Huudis');
+auth
+    .command('login')
+    .description('Sign in via OIDC device flow')
+    .action(async () => {
+    const issuer = process.env.FORJIO_OIDC_ISSUER ?? 'https://huudis.com';
+    console.log(chalk.dim(`Would initiate device flow against ${issuer}.`));
+    console.log(chalk.yellow('Not yet wired — implement once Huudis ships M1 (device flow endpoints).'));
+});
+auth
+    .command('whoami')
+    .description('Show the currently signed-in identity')
+    .action(async () => {
+    console.log(chalk.yellow('Not signed in. Run `auth login` after Huudis M1 ships.'));
+});
+auth
+    .command('logout')
+    .description('Clear the local session')
+    .action(async () => {
+    console.log(chalk.dim('No session to clear.'));
+});
+//# sourceMappingURL=auth.js.map

package/dist/commands/auth.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth.js","sourceRoot":"","sources":["../../src/commands/auth.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC;AACpC,OAAO,KAAK,MAAM,OAAO,CAAC;AAE1B;;;;;;GAMG;AAEH,MAAM,CAAC,MAAM,IAAI,GAAG,IAAI,OAAO,CAAC,MAAM,CAAC,CAAC,WAAW,CAAC,6BAA6B,CAAC,CAAC;AAEnF,IAAI;KACD,OAAO,CAAC,OAAO,CAAC;KAChB,WAAW,CAAC,8BAA8B,CAAC;KAC3C,MAAM,CAAC,KAAK,IAAI,EAAE;IACjB,MAAM,MAAM,GAAG,OAAO,CAAC,GAAG,CAAC,kBAAkB,IAAI,oBAAoB,CAAC;IACtE,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,sCAAsC,MAAM,GAAG,CAAC,CAAC,CAAC;IACxE,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,CAAC,yEAAyE,CAAC,CAAC,CAAC;AACvG,CAAC,CAAC,CAAC;AAEL,IAAI;KACD,OAAO,CAAC,QAAQ,CAAC;KACjB,WAAW,CAAC,uCAAuC,CAAC;KACpD,MAAM,CAAC,KAAK,IAAI,EAAE;IACjB,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,CAAC,wDAAwD,CAAC,CAAC,CAAC;AACtF,CAAC,CAAC,CAAC;AAEL,IAAI;KACD,OAAO,CAAC,QAAQ,CAAC;KACjB,WAAW,CAAC,yBAAyB,CAAC;KACtC,MAAM,CAAC,KAAK,IAAI,EAAE;IACjB,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,sBAAsB,CAAC,CAAC,CAAC;AACjD,CAAC,CAAC,CAAC"}

package/dist/commands/tickets.d.ts

@@ -0,0 +1,2 @@
+import { Command } from 'commander';
+export declare const tickets: Command;

package/dist/commands/tickets.js

@@ -0,0 +1,122 @@
+import { Command } from 'commander';
+import chalk from 'chalk';
+import { apiRequest, CliApiError } from '../lib/api.js';
+const STATUS_COLORS = {
+    open: chalk.green,
+    pending: chalk.yellow,
+    resolved: chalk.blue,
+    closed: chalk.dim,
+};
+function paintStatus(status) {
+    return (STATUS_COLORS[status] ?? chalk.white)(status);
+}
+function fail(e) {
+    if (e instanceof CliApiError) {
+        console.error(chalk.red(`error [${e.code}]`), e.message);
+        if (e.requestId)
+            console.error(chalk.dim(`requestId: ${e.requestId}`));
+    }
+    else {
+        console.error(chalk.red('error'), e instanceof Error ? e.message : String(e));
+    }
+    process.exit(1);
+}
+export const tickets = new Command('tickets').description('Manage helpdesk tickets');
+tickets
+    .command('list')
+    .description('List tickets (newest activity first)')
+    .option('--status <status>', 'filter: open|pending|resolved|closed|all')
+    .option('--limit <n>', 'max tickets to return (1-100)', (v) => parseInt(v, 10))
+    .action(async (opts) => {
+    try {
+        const { tickets: rows, counts } = await apiRequest('GET', '/api/v1/tickets', {
+            query: { status: opts.status, limit: opts.limit },
+        });
+        if (rows.length === 0) {
+            console.log(chalk.dim('No tickets.'));
+        }
+        else {
+            for (const t of rows) {
+                const requester = t.requesterName ?? t.requesterEmail ?? '—';
+                console.log([
+                    chalk.bold(`#${t.number}`.padEnd(6)),
+                    paintStatus(t.status).padEnd(18), // padded incl. color codes
+                    chalk.dim(t.priority.padEnd(7)),
+                    t.subject,
+                    chalk.dim(`(${requester}, ${t.id})`),
+                ].join(' '));
+            }
+        }
+        const summary = Object.entries(counts)
+            .map(([s, n]) => `${s}: ${n}`)
+            .join('  ');
+        if (summary)
+            console.log(chalk.dim(`\n${summary}`));
+    }
+    catch (e) {
+        fail(e);
+    }
+});
+tickets
+    .command('show <id>')
+    .description('Show a ticket with its full message thread')
+    .action(async (id) => {
+    try {
+        const t = await apiRequest('GET', `/api/v1/tickets/${encodeURIComponent(id)}`);
+        console.log(chalk.bold(`#${t.number} ${t.subject}`));
+        console.log(`${paintStatus(t.status)} · ${t.priority} · ${t.channel} · ${chalk.dim(t.id)}`);
+        const requester = t.requesterName
+            ? `${t.requesterName} <${t.requesterEmail ?? '—'}>`
+            : (t.requesterEmail ?? '—');
+        console.log(`requester: ${requester}`);
+        if (t.assigneeSub)
+            console.log(`assignee:  ${t.assigneeSub}`);
+        console.log(chalk.dim(`created:   ${t.createdAt}`));
+        for (const m of t.messages) {
+            const who = m.authorName ?? m.authorType;
+            const tag = m.isInternal ? chalk.yellow(' [internal]') : '';
+            console.log(`\n${chalk.bold(who)} ${chalk.dim(`(${m.authorType}, ${m.createdAt})`)}${tag}`);
+            console.log(m.body);
+        }
+    }
+    catch (e) {
+        fail(e);
+    }
+});
+tickets
+    .command('reply <id>')
+    .description('Reply to a ticket (public by default)')
+    .requiredOption('--message <text>', 'reply body')
+    .option('--internal', 'post as an internal note (not visible to the requester)')
+    .option('--author-name <name>', 'display name shown to the requester')
+    .action(async (id, opts) => {
+    try {
+        const out = await apiRequest('POST', `/api/v1/tickets/${encodeURIComponent(id)}/messages`, {
+            body: {
+                body: opts.message,
+                ...(opts.internal ? { isInternal: true } : {}),
+                ...(opts.authorName ? { authorName: opts.authorName } : {}),
+            },
+        });
+        const kind = opts.internal ? 'Internal note' : 'Reply';
+        console.log(chalk.green(`${kind} posted`), chalk.dim(`(${out.message.id})`), `— ticket is now ${paintStatus(out.status)}`);
+    }
+    catch (e) {
+        fail(e);
+    }
+});
+tickets
+    .command('close <id>')
+    .description('Close a ticket')
+    .action(async (id) => {
+    try {
+        const t = await apiRequest('PATCH', `/api/v1/tickets/${encodeURIComponent(id)}`, {
+            body: { status: 'closed' },
+        });
+        console.log(chalk.green(`Ticket #${t.number} closed.`));
+    }
+    catch (e) {
+        fail(e);
+    }
+});
+//# sourceMappingURL=tickets.js.map

package/dist/commands/tickets.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"tickets.js","sourceRoot":"","sources":["../../src/commands/tickets.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC;AACpC,OAAO,KAAK,MAAM,OAAO,CAAC;AAC1B,OAAO,EAAE,UAAU,EAAE,WAAW,EAAE,MAAM,eAAe,CAAC;AAqCxD,MAAM,aAAa,GAA0C;IAC3D,IAAI,EAAE,KAAK,CAAC,KAAK;IACjB,OAAO,EAAE,KAAK,CAAC,MAAM;IACrB,QAAQ,EAAE,KAAK,CAAC,IAAI;IACpB,MAAM,EAAE,KAAK,CAAC,GAAG;CAClB,CAAC;AAEF,SAAS,WAAW,CAAC,MAAc;IACjC,OAAO,CAAC,aAAa,CAAC,MAAM,CAAC,IAAI,KAAK,CAAC,KAAK,CAAC,CAAC,MAAM,CAAC,CAAC;AACxD,CAAC;AAED,SAAS,IAAI,CAAC,CAAU;IACtB,IAAI,CAAC,YAAY,WAAW,EAAE,CAAC;QAC7B,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,UAAU,CAAC,CAAC,IAAI,GAAG,CAAC,EAAE,CAAC,CAAC,OAAO,CAAC,CAAC;QACzD,IAAI,CAAC,CAAC,SAAS;YAAE,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,cAAc,CAAC,CAAC,SAAS,EAAE,CAAC,CAAC,CAAC;IACzE,CAAC;SAAM,CAAC;QACN,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,OAAO,CAAC,EAAE,CAAC,YAAY,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC;IAChF,CAAC;IACD,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;AAClB,CAAC;AAED,MAAM,CAAC,MAAM,OAAO,GAAG,IAAI,OAAO,CAAC,SAAS,CAAC,CAAC,WAAW,CAAC,yBAAyB,CAAC,CAAC;AAErF,OAAO;KACJ,OAAO,CAAC,MAAM,CAAC;KACf,WAAW,CAAC,sCAAsC,CAAC;KACnD,MAAM,CAAC,mBAAmB,EAAE,0CAA0C,CAAC;KACvE,MAAM,CAAC,aAAa,EAAE,+BAA+B,EAAE,CAAC,CAAC,EAAE,EAAE,CAAC,QAAQ,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;KAC9E,MAAM,CAAC,KAAK,EAAE,IAAyC,EAAE,EAAE;IAC1D,IAAI,CAAC;QACH,MAAM,EAAE,OAAO,EAAE,IAAI,EAAE,MAAM,EAAE,GAAG,MAAM,UAAU,CAG/C,KAAK,EAAE,iBAAiB,EAAE;YAC3B,KAAK,EAAE,EAAE,MAAM,EAAE,IAAI,CAAC,MAAM,EAAE,KAAK,EAAE,IAAI,CAAC,KAAK,EAAE;SAClD,CAAC,CAAC;QAEH,IAAI,IAAI,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YACtB,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,aAAa,CAAC,CAAC,CAAC;QACxC,CAAC;aAAM,CAAC;YACN,KAAK,MAAM,CAAC,IAAI,IAAI,EAAE,CAAC;gBACrB,MAAM,SAAS,GAAG,CAAC,CAAC,aAAa,IAAI,CAAC,CAAC,cAAc,IAAI,GAAG,CAAC;gBAC7D,OAAO,CAAC,GAAG,CACT;oBACE,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,MAAM,EAAE,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC;oBACpC,WAAW,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,MAAM,CAAC,EAAE,CAAC,EAAE,2BAA2B;oBAC7D,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC;oBAC/B,CAAC,CAAC,OAAO;oBACT,KAAK,CAAC,GAAG,CAAC,IAAI,SAAS,KAAK,CAAC,CAAC,EAAE,GAAG,CAAC;iBACrC,CAAC,IAAI,CAAC,GAAG,CAAC,CACZ,CAAC;YACJ,CAAC;QACH,CAAC;QACD,MAAM,OAAO,GAAG,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC;aACnC,GAAG,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,EAAE,EAAE,CAAC,GAAG,CAAC,KAAK,CAAC,EAAE,CAAC;aAC7B,IAAI,CAAC,IAAI,CAAC,CAAC;QACd,IAAI,OAAO;YAAE,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,KAAK,OAAO,EAAE,CAAC,CAAC,CAAC;IACtD,CAAC;IAAC,OAAO,CAAC,EAAE,CAAC;QACX,IAAI,CAAC,CAAC,CAAC,CAAC;IACV,CAAC;AACH,CAAC,CAAC,CAAC;AAEL,OAAO;KACJ,OAAO,CAAC,WAAW,CAAC;KACpB,WAAW,CAAC,4CAA4C,CAAC;KACzD,MAAM,CAAC,KAAK,EAAE,EAAU,EAAE,EAAE;IAC3B,IAAI,CAAC;QACH,MAAM,CAAC,GAAG,MAAM,UAAU,CACxB,KAAK,EACL,mBAAmB,kBAAkB,CAAC,EAAE,CAAC,EAAE,CAC5C,CAAC;QACF,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,MAAM,IAAI,CAAC,CAAC,OAAO,EAAE,CAAC,CAAC,CAAC;QACrD,OAAO,CAAC,GAAG,CACT,GAAG,WAAW,CAAC,CAAC,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,QAAQ,MAAM,CAAC,CAAC,OAAO,MAAM,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,CAC/E,CAAC;QACF,MAAM,SAAS,GAAG,CAAC,CAAC,aAAa;YAC/B,CAAC,CAAC,GAAG,CAAC,CAAC,aAAa,KAAK,CAAC,CAAC,cAAc,IAAI,GAAG,GAAG;YACnD,CAAC,CAAC,CAAC,CAAC,CAAC,cAAc,IAAI,GAAG,CAAC,CAAC;QAC9B,OAAO,CAAC,GAAG,CAAC,cAAc,SAAS,EAAE,CAAC,CAAC;QACvC,IAAI,CAAC,CAAC,WAAW;YAAE,OAAO,CAAC,GAAG,CAAC,cAAc,CAAC,CAAC,WAAW,EAAE,CAAC,CAAC;QAC9D,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,cAAc,CAAC,CAAC,SAAS,EAAE,CAAC,CAAC,CAAC;QACpD,KAAK,MAAM,CAAC,IAAI,CAAC,CAAC,QAAQ,EAAE,CAAC;YAC3B,MAAM,GAAG,GAAG,CAAC,CAAC,UAAU,IAAI,CAAC,CAAC,UAAU,CAAC;YACzC,MAAM,GAAG,GAAG,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC,KAAK,CAAC,MAAM,CAAC,aAAa,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;YAC5D,OAAO,CAAC,GAAG,CAAC,KAAK,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,IAAI,KAAK,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC,UAAU,KAAK,CAAC,CAAC,SAAS,GAAG,CAAC,GAAG,GAAG,EAAE,CAAC,CAAC;YAC5F,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC;QACtB,CAAC;IACH,CAAC;IAAC,OAAO,CAAC,EAAE,CAAC;QACX,IAAI,CAAC,CAAC,CAAC,CAAC;IACV,CAAC;AACH,CAAC,CAAC,CAAC;AAEL,OAAO;KACJ,OAAO,CAAC,YAAY,CAAC;KACrB,WAAW,CAAC,uCAAuC,CAAC;KACpD,cAAc,CAAC,kBAAkB,EAAE,YAAY,CAAC;KAChD,MAAM,CAAC,YAAY,EAAE,yDAAyD,CAAC;KAC/E,MAAM,CAAC,sBAAsB,EAAE,qCAAqC,CAAC;KACrE,MAAM,CAAC,KAAK,EAAE,EAAU,EAAE,IAAkE,EAAE,EAAE;IAC/F,IAAI,CAAC;QACH,MAAM,GAAG,GAAG,MAAM,UAAU,CAC1B,MAAM,EACN,mBAAmB,kBAAkB,CAAC,EAAE,CAAC,WAAW,EACpD;YACE,IAAI,EAAE;gBACJ,IAAI,EAAE,IAAI,CAAC,OAAO;gBAClB,GAAG,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC,CAAC,EAAE,UAAU,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;gBAC9C,GAAG,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC,CAAC,EAAE,UAAU,EAAE,IAAI,CAAC,UAAU,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;aAC5D;SACF,CACF,CAAC;QACF,MAAM,IAAI,GAAG,IAAI,CAAC,QAAQ,CAAC,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,OAAO,CAAC;QACvD,OAAO,CAAC,GAAG,CACT,KAAK,CAAC,KAAK,CAAC,GAAG,IAAI,SAAS,CAAC,EAC7B,KAAK,CAAC,GAAG,CAAC,IAAI,GAAG,CAAC,OAAO,CAAC,EAAE,GAAG,CAAC,EAChC,mBAAmB,WAAW,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAC7C,CAAC;IACJ,CAAC;IAAC,OAAO,CAAC,EAAE,CAAC;QACX,IAAI,CAAC,CAAC,CAAC,CAAC;IACV,CAAC;AACH,CAAC,CAAC,CAAC;AAEL,OAAO;KACJ,OAAO,CAAC,YAAY,CAAC;KACrB,WAAW,CAAC,gBAAgB,CAAC;KAC7B,MAAM,CAAC,KAAK,EAAE,EAAU,EAAE,EAAE;IAC3B,IAAI,CAAC;QACH,MAAM,CAAC,GAAG,MAAM,UAAU,CAAS,OAAO,EAAE,mBAAmB,kBAAkB,CAAC,EAAE,CAAC,EAAE,EAAE;YACvF,IAAI,EAAE,EAAE,MAAM,EAAE,QAAQ,EAAE;SAC3B,CAAC,CAAC;QACH,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,KAAK,CAAC,WAAW,CAAC,CAAC,MAAM,UAAU,CAAC,CAAC,CAAC;IAC1D,CAAC;IAAC,OAAO,CAAC,EAAE,CAAC;QACX,IAAI,CAAC,CAAC,CAAC,CAAC;IACV,CAAC;AACH,CAAC,CAAC,CAAC"}

package/dist/index.d.ts

@@ -0,0 +1 @@
+export {};

package/dist/index.js

@@ -0,0 +1,15 @@
+import { Command } from 'commander';
+import { auth } from './commands/auth.js';
+import { tickets } from './commands/tickets.js';
+const brand = process.env.SUPPUO ?? 'suppuo';
+const program = new Command()
+    .name(brand)
+    .description(`CLI for ${brand} — part of the Forjio commerce suite.`)
+    .version('0.1.0');
+program.addCommand(auth);
+program.addCommand(tickets);
+program.parseAsync(process.argv).catch((e) => {
+    console.error(e);
+    process.exit(1);
+});
+//# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC;AACpC,OAAO,EAAE,IAAI,EAAE,MAAM,oBAAoB,CAAC;AAC1C,OAAO,EAAE,OAAO,EAAE,MAAM,uBAAuB,CAAC;AAEhD,MAAM,KAAK,GAAG,OAAO,CAAC,GAAG,CAAC,MAAM,IAAI,QAAQ,CAAC;AAE7C,MAAM,OAAO,GAAG,IAAI,OAAO,EAAE;KAC1B,IAAI,CAAC,KAAK,CAAC;KACX,WAAW,CAAC,WAAW,KAAK,uCAAuC,CAAC;KACpE,OAAO,CAAC,OAAO,CAAC,CAAC;AAEpB,OAAO,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC;AACzB,OAAO,CAAC,UAAU,CAAC,OAAO,CAAC,CAAC;AAE5B,OAAO,CAAC,UAAU,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,EAAE;IAC3C,OAAO,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;IACjB,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;AAClB,CAAC,CAAC,CAAC"}

package/dist/lib/api.d.ts

@@ -0,0 +1,23 @@
+/**
+ * Thin Bearer-auth API helper for CLI commands.
+ *
+ * Token resolution order:
+ *   1. `SUPPUO_TOKEN` env (explicit override, CI-friendly)
+ *   2. the Huudis access token stored by `auth login`
+ *      (~/.suppuo/session.json) — used as Bearer against suppuo.com.
+ *
+ * Unwraps the Forjio `{ data, error, meta }` envelope and throws
+ * `CliApiError` carrying the envelope's `error.code`.
+ */
+export declare class CliApiError extends Error {
+    readonly status: number;
+    readonly code: string;
+    readonly requestId: string | undefined;
+    constructor(status: number, code: string, message: string, requestId?: string);
+}
+export declare function baseUrl(): string;
+export declare function resolveToken(): string;
+export declare function apiRequest<T>(method: 'GET' | 'POST' | 'PATCH' | 'DELETE', path: string, opts?: {
+    body?: unknown;
+    query?: Record<string, string | number | undefined>;
+}): Promise<T>;

package/dist/lib/api.js

@@ -0,0 +1,78 @@
+import { loadSession, isAccessTokenStale } from './session.js';
+/**
+ * Thin Bearer-auth API helper for CLI commands.
+ *
+ * Token resolution order:
+ *   1. `SUPPUO_TOKEN` env (explicit override, CI-friendly)
+ *   2. the Huudis access token stored by `auth login`
+ *      (~/.suppuo/session.json) — used as Bearer against suppuo.com.
+ *
+ * Unwraps the Forjio `{ data, error, meta }` envelope and throws
+ * `CliApiError` carrying the envelope's `error.code`.
+ */
+export class CliApiError extends Error {
+    status;
+    code;
+    requestId;
+    constructor(status, code, message, requestId) {
+        super(message);
+        this.name = 'CliApiError';
+        this.status = status;
+        this.code = code;
+        this.requestId = requestId;
+    }
+}
+export function baseUrl() {
+    return (process.env.SUPPUO_BASE_URL ?? 'https://suppuo.com').replace(/\/+$/, '');
+}
+export function resolveToken() {
+    const envToken = process.env.SUPPUO_TOKEN;
+    if (envToken)
+        return envToken;
+    const session = loadSession();
+    if (!session) {
+        throw new CliApiError(0, 'AUTH_REQUIRED', 'Not signed in. Run `suppuo auth login` or set SUPPUO_TOKEN.');
+    }
+    if (isAccessTokenStale(session)) {
+        throw new CliApiError(0, 'TOKEN_EXPIRED', 'Session expired. Run `suppuo auth login` again (or set SUPPUO_TOKEN).');
+    }
+    return session.accessToken;
+}
+export async function apiRequest(method, path, opts = {}) {
+    const token = resolveToken();
+    const url = new URL(baseUrl() + path);
+    for (const [k, v] of Object.entries(opts.query ?? {})) {
+        if (v !== undefined)
+            url.searchParams.set(k, String(v));
+    }
+    const headers = {
+        Accept: 'application/json',
+        Authorization: `Bearer ${token}`,
+    };
+    if (opts.body !== undefined)
+        headers['Content-Type'] = 'application/json';
+    let res;
+    try {
+        res = await fetch(url, {
+            method,
+            headers,
+            body: opts.body !== undefined ? JSON.stringify(opts.body) : undefined,
+            signal: AbortSignal.timeout(30_000),
+        });
+    }
+    catch (e) {
+        throw new CliApiError(0, 'NETWORK_ERROR', e instanceof Error ? e.message : String(e));
+    }
+    let envelope;
+    try {
+        envelope = (await res.json());
+    }
+    catch {
+        throw new CliApiError(res.status, 'INVALID_RESPONSE', `non-JSON response (HTTP ${res.status})`);
+    }
+    if (!res.ok || envelope.error) {
+        throw new CliApiError(res.status, envelope.error?.code ?? 'UNKNOWN', envelope.error?.message ?? `HTTP ${res.status}`, envelope.meta?.requestId);
+    }
+    return envelope.data;
+}
+//# sourceMappingURL=api.js.map

package/dist/lib/api.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"api.js","sourceRoot":"","sources":["../../src/lib/api.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,WAAW,EAAE,kBAAkB,EAAE,MAAM,cAAc,CAAC;AAE/D;;;;;;;;;;GAUG;AAEH,MAAM,OAAO,WAAY,SAAQ,KAAK;IAC3B,MAAM,CAAS;IACf,IAAI,CAAS;IACb,SAAS,CAAqB;IAEvC,YAAY,MAAc,EAAE,IAAY,EAAE,OAAe,EAAE,SAAkB;QAC3E,KAAK,CAAC,OAAO,CAAC,CAAC;QACf,IAAI,CAAC,IAAI,GAAG,aAAa,CAAC;QAC1B,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC;QACrB,IAAI,CAAC,IAAI,GAAG,IAAI,CAAC;QACjB,IAAI,CAAC,SAAS,GAAG,SAAS,CAAC;IAC7B,CAAC;CACF;AAED,MAAM,UAAU,OAAO;IACrB,OAAO,CAAC,OAAO,CAAC,GAAG,CAAC,eAAe,IAAI,oBAAoB,CAAC,CAAC,OAAO,CAAC,MAAM,EAAE,EAAE,CAAC,CAAC;AACnF,CAAC;AAED,MAAM,UAAU,YAAY;IAC1B,MAAM,QAAQ,GAAG,OAAO,CAAC,GAAG,CAAC,YAAY,CAAC;IAC1C,IAAI,QAAQ;QAAE,OAAO,QAAQ,CAAC;IAC9B,MAAM,OAAO,GAAG,WAAW,EAAE,CAAC;IAC9B,IAAI,CAAC,OAAO,EAAE,CAAC;QACb,MAAM,IAAI,WAAW,CACnB,CAAC,EACD,eAAe,EACf,6DAA6D,CAC9D,CAAC;IACJ,CAAC;IACD,IAAI,kBAAkB,CAAC,OAAO,CAAC,EAAE,CAAC;QAChC,MAAM,IAAI,WAAW,CACnB,CAAC,EACD,eAAe,EACf,uEAAuE,CACxE,CAAC;IACJ,CAAC;IACD,OAAO,OAAO,CAAC,WAAW,CAAC;AAC7B,CAAC;AAQD,MAAM,CAAC,KAAK,UAAU,UAAU,CAC9B,MAA2C,EAC3C,IAAY,EACZ,OAAgF,EAAE;IAElF,MAAM,KAAK,GAAG,YAAY,EAAE,CAAC;IAC7B,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,OAAO,EAAE,GAAG,IAAI,CAAC,CAAC;IACtC,KAAK,MAAM,CAAC,CAAC,EAAE,CAAC,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,IAAI,CAAC,KAAK,IAAI,EAAE,CAAC,EAAE,CAAC;QACtD,IAAI,CAAC,KAAK,SAAS;YAAE,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,CAAC,EAAE,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC;IAC1D,CAAC;IAED,MAAM,OAAO,GAA2B;QACtC,MAAM,EAAE,kBAAkB;QAC1B,aAAa,EAAE,UAAU,KAAK,EAAE;KACjC,CAAC;IACF,IAAI,IAAI,CAAC,IAAI,KAAK,SAAS;QAAE,OAAO,CAAC,cAAc,CAAC,GAAG,kBAAkB,CAAC;IAE1E,IAAI,GAAa,CAAC;IAClB,IAAI,CAAC;QACH,GAAG,GAAG,MAAM,KAAK,CAAC,GAAG,EAAE;YACrB,MAAM;YACN,OAAO;YACP,IAAI,EAAE,IAAI,CAAC,IAAI,KAAK,SAAS,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,SAAS;YACrE,MAAM,EAAE,WAAW,CAAC,OAAO,CAAC,MAAM,CAAC;SACpC,CAAC,CAAC;IACL,CAAC;IAAC,OAAO,CAAC,EAAE,CAAC;QACX,MAAM,IAAI,WAAW,CAAC,CAAC,EAAE,eAAe,EAAE,CAAC,YAAY,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC;IACxF,CAAC;IAED,IAAI,QAAqB,CAAC;IAC1B,IAAI,CAAC;QACH,QAAQ,GAAG,CAAC,MAAM,GAAG,CAAC,IAAI,EAAE,CAAgB,CAAC;IAC/C,CAAC;IAAC,MAAM,CAAC;QACP,MAAM,IAAI,WAAW,CAAC,GAAG,CAAC,MAAM,EAAE,kBAAkB,EAAE,2BAA2B,GAAG,CAAC,MAAM,GAAG,CAAC,CAAC;IAClG,CAAC;IAED,IAAI,CAAC,GAAG,CAAC,EAAE,IAAI,QAAQ,CAAC,KAAK,EAAE,CAAC;QAC9B,MAAM,IAAI,WAAW,CACnB,GAAG,CAAC,MAAM,EACV,QAAQ,CAAC,KAAK,EAAE,IAAI,IAAI,SAAS,EACjC,QAAQ,CAAC,KAAK,EAAE,OAAO,IAAI,QAAQ,GAAG,CAAC,MAAM,EAAE,EAC/C,QAAQ,CAAC,IAAI,EAAE,SAAS,CACzB,CAAC;IACJ,CAAC;IACD,OAAO,QAAQ,CAAC,IAAS,CAAC;AAC5B,CAAC"}

package/dist/lib/session.d.ts

@@ -0,0 +1,25 @@
+/**
+ * On-disk session store for the CLI. Ported from saas-huudis.
+ *
+ * Lives at `~/.SUPPUO/session.json` with 0600 perms. Holds the
+ * tokens from `auth login` so subsequent commands don't re-prompt.
+ *
+ * The actual wiring into `auth login/whoami/logout` lands once Huudis
+ * M1 ships the device-flow endpoints — until then this is a pure
+ * utility waiting for its caller.
+ */
+export interface StoredSession {
+    accessToken: string;
+    refreshToken: string;
+    idToken: string;
+    accessTokenExpiresAt: string;
+    scope: string;
+    issuer: string;
+    clientId: string;
+}
+export declare function saveSession(s: StoredSession): void;
+export declare function loadSession(): StoredSession | null;
+export declare function clearSession(): void;
+/** Treat "stale" as <60s until expiry — gives the refresh call
+ *  headroom before the access token is actually rejected upstream. */
+export declare function isAccessTokenStale(s: StoredSession): boolean;

package/dist/lib/session.js

@@ -0,0 +1,36 @@
+import fs from 'node:fs';
+import os from 'node:os';
+import path from 'node:path';
+function brand() {
+    return process.env.SUPPUO ?? 'suppuo';
+}
+function sessionPath() {
+    return path.join(os.homedir(), `.${brand()}`, 'session.json');
+}
+export function saveSession(s) {
+    const file = sessionPath();
+    fs.mkdirSync(path.dirname(file), { recursive: true, mode: 0o700 });
+    fs.writeFileSync(file, JSON.stringify(s, null, 2), { mode: 0o600 });
+}
+export function loadSession() {
+    const file = sessionPath();
+    if (!fs.existsSync(file))
+        return null;
+    try {
+        return JSON.parse(fs.readFileSync(file, 'utf8'));
+    }
+    catch {
+        return null;
+    }
+}
+export function clearSession() {
+    const file = sessionPath();
+    if (fs.existsSync(file))
+        fs.unlinkSync(file);
+}
+/** Treat "stale" as <60s until expiry — gives the refresh call
+ *  headroom before the access token is actually rejected upstream. */
+export function isAccessTokenStale(s) {
+    return new Date(s.accessTokenExpiresAt).getTime() - Date.now() < 60_000;
+}
+//# sourceMappingURL=session.js.map

package/dist/lib/session.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"session.js","sourceRoot":"","sources":["../../src/lib/session.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,SAAS,CAAC;AACzB,OAAO,EAAE,MAAM,SAAS,CAAC;AACzB,OAAO,IAAI,MAAM,WAAW,CAAC;AAuB7B,SAAS,KAAK;IACZ,OAAO,OAAO,CAAC,GAAG,CAAC,MAAM,IAAI,QAAQ,CAAC;AACxC,CAAC;AAED,SAAS,WAAW;IAClB,OAAO,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,OAAO,EAAE,EAAE,IAAI,KAAK,EAAE,EAAE,EAAE,cAAc,CAAC,CAAC;AAChE,CAAC;AAED,MAAM,UAAU,WAAW,CAAC,CAAgB;IAC1C,MAAM,IAAI,GAAG,WAAW,EAAE,CAAC;IAC3B,EAAE,CAAC,SAAS,CAAC,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,IAAI,EAAE,KAAK,EAAE,CAAC,CAAC;IACnE,EAAE,CAAC,aAAa,CAAC,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,CAAC,EAAE,IAAI,EAAE,CAAC,CAAC,EAAE,EAAE,IAAI,EAAE,KAAK,EAAE,CAAC,CAAC;AACtE,CAAC;AAED,MAAM,UAAU,WAAW;IACzB,MAAM,IAAI,GAAG,WAAW,EAAE,CAAC;IAC3B,IAAI,CAAC,EAAE,CAAC,UAAU,CAAC,IAAI,CAAC;QAAE,OAAO,IAAI,CAAC;IACtC,IAAI,CAAC;QACH,OAAO,IAAI,CAAC,KAAK,CAAC,EAAE,CAAC,YAAY,CAAC,IAAI,EAAE,MAAM,CAAC,CAAkB,CAAC;IACpE,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,IAAI,CAAC;IACd,CAAC;AACH,CAAC;AAED,MAAM,UAAU,YAAY;IAC1B,MAAM,IAAI,GAAG,WAAW,EAAE,CAAC;IAC3B,IAAI,EAAE,CAAC,UAAU,CAAC,IAAI,CAAC;QAAE,EAAE,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC;AAC/C,CAAC;AAED;sEACsE;AACtE,MAAM,UAAU,kBAAkB,CAAC,CAAgB;IACjD,OAAO,IAAI,IAAI,CAAC,CAAC,CAAC,oBAAoB,CAAC,CAAC,OAAO,EAAE,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,MAAM,CAAC;AAC1E,CAAC"}

package/package.json

@@ -0,0 +1,35 @@
+{
+  "name": "@forjio/suppuo-cli",
+  "version": "0.1.0",
+  "description": "CLI for Suppuo (part of the Forjio commerce suite).",
+  "type": "module",
+  "main": "dist/index.js",
+  "bin": {
+    "suppuo": "bin/cli.js"
+  },
+  "scripts": {
+    "build": "tsc",
+    "dev": "tsc --watch",
+    "test": "vitest run --passWithNoTests",
+    "lint": "tsc --noEmit",
+    "type-check": "tsc --noEmit",
+    "prepublishOnly": "npm run build"
+  },
+  "dependencies": {
+    "@forjio/sdk": "^0.9.0",
+    "chalk": "^5.3.0",
+    "commander": "^12.1.0"
+  },
+  "devDependencies": {
+    "@types/node": "^22.0.0",
+    "typescript": "^5.6.0",
+    "vitest": "^2.1.0"
+  },
+  "files": [
+    "dist",
+    "bin"
+  ],
+  "engines": {
+    "node": ">=20.0.0"
+  }
+}