@insforge/cli 0.1.66 → 0.1.68

package/dist/index.js

@@ -1835,6 +1835,15 @@ async function getJwtSecret() {
     return null;
   }
 }
+async function getDatabaseConnectionString() {
+  try {
+    const res = await ossFetch("/api/metadata/database-connection-string");
+    const data = await res.json();
+    return typeof data.connectionURL === "string" && data.connectionURL.length > 0 ? data.connectionURL : null;
+  } catch {
+    return null;
+  }
+}
 async function ossFetch(path6, options = {}) {
   const config = requireProjectConfig();
   const headers = {
@@ -1892,6 +1901,33 @@ function extractEnvKeys(content) {
   }
   return keys;
 }
+function extractEnvPairs(content) {
+  const out = /* @__PURE__ */ new Map();
+  for (const line of content.split("\n")) {
+    const trimmed = line.replace(/^\s*export\s+/, "").trimStart();
+    if (!trimmed || trimmed.startsWith("#")) continue;
+    const m = trimmed.match(/^([A-Za-z_][A-Za-z0-9_]*)\s*=(.*)$/);
+    if (m) out.set(m[1], m[2]);
+  }
+  return out;
+}
+function refreshStaleEnvDefaults(existing, manifestDefaults, platformValues) {
+  const refreshed = [];
+  const lines = existing.split("\n").map((line) => {
+    const m = line.match(/^([A-Za-z_][A-Za-z0-9_]*)\s*=(.*)$/);
+    if (!m) return line;
+    const key = m[1];
+    const userValue = m[2];
+    const def = manifestDefaults.get(key);
+    const real = platformValues.get(key);
+    if (def !== void 0 && real !== void 0 && userValue === def && real !== def) {
+      refreshed.push(key);
+      return `${key}=${real}`;
+    }
+    return line;
+  });
+  return { updated: lines.join("\n"), refreshed };
+}
 function filterCollidingEnvLines(append, existingKeys) {
   const dropped = [];
   const out = [];
@@ -1986,6 +2022,7 @@ async function applyAuthProvider(provider, cwd, projectConfig, json) {
       envExampleAppended: false,
       envLocalWritten: false,
       envKeysSkipped: [],
+      envKeysRefreshed: [],
       nextSteps: manifest.nextSteps
     };
     const allFiles = (await walkFiles(providerDir)).filter((rel) => !PROVIDER_META_FILES.has(rel));
@@ -2032,8 +2069,11 @@ async function applyAuthProvider(provider, cwd, projectConfig, json) {
     const envLocalExists = await pathExists(envLocalPath);
     const existingLocal = envLocalExists ? await fs.readFile(envLocalPath, "utf-8") : "";
     const existingLocalKeys = envLocalExists ? extractEnvKeys(existingLocal) : /* @__PURE__ */ new Set();
-    const anonKey = await getAnonKey();
-    const jwtSecret = await getJwtSecret();
+    const [anonKey, jwtSecret, databaseUrl] = await Promise.all([
+      getAnonKey(),
+      getJwtSecret(),
+      getDatabaseConnectionString()
+    ]);
     const filled = manifest.envExampleAppend.replace(
       /^([A-Z][A-Z0-9_]*=)(.*)$/gm,
       (_, prefix, value) => {
@@ -2043,6 +2083,7 @@ async function applyAuthProvider(provider, cwd, projectConfig, json) {
         if (key === "NEXT_PUBLIC_APP_URL") return `${prefix}https://${projectConfig.appkey}.insforge.site`;
         if (/JWT_SECRET$/.test(key)) return `${prefix}${jwtSecret ?? value}`;
         if (key === "BETTER_AUTH_SECRET") return `${prefix}${randomBytes2(32).toString("hex")}`;
+        if (key === "DATABASE_URL") return `${prefix}${databaseUrl ?? value}`;
         return `${prefix}${value}`;
       }
     );
@@ -2050,13 +2091,20 @@ async function applyAuthProvider(provider, cwd, projectConfig, json) {
       await fs.writeFile(envLocalPath, filled + "\n");
       result.envLocalWritten = true;
     } else {
-      const { filtered, dropped } = filterCollidingEnvLines(filled, existingLocalKeys);
+      const manifestDefaults = extractEnvPairs(manifest.envExampleAppend);
+      const platformValues = extractEnvPairs(filled);
+      const { updated, refreshed } = refreshStaleEnvDefaults(existingLocal, manifestDefaults, platformValues);
+      const refreshedSet = new Set(refreshed);
+      const keysAfterRefresh = /* @__PURE__ */ new Set([...existingLocalKeys, ...refreshedSet]);
+      const { filtered, dropped } = filterCollidingEnvLines(filled, keysAfterRefresh);
       const hasNewKey = filtered.split("\n").some((l) => /^[A-Z][A-Z0-9_]*=/.test(l));
-      if (hasNewKey) {
-        await fs.writeFile(envLocalPath, existingLocal.replace(/\n*$/, "\n\n") + filtered + "\n");
+      if (refreshed.length > 0 || hasNewKey) {
+        const base = hasNewKey ? updated.replace(/\n*$/, "\n\n") + filtered + "\n" : updated;
+        await fs.writeFile(envLocalPath, base);
         result.envLocalWritten = true;
       }
       result.envKeysSkipped = Array.from(/* @__PURE__ */ new Set([...result.envKeysSkipped, ...dropped]));
+      result.envKeysRefreshed = Array.from(/* @__PURE__ */ new Set([...result.envKeysRefreshed, ...refreshed]));
     }
     if (!jwtSecret && !json) {
       clack9.log.warn("Could not auto-fill JWT_SECRET \u2014 run `npx @insforge/cli secrets get JWT_SECRET` and paste it into .env.local.");
@@ -2066,6 +2114,11 @@ async function applyAuthProvider(provider, cwd, projectConfig, json) {
         `Kept your existing values for: ${result.envKeysSkipped.join(", ")}. If any of these need the auth-provider's defaults, see .env.example for reference.`
       );
     }
+    if (result.envKeysRefreshed.length > 0 && !json) {
+      clack9.log.info(
+        `Refreshed stale platform defaults: ${result.envKeysRefreshed.join(", ")}. Your value matched the manifest's default, so we replaced it with the live one.`
+      );
+    }
     return result;
   } finally {
     await cleanup();
@@ -6776,7 +6829,7 @@ function registerDiagnoseCommands(diagnoseCmd2) {
         const s = !json ? clack14.spinner() : null;
         s?.start("Collecting diagnostic data...");
         const data2 = await collectDiagnosticData(projectId, ossMode, apiUrl);
-        const cliVersion = "0.1.66";
+        const cliVersion = "0.1.68";
         s?.stop("Data collected");
         if (!json) {
           console.log(`