@lawpath-tech/npm-auth 1.0.3

package/.github/workflows/publish.yml

@@ -0,0 +1,21 @@
+name: Publish to npm
+
+on:
+  push:
+    tags:
+      - 'v*'
+
+jobs:
+  publish:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+
+      - uses: actions/setup-node@v4
+        with:
+          node-version: '20'
+          registry-url: 'https://registry.npmjs.org'
+
+      - run: npm publish --access public
+        env:
+          NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }}

package/bin/cli.js

@@ -0,0 +1,130 @@
+#!/usr/bin/env node
+
+const fs = require('fs');
+const path = require('path');
+
+/**
+ * Parse .npmrc content and extract key-value pairs
+ * @param {string} content - .npmrc file content
+ * @returns {Object} - Parsed key-value pairs
+ */
+function parseNpmrc(content) {
+  const config = {};
+  const lines = content.split('\n');
+
+  for (const line of lines) {
+    const trimmed = line.trim();
+    // Skip comments and empty lines
+    if (!trimmed || trimmed.startsWith('#')) continue;
+
+    const match = trimmed.match(/^([^=]+)=(.*)$/);
+    if (match) {
+      config[match[1].trim()] = match[2].trim();
+    }
+  }
+
+  return config;
+}
+
+async function main() {
+  console.log('Lawpath npm authentication setup\n');
+
+  // Skip in CI environment
+  if (process.env.CI) {
+    console.log('CI environment detected, skipping...');
+    process.exit(0);
+  }
+
+  const npmrcPath = path.join(process.cwd(), '.npmrc');
+
+  // Read current .npmrc
+  let npmrc = '';
+  try {
+    npmrc = fs.readFileSync(npmrcPath, 'utf-8');
+  } catch (e) {
+    console.error('Error: No .npmrc found in current directory.');
+    console.error('Create a .npmrc file with the following:');
+    console.error('\n  lp_npm_token_url=<api-endpoint>');
+    console.error('  lp_auth_token=<your-token>\n');
+    process.exit(1);
+  }
+
+  // Parse .npmrc
+  const config = parseNpmrc(npmrc);
+
+  // Validate required fields
+  if (!config.lp_npm_token_url) {
+    console.error('Error: Missing lp_npm_token_url in .npmrc');
+    console.error('Add the following line to your .npmrc:');
+    console.error('\n  lp_npm_token_url=<api-endpoint>\n');
+    process.exit(1);
+  }
+
+  if (!config.lp_auth_token) {
+    console.error('Error: Missing lp_auth_token in .npmrc');
+    console.error('Add the following line to your .npmrc:');
+    console.error('\n  lp_auth_token=<your-token>\n');
+    process.exit(1);
+  }
+
+  const apiUrl = config.lp_npm_token_url;
+  const lpToken = config.lp_auth_token;
+
+  console.log('Found configuration in .npmrc:');
+  console.log(`  lp_npm_token_url: ${apiUrl}`);
+  console.log(`  lp_auth_token: ${lpToken.substring(0, 8)}...`);
+  console.log('\nFetching npm token from Lawpath config API...\n');
+
+  try {
+    // Build URL with token as query param
+    const url = new URL(apiUrl);
+    url.searchParams.set('token', lpToken);
+
+    const response = await fetch(url.toString(), {
+      headers: {
+        'Authorization': `Bearer ${lpToken}`,
+        'Content-Type': 'application/json'
+      }
+    });
+
+    if (!response.ok) {
+      if (response.status === 401) {
+        console.error('Error: Invalid or expired lp_auth_token');
+        console.error('Please contact your administrator for a new token.');
+      } else {
+        console.error(`Error: API returned status ${response.status}`);
+      }
+      process.exit(1);
+    }
+
+    const { npmToken } = await response.json();
+
+    if (!npmToken) {
+      console.error('Error: No npm token received from API');
+      process.exit(1);
+    }
+
+    // Update .npmrc with npm token
+    const authLine = `//registry.npmjs.org/:_authToken=${npmToken}`;
+
+    if (npmrc.includes('registry.npmjs.org')) {
+      npmrc = npmrc.replace(
+        /\/\/registry\.npmjs\.org\/:_authToken=.*/,
+        authLine
+      );
+    } else {
+      npmrc = npmrc.trim() + `\n${authLine}\n`;
+    }
+
+    fs.writeFileSync(npmrcPath, npmrc);
+
+    console.log('Successfully configured npm authentication');
+    console.log('You can now run: npm install\n');
+
+  } catch (error) {
+    console.error('Error fetching npm token:', error.message);
+    process.exit(1);
+  }
+}
+
+main();

package/index.js

@@ -0,0 +1,108 @@
+const fs = require('fs');
+const path = require('path');
+
+/**
+ * Parse .npmrc content and extract key-value pairs
+ * @param {string} content - .npmrc file content
+ * @returns {Object} - Parsed key-value pairs
+ */
+function parseNpmrc(content) {
+  const config = {};
+  const lines = content.split('\n');
+
+  for (const line of lines) {
+    const trimmed = line.trim();
+    // Skip comments and empty lines
+    if (!trimmed || trimmed.startsWith('#')) continue;
+
+    const match = trimmed.match(/^([^=]+)=(.*)$/);
+    if (match) {
+      config[match[1].trim()] = match[2].trim();
+    }
+  }
+
+  return config;
+}
+
+/**
+ * Configure npm authentication for Lawpath private packages
+ * Reads lp_npm_token_url and lp_auth_token from .npmrc
+ * @param {Object} options
+ * @param {string} options.npmrcPath - Path to .npmrc file (defaults to cwd)
+ * @returns {Promise<void>}
+ */
+async function configureNpmAuth(options = {}) {
+  const {
+    npmrcPath = path.join(process.cwd(), '.npmrc')
+  } = options;
+
+  // Skip in CI environment
+  if (process.env.CI) {
+    console.log('CI environment detected, skipping npm auth setup');
+    return;
+  }
+
+  // Read current .npmrc
+  let npmrc;
+  try {
+    npmrc = fs.readFileSync(npmrcPath, 'utf-8');
+  } catch (e) {
+    throw new Error(`No .npmrc found at ${npmrcPath}`);
+  }
+
+  // Parse .npmrc
+  const config = parseNpmrc(npmrc);
+
+  // Validate required fields
+  if (!config.lp_npm_token_url) {
+    throw new Error('Missing lp_npm_token_url in .npmrc');
+  }
+
+  if (!config.lp_auth_token) {
+    throw new Error('Missing lp_auth_token in .npmrc');
+  }
+
+  const apiUrl = config.lp_npm_token_url;
+  const lpToken = config.lp_auth_token;
+
+  // Build URL with token as query param
+  const url = new URL(apiUrl);
+  url.searchParams.set('token', lpToken);
+
+  // Fetch npm token from API (token in both URL param and header)
+  const response = await fetch(url.toString(), {
+    headers: {
+      'Authorization': `Bearer ${lpToken}`,
+      'Content-Type': 'application/json'
+    }
+  });
+
+  if (!response.ok) {
+    if (response.status === 401) {
+      throw new Error('Invalid or expired lp_auth_token');
+    }
+    throw new Error(`API returned status ${response.status}`);
+  }
+
+  const { npmToken } = await response.json();
+
+  if (!npmToken) {
+    throw new Error('No npm token received from API');
+  }
+
+  // Update .npmrc with npm token
+  const authLine = `//registry.npmjs.org/:_authToken=${npmToken}`;
+
+  if (npmrc.includes('registry.npmjs.org')) {
+    npmrc = npmrc.replace(
+      /\/\/registry\.npmjs\.org\/:_authToken=.*/,
+      authLine
+    );
+  } else {
+    npmrc = npmrc.trim() + `\n${authLine}\n`;
+  }
+
+  fs.writeFileSync(npmrcPath, npmrc);
+}
+
+module.exports = { configureNpmAuth, parseNpmrc };

package/package.json

@@ -0,0 +1,19 @@
+{
+  "name": "@lawpath-tech/npm-auth",
+  "version": "1.0.3",
+  "bin": {
+    "lawpath-npm-auth": "./bin/cli.js"
+  },
+  "engines": {
+    "node": ">=18.0.0"
+  },
+  "scripts": {
+    "release": "npm version patch --no-git-tag-version && npm publish --access public",
+    "release:minor": "npm version minor --no-git-tag-version && npm publish --access public",
+    "release:major": "npm version major --no-git-tag-version && npm publish --access public"
+  },
+  "publishConfig": {
+    "access": "public",
+    "registry": "https://registry.npmjs.org"
+  }
+}