@neetru/cli 1.0.0 → 2.0.0

package/dist/commands/login.js

@@ -1,104 +1,234 @@
-"use strict";
-var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    var desc = Object.getOwnPropertyDescriptor(m, k);
-    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
-      desc = { enumerable: true, get: function() { return m[k]; } };
-    }
-    Object.defineProperty(o, k2, desc);
-}) : (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    o[k2] = m[k];
-}));
-var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
-    Object.defineProperty(o, "default", { enumerable: true, value: v });
-}) : function(o, v) {
-    o["default"] = v;
-});
-var __importStar = (this && this.__importStar) || (function () {
-    var ownKeys = function(o) {
-        ownKeys = Object.getOwnPropertyNames || function (o) {
-            var ar = [];
-            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
-            return ar;
-        };
-        return ownKeys(o);
-    };
-    return function (mod) {
-        if (mod && mod.__esModule) return mod;
-        var result = {};
-        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
-        __setModuleDefault(result, mod);
-        return result;
-    };
-})();
-var __importDefault = (this && this.__importDefault) || function (mod) {
-    return (mod && mod.__esModule) ? mod : { "default": mod };
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.loginCommand = loginCommand;
-const commander_1 = require("commander");
-const chalk_1 = __importDefault(require("chalk"));
-const ora_1 = __importDefault(require("ora"));
-const config_1 = require("../config");
-async function prompt(questions) {
-    const { default: inquirer } = await Promise.resolve().then(() => __importStar(require('inquirer')));
-    return inquirer.prompt(questions);
+/**
+ * `neetru login` — Device Code OAuth (RFC 8628).
+ *
+ * Sprint 1: substitui o paste manual de token por fluxo browser-aware.
+ *
+ * Steps:
+ *  1. POST {api}/api/v1/oauth/device/authorize → device_code, user_code,
+ *     verification_uri, interval, expires_in.
+ *  2. Print user_code + abrir browser na verification_uri (best-effort).
+ *  3. Polling POST {api}/api/v1/oauth/device/token a cada `interval` s
+ *     até receber access_token, slow_down (interval+5s) ou erro fatal.
+ *  4. Salvar token em ~/.config/neetru-cli/auth.json (chmod 0600).
+ *  5. Validar via /api/cli/v1/whoami pra mostrar identidade.
+ *
+ * Mantém `--token` legado pra CI: pula o flow e salva direto.
+ * Suporta `--json` pra ambientes scriptados (saída machine-readable).
+ */
+import chalk from 'chalk';
+import ora from 'ora';
+import { spawn } from 'node:child_process';
+import { config } from '../lib/config.js';
+import { saveToken } from '../lib/auth.js';
+import { apiRequest, CliApiError, CliNetworkError } from '../lib/api-client.js';
+import { log } from '../utils/logger.js';
+const TOKEN_PATTERN = /^nrt_[a-z0-9]{8,16}_[A-Za-z0-9_\-=]{20,64}$/;
+const DEVICE_GRANT_TYPE = 'urn:ietf:params:oauth:grant-type:device_code';
+const POLL_TIMEOUT_MS = 10 * 60 * 1000; // 10min
+function emitJson(obj) {
+    console.log(JSON.stringify(obj));
 }
-function loginCommand() {
-    const cmd = new commander_1.Command('login');
-    cmd
-        .description('Autentica o CLI com sua API key do Neetru Core')
-        .option('--core-url <url>', 'URL do Neetru Core', 'https://core.neetru.com')
-        .option('--api-key <key>', 'API key (opcional, será solicitada interativamente se omitida)')
-        .action(async (options) => {
-        console.log('\n' + chalk_1.default.bold.cyan('🔐 Neetru CLI — Login'));
-        console.log(chalk_1.default.dim('Autentique seu CLI para chamar a API do Neetru Core\n'));
-        const coreUrl = options.coreUrl;
-        let apiKey = options.apiKey;
-        if (!apiKey) {
-            console.log(chalk_1.default.dim('Obtenha sua API key em:'));
-            console.log(chalk_1.default.cyan(`  ${coreUrl}/admin/credentials\n`));
-            const { key } = await prompt([{
-                    type: 'password',
-                    name: 'key',
-                    message: 'API key:',
-                    mask: '*',
-                    validate: (v) => v.length >= 20 || 'API key parece inválida (muito curta)',
-                }]);
-            apiKey = key;
+/**
+ * Best-effort cross-platform browser open. Falha silenciosamente — usuário
+ * sempre tem fallback de copiar/colar a URL.
+ */
+function openBrowser(url) {
+    try {
+        if (process.platform === 'win32') {
+            // Detached `start` via cmd.exe — empty title arg is required.
+            spawn('cmd', ['/c', 'start', '""', url], {
+                detached: true,
+                stdio: 'ignore',
+                windowsHide: true,
+            }).unref();
+            return;
+        }
+        if (process.platform === 'darwin') {
+            spawn('open', [url], { detached: true, stdio: 'ignore' }).unref();
+            return;
         }
-        const spinner = (0, ora_1.default)('Verificando credenciais...').start();
+        spawn('xdg-open', [url], { detached: true, stdio: 'ignore' }).unref();
+    }
+    catch {
+        // ignore — caller já printou a URL.
+    }
+}
+function sleep(ms) {
+    return new Promise((res) => setTimeout(res, ms));
+}
+async function pollForToken(deviceCode, initialIntervalSec, expiresAtMs, json) {
+    let intervalMs = initialIntervalSec * 1000;
+    const spinner = json
+        ? null
+        : ora({ text: 'Aguardando aprovação no browser…', color: 'blue' }).start();
+    while (Date.now() < expiresAtMs) {
+        await sleep(intervalMs);
         try {
-            const res = await fetch(`${coreUrl}/api/v1/cli/whoami`, {
-                headers: { Authorization: `Bearer ${apiKey}` },
-                signal: AbortSignal.timeout(8000),
+            const result = await apiRequest('/api/v1/oauth/device/token', {
+                method: 'POST',
+                body: {
+                    grant_type: DEVICE_GRANT_TYPE,
+                    device_code: deviceCode,
+                    client_id: 'neetru-cli',
+                },
             });
-            if (!res.ok) {
-                spinner.fail(`Falha de autenticação (HTTP ${res.status})`);
-                if (res.status === 401) {
-                    console.log(chalk_1.default.dim('  → API key inválida ou expirada'));
+            spinner?.succeed('Autorização concedida.');
+            return result.access_token;
+        }
+        catch (error) {
+            if (error instanceof CliApiError) {
+                // Códigos RFC 8628.
+                if (error.code === 'authorization_pending') {
+                    continue;
+                }
+                if (error.code === 'slow_down') {
+                    intervalMs += 5_000;
+                    continue;
+                }
+                if (error.code === 'access_denied') {
+                    spinner?.fail('Autorização negada pelo usuário.');
+                    throw new Error('access_denied');
                 }
-                process.exit(1);
+                if (error.code === 'expired_token') {
+                    spinner?.fail('Código expirou. Reinicie `neetru login`.');
+                    throw new Error('expired_token');
+                }
+                spinner?.fail(`Erro do servidor: ${error.code}`);
+                throw new Error(error.code);
+            }
+            if (error instanceof CliNetworkError) {
+                // Trata como transient — segue tentando até timeout.
+                continue;
             }
-            const data = await res.json();
-            spinner.succeed(`Autenticado como ${chalk_1.default.cyan(data.email ?? 'usuário')} (${data.role ?? 'role desconhecida'})`);
+            spinner?.fail(error.message);
+            throw error;
         }
-        catch (e) {
-            spinner.fail(`Erro: ${e.message}`);
+    }
+    spinner?.fail('Timeout aguardando aprovação.');
+    throw new Error('timeout');
+}
+export async function runLogin(opts = {}) {
+    const json = !!opts.json;
+    if (!json)
+        log.banner();
+    // ── Path legado: --token <nrt_...> pula o device flow.
+    if (opts.token) {
+        const token = opts.token.trim();
+        if (!TOKEN_PATTERN.test(token)) {
+            if (json)
+                emitJson({ ok: false, error: 'invalid_token_format' });
+            else
+                log.error('Token inválido. Formato esperado: nrt_<keyId>_<secret>');
             process.exit(1);
         }
-        // Save to global config
-        const existing = (0, config_1.readGlobalConfig)();
-        (0, config_1.writeGlobalConfig)({
-            ...existing,
-            coreUrl,
-            clientSecret: apiKey,
+        try {
+            const me = await apiRequest('/api/cli/v1/whoami', { token });
+            const path = await saveToken(token, me.email);
+            // Compat: alguns comandos legados ainda leem do Conf.
+            config.set('neetruApiKey', token);
+            if (json) {
+                emitJson({ ok: true, email: me.email, role: me.role, path });
+            }
+            else {
+                log.success(`Logado como ${chalk.bold(me.email)} (role: ${chalk.bold(me.role)})`);
+                log.dim(`Token salvo em ${path}`);
+            }
+            process.exit(0);
+        }
+        catch (err) {
+            handleFatalAuthError(err, json);
+        }
+        return;
+    }
+    // ── Device Code flow.
+    let authResp;
+    try {
+        authResp = await apiRequest('/api/v1/oauth/device/authorize', {
+            method: 'POST',
+            body: { client_id: 'neetru-cli' },
+        });
+    }
+    catch (err) {
+        if (json)
+            emitJson({ ok: false, error: 'authorize_failed', message: err.message });
+        else
+            log.error(`Falha ao iniciar login: ${err.message}`);
+        process.exit(2);
+        return;
+    }
+    const verifyUrl = authResp.verification_uri_complete ?? authResp.verification_uri;
+    if (json) {
+        emitJson({
+            ok: true,
+            stage: 'awaiting_approval',
+            user_code: authResp.user_code,
+            verification_uri: authResp.verification_uri,
+            verification_uri_complete: authResp.verification_uri_complete ?? null,
+            expires_in: authResp.expires_in,
         });
-        console.log('\n' + chalk_1.default.green.bold('✓ Login efetuado'));
-        console.log(chalk_1.default.dim('Credenciais salvas em ~/.neetru/config.json'));
-        console.log('');
-    });
-    return cmd;
+    }
+    else {
+        console.log();
+        console.log(`  ${chalk.dim('Código de verificação')}`);
+        console.log(`  ${chalk.bold.cyan(authResp.user_code)}`);
+        console.log();
+        console.log(`  ${chalk.dim('Verifique em')} ${chalk.underline(authResp.verification_uri)}`);
+        console.log();
+    }
+    openBrowser(verifyUrl);
+    const expiresAtMs = Date.now() + Math.min(authResp.expires_in * 1000, POLL_TIMEOUT_MS);
+    let accessToken;
+    try {
+        accessToken = await pollForToken(authResp.device_code, authResp.interval ?? 5, expiresAtMs, json);
+    }
+    catch (err) {
+        const message = err.message;
+        if (json)
+            emitJson({ ok: false, error: message });
+        else
+            log.error(`Login falhou: ${message}`);
+        process.exit(1);
+        return;
+    }
+    // Valida + persiste.
+    try {
+        const me = await apiRequest('/api/cli/v1/whoami', { token: accessToken });
+        const path = await saveToken(accessToken, me.email);
+        // Compat: legacy commands podem usar Conf — mantemos o token lá também.
+        config.set('neetruApiKey', accessToken);
+        if (json) {
+            emitJson({ ok: true, email: me.email, role: me.role, path });
+        }
+        else {
+            console.log();
+            log.success(`Logado como ${chalk.bold(me.email)} (role: ${chalk.bold(me.role)})`);
+            log.dim(`Token salvo em ${path}`);
+        }
+        process.exit(0);
+    }
+    catch (err) {
+        handleFatalAuthError(err, json);
+    }
+}
+function handleFatalAuthError(err, json) {
+    if (err instanceof CliApiError) {
+        if (json)
+            emitJson({ ok: false, status: err.status, error: err.code, message: err.message });
+        else
+            log.error(`Servidor retornou ${err.status}: ${err.message}`);
+        process.exit(err.status === 401 || err.status === 403 ? 1 : 2);
+    }
+    if (err instanceof CliNetworkError) {
+        if (json)
+            emitJson({ ok: false, error: 'network', message: err.message });
+        else
+            log.error(err.message);
+        process.exit(2);
+    }
+    if (json)
+        emitJson({ ok: false, error: 'unknown', message: err.message });
+    else
+        log.error(err.message);
+    process.exit(2);
 }
 //# sourceMappingURL=login.js.map

package/dist/commands/login.js.map

@@ -1 +1 @@
-{"version":3,"file":"login.js","sourceRoot":"","sources":["../../src/commands/login.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAUA,oCAgEC;AA1ED,yCAAoC;AACpC,kDAA0B;AAC1B,8CAAsB;AACtB,sCAAgE;AAEhE,KAAK,UAAU,MAAM,CAAC,SAAwE;IAC5F,MAAM,EAAE,OAAO,EAAE,QAAQ,EAAE,GAAG,wDAAa,UAAU,GAAC,CAAC;IACvD,OAAO,QAAQ,CAAC,MAAM,CAAC,SAAgB,CAAC,CAAC;AAC3C,CAAC;AAED,SAAgB,YAAY;IAC1B,MAAM,GAAG,GAAG,IAAI,mBAAO,CAAC,OAAO,CAAC,CAAC;IAEjC,GAAG;SACA,WAAW,CAAC,gDAAgD,CAAC;SAC7D,MAAM,CAAC,kBAAkB,EAAE,oBAAoB,EAAE,yBAAyB,CAAC;SAC3E,MAAM,CAAC,iBAAiB,EAAE,gEAAgE,CAAC;SAC3F,MAAM,CAAC,KAAK,EAAE,OAAO,EAAE,EAAE;QACxB,OAAO,CAAC,GAAG,CAAC,IAAI,GAAG,eAAK,CAAC,IAAI,CAAC,IAAI,CAAC,uBAAuB,CAAC,CAAC,CAAC;QAC7D,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,GAAG,CAAC,uDAAuD,CAAC,CAAC,CAAC;QAEhF,MAAM,OAAO,GAAG,OAAO,CAAC,OAAiB,CAAC;QAE1C,IAAI,MAAM,GAAG,OAAO,CAAC,MAA4B,CAAC;QAClD,IAAI,CAAC,MAAM,EAAE,CAAC;YACZ,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,GAAG,CAAC,yBAAyB,CAAC,CAAC,CAAC;YAClD,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,IAAI,CAAC,KAAK,OAAO,sBAAsB,CAAC,CAAC,CAAC;YAE5D,MAAM,EAAE,GAAG,EAAE,GAAG,MAAM,MAAM,CAAC,CAAC;oBAC5B,IAAI,EAAE,UAAU;oBAChB,IAAI,EAAE,KAAK;oBACX,OAAO,EAAE,UAAU;oBACnB,IAAI,EAAE,GAAG;oBACT,QAAQ,EAAE,CAAC,CAAS,EAAE,EAAE,CAAC,CAAC,CAAC,MAAM,IAAI,EAAE,IAAI,uCAAuC;iBACnF,CAAC,CAAC,CAAC;YACJ,MAAM,GAAG,GAAG,CAAC;QACf,CAAC;QAED,MAAM,OAAO,GAAG,IAAA,aAAG,EAAC,4BAA4B,CAAC,CAAC,KAAK,EAAE,CAAC;QAC1D,IAAI,CAAC;YACH,MAAM,GAAG,GAAG,MAAM,KAAK,CAAC,GAAG,OAAO,oBAAoB,EAAE;gBACtD,OAAO,EAAE,EAAE,aAAa,EAAE,UAAU,MAAM,EAAE,EAAE;gBAC9C,MAAM,EAAE,WAAW,CAAC,OAAO,CAAC,IAAI,CAAC;aAClC,CAAC,CAAC;YAEH,IAAI,CAAC,GAAG,CAAC,EAAE,EAAE,CAAC;gBACZ,OAAO,CAAC,IAAI,CAAC,+BAA+B,GAAG,CAAC,MAAM,GAAG,CAAC,CAAC;gBAC3D,IAAI,GAAG,CAAC,MAAM,KAAK,GAAG,EAAE,CAAC;oBACvB,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,GAAG,CAAC,kCAAkC,CAAC,CAAC,CAAC;gBAC7D,CAAC;gBACD,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;YAClB,CAAC;YAED,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,IAAI,EAAuC,CAAC;YACnE,OAAO,CAAC,OAAO,CAAC,oBAAoB,eAAK,CAAC,IAAI,CAAC,IAAI,CAAC,KAAK,IAAI,SAAS,CAAC,KAAK,IAAI,CAAC,IAAI,IAAI,mBAAmB,GAAG,CAAC,CAAC;QACnH,CAAC;QAAC,OAAO,CAAC,EAAE,CAAC;YACX,OAAO,CAAC,IAAI,CAAC,SAAU,CAAW,CAAC,OAAO,EAAE,CAAC,CAAC;YAC9C,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;QAClB,CAAC;QAED,wBAAwB;QACxB,MAAM,QAAQ,GAAG,IAAA,yBAAgB,GAAE,CAAC;QACpC,IAAA,0BAAiB,EAAC;YAChB,GAAG,QAAQ;YACX,OAAO;YACP,YAAY,EAAE,MAAM;SACrB,CAAC,CAAC;QAEH,OAAO,CAAC,GAAG,CAAC,IAAI,GAAG,eAAK,CAAC,KAAK,CAAC,IAAI,CAAC,kBAAkB,CAAC,CAAC,CAAC;QACzD,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,GAAG,CAAC,6CAA6C,CAAC,CAAC,CAAC;QACtE,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;IAClB,CAAC,CAAC,CAAC;IAEL,OAAO,GAAG,CAAC;AACb,CAAC"}
+{"version":3,"file":"login.js","sourceRoot":"","sources":["../../src/commands/login.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;GAgBG;AACH,OAAO,KAAK,MAAM,OAAO,CAAC;AAC1B,OAAO,GAAG,MAAM,KAAK,CAAC;AACtB,OAAO,EAAE,KAAK,EAAE,MAAM,oBAAoB,CAAC;AAC3C,OAAO,EAAE,MAAM,EAAE,MAAM,kBAAkB,CAAC;AAC1C,OAAO,EAAE,SAAS,EAAmB,MAAM,gBAAgB,CAAC;AAC5D,OAAO,EAAE,UAAU,EAAE,WAAW,EAAE,eAAe,EAAE,MAAM,sBAAsB,CAAC;AAChF,OAAO,EAAE,GAAG,EAAE,MAAM,oBAAoB,CAAC;AAEzC,MAAM,aAAa,GAAG,6CAA6C,CAAC;AACpE,MAAM,iBAAiB,GAAG,8CAA8C,CAAC;AACzE,MAAM,eAAe,GAAG,EAAE,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC,QAAQ;AA6BhD,SAAS,QAAQ,CAAC,GAA4B;IAC5C,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC,CAAC;AACnC,CAAC;AAED;;;GAGG;AACH,SAAS,WAAW,CAAC,GAAW;IAC9B,IAAI,CAAC;QACH,IAAI,OAAO,CAAC,QAAQ,KAAK,OAAO,EAAE,CAAC;YACjC,8DAA8D;YAC9D,KAAK,CAAC,KAAK,EAAE,CAAC,IAAI,EAAE,OAAO,EAAE,IAAI,EAAE,GAAG,CAAC,EAAE;gBACvC,QAAQ,EAAE,IAAI;gBACd,KAAK,EAAE,QAAQ;gBACf,WAAW,EAAE,IAAI;aAClB,CAAC,CAAC,KAAK,EAAE,CAAC;YACX,OAAO;QACT,CAAC;QACD,IAAI,OAAO,CAAC,QAAQ,KAAK,QAAQ,EAAE,CAAC;YAClC,KAAK,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,EAAE,EAAE,QAAQ,EAAE,IAAI,EAAE,KAAK,EAAE,QAAQ,EAAE,CAAC,CAAC,KAAK,EAAE,CAAC;YAClE,OAAO;QACT,CAAC;QACD,KAAK,CAAC,UAAU,EAAE,CAAC,GAAG,CAAC,EAAE,EAAE,QAAQ,EAAE,IAAI,EAAE,KAAK,EAAE,QAAQ,EAAE,CAAC,CAAC,KAAK,EAAE,CAAC;IACxE,CAAC;IAAC,MAAM,CAAC;QACP,oCAAoC;IACtC,CAAC;AACH,CAAC;AAED,SAAS,KAAK,CAAC,EAAU;IACvB,OAAO,IAAI,OAAO,CAAC,CAAC,GAAG,EAAE,EAAE,CAAC,UAAU,CAAC,GAAG,EAAE,EAAE,CAAC,CAAC,CAAC;AACnD,CAAC;AAED,KAAK,UAAU,YAAY,CACzB,UAAkB,EAClB,kBAA0B,EAC1B,WAAmB,EACnB,IAAa;IAEb,IAAI,UAAU,GAAG,kBAAkB,GAAG,IAAI,CAAC;IAC3C,MAAM,OAAO,GAAG,IAAI;QAClB,CAAC,CAAC,IAAI;QACN,CAAC,CAAC,GAAG,CAAC,EAAE,IAAI,EAAE,kCAAkC,EAAE,KAAK,EAAE,MAAM,EAAE,CAAC,CAAC,KAAK,EAAE,CAAC;IAE7E,OAAO,IAAI,CAAC,GAAG,EAAE,GAAG,WAAW,EAAE,CAAC;QAChC,MAAM,KAAK,CAAC,UAAU,CAAC,CAAC;QACxB,IAAI,CAAC;YACH,MAAM,MAAM,GAAG,MAAM,UAAU,CAC7B,4BAA4B,EAC5B;gBACE,MAAM,EAAE,MAAM;gBACd,IAAI,EAAE;oBACJ,UAAU,EAAE,iBAAiB;oBAC7B,WAAW,EAAE,UAAU;oBACvB,SAAS,EAAE,YAAY;iBACxB;aACF,CACF,CAAC;YACF,OAAO,EAAE,OAAO,CAAC,wBAAwB,CAAC,CAAC;YAC3C,OAAO,MAAM,CAAC,YAAY,CAAC;QAC7B,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,IAAI,KAAK,YAAY,WAAW,EAAE,CAAC;gBACjC,oBAAoB;gBACpB,IAAI,KAAK,CAAC,IAAI,KAAK,uBAAuB,EAAE,CAAC;oBAC3C,SAAS;gBACX,CAAC;gBACD,IAAI,KAAK,CAAC,IAAI,KAAK,WAAW,EAAE,CAAC;oBAC/B,UAAU,IAAI,KAAK,CAAC;oBACpB,SAAS;gBACX,CAAC;gBACD,IAAI,KAAK,CAAC,IAAI,KAAK,eAAe,EAAE,CAAC;oBACnC,OAAO,EAAE,IAAI,CAAC,kCAAkC,CAAC,CAAC;oBAClD,MAAM,IAAI,KAAK,CAAC,eAAe,CAAC,CAAC;gBACnC,CAAC;gBACD,IAAI,KAAK,CAAC,IAAI,KAAK,eAAe,EAAE,CAAC;oBACnC,OAAO,EAAE,IAAI,CAAC,0CAA0C,CAAC,CAAC;oBAC1D,MAAM,IAAI,KAAK,CAAC,eAAe,CAAC,CAAC;gBACnC,CAAC;gBACD,OAAO,EAAE,IAAI,CAAC,qBAAqB,KAAK,CAAC,IAAI,EAAE,CAAC,CAAC;gBACjD,MAAM,IAAI,KAAK,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;YAC9B,CAAC;YACD,IAAI,KAAK,YAAY,eAAe,EAAE,CAAC;gBACrC,qDAAqD;gBACrD,SAAS;YACX,CAAC;YACD,OAAO,EAAE,IAAI,CAAE,KAAe,CAAC,OAAO,CAAC,CAAC;YACxC,MAAM,KAAK,CAAC;QACd,CAAC;IACH,CAAC;IAED,OAAO,EAAE,IAAI,CAAC,+BAA+B,CAAC,CAAC;IAC/C,MAAM,IAAI,KAAK,CAAC,SAAS,CAAC,CAAC;AAC7B,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,QAAQ,CAAC,OAAqB,EAAE;IACpD,MAAM,IAAI,GAAG,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC;IACzB,IAAI,CAAC,IAAI;QAAE,GAAG,CAAC,MAAM,EAAE,CAAC;IAExB,wDAAwD;IACxD,IAAI,IAAI,CAAC,KAAK,EAAE,CAAC;QACf,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,EAAE,CAAC;QAChC,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,KAAK,CAAC,EAAE,CAAC;YAC/B,IAAI,IAAI;gBAAE,QAAQ,CAAC,EAAE,EAAE,EAAE,KAAK,EAAE,KAAK,EAAE,sBAAsB,EAAE,CAAC,CAAC;;gBAC5D,GAAG,CAAC,KAAK,CAAC,wDAAwD,CAAC,CAAC;YACzE,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;QAClB,CAAC;QACD,IAAI,CAAC;YACH,MAAM,EAAE,GAAG,MAAM,UAAU,CAAiB,oBAAoB,EAAE,EAAE,KAAK,EAAE,CAAC,CAAC;YAC7E,MAAM,IAAI,GAAG,MAAM,SAAS,CAAC,KAAK,EAAE,EAAE,CAAC,KAAK,CAAC,CAAC;YAC9C,sDAAsD;YACtD,MAAM,CAAC,GAAG,CAAC,cAAc,EAAE,KAAK,CAAC,CAAC;YAClC,IAAI,IAAI,EAAE,CAAC;gBACT,QAAQ,CAAC,EAAE,EAAE,EAAE,IAAI,EAAE,KAAK,EAAE,EAAE,CAAC,KAAK,EAAE,IAAI,EAAE,EAAE,CAAC,IAAI,EAAE,IAAI,EAAE,CAAC,CAAC;YAC/D,CAAC;iBAAM,CAAC;gBACN,GAAG,CAAC,OAAO,CAAC,eAAe,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,KAAK,CAAC,WAAW,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;gBAClF,GAAG,CAAC,GAAG,CAAC,kBAAkB,IAAI,EAAE,CAAC,CAAC;YACpC,CAAC;YACD,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;QAClB,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,oBAAoB,CAAC,GAAG,EAAE,IAAI,CAAC,CAAC;QAClC,CAAC;QACD,OAAO;IACT,CAAC;IAED,uBAAuB;IACvB,IAAI,QAAiC,CAAC;IACtC,IAAI,CAAC;QACH,QAAQ,GAAG,MAAM,UAAU,CACzB,gCAAgC,EAChC;YACE,MAAM,EAAE,MAAM;YACd,IAAI,EAAE,EAAE,SAAS,EAAE,YAAY,EAAE;SAClC,CACF,CAAC;IACJ,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,IAAI,IAAI;YAAE,QAAQ,CAAC,EAAE,EAAE,EAAE,KAAK,EAAE,KAAK,EAAE,kBAAkB,EAAE,OAAO,EAAG,GAAa,CAAC,OAAO,EAAE,CAAC,CAAC;;YACzF,GAAG,CAAC,KAAK,CAAC,2BAA4B,GAAa,CAAC,OAAO,EAAE,CAAC,CAAC;QACpE,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;QAChB,OAAO;IACT,CAAC;IAED,MAAM,SAAS,GAAG,QAAQ,CAAC,yBAAyB,IAAI,QAAQ,CAAC,gBAAgB,CAAC;IAElF,IAAI,IAAI,EAAE,CAAC;QACT,QAAQ,CAAC;YACP,EAAE,EAAE,IAAI;YACR,KAAK,EAAE,mBAAmB;YAC1B,SAAS,EAAE,QAAQ,CAAC,SAAS;YAC7B,gBAAgB,EAAE,QAAQ,CAAC,gBAAgB;YAC3C,yBAAyB,EAAE,QAAQ,CAAC,yBAAyB,IAAI,IAAI;YACrE,UAAU,EAAE,QAAQ,CAAC,UAAU;SAChC,CAAC,CAAC;IACL,CAAC;SAAM,CAAC;QACN,OAAO,CAAC,GAAG,EAAE,CAAC;QACd,OAAO,CAAC,GAAG,CAAC,KAAK,KAAK,CAAC,GAAG,CAAC,uBAAuB,CAAC,EAAE,CAAC,CAAC;QACvD,OAAO,CAAC,GAAG,CAAC,KAAK,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,QAAQ,CAAC,SAAS,CAAC,EAAE,CAAC,CAAC;QACxD,OAAO,CAAC,GAAG,EAAE,CAAC;QACd,OAAO,CAAC,GAAG,CAAC,KAAK,KAAK,CAAC,GAAG,CAAC,cAAc,CAAC,IAAI,KAAK,CAAC,SAAS,CAAC,QAAQ,CAAC,gBAAgB,CAAC,EAAE,CAAC,CAAC;QAC5F,OAAO,CAAC,GAAG,EAAE,CAAC;IAChB,CAAC;IAED,WAAW,CAAC,SAAS,CAAC,CAAC;IAEvB,MAAM,WAAW,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,GAAG,CAAC,QAAQ,CAAC,UAAU,GAAG,IAAI,EAAE,eAAe,CAAC,CAAC;IAEvF,IAAI,WAAmB,CAAC;IACxB,IAAI,CAAC;QACH,WAAW,GAAG,MAAM,YAAY,CAC9B,QAAQ,CAAC,WAAW,EACpB,QAAQ,CAAC,QAAQ,IAAI,CAAC,EACtB,WAAW,EACX,IAAI,CACL,CAAC;IACJ,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,MAAM,OAAO,GAAI,GAAa,CAAC,OAAO,CAAC;QACvC,IAAI,IAAI;YAAE,QAAQ,CAAC,EAAE,EAAE,EAAE,KAAK,EAAE,KAAK,EAAE,OAAO,EAAE,CAAC,CAAC;;YAC7C,GAAG,CAAC,KAAK,CAAC,iBAAiB,OAAO,EAAE,CAAC,CAAC;QAC3C,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;QAChB,OAAO;IACT,CAAC;IAED,qBAAqB;IACrB,IAAI,CAAC;QACH,MAAM,EAAE,GAAG,MAAM,UAAU,CAAiB,oBAAoB,EAAE,EAAE,KAAK,EAAE,WAAW,EAAE,CAAC,CAAC;QAC1F,MAAM,IAAI,GAAG,MAAM,SAAS,CAAC,WAAW,EAAE,EAAE,CAAC,KAAK,CAAC,CAAC;QACpD,wEAAwE;QACxE,MAAM,CAAC,GAAG,CAAC,cAAc,EAAE,WAAW,CAAC,CAAC;QAExC,IAAI,IAAI,EAAE,CAAC;YACT,QAAQ,CAAC,EAAE,EAAE,EAAE,IAAI,EAAE,KAAK,EAAE,EAAE,CAAC,KAAK,EAAE,IAAI,EAAE,EAAE,CAAC,IAAI,EAAE,IAAI,EAAE,CAAC,CAAC;QAC/D,CAAC;aAAM,CAAC;YACN,OAAO,CAAC,GAAG,EAAE,CAAC;YACd,GAAG,CAAC,OAAO,CAAC,eAAe,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,KAAK,CAAC,WAAW,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;YAClF,GAAG,CAAC,GAAG,CAAC,kBAAkB,IAAI,EAAE,CAAC,CAAC;QACpC,CAAC;QACD,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAClB,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,oBAAoB,CAAC,GAAG,EAAE,IAAI,CAAC,CAAC;IAClC,CAAC;AACH,CAAC;AAED,SAAS,oBAAoB,CAAC,GAAY,EAAE,IAAa;IACvD,IAAI,GAAG,YAAY,WAAW,EAAE,CAAC;QAC/B,IAAI,IAAI;YAAE,QAAQ,CAAC,EAAE,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,GAAG,CAAC,MAAM,EAAE,KAAK,EAAE,GAAG,CAAC,IAAI,EAAE,OAAO,EAAE,GAAG,CAAC,OAAO,EAAE,CAAC,CAAC;;YACxF,GAAG,CAAC,KAAK,CAAC,qBAAqB,GAAG,CAAC,MAAM,KAAK,GAAG,CAAC,OAAO,EAAE,CAAC,CAAC;QAClE,OAAO,CAAC,IAAI,CAAC,GAAG,CAAC,MAAM,KAAK,GAAG,IAAI,GAAG,CAAC,MAAM,KAAK,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;IACjE,CAAC;IACD,IAAI,GAAG,YAAY,eAAe,EAAE,CAAC;QACnC,IAAI,IAAI;YAAE,QAAQ,CAAC,EAAE,EAAE,EAAE,KAAK,EAAE,KAAK,EAAE,SAAS,EAAE,OAAO,EAAE,GAAG,CAAC,OAAO,EAAE,CAAC,CAAC;;YACrE,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC;QAC5B,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAClB,CAAC;IACD,IAAI,IAAI;QAAE,QAAQ,CAAC,EAAE,EAAE,EAAE,KAAK,EAAE,KAAK,EAAE,SAAS,EAAE,OAAO,EAAG,GAAa,CAAC,OAAO,EAAE,CAAC,CAAC;;QAChF,GAAG,CAAC,KAAK,CAAE,GAAa,CAAC,OAAO,CAAC,CAAC;IACvC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;AAClB,CAAC"}

package/dist/commands/logout.d.ts

@@ -0,0 +1 @@
+export declare function runLogout(): Promise<void>;

package/dist/commands/logout.js

@@ -0,0 +1,28 @@
+/**
+ * `neetru logout` — limpa credenciais locais.
+ *
+ * Sprint 1: arquivo canônico é ~/.config/neetru-cli/auth.json.
+ * Mantemos cleanup do Conf storage legado por compat com sessões antigas.
+ */
+import { config } from '../lib/config.js';
+import { clearToken, getAuthFilePath } from '../lib/auth.js';
+import { log } from '../utils/logger.js';
+export async function runLogout() {
+    let removed = false;
+    try {
+        if (await clearToken())
+            removed = true;
+    }
+    catch (err) {
+        log.warn(`Falha ao remover ${getAuthFilePath()}: ${err.message}`);
+    }
+    if (config.get('neetruApiKey')) {
+        config.delete('neetruApiKey');
+        removed = true;
+    }
+    if (removed)
+        log.success('Sessão local apagada.');
+    else
+        log.warn('Nenhuma sessão ativa.');
+}
+//# sourceMappingURL=logout.js.map

package/dist/commands/logout.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"logout.js","sourceRoot":"","sources":["../../src/commands/logout.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AACH,OAAO,EAAE,MAAM,EAAE,MAAM,kBAAkB,CAAC;AAC1C,OAAO,EAAE,UAAU,EAAE,eAAe,EAAE,MAAM,gBAAgB,CAAC;AAC7D,OAAO,EAAE,GAAG,EAAE,MAAM,oBAAoB,CAAC;AAEzC,MAAM,CAAC,KAAK,UAAU,SAAS;IAC7B,IAAI,OAAO,GAAG,KAAK,CAAC;IAEpB,IAAI,CAAC;QACH,IAAI,MAAM,UAAU,EAAE;YAAE,OAAO,GAAG,IAAI,CAAC;IACzC,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,GAAG,CAAC,IAAI,CAAC,oBAAoB,eAAe,EAAE,KAAM,GAAa,CAAC,OAAO,EAAE,CAAC,CAAC;IAC/E,CAAC;IAED,IAAI,MAAM,CAAC,GAAG,CAAC,cAAc,CAAC,EAAE,CAAC;QAC/B,MAAM,CAAC,MAAM,CAAC,cAAc,CAAC,CAAC;QAC9B,OAAO,GAAG,IAAI,CAAC;IACjB,CAAC;IAED,IAAI,OAAO;QAAE,GAAG,CAAC,OAAO,CAAC,uBAAuB,CAAC,CAAC;;QAC7C,GAAG,CAAC,IAAI,CAAC,uBAAuB,CAAC,CAAC;AACzC,CAAC"}

package/dist/commands/logs.d.ts

@@ -1,3 +1,14 @@
-import { Command } from 'commander';
-export declare function logsCommand(): Command;
-//# sourceMappingURL=logs.d.ts.map
+export interface LogsOptions {
+    clientId?: string;
+    follow?: boolean;
+    lines?: string;
+    since?: string;
+    level?: string;
+    /** v1.3 — filtrar por productId (corresponde a `logs/{productId}/...`). */
+    product?: string;
+    /** v1.3 — filtrar por channel (`stdout` | `stderr` | `app` etc). */
+    channel?: string;
+    /** v1.3 — buscar logs com `correlationId == <uuid>`. */
+    correlationId?: string;
+}
+export declare function runLogs(opts: LogsOptions): Promise<void>;