npm - @pacaf/wizard-ux - Versions diffs - 3.6.2 → 3.6.4 - Mend

@pacaf/wizard-ux 3.6.2 → 3.6.4

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (3) hide show

package/package.json +3 -2
package/server/steps/05-environments.mjs +100 -2
package/server/steps/05-environments.test.mjs +57 -0

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@pacaf/wizard-ux",
-  "version": "3.6.2",
+  "version": "3.6.4",
   "private": false,
   "type": "module",
   "description": "Browser-based setup wizard for Power Apps Code Apps (parallel to @pacaf/wizard CLI).",
@@ -38,7 +38,7 @@
     "react-dom": "^19.0.0",
     "react-resizable-panels": "^2.1.7",
     "react-router-dom": "^7.1.0",
-    "@pacaf/wizard": "3.4.6"
+    "@pacaf/wizard": "3.4.7"
   },
   "devDependencies": {
     "@types/react": "^19.0.0",
@@ -63,6 +63,7 @@
     "dev": "node server/index.mjs",
     "build": "vite build",
     "preview": "vite preview --port 5174",
+    "test": "node --test server/steps/05-environments.test.mjs",
     "postinstall": "node scripts/fix-pty-perms.mjs"
   }
 }

package/server/steps/05-environments.mjs CHANGED Viewed

@@ -116,6 +116,88 @@ function findProfileIndexByName(pac, name) {
   return null;
 }
+/**
+ * Parse the raw stdout of `pac auth list` into structured rows. Columns are:
+ *   [index] [active*] Kind Name User ...
+ * The active flag is a `*` in the second column; it is absent for inactive
+ * profiles. Pure (no I/O) so it can be unit-tested against captured fixtures.
+ */
+export function parseAuthListOutput(stdout) {
+  const rows = [];
+  for (const line of String(stdout || '').split(/\r?\n/)) {
+    const m = line.match(/^\s*\[(\d+)\]\s*(\*?)\s+(\S+)\s+(\S+)\s+(\S+)/);
+    if (!m) continue;
+    rows.push({
+      index: Number(m[1]),
+      active: m[2] === '*',
+      kind: m[3],
+      name: m[4],
+      user: m[5].trim(),
+    });
+  }
+  return rows;
+}
+/**
+ * Given parsed profiles and the name we intend to keep, return the stale
+ * duplicates: other profiles sharing the same user + kind as the kept profile.
+ * Pure so the duplicate-detection rules can be unit-tested directly.
+ */
+export function selectDuplicateProfiles(profiles, keepName) {
+  const keep = profiles.find((p) => p.name === keepName);
+  if (!keep) return [];
+  return profiles.filter(
+    (p) => p.name !== keepName && p.user === keep.user && p.kind === keep.kind,
+  );
+}
+/**
+ * Detect the signature of the corrupted-auth-store crash so we can surface an
+ * actionable remediation instead of the raw pac stack trace. The
+ * "Sequence contains..." line lands in pac-log.txt; the console shows the
+ * generic non-recoverable error / InvalidOperationException.
+ */
+export function isDuplicateAuthStoreError(output) {
+  const s = String(output || '');
+  return /Sequence contains more than one matching element/i.test(s)
+    || /non-recoverable error/i.test(s)
+    || /InvalidOperationException/i.test(s);
+}
+/** Fetch and parse `pac auth list` into structured rows. */
+function parseAuthProfiles(pac) {
+  const res = SHELL.runSafeCapture(pac, ['auth', 'list']);
+  if (!res.ok) return [];
+  return parseAuthListOutput(res.stdout);
+}
+/**
+ * Pre-flight auth hygiene. `pac auth name` crashes with
+ * "Sequence contains more than one matching element" when the local auth store
+ * holds duplicate profiles for the same user (a known pac CLI bug — its
+ * AuthProfiles.Update uses SingleOrDefault). Prior wizard runs in other folders
+ * leave stale `pp-<slug>-*` profiles behind, which is exactly the trigger.
+ *
+ * Before renaming the discovery profile, delete any *other* profile that shares
+ * the same user + kind as the profile we're keeping. The discovery profile was
+ * freshly authenticated for the current user in Step 4, so same-user leftovers
+ * are stale and safe to remove. This both prevents the crash and stops profiles
+ * accumulating across runs (issue #102, fixes 1 & 3).
+ */
+function pruneDuplicateAuthProfiles(log, pac, keepName) {
+  const profiles = parseAuthProfiles(pac);
+  if (profiles.length === 0) return;
+  const dupes = selectDuplicateProfiles(profiles, keepName);
+  if (dupes.length === 0) return;
+  const keep = profiles.find((p) => p.name === keepName);
+  log.warn(`Found ${dupes.length} stale duplicate auth profile(s) for ${keep.user}; removing them to avoid a known pac CLI crash.`);
+  for (const d of dupes) {
+    const del = SHELL.runSafeCapture(pac, ['auth', 'delete', '--name', d.name]);
+    if (del.ok) log.ok(`Removed stale auth profile ${d.name}`);
+    else log.warn(`Could not remove stale auth profile ${d.name}. If finalize still fails, run \`pac auth clear\` and retry.`);
+  }
+}
 export default {
   meta: {
     number: 5,
@@ -256,8 +338,24 @@ export default {
         SHELL.runSafeCapture(pac, ['auth', 'select', '--name', DISCOVERY_PROFILE_NAME]);
         const sel = SHELL.runSafeCapture(pac, ['env', 'select', '--environment', devUrl]);
         if (!sel.ok) throw new Error(`Could not target ${devUrl}: ${SCRUB.scrubSecrets(sel.stderr || sel.stdout || '')}`);
-        const renamed = SHELL.runSafeCapture(pac, ['auth', 'name', '--index', String(discoveryIdx), '--name', userProfileName]);
-        if (!renamed.ok) throw new Error(`Could not finalize the auth profile: ${SCRUB.scrubSecrets(renamed.stderr || renamed.stdout || '')}`);
+        // Pre-flight hygiene: clear stale duplicate profiles that crash `pac auth name` (issue #102).
+        pruneDuplicateAuthProfiles(log, pac, DISCOVERY_PROFILE_NAME);
+        // Deletions can shift indices, so re-resolve the discovery profile's index.
+        const renameIdx = findProfileIndexByName(pac, DISCOVERY_PROFILE_NAME) ?? discoveryIdx;
+        const renamed = SHELL.runSafeCapture(pac, ['auth', 'name', '--index', String(renameIdx), '--name', userProfileName]);
+        if (!renamed.ok) {
+          const detail = SCRUB.scrubSecrets(renamed.stderr || renamed.stdout || '');
+          if (isDuplicateAuthStoreError(detail)) {
+            throw new Error([
+              'Could not finalize the auth profile: your local PAC auth store has duplicate or dual-active profiles.',
+              'This is a known pac CLI bug ("Sequence contains more than one matching element") that crashes `pac auth name`.',
+              'Fix it by clearing the local profiles, then click Save & run again:',
+              '  pac auth clear',
+              '(After clearing you will be asked to sign in once more to recreate a single clean profile.)',
+            ].join('\n'));
+          }
+          throw new Error(`Could not finalize the auth profile: ${detail}`);
+        }
         log.ok(`Profile ${userProfileName} ready (targeting Dev).`);
       } else if (findProfileIndexByName(pac, userProfileName) != null) {
         // Re-run after a previous success: discovery was already renamed.

package/server/steps/05-environments.test.mjs ADDED Viewed

@@ -0,0 +1,57 @@
+import test from 'node:test';
+import assert from 'node:assert/strict';
+import {
+  parseAuthListOutput,
+  selectDuplicateProfiles,
+  isDuplicateAuthStoreError,
+} from './05-environments.mjs';
+// Reproduces the corrupted store from issue #102: two profiles flagged active
+// (`*`) that are duplicates of the same user + environment.
+const DUAL_ACTIVE_OUTPUT = `
+Index Active Kind      Name                     User
+[1]          UNIVERSAL pp-papps4ff-d-s-6ae3eeaf 00000000-0000-0000-0000-000000000000 Application
+[2]   *      UNIVERSAL pp-check6f6-d-u-6ae3eeaf user@contoso.com User
+[3]   *      UNIVERSAL pacaf-discovery          user@contoso.com User
+`;
+test('parseAuthListOutput parses index, active flag, kind, name, and user', () => {
+  const rows = parseAuthListOutput(DUAL_ACTIVE_OUTPUT);
+  assert.equal(rows.length, 3);
+  assert.deepEqual(rows[0], { index: 1, active: false, kind: 'UNIVERSAL', name: 'pp-papps4ff-d-s-6ae3eeaf', user: '00000000-0000-0000-0000-000000000000' });
+  assert.deepEqual(rows[1], { index: 2, active: true, kind: 'UNIVERSAL', name: 'pp-check6f6-d-u-6ae3eeaf', user: 'user@contoso.com' });
+  assert.deepEqual(rows[2], { index: 3, active: true, kind: 'UNIVERSAL', name: 'pacaf-discovery', user: 'user@contoso.com' });
+});
+test('parseAuthListOutput ignores the header and blank lines', () => {
+  assert.deepEqual(parseAuthListOutput(''), []);
+  assert.deepEqual(parseAuthListOutput('Index Active Kind Name User'), []);
+});
+test('selectDuplicateProfiles returns same-user/kind profiles other than the kept one', () => {
+  const profiles = parseAuthListOutput(DUAL_ACTIVE_OUTPUT);
+  const dupes = selectDuplicateProfiles(profiles, 'pacaf-discovery');
+  assert.deepEqual(dupes.map((p) => p.name), ['pp-check6f6-d-u-6ae3eeaf']);
+});
+test('selectDuplicateProfiles leaves a different user untouched', () => {
+  const output = `
+[1]   *      UNIVERSAL pacaf-discovery   me@contoso.com User
+[2]          UNIVERSAL pp-other-d-u-1234 someone@else.com User
+`;
+  const dupes = selectDuplicateProfiles(parseAuthListOutput(output), 'pacaf-discovery');
+  assert.equal(dupes.length, 0);
+});
+test('selectDuplicateProfiles returns nothing when the kept profile is absent', () => {
+  const dupes = selectDuplicateProfiles(parseAuthListOutput(DUAL_ACTIVE_OUTPUT), 'nonexistent');
+  assert.deepEqual(dupes, []);
+});
+test('isDuplicateAuthStoreError matches the known pac crash signatures', () => {
+  assert.equal(isDuplicateAuthStoreError('FTL | Sequence contains more than one matching element'), true);
+  assert.equal(isDuplicateAuthStoreError('Sorry, the app encountered a non-recoverable error'), true);
+  assert.equal(isDuplicateAuthStoreError('System.InvalidOperationException: ...'), true);
+  assert.equal(isDuplicateAuthStoreError('Error: environment not found'), false);
+  assert.equal(isDuplicateAuthStoreError(''), false);
+});