@postman-cse/onboarding-repo-sync 0.13.1 → 0.13.3

package/dist/action.cjs

@@ -24512,6 +24512,15 @@ var HttpError = class _HttpError extends Error {
 };
 
 // src/lib/postman/internal-integration-adapter.ts
+function extractDuplicateWorkspaceId(body) {
+  try {
+    const parsed = JSON.parse(body);
+    const candidate = parsed?.error?.meta?.workspaceId ?? parsed?.meta?.workspaceId;
+    return typeof candidate === "string" && candidate.trim() ? candidate.trim() : void 0;
+  } catch {
+    return void 0;
+  }
+}
 var BifrostInternalIntegrationAdapter = class {
   accessToken;
   bifrostBaseUrl;
@@ -24599,6 +24608,12 @@ var BifrostInternalIntegrationAdapter = class {
         const body = await response.text();
         const isDuplicate = body.includes("invalidParamError") && body.includes("already exists") || body.includes("projectAlreadyConnected");
         if (isDuplicate) {
+          const existingWorkspaceId = extractDuplicateWorkspaceId(body);
+          if (existingWorkspaceId && existingWorkspaceId !== workspaceId) {
+            throw new Error(
+              await this.describeWorkspaceLinkConflict(existingWorkspaceId, workspaceId, repoUrl)
+            );
+          }
           return;
         }
       }
@@ -24610,6 +24625,49 @@ var BifrostInternalIntegrationAdapter = class {
       });
     }
   }
+  /**
+   * Build the failure message for a duplicate-link conflict. Looks the owning
+   * workspace up through the same Bifrost proxy credentials as the connect
+   * attempt, so the outcome doubles as a visibility probe: a 403 means the
+   * workspace exists for someone else (personal visibility or another
+   * sub-team), which is the common org-mode failure shape.
+   */
+  async describeWorkspaceLinkConflict(existingWorkspaceId, targetWorkspaceId, repoUrl) {
+    const base = `Repository ${repoUrl} is already linked to workspace ${existingWorkspaceId}, so Bifrost refused the link to workspace ${targetWorkspaceId}.`;
+    let lookupStatus = 0;
+    let workspaceName = "";
+    try {
+      const response = await this.fetchImpl(`${this.bifrostBaseUrl}/ws/proxy`, {
+        method: "POST",
+        headers: this.bifrostHeaders(),
+        body: JSON.stringify({
+          service: "workspaces",
+          method: "GET",
+          path: `/workspaces/${existingWorkspaceId}`
+        })
+      });
+      lookupStatus = response.status;
+      if (response.ok) {
+        const parsed = await response.json();
+        if (typeof parsed?.data?.name === "string" && parsed.data.name) {
+          workspaceName = parsed.data.name;
+        } else if (parsed?.error) {
+          lookupStatus = 403;
+        }
+      }
+    } catch {
+    }
+    if (workspaceName) {
+      return `${base} That workspace is "${workspaceName}" (https://go.postman.co/workspace/${existingWorkspaceId}). To reuse it, pass workspace-id: ${existingWorkspaceId} or set the POSTMAN_WORKSPACE_ID repository variable to it. To link this workspace instead, disconnect the repository from "${workspaceName}" in Workspace Settings or delete that workspace (deleting a workspace also removes its repository link record), then re-run.`;
+    }
+    if (lookupStatus === 401 || lookupStatus === 403) {
+      return `${base} That workspace exists but is invisible to the credentials this action runs with. This usually means an org-mode onboarding run created it without workspace-team-id, leaving it with personal visibility that hides it from teammates, other API keys, and the API Catalog; it may also belong to another sub-team. Ask whoever created it (or a team admin) to disconnect the repository from that workspace or delete it (deleting a workspace also removes its repository link record), then re-run.`;
+    }
+    if (lookupStatus === 404) {
+      return `${base} That workspace looks recently deleted; its repository link record is removed with it. Re-run, and contact Postman support if the conflict persists.`;
+    }
+    return `${base} Details for that workspace could not be resolved with these credentials. Disconnect the repository from it or delete that workspace (deleting a workspace also removes its repository link record) and re-run; if it is invisible to you, ask its creator or a team admin.`;
+  }
   async createApiKey(name) {
     const url = `${this.bifrostBaseUrl}/ws/proxy`;
     const headers = this.bifrostHeaders();

package/dist/cli.cjs

@@ -22615,6 +22615,15 @@ var HttpError = class _HttpError extends Error {
 };
 
 // src/lib/postman/internal-integration-adapter.ts
+function extractDuplicateWorkspaceId(body) {
+  try {
+    const parsed = JSON.parse(body);
+    const candidate = parsed?.error?.meta?.workspaceId ?? parsed?.meta?.workspaceId;
+    return typeof candidate === "string" && candidate.trim() ? candidate.trim() : void 0;
+  } catch {
+    return void 0;
+  }
+}
 var BifrostInternalIntegrationAdapter = class {
   accessToken;
   bifrostBaseUrl;
@@ -22702,6 +22711,12 @@ var BifrostInternalIntegrationAdapter = class {
         const body = await response.text();
         const isDuplicate = body.includes("invalidParamError") && body.includes("already exists") || body.includes("projectAlreadyConnected");
         if (isDuplicate) {
+          const existingWorkspaceId = extractDuplicateWorkspaceId(body);
+          if (existingWorkspaceId && existingWorkspaceId !== workspaceId) {
+            throw new Error(
+              await this.describeWorkspaceLinkConflict(existingWorkspaceId, workspaceId, repoUrl)
+            );
+          }
           return;
         }
       }
@@ -22713,6 +22728,49 @@ var BifrostInternalIntegrationAdapter = class {
       });
     }
   }
+  /**
+   * Build the failure message for a duplicate-link conflict. Looks the owning
+   * workspace up through the same Bifrost proxy credentials as the connect
+   * attempt, so the outcome doubles as a visibility probe: a 403 means the
+   * workspace exists for someone else (personal visibility or another
+   * sub-team), which is the common org-mode failure shape.
+   */
+  async describeWorkspaceLinkConflict(existingWorkspaceId, targetWorkspaceId, repoUrl) {
+    const base = `Repository ${repoUrl} is already linked to workspace ${existingWorkspaceId}, so Bifrost refused the link to workspace ${targetWorkspaceId}.`;
+    let lookupStatus = 0;
+    let workspaceName = "";
+    try {
+      const response = await this.fetchImpl(`${this.bifrostBaseUrl}/ws/proxy`, {
+        method: "POST",
+        headers: this.bifrostHeaders(),
+        body: JSON.stringify({
+          service: "workspaces",
+          method: "GET",
+          path: `/workspaces/${existingWorkspaceId}`
+        })
+      });
+      lookupStatus = response.status;
+      if (response.ok) {
+        const parsed = await response.json();
+        if (typeof parsed?.data?.name === "string" && parsed.data.name) {
+          workspaceName = parsed.data.name;
+        } else if (parsed?.error) {
+          lookupStatus = 403;
+        }
+      }
+    } catch {
+    }
+    if (workspaceName) {
+      return `${base} That workspace is "${workspaceName}" (https://go.postman.co/workspace/${existingWorkspaceId}). To reuse it, pass workspace-id: ${existingWorkspaceId} or set the POSTMAN_WORKSPACE_ID repository variable to it. To link this workspace instead, disconnect the repository from "${workspaceName}" in Workspace Settings or delete that workspace (deleting a workspace also removes its repository link record), then re-run.`;
+    }
+    if (lookupStatus === 401 || lookupStatus === 403) {
+      return `${base} That workspace exists but is invisible to the credentials this action runs with. This usually means an org-mode onboarding run created it without workspace-team-id, leaving it with personal visibility that hides it from teammates, other API keys, and the API Catalog; it may also belong to another sub-team. Ask whoever created it (or a team admin) to disconnect the repository from that workspace or delete it (deleting a workspace also removes its repository link record), then re-run.`;
+    }
+    if (lookupStatus === 404) {
+      return `${base} That workspace looks recently deleted; its repository link record is removed with it. Re-run, and contact Postman support if the conflict persists.`;
+    }
+    return `${base} Details for that workspace could not be resolved with these credentials. Disconnect the repository from it or delete that workspace (deleting a workspace also removes its repository link record) and re-run; if it is invisible to you, ask its creator or a team admin.`;
+  }
   async createApiKey(name) {
     const url = `${this.bifrostBaseUrl}/ws/proxy`;
     const headers = this.bifrostHeaders();

package/dist/index.cjs

@@ -24527,6 +24527,15 @@ var HttpError = class _HttpError extends Error {
 };
 
 // src/lib/postman/internal-integration-adapter.ts
+function extractDuplicateWorkspaceId(body) {
+  try {
+    const parsed = JSON.parse(body);
+    const candidate = parsed?.error?.meta?.workspaceId ?? parsed?.meta?.workspaceId;
+    return typeof candidate === "string" && candidate.trim() ? candidate.trim() : void 0;
+  } catch {
+    return void 0;
+  }
+}
 var BifrostInternalIntegrationAdapter = class {
   accessToken;
   bifrostBaseUrl;
@@ -24614,6 +24623,12 @@ var BifrostInternalIntegrationAdapter = class {
         const body = await response.text();
         const isDuplicate = body.includes("invalidParamError") && body.includes("already exists") || body.includes("projectAlreadyConnected");
         if (isDuplicate) {
+          const existingWorkspaceId = extractDuplicateWorkspaceId(body);
+          if (existingWorkspaceId && existingWorkspaceId !== workspaceId) {
+            throw new Error(
+              await this.describeWorkspaceLinkConflict(existingWorkspaceId, workspaceId, repoUrl)
+            );
+          }
           return;
         }
       }
@@ -24625,6 +24640,49 @@ var BifrostInternalIntegrationAdapter = class {
       });
     }
   }
+  /**
+   * Build the failure message for a duplicate-link conflict. Looks the owning
+   * workspace up through the same Bifrost proxy credentials as the connect
+   * attempt, so the outcome doubles as a visibility probe: a 403 means the
+   * workspace exists for someone else (personal visibility or another
+   * sub-team), which is the common org-mode failure shape.
+   */
+  async describeWorkspaceLinkConflict(existingWorkspaceId, targetWorkspaceId, repoUrl) {
+    const base = `Repository ${repoUrl} is already linked to workspace ${existingWorkspaceId}, so Bifrost refused the link to workspace ${targetWorkspaceId}.`;
+    let lookupStatus = 0;
+    let workspaceName = "";
+    try {
+      const response = await this.fetchImpl(`${this.bifrostBaseUrl}/ws/proxy`, {
+        method: "POST",
+        headers: this.bifrostHeaders(),
+        body: JSON.stringify({
+          service: "workspaces",
+          method: "GET",
+          path: `/workspaces/${existingWorkspaceId}`
+        })
+      });
+      lookupStatus = response.status;
+      if (response.ok) {
+        const parsed = await response.json();
+        if (typeof parsed?.data?.name === "string" && parsed.data.name) {
+          workspaceName = parsed.data.name;
+        } else if (parsed?.error) {
+          lookupStatus = 403;
+        }
+      }
+    } catch {
+    }
+    if (workspaceName) {
+      return `${base} That workspace is "${workspaceName}" (https://go.postman.co/workspace/${existingWorkspaceId}). To reuse it, pass workspace-id: ${existingWorkspaceId} or set the POSTMAN_WORKSPACE_ID repository variable to it. To link this workspace instead, disconnect the repository from "${workspaceName}" in Workspace Settings or delete that workspace (deleting a workspace also removes its repository link record), then re-run.`;
+    }
+    if (lookupStatus === 401 || lookupStatus === 403) {
+      return `${base} That workspace exists but is invisible to the credentials this action runs with. This usually means an org-mode onboarding run created it without workspace-team-id, leaving it with personal visibility that hides it from teammates, other API keys, and the API Catalog; it may also belong to another sub-team. Ask whoever created it (or a team admin) to disconnect the repository from that workspace or delete it (deleting a workspace also removes its repository link record), then re-run.`;
+    }
+    if (lookupStatus === 404) {
+      return `${base} That workspace looks recently deleted; its repository link record is removed with it. Re-run, and contact Postman support if the conflict persists.`;
+    }
+    return `${base} Details for that workspace could not be resolved with these credentials. Disconnect the repository from it or delete that workspace (deleting a workspace also removes its repository link record) and re-run; if it is invisible to you, ask its creator or a team admin.`;
+  }
   async createApiKey(name) {
     const url = `${this.bifrostBaseUrl}/ws/proxy`;
     const headers = this.bifrostHeaders();

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@postman-cse/onboarding-repo-sync",
-  "version": "0.13.1",
+  "version": "0.13.3",
   "description": "Public customer preview Postman repo sync GitHub Action.",
   "type": "module",
   "main": "dist/index.cjs",