@sap-ux/create 0.16.8 → 0.17.0

package/README.md

@@ -68,7 +68,7 @@ Command group for adding features to existing SAP Fiori applications. A subcomma
 
 Usage: `npx --yes @sap-ux/create@latest add [subcommand] [options]`
 
-The available subcommands are: `mockserver-config`, `smartlinks-config`, `eslint-config`, `cds-plugin-ui5`, `inbound-navigation`, `cards-editor`, `model`, `annotations`, `html`, `component-usages`, `deploy-config`, `variants-config`, `adp-cf-config` and `flp-embedded-config`
+The available subcommands are: `mockserver-config`, `smartlinks-config`, `eslint-config`, `cds-plugin-ui5`, `inbound-navigation`, `cards-editor`, `model`, `annotations`, `html`, `component-usages`, `deploy-config`, `variants-config`, `adp-cf-config`, `system` and `flp-embedded-config`
 
 
 --------------------------------
@@ -271,6 +271,35 @@ Options:
 
 --------------------------------
 
+## [`add system`](#add-system)
+
+Add a new back-end system to the saved systems store (`~/.fioritools`). Credentials are stored securely in the OS keychain.
+
+
+System types: `AbapCloud`, `OnPrem`, `Generic`
+
+Auth types: `basic`, `reentranceTicket`, `oauth2`, `oauth2ClientCredential`
+
+Connection types: `abap_catalog`, `generic_host`, `odata_service`
+
+Example:
+
+`npx --yes @sap-ux/create@latest add system --name "My System" --url https://my-sap.example.com`
+
+`npx --yes @sap-ux/create@latest add system --name "My System" --url https://my-sap.example.com --client 100 --username myuser`
+
+Options:
+- `--name <string>` _(required)_ - Display name for the system
+- `--url <string>` _(required)_ - URL of the backend system
+- `--client <string>` - SAP client number (optional)
+- `--type <string>` - System type (AbapCloud | OnPrem | Generic) _(default: `OnPrem`)_
+- `--auth <string>` - Authentication type (basic | reentranceTicket | oauth2 | oauth2ClientCredential) _(default: `basic`)_
+- `--connection-type <string>` - Connection type (abap_catalog | generic_host | odata_service) _(default: `abap_catalog`)_
+- `--username <string>` - Username for basic authentication
+- `--password <string>` - To avoid plain-text credentials in the shell's history, pass an env reference: --password env:MY_VAR
+
+--------------------------------
+
 ## [`add flp-embedded-config`](#add-flp-embedded-config)
 
 Add the necessary configuration for running a Fiori app in FLP Embedded Mode.
@@ -340,7 +369,7 @@ Command group for removing features from existing SAP Fiori applications. A subc
 
 Usage: `npx --yes @sap-ux/create@latest remove [subcommand] [options]`
 
-The available subcommands are: `mockserver-config`
+The available subcommands are: `mockserver-config` and `system`
 
 
 --------------------------------
@@ -359,13 +388,29 @@ Options:
 
 --------------------------------
 
+## [`remove system`](#remove-system)
+
+Remove a saved back-end system from the saved system store (`~/.fioritools`). Also deletes any stored credentials in the OS keychain.
+
+Example:
+
+`npx --yes @sap-ux/create@latest remove system --url https://my-sap.example.com`
+
+`npx --yes @sap-ux/create@latest remove system --url https://my-sap.example.com --client 100`
+
+Options:
+- `--url <string>` _(required)_ - URL of the backend system to remove
+- `--client <string>` - SAP client number (optional)
+
+--------------------------------
+
 ## [`change`](#change)
 
 Command group for changing existing SAP Fiori applications. A subcommand is required.
 
 Usage: `npx --yes @sap-ux/create@latest change [subcommand] [options]`
 
-The available subcommands are: `data-source` and `inbound`
+The available subcommands are: `data-source`, `inbound` and `system`
 
 --------------------------------
 
@@ -400,3 +445,80 @@ Example:
 Options:
 - `-s, --simulate` - Simulate only. Do not write or install.
 
+--------------------------------
+
+## [`change system`](#change-system)
+
+Update an existing backend system in the saved systems store (`~/.fioritools`). The system is identified by its URL and optional SAP client.
+
+
+Example:
+
+`npx --yes @sap-ux/create@latest change system --url https://my-sap.example.com --name "New Name"`
+
+`npx --yes @sap-ux/create@latest change system --url https://my-sap.example.com --client 100 --username newuser`
+
+Options:
+- `--url <string>` _(required)_ - URL of the backend system to update
+- `--client <string>` - SAP client number to identify the system (optional)
+- `--name <string>` - New display name for the system
+- `--username <string>` - New username
+- `--password <string>` - To avoid plain-text credentials in the shell's history, pass an env reference: --password env:MY_VAR
+- `--clear-credentials` - Remove stored credentials from the system
+
+--------------------------------
+
+## [`list`](#list)
+
+Command group for listing saved resources. A subcommand is required.
+
+Usage: `npx --yes @sap-ux/create@latest list [subcommand] [options]`
+
+The available subcommands are: `system`
+
+
+--------------------------------
+
+## [`list system`](#list-system)
+
+List all back-end systems in the saved system store (`~/.fioritools`). Sensitive data, such as passwords and tokens, is never included in the output.
+
+Example:
+
+`npx --yes @sap-ux/create@latest list system`
+
+`npx --yes @sap-ux/create@latest list system --json`
+
+Options:
+- `--json` - Output as JSON, which is useful for automation and MCP integrations.
+
+--------------------------------
+
+## [`get`](#get)
+
+Command group for retrieving saved resources. A subcommand is required.
+
+Usage: `npx --yes @sap-ux/create@latest get [subcommand] [options]`
+
+The available subcommands are: `system`
+
+
+--------------------------------
+
+## [`get system`](#get-system)
+
+Retrieve details of a saved back-end system by URL. Sensitive data (passwords, tokens) is never included in the output.
+
+Example:
+
+`npx --yes @sap-ux/create@latest get system --url https://my-sap.example.com`
+
+`npx --yes @sap-ux/create@latest get system --url https://my-sap.example.com --client 100`
+
+`npx --yes @sap-ux/create@latest get system --url https://my-sap.example.com --json`
+
+Options:
+- `--url <string>` _(required)_ - URL of the backend system.
+- `--client <string>` - SAP client number (optional).
+- `--json` - Output as JSON, which is useful for automation and MCP integrations.
+

package/dist/cli/add/index.js

@@ -15,6 +15,7 @@ const deploy_config_1 = require("./deploy-config");
 const variants_config_1 = require("./variants-config");
 const adp_cf_config_1 = require("./adp-cf-config");
 const eslint_config_1 = require("./eslint-config");
+const system_1 = require("./system");
 const flp_embedded_config_1 = require("./flp-embedded-config");
 /**
  * Return 'create-fiori add *' commands. Commands include also the handler action.
@@ -36,6 +37,7 @@ function getAddCommands() {
     (0, deploy_config_1.addDeployConfigCommand)(addCommands);
     (0, variants_config_1.addAddVariantsConfigCommand)(addCommands);
     (0, adp_cf_config_1.addAdaptationProjectCFConfigCommand)(addCommands);
+    (0, system_1.addSystemAddCommand)(addCommands);
     (0, flp_embedded_config_1.addFlpEmbeddedConfigCommand)(addCommands);
     return addCommands;
 }

package/dist/cli/add/system.d.ts

@@ -0,0 +1,10 @@
+import type { Command } from 'commander';
+/**
+ * Add the "add system" subcommand to a passed command.
+ * Adds a new backend system to the saved systems store (~/.fioritools).
+ * Credentials are stored securely in the OS keychain.
+ *
+ * @param cmd - commander command to attach the system subcommand to
+ */
+export declare function addSystemAddCommand(cmd: Command): void;
+//# sourceMappingURL=system.d.ts.map

package/dist/cli/add/system.js

@@ -0,0 +1,115 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.addSystemAddCommand = addSystemAddCommand;
+const btp_utils_1 = require("@sap-ux/btp-utils");
+const store_1 = require("@sap-ux/store");
+const ui5_config_1 = require("@sap-ux/ui5-config");
+const dotenv_1 = require("dotenv");
+const tracing_1 = require("../../tracing");
+/**
+ * Add the "add system" subcommand to a passed command.
+ * Adds a new backend system to the saved systems store (~/.fioritools).
+ * Credentials are stored securely in the OS keychain.
+ *
+ * @param cmd - commander command to attach the system subcommand to
+ */
+function addSystemAddCommand(cmd) {
+    cmd.command('system')
+        .description(`Add a new back-end system to the saved systems store (\`~/.fioritools\`). Credentials are stored securely in the OS keychain.\n
+            System types: \`${Object.values(store_1.SystemType).join('`, `')}\`
+            Auth types: \`${Object.values(store_1.AuthenticationType).join('`, `')}\`
+            Connection types: \`${Object.values(store_1.ConnectionType).join('`, `')}\`\n
+Example:
+    \`npx --yes @sap-ux/create@latest add system --name "My System" --url https://my-sap.example.com\`
+    \`npx --yes @sap-ux/create@latest add system --name "My System" --url https://my-sap.example.com --client 100 --username myuser\``)
+        .requiredOption('--name <string>', 'Display name for the system')
+        .requiredOption('--url <string>', 'URL of the backend system')
+        .option('--client <string>', 'SAP client number (optional)')
+        .option('--type <string>', `System type (${Object.values(store_1.SystemType).join(' | ')})`, store_1.SystemType.AbapOnPrem)
+        .option('--auth <string>', `Authentication type (${Object.values(store_1.AuthenticationType).join(' | ')})`, store_1.AuthenticationType.Basic)
+        .option('--connection-type <string>', `Connection type (${Object.values(store_1.ConnectionType).join(' | ')})`, store_1.ConnectionType.AbapCatalog)
+        .option('--username <string>', 'Username for basic authentication')
+        .option('--password <string>', "To avoid plain-text credentials in the shell's history, pass an env reference: --password env:MY_VAR")
+        .action(async (options) => {
+        (0, dotenv_1.config)();
+        await addSystem({
+            name: options.name,
+            url: options.url,
+            client: options.client,
+            systemType: options.type,
+            authenticationType: options.auth,
+            connectionType: options.connectionType,
+            username: options.username,
+            password: options.password
+        });
+    });
+}
+/**
+ * Adds a backend system to the saved systems store.
+ *
+ * @param params - system parameters
+ * @param params.name - display name for the system
+ * @param params.url - URL of the backend system
+ * @param params.client - optional SAP client
+ * @param params.systemType - system type
+ * @param params.authenticationType - authentication type
+ * @param params.connectionType - connection type
+ * @param params.username - optional username for basic auth
+ * @param params.password - optional password for basic auth
+ */
+async function addSystem(params) {
+    const logger = (0, tracing_1.getLogger)();
+    try {
+        if ((0, btp_utils_1.isAppStudio)()) {
+            logger.error('System management using the CLI is not supported in SAP Business Application Studio. Use the built-in system management instead.');
+            return;
+        }
+        try {
+            new URL(params.url);
+        }
+        catch {
+            logger.error(`Invalid URL: '${params.url}'`);
+            return;
+        }
+        const validSystemTypes = Object.values(store_1.SystemType);
+        if (!validSystemTypes.includes(params.systemType)) {
+            logger.error(`Invalid system type '${params.systemType}'. Valid values: ${validSystemTypes.join(', ')}`);
+            return;
+        }
+        const validAuthTypes = Object.values(store_1.AuthenticationType);
+        if (!validAuthTypes.includes(params.authenticationType)) {
+            logger.error(`Invalid auth type '${params.authenticationType}'. Valid values: ${validAuthTypes.join(', ')}`);
+            return;
+        }
+        const validConnectionTypes = Object.values(store_1.ConnectionType);
+        if (!validConnectionTypes.includes(params.connectionType)) {
+            logger.error(`Invalid connection type '${params.connectionType}'. Valid values: ${validConnectionTypes.join(', ')}`);
+            return;
+        }
+        const service = await (0, store_1.getService)({ entityName: 'system' });
+        const existingSystem = await service.read(new store_1.BackendSystemKey({ url: params.url, client: params.client }));
+        if (existingSystem) {
+            const clientSuffix = params.client ? ` (client ${params.client})` : '';
+            logger.error(`System '${params.url}'${clientSuffix} already exists. Use 'change system' to update it.`);
+            return;
+        }
+        (0, ui5_config_1.replaceEnvVariables)(params);
+        const system = new store_1.BackendSystem({
+            name: params.name,
+            url: params.url,
+            client: params.client,
+            systemType: params.systemType,
+            authenticationType: params.authenticationType,
+            connectionType: params.connectionType,
+            username: params.username,
+            password: params.password
+        });
+        await service.write(system);
+        logger.info(`System '${params.name}' added.`);
+    }
+    catch (error) {
+        logger.error(error.message);
+        logger.debug(error);
+    }
+}
+//# sourceMappingURL=system.js.map

package/dist/cli/change/index.js

@@ -4,6 +4,7 @@ exports.getChangeCommands = getChangeCommands;
 const commander_1 = require("commander");
 const change_data_source_1 = require("./change-data-source");
 const change_inbound_1 = require("./change-inbound");
+const system_1 = require("./system");
 /**
  * Return 'create-fiori change *' commands. Commands include also the handler action.
  *
@@ -13,6 +14,7 @@ function getChangeCommands() {
     const changeCommands = new commander_1.Command('change');
     (0, change_data_source_1.addChangeDataSourceCommand)(changeCommands);
     (0, change_inbound_1.addChangeInboundCommand)(changeCommands);
+    (0, system_1.addSystemUpdateCommand)(changeCommands);
     return changeCommands;
 }
 //# sourceMappingURL=index.js.map

package/dist/cli/change/system.d.ts

@@ -0,0 +1,10 @@
+import type { Command } from 'commander';
+/**
+ * Add the "change system" subcommand to a passed command.
+ * Updates an existing backend system in the saved systems store (~/.fioritools).
+ * The system is identified by URL and optional SAP client.
+ *
+ * @param cmd - commander command to attach the system subcommand to
+ */
+export declare function addSystemUpdateCommand(cmd: Command): void;
+//# sourceMappingURL=system.d.ts.map

package/dist/cli/change/system.js

@@ -0,0 +1,98 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.addSystemUpdateCommand = addSystemUpdateCommand;
+const btp_utils_1 = require("@sap-ux/btp-utils");
+const store_1 = require("@sap-ux/store");
+const ui5_config_1 = require("@sap-ux/ui5-config");
+const dotenv_1 = require("dotenv");
+const tracing_1 = require("../../tracing");
+/**
+ * Add the "change system" subcommand to a passed command.
+ * Updates an existing backend system in the saved systems store (~/.fioritools).
+ * The system is identified by URL and optional SAP client.
+ *
+ * @param cmd - commander command to attach the system subcommand to
+ */
+function addSystemUpdateCommand(cmd) {
+    cmd.command('system')
+        .description(`Update an existing backend system in the saved systems store (\`~/.fioritools\`). The system is identified by its URL and optional SAP client.\n
+
+Example:
+    \`npx --yes @sap-ux/create@latest change system --url https://my-sap.example.com --name "New Name"\`
+    \`npx --yes @sap-ux/create@latest change system --url https://my-sap.example.com --client 100 --username newuser\``)
+        .requiredOption('--url <string>', 'URL of the backend system to update')
+        .option('--client <string>', 'SAP client number to identify the system (optional)')
+        .option('--name <string>', 'New display name for the system')
+        .option('--username <string>', 'New username')
+        .option('--password <string>', "To avoid plain-text credentials in the shell's history, pass an env reference: --password env:MY_VAR")
+        .option('--clear-credentials', 'Remove stored credentials from the system')
+        .action(async (options) => {
+        (0, dotenv_1.config)();
+        await updateSystem({
+            url: options.url,
+            client: options.client,
+            name: options.name,
+            username: options.username,
+            password: options.password,
+            clearCredentials: !!options.clearCredentials
+        });
+    });
+}
+/**
+ * Updates a backend system in the saved systems store.
+ *
+ * @param params - update parameters
+ * @param params.url - URL identifying the system
+ * @param params.client - optional SAP client identifying the system
+ * @param params.name - optional new display name
+ * @param params.username - optional new username
+ * @param params.password - optional new password
+ * @param params.clearCredentials - if true, clears stored credentials
+ */
+async function updateSystem(params) {
+    const logger = (0, tracing_1.getLogger)();
+    try {
+        if ((0, btp_utils_1.isAppStudio)()) {
+            logger.error('System management using the CLI is not supported in SAP Business Application Studio. Use the built-in system management instead.');
+            return;
+        }
+        const patchRecord = {};
+        (0, ui5_config_1.replaceEnvVariables)(params);
+        if (params.name !== undefined) {
+            patchRecord.name = params.name;
+        }
+        if (params.clearCredentials) {
+            patchRecord.username = undefined;
+            patchRecord.password = undefined;
+        }
+        else if (params.username !== undefined || params.password !== undefined) {
+            if (params.username !== undefined) {
+                patchRecord.username = params.username;
+            }
+            if (params.password !== undefined) {
+                patchRecord.password = params.password;
+            }
+        }
+        const patch = patchRecord;
+        if (!Object.keys(patchRecord).length) {
+            logger.error('No fields to update. Provide at least one of: --name, --username, --password, --clear-credentials');
+            return;
+        }
+        const service = await (0, store_1.getService)({ entityName: 'system' });
+        const key = new store_1.BackendSystemKey({ url: params.url, client: params.client });
+        const existing = await service.read(key);
+        if (!existing) {
+            logger.error(`System not found: ${key.getId()}`);
+            return;
+        }
+        await service.partialUpdate(key, patch);
+        logger.info(`System '${key.getId()}' updated.`);
+    }
+    catch (error) {
+        logger.error(error.message);
+        // Log the full error object (including stack trace) at debug level so it
+        // is visible when --verbose / debug logging is enabled.
+        logger.debug(error);
+    }
+}
+//# sourceMappingURL=system.js.map

package/dist/cli/get/index.d.ts

@@ -0,0 +1,8 @@
+import { Command } from 'commander';
+/**
+ * Return 'create-fiori get *' commands. Commands include also the handler action.
+ *
+ * @returns - commander command containing get <feature> commands
+ */
+export declare function getGetCommands(): Command;
+//# sourceMappingURL=index.d.ts.map

package/dist/cli/get/index.js

@@ -0,0 +1,16 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.getGetCommands = getGetCommands;
+const commander_1 = require("commander");
+const system_1 = require("./system");
+/**
+ * Return 'create-fiori get *' commands. Commands include also the handler action.
+ *
+ * @returns - commander command containing get <feature> commands
+ */
+function getGetCommands() {
+    const getCommands = new commander_1.Command('get');
+    (0, system_1.addSystemGetCommand)(getCommands);
+    return getCommands;
+}
+//# sourceMappingURL=index.js.map

package/dist/cli/get/system.d.ts

@@ -0,0 +1,10 @@
+import type { Command } from 'commander';
+/**
+ * Add the "get system" subcommand to a passed command.
+ * Retrieves details of a saved backend system identified by its URL and optional client.
+ * Sensitive data (passwords, tokens) is never included in the output.
+ *
+ * @param cmd - commander command to attach the system subcommand to
+ */
+export declare function addSystemGetCommand(cmd: Command): void;
+//# sourceMappingURL=system.d.ts.map

package/dist/cli/get/system.js

@@ -0,0 +1,93 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.addSystemGetCommand = addSystemGetCommand;
+const btp_utils_1 = require("@sap-ux/btp-utils");
+const store_1 = require("@sap-ux/store");
+const logger_1 = require("@sap-ux/logger");
+const tracing_1 = require("../../tracing");
+/**
+ * Add the "get system" subcommand to a passed command.
+ * Retrieves details of a saved backend system identified by its URL and optional client.
+ * Sensitive data (passwords, tokens) is never included in the output.
+ *
+ * @param cmd - commander command to attach the system subcommand to
+ */
+function addSystemGetCommand(cmd) {
+    cmd.command('system')
+        .description(`Retrieve details of a saved back-end system by URL. Sensitive data (passwords, tokens) is never included in the output.\n
+Example:
+    \`npx --yes @sap-ux/create@latest get system --url https://my-sap.example.com\`
+    \`npx --yes @sap-ux/create@latest get system --url https://my-sap.example.com --client 100\`
+    \`npx --yes @sap-ux/create@latest get system --url https://my-sap.example.com --json\``)
+        .requiredOption('--url <string>', 'URL of the backend system.')
+        .option('--client <string>', 'SAP client number (optional).')
+        .option('--json', 'Output as JSON, which is useful for automation and MCP integrations.')
+        .action(async (options) => {
+        await getSystem(options.url, options.client, !!options.json);
+    });
+}
+/**
+ * Retrieves a backend system from the store by its URL and optional client.
+ *
+ * @param url - URL of the backend system
+ * @param client - optional SAP client
+ * @param asJson - if true, output as JSON; otherwise print human-readable
+ */
+async function getSystem(url, client, asJson) {
+    const logger = (0, tracing_1.getLogger)();
+    try {
+        if ((0, btp_utils_1.isAppStudio)()) {
+            logger.error('System management using the CLI is not supported in SAP Business Application Studio. Use the built-in system management instead.');
+            return;
+        }
+        // When emitting JSON, pass a silent logger to getService so that
+        // @sap-ux/store diagnostic messages do not appear on stdout before the
+        // JSON payload and break piped consumers.
+        const storeLogger = asJson ? new logger_1.ToolsLogger({ transports: [new logger_1.NullTransport()] }) : logger;
+        const service = await (0, store_1.getService)({
+            entityName: 'system',
+            logger: storeLogger
+        });
+        const key = new store_1.BackendSystemKey({ url, client });
+        const system = await service.read(key);
+        if (!system) {
+            logger.error(`System not found: ${key.getId()}`);
+            return;
+        }
+        const publicView = {
+            name: system.name,
+            url: system.url,
+            client: system.client,
+            systemType: system.systemType,
+            authenticationType: system.authenticationType,
+            connectionType: system.connectionType,
+            userDisplayName: system.userDisplayName,
+            hasSensitiveData: system.hasSensitiveData
+        };
+        if (asJson) {
+            // Use process.stdout.write so the output is pure JSON with no logger
+            // prefixes or timestamps — required for machine consumption and piping.
+            process.stdout.write(JSON.stringify(publicView, null, 2) + '\n');
+        }
+        else {
+            logger.info(`Name:       ${system.name}`);
+            logger.info(`URL:        ${system.url}`);
+            if (system.client) {
+                logger.info(`Client:     ${system.client}`);
+            }
+            logger.info(`Type:       ${system.systemType}`);
+            logger.info(`Auth:       ${system.authenticationType ?? 'n/a'}`);
+            logger.info(`Connection: ${system.connectionType}`);
+            if (system.hasSensitiveData) {
+                logger.info(`Credentials stored securely.`);
+            }
+        }
+    }
+    catch (error) {
+        logger.error(error.message);
+        // Log the full error object (including stack trace) at debug level so it
+        // is visible when --verbose / debug logging is enabled.
+        logger.debug(error);
+    }
+}
+//# sourceMappingURL=system.js.map

package/dist/cli/index.js

@@ -11,6 +11,8 @@ const remove_1 = require("./remove");
 const generate_1 = require("./generate");
 const change_1 = require("./change");
 const convert_1 = require("./convert");
+const list_1 = require("./list");
+const get_1 = require("./get");
 /*
  * We've chosen 'commander' over 'minimist' and 'yargs' for this CLI implementation. Reasons:
  * (if it still up: https://npmtrends.com/commander-vs-minimist-vs-yargs)
@@ -94,6 +96,18 @@ function getCommanderProgram() {
                     Usage: \`npx --yes @sap-ux/create@latest change [subcommand] [options]\`
                     The available subcommands are: ${getFeatureSummary(changeCommands.commands)}`);
     program.addCommand(changeCommands);
+    // Handler for create-fiori list <feature> ..
+    const listCommands = (0, list_1.getListCommands)();
+    listCommands.description(`Command group for listing saved resources. A subcommand is required.
+                    Usage: \`npx --yes @sap-ux/create@latest list [subcommand] [options]\`
+                    The available subcommands are: ${getFeatureSummary(listCommands.commands)}\n`);
+    program.addCommand(listCommands);
+    // Handler for create-fiori get <feature> ..
+    const getCommands = (0, get_1.getGetCommands)();
+    getCommands.description(`Command group for retrieving saved resources. A subcommand is required.
+                    Usage: \`npx --yes @sap-ux/create@latest get [subcommand] [options]\`
+                    The available subcommands are: ${getFeatureSummary(getCommands.commands)}\n`);
+    program.addCommand(getCommands);
     return program;
 }
 /**

package/dist/cli/list/index.d.ts

@@ -0,0 +1,8 @@
+import { Command } from 'commander';
+/**
+ * Return 'create-fiori list *' commands. Commands include also the handler action.
+ *
+ * @returns - commander command containing list <feature> commands
+ */
+export declare function getListCommands(): Command;
+//# sourceMappingURL=index.d.ts.map

package/dist/cli/list/index.js

@@ -0,0 +1,16 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.getListCommands = getListCommands;
+const commander_1 = require("commander");
+const system_1 = require("./system");
+/**
+ * Return 'create-fiori list *' commands. Commands include also the handler action.
+ *
+ * @returns - commander command containing list <feature> commands
+ */
+function getListCommands() {
+    const listCommands = new commander_1.Command('list');
+    (0, system_1.addSystemListCommand)(listCommands);
+    return listCommands;
+}
+//# sourceMappingURL=index.js.map

package/dist/cli/list/system.d.ts

@@ -0,0 +1,10 @@
+import type { Command } from 'commander';
+/**
+ * Add the "list system" subcommand to a passed command.
+ * Lists all backend systems saved in the store (~/.fioritools).
+ * Sensitive data, such as passwords and tokens, is never included in the output.
+ *
+ * @param cmd - commander command to attach the system subcommand to
+ */
+export declare function addSystemListCommand(cmd: Command): void;
+//# sourceMappingURL=system.d.ts.map

package/dist/cli/list/system.js

@@ -0,0 +1,112 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.addSystemListCommand = addSystemListCommand;
+const btp_utils_1 = require("@sap-ux/btp-utils");
+const store_1 = require("@sap-ux/store");
+const logger_1 = require("@sap-ux/logger");
+const tracing_1 = require("../../tracing");
+/**
+ * Add the "list system" subcommand to a passed command.
+ * Lists all backend systems saved in the store (~/.fioritools).
+ * Sensitive data, such as passwords and tokens, is never included in the output.
+ *
+ * @param cmd - commander command to attach the system subcommand to
+ */
+function addSystemListCommand(cmd) {
+    cmd.command('system')
+        .description(`List all back-end systems in the saved system store (\`~/.fioritools\`). Sensitive data, such as passwords and tokens, is never included in the output.\n
+Example:
+    \`npx --yes @sap-ux/create@latest list system\`
+    \`npx --yes @sap-ux/create@latest list system --json\``)
+        .option('--json', 'Output as JSON, which is useful for automation and MCP integrations.')
+        .action(async (options) => {
+        await listSystems(!!options.json);
+    });
+}
+/**
+ * Lists all backend systems from the store.
+ * Sensitive fields are not shown.
+ *
+ * @param asJson - if true, output as JSON; otherwise print a human-readable list
+ */
+async function listSystems(asJson) {
+    const logger = (0, tracing_1.getLogger)();
+    try {
+        if ((0, btp_utils_1.isAppStudio)()) {
+            logger.error('System management using the CLI is not supported in SAP Business Application Studio. Use the built-in system management instead.');
+            return;
+        }
+        // When emitting JSON, pass a silent logger to getService so that
+        // @sap-ux/store diagnostic messages (e.g. "Using KeyStoreManager…") do
+        // not appear on stdout before the JSON payload and break piped consumers.
+        const storeLogger = asJson ? new logger_1.ToolsLogger({ transports: [new logger_1.NullTransport()] }) : logger;
+        const service = await (0, store_1.getService)({
+            entityName: 'system',
+            logger: storeLogger
+        });
+        // Pass no filter so all systems are returned regardless of connection type
+        const systems = await service.getAll();
+        if (asJson) {
+            // Use process.stdout.write so the output is pure JSON with no logger
+            // prefixes or timestamps — required for machine consumption and piping.
+            process.stdout.write(JSON.stringify(systems.map(toPublicView), null, 2) + '\n');
+        }
+        else if (systems.length === 0) {
+            logger.info('No systems found.');
+        }
+        else {
+            logger.info(`Systems (${systems.length}):`);
+            for (const system of systems) {
+                printSystem(system, logger);
+            }
+        }
+    }
+    catch (error) {
+        logger.error(error.message);
+        // Log the full error object (including stack trace) at debug level so it
+        // is visible when --verbose / debug logging is enabled.
+        logger.debug(error);
+    }
+}
+/**
+ * Returns a view of a system with only non-sensitive fields.
+ *
+ * @param system - the backend system
+ * @returns non-sensitive system data
+ */
+function toPublicView(system) {
+    return {
+        name: system.name,
+        url: system.url,
+        client: system.client,
+        systemType: system.systemType,
+        authenticationType: system.authenticationType,
+        connectionType: system.connectionType,
+        userDisplayName: system.userDisplayName,
+        hasSensitiveData: system.hasSensitiveData
+    };
+}
+/**
+ * Prints a single system to the logger in human-readable format.
+ *
+ * @param system - the backend system to print
+ * @param logger - logger instance
+ */
+function printSystem(system, logger) {
+    const lines = [
+        `  Name:       ${system.name}`,
+        `  URL:        ${system.url}`,
+        system.client ? `  Client:     ${system.client}` : undefined,
+        `  Type:       ${system.systemType}`,
+        `  Auth:       ${system.authenticationType ?? 'n/a'}`,
+        `  Connection: ${system.connectionType}`,
+        system.hasSensitiveData ? `  Credentials stored securely.` : undefined,
+        `  ---`
+    ];
+    for (const line of lines) {
+        if (line !== undefined) {
+            logger.info(line);
+        }
+    }
+}
+//# sourceMappingURL=system.js.map

package/dist/cli/remove/index.js

@@ -3,6 +3,7 @@ Object.defineProperty(exports, "__esModule", { value: true });
 exports.getRemoveCommands = getRemoveCommands;
 const commander_1 = require("commander");
 const mockserver_config_1 = require("./mockserver-config");
+const system_1 = require("./system");
 /**
  * Return 'create-fiori remove *' commands. Commands include also the handler action.
  *
@@ -11,6 +12,7 @@ const mockserver_config_1 = require("./mockserver-config");
 function getRemoveCommands() {
     const removeCommands = new commander_1.Command('remove');
     (0, mockserver_config_1.addRemoveMockserverConfigCommand)(removeCommands);
+    (0, system_1.addSystemRemoveCommand)(removeCommands);
     return removeCommands;
 }
 //# sourceMappingURL=index.js.map

package/dist/cli/remove/system.d.ts

@@ -0,0 +1,9 @@
+import type { Command } from 'commander';
+/**
+ * Add the "remove system" subcommand to a passed command.
+ * Removes a saved backend system from the store (~/.fioritools) and deletes its credentials from the OS keychain.
+ *
+ * @param cmd - commander command to attach the system subcommand to
+ */
+export declare function addSystemRemoveCommand(cmd: Command): void;
+//# sourceMappingURL=system.d.ts.map

package/dist/cli/remove/system.js

@@ -0,0 +1,58 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.addSystemRemoveCommand = addSystemRemoveCommand;
+const btp_utils_1 = require("@sap-ux/btp-utils");
+const store_1 = require("@sap-ux/store");
+const tracing_1 = require("../../tracing");
+/**
+ * Add the "remove system" subcommand to a passed command.
+ * Removes a saved backend system from the store (~/.fioritools) and deletes its credentials from the OS keychain.
+ *
+ * @param cmd - commander command to attach the system subcommand to
+ */
+function addSystemRemoveCommand(cmd) {
+    cmd.command('system')
+        .description(`Remove a saved back-end system from the saved system store (\`~/.fioritools\`). Also deletes any stored credentials in the OS keychain.\n
+Example:
+    \`npx --yes @sap-ux/create@latest remove system --url https://my-sap.example.com\`
+    \`npx --yes @sap-ux/create@latest remove system --url https://my-sap.example.com --client 100\``)
+        .requiredOption('--url <string>', 'URL of the backend system to remove')
+        .option('--client <string>', 'SAP client number (optional)')
+        .action(async (options) => {
+        await removeSystem(options.url, options.client);
+    });
+}
+/**
+ * Removes a backend system from the saved systems store.
+ *
+ * @param url - URL of the system to remove
+ * @param client - optional SAP client
+ */
+async function removeSystem(url, client) {
+    const logger = (0, tracing_1.getLogger)();
+    try {
+        if ((0, btp_utils_1.isAppStudio)()) {
+            logger.error('System management using the CLI is not supported in SAP Business Application Studio. Use the built-in system management instead.');
+            return;
+        }
+        const service = await (0, store_1.getService)({ entityName: 'system' });
+        const key = new store_1.BackendSystemKey({ url, client });
+        const system = await service.read(key);
+        if (!system) {
+            logger.error(`System not found: ${key.getId()}`);
+            return;
+        }
+        const deleted = await service.delete(system);
+        if (deleted) {
+            logger.info(`System '${system.name}' removed.`);
+        }
+        else {
+            logger.error(`Failed to remove system: ${key.getId()}`);
+        }
+    }
+    catch (error) {
+        logger.error(error.message);
+        logger.debug(error);
+    }
+}
+//# sourceMappingURL=system.js.map

package/package.json

@@ -1,7 +1,7 @@
 {
   "name": "@sap-ux/create",
   "description": "SAP Fiori tools module to add or remove features",
-  "version": "0.16.8",
+  "version": "0.17.0",
   "repository": {
     "type": "git",
     "url": "https://github.com/SAP/open-ux-tools.git",
@@ -28,6 +28,7 @@
     "chalk": "4.1.2",
     "commander": "14.0.3",
     "diff": "8.0.4",
+    "dotenv": "17.4.2",
     "mem-fs": "2.1.0",
     "mem-fs-editor": "9.4.0",
     "prompts": "2.4.2",
@@ -37,16 +38,17 @@
     "@sap-ux/btp-utils": "1.2.0",
     "@sap-ux/app-config-writer": "0.7.3",
     "@sap-ux/cap-config-writer": "0.13.3",
-    "@sap-ux/logger": "0.9.0",
-    "@sap-ux/mockserver-config-writer": "0.10.2",
-    "@sap-ux/odata-service-writer": "0.32.2",
     "@sap-ux/preview-middleware": "0.26.7",
-    "@sap-ux/project-access": "1.38.1",
+    "@sap-ux/odata-service-writer": "0.32.2",
     "@sap-ux/system-access": "0.8.0",
+    "@sap-ux/project-access": "1.38.1",
+    "@sap-ux/store": "1.6.0",
     "@sap-ux/ui5-config": "0.31.1",
     "@sap-ux/flp-config-inquirer": "0.5.6",
     "@sap-ux/nodejs-utils": "0.3.0",
-    "@sap-ux/axios-extension": "1.26.0"
+    "@sap-ux/axios-extension": "1.26.0",
+    "@sap-ux/mockserver-config-writer": "0.10.2",
+    "@sap-ux/logger": "0.9.0"
   },
   "devDependencies": {
     "@types/diff": "8.0.0",