@supalytics/cli 0.2.0 → 0.3.1

package/README.md

@@ -20,10 +20,19 @@ bun add -g @supalytics/cli
 
 ## Setup
 
-Get your API key from the Settings page at [www.supalytics.co](https://www.supalytics.co), then:
+### Quick Start
 
 ```bash
-supalytics login <your-api-key>
+supalytics init
+```
+
+Opens browser to log in, creates your site, and gives you the tracking snippet.
+
+### Manual Setup
+
+```bash
+supalytics login           # Opens browser for authentication
+supalytics sites add       # Create a new site
 ```
 
 ## Usage
@@ -91,6 +100,7 @@ supalytics events signup --property plan   # Breakdown by property
 All commands support:
 
 - `-s, --site <domain>` - Query a specific site
+- `-t, --test` - Query localhost/test data instead of production
 - `--json` - Output raw JSON
 - `--no-revenue` - Exclude revenue metrics
 - `-f, --filter <filter>` - Filter data (format: `field:operator:value`)
@@ -104,13 +114,15 @@ All commands support:
 -f "referrer:is:twitter.com"
 ```
 
-## Multi-site Support
+## Site Management
 
 ```bash
-supalytics login <api-key>        # Add a site
-supalytics sites                  # List all sites
-supalytics default <domain>       # Set default site
-supalytics stats -s other.com     # Query specific site
+supalytics sites                       # List all sites
+supalytics sites add example.com       # Create site with domain
+supalytics sites add my-project        # Or use any name, update later
+supalytics sites update my-project -d example.com  # Set the real domain
+supalytics default example.com         # Set default site
+supalytics stats -s other.com          # Query specific site
 ```
 
 ## Shell Completions

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@supalytics/cli",
-  "version": "0.2.0",
+  "version": "0.3.1",
   "description": "CLI for Supalytics web analytics",
   "type": "module",
   "bin": {
@@ -33,6 +33,7 @@
   },
   "dependencies": {
     "chalk": "^5.6.2",
-    "commander": "^14.0.2"
+    "commander": "^14.0.2",
+    "open": "^10.1.0"
   }
 }

package/src/api.ts

@@ -12,6 +12,7 @@ export interface QueryRequest {
   limit?: number;
   offset?: number;
   include_revenue?: boolean;
+  is_dev?: boolean; // Test mode: query localhost data instead of production
 }
 
 export interface QueryResult {
@@ -159,7 +160,8 @@ export interface PropertyBreakdownResponse {
 export async function listEvents(
   site: string,
   period: string = "30d",
-  limit: number = 100
+  limit: number = 100,
+  isDev: boolean = false
 ): Promise<EventsResponse> {
   const apiKey = await getApiKeyForSite(site);
 
@@ -176,6 +178,9 @@ export async function listEvents(
   }
 
   const params = new URLSearchParams({ period, limit: String(limit) });
+  if (isDev) {
+    params.set("is_dev", "true");
+  }
   const response = await fetch(`${API_BASE}/v1/events?${params}`, {
     headers: { Authorization: `Bearer ${apiKey}` },
   });
@@ -194,7 +199,8 @@ export async function listEvents(
 export async function getEventProperties(
   site: string,
   eventName: string,
-  period: string = "30d"
+  period: string = "30d",
+  isDev: boolean = false
 ): Promise<PropertyKeysResponse> {
   const apiKey = await getApiKeyForSite(site);
 
@@ -203,6 +209,9 @@ export async function getEventProperties(
   }
 
   const params = new URLSearchParams({ period });
+  if (isDev) {
+    params.set("is_dev", "true");
+  }
   const response = await fetch(
     `${API_BASE}/v1/events/${encodeURIComponent(eventName)}/properties?${params}`,
     { headers: { Authorization: `Bearer ${apiKey}` } }
@@ -225,7 +234,8 @@ export async function getPropertyBreakdown(
   propertyKey: string,
   period: string = "30d",
   limit: number = 100,
-  includeRevenue: boolean = false
+  includeRevenue: boolean = false,
+  isDev: boolean = false
 ): Promise<PropertyBreakdownResponse> {
   const apiKey = await getApiKeyForSite(site);
 
@@ -238,6 +248,9 @@ export async function getPropertyBreakdown(
     limit: String(limit),
     include_revenue: String(includeRevenue),
   });
+  if (isDev) {
+    params.set("is_dev", "true");
+  }
   const response = await fetch(
     `${API_BASE}/v1/events/${encodeURIComponent(eventName)}/properties/${encodeURIComponent(propertyKey)}?${params}`,
     { headers: { Authorization: `Bearer ${apiKey}` } }
@@ -283,7 +296,7 @@ export interface RealtimeResponse {
 /**
  * Get realtime visitors
  */
-export async function getRealtime(site: string): Promise<RealtimeResponse> {
+export async function getRealtime(site: string, isDev: boolean = false): Promise<RealtimeResponse> {
   const apiKey = await getApiKeyForSite(site);
 
   if (!apiKey) {
@@ -298,7 +311,12 @@ export async function getRealtime(site: string): Promise<RealtimeResponse> {
     );
   }
 
-  const response = await fetch(`${API_BASE}/v1/realtime`, {
+  const params = new URLSearchParams();
+  if (isDev) {
+    params.set("is_dev", "true");
+  }
+  const url = params.toString() ? `${API_BASE}/v1/realtime?${params}` : `${API_BASE}/v1/realtime`;
+  const response = await fetch(url, {
     headers: { Authorization: `Bearer ${apiKey}` },
   });
 

package/src/commands/completions.ts

@@ -10,7 +10,7 @@ _supalytics_completions() {
     cur="\${COMP_WORDS[COMP_CWORD]}"
     prev="\${COMP_WORDS[COMP_CWORD-1]}"
 
-    commands="login logout sites default remove stats pages referrers countries trend query events realtime completions help"
+    commands="init login logout sites default remove stats pages referrers countries trend query events realtime completions help"
 
     # Main command completion
     if [[ \${COMP_CWORD} -eq 1 ]]; then
@@ -38,8 +38,17 @@ _supalytics_completions() {
         realtime)
             opts="--site --json --watch"
             ;;
+        init)
+            opts=""
+            ;;
         login)
-            opts="--domain"
+            opts=""
+            ;;
+        logout)
+            opts=""
+            ;;
+        sites)
+            opts="add update"
             ;;
         completions)
             opts="bash zsh fish"
@@ -64,9 +73,10 @@ const ZSH_COMPLETION = `#compdef supalytics
 _supalytics() {
     local -a commands
     commands=(
-        'login:Add a site by verifying its API key'
-        'logout:Remove stored credentials'
-        'sites:List all configured sites'
+        'init:Quick setup - login, create site, get snippet'
+        'login:Authenticate with Supalytics'
+        'logout:Log out (keeps site API keys)'
+        'sites:List and manage configured sites'
         'default:Set the default site'
         'remove:Remove a site'
         'stats:Overview stats (pageviews, visitors, bounce rate, revenue)'
@@ -176,10 +186,20 @@ _supalytics() {
                         '--json[Output as JSON]' \\
                         '--watch[Auto-refresh every 30 seconds]'
                     ;;
+                init)
+                    _arguments '1:identifier:'
+                    ;;
                 login)
-                    _arguments \\
-                        '1:API key:' \\
-                        '--domain[Override detected domain]:domain:'
+                    ;;
+                logout)
+                    ;;
+                sites)
+                    local -a sites_commands
+                    sites_commands=(
+                        'add:Create a new site'
+                        'update:Update a site domain'
+                    )
+                    _describe 'sites command' sites_commands
                     ;;
                 default|remove)
                     _arguments '1:domain:'
@@ -203,9 +223,10 @@ const FISH_COMPLETION = `# Supalytics CLI Fish Completion
 complete -c supalytics -f
 
 # Commands
-complete -c supalytics -n "__fish_use_subcommand" -a "login" -d "Add a site by verifying its API key"
-complete -c supalytics -n "__fish_use_subcommand" -a "logout" -d "Remove stored credentials"
-complete -c supalytics -n "__fish_use_subcommand" -a "sites" -d "List all configured sites"
+complete -c supalytics -n "__fish_use_subcommand" -a "init" -d "Quick setup - login, create site, get snippet"
+complete -c supalytics -n "__fish_use_subcommand" -a "login" -d "Authenticate with Supalytics"
+complete -c supalytics -n "__fish_use_subcommand" -a "logout" -d "Log out (keeps site API keys)"
+complete -c supalytics -n "__fish_use_subcommand" -a "sites" -d "List and manage configured sites"
 complete -c supalytics -n "__fish_use_subcommand" -a "default" -d "Set the default site"
 complete -c supalytics -n "__fish_use_subcommand" -a "remove" -d "Remove a site"
 complete -c supalytics -n "__fish_use_subcommand" -a "stats" -d "Overview stats"
@@ -277,8 +298,10 @@ complete -c supalytics -n "__fish_seen_subcommand_from realtime" -l site -s s -d
 complete -c supalytics -n "__fish_seen_subcommand_from realtime" -l json -d "Output as JSON"
 complete -c supalytics -n "__fish_seen_subcommand_from realtime" -l watch -s w -d "Auto-refresh"
 
-# Login options
-complete -c supalytics -n "__fish_seen_subcommand_from login" -l domain -d "Override detected domain"
+# Sites subcommands
+complete -c supalytics -n "__fish_seen_subcommand_from sites; and not __fish_seen_subcommand_from add update" -a "add" -d "Create a new site"
+complete -c supalytics -n "__fish_seen_subcommand_from sites; and not __fish_seen_subcommand_from add update" -a "update" -d "Update a site domain"
+complete -c supalytics -n "__fish_seen_subcommand_from sites; and __fish_seen_subcommand_from update" -l domain -s d -d "New domain name"
 
 # Completions command
 complete -c supalytics -n "__fish_seen_subcommand_from completions" -a "bash zsh fish"

package/src/commands/countries.ts

@@ -14,6 +14,7 @@ export const countriesCommand = new Command("countries")
   .option("-f, --filter <filters...>", "Filters in format 'field:operator:value'")
   .option("--no-revenue", "Exclude revenue metrics")
   .option("--json", "Output as JSON")
+  .option("-t, --test", "Test mode: query localhost data instead of production")
   .action(async (options) => {
     const site = options.site || (await getDefaultSite());
 
@@ -51,6 +52,7 @@ export const countriesCommand = new Command("countries")
         date_range: dateRange,
         limit: parseInt(options.limit),
         include_revenue: options.revenue !== false,
+        is_dev: options.test || false,
       });
 
       if (options.json) {

package/src/commands/events.ts

@@ -50,6 +50,7 @@ export const eventsCommand = new Command("events")
   .option("-l, --limit <number>", "Number of results", "20")
   .option("--no-revenue", "Exclude revenue metrics")
   .option("--json", "Output as JSON")
+  .option("-t, --test", "Test mode: query localhost data instead of production")
   .action(async (event, options) => {
     const site = options.site || (await getDefaultSite());
 
@@ -61,7 +62,7 @@ export const eventsCommand = new Command("events")
     try {
       // If no event specified, list all events
       if (!event) {
-        const response = await listEvents(site, options.period, parseInt(options.limit));
+        const response = await listEvents(site, options.period, parseInt(options.limit), options.test || false);
 
         if (options.json) {
           console.log(JSON.stringify(response, null, 2));
@@ -94,7 +95,8 @@ export const eventsCommand = new Command("events")
           options.property,
           options.period,
           parseInt(options.limit),
-          options.revenue !== false
+          options.revenue !== false,
+          options.test || false
         );
 
         if (options.json) {
@@ -124,8 +126,8 @@ export const eventsCommand = new Command("events")
 
       // If just event name, show event stats + properties
       const [eventsResponse, propsResponse] = await Promise.all([
-        listEvents(site, options.period, 100), // Get all events to find this one
-        getEventProperties(site, event, options.period),
+        listEvents(site, options.period, 100, options.test || false), // Get all events to find this one
+        getEventProperties(site, event, options.period, options.test || false),
       ]);
 
       // Find the specific event stats

package/src/commands/init.ts

@@ -0,0 +1,97 @@
+import { Command } from "commander";
+import chalk from "chalk";
+import { basename } from "path";
+import { getAuth, addSiteWithId } from "../config";
+import { loginWithDeviceFlow } from "./login";
+import { createSiteViaApi } from "./sites";
+
+async function detectProjectIdentifier(): Promise<string> {
+  // Try package.json name
+  try {
+    const pkg = await Bun.file("package.json").json();
+    if (pkg.name) {
+      // Strip npm scope (@org/name -> name)
+      return pkg.name.replace(/^@[^/]+\//, "");
+    }
+  } catch {
+    // No package.json or invalid
+  }
+
+  // Try git remote origin
+  try {
+    const result = await Bun.$`git remote get-url origin`.text();
+    // Match both Unix and Windows path separators, and handle .git suffix
+    const match = result.trim().match(/[/\\]([^/\\]+?)(?:\.git)?$/);
+    if (match) return match[1];
+  } catch {
+    // Not a git repo or no remote
+  }
+
+  // Fall back to directory name (cross-platform)
+  return basename(process.cwd()) || "my-project";
+}
+
+export const initCommand = new Command("init")
+  .description("Quick setup: login, create site, get tracking snippet")
+  .argument("[identifier]", "Domain or project name (auto-detects if not provided)")
+  .action(async (identifier?: string) => {
+    try {
+      console.log();
+
+      // 1. Check if already logged in, if not do device flow
+      let auth = await getAuth();
+      if (!auth) {
+        console.log(chalk.bold("Step 1: Login"));
+        await loginWithDeviceFlow();
+        auth = await getAuth();
+        if (!auth) {
+          console.error(chalk.red("Login failed"));
+          process.exit(1);
+        }
+      } else {
+        console.log(chalk.dim(`Logged in as ${auth.email}`));
+      }
+
+      // 2. Detect or use provided identifier
+      if (!identifier) {
+        identifier = await detectProjectIdentifier();
+        console.log(chalk.dim(`Detected project: ${identifier}`));
+      }
+
+      // 3. Create site
+      console.log();
+      console.log(chalk.bold("Step 2: Create site"));
+      console.log(chalk.dim("Creating site..."));
+
+      const result = await createSiteViaApi(auth.accessToken, identifier);
+      await addSiteWithId(result.site.domain, result.apiKey.key, result.site.site_id, result.site.id);
+
+      console.log(chalk.green(`✓ Created ${result.site.domain}`));
+
+      // 4. Show tracking snippet
+      console.log();
+      console.log(chalk.bold("Step 3: Add tracking snippet"));
+      console.log();
+      console.log(chalk.dim("Add this to your HTML <head>:"));
+      console.log();
+      console.log(
+        chalk.cyan(
+          `  <script src="https://cdn.supalytics.co/script.js" data-site="${result.site.site_id}" defer></script>`
+        )
+      );
+      console.log();
+
+      // 5. Next steps
+      console.log(chalk.bold("Next steps:"));
+      console.log(chalk.dim(`  • Run ${chalk.cyan("supalytics stats")} to see your analytics`));
+      console.log(
+        chalk.dim(
+          `  • Update domain: ${chalk.cyan(`supalytics sites update ${identifier} --domain yourdomain.com`)}`
+        )
+      );
+      console.log();
+    } catch (error) {
+      console.error(chalk.red(`Error: ${(error as Error).message}`));
+      process.exit(1);
+    }
+  });

package/src/commands/login.ts

@@ -1,83 +1,227 @@
 import { Command } from "commander";
 import chalk from "chalk";
-import { addSite, CONFIG_FILE, getConfig, setDefaultSite } from "../config";
+import open from "open";
+import { saveAuth, getAuth, CONFIG_FILE, addSiteWithId } from "../config";
 import { mkdir } from "fs/promises";
 import { dirname } from "path";
 
-const API_BASE = process.env.SUPALYTICS_API_URL || "http://localhost:3000";
+const WEB_BASE = process.env.SUPALYTICS_WEB_URL || "https://www.supalytics.co";
 
-interface VerifyResponse {
-  domain: string;
+interface DeviceCodeResponse {
+  device_code: string;
+  user_code: string;
+  verification_uri: string;
+  verification_uri_complete: string;
+  expires_in: number;
+  interval: number;
 }
 
-async function verifyApiKey(apiKey: string): Promise<VerifyResponse | null> {
+interface TokenResponse {
+  access_token: string;
+  token_type: string;
+  expires_in: number;
+  user: {
+    id: string;
+    email: string;
+    name: string;
+  };
+}
+
+interface TokenErrorResponse {
+  error: string;
+}
+
+async function requestDeviceCode(): Promise<DeviceCodeResponse> {
+  let response: Response;
   try {
-    // Use a minimal analytics query to verify the key and get the domain
-    const response = await fetch(`${API_BASE}/v1/analytics`, {
+    response = await fetch(`${WEB_BASE}/api/cli/auth/device`, {
       method: "POST",
-      headers: {
-        Authorization: `Bearer ${apiKey}`,
-        "Content-Type": "application/json",
-      },
-      body: JSON.stringify({
-        metrics: ["pageviews"],
-        date_range: "7d",
-        limit: 1,
-      }),
+      headers: { "Content-Type": "application/json" },
     });
+  } catch (err) {
+    throw new Error(`Network error: Could not connect to ${WEB_BASE}. Check your internet connection.`);
+  }
 
-    if (!response.ok) {
-      return null;
+  if (!response.ok) {
+    throw new Error("Failed to start device authorization");
+  }
+
+  return response.json();
+}
+
+async function pollForToken(
+  deviceCode: string,
+  interval: number,
+  expiresIn: number
+): Promise<TokenResponse> {
+  const startTime = Date.now();
+  const timeoutMs = expiresIn * 1000;
+
+  while (Date.now() - startTime < timeoutMs) {
+    await new Promise((resolve) => setTimeout(resolve, interval * 1000));
+
+    const response = await fetch(`${WEB_BASE}/api/cli/auth/token`, {
+      method: "POST",
+      headers: { "Content-Type": "application/json" },
+      body: JSON.stringify({ device_code: deviceCode }),
+    });
+
+    const data = (await response.json()) as TokenResponse | TokenErrorResponse;
+
+    if (response.ok) {
+      return data as TokenResponse;
+    }
+
+    const errorData = data as TokenErrorResponse;
+
+    if (errorData.error === "authorization_pending") {
+      // Still waiting for user to approve - keep polling
+      continue;
+    }
+
+    if (errorData.error === "expired_token") {
+      throw new Error("Authorization timed out. Please try again.");
     }
 
-    const data = await response.json();
-    return { domain: data.meta.domain };
+    if (errorData.error === "access_denied") {
+      throw new Error("Access was denied.");
+    }
+
+    throw new Error(`Authorization failed: ${errorData.error}`);
+  }
+
+  throw new Error("Authorization timed out. Please try again.");
+}
+
+interface SyncSite {
+  site: {
+    id: string; // Website UUID for API operations
+    site_id: string; // Site ID for tracking snippet
+    domain: string;
+    name: string | null;
+  };
+  apiKey: {
+    key: string;
+    prefix: string;
+  };
+}
+
+async function syncSites(accessToken: string): Promise<SyncSite[]> {
+  let response: Response;
+  try {
+    response = await fetch(`${WEB_BASE}/api/cli/sites/sync`, {
+      method: "POST",
+      headers: {
+        Authorization: `Bearer ${accessToken}`,
+        "Content-Type": "application/json",
+      },
+    });
   } catch {
-    return null;
+    throw new Error("Network error while syncing sites");
+  }
+
+  if (!response.ok) {
+    throw new Error("Failed to sync sites");
   }
+
+  const data = await response.json();
+  return data.sites;
 }
 
-export const loginCommand = new Command("login")
-  .description("Add a site by verifying its API key. Can be called multiple times to add multiple sites.")
-  .argument("<api-key>", "Your API key (starts with sly_)")
-  .option("--default", "Set this site as the default")
-  .action(async (apiKey: string, options: { default?: boolean }) => {
-    apiKey = apiKey.trim();
-
-    // Validate API key format
-    if (!apiKey.startsWith("sly_")) {
-      console.error(chalk.red("Error: Invalid API key format. Keys start with 'sly_'"));
-      process.exit(1);
+export async function loginWithDeviceFlow(forceResync = false): Promise<void> {
+  // Check if already logged in
+  const existingAuth = await getAuth();
+  if (existingAuth && !forceResync) {
+    console.log(chalk.dim(`Already logged in as ${existingAuth.email}`));
+    console.log(chalk.dim(`Run 'supalytics login --resync' to refresh API keys, or 'supalytics logout' to log out.`));
+    return;
+  }
+
+  // If resyncing, just sync sites with existing auth
+  if (existingAuth && forceResync) {
+    console.log(chalk.dim("Resyncing sites..."));
+    try {
+      const sites = await syncSites(existingAuth.accessToken);
+      if (sites.length > 0) {
+        for (const { site, apiKey } of sites) {
+          await addSiteWithId(site.domain, apiKey.key, site.site_id, site.id);
+        }
+        console.log(chalk.green(`✓ Synced ${sites.length} site${sites.length > 1 ? "s" : ""}`));
+      } else {
+        console.log(chalk.dim("No sites found."));
+      }
+    } catch {
+      console.log(chalk.yellow("Could not sync. Your session may have expired. Run 'supalytics logout' then 'supalytics login'."));
     }
+    return;
+  }
 
-    // Verify API key with server
-    console.log(chalk.dim("Verifying API key..."));
-    const result = await verifyApiKey(apiKey);
+  console.log();
+  console.log(chalk.dim("Starting device authorization..."));
 
-    if (!result) {
-      console.error(chalk.red("Error: Invalid API key or unable to verify"));
-      process.exit(1);
-    }
+  // 1. Request device code
+  const { device_code, user_code, verification_uri_complete, interval, expires_in } =
+    await requestDeviceCode();
 
-    // Ensure config directory exists
-    await mkdir(dirname(CONFIG_FILE), { recursive: true });
+  // 2. Display instructions
+  console.log();
+  console.log(`  Visit: ${chalk.cyan(verification_uri_complete)}`);
+  console.log(`  Code:  ${chalk.bold(user_code)}`);
+  console.log();
 
-    // Add site to config
-    await addSite(result.domain, apiKey);
+  // 3. Open browser (don't fail if it can't open)
+  try {
+    await open(verification_uri_complete);
+  } catch {
+    console.log(chalk.yellow("Could not open browser automatically."));
+    console.log(chalk.dim("Please open the URL above manually."));
+  }
 
-    // Set as default if requested
-    if (options.default) {
-      await setDefaultSite(result.domain);
-    }
+  // 4. Poll for token
+  console.log(chalk.dim("Waiting for authorization..."));
+  console.log(chalk.dim("(Press Ctrl+C to cancel)"));
+  console.log();
 
-    const config = await getConfig();
-    const isDefault = config.defaultSite === result.domain;
-    const siteCount = Object.keys(config.sites).length;
+  const tokenResponse = await pollForToken(device_code, interval, expires_in);
 
-    console.log(chalk.green(`✓ Added ${result.domain}`) + (isDefault ? chalk.dim(" (default)") : ""));
-    console.log(chalk.dim(`  ${siteCount} site${siteCount > 1 ? "s" : ""} configured`));
+  // 5. Ensure config directory exists
+  await mkdir(dirname(CONFIG_FILE), { recursive: true });
 
-    if (siteCount > 1 && !isDefault) {
-      console.log(chalk.dim(`  Use --default flag or 'supalytics default ${result.domain}' to set as default`));
+  // 6. Save auth
+  await saveAuth({
+    accessToken: tokenResponse.access_token,
+    email: tokenResponse.user.email,
+    name: tokenResponse.user.name,
+    expiresAt: new Date(Date.now() + tokenResponse.expires_in * 1000).toISOString(),
+  });
+
+  console.log(chalk.green(`✓ Logged in as ${tokenResponse.user.email}`));
+
+  // 7. Sync existing sites
+  console.log(chalk.dim("Syncing sites..."));
+  try {
+    const sites = await syncSites(tokenResponse.access_token);
+    if (sites.length > 0) {
+      for (const { site, apiKey } of sites) {
+        await addSiteWithId(site.domain, apiKey.key, site.site_id, site.id);
+      }
+      console.log(chalk.green(`✓ Synced ${sites.length} site${sites.length > 1 ? "s" : ""}`));
+    } else {
+      console.log(chalk.dim("No sites found. Create one with `supalytics sites add <name>`"));
+    }
+  } catch {
+    console.log(chalk.dim("Could not sync sites. You can add sites manually."));
+  }
+}
+
+export const loginCommand = new Command("login")
+  .description("Authenticate with Supalytics")
+  .option("--resync", "Refresh API keys for all sites")
+  .action(async (options: { resync?: boolean }) => {
+    try {
+      await loginWithDeviceFlow(options.resync || false);
+    } catch (error) {
+      console.error(chalk.red(`Error: ${(error as Error).message}`));
+      process.exit(1);
     }
   });

package/src/commands/logout.ts

@@ -4,11 +4,11 @@ import { CONFIG_FILE } from "../config";
 import { unlink } from "fs/promises";
 
 export const logoutCommand = new Command("logout")
-  .description("Remove stored credentials")
+  .description("Log out and remove all stored credentials")
   .action(async () => {
     try {
       await unlink(CONFIG_FILE);
-      console.log(chalk.green("✓ Logged out successfully"));
+      console.log(chalk.green("✓ Logged out"));
     } catch {
       console.log(chalk.dim("Already logged out"));
     }

package/src/commands/pages.ts

@@ -14,6 +14,7 @@ export const pagesCommand = new Command("pages")
   .option("-f, --filter <filters...>", "Filters in format 'field:operator:value'")
   .option("--no-revenue", "Exclude revenue metrics")
   .option("--json", "Output as JSON")
+  .option("-t, --test", "Test mode: query localhost data instead of production")
   .action(async (options) => {
     const site = options.site || (await getDefaultSite());
 
@@ -51,6 +52,7 @@ export const pagesCommand = new Command("pages")
         date_range: dateRange,
         limit: parseInt(options.limit),
         include_revenue: options.revenue !== false,
+        is_dev: options.test || false,
       });
 
       if (options.json) {

package/src/commands/query.ts

@@ -49,6 +49,7 @@ export const queryCommand = new Command("query")
   .option("--offset <number>", "Skip results for pagination", "0")
   .option("--no-revenue", "Exclude revenue metrics")
   .option("--json", "Output as JSON")
+  .option("-t, --test", "Test mode: query localhost data instead of production")
   .action(async (options) => {
     const site = options.site || (await getDefaultSite());
 
@@ -105,6 +106,7 @@ export const queryCommand = new Command("query")
         limit: parseInt(options.limit),
         offset: parseInt(options.offset),
         include_revenue: options.revenue !== false,
+        is_dev: options.test || false,
       });
 
       if (options.json) {

package/src/commands/realtime.ts

@@ -9,6 +9,7 @@ export const realtimeCommand = new Command("realtime")
   .option("-s, --site <site>", "Site to query")
   .option("--json", "Output as JSON")
   .option("-w, --watch", "Auto-refresh every 30 seconds")
+  .option("-t, --test", "Test mode: query localhost data instead of production")
   .action(async (options) => {
     const site = options.site || (await getDefaultSite());
 
@@ -19,7 +20,7 @@ export const realtimeCommand = new Command("realtime")
 
     const display = async () => {
       try {
-        const response = await getRealtime(site);
+        const response = await getRealtime(site, options.test || false);
 
         if (options.json) {
           console.log(JSON.stringify(response, null, 2));

package/src/commands/referrers.ts

@@ -14,6 +14,7 @@ export const referrersCommand = new Command("referrers")
   .option("-f, --filter <filters...>", "Filters in format 'field:operator:value'")
   .option("--no-revenue", "Exclude revenue metrics")
   .option("--json", "Output as JSON")
+  .option("-t, --test", "Test mode: query localhost data instead of production")
   .action(async (options) => {
     const site = options.site || (await getDefaultSite());
 
@@ -51,6 +52,7 @@ export const referrersCommand = new Command("referrers")
         date_range: dateRange,
         limit: parseInt(options.limit),
         include_revenue: options.revenue !== false,
+        is_dev: options.test || false,
       });
 
       if (options.json) {

package/src/commands/sites.ts

@@ -1,6 +1,67 @@
 import { Command } from "commander";
 import chalk from "chalk";
-import { getConfig, removeSite, setDefaultSite } from "../config";
+import {
+  getConfig,
+  removeSite,
+  setDefaultSite,
+  getAuth,
+  addSiteWithId,
+  saveConfig,
+} from "../config";
+
+const WEB_BASE = process.env.SUPALYTICS_WEB_URL || "https://www.supalytics.co";
+
+interface CreateSiteResponse {
+  site: {
+    id: string;
+    site_id: string;
+    domain: string;
+  };
+  apiKey: {
+    key: string;
+    prefix: string;
+  };
+}
+
+interface UpdateSiteResponse {
+  site: {
+    id: string;
+    site_id: string;
+    domain: string;
+  };
+}
+
+export async function createSiteViaApi(
+  accessToken: string,
+  identifier: string
+): Promise<CreateSiteResponse> {
+  let response: Response;
+  try {
+    response = await fetch(`${WEB_BASE}/api/cli/sites`, {
+      method: "POST",
+      headers: {
+        Authorization: `Bearer ${accessToken}`,
+        "Content-Type": "application/json",
+      },
+      body: JSON.stringify({ identifier }),
+    });
+  } catch {
+    throw new Error(`Network error: Could not connect to ${WEB_BASE}`);
+  }
+
+  if (!response.ok) {
+    let errorMessage = "Failed to create site";
+    try {
+      const error = await response.json();
+      errorMessage = error.error || errorMessage;
+    } catch {
+      // Response wasn't JSON
+    }
+    throw new Error(errorMessage);
+  }
+
+  return response.json();
+}
 
 export const sitesCommand = new Command("sites")
   .description("List all configured sites")
@@ -9,7 +70,8 @@ export const sitesCommand = new Command("sites")
     const sites = Object.keys(config.sites);
 
     if (sites.length === 0) {
-      console.log(chalk.dim("No sites configured. Run `supalytics login <api-key>` to add a site."));
+      console.log(chalk.dim("No sites configured."));
+      console.log(chalk.dim("Run `supalytics login` then `supalytics sites add <name>` to add a site."));
       return;
     }
 
@@ -31,6 +93,136 @@ export const sitesCommand = new Command("sites")
     console.log();
   });
 
+// sites add <identifier>
+const addCommand = new Command("add")
+  .description("Create a new site")
+  .argument("<identifier>", "Domain or project name")
+  .action(async (identifier: string) => {
+    const auth = await getAuth();
+    if (!auth) {
+      console.error(chalk.red("Not logged in. Run `supalytics login` first."));
+      process.exit(1);
+    }
+
+    console.log(chalk.dim("Creating site..."));
+
+    try {
+      const result = await createSiteViaApi(auth.accessToken, identifier);
+
+      // Store locally (including website UUID for updates)
+      await addSiteWithId(result.site.domain, result.apiKey.key, result.site.site_id, result.site.id);
+
+      console.log(chalk.green(`✓ Created ${result.site.domain}`));
+      console.log(chalk.dim(`  Site ID: ${result.site.site_id}`));
+      console.log(chalk.dim(`  API key stored locally`));
+      console.log();
+      console.log(chalk.dim("Add this to your HTML <head>:"));
+      console.log();
+      console.log(
+        chalk.cyan(
+          `  <script src="https://cdn.supalytics.co/script.js" data-site="${result.site.site_id}" defer></script>`
+        )
+      );
+      console.log();
+    } catch (error) {
+      console.error(chalk.red(`Error: ${(error as Error).message}`));
+      process.exit(1);
+    }
+  });
+
+// sites update <identifier> --domain <domain>
+const updateCommand = new Command("update")
+  .description("Update a site's domain")
+  .argument("<identifier>", "Current domain/identifier")
+  .option("-d, --domain <domain>", "New domain name")
+  .action(async (identifier: string, options: { domain?: string }) => {
+    if (!options.domain) {
+      console.error(chalk.red("Error: --domain is required"));
+      console.error(chalk.dim("Usage: supalytics sites update <identifier> --domain <new-domain>"));
+      process.exit(1);
+    }
+
+    const auth = await getAuth();
+    if (!auth) {
+      console.error(chalk.red("Not logged in. Run `supalytics login` first."));
+      process.exit(1);
+    }
+
+    // Get site from local config
+    const config = await getConfig();
+    const siteConfig = config.sites[identifier];
+    if (!siteConfig) {
+      console.error(chalk.red(`Site '${identifier}' not found locally.`));
+      const sites = Object.keys(config.sites);
+      if (sites.length > 0) {
+        console.log(chalk.dim(`Available sites: ${sites.join(", ")}`));
+      }
+      process.exit(1);
+    }
+
+    console.log(chalk.dim("Updating site..."));
+
+    try {
+      // Try to use locally stored website ID first
+      let websiteId = siteConfig.id;
+
+      // If no local ID, fetch from server
+      if (!websiteId) {
+        const listResponse = await fetch(`${WEB_BASE}/api/cli/sites`, {
+          headers: { Authorization: `Bearer ${auth.accessToken}` },
+        });
+
+        if (!listResponse.ok) {
+          throw new Error("Failed to fetch sites");
+        }
+
+        const { sites } = await listResponse.json();
+        const site = sites.find((s: { domain: string }) => s.domain === identifier);
+
+        if (!site) {
+          throw new Error(`Site '${identifier}' not found on server`);
+        }
+        websiteId = site.id;
+      }
+
+      // Update via API
+      const updateResponse = await fetch(`${WEB_BASE}/api/cli/sites/${websiteId}`, {
+        method: "PATCH",
+        headers: {
+          Authorization: `Bearer ${auth.accessToken}`,
+          "Content-Type": "application/json",
+        },
+        body: JSON.stringify({ domain: options.domain }),
+      });
+
+      if (!updateResponse.ok) {
+        const error = await updateResponse.json();
+        throw new Error(error.error || "Failed to update site");
+      }
+
+      const result: UpdateSiteResponse = await updateResponse.json();
+
+      // Update local config (preserve all fields)
+      const { apiKey, siteId: existingSiteId, id: existingId } = siteConfig;
+      const siteId = existingSiteId || result.site.site_id;
+      const id = existingId || websiteId;
+      delete config.sites[identifier];
+      config.sites[options.domain] = { apiKey, siteId, id };
+      if (config.defaultSite === identifier) {
+        config.defaultSite = options.domain;
+      }
+      await saveConfig(config);
+
+      console.log(chalk.green(`✓ Updated ${identifier} → ${options.domain}`));
+    } catch (error) {
+      console.error(chalk.red(`Error: ${(error as Error).message}`));
+      process.exit(1);
+    }
+  });
+
+sitesCommand.addCommand(addCommand);
+sitesCommand.addCommand(updateCommand);
+
 export const defaultCommand = new Command("default")
   .description("Set the default site")
   .argument("<domain>", "Domain to set as default")

package/src/commands/stats.ts

@@ -14,6 +14,7 @@ export const statsCommand = new Command("stats")
   .option("-a, --all", "Show detailed breakdown (pages, referrers, countries, etc.)")
   .option("--no-revenue", "Exclude revenue metrics")
   .option("--json", "Output as JSON")
+  .option("-t, --test", "Test mode: query localhost data instead of production")
   .action(async (period, options) => {
     const site = options.site || (await getDefaultSite());
 
@@ -51,19 +52,20 @@ export const statsCommand = new Command("stats")
           filters,
           date_range: dateRange,
           include_revenue: options.revenue !== false,
+          is_dev: options.test || false,
         }),
       ];
 
       // Add breakdown calls if --all flag
       if (options.all) {
-        const breakdownOpts = { filters, date_range: dateRange, limit: 10 };
+        const breakdownOpts = { filters, date_range: dateRange, limit: 10, is_dev: options.test || false };
         apiCalls.push(
           query(site, { metrics: ["visitors"], dimensions: ["page"], ...breakdownOpts }),
           query(site, { metrics: ["visitors"], dimensions: ["referrer"], ...breakdownOpts }),
           query(site, { metrics: ["visitors"], dimensions: ["country"], ...breakdownOpts }),
           query(site, { metrics: ["visitors"], dimensions: ["browser"], ...breakdownOpts }),
           query(site, { metrics: ["visitors"], dimensions: ["utm_source"], ...breakdownOpts }),
-          listEvents(site, typeof dateRange === "string" ? dateRange : "30d", 10)
+          listEvents(site, typeof dateRange === "string" ? dateRange : "30d", 10, options.test || false)
         );
       }
 

package/src/commands/trend.ts

@@ -14,6 +14,7 @@ export const trendCommand = new Command("trend")
   .option("--no-revenue", "Exclude revenue metrics")
   .option("--compact", "Show compact sparkline only")
   .option("--json", "Output as JSON")
+  .option("-t, --test", "Test mode: query localhost data instead of production")
   .action(async (options) => {
     const site = options.site || (await getDefaultSite());
 
@@ -52,6 +53,7 @@ export const trendCommand = new Command("trend")
         date_range: dateRange,
         limit: 1000, // Get all days
         include_revenue: options.revenue !== false,
+        is_dev: options.test || false,
       });
 
       if (options.json) {

package/src/config.ts

@@ -6,9 +6,20 @@ const CONFIG_FILE = join(CONFIG_DIR, "config.json");
 
 interface SiteConfig {
   apiKey: string;
+  siteId?: string; // The site_id for tracking snippet
+  id?: string; // The website UUID for API operations
+}
+
+interface AuthConfig {
+  accessToken: string;
+  email: string;
+  name: string;
+  expiresAt?: string;
 }
 
 interface Config {
+  // User authentication
+  auth?: AuthConfig;
   // Map of domain -> API key
   sites: Record<string, SiteConfig>;
   // Default site domain
@@ -93,4 +104,55 @@ export async function getSites(): Promise<string[]> {
   return Object.keys(config.sites);
 }
 
+// Auth functions
+export async function getAuth(): Promise<AuthConfig | undefined> {
+  const config = await getConfig();
+  return config.auth;
+}
+
+export async function saveAuth(auth: AuthConfig): Promise<void> {
+  const config = await getConfig();
+  config.auth = auth;
+  await saveConfig(config);
+}
+
+export async function clearAuth(): Promise<void> {
+  const config = await getConfig();
+  delete config.auth;
+  await saveConfig(config);
+}
+
+export async function isAuthenticated(): Promise<boolean> {
+  const auth = await getAuth();
+  if (!auth?.accessToken) return false;
+  // Check expiration if set
+  if (auth.expiresAt && new Date(auth.expiresAt) < new Date()) {
+    return false;
+  }
+  return true;
+}
+
+// Add site with siteId and optional website id
+export async function addSiteWithId(
+  domain: string,
+  apiKey: string,
+  siteId: string,
+  id?: string
+): Promise<void> {
+  const config = await getConfig();
+  config.sites[domain] = { apiKey, siteId, id };
+  // Set as default if it's the first site
+  if (!config.defaultSite || Object.keys(config.sites).length === 1) {
+    config.defaultSite = domain;
+  }
+  await saveConfig(config);
+}
+
+// Get site ID for a domain
+export async function getSiteId(domain: string): Promise<string | undefined> {
+  const config = await getConfig();
+  return config.sites[domain]?.siteId;
+}
+
 export { CONFIG_DIR, CONFIG_FILE };
+export type { AuthConfig, SiteConfig, Config };

package/src/index.ts

@@ -12,17 +12,23 @@ import { queryCommand } from "./commands/query";
 import { eventsCommand } from "./commands/events";
 import { realtimeCommand } from "./commands/realtime";
 import { completionsCommand } from "./commands/completions";
+import { initCommand } from "./commands/init";
 
 const description = `CLI for Supalytics web analytics.
 
-Multi-site Support:
-  Add sites:       supalytics login <api-key>       (auto-detects domain from API key)
-  List sites:      supalytics sites
-  Set default:     supalytics default <domain>
-  Remove site:     supalytics remove <domain>
-  Query other:     supalytics stats --site <domain>
+Quick Start:
+  supalytics init              Auto-setup: login → create site → get snippet
 
-  API keys start with 'sly_' and can be created at https://supalytics.co/settings/api
+Authentication:
+  supalytics login             Open browser to authenticate
+  supalytics logout            Log out and remove all credentials
+
+Site Management:
+  supalytics sites             List configured sites
+  supalytics sites add <name>  Create a new site
+  supalytics sites update <name> --domain <domain>  Update domain
+  supalytics default <domain>  Set default site
+  supalytics remove <domain>   Remove a site
 
 Date Ranges:
   --period: 7d, 14d, 30d, 90d, 12mo, all (default: 30d)
@@ -63,6 +69,9 @@ program
   .description(description)
   .version(pkg.version);
 
+// Quick start
+program.addCommand(initCommand);
+
 // Auth & site management commands
 program.addCommand(loginCommand);
 program.addCommand(logoutCommand);