@switchboard.spot/cli 0.2.3 → 0.2.5

package/README.md

@@ -1,7 +1,7 @@
 # @switchboard.spot/cli
 
 Command-line management for [Switchboard](https://switchboard.spot): account
-auth, project setup, key rotation, integration setup, usage checks, and smoke
+auth, project setup, integration setup, usage checks, and smoke
 tests.
 
 ## Install
@@ -29,6 +29,18 @@ The build output is written to `dist/` and is safe to delete.
 
 ## Publish to npm
 
+From the repository root, use the release helper for normal interactive
+publishing:
+
+```bash
+bin/publish-cli patch
+```
+
+The helper bumps `packages/cli/package.json` and `package-lock.json`, runs CLI
+tests, runs `npm publish --dry-run`, publishes with public access, verifies the
+npm `latest` dist-tag, and commits the version bump. Pass `minor`, `major`, or an
+explicit version such as `0.3.0` when needed.
+
 Before publishing, npm requires either an interactive account with 2FA enabled
 or a granular access token with **bypass 2FA** enabled. For token-based
 publishing, create a granular npm token with read/write access for
@@ -56,9 +68,9 @@ If a first publish fails, `npm view @switchboard.spot/cli` will continue to retu
 switchboard auth login
 switchboard projects create --name "My App" --slug my-app
 switchboard setup project --origin http://localhost:5173 --json
-switchboard verify setup
-switchboard launch prepare --production-origin https://app.example.com --end-user-terms-url https://app.example.com/terms --end-user-privacy-url https://app.example.com/privacy --support-email support@example.com --contact-email owner@example.com --use-case "Browser chat for signed-in customers"
-switchboard verify publish
+switchboard verify setup --app-url <app-url>
+switchboard setup project --origin https://preview.example.com --production-origin https://app.example.com --end-user-terms-url https://app.example.com/terms --end-user-privacy-url https://app.example.com/privacy --support-email support@example.com
+switchboard verify publish --app-url <preview-url>
 ```
 
 Use `--json` for automation, CI, and coding agents.
@@ -67,9 +79,9 @@ Use `--json` for automation, CI, and coding agents.
 
 CLI account login does not create Client Gateway end-user sessions. End-user sign-up, sign-in, and refresh require the SDK-managed browser challenge; curl, Node scripts, CI, and CLI account login cannot mint browser sessions without running that real browser/mobile flow.
 
-For local Switchboard development, `switchboard verify setup --client-url http://localhost:4000/m/<slug>/v1` uses the built-in `dev_browser_challenge` token unless a scenario supplies an explicit `browserChallengeToken`. Hosted Switchboard should use managed Turnstile and the SDK-managed real browser challenge. A local sandbox smoke path is: configure allowed origin plus legal/support fields, create an anonymous session through the SDK or browser verification flow, then call Client Gateway chat.
+For local Switchboard development, `switchboard verify setup --app-url <app-url> --client-url http://localhost:4000/g/<slug>/v1` uses the built-in `dev_browser_challenge` token unless a scenario supplies an explicit `browserChallengeToken`. Hosted Switchboard should use managed Turnstile and the SDK-managed real browser challenge. A local sandbox smoke path is: configure allowed origin plus legal/support fields, create an anonymous session through the SDK or browser verification flow, then confirm Client Gateway chat returns the guarded `402 sandbox_completion_requires_prepaid_balance` without calling a provider.
 
-Model discovery is global. Use `GET /v1/models` for OpenAI-compatible discovery or `GET /v1/catalog/models` for catalog/pricing metadata; Client Gateway chat is project-scoped at `/m/<slug>/v1/chat/completions`.
+Model discovery is global. Use `GET /v1/models` for OpenAI-compatible discovery; Client Gateway chat is project-scoped at `/g/<slug>/v1/chat/completions`.
 
 Switchboard-managed Turnstile is the default production path. Developers do not paste Cloudflare secrets into the CLI or repo files:
 
@@ -78,7 +90,7 @@ switchboard setup project --origin <origin> --json
 switchboard projects turnstile <project-id> --clear
 ```
 
-`switchboard projects provision-turnstile` remains available as a low-level admin/debug command. If its help is missing, upgrade with `npm install -g @switchboard.spot/cli@latest` before trying dashboard automation or manual Cloudflare keys.
+`switchboard projects provision-turnstile` remains available as a low-level admin/debug command. If its help is missing, upgrade with `npm install -g @switchboard.spot/cli@latest` before using manual Cloudflare keys.
 
 ## Configuration
 
@@ -91,7 +103,6 @@ Environment variables:
 | --- | --- |
 | `SWITCHBOARD_BASE_URL` | Switchboard app origin. Defaults to `https://switchboard.spot`; set to `http://localhost:4000` for local development. |
 | `SWITCHBOARD_PROJECT_ID` | Project context for project-scoped commands. |
-| `SWITCHBOARD_API_KEY` | Secret project key for trusted-server gateway smoke tests. |
 | `SWITCHBOARD_CLIENT_URL` | Public Client Gateway URL for browser/mobile end-user auth and chat. |
 | `VITE_SWITCHBOARD_CLIENT_URL` | Vite-safe public Client Gateway URL for browser apps. |
 | `SWITCHBOARD_END_USER_SESSION` | Existing end-user session for Client Gateway checks; the CLI cannot mint one without browser challenge execution. |
@@ -107,7 +118,7 @@ clears both keychain and config-dir account sessions.
 
 ## Credential safety
 
-Do not paste `sb_sess_`, `sb_test_`, `sb_live_`, provider keys, private keys, or
+Do not paste `sb_sess_`, provider keys, private keys, or
 webhook secrets into frontend, mobile, or public code. Browser and mobile code
 should use `VITE_SWITCHBOARD_CLIENT_URL` in Vite apps or `SWITCHBOARD_CLIENT_URL`
 in non-Vite tooling, plus end-user sessions.

package/bin/switchboard.js

@@ -1,6 +1,6 @@
 #!/usr/bin/env node
 /**
- * Switchboard CLI — full dashboard parity via the account management API.
+ * Switchboard CLI for account, project, gateway, and docs automation.
  */
 
 import { Command } from "commander";
@@ -9,22 +9,14 @@ import path from "path";
 import { fileURLToPath } from "url";
 import { registerCommand as registerAuth } from "../lib/commands/auth.js";
 import { registerAccountCommands } from "../lib/commands/account.js";
-import { registerKeysCommands } from "../lib/commands/keys.js";
 import { registerProjectsCommands } from "../lib/commands/projects.js";
-import { registerWorkspacesCommands } from "../lib/commands/workspaces.js";
-import { registerOrgCommands } from "../lib/commands/org.js";
-import { registerEndUsersCommands } from "../lib/commands/endUsers.js";
 import { registerBillingCommands } from "../lib/commands/billing.js";
-import { registerEnvCommands } from "../lib/commands/env.js";
 import { registerUsageCommands } from "../lib/commands/usage.js";
-import { registerIntegrationCommands } from "../lib/commands/integration.js";
 import { registerDocsCommands } from "../lib/commands/docs.js";
-import { registerInitCommand } from "../lib/commands/init.js";
 import { registerSetupCommand } from "../lib/commands/setup.js";
 import { registerHealthCommand } from "../lib/commands/health.js";
 import { registerDoctorCommand } from "../lib/commands/doctor.js";
 import { registerVerifyCommands } from "../lib/commands/verify.js";
-import { registerLaunchCommands } from "../lib/commands/launch.js";
 
 const program = new Command();
 const __dirname = path.dirname(fileURLToPath(import.meta.url));
@@ -39,23 +31,15 @@ program
   .option("-q, --quiet", "Suppress non-essential output")
   .version(packageJson.version);
 
-registerInitCommand(program);
 registerSetupCommand(program);
 registerHealthCommand(program);
 registerDoctorCommand(program);
 registerVerifyCommands(program);
-registerLaunchCommands(program);
 registerAuth(program);
 registerAccountCommands(program);
-registerWorkspacesCommands(program);
-registerKeysCommands(program);
 registerProjectsCommands(program);
-registerOrgCommands(program);
-registerEndUsersCommands(program);
 registerBillingCommands(program);
-registerEnvCommands(program);
 registerUsageCommands(program);
-registerIntegrationCommands(program);
 registerDocsCommands(program);
 
 await program.parseAsync();

package/lib/client.js

@@ -6,11 +6,8 @@ import { accountApiUrl, resolveAccountConfig, resolveConfig } from "./config.js"
 import { emitHttpError, fail, normalizeError } from "./output.js";
 
 const PROJECT_SCOPED_ACCOUNT_PATHS = [
-  /^\/keys(?:\/|$)/,
-  /^\/end_users(?:\/|$)/,
   /^\/billing\/(?:ledger|top_up|prepaid)(?:\/|\?|$)/,
   /^\/usage(?:\?|$)/,
-  /^\/integration_kit(?:\?|$)/,
 ];
 
 /**

package/lib/commands/account.js

@@ -69,13 +69,4 @@ export function registerAccountCommands(program) {
       const { data } = await accountRequest("DELETE", "/me", { json: flags.json });
       emit(flags.json ? data : `Deleted account ${email}`, flags);
     });
-
-  account
-    .command("restore")
-    .description("Restore the authenticated account")
-    .action(async (_opts, cmd) => {
-      const flags = globalFlags(cmd);
-      const { data } = await accountRequest("POST", "/me/restore", { json: flags.json });
-      emit(flags.json ? data : `Restored account ${data.user.email}`, flags);
-    });
 }

package/lib/commands/auth.js

@@ -85,7 +85,6 @@ export function registerCommand(program) {
       deleteConfigDirAccountToken();
       saveConfig({
         projectId: null,
-        apiKey: null,
         endUserSession: null,
       });
       emit(flags.json ? { ok: true } : "Logged out.", flags);
@@ -215,7 +214,6 @@ export async function exchangeCliLogin({
 
   save({
     projectId: null,
-    apiKey: null,
     endUserSession: null,
   });
 
@@ -320,8 +318,8 @@ function waitForCallback(callbackServer, timeoutSeconds, json) {
 export function callbackPage(title, message, tone) {
   const success = tone === "success";
   const accent = success ? "#14b8a6" : "#ef4444";
-  const accentSoft = success ? "#ccfbf1" : "#fee2e2";
-  const mark = success ? "✓" : "!";
+  const mark = success ? "✓" : "×";
+  const ariaLabel = success ? "Switchboard CLI login complete" : "Switchboard CLI login failed";
 
   return `<!doctype html>
 <html lang="en">
@@ -340,114 +338,41 @@ export function callbackPage(title, message, tone) {
       body {
         min-height: 100vh;
         margin: 0;
+        display: grid;
+        place-items: center;
         color: #1f2937;
         background:
           repeating-linear-gradient(125deg, transparent, transparent 6px, #e8e8e8 6px, #e8e8e8 7px),
           #ffffff;
       }
-      .page {
-        min-height: 100vh;
-        width: min(100%, 80rem);
-        margin: 0 auto;
-        display: flex;
-        flex-direction: column;
-        border-inline: 1px solid #e5e7eb;
-        background:
-          repeating-linear-gradient(125deg, transparent, transparent 6px, #e8e8e8 6px, #e8e8e8 7px),
-          #ffffff;
-      }
-      header {
-        height: 4.5rem;
-        display: flex;
-        align-items: center;
-        justify-content: space-between;
-        padding: 0 1.5rem;
-        border-bottom: 1px solid #e5e7eb;
-        background: rgba(255, 255, 255, 0.88);
-        backdrop-filter: blur(12px);
-      }
-      .logo {
-        color: #1f2937;
-        font-size: 0.95rem;
-        font-weight: 800;
-        letter-spacing: 0;
-      }
-      .pill {
-        border: 1px solid #e5e7eb;
-        border-radius: 999px;
-        padding: 0.45rem 0.8rem;
-        background: #ffffff;
-        color: #4b5563;
-        font-size: 0.82rem;
-        font-weight: 600;
-      }
-      main {
-        flex: 1;
+      .panel {
+        width: min(100%, 12rem);
+        aspect-ratio: 1;
         display: grid;
         place-items: center;
-        padding: 5rem 1.5rem;
-      }
-      .panel {
-        width: min(100%, 34rem);
         border: 1px solid #e5e7eb;
         border-radius: 0.5rem;
-        padding: clamp(1.5rem, 5vw, 2.25rem);
+        padding: 1.5rem;
         background: rgba(255, 255, 255, 0.94);
         box-shadow:
           0 1.34368px 0.537473px -0.625px rgba(0, 0, 0, 0.09),
           0 15.5969px 6.23877px -3.125px rgba(0, 0, 0, 0.07),
           0 43.962px 17.5848px -4.375px rgba(0, 0, 0, 0.04);
-        text-align: center;
-      }
-      .eyebrow {
-        margin: 0 0 1.25rem;
-        color: #4b5563;
-        font-size: 0.78rem;
-        font-weight: 700;
-        letter-spacing: 0.12em;
-        text-transform: uppercase;
       }
       .mark {
-        width: 4rem;
-        height: 4rem;
-        margin: 0 auto 1.25rem;
+        width: 5rem;
+        height: 5rem;
         display: grid;
         place-items: center;
         border: 1px solid ${accent};
         border-radius: 0.5rem;
         background: ${accent};
         color: #111827;
-        font-size: 1.9rem;
+        font-size: 3rem;
+        line-height: 1;
         font-weight: 900;
         box-shadow: 0 18px 40px -20px ${accent};
       }
-      h1 {
-        margin: 0;
-        color: #1f2937;
-        font-size: clamp(2rem, 7vw, 3.5rem);
-        line-height: 0.98;
-        letter-spacing: 0;
-      }
-      p {
-        margin: 1rem auto 0;
-        max-width: 26rem;
-        color: #4b5563;
-        font-size: 1rem;
-        line-height: 1.65;
-      }
-      .status {
-        display: inline-flex;
-        align-items: center;
-        gap: 0.5rem;
-        margin-top: 1.5rem;
-        border: 1px solid ${accent};
-        border-radius: 999px;
-        padding: 0.5rem 0.8rem;
-        background: ${accentSoft};
-        color: #1f2937;
-        font-size: 0.86rem;
-        font-weight: 700;
-      }
       @media (prefers-color-scheme: dark) {
         :root {
           background: #020617;
@@ -459,53 +384,20 @@ export function callbackPage(title, message, tone) {
             repeating-linear-gradient(125deg, transparent, transparent 6px, rgba(55, 65, 81, 0.6) 6px, rgba(55, 65, 81, 0.6) 7px),
             #020617;
         }
-        .page {
-          border-color: #1f2937;
-          background:
-            repeating-linear-gradient(125deg, transparent, transparent 6px, rgba(55, 65, 81, 0.6) 6px, rgba(55, 65, 81, 0.6) 7px),
-            #020617;
-        }
-        header,
         .panel {
           border-color: #1f2937;
           background: rgba(2, 6, 23, 0.94);
         }
-        .logo,
-        h1 {
-          color: #f3f4f6;
-        }
-        .pill,
-        .eyebrow,
-        p {
-          color: #d1d5db;
-        }
-        .pill {
-          border-color: #1f2937;
-          background: #111827;
-        }
-        .mark,
-        .status {
+        .mark {
           color: #020617;
         }
       }
     </style>
   </head>
   <body>
-    <div class="page">
-      <header>
-        <div class="logo">Switchboard</div>
-        <div class="pill">CLI session</div>
-      </header>
-      <main>
-        <section class="panel" aria-labelledby="callback-title">
-          <p class="eyebrow">Switchboard CLI</p>
-          <div class="mark" aria-hidden="true">${mark}</div>
-          <h1 id="callback-title">${escapeHtml(title)}</h1>
-          <p>${escapeHtml(message)}</p>
-          <div class="status">${success ? "Session approved" : "Session not approved"}</div>
-        </section>
-      </main>
-    </div>
+    <main class="panel" aria-label="${ariaLabel}">
+      <div class="mark" aria-hidden="true">${mark}</div>
+    </main>
   </body>
 </html>`;
 }

package/lib/commands/billing.js

@@ -20,7 +20,7 @@ export function registerBillingCommands(program) {
 
   billing
     .command("ledger")
-    .description("List prepaid wallet ledger entries")
+    .description("List project spend balance ledger entries")
     .action(async (_opts, cmd) => {
       const flags = globalFlags(cmd);
       const { data } = await accountRequest("GET", "/billing/ledger", {
@@ -37,88 +37,26 @@ export function registerBillingCommands(program) {
 
   billing
     .command("top-up")
-    .description("Add prepaid wallet funds")
+    .description("Add funds to the project spend balance")
     .requiredOption("--amount-micros <micros>", "Amount in micros", parseInt)
     .option("--idempotency-key <key>")
+    .option("--success-url <url>")
+    .option("--cancel-url <url>")
+    .option("--open", "Open checkout URL in the default browser")
     .action(async (opts, cmd) => {
       const flags = globalFlags(cmd);
       const body = { amount_micros: opts.amountMicros };
       if (opts.idempotencyKey) body.idempotency_key = opts.idempotencyKey;
+      if (opts.successUrl) body.success_url = opts.successUrl;
+      if (opts.cancelUrl) body.cancel_url = opts.cancelUrl;
 
       const { data } = await accountRequest("POST", "/billing/top_up", {
         body,
         json: flags.json,
       });
-      emit(flags.json ? data : `Created top-up ${data.id}`, flags);
-    });
-
-  billing
-    .command("checkout")
-    .description("Create a Stripe-hosted developer billing checkout URL")
-    .requiredOption("--success-url <url>")
-    .requiredOption("--cancel-url <url>")
-    .option("--open", "Open checkout URL in the default browser")
-    .action(async (opts, cmd) => {
-      const flags = globalFlags(cmd);
-      const { data } = await accountRequest("POST", "/billing/checkout", {
-        body: {
-          success_url: opts.successUrl,
-          cancel_url: opts.cancelUrl,
-        },
-        json: flags.json,
-      });
       if (opts.open) openUrl(data.checkout_url);
       emit(flags.json ? data : data.checkout_url, flags);
     });
-
-  billing
-    .command("portal")
-    .description("Create a Stripe-hosted developer billing portal URL")
-    .requiredOption("--return-url <url>")
-    .option("--open", "Open portal URL in the default browser")
-    .action(async (opts, cmd) => {
-      const flags = globalFlags(cmd);
-      const { data } = await accountRequest("POST", "/billing/portal", {
-        body: { return_url: opts.returnUrl },
-        json: flags.json,
-      });
-      if (opts.open) openUrl(data.url);
-      emit(flags.json ? data : data.url, flags);
-    });
-
-  billing
-    .command("prepaid")
-    .description("Update prepaid wallet settings")
-    .option("--monthly-auto-refill-micros <micros>", "Monthly auto-refill amount", parseInt)
-    .option("--outage-protection <enabled>", "true or false")
-    .option("--outage-threshold-micros <micros>", "Outage refill threshold", parseInt)
-    .option("--outage-refill-micros <micros>", "Outage refill amount", parseInt)
-    .option("--outage-monthly-cap-micros <micros>", "Outage monthly cap", parseInt)
-    .action(async (opts, cmd) => {
-      const flags = globalFlags(cmd);
-      const body = {};
-      if (opts.monthlyAutoRefillMicros != null) {
-        body.prepaid_monthly_auto_refill_micros = opts.monthlyAutoRefillMicros;
-      }
-      if (opts.outageProtection != null) {
-        body.prepaid_outage_protection_enabled = opts.outageProtection === "true";
-      }
-      if (opts.outageThresholdMicros != null) {
-        body.prepaid_outage_threshold_micros = opts.outageThresholdMicros;
-      }
-      if (opts.outageRefillMicros != null) {
-        body.prepaid_outage_refill_micros = opts.outageRefillMicros;
-      }
-      if (opts.outageMonthlyCapMicros != null) {
-        body.prepaid_outage_monthly_cap_micros = opts.outageMonthlyCapMicros;
-      }
-
-      const { data } = await accountRequest("PATCH", "/billing/prepaid", {
-        body,
-        json: flags.json,
-      });
-      emit(flags.json ? data : "Updated prepaid settings", flags);
-    });
 }
 
 function openUrl(url) {

package/lib/commands/doctor.js

@@ -18,7 +18,7 @@ async function check(name, fn) {
 export function registerDoctorCommand(program) {
   program
     .command("doctor")
-    .description("Check health, auth, project, catalog, and gateway readiness")
+    .description("Check health, auth, project, models, and gateway readiness")
     .action(async (_opts, cmd) => {
       const flags = globalFlags(cmd);
       const report = await runDoctorChecks();
@@ -42,13 +42,17 @@ export async function runDoctorChecks({
   checks.push(
     await check("health", async () => {
       const result = await health(config);
+      if (!result.ok) {
+        throw new Error(result.data?.status || result.data?.message || `HTTP ${result.status}`);
+      }
+
       return { status: result.status, data: result.data };
     }),
   );
 
   checks.push(
-    await check("catalog", async () => {
-      const res = await fetchImpl(`${gatewayApiUrl(config)}/catalog/models`);
+    await check("models", async () => {
+      const res = await fetchImpl(`${gatewayApiUrl(config)}/models`);
       const data = await res.json();
       const status = res.status;
       if (!res.ok) throw new Error(`HTTP ${status}`);
@@ -80,11 +84,11 @@ export async function runDoctorChecks({
     checks.push({ name: "project", ok: false, error: "No project selected" });
   }
 
-  if (config.virtualMicroserviceUrl) {
+  if (config.clientGatewayUrl) {
     checks.push(
       await check("client_gateway_config", async () => {
         const res = await fetchImpl(
-          new URL("client/config", ensureTrailingSlash(config.virtualMicroserviceUrl)).href,
+          new URL("client/config", ensureTrailingSlash(config.clientGatewayUrl)).href,
           {
             headers: { Accept: "application/json" },
           },
@@ -99,7 +103,7 @@ export async function runDoctorChecks({
 
         return {
           status: res.status,
-          clientUrl: config.virtualMicroserviceUrl,
+          clientUrl: config.clientGatewayUrl,
           browserChallengeProvider: data?.browser_challenge?.provider ?? null,
           production_safety: productionSafety,
           warning: productionBlocked,