@tigrisdata/cli 2.6.0 → 2.6.1

package/dist/auth/client.js

@@ -1 +1 @@
-import g from"axios";import D from"open";function h(){let t=process.env.TIGRIS_ENV==="development",e=process.env.AUTH0_DOMAIN||t?"auth-dev.tigris.dev":"auth.tigris.dev",n=process.env.AUTH0_CLIENT_ID||t?"JdJVYIyw0O1uHi5L5OJH903qaWBgd3gF":"DMejqeM3CQ4IqTjEcd3oA9eEiT40hn8D",o=process.env.AUTH0_AUDIENCE||t?"https://tigris-api-dev":"https://tigris-os-api";return{domain:e,clientId:n,audience:o}}var C=process.env.TIGRIS_CLAIMS_NAMESPACE||"https://tigris";import{homedir as v}from"os";import{join as I}from"path";import{readFileSync as y,writeFileSync as O,existsSync as S,mkdirSync as P}from"fs";import{loadSharedConfigFiles as K}from"@smithy/shared-ini-file-loader";import{chmod as x}from"fs/promises";var p=I(v(),".tigris"),l=I(p,"config.json");function N(){S(p)||P(p,{recursive:!0,mode:448})}function c(){if(S(l))try{let t=y(l,"utf8");return JSON.parse(t)}catch{return{}}return{}}async function f(t){N(),O(l,JSON.stringify(t,null,2),{mode:384});try{await x(l,384)}catch{}}async function u(t){let e=c();e.tokens=t,await f(e)}async function d(){return c().tokens||null}async function T(){let t=c();delete t.tokens,await f(t)}async function A(t){let e=c();e.organizations=t,await f(e)}function w(){return c().organizations||[]}async function E(t){let e=c();e.loginMethod=t,await f(e)}var _=class{config;baseUrl;constructor(){this.config=h(),this.baseUrl=`https://${this.config.domain}`}async login(e){let o=(await g.post(`${this.baseUrl}/oauth/device/code`,{client_id:this.config.clientId,audience:this.config.audience,scope:"openid profile email offline_access"},{headers:{"Content-Type":"application/x-www-form-urlencoded"}})).data;e?.onDeviceCode?.(o.user_code,o.verification_uri),await this.sleep(2e3);try{await D(o.verification_uri_complete)}catch{}e?.onWaiting?.();let r=await this.pollForToken(o.device_code,o.interval||5);await u(r),E("oauth"),await this.extractAndStoreOrganizations(r.idToken)}async pollForToken(e,n){let r=0;for(;r<60;){r++;try{let s=(await g.post(`${this.baseUrl}/oauth/token`,{client_id:this.config.clientId,device_code:e,grant_type:"urn:ietf:params:oauth:grant-type:device_code"},{headers:{"Content-Type":"application/x-www-form-urlencoded"}})).data,a=Date.now()+(s.expires_in||3600)*1e3;return{accessToken:s.access_token,refreshToken:s.refresh_token,idToken:s.id_token,expiresAt:a}}catch(i){if(g.isAxiosError(i)&&i.response){let s=i.response.data?.error;if(s==="authorization_pending"){await this.sleep(n*1e3);continue}if(s==="slow_down"){n+=5,await this.sleep(n*1e3);continue}throw new Error(i.response.data?.error_description||"Authentication failed")}throw i}}throw new Error("Authentication timed out. Please try again.")}async getAccessToken(){let e=await d();if(!e)throw new Error('Not authenticated. Please run "tigris login" to authenticate.');let n=300*1e3;return Date.now()+n>=e.expiresAt&&(e=await this.refreshAccessToken(e)),e.accessToken}async refreshAccessToken(e){let n=null;if(e?.refreshToken?n=e:n=await d(),!n)throw new Error('No refresh token available. Please run "tigris login" to re-authenticate.');try{let r=(await g.post(`${this.baseUrl}/oauth/token`,{client_id:this.config.clientId,grant_type:"refresh_token",refresh_token:n.refreshToken,scope:"openid profile email offline_access"},{headers:{"Content-Type":"application/x-www-form-urlencoded"}})).data,i={accessToken:r.access_token,refreshToken:r.refresh_token||n.refreshToken,idToken:r.id_token||n.idToken,expiresAt:Date.now()+(r.expires_in||3600)*1e3};return await u(i),i}catch{throw await T(),new Error('Token refresh failed. Please run "tigris login" to re-authenticate.')}}async getIdTokenClaims(){let e=await d();if(!e||!e.idToken)throw new Error('Not authenticated. Please run "tigris login" to authenticate.');try{let n=e.idToken.split(".")[1],o=Buffer.from(n,"base64").toString("utf8");return JSON.parse(o)}catch{throw new Error("Failed to decode ID token")}}async extractAndStoreOrganizations(e){if(e)try{let n=e.split(".")[1],o=Buffer.from(n,"base64").toString("utf8"),i=JSON.parse(o)[C];if(!i)return;let s=i?.ns?.map(a=>typeof a=="object"&&a!==null?{id:a.id,name:a.name,displayName:a.name}:{id:a,name:a,displayName:a})||[];if(s.length===0)return;A(s)}catch{}}async getOrganizations(){return await this.getAccessToken(),w()}async logout(){await T()}async isAuthenticated(){return await d()!==null}sleep(e){return new Promise(n=>setTimeout(n,e))}},m=null;function q(){return m||(m=new _),m}export{_ as TigrisAuthClient,q as getAuthClient};
+import{a,b}from"../chunk-WE6NZ2ZK.js";import"../chunk-NYAHHQ3A.js";import"../chunk-PKWQDQLT.js";import"../chunk-4BZ377KV.js";export{a as TigrisAuthClient,b as getAuthClient};

package/dist/auth/config.js

@@ -1 +1 @@
-var t="https://t3.storage.dev",n="https://iam.storageapi.dev";function p(){let e=process.env.TIGRIS_ENV==="development",i=process.env.AUTH0_DOMAIN||e?"auth-dev.tigris.dev":"auth.tigris.dev",s=process.env.AUTH0_CLIENT_ID||e?"JdJVYIyw0O1uHi5L5OJH903qaWBgd3gF":"DMejqeM3CQ4IqTjEcd3oA9eEiT40hn8D",o=process.env.AUTH0_AUDIENCE||e?"https://tigris-api-dev":"https://tigris-os-api";return{domain:i,clientId:s,audience:o}}var T=process.env.TIGRIS_CLAIMS_NAMESPACE||"https://tigris";function E(){return process.env.TIGRIS_STORAGE_ENDPOINT||process.env.TIGRIS_IAM_ENDPOINT?{endpoint:process.env.TIGRIS_STORAGE_ENDPOINT||t,iamEndpoint:process.env.TIGRIS_IAM_ENDPOINT||n}:{endpoint:process.env.AWS_ENDPOINT_URL_S3||t,iamEndpoint:process.env.AWS_ENDPOINT_URL_IAM||n}}export{T as TIGRIS_CLAIMS_NAMESPACE,p as getAuth0Config,E as getTigrisConfig};
+import{a,b,c}from"../chunk-NYAHHQ3A.js";import"../chunk-4BZ377KV.js";export{b as TIGRIS_CLAIMS_NAMESPACE,a as getAuth0Config,c as getTigrisConfig};

package/dist/auth/s3-client.js

@@ -1 +1 @@
-import{S3Client as u}from"@aws-sdk/client-s3";import{fromIni as b}from"@aws-sdk/credential-providers";import{homedir as D}from"os";import{join as p}from"path";import{readFileSync as W,writeFileSync as j,existsSync as m,mkdirSync as q}from"fs";import{loadSharedConfigFiles as H}from"@smithy/shared-ini-file-loader";import{chmod as J}from"fs/promises";var c="https://t3.storage.dev",w="https://iam.storageapi.dev";var S=p(D(),".tigris"),T=p(S,"config.json");function Y(){m(S)||q(S,{recursive:!0,mode:448})}function d(){if(m(T))try{let t=W(T,"utf8");return JSON.parse(t)}catch{return{}}return{}}async function h(t){Y(),j(T,JSON.stringify(t,null,2),{mode:384});try{await J(T,384)}catch{}}async function E(t){let e=d();e.tokens=t,await h(e)}async function f(){return d().tokens||null}async function k(){let t=d();delete t.tokens,await h(t)}async function R(t){let e=d();e.organizations=t,await h(e)}function z(){return d().organizations||[]}function C(){return d().selectedOrganization||null}function y(){if(process.env.TIGRIS_STORAGE_ACCESS_KEY_ID||process.env.TIGRIS_STORAGE_SECRET_ACCESS_KEY){let i=process.env.TIGRIS_STORAGE_ACCESS_KEY_ID,o=process.env.TIGRIS_STORAGE_SECRET_ACCESS_KEY;if(!i||!o)return null;let r=process.env.TIGRIS_STORAGE_ENDPOINT||c;return{accessKeyId:i,secretAccessKey:o,endpoint:r}}let t=process.env.AWS_ACCESS_KEY_ID,e=process.env.AWS_SECRET_ACCESS_KEY;if(!t||!e)return null;let n=process.env.AWS_ENDPOINT_URL_S3||c;return{accessKeyId:t,secretAccessKey:e,endpoint:n}}function _(){if(!process.env.AWS_PROFILE)return!1;let t=p(D(),".aws");return m(p(t,"credentials"))||m(p(t,"config"))}async function v(t){try{let{configFile:e}=await H(),n=e[t];return n?{endpoint:n.endpoint_url_s3||n.endpoint_url,iamEndpoint:n.endpoint_url_iam,region:n.region}:{}}catch{return{}}}function l(){let t=d();return t.temporaryCredentials||t.credentials||null}async function M(t){let e=d();e.loginMethod=t,await h(e)}function G(){return d().loginMethod||null}import I from"axios";import B from"open";function A(){let t=process.env.TIGRIS_ENV==="development",e=process.env.AUTH0_DOMAIN||t?"auth-dev.tigris.dev":"auth.tigris.dev",n=process.env.AUTH0_CLIENT_ID||t?"JdJVYIyw0O1uHi5L5OJH903qaWBgd3gF":"DMejqeM3CQ4IqTjEcd3oA9eEiT40hn8D",i=process.env.AUTH0_AUDIENCE||t?"https://tigris-api-dev":"https://tigris-os-api";return{domain:e,clientId:n,audience:i}}var L=process.env.TIGRIS_CLAIMS_NAMESPACE||"https://tigris";function F(){return process.env.TIGRIS_STORAGE_ENDPOINT||process.env.TIGRIS_IAM_ENDPOINT?{endpoint:process.env.TIGRIS_STORAGE_ENDPOINT||c,iamEndpoint:process.env.TIGRIS_IAM_ENDPOINT||w}:{endpoint:process.env.AWS_ENDPOINT_URL_S3||c,iamEndpoint:process.env.AWS_ENDPOINT_URL_IAM||w}}var P=class{config;baseUrl;constructor(){this.config=A(),this.baseUrl=`https://${this.config.domain}`}async login(e){let i=(await I.post(`${this.baseUrl}/oauth/device/code`,{client_id:this.config.clientId,audience:this.config.audience,scope:"openid profile email offline_access"},{headers:{"Content-Type":"application/x-www-form-urlencoded"}})).data;e?.onDeviceCode?.(i.user_code,i.verification_uri),await this.sleep(2e3);try{await B(i.verification_uri_complete)}catch{}e?.onWaiting?.();let o=await this.pollForToken(i.device_code,i.interval||5);await E(o),M("oauth"),await this.extractAndStoreOrganizations(o.idToken)}async pollForToken(e,n){let o=0;for(;o<60;){o++;try{let s=(await I.post(`${this.baseUrl}/oauth/token`,{client_id:this.config.clientId,device_code:e,grant_type:"urn:ietf:params:oauth:grant-type:device_code"},{headers:{"Content-Type":"application/x-www-form-urlencoded"}})).data,a=Date.now()+(s.expires_in||3600)*1e3;return{accessToken:s.access_token,refreshToken:s.refresh_token,idToken:s.id_token,expiresAt:a}}catch(r){if(I.isAxiosError(r)&&r.response){let s=r.response.data?.error;if(s==="authorization_pending"){await this.sleep(n*1e3);continue}if(s==="slow_down"){n+=5,await this.sleep(n*1e3);continue}throw new Error(r.response.data?.error_description||"Authentication failed")}throw r}}throw new Error("Authentication timed out. Please try again.")}async getAccessToken(){let e=await f();if(!e)throw new Error('Not authenticated. Please run "tigris login" to authenticate.');let n=300*1e3;return Date.now()+n>=e.expiresAt&&(e=await this.refreshAccessToken(e)),e.accessToken}async refreshAccessToken(e){let n=null;if(e?.refreshToken?n=e:n=await f(),!n)throw new Error('No refresh token available. Please run "tigris login" to re-authenticate.');try{let o=(await I.post(`${this.baseUrl}/oauth/token`,{client_id:this.config.clientId,grant_type:"refresh_token",refresh_token:n.refreshToken,scope:"openid profile email offline_access"},{headers:{"Content-Type":"application/x-www-form-urlencoded"}})).data,r={accessToken:o.access_token,refreshToken:o.refresh_token||n.refreshToken,idToken:o.id_token||n.idToken,expiresAt:Date.now()+(o.expires_in||3600)*1e3};return await E(r),r}catch{throw await k(),new Error('Token refresh failed. Please run "tigris login" to re-authenticate.')}}async getIdTokenClaims(){let e=await f();if(!e||!e.idToken)throw new Error('Not authenticated. Please run "tigris login" to authenticate.');try{let n=e.idToken.split(".")[1],i=Buffer.from(n,"base64").toString("utf8");return JSON.parse(i)}catch{throw new Error("Failed to decode ID token")}}async extractAndStoreOrganizations(e){if(e)try{let n=e.split(".")[1],i=Buffer.from(n,"base64").toString("utf8"),r=JSON.parse(i)[L];if(!r)return;let s=r?.ns?.map(a=>typeof a=="object"&&a!==null?{id:a.id,name:a.name,displayName:a.name}:{id:a,name:a,displayName:a})||[];if(s.length===0)return;R(s)}catch{}}async getOrganizations(){return await this.getAccessToken(),z()}async logout(){await k()}async isAuthenticated(){return await f()!==null}sleep(e){return new Promise(n=>setTimeout(n,e))}},O=null;function x(){return O||(O=new P),O}var g=F(),$=A();async function N(){return G()}async function Ce(){if(_()){let i=process.env.AWS_PROFILE||"default",o=await v(i),r=await b({profile:i})();return{accessKeyId:r.accessKeyId,secretAccessKey:r.secretAccessKey,endpoint:o.endpoint||g.endpoint||c,iamEndpoint:o.iamEndpoint||g.iamEndpoint}}let t=await N();if(t==="oauth"){let o=await x().getAccessToken();if(!C())throw new Error('No organization selected. Please run "tigris orgs select" first.');return{sessionToken:o,accessKeyId:"",secretAccessKey:"",endpoint:g.endpoint,organizationId:C()??void 0,iamEndpoint:g.iamEndpoint,authDomain:$.domain}}if(t==="credentials"){let i=l();if(i)return{accessKeyId:i.accessKeyId,secretAccessKey:i.secretAccessKey,endpoint:i.endpoint}}let e=y();if(e)return{accessKeyId:e.accessKeyId,secretAccessKey:e.secretAccessKey,endpoint:e.endpoint};let n=l();if(n)return{accessKeyId:n.accessKeyId,secretAccessKey:n.secretAccessKey,endpoint:n.endpoint};throw new Error('Not authenticated. Please run "tigris login" or "tigris configure" first.')}async function ye(){if(_()){let i=process.env.AWS_PROFILE||"default",o=await v(i);return new u({region:"auto",endpoint:o.endpoint||g.endpoint||c,credentials:b({profile:i})})}let t=await N();if(t==="oauth"){let o=await x().getAccessToken(),r=C();if(!r)throw new Error('No organization selected. Please run "tigris orgs select" first.');let s=new u({region:"auto",endpoint:g.endpoint,credentials:{sessionToken:o,accessKeyId:"",secretAccessKey:""}});return s.middlewareStack.add(a=>async K=>{let U=K.request;return U.headers["x-Tigris-Namespace"]=r,await a(K)},{name:"x-Tigris-Namespace-Middleware",step:"build",override:!0}),s}if(t==="credentials"){let i=l();if(i)return new u({region:"auto",endpoint:i.endpoint,credentials:{accessKeyId:i.accessKeyId,secretAccessKey:i.secretAccessKey}})}let e=y();if(e)return new u({region:"auto",endpoint:e.endpoint,credentials:{accessKeyId:e.accessKeyId,secretAccessKey:e.secretAccessKey}});let n=l();if(n)return new u({region:"auto",endpoint:n.endpoint,credentials:{accessKeyId:n.accessKeyId,secretAccessKey:n.secretAccessKey}});throw new Error('Not authenticated. Please run "tigris login" or "tigris configure" first.')}async function _e(){return _()||await N()!==null||y()!==null||l()!==null}export{N as getLoginMethod,ye as getS3Client,Ce as getStorageConfig,_e as isAuthenticated};
+import{a,b,c,d}from"../chunk-TQWT7ROJ.js";import"../chunk-WE6NZ2ZK.js";import"../chunk-NYAHHQ3A.js";import"../chunk-PKWQDQLT.js";import"../chunk-4BZ377KV.js";export{a as getLoginMethod,c as getS3Client,b as getStorageConfig,d as isAuthenticated};

package/dist/auth/storage.js

@@ -1 +1 @@
-import{homedir as d}from"os";import{join as r}from"path";import{readFileSync as p,writeFileSync as C,existsSync as s,mkdirSync as S}from"fs";import{loadSharedConfigFiles as m}from"@smithy/shared-ini-file-loader";import{chmod as _}from"fs/promises";var a="https://t3.storage.dev";var l=r(d(),".tigris"),c=r(l,"config.json");function E(){s(l)||S(l,{recursive:!0,mode:448})}function o(){if(s(c))try{let n=p(c,"utf8");return JSON.parse(n)}catch{return{}}return{}}async function t(n){E(),C(c,JSON.stringify(n,null,2),{mode:384});try{await _(c,384)}catch{}}async function w(n){let e=o();e.tokens=n,await t(e)}async function R(){return o().tokens||null}async function h(){let n=o();delete n.tokens,await t(n)}async function D(n){let e=o();e.organizations=n,await t(e)}function z(){return o().organizations||[]}async function G(n){let e=o();e.selectedOrganization=n,await t(e)}function N(){return o().selectedOrganization||null}function y(){if(process.env.TIGRIS_STORAGE_ACCESS_KEY_ID||process.env.TIGRIS_STORAGE_SECRET_ACCESS_KEY){let f=process.env.TIGRIS_STORAGE_ACCESS_KEY_ID,g=process.env.TIGRIS_STORAGE_SECRET_ACCESS_KEY;if(!f||!g)return null;let u=process.env.TIGRIS_STORAGE_ENDPOINT||a;return{accessKeyId:f,secretAccessKey:g,endpoint:u}}let n=process.env.AWS_ACCESS_KEY_ID,e=process.env.AWS_SECRET_ACCESS_KEY;if(!n||!e)return null;let i=process.env.AWS_ENDPOINT_URL_S3||a;return{accessKeyId:n,secretAccessKey:e,endpoint:i}}function k(){if(!process.env.AWS_PROFILE)return!1;let n=r(d(),".aws");return s(r(n,"credentials"))||s(r(n,"config"))}async function K(n){try{let{configFile:e}=await m(),i=e[n];return i?{endpoint:i.endpoint_url_s3||i.endpoint_url,iamEndpoint:i.endpoint_url_iam,region:i.region}:{}}catch{return{}}}function F(){let n=o();return y()||n.temporaryCredentials||n.credentials||null}function L(){let n=o();return n.temporaryCredentials||n.credentials||null}function M(){return o().credentials||null}async function Y(n){let e=o();e.credentials=n,await t(e)}async function U(n){let e=o();e.temporaryCredentials=n,await t(e)}async function W(){let n=o();delete n.temporaryCredentials,await t(n)}async function j(){let n=o();delete n.credentials,await t(n)}async function J(n){let e=o();e.loginMethod=n,await t(e)}function b(){return o().loginMethod||null}async function q(){let e=o().credentials;await t({credentials:e})}export{q as clearAllData,j as clearCredentials,W as clearTemporaryCredentials,h as clearTokens,K as getAwsProfileConfig,F as getCredentials,y as getEnvCredentials,b as getLoginMethod,z as getOrganizations,M as getSavedCredentials,N as getSelectedOrganization,L as getStoredCredentials,R as getTokens,k as hasAwsProfile,Y as storeCredentials,J as storeLoginMethod,D as storeOrganizations,G as storeSelectedOrganization,U as storeTemporaryCredentials,w as storeTokens};
+import{a,b,c,d,e,f,g,h,i,j,k,l,m,n,o,p,q,r,s,t}from"../chunk-PKWQDQLT.js";import"../chunk-4BZ377KV.js";export{t as clearAllData,q as clearCredentials,p as clearTemporaryCredentials,c as clearTokens,j as getAwsProfileConfig,k as getCredentials,h as getEnvCredentials,s as getLoginMethod,e as getOrganizations,m as getSavedCredentials,g as getSelectedOrganization,l as getStoredCredentials,b as getTokens,i as hasAwsProfile,n as storeCredentials,r as storeLoginMethod,d as storeOrganizations,f as storeSelectedOrganization,o as storeTemporaryCredentials,a as storeTokens};

package/dist/chunk-4BZ377KV.js

@@ -0,0 +1 @@
+var t="https://t3.storage.dev",e="https://iam.storageapi.dev";export{t as a,e as b};

package/dist/chunk-4LGKN5DA.js

@@ -0,0 +1 @@
+import{readFileSync as p}from"fs";import{join as a,dirname as c}from"path";import{fileURLToPath as m}from"url";import*as o from"yaml";var l=m(import.meta.url),u=c(l),s=null,f=a(u,"specs.yaml");function d(){if(!s){let n=p(f,"utf8");s=o.parse(n,{schema:"core"})}return s}function g(n,e){let r=d().commands.find(t=>t.name===n);return r?e&&r.operations?r.operations.find(t=>t.name===e)||null:r:null}function C(n,e,i){let r=g(n,i);return!r||!r.arguments?null:r.arguments.find(t=>t.name===e)||null}function h(n){return n.options?Array.isArray(n.options)&&typeof n.options[0]=="string"?n.options.map(e=>({name:e,message:e.charAt(0).toUpperCase()+e.slice(1),value:e})):Array.isArray(n.options)&&typeof n.options[0]=="object"?n.options.map(e=>({name:e.value,message:e.description?`${e.name} - ${e.description}`:e.name,value:e.value})):null:null}export{d as a,g as b,C as c,h as d};

package/dist/chunk-A3TXP5Y2.js

@@ -0,0 +1,2 @@
+import{b as u}from"./chunk-4LGKN5DA.js";var a={success:"\u2714",failure:"\u2716",hint:"\u2192"};function r(){return process.stdout.isTTY===!0}function t(n){let s=u(n.command,n.operation);if(s)return s.messages}function o(n,s){let e=n;return e=e.replace(/\\n/g,`
+`),s&&(e=e.replace(/\{\{(\w+)\}\}/g,(i,c)=>{let g=s[c];return g!==void 0?String(g):`{{${c}}}`})),e}function l(n,s){if(!r())return;let e=t(n);e?.onStart&&console.log(o(e.onStart,s))}function f(n,s){if(!r())return;let e=t(n);e?.onSuccess&&console.log(`${a.success} ${o(e.onSuccess,s)}`)}function m(n,s,e){let i=t(n);i?.onFailure&&console.error(`${a.failure} ${o(i.onFailure,e)}`),s&&console.error(`  ${s}`)}function d(n,s){if(!r())return;let e=t(n);e?.onEmpty&&console.log(o(e.onEmpty,s))}function M(n,s){if(!r())return;let e=t(n);e?.onAlreadyDone&&console.log(o(e.onAlreadyDone,s))}function x(n,s){if(!r())return;let e=t(n);e?.hint&&console.log(`${a.hint} ${o(e.hint,s)}`)}function C(n,s){return{command:n,operation:s}}export{l as a,f as b,m as c,d,M as e,x as f,C as g};

package/dist/chunk-DYTBLGO7.js

@@ -0,0 +1 @@
+import{a as u,b as o,c as m,g}from"./chunk-A3TXP5Y2.js";import{m as i,o as d,r as y}from"./chunk-PKWQDQLT.js";import{a as n}from"./chunk-4BZ377KV.js";import p from"enquirer";var{prompt:S}=p,t=g("login","credentials");async function l(e){u(t);let s=e["access-key"]||e.accessKey||e.key||e.Key||e.accesskey,c=e["access-secret"]||e.accessSecret||e.secret||e.Secret||e.accesssecret;if(!s||!c){let r=[];s||r.push({type:"input",name:"accessKey",message:"Access Key ID:",required:!0}),c||r.push({type:"password",name:"accessSecret",message:"Secret Access Key:",required:!0});let a=await S(r);s=s||a.accessKey,c=c||a.accessSecret}(!s||!c)&&(m(t,"Access key and secret are required"),process.exit(1));let f=i()?.endpoint||n;await d({accessKeyId:s,secretAccessKey:c,endpoint:f}),await y("credentials"),o(t)}export{l as a};

package/dist/chunk-HGIJOGCZ.js

@@ -0,0 +1,6 @@
+function k(n){if(n===0)return"0 B";let e=["B","KB","MB","GB","TB"],t=Math.floor(Math.log(n)/Math.log(1024));return`${(n/Math.pow(1024,t)).toFixed(t>0?1:0)} ${e[t]}`}function l(n){return JSON.stringify(n,null,2)}function m(n){return String(n).replace(/&/g,"&amp;").replace(/</g,"&lt;").replace(/>/g,"&gt;").replace(/"/g,"&quot;").replace(/'/g,"&apos;")}function w(n,e="    "){return Object.entries(n).map(([t,r])=>`${e}<${t}>${m(r)}</${t}>`).join(`
+`)}function T(n,e,t){let r=[`<${e}>`];return n.forEach(i=>{r.push(`  <${t}>`),r.push(w(i,"    ")),r.push(`  </${t}>`)}),r.push(`</${e}>`),r.join(`
+`)}function f(n){if(n==null)return"";if(n instanceof Date)return h(n);if(typeof n=="string"){let e=new Date(n);if(!isNaN(e.getTime())&&n.includes("T"))return h(e)}return String(n)}function h(n){return new Intl.DateTimeFormat(void 0,{year:"numeric",month:"short",day:"numeric",hour:"2-digit",minute:"2-digit"}).format(n)}function x(n,e){return e.map(t=>{if(t.width)return t.width;let r=t.header.length,i=n.reduce((a,u)=>{let s=f(u[t.key]);return Math.max(a,s.length)},0);return Math.max(r,i)})}function j(n,e){let t=[],r=x(n,e),i="\u250C"+r.map(o=>"\u2500".repeat(o+2)).join("\u252C")+"\u2510",a="\u251C"+r.map(o=>"\u2500".repeat(o+2)).join("\u253C")+"\u2524",u="\u2514"+r.map(o=>"\u2500".repeat(o+2)).join("\u2534")+"\u2518";t.push(`
+`+i);let s="\u2502 "+e.map((o,c)=>o.header.padEnd(r[c])).join(" \u2502 ")+" \u2502";return t.push(s),t.push(a),n.forEach(o=>{let c=e.map((g,d)=>{let p=f(o[g.key]);return g.align==="right"?p.padStart(r[d]):p.padEnd(r[d])});t.push("\u2502 "+c.join(" \u2502 ")+" \u2502")}),t.push(u+`
+`),t.join(`
+`)}function $(n,e,t,r,i){switch(e){case"json":return l(n);case"xml":return T(n,t,r);default:return j(n,i)}}export{k as a,l as b,w as c,T as d,j as e,$ as f};

package/dist/chunk-I3FOSZPG.js

@@ -0,0 +1 @@
+import{list as g}from"@tigrisdata/storage";function a(i){let t=i.split("/");return{bucket:t[0],path:t.slice(1).join("/")}}async function p(i,t,s){let{data:e}=await g({prefix:`${t}/`,limit:1,config:{...s,bucket:i}});return!!(e?.items&&e.items.length>0)}function f(i,t){return{source:a(i),destination:a(t)}}async function d(i,t,s){let e=[],n;do{let{data:r,error:o}=await g({prefix:t,paginationToken:n,config:{...s,bucket:i}});if(o)return{items:e,error:o};r?.items&&e.push(...r.items),n=r?.hasMore?r.paginationToken:void 0}while(n);return{items:e}}export{a,p as b,f as c,d};

package/dist/chunk-IACJQZUD.js

@@ -0,0 +1,4 @@
+import{a as s,b as e,c,e as g,f as l,g as u}from"./chunk-A3TXP5Y2.js";import{b as a}from"./chunk-WE6NZ2ZK.js";import{f as r}from"./chunk-PKWQDQLT.js";var t=u("login","oauth");async function f(){s(t);try{let n=a();if(await n.isAuthenticated()){g(t);return}await n.login({onDeviceCode:(o,p)=>{console.log(`
+Your confirmation code: ${o}
+`),console.log(`If browser doesn't open, visit: ${p}`)},onWaiting:()=>console.log(`
+Waiting for authentication...`)});let i=await n.getOrganizations();if(i.length>0){let o=i[0];await r(o.id),e(t,{org:o.displayName||o.name}),i.length>1&&l(t,{count:i.length})}else e(t,{org:"none"})}catch{c(t),process.exit(1)}}var A=f;export{f as a,A as b};

package/dist/chunk-IY46B353.js

@@ -0,0 +1,12 @@
+import{a as b}from"./chunk-4LGKN5DA.js";import{Command as E}from"commander";import{existsSync as k}from"fs";import{join as f,dirname as q}from"path";import{fileURLToPath as R}from"url";var w="2.6.1";process.on("unhandledRejection",e=>{(e===""||e===void 0)&&(console.error(`
+Operation cancelled`),process.exit(1)),console.error(`
+Error:`,e instanceof Error?e.message:e),process.exit(1)});process.on("uncaughtException",e=>{console.error(`
+Error:`,e.message),process.exit(1)});var P=R(import.meta.url),d=q(P),l=b();function y(e,t){return(t?[f(d,"lib",e,`${t}.js`),f(d,"lib",e,t,"index.js")]:[f(d,"lib",`${e}.js`),f(d,"lib",e,"index.js")]).some(s=>k(s))}function C(e){let t;e.type==="positional"?t=`  ${e.name}`:(t=`  --${e.name}`,e.alias&&e.alias.length===1&&(t+=`, -${e.alias}`));let n=26,s=t.length>=n?t+"  ":t.padEnd(n),i=e.description;return e.options&&(Array.isArray(e.options)&&typeof e.options[0]=="string"?i+=` (options: ${e.options.join(", ")})`:i+=` (options: ${e.options.map(o=>o.value).join(", ")})`),e.default&&(i+=` [default: ${e.default}]`),e.required&&(i+=" [required]"),e["required-when"]&&(i+=` [required when: ${e["required-when"]}]`),e.multiple&&(i+=" [multiple values: comma-separated]"),e.type==="positional"&&(i+=" [positional argument]"),e.examples&&e.examples.length>0&&(i+=` (examples: ${e.examples.join(", ")})`),`${s}${i}`}function v(e){if(console.log(`
+${l.name} ${e.name} - ${e.description}
+`),e.operations&&e.operations.length>0){let t=e.operations.filter(n=>y(e.name,n.name));t.length>0&&(console.log("Operations:"),t.forEach(n=>{let s=`  ${n.name}`;if(n.alias){let o=Array.isArray(n.alias)?n.alias:[n.alias];s+=` (${o.join(", ")})`}let i=s.padEnd(24);console.log(`${i}${n.description}`)}),console.log())}e.arguments&&e.arguments.length>0&&(console.log("Arguments:"),e.arguments.forEach(t=>{console.log(C(t))}),console.log()),console.log(`Use "${l.name} ${e.name} <operation> help" for more information about an operation.`)}function D(e,t){console.log(`
+${l.name} ${e.name} ${t.name} - ${t.description}
+`),t.arguments&&t.arguments.length>0&&(console.log("Arguments:"),t.arguments.forEach(n=>{console.log(C(n))}),console.log())}function V(e){return y(e.name)?!0:e.operations?e.operations.some(t=>y(e.name,t.name)):!1}function x(){console.log(`Tigris CLI Version: ${w}
+`),console.log(`Usage: tigris [command] [options]
+`),console.log("Commands:"),l.commands.filter(V).forEach(t=>{let n=`  ${t.name}`;t.alias&&(n+=` (${t.alias})`);let s=n.padEnd(24);console.log(`${s}${t.description}`)}),console.log(`
+Use "${l.name} <command> help" for more information about a command.`)}function m(e,t=[]){t.forEach(n=>{if(n.type==="positional"){let s=n.required?`<${n.name}>`:`[${n.name}]`;e.argument(s,n.description)}else{let i=n.alias&&n.alias.length===1?`-${n.alias}, --${n.name}`:`--${n.name}`;n.type==="flag"||(n.type==="boolean"?i+=" [value]":n.options?i+=" <value>":i+=n.required||n["required-when"]?" <value>":" [value]"),e.option(i,n.description,n.default)}})}function g(e,t){for(let n of e){if(n["required-when"]){let[s,i]=n["required-when"].split("="),o=h(t,s,e),r=h(t,n.name,e);if(o===i&&!r)return console.error(`--${n.name} is required when --${s} is ${i}`),!1}if(n.required&&!h(t,n.name,e))return console.error(`--${n.name} is required`),!1}return!0}function h(e,t,n){if(n){let i=n.find(o=>o.name===t);if(i&&i.alias){let o=i.alias.charAt(0).toUpperCase()+i.alias.slice(1);if(e[o]!==void 0)return e[o]}}let s=[t,t.replace(/-/g,""),t.replace(/-/g,"").toLowerCase(),t.charAt(0).toUpperCase(),U(t)];for(let i of s)if(e[i]!==void 0)return e[i]}function U(e){return e.replace(/-([a-z])/g,(t,n)=>n.toUpperCase())}async function T(e,t){let n=t?[`./lib/${e}/${t}.js`,`./lib/${e}/${t}/index.js`]:[`./lib/${e}.js`,`./lib/${e}/index.js`];for(let i of n){let o=await import(i).catch(()=>null);if(o)return{module:o,error:null}}return{module:null,error:`Command not found: ${t?`${e} ${t}`:e}`}}async function $(e,t,n=[],s={},i){if(i){let A=i.replace(/\\n/g,`
+`);console.log(A)}let{module:o,error:r}=await T(e,t);(r||!o)&&(console.error(r),process.exit(1));let a=t||e,p=o.default||o[a];typeof p!="function"&&(console.error(`Command not implemented: ${a}`),process.exit(1)),await p({...s,_positional:n})}var u=new E;u.name(l.name).description(l.description).version(l.version);function c(e,t,n){let s;"optsWithGlobals"in n&&typeof n.optsWithGlobals=="function"?s=n.optsWithGlobals():"opts"in n&&typeof n.opts=="function"?s=n.opts():s=n;let i={...s};return e.filter(r=>r.type==="positional").forEach((r,a)=>{t[a]!==void 0&&(r.multiple?i[r.name]=t[a].split(",").map(p=>p.trim()):i[r.name]=t[a])}),e.forEach(r=>{r.multiple&&r.type!=="positional"&&i[r.name]&&typeof i[r.name]=="string"&&(i[r.name]=i[r.name].split(",").map(a=>a.trim()))}),i}l.commands.forEach(e=>{let t=u.command(e.name).description(e.description);if(e.alias&&t.alias(e.alias),e.operations&&e.operations.length>0)if(e.operations.forEach(n=>{let s=t.command(n.name).description(n.description);n.alias&&(Array.isArray(n.alias)?n.alias:[n.alias]).forEach(o=>s.alias(o)),m(s,n.arguments),s.action(async(...i)=>{let o=i.pop(),r=i;n.arguments&&!g(n.arguments,c(n.arguments,r,o))||await $(e.name,n.name,r,c(n.arguments||[],r,o),n.message)}),s.command("help").description("Show help for this operation").action(()=>{D(e,n)})}),e.default){let n=e.operations?.find(s=>s.name===e.default);if(n){m(t,e.arguments),m(t,n.arguments);let s=[...e.arguments||[],...n.arguments||[]];t.action(async(...i)=>{let o=i.pop(),r=i;s.length>0&&!g(s,c(s,r,o))||await $(e.name,n.name,r,c(s,r,o),e.message||n.message)})}}else t.action(()=>{v(e)});else m(t,e.arguments),t.action(async(...n)=>{let s=n.pop(),i=n;e.arguments&&!g(e.arguments,c(e.arguments,i,s))||await $(e.name,void 0,i,c(e.arguments||[],i,s),e.message)});t.command("help").description("Show help for this command").action(()=>{v(e)})});u.command("help").description("Show general help").action(()=>{x()});u.action(()=>{x()});u.parse();

package/dist/chunk-JRALYIRA.js

@@ -0,0 +1 @@
+function t(n,r,o){for(let e of r)if(n[e]!==void 0)return n[e];return o}function f(n){if(n!==void 0)return typeof n=="boolean"?n:n==="true"}export{t as a,f as b};

package/dist/chunk-NYAHHQ3A.js

@@ -0,0 +1 @@
+import{a as n,b as i}from"./chunk-4BZ377KV.js";function I(){let e=process.env.TIGRIS_ENV==="development",t=e?"auth-dev.tigris.dev":process.env.AUTH0_DOMAIN??"auth.tigris.dev",s=e?"JdJVYIyw0O1uHi5L5OJH903qaWBgd3gF":process.env.AUTH0_CLIENT_ID??"DMejqeM3CQ4IqTjEcd3oA9eEiT40hn8D",o=e?"https://tigris-api-dev":process.env.AUTH0_AUDIENCE??"https://tigris-os-api";return{domain:t,clientId:s,audience:o}}var p=process.env.TIGRIS_CLAIMS_NAMESPACE||"https://tigris";function T(){return process.env.TIGRIS_STORAGE_ENDPOINT||process.env.TIGRIS_IAM_ENDPOINT?{endpoint:process.env.TIGRIS_STORAGE_ENDPOINT||n,iamEndpoint:process.env.TIGRIS_IAM_ENDPOINT||i}:{endpoint:process.env.AWS_ENDPOINT_URL_S3||n,iamEndpoint:process.env.AWS_ENDPOINT_URL_IAM||i}}export{I as a,p as b,T as c};

package/dist/chunk-PKWQDQLT.js

@@ -0,0 +1 @@
+import{a as l}from"./chunk-4BZ377KV.js";import{homedir as d,platform as C}from"os";import{join as r}from"path";import{readFileSync as m,writeFileSync as S,existsSync as c,mkdirSync as y,chmodSync as _}from"fs";import{execFileSync as E}from"child_process";import{loadSharedConfigFiles as I}from"@smithy/shared-ini-file-loader";var s=r(d(),".tigris"),a=r(s,"config.json");function u(n,e){if(C()==="win32")try{let i=process.env.USERNAME;i&&E("icacls",[n,"/inheritance:r","/grant:r",`${i}:F`],{stdio:"ignore"})}catch{console.warn(`Warning: Could not set restrictive permissions on ${n}. It may be accessible to other users.`)}else try{_(n,e)}catch{console.warn(`Warning: Could not set restrictive permissions on ${n}. It may be accessible to other users.`)}}function T(){c(s)||(y(s,{recursive:!0,mode:448}),u(s,448))}function o(){if(c(a))try{let n=m(a,"utf8");return JSON.parse(n)}catch{return{}}return{}}async function t(n){T(),S(a,JSON.stringify(n,null,2),{mode:384}),u(a,384)}async function h(n){let e=o();e.tokens=n,await t(e)}async function z(){return o().tokens||null}async function G(){let n=o();delete n.tokens,await t(n)}async function k(n){let e=o();e.organizations=n,await t(e)}function K(){return o().organizations||[]}async function D(n){let e=o();e.selectedOrganization=n,await t(e)}function F(){return o().selectedOrganization||null}function v(){if(process.env.TIGRIS_STORAGE_ACCESS_KEY_ID||process.env.TIGRIS_STORAGE_SECRET_ACCESS_KEY){let f=process.env.TIGRIS_STORAGE_ACCESS_KEY_ID,g=process.env.TIGRIS_STORAGE_SECRET_ACCESS_KEY;if(!f||!g)return null;let p=process.env.TIGRIS_STORAGE_ENDPOINT||l;return{accessKeyId:f,secretAccessKey:g,endpoint:p}}let n=process.env.AWS_ACCESS_KEY_ID,e=process.env.AWS_SECRET_ACCESS_KEY;if(!n||!e)return null;let i=process.env.AWS_ENDPOINT_URL_S3||l;return{accessKeyId:n,secretAccessKey:e,endpoint:i}}function N(){if(!process.env.AWS_PROFILE)return!1;let n=r(d(),".aws");return c(r(n,"credentials"))||c(r(n,"config"))}async function b(n){try{let{configFile:e}=await I(),i=e[n];return i?{endpoint:i.endpoint_url_s3||i.endpoint_url,iamEndpoint:i.endpoint_url_iam,region:i.region}:{}}catch{return{}}}function L(){let n=o();return v()||n.temporaryCredentials||n.credentials||null}function M(){let n=o();return n.temporaryCredentials||n.credentials||null}function W(){return o().credentials||null}async function Y(n){let e=o();e.credentials=n,await t(e)}async function j(n){let e=o();e.temporaryCredentials=n,await t(e)}async function U(){let n=o();delete n.temporaryCredentials,await t(n)}async function $(){let n=o();delete n.credentials,await t(n)}async function J(n){let e=o();e.loginMethod=n,await t(e)}function q(){return o().loginMethod||null}async function B(){let e=o().credentials;await t({credentials:e})}export{h as a,z as b,G as c,k as d,K as e,D as f,F as g,v as h,N as i,b as j,L as k,M as l,W as m,Y as n,j as o,U as p,$ as q,J as r,q as s,B as t};

package/dist/chunk-TQWT7ROJ.js

@@ -0,0 +1 @@
+import{b as f}from"./chunk-WE6NZ2ZK.js";import{a as A,c as w}from"./chunk-NYAHHQ3A.js";import{g as d,h as g,i as l,j as p,l as o,s as h}from"./chunk-PKWQDQLT.js";import{a as u}from"./chunk-4BZ377KV.js";import{S3Client as a}from"@aws-sdk/client-s3";import{fromIni as C}from"@aws-sdk/credential-providers";var r=w(),T=A();async function y(){return h()}async function O(){if(l()){let e=process.env.AWS_PROFILE||"default",s=await p(e),i=await C({profile:e})();return{accessKeyId:i.accessKeyId,secretAccessKey:i.secretAccessKey,endpoint:s.endpoint||r.endpoint||u,iamEndpoint:s.iamEndpoint||r.iamEndpoint}}let c=await y();if(c==="oauth"){let s=await f().getAccessToken();if(!d())throw new Error('No organization selected. Please run "tigris orgs select" first.');return{sessionToken:s,accessKeyId:"",secretAccessKey:"",endpoint:r.endpoint,organizationId:d()??void 0,iamEndpoint:r.iamEndpoint,authDomain:T.domain}}if(c==="credentials"){let e=o();if(e)return{accessKeyId:e.accessKeyId,secretAccessKey:e.secretAccessKey,endpoint:e.endpoint}}let t=g();if(t)return{accessKeyId:t.accessKeyId,secretAccessKey:t.secretAccessKey,endpoint:t.endpoint};let n=o();if(n)return{accessKeyId:n.accessKeyId,secretAccessKey:n.secretAccessKey,endpoint:n.endpoint};throw new Error('Not authenticated. Please run "tigris login" or "tigris configure" first.')}async function v(){if(l()){let e=process.env.AWS_PROFILE||"default",s=await p(e);return new a({region:"auto",endpoint:s.endpoint||r.endpoint||u,credentials:C({profile:e})})}let c=await y();if(c==="oauth"){let s=await f().getAccessToken(),i=d();if(!i)throw new Error('No organization selected. Please run "tigris orgs select" first.');let K=new a({region:"auto",endpoint:r.endpoint,credentials:{sessionToken:s,accessKeyId:"",secretAccessKey:""}});return K.middlewareStack.add(I=>async m=>{let E=m.request;return E.headers["x-Tigris-Namespace"]=i,await I(m)},{name:"x-Tigris-Namespace-Middleware",step:"build",override:!0}),K}if(c==="credentials"){let e=o();if(e)return new a({region:"auto",endpoint:e.endpoint,credentials:{accessKeyId:e.accessKeyId,secretAccessKey:e.secretAccessKey}})}let t=g();if(t)return new a({region:"auto",endpoint:t.endpoint,credentials:{accessKeyId:t.accessKeyId,secretAccessKey:t.secretAccessKey}});let n=o();if(n)return new a({region:"auto",endpoint:n.endpoint,credentials:{accessKeyId:n.accessKeyId,secretAccessKey:n.secretAccessKey}});throw new Error('Not authenticated. Please run "tigris login" or "tigris configure" first.')}async function z(){return l()||await y()!==null||g()!==null||o()!==null}export{y as a,O as b,v as c,z as d};

package/dist/chunk-WE6NZ2ZK.js

@@ -0,0 +1 @@
+import{a as g,b as k}from"./chunk-NYAHHQ3A.js";import{a as c,b as s,c as l,d as p,e as u,r as h}from"./chunk-PKWQDQLT.js";import a from"axios";import w from"open";import{createRemoteJWKSet as T,jwtVerify as y}from"jose";var f=class{config;baseUrl;jwks=null;constructor(){this.config=g(),this.baseUrl=`https://${this.config.domain}`}getJWKS(){return this.jwks||(this.jwks=T(new URL(`${this.baseUrl}/.well-known/jwks.json`))),this.jwks}async verifyIdToken(e){let{payload:t}=await y(e,this.getJWKS(),{issuer:`${this.baseUrl}/`,audience:this.config.clientId});return t}async login(e){let o=(await a.post(`${this.baseUrl}/oauth/device/code`,{client_id:this.config.clientId,audience:this.config.audience,scope:"openid profile email offline_access"},{headers:{"Content-Type":"application/x-www-form-urlencoded"}})).data;e?.onDeviceCode?.(o.user_code,o.verification_uri),await this.sleep(2e3);try{await w(o.verification_uri_complete)}catch{}e?.onWaiting?.();let n=await this.pollForToken(o.device_code,o.interval||5);await c(n),h("oauth"),await this.extractAndStoreOrganizations(n.idToken)}async pollForToken(e,t){let n=0;for(;n<60;){n++;try{let r=(await a.post(`${this.baseUrl}/oauth/token`,{client_id:this.config.clientId,device_code:e,grant_type:"urn:ietf:params:oauth:grant-type:device_code"},{headers:{"Content-Type":"application/x-www-form-urlencoded"}})).data;if(!r.id_token)throw new Error("No ID token found. Please try again.");if((await this.verifyIdToken(r.id_token)).email_verified===!1)throw console.log("Email not verified. Please verify your email and try again."),new Error("Email not verified. Please verify your email and try again.");let m=Date.now()+(r.expires_in||3600)*1e3;return{accessToken:r.access_token,refreshToken:r.refresh_token,idToken:r.id_token,expiresAt:m}}catch(i){if(a.isAxiosError(i)&&i.response){let r=i.response.data?.error;if(r==="authorization_pending"){await this.sleep(t*1e3);continue}if(r==="slow_down"){t+=5,await this.sleep(t*1e3);continue}throw new Error(i.response.data?.error_description||"Authentication failed")}throw i}}throw new Error("Authentication timed out. Please try again.")}async getAccessToken(){let e=await s();if(!e)throw new Error('Not authenticated. Please run "tigris login" to authenticate.');let t=300*1e3;return Date.now()+t>=e.expiresAt&&(e=await this.refreshAccessToken(e)),e.accessToken}async refreshAccessToken(e){let t=null;if(e?.refreshToken?t=e:t=await s(),!t)throw new Error('No refresh token available. Please run "tigris login" to re-authenticate.');try{let n=(await a.post(`${this.baseUrl}/oauth/token`,{client_id:this.config.clientId,grant_type:"refresh_token",refresh_token:t.refreshToken,scope:"openid profile email offline_access"},{headers:{"Content-Type":"application/x-www-form-urlencoded"}})).data,i={accessToken:n.access_token,refreshToken:n.refresh_token||t.refreshToken,idToken:n.id_token||t.idToken,expiresAt:Date.now()+(n.expires_in||3600)*1e3};return await c(i),i}catch{throw await l(),new Error('Token refresh failed. Please run "tigris login" to re-authenticate.')}}async getIdTokenClaims(){let e=await s();if(!e||!e.idToken)throw new Error('Not authenticated. Please run "tigris login" to authenticate.');try{return await this.verifyIdToken(e.idToken)}catch{throw new Error('ID token verification failed. Please run "tigris login" to re-authenticate.')}}async extractAndStoreOrganizations(e){if(e)try{let o=(await this.verifyIdToken(e))[k];if(!o)return;let n=o?.ns?.map(i=>typeof i=="object"&&i!==null?{id:i.id,name:i.name,displayName:i.name}:{id:i,name:i,displayName:i})||[];if(n.length===0)return;p(n)}catch{}}async getOrganizations(){return await this.getAccessToken(),u()}async logout(){await l()}async isAuthenticated(){return await s()!==null}sleep(e){return new Promise(t=>setTimeout(t,e))}},d=null;function S(){return d||(d=new f),d}export{f as a,S as b};

package/dist/cli.js

@@ -1,13 +1,2 @@
 #!/usr/bin/env node
-import{Command as E}from"commander";import{readFileSync as k,existsSync as q}from"fs";import{join as u,dirname as R}from"path";import{fileURLToPath as P}from"url";import*as C from"yaml";var b="2.6.0";process.on("unhandledRejection",e=>{(e===""||e===void 0)&&(console.error(`
-Operation cancelled`),process.exit(1)),console.error(`
-Error:`,e instanceof Error?e.message:e),process.exit(1)});process.on("uncaughtException",e=>{console.error(`
-Error:`,e.message),process.exit(1)});var D=P(import.meta.url),p=R(D),V=u(p,"specs.yaml"),M=k(V,"utf8"),l=C.parse(M);function y(e,t){return(t?[u(p,"lib",e,`${t}.js`),u(p,"lib",e,t,"index.js")]:[u(p,"lib",`${e}.js`),u(p,"lib",e,"index.js")]).some(i=>q(i))}function v(e){let t;e.type==="positional"?t=`  ${e.name}`:(t=`  --${e.name}`,e.alias&&e.alias.length===1&&(t+=`, -${e.alias}`));let n=26,i=t.length>=n?t+"  ":t.padEnd(n),s=e.description;return e.options&&(Array.isArray(e.options)&&typeof e.options[0]=="string"?s+=` (options: ${e.options.join(", ")})`:s+=` (options: ${e.options.map(o=>o.value).join(", ")})`),e.default&&(s+=` [default: ${e.default}]`),e.required&&(s+=" [required]"),e["required-when"]&&(s+=` [required when: ${e["required-when"]}]`),e.multiple&&(s+=" [multiple values: comma-separated]"),e.type==="positional"&&(s+=" [positional argument]"),e.examples&&e.examples.length>0&&(s+=` (examples: ${e.examples.join(", ")})`),`${i}${s}`}function w(e){if(console.log(`
-${l.name} ${e.name} - ${e.description}
-`),e.operations&&e.operations.length>0){let t=e.operations.filter(n=>y(e.name,n.name));t.length>0&&(console.log("Operations:"),t.forEach(n=>{let i=`  ${n.name}`;if(n.alias){let o=Array.isArray(n.alias)?n.alias:[n.alias];i+=` (${o.join(", ")})`}let s=i.padEnd(24);console.log(`${s}${n.description}`)}),console.log())}e.arguments&&e.arguments.length>0&&(console.log("Arguments:"),e.arguments.forEach(t=>{console.log(v(t))}),console.log()),console.log(`Use "${l.name} ${e.name} <operation> help" for more information about an operation.`)}function U(e,t){console.log(`
-${l.name} ${e.name} ${t.name} - ${t.description}
-`),t.arguments&&t.arguments.length>0&&(console.log("Arguments:"),t.arguments.forEach(n=>{console.log(v(n))}),console.log())}function T(e){return y(e.name)?!0:e.operations?e.operations.some(t=>y(e.name,t.name)):!1}function A(){console.log(`Tigris CLI Version: ${b}
-`),console.log(`Usage: tigris [command] [options]
-`),console.log("Commands:"),l.commands.filter(T).forEach(t=>{let n=`  ${t.name}`;t.alias&&(n+=` (${t.alias})`);let i=n.padEnd(24);console.log(`${i}${t.description}`)}),console.log(`
-Use "${l.name} <command> help" for more information about a command.`)}function m(e,t=[]){t.forEach(n=>{if(n.type==="positional"){let i=n.required?`<${n.name}>`:`[${n.name}]`;e.argument(i,n.description)}else{let s=n.alias&&n.alias.length===1?`-${n.alias}, --${n.name}`:`--${n.name}`;n.type==="flag"||(n.type==="boolean"?s+=" [value]":n.options?s+=" <value>":s+=n.required||n["required-when"]?" <value>":" [value]"),e.option(s,n.description,n.default)}})}function g(e,t){for(let n of e){if(n["required-when"]){let[i,s]=n["required-when"].split("="),o=h(t,i,e),r=h(t,n.name,e);if(o===s&&!r)return console.error(`--${n.name} is required when --${i} is ${s}`),!1}if(n.required&&!h(t,n.name,e))return console.error(`--${n.name} is required`),!1}return!0}function h(e,t,n){if(n){let s=n.find(o=>o.name===t);if(s&&s.alias){let o=s.alias.charAt(0).toUpperCase()+s.alias.slice(1);if(e[o]!==void 0)return e[o]}}let i=[t,t.replace(/-/g,""),t.replace(/-/g,"").toLowerCase(),t.charAt(0).toUpperCase(),_(t)];for(let s of i)if(e[s]!==void 0)return e[s]}function _(e){return e.replace(/-([a-z])/g,(t,n)=>n.toUpperCase())}async function H(e,t){let n=t?[`./lib/${e}/${t}.js`,`./lib/${e}/${t}/index.js`]:[`./lib/${e}.js`,`./lib/${e}/index.js`];for(let s of n){let o=await import(s).catch(()=>null);if(o)return{module:o,error:null}}return{module:null,error:`Command not found: ${t?`${e} ${t}`:e}`}}async function $(e,t,n=[],i={},s){if(s){let x=s.replace(/\\n/g,`
-`);console.log(x)}let{module:o,error:r}=await H(e,t);(r||!o)&&(console.error(r),process.exit(1));let a=t||e,d=o.default||o[a];typeof d!="function"&&(console.error(`Command not implemented: ${a}`),process.exit(1)),await d({...i,_positional:n})}var f=new E;f.name(l.name).description(l.description).version(l.version);function c(e,t,n){let i;"optsWithGlobals"in n&&typeof n.optsWithGlobals=="function"?i=n.optsWithGlobals():"opts"in n&&typeof n.opts=="function"?i=n.opts():i=n;let s={...i};return e.filter(r=>r.type==="positional").forEach((r,a)=>{t[a]!==void 0&&(r.multiple?s[r.name]=t[a].split(",").map(d=>d.trim()):s[r.name]=t[a])}),e.forEach(r=>{r.multiple&&r.type!=="positional"&&s[r.name]&&typeof s[r.name]=="string"&&(s[r.name]=s[r.name].split(",").map(a=>a.trim()))}),s}l.commands.forEach(e=>{let t=f.command(e.name).description(e.description);if(e.alias&&t.alias(e.alias),e.operations&&e.operations.length>0)if(e.operations.forEach(n=>{let i=t.command(n.name).description(n.description);n.alias&&(Array.isArray(n.alias)?n.alias:[n.alias]).forEach(o=>i.alias(o)),m(i,n.arguments),i.action(async(...s)=>{let o=s.pop(),r=s;n.arguments&&!g(n.arguments,c(n.arguments,r,o))||await $(e.name,n.name,r,c(n.arguments||[],r,o),n.message)}),i.command("help").description("Show help for this operation").action(()=>{U(e,n)})}),e.default){let n=e.operations?.find(i=>i.name===e.default);if(n){m(t,e.arguments),m(t,n.arguments);let i=[...e.arguments||[],...n.arguments||[]];t.action(async(...s)=>{let o=s.pop(),r=s;i.length>0&&!g(i,c(i,r,o))||await $(e.name,n.name,r,c(i,r,o),e.message||n.message)})}}else t.action(()=>{w(e)});else m(t,e.arguments),t.action(async(...n)=>{let i=n.pop(),s=n;e.arguments&&!g(e.arguments,c(e.arguments,s,i))||await $(e.name,void 0,s,c(e.arguments||[],s,i),e.message)});t.command("help").description("Show help for this command").action(()=>{w(e)})});f.command("help").description("Show general help").action(()=>{A()});f.action(()=>{A()});f.parse();
+import"./chunk-IY46B353.js";import"./chunk-4LGKN5DA.js";

package/dist/constants.js

@@ -1 +1 @@
-var t="https://t3.storage.dev",e="https://iam.storageapi.dev";export{e as DEFAULT_IAM_ENDPOINT,t as DEFAULT_STORAGE_ENDPOINT};
+import{a,b}from"./chunk-4BZ377KV.js";export{b as DEFAULT_IAM_ENDPOINT,a as DEFAULT_STORAGE_ENDPOINT};

package/dist/index.js

@@ -1,12 +1 @@
-import{Command as E}from"commander";import{readFileSync as k,existsSync as q}from"fs";import{join as p,dirname as R}from"path";import{fileURLToPath as P}from"url";import*as C from"yaml";var b="2.6.0";process.on("unhandledRejection",e=>{(e===""||e===void 0)&&(console.error(`
-Operation cancelled`),process.exit(1)),console.error(`
-Error:`,e instanceof Error?e.message:e),process.exit(1)});process.on("uncaughtException",e=>{console.error(`
-Error:`,e.message),process.exit(1)});var D=P(import.meta.url),u=R(D),V=p(u,"specs.yaml"),M=k(V,"utf8"),l=C.parse(M);function y(e,t){return(t?[p(u,"lib",e,`${t}.js`),p(u,"lib",e,t,"index.js")]:[p(u,"lib",`${e}.js`),p(u,"lib",e,"index.js")]).some(i=>q(i))}function v(e){let t;e.type==="positional"?t=`  ${e.name}`:(t=`  --${e.name}`,e.alias&&e.alias.length===1&&(t+=`, -${e.alias}`));let n=26,i=t.length>=n?t+"  ":t.padEnd(n),s=e.description;return e.options&&(Array.isArray(e.options)&&typeof e.options[0]=="string"?s+=` (options: ${e.options.join(", ")})`:s+=` (options: ${e.options.map(o=>o.value).join(", ")})`),e.default&&(s+=` [default: ${e.default}]`),e.required&&(s+=" [required]"),e["required-when"]&&(s+=` [required when: ${e["required-when"]}]`),e.multiple&&(s+=" [multiple values: comma-separated]"),e.type==="positional"&&(s+=" [positional argument]"),e.examples&&e.examples.length>0&&(s+=` (examples: ${e.examples.join(", ")})`),`${i}${s}`}function w(e){if(console.log(`
-${l.name} ${e.name} - ${e.description}
-`),e.operations&&e.operations.length>0){let t=e.operations.filter(n=>y(e.name,n.name));t.length>0&&(console.log("Operations:"),t.forEach(n=>{let i=`  ${n.name}`;if(n.alias){let o=Array.isArray(n.alias)?n.alias:[n.alias];i+=` (${o.join(", ")})`}let s=i.padEnd(24);console.log(`${s}${n.description}`)}),console.log())}e.arguments&&e.arguments.length>0&&(console.log("Arguments:"),e.arguments.forEach(t=>{console.log(v(t))}),console.log()),console.log(`Use "${l.name} ${e.name} <operation> help" for more information about an operation.`)}function U(e,t){console.log(`
-${l.name} ${e.name} ${t.name} - ${t.description}
-`),t.arguments&&t.arguments.length>0&&(console.log("Arguments:"),t.arguments.forEach(n=>{console.log(v(n))}),console.log())}function T(e){return y(e.name)?!0:e.operations?e.operations.some(t=>y(e.name,t.name)):!1}function A(){console.log(`Tigris CLI Version: ${b}
-`),console.log(`Usage: tigris [command] [options]
-`),console.log("Commands:"),l.commands.filter(T).forEach(t=>{let n=`  ${t.name}`;t.alias&&(n+=` (${t.alias})`);let i=n.padEnd(24);console.log(`${i}${t.description}`)}),console.log(`
-Use "${l.name} <command> help" for more information about a command.`)}function m(e,t=[]){t.forEach(n=>{if(n.type==="positional"){let i=n.required?`<${n.name}>`:`[${n.name}]`;e.argument(i,n.description)}else{let s=n.alias&&n.alias.length===1?`-${n.alias}, --${n.name}`:`--${n.name}`;n.type==="flag"||(n.type==="boolean"?s+=" [value]":n.options?s+=" <value>":s+=n.required||n["required-when"]?" <value>":" [value]"),e.option(s,n.description,n.default)}})}function g(e,t){for(let n of e){if(n["required-when"]){let[i,s]=n["required-when"].split("="),o=h(t,i,e),r=h(t,n.name,e);if(o===s&&!r)return console.error(`--${n.name} is required when --${i} is ${s}`),!1}if(n.required&&!h(t,n.name,e))return console.error(`--${n.name} is required`),!1}return!0}function h(e,t,n){if(n){let s=n.find(o=>o.name===t);if(s&&s.alias){let o=s.alias.charAt(0).toUpperCase()+s.alias.slice(1);if(e[o]!==void 0)return e[o]}}let i=[t,t.replace(/-/g,""),t.replace(/-/g,"").toLowerCase(),t.charAt(0).toUpperCase(),_(t)];for(let s of i)if(e[s]!==void 0)return e[s]}function _(e){return e.replace(/-([a-z])/g,(t,n)=>n.toUpperCase())}async function H(e,t){let n=t?[`./lib/${e}/${t}.js`,`./lib/${e}/${t}/index.js`]:[`./lib/${e}.js`,`./lib/${e}/index.js`];for(let s of n){let o=await import(s).catch(()=>null);if(o)return{module:o,error:null}}return{module:null,error:`Command not found: ${t?`${e} ${t}`:e}`}}async function $(e,t,n=[],i={},s){if(s){let x=s.replace(/\\n/g,`
-`);console.log(x)}let{module:o,error:r}=await H(e,t);(r||!o)&&(console.error(r),process.exit(1));let a=t||e,d=o.default||o[a];typeof d!="function"&&(console.error(`Command not implemented: ${a}`),process.exit(1)),await d({...i,_positional:n})}var f=new E;f.name(l.name).description(l.description).version(l.version);function c(e,t,n){let i;"optsWithGlobals"in n&&typeof n.optsWithGlobals=="function"?i=n.optsWithGlobals():"opts"in n&&typeof n.opts=="function"?i=n.opts():i=n;let s={...i};return e.filter(r=>r.type==="positional").forEach((r,a)=>{t[a]!==void 0&&(r.multiple?s[r.name]=t[a].split(",").map(d=>d.trim()):s[r.name]=t[a])}),e.forEach(r=>{r.multiple&&r.type!=="positional"&&s[r.name]&&typeof s[r.name]=="string"&&(s[r.name]=s[r.name].split(",").map(a=>a.trim()))}),s}l.commands.forEach(e=>{let t=f.command(e.name).description(e.description);if(e.alias&&t.alias(e.alias),e.operations&&e.operations.length>0)if(e.operations.forEach(n=>{let i=t.command(n.name).description(n.description);n.alias&&(Array.isArray(n.alias)?n.alias:[n.alias]).forEach(o=>i.alias(o)),m(i,n.arguments),i.action(async(...s)=>{let o=s.pop(),r=s;n.arguments&&!g(n.arguments,c(n.arguments,r,o))||await $(e.name,n.name,r,c(n.arguments||[],r,o),n.message)}),i.command("help").description("Show help for this operation").action(()=>{U(e,n)})}),e.default){let n=e.operations?.find(i=>i.name===e.default);if(n){m(t,e.arguments),m(t,n.arguments);let i=[...e.arguments||[],...n.arguments||[]];t.action(async(...s)=>{let o=s.pop(),r=s;i.length>0&&!g(i,c(i,r,o))||await $(e.name,n.name,r,c(i,r,o),e.message||n.message)})}}else t.action(()=>{w(e)});else m(t,e.arguments),t.action(async(...n)=>{let i=n.pop(),s=n;e.arguments&&!g(e.arguments,c(e.arguments,s,i))||await $(e.name,void 0,s,c(e.arguments||[],s,i),e.message)});t.command("help").description("Show help for this command").action(()=>{w(e)})});f.command("help").description("Show general help").action(()=>{A()});f.action(()=>{A()});f.parse();
+import"./chunk-IY46B353.js";import"./chunk-4LGKN5DA.js";

package/dist/lib/access-keys/assign.js

@@ -1,3 +1,2 @@
-function p(n,e,t){for(let o of e)if(n[o]!==void 0)return n[o];return t}import{S3Client as je}from"@aws-sdk/client-s3";import{fromIni as We}from"@aws-sdk/credential-providers";import{homedir as te}from"os";import{join as b}from"path";import{readFileSync as oe,writeFileSync as ie,existsSync as K,mkdirSync as se}from"fs";import{loadSharedConfigFiles as ve}from"@smithy/shared-ini-file-loader";import{chmod as re}from"fs/promises";var f="https://t3.storage.dev",S="https://iam.storageapi.dev";var _=b(te(),".tigris"),h=b(_,"config.json");function ae(){K(_)||se(_,{recursive:!0,mode:448})}function g(){if(K(h))try{let n=oe(h,"utf8");return JSON.parse(n)}catch{return{}}return{}}async function y(n){ae(),ie(h,JSON.stringify(n,null,2),{mode:384});try{await re(h,384)}catch{}}async function w(n){let e=g();e.tokens=n,await y(e)}async function u(){return g().tokens||null}async function I(){let n=g();delete n.tokens,await y(n)}async function z(n){let e=g();e.organizations=n,await y(e)}function L(){return g().organizations||[]}function k(){return g().selectedOrganization||null}async function G(n){let e=g();e.loginMethod=n,await y(e)}function F(){return g().loginMethod||null}import A from"axios";import ce from"open";function C(){let n=process.env.TIGRIS_ENV==="development",e=process.env.AUTH0_DOMAIN||n?"auth-dev.tigris.dev":"auth.tigris.dev",t=process.env.AUTH0_CLIENT_ID||n?"JdJVYIyw0O1uHi5L5OJH903qaWBgd3gF":"DMejqeM3CQ4IqTjEcd3oA9eEiT40hn8D",o=process.env.AUTH0_AUDIENCE||n?"https://tigris-api-dev":"https://tigris-os-api";return{domain:e,clientId:t,audience:o}}var U=process.env.TIGRIS_CLAIMS_NAMESPACE||"https://tigris";function T(){return process.env.TIGRIS_STORAGE_ENDPOINT||process.env.TIGRIS_IAM_ENDPOINT?{endpoint:process.env.TIGRIS_STORAGE_ENDPOINT||f,iamEndpoint:process.env.TIGRIS_IAM_ENDPOINT||S}:{endpoint:process.env.AWS_ENDPOINT_URL_S3||f,iamEndpoint:process.env.AWS_ENDPOINT_URL_IAM||S}}var v=class{config;baseUrl;constructor(){this.config=C(),this.baseUrl=`https://${this.config.domain}`}async login(e){let o=(await A.post(`${this.baseUrl}/oauth/device/code`,{client_id:this.config.clientId,audience:this.config.audience,scope:"openid profile email offline_access"},{headers:{"Content-Type":"application/x-www-form-urlencoded"}})).data;e?.onDeviceCode?.(o.user_code,o.verification_uri),await this.sleep(2e3);try{await ce(o.verification_uri_complete)}catch{}e?.onWaiting?.();let i=await this.pollForToken(o.device_code,o.interval||5);await w(i),G("oauth"),await this.extractAndStoreOrganizations(i.idToken)}async pollForToken(e,t){let i=0;for(;i<60;){i++;try{let c=(await A.post(`${this.baseUrl}/oauth/token`,{client_id:this.config.clientId,device_code:e,grant_type:"urn:ietf:params:oauth:grant-type:device_code"},{headers:{"Content-Type":"application/x-www-form-urlencoded"}})).data,r=Date.now()+(c.expires_in||3600)*1e3;return{accessToken:c.access_token,refreshToken:c.refresh_token,idToken:c.id_token,expiresAt:r}}catch(s){if(A.isAxiosError(s)&&s.response){let c=s.response.data?.error;if(c==="authorization_pending"){await this.sleep(t*1e3);continue}if(c==="slow_down"){t+=5,await this.sleep(t*1e3);continue}throw new Error(s.response.data?.error_description||"Authentication failed")}throw s}}throw new Error("Authentication timed out. Please try again.")}async getAccessToken(){let e=await u();if(!e)throw new Error('Not authenticated. Please run "tigris login" to authenticate.');let t=300*1e3;return Date.now()+t>=e.expiresAt&&(e=await this.refreshAccessToken(e)),e.accessToken}async refreshAccessToken(e){let t=null;if(e?.refreshToken?t=e:t=await u(),!t)throw new Error('No refresh token available. Please run "tigris login" to re-authenticate.');try{let i=(await A.post(`${this.baseUrl}/oauth/token`,{client_id:this.config.clientId,grant_type:"refresh_token",refresh_token:t.refreshToken,scope:"openid profile email offline_access"},{headers:{"Content-Type":"application/x-www-form-urlencoded"}})).data,s={accessToken:i.access_token,refreshToken:i.refresh_token||t.refreshToken,idToken:i.id_token||t.idToken,expiresAt:Date.now()+(i.expires_in||3600)*1e3};return await w(s),s}catch{throw await I(),new Error('Token refresh failed. Please run "tigris login" to re-authenticate.')}}async getIdTokenClaims(){let e=await u();if(!e||!e.idToken)throw new Error('Not authenticated. Please run "tigris login" to authenticate.');try{let t=e.idToken.split(".")[1],o=Buffer.from(t,"base64").toString("utf8");return JSON.parse(o)}catch{throw new Error("Failed to decode ID token")}}async extractAndStoreOrganizations(e){if(e)try{let t=e.split(".")[1],o=Buffer.from(t,"base64").toString("utf8"),s=JSON.parse(o)[U];if(!s)return;let c=s?.ns?.map(r=>typeof r=="object"&&r!==null?{id:r.id,name:r.name,displayName:r.name}:{id:r,name:r,displayName:r})||[];if(c.length===0)return;z(c)}catch{}}async getOrganizations(){return await this.getAccessToken(),L()}async logout(){await I()}async isAuthenticated(){return await u()!==null}sleep(e){return new Promise(t=>setTimeout(t,e))}},E=null;function x(){return E||(E=new v),E}var Je=T(),Qe=C();async function $(){return F()}import{assignBucketRoles as ye,revokeAllBucketRoles as Ce}from"@tigrisdata/iam";import{readFileSync as de,existsSync as le}from"fs";import{join as j,dirname as ge}from"path";import{fileURLToPath as pe}from"url";import*as V from"yaml";var fe=pe(import.meta.url),ue=ge(fe),O=null;function me(){let n=ue;for(let e=0;e<5;e++){let t=j(n,"specs.yaml");if(le(t))return t;n=j(n,"..")}throw new Error("Could not find specs.yaml")}function he(){if(!O){let n=me(),e=de(n,"utf8");O=V.parse(e)}return O}function W(n,e){let o=he().commands.find(i=>i.name===n);return o?e&&o.operations?o.operations.find(i=>i.name===e)||null:o:null}var Y={success:"\u2714",failure:"\u2716",hint:"\u2192"};function q(){return process.stdout.isTTY===!0}function P(n){let e=W(n.command,n.operation);if(e)return e.messages}function R(n,e){let t=n;return t=t.replace(/\\n/g,`
-`),e&&(t=t.replace(/\{\{(\w+)\}\}/g,(o,i)=>{let s=e[i];return s!==void 0?String(s):`{{${i}}}`})),t}function B(n,e){if(!q())return;let t=P(n);t?.onStart&&console.log(R(t.onStart,e))}function N(n,e){if(!q())return;let t=P(n);t?.onSuccess&&console.log(`${Y.success} ${R(t.onSuccess,e)}`)}function d(n,e,t){let o=P(n);o?.onFailure&&console.error(`${Y.failure} ${R(o.onFailure,t)}`),e&&console.error(`  ${e}`)}function H(n,e){return{command:n,operation:e}}var a=H("access-keys","assign"),J=["Editor","ReadOnly","NamespaceAdmin"];function Q(n){return n?Array.isArray(n)?n:[n]:[]}async function Te(n){B(a);let e=p(n,["id"]),t=p(n,["admin"]),o=p(n,["revokeRoles","revoke-roles"]),i=Q(p(n,["bucket","b"])),s=Q(p(n,["role","r"]));e||(d(a,"Access key ID is required"),process.exit(1)),t&&o&&(d(a,"Cannot use --admin and --revoke-roles together"),process.exit(1)),await $()!=="oauth"&&(d(a,`Bucket roles can only be managed when logged in via OAuth.
-Run "tigris login oauth" first.`),process.exit(1));let r=x();await r.isAuthenticated()||(d(a,'Not authenticated. Run "tigris login oauth" first.'),process.exit(1));let X=await r.getAccessToken(),Z=k(),ee=T(),M={sessionToken:X,organizationId:Z??void 0,iamEndpoint:ee.iamEndpoint};if(o){let{error:l}=await Ce(e,{config:M});l&&(d(a,l.message),process.exit(1)),N(a);return}let m;if(t)m=[{bucket:"*",role:"NamespaceAdmin"}];else{i.length===0&&(d(a,"At least one bucket name is required (or use --admin or --revoke-roles)"),process.exit(1)),s.length===0&&(d(a,"At least one role is required (or use --admin or --revoke-roles)"),process.exit(1));for(let l of s)J.includes(l)||(d(a,`Invalid role "${l}". Valid roles are: ${J.join(", ")}`),process.exit(1));s.length===1?m=i.map(l=>({bucket:l,role:s[0]})):s.length===i.length?m=i.map((l,ne)=>({bucket:l,role:s[ne]})):(d(a,`Number of roles (${s.length}) must be 1 or match number of buckets (${i.length})`),process.exit(1))}let{error:D}=await ye(e,m,{config:M});D&&(d(a,D.message),process.exit(1)),N(a)}export{Te as default};
+import{a as R,b as l,c as t,g as b}from"../../chunk-A3TXP5Y2.js";import"../../chunk-4LGKN5DA.js";import{a as A}from"../../chunk-TQWT7ROJ.js";import{b as k}from"../../chunk-WE6NZ2ZK.js";import{c as h}from"../../chunk-NYAHHQ3A.js";import{a as n}from"../../chunk-JRALYIRA.js";import{g as p}from"../../chunk-PKWQDQLT.js";import"../../chunk-4BZ377KV.js";import{assignBucketRoles as C,revokeAllBucketRoles as N}from"@tigrisdata/iam";var e=b("access-keys","assign"),x=["Editor","ReadOnly","NamespaceAdmin"];function y(o){return o?Array.isArray(o)?o:[o]:[]}async function E(o){R(e);let c=n(o,["id"]),g=n(o,["admin"]),d=n(o,["revokeRoles","revoke-roles"]),r=y(n(o,["bucket","b"])),s=y(n(o,["role","r"]));c||(t(e,"Access key ID is required"),process.exit(1)),g&&d&&(t(e,"Cannot use --admin and --revoke-roles together"),process.exit(1)),await A()!=="oauth"&&(t(e,`Bucket roles can only be managed when logged in via OAuth.
+Run "tigris login oauth" first.`),process.exit(1));let m=k();await m.isAuthenticated()||(t(e,'Not authenticated. Run "tigris login oauth" first.'),process.exit(1));let T=await m.getAccessToken(),v=p(),w=h(),u={sessionToken:T,organizationId:v??void 0,iamEndpoint:w.iamEndpoint};if(d){let{error:i}=await N(c,{config:u});i&&(t(e,i.message),process.exit(1)),l(e);return}let a;if(g)a=[{bucket:"*",role:"NamespaceAdmin"}];else{r.length===0&&(t(e,"At least one bucket name is required (or use --admin or --revoke-roles)"),process.exit(1)),s.length===0&&(t(e,"At least one role is required (or use --admin or --revoke-roles)"),process.exit(1));for(let i of s)x.includes(i)||(t(e,`Invalid role "${i}". Valid roles are: ${x.join(", ")}`),process.exit(1));s.length===1?a=r.map(i=>({bucket:i,role:s[0]})):s.length===r.length?a=r.map((i,O)=>({bucket:i,role:s[O]})):(t(e,`Number of roles (${s.length}) must be 1 or match number of buckets (${r.length})`),process.exit(1))}let{error:f}=await C(c,a,{config:u});f&&(t(e,f.message),process.exit(1)),l(e)}export{E as default};

package/dist/lib/access-keys/create.js

@@ -1,3 +1,2 @@
-function N(n,e,t){for(let o of e)if(n[o]!==void 0)return n[o];return t}import{S3Client as Ke}from"@aws-sdk/client-s3";import{fromIni as Re}from"@aws-sdk/credential-providers";import{homedir as H}from"os";import{join as M}from"path";import{readFileSync as J,writeFileSync as B,existsSync as K,mkdirSync as Q}from"fs";import{loadSharedConfigFiles as ye}from"@smithy/shared-ini-file-loader";import{chmod as X}from"fs/promises";var l="https://t3.storage.dev",T="https://iam.storageapi.dev";var A=M(H(),".tigris"),f=M(A,"config.json");function Z(){K(A)||Q(A,{recursive:!0,mode:448})}function c(){if(K(f))try{let n=J(f,"utf8");return JSON.parse(n)}catch{return{}}return{}}async function u(n){Z(),B(f,JSON.stringify(n,null,2),{mode:384});try{await X(f,384)}catch{}}async function S(n){let e=c();e.tokens=n,await u(e)}async function g(){return c().tokens||null}async function _(){let n=c();delete n.tokens,await u(n)}async function D(n){let e=c();e.organizations=n,await u(e)}function R(){return c().organizations||[]}function w(){return c().selectedOrganization||null}async function b(n){let e=c();e.loginMethod=n,await u(e)}function z(){return c().loginMethod||null}import y from"axios";import ee from"open";function m(){let n=process.env.TIGRIS_ENV==="development",e=process.env.AUTH0_DOMAIN||n?"auth-dev.tigris.dev":"auth.tigris.dev",t=process.env.AUTH0_CLIENT_ID||n?"JdJVYIyw0O1uHi5L5OJH903qaWBgd3gF":"DMejqeM3CQ4IqTjEcd3oA9eEiT40hn8D",o=process.env.AUTH0_AUDIENCE||n?"https://tigris-api-dev":"https://tigris-os-api";return{domain:e,clientId:t,audience:o}}var L=process.env.TIGRIS_CLAIMS_NAMESPACE||"https://tigris";function h(){return process.env.TIGRIS_STORAGE_ENDPOINT||process.env.TIGRIS_IAM_ENDPOINT?{endpoint:process.env.TIGRIS_STORAGE_ENDPOINT||l,iamEndpoint:process.env.TIGRIS_IAM_ENDPOINT||T}:{endpoint:process.env.AWS_ENDPOINT_URL_S3||l,iamEndpoint:process.env.AWS_ENDPOINT_URL_IAM||T}}var E=class{config;baseUrl;constructor(){this.config=m(),this.baseUrl=`https://${this.config.domain}`}async login(e){let o=(await y.post(`${this.baseUrl}/oauth/device/code`,{client_id:this.config.clientId,audience:this.config.audience,scope:"openid profile email offline_access"},{headers:{"Content-Type":"application/x-www-form-urlencoded"}})).data;e?.onDeviceCode?.(o.user_code,o.verification_uri),await this.sleep(2e3);try{await ee(o.verification_uri_complete)}catch{}e?.onWaiting?.();let i=await this.pollForToken(o.device_code,o.interval||5);await S(i),b("oauth"),await this.extractAndStoreOrganizations(i.idToken)}async pollForToken(e,t){let i=0;for(;i<60;){i++;try{let r=(await y.post(`${this.baseUrl}/oauth/token`,{client_id:this.config.clientId,device_code:e,grant_type:"urn:ietf:params:oauth:grant-type:device_code"},{headers:{"Content-Type":"application/x-www-form-urlencoded"}})).data,a=Date.now()+(r.expires_in||3600)*1e3;return{accessToken:r.access_token,refreshToken:r.refresh_token,idToken:r.id_token,expiresAt:a}}catch(s){if(y.isAxiosError(s)&&s.response){let r=s.response.data?.error;if(r==="authorization_pending"){await this.sleep(t*1e3);continue}if(r==="slow_down"){t+=5,await this.sleep(t*1e3);continue}throw new Error(s.response.data?.error_description||"Authentication failed")}throw s}}throw new Error("Authentication timed out. Please try again.")}async getAccessToken(){let e=await g();if(!e)throw new Error('Not authenticated. Please run "tigris login" to authenticate.');let t=300*1e3;return Date.now()+t>=e.expiresAt&&(e=await this.refreshAccessToken(e)),e.accessToken}async refreshAccessToken(e){let t=null;if(e?.refreshToken?t=e:t=await g(),!t)throw new Error('No refresh token available. Please run "tigris login" to re-authenticate.');try{let i=(await y.post(`${this.baseUrl}/oauth/token`,{client_id:this.config.clientId,grant_type:"refresh_token",refresh_token:t.refreshToken,scope:"openid profile email offline_access"},{headers:{"Content-Type":"application/x-www-form-urlencoded"}})).data,s={accessToken:i.access_token,refreshToken:i.refresh_token||t.refreshToken,idToken:i.id_token||t.idToken,expiresAt:Date.now()+(i.expires_in||3600)*1e3};return await S(s),s}catch{throw await _(),new Error('Token refresh failed. Please run "tigris login" to re-authenticate.')}}async getIdTokenClaims(){let e=await g();if(!e||!e.idToken)throw new Error('Not authenticated. Please run "tigris login" to authenticate.');try{let t=e.idToken.split(".")[1],o=Buffer.from(t,"base64").toString("utf8");return JSON.parse(o)}catch{throw new Error("Failed to decode ID token")}}async extractAndStoreOrganizations(e){if(e)try{let t=e.split(".")[1],o=Buffer.from(t,"base64").toString("utf8"),s=JSON.parse(o)[L];if(!s)return;let r=s?.ns?.map(a=>typeof a=="object"&&a!==null?{id:a.id,name:a.name,displayName:a.name}:{id:a,name:a,displayName:a})||[];if(r.length===0)return;D(r)}catch{}}async getOrganizations(){return await this.getAccessToken(),R()}async logout(){await _()}async isAuthenticated(){return await g()!==null}sleep(e){return new Promise(t=>setTimeout(t,e))}},I=null;function k(){return I||(I=new E),I}var Fe=h(),Ue=m();async function G(){return z()}import{createAccessKey as de}from"@tigrisdata/iam";import{readFileSync as ne,existsSync as te}from"fs";import{join as F,dirname as oe}from"path";import{fileURLToPath as ie}from"url";import*as U from"yaml";var se=ie(import.meta.url),re=oe(se),v=null;function ae(){let n=re;for(let e=0;e<5;e++){let t=F(n,"specs.yaml");if(te(t))return t;n=F(n,"..")}throw new Error("Could not find specs.yaml")}function ce(){if(!v){let n=ae(),e=ne(n,"utf8");v=U.parse(e)}return v}function $(n,e){let o=ce().commands.find(i=>i.name===n);return o?e&&o.operations?o.operations.find(i=>i.name===e)||null:o:null}var j={success:"\u2714",failure:"\u2716",hint:"\u2192"};function W(){return process.stdout.isTTY===!0}function x(n){let e=$(n.command,n.operation);if(e)return e.messages}function O(n,e){let t=n;return t=t.replace(/\\n/g,`
-`),e&&(t=t.replace(/\{\{(\w+)\}\}/g,(o,i)=>{let s=e[i];return s!==void 0?String(s):`{{${i}}}`})),t}function Y(n,e){if(!W())return;let t=x(n);t?.onStart&&console.log(O(t.onStart,e))}function V(n,e){if(!W())return;let t=x(n);t?.onSuccess&&console.log(`${j.success} ${O(t.onSuccess,e)}`)}function p(n,e,t){let o=x(n);o?.onFailure&&console.error(`${j.failure} ${O(o.onFailure,t)}`),e&&console.error(`  ${e}`)}function q(n,e){return{command:n,operation:e}}var d=q("access-keys","create");async function le(n){Y(d);let e=N(n,["name"]);e||(p(d,"Access key name is required"),process.exit(1)),await G()!=="oauth"&&(p(d,`Access keys can only be created when logged in via OAuth.
-Run "tigris login oauth" first.`),process.exit(1));let o=k();await o.isAuthenticated()||(p(d,'Not authenticated. Run "tigris login oauth" first.'),process.exit(1));let s=await o.getAccessToken(),r=w(),a=h(),{data:C,error:P}=await de(e,{config:{sessionToken:s,organizationId:r??void 0,iamEndpoint:a.iamEndpoint}});P&&(p(d,P.message),process.exit(1)),console.log(`  Name: ${C.name}`),console.log(`  Access Key ID: ${C.id}`),console.log(`  Secret Access Key: ${C.secret}`),console.log(""),console.log("  Save these credentials securely. The secret will not be shown again."),V(d)}export{le as default};
+import{a as m,b as d,c as t,g as u}from"../../chunk-A3TXP5Y2.js";import"../../chunk-4LGKN5DA.js";import{a as l}from"../../chunk-TQWT7ROJ.js";import{b as g}from"../../chunk-WE6NZ2ZK.js";import{c as a}from"../../chunk-NYAHHQ3A.js";import{a as c}from"../../chunk-JRALYIRA.js";import{g as r}from"../../chunk-PKWQDQLT.js";import"../../chunk-4BZ377KV.js";import{createAccessKey as y}from"@tigrisdata/iam";var e=u("access-keys","create");async function w(f){m(e);let i=c(f,["name"]);i||(t(e,"Access key name is required"),process.exit(1)),await l()!=="oauth"&&(t(e,`Access keys can only be created when logged in via OAuth.
+Run "tigris login oauth" first.`),process.exit(1));let n=g();await n.isAuthenticated()||(t(e,'Not authenticated. Run "tigris login oauth" first.'),process.exit(1));let p=await n.getAccessToken(),h=r(),A=a(),{data:o,error:s}=await y(i,{config:{sessionToken:p,organizationId:h??void 0,iamEndpoint:A.iamEndpoint}});s&&(t(e,s.message),process.exit(1)),console.log(`  Name: ${o.name}`),console.log(`  Access Key ID: ${o.id}`),console.log(`  Secret Access Key: ${o.secret}`),console.log(""),console.log("  Save these credentials securely. The secret will not be shown again."),d(e)}export{w as default};

package/dist/lib/access-keys/delete.js

@@ -1,3 +1,2 @@
-function P(n,e,t){for(let o of e)if(n[o]!==void 0)return n[o];return t}import{S3Client as Me}from"@aws-sdk/client-s3";import{fromIni as Re}from"@aws-sdk/credential-providers";import{homedir as q}from"os";import{join as N}from"path";import{readFileSync as H,writeFileSync as J,existsSync as M,mkdirSync as B}from"fs";import{loadSharedConfigFiles as he}from"@smithy/shared-ini-file-loader";import{chmod as Q}from"fs/promises";var g="https://t3.storage.dev",y="https://iam.storageapi.dev";var T=N(q(),".tigris"),f=N(T,"config.json");function X(){M(T)||B(T,{recursive:!0,mode:448})}function c(){if(M(f))try{let n=H(f,"utf8");return JSON.parse(n)}catch{return{}}return{}}async function u(n){X(),J(f,JSON.stringify(n,null,2),{mode:384});try{await Q(f,384)}catch{}}async function A(n){let e=c();e.tokens=n,await u(e)}async function l(){return c().tokens||null}async function S(){let n=c();delete n.tokens,await u(n)}async function D(n){let e=c();e.organizations=n,await u(e)}function R(){return c().organizations||[]}function _(){return c().selectedOrganization||null}async function K(n){let e=c();e.loginMethod=n,await u(e)}function b(){return c().loginMethod||null}import C from"axios";import Z from"open";function m(){let n=process.env.TIGRIS_ENV==="development",e=process.env.AUTH0_DOMAIN||n?"auth-dev.tigris.dev":"auth.tigris.dev",t=process.env.AUTH0_CLIENT_ID||n?"JdJVYIyw0O1uHi5L5OJH903qaWBgd3gF":"DMejqeM3CQ4IqTjEcd3oA9eEiT40hn8D",o=process.env.AUTH0_AUDIENCE||n?"https://tigris-api-dev":"https://tigris-os-api";return{domain:e,clientId:t,audience:o}}var z=process.env.TIGRIS_CLAIMS_NAMESPACE||"https://tigris";function h(){return process.env.TIGRIS_STORAGE_ENDPOINT||process.env.TIGRIS_IAM_ENDPOINT?{endpoint:process.env.TIGRIS_STORAGE_ENDPOINT||g,iamEndpoint:process.env.TIGRIS_IAM_ENDPOINT||y}:{endpoint:process.env.AWS_ENDPOINT_URL_S3||g,iamEndpoint:process.env.AWS_ENDPOINT_URL_IAM||y}}var I=class{config;baseUrl;constructor(){this.config=m(),this.baseUrl=`https://${this.config.domain}`}async login(e){let o=(await C.post(`${this.baseUrl}/oauth/device/code`,{client_id:this.config.clientId,audience:this.config.audience,scope:"openid profile email offline_access"},{headers:{"Content-Type":"application/x-www-form-urlencoded"}})).data;e?.onDeviceCode?.(o.user_code,o.verification_uri),await this.sleep(2e3);try{await Z(o.verification_uri_complete)}catch{}e?.onWaiting?.();let i=await this.pollForToken(o.device_code,o.interval||5);await A(i),K("oauth"),await this.extractAndStoreOrganizations(i.idToken)}async pollForToken(e,t){let i=0;for(;i<60;){i++;try{let r=(await C.post(`${this.baseUrl}/oauth/token`,{client_id:this.config.clientId,device_code:e,grant_type:"urn:ietf:params:oauth:grant-type:device_code"},{headers:{"Content-Type":"application/x-www-form-urlencoded"}})).data,a=Date.now()+(r.expires_in||3600)*1e3;return{accessToken:r.access_token,refreshToken:r.refresh_token,idToken:r.id_token,expiresAt:a}}catch(s){if(C.isAxiosError(s)&&s.response){let r=s.response.data?.error;if(r==="authorization_pending"){await this.sleep(t*1e3);continue}if(r==="slow_down"){t+=5,await this.sleep(t*1e3);continue}throw new Error(s.response.data?.error_description||"Authentication failed")}throw s}}throw new Error("Authentication timed out. Please try again.")}async getAccessToken(){let e=await l();if(!e)throw new Error('Not authenticated. Please run "tigris login" to authenticate.');let t=300*1e3;return Date.now()+t>=e.expiresAt&&(e=await this.refreshAccessToken(e)),e.accessToken}async refreshAccessToken(e){let t=null;if(e?.refreshToken?t=e:t=await l(),!t)throw new Error('No refresh token available. Please run "tigris login" to re-authenticate.');try{let i=(await C.post(`${this.baseUrl}/oauth/token`,{client_id:this.config.clientId,grant_type:"refresh_token",refresh_token:t.refreshToken,scope:"openid profile email offline_access"},{headers:{"Content-Type":"application/x-www-form-urlencoded"}})).data,s={accessToken:i.access_token,refreshToken:i.refresh_token||t.refreshToken,idToken:i.id_token||t.idToken,expiresAt:Date.now()+(i.expires_in||3600)*1e3};return await A(s),s}catch{throw await S(),new Error('Token refresh failed. Please run "tigris login" to re-authenticate.')}}async getIdTokenClaims(){let e=await l();if(!e||!e.idToken)throw new Error('Not authenticated. Please run "tigris login" to authenticate.');try{let t=e.idToken.split(".")[1],o=Buffer.from(t,"base64").toString("utf8");return JSON.parse(o)}catch{throw new Error("Failed to decode ID token")}}async extractAndStoreOrganizations(e){if(e)try{let t=e.split(".")[1],o=Buffer.from(t,"base64").toString("utf8"),s=JSON.parse(o)[z];if(!s)return;let r=s?.ns?.map(a=>typeof a=="object"&&a!==null?{id:a.id,name:a.name,displayName:a.name}:{id:a,name:a,displayName:a})||[];if(r.length===0)return;D(r)}catch{}}async getOrganizations(){return await this.getAccessToken(),R()}async logout(){await S()}async isAuthenticated(){return await l()!==null}sleep(e){return new Promise(t=>setTimeout(t,e))}},w=null;function E(){return w||(w=new I),w}var Ge=h(),Fe=m();async function L(){return b()}import{removeAccessKey as ce}from"@tigrisdata/iam";import{readFileSync as ee,existsSync as ne}from"fs";import{join as G,dirname as te}from"path";import{fileURLToPath as oe}from"url";import*as F from"yaml";var ie=oe(import.meta.url),se=te(ie),k=null;function re(){let n=se;for(let e=0;e<5;e++){let t=G(n,"specs.yaml");if(ne(t))return t;n=G(n,"..")}throw new Error("Could not find specs.yaml")}function ae(){if(!k){let n=re(),e=ee(n,"utf8");k=F.parse(e)}return k}function U(n,e){let o=ae().commands.find(i=>i.name===n);return o?e&&o.operations?o.operations.find(i=>i.name===e)||null:o:null}var $={success:"\u2714",failure:"\u2716",hint:"\u2192"};function j(){return process.stdout.isTTY===!0}function v(n){let e=U(n.command,n.operation);if(e)return e.messages}function x(n,e){let t=n;return t=t.replace(/\\n/g,`
-`),e&&(t=t.replace(/\{\{(\w+)\}\}/g,(o,i)=>{let s=e[i];return s!==void 0?String(s):`{{${i}}}`})),t}function W(n,e){if(!j())return;let t=v(n);t?.onStart&&console.log(x(t.onStart,e))}function Y(n,e){if(!j())return;let t=v(n);t?.onSuccess&&console.log(`${$.success} ${x(t.onSuccess,e)}`)}function p(n,e,t){let o=v(n);o?.onFailure&&console.error(`${$.failure} ${x(o.onFailure,t)}`),e&&console.error(`  ${e}`)}function V(n,e){return{command:n,operation:e}}var d=V("access-keys","delete");async function de(n){W(d);let e=P(n,["id"]);e||(p(d,"Access key ID is required"),process.exit(1)),await L()!=="oauth"&&(p(d,`Access keys can only be deleted when logged in via OAuth.
-Run "tigris login oauth" first.`),process.exit(1));let o=E();await o.isAuthenticated()||(p(d,'Not authenticated. Run "tigris login oauth" first.'),process.exit(1));let s=await o.getAccessToken(),r=_(),a=h(),{error:O}=await ce(e,{config:{sessionToken:s,organizationId:r??void 0,iamEndpoint:a.iamEndpoint}});O&&(p(d,O.message),process.exit(1)),Y(d)}export{de as default};
+import{a as d,b as m,c as e,g as f}from"../../chunk-A3TXP5Y2.js";import"../../chunk-4LGKN5DA.js";import{a as g}from"../../chunk-TQWT7ROJ.js";import{b as a}from"../../chunk-WE6NZ2ZK.js";import{c}from"../../chunk-NYAHHQ3A.js";import{a as s}from"../../chunk-JRALYIRA.js";import{g as r}from"../../chunk-PKWQDQLT.js";import"../../chunk-4BZ377KV.js";import{removeAccessKey as A}from"@tigrisdata/iam";var t=f("access-keys","delete");async function k(u){d(t);let i=s(u,["id"]);i||(e(t,"Access key ID is required"),process.exit(1)),await g()!=="oauth"&&(e(t,`Access keys can only be deleted when logged in via OAuth.
+Run "tigris login oauth" first.`),process.exit(1));let o=a();await o.isAuthenticated()||(e(t,'Not authenticated. Run "tigris login oauth" first.'),process.exit(1));let p=await o.getAccessToken(),h=r(),l=c(),{error:n}=await A(i,{config:{sessionToken:p,organizationId:h??void 0,iamEndpoint:l.iamEndpoint}});n&&(e(t,n.message),process.exit(1)),m(t)}export{k as default};

package/dist/lib/access-keys/get.js

@@ -1,3 +1,2 @@
-function M(n,e,t){for(let o of e)if(n[o]!==void 0)return n[o];return t}import{S3Client as De}from"@aws-sdk/client-s3";import{fromIni as be}from"@aws-sdk/credential-providers";import{homedir as J}from"os";import{join as R}from"path";import{readFileSync as B,writeFileSync as Q,existsSync as D,mkdirSync as X}from"fs";import{loadSharedConfigFiles as ye}from"@smithy/shared-ini-file-loader";import{chmod as Z}from"fs/promises";var g="https://t3.storage.dev",T="https://iam.storageapi.dev";var A=R(J(),".tigris"),u=R(A,"config.json");function ee(){D(A)||X(A,{recursive:!0,mode:448})}function d(){if(D(u))try{let n=B(u,"utf8");return JSON.parse(n)}catch{return{}}return{}}async function m(n){ee(),Q(u,JSON.stringify(n,null,2),{mode:384});try{await Z(u,384)}catch{}}async function S(n){let e=d();e.tokens=n,await m(e)}async function p(){return d().tokens||null}async function _(){let n=d();delete n.tokens,await m(n)}async function K(n){let e=d();e.organizations=n,await m(e)}function b(){return d().organizations||[]}function w(){return d().selectedOrganization||null}async function z(n){let e=d();e.loginMethod=n,await m(e)}function L(){return d().loginMethod||null}import y from"axios";import ne from"open";function h(){let n=process.env.TIGRIS_ENV==="development",e=process.env.AUTH0_DOMAIN||n?"auth-dev.tigris.dev":"auth.tigris.dev",t=process.env.AUTH0_CLIENT_ID||n?"JdJVYIyw0O1uHi5L5OJH903qaWBgd3gF":"DMejqeM3CQ4IqTjEcd3oA9eEiT40hn8D",o=process.env.AUTH0_AUDIENCE||n?"https://tigris-api-dev":"https://tigris-os-api";return{domain:e,clientId:t,audience:o}}var G=process.env.TIGRIS_CLAIMS_NAMESPACE||"https://tigris";function C(){return process.env.TIGRIS_STORAGE_ENDPOINT||process.env.TIGRIS_IAM_ENDPOINT?{endpoint:process.env.TIGRIS_STORAGE_ENDPOINT||g,iamEndpoint:process.env.TIGRIS_IAM_ENDPOINT||T}:{endpoint:process.env.AWS_ENDPOINT_URL_S3||g,iamEndpoint:process.env.AWS_ENDPOINT_URL_IAM||T}}var E=class{config;baseUrl;constructor(){this.config=h(),this.baseUrl=`https://${this.config.domain}`}async login(e){let o=(await y.post(`${this.baseUrl}/oauth/device/code`,{client_id:this.config.clientId,audience:this.config.audience,scope:"openid profile email offline_access"},{headers:{"Content-Type":"application/x-www-form-urlencoded"}})).data;e?.onDeviceCode?.(o.user_code,o.verification_uri),await this.sleep(2e3);try{await ne(o.verification_uri_complete)}catch{}e?.onWaiting?.();let i=await this.pollForToken(o.device_code,o.interval||5);await S(i),z("oauth"),await this.extractAndStoreOrganizations(i.idToken)}async pollForToken(e,t){let i=0;for(;i<60;){i++;try{let r=(await y.post(`${this.baseUrl}/oauth/token`,{client_id:this.config.clientId,device_code:e,grant_type:"urn:ietf:params:oauth:grant-type:device_code"},{headers:{"Content-Type":"application/x-www-form-urlencoded"}})).data,a=Date.now()+(r.expires_in||3600)*1e3;return{accessToken:r.access_token,refreshToken:r.refresh_token,idToken:r.id_token,expiresAt:a}}catch(s){if(y.isAxiosError(s)&&s.response){let r=s.response.data?.error;if(r==="authorization_pending"){await this.sleep(t*1e3);continue}if(r==="slow_down"){t+=5,await this.sleep(t*1e3);continue}throw new Error(s.response.data?.error_description||"Authentication failed")}throw s}}throw new Error("Authentication timed out. Please try again.")}async getAccessToken(){let e=await p();if(!e)throw new Error('Not authenticated. Please run "tigris login" to authenticate.');let t=300*1e3;return Date.now()+t>=e.expiresAt&&(e=await this.refreshAccessToken(e)),e.accessToken}async refreshAccessToken(e){let t=null;if(e?.refreshToken?t=e:t=await p(),!t)throw new Error('No refresh token available. Please run "tigris login" to re-authenticate.');try{let i=(await y.post(`${this.baseUrl}/oauth/token`,{client_id:this.config.clientId,grant_type:"refresh_token",refresh_token:t.refreshToken,scope:"openid profile email offline_access"},{headers:{"Content-Type":"application/x-www-form-urlencoded"}})).data,s={accessToken:i.access_token,refreshToken:i.refresh_token||t.refreshToken,idToken:i.id_token||t.idToken,expiresAt:Date.now()+(i.expires_in||3600)*1e3};return await S(s),s}catch{throw await _(),new Error('Token refresh failed. Please run "tigris login" to re-authenticate.')}}async getIdTokenClaims(){let e=await p();if(!e||!e.idToken)throw new Error('Not authenticated. Please run "tigris login" to authenticate.');try{let t=e.idToken.split(".")[1],o=Buffer.from(t,"base64").toString("utf8");return JSON.parse(o)}catch{throw new Error("Failed to decode ID token")}}async extractAndStoreOrganizations(e){if(e)try{let t=e.split(".")[1],o=Buffer.from(t,"base64").toString("utf8"),s=JSON.parse(o)[G];if(!s)return;let r=s?.ns?.map(a=>typeof a=="object"&&a!==null?{id:a.id,name:a.name,displayName:a.name}:{id:a,name:a,displayName:a})||[];if(r.length===0)return;K(r)}catch{}}async getOrganizations(){return await this.getAccessToken(),b()}async logout(){await _()}async isAuthenticated(){return await p()!==null}sleep(e){return new Promise(t=>setTimeout(t,e))}},I=null;function k(){return I||(I=new E),I}var $e=C(),Ue=h();async function F(){return L()}import{getAccessKey as le}from"@tigrisdata/iam";import{readFileSync as te,existsSync as oe}from"fs";import{join as $,dirname as ie}from"path";import{fileURLToPath as se}from"url";import*as U from"yaml";var re=se(import.meta.url),ae=ie(re),v=null;function ce(){let n=ae;for(let e=0;e<5;e++){let t=$(n,"specs.yaml");if(oe(t))return t;n=$(n,"..")}throw new Error("Could not find specs.yaml")}function de(){if(!v){let n=ce(),e=te(n,"utf8");v=U.parse(e)}return v}function j(n,e){let o=de().commands.find(i=>i.name===n);return o?e&&o.operations?o.operations.find(i=>i.name===e)||null:o:null}var W={success:"\u2714",failure:"\u2716",hint:"\u2192"};function Y(){return process.stdout.isTTY===!0}function x(n){let e=j(n.command,n.operation);if(e)return e.messages}function O(n,e){let t=n;return t=t.replace(/\\n/g,`
-`),e&&(t=t.replace(/\{\{(\w+)\}\}/g,(o,i)=>{let s=e[i];return s!==void 0?String(s):`{{${i}}}`})),t}function V(n,e){if(!Y())return;let t=x(n);t?.onStart&&console.log(O(t.onStart,e))}function q(n,e){if(!Y())return;let t=x(n);t?.onSuccess&&console.log(`${W.success} ${O(t.onSuccess,e)}`)}function f(n,e,t){let o=x(n);o?.onFailure&&console.error(`${W.failure} ${O(o.onFailure,t)}`),e&&console.error(`  ${e}`)}function H(n,e){return{command:n,operation:e}}var l=H("access-keys","get");async function ge(n){V(l);let e=M(n,["id"]);e||(f(l,"Access key ID is required"),process.exit(1)),await F()!=="oauth"&&(f(l,`Access keys can only be retrieved when logged in via OAuth.
-Run "tigris login oauth" first.`),process.exit(1));let o=k();await o.isAuthenticated()||(f(l,'Not authenticated. Run "tigris login oauth" first.'),process.exit(1));let s=await o.getAccessToken(),r=w(),a=C(),{data:c,error:P}=await le(e,{config:{sessionToken:s,organizationId:r??void 0,iamEndpoint:a.iamEndpoint}});if(P&&(f(l,P.message),process.exit(1)),console.log(`  Name: ${c.name}`),console.log(`  ID: ${c.id}`),console.log(`  Status: ${c.status}`),console.log(`  Created: ${c.createdAt}`),console.log(`  Organization: ${c.organizationId}`),c.roles&&c.roles.length>0){console.log("  Roles:");for(let N of c.roles)console.log(`    - ${N.bucket}: ${N.role}`)}else console.log("  Roles: None");q(l)}export{ge as default};
+import{a as f,b as u,c as t,g as m}from"../../chunk-A3TXP5Y2.js";import"../../chunk-4LGKN5DA.js";import{a as d}from"../../chunk-TQWT7ROJ.js";import{b as l}from"../../chunk-WE6NZ2ZK.js";import{c as g}from"../../chunk-NYAHHQ3A.js";import{a as c}from"../../chunk-JRALYIRA.js";import{g as a}from"../../chunk-PKWQDQLT.js";import"../../chunk-4BZ377KV.js";import{getAccessKey as $}from"@tigrisdata/iam";var e=m("access-keys","get");async function w(p){f(e);let i=c(p,["id"]);i||(t(e,"Access key ID is required"),process.exit(1)),await d()!=="oauth"&&(t(e,`Access keys can only be retrieved when logged in via OAuth.
+Run "tigris login oauth" first.`),process.exit(1));let n=l();await n.isAuthenticated()||(t(e,'Not authenticated. Run "tigris login oauth" first.'),process.exit(1));let h=await n.getAccessToken(),A=a(),k=g(),{data:o,error:s}=await $(i,{config:{sessionToken:h,organizationId:A??void 0,iamEndpoint:k.iamEndpoint}});if(s&&(t(e,s.message),process.exit(1)),console.log(`  Name: ${o.name}`),console.log(`  ID: ${o.id}`),console.log(`  Status: ${o.status}`),console.log(`  Created: ${o.createdAt}`),console.log(`  Organization: ${o.organizationId}`),o.roles&&o.roles.length>0){console.log("  Roles:");for(let r of o.roles)console.log(`    - ${r.bucket}: ${r.role}`)}else console.log("  Roles: None");u(e)}export{w as default};

package/dist/lib/access-keys/list.js

@@ -1,8 +1,2 @@
-function ee(n){return JSON.stringify(n,null,2)}function ne(n,e="    "){return Object.entries(n).map(([t,i])=>`${e}<${t}>${i}</${t}>`).join(`
-`)}function te(n,e,t){let i=[`<${e}>`];return n.forEach(o=>{i.push(`  <${t}>`),i.push(ne(o,"    ")),i.push(`  </${t}>`)}),i.push(`</${e}>`),i.join(`
-`)}function b(n){if(n==null)return"";if(n instanceof Date)return K(n);if(typeof n=="string"){let e=new Date(n);if(!isNaN(e.getTime())&&n.includes("T"))return K(e)}return String(n)}function K(n){return new Intl.DateTimeFormat(void 0,{year:"numeric",month:"short",day:"numeric",hour:"2-digit",minute:"2-digit"}).format(n)}function ie(n,e){return e.map(t=>{if(t.width)return t.width;let i=t.header.length,o=n.reduce((r,s)=>{let a=b(s[t.key]);return Math.max(r,a.length)},0);return Math.max(i,o)})}function oe(n,e){let t=[],i=ie(n,e),o="\u250C"+i.map(c=>"\u2500".repeat(c+2)).join("\u252C")+"\u2510",r="\u251C"+i.map(c=>"\u2500".repeat(c+2)).join("\u253C")+"\u2524",s="\u2514"+i.map(c=>"\u2500".repeat(c+2)).join("\u2534")+"\u2518";t.push(`
-`+o);let a="\u2502 "+e.map((c,u)=>c.header.padEnd(i[u])).join(" \u2502 ")+" \u2502";return t.push(a),t.push(r),n.forEach(c=>{let u=e.map((g,D)=>{let R=b(c[g.key]);return g.align==="right"?R.padStart(i[D]):R.padEnd(i[D])});t.push("\u2502 "+u.join(" \u2502 ")+" \u2502")}),t.push(s+`
-`),t.join(`
-`)}function z(n,e,t,i,o){switch(e){case"json":return ee(n);case"xml":return te(n,t,i);default:return oe(n,o)}}import{S3Client as We}from"@aws-sdk/client-s3";import{fromIni as Ye}from"@aws-sdk/credential-providers";import{homedir as re}from"os";import{join as L}from"path";import{readFileSync as se,writeFileSync as ae,existsSync as F,mkdirSync as ce}from"fs";import{loadSharedConfigFiles as ve}from"@smithy/shared-ini-file-loader";import{chmod as de}from"fs/promises";var p="https://t3.storage.dev",_="https://iam.storageapi.dev";var I=L(re(),".tigris"),m=L(I,"config.json");function ge(){F(I)||ce(I,{recursive:!0,mode:448})}function d(){if(F(m))try{let n=se(m,"utf8");return JSON.parse(n)}catch{return{}}return{}}async function h(n){ge(),ae(m,JSON.stringify(n,null,2),{mode:384});try{await de(m,384)}catch{}}async function E(n){let e=d();e.tokens=n,await h(e)}async function f(){return d().tokens||null}async function k(){let n=d();delete n.tokens,await h(n)}async function G(n){let e=d();e.organizations=n,await h(e)}function j(){return d().organizations||[]}function x(){return d().selectedOrganization||null}async function $(n){let e=d();e.loginMethod=n,await h(e)}function U(){return d().loginMethod||null}import C from"axios";import le from"open";function y(){let n=process.env.TIGRIS_ENV==="development",e=process.env.AUTH0_DOMAIN||n?"auth-dev.tigris.dev":"auth.tigris.dev",t=process.env.AUTH0_CLIENT_ID||n?"JdJVYIyw0O1uHi5L5OJH903qaWBgd3gF":"DMejqeM3CQ4IqTjEcd3oA9eEiT40hn8D",i=process.env.AUTH0_AUDIENCE||n?"https://tigris-api-dev":"https://tigris-os-api";return{domain:e,clientId:t,audience:i}}var W=process.env.TIGRIS_CLAIMS_NAMESPACE||"https://tigris";function T(){return process.env.TIGRIS_STORAGE_ENDPOINT||process.env.TIGRIS_IAM_ENDPOINT?{endpoint:process.env.TIGRIS_STORAGE_ENDPOINT||p,iamEndpoint:process.env.TIGRIS_IAM_ENDPOINT||_}:{endpoint:process.env.AWS_ENDPOINT_URL_S3||p,iamEndpoint:process.env.AWS_ENDPOINT_URL_IAM||_}}var O=class{config;baseUrl;constructor(){this.config=y(),this.baseUrl=`https://${this.config.domain}`}async login(e){let i=(await C.post(`${this.baseUrl}/oauth/device/code`,{client_id:this.config.clientId,audience:this.config.audience,scope:"openid profile email offline_access"},{headers:{"Content-Type":"application/x-www-form-urlencoded"}})).data;e?.onDeviceCode?.(i.user_code,i.verification_uri),await this.sleep(2e3);try{await le(i.verification_uri_complete)}catch{}e?.onWaiting?.();let o=await this.pollForToken(i.device_code,i.interval||5);await E(o),$("oauth"),await this.extractAndStoreOrganizations(o.idToken)}async pollForToken(e,t){let o=0;for(;o<60;){o++;try{let s=(await C.post(`${this.baseUrl}/oauth/token`,{client_id:this.config.clientId,device_code:e,grant_type:"urn:ietf:params:oauth:grant-type:device_code"},{headers:{"Content-Type":"application/x-www-form-urlencoded"}})).data,a=Date.now()+(s.expires_in||3600)*1e3;return{accessToken:s.access_token,refreshToken:s.refresh_token,idToken:s.id_token,expiresAt:a}}catch(r){if(C.isAxiosError(r)&&r.response){let s=r.response.data?.error;if(s==="authorization_pending"){await this.sleep(t*1e3);continue}if(s==="slow_down"){t+=5,await this.sleep(t*1e3);continue}throw new Error(r.response.data?.error_description||"Authentication failed")}throw r}}throw new Error("Authentication timed out. Please try again.")}async getAccessToken(){let e=await f();if(!e)throw new Error('Not authenticated. Please run "tigris login" to authenticate.');let t=300*1e3;return Date.now()+t>=e.expiresAt&&(e=await this.refreshAccessToken(e)),e.accessToken}async refreshAccessToken(e){let t=null;if(e?.refreshToken?t=e:t=await f(),!t)throw new Error('No refresh token available. Please run "tigris login" to re-authenticate.');try{let o=(await C.post(`${this.baseUrl}/oauth/token`,{client_id:this.config.clientId,grant_type:"refresh_token",refresh_token:t.refreshToken,scope:"openid profile email offline_access"},{headers:{"Content-Type":"application/x-www-form-urlencoded"}})).data,r={accessToken:o.access_token,refreshToken:o.refresh_token||t.refreshToken,idToken:o.id_token||t.idToken,expiresAt:Date.now()+(o.expires_in||3600)*1e3};return await E(r),r}catch{throw await k(),new Error('Token refresh failed. Please run "tigris login" to re-authenticate.')}}async getIdTokenClaims(){let e=await f();if(!e||!e.idToken)throw new Error('Not authenticated. Please run "tigris login" to authenticate.');try{let t=e.idToken.split(".")[1],i=Buffer.from(t,"base64").toString("utf8");return JSON.parse(i)}catch{throw new Error("Failed to decode ID token")}}async extractAndStoreOrganizations(e){if(e)try{let t=e.split(".")[1],i=Buffer.from(t,"base64").toString("utf8"),r=JSON.parse(i)[W];if(!r)return;let s=r?.ns?.map(a=>typeof a=="object"&&a!==null?{id:a.id,name:a.name,displayName:a.name}:{id:a,name:a,displayName:a})||[];if(s.length===0)return;G(s)}catch{}}async getOrganizations(){return await this.getAccessToken(),j()}async logout(){await k()}async isAuthenticated(){return await f()!==null}sleep(e){return new Promise(t=>setTimeout(t,e))}},v=null;function P(){return v||(v=new O),v}var Xe=T(),Qe=y();async function V(){return U()}import{listAccessKeys as Ae}from"@tigrisdata/iam";import{readFileSync as ue,existsSync as pe}from"fs";import{join as Y,dirname as fe}from"path";import{fileURLToPath as me}from"url";import*as J from"yaml";var he=me(import.meta.url),ye=fe(he),N=null;function Te(){let n=ye;for(let e=0;e<5;e++){let t=Y(n,"specs.yaml");if(pe(t))return t;n=Y(n,"..")}throw new Error("Could not find specs.yaml")}function Ce(){if(!N){let n=Te(),e=ue(n,"utf8");N=J.parse(e)}return N}function H(n,e){let i=Ce().commands.find(o=>o.name===n);return i?e&&i.operations?i.operations.find(o=>o.name===e)||null:i:null}var q={success:"\u2714",failure:"\u2716",hint:"\u2192"};function M(){return process.stdout.isTTY===!0}function A(n){let e=H(n.command,n.operation);if(e)return e.messages}function S(n,e){let t=n;return t=t.replace(/\\n/g,`
-`),e&&(t=t.replace(/\{\{(\w+)\}\}/g,(i,o)=>{let r=e[o];return r!==void 0?String(r):`{{${o}}}`})),t}function B(n,e){if(!M())return;let t=A(n);t?.onStart&&console.log(S(t.onStart,e))}function X(n,e){if(!M())return;let t=A(n);t?.onSuccess&&console.log(`${q.success} ${S(t.onSuccess,e)}`)}function w(n,e,t){let i=A(n);i?.onFailure&&console.error(`${q.failure} ${S(i.onFailure,t)}`),e&&console.error(`  ${e}`)}function Q(n,e){if(!M())return;let t=A(n);t?.onEmpty&&console.log(S(t.onEmpty,e))}function Z(n,e){return{command:n,operation:e}}var l=Z("access-keys","list");async function Se(){B(l),await V()!=="oauth"&&(w(l,`Access keys can only be listed when logged in via OAuth.
-Run "tigris login oauth" first.`),process.exit(1));let e=P();await e.isAuthenticated()||(w(l,'Not authenticated. Run "tigris login oauth" first.'),process.exit(1));let i=await e.getAccessToken(),o=x(),r=T(),{data:s,error:a}=await Ae({config:{sessionToken:i,organizationId:o??void 0,iamEndpoint:r.iamEndpoint}});if(a&&(w(l,a.message),process.exit(1)),!s.accessKeys||s.accessKeys.length===0){Q(l);return}let c=s.accessKeys.map(g=>({name:g.name,id:g.id,status:g.status,created:g.createdAt})),u=z(c,"table","keys","key",[{key:"name",header:"Name"},{key:"id",header:"ID"},{key:"status",header:"Status"},{key:"created",header:"Created"}]);console.log(u),X(l,{count:c.length})}export{Se as default};
+import{a as m,b as l,c as s,d as p,g as f}from"../../chunk-A3TXP5Y2.js";import"../../chunk-4LGKN5DA.js";import{a as g}from"../../chunk-TQWT7ROJ.js";import{b as d}from"../../chunk-WE6NZ2ZK.js";import{c as r}from"../../chunk-NYAHHQ3A.js";import{f as u}from"../../chunk-HGIJOGCZ.js";import{g as c}from"../../chunk-PKWQDQLT.js";import"../../chunk-4BZ377KV.js";import{listAccessKeys as w}from"@tigrisdata/iam";var t=f("access-keys","list");async function x(){m(t),await g()!=="oauth"&&(s(t,`Access keys can only be listed when logged in via OAuth.
+Run "tigris login oauth" first.`),process.exit(1));let o=d();await o.isAuthenticated()||(s(t,'Not authenticated. Run "tigris login oauth" first.'),process.exit(1));let h=await o.getAccessToken(),y=c(),k=r(),{data:i,error:n}=await w({config:{sessionToken:h,organizationId:y??void 0,iamEndpoint:k.iamEndpoint}});if(n&&(s(t,n.message),process.exit(1)),!i.accessKeys||i.accessKeys.length===0){p(t);return}let a=i.accessKeys.map(e=>({name:e.name,id:e.id,status:e.status,created:e.createdAt})),A=u(a,"table","keys","key",[{key:"name",header:"Name"},{key:"id",header:"ID"},{key:"status",header:"Status"},{key:"created",header:"Created"}]);console.log(A),l(t,{count:a.length})}export{x as default};

package/dist/lib/buckets/create.js

@@ -1,2 +1 @@
-function f(n,e,t){for(let i of e)if(n[i]!==void 0)return n[i];return t}import we from"enquirer";import{readFileSync as re,existsSync as ae}from"fs";import{join as U,dirname as ce}from"path";import{fileURLToPath as de}from"url";import*as $ from"yaml";var le=de(import.meta.url),ge=ce(le),x=null;function ue(){let n=ge;for(let e=0;e<5;e++){let t=U(n,"specs.yaml");if(ae(t))return t;n=U(n,"..")}throw new Error("Could not find specs.yaml")}function fe(){if(!x){let n=ue(),e=re(n,"utf8");x=$.parse(e)}return x}function k(n,e){let i=fe().commands.find(s=>s.name===n);return i?e&&i.operations?i.operations.find(s=>s.name===e)||null:i:null}function h(n,e,t){let i=k(n,t);return!i||!i.arguments?null:i.arguments.find(s=>s.name===e)||null}function y(n){return n.options?Array.isArray(n.options)&&typeof n.options[0]=="string"?n.options.map(e=>({name:e,message:e.charAt(0).toUpperCase()+e.slice(1),value:e})):Array.isArray(n.options)&&typeof n.options[0]=="object"?n.options.map(e=>({name:e.value,message:e.description?`${e.name} - ${e.description}`:e.name,value:e.value})):null:null}import{createBucket as Ee}from"@tigrisdata/storage";import{S3Client as He}from"@aws-sdk/client-s3";import{fromIni as Ae}from"@aws-sdk/credential-providers";import{homedir as q}from"os";import{join as C}from"path";import{readFileSync as pe,writeFileSync as me,existsSync as S,mkdirSync as he}from"fs";import{loadSharedConfigFiles as ye}from"@smithy/shared-ini-file-loader";import{chmod as Ce}from"fs/promises";var p="https://t3.storage.dev",O="https://iam.storageapi.dev";var P=C(q(),".tigris"),A=C(P,"config.json");function Te(){S(P)||he(P,{recursive:!0,mode:448})}function g(){if(S(A))try{let n=pe(A,"utf8");return JSON.parse(n)}catch{return{}}return{}}async function _(n){Te(),me(A,JSON.stringify(n,null,2),{mode:384});try{await Ce(A,384)}catch{}}async function N(n){let e=g();e.tokens=n,await _(e)}async function T(){return g().tokens||null}async function b(){let n=g();delete n.tokens,await _(n)}async function j(n){let e=g();e.organizations=n,await _(e)}function W(){return g().organizations||[]}function D(){return g().selectedOrganization||null}function Y(){if(process.env.TIGRIS_STORAGE_ACCESS_KEY_ID||process.env.TIGRIS_STORAGE_SECRET_ACCESS_KEY){let i=process.env.TIGRIS_STORAGE_ACCESS_KEY_ID,s=process.env.TIGRIS_STORAGE_SECRET_ACCESS_KEY;if(!i||!s)return null;let o=process.env.TIGRIS_STORAGE_ENDPOINT||p;return{accessKeyId:i,secretAccessKey:s,endpoint:o}}let n=process.env.AWS_ACCESS_KEY_ID,e=process.env.AWS_SECRET_ACCESS_KEY;if(!n||!e)return null;let t=process.env.AWS_ENDPOINT_URL_S3||p;return{accessKeyId:n,secretAccessKey:e,endpoint:t}}function V(){if(!process.env.AWS_PROFILE)return!1;let n=C(q(),".aws");return S(C(n,"credentials"))||S(C(n,"config"))}async function B(n){try{let{configFile:e}=await ye(),t=e[n];return t?{endpoint:t.endpoint_url_s3||t.endpoint_url,iamEndpoint:t.endpoint_url_iam,region:t.region}:{}}catch{return{}}}function M(){let n=g();return n.temporaryCredentials||n.credentials||null}async function H(n){let e=g();e.loginMethod=n,await _(e)}function J(){return g().loginMethod||null}import w from"axios";import Se from"open";function I(){let n=process.env.TIGRIS_ENV==="development",e=process.env.AUTH0_DOMAIN||n?"auth-dev.tigris.dev":"auth.tigris.dev",t=process.env.AUTH0_CLIENT_ID||n?"JdJVYIyw0O1uHi5L5OJH903qaWBgd3gF":"DMejqeM3CQ4IqTjEcd3oA9eEiT40hn8D",i=process.env.AUTH0_AUDIENCE||n?"https://tigris-api-dev":"https://tigris-os-api";return{domain:e,clientId:t,audience:i}}var Q=process.env.TIGRIS_CLAIMS_NAMESPACE||"https://tigris";function X(){return process.env.TIGRIS_STORAGE_ENDPOINT||process.env.TIGRIS_IAM_ENDPOINT?{endpoint:process.env.TIGRIS_STORAGE_ENDPOINT||p,iamEndpoint:process.env.TIGRIS_IAM_ENDPOINT||O}:{endpoint:process.env.AWS_ENDPOINT_URL_S3||p,iamEndpoint:process.env.AWS_ENDPOINT_URL_IAM||O}}var K=class{config;baseUrl;constructor(){this.config=I(),this.baseUrl=`https://${this.config.domain}`}async login(e){let i=(await w.post(`${this.baseUrl}/oauth/device/code`,{client_id:this.config.clientId,audience:this.config.audience,scope:"openid profile email offline_access"},{headers:{"Content-Type":"application/x-www-form-urlencoded"}})).data;e?.onDeviceCode?.(i.user_code,i.verification_uri),await this.sleep(2e3);try{await Se(i.verification_uri_complete)}catch{}e?.onWaiting?.();let s=await this.pollForToken(i.device_code,i.interval||5);await N(s),H("oauth"),await this.extractAndStoreOrganizations(s.idToken)}async pollForToken(e,t){let s=0;for(;s<60;){s++;try{let c=(await w.post(`${this.baseUrl}/oauth/token`,{client_id:this.config.clientId,device_code:e,grant_type:"urn:ietf:params:oauth:grant-type:device_code"},{headers:{"Content-Type":"application/x-www-form-urlencoded"}})).data,r=Date.now()+(c.expires_in||3600)*1e3;return{accessToken:c.access_token,refreshToken:c.refresh_token,idToken:c.id_token,expiresAt:r}}catch(o){if(w.isAxiosError(o)&&o.response){let c=o.response.data?.error;if(c==="authorization_pending"){await this.sleep(t*1e3);continue}if(c==="slow_down"){t+=5,await this.sleep(t*1e3);continue}throw new Error(o.response.data?.error_description||"Authentication failed")}throw o}}throw new Error("Authentication timed out. Please try again.")}async getAccessToken(){let e=await T();if(!e)throw new Error('Not authenticated. Please run "tigris login" to authenticate.');let t=300*1e3;return Date.now()+t>=e.expiresAt&&(e=await this.refreshAccessToken(e)),e.accessToken}async refreshAccessToken(e){let t=null;if(e?.refreshToken?t=e:t=await T(),!t)throw new Error('No refresh token available. Please run "tigris login" to re-authenticate.');try{let s=(await w.post(`${this.baseUrl}/oauth/token`,{client_id:this.config.clientId,grant_type:"refresh_token",refresh_token:t.refreshToken,scope:"openid profile email offline_access"},{headers:{"Content-Type":"application/x-www-form-urlencoded"}})).data,o={accessToken:s.access_token,refreshToken:s.refresh_token||t.refreshToken,idToken:s.id_token||t.idToken,expiresAt:Date.now()+(s.expires_in||3600)*1e3};return await N(o),o}catch{throw await b(),new Error('Token refresh failed. Please run "tigris login" to re-authenticate.')}}async getIdTokenClaims(){let e=await T();if(!e||!e.idToken)throw new Error('Not authenticated. Please run "tigris login" to authenticate.');try{let t=e.idToken.split(".")[1],i=Buffer.from(t,"base64").toString("utf8");return JSON.parse(i)}catch{throw new Error("Failed to decode ID token")}}async extractAndStoreOrganizations(e){if(e)try{let t=e.split(".")[1],i=Buffer.from(t,"base64").toString("utf8"),o=JSON.parse(i)[Q];if(!o)return;let c=o?.ns?.map(r=>typeof r=="object"&&r!==null?{id:r.id,name:r.name,displayName:r.name}:{id:r,name:r,displayName:r})||[];if(c.length===0)return;j(c)}catch{}}async getOrganizations(){return await this.getAccessToken(),W()}async logout(){await b()}async isAuthenticated(){return await T()!==null}sleep(e){return new Promise(t=>setTimeout(t,e))}},R=null;function Z(){return R||(R=new K),R}var E=X(),_e=I();async function Ie(){return J()}async function ee(){if(V()){let i=process.env.AWS_PROFILE||"default",s=await B(i),o=await Ae({profile:i})();return{accessKeyId:o.accessKeyId,secretAccessKey:o.secretAccessKey,endpoint:s.endpoint||E.endpoint||p,iamEndpoint:s.iamEndpoint||E.iamEndpoint}}let n=await Ie();if(n==="oauth"){let s=await Z().getAccessToken();if(!D())throw new Error('No organization selected. Please run "tigris orgs select" first.');return{sessionToken:s,accessKeyId:"",secretAccessKey:"",endpoint:E.endpoint,organizationId:D()??void 0,iamEndpoint:E.iamEndpoint,authDomain:_e.domain}}if(n==="credentials"){let i=M();if(i)return{accessKeyId:i.accessKeyId,secretAccessKey:i.secretAccessKey,endpoint:i.endpoint}}let e=Y();if(e)return{accessKeyId:e.accessKeyId,secretAccessKey:e.secretAccessKey,endpoint:e.endpoint};let t=M();if(t)return{accessKeyId:t.accessKeyId,secretAccessKey:t.secretAccessKey,endpoint:t.endpoint};throw new Error('Not authenticated. Please run "tigris login" or "tigris configure" first.')}var ne={success:"\u2714",failure:"\u2716",hint:"\u2192"};function te(){return process.stdout.isTTY===!0}function L(n){let e=k(n.command,n.operation);if(e)return e.messages}function z(n,e){let t=n;return t=t.replace(/\\n/g,`
-`),e&&(t=t.replace(/\{\{(\w+)\}\}/g,(i,s)=>{let o=e[s];return o!==void 0?String(o):`{{${s}}}`})),t}function ie(n,e){if(!te())return;let t=L(n);t?.onStart&&console.log(z(t.onStart,e))}function se(n,e){if(!te())return;let t=L(n);t?.onSuccess&&console.log(`${ne.success} ${z(t.onSuccess,e)}`)}function G(n,e,t){let i=L(n);i?.onFailure&&console.error(`${ne.failure} ${z(i.onFailure,t)}`),e&&console.error(`  ${e}`)}function oe(n,e){return{command:n,operation:e}}var{prompt:ve}=we,v=oe("buckets","create");async function xe(n){ie(v);let e=!f(n,["name"]),t=f(n,["name"]),i=e?void 0:f(n,["access","a","A"]),s=e?void 0:f(n,["enable-snapshots","s","S"]),o=e?void 0:f(n,["default-tier","t","T"]),c=e?void 0:f(n,["consistency","c","C"]),r=e?void 0:f(n,["region","r","R"]),u=[];if((!t||e)&&u.push({type:"input",name:"name",message:"Bucket name:",required:!0}),!i||e){let a=h("buckets","access","create"),l=y(a),d=l?.findIndex(m=>m.value===a?.default);u.push({type:"select",name:"access",message:"Access level:",choices:l||[],initial:d!==void 0&&d>=0?d:0})}if(!o||e){let a=h("buckets","default-tier","create"),l=y(a),d=l?.findIndex(m=>m.value===a?.default);u.push({type:"select",name:"defaultTier",message:"Default storage tier:",choices:l||[],initial:d!==void 0&&d>=0?d:0})}if(!c||e){let a=h("buckets","consistency","create"),l=y(a),d=l?.findIndex(m=>m.value===a?.default);u.push({type:"select",name:"consistency",message:"Consistency level:",choices:l||[],initial:d!==void 0&&d>=0?d:0})}if(!r||e){let a=h("buckets","region","create"),l=y(a),d=l?.findIndex(m=>m.value===a?.default);u.push({type:"select",name:"region",message:"Region:",choices:l||[],initial:d!==void 0&&d>=0?d:0})}if((s===void 0||e)&&u.push({type:"confirm",name:"enableSnapshots",message:"Enable snapshots?",initial:!0}),u.length>0){let a=await ve(u);t=t||a.name,i=i||a.access,s=s!==void 0?s:a.enableSnapshots,o=o||a.defaultTier,c=c||a.consistency,r=r!==void 0?r:a.region}t||(G(v,"Bucket name is required"),process.exit(1));let{error:F}=await Ee(t,{defaultTier:o??"STANDARD",consistency:c==="strict"?"strict":"default",enableSnapshot:s===!0,region:r!=="global"&&r!==void 0?r.split(","):void 0,config:await ee()});F&&(G(v,F.message),process.exit(1)),se(v,{name:t})}export{xe as default};
+import{a as x,b as k,c as b,g as A}from"../../chunk-A3TXP5Y2.js";import{c as d,d as f}from"../../chunk-4LGKN5DA.js";import{b as S}from"../../chunk-TQWT7ROJ.js";import"../../chunk-WE6NZ2ZK.js";import"../../chunk-NYAHHQ3A.js";import{a as c}from"../../chunk-JRALYIRA.js";import"../../chunk-PKWQDQLT.js";import"../../chunk-4BZ377KV.js";import I from"enquirer";import{createBucket as v}from"@tigrisdata/storage";var{prompt:T}=I,p=A("buckets","create");async function C(a){x(p);let t=!c(a,["name"]),u=c(a,["name"]),h=t?void 0:c(a,["access","a","A"]),l=t?void 0:c(a,["enable-snapshots","s","S"]),g=t?void 0:c(a,["default-tier","t","T"]),m=t?void 0:c(a,["consistency","c","C"]),r=t?void 0:c(a,["region","r","R"]),i=[];if((!u||t)&&i.push({type:"input",name:"name",message:"Bucket name:",required:!0}),!h||t){let e=d("buckets","access","create"),s=f(e),n=s?.findIndex(o=>o.value===e?.default);i.push({type:"select",name:"access",message:"Access level:",choices:s||[],initial:n!==void 0&&n>=0?n:0})}if(!g||t){let e=d("buckets","default-tier","create"),s=f(e),n=s?.findIndex(o=>o.value===e?.default);i.push({type:"select",name:"defaultTier",message:"Default storage tier:",choices:s||[],initial:n!==void 0&&n>=0?n:0})}if(!m||t){let e=d("buckets","consistency","create"),s=f(e),n=s?.findIndex(o=>o.value===e?.default);i.push({type:"select",name:"consistency",message:"Consistency level:",choices:s||[],initial:n!==void 0&&n>=0?n:0})}if(!r||t){let e=d("buckets","region","create"),s=f(e),n=s?.findIndex(o=>o.value===e?.default);i.push({type:"select",name:"region",message:"Region:",choices:s||[],initial:n!==void 0&&n>=0?n:0})}if((l===void 0||t)&&i.push({type:"confirm",name:"enableSnapshots",message:"Enable snapshots?",initial:!0}),i.length>0){let e=await T(i);u=u||e.name,h=h||e.access,l=l!==void 0?l:e.enableSnapshots,g=g||e.defaultTier,m=m||e.consistency,r=r!==void 0?r:e.region}u||(b(p,"Bucket name is required"),process.exit(1));let{error:y}=await v(u,{defaultTier:g??"STANDARD",consistency:m==="strict"?"strict":"default",enableSnapshot:l===!0,region:r!=="global"&&r!==void 0?r.split(","):void 0,config:await S()});y&&(b(p,y.message),process.exit(1)),k(p,{name:u})}export{C as default};

package/dist/lib/buckets/delete.js

@@ -1,2 +1 @@
-function N(n,e,t){for(let o of e)if(n[o]!==void 0)return n[o];return t}import{S3Client as Re}from"@aws-sdk/client-s3";import{fromIni as re}from"@aws-sdk/credential-providers";import{homedir as M}from"os";import{join as l}from"path";import{readFileSync as X,writeFileSync as Z,existsSync as g,mkdirSync as ee}from"fs";import{loadSharedConfigFiles as ne}from"@smithy/shared-ini-file-loader";import{chmod as te}from"fs/promises";var d="https://t3.storage.dev",T="https://iam.storageapi.dev";var S=l(M(),".tigris"),f=l(S,"config.json");function oe(){g(S)||ee(S,{recursive:!0,mode:448})}function c(){if(g(f))try{let n=X(f,"utf8");return JSON.parse(n)}catch{return{}}return{}}async function u(n){oe(),Z(f,JSON.stringify(n,null,2),{mode:384});try{await te(f,384)}catch{}}async function A(n){let e=c();e.tokens=n,await u(e)}async function p(){return c().tokens||null}async function _(){let n=c();delete n.tokens,await u(n)}async function D(n){let e=c();e.organizations=n,await u(e)}function K(){return c().organizations||[]}function w(){return c().selectedOrganization||null}function R(){if(process.env.TIGRIS_STORAGE_ACCESS_KEY_ID||process.env.TIGRIS_STORAGE_SECRET_ACCESS_KEY){let o=process.env.TIGRIS_STORAGE_ACCESS_KEY_ID,i=process.env.TIGRIS_STORAGE_SECRET_ACCESS_KEY;if(!o||!i)return null;let r=process.env.TIGRIS_STORAGE_ENDPOINT||d;return{accessKeyId:o,secretAccessKey:i,endpoint:r}}let n=process.env.AWS_ACCESS_KEY_ID,e=process.env.AWS_SECRET_ACCESS_KEY;if(!n||!e)return null;let t=process.env.AWS_ENDPOINT_URL_S3||d;return{accessKeyId:n,secretAccessKey:e,endpoint:t}}function b(){if(!process.env.AWS_PROFILE)return!1;let n=l(M(),".aws");return g(l(n,"credentials"))||g(l(n,"config"))}async function L(n){try{let{configFile:e}=await ne(),t=e[n];return t?{endpoint:t.endpoint_url_s3||t.endpoint_url,iamEndpoint:t.endpoint_url_iam,region:t.region}:{}}catch{return{}}}function I(){let n=c();return n.temporaryCredentials||n.credentials||null}async function z(n){let e=c();e.loginMethod=n,await u(e)}function G(){return c().loginMethod||null}import C from"axios";import ie from"open";function m(){let n=process.env.TIGRIS_ENV==="development",e=process.env.AUTH0_DOMAIN||n?"auth-dev.tigris.dev":"auth.tigris.dev",t=process.env.AUTH0_CLIENT_ID||n?"JdJVYIyw0O1uHi5L5OJH903qaWBgd3gF":"DMejqeM3CQ4IqTjEcd3oA9eEiT40hn8D",o=process.env.AUTH0_AUDIENCE||n?"https://tigris-api-dev":"https://tigris-os-api";return{domain:e,clientId:t,audience:o}}var F=process.env.TIGRIS_CLAIMS_NAMESPACE||"https://tigris";function U(){return process.env.TIGRIS_STORAGE_ENDPOINT||process.env.TIGRIS_IAM_ENDPOINT?{endpoint:process.env.TIGRIS_STORAGE_ENDPOINT||d,iamEndpoint:process.env.TIGRIS_IAM_ENDPOINT||T}:{endpoint:process.env.AWS_ENDPOINT_URL_S3||d,iamEndpoint:process.env.AWS_ENDPOINT_URL_IAM||T}}var k=class{config;baseUrl;constructor(){this.config=m(),this.baseUrl=`https://${this.config.domain}`}async login(e){let o=(await C.post(`${this.baseUrl}/oauth/device/code`,{client_id:this.config.clientId,audience:this.config.audience,scope:"openid profile email offline_access"},{headers:{"Content-Type":"application/x-www-form-urlencoded"}})).data;e?.onDeviceCode?.(o.user_code,o.verification_uri),await this.sleep(2e3);try{await ie(o.verification_uri_complete)}catch{}e?.onWaiting?.();let i=await this.pollForToken(o.device_code,o.interval||5);await A(i),z("oauth"),await this.extractAndStoreOrganizations(i.idToken)}async pollForToken(e,t){let i=0;for(;i<60;){i++;try{let s=(await C.post(`${this.baseUrl}/oauth/token`,{client_id:this.config.clientId,device_code:e,grant_type:"urn:ietf:params:oauth:grant-type:device_code"},{headers:{"Content-Type":"application/x-www-form-urlencoded"}})).data,a=Date.now()+(s.expires_in||3600)*1e3;return{accessToken:s.access_token,refreshToken:s.refresh_token,idToken:s.id_token,expiresAt:a}}catch(r){if(C.isAxiosError(r)&&r.response){let s=r.response.data?.error;if(s==="authorization_pending"){await this.sleep(t*1e3);continue}if(s==="slow_down"){t+=5,await this.sleep(t*1e3);continue}throw new Error(r.response.data?.error_description||"Authentication failed")}throw r}}throw new Error("Authentication timed out. Please try again.")}async getAccessToken(){let e=await p();if(!e)throw new Error('Not authenticated. Please run "tigris login" to authenticate.');let t=300*1e3;return Date.now()+t>=e.expiresAt&&(e=await this.refreshAccessToken(e)),e.accessToken}async refreshAccessToken(e){let t=null;if(e?.refreshToken?t=e:t=await p(),!t)throw new Error('No refresh token available. Please run "tigris login" to re-authenticate.');try{let i=(await C.post(`${this.baseUrl}/oauth/token`,{client_id:this.config.clientId,grant_type:"refresh_token",refresh_token:t.refreshToken,scope:"openid profile email offline_access"},{headers:{"Content-Type":"application/x-www-form-urlencoded"}})).data,r={accessToken:i.access_token,refreshToken:i.refresh_token||t.refreshToken,idToken:i.id_token||t.idToken,expiresAt:Date.now()+(i.expires_in||3600)*1e3};return await A(r),r}catch{throw await _(),new Error('Token refresh failed. Please run "tigris login" to re-authenticate.')}}async getIdTokenClaims(){let e=await p();if(!e||!e.idToken)throw new Error('Not authenticated. Please run "tigris login" to authenticate.');try{let t=e.idToken.split(".")[1],o=Buffer.from(t,"base64").toString("utf8");return JSON.parse(o)}catch{throw new Error("Failed to decode ID token")}}async extractAndStoreOrganizations(e){if(e)try{let t=e.split(".")[1],o=Buffer.from(t,"base64").toString("utf8"),r=JSON.parse(o)[F];if(!r)return;let s=r?.ns?.map(a=>typeof a=="object"&&a!==null?{id:a.id,name:a.name,displayName:a.name}:{id:a,name:a,displayName:a})||[];if(s.length===0)return;D(s)}catch{}}async getOrganizations(){return await this.getAccessToken(),K()}async logout(){await _()}async isAuthenticated(){return await p()!==null}sleep(e){return new Promise(t=>setTimeout(t,e))}},E=null;function $(){return E||(E=new k),E}var y=U(),se=m();async function ae(){return G()}async function j(){if(b()){let o=process.env.AWS_PROFILE||"default",i=await L(o),r=await re({profile:o})();return{accessKeyId:r.accessKeyId,secretAccessKey:r.secretAccessKey,endpoint:i.endpoint||y.endpoint||d,iamEndpoint:i.iamEndpoint||y.iamEndpoint}}let n=await ae();if(n==="oauth"){let i=await $().getAccessToken();if(!w())throw new Error('No organization selected. Please run "tigris orgs select" first.');return{sessionToken:i,accessKeyId:"",secretAccessKey:"",endpoint:y.endpoint,organizationId:w()??void 0,iamEndpoint:y.iamEndpoint,authDomain:se.domain}}if(n==="credentials"){let o=I();if(o)return{accessKeyId:o.accessKeyId,secretAccessKey:o.secretAccessKey,endpoint:o.endpoint}}let e=R();if(e)return{accessKeyId:e.accessKeyId,secretAccessKey:e.secretAccessKey,endpoint:e.endpoint};let t=I();if(t)return{accessKeyId:t.accessKeyId,secretAccessKey:t.secretAccessKey,endpoint:t.endpoint};throw new Error('Not authenticated. Please run "tigris login" or "tigris configure" first.')}import{removeBucket as Ce}from"@tigrisdata/storage";import{readFileSync as ce,existsSync as de}from"fs";import{join as W,dirname as le}from"path";import{fileURLToPath as pe}from"url";import*as Y from"yaml";var ge=pe(import.meta.url),fe=le(ge),v=null;function ue(){let n=fe;for(let e=0;e<5;e++){let t=W(n,"specs.yaml");if(de(t))return t;n=W(n,"..")}throw new Error("Could not find specs.yaml")}function me(){if(!v){let n=ue(),e=ce(n,"utf8");v=Y.parse(e)}return v}function V(n,e){let o=me().commands.find(i=>i.name===n);return o?e&&o.operations?o.operations.find(i=>i.name===e)||null:o:null}var q={success:"\u2714",failure:"\u2716",hint:"\u2192"};function B(){return process.stdout.isTTY===!0}function x(n){let e=V(n.command,n.operation);if(e)return e.messages}function O(n,e){let t=n;return t=t.replace(/\\n/g,`
-`),e&&(t=t.replace(/\{\{(\w+)\}\}/g,(o,i)=>{let r=e[i];return r!==void 0?String(r):`{{${i}}}`})),t}function H(n,e){if(!B())return;let t=x(n);t?.onStart&&console.log(O(t.onStart,e))}function J(n,e){if(!B())return;let t=x(n);t?.onSuccess&&console.log(`${q.success} ${O(t.onSuccess,e)}`)}function P(n,e,t){let o=x(n);o?.onFailure&&console.error(`${q.failure} ${O(o.onFailure,t)}`),e&&console.error(`  ${e}`)}function Q(n,e){return{command:n,operation:e}}var h=Q("buckets","delete");async function ye(n){H(h);let e=N(n,["name"]);e||(P(h,"Bucket name is required"),process.exit(1));let t=Array.isArray(e)?e:[e],o=await j();for(let i of t){let{error:r}=await Ce(i,{config:o});r&&(P(h,r.message,{name:i}),process.exit(1)),J(h,{name:i})}}export{ye as default};
+import{a as c,b as a,c as o,g as m}from"../../chunk-A3TXP5Y2.js";import"../../chunk-4LGKN5DA.js";import{b as s}from"../../chunk-TQWT7ROJ.js";import"../../chunk-WE6NZ2ZK.js";import"../../chunk-NYAHHQ3A.js";import{a as i}from"../../chunk-JRALYIRA.js";import"../../chunk-PKWQDQLT.js";import"../../chunk-4BZ377KV.js";import{removeBucket as g}from"@tigrisdata/storage";var e=m("buckets","delete");async function k(f){c(e);let t=i(f,["name"]);t||(o(e,"Bucket name is required"),process.exit(1));let p=Array.isArray(t)?t:[t],u=await s();for(let r of p){let{error:n}=await g(r,{config:u});n&&(o(e,n.message,{name:r}),process.exit(1)),a(e,{name:r})}}export{k as default};

package/dist/lib/buckets/get.js

@@ -1,7 +1 @@
-function K(n,e,t){for(let o of e)if(n[o]!==void 0)return n[o];return t}function se(n){return JSON.stringify(n,null,2)}function ae(n,e="    "){return Object.entries(n).map(([t,o])=>`${e}<${t}>${o}</${t}>`).join(`
-`)}function ce(n,e,t){let o=[`<${e}>`];return n.forEach(r=>{o.push(`  <${t}>`),o.push(ae(r,"    ")),o.push(`  </${t}>`)}),o.push(`</${e}>`),o.join(`
-`)}function z(n){if(n==null)return"";if(n instanceof Date)return L(n);if(typeof n=="string"){let e=new Date(n);if(!isNaN(e.getTime())&&n.includes("T"))return L(e)}return String(n)}function L(n){return new Intl.DateTimeFormat(void 0,{year:"numeric",month:"short",day:"numeric",hour:"2-digit",minute:"2-digit"}).format(n)}function de(n,e){return e.map(t=>{if(t.width)return t.width;let o=t.header.length,r=n.reduce((i,s)=>{let a=z(s[t.key]);return Math.max(i,a.length)},0);return Math.max(o,r)})}function ue(n,e){let t=[],o=de(n,e),r="\u250C"+o.map(c=>"\u2500".repeat(c+2)).join("\u252C")+"\u2510",i="\u251C"+o.map(c=>"\u2500".repeat(c+2)).join("\u253C")+"\u2524",s="\u2514"+o.map(c=>"\u2500".repeat(c+2)).join("\u2534")+"\u2518";t.push(`
-`+r);let a="\u2502 "+e.map((c,S)=>c.header.padEnd(o[S])).join(" \u2502 ")+" \u2502";return t.push(a),t.push(i),n.forEach(c=>{let S=e.map((M,R)=>{let b=z(c[M.key]);return M.align==="right"?b.padStart(o[R]):b.padEnd(o[R])});t.push("\u2502 "+S.join(" \u2502 ")+" \u2502")}),t.push(s+`
-`),t.join(`
-`)}function F(n,e,t,o,r){switch(e){case"json":return se(n);case"xml":return ce(n,t,o);default:return ue(n,r)}}import{S3Client as Je}from"@aws-sdk/client-s3";import{fromIni as Te}from"@aws-sdk/credential-providers";import{homedir as G}from"os";import{join as p}from"path";import{readFileSync as pe,writeFileSync as le,existsSync as g,mkdirSync as ge}from"fs";import{loadSharedConfigFiles as fe}from"@smithy/shared-ini-file-loader";import{chmod as me}from"fs/promises";var u="https://t3.storage.dev",w="https://iam.storageapi.dev";var A=p(G(),".tigris"),f=p(A,"config.json");function he(){g(A)||ge(A,{recursive:!0,mode:448})}function d(){if(g(f))try{let n=pe(f,"utf8");return JSON.parse(n)}catch{return{}}return{}}async function m(n){he(),le(f,JSON.stringify(n,null,2),{mode:384});try{await me(f,384)}catch{}}async function _(n){let e=d();e.tokens=n,await m(e)}async function l(){return d().tokens||null}async function I(){let n=d();delete n.tokens,await m(n)}async function j(n){let e=d();e.organizations=n,await m(e)}function $(){return d().organizations||[]}function k(){return d().selectedOrganization||null}function U(){if(process.env.TIGRIS_STORAGE_ACCESS_KEY_ID||process.env.TIGRIS_STORAGE_SECRET_ACCESS_KEY){let o=process.env.TIGRIS_STORAGE_ACCESS_KEY_ID,r=process.env.TIGRIS_STORAGE_SECRET_ACCESS_KEY;if(!o||!r)return null;let i=process.env.TIGRIS_STORAGE_ENDPOINT||u;return{accessKeyId:o,secretAccessKey:r,endpoint:i}}let n=process.env.AWS_ACCESS_KEY_ID,e=process.env.AWS_SECRET_ACCESS_KEY;if(!n||!e)return null;let t=process.env.AWS_ENDPOINT_URL_S3||u;return{accessKeyId:n,secretAccessKey:e,endpoint:t}}function B(){if(!process.env.AWS_PROFILE)return!1;let n=p(G(),".aws");return g(p(n,"credentials"))||g(p(n,"config"))}async function W(n){try{let{configFile:e}=await fe(),t=e[n];return t?{endpoint:t.endpoint_url_s3||t.endpoint_url,iamEndpoint:t.endpoint_url_iam,region:t.region}:{}}catch{return{}}}function x(){let n=d();return n.temporaryCredentials||n.credentials||null}async function V(n){let e=d();e.loginMethod=n,await m(e)}function Y(){return d().loginMethod||null}import y from"axios";import ye from"open";function h(){let n=process.env.TIGRIS_ENV==="development",e=process.env.AUTH0_DOMAIN||n?"auth-dev.tigris.dev":"auth.tigris.dev",t=process.env.AUTH0_CLIENT_ID||n?"JdJVYIyw0O1uHi5L5OJH903qaWBgd3gF":"DMejqeM3CQ4IqTjEcd3oA9eEiT40hn8D",o=process.env.AUTH0_AUDIENCE||n?"https://tigris-api-dev":"https://tigris-os-api";return{domain:e,clientId:t,audience:o}}var H=process.env.TIGRIS_CLAIMS_NAMESPACE||"https://tigris";function J(){return process.env.TIGRIS_STORAGE_ENDPOINT||process.env.TIGRIS_IAM_ENDPOINT?{endpoint:process.env.TIGRIS_STORAGE_ENDPOINT||u,iamEndpoint:process.env.TIGRIS_IAM_ENDPOINT||w}:{endpoint:process.env.AWS_ENDPOINT_URL_S3||u,iamEndpoint:process.env.AWS_ENDPOINT_URL_IAM||w}}var v=class{config;baseUrl;constructor(){this.config=h(),this.baseUrl=`https://${this.config.domain}`}async login(e){let o=(await y.post(`${this.baseUrl}/oauth/device/code`,{client_id:this.config.clientId,audience:this.config.audience,scope:"openid profile email offline_access"},{headers:{"Content-Type":"application/x-www-form-urlencoded"}})).data;e?.onDeviceCode?.(o.user_code,o.verification_uri),await this.sleep(2e3);try{await ye(o.verification_uri_complete)}catch{}e?.onWaiting?.();let r=await this.pollForToken(o.device_code,o.interval||5);await _(r),V("oauth"),await this.extractAndStoreOrganizations(r.idToken)}async pollForToken(e,t){let r=0;for(;r<60;){r++;try{let s=(await y.post(`${this.baseUrl}/oauth/token`,{client_id:this.config.clientId,device_code:e,grant_type:"urn:ietf:params:oauth:grant-type:device_code"},{headers:{"Content-Type":"application/x-www-form-urlencoded"}})).data,a=Date.now()+(s.expires_in||3600)*1e3;return{accessToken:s.access_token,refreshToken:s.refresh_token,idToken:s.id_token,expiresAt:a}}catch(i){if(y.isAxiosError(i)&&i.response){let s=i.response.data?.error;if(s==="authorization_pending"){await this.sleep(t*1e3);continue}if(s==="slow_down"){t+=5,await this.sleep(t*1e3);continue}throw new Error(i.response.data?.error_description||"Authentication failed")}throw i}}throw new Error("Authentication timed out. Please try again.")}async getAccessToken(){let e=await l();if(!e)throw new Error('Not authenticated. Please run "tigris login" to authenticate.');let t=300*1e3;return Date.now()+t>=e.expiresAt&&(e=await this.refreshAccessToken(e)),e.accessToken}async refreshAccessToken(e){let t=null;if(e?.refreshToken?t=e:t=await l(),!t)throw new Error('No refresh token available. Please run "tigris login" to re-authenticate.');try{let r=(await y.post(`${this.baseUrl}/oauth/token`,{client_id:this.config.clientId,grant_type:"refresh_token",refresh_token:t.refreshToken,scope:"openid profile email offline_access"},{headers:{"Content-Type":"application/x-www-form-urlencoded"}})).data,i={accessToken:r.access_token,refreshToken:r.refresh_token||t.refreshToken,idToken:r.id_token||t.idToken,expiresAt:Date.now()+(r.expires_in||3600)*1e3};return await _(i),i}catch{throw await I(),new Error('Token refresh failed. Please run "tigris login" to re-authenticate.')}}async getIdTokenClaims(){let e=await l();if(!e||!e.idToken)throw new Error('Not authenticated. Please run "tigris login" to authenticate.');try{let t=e.idToken.split(".")[1],o=Buffer.from(t,"base64").toString("utf8");return JSON.parse(o)}catch{throw new Error("Failed to decode ID token")}}async extractAndStoreOrganizations(e){if(e)try{let t=e.split(".")[1],o=Buffer.from(t,"base64").toString("utf8"),i=JSON.parse(o)[H];if(!i)return;let s=i?.ns?.map(a=>typeof a=="object"&&a!==null?{id:a.id,name:a.name,displayName:a.name}:{id:a,name:a,displayName:a})||[];if(s.length===0)return;j(s)}catch{}}async getOrganizations(){return await this.getAccessToken(),$()}async logout(){await I()}async isAuthenticated(){return await l()!==null}sleep(e){return new Promise(t=>setTimeout(t,e))}},E=null;function q(){return E||(E=new v),E}var T=J(),Ce=h();async function Se(){return Y()}async function X(){if(B()){let o=process.env.AWS_PROFILE||"default",r=await W(o),i=await Te({profile:o})();return{accessKeyId:i.accessKeyId,secretAccessKey:i.secretAccessKey,endpoint:r.endpoint||T.endpoint||u,iamEndpoint:r.iamEndpoint||T.iamEndpoint}}let n=await Se();if(n==="oauth"){let r=await q().getAccessToken();if(!k())throw new Error('No organization selected. Please run "tigris orgs select" first.');return{sessionToken:r,accessKeyId:"",secretAccessKey:"",endpoint:T.endpoint,organizationId:k()??void 0,iamEndpoint:T.iamEndpoint,authDomain:Ce.domain}}if(n==="credentials"){let o=x();if(o)return{accessKeyId:o.accessKeyId,secretAccessKey:o.secretAccessKey,endpoint:o.endpoint}}let e=U();if(e)return{accessKeyId:e.accessKeyId,secretAccessKey:e.secretAccessKey,endpoint:e.endpoint};let t=x();if(t)return{accessKeyId:t.accessKeyId,secretAccessKey:t.secretAccessKey,endpoint:t.endpoint};throw new Error('Not authenticated. Please run "tigris login" or "tigris configure" first.')}import{getBucketInfo as Oe}from"@tigrisdata/storage";import{readFileSync as we,existsSync as Ae}from"fs";import{join as Q,dirname as _e}from"path";import{fileURLToPath as Ie}from"url";import*as Z from"yaml";var ke=Ie(import.meta.url),xe=_e(ke),O=null;function Ee(){let n=xe;for(let e=0;e<5;e++){let t=Q(n,"specs.yaml");if(Ae(t))return t;n=Q(n,"..")}throw new Error("Could not find specs.yaml")}function ve(){if(!O){let n=Ee(),e=we(n,"utf8");O=Z.parse(e)}return O}function ee(n,e){let o=ve().commands.find(r=>r.name===n);return o?e&&o.operations?o.operations.find(r=>r.name===e)||null:o:null}var ne={success:"\u2714",failure:"\u2716",hint:"\u2192"};function te(){return process.stdout.isTTY===!0}function P(n){let e=ee(n.command,n.operation);if(e)return e.messages}function N(n,e){let t=n;return t=t.replace(/\\n/g,`
-`),e&&(t=t.replace(/\{\{(\w+)\}\}/g,(o,r)=>{let i=e[r];return i!==void 0?String(i):`{{${r}}}`})),t}function oe(n,e){if(!te())return;let t=P(n);t?.onStart&&console.log(N(t.onStart,e))}function re(n,e){if(!te())return;let t=P(n);t?.onSuccess&&console.log(`${ne.success} ${N(t.onSuccess,e)}`)}function D(n,e,t){let o=P(n);o?.onFailure&&console.error(`${ne.failure} ${N(o.onFailure,t)}`),e&&console.error(`  ${e}`)}function ie(n,e){return{command:n,operation:e}}var C=ie("buckets","get");async function Pe(n){oe(C);let e=K(n,["name"]);e||(D(C,"Bucket name is required"),process.exit(1));let{data:t,error:o}=await Oe(e,{config:await X()});o&&(D(C,o.message),process.exit(1));let r=[{property:"Name",value:e},{property:"Snapshots Enabled",value:t.isSnapshotEnabled?"Yes":"No"},{property:"Has Forks",value:t.hasForks?"Yes":"No"},...t.sourceBucketName?[{property:"Source Bucket",value:t.sourceBucketName}]:[],...t.sourceBucketSnapshot?[{property:"Source Snapshot",value:t.sourceBucketSnapshot}]:[]],i=F(r,"table","bucket","property",[{key:"property",header:"Property"},{key:"value",header:"Value"}]);console.log(i),re(C)}export{Pe as default};
+import{a as u,b as c,c as r,g as i}from"../../chunk-A3TXP5Y2.js";import"../../chunk-4LGKN5DA.js";import{b as p}from"../../chunk-TQWT7ROJ.js";import"../../chunk-WE6NZ2ZK.js";import"../../chunk-NYAHHQ3A.js";import{f as n}from"../../chunk-HGIJOGCZ.js";import{a as s}from"../../chunk-JRALYIRA.js";import"../../chunk-PKWQDQLT.js";import"../../chunk-4BZ377KV.js";import{getBucketInfo as l}from"@tigrisdata/storage";var t=i("buckets","get");async function g(m){u(t);let o=s(m,["name"]);o||(r(t,"Bucket name is required"),process.exit(1));let{data:e,error:a}=await l(o,{config:await p()});a&&(r(t,a.message),process.exit(1));let f=[{property:"Name",value:o},{property:"Snapshots Enabled",value:e.isSnapshotEnabled?"Yes":"No"},{property:"Has Forks",value:e.hasForks?"Yes":"No"},...e.sourceBucketName?[{property:"Source Bucket",value:e.sourceBucketName}]:[],...e.sourceBucketSnapshot?[{property:"Source Snapshot",value:e.sourceBucketSnapshot}]:[]],k=n(f,"table","bucket","property",[{key:"property",header:"Property"},{key:"value",header:"Value"}]);console.log(k),c(t)}export{g as default};