@wirechunk/cli 0.0.7 → 0.0.8

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@wirechunk/cli",
-  "version": "0.0.7",
+  "version": "0.0.8",
   "private": false,
   "type": "module",
   "scripts": {
@@ -20,11 +20,16 @@
   "bin": {
     "wirechunk": "build/main.js"
   },
+  "files": [
+    "build/main.js"
+  ],
   "imports": {
     "#api": "./src/core-api/api.ts"
   },
   "dependencies": {
-    "argon2": "^0.44.0"
+    "@wirechunk/schemas": "^0.0.30",
+    "argon2": "^0.44.0",
+    "jsonwebtoken": "^9.0.3"
   },
   "devDependencies": {
     "@commander-js/extra-typings": "^14.0.0",

package/src/commands/bootstrap.ts

@@ -1,85 +0,0 @@
-import { randomUUID } from 'node:crypto';
-import { cleanTinyId } from '@wirechunk/lib/clean-small-id.ts';
-import { normalizeDomain } from '@wirechunk/lib/domains.ts';
-import { normalizeEmailAddress } from '@wirechunk/lib/emails.ts';
-import { defaultNotificationEmailBodyTemplate } from '@wirechunk/lib/mixer/form-formatting-templates.ts';
-import type { DatabasePool } from 'slonik';
-import { createPool, sql } from 'slonik';
-import type { Env } from '../env.ts';
-import { requireCoreDbUrl } from '../env.ts';
-import type { WithGlobalOptions } from '../global-options.ts';
-import { voidSelectSchema } from '../util.ts';
-
-const platformHandleAvailable = async (handle: string, db: DatabasePool) =>
-  !(await db.maybeOne(
-    sql.type(voidSelectSchema)`select from "Platforms" where "handle" = ${handle}`,
-  ));
-
-const randomString = () => randomUUID().replaceAll('-', '').slice(0, 10);
-
-type BootstrapOptions = {
-  name: string;
-  handle?: string;
-  // TODO: Require this be set in the environment instead.
-  adminSiteDomain: string;
-  emailSendFrom?: string;
-};
-
-export const bootstrap = async (
-  opts: WithGlobalOptions<BootstrapOptions>,
-  env: Env,
-): Promise<void> => {
-  const db = await createPool(requireCoreDbUrl(env));
-
-  const platformId = cleanTinyId();
-  const name = opts.name.trim();
-  let handle = opts.handle?.trim().toLowerCase().replace(/\s+/g, '-');
-  if (!handle) {
-    handle = name.toLowerCase().replace(/\s+/g, '-');
-    if (!(await platformHandleAvailable(handle, db))) {
-      handle = `${handle}-${randomString()}`;
-    }
-  } else if (!(await platformHandleAvailable(handle, db))) {
-    console.error(`Handle "${handle}" is already in use`);
-    process.exit(1);
-  }
-  const adminSiteDomain = normalizeDomain(opts.adminSiteDomain, { allowPort: true });
-  if (!adminSiteDomain) {
-    console.error('Invalid admin site domain');
-    process.exit(1);
-  }
-  let emailSendFrom: string;
-  if (opts.emailSendFrom) {
-    const normalizeEmailSendFromResult = normalizeEmailAddress(opts.emailSendFrom);
-    if (!normalizeEmailSendFromResult.ok) {
-      console.error(normalizeEmailSendFromResult.error);
-      process.exit(1);
-    }
-    emailSendFrom = normalizeEmailSendFromResult.value;
-  } else {
-    emailSendFrom = `site@${adminSiteDomain}`;
-  }
-
-  await db.transaction(async (db) => {
-    await db.query(
-      sql.type(voidSelectSchema)`
-        insert into "Platforms" (
-          "id",
-          "handle",
-          "name",
-          "defaultFormNotificationEmailBodyTemplate",
-          "emailSendFromAddress"
-        )
-        values (
-          ${platformId},
-          ${handle},
-          ${name},
-          ${defaultNotificationEmailBodyTemplate},
-          ${emailSendFrom}
-        )
-      `,
-    );
-  });
-
-  console.log(`Created platform ${name} with handle ${handle} (ID ${platformId})`);
-};

package/src/commands/create-extension-version.ts

@@ -1,182 +0,0 @@
-import { readFile } from 'node:fs/promises';
-import { resolve } from 'node:path';
-import { parseEnv } from 'node:util';
-import { requireValidExtensionDir } from '@wirechunk/backend-lib/extensions/require-extension-dir.ts';
-import { parseErrorMessage } from '@wirechunk/lib/errors.ts';
-import archiver from 'archiver';
-import { GraphQLClient } from 'graphql-request';
-import { createExtensionVersion as createExtensionVersionRequest } from '../core-api/operations.ts';
-import type { Env } from '../env.ts';
-import { requireApiToken } from '../env.ts';
-import type { WithGlobalOptions } from '../global-options.js';
-import { requireExtensionIdOptionOrEnvVar } from '../util.ts';
-
-const bytesFormat = Intl.NumberFormat('en', {
-  notation: 'compact',
-  style: 'unit',
-  unit: 'byte',
-  unitDisplay: 'narrow',
-  minimumFractionDigits: 1,
-  maximumFractionDigits: 1,
-});
-
-const ignoreGlobs = [
-  '**/.git/**/*',
-  '.git/**/*',
-  'node_modules/**/*',
-  '**/node_modules/**/*',
-  'yalc.lock',
-  '**/yalc.lock',
-];
-
-type CreateExtensionVersionOptions = {
-  extensionId?: string;
-  versionName: string;
-  configFile?: string;
-};
-
-export const createExtensionVersion = async (
-  opts: WithGlobalOptions<CreateExtensionVersionOptions>,
-  env: Env,
-): Promise<void> => {
-  const extensionId = requireExtensionIdOptionOrEnvVar(opts, env);
-  const apiToken = requireApiToken(env);
-  const cwd = process.cwd();
-  const { manifest } = await requireValidExtensionDir(cwd);
-  let enableServer: boolean;
-  let enableDb: boolean;
-  if (manifest.server) {
-    enableServer = !!manifest.server.enable;
-    if (manifest.server.database?.enable && manifest.server.enable === false) {
-      // Server was explicitly disabled, so don't allow database.
-      console.warn('WARNING: Automatically disabling database because server is disabled');
-      enableDb = false;
-    } else if (manifest.server.database?.enable && !manifest.server.enable) {
-      // Server was unspecified, so enable it because database is enabled.
-      console.warn('WARNING: Automatically enabling server because database is enabled');
-      enableServer = true;
-      enableDb = true;
-    } else {
-      enableDb = !!manifest.server.database?.enable;
-    }
-  } else {
-    enableServer = false;
-    enableDb = false;
-  }
-  let config: Record<string, string> | null = null;
-  if (opts.configFile) {
-    const configFilePath = resolve(cwd, opts.configFile);
-    if (opts.verbose) {
-      console.log(`Loading config file ${configFilePath}`);
-    }
-    const configFile = await readFile(configFilePath, 'utf8');
-    try {
-      config = parseEnv(configFile) as Record<string, string>;
-    } catch (e) {
-      console.error(`Failed to parse config file at ${configFilePath}:`, parseErrorMessage(e));
-      process.exit(1);
-    }
-  }
-
-  const { versionName } = opts;
-  console.log(`Creating extension version ${versionName} (Extension ID ${extensionId})
-  Server: ${enableServer ? 'enabled' : 'disabled'}
-  Database: ${enableDb ? 'enabled' : 'disabled'}
-  Components: ${Object.keys(manifest.components ?? {}).length}`);
-
-  let extensionVersionId: string;
-  let signedUrl: string;
-  try {
-    const url = `${env.CORE_SERVER_URL}/api`;
-    if (opts.verbose) {
-      console.log(`POST ${url}`);
-    }
-    const result = await createExtensionVersionRequest({
-      client: new GraphQLClient(url),
-      variables: {
-        input: {
-          extensionId,
-          extensionName: manifest.name,
-          versionName,
-          manifest: JSON.stringify(manifest),
-          enableServer,
-          enableDb,
-          config: config ? JSON.stringify(config) : undefined,
-        },
-      },
-      sessionAuthToken: apiToken,
-    });
-    if (result.createExtensionVersion.__typename === 'CreateExtensionVersionSuccessResult') {
-      extensionVersionId = result.createExtensionVersion.extensionVersion.id;
-      signedUrl = result.createExtensionVersion.signedUrl;
-    } else {
-      console.error(
-        `Failed to create an extension version (${result.createExtensionVersion.__typename}):`,
-        result.createExtensionVersion.message,
-      );
-      process.exit(1);
-    }
-  } catch (e) {
-    console.error('Failed to create an extension version:', parseErrorMessage(e));
-    process.exit(1);
-  }
-
-  const archive = archiver('zip', {
-    zlib: { level: 6 },
-  });
-
-  archive.on('error', (err) => {
-    console.error('Failed to archive:', parseErrorMessage(err));
-    process.exit(1);
-  });
-
-  archive.on('warning', (err) => {
-    console.warn('Archive warning:', err.message);
-  });
-
-  let processedBytes = 0;
-  let lastProcessedBytes = 0;
-
-  if (opts.verbose) {
-    archive.on('progress', (progress) => {
-      processedBytes += progress.fs.processedBytes;
-      if (processedBytes >= lastProcessedBytes + 1024 * 100) {
-        lastProcessedBytes = processedBytes;
-        console.log(`Processed ${bytesFormat.format(processedBytes)}`);
-      }
-    });
-  }
-
-  archive.glob('**/*', {
-    cwd,
-    ignore: ignoreGlobs,
-  });
-
-  if (opts.verbose) {
-    console.log(`Uploading files at ${cwd}`);
-  }
-
-  // Must not await here because otherwise it doesn't work.
-  const finalizePromise = archive.finalize();
-  await finalizePromise;
-
-  const uploadResponse = await fetch(signedUrl, {
-    method: 'PUT',
-    headers: {
-      'Content-Type': 'application/zip',
-    },
-    duplex: 'half',
-    body: archive,
-  });
-
-  if (uploadResponse.status !== 200) {
-    console.error('Failed to upload:', uploadResponse.statusText);
-    process.exit(1);
-  }
-
-  if (opts.verbose) {
-    console.log('Uploaded');
-  }
-
-  console.log(`Created version ${versionName} (ID ${extensionVersionId})`);
-};

package/src/commands/create-extension.ts

@@ -1,14 +0,0 @@
-import type { Env } from '../env.ts';
-import type { WithGlobalOptions } from '../global-options.ts';
-
-type CreateExtensionOptions = {
-  platformId: string;
-  name: string;
-};
-
-export const createExtension = async (
-  _opts: WithGlobalOptions<CreateExtensionOptions>,
-  _env: Env,
-): Promise<void> => {
-  // TODO
-};

package/src/commands/create-user.ts

@@ -1,220 +0,0 @@
-import { hashPassword, validatePasswordComplexity } from '@wirechunk/backend-lib/passwords.ts';
-import { cleanSmallId } from '@wirechunk/lib/clean-small-id.ts';
-import { normalizeEmailAddress } from '@wirechunk/lib/emails.ts';
-import { createPool, sql, UniqueIntegrityConstraintViolationError } from 'slonik';
-import { z } from 'zod';
-import type { Env } from '../env.ts';
-import { requireCoreDbUrl } from '../env.ts';
-import { detailedUniqueIntegrityConstraintViolationError } from '../errors.ts';
-import type { WithGlobalOptions } from '../global-options.ts';
-import { voidSelectSchema } from '../util.ts';
-
-const findOrgResult = z.object({
-  platformId: z.string(),
-});
-
-// Copied from backend-lib/roles.ts for now because different zod versions.
-const roleSchema = z.object({
-  id: z.string(),
-  name: z.string(),
-  default: z.boolean().optional().default(false),
-});
-
-// The schema for the platform roles configuration.
-const rolesSchema = z.array(roleSchema);
-
-const findPlatformResult = z.object({
-  id: z.string(),
-  name: z.string(),
-  roles: rolesSchema.nullable(),
-});
-
-type CreateUserOptions = {
-  email: string;
-  password: string;
-  firstName: string;
-  lastName: string;
-  orgId?: string;
-  platformId?: string;
-  role?: string;
-  emailVerified: boolean;
-  pending: boolean;
-};
-
-export const createUser = async (
-  opts: WithGlobalOptions<CreateUserOptions>,
-  env: Env,
-): Promise<void> => {
-  const db = await createPool(requireCoreDbUrl(env));
-
-  const normalizeEmailResult = normalizeEmailAddress(opts.email);
-  if (!normalizeEmailResult.ok) {
-    console.error(normalizeEmailResult.error);
-    process.exit(1);
-  }
-  const email = normalizeEmailResult.value;
-  const validatePasswordResult = validatePasswordComplexity(opts.password);
-  if (!validatePasswordResult.ok) {
-    console.error(validatePasswordResult.error);
-    process.exit(1);
-  }
-  const password = await hashPassword(opts.password);
-  const inputRole = opts.role || '';
-  const status = opts.pending ? 'Pending' : 'Active';
-  const firstName = opts.firstName.trim();
-  if (!firstName.length) {
-    console.error('First name must not be empty');
-    process.exit(1);
-  }
-  const lastName = opts.lastName.trim();
-  if (!lastName.length) {
-    console.error('Last name must not be empty');
-    process.exit(1);
-  }
-
-  let platformId: string | null | undefined = opts.platformId;
-  let orgId: string | null | undefined = opts.orgId;
-  let orgPrimary = false;
-
-  try {
-    const userId = cleanSmallId();
-    await db.transaction(async (db) => {
-      if (!platformId) {
-        if (!orgId) {
-          throw new Error('Either --org-id or --platform-id must be specified');
-        }
-        platformId = await db.maybeOneFirst(
-          sql.type(findOrgResult)`select "platformId" from "Orgs" where "id" = ${orgId}`,
-        );
-        if (!platformId) {
-          throw new Error(`No org found with ID ${orgId}`);
-        }
-      } else if (orgId) {
-        // Verify that the specified org belongs to the specified platform.
-        const orgPlatformId = await db.maybeOneFirst(
-          sql.type(findOrgResult)`select "platformId" from "Orgs" where "id" = ${orgId}`,
-        );
-        if (!orgPlatformId) {
-          throw new Error(`No org found with ID ${orgId}`);
-        }
-        if (orgPlatformId !== platformId) {
-          throw new Error(`Org ID ${orgId} does not belong to platform ID ${platformId}`);
-        }
-      }
-
-      const platform = await db.maybeOne(
-        sql.type(
-          findPlatformResult,
-        )`select "id", "name", "roles" from "Platforms" where "id" = ${platformId}`,
-      );
-
-      if (!platform) {
-        throw new Error(`No platform found with ID ${platformId}`);
-      }
-      if (opts.verbose) {
-        console.log(`Found platform ${platform.name} (ID ${platform.id})`);
-      }
-
-      // Determine the role to use.
-      let roleToUse = '';
-      if (platform.roles && platform.roles.length) {
-        if (inputRole) {
-          const roleExists = platform.roles.some((r) => r.name === inputRole);
-          if (roleExists) {
-            roleToUse = inputRole;
-          } else {
-            const validRoles = platform.roles.map((r) => r.name).join(', ');
-            console.error(
-              `Error: Invalid role "${inputRole}". Valid roles for this platform are: ${validRoles}`,
-            );
-            process.exit(1);
-          }
-        } else {
-          const defaultRole = platform.roles.find((r) => r.default);
-          if (defaultRole) {
-            roleToUse = defaultRole.name;
-            if (opts.verbose) {
-              console.log(`No role provided. Using default role: ${roleToUse}`);
-            }
-          } else {
-            // No default role exists and no role was provided.
-            if (opts.verbose) {
-              console.log(
-                'No default role exists and no role was provided. Using empty string for the role.',
-              );
-            }
-          }
-        }
-      } else {
-        // No roles defined for this platform.
-        if (inputRole) {
-          console.error('Error: A role was specified but no roles are defined for this platform.');
-          process.exit(1);
-        }
-        if (opts.verbose) {
-          console.log('No roles defined for this platform. Using empty string for the role.');
-        }
-      }
-
-      if (!orgId) {
-        orgId = cleanSmallId();
-        await db.maybeOne(
-          sql.type(
-            voidSelectSchema,
-          )`insert into "Orgs" ("id", "platformId") values (${orgId}, ${platform.id})`,
-        );
-        if (opts.verbose) {
-          console.log(`Created org ID ${orgId}`);
-        }
-        orgPrimary = true;
-      }
-
-      const user = await db.maybeOne(
-        sql.type(voidSelectSchema)`insert into "Users" (
-          "id",
-          "platformId",
-          "email",
-          "emailVerified",
-          "password",
-          "passwordStatus",
-          "orgId",
-          "role",
-          "status",
-          "firstName",
-          "lastName"
-        )
-        values (
-          ${userId},
-          ${platformId},
-          ${email},
-          ${opts.emailVerified},
-          ${password},
-          'Ok',
-          ${orgId},
-          ${roleToUse},
-          ${status},
-          ${firstName},
-          ${lastName}
-        )`,
-      );
-
-      if (orgPrimary) {
-        await db.maybeOne(
-          sql.type(
-            voidSelectSchema,
-          )`update "Orgs" set "primaryUserId" = ${userId} where "id" = ${orgId}`,
-        );
-      }
-
-      return user;
-    });
-    console.log(`Created user (ID ${userId})`);
-  } catch (e) {
-    if (e instanceof UniqueIntegrityConstraintViolationError) {
-      console.error(detailedUniqueIntegrityConstraintViolationError(e));
-      process.exit(1);
-    }
-    console.error(e);
-    process.exit(1);
-  }
-};

package/src/commands/edit-admin.ts

@@ -1,139 +0,0 @@
-import { cleanSmallId } from '@wirechunk/lib/clean-small-id.ts';
-import { createPool, sql, UniqueIntegrityConstraintViolationError } from 'slonik';
-import { z } from 'zod';
-import type { Env } from '../env.ts';
-import { requireCoreDbUrl } from '../env.ts';
-import { detailedUniqueIntegrityConstraintViolationError } from '../errors.ts';
-import type { WithGlobalOptions } from '../global-options.ts';
-import {
-  grantAllUserPlatformPermissions,
-  revokeAllUserPlatformPermissions,
-} from '../users/permissions.ts';
-import { voidSelectSchema } from '../util.ts';
-
-const findPlatformAdminSchema = z.object({
-  id: z.string(),
-  platformId: z.string(),
-  active: z.boolean(),
-});
-
-const findUserSchema = z.object({
-  id: z.string(),
-});
-
-type EditAdminOptions = {
-  platformId: string;
-  userId: string;
-  owner?: boolean;
-  active?: boolean;
-  revokeAllPermissions?: boolean;
-};
-
-export const editAdmin = async (
-  opts: WithGlobalOptions<EditAdminOptions>,
-  env: Env,
-): Promise<void> => {
-  const db = await createPool(requireCoreDbUrl(env));
-  const { platformId, userId, owner, active, revokeAllPermissions } = opts;
-
-  if (owner && revokeAllPermissions) {
-    console.error(
-      'Cannot set a user as a platform owner and revoke all permissions at the same time',
-    );
-    process.exit(1);
-  }
-
-  try {
-    await db.transaction(async (db) => {
-      let platformAdmin = await db.maybeOne(
-        sql.type(
-          findPlatformAdminSchema,
-        )`select "id" from "PlatformAdmins" where "platformId" = ${platformId} and "userId" = ${userId}`,
-      );
-      if (!platformAdmin) {
-        const user = await db.maybeOne(
-          sql.type(findUserSchema)`select "id" from "Users" where "id" = ${userId}`,
-        );
-        if (!user) {
-          throw new Error(`User with ID ${userId} not found`);
-        }
-      }
-      if (owner) {
-        if (!platformAdmin) {
-          platformAdmin = await db.one(
-            sql.type(findPlatformAdminSchema)`
-              insert into "PlatformAdmins" ("id", "platformId", "userId", "owner", "active")
-              values (${cleanSmallId()}, ${platformId}, ${userId}, true, ${active ?? true})
-              returning "id", "platformId", "active"
-            `,
-          );
-        } else {
-          await db.query(
-            sql.type(voidSelectSchema)`
-              update "PlatformAdmins"
-              set "owner" = true
-              where "id" = ${platformAdmin.id}
-            `,
-          );
-        }
-        await grantAllUserPlatformPermissions({ platformAdminId: platformAdmin.id }, db);
-        if (opts.verbose) {
-          console.log('Set the user as an owner on the platform');
-        }
-      } else if (owner === false) {
-        if (platformAdmin) {
-          await db.query(
-            sql.type(voidSelectSchema)`
-            update "PlatformAdmins"
-            set "owner" = false
-            where "id" = ${platformAdmin.id}
-          `,
-          );
-          if (opts.verbose) {
-            console.log('Removed the user’s owner privileges on the platform');
-          }
-        } else {
-          console.log('This user is not an admin on this platform');
-        }
-      }
-      if (typeof active === 'boolean') {
-        if (platformAdmin) {
-          await db.query(
-            sql.type(voidSelectSchema)`
-              update "PlatformAdmins"
-              set "active" = ${active}
-              where "id" = ${platformAdmin.id}
-            `,
-          );
-        } else {
-          if (active) {
-            // Automatically create a platform admin.
-            await db.one(
-              sql.type(voidSelectSchema)`
-                insert into "PlatformAdmins" ("id", "platformId", "userId", "owner", "active")
-                values (${cleanSmallId()}, ${platformId}, ${userId}, false, ${active})
-              `,
-            );
-          } else {
-            console.log('This user is not an admin on this platform');
-          }
-        }
-      }
-      if (revokeAllPermissions) {
-        if (platformAdmin) {
-          await revokeAllUserPlatformPermissions({ platformAdminId: platformAdmin.id }, db);
-          console.log('Revoked all platform permissions of user');
-        } else {
-          console.log('This user is not an admin on this platform');
-        }
-      }
-    });
-  } catch (e) {
-    if (e instanceof UniqueIntegrityConstraintViolationError) {
-      console.error(detailedUniqueIntegrityConstraintViolationError(e));
-      process.exit(1);
-    }
-    console.error(e);
-    process.exit(1);
-  }
-};

package/src/commands/ext-dev/get-db-url.ts

@@ -1,36 +0,0 @@
-import { existsSync } from 'node:fs';
-import { readFile, writeFile } from 'node:fs/promises';
-import { resolve } from 'node:path';
-import type { Env } from '../../env.ts';
-import type { WithGlobalOptions } from '../../global-options.js';
-import { getExtensionDbConnectInfo, replaceEnvVar } from '../../util.ts';
-
-type GetDbUrlOptions = {
-  extensionId?: string;
-  dbName?: string;
-};
-
-export const getDbUrl = async (
-  opts: WithGlobalOptions<GetDbUrlOptions>,
-  env: Env,
-): Promise<void> => {
-  const connInfo = getExtensionDbConnectInfo(opts, env);
-  const url = connInfo.url.toString();
-  const cwd = process.cwd();
-  const localEnvFilePath = opts.envMode
-    ? resolve(cwd, `./.env.${opts.envMode}.local`)
-    : resolve(cwd, './.env.local');
-  if (opts.verbose) {
-    console.log(`Loading file ${localEnvFilePath} to update environment variables`);
-  }
-  if (existsSync(localEnvFilePath)) {
-    const localEnv = await readFile(localEnvFilePath, 'utf8');
-    const lines = replaceEnvVar(localEnv.split('\n'), 'DATABASE_URL', url);
-    await writeFile(localEnvFilePath, lines.join('\n'));
-  } else {
-    if (opts.verbose) {
-      console.log(`Creating file ${localEnvFilePath}`);
-    }
-    await writeFile(localEnvFilePath, `DATABASE_URL=${url}\n`);
-  }
-};