npm - @xano/cli - Versions diffs - 1.0.3-beta.6 → 1.0.3-beta.8 - Mend

@xano/cli 1.0.3-beta.6 → 1.0.3-beta.8

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (5) hide show

package/README.md +26 -0
package/dist/commands/auth/index.d.ts +9 -0
package/dist/commands/auth/index.js +122 -9
package/oclif.manifest.json +2108 -2064
package/package.json +1 -1

package/README.md CHANGED Viewed

@@ -46,8 +46,34 @@ These warnings are layer 1 of broader push-safety work; ephemeral sandbox enviro
 xano auth
 xano auth --origin https://custom.xano.com
 xano auth --insecure                         # Skip TLS verification (self-signed certs)
+xano auth --no-browser                       # Headless login (no local callback server)
+# Pre-select instance/workspace/branch and profile name (skips the pickers)
+xano auth -i my-instance -w 5 -b dev -p staging
+xano auth --instance my-instance --workspace "My Workspace" --branch dev --profile staging
+# Pass "" to take a picker's default: skip workspace, use live branch, default profile name
+xano auth -i my-instance -w 5 -b "" -p ""
 ```
+The default flow starts a temporary callback server on `127.0.0.1` and waits
+for the browser to redirect back to it. On remote/SSH sessions, Docker
+containers, or locked-down networks where the browser can't reach the CLI's
+loopback address, use `--no-browser`: the CLI prints a login URL, you open it
+in any browser, and paste back the code it displays. No local server required.
+Each picker can be pre-answered with a flag: `-i/--instance` (instance name),
+`-w/--workspace` (workspace ID or name), `-b/--branch` (branch label), and
+`-p/--profile` (profile name to save). An empty value (`""`) takes the
+picker's default answer: `-w ""` skips workspace selection, `-b ""` skips and
+uses the live branch, and `-p ""` uses the default profile name. With all four
+set alongside `--no-browser`, the only input is pasting the code from the
+browser — useful for scripted or remote setups.
+If you can't run `xano auth` at all, you can always create a profile manually
+with a Metadata API token from the Xano dashboard — see
+[Profiles](#profiles) below.
 ### Profiles
 Profiles store your Xano credentials and default workspace settings.

package/dist/commands/auth/index.d.ts CHANGED Viewed

@@ -3,16 +3,25 @@ export default class Auth extends Command {
     static description: string;
     static examples: string[];
     static flags: {
+        branch: import("@oclif/core/interfaces").OptionFlag<string | undefined, import("@oclif/core/interfaces").CustomOptions>;
         config: import("@oclif/core/interfaces").OptionFlag<string | undefined, import("@oclif/core/interfaces").CustomOptions>;
         insecure: import("@oclif/core/interfaces").BooleanFlag<boolean>;
+        instance: import("@oclif/core/interfaces").OptionFlag<string | undefined, import("@oclif/core/interfaces").CustomOptions>;
+        'no-browser': import("@oclif/core/interfaces").BooleanFlag<boolean>;
         origin: import("@oclif/core/interfaces").OptionFlag<string, import("@oclif/core/interfaces").CustomOptions>;
+        profile: import("@oclif/core/interfaces").OptionFlag<string | undefined, import("@oclif/core/interfaces").CustomOptions>;
+        workspace: import("@oclif/core/interfaces").OptionFlag<string | undefined, import("@oclif/core/interfaces").CustomOptions>;
     };
     run(): Promise<void>;
     private getHeaders;
     private fetchBranches;
     private fetchInstances;
     private fetchWorkspaces;
+    private promptForToken;
     private promptProfileName;
+    private resolveBranch;
+    private resolveInstance;
+    private resolveWorkspace;
     private saveProfile;
     private selectBranch;
     private selectInstance;

package/dist/commands/auth/index.js CHANGED Viewed

@@ -1,4 +1,3 @@
-import { ExitPromptError } from '@inquirer/core';
 import { Command, Flags } from '@oclif/core';
 import inquirer from 'inquirer';
 import * as yaml from 'js-yaml';
@@ -20,8 +19,19 @@ Authenticated as John Doe (john@example.com)
 Profile 'default' created successfully!`,
         `$ xano auth --origin https://custom.xano.com
 Opening browser for Xano login at https://custom.xano.com...`,
+        `$ xano auth --no-browser
+To authenticate, open the following URL in any browser:
+  https://app.xano.com/login?dest=cli&display=code
+? Paste the code shown in your browser: ****`,
+        `$ xano auth --no-browser --instance my-instance --workspace 5 --branch dev --profile staging
+(non-interactive: only the pasted code is prompted for)`,
     ];
     static flags = {
+        branch: Flags.string({
+            char: 'b',
+            description: 'Pre-select a branch by label (skips the branch picker); pass "" to skip and use the live branch',
+            required: false,
+        }),
         config: Flags.string({
             char: 'c',
             description: 'Path to credentials file (default: ~/.xano/credentials.yaml)',
@@ -33,11 +43,30 @@ Opening browser for Xano login at https://custom.xano.com...`,
             default: false,
             description: 'Skip TLS certificate verification (for self-signed certificates)',
         }),
+        instance: Flags.string({
+            char: 'i',
+            description: 'Pre-select an instance by name (skips the instance picker)',
+            required: false,
+        }),
+        'no-browser': Flags.boolean({
+            default: false,
+            description: 'Headless login: print a URL and paste back the code shown in the browser, instead of starting a local callback server (use on remote/SSH/Docker hosts where 127.0.0.1 is not reachable from the browser)',
+        }),
         origin: Flags.string({
             char: 'o',
             default: 'https://app.xano.com',
             description: 'Xano account origin URL',
         }),
+        profile: Flags.string({
+            char: 'p',
+            description: 'Profile name to save (skips the profile name prompt); pass "" to use the default name',
+            required: false,
+        }),
+        workspace: Flags.string({
+            char: 'w',
+            description: 'Pre-select a workspace by ID or name (skips the workspace picker); pass "" to skip workspace',
+            required: false,
+        }),
     };
     async run() {
         const { flags } = await this.parse(Auth);
@@ -48,7 +77,9 @@ Opening browser for Xano login at https://custom.xano.com...`,
         try {
             // Step 1: Get token via browser auth
             this.log('Starting authentication flow...');
-            const token = await this.startAuthServer(flags.origin);
+            const token = flags['no-browser']
+                ? await this.promptForToken(flags.origin)
+                : await this.startAuthServer(flags.origin);
             // Step 2: Validate token and get user info
             this.log('');
             this.log('Validating authentication...');
@@ -60,6 +91,9 @@ Opening browser for Xano login at https://custom.xano.com...`,
             const isSelfHosted = !/^https:\/\/app\.(.*\.)?xano\.com$/.test(flags.origin);
             let instance;
             if (isSelfHosted) {
+                if (flags.instance) {
+                    this.warn('Ignoring --instance: the origin itself is the instance for self-hosted Xano.');
+                }
                 instance = {
                     display: flags.origin,
                     id: 'self-hosted',
@@ -74,7 +108,7 @@ Opening browser for Xano login at https://custom.xano.com...`,
                 if (instances.length === 0) {
                     this.error('No instances found. Please check your account.');
                 }
-                instance = await this.selectInstance(instances);
+                instance = await this.resolveInstance(instances, flags.instance);
             }
             // Step 4: Workspace selection
             let workspace;
@@ -83,20 +117,25 @@ Opening browser for Xano login at https://custom.xano.com...`,
             this.log('Fetching available workspaces...');
             const workspaces = await this.fetchWorkspaces(token, instance.origin);
             if (workspaces.length > 0) {
-                workspace = await this.selectWorkspace(workspaces);
+                workspace = await this.resolveWorkspace(workspaces, flags.workspace);
                 if (workspace) {
                     // Step 5: Branch selection
                     this.log('');
                     this.log('Fetching available branches...');
                     const branches = await this.fetchBranches(token, instance.origin, workspace.id);
-                    if (branches.length > 1) {
-                        branch = await this.selectBranch(branches);
-                    }
+                    branch = await this.resolveBranch(branches, flags.branch);
                 }
             }
+            else if (flags.workspace) {
+                this.error(`Workspace '${flags.workspace}' not found: no workspaces are available on this instance.`);
+            }
+            if (flags.branch && !workspace) {
+                this.warn('Ignoring --branch: no workspace selected.');
+            }
             // Step 6: Profile name
             this.log('');
-            const profileName = await this.promptProfileName();
+            // An empty --profile value means "use the default name" (same as accepting the prompt's default)
+            const profileName = flags.profile === undefined ? await this.promptProfileName() : flags.profile.trim() || 'default';
             // Step 7: Save profile
             await this.saveProfile({
                 access_token: token,
@@ -113,7 +152,10 @@ Opening browser for Xano login at https://custom.xano.com...`,
             process.exit(0);
         }
         catch (error) {
-            if (error instanceof ExitPromptError) {
+            // Ctrl+C at an inquirer prompt throws ExitPromptError. Match on the name
+            // rather than `instanceof`: inquirer bundles its own copy of
+            // @inquirer/core, so the thrown class won't match an imported one.
+            if (error?.name === 'ExitPromptError') {
                 this.log('Authentication cancelled.');
                 return;
             }
@@ -196,6 +238,34 @@ Opening browser for Xano login at https://custom.xano.com...`,
             return [];
         }
     }
+    async promptForToken(origin) {
+        // Headless flow: no local callback server. The login page, when opened
+        // without a `callback` param, renders the access token on screen for the
+        // user to copy. We point the browser there (best-effort) and prompt for
+        // the pasted code.
+        const authUrl = `${origin}/login?dest=cli&display=code`;
+        this.log('To authenticate, open the following URL in any browser:');
+        this.log('');
+        this.log(`  ${authUrl}`);
+        this.log('');
+        try {
+            await open(authUrl);
+        }
+        catch {
+            // Best-effort only; the URL is already printed above for manual use.
+        }
+        const { token } = await inquirer.prompt([
+            {
+                message: 'Paste the code shown in your browser',
+                name: 'token',
+                type: 'password',
+                validate(input) {
+                    return input.trim() === '' ? 'A code is required' : true;
+                },
+            },
+        ]);
+        return token.trim();
+    }
     async promptProfileName() {
         const { profileName } = await inquirer.prompt([
             {
@@ -214,6 +284,49 @@ Opening browser for Xano login at https://custom.xano.com...`,
         ]);
         return profileName.trim() || 'default';
     }
+    async resolveBranch(branches, flagValue) {
+        if (flagValue !== undefined) {
+            // An empty value means "skip and use live branch" (same as the picker's skip option)
+            if (flagValue.trim() === '') {
+                this.log('Using live branch');
+                return undefined;
+            }
+            const match = branches.find((br) => br.label === flagValue || br.id === flagValue);
+            if (!match) {
+                this.error(`Branch '${flagValue}' not found. Available branches: ${branches.map((br) => br.label).join(', ')}`);
+            }
+            this.log(`Using branch: ${match.label}`);
+            return match.id;
+        }
+        return branches.length > 1 ? this.selectBranch(branches) : undefined;
+    }
+    async resolveInstance(instances, flagValue) {
+        if (flagValue) {
+            const match = instances.find((inst) => inst.name === flagValue || inst.id === flagValue);
+            if (!match) {
+                this.error(`Instance '${flagValue}' not found. Available instances: ${instances.map((inst) => inst.name).join(', ')}`);
+            }
+            this.log(`Using instance: ${match.name} (${match.display})`);
+            return match;
+        }
+        return this.selectInstance(instances);
+    }
+    async resolveWorkspace(workspaces, flagValue) {
+        if (flagValue !== undefined) {
+            // An empty value means "skip workspace" (same as the picker's skip option)
+            if (flagValue.trim() === '') {
+                this.log('Skipping workspace selection');
+                return undefined;
+            }
+            const match = workspaces.find((ws) => String(ws.id) === flagValue || ws.name === flagValue);
+            if (!match) {
+                this.error(`Workspace '${flagValue}' not found. Available workspaces: ${workspaces.map((ws) => `${ws.name} (${ws.id})`).join(', ')}`);
+            }
+            this.log(`Using workspace: ${match.name} (${match.id})`);
+            return match;
+        }
+        return this.selectWorkspace(workspaces);
+    }
     async saveProfile(profile, configPath) {
         const credentialsPath = resolveCredentialsPath(configPath);
         const credDir = dirname(credentialsPath);