agor-live 0.5.3 → 0.5.5

package/dist/cli/base-command.js

@@ -1,5 +1,61 @@
+var __defProp = Object.defineProperty;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __esm = (fn, res) => function __init() {
+  return fn && (res = (0, fn[__getOwnPropNames(fn)[0]])(fn = 0)), res;
+};
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+
+// src/lib/auth.ts
+var auth_exports = {};
+__export(auth_exports, {
+  clearToken: () => clearToken,
+  loadToken: () => loadToken,
+  saveToken: () => saveToken
+});
+import { mkdir, readFile, unlink, writeFile } from "fs/promises";
+import { homedir } from "os";
+import { join } from "path";
+async function saveToken(auth) {
+  await mkdir(AGOR_DIR, { recursive: true });
+  await writeFile(TOKEN_FILE, JSON.stringify(auth, null, 2), {
+    mode: 384
+    // Owner read/write only
+  });
+}
+async function loadToken() {
+  try {
+    const data = await readFile(TOKEN_FILE, "utf-8");
+    const auth = JSON.parse(data);
+    if (auth.expiresAt && Date.now() > auth.expiresAt) {
+      await clearToken();
+      return null;
+    }
+    return auth;
+  } catch {
+    return null;
+  }
+}
+async function clearToken() {
+  try {
+    await unlink(TOKEN_FILE);
+  } catch {
+  }
+}
+var AGOR_DIR, TOKEN_FILE;
+var init_auth = __esm({
+  "src/lib/auth.ts"() {
+    "use strict";
+    AGOR_DIR = join(homedir(), ".agor");
+    TOKEN_FILE = join(AGOR_DIR, "cli-token");
+  }
+});
+
 // src/base-command.ts
-import { createClient, isDaemonRunning } from "@agor/core/api";
+init_auth();
+import { createRestClient, isDaemonRunning } from "@agor/core/api";
 import { getDaemonUrl } from "@agor/core/config";
 import { Command } from "@oclif/core";
 import chalk from "chalk";
@@ -19,7 +75,48 @@ var BaseCommand = class extends Command {
       );
       this.exit(1);
     }
-    return createClient(this.daemonUrl, true, { verbose: false });
+    const client = await createRestClient(this.daemonUrl);
+    const storedAuth = await loadToken();
+    if (storedAuth) {
+      try {
+        await client.authenticate({
+          strategy: "jwt",
+          accessToken: storedAuth.accessToken
+        });
+      } catch (_error) {
+        const { clearToken: clearToken2 } = await Promise.resolve().then(() => (init_auth(), auth_exports));
+        await clearToken2();
+        this.error(
+          chalk.red("\u2717 Authentication failed") + "\n\n" + chalk.dim("Your session has expired or is invalid.") + "\n" + chalk.dim("Please login again:") + "\n  " + chalk.cyan("agor login")
+        );
+      }
+    } else {
+      try {
+        const response = await fetch(`${this.daemonUrl}/health`);
+        const health = await response.json();
+        if (health.auth?.requireAuth) {
+          this.error(
+            chalk.red("\u2717 Not authenticated") + "\n\n" + chalk.dim("This Agor instance requires authentication.") + "\n" + chalk.dim("Please login:") + "\n  " + chalk.cyan("agor login")
+          );
+        }
+        try {
+          await client.authenticate({ strategy: "anonymous" });
+        } catch (_authError) {
+          this.error(
+            chalk.red("\u2717 Authentication failed") + "\n\n" + chalk.dim("Please login:") + "\n  " + chalk.cyan("agor login")
+          );
+        }
+      } catch (_error) {
+        try {
+          await client.authenticate({ strategy: "anonymous" });
+        } catch {
+          this.error(
+            chalk.red("\u2717 Not authenticated") + "\n\n" + chalk.dim("Please login to use the Agor CLI:") + "\n  " + chalk.cyan("agor login")
+          );
+        }
+      }
+    }
+    return client;
   }
   /**
    * Cleanup client connection
@@ -27,13 +124,10 @@ var BaseCommand = class extends Command {
    * Ensures socket is properly closed to prevent hanging processes
    */
   async cleanupClient(client) {
-    await new Promise((resolve) => {
-      client.io.once("disconnect", () => resolve());
-      client.io.removeAllListeners("connect");
-      client.io.removeAllListeners("connect_error");
-      client.io.close();
-      setTimeout(resolve, 1e3);
-    });
+    client.io.io.opts.reconnection = false;
+    client.io.removeAllListeners();
+    client.io.close();
+    await new Promise((resolve) => setTimeout(resolve, 100));
   }
 };
 export {

package/dist/cli/commands/auth/login.d.ts

@@ -0,0 +1,18 @@
+import * as _oclif_core_interfaces from '@oclif/core/interfaces';
+import { Command } from '@oclif/core';
+
+declare class Login extends Command {
+    static description: string;
+    static examples: string[];
+    static flags: {
+        email: _oclif_core_interfaces.OptionFlag<string | undefined, _oclif_core_interfaces.CustomOptions>;
+        password: _oclif_core_interfaces.OptionFlag<string | undefined, _oclif_core_interfaces.CustomOptions>;
+    };
+    run(): Promise<void>;
+    /**
+     * Prompt helper with proper typing
+     */
+    private prompt;
+}
+
+export { Login as default };

package/dist/cli/commands/auth/login.js

@@ -0,0 +1,133 @@
+// src/commands/auth/login.ts
+import * as readline from "readline";
+import { createRestClient, isDaemonRunning } from "@agor/core/api";
+import { getDaemonUrl } from "@agor/core/config";
+import { Command, Flags } from "@oclif/core";
+import chalk from "chalk";
+
+// src/lib/auth.ts
+import { mkdir, readFile, unlink, writeFile } from "fs/promises";
+import { homedir } from "os";
+import { join } from "path";
+var AGOR_DIR = join(homedir(), ".agor");
+var TOKEN_FILE = join(AGOR_DIR, "cli-token");
+async function saveToken(auth) {
+  await mkdir(AGOR_DIR, { recursive: true });
+  await writeFile(TOKEN_FILE, JSON.stringify(auth, null, 2), {
+    mode: 384
+    // Owner read/write only
+  });
+}
+
+// src/commands/auth/login.ts
+var Login = class _Login extends Command {
+  static description = "Authenticate with Agor daemon";
+  static examples = [
+    "<%= config.bin %> <%= command.id %>",
+    "<%= config.bin %> <%= command.id %> --email user@example.com"
+  ];
+  static flags = {
+    email: Flags.string({
+      char: "e",
+      description: "Email address"
+    }),
+    password: Flags.string({
+      char: "p",
+      description: "Password (will prompt if not provided)"
+    })
+  };
+  async run() {
+    const { flags } = await this.parse(_Login);
+    const daemonUrl = await getDaemonUrl();
+    const running = await isDaemonRunning(daemonUrl);
+    if (!running) {
+      this.error(
+        chalk.red("\u2717 Daemon not running") + "\n\n" + chalk.bold("To start the daemon:") + "\n  " + chalk.cyan("cd apps/agor-daemon && pnpm dev")
+      );
+    }
+    const email = flags.email || await this.prompt("Email", {
+      type: "input",
+      required: true
+    });
+    const password = flags.password || await this.prompt("Password", {
+      type: "hide",
+      required: true
+    });
+    const client = await createRestClient(daemonUrl);
+    try {
+      this.log(chalk.dim("Authenticating..."));
+      const authResult = await client.authenticate({
+        strategy: "local",
+        email,
+        password
+      });
+      if (!authResult.accessToken || !authResult.user) {
+        this.error("Authentication failed - no token returned");
+      }
+      const expiresAt = Date.now() + 7 * 24 * 60 * 60 * 1e3;
+      await saveToken({
+        accessToken: authResult.accessToken,
+        user: {
+          user_id: authResult.user.user_id,
+          email: authResult.user.email,
+          // biome-ignore lint/suspicious/noExplicitAny: AuthenticatedUser type doesn't include name, but it's returned
+          name: authResult.user.name,
+          role: authResult.user.role || "viewer"
+        },
+        expiresAt
+      });
+      this.log("");
+      this.log(chalk.green("\u2713 Logged in successfully"));
+      this.log("");
+      this.log(chalk.dim("User:"), chalk.cyan(authResult.user.email));
+      const userName = authResult.user.name;
+      if (userName) {
+        this.log(chalk.dim("Name:"), userName);
+      }
+      this.log(chalk.dim("Role:"), authResult.user.role || "viewer");
+      this.log("");
+      this.log(chalk.dim("Token saved to ~/.agor/cli-token"));
+      this.log(chalk.dim("Token expires in 7 days"));
+      this.log("");
+      client.io.io.opts.reconnection = false;
+      client.io.removeAllListeners();
+      client.io.close();
+      process.exit(0);
+    } catch (error) {
+      client.io.io.opts.reconnection = false;
+      client.io.removeAllListeners();
+      client.io.close();
+      const errorMessage = error instanceof Error ? error.message : String(error);
+      if (errorMessage.includes("Invalid login") || errorMessage.includes("NotFound")) {
+        this.error(chalk.red("\u2717 Invalid email or password"));
+      }
+      this.error(chalk.red(`\u2717 Authentication failed: ${errorMessage}`));
+    }
+  }
+  /**
+   * Prompt helper with proper typing
+   */
+  async prompt(message, options) {
+    return new Promise((resolve) => {
+      const rl = readline.createInterface({
+        input: process.stdin,
+        output: process.stdout
+      });
+      const hiddenOutput = options.type === "hide";
+      if (hiddenOutput && process.stdin.isTTY) {
+        process.stdin.setRawMode?.(true);
+      }
+      rl.question(`${message}: `, (answer) => {
+        if (hiddenOutput && process.stdin.isTTY) {
+          process.stdin.setRawMode?.(false);
+          console.log("");
+        }
+        rl.close();
+        resolve(answer.trim());
+      });
+    });
+  }
+};
+export {
+  Login as default
+};

package/dist/cli/commands/auth/logout.d.ts

@@ -0,0 +1,15 @@
+import { Command } from '@oclif/core';
+
+/**
+ * `agor logout` - Clear stored authentication token
+ *
+ * Removes JWT token from disk
+ */
+
+declare class Logout extends Command {
+    static description: string;
+    static examples: string[];
+    run(): Promise<void>;
+}
+
+export { Logout as default };

package/dist/cli/commands/auth/logout.js

@@ -0,0 +1,51 @@
+// src/commands/auth/logout.ts
+import { Command } from "@oclif/core";
+import chalk from "chalk";
+
+// src/lib/auth.ts
+import { mkdir, readFile, unlink, writeFile } from "fs/promises";
+import { homedir } from "os";
+import { join } from "path";
+var AGOR_DIR = join(homedir(), ".agor");
+var TOKEN_FILE = join(AGOR_DIR, "cli-token");
+async function loadToken() {
+  try {
+    const data = await readFile(TOKEN_FILE, "utf-8");
+    const auth = JSON.parse(data);
+    if (auth.expiresAt && Date.now() > auth.expiresAt) {
+      await clearToken();
+      return null;
+    }
+    return auth;
+  } catch {
+    return null;
+  }
+}
+async function clearToken() {
+  try {
+    await unlink(TOKEN_FILE);
+  } catch {
+  }
+}
+
+// src/commands/auth/logout.ts
+var Logout = class extends Command {
+  static description = "Logout and clear stored authentication token";
+  static examples = ["<%= config.bin %> <%= command.id %>"];
+  async run() {
+    const storedAuth = await loadToken();
+    if (!storedAuth) {
+      this.log(chalk.dim("Not currently logged in"));
+      return;
+    }
+    await clearToken();
+    this.log("");
+    this.log(chalk.green("\u2713 Logged out successfully"));
+    this.log("");
+    this.log(chalk.dim("Token removed from ~/.agor/cli-token"));
+    this.log("");
+  }
+};
+export {
+  Logout as default
+};

package/dist/cli/commands/auth/whoami.d.ts

@@ -0,0 +1,15 @@
+import { Command } from '@oclif/core';
+
+/**
+ * `agor whoami` - Show current authenticated user
+ *
+ * Displays information about the currently authenticated user
+ */
+
+declare class Whoami extends Command {
+    static description: string;
+    static examples: string[];
+    run(): Promise<void>;
+}
+
+export { Whoami as default };

package/dist/cli/commands/auth/whoami.js

@@ -0,0 +1,67 @@
+// src/commands/auth/whoami.ts
+import { Command } from "@oclif/core";
+import chalk from "chalk";
+
+// src/lib/auth.ts
+import { mkdir, readFile, unlink, writeFile } from "fs/promises";
+import { homedir } from "os";
+import { join } from "path";
+var AGOR_DIR = join(homedir(), ".agor");
+var TOKEN_FILE = join(AGOR_DIR, "cli-token");
+async function loadToken() {
+  try {
+    const data = await readFile(TOKEN_FILE, "utf-8");
+    const auth = JSON.parse(data);
+    if (auth.expiresAt && Date.now() > auth.expiresAt) {
+      await clearToken();
+      return null;
+    }
+    return auth;
+  } catch {
+    return null;
+  }
+}
+async function clearToken() {
+  try {
+    await unlink(TOKEN_FILE);
+  } catch {
+  }
+}
+
+// src/commands/auth/whoami.ts
+var Whoami = class extends Command {
+  static description = "Show current authenticated user";
+  static examples = ["<%= config.bin %> <%= command.id %>"];
+  async run() {
+    const storedAuth = await loadToken();
+    if (!storedAuth) {
+      this.log(chalk.dim("Not currently logged in"));
+      this.log("");
+      this.log(chalk.dim("To login:"), chalk.cyan("agor login"));
+      this.log("");
+      return;
+    }
+    this.log("");
+    this.log(chalk.green("\u2713 Authenticated"));
+    this.log("");
+    this.log(chalk.dim("User ID:"), chalk.cyan(storedAuth.user.user_id));
+    this.log(chalk.dim("Email:"), chalk.cyan(storedAuth.user.email));
+    if (storedAuth.user.name) {
+      this.log(chalk.dim("Name:"), storedAuth.user.name);
+    }
+    this.log(chalk.dim("Role:"), storedAuth.user.role);
+    this.log("");
+    const expiresIn = storedAuth.expiresAt - Date.now();
+    const daysLeft = Math.floor(expiresIn / (24 * 60 * 60 * 1e3));
+    const hoursLeft = Math.floor(expiresIn % (24 * 60 * 60 * 1e3) / (60 * 60 * 1e3));
+    if (expiresIn > 0) {
+      this.log(chalk.dim("Token expires in:"), `${daysLeft}d ${hoursLeft}h`);
+    } else {
+      this.log(chalk.red("Token expired"), chalk.dim("- please login again"));
+    }
+    this.log("");
+  }
+};
+export {
+  Whoami as default
+};

package/dist/cli/commands/board/add-session.d.ts

@@ -1,7 +1,9 @@
 import * as _oclif_core_interfaces from '@oclif/core/interfaces';
-import { Command } from '@oclif/core';
+import { BaseCommand } from '../../base-command.js';
+import '@agor/core/api';
+import '@oclif/core';
 
-declare class BoardAddSession extends Command {
+declare class BoardAddSession extends BaseCommand {
     static description: string;
     static examples: string[];
     static args: {
@@ -9,7 +11,6 @@ declare class BoardAddSession extends Command {
         sessionId: _oclif_core_interfaces.Arg<string, Record<string, unknown>>;
     };
     run(): Promise<void>;
-    private cleanup;
 }
 
 export { BoardAddSession as default };

package/dist/cli/commands/board/add-session.js

@@ -1,8 +1,142 @@
+var __defProp = Object.defineProperty;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __esm = (fn, res) => function __init() {
+  return fn && (res = (0, fn[__getOwnPropNames(fn)[0]])(fn = 0)), res;
+};
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+
+// src/lib/auth.ts
+var auth_exports = {};
+__export(auth_exports, {
+  clearToken: () => clearToken,
+  loadToken: () => loadToken,
+  saveToken: () => saveToken
+});
+import { mkdir, readFile, unlink, writeFile } from "fs/promises";
+import { homedir } from "os";
+import { join } from "path";
+async function saveToken(auth) {
+  await mkdir(AGOR_DIR, { recursive: true });
+  await writeFile(TOKEN_FILE, JSON.stringify(auth, null, 2), {
+    mode: 384
+    // Owner read/write only
+  });
+}
+async function loadToken() {
+  try {
+    const data = await readFile(TOKEN_FILE, "utf-8");
+    const auth = JSON.parse(data);
+    if (auth.expiresAt && Date.now() > auth.expiresAt) {
+      await clearToken();
+      return null;
+    }
+    return auth;
+  } catch {
+    return null;
+  }
+}
+async function clearToken() {
+  try {
+    await unlink(TOKEN_FILE);
+  } catch {
+  }
+}
+var AGOR_DIR, TOKEN_FILE;
+var init_auth = __esm({
+  "src/lib/auth.ts"() {
+    "use strict";
+    AGOR_DIR = join(homedir(), ".agor");
+    TOKEN_FILE = join(AGOR_DIR, "cli-token");
+  }
+});
+
 // src/commands/board/add-session.ts
-import { createClient } from "@agor/core/api";
-import { Args, Command } from "@oclif/core";
+import { Args } from "@oclif/core";
+import chalk2 from "chalk";
+
+// src/base-command.ts
+init_auth();
+import { createRestClient, isDaemonRunning } from "@agor/core/api";
+import { getDaemonUrl } from "@agor/core/config";
+import { Command } from "@oclif/core";
 import chalk from "chalk";
-var BoardAddSession = class _BoardAddSession extends Command {
+var BaseCommand = class extends Command {
+  daemonUrl = null;
+  /**
+   * Connect to daemon (checks if running first)
+   *
+   * @returns Feathers client instance
+   */
+  async connectToDaemon() {
+    this.daemonUrl = await getDaemonUrl();
+    const running = await isDaemonRunning(this.daemonUrl);
+    if (!running) {
+      this.log(
+        chalk.red("\u2717 Daemon not running") + "\n\n" + chalk.bold("To start the daemon:") + "\n  " + chalk.cyan("cd apps/agor-daemon && pnpm dev") + "\n\n" + chalk.bold("To configure daemon URL:") + "\n  " + chalk.cyan("agor config set daemon.url <url>") + "\n  " + chalk.gray(`Current: ${this.daemonUrl}`)
+      );
+      this.exit(1);
+    }
+    const client = await createRestClient(this.daemonUrl);
+    const storedAuth = await loadToken();
+    if (storedAuth) {
+      try {
+        await client.authenticate({
+          strategy: "jwt",
+          accessToken: storedAuth.accessToken
+        });
+      } catch (_error) {
+        const { clearToken: clearToken2 } = await Promise.resolve().then(() => (init_auth(), auth_exports));
+        await clearToken2();
+        this.error(
+          chalk.red("\u2717 Authentication failed") + "\n\n" + chalk.dim("Your session has expired or is invalid.") + "\n" + chalk.dim("Please login again:") + "\n  " + chalk.cyan("agor login")
+        );
+      }
+    } else {
+      try {
+        const response = await fetch(`${this.daemonUrl}/health`);
+        const health = await response.json();
+        if (health.auth?.requireAuth) {
+          this.error(
+            chalk.red("\u2717 Not authenticated") + "\n\n" + chalk.dim("This Agor instance requires authentication.") + "\n" + chalk.dim("Please login:") + "\n  " + chalk.cyan("agor login")
+          );
+        }
+        try {
+          await client.authenticate({ strategy: "anonymous" });
+        } catch (_authError) {
+          this.error(
+            chalk.red("\u2717 Authentication failed") + "\n\n" + chalk.dim("Please login:") + "\n  " + chalk.cyan("agor login")
+          );
+        }
+      } catch (_error) {
+        try {
+          await client.authenticate({ strategy: "anonymous" });
+        } catch {
+          this.error(
+            chalk.red("\u2717 Not authenticated") + "\n\n" + chalk.dim("Please login to use the Agor CLI:") + "\n  " + chalk.cyan("agor login")
+          );
+        }
+      }
+    }
+    return client;
+  }
+  /**
+   * Cleanup client connection
+   *
+   * Ensures socket is properly closed to prevent hanging processes
+   */
+  async cleanupClient(client) {
+    client.io.io.opts.reconnection = false;
+    client.io.removeAllListeners();
+    client.io.close();
+    await new Promise((resolve) => setTimeout(resolve, 100));
+  }
+};
+
+// src/commands/board/add-session.ts
+var BoardAddSession = class _BoardAddSession extends BaseCommand {
   static description = "Add a session's worktree to a board (sessions are organized through worktrees)";
   static examples = [
     "<%= config.bin %> <%= command.id %> default 0199b86c",
@@ -20,7 +154,7 @@ var BoardAddSession = class _BoardAddSession extends Command {
   };
   async run() {
     const { args } = await this.parse(_BoardAddSession);
-    const client = createClient();
+    const client = await this.connectToDaemon();
     try {
       const boardsResult = await client.service("boards").find();
       const boards = Array.isArray(boardsResult) ? boardsResult : boardsResult.data;
@@ -28,9 +162,8 @@ var BoardAddSession = class _BoardAddSession extends Command {
         (b) => b.board_id === args.boardId || b.board_id.startsWith(args.boardId) || b.slug === args.boardId
       );
       if (!board) {
-        this.log(chalk.red(`\u2717 Board not found: ${args.boardId}`));
-        await this.cleanup(client);
-        process.exit(1);
+        await this.cleanupClient(client);
+        this.error(`Board not found: ${args.boardId}`);
       }
       const sessionsResult = await client.service("sessions").find();
       const sessions = Array.isArray(sessionsResult) ? sessionsResult : sessionsResult.data;
@@ -38,22 +171,19 @@ var BoardAddSession = class _BoardAddSession extends Command {
         (s) => s.session_id === args.sessionId || s.session_id.startsWith(args.sessionId)
       );
       if (!session) {
-        this.log(chalk.red(`\u2717 Session not found: ${args.sessionId}`));
-        await this.cleanup(client);
-        process.exit(1);
+        await this.cleanupClient(client);
+        this.error(`Session not found: ${args.sessionId}`);
       }
       if (!session.worktree_id) {
-        this.log(chalk.red(`\u2717 Session has no worktree associated`));
-        await this.cleanup(client);
-        process.exit(1);
+        await this.cleanupClient(client);
+        this.error("Session has no worktree associated");
       }
       const worktreesResult = await client.service("worktrees").find();
       const worktrees = Array.isArray(worktreesResult) ? worktreesResult : worktreesResult.data;
       const worktree = worktrees.find((w) => w.worktree_id === session.worktree_id);
       if (!worktree) {
-        this.log(chalk.red(`\u2717 Worktree not found for session`));
-        await this.cleanup(client);
-        process.exit(1);
+        await this.cleanupClient(client);
+        this.error("Worktree not found for session");
       }
       const boardObjectsResult = await client.service("board-objects").find({
         query: {
@@ -65,8 +195,8 @@ var BoardAddSession = class _BoardAddSession extends Command {
         (bo) => bo.worktree_id === worktree.worktree_id
       );
       if (existingObject) {
-        this.log(chalk.yellow(`\u26A0 Worktree "${worktree.name}" already on board "${board.name}"`));
-        await this.cleanup(client);
+        this.log(chalk2.yellow(`\u26A0 Worktree "${worktree.name}" already on board "${board.name}"`));
+        await this.cleanupClient(client);
         return;
       }
       await client.service("board-objects").create({
@@ -75,26 +205,17 @@ var BoardAddSession = class _BoardAddSession extends Command {
         position: { x: 100, y: 100 }
       });
       this.log(
-        chalk.green(
+        chalk2.green(
           `\u2713 Added worktree "${worktree.name}" (containing session ${session.session_id.substring(0, 8)}) to board "${board.name}"`
         )
       );
     } catch (error) {
-      this.log(chalk.red("\u2717 Failed to add session to board"));
-      if (error instanceof Error) {
-        this.log(chalk.red(error.message));
-      }
-      await this.cleanup(client);
-      process.exit(1);
+      await this.cleanupClient(client);
+      this.error(
+        `Failed to add session to board: ${error instanceof Error ? error.message : String(error)}`
+      );
     }
-    await this.cleanup(client);
-  }
-  async cleanup(client) {
-    await new Promise((resolve) => {
-      client.io.once("disconnect", () => resolve());
-      client.io.close();
-      setTimeout(() => resolve(), 1e3);
-    });
+    await this.cleanupClient(client);
   }
 };
 export {