anyterm 0.1.0

package/LICENSE

@@ -0,0 +1,168 @@
+Copyright © 2026, anyterm.
+
+# PolyForm Shield License 1.0.0
+
+<https://polyformproject.org/licenses/shield/1.0.0>
+
+## Acceptance
+
+In order to get any license under these terms, you must agree
+to them as both strict obligations and conditions to all your
+licenses.
+
+## Copyright License
+
+The licensor grants you a copyright license for the software
+to do everything you might do with the software that would
+otherwise infringe the licensor's copyright in it for any
+permitted purpose. However, you may only distribute the
+software according to [Distribution License](#distribution-license)
+and make changes or new works based on the software according to
+[Changes and New Works License](#changes-and-new-works-license).
+
+## Distribution License
+
+The licensor grants you an additional copyright license to
+distribute copies of the software. Your license to distribute
+covers distributing the software with changes and new works
+permitted by [Changes and New Works License](#changes-and-new-works-license).
+
+## Notices
+
+You must ensure that anyone who gets a copy of any part of
+the software from you also gets a copy of these terms or the
+URL for them above, as well as copies of any plain-text lines
+beginning with `Required Notice:` that the licensor provided
+with the software.
+
+Required Notice: Copyright © 2026, anyterm (https://anyterm.dev)
+
+## Changes and New Works License
+
+The licensor grants you an additional copyright license to
+make changes and new works based on the software for any
+permitted purpose.
+
+## Patent License
+
+The licensor grants you a patent license for the software
+that covers patent claims the licensor can license, or
+becomes able to license, that you would infringe by using
+the software.
+
+## Noncompete
+
+Any purpose is a permitted purpose, except for providing
+any product that competes with the software or any product
+the licensor or any of its affiliates provides using the
+software.
+
+## Competition
+
+Goods and services compete even when they provide
+functionality through different kinds of interfaces or for
+different technical platforms. Applications can compete with
+services, libraries with plugins, frameworks with development
+tools, and so on, even if they're written in different
+programming languages or for different computer architectures.
+Goods and services compete even when provided free of charge.
+If you market a product as a practical substitute for the
+software or another product, it definitely competes.
+
+## New Products
+
+If you are using the software to provide a product that does
+not compete, but the licensor or any of its affiliates brings
+your product into competition by providing a new version of
+the software or another product using the software, you may
+continue using versions of the software available under these
+terms beforehand to provide your competing product, but not
+any later versions.
+
+## Discontinued Products
+
+You may begin using the software to compete with a product
+or service that the licensor or any of its affiliates has
+stopped providing, unless the licensor includes a plain-text
+line beginning with `Licensor Line of Business:` with the
+software that mentions that line of business.
+
+Licensor Line of Business: E2E encrypted terminal streaming,
+remote terminal access, and related developer tools provided
+as a hosted service at anyterm.dev
+
+## Sales of Business
+
+If the licensor or any of its affiliates sells a line of
+business developing the software or using the software to
+provide a product, the buyer can also enforce
+[Noncompete](#noncompete) for that product.
+
+## Fair Use
+
+You may have "fair use" rights for the software under the
+law. These terms do not limit them.
+
+## No Other Rights
+
+These terms do not allow you to sublicense or transfer any
+of your licenses to anyone else, or prevent the licensor
+from granting licenses to anyone else. These terms do not
+imply any other licenses.
+
+## Patent Defense
+
+If you make any written claim that the software infringes
+or contributes to infringement of any patent, your patent
+license for the software granted under these terms ends
+immediately. If your company makes such a claim, your patent
+license ends immediately for work on behalf of your company.
+
+## Violations
+
+The first time you are notified in writing that you have
+violated any of these terms, or done anything with the
+software not covered by your licenses, your licenses can
+nonetheless continue if you come into full compliance with
+these terms, and take practical steps to correct past
+violations, within 32 days of receiving notice. Otherwise,
+all your licenses end immediately.
+
+## No Liability
+
+As far as the law allows, the software comes as is, without
+any warranty or condition, and the licensor will not be
+liable to you for any damages arising out of these terms or
+the use or nature of the software, under any kind of legal
+claim.
+
+## Definitions
+
+The **licensor** is the individual or entity offering these
+terms, and the **software** is the software the licensor
+makes available under these terms.
+
+A **product** can be a good or service, or a combination
+of them.
+
+**You** refers to the individual or entity agreeing to
+these terms.
+
+**Your company** is any legal entity, sole proprietorship,
+or other kind of organization that you work for, plus all
+its affiliates.
+
+**Affiliates** means the other organizations than an
+organization has control over, is under the control of, or
+is under common control with.
+
+**Control** means ownership of substantially all the assets
+of an entity, or the power to direct its management and
+policies by vote, contract, or otherwise. Control can be
+direct or indirect.
+
+**Your licenses** are all the licenses granted to you for
+the software under these terms.
+
+**Use** means anything you do with the software requiring
+one of your licenses.

package/dist/chunk-QLH3UIZ5.js

@@ -0,0 +1,327 @@
+#!/usr/bin/env node
+
+// src/config.ts
+import * as os from "os";
+import Conf from "conf";
+import machineId from "node-machine-id";
+
+// src/secure-store.ts
+import * as fs from "fs";
+import { createInterface } from "readline/promises";
+var SERVICE = "anyterm";
+var ENV_VAR_MAP = {
+  authToken: "ANYTERM_AUTH_TOKEN",
+  masterKey: "ANYTERM_MASTER_KEY"
+};
+function hardenConfigPermissions() {
+  try {
+    if (process.platform !== "win32") {
+      fs.chmodSync(config.path, 384);
+    }
+  } catch {
+  }
+}
+var keytar = null;
+var plaintextConfirmed = false;
+async function getKeytar() {
+  if (keytar) return keytar;
+  try {
+    const mod = await import("keytar");
+    keytar = mod.default;
+    return keytar;
+  } catch {
+    return null;
+  }
+}
+async function getSecret(key, serverUrl) {
+  const envVar = ENV_VAR_MAP[key];
+  if (envVar) {
+    const envValue = process.env[envVar];
+    if (envValue) return envValue;
+  }
+  const keychainKey = serverUrl ? `${key}:${serverUrl}` : key;
+  const kt = await getKeytar();
+  if (kt) {
+    try {
+      const value = await kt.getPassword(SERVICE, keychainKey);
+      if (value) return value;
+    } catch {
+    }
+  }
+  if (serverUrl) {
+    const store = config.store;
+    const servers = store["servers"];
+    const val2 = servers?.[serverUrl]?.[key];
+    return typeof val2 === "string" ? val2 : null;
+  }
+  const stored = config.store;
+  const val = stored[key];
+  return typeof val === "string" ? val : null;
+}
+async function setSecret(key, value, serverUrl) {
+  const envVar = ENV_VAR_MAP[key];
+  if (envVar && process.env[envVar]) return;
+  const keychainKey = serverUrl ? `${key}:${serverUrl}` : key;
+  const kt = await getKeytar();
+  if (kt) {
+    try {
+      await kt.setPassword(SERVICE, keychainKey, value);
+      if (serverUrl) {
+        const store = config.store;
+        const servers = store["servers"];
+        if (servers?.[serverUrl]?.[key]) {
+          delete servers[serverUrl][key];
+          config.set(
+            "servers",
+            servers
+          );
+        }
+      } else {
+        const stored = config.store;
+        if (key in stored) {
+          delete stored[key];
+          config.store = stored;
+        }
+      }
+      return;
+    } catch {
+    }
+  }
+  if (!process.stdin.isTTY) {
+    throw new Error(
+      "OS keychain unavailable and running in non-interactive mode.\nSet ANYTERM_AUTH_TOKEN and ANYTERM_MASTER_KEY environment variables for headless environments."
+    );
+  }
+  if (!plaintextConfirmed) {
+    const rl = createInterface({ input: process.stdin, output: process.stderr });
+    try {
+      const answer = await rl.question(
+        "\x1B[33mOS keychain unavailable. Store credentials in plaintext config file? (y/N): \x1B[0m"
+      );
+      if (answer.trim().toLowerCase() !== "y") {
+        throw new Error(
+          "Credentials not saved. Set ANYTERM_AUTH_TOKEN and ANYTERM_MASTER_KEY environment variables, or install a keychain provider."
+        );
+      }
+      plaintextConfirmed = true;
+    } finally {
+      rl.close();
+    }
+  }
+  if (serverUrl) {
+    const store = config.store;
+    const servers = store["servers"] ?? {};
+    if (!servers[serverUrl]) servers[serverUrl] = {};
+    servers[serverUrl][key] = value;
+    config.set(
+      "servers",
+      servers
+    );
+  } else {
+    config.set(
+      key,
+      value
+    );
+  }
+  hardenConfigPermissions();
+}
+async function deleteSecret(key, serverUrl) {
+  const keychainKey = serverUrl ? `${key}:${serverUrl}` : key;
+  const kt = await getKeytar();
+  if (kt) {
+    try {
+      await kt.deletePassword(SERVICE, keychainKey);
+    } catch {
+    }
+  }
+  if (serverUrl) {
+    const store = config.store;
+    const servers = store["servers"];
+    if (servers?.[serverUrl]?.[key]) {
+      delete servers[serverUrl][key];
+      config.set(
+        "servers",
+        servers
+      );
+    }
+  } else {
+    const stored = config.store;
+    if (key in stored) {
+      delete stored[key];
+      config.store = stored;
+    }
+  }
+}
+
+// src/config.ts
+var DEFAULT_SERVER_URL = "https://anyterm.dev";
+var CONFIG_VERSION = 2;
+var config = new Conf({
+  projectName: "anyterm"
+});
+function normalizeServerUrl(url) {
+  const parsed = new URL(url);
+  return `${parsed.protocol}//${parsed.host.toLowerCase()}${parsed.pathname.replace(/\/+$/, "")}`;
+}
+function getActiveServer() {
+  return config.get("activeServer");
+}
+function setActiveServer(serverUrl) {
+  config.set(
+    "activeServer",
+    serverUrl
+  );
+}
+function getServerConfig(serverUrl) {
+  const store = config.store;
+  return store.servers?.[serverUrl];
+}
+function setServerConfig(serverUrl, data) {
+  const store = config.store;
+  const servers = store.servers ?? {};
+  servers[serverUrl] = { ...servers[serverUrl], ...data };
+  config.set("servers", servers);
+}
+function deleteServerConfig(serverUrl) {
+  const store = config.store;
+  if (store.servers?.[serverUrl]) {
+    delete store.servers[serverUrl];
+    config.set(
+      "servers",
+      store.servers
+    );
+  }
+}
+async function getConfig() {
+  const { migrateConfigIfNeeded: migrateConfigIfNeeded2 } = await import("./migrate-OR6DL5TQ.js");
+  await migrateConfigIfNeeded2();
+  const activeServer = config.get("activeServer");
+  if (!activeServer) {
+    console.error("Not logged in. Run: anyterm login");
+    process.exit(1);
+  }
+  const serverConf = getServerConfig(activeServer);
+  if (!serverConf?.userId) {
+    console.error("Not logged in. Run: anyterm login");
+    process.exit(1);
+  }
+  const authToken = await getSecret("authToken", activeServer);
+  if (!authToken) {
+    console.error("Not logged in. Run: anyterm login");
+    process.exit(1);
+  }
+  const wsUrl = serverConf.wsUrl || activeServer.replace(/^http/, "ws");
+  const masterKey = await getSecret("masterKey", activeServer);
+  return {
+    serverUrl: activeServer,
+    wsUrl,
+    authToken,
+    userId: serverConf.userId,
+    publicKey: serverConf.publicKey,
+    encryptedPrivateKey: serverConf.encryptedPrivateKey,
+    keySalt: serverConf.keySalt,
+    masterKey
+  };
+}
+function getMachineId() {
+  return machineId.machineIdSync().slice(0, 8);
+}
+function getMachineName() {
+  return config.get("machineName") || os.hostname();
+}
+function setMachineName(name) {
+  config.set(
+    "machineName",
+    name
+  );
+}
+
+// src/migrate.ts
+var migrated = false;
+async function migrateConfigIfNeeded() {
+  if (migrated) return;
+  migrated = true;
+  const store = config.store;
+  const version = store["configVersion"];
+  if (version && version >= CONFIG_VERSION) return;
+  const legacyServerUrl = store["serverUrl"];
+  if (!legacyServerUrl) {
+    config.set(
+      "configVersion",
+      CONFIG_VERSION
+    );
+    return;
+  }
+  const serverConfig = {};
+  const perServerKeys = [
+    "wsUrl",
+    "userId",
+    "publicKey",
+    "encryptedPrivateKey",
+    "keySalt"
+  ];
+  for (const k of perServerKeys) {
+    if (k in store) {
+      serverConfig[k] = store[k];
+    }
+  }
+  for (const secretKey of ["authToken", "masterKey"]) {
+    const value = await getSecret(secretKey);
+    if (value) {
+      await setSecret(secretKey, value, legacyServerUrl);
+      await deleteSecret(secretKey);
+    }
+  }
+  const servers = store["servers"] ?? {};
+  servers[legacyServerUrl] = serverConfig;
+  config.set(
+    "servers",
+    servers
+  );
+  config.set(
+    "activeServer",
+    legacyServerUrl
+  );
+  config.set(
+    "configVersion",
+    CONFIG_VERSION
+  );
+  const legacyKeys = [
+    "serverUrl",
+    "wsUrl",
+    "userId",
+    "publicKey",
+    "encryptedPrivateKey",
+    "keySalt",
+    "authToken",
+    "masterKey"
+  ];
+  for (const k of legacyKeys) {
+    if (k in store) {
+      delete store[k];
+    }
+  }
+  config.store = store;
+}
+function _resetMigrationState() {
+  migrated = false;
+}
+
+export {
+  getSecret,
+  setSecret,
+  deleteSecret,
+  migrateConfigIfNeeded,
+  _resetMigrationState,
+  DEFAULT_SERVER_URL,
+  config,
+  normalizeServerUrl,
+  getActiveServer,
+  setActiveServer,
+  setServerConfig,
+  deleteServerConfig,
+  getConfig,
+  getMachineId,
+  getMachineName,
+  setMachineName
+};