apipay 0.1.0 → 0.2.0

package/dist/commands/config/set.js.map

@@ -1 +1 @@
-{"version":3,"file":"set.js","sourceRoot":"","sources":["../../../src/commands/config/set.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,IAAI,EAAE,MAAM,aAAa,CAAC;AACnC,OAAO,KAAK,MAAM,OAAO,CAAC;AAC1B,OAAO,EAAE,WAAW,EAAE,MAAM,2BAA2B,CAAC;AACxD,OAAO,EAAE,QAAQ,EAAE,MAAM,qBAAqB,CAAC;AAC/C,OAAO,EAAE,OAAO,EAAE,MAAM,yBAAyB,CAAC;AAElD,MAAM,CAAC,OAAO,OAAO,SAAU,SAAQ,WAAW;IAChD,MAAM,CAAU,WAAW,GAAG,+BAA+B,CAAC;IAE9D,MAAM,CAAU,IAAI,GAAG;QACrB,GAAG,EAAE,IAAI,CAAC,MAAM,CAAC,EAAE,WAAW,EAAE,+BAA+B,EAAE,QAAQ,EAAE,IAAI,EAAE,CAAC;QAClF,KAAK,EAAE,IAAI,CAAC,MAAM,CAAC,EAAE,WAAW,EAAE,cAAc,EAAE,QAAQ,EAAE,IAAI,EAAE,CAAC;KACpE,CAAC;IAEF,MAAM,CAAU,QAAQ,GAAG;QACzB,sEAAsE;KACvE,CAAC;IAEF,KAAK,CAAC,GAAG;QACP,MAAM,EAAE,IAAI,EAAE,GAAG,MAAM,IAAI,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC;QAE7C,MAAM,WAAW,GAAG,CAAC,YAAY,CAAC,CAAC;QACnC,IAAI,CAAC,WAAW,CAAC,QAAQ,CAAC,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC;YACpC,IAAI,CAAC,KAAK,CACR,uBAAuB,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,mBAAmB,WAAW,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,EACtF,EAAE,IAAI,EAAE,CAAC,EAAE,CACZ,CAAC;QACJ,CAAC;QAED,QAAQ,EAAE,CAAC,GAAG,CAAC,IAAI,CAAC,GAAU,EAAE,IAAI,CAAC,KAAK,CAAC,CAAC;QAC5C,OAAO,CAAC,GAAG,IAAI,CAAC,GAAG,MAAM,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;IACrD,CAAC"}
+{"version":3,"file":"set.js","sourceRoot":"","sources":["../../../src/commands/config/set.ts"],"names":[],"mappings":"AAAA,OAAO,EAAC,IAAI,EAAC,MAAM,aAAa,CAAC;AACjC,OAAO,KAAK,MAAM,OAAO,CAAC;AAC1B,OAAO,EAAC,WAAW,EAAC,MAAM,2BAA2B,CAAC;AACtD,OAAO,EAAC,QAAQ,EAAC,MAAM,qBAAqB,CAAC;AAC7C,OAAO,EAAC,OAAO,EAAC,MAAM,yBAAyB,CAAC;AAEhD,MAAM,CAAC,OAAO,OAAO,SAAU,SAAQ,WAAW;IACjD,MAAM,CAAU,WAAW,GAAG,+BAA+B,CAAC;IAE9D,MAAM,CAAU,IAAI,GAAG;QACtB,GAAG,EAAE,IAAI,CAAC,MAAM,CAAC;YAChB,WAAW,EAAE,+BAA+B;YAC5C,QAAQ,EAAE,IAAI;SACd,CAAC;QACF,KAAK,EAAE,IAAI,CAAC,MAAM,CAAC,EAAC,WAAW,EAAE,cAAc,EAAE,QAAQ,EAAE,IAAI,EAAC,CAAC;KACjE,CAAC;IAEF,MAAM,CAAU,QAAQ,GAAG;QAC1B,sEAAsE;KACtE,CAAC;IAEF,KAAK,CAAC,GAAG;QACR,MAAM,EAAC,IAAI,EAAC,GAAG,MAAM,IAAI,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC;QAE3C,MAAM,WAAW,GAAG,CAAC,YAAY,CAAC,CAAC;QACnC,IAAI,CAAC,WAAW,CAAC,QAAQ,CAAC,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC;YACrC,IAAI,CAAC,KAAK,CACT,uBAAuB,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,mBAAmB,WAAW,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,EACtF,EAAC,IAAI,EAAE,CAAC,EAAC,CACT,CAAC;QACH,CAAC;QAED,QAAQ,EAAE,CAAC,GAAG,CAAC,IAAI,CAAC,GAAU,EAAE,IAAI,CAAC,KAAK,CAAC,CAAC;QAC5C,OAAO,CAAC,GAAG,IAAI,CAAC,GAAG,MAAM,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;IACpD,CAAC"}

package/dist/commands/keys/create.d.ts

@@ -1,4 +1,4 @@
-import { AuthenticatedCommand } from '../../lib/base-command.js';
+import { AuthenticatedCommand } from "../../lib/base-command.js";
 export default class KeysCreate extends AuthenticatedCommand {
     static description: string;
     static examples: string[];

package/dist/commands/keys/create.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"create.d.ts","sourceRoot":"","sources":["../../../src/commands/keys/create.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,oBAAoB,EAAE,MAAM,2BAA2B,CAAC;AAKjE,MAAM,CAAC,OAAO,OAAO,UAAW,SAAQ,oBAAoB;IAC1D,OAAgB,WAAW,SAAoD;IAE/E,OAAgB,QAAQ,WAAqC;IAEvD,GAAG,IAAI,OAAO,CAAC,IAAI,CAAC;CAgE3B"}
+{"version":3,"file":"create.d.ts","sourceRoot":"","sources":["../../../src/commands/keys/create.ts"],"names":[],"mappings":"AACA,OAAO,EAAC,oBAAoB,EAAC,MAAM,2BAA2B,CAAC;AAK/D,MAAM,CAAC,OAAO,OAAO,UAAW,SAAQ,oBAAoB;IAC3D,OAAgB,WAAW,SACuB;IAElD,OAAgB,QAAQ,WAAqC;IAEvD,GAAG,IAAI,OAAO,CAAC,IAAI,CAAC;CAuE1B"}

package/dist/commands/keys/create.js

@@ -1,52 +1,58 @@
-import chalk from 'chalk';
-import { AuthenticatedCommand } from '../../lib/base-command.js';
-import { setApiKey } from '../../lib/config.js';
-import { success, warn, kvLine } from '../../lib/formatters.js';
-import { promptApiKeyName, promptConfirm } from '../../lib/prompts.js';
+import chalk from "chalk";
+import { AuthenticatedCommand } from "../../lib/base-command.js";
+import { setApiKey } from "../../lib/config.js";
+import { info, kvLine, maskSecret, success, warn } from "../../lib/formatters.js";
+import { promptApiKeyName, promptExistingKeyAction } from "../../lib/prompts.js";
 export default class KeysCreate extends AuthenticatedCommand {
-    static description = 'Generate a new API key for client integrations';
-    static examples = ['<%= config.bin %> keys:create'];
+    static description = "Generate a new API key for client integrations";
+    static examples = ["<%= config.bin %> keys:create"];
     async run() {
         // Check if user already has keys
-        this.spinner.start('Checking existing keys...');
+        this.spinner.start("Checking existing keys...");
         try {
-            const existing = await this.api.get('/client-auth/keys', 'jwt');
+            const existing = await this.api.get("/client-auth/keys", "jwt");
             const keys = existing?.data ?? existing;
             if (Array.isArray(keys) && keys.length > 0) {
                 this.spinner.stop();
-                warn('You already have an API key. Only 1 key is allowed per account.');
-                console.log(`  Current key: ${chalk.cyan(keys[0].accessKey)}`);
-                console.log('');
-                const revoke = await promptConfirm('Revoke existing key and create a new one?');
-                if (!revoke)
+                warn("You already have an API key. Only 1 key is allowed per account.");
+                console.log(`  Current key: ${chalk.cyan(maskSecret(keys[0].accessKey))}`);
+                console.log("");
+                const action = await promptExistingKeyAction();
+                if (action === "keep") {
+                    setApiKey({
+                        id: keys[0].id,
+                        accessKey: keys[0].accessKey,
+                        secretKey: keys[0].secretKey ?? "",
+                        name: keys[0].name ?? "",
+                    });
+                    info("Continuing with existing API key.");
                     return;
-                this.spinner.start('Revoking existing key...');
-                await this.api.delete(`/client-auth/keys/${keys[0].id}`, 'jwt');
-                this.spinner.succeed('Existing key revoked');
+                }
+                this.spinner.start("Revoking existing key...");
+                await this.api.delete(`/client-auth/keys/${keys[0].id}`, "jwt");
+                this.spinner.succeed("Existing key revoked");
             }
             else {
                 this.spinner.stop();
             }
         }
         catch (error) {
-            this.spinner.fail('Failed to check existing keys');
+            this.spinner.fail("Failed to check existing keys");
             this.handleError(error);
         }
         const name = await promptApiKeyName();
-        this.spinner.start('Generating API key...');
+        this.spinner.start("Generating API key...");
         try {
-            const data = await this.api.post('/client-auth/keys', { name }, 'jwt');
+            const data = await this.api.post("/client-auth/keys", { name }, "jwt");
             const key = data?.data ?? data;
-            this.spinner.succeed('API key created!');
-            console.log('');
-            console.log(chalk.bold('  Your API Key'));
-            console.log(chalk.gray('  ────────────'));
-            kvLine('Name', key.name ?? name);
-            kvLine('Access Key', chalk.cyan(key.accessKey));
-            kvLine('Secret Key', chalk.yellow(key.secretKey));
-            console.log('');
-            console.log(chalk.yellow.bold('  ⚠  Save your secret key now — it will not be shown again!'));
-            console.log('');
+            this.spinner.succeed("API key created!");
+            console.log("");
+            console.log(chalk.bold("  Your API Key"));
+            console.log(chalk.gray("  ────────────"));
+            kvLine("Name", key.name ?? name);
+            kvLine("Access Key", chalk.cyan(key.accessKey));
+            kvLine("Secret Key", chalk.yellow(key.secretKey));
+            console.log("");
             // Store in config for CLI use
             setApiKey({
                 id: key.id,
@@ -54,13 +60,13 @@ export default class KeysCreate extends AuthenticatedCommand {
                 secretKey: key.secretKey,
                 name: key.name ?? name,
             });
-            success('API key saved to CLI config.');
+            success("API key saved to CLI config.");
             if (this.jsonOutput) {
                 this.outputJson(key);
             }
         }
         catch (error) {
-            this.spinner.fail('Failed to create API key');
+            this.spinner.fail("Failed to create API key");
             this.handleError(error);
         }
     }

package/dist/commands/keys/create.js.map

@@ -1 +1 @@
-{"version":3,"file":"create.js","sourceRoot":"","sources":["../../../src/commands/keys/create.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,MAAM,OAAO,CAAC;AAC1B,OAAO,EAAE,oBAAoB,EAAE,MAAM,2BAA2B,CAAC;AACjE,OAAO,EAAE,SAAS,EAAE,MAAM,qBAAqB,CAAC;AAChD,OAAO,EAAE,OAAO,EAAE,IAAI,EAAE,MAAM,EAAE,MAAM,yBAAyB,CAAC;AAChE,OAAO,EAAE,gBAAgB,EAAE,aAAa,EAAE,MAAM,sBAAsB,CAAC;AAEvE,MAAM,CAAC,OAAO,OAAO,UAAW,SAAQ,oBAAoB;IAC1D,MAAM,CAAU,WAAW,GAAG,gDAAgD,CAAC;IAE/E,MAAM,CAAU,QAAQ,GAAG,CAAC,+BAA+B,CAAC,CAAC;IAE7D,KAAK,CAAC,GAAG;QACP,iCAAiC;QACjC,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC,2BAA2B,CAAC,CAAC;QAChD,IAAI,CAAC;YACH,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC,mBAAmB,EAAE,KAAK,CAAC,CAAC;YAChE,MAAM,IAAI,GAAG,QAAQ,EAAE,IAAI,IAAI,QAAQ,CAAC;YAExC,IAAI,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,IAAI,IAAI,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;gBAC3C,IAAI,CAAC,OAAO,CAAC,IAAI,EAAE,CAAC;gBACpB,IAAI,CAAC,iEAAiE,CAAC,CAAC;gBACxE,OAAO,CAAC,GAAG,CAAC,kBAAkB,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC,EAAE,CAAC,CAAC;gBAC/D,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;gBAChB,MAAM,MAAM,GAAG,MAAM,aAAa,CAAC,2CAA2C,CAAC,CAAC;gBAChF,IAAI,CAAC,MAAM;oBAAE,OAAO;gBAEpB,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC,0BAA0B,CAAC,CAAC;gBAC/C,MAAM,IAAI,CAAC,GAAG,CAAC,MAAM,CAAC,qBAAqB,IAAI,CAAC,CAAC,CAAC,CAAC,EAAE,EAAE,EAAE,KAAK,CAAC,CAAC;gBAChE,IAAI,CAAC,OAAO,CAAC,OAAO,CAAC,sBAAsB,CAAC,CAAC;YAC/C,CAAC;iBAAM,CAAC;gBACN,IAAI,CAAC,OAAO,CAAC,IAAI,EAAE,CAAC;YACtB,CAAC;QACH,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,+BAA+B,CAAC,CAAC;YACnD,IAAI,CAAC,WAAW,CAAC,KAAK,CAAC,CAAC;QAC1B,CAAC;QAED,MAAM,IAAI,GAAG,MAAM,gBAAgB,EAAE,CAAC;QAEtC,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC,uBAAuB,CAAC,CAAC;QAC5C,IAAI,CAAC;YACH,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC,mBAAmB,EAAE,EAAE,IAAI,EAAE,EAAE,KAAK,CAAC,CAAC;YACvE,MAAM,GAAG,GAAG,IAAI,EAAE,IAAI,IAAI,IAAI,CAAC;YAE/B,IAAI,CAAC,OAAO,CAAC,OAAO,CAAC,kBAAkB,CAAC,CAAC;YACzC,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;YAChB,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAC,CAAC;YAC1C,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAC,CAAC;YAC1C,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,IAAI,IAAI,IAAI,CAAC,CAAC;YACjC,MAAM,CAAC,YAAY,EAAE,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC,CAAC;YAChD,MAAM,CAAC,YAAY,EAAE,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC,CAAC;YAClD,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;YAChB,OAAO,CAAC,GAAG,CACT,KAAK,CAAC,MAAM,CAAC,IAAI,CAAC,6DAA6D,CAAC,CACjF,CAAC;YACF,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;YAEhB,8BAA8B;YAC9B,SAAS,CAAC;gBACR,EAAE,EAAE,GAAG,CAAC,EAAE;gBACV,SAAS,EAAE,GAAG,CAAC,SAAS;gBACxB,SAAS,EAAE,GAAG,CAAC,SAAS;gBACxB,IAAI,EAAE,GAAG,CAAC,IAAI,IAAI,IAAI;aACvB,CAAC,CAAC;YAEH,OAAO,CAAC,8BAA8B,CAAC,CAAC;YAExC,IAAI,IAAI,CAAC,UAAU,EAAE,CAAC;gBACpB,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC;YACvB,CAAC;QACH,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,0BAA0B,CAAC,CAAC;YAC9C,IAAI,CAAC,WAAW,CAAC,KAAK,CAAC,CAAC;QAC1B,CAAC;IACH,CAAC"}
+{"version":3,"file":"create.js","sourceRoot":"","sources":["../../../src/commands/keys/create.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,MAAM,OAAO,CAAC;AAC1B,OAAO,EAAC,oBAAoB,EAAC,MAAM,2BAA2B,CAAC;AAC/D,OAAO,EAAC,SAAS,EAAC,MAAM,qBAAqB,CAAC;AAC9C,OAAO,EAAC,IAAI,EAAE,MAAM,EAAE,UAAU,EAAE,OAAO,EAAE,IAAI,EAAC,MAAM,yBAAyB,CAAC;AAChF,OAAO,EAAC,gBAAgB,EAAE,uBAAuB,EAAC,MAAM,sBAAsB,CAAC;AAE/E,MAAM,CAAC,OAAO,OAAO,UAAW,SAAQ,oBAAoB;IAC3D,MAAM,CAAU,WAAW,GAC1B,gDAAgD,CAAC;IAElD,MAAM,CAAU,QAAQ,GAAG,CAAC,+BAA+B,CAAC,CAAC;IAE7D,KAAK,CAAC,GAAG;QACR,iCAAiC;QACjC,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC,2BAA2B,CAAC,CAAC;QAChD,IAAI,CAAC;YACJ,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC,mBAAmB,EAAE,KAAK,CAAC,CAAC;YAChE,MAAM,IAAI,GAAG,QAAQ,EAAE,IAAI,IAAI,QAAQ,CAAC;YAExC,IAAI,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,IAAI,IAAI,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;gBAC5C,IAAI,CAAC,OAAO,CAAC,IAAI,EAAE,CAAC;gBACpB,IAAI,CAAC,iEAAiE,CAAC,CAAC;gBACxE,OAAO,CAAC,GAAG,CACV,kBAAkB,KAAK,CAAC,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,EAAE,CAC7D,CAAC;gBACF,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;gBAChB,MAAM,MAAM,GAAG,MAAM,uBAAuB,EAAE,CAAC;gBAC/C,IAAI,MAAM,KAAK,MAAM,EAAE,CAAC;oBACvB,SAAS,CAAC;wBACT,EAAE,EAAE,IAAI,CAAC,CAAC,CAAC,CAAC,EAAE;wBACd,SAAS,EAAE,IAAI,CAAC,CAAC,CAAC,CAAC,SAAS;wBAC5B,SAAS,EAAE,IAAI,CAAC,CAAC,CAAC,CAAC,SAAS,IAAI,EAAE;wBAClC,IAAI,EAAE,IAAI,CAAC,CAAC,CAAC,CAAC,IAAI,IAAI,EAAE;qBACxB,CAAC,CAAC;oBACH,IAAI,CAAC,mCAAmC,CAAC,CAAC;oBAC1C,OAAO;gBACR,CAAC;gBAED,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC,0BAA0B,CAAC,CAAC;gBAC/C,MAAM,IAAI,CAAC,GAAG,CAAC,MAAM,CAAC,qBAAqB,IAAI,CAAC,CAAC,CAAC,CAAC,EAAE,EAAE,EAAE,KAAK,CAAC,CAAC;gBAChE,IAAI,CAAC,OAAO,CAAC,OAAO,CAAC,sBAAsB,CAAC,CAAC;YAC9C,CAAC;iBAAM,CAAC;gBACP,IAAI,CAAC,OAAO,CAAC,IAAI,EAAE,CAAC;YACrB,CAAC;QACF,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YAChB,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,+BAA+B,CAAC,CAAC;YACnD,IAAI,CAAC,WAAW,CAAC,KAAK,CAAC,CAAC;QACzB,CAAC;QAED,MAAM,IAAI,GAAG,MAAM,gBAAgB,EAAE,CAAC;QAEtC,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC,uBAAuB,CAAC,CAAC;QAC5C,IAAI,CAAC;YACJ,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC,mBAAmB,EAAE,EAAC,IAAI,EAAC,EAAE,KAAK,CAAC,CAAC;YACrE,MAAM,GAAG,GAAG,IAAI,EAAE,IAAI,IAAI,IAAI,CAAC;YAE/B,IAAI,CAAC,OAAO,CAAC,OAAO,CAAC,kBAAkB,CAAC,CAAC;YACzC,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;YAChB,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAC,CAAC;YAC1C,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAC,CAAC;YAC1C,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,IAAI,IAAI,IAAI,CAAC,CAAC;YACjC,MAAM,CAAC,YAAY,EAAE,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC,CAAC;YAChD,MAAM,CAAC,YAAY,EAAE,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC,CAAC;YAClD,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;YAEhB,8BAA8B;YAC9B,SAAS,CAAC;gBACT,EAAE,EAAE,GAAG,CAAC,EAAE;gBACV,SAAS,EAAE,GAAG,CAAC,SAAS;gBACxB,SAAS,EAAE,GAAG,CAAC,SAAS;gBACxB,IAAI,EAAE,GAAG,CAAC,IAAI,IAAI,IAAI;aACtB,CAAC,CAAC;YAEH,OAAO,CAAC,8BAA8B,CAAC,CAAC;YAExC,IAAI,IAAI,CAAC,UAAU,EAAE,CAAC;gBACrB,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC;YACtB,CAAC;QACF,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YAChB,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,0BAA0B,CAAC,CAAC;YAC9C,IAAI,CAAC,WAAW,CAAC,KAAK,CAAC,CAAC;QACzB,CAAC;IACF,CAAC"}

package/dist/commands/keys/list.d.ts

@@ -1,4 +1,4 @@
-import { AuthenticatedCommand } from '../../lib/base-command.js';
+import { AuthenticatedCommand } from "../../lib/base-command.js";
 export default class KeysList extends AuthenticatedCommand {
     static description: string;
     static examples: string[];

package/dist/commands/keys/list.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"list.d.ts","sourceRoot":"","sources":["../../../src/commands/keys/list.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,oBAAoB,EAAE,MAAM,2BAA2B,CAAC;AAGjE,MAAM,CAAC,OAAO,OAAO,QAAS,SAAQ,oBAAoB;IACxD,OAAgB,WAAW,SAAwB;IAEnD,OAAgB,QAAQ,WAAmC;IAErD,GAAG,IAAI,OAAO,CAAC,IAAI,CAAC;CAmC3B"}
+{"version":3,"file":"list.d.ts","sourceRoot":"","sources":["../../../src/commands/keys/list.ts"],"names":[],"mappings":"AACA,OAAO,EAAC,oBAAoB,EAAC,MAAM,2BAA2B,CAAC;AAQ/D,MAAM,CAAC,OAAO,OAAO,QAAS,SAAQ,oBAAoB;IACzD,OAAgB,WAAW,SAAwB;IAEnD,OAAgB,QAAQ,WAAmC;IAErD,GAAG,IAAI,OAAO,CAAC,IAAI,CAAC;CAqC1B"}

package/dist/commands/keys/list.js

@@ -1,34 +1,34 @@
-import chalk from 'chalk';
-import { AuthenticatedCommand } from '../../lib/base-command.js';
-import { createTable, formatDate, statusBadge } from '../../lib/formatters.js';
+import chalk from "chalk";
+import { AuthenticatedCommand } from "../../lib/base-command.js";
+import { createTable, formatDate, maskSecret, statusBadge, } from "../../lib/formatters.js";
 export default class KeysList extends AuthenticatedCommand {
-    static description = 'List your API keys';
-    static examples = ['<%= config.bin %> keys:list'];
+    static description = "List your API keys";
+    static examples = ["<%= config.bin %> keys:list"];
     async run() {
-        this.spinner.start('Fetching API keys...');
+        this.spinner.start("Fetching API keys...");
         try {
-            const data = await this.api.get('/client-auth/keys', 'jwt');
+            const data = await this.api.get("/client-auth/keys", "jwt");
             const keys = data?.data ?? data;
             this.spinner.stop();
             if (!Array.isArray(keys) || keys.length === 0) {
-                this.log(`\n  No API keys found. Run ${chalk.cyan('apipay keys:create')} to generate one.\n`);
+                this.log(`\n  No API keys found. Run ${chalk.cyan("apipay keys:create")} to generate one.\n`);
                 return;
             }
-            console.log('');
-            const table = createTable(['Name', 'Access Key', 'Status', 'Created'], keys.map((k) => [
-                k.name || '—',
-                k.accessKey ?? '—',
-                statusBadge(k.isActive ? 'ACTIVE' : 'INACTIVE'),
+            console.log("");
+            const table = createTable(["Name", "Access Key", "Status", "Created"], keys.map((k) => [
+                k.name || "—",
+                k.accessKey ? maskSecret(k.accessKey) : "—",
+                statusBadge(k.isActive ? "ACTIVE" : "INACTIVE"),
                 formatDate(k.createdAt),
             ]));
             console.log(table);
-            console.log('');
+            console.log("");
             if (this.jsonOutput) {
                 this.outputJson(keys);
             }
         }
         catch (error) {
-            this.spinner.fail('Failed to fetch API keys');
+            this.spinner.fail("Failed to fetch API keys");
             this.handleError(error);
         }
     }

package/dist/commands/keys/list.js.map

@@ -1 +1 @@
-{"version":3,"file":"list.js","sourceRoot":"","sources":["../../../src/commands/keys/list.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,MAAM,OAAO,CAAC;AAC1B,OAAO,EAAE,oBAAoB,EAAE,MAAM,2BAA2B,CAAC;AACjE,OAAO,EAAE,WAAW,EAAE,UAAU,EAAE,WAAW,EAAE,MAAM,yBAAyB,CAAC;AAE/E,MAAM,CAAC,OAAO,OAAO,QAAS,SAAQ,oBAAoB;IACxD,MAAM,CAAU,WAAW,GAAG,oBAAoB,CAAC;IAEnD,MAAM,CAAU,QAAQ,GAAG,CAAC,6BAA6B,CAAC,CAAC;IAE3D,KAAK,CAAC,GAAG;QACP,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC,sBAAsB,CAAC,CAAC;QAE3C,IAAI,CAAC;YACH,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC,mBAAmB,EAAE,KAAK,CAAC,CAAC;YAC5D,MAAM,IAAI,GAAG,IAAI,EAAE,IAAI,IAAI,IAAI,CAAC;YAEhC,IAAI,CAAC,OAAO,CAAC,IAAI,EAAE,CAAC;YAEpB,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,IAAI,IAAI,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;gBAC9C,IAAI,CAAC,GAAG,CAAC,8BAA8B,KAAK,CAAC,IAAI,CAAC,oBAAoB,CAAC,qBAAqB,CAAC,CAAC;gBAC9F,OAAO;YACT,CAAC;YAED,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;YAChB,MAAM,KAAK,GAAG,WAAW,CACvB,CAAC,MAAM,EAAE,YAAY,EAAE,QAAQ,EAAE,SAAS,CAAC,EAC3C,IAAI,CAAC,GAAG,CAAC,CAAC,CAAM,EAAE,EAAE,CAAC;gBACnB,CAAC,CAAC,IAAI,IAAI,GAAG;gBACb,CAAC,CAAC,SAAS,IAAI,GAAG;gBAClB,WAAW,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,UAAU,CAAC;gBAC/C,UAAU,CAAC,CAAC,CAAC,SAAS,CAAC;aACxB,CAAC,CACH,CAAC;YACF,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC;YACnB,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;YAEhB,IAAI,IAAI,CAAC,UAAU,EAAE,CAAC;gBACpB,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC;YACxB,CAAC;QACH,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,0BAA0B,CAAC,CAAC;YAC9C,IAAI,CAAC,WAAW,CAAC,KAAK,CAAC,CAAC;QAC1B,CAAC;IACH,CAAC"}
+{"version":3,"file":"list.js","sourceRoot":"","sources":["../../../src/commands/keys/list.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,MAAM,OAAO,CAAC;AAC1B,OAAO,EAAC,oBAAoB,EAAC,MAAM,2BAA2B,CAAC;AAC/D,OAAO,EACN,WAAW,EACX,UAAU,EACV,UAAU,EACV,WAAW,GACX,MAAM,yBAAyB,CAAC;AAEjC,MAAM,CAAC,OAAO,OAAO,QAAS,SAAQ,oBAAoB;IACzD,MAAM,CAAU,WAAW,GAAG,oBAAoB,CAAC;IAEnD,MAAM,CAAU,QAAQ,GAAG,CAAC,6BAA6B,CAAC,CAAC;IAE3D,KAAK,CAAC,GAAG;QACR,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC,sBAAsB,CAAC,CAAC;QAE3C,IAAI,CAAC;YACJ,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC,mBAAmB,EAAE,KAAK,CAAC,CAAC;YAC5D,MAAM,IAAI,GAAG,IAAI,EAAE,IAAI,IAAI,IAAI,CAAC;YAEhC,IAAI,CAAC,OAAO,CAAC,IAAI,EAAE,CAAC;YAEpB,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,IAAI,IAAI,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;gBAC/C,IAAI,CAAC,GAAG,CACP,8BAA8B,KAAK,CAAC,IAAI,CAAC,oBAAoB,CAAC,qBAAqB,CACnF,CAAC;gBACF,OAAO;YACR,CAAC;YAED,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;YAChB,MAAM,KAAK,GAAG,WAAW,CACxB,CAAC,MAAM,EAAE,YAAY,EAAE,QAAQ,EAAE,SAAS,CAAC,EAC3C,IAAI,CAAC,GAAG,CAAC,CAAC,CAAM,EAAE,EAAE,CAAC;gBACpB,CAAC,CAAC,IAAI,IAAI,GAAG;gBACb,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,GAAG;gBAC3C,WAAW,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,UAAU,CAAC;gBAC/C,UAAU,CAAC,CAAC,CAAC,SAAS,CAAC;aACvB,CAAC,CACF,CAAC;YACF,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC;YACnB,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;YAEhB,IAAI,IAAI,CAAC,UAAU,EAAE,CAAC;gBACrB,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC;YACvB,CAAC;QACF,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YAChB,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,0BAA0B,CAAC,CAAC;YAC9C,IAAI,CAAC,WAAW,CAAC,KAAK,CAAC,CAAC;QACzB,CAAC;IACF,CAAC"}

package/dist/commands/keys/revoke.d.ts

@@ -1,4 +1,4 @@
-import { AuthenticatedCommand } from '../../lib/base-command.js';
+import { AuthenticatedCommand } from "../../lib/base-command.js";
 export default class KeysRevoke extends AuthenticatedCommand {
     static description: string;
     static args: {

package/dist/commands/keys/revoke.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"revoke.d.ts","sourceRoot":"","sources":["../../../src/commands/keys/revoke.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,oBAAoB,EAAE,MAAM,2BAA2B,CAAC;AAKjE,MAAM,CAAC,OAAO,OAAO,UAAW,SAAQ,oBAAoB;IAC1D,OAAgB,WAAW,SAAuB;IAElD,OAAgB,IAAI;;MAElB;IAEF,OAAgB,QAAQ,WAGtB;IAEI,GAAG,IAAI,OAAO,CAAC,IAAI,CAAC;CAsD3B"}
+{"version":3,"file":"revoke.d.ts","sourceRoot":"","sources":["../../../src/commands/keys/revoke.ts"],"names":[],"mappings":"AAEA,OAAO,EAAC,oBAAoB,EAAC,MAAM,2BAA2B,CAAC;AAK/D,MAAM,CAAC,OAAO,OAAO,UAAW,SAAQ,oBAAoB;IAC3D,OAAgB,WAAW,SAAuB;IAElD,OAAgB,IAAI;;MAKlB;IAEF,OAAgB,QAAQ,WAGtB;IAEI,GAAG,IAAI,OAAO,CAAC,IAAI,CAAC;CAwD1B"}

package/dist/commands/keys/revoke.js

@@ -1,17 +1,20 @@
-import { Args } from '@oclif/core';
-import chalk from 'chalk';
-import { AuthenticatedCommand } from '../../lib/base-command.js';
-import { clearApiKey, getApiKey } from '../../lib/config.js';
-import { success } from '../../lib/formatters.js';
-import { promptConfirm } from '../../lib/prompts.js';
+import { Args } from "@oclif/core";
+import chalk from "chalk";
+import { AuthenticatedCommand } from "../../lib/base-command.js";
+import { clearApiKey, getApiKey } from "../../lib/config.js";
+import { maskSecret, success } from "../../lib/formatters.js";
+import { promptConfirm } from "../../lib/prompts.js";
 export default class KeysRevoke extends AuthenticatedCommand {
-    static description = 'Revoke an API key';
+    static description = "Revoke an API key";
     static args = {
-        id: Args.string({ description: 'API key ID to revoke (defaults to current key)', required: false }),
+        id: Args.string({
+            description: "API key ID to revoke (defaults to current key)",
+            required: false,
+        }),
     };
     static examples = [
-        '<%= config.bin %> keys:revoke',
-        '<%= config.bin %> keys:revoke <key-id>',
+        "<%= config.bin %> keys:revoke",
+        "<%= config.bin %> keys:revoke <key-id>",
     ];
     async run() {
         const { args } = await this.parse(KeysRevoke);
@@ -21,20 +24,20 @@ export default class KeysRevoke extends AuthenticatedCommand {
             const stored = getApiKey();
             if (stored?.id) {
                 keyId = stored.id;
-                this.log(`Revoking key: ${chalk.cyan(stored.accessKey)}`);
+                this.log(`Revoking key: ${chalk.cyan(maskSecret(stored.accessKey))}`);
             }
             else {
                 // Fetch from API
-                this.spinner.start('Fetching keys...');
+                this.spinner.start("Fetching keys...");
                 try {
-                    const data = await this.api.get('/client-auth/keys', 'jwt');
+                    const data = await this.api.get("/client-auth/keys", "jwt");
                     const keys = data?.data ?? data;
                     this.spinner.stop();
                     if (!Array.isArray(keys) || keys.length === 0) {
-                        this.error('No API keys to revoke.', { exit: 1 });
+                        this.error("No API keys to revoke.", { exit: 1 });
                     }
                     keyId = keys[0].id;
-                    this.log(`Revoking key: ${chalk.cyan(keys[0].accessKey)}`);
+                    this.log(`Revoking key: ${chalk.cyan(maskSecret(keys[0].accessKey))}`);
                 }
                 catch (error) {
                     this.spinner.fail();
@@ -42,23 +45,23 @@ export default class KeysRevoke extends AuthenticatedCommand {
                 }
             }
         }
-        const confirmed = await promptConfirm(`${chalk.red('This action is irreversible.')} Revoke this API key?`);
+        const confirmed = await promptConfirm(`${chalk.red("This action is irreversible.")} Revoke this API key?`);
         if (!confirmed) {
-            this.log('Cancelled.');
+            this.log("Cancelled.");
             return;
         }
-        this.spinner.start('Revoking API key...');
+        this.spinner.start("Revoking API key...");
         try {
-            await this.api.delete(`/client-auth/keys/${keyId}`, 'jwt');
+            await this.api.delete(`/client-auth/keys/${keyId}`, "jwt");
             clearApiKey();
-            this.spinner.succeed('API key revoked');
-            success('Key has been permanently revoked.');
+            this.spinner.succeed("API key revoked");
+            success("Key has been permanently revoked.");
             if (this.jsonOutput) {
                 this.outputJson({ success: true, id: keyId });
             }
         }
         catch (error) {
-            this.spinner.fail('Failed to revoke API key');
+            this.spinner.fail("Failed to revoke API key");
             this.handleError(error);
         }
     }

package/dist/commands/keys/revoke.js.map

@@ -1 +1 @@
-{"version":3,"file":"revoke.js","sourceRoot":"","sources":["../../../src/commands/keys/revoke.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,IAAI,EAAE,MAAM,aAAa,CAAC;AACnC,OAAO,KAAK,MAAM,OAAO,CAAC;AAC1B,OAAO,EAAE,oBAAoB,EAAE,MAAM,2BAA2B,CAAC;AACjE,OAAO,EAAE,WAAW,EAAE,SAAS,EAAE,MAAM,qBAAqB,CAAC;AAC7D,OAAO,EAAE,OAAO,EAAE,MAAM,yBAAyB,CAAC;AAClD,OAAO,EAAE,aAAa,EAAE,MAAM,sBAAsB,CAAC;AAErD,MAAM,CAAC,OAAO,OAAO,UAAW,SAAQ,oBAAoB;IAC1D,MAAM,CAAU,WAAW,GAAG,mBAAmB,CAAC;IAElD,MAAM,CAAU,IAAI,GAAG;QACrB,EAAE,EAAE,IAAI,CAAC,MAAM,CAAC,EAAE,WAAW,EAAE,gDAAgD,EAAE,QAAQ,EAAE,KAAK,EAAE,CAAC;KACpG,CAAC;IAEF,MAAM,CAAU,QAAQ,GAAG;QACzB,+BAA+B;QAC/B,wCAAwC;KACzC,CAAC;IAEF,KAAK,CAAC,GAAG;QACP,MAAM,EAAE,IAAI,EAAE,GAAG,MAAM,IAAI,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC;QAE9C,IAAI,KAAK,GAAG,IAAI,CAAC,EAAE,CAAC;QAEpB,yDAAyD;QACzD,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,MAAM,MAAM,GAAG,SAAS,EAAE,CAAC;YAC3B,IAAI,MAAM,EAAE,EAAE,EAAE,CAAC;gBACf,KAAK,GAAG,MAAM,CAAC,EAAE,CAAC;gBAClB,IAAI,CAAC,GAAG,CAAC,iBAAiB,KAAK,CAAC,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,EAAE,CAAC,CAAC;YAC5D,CAAC;iBAAM,CAAC;gBACN,iBAAiB;gBACjB,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC,kBAAkB,CAAC,CAAC;gBACvC,IAAI,CAAC;oBACH,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC,mBAAmB,EAAE,KAAK,CAAC,CAAC;oBAC5D,MAAM,IAAI,GAAG,IAAI,EAAE,IAAI,IAAI,IAAI,CAAC;oBAChC,IAAI,CAAC,OAAO,CAAC,IAAI,EAAE,CAAC;oBAEpB,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,IAAI,IAAI,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;wBAC9C,IAAI,CAAC,KAAK,CAAC,wBAAwB,EAAE,EAAE,IAAI,EAAE,CAAC,EAAE,CAAC,CAAC;oBACpD,CAAC;oBACD,KAAK,GAAG,IAAI,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;oBACnB,IAAI,CAAC,GAAG,CAAC,iBAAiB,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC,EAAE,CAAC,CAAC;gBAC7D,CAAC;gBAAC,OAAO,KAAK,EAAE,CAAC;oBACf,IAAI,CAAC,OAAO,CAAC,IAAI,EAAE,CAAC;oBACpB,IAAI,CAAC,WAAW,CAAC,KAAK,CAAC,CAAC;gBAC1B,CAAC;YACH,CAAC;QACH,CAAC;QAED,MAAM,SAAS,GAAG,MAAM,aAAa,CACnC,GAAG,KAAK,CAAC,GAAG,CAAC,8BAA8B,CAAC,uBAAuB,CACpE,CAAC;QACF,IAAI,CAAC,SAAS,EAAE,CAAC;YACf,IAAI,CAAC,GAAG,CAAC,YAAY,CAAC,CAAC;YACvB,OAAO;QACT,CAAC;QAED,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC,qBAAqB,CAAC,CAAC;QAC1C,IAAI,CAAC;YACH,MAAM,IAAI,CAAC,GAAG,CAAC,MAAM,CAAC,qBAAqB,KAAK,EAAE,EAAE,KAAK,CAAC,CAAC;YAC3D,WAAW,EAAE,CAAC;YACd,IAAI,CAAC,OAAO,CAAC,OAAO,CAAC,iBAAiB,CAAC,CAAC;YACxC,OAAO,CAAC,mCAAmC,CAAC,CAAC;YAE7C,IAAI,IAAI,CAAC,UAAU,EAAE,CAAC;gBACpB,IAAI,CAAC,UAAU,CAAC,EAAE,OAAO,EAAE,IAAI,EAAE,EAAE,EAAE,KAAK,EAAE,CAAC,CAAC;YAChD,CAAC;QACH,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,0BAA0B,CAAC,CAAC;YAC9C,IAAI,CAAC,WAAW,CAAC,KAAK,CAAC,CAAC;QAC1B,CAAC;IACH,CAAC"}
+{"version":3,"file":"revoke.js","sourceRoot":"","sources":["../../../src/commands/keys/revoke.ts"],"names":[],"mappings":"AAAA,OAAO,EAAC,IAAI,EAAC,MAAM,aAAa,CAAC;AACjC,OAAO,KAAK,MAAM,OAAO,CAAC;AAC1B,OAAO,EAAC,oBAAoB,EAAC,MAAM,2BAA2B,CAAC;AAC/D,OAAO,EAAC,WAAW,EAAE,SAAS,EAAC,MAAM,qBAAqB,CAAC;AAC3D,OAAO,EAAC,UAAU,EAAE,OAAO,EAAC,MAAM,yBAAyB,CAAC;AAC5D,OAAO,EAAC,aAAa,EAAC,MAAM,sBAAsB,CAAC;AAEnD,MAAM,CAAC,OAAO,OAAO,UAAW,SAAQ,oBAAoB;IAC3D,MAAM,CAAU,WAAW,GAAG,mBAAmB,CAAC;IAElD,MAAM,CAAU,IAAI,GAAG;QACtB,EAAE,EAAE,IAAI,CAAC,MAAM,CAAC;YACf,WAAW,EAAE,gDAAgD;YAC7D,QAAQ,EAAE,KAAK;SACf,CAAC;KACF,CAAC;IAEF,MAAM,CAAU,QAAQ,GAAG;QAC1B,+BAA+B;QAC/B,wCAAwC;KACxC,CAAC;IAEF,KAAK,CAAC,GAAG;QACR,MAAM,EAAC,IAAI,EAAC,GAAG,MAAM,IAAI,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC;QAE5C,IAAI,KAAK,GAAG,IAAI,CAAC,EAAE,CAAC;QAEpB,yDAAyD;QACzD,IAAI,CAAC,KAAK,EAAE,CAAC;YACZ,MAAM,MAAM,GAAG,SAAS,EAAE,CAAC;YAC3B,IAAI,MAAM,EAAE,EAAE,EAAE,CAAC;gBAChB,KAAK,GAAG,MAAM,CAAC,EAAE,CAAC;gBAClB,IAAI,CAAC,GAAG,CAAC,iBAAiB,KAAK,CAAC,IAAI,CAAC,UAAU,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC,EAAE,CAAC,CAAC;YACvE,CAAC;iBAAM,CAAC;gBACP,iBAAiB;gBACjB,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC,kBAAkB,CAAC,CAAC;gBACvC,IAAI,CAAC;oBACJ,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC,mBAAmB,EAAE,KAAK,CAAC,CAAC;oBAC5D,MAAM,IAAI,GAAG,IAAI,EAAE,IAAI,IAAI,IAAI,CAAC;oBAChC,IAAI,CAAC,OAAO,CAAC,IAAI,EAAE,CAAC;oBAEpB,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,IAAI,IAAI,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;wBAC/C,IAAI,CAAC,KAAK,CAAC,wBAAwB,EAAE,EAAC,IAAI,EAAE,CAAC,EAAC,CAAC,CAAC;oBACjD,CAAC;oBACD,KAAK,GAAG,IAAI,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;oBACnB,IAAI,CAAC,GAAG,CACP,iBAAiB,KAAK,CAAC,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,EAAE,CAC5D,CAAC;gBACH,CAAC;gBAAC,OAAO,KAAK,EAAE,CAAC;oBAChB,IAAI,CAAC,OAAO,CAAC,IAAI,EAAE,CAAC;oBACpB,IAAI,CAAC,WAAW,CAAC,KAAK,CAAC,CAAC;gBACzB,CAAC;YACF,CAAC;QACF,CAAC;QAED,MAAM,SAAS,GAAG,MAAM,aAAa,CACpC,GAAG,KAAK,CAAC,GAAG,CAAC,8BAA8B,CAAC,uBAAuB,CACnE,CAAC;QACF,IAAI,CAAC,SAAS,EAAE,CAAC;YAChB,IAAI,CAAC,GAAG,CAAC,YAAY,CAAC,CAAC;YACvB,OAAO;QACR,CAAC;QAED,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC,qBAAqB,CAAC,CAAC;QAC1C,IAAI,CAAC;YACJ,MAAM,IAAI,CAAC,GAAG,CAAC,MAAM,CAAC,qBAAqB,KAAK,EAAE,EAAE,KAAK,CAAC,CAAC;YAC3D,WAAW,EAAE,CAAC;YACd,IAAI,CAAC,OAAO,CAAC,OAAO,CAAC,iBAAiB,CAAC,CAAC;YACxC,OAAO,CAAC,mCAAmC,CAAC,CAAC;YAE7C,IAAI,IAAI,CAAC,UAAU,EAAE,CAAC;gBACrB,IAAI,CAAC,UAAU,CAAC,EAAC,OAAO,EAAE,IAAI,EAAE,EAAE,EAAE,KAAK,EAAC,CAAC,CAAC;YAC7C,CAAC;QACF,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YAChB,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,0BAA0B,CAAC,CAAC;YAC9C,IAAI,CAAC,WAAW,CAAC,KAAK,CAAC,CAAC;QACzB,CAAC;IACF,CAAC"}

package/dist/commands/login.d.ts

@@ -1,11 +1,11 @@
-import { BaseCommand } from '../lib/base-command.js';
+import { BaseCommand } from "../lib/base-command.js";
 export default class Login extends BaseCommand {
     static description: string;
     static examples: string[];
     static flags: {
         email: import("@oclif/core/interfaces").OptionFlag<string | undefined, import("@oclif/core/interfaces").CustomOptions>;
         password: import("@oclif/core/interfaces").OptionFlag<string | undefined, import("@oclif/core/interfaces").CustomOptions>;
-        'no-browser': import("@oclif/core/interfaces").BooleanFlag<boolean>;
+        "no-browser": import("@oclif/core/interfaces").BooleanFlag<boolean>;
         json: import("@oclif/core/interfaces").BooleanFlag<boolean>;
         quiet: import("@oclif/core/interfaces").BooleanFlag<boolean>;
     };

package/dist/commands/login.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"login.d.ts","sourceRoot":"","sources":["../../src/commands/login.ts"],"names":[],"mappings":"AAGA,OAAO,EAAE,WAAW,EAAE,MAAM,wBAAwB,CAAC;AAMrD,MAAM,CAAC,OAAO,OAAO,KAAM,SAAQ,WAAW;IAC5C,OAAgB,WAAW,SAA8B;IAEzD,OAAgB,QAAQ,WAItB;IAEF,OAAgB,KAAK;;;;;;MAcnB;IAEI,GAAG,IAAI,OAAO,CAAC,IAAI,CAAC;YAsBZ,kBAAkB;YAiGlB,iBAAiB;IAqC/B,OAAO,CAAC,KAAK;CAGd"}
+{"version":3,"file":"login.d.ts","sourceRoot":"","sources":["../../src/commands/login.ts"],"names":[],"mappings":"AAGA,OAAO,EAAC,WAAW,EAAC,MAAM,wBAAwB,CAAC;AAUnD,MAAM,CAAC,OAAO,OAAO,KAAM,SAAQ,WAAW;IAC7C,OAAgB,WAAW,SAA8B;IAEzD,OAAgB,QAAQ,WAItB;IAEF,OAAgB,KAAK;;;;;;MAcnB;IAEI,GAAG,IAAI,OAAO,CAAC,IAAI,CAAC;YAyBZ,kBAAkB;YA+GlB,iBAAiB;IA4C/B,OAAO,CAAC,KAAK;CAGb"}

package/dist/commands/login.js

@@ -1,30 +1,30 @@
-import { Flags } from '@oclif/core';
-import chalk from 'chalk';
-import open from 'open';
-import { BaseCommand } from '../lib/base-command.js';
-import { setAuth, isLoggedIn, getAuth } from '../lib/config.js';
-import { DASHBOARD_URL, MAGIC_LINK_POLL_INTERVAL_MS, MAGIC_LINK_TIMEOUT_MS } from '../lib/constants.js';
-import { success, warn, info, kvLine } from '../lib/formatters.js';
-import { promptEmail, promptConfirm } from '../lib/prompts.js';
+import { Flags } from "@oclif/core";
+import chalk from "chalk";
+import open from "open";
+import { BaseCommand } from "../lib/base-command.js";
+import { getAuth, isLoggedIn, setAuth } from "../lib/config.js";
+import { DASHBOARD_URL, MAGIC_LINK_POLL_INTERVAL_MS, MAGIC_LINK_TIMEOUT_MS, } from "../lib/constants.js";
+import { info, kvLine, success, warn } from "../lib/formatters.js";
+import { promptConfirm, promptEmail } from "../lib/prompts.js";
 export default class Login extends BaseCommand {
-    static description = 'Authenticate with ApiPay';
+    static description = "Authenticate with ApiPay";
     static examples = [
-        '<%= config.bin %> login',
-        '<%= config.bin %> login --email user@example.com',
-        '<%= config.bin %> login --email user@example.com --password mypass',
+        "<%= config.bin %> login",
+        "<%= config.bin %> login --email user@example.com",
+        "<%= config.bin %> login --email user@example.com --password mypass",
     ];
     static flags = {
         ...BaseCommand.baseFlags,
         email: Flags.string({
-            char: 'e',
-            description: 'Email address (skip interactive prompt)',
+            char: "e",
+            description: "Email address (skip interactive prompt)",
         }),
         password: Flags.string({
-            char: 'p',
-            description: 'Password for email+password login (CI/scripting)',
+            char: "p",
+            description: "Password for email+password login (CI/scripting)",
         }),
-        'no-browser': Flags.boolean({
-            description: 'Don\'t open the browser for magic link',
+        "no-browser": Flags.boolean({
+            description: "Don't open the browser for magic link",
             default: false,
         }),
     };
@@ -34,63 +34,66 @@ export default class Login extends BaseCommand {
         if (isLoggedIn()) {
             const auth = getAuth();
             warn(`Already logged in as ${chalk.bold(auth.email)}`);
-            const relogin = await promptConfirm('Login with a different account?');
+            const relogin = await promptConfirm("Login with a different account?");
             if (!relogin)
                 return;
         }
         const email = flags.email ?? (await promptEmail());
         // Password flow (for CI/scripting)
         if (flags.password) {
+            warn("Passing --password on the command line stores it in shell history and may be visible in process lists. Prefer the magic-link flow for interactive sessions.");
             return this.loginWithPassword(email, flags.password);
         }
         // Magic link flow (default — best UX)
-        return this.loginWithMagicLink(email, flags['no-browser']);
+        return this.loginWithMagicLink(email, flags["no-browser"]);
     }
     async loginWithMagicLink(email, noBrowser) {
-        this.spinner.start('Requesting magic link...');
+        this.spinner.start("Requesting magic link...");
         let data;
         try {
-            data = await this.api.post('/auth/magic-link/request', { email });
+            data = await this.api.post("/auth/magic-link/request", { email });
         }
         catch (error) {
-            this.spinner.fail('Failed to request magic link');
+            this.spinner.fail("Failed to request magic link");
             this.handleError(error);
         }
         const token = data?.data?.token ?? data?.token;
         if (!token) {
-            this.spinner.fail('Failed to get magic link token');
-            this.error('Unexpected response from server', { exit: 2 });
+            this.spinner.fail("Failed to get magic link token");
+            this.error("Unexpected response from server", { exit: 2 });
         }
-        this.spinner.succeed('Magic link sent!');
+        this.spinner.succeed("Magic link requested!");
         // Open browser
         const verifyUrl = `${DASHBOARD_URL}/auth/verify?token=${token}`;
-        console.log('');
+        console.log("");
         info(`Open this URL to authenticate:`);
         console.log(`  ${chalk.underline.cyan(verifyUrl)}`);
-        console.log('');
+        console.log("");
         if (!noBrowser) {
             try {
                 await open(verifyUrl);
-                info('Browser opened automatically.');
+                info("Browser opened automatically.");
             }
             catch {
-                warn('Could not open browser. Please open the URL manually.');
+                warn("Could not open browser. Please open the URL manually.");
             }
         }
         // Poll for verification
-        this.spinner.start('Waiting for authentication...');
+        this.spinner.start("Waiting for authentication...");
         const startTime = Date.now();
         while (Date.now() - startTime < MAGIC_LINK_TIMEOUT_MS) {
             await this.sleep(MAGIC_LINK_POLL_INTERVAL_MS);
             try {
                 const status = await this.api.get(`/auth/magic-link/status?token=${token}`);
                 const st = status?.data?.status ?? status?.status;
-                if (st === 'verified') {
+                if (st === "verified") {
                     // Token has been consumed — now exchange for auth tokens
-                    // The verify endpoint was already called by the browser; 
+                    // The verify endpoint was already called by the browser;
                     // we need to call it ourselves too to get the tokens for CLI
                     try {
-                        const authResult = await this.api.post('/auth/magic-link/verify', { token });
+                        const authResult = await this.api.post("/auth/magic-link/verify", {
+                            token,
+                        });
                         const result = authResult?.data ?? authResult;
                         const user = result?.user;
                         const tokens = result?.tokens;
@@ -100,10 +103,10 @@ export default class Login extends BaseCommand {
                                 refreshToken: tokens.refreshToken,
                                 expiresAt: Date.now() + (tokens.expiresIn ?? 900) * 1000,
                                 email: user?.email ?? email,
-                                userId: user?.id ?? '',
+                                userId: user?.id ?? "",
                             });
-                            this.spinner.succeed('Authenticated!');
-                            console.log('');
+                            this.spinner.succeed("Authenticated!");
+                            console.log("");
                             success(`Logged in as ${chalk.bold(user?.email ?? email)}`);
                             if (this.jsonOutput) {
                                 this.outputJson({ email: user?.email, userId: user?.id });
@@ -115,52 +118,60 @@ export default class Login extends BaseCommand {
                         // Token already consumed by browser — that's expected.
                         // In this case, the CLI should have its own token.
                         // We'll try the password fallback or re-request.
-                        this.spinner.fail('Magic link was verified in browser but could not retrieve tokens for CLI.');
-                        info(`Please run ${chalk.cyan('apipay login --email ' + email + ' --password <password>')} instead.`);
+                        this.spinner.fail("Magic link was verified in browser but could not retrieve tokens for CLI.");
+                        info(`Please run ${chalk.cyan("apipay login --email " + email + " --password <password>")} instead.`);
                         return;
                     }
                 }
-                if (st === 'expired') {
-                    this.spinner.fail('Magic link expired');
-                    this.error('The magic link has expired. Please try again.', { exit: 1 });
+                if (st === "expired") {
+                    this.spinner.fail("Magic link expired");
+                    this.error("The magic link has expired. Please try again.", {
+                        exit: 1,
+                    });
                 }
             }
             catch {
                 // Network error during poll — continue
             }
         }
-        this.spinner.fail('Authentication timed out');
-        this.error('Timed out waiting for authentication. Please try again.', { exit: 1 });
+        this.spinner.fail("Authentication timed out");
+        this.error("Timed out waiting for authentication. Please try again.", {
+            exit: 1,
+        });
     }
     async loginWithPassword(email, password) {
-        this.spinner.start('Logging in...');
+        this.spinner.start("Logging in...");
         try {
-            const data = await this.api.post('/auth/login', { email, password });
+            const data = await this.api.post("/auth/login", { email, password });
             const result = data?.data ?? data;
             const user = result?.user;
             const tokens = result?.tokens;
             if (!tokens?.accessToken) {
-                this.spinner.fail('Login failed');
-                this.error('Unexpected response from server', { exit: 2 });
+                this.spinner.fail("Login failed");
+                this.error("Unexpected response from server", { exit: 2 });
             }
             setAuth({
                 accessToken: tokens.accessToken,
                 refreshToken: tokens.refreshToken,
                 expiresAt: Date.now() + (tokens.expiresIn ?? 900) * 1000,
                 email: user?.email ?? email,
-                userId: user?.id ?? '',
+                userId: user?.id ?? "",
             });
-            this.spinner.succeed('Authenticated!');
-            console.log('');
+            this.spinner.succeed("Authenticated!");
+            console.log("");
             success(`Logged in as ${chalk.bold(user?.email ?? email)}`);
-            kvLine('User ID', user?.id ?? '');
-            kvLine('Role', user?.role ?? 'USER');
+            kvLine("User ID", user?.id ?? "");
+            kvLine("Role", user?.role ?? "USER");
             if (this.jsonOutput) {
-                this.outputJson({ email: user?.email, userId: user?.id, role: user?.role });
+                this.outputJson({
+                    email: user?.email,
+                    userId: user?.id,
+                    role: user?.role,
+                });
             }
         }
         catch (error) {
-            this.spinner.fail('Login failed');
+            this.spinner.fail("Login failed");
             this.handleError(error);
         }
     }