certops 1.0.16 → 1.1.0

package/dist/commands/service/install.js

@@ -7,7 +7,13 @@ import { domainHookPath, GLOBAL_HOOK } from '../../hooks.js';
 import { BRAND } from '../../brand.js';
 const UNIT_PATH = `/etc/systemd/system/${BRAND.serviceUnit}.service`;
 const API_KEY_ENV = `${BRAND.envPrefix}_API_KEY`;
+function resolveBinPath() {
+    // process.argv[1] is the actual path of the running certops script
+    return process.argv[1] ?? `/usr/local/bin/${BRAND.binName}`;
+}
 function buildUnitContent(apiKey) {
+    const binPath = resolveBinPath();
+    const nodePath = process.execPath;
     return `\
 [Unit]
 Description=${BRAND.displayName} Certificate Monitor
@@ -17,7 +23,7 @@ Wants=network-online.target
 [Service]
 Type=simple
 Environment=${API_KEY_ENV}=${apiKey}
-ExecStart=/usr/local/bin/${BRAND.binName} service run
+ExecStart=${nodePath} ${binPath} service run
 Restart=on-failure
 RestartSec=30
 StandardOutput=journal

package/dist/version.js

@@ -1,18 +1,19 @@
 import { readFileSync } from 'node:fs';
 import { dirname, join } from 'node:path';
 import { fileURLToPath } from 'node:url';
-function isPackageJson(value) {
-    return (typeof value === 'object' &&
-        value !== null &&
-        'version' in value &&
-        typeof value.version === 'string');
-}
 function readCliVersion() {
-    const dir = dirname(fileURLToPath(import.meta.url));
-    const path = join(dir, '..', 'package.json');
-    const raw = JSON.parse(readFileSync(path, 'utf8'));
-    if (!isPackageJson(raw))
-        throw new Error('package.json is missing a valid version field');
-    return raw.version;
+    // Injected at compile time by Bun build --define
+    if (process.env.CLI_VERSION)
+        return process.env.CLI_VERSION;
+    // JS mode (npm package with dist/): read from package.json
+    try {
+        const dir = dirname(fileURLToPath(import.meta.url));
+        const path = join(dir, '..', 'package.json');
+        const raw = JSON.parse(readFileSync(path, 'utf8'));
+        return raw.version;
+    }
+    catch {
+        return '0.0.0';
+    }
 }
 export const CLI_VERSION = readCliVersion();

package/package.json

@@ -1,10 +1,11 @@
 {
   "name": "certops",
-  "version": "1.0.16",
+  "version": "1.1.0",
   "description": "SSL Pilot CLI — download and manage your SSL certificates",
   "type": "module",
   "files": [
-    "dist"
+    "dist",
+    "scripts"
   ],
   "bin": {
     "certops": "./dist/index.js"
@@ -12,7 +13,9 @@
   "scripts": {
     "build": "tsc",
     "dev": "tsx src/index.ts",
-    "typecheck": "tsc --noEmit"
+    "typecheck": "tsc --noEmit",
+    "postinstall": "node scripts/postinstall.cjs",
+    "preuninstall": "node scripts/preuninstall.cjs"
   },
   "publishConfig": {
     "access": "public"

package/scripts/postinstall.cjs

@@ -0,0 +1,72 @@
+#!/usr/bin/env node
+'use strict'
+
+const { createWriteStream, chmodSync, existsSync, unlinkSync } = require('fs')
+const { get } = require('https')
+const { join } = require('path')
+
+const { name, version } = require('../package.json')
+const REPO        = 'Vimosoftdev/ssl-checker-web'
+const BIN_NAME    = 'certops'
+const INSTALL_DIR = '/usr/local/bin'
+const INSTALL_PATH = join(INSTALL_DIR, BIN_NAME)
+
+const platformMap = { linux: 'linux', darwin: 'darwin' }
+const archMap     = { x64: 'x64', arm64: 'arm64' }
+const plat = platformMap[process.platform]
+const arc  = archMap[process.arch]
+
+if (!plat || !arc) {
+  console.warn(`[certops] Unsupported platform ${process.platform}-${process.arch}. Skipping binary install.`)
+  console.warn(`[certops] Install manually: https://github.com/${REPO}/releases/latest`)
+  process.exit(0)
+}
+
+const isRoot = typeof process.getuid === 'function' && process.getuid() === 0
+
+if (!isRoot) {
+  console.warn(`[certops] Not running as root — binary not installed to ${INSTALL_PATH}.`)
+  console.warn(`[certops] To install system-wide: sudo npm install -g certops`)
+  console.warn(`[certops] Or: curl -fsSL https://github.com/${REPO}/releases/latest/download/install.sh | sudo bash`)
+  process.exit(0)
+}
+
+const assetName   = `${BIN_NAME}-${plat}-${arc}`
+const downloadUrl = `https://github.com/${REPO}/releases/download/v${version}/${assetName}`
+
+console.log(`[certops] Installing v${version} binary for ${plat}-${arc}…`)
+console.log(`[certops] Downloading ${downloadUrl}`)
+
+downloadFile(downloadUrl, INSTALL_PATH)
+  .then(() => {
+    chmodSync(INSTALL_PATH, 0o755)
+    console.log(`[certops] ✓ Installed to ${INSTALL_PATH}`)
+  })
+  .catch(err => {
+    // clean up partial download
+    try { if (existsSync(INSTALL_PATH)) unlinkSync(INSTALL_PATH) } catch {}
+    console.error(`[certops] Binary install failed: ${err.message}`)
+    console.error(`[certops] Fallback: curl -fsSL https://github.com/${REPO}/releases/latest/download/install.sh | sudo bash`)
+    // non-fatal — npm install still succeeds
+    process.exit(0)
+  })
+
+function downloadFile(url, dest) {
+  return new Promise((resolve, reject) => {
+    function fetch(url) {
+      get(url, res => {
+        if (res.statusCode === 301 || res.statusCode === 302) {
+          return fetch(res.headers.location)
+        }
+        if (res.statusCode !== 200) {
+          return reject(new Error(`HTTP ${res.statusCode} from ${url}`))
+        }
+        const file = createWriteStream(dest)
+        res.pipe(file)
+        file.on('finish', () => file.close(resolve))
+        file.on('error', err => { unlinkSync(dest); reject(err) })
+      }).on('error', reject)
+    }
+    fetch(url)
+  })
+}

package/scripts/preuninstall.cjs

@@ -0,0 +1,15 @@
+#!/usr/bin/env node
+'use strict'
+
+const { unlinkSync, existsSync } = require('fs')
+
+const INSTALL_PATH = '/usr/local/bin/certops'
+
+try {
+  if (existsSync(INSTALL_PATH)) {
+    unlinkSync(INSTALL_PATH)
+    console.log(`[certops] ✓ Removed binary from ${INSTALL_PATH}`)
+  }
+} catch (err) {
+  console.warn(`[certops] Could not remove ${INSTALL_PATH}: ${err.message}`)
+}