design-lazyyy-cli 0.2.1 → 0.3.1

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "design-lazyyy-cli",
-  "version": "0.2.1",
+  "version": "0.3.1",
   "description": "CLI for managing Figma design systems. Create variables, components, and more. No API key required.",
   "author": "plugin87",
   "license": "MIT",

package/src/index.js

@@ -11,6 +11,13 @@ import { createInterface } from 'readline';
 import { homedir, platform } from 'os';
 import { FigJamClient } from './figjam-client.js';
 
+// Auth — offline hash-based verification
+import { createHash } from 'crypto';
+const VALID_TOKEN_HASHES = [
+  // SHA-256 hashes of valid tokens (add more with: echo -n "token" | shasum -a 256)
+  '065ea2d80d8e1e61025f115d01d08518b00615047a3ec14bd4e6f7d4f8813929',
+];
+
 // Platform detection
 const IS_WINDOWS = platform() === 'win32';
 const IS_MAC = platform() === 'darwin';
@@ -95,10 +102,56 @@ function saveConfig(config) {
   writeFileSync(CONFIG_FILE, JSON.stringify(config, null, 2));
 }
 
-// Resolve engine binary path (local node_modules)
+// Helper: Hash token with SHA-256
+function hashToken(token) {
+  return createHash('sha256').update(token).digest('hex');
+}
+
+// Helper: Verify token offline against known hashes
+function verifyToken(token) {
+  return VALID_TOKEN_HASHES.includes(hashToken(token));
+}
+
+// Helper: Check API key (gate all commands)
+function checkApiKey() {
+  const config = loadConfig();
+  if (!config.token) {
+    console.log(chalk.red('\n✗ Token required.\n'));
+    console.log(chalk.white('  Get a token from plugin87, then run:\n'));
+    console.log(chalk.cyan('  design-lazyyy-cli login <token>\n'));
+    process.exit(1);
+  }
+  if (!verifyToken(config.token)) {
+    console.log(chalk.red('\n✗ Token invalid or revoked.\n'));
+    console.log(chalk.white('  Get a new token from plugin87, then run:\n'));
+    console.log(chalk.cyan('  design-lazyyy-cli login <token>\n'));
+    delete config.token;
+    saveConfig(config);
+    process.exit(1);
+  }
+  return true;
+}
+
+// Resolve engine binary path (check local then walk up for hoisted deps)
 const __filename2 = fileURLToPath(import.meta.url);
 const __pkgRoot = dirname(dirname(__filename2));
-const ENGINE_BIN = resolve(__pkgRoot, 'node_modules', '.bin', 'figma-use');
+
+function findEngineBin() {
+  // Check local node_modules first
+  const local = resolve(__pkgRoot, 'node_modules', '.bin', 'figma-use');
+  if (existsSync(local)) return local;
+  // Walk up directories to find hoisted binary
+  let dir = __pkgRoot;
+  while (true) {
+    const parent = dirname(dir);
+    const candidate = resolve(parent, 'node_modules', '.bin', 'figma-use');
+    if (existsSync(candidate)) return candidate;
+    if (parent === dir) break;
+    dir = parent;
+  }
+  return local; // fallback
+}
+const ENGINE_BIN = findEngineBin();
 
 // Helper: Run engine command
 function figmaUse(args, options = {}) {
@@ -115,8 +168,9 @@ function figmaUse(args, options = {}) {
   }
 }
 
-// Helper: Check connection
+// Helper: Check connection (also gates on API key)
 function checkConnection() {
+  checkApiKey();
   const result = figmaUse('status', { silent: true });
   if (!result || result.includes('Not connected')) {
     console.log(chalk.red('\n✗ Not connected to Figma\n'));
@@ -178,11 +232,13 @@ program
 program.action(async () => {
   const config = loadConfig();
 
+  // Auth gate
+  checkApiKey();
+
   // First time? Run init
   if (!config.patched || !checkDependencies(true)) {
     showBanner();
     console.log(chalk.white('  Welcome! Let\'s get you set up.\n'));
-    console.log(chalk.gray('  This takes about 30 seconds. No API key needed.\n'));
 
     // Step 1: Check Node version
     console.log(chalk.blue('Step 1/4: ') + 'Checking Node.js...');
@@ -338,10 +394,10 @@ program
   .command('init')
   .description('Interactive setup wizard')
   .action(async () => {
+    checkApiKey();
     showBanner();
 
     console.log(chalk.white('  Welcome! Let\'s get you set up.\n'));
-    console.log(chalk.gray('  This takes about 30 seconds. No API key needed.\n'));
 
     // Step 1: Check Node version
     console.log(chalk.blue('Step 1/4: ') + 'Checking Node.js...');
@@ -447,12 +503,55 @@ program
     execSync('design-lazyyy-cli init', { stdio: 'inherit' });
   });
 
+// ============ LOGIN ============
+
+program
+  .command('login [token]')
+  .description('Authenticate with a token from plugin87')
+  .action(async (token) => {
+    if (!token) {
+      token = await prompt(chalk.white('Enter token: '));
+    }
+    token = token.trim();
+    if (!token) {
+      console.log(chalk.red('\n✗ Token cannot be empty.\n'));
+      process.exit(1);
+    }
+
+    if (!verifyToken(token)) {
+      console.log(chalk.red('\n✗ Invalid token.\n'));
+      process.exit(1);
+    }
+
+    const config = loadConfig();
+    config.token = token;
+    saveConfig(config);
+    console.log(chalk.green('\n✓ Token verified! Welcome.\n'));
+  });
+
+// ============ LOGOUT ============
+
+program
+  .command('logout')
+  .description('Remove saved token')
+  .action(() => {
+    const config = loadConfig();
+    if (!config.token) {
+      console.log(chalk.yellow('\nNo token saved.\n'));
+      return;
+    }
+    delete config.token;
+    saveConfig(config);
+    console.log(chalk.green('\n✓ Token removed. You are logged out.\n'));
+  });
+
 // ============ STATUS ============
 
 program
   .command('status')
   .description('Check connection to Figma')
   .action(() => {
+    checkApiKey();
     // Check if first run
     const config = loadConfig();
     if (!config.patched && !checkDependencies(true)) {
@@ -469,6 +568,7 @@ program
   .command('connect')
   .description('Start Figma with remote debugging enabled')
   .action(async () => {
+    checkApiKey();
     // Check if first run
     const config = loadConfig();
     if (!config.patched) {