npm - eas-cli - Versions diffs - 18.4.0 → 18.6.0 - Mend

eas-cli 18.4.0 → 18.6.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (89) hide show

package/README.md +92 -90
package/build/build/android/prepareJob.js +2 -2
package/build/build/ios/prepareJob.js +2 -2
package/build/build/metadata.js +2 -1
package/build/commandUtils/EasCommand.js +23 -2
package/build/commandUtils/context/contextUtils/getProjectIdAsync.js +2 -0
package/build/commandUtils/pagination.d.ts +2 -1
package/build/commandUtils/pagination.js +3 -2
package/build/commandUtils/workflow/fetchLogs.js +11 -2
package/build/commandUtils/workflow/types.d.ts +5 -1
package/build/commandUtils/workflow/utils.js +22 -16
package/build/commands/deploy/index.js +18 -2
package/build/commands/metadata/pull.d.ts +1 -0
package/build/commands/metadata/pull.js +9 -4
package/build/commands/metadata/push.d.ts +1 -0
package/build/commands/metadata/push.js +9 -4
package/build/commands/observe/events.d.ts +27 -0
package/build/commands/observe/events.js +140 -0
package/build/commands/observe/metrics.d.ts +21 -0
package/build/commands/observe/metrics.js +111 -0
package/build/commands/observe/versions.d.ts +19 -0
package/build/commands/observe/versions.js +69 -0
package/build/commands/project/onboarding.js +3 -0
package/build/commands/workflow/logs.js +12 -12
package/build/credentials/ios/IosCredentialsProvider.js +8 -4
package/build/credentials/ios/utils/provisioningProfile.d.ts +1 -0
package/build/credentials/ios/utils/provisioningProfile.js +15 -1
package/build/graphql/generated.d.ts +1273 -73
package/build/graphql/generated.js +59 -19
package/build/graphql/queries/ObserveQuery.d.ts +35 -0
package/build/graphql/queries/ObserveQuery.js +109 -0
package/build/graphql/queries/UserQuery.js +3 -0
package/build/graphql/types/Observe.d.ts +3 -0
package/build/graphql/types/Observe.js +84 -0
package/build/graphql/types/Update.js +3 -0
package/build/metadata/apple/config/reader.d.ts +13 -1
package/build/metadata/apple/config/reader.js +33 -0
package/build/metadata/apple/config/writer.d.ts +11 -1
package/build/metadata/apple/config/writer.js +57 -0
package/build/metadata/apple/data.d.ts +7 -2
package/build/metadata/apple/rules/infoRestrictedWords.js +6 -1
package/build/metadata/apple/tasks/age-rating.d.ts +1 -1
package/build/metadata/apple/tasks/age-rating.js +19 -3
package/build/metadata/apple/tasks/app-clip.d.ts +37 -0
package/build/metadata/apple/tasks/app-clip.js +404 -0
package/build/metadata/apple/tasks/app-review-detail.js +7 -2
package/build/metadata/apple/tasks/index.js +6 -0
package/build/metadata/apple/tasks/previews.d.ts +18 -0
package/build/metadata/apple/tasks/previews.js +212 -0
package/build/metadata/apple/tasks/screenshots.d.ts +18 -0
package/build/metadata/apple/tasks/screenshots.js +235 -0
package/build/metadata/apple/types.d.ts +61 -1
package/build/metadata/auth.d.ts +11 -1
package/build/metadata/auth.js +96 -2
package/build/metadata/download.d.ts +5 -1
package/build/metadata/download.js +16 -8
package/build/metadata/upload.d.ts +5 -1
package/build/metadata/upload.js +11 -4
package/build/observe/fetchEvents.d.ts +27 -0
package/build/observe/fetchEvents.js +83 -0
package/build/observe/fetchMetrics.d.ts +11 -0
package/build/observe/fetchMetrics.js +78 -0
package/build/observe/fetchVersions.d.ts +7 -0
package/build/observe/fetchVersions.js +31 -0
package/build/observe/formatEvents.d.ts +31 -0
package/build/observe/formatEvents.js +99 -0
package/build/observe/formatMetrics.d.ts +38 -0
package/build/observe/formatMetrics.js +206 -0
package/build/observe/formatVersions.d.ts +32 -0
package/build/observe/formatVersions.js +92 -0
package/build/observe/metricNames.d.ts +4 -0
package/build/observe/metricNames.js +33 -0
package/build/observe/startAndEndTime.d.ts +18 -0
package/build/observe/startAndEndTime.js +36 -0
package/build/project/projectUtils.d.ts +0 -2
package/build/project/projectUtils.js +0 -12
package/build/project/workflow.js +1 -1
package/build/sentry.d.ts +2 -0
package/build/sentry.js +22 -0
package/build/update/utils.d.ts +2 -2
package/build/update/utils.js +1 -0
package/build/user/SessionManager.js +11 -0
package/build/user/User.d.ts +2 -2
package/build/user/User.js +3 -0
package/build/user/expoBrowserAuthFlowLauncher.js +70 -13
package/build/worker/upload.js +15 -5
package/oclif.manifest.json +1794 -1306
package/package.json +15 -11
package/schema/metadata-0.json +213 -0

package/build/user/expoBrowserAuthFlowLauncher.js CHANGED Viewed

@@ -4,20 +4,65 @@ exports.getSessionUsingBrowserAuthFlowAsync = getSessionUsingBrowserAuthFlowAsyn
 const tslib_1 = require("tslib");
 const assert_1 = tslib_1.__importDefault(require("assert"));
 const better_opn_1 = tslib_1.__importDefault(require("better-opn"));
+const crypto_1 = tslib_1.__importDefault(require("crypto"));
 const http_1 = tslib_1.__importDefault(require("http"));
-const querystring_1 = tslib_1.__importDefault(require("querystring"));
 const api_1 = require("../api");
+const fetch_1 = tslib_1.__importDefault(require("../fetch"));
 const log_1 = tslib_1.__importDefault(require("../log"));
+const CLIENT_ID = 'eas-cli';
+function generateCodeVerifier() {
+    return crypto_1.default.randomBytes(32).toString('base64url');
+}
+function generateCodeChallenge(codeVerifier) {
+    return crypto_1.default.createHash('sha256').update(codeVerifier).digest('base64url');
+}
+function generateState() {
+    return crypto_1.default.randomBytes(32).toString('base64url');
+}
+async function exchangeCodeForSessionSecretAsync({ code, codeVerifier, redirectUri, }) {
+    const tokenUrl = `${(0, api_1.getExpoApiBaseUrl)()}/v2/auth/token`;
+    const response = await (0, fetch_1.default)(tokenUrl, {
+        method: 'POST',
+        headers: {
+            'Content-Type': 'application/json',
+        },
+        body: JSON.stringify({
+            grant_type: 'authorization_code',
+            code,
+            redirect_uri: redirectUri,
+            code_verifier: codeVerifier,
+            client_id: CLIENT_ID,
+        }),
+    });
+    const result = await response.json();
+    const sessionSecret = result?.data?.session_secret;
+    if (!sessionSecret) {
+        throw new Error('Failed to obtain session secret from token exchange.');
+    }
+    return sessionSecret;
+}
 async function getSessionUsingBrowserAuthFlowAsync({ sso = false }) {
     const scheme = 'http';
     const hostname = 'localhost';
-    const path = '/auth/callback';
+    const callbackPath = '/auth/callback';
     const expoWebsiteUrl = (0, api_1.getExpoWebsiteBaseUrl)();
+    const codeVerifier = generateCodeVerifier();
+    const codeChallenge = generateCodeChallenge(codeVerifier);
+    const state = generateState();
+    const buildRedirectUri = (port) => `${scheme}://${hostname}:${port}${callbackPath}`;
     const buildExpoLoginUrl = (port, sso) => {
-        const params = querystring_1.default.stringify({
-            confirm_account: true,
-            app_redirect_uri: `${scheme}://${hostname}:${port}${path}`,
-        });
+        // Note: we avoid URLSearchParams here because better-opn calls encodeURI()
+        // on the URL before passing it to AppleScript, which would double-encode
+        // the percent-encoded values from URLSearchParams.toString().
+        const params = [
+            `client_id=${CLIENT_ID}`,
+            `redirect_uri=${buildRedirectUri(port)}`,
+            `response_type=code`,
+            `code_challenge=${codeChallenge}`,
+            `code_challenge_method=S256`,
+            `state=${state}`,
+            `confirm_account=true`,
+        ].join('&');
         return `${expoWebsiteUrl}${sso ? '/sso-login' : '/login'}?${params}`;
     };
     // Start server and begin auth flow
@@ -34,22 +79,34 @@ async function getSessionUsingBrowserAuthFlowAsync({ sso = false }) {
                         connection.destroy();
                     }
                 };
-                try {
+                const handleRequestAsync = async () => {
                     if (!(request.method === 'GET' && request.url?.includes('/auth/callback'))) {
                         throw new Error('Unexpected login response.');
                     }
                     const url = new URL(request.url, `http:${request.headers.host}`);
-                    const sessionSecret = url.searchParams.get('session_secret');
-                    if (!sessionSecret) {
-                        throw new Error('Request missing session_secret search parameter.');
+                    const code = url.searchParams.get('code');
+                    const returnedState = url.searchParams.get('state');
+                    if (!code) {
+                        throw new Error('Request missing code search parameter.');
+                    }
+                    if (returnedState !== state) {
+                        throw new Error('State mismatch. Possible CSRF attack.');
                     }
+                    const address = server.address();
+                    (0, assert_1.default)(address !== null && typeof address === 'object');
+                    const redirectUri = buildRedirectUri(address.port);
+                    const sessionSecret = await exchangeCodeForSessionSecretAsync({
+                        code,
+                        codeVerifier,
+                        redirectUri,
+                    });
                     resolve(sessionSecret);
                     redirectAndCleanup('success');
-                }
-                catch (error) {
+                };
+                handleRequestAsync().catch(error => {
                     redirectAndCleanup('error');
                     reject(error);
-                }
+                });
             });
             server.listen(0, hostname, () => {
                 log_1.default.log('Waiting for browser login...');

package/build/worker/upload.js CHANGED Viewed

@@ -166,6 +166,7 @@ async function* batchUploadAsync(init, payloads, onProgressUpdate) {
         (() => {
             onProgressUpdate(getProgressValue());
         });
+    let firstError = null;
     try {
         let index = 0;
         while (index < payloads.length || queue.size > 0) {
@@ -177,27 +178,36 @@ async function* batchUploadAsync(init, payloads, onProgressUpdate) {
                         progressTracker[currentIndex] = progress;
                         sendProgressUpdate();
                     });
-                const uploadPromise = uploadAsync(initWithSignal, payload, onChildProgressUpdate).finally(() => {
+                const uploadPromise = uploadAsync(initWithSignal, payload, onChildProgressUpdate).then(result => {
                     queue.delete(uploadPromise);
                     progressTracker[currentIndex] = 1;
+                    return result;
+                }, error => {
+                    queue.delete(uploadPromise);
+                    firstError ??= error;
+                    controller.abort();
+                    throw error;
                 });
                 queue.add(uploadPromise);
                 yield { payload, progress: getProgressValue() };
             }
+            if (firstError) {
+                break;
+            }
             yield {
                 ...(await Promise.race(queue)),
                 progress: getProgressValue(),
             };
         }
-        if (queue.size > 0) {
-            controller.abort();
-        }
     }
     catch (error) {
         if (error.name !== 'AbortError') {
-            throw error;
+            firstError ??= error;
         }
     }
+    if (firstError) {
+        throw firstError;
+    }
 }
 function createProgressBar(label = 'Uploading assets') {
     const queueProgressBar = new cli_progress_1.default.SingleBar({ format: `|{bar}| {percentage}% ${label}` }, cli_progress_1.default.Presets.rect);