fizzy-cli 0.2.0 → 0.3.0

package/cmd/notification_read.go

@@ -0,0 +1,51 @@
+package cmd
+
+import (
+	"context"
+	"fmt"
+	"strings"
+
+	"github.com/rogeriopvl/fizzy/internal/app"
+	"github.com/rogeriopvl/fizzy/internal/ui"
+	"github.com/spf13/cobra"
+)
+
+var notificationReadCmd = &cobra.Command{
+	Use:   "read <notification_id>",
+	Short: "Mark notification as read and display it",
+	Long:  `Mark a notification as read and display its content`,
+	Args:  cobra.ExactArgs(1),
+	Run: func(cmd *cobra.Command, args []string) {
+		if err := handleReadNotification(cmd, args[0]); err != nil {
+			fmt.Fprintf(cmd.OutOrStderr(), "Error: %v\n", err)
+		}
+	},
+}
+
+func handleReadNotification(cmd *cobra.Command, notificationID string) error {
+	a := app.FromContext(cmd.Context())
+	if a == nil || a.Client == nil {
+		return fmt.Errorf("API client not available")
+	}
+
+	if _, err := a.Client.PostNotificationReading(context.Background(), notificationID); err != nil {
+		if strings.Contains(err.Error(), "404") {
+			return fmt.Errorf("notification not found")
+		}
+		return fmt.Errorf("marking notification as read: %w", err)
+	}
+
+	notification, err := a.Client.GetNotification(context.Background(), notificationID)
+	if err != nil {
+		if strings.Contains(err.Error(), "404") {
+			return fmt.Errorf("notification not found")
+		}
+		return fmt.Errorf("fetching notification: %w", err)
+	}
+
+	return ui.DisplayNotification(notification)
+}
+
+func init() {
+	notificationCmd.AddCommand(notificationReadCmd)
+}

package/cmd/notification_read_all.go

@@ -0,0 +1,38 @@
+package cmd
+
+import (
+	"context"
+	"fmt"
+
+	"github.com/rogeriopvl/fizzy/internal/app"
+	"github.com/spf13/cobra"
+)
+
+var notificationReadAllCmd = &cobra.Command{
+	Use:   "read-all",
+	Short: "Mark all unread notifications as read",
+	Long:  `Mark all unread notifications as read`,
+	Run: func(cmd *cobra.Command, args []string) {
+		if err := handleReadAllNotifications(cmd); err != nil {
+			fmt.Fprintf(cmd.OutOrStderr(), "Error: %v\n", err)
+		}
+	},
+}
+
+func handleReadAllNotifications(cmd *cobra.Command) error {
+	a := app.FromContext(cmd.Context())
+	if a == nil || a.Client == nil {
+		return fmt.Errorf("API client not available")
+	}
+
+	if _, err := a.Client.PostBulkNotificationsReading(context.Background()); err != nil {
+		return fmt.Errorf("marking all notifications as read: %w", err)
+	}
+
+	fmt.Println("✓ All notifications marked as read successfully")
+	return nil
+}
+
+func init() {
+	notificationCmd.AddCommand(notificationReadAllCmd)
+}

package/cmd/notification_read_all_test.go

@@ -0,0 +1,75 @@
+package cmd
+
+import (
+	"context"
+	"net/http"
+	"net/http/httptest"
+	"testing"
+
+	"github.com/rogeriopvl/fizzy/internal/app"
+	"github.com/rogeriopvl/fizzy/internal/config"
+	"github.com/rogeriopvl/fizzy/internal/testutil"
+)
+
+func TestNotificationReadAllCommand(t *testing.T) {
+	server := httptest.NewServer(http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+		if r.URL.Path == "/notifications/bulk_reading" && r.Method == http.MethodPost {
+			w.WriteHeader(http.StatusNoContent)
+			return
+		}
+
+		t.Errorf("unexpected request: %s %s", r.Method, r.URL.Path)
+		w.WriteHeader(http.StatusNotFound)
+	}))
+	defer server.Close()
+
+	client := testutil.NewTestClient(server.URL, "", "board-123", "test-token")
+	testApp := &app.App{
+		Client: client,
+		Config: &config.Config{SelectedBoard: "board-123"},
+	}
+
+	cmd := notificationReadAllCmd
+	cmd.SetContext(testApp.ToContext(context.Background()))
+
+	if err := handleReadAllNotifications(cmd); err != nil {
+		t.Fatalf("handleReadAllNotifications failed: %v", err)
+	}
+}
+
+func TestNotificationReadAllCommandAPIError(t *testing.T) {
+	server := httptest.NewServer(http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+		w.WriteHeader(http.StatusInternalServerError)
+		w.Write([]byte("Internal Server Error"))
+	}))
+	defer server.Close()
+
+	client := testutil.NewTestClient(server.URL, "", "board-123", "test-token")
+	testApp := &app.App{
+		Client: client,
+		Config: &config.Config{SelectedBoard: "board-123"},
+	}
+
+	cmd := notificationReadAllCmd
+	cmd.SetContext(testApp.ToContext(context.Background()))
+
+	err := handleReadAllNotifications(cmd)
+	if err == nil {
+		t.Errorf("expected error for API failure")
+	}
+}
+
+func TestNotificationReadAllCommandNoClient(t *testing.T) {
+	testApp := &app.App{}
+
+	cmd := notificationReadAllCmd
+	cmd.SetContext(testApp.ToContext(context.Background()))
+
+	err := handleReadAllNotifications(cmd)
+	if err == nil {
+		t.Errorf("expected error when client not available")
+	}
+	if err.Error() != "API client not available" {
+		t.Errorf("expected 'client not available' error, got %v", err)
+	}
+}

package/cmd/notification_read_test.go

@@ -0,0 +1,138 @@
+package cmd
+
+import (
+	"context"
+	"encoding/json"
+	"net/http"
+	"net/http/httptest"
+	"testing"
+
+	"github.com/rogeriopvl/fizzy/internal/api"
+	"github.com/rogeriopvl/fizzy/internal/app"
+	"github.com/rogeriopvl/fizzy/internal/config"
+	"github.com/rogeriopvl/fizzy/internal/testutil"
+)
+
+func TestNotificationReadCommand(t *testing.T) {
+	requestCount := 0
+	server := httptest.NewServer(http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+		requestCount++
+
+		if r.URL.Path == "/notifications/notif-123/reading" && r.Method == http.MethodPost {
+			w.WriteHeader(http.StatusNoContent)
+			return
+		}
+
+		if r.URL.Path == "/notifications/notif-123" && r.Method == http.MethodGet {
+			w.Header().Set("Content-Type", "application/json")
+			response := api.Notification{
+				ID:        "notif-123",
+				Read:      true,
+				ReadAt:    "2025-01-01T00:00:00Z",
+				CreatedAt: "2025-01-01T00:00:00Z",
+				Title:     "Test Notification",
+				Body:      "This is a test notification",
+				Creator: api.User{
+					ID:        "user-123",
+					Name:      "David Heinemeier Hansson",
+					Email:     "david@example.com",
+					Role:      "owner",
+					Active:    true,
+					CreatedAt: "2025-12-05T19:36:35.401Z",
+				},
+				Card: api.CardReference{
+					ID:     "card-123",
+					Title:  "Test Card",
+					Status: "published",
+					URL:    "http://fizzy.localhost:3006/897362094/cards/1",
+				},
+				URL: "http://fizzy.localhost:3006/897362094/notifications/notif-123",
+			}
+			json.NewEncoder(w).Encode(response)
+			return
+		}
+
+		t.Errorf("unexpected request: %s %s", r.Method, r.URL.Path)
+		w.WriteHeader(http.StatusNotFound)
+	}))
+	defer server.Close()
+
+	client := testutil.NewTestClient(server.URL, "", "board-123", "test-token")
+	testApp := &app.App{
+		Client: client,
+		Config: &config.Config{SelectedBoard: "board-123"},
+	}
+
+	cmd := notificationReadCmd
+	cmd.SetContext(testApp.ToContext(context.Background()))
+
+	if err := handleReadNotification(cmd, "notif-123"); err != nil {
+		t.Fatalf("handleReadNotification failed: %v", err)
+	}
+
+	if requestCount != 2 {
+		t.Errorf("expected 2 requests (POST and GET), got %d", requestCount)
+	}
+}
+
+func TestNotificationReadCommandNotFound(t *testing.T) {
+	server := httptest.NewServer(http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+		w.WriteHeader(http.StatusNotFound)
+		w.Write([]byte("Notification not found"))
+	}))
+	defer server.Close()
+
+	client := testutil.NewTestClient(server.URL, "", "board-123", "test-token")
+	testApp := &app.App{
+		Client: client,
+		Config: &config.Config{SelectedBoard: "board-123"},
+	}
+
+	cmd := notificationReadCmd
+	cmd.SetContext(testApp.ToContext(context.Background()))
+
+	err := handleReadNotification(cmd, "notif-invalid")
+	if err == nil {
+		t.Errorf("expected error for invalid notification")
+	}
+	if err.Error() != "notification not found" {
+		t.Errorf("expected 'notification not found' error, got %v", err)
+	}
+}
+
+func TestNotificationReadCommandAPIError(t *testing.T) {
+	server := httptest.NewServer(http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+		w.WriteHeader(http.StatusInternalServerError)
+		w.Write([]byte("Internal Server Error"))
+	}))
+	defer server.Close()
+
+	client := testutil.NewTestClient(server.URL, "", "board-123", "test-token")
+	testApp := &app.App{
+		Client: client,
+		Config: &config.Config{SelectedBoard: "board-123"},
+	}
+
+	cmd := notificationReadCmd
+	cmd.SetContext(testApp.ToContext(context.Background()))
+
+	err := handleReadNotification(cmd, "notif-123")
+	if err == nil {
+		t.Errorf("expected error for API failure")
+	}
+}
+
+func TestNotificationReadCommandNoClient(t *testing.T) {
+	testApp := &app.App{}
+
+	cmd := notificationReadCmd
+	cmd.SetContext(testApp.ToContext(context.Background()))
+
+	err := handleReadNotification(cmd, "notif-123")
+	if err == nil {
+		t.Errorf("expected error when client not available")
+	}
+	if err.Error() != "API client not available" {
+		t.Errorf("expected 'client not available' error, got %v", err)
+	}
+}

package/cmd/notification_unread.go

@@ -0,0 +1,44 @@
+package cmd
+
+import (
+	"context"
+	"fmt"
+	"strings"
+
+	"github.com/rogeriopvl/fizzy/internal/app"
+	"github.com/spf13/cobra"
+)
+
+var notificationUnreadCmd = &cobra.Command{
+	Use:   "unread <notification_id>",
+	Short: "Mark notification as unread",
+	Long:  `Mark a notification as unread`,
+	Args:  cobra.ExactArgs(1),
+	Run: func(cmd *cobra.Command, args []string) {
+		if err := handleUnreadNotification(cmd, args[0]); err != nil {
+			fmt.Fprintf(cmd.OutOrStderr(), "Error: %v\n", err)
+		}
+	},
+}
+
+func handleUnreadNotification(cmd *cobra.Command, notificationID string) error {
+	a := app.FromContext(cmd.Context())
+	if a == nil || a.Client == nil {
+		return fmt.Errorf("API client not available")
+	}
+
+	_, err := a.Client.DeleteNotificationReading(context.Background(), notificationID)
+	if err != nil {
+		if strings.Contains(err.Error(), "404") {
+			return fmt.Errorf("notification not found")
+		}
+		return fmt.Errorf("marking notification as unread: %w", err)
+	}
+
+	fmt.Printf("✓ Notification marked as unread successfully\n")
+	return nil
+}
+
+func init() {
+	notificationCmd.AddCommand(notificationUnreadCmd)
+}

package/cmd/notification_unread_test.go

@@ -0,0 +1,99 @@
+package cmd
+
+import (
+	"context"
+	"net/http"
+	"net/http/httptest"
+	"testing"
+
+	"github.com/rogeriopvl/fizzy/internal/app"
+	"github.com/rogeriopvl/fizzy/internal/testutil"
+)
+
+func TestNotificationUnreadCommand(t *testing.T) {
+	server := httptest.NewServer(http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+		if r.URL.Path != "/notifications/notif-123/reading" {
+			t.Errorf("expected /notifications/notif-123/reading, got %s", r.URL.Path)
+		}
+		if r.Method != http.MethodDelete {
+			t.Errorf("expected DELETE, got %s", r.Method)
+		}
+
+		auth := r.Header.Get("Authorization")
+		if auth != "Bearer test-token" {
+			t.Errorf("expected Bearer test-token, got %s", auth)
+		}
+
+		w.WriteHeader(http.StatusNoContent)
+	}))
+	defer server.Close()
+
+	client := testutil.NewTestClient(server.URL, "", "", "test-token")
+	testApp := &app.App{Client: client}
+
+	cmd := notificationUnreadCmd
+	cmd.SetContext(testApp.ToContext(context.Background()))
+
+	if err := handleUnreadNotification(cmd, "notif-123"); err != nil {
+		t.Fatalf("handleUnreadNotification failed: %v", err)
+	}
+}
+
+func TestNotificationUnreadCommandNotFound(t *testing.T) {
+	server := httptest.NewServer(http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+		w.WriteHeader(http.StatusNotFound)
+		w.Write([]byte("Notification not found"))
+	}))
+	defer server.Close()
+
+	client := testutil.NewTestClient(server.URL, "", "", "test-token")
+	testApp := &app.App{Client: client}
+
+	cmd := notificationUnreadCmd
+	cmd.SetContext(testApp.ToContext(context.Background()))
+
+	err := handleUnreadNotification(cmd, "notif-invalid")
+	if err == nil {
+		t.Errorf("expected error for invalid notification")
+	}
+	if err.Error() != "notification not found" {
+		t.Errorf("expected 'notification not found' error, got %v", err)
+	}
+}
+
+func TestNotificationUnreadCommandAPIError(t *testing.T) {
+	server := httptest.NewServer(http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+		w.WriteHeader(http.StatusInternalServerError)
+		w.Write([]byte("Internal Server Error"))
+	}))
+	defer server.Close()
+
+	client := testutil.NewTestClient(server.URL, "", "", "test-token")
+	testApp := &app.App{Client: client}
+
+	cmd := notificationUnreadCmd
+	cmd.SetContext(testApp.ToContext(context.Background()))
+
+	err := handleUnreadNotification(cmd, "notif-123")
+	if err == nil {
+		t.Errorf("expected error for API failure")
+	}
+	if err.Error() != "marking notification as unread: unexpected status code 500: Internal Server Error" {
+		t.Errorf("expected API error, got %v", err)
+	}
+}
+
+func TestNotificationUnreadCommandNoClient(t *testing.T) {
+	testApp := &app.App{}
+
+	cmd := notificationUnreadCmd
+	cmd.SetContext(testApp.ToContext(context.Background()))
+
+	err := handleUnreadNotification(cmd, "notif-123")
+	if err == nil {
+		t.Errorf("expected error when client not available")
+	}
+	if err.Error() != "API client not available" {
+		t.Errorf("expected 'client not available' error, got %v", err)
+	}
+}

package/docs/API.md

@@ -5,6 +5,13 @@ a bot to perform various actions for you.
 
 ## Authentication
 
+There are two ways to authenticate with the Fizzy API:
+
+1. **Personal access tokens** - Long-lived tokens for scripts and integrations
+2. **Magic link authentication** - Session-based authentication for native apps
+
+### Personal Access Tokens
+
 To use the API you'll need an access token. To get one, go to your profile, then,
 in the API section, click on "Personal access tokens" and then click on
 "Generate new access token".
@@ -36,6 +43,81 @@ To authenticate a request using your access token, include it in the `Authorizat
 curl -H "Authorization: Bearer put-your-access-token-here" -H "Accept: application/json" https://app.fizzy.do/my/identity
 ```
 
+### Magic Link Authentication
+
+For native apps, you can authenticate users via magic links. This is a two-step process:
+
+#### 1. Request a magic link
+
+Send the user's email address to request a magic link be sent to them:
+
+```bash
+curl -X POST \
+  -H "Content-Type: application/json" \
+  -H "Accept: application/json" \
+  -d '{"email_address": "user@example.com"}' \
+  https://app.fizzy.do/session
+```
+
+__Response:__
+
+```
+HTTP/1.1 201 Created
+Set-Cookie: pending_authentication_token=...; HttpOnly; SameSite=Lax
+```
+
+```json
+{
+  "pending_authentication_token": "eyJfcmFpbHMi..."
+}
+```
+
+The response includes a `pending_authentication_token` both in the JSON body and as a cookie.
+Native apps should store this token and include it as a cookie when submitting the magic link code.
+
+__Error responses:__
+
+| Status Code | Description |
+|--------|-------------|
+| `422 Unprocessable entity` | Invalid email address, if sign ups are enabled and the value isn't a valid email address |
+| `429 Too Many Requests` | Rate limit exceeded |
+
+#### 2. Submit the magic link code
+
+Once the user receives the magic link email, they'll have a 6-character code. Submit it to complete authentication:
+
+```bash
+curl -X POST \
+  -H "Content-Type: application/json" \
+  -H "Accept: application/json" \
+  -H "Cookie: pending_authentication_token=eyJfcmFpbHMi..." \
+  -d '{"code": "ABC123"}' \
+  https://app.fizzy.do/session/magic_link
+```
+
+__Response:__
+
+```json
+{
+  "session_token": "eyJfcmFpbHMi..."
+}
+```
+
+The `session_token` can be used to authenticate subsequent requests by including it as a cookie:
+
+```bash
+curl -H "Cookie: session_token=eyJfcmFpbHMi..." \
+  -H "Accept: application/json" \
+  https://app.fizzy.do/my/identity
+```
+
+__Error responses:__
+
+| Status Code | Description |
+|--------|-------------|
+| `401 Unauthorized` | Invalid `pending_authentication_token` or `code` |
+| `429 Too Many Requests` | Rate limit exceeded |
+
 ## Caching
 
 Most endpoints return [ETag](https://developer.mozilla.org/en-US/docs/Web/HTTP/Reference/Headers/ETag) and [Cache-Control](https://developer.mozilla.org/en-US/docs/Web/HTTP/Reference/Headers/Cache-Control) headers. You can use these to avoid re-downloading unchanged data.
@@ -482,7 +564,60 @@ Returns a specific card by its number.
 
 __Response:__
 
-Same as the card object in the list response.
+```json
+{
+  "id": "03f5vaeq985jlvwv3arl4srq2",
+  "number": 1,
+  "title": "First!",
+  "status": "published",
+  "description": "Hello, World!",
+  "description_html": "<div class=\"action-text-content\"><p>Hello, World!</p></div>",
+  "image_url": null,
+  "tags": ["programming"],
+  "golden": false,
+  "last_active_at": "2025-12-05T19:38:48.553Z",
+  "created_at": "2025-12-05T19:38:48.540Z",
+  "url": "http://fizzy.localhost:3006/897362094/cards/4",
+  "board": {
+    "id": "03f5v9zkft4hj9qq0lsn9ohcm",
+    "name": "Fizzy",
+    "all_access": true,
+    "created_at": "2025-12-05T19:36:35.534Z",
+    "url": "http://fizzy.localhost:3006/897362094/boards/03f5v9zkft4hj9qq0lsn9ohcm",
+    "creator": {
+      "id": "03f5v9zjw7pz8717a4no1h8a7",
+      "name": "David Heinemeier Hansson",
+      "role": "owner",
+      "active": true,
+      "email_address": "david@example.com",
+      "created_at": "2025-12-05T19:36:35.401Z",
+      "url": "http://fizzy.localhost:3006/897362094/users/03f5v9zjw7pz8717a4no1h8a7"
+    }
+  },
+  "creator": {
+    "id": "03f5v9zjw7pz8717a4no1h8a7",
+    "name": "David Heinemeier Hansson",
+    "role": "owner",
+    "active": true,
+    "email_address": "david@example.com",
+    "created_at": "2025-12-05T19:36:35.401Z",
+    "url": "http://fizzy.localhost:3006/897362094/users/03f5v9zjw7pz8717a4no1h8a7"
+  },
+  "comments_url": "http://fizzy.localhost:3006/897362094/cards/4/comments",
+  "steps": [
+    {
+      "id": "03f8huu0sog76g3s975963b5e",
+      "content": "This is the first step",
+      "completed": false
+    },
+    {
+      "id": "03f8huu0sog76g3s975969734",
+      "content": "This is the second step",
+      "completed": false
+    }
+  ]
+}
+```
 
 ### `POST /:account_slug/boards/:board_id/cards`
 
@@ -661,6 +796,10 @@ __Response:__
       "created_at": "2025-12-05T19:36:35.401Z",
       "url": "http://fizzy.localhost:3006/897362094/users/03f5v9zjw7pz8717a4no1h8a7"
     },
+    "card": {
+      "id": "03f5v9zo9qlcwwpyc0ascnikz",
+      "url": "http://fizzy.localhost:3006/897362094/cards/03f5v9zo9qlcwwpyc0ascnikz"
+    },
     "reactions_url": "http://fizzy.localhost:3006/897362094/cards/3/comments/03f5v9zo9qlcwwpyc0ascnikz/reactions",
     "url": "http://fizzy.localhost:3006/897362094/cards/3/comments/03f5v9zo9qlcwwpyc0ascnikz"
   }
@@ -691,6 +830,10 @@ __Response:__
     "created_at": "2025-12-05T19:36:35.401Z",
     "url": "http://fizzy.localhost:3006/897362094/users/03f5v9zjw7pz8717a4no1h8a7"
   },
+  "card": {
+    "id": "03f5v9zo9qlcwwpyc0ascnikz",
+    "url": "http://fizzy.localhost:3006/897362094/cards/03f5v9zo9qlcwwpyc0ascnikz"
+  },
   "reactions_url": "http://fizzy.localhost:3006/897362094/cards/3/comments/03f5v9zo9qlcwwpyc0ascnikz/reactions",
   "url": "http://fizzy.localhost:3006/897362094/cards/3/comments/03f5v9zo9qlcwwpyc0ascnikz"
 }

package/go.mod

@@ -4,13 +4,13 @@ go 1.25.1
 
 require (
 	github.com/charmbracelet/bubbletea v1.3.10
+	github.com/charmbracelet/lipgloss v1.1.0
 	github.com/spf13/cobra v1.10.2
 )
 
 require (
 	github.com/aymanbagabas/go-osc52/v2 v2.0.1 // indirect
 	github.com/charmbracelet/colorprofile v0.2.3-0.20250311203215-f60798e515dc // indirect
-	github.com/charmbracelet/lipgloss v1.1.0 // indirect
 	github.com/charmbracelet/x/ansi v0.10.1 // indirect
 	github.com/charmbracelet/x/cellbuf v0.0.13-0.20250311204145-2c3ea96c31dd // indirect
 	github.com/charmbracelet/x/term v0.2.1 // indirect