infernoflow 0.38.2 → 0.38.3

package/CHANGELOG.md

@@ -221,6 +221,14 @@
 - v0.37.3 — remove Scarf, zero-dep install, no more Windows hang
 - v0.37.3 — remove @scarf/scarf to fix Windows install hang
 
+- v0.38.2 — fix login PKCE flow
+- v0.38.1
+- v0.38.0 — cloud login + auto-push to Supabase on every log
+- v0.38.0 — cloud login, auto-push to Supabase on every log
+- v0.37.4
+- v0.37.3 — remove Scarf, zero-dep install, no more Windows hang
+- v0.37.3 — remove @scarf/scarf to fix Windows install hang
+
 ## 0.10.25 — 2026-04-22
 
 ### Added

package/dist/lib/commands/login.mjs

@@ -1,12 +1,30 @@
-import*as k from"node:http";import*as _ from"node:crypto";import*as x from"node:https";import"node:fs";import"node:path";import{bold as u,cyan as h,gray as c,green as p,red as $,yellow as P}from"../ui/output.mjs";import{readCredentials as b,writeCredentials as A,deleteCredentials as O,isLoggedIn as S}from"../cloud/credentials.mjs";import{getUser as T,SUPABASE_URL as y,SUPABASE_ANON_KEY as E}from"../cloud/supabase.mjs";const w=9242,C="/auth/callback",U=`http://localhost:${w}${C}`;function R(o){try{const{execSync:s}=require("child_process"),r=process.platform==="win32"?`start "" "${o}"`:process.platform==="darwin"?`open "${o}"`:`xdg-open "${o}"`;s(r,{stdio:"ignore"})}catch{}}function D(){const o=_.randomBytes(32).toString("base64url"),s=_.createHash("sha256").update(o).digest("base64url");return{verifier:o,challenge:s}}function B(o,s){return new Promise((r,a)=>{const i=JSON.stringify({auth_code:o,code_verifier:s}),l=new URL(`${y}/auth/v1/token?grant_type=pkce`),f={hostname:l.hostname,port:443,path:l.pathname+l.search,method:"POST",headers:{"Content-Type":"application/json","Content-Length":Buffer.byteLength(i),apikey:E,"User-Agent":"infernoflow-cli"}},t=x.request(f,e=>{let n="";e.on("data",g=>n+=g),e.on("end",()=>{try{r({status:e.statusCode,body:JSON.parse(n)})}catch{r({status:e.statusCode,body:n})}})});t.on("error",a),t.write(i),t.end()})}async function I(){if(y.includes("YOUR_PROJECT")&&(console.log(),console.log(`  ${$("\u2718")} Supabase not configured yet.`),console.log(),process.exit(1)),S()){const e=b()?.user;console.log(),console.log(`  ${p("\u2714")} Already logged in as ${u(e?.email||e?.user_metadata?.user_name||"unknown")}`),console.log(`  Run ${h("infernoflow logout")} to sign out.`),console.log();return}const{verifier:o,challenge:s}=D();console.log(),console.log(`  ${u("\u{1F525} infernoflow login")}`),console.log();let r,a;const i=new Promise((t,e)=>{r=t,a=e}),l=k.createServer((t,e)=>{const n=new URL(t.url,`http://localhost:${w}`);if(n.pathname!==C){e.writeHead(404),e.end("Not found");return}const m=n.searchParams.get("code"),d=n.searchParams.get("error_description")||n.searchParams.get("error");e.writeHead(200,{"Content-Type":"text/html"}),m?(e.end(`<!DOCTYPE html><html>
-<head><meta charset="utf-8"><title>infernoflow</title>
-<style>body{font-family:system-ui;display:flex;align-items:center;justify-content:center;height:100vh;margin:0;background:#0f172a;color:#f1f5f9;text-align:center}</style>
+import*as S from"node:http";import"node:crypto";import"node:https";import"node:fs";import"node:path";import{bold as a,cyan as g,gray as s,green as d,red as h,yellow as L}from"../ui/output.mjs";import{readCredentials as y,writeCredentials as x,deleteCredentials as v,isLoggedIn as _}from"../cloud/credentials.mjs";import{getUser as T,SUPABASE_URL as w}from"../cloud/supabase.mjs";const m=9242,$="/auth/callback",C=`http://localhost:${m}${$}`;function P(n){try{const{execSync:t}=require("child_process"),c=process.platform==="win32"?`start "" "${n}"`:process.platform==="darwin"?`open "${n}"`:`xdg-open "${n}"`;t(c,{stdio:"ignore"})}catch{}}async function O(){if(w.includes("YOUR_PROJECT")&&(console.log(),console.log(`  ${h("\u2718")} Supabase not configured yet.`),console.log(),process.exit(1)),_()){const e=y()?.user;console.log(),console.log(`  ${d("\u2714")} Already logged in as ${a(e?.email||e?.user_metadata?.user_name||"unknown")}`),console.log(`  Run ${g("infernoflow logout")} to sign out.`),console.log();return}console.log(),console.log(`  ${a("\u{1F525} infernoflow login")}`),console.log();let n,t;const c=new Promise((o,e)=>{n=o,t=e}),l=S.createServer((o,e)=>{if(new URL(o.url,`http://localhost:${m}`).pathname!==$){e.writeHead(404),e.end("Not found");return}if(o.method==="GET"){e.writeHead(200,{"Content-Type":"text/html"}),e.end(`<!DOCTYPE html>
+<html>
+<head><meta charset="utf-8"><title>infernoflow login</title>
+<style>body{font-family:system-ui;display:flex;align-items:center;justify-content:center;height:100vh;margin:0;background:#0f172a;color:#f1f5f9}</style>
 </head>
-<body><div><div style="font-size:48px">\u{1F525}</div><h2>Logged in!</h2><p style="color:#94a3b8">You can close this tab and return to the terminal.</p></div></body>
-</html>`),l.close(),r(m)):d?(e.end(`<!DOCTYPE html><html>
-<head><meta charset="utf-8"><title>infernoflow</title>
-<style>body{font-family:system-ui;display:flex;align-items:center;justify-content:center;height:100vh;margin:0;background:#0f172a;color:#f1f5f9;text-align:center}</style>
-</head>
-<body><div><h2>Login failed</h2><p style="color:#f87171">${d}</p></div></body>
-</html>`),l.close(),a(new Error(d))):e.end(`<!DOCTYPE html><html><body style="background:#0f172a;color:#f1f5f9;font-family:system-ui;display:flex;align-items:center;justify-content:center;height:100vh;margin:0">
-<p>Processing\u2026</p></body></html>`)});l.listen(w,"127.0.0.1",()=>{const t=new URLSearchParams({provider:"github",redirect_to:U,code_challenge:s,code_challenge_method:"S256"}),e=`${y}/auth/v1/authorize?${t.toString()}`;console.log("  Opening browser for GitHub login\u2026"),console.log(),console.log(`  ${c("If the browser doesn't open, visit:")}`),console.log(`  ${h(e)}`),console.log(),R(e),console.log(`  ${c("Waiting for login\u2026")} ${c("(Ctrl+C to cancel)")}`)});const f=setTimeout(()=>{l.close(),a(new Error("Login timed out after 3 minutes"))},180*1e3);try{const t=await i;clearTimeout(f);const e=await B(t,o);if(e.status!==200||!e.body?.access_token)throw new Error(e.body?.error_description||e.body?.message||`Auth failed (${e.status})`);const n=e.body,g=await T(n.access_token),m={access_token:n.access_token,refresh_token:n.refresh_token||null,expires_at:n.expires_in?new Date(Date.now()+parseInt(n.expires_in)*1e3).toISOString():null,user:g,logged_in_at:new Date().toISOString()};A(m);const d=g?.user_metadata?.user_name||g?.email||"unknown";console.log(),console.log(`  ${p("\u2714")} Logged in as ${u(d)}`),console.log(),console.log(`  ${c("Session memory will now sync to the cloud on every")} ${h("infernoflow log")}`),console.log()}catch(t){clearTimeout(f);try{l.close()}catch{}console.log(),console.log(`  ${$("\u2718")} Login failed: ${t.message}`),console.log(),process.exit(1)}}function v(){const o=O();console.log(),console.log(o?`  ${p("\u2714")} Logged out. Local credentials removed.`:`  ${c("Already logged out.")}`),console.log()}async function L(){const o=b();if(console.log(),!o?.access_token){console.log(`  ${c("Not logged in.")} Run ${h("infernoflow login")}`),console.log();return}const s=o.user?.user_metadata?.user_name||o.user?.email||"unknown",r=o.user?.email||c("(no email)"),a=o.logged_in_at?new Date(o.logged_in_at).toLocaleDateString():"unknown",i=!S();console.log(`  ${u("\u{1F525} infernoflow")} \u2014 logged in as:`),console.log(),console.log(`  User:      ${u(s)}`),console.log(`  Email:     ${r}`),console.log(`  Since:     ${c(a)}`),console.log(i?`  Status:    ${P("\u26A0 Token expired \u2014 run infernoflow login to refresh")}`:`  Status:    ${p("\u2714 Active")}`),console.log()}async function q(o){const s=o[1];return s==="logout"?v():s==="whoami"?L():I()}async function J(){return v()}async function z(){return L()}export{q as loginCommand,J as logoutCommand,z as whoamiCommand};
+<body>
+<script>
+  const hash   = window.location.hash.slice(1);
+  const params = new URLSearchParams(hash);
+  const access_token  = params.get('access_token');
+  const refresh_token = params.get('refresh_token');
+  const expires_in    = params.get('expires_in');
+  const error         = params.get('error_description') || params.get('error');
+  if (access_token) {
+    fetch('/auth/callback', {
+      method: 'POST',
+      headers: {'Content-Type': 'application/json'},
+      body: JSON.stringify({ access_token, refresh_token, expires_in })
+    }).then(() => {
+      document.body.innerHTML = '<div style="text-align:center"><div style="font-size:48px">\u{1F525}</div><h2>Logged in!</h2><p style="color:#94a3b8">You can close this tab and return to the terminal.</p></div>';
+    });
+  } else if (error) {
+    document.body.innerHTML = '<div style="text-align:center"><h2>Login failed</h2><p style="color:#f87171">' + error + '</p></div>';
+    fetch('/auth/callback', { method: 'POST', headers: {'Content-Type':'application/json'}, body: JSON.stringify({ error }) });
+  } else {
+    document.body.innerHTML = '<div style="text-align:center"><p style="color:#94a3b8">Processing\u2026</p></div>';
+  }
+</script>
+</body>
+</html>`);return}if(o.method==="POST"){let p="";o.on("data",r=>p+=r),o.on("end",()=>{e.writeHead(200),e.end("ok"),l.close();try{const r=JSON.parse(p);r.error?t(new Error(r.error)):n(r)}catch(r){t(r)}})}});l.listen(m,"127.0.0.1",()=>{const o=new URLSearchParams({provider:"github",redirect_to:C}),e=`${w}/auth/v1/authorize?${o.toString()}`;console.log("  Opening browser for GitHub login\u2026"),console.log(),console.log(`  ${s("If the browser doesn't open, visit:")}`),console.log(`  ${g(e)}`),console.log(),P(e),console.log(`  ${s("Waiting for login\u2026")} ${s("(Ctrl+C to cancel)")}`)});const i=setTimeout(()=>{l.close(),t(new Error("Login timed out after 3 minutes"))},180*1e3);try{const o=await c;clearTimeout(i);const e=await T(o.access_token),u={access_token:o.access_token,refresh_token:o.refresh_token||null,expires_at:o.expires_in?new Date(Date.now()+parseInt(o.expires_in)*1e3).toISOString():null,user:e,logged_in_at:new Date().toISOString()};x(u);const f=e?.user_metadata?.user_name||e?.email||"unknown";console.log(),console.log(`  ${d("\u2714")} Logged in as ${a(f)}`),console.log(),console.log(`  ${s("Session memory will now sync to the cloud on every")} ${g("infernoflow log")}`),console.log()}catch(o){clearTimeout(i);try{l.close()}catch{}console.log(),console.log(`  ${h("\u2718")} Login failed: ${o.message}`),console.log(),process.exit(1)}}function k(){const n=v();console.log(),console.log(n?`  ${d("\u2714")} Logged out. Local credentials removed.`:`  ${s("Already logged out.")}`),console.log()}async function b(){const n=y();if(console.log(),!n?.access_token){console.log(`  ${s("Not logged in.")} Run ${g("infernoflow login")}`),console.log();return}const t=n.user?.user_metadata?.user_name||n.user?.email||"unknown",c=n.user?.email||s("(no email)"),l=n.logged_in_at?new Date(n.logged_in_at).toLocaleDateString():"unknown",i=!_();console.log(`  ${a("\u{1F525} infernoflow")} \u2014 logged in as:`),console.log(),console.log(`  User:      ${a(t)}`),console.log(`  Email:     ${c}`),console.log(`  Since:     ${s(l)}`),console.log(i?`  Status:    ${L("\u26A0 Token expired \u2014 run infernoflow login to refresh")}`:`  Status:    ${d("\u2714 Active")}`),console.log()}async function B(n){const t=n[1];return t==="logout"?k():t==="whoami"?b():O()}async function j(){return k()}async function J(){return b()}export{B as loginCommand,j as logoutCommand,J as whoamiCommand};

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "infernoflow",
-  "version": "0.38.2",
+  "version": "0.38.3",
   "description": "Persistent memory for AI coding sessions — captures what agents can't infer from code alone. Works with Copilot, Cursor, Claude, and Windsurf.",
   "type": "module",
   "bin": {