keyra-cli 0.1.0 → 0.1.2

package/cli/src/lib/api.ts

@@ -1,136 +0,0 @@
-import { loadConfig } from './config.js';
-import type { Project, VaultEntry, EncryptedEntry, ShareData } from '../types.js';
-
-function getBaseUrl(): string {
-  const config = loadConfig();
-  return config.apiUrl || 'http://localhost:3000';
-}
-
-function getHeaders(): Record<string, string> {
-  const config = loadConfig();
-  const headers: Record<string, string> = {
-    'Content-Type': 'application/json',
-  };
-  if (config.accessToken) {
-    headers['Authorization'] = `Bearer ${config.accessToken}`;
-  }
-  return headers;
-}
-
-async function handleResponse(res: Response): Promise<any> {
-  if (res.status === 401) {
-    throw new Error('Session expired. Run `keyra login` to re-authenticate.');
-  }
-  if (res.status === 403) {
-    const data = await res.json().catch(() => ({}));
-    const msg: string = data.error || '';
-    if (msg.toLowerCase().includes('project')) {
-      throw new Error(
-        'Project limit reached for your plan.\n  Upgrade at keyra.dev/dashboard/settings for more projects.'
-      );
-    }
-    if (msg.toLowerCase().includes('variable') || msg.toLowerCase().includes('vars')) {
-      throw new Error(
-        'Variable limit reached for this project.\n  Upgrade at keyra.dev/dashboard/settings for more variables.'
-      );
-    }
-    if (msg.toLowerCase().includes('sharing') || msg.toLowerCase().includes('share')) {
-      throw new Error(
-        'Sharing requires a Pro plan.\n  Upgrade at keyra.dev/dashboard/settings to enable sharing.'
-      );
-    }
-    if (data.upgrade) {
-      throw new Error(
-        `${msg || 'Plan limit reached.'}\n  Upgrade at keyra.dev/dashboard/settings`
-      );
-    }
-    throw new Error(msg || 'Access denied.');
-  }
-  if (!res.ok) {
-    const data = await res.json().catch(() => ({}));
-    throw new Error(data.error || `Request failed with status ${res.status}`);
-  }
-  return res.json();
-}
-
-export async function apiGet(path: string): Promise<any> {
-  const res = await fetch(`${getBaseUrl()}${path}`, {
-    method: 'GET',
-    headers: getHeaders(),
-  }).catch(() => {
-    throw new Error("Can't reach server. Check your connection.");
-  });
-  return handleResponse(res);
-}
-
-export async function apiPost(path: string, body: any): Promise<any> {
-  const res = await fetch(`${getBaseUrl()}${path}`, {
-    method: 'POST',
-    headers: getHeaders(),
-    body: JSON.stringify(body),
-  }).catch(() => {
-    throw new Error("Can't reach server. Check your connection.");
-  });
-  return handleResponse(res);
-}
-
-export async function apiPatch(path: string, body: any): Promise<any> {
-  const res = await fetch(`${getBaseUrl()}${path}`, {
-    method: 'PATCH',
-    headers: getHeaders(),
-    body: JSON.stringify(body),
-  }).catch(() => {
-    throw new Error("Can't reach server. Check your connection.");
-  });
-  return handleResponse(res);
-}
-
-export async function apiDelete(path: string): Promise<any> {
-  const res = await fetch(`${getBaseUrl()}${path}`, {
-    method: 'DELETE',
-    headers: getHeaders(),
-  }).catch(() => {
-    throw new Error("Can't reach server. Check your connection.");
-  });
-  return handleResponse(res);
-}
-
-// Specific endpoints
-
-export async function createDeviceCode(): Promise<{ deviceCode: string }> {
-  return apiPost('/api/cli/auth', {});
-}
-
-export async function pollAuth(
-  deviceCode: string
-): Promise<{ status: string; accessToken?: string }> {
-  return apiGet(`/api/cli/auth?code=${deviceCode}`);
-}
-
-export async function getProjects(): Promise<Project[]> {
-  return apiGet('/api/projects');
-}
-
-export async function createProject(
-  name: string,
-  description?: string
-): Promise<Project> {
-  return apiPost('/api/projects', { name, description });
-}
-
-export async function getVaultEntries(projectId: string): Promise<VaultEntry[]> {
-  return apiGet(`/api/vault?project_id=${projectId}`);
-}
-
-export async function upsertVaultEntries(
-  projectId: string,
-  entries: EncryptedEntry[]
-): Promise<void> {
-  await apiPost('/api/vault/sync', { projectId, entries });
-}
-
-export async function createShareLink(
-  data: ShareData
-): Promise<{ url: string; token: string }> {
-  return apiPost('/api/share', data);
-}

package/cli/src/lib/config.ts

@@ -1,94 +0,0 @@
-import fs from 'fs';
-import path from 'path';
-import os from 'os';
-import type { Config, ProjectConfig } from '../types.js';
-
-const CONFIG_DIR = path.join(os.homedir(), '.keyra');
-const CONFIG_FILE = path.join(CONFIG_DIR, 'config.json');
-const PROJECT_CONFIG_FILE = '.keyra.json';
-
-function ensureConfigDir(): void {
-  if (!fs.existsSync(CONFIG_DIR)) {
-    fs.mkdirSync(CONFIG_DIR, { recursive: true });
-  }
-}
-
-export function loadConfig(): Partial<Config> {
-  ensureConfigDir();
-  if (!fs.existsSync(CONFIG_FILE)) return {};
-  try {
-    return JSON.parse(fs.readFileSync(CONFIG_FILE, 'utf-8'));
-  } catch {
-    return {};
-  }
-}
-
-export function saveConfig(partial: Partial<Config>): void {
-  ensureConfigDir();
-  const existing = loadConfig();
-  const merged = { ...existing, ...partial };
-  fs.writeFileSync(CONFIG_FILE, JSON.stringify(merged, null, 2));
-}
-
-export function clearConfig(): void {
-  ensureConfigDir();
-  if (fs.existsSync(CONFIG_FILE)) {
-    fs.unlinkSync(CONFIG_FILE);
-  }
-}
-
-export function isLoggedIn(): boolean {
-  const config = loadConfig();
-  return !!(config.accessToken && config.passphrase);
-}
-
-export function requireAuth(): Config {
-  const config = loadConfig();
-  if (!config.accessToken || !config.passphrase) {
-    throw new Error('Not logged in. Run `keyra login` first.');
-  }
-  return {
-    apiUrl: config.apiUrl || 'http://localhost:3000',
-    accessToken: config.accessToken,
-    passphrase: config.passphrase,
-  };
-}
-
-export function loadProjectConfig(): ProjectConfig | null {
-  const filePath = path.join(process.cwd(), PROJECT_CONFIG_FILE);
-  if (!fs.existsSync(filePath)) return null;
-  try {
-    return JSON.parse(fs.readFileSync(filePath, 'utf-8'));
-  } catch {
-    return null;
-  }
-}
-
-export function saveProjectConfig(data: ProjectConfig): void {
-  const filePath = path.join(process.cwd(), PROJECT_CONFIG_FILE);
-  fs.writeFileSync(filePath, JSON.stringify(data, null, 2));
-}
-
-export function hasProjectConfig(): boolean {
-  return fs.existsSync(path.join(process.cwd(), PROJECT_CONFIG_FILE));
-}
-
-export function requireProjectConfig(): ProjectConfig {
-  const config = loadProjectConfig();
-  if (!config) {
-    throw new Error('Not in a Keyra project. Run `keyra init` first.');
-  }
-  return config;
-}
-
-export function addToGitignore(entry: string): void {
-  const gitignorePath = path.join(process.cwd(), '.gitignore');
-  if (fs.existsSync(gitignorePath)) {
-    const content = fs.readFileSync(gitignorePath, 'utf-8');
-    if (!content.includes(entry)) {
-      fs.appendFileSync(gitignorePath, `\n${entry}\n`);
-    }
-  } else {
-    fs.writeFileSync(gitignorePath, `${entry}\n`);
-  }
-}

package/cli/src/lib/encryption.ts

@@ -1,45 +0,0 @@
-import crypto from 'crypto';
-
-export function encrypt(
-  text: string,
-  passphrase: string
-): { encrypted: string; iv: string; salt: string; authTag: string } {
-  const salt = crypto.randomBytes(16);
-  const key = crypto.pbkdf2Sync(passphrase, salt, 100000, 32, 'sha256');
-  const iv = crypto.randomBytes(12);
-  const cipher = crypto.createCipheriv('aes-256-gcm', key, iv);
-  let encrypted = cipher.update(text, 'utf8', 'hex');
-  encrypted += cipher.final('hex');
-  const authTag = cipher.getAuthTag().toString('hex');
-  return {
-    encrypted,
-    iv: iv.toString('hex'),
-    salt: salt.toString('hex'),
-    authTag,
-  };
-}
-
-export function decrypt(
-  encrypted: string,
-  iv: string,
-  salt: string,
-  authTag: string,
-  passphrase: string
-): string {
-  const key = crypto.pbkdf2Sync(
-    passphrase,
-    Buffer.from(salt, 'hex'),
-    100000,
-    32,
-    'sha256'
-  );
-  const decipher = crypto.createDecipheriv(
-    'aes-256-gcm',
-    key,
-    Buffer.from(iv, 'hex')
-  );
-  decipher.setAuthTag(Buffer.from(authTag, 'hex'));
-  let decrypted = decipher.update(encrypted, 'hex', 'utf8');
-  decrypted += decipher.final('utf8');
-  return decrypted;
-}

package/cli/src/lib/env-file.ts

@@ -1,67 +0,0 @@
-import fs from 'fs';
-import path from 'path';
-
-export function parseEnvFile(content: string): Record<string, string> {
-  const vars: Record<string, string> = {};
-  const lines = content.split('\n');
-
-  for (const line of lines) {
-    const trimmed = line.trim();
-    // Skip empty lines and comments
-    if (!trimmed || trimmed.startsWith('#')) continue;
-
-    const eqIndex = trimmed.indexOf('=');
-    if (eqIndex === -1) continue;
-
-    const key = trimmed.substring(0, eqIndex).trim();
-    let value = trimmed.substring(eqIndex + 1).trim();
-
-    // Remove surrounding quotes
-    if (
-      (value.startsWith('"') && value.endsWith('"')) ||
-      (value.startsWith("'") && value.endsWith("'"))
-    ) {
-      value = value.slice(1, -1);
-    }
-
-    if (key) {
-      vars[key] = value;
-    }
-  }
-
-  return vars;
-}
-
-export function toEnvFileString(vars: Record<string, string>): string {
-  const keys = Object.keys(vars).sort();
-  return keys.map((key) => `${key}=${vars[key]}`).join('\n') + '\n';
-}
-
-const ENV_FILES = ['.env', '.env.local', '.env.development'];
-
-export function readEnvFile(dir?: string): {
-  vars: Record<string, string>;
-  filename: string;
-} | null {
-  const baseDir = dir || process.cwd();
-
-  for (const filename of ENV_FILES) {
-    const filePath = path.join(baseDir, filename);
-    if (fs.existsSync(filePath)) {
-      const content = fs.readFileSync(filePath, 'utf-8');
-      return { vars: parseEnvFile(content), filename };
-    }
-  }
-
-  return null;
-}
-
-export function writeEnvFile(
-  vars: Record<string, string>,
-  dir?: string,
-  filename = '.env'
-): void {
-  const baseDir = dir || process.cwd();
-  const filePath = path.join(baseDir, filename);
-  fs.writeFileSync(filePath, toEnvFileString(vars));
-}

package/cli/src/lib/ui.ts

@@ -1,87 +0,0 @@
-import readline from 'readline';
-import chalk from 'chalk';
-import ora from 'ora';
-import boxen from 'boxen';
-
-export const spinner = (text: string) => ora({ text, color: 'green' });
-
-export const success = (text: string) =>
-  console.log(chalk.green('✓'), text);
-
-export const error = (text: string) =>
-  console.log(chalk.red('✗'), text);
-
-export const warning = (text: string) =>
-  console.log(chalk.yellow('⚠'), text);
-
-export const info = (text: string) =>
-  console.log(chalk.blue('ℹ'), text);
-
-export function banner() {
-  console.log(
-    boxen(
-      chalk.green.bold('Keyra') +
-        chalk.dim(' v0.1.0') +
-        '\n' +
-        chalk.dim('Encrypted .env vault'),
-      {
-        padding: 1,
-        margin: 1,
-        borderStyle: 'round',
-        borderColor: 'green',
-      }
-    )
-  );
-}
-
-export function printTable(
-  rows: { key: string; value: string; status?: string }[]
-) {
-  const maxKeyLen = Math.max(...rows.map((r) => r.key.length), 3);
-
-  for (const row of rows) {
-    const dots = '.'.repeat(Math.max(1, maxKeyLen - row.key.length + 3));
-    const statusIcon =
-      row.status === 'present'
-        ? chalk.green('✓')
-        : row.status === 'missing'
-        ? chalk.red('✗')
-        : row.status === 'empty'
-        ? chalk.red('✗')
-        : chalk.dim('·');
-    const statusText =
-      row.status === 'present'
-        ? chalk.green(row.value)
-        : row.status === 'missing'
-        ? chalk.red(row.value)
-        : row.status === 'empty'
-        ? chalk.red(row.value)
-        : chalk.dim(row.value);
-
-    console.log(`  ${statusIcon} ${chalk.bold(row.key)} ${chalk.dim(dots)} ${statusText}`);
-  }
-}
-
-export function printBox(content: string, color: 'green' | 'yellow' | 'red' = 'green') {
-  console.log(
-    boxen(content, {
-      padding: 1,
-      margin: { top: 1, bottom: 1, left: 0, right: 0 },
-      borderStyle: 'round',
-      borderColor: color,
-    })
-  );
-}
-
-export function promptSecret(question: string): Promise<string> {
-  return new Promise((resolve) => {
-    const rl = readline.createInterface({
-      input: process.stdin,
-      output: process.stdout,
-    });
-    rl.question(question, (answer) => {
-      rl.close();
-      resolve(answer);
-    });
-  });
-}

package/cli/src/types.ts

@@ -1,56 +0,0 @@
-export interface Config {
-  apiUrl: string;
-  accessToken: string;
-  passphrase: string;
-}
-
-export interface ProjectConfig {
-  projectId: string;
-  projectName: string;
-}
-
-export interface Project {
-  id: string;
-  user_id: string;
-  name: string;
-  description: string | null;
-  var_count: number;
-  last_synced_at: string | null;
-  created_at: string;
-  updated_at: string;
-  has_project_password: boolean;
-  project_password_salt: string | null;
-}
-
-export interface VaultEntry {
-  id: string;
-  user_id: string;
-  project_id: string;
-  key_name: string;
-  encrypted_value: string;
-  iv: string;
-  salt: string;
-  auth_tag: string;
-  category: string;
-  created_at: string;
-  updated_at: string;
-}
-
-export interface EncryptedEntry {
-  key_name: string;
-  encrypted_value: string;
-  iv: string;
-  salt: string;
-  auth_tag: string;
-  category: string;
-}
-
-export interface ShareData {
-  project_id: string;
-  encrypted_data: string;
-  iv: string;
-  salt: string;
-  auth_tag: string;
-  expires_at?: string;
-  max_views?: number;
-}

package/cli/tsconfig.json

@@ -1,14 +0,0 @@
-{
-  "compilerOptions": {
-    "target": "ES2022",
-    "module": "ESNext",
-    "moduleResolution": "bundler",
-    "strict": true,
-    "esModuleInterop": true,
-    "outDir": "dist",
-    "rootDir": "src",
-    "declaration": true,
-    "skipLibCheck": true
-  },
-  "include": ["src/**/*"]
-}