npm - latinfo - Versions diffs - 0.20.1 → 0.20.2 - Mend

latinfo 0.20.1 → 0.20.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (2) hide show

package/dist/index.js +84 -18
package/package.json +1 -1

package/dist/index.js CHANGED Viewed

@@ -49,7 +49,7 @@ const odis_search_1 = require("./odis-search");
 const mphf_search_1 = require("./mphf-search");
 const VERSION = '0.18.1';
 const API_URL = process.env.LATINFO_API_URL || 'https://api.latinfo.dev';
-const GITHUB_CLIENT_ID = process.env.GITHUB_CLIENT_ID || 'Ov23li5fcQaiCsVtaMKK';
+const GITHUB_CLIENT_ID = process.env.GITHUB_CLIENT_ID || 'Ov23liZAqpaGnYQ6Kp5I';
 const CONFIG_DIR = path_1.default.join(os_1.default.homedir(), '.latinfo');
 const CONFIG_FILE = path_1.default.join(CONFIG_DIR, 'config.json');
 // --- JSON mode ---
@@ -157,7 +157,35 @@ async function apiRequest(config, path) {
     return res;
 }
 // --- Commands ---
-async function login(token) {
+async function login(token, username) {
+    // Zero-friction login: admin generates key for a username (no browser)
+    if (username) {
+        let adminSecret;
+        try {
+            adminSecret = requireAdmin();
+        }
+        catch {
+            console.error('Admin access required for username login. Need ADMIN_SECRET in .dev.vars or env.');
+            process.exit(1);
+        }
+        const res = await fetch(`${API_URL}/team/members`, {
+            method: 'POST',
+            headers: { Authorization: `Bearer ${adminSecret}`, 'Content-Type': 'application/json' },
+            body: JSON.stringify({ github_username: username }),
+        });
+        const data = await res.json();
+        if (!res.ok) {
+            console.error(data.message || data.error);
+            process.exit(1);
+        }
+        if (!data.api_key) {
+            console.error('Failed to generate API key');
+            process.exit(1);
+        }
+        saveConfig({ api_key: data.api_key, github_username: username, is_team: true, team_role: data.role });
+        console.log(`Logged in as ${username} (${data.role}).`);
+        return;
+    }
     // PAT login: no browser needed
     if (token) {
         const authRes = await fetch(`${API_URL}/auth/github`, {
@@ -188,21 +216,52 @@ async function login(token) {
         console.log(`Logged in as ${authData.github_username}${config.is_team ? ` (team: ${config.team_role})` : ''}`);
         return;
     }
-    // OAuth login: opens browser
-    const port = 8400;
-    const redirectUri = `http://localhost:${port}/callback`;
-    const scope = 'read:user,user:email';
-    const state = crypto.randomUUID();
-    const authUrl = `https://github.com/login/oauth/authorize?client_id=${GITHUB_CLIENT_ID}&redirect_uri=${encodeURIComponent(redirectUri)}&scope=${scope}&state=${state}`;
-    console.log('Opening GitHub...');
-    console.log('If your browser does not open, visit this URL:\n');
-    console.log(authUrl + '\n');
-    openBrowser(authUrl);
-    const code = await waitForCallback(port, state);
+    // Device Flow: no browser redirect needed, works in SSH/containers/agents
+    const deviceRes = await fetch('https://github.com/login/device/code', {
+        method: 'POST',
+        headers: { Accept: 'application/json', 'Content-Type': 'application/json' },
+        body: JSON.stringify({ client_id: GITHUB_CLIENT_ID, scope: 'read:user,user:email' }),
+    });
+    const device = await deviceRes.json();
+    console.log(`\n  Go to: ${device.verification_uri}`);
+    console.log(`  Enter code: ${device.user_code}\n`);
+    // Try to open browser automatically
+    try {
+        openBrowser(device.verification_uri);
+    }
+    catch { }
+    // Poll until authorized
+    let ghAccessToken = null;
+    const deadline = Date.now() + device.expires_in * 1000;
+    while (Date.now() < deadline) {
+        await new Promise(r => setTimeout(r, (device.interval || 5) * 1000));
+        const pollRes = await fetch('https://github.com/login/oauth/access_token', {
+            method: 'POST',
+            headers: { Accept: 'application/json', 'Content-Type': 'application/json' },
+            body: JSON.stringify({ client_id: GITHUB_CLIENT_ID, device_code: device.device_code, grant_type: 'urn:ietf:params:oauth:grant-type:device_code' }),
+        });
+        const poll = await pollRes.json();
+        if (poll.access_token) {
+            ghAccessToken = poll.access_token;
+            break;
+        }
+        if (poll.error === 'expired_token') {
+            console.error('Code expired. Run latinfo login again.');
+            process.exit(1);
+        }
+        if (poll.error && poll.error !== 'authorization_pending' && poll.error !== 'slow_down') {
+            console.error(`GitHub error: ${poll.error}`);
+            process.exit(1);
+        }
+    }
+    if (!ghAccessToken) {
+        console.error('Login timed out.');
+        process.exit(1);
+    }
     const authRes = await fetch(`${API_URL}/auth/github`, {
         method: 'POST',
         headers: { 'Content-Type': 'application/json' },
-        body: JSON.stringify({ code, redirect_uri: redirectUri }),
+        body: JSON.stringify({ access_token: ghAccessToken }),
     });
     if (!authRes.ok) {
         console.error('Error getting API key:', await authRes.text());
@@ -4000,9 +4059,16 @@ async function teamCmd(args) {
             }
             console.log(`Added ${username} to team (${data.role}).`);
             if (data.api_key) {
-                console.log(`\n  API key: ${data.api_key}\n`);
-                console.log(`  Share this with the member. They set:`);
-                console.log(`    export LATINFO_API_KEY=${data.api_key}`);
+                if (args.includes('--login')) {
+                    // Save key locally — login as this user
+                    saveConfig({ api_key: data.api_key, github_username: username, is_team: true, team_role: data.role });
+                    console.log(`Logged in as ${username} (${data.role}).`);
+                }
+                else {
+                    console.log(`\n  API key: ${data.api_key}\n`);
+                    console.log(`  Share this with the member. They set:`);
+                    console.log(`    export LATINFO_API_KEY=${data.api_key}`);
+                }
             }
             try {
                 const { execSync: exec } = await Promise.resolve().then(() => __importStar(require('child_process')));
@@ -4260,7 +4326,7 @@ else {
     // Admin commands (flat)
     switch (command) {
         case 'login':
-            login(tokenFlag).catch(e => { console.error(e); process.exit(1); });
+            login(tokenFlag, args[0]).catch(e => { console.error(e); process.exit(1); });
             break;
         case 'logout':
             logout();

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "latinfo",
-  "version": "0.20.1",
+  "version": "0.20.2",
   "description": "Tax registry & procurement API for Latin America. Query RUC, DNI, NIT, licitaciones from Peru & Colombia. Offline MPHF search, full OCDS data, updated daily.",
   "homepage": "https://latinfo.dev",
   "repository": {