lecodes-cli 0.1.0 → 0.1.1

package/README.md

@@ -16,7 +16,7 @@ npx lecodes-cli <command>
 ## Quick start
 
 ```sh
-lecodes login                       # paste a token, or sign in with email/password
+lecodes login                       # opens the browser to authorize this machine
 lecodes clone <project-uuid> myapp  # download files + types into ./myapp
 cd myapp
 #   …edit files in VS Code (IntelliSense works out of the box)…
@@ -28,7 +28,7 @@ lecodes push -m "Tweak the menu"    # push as a new checkpoint
 
 | Command | What it does |
 | --- | --- |
-| `login` | Store a personal access token in `~/.lecodes/config.json`. `--token <pat>` to use a token created in the web UI, `--api <url>` to set the server. |
+| `login` | Authorize in the browser; stores an access token in `~/.lecodes/config.json`. `--token <pat>` to use a token created in the web UI instead, `--api <url>` for the API origin (default `https://le.codes`), `--web <url>` for the app origin. |
 | `clone <uuid\|url> [dir]` | Download a project's file tree + binary resources, plus `.d.ts` types and a `tsconfig.json` for IntelliSense. `--no-types` to skip types. |
 | `status` | Show added / modified / moved / deleted files vs the last sync. |
 | `pull` | Overwrite local files with the project's current remote state. `--force` to discard local edits. |

package/dist/index.js

@@ -38,16 +38,6 @@ var prompt = (question, fallback) => new Promise((resolve) => {
     resolve(answer.trim() || fallback || "");
   });
 });
-var promptHidden = (question) => new Promise((resolve) => {
-  const rl = createInterface({ input: process.stdin, output: process.stdout, terminal: true });
-  rl.question(`${question}: `, (answer) => {
-    rl.close();
-    process.stdout.write(`
-`);
-    resolve(answer.trim());
-  });
-  rl._writeToOutput = () => {};
-});
 var parseArgs = (argv) => {
   const out = { _: [], flags: {} };
   for (let i = 0;i < argv.length; i++) {
@@ -133,8 +123,6 @@ var apiRequest = async (apiUrl, path, opts = {}) => {
     throw new CliError(errorMessage(parsed, resp.status));
   return parsed;
 };
-var login = (apiUrl, login2, password) => apiRequest(apiUrl, "/account/login", { body: { login: login2, password } });
-var createAccessToken = (apiUrl, jwt, name) => apiRequest(apiUrl, "/account/tokens", { token: jwt, body: { name } });
 var getAccount = (apiUrl, token) => apiRequest(apiUrl, "/account", { token });
 var getProject = (apiUrl, token, uuid) => apiRequest(apiUrl, `/projects/${uuid}`, { token });
 var getCommits = (apiUrl, token, uuid) => apiRequest(apiUrl, `/projects/${uuid}/commits`, { token });
@@ -352,20 +340,90 @@ var clone = async (args) => {
   info(c.dim(`  cd ${dir} — edit, then \`lecodes push -m "your message"\``));
 };
 
-// src/commands/login.ts
+// src/browserAuth.ts
+import { createServer } from "node:http";
+import { spawn } from "node:child_process";
+import { randomBytes } from "node:crypto";
 import { hostname } from "node:os";
-var login2 = async (args) => {
-  const config = loadConfig();
-  const apiUrl = normalizeApiUrl(flagStr(args, "api") ?? await prompt("Server URL", config.apiUrl ?? DEFAULT_API));
-  let token = flagStr(args, "token");
-  if (!token) {
-    const email = flagStr(args, "email") ?? await prompt("Email");
-    const password = await promptHidden("Password");
-    info(c.dim("Authenticating…"));
-    const { accessToken } = await login(apiUrl, email, password);
-    const created = await createAccessToken(apiUrl, accessToken, `lecodes CLI (${hostname()})`);
-    token = created.token;
+var SUCCESS_HTML = `<!doctype html><meta charset="utf-8"><title>lecodes</title>
+<body style="font-family:system-ui,sans-serif;background:#0f1115;color:#e6e6e6;display:grid;place-items:center;height:100vh;margin:0">
+<div style="text-align:center;max-width:420px;padding:32px">
+<h1 style="font-size:20px;margin:0 0 8px">&#10003; Authorized</h1>
+<p style="color:#9aa0aa;margin:0;font-size:14px">You can close this tab and return to your terminal.</p></div>`;
+var errorHtml = (msg) => `<!doctype html><meta charset="utf-8"><title>lecodes</title>
+<body style="font-family:system-ui,sans-serif;background:#0f1115;color:#e6e6e6;display:grid;place-items:center;height:100vh;margin:0">
+<div style="text-align:center;max-width:420px;padding:32px">
+<h1 style="font-size:20px;margin:0 0 8px">Authorization failed</h1>
+<p style="color:#9aa0aa;margin:0;font-size:14px">${msg}</p></div>`;
+var openBrowser = (url) => {
+  let cmd;
+  let args;
+  if (process.platform === "win32") {
+    cmd = "rundll32";
+    args = ["url.dll,FileProtocolHandler", url];
+  } else if (process.platform === "darwin") {
+    cmd = "open";
+    args = [url];
+  } else {
+    cmd = "xdg-open";
+    args = [url];
+  }
+  try {
+    const child = spawn(cmd, args, { stdio: "ignore", detached: true });
+    child.on("error", () => {});
+    child.unref();
+  } catch {}
+};
+var browserLogin = async (webBase, timeoutMs = 5 * 60 * 1000, open = openBrowser) => {
+  const state = randomBytes(16).toString("hex");
+  let resolve2;
+  let reject;
+  const tokenPromise = new Promise((res, rej) => {
+    resolve2 = res;
+    reject = rej;
+  });
+  const server = createServer((req, res) => {
+    const url = new URL(req.url ?? "/", "http://127.0.0.1");
+    if (url.pathname !== "/") {
+      res.writeHead(404);
+      res.end();
+      return;
+    }
+    const token = url.searchParams.get("token");
+    if (!token || url.searchParams.get("state") !== state) {
+      res.writeHead(400, { "content-type": "text/html" });
+      res.end(errorHtml("Invalid or expired authorization."));
+      return;
+    }
+    res.writeHead(200, { "content-type": "text/html" });
+    res.end(SUCCESS_HTML);
+    resolve2(token);
+  });
+  await new Promise((res, rej) => {
+    server.once("error", rej);
+    server.listen(0, "127.0.0.1", res);
+  });
+  const port = server.address().port;
+  const timer = setTimeout(() => reject(new CliError("Timed out waiting for browser authorization.")), timeoutMs);
+  const authUrl = `${webBase}/app/cli-auth?port=${port}&state=${state}&name=${encodeURIComponent(hostname())}`;
+  info("Opening your browser to authorize the CLI…");
+  log(c.dim("  " + authUrl));
+  log(c.dim("  (waiting — finish in the browser, or press Ctrl+C to cancel)"));
+  open(authUrl);
+  try {
+    return await tokenPromise;
+  } finally {
+    clearTimeout(timer);
+    server.close();
   }
+};
+
+// src/commands/login.ts
+var login = async (args) => {
+  const config = loadConfig();
+  const apiUrl = normalizeApiUrl(flagStr(args, "api") ?? config.apiUrl ?? DEFAULT_API);
+  const webBase = normalizeApiUrl(flagStr(args, "web") ?? apiUrl);
+  const token = flagStr(args, "token") ?? await browserLogin(webBase);
   const account = await getAccount(apiUrl, token);
   saveConfig({ apiUrl, token });
   success(`Logged in as ${c.bold(account.email)} on ${apiUrl}`);
@@ -586,9 +644,10 @@ var HELP = `${c.bold("lecodes")} — clone, edit and push LeCodes projects from
 ${c.bold("Usage:")} lecodes <command> [options]
 
 ${c.bold("Commands:")}
-  login                         Store a personal access token (prompts email/password)
-                                  --token <pat>   use an existing token instead
-                                  --api <url>     set the server URL
+  login                         Authorize in the browser and store an access token
+                                  --token <pat>   store a token from the web UI instead
+                                  --api <url>     API origin (default https://le.codes)
+                                  --web <url>     app origin for the browser flow
   clone <uuid|url> [dir]        Download a project's files + types into a new folder
                                   --no-types      skip the .d.ts / tsconfig generation
   status                        Show local changes vs the last sync
@@ -599,7 +658,7 @@ ${c.bold("Commands:")}
                                   --force         push even if the server moved on
 
 Config lives in ~/.lecodes/config.json (override with LECODES_API / LECODES_TOKEN).`;
-var commands = { login: login2, clone, status, pull, push };
+var commands = { login, clone, status, pull, push };
 var main = async () => {
   const argv = process.argv.slice(2);
   const command = argv[0];

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "lecodes-cli",
-  "version": "0.1.0",
+  "version": "0.1.1",
   "description": "Clone, edit and push LeCodes projects from your machine.",
   "type": "module",
   "license": "MIT",