localssl-cli 0.1.6 → 0.1.8

package/README.md

@@ -151,6 +151,7 @@ It never stores CA private keys.
 - localssl-cli first trusts certs in `CurrentUser\\Root` (no admin expected)
 - if needed, it prompts: `Admin access needed for machine-wide trust. Continue? (y/N)`
 - choosing `No` keeps safe mode and skips machine-wide trust
+- even if trust-store writes fail, localssl continues project cert setup (non-blocking)
 - rerunning `localssl-cli init` repairs trust if CA already exists
 
 ---

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "localssl-cli",
-  "version": "0.1.6",
+  "version": "0.1.8",
   "description": "One-command local HTTPS setup for teams",
   "type": "commonjs",
   "main": "src/index.js",

package/src/bootstrap.js

@@ -138,19 +138,37 @@ async function initMachine({ quiet = false } = {}) {
 
   const hasCA = await fs.pathExists(LOCALSSL_CA_PUBLIC);
   if (hasCA) {
-    let repairSummary = 'already configured';
+    let systemResult = 'system trust skipped';
+    let nodeResult = 'NODE_EXTRA_CA_CERTS skipped';
+    let firefoxResult = { trusted: false };
+    let chromiumResult = { trusted: false };
+
     try {
-      const systemResult = await trustSystem(LOCALSSL_CA_PUBLIC);
-      const firefoxResult = await trustInFirefox(LOCALSSL_CA_PUBLIC);
-      const chromiumResult = await trustInChromium(LOCALSSL_CA_PUBLIC);
-      const nodeResult = await configureNodeExtraCACerts();
-      repairSummary = `${systemResult}; ${nodeResult}; Firefox ${firefoxResult.trusted ? 'ok' : 'skipped'}; Chrome/Edge ${chromiumResult.trusted ? 'ok' : 'skipped'}`;
+      systemResult = await trustSystem(LOCALSSL_CA_PUBLIC);
     } catch (error) {
-      if (!quiet) {
-        warn(`Trust repair skipped: ${error.message}`);
-      }
+      if (!quiet) warn(`System trust repair skipped: ${error.message}`);
+    }
+
+    try {
+      firefoxResult = await trustInFirefox(LOCALSSL_CA_PUBLIC);
+    } catch {
+      firefoxResult = { trusted: false };
+    }
+
+    try {
+      chromiumResult = await trustInChromium(LOCALSSL_CA_PUBLIC);
+    } catch {
+      chromiumResult = { trusted: false };
     }
 
+    try {
+      nodeResult = await configureNodeExtraCACerts();
+    } catch (error) {
+      if (!quiet) warn(`NODE_EXTRA_CA_CERTS repair skipped: ${error.message}`);
+    }
+
+    const repairSummary = `${systemResult}; ${nodeResult}; Firefox ${firefoxResult.trusted ? 'ok' : 'skipped'}; Chrome/Edge ${chromiumResult.trusted ? 'ok' : 'skipped'}`;
+
     if (!quiet) {
       step(1, 1, 'Machine CA setup', 'skip', `(${repairSummary})`);
     }
@@ -167,10 +185,34 @@ async function initMachine({ quiet = false } = {}) {
     }
     warn('Java trust store update skipped (no admin access). System/browser trust still configured.');
   }
-  const systemResult = await trustSystem(LOCALSSL_CA_PUBLIC);
-  const firefoxResult = await trustInFirefox(LOCALSSL_CA_PUBLIC);
-  const chromiumResult = await trustInChromium(LOCALSSL_CA_PUBLIC);
-  const nodeResult = await configureNodeExtraCACerts();
+  let systemResult = 'system trust skipped';
+  let firefoxResult = { trusted: false, reason: 'not attempted' };
+  let chromiumResult = { trusted: false, reason: 'not attempted' };
+  let nodeResult = 'NODE_EXTRA_CA_CERTS skipped';
+
+  try {
+    systemResult = await trustSystem(LOCALSSL_CA_PUBLIC);
+  } catch (error) {
+    warn(`System trust skipped: ${error.message}`);
+  }
+
+  try {
+    firefoxResult = await trustInFirefox(LOCALSSL_CA_PUBLIC);
+  } catch (error) {
+    firefoxResult = { trusted: false, reason: error.message };
+  }
+
+  try {
+    chromiumResult = await trustInChromium(LOCALSSL_CA_PUBLIC);
+  } catch (error) {
+    chromiumResult = { trusted: false, reason: error.message };
+  }
+
+  try {
+    nodeResult = await configureNodeExtraCACerts();
+  } catch (error) {
+    warn(`NODE_EXTRA_CA_CERTS skipped: ${error.message}`);
+  }
 
   if (!quiet) {
     const firefoxText = firefoxResult.trusted ? `+ Firefox (${firefoxResult.reason})` : `+ Firefox skipped (${firefoxResult.reason})`;
@@ -178,6 +220,10 @@ async function initMachine({ quiet = false } = {}) {
     step(1, 1, 'Installing local CA', 'ok', `(${systemResult} ${firefoxText} ${chromiumText}; ${nodeResult})`);
   }
 
+  if (/unavailable|skipped/i.test(systemResult)) {
+    warn('Windows trust was not installed. You can still run HTTPS, but browser may warn until trust is added.');
+  }
+
   if (!firefoxResult.trusted) {
     warn(`Firefox trust skipped: ${firefoxResult.reason}`);
   }

package/src/trust/windows.js

@@ -18,7 +18,7 @@ async function trustMachineWithElevation(certPath) {
 }
 
 function trustCertificate(certPath) {
-  return new Promise(async (resolve, reject) => {
+  return new Promise(async (resolve) => {
     const userViaCertutil = await run('certutil', ['-user', '-addstore', '-f', 'ROOT', certPath]);
     if (userViaCertutil) {
       resolve('Windows CurrentUser Root');
@@ -43,7 +43,7 @@ function trustCertificate(certPath) {
       return;
     }
 
-    reject(new Error('Could not install CA in Windows trust stores. Safe mode preserved (no insecure fallback used).'));
+    resolve('Windows trust unavailable (no changes made)');
   });
 }
 

package/src/utils.js

@@ -4,8 +4,8 @@ const chalk = require('chalk');
 
 const HOME_DIR = os.homedir();
 const LOCALSSL_HOME = path.join(HOME_DIR, '.localssl');
-const LOCALSSL_CA_PUBLIC = path.join(LOCALSSL_HOME, 'ca.crt');
-const LOCALSSL_CA_KEY = path.join(LOCALSSL_HOME, 'ca.key');
+const LOCALSSL_CA_PUBLIC = path.join(LOCALSSL_HOME, 'rootCA.pem');
+const LOCALSSL_CA_KEY = path.join(LOCALSSL_HOME, 'rootCA-key.pem');
 const PROJECT_DIR = process.cwd();
 const PROJECT_LOCALSSL_DIR = path.join(PROJECT_DIR, '.localssl');
 const PROJECT_CERT = path.join(PROJECT_LOCALSSL_DIR, 'cert.pem');