m365-cli 0.1.0

package/bin/m365.js

@@ -0,0 +1,489 @@
+#!/usr/bin/env node
+
+import { Command } from 'commander';
+import { readFileSync } from 'fs';
+import { fileURLToPath } from 'url';
+import { dirname, join } from 'path';
+import { login, logout } from '../src/auth/token-manager.js';
+import mailCommands from '../src/commands/mail.js';
+import calendarCommands from '../src/commands/calendar.js';
+import onedriveCommands from '../src/commands/onedrive.js';
+import sharepointCommands from '../src/commands/sharepoint.js';
+import { handleError } from '../src/utils/error.js';
+
+const __filename = fileURLToPath(import.meta.url);
+const __dirname = dirname(__filename);
+
+// Load package.json for version
+const packageJson = JSON.parse(
+  readFileSync(join(__dirname, '../package.json'), 'utf-8')
+);
+
+const program = new Command();
+
+program
+  .name('m365')
+  .description('Microsoft 365 CLI - Manage Mail, Calendar, and OneDrive')
+  .version(packageJson.version);
+
+// Login command
+program
+  .command('login')
+  .description('Authenticate with Microsoft 365')
+  .action(async () => {
+    try {
+      await login();
+    } catch (error) {
+      handleError(error);
+    }
+  });
+
+// Logout command
+program
+  .command('logout')
+  .description('Clear stored credentials')
+  .action(async () => {
+    try {
+      await logout();
+    } catch (error) {
+      handleError(error);
+    }
+  });
+
+// Mail commands
+const mailCommand = program
+  .command('mail')
+  .description('Manage emails');
+
+mailCommand
+  .command('list')
+  .description('List emails')
+  .option('-t, --top <number>', 'Number of emails to list', '10')
+  .option('-f, --folder <name>', 'Folder name (inbox, sent, drafts)', 'inbox')
+  .option('--json', 'Output as JSON')
+  .action(async (options) => {
+    await mailCommands.list({
+      top: parseInt(options.top),
+      folder: options.folder,
+      json: options.json,
+    });
+  });
+
+mailCommand
+  .command('read')
+  .description('Read email by ID')
+  .argument('<id>', 'Email ID')
+  .option('--force', 'Skip whitelist check and show full content')
+  .option('--json', 'Output as JSON')
+  .action(async (id, options) => {
+    await mailCommands.read(id, {
+      force: options.force,
+      json: options.json,
+    });
+  });
+
+mailCommand
+  .command('send')
+  .description('Send an email')
+  .argument('<to>', 'Recipient email address(es) (comma-separated)')
+  .argument('<subject>', 'Email subject')
+  .argument('<body>', 'Email body (HTML supported)')
+  .option('-a, --attach <files...>', 'Attach files')
+  .option('--cc <emails>', 'CC recipients (comma-separated)')
+  .option('--bcc <emails>', 'BCC recipients (comma-separated)')
+  .option('--json', 'Output as JSON')
+  .action(async (to, subject, body, options) => {
+    await mailCommands.send(to, subject, body, {
+      attach: options.attach || [],
+      cc: options.cc,
+      bcc: options.bcc,
+      json: options.json,
+    });
+  });
+
+mailCommand
+  .command('search')
+  .description('Search emails')
+  .argument('<query>', 'Search query')
+  .option('-t, --top <number>', 'Number of results', '10')
+  .option('--json', 'Output as JSON')
+  .action(async (query, options) => {
+    await mailCommands.search(query, {
+      top: parseInt(options.top),
+      json: options.json,
+    });
+  });
+
+mailCommand
+  .command('attachments')
+  .description('List email attachments')
+  .argument('<id>', 'Email ID')
+  .option('--json', 'Output as JSON')
+  .action(async (id, options) => {
+    await mailCommands.attachments(id, {
+      json: options.json,
+    });
+  });
+
+mailCommand
+  .command('download-attachment')
+  .description('Download email attachment')
+  .argument('<message-id>', 'Email ID')
+  .argument('<attachment-id>', 'Attachment ID')
+  .argument('[local-path]', 'Local file path (default: attachment name)')
+  .option('--json', 'Output as JSON')
+  .action(async (messageId, attachmentId, localPath, options) => {
+    await mailCommands.downloadAttachment(messageId, attachmentId, localPath, {
+      json: options.json,
+    });
+  });
+
+mailCommand
+  .command('trust')
+  .description('Add email or domain to whitelist')
+  .argument('<email>', 'Email address or domain (e.g., user@example.com or @example.com)')
+  .option('--json', 'Output as JSON')
+  .action(async (email, options) => {
+    await mailCommands.trust(email, {
+      json: options.json,
+    });
+  });
+
+mailCommand
+  .command('untrust')
+  .description('Remove email or domain from whitelist')
+  .argument('<email>', 'Email address or domain to remove')
+  .option('--json', 'Output as JSON')
+  .action(async (email, options) => {
+    await mailCommands.untrust(email, {
+      json: options.json,
+    });
+  });
+
+mailCommand
+  .command('trusted')
+  .description('List trusted senders whitelist')
+  .option('--json', 'Output as JSON')
+  .action(async (options) => {
+    await mailCommands.trusted({
+      json: options.json,
+    });
+  });
+
+// Calendar commands
+const calendarCommand = program
+  .command('calendar')
+  .alias('cal')
+  .description('Manage calendar events');
+
+calendarCommand
+  .command('list')
+  .description('List calendar events')
+  .option('-d, --days <number>', 'Number of days to look ahead', '7')
+  .option('-t, --top <number>', 'Maximum number of events', '50')
+  .option('--json', 'Output as JSON')
+  .action(async (options) => {
+    await calendarCommands.list({
+      days: parseInt(options.days),
+      top: parseInt(options.top),
+      json: options.json,
+    });
+  });
+
+calendarCommand
+  .command('get')
+  .description('Get calendar event by ID')
+  .argument('<id>', 'Event ID')
+  .option('--json', 'Output as JSON')
+  .action(async (id, options) => {
+    await calendarCommands.get(id, {
+      json: options.json,
+    });
+  });
+
+calendarCommand
+  .command('create')
+  .description('Create calendar event')
+  .argument('<title>', 'Event title')
+  .requiredOption('-s, --start <datetime>', 'Start date/time (YYYY-MM-DDTHH:MM:SS or YYYY-MM-DD)')
+  .requiredOption('-e, --end <datetime>', 'End date/time (YYYY-MM-DDTHH:MM:SS or YYYY-MM-DD)')
+  .option('-l, --location <location>', 'Event location')
+  .option('-b, --body <body>', 'Event description')
+  .option('-a, --attendees <emails>', 'Attendee emails (comma-separated)', (val) => val.split(','))
+  .option('--allday', 'All-day event')
+  .option('--json', 'Output as JSON')
+  .action(async (title, options) => {
+    await calendarCommands.create(title, {
+      start: options.start,
+      end: options.end,
+      location: options.location,
+      body: options.body,
+      attendees: options.attendees || [],
+      allday: options.allday || false,
+      json: options.json,
+    });
+  });
+
+calendarCommand
+  .command('update')
+  .description('Update calendar event')
+  .argument('<id>', 'Event ID')
+  .option('-t, --title <title>', 'Event title')
+  .option('-s, --start <datetime>', 'Start date/time (YYYY-MM-DDTHH:MM:SS)')
+  .option('-e, --end <datetime>', 'End date/time (YYYY-MM-DDTHH:MM:SS)')
+  .option('-l, --location <location>', 'Event location')
+  .option('-b, --body <body>', 'Event description')
+  .option('--json', 'Output as JSON')
+  .action(async (id, options) => {
+    await calendarCommands.update(id, {
+      title: options.title,
+      start: options.start,
+      end: options.end,
+      location: options.location,
+      body: options.body,
+      json: options.json,
+    });
+  });
+
+calendarCommand
+  .command('delete')
+  .description('Delete calendar event')
+  .argument('<id>', 'Event ID')
+  .option('--json', 'Output as JSON')
+  .action(async (id, options) => {
+    await calendarCommands.delete(id, {
+      json: options.json,
+    });
+  });
+
+// OneDrive commands
+const onedriveCommand = program
+  .command('onedrive')
+  .alias('od')
+  .description('Manage OneDrive files and folders');
+
+onedriveCommand
+  .command('ls')
+  .description('List files and folders')
+  .argument('[path]', 'Path to list (default: root)', '')
+  .option('-t, --top <number>', 'Maximum number of items', '100')
+  .option('--json', 'Output as JSON')
+  .action(async (path, options) => {
+    await onedriveCommands.ls(path, {
+      top: parseInt(options.top),
+      json: options.json,
+    });
+  });
+
+onedriveCommand
+  .command('get')
+  .description('Get file/folder metadata')
+  .argument('<path>', 'Path to file or folder')
+  .option('--json', 'Output as JSON')
+  .action(async (path, options) => {
+    await onedriveCommands.get(path, {
+      json: options.json,
+    });
+  });
+
+onedriveCommand
+  .command('download')
+  .description('Download file from OneDrive')
+  .argument('<remote-path>', 'Remote file path')
+  .argument('[local-path]', 'Local destination path (default: current directory)')
+  .option('--json', 'Output as JSON')
+  .action(async (remotePath, localPath, options) => {
+    await onedriveCommands.download(remotePath, localPath, {
+      json: options.json,
+    });
+  });
+
+onedriveCommand
+  .command('upload')
+  .description('Upload file to OneDrive')
+  .argument('<local-path>', 'Local file path')
+  .argument('[remote-path]', 'Remote destination path (default: root with same name)')
+  .option('--json', 'Output as JSON')
+  .action(async (localPath, remotePath, options) => {
+    await onedriveCommands.upload(localPath, remotePath, {
+      json: options.json,
+    });
+  });
+
+onedriveCommand
+  .command('search')
+  .description('Search files in OneDrive')
+  .argument('<query>', 'Search query')
+  .option('-t, --top <number>', 'Maximum number of results', '50')
+  .option('--json', 'Output as JSON')
+  .action(async (query, options) => {
+    await onedriveCommands.search(query, {
+      top: parseInt(options.top),
+      json: options.json,
+    });
+  });
+
+onedriveCommand
+  .command('share')
+  .description('Create sharing link')
+  .argument('<path>', 'Path to file or folder')
+  .option('--type <type>', 'Link type: view or edit', 'view')
+  .option('--scope <scope>', 'Share scope: organization, anonymous, or users', 'organization')
+  .option('--json', 'Output as JSON')
+  .action(async (path, options) => {
+    await onedriveCommands.share(path, {
+      type: options.type,
+      scope: options.scope,
+      json: options.json,
+    });
+  });
+
+onedriveCommand
+  .command('invite')
+  .description('Invite users to access file (external sharing)')
+  .argument('<path>', 'Path to file')
+  .argument('<email>', 'Email address(es), comma-separated')
+  .option('--role <role>', 'Permission: read or write', 'read')
+  .option('--message <msg>', 'Invitation message')
+  .option('--no-notify', 'Do not send email notification')
+  .option('--json', 'Output as JSON')
+  .action(async (path, email, options) => {
+    await onedriveCommands.invite(path, email, {
+      role: options.role,
+      message: options.message,
+      notify: options.notify,
+      json: options.json,
+    });
+  });
+
+onedriveCommand
+  .command('mkdir')
+  .description('Create folder')
+  .argument('<path>', 'Folder path')
+  .option('--json', 'Output as JSON')
+  .action(async (path, options) => {
+    await onedriveCommands.mkdir(path, {
+      json: options.json,
+    });
+  });
+
+onedriveCommand
+  .command('rm')
+  .description('Delete file or folder')
+  .argument('<path>', 'Path to file or folder')
+  .option('--force', 'Skip confirmation')
+  .option('--json', 'Output as JSON')
+  .action(async (path, options) => {
+    await onedriveCommands.rm(path, {
+      force: options.force,
+      json: options.json,
+    });
+  });
+
+// SharePoint commands
+const sharepointCommand = program
+  .command('sharepoint')
+  .alias('sp')
+  .description('Manage SharePoint sites and content');
+
+sharepointCommand
+  .command('sites')
+  .description('List accessible SharePoint sites')
+  .option('--search <query>', 'Search for sites')
+  .option('-t, --top <number>', 'Maximum number of sites', '50')
+  .option('--json', 'Output as JSON')
+  .action(async (options) => {
+    await sharepointCommands.sites({
+      search: options.search,
+      top: parseInt(options.top),
+      json: options.json,
+    });
+  });
+
+sharepointCommand
+  .command('lists')
+  .description('List site lists and document libraries')
+  .argument('<site>', 'Site URL (hostname:/path) or site ID')
+  .option('-t, --top <number>', 'Maximum number of lists', '100')
+  .option('--json', 'Output as JSON')
+  .action(async (site, options) => {
+    await sharepointCommands.lists(site, {
+      top: parseInt(options.top),
+      json: options.json,
+    });
+  });
+
+sharepointCommand
+  .command('items')
+  .description('List items in a SharePoint list')
+  .argument('<site>', 'Site URL (hostname:/path) or site ID')
+  .argument('<list>', 'List ID')
+  .option('-t, --top <number>', 'Maximum number of items', '100')
+  .option('--json', 'Output as JSON')
+  .action(async (site, list, options) => {
+    await sharepointCommands.items(site, list, {
+      top: parseInt(options.top),
+      json: options.json,
+    });
+  });
+
+sharepointCommand
+  .command('files')
+  .description('List files in site document library')
+  .argument('<site>', 'Site URL (hostname:/path) or site ID')
+  .argument('[path]', 'Path in document library (default: root)', '')
+  .option('-t, --top <number>', 'Maximum number of files', '100')
+  .option('--json', 'Output as JSON')
+  .action(async (site, path, options) => {
+    await sharepointCommands.files(site, path, {
+      top: parseInt(options.top),
+      json: options.json,
+    });
+  });
+
+sharepointCommand
+  .command('download')
+  .description('Download file from SharePoint')
+  .argument('<site>', 'Site URL (hostname:/path) or site ID')
+  .argument('<file-path>', 'Remote file path')
+  .argument('[local-path]', 'Local destination path (default: current directory)')
+  .option('--json', 'Output as JSON')
+  .action(async (site, filePath, localPath, options) => {
+    await sharepointCommands.download(site, filePath, localPath, {
+      json: options.json,
+    });
+  });
+
+sharepointCommand
+  .command('upload')
+  .description('Upload file to SharePoint')
+  .argument('<site>', 'Site URL (hostname:/path) or site ID')
+  .argument('<local-path>', 'Local file path')
+  .argument('[remote-path]', 'Remote destination path (default: root with same name)')
+  .option('--json', 'Output as JSON')
+  .action(async (site, localPath, remotePath, options) => {
+    await sharepointCommands.upload(site, localPath, remotePath, {
+      json: options.json,
+    });
+  });
+
+sharepointCommand
+  .command('search')
+  .description('Search SharePoint content')
+  .argument('<query>', 'Search query')
+  .option('-t, --top <number>', 'Maximum number of results', '50')
+  .option('--json', 'Output as JSON')
+  .action(async (query, options) => {
+    await sharepointCommands.search(query, {
+      top: parseInt(options.top),
+      json: options.json,
+    });
+  });
+
+// Parse arguments
+program.parse(process.argv);
+
+// Show help if no arguments
+if (!process.argv.slice(2).length) {
+  program.outputHelp();
+}

package/config/default.json

@@ -0,0 +1,18 @@
+{
+  "tenantId": "5b4c4b46-4279-4f19-9e5d-84ea285f9b9c",
+  "clientId": "091b3d7b-e217-4410-868c-01c3ee6189b6",
+  "scopes": [
+    "https://graph.microsoft.com/Mail.ReadWrite",
+    "https://graph.microsoft.com/Mail.Send",
+    "https://graph.microsoft.com/Calendars.ReadWrite",
+    "https://graph.microsoft.com/Files.ReadWrite.All",
+    "https://graph.microsoft.com/Sites.ReadWrite.All",
+    "offline_access"
+  ],
+  "graphApiUrl": "https://graph.microsoft.com/v1.0",
+  "authUrl": "https://login.microsoftonline.com",
+  "credsPath": "~/.m365-cli/credentials.json",
+  "deviceCodePollInterval": 5,
+  "deviceCodeTimeout": 900,
+  "tokenRefreshBuffer": 60
+}

package/package.json

@@ -0,0 +1,36 @@
+{
+  "name": "m365-cli",
+  "version": "0.1.0",
+  "description": "Microsoft 365 CLI - Manage Mail, Calendar, and OneDrive from the command line",
+  "type": "module",
+  "files": ["bin", "src", "config", "README.md"],
+  "main": "src/index.js",
+  "bin": {
+    "m365": "./bin/m365.js"
+  },
+  "scripts": {
+    "test": "echo \"Error: no test specified\" && exit 1",
+    "link": "npm link",
+    "unlink": "npm unlink -g m365-cli"
+  },
+  "keywords": [
+    "microsoft365",
+    "office365",
+    "graph-api",
+    "cli",
+    "email",
+    "calendar",
+    "onedrive"
+  ],
+  "author": "",
+  "repository": { "type": "git", "url": "" },
+  "bugs": { "url": "" },
+  "homepage": "",
+  "license": "MIT",
+  "engines": {
+    "node": ">=18.0.0"
+  },
+  "dependencies": {
+    "commander": "^12.0.0"
+  }
+}

package/src/auth/device-flow.js

@@ -0,0 +1,154 @@
+import config from '../utils/config.js';
+import { AuthError } from '../utils/error.js';
+
+/**
+ * Device Code Flow authentication
+ * https://learn.microsoft.com/en-us/azure/active-directory/develop/v2-oauth2-device-code
+ */
+
+/**
+ * Request device code from Microsoft
+ */
+export async function requestDeviceCode() {
+  const tenantId = config.get('tenantId');
+  const clientId = config.get('clientId');
+  const scopes = config.get('scopes').join(' ');
+  const authUrl = config.get('authUrl');
+  
+  const url = `${authUrl}/${tenantId}/oauth2/v2.0/devicecode`;
+  
+  const response = await fetch(url, {
+    method: 'POST',
+    headers: {
+      'Content-Type': 'application/x-www-form-urlencoded',
+    },
+    body: new URLSearchParams({
+      client_id: clientId,
+      scope: scopes,
+    }),
+  });
+  
+  if (!response.ok) {
+    throw new AuthError('Failed to request device code', await response.json());
+  }
+  
+  const data = await response.json();
+  
+  return {
+    deviceCode: data.device_code,
+    userCode: data.user_code,
+    verificationUri: data.verification_uri,
+    expiresIn: data.expires_in || 900,
+    interval: data.interval || 5,
+    message: data.message,
+  };
+}
+
+/**
+ * Poll for access token
+ */
+export async function pollForToken(deviceCode) {
+  const tenantId = config.get('tenantId');
+  const clientId = config.get('clientId');
+  const authUrl = config.get('authUrl');
+  
+  const url = `${authUrl}/${tenantId}/oauth2/v2.0/token`;
+  
+  const response = await fetch(url, {
+    method: 'POST',
+    headers: {
+      'Content-Type': 'application/x-www-form-urlencoded',
+    },
+    body: new URLSearchParams({
+      client_id: clientId,
+      grant_type: 'urn:ietf:params:oauth:grant-type:device_code',
+      device_code: deviceCode,
+    }),
+  });
+  
+  const data = await response.json();
+  
+  // Check for errors
+  if (data.error) {
+    if (data.error === 'authorization_pending') {
+      return { pending: true };
+    }
+    
+    if (data.error === 'slow_down') {
+      return { slowDown: true };
+    }
+    
+    throw new AuthError(
+      data.error_description || data.error,
+      { error: data.error }
+    );
+  }
+  
+  // Success - return token data
+  return {
+    success: true,
+    accessToken: data.access_token,
+    refreshToken: data.refresh_token,
+    expiresIn: data.expires_in || 3600,
+  };
+}
+
+/**
+ * Full device code flow
+ */
+export async function deviceCodeFlow() {
+  // Step 1: Request device code
+  console.log('🔐 Starting authentication...\n');
+  const deviceCodeData = await requestDeviceCode();
+  
+  // Step 2: Show user instructions
+  console.log('━'.repeat(60));
+  console.log('📱 Please authenticate:');
+  console.log('');
+  console.log(`   1. Open: ${deviceCodeData.verificationUri}`);
+  console.log(`   2. Enter code: ${deviceCodeData.userCode}`);
+  console.log('');
+  console.log('━'.repeat(60));
+  console.log('\n⏳ Waiting for authentication...\n');
+  
+  // Step 3: Poll for token
+  const startTime = Date.now();
+  const expiresAt = startTime + deviceCodeData.expiresIn * 1000;
+  let interval = deviceCodeData.interval * 1000;
+  
+  while (Date.now() < expiresAt) {
+    await new Promise(resolve => setTimeout(resolve, interval));
+    
+    try {
+      const result = await pollForToken(deviceCodeData.deviceCode);
+      
+      if (result.success) {
+        return {
+          accessToken: result.accessToken,
+          refreshToken: result.refreshToken,
+          expiresIn: result.expiresIn,
+        };
+      }
+      
+      if (result.slowDown) {
+        // Increase polling interval
+        interval += 1000;
+      }
+      
+      // Keep waiting if pending
+      if (result.pending) {
+        continue;
+      }
+    } catch (error) {
+      throw error;
+    }
+  }
+  
+  throw new AuthError('Authentication timed out. Please try again.');
+}
+
+export default {
+  requestDeviceCode,
+  pollForToken,
+  deviceCodeFlow,
+};