mdtolink 0.1.5 → 0.1.7

package/dist/{api-D4MGz1n7.mjs → api-CPJjLxqz.mjs}

@@ -1,5 +1,5 @@
 #!/usr/bin/env node
-import { n as SERVER_URL } from "./config-B5jPCcGo.mjs";
+import { n as SERVER_URL } from "./config-cFx42NU7.mjs";
 
 //#region ../../node_modules/.pnpm/zod@4.3.6/node_modules/zod/v4/core/core.js
 /** A special constant with type `never` */
@@ -1297,7 +1297,7 @@ const $ZodBase64 = /* @__PURE__ */ $constructor("$ZodBase64", (inst, def) => {
 });
 function isValidBase64URL(data) {
 	if (!base64url.test(data)) return false;
-	const base64$1 = data.replace(/[-_]/g, (c$5) => c$5 === "-" ? "+" : "/");
+	const base64$1 = data.replace(/[-_]/g, (c$6) => c$6 === "-" ? "+" : "/");
 	return isValidBase64(base64$1.padEnd(Math.ceil(base64$1.length / 4) * 4, "="));
 }
 const $ZodBase64URL = /* @__PURE__ */ $constructor("$ZodBase64URL", (inst, def) => {
@@ -7859,8 +7859,8 @@ const PaginationQuerySchema = object({
 
 //#endregion
 //#region ../../packages/contracts/src/contracts/billing.contract.ts
-const c$4 = initContract();
-const billingContract = c$4.router({
+const c$5 = initContract();
+const billingContract = c$5.router({
 	getSubscription: {
 		method: "GET",
 		path: "/billing/subscription",
@@ -7940,13 +7940,13 @@ const DocumentListItemSchema = DocumentResponseSchema.omit({ content: true }).de
 const CreateDocumentRequestSchema = object({
 	content: string().min(1).max(1e6).describe("Markdown content (max 1MB)"),
 	title: string().max(200).optional().describe("Optional title (max 200 chars)"),
-	slug: string().min(1).max(100).regex(/^[a-z0-9-]+$/).optional().describe("Custom URL slug (Pro+ only, lowercase alphanumeric and hyphens)"),
+	slug: string().min(1).max(100).regex(/^[a-z0-9-]+$/).optional().describe("Custom filename (Pro+ only, e.g., meeting-notes)"),
 	isPublic: boolean().default(true).describe("Whether the document is publicly accessible")
 }).describe("Request body for creating a new document");
 const UpdateDocumentRequestSchema = object({
 	content: string().min(1).max(1e6).optional().describe("Updated markdown content"),
 	title: string().max(200).optional().describe("Updated title"),
-	slug: string().min(1).max(100).regex(/^[a-z0-9-]+$/).optional().describe("Updated URL slug (Pro+ only)"),
+	slug: string().min(1).max(100).regex(/^[a-z0-9-]+$/).optional().describe("Updated filename (Pro+ only)"),
 	isPublic: boolean().optional().describe("Updated visibility")
 }).describe("Request body for updating a document (all fields optional)");
 const PublicDocumentResponseSchema = object({
@@ -7964,8 +7964,8 @@ const UsernameDocumentParamsSchema = object({
 
 //#endregion
 //#region ../../packages/contracts/src/contracts/document.contract.ts
-const c$3 = initContract();
-const documentContract = c$3.router({
+const c$4 = initContract();
+const documentContract = c$4.router({
 	list: {
 		method: "GET",
 		path: "/documents",
@@ -7993,7 +7993,7 @@ const documentContract = c$3.router({
 			403: ErrorResponseSchema
 		},
 		summary: "Create document",
-		description: "Publishes a new markdown document to a shareable URL. Free tier users get nanoid-based URLs with 7-day expiry. Pro+ users can set custom slugs for user-scoped URLs (/@username/slug). Returns 403 if the user's plan document limit is reached."
+		description: "Publishes a new markdown document to a shareable URL. Free tier users get nanoid-based URLs with 7-day expiry. Pro+ users can set custom filenames for user-scoped URLs (/@username/slug). Returns 403 if the user's plan document limit is reached."
 	},
 	get: {
 		method: "GET",
@@ -8019,7 +8019,7 @@ const documentContract = c$3.router({
 			404: ErrorResponseSchema
 		},
 		summary: "Update document",
-		description: "Updates a document's content, title, slug, or visibility. All fields are optional — only provided fields are updated. Custom slugs require Pro+ plan. Returns 400 if the slug is already taken."
+		description: "Updates a document's content, title, slug, or visibility. All fields are optional — only provided fields are updated. Custom filenames require Pro+ plan. Returns 400 if the slug is already taken."
 	},
 	delete: {
 		method: "DELETE",
@@ -8035,7 +8035,7 @@ const documentContract = c$3.router({
 		description: "Soft-deletes a document by setting its status to 'deleted'. The document will no longer be accessible via its public URL. Requires authentication."
 	}
 }, { pathPrefix: "/api" });
-const publicDocumentContract = c$3.router({
+const publicDocumentContract = c$4.router({
 	getBySlug: {
 		method: "GET",
 		path: "/d/:slug",
@@ -8058,10 +8058,84 @@ const publicDocumentContract = c$3.router({
 			410: ErrorResponseSchema
 		},
 		summary: "Get document by username and slug",
-		description: "Retrieves a publicly shared document via a user-scoped URL (e.g. /@alice/my-doc). Available for Pro+ users who set custom slugs. Returns 410 if the document has expired. No authentication required."
+		description: "Retrieves a publicly shared document via a user-scoped URL (e.g. /@alice/my-doc). Available for Pro+ users who set custom filenames. Returns 410 if the document has expired. No authentication required."
 	}
 }, { pathPrefix: "" });
 
+//#endregion
+//#region ../../packages/contracts/src/schemas/domain.ts
+const DomainResponseSchema = object({
+	id: string().describe("Domain ID"),
+	domain: string().describe("Domain name"),
+	userId: string().describe("Owner user ID"),
+	verified: boolean().describe("Whether domain DNS has been verified"),
+	verifiedAt: string().datetime().nullable().describe("Verification timestamp"),
+	cnameTarget: string().describe("CNAME target the domain should point to"),
+	dnsProvider: string().nullable().describe("Detected DNS provider name"),
+	dnsManagementUrl: string().nullable().describe("Direct link to DNS management page"),
+	createdAt: string().datetime().describe("Creation timestamp")
+}).describe("Custom domain with verification status");
+const CreateDomainRequestSchema = object({ domain: string().min(1).max(253).regex(/^(?:[a-z0-9](?:[a-z0-9-]{0,61}[a-z0-9])?\.)+[a-z]{2,}$/, "Must be a valid domain name (e.g., docs.example.com)").describe("Domain name to add") }).describe("Request body for adding a custom domain");
+const VerifyDomainResponseSchema = object({
+	verified: boolean().describe("Whether verification succeeded"),
+	message: string().describe("Verification result message")
+}).describe("Domain verification result");
+
+//#endregion
+//#region ../../packages/contracts/src/contracts/domain.contract.ts
+const c$3 = initContract();
+const domainContract = c$3.router({
+	list: {
+		method: "GET",
+		path: "/domains",
+		responses: {
+			200: array(DomainResponseSchema),
+			401: ErrorResponseSchema
+		},
+		summary: "List custom domains",
+		description: "Returns all custom domains for the authenticated user."
+	},
+	create: {
+		method: "POST",
+		path: "/domains",
+		body: CreateDomainRequestSchema,
+		responses: {
+			201: DomainResponseSchema,
+			400: ErrorResponseSchema,
+			401: ErrorResponseSchema,
+			403: ErrorResponseSchema
+		},
+		summary: "Add custom domain",
+		description: "Adds a custom domain for the authenticated user. Requires Publisher plan. Returns DNS verification instructions. The domain must be globally unique."
+	},
+	verify: {
+		method: "POST",
+		path: "/domains/:id/verify",
+		pathParams: object({ id: string().describe("Domain ID") }),
+		body: null,
+		responses: {
+			200: VerifyDomainResponseSchema,
+			401: ErrorResponseSchema,
+			404: ErrorResponseSchema
+		},
+		summary: "Verify domain DNS",
+		description: "Checks DNS TXT record for the domain to verify ownership. Looks for a TXT record at _mdtolink-verification.{domain} matching the verification token."
+	},
+	delete: {
+		method: "DELETE",
+		path: "/domains/:id",
+		pathParams: object({ id: string().describe("Domain ID") }),
+		body: null,
+		responses: {
+			200: SuccessResponseSchema,
+			401: ErrorResponseSchema,
+			404: ErrorResponseSchema
+		},
+		summary: "Remove custom domain",
+		description: "Removes a custom domain from the authenticated user's account."
+	}
+}, { pathPrefix: "/api" });
+
 //#endregion
 //#region ../../packages/contracts/src/contracts/health.contract.ts
 const c$2 = initContract();
@@ -8151,6 +8225,7 @@ const c = initContract();
 const apiContract = c.router({
 	billing: billingContract,
 	documents: documentContract,
+	domains: domainContract,
 	health: healthContract,
 	users: userContract
 });

package/dist/{config-B5jPCcGo.mjs → config-cFx42NU7.mjs}

@@ -7,19 +7,36 @@ import { homedir } from "node:os";
 const CONFIG_DIR = join(homedir(), ".config", "mdtolink");
 const TOKEN_PATH = join(CONFIG_DIR, "token.json");
 const DOCUMENTS_PATH = join(CONFIG_DIR, "documents.json");
+const DEFAULTS_PATH = join(CONFIG_DIR, "defaults.json");
 const SERVER_URL = process.env.MDTOLINK_SERVER_URL || "https://api.mdtolink.com";
 const APP_URL = process.env.MDTOLINK_APP_URL || "https://app.mdtolink.com";
-async function getToken() {
+async function readTokenData() {
 	try {
 		const raw = await readFile(TOKEN_PATH, "utf-8");
-		return JSON.parse(raw).token ?? null;
+		return JSON.parse(raw);
 	} catch {
-		return null;
+		return {};
 	}
 }
-async function storeToken(token) {
+async function writeTokenData(data) {
 	await mkdir(CONFIG_DIR, { recursive: true });
-	await writeFile(TOKEN_PATH, JSON.stringify({ token }), { mode: 384 });
+	await writeFile(TOKEN_PATH, JSON.stringify(data), { mode: 384 });
+}
+async function getToken() {
+	return (await readTokenData()).token ?? null;
+}
+async function storeToken(token) {
+	const data = await readTokenData();
+	data.token = token;
+	await writeTokenData(data);
+}
+async function getUsername() {
+	return (await readTokenData()).username ?? null;
+}
+async function storeUsername(username) {
+	const data = await readTokenData();
+	data.username = username;
+	await writeTokenData(data);
 }
 async function clearToken() {
 	try {
@@ -29,6 +46,18 @@ async function clearToken() {
 async function isLoggedIn() {
 	return await getToken() !== null;
 }
+async function getDefaults() {
+	try {
+		const raw = await readFile(DEFAULTS_PATH, "utf-8");
+		return JSON.parse(raw);
+	} catch {
+		return {};
+	}
+}
+async function setDefaults(defaults) {
+	await mkdir(CONFIG_DIR, { recursive: true });
+	await writeFile(DEFAULTS_PATH, JSON.stringify(defaults, null, "	"), { mode: 384 });
+}
 async function getDocumentMap() {
 	try {
 		const raw = await readFile(DOCUMENTS_PATH, "utf-8");
@@ -58,4 +87,4 @@ async function findMappingBySlug(slug) {
 }
 
 //#endregion
-export { getDocumentMap as a, removeDocumentMapping as c, findMappingBySlug as i, setDocumentMapping as l, SERVER_URL as n, getToken as o, clearToken as r, isLoggedIn as s, APP_URL as t, storeToken as u };
+export { getDefaults as a, getUsername as c, setDefaults as d, setDocumentMapping as f, findMappingBySlug as i, isLoggedIn as l, storeUsername as m, SERVER_URL as n, getDocumentMap as o, storeToken as p, clearToken as r, getToken as s, APP_URL as t, removeDocumentMapping as u };

package/dist/{dist-DVBd1E-5.mjs → dist-BbvD4qtQ.mjs}

@@ -1868,4 +1868,4 @@ ${r ? import_picocolors.default.cyan(x) : ""}
 }).prompt();
 
 //#endregion
-export { bt as a, Ze as i, Re as n, je as o, We as r, Ct as s, R as t };
+export { Ze as a, Ct as c, We as i, R as n, bt as o, Re as r, je as s, Je as t };

package/dist/domain-D5HsJ52R.mjs

@@ -0,0 +1,165 @@
+#!/usr/bin/env node
+import "./api-CPJjLxqz.mjs";
+import { a as getDefaults, d as setDefaults } from "./config-cFx42NU7.mjs";
+import { c as Ct, n as R, o as bt, r as Re, t as Je } from "./dist-BbvD4qtQ.mjs";
+import { n as requireAuth } from "./require-auth-m9LOildn.mjs";
+
+//#region src/cli/commands/domain.ts
+async function domainList() {
+	const auth = await requireAuth();
+	if (!auth) return;
+	const spin = bt();
+	spin.start("Fetching domains...");
+	const result = await auth.api.domains.list({});
+	if (result.status !== 200) {
+		spin.stop("Failed to fetch domains.");
+		process.exitCode = 1;
+		return;
+	}
+	spin.stop("Domains loaded.");
+	const domains = result.body;
+	if (domains.length === 0) {
+		R.info("No custom domains. Use `mdtl domain add <domain>` to add one.");
+		return;
+	}
+	const defaults = await getDefaults();
+	for (const domain of domains) {
+		const verified = domain.verified ? "verified" : "unverified";
+		const isDefault = defaults.defaultDomain === domain.domain ? " (default)" : "";
+		R.info(`${domain.domain} [${verified}]${isDefault}`);
+		if (!domain.verified) {
+			R.info("  Add a CNAME record to verify and route your domain:");
+			R.info(`  ${domain.domain} → ${domain.cnameTarget}`);
+			if (domain.dnsManagementUrl) R.info(`  ${domain.dnsProvider} DNS: ${domain.dnsManagementUrl}`);
+		}
+	}
+}
+async function domainAdd(domainName) {
+	const auth = await requireAuth();
+	if (!auth) return;
+	const spin = bt();
+	spin.start("Adding domain...");
+	const result = await auth.api.domains.create({ body: { domain: domainName } });
+	if (result.status === 201) {
+		const domain = result.body;
+		spin.stop("Domain added!");
+		R.success(`Added: ${domain.domain}`);
+		R.info("");
+		R.info("Add a CNAME record to verify and route your domain:");
+		R.info(`  ${domain.domain} → ${domain.cnameTarget}`);
+		if (domain.dnsManagementUrl) {
+			R.info("");
+			R.info(`Open ${domain.dnsProvider ?? "your DNS provider"} to add the record:`);
+			R.info(`  ${domain.dnsManagementUrl}`);
+		}
+		R.info("");
+		R.info(`Then run: mdtl domain verify ${domain.domain}`);
+		return;
+	}
+	spin.stop("Failed to add domain.");
+	const body = result.body;
+	R.error(body.error);
+	process.exitCode = 1;
+}
+async function domainVerify(domainName) {
+	const auth = await requireAuth();
+	if (!auth) return;
+	const listResult = await auth.api.domains.list({});
+	if (listResult.status !== 200) {
+		R.error("Failed to fetch domains.");
+		process.exitCode = 1;
+		return;
+	}
+	const domain = listResult.body.find((d) => d.domain === domainName);
+	if (!domain) {
+		R.error(`Domain not found: ${domainName}`);
+		process.exitCode = 1;
+		return;
+	}
+	if (domain.verified) {
+		R.success(`${domainName} is already verified.`);
+		return;
+	}
+	const spin = bt();
+	spin.start("Checking DNS records...");
+	const result = await auth.api.domains.verify({ params: { id: domain.id } });
+	if (result.status !== 200) {
+		spin.stop("Verification failed.");
+		process.exitCode = 1;
+		return;
+	}
+	if (result.body.verified) {
+		spin.stop("Verified!");
+		R.success(result.body.message);
+	} else {
+		spin.stop("Not verified yet.");
+		R.warning(result.body.message);
+	}
+}
+async function domainRemove(domainName) {
+	const auth = await requireAuth();
+	if (!auth) return;
+	const listResult = await auth.api.domains.list({});
+	if (listResult.status !== 200) {
+		R.error("Failed to fetch domains.");
+		process.exitCode = 1;
+		return;
+	}
+	const domain = listResult.body.find((d) => d.domain === domainName);
+	if (!domain) {
+		R.error(`Domain not found: ${domainName}`);
+		process.exitCode = 1;
+		return;
+	}
+	const shouldDelete = await Re({ message: `Remove ${domainName}? This cannot be undone.` });
+	if (Ct(shouldDelete) || !shouldDelete) {
+		R.info("Cancelled.");
+		return;
+	}
+	if ((await auth.api.domains.delete({ params: { id: domain.id } })).status === 200) {
+		R.success(`Removed: ${domainName}`);
+		if ((await getDefaults()).defaultDomain === domainName) await setDefaults({ defaultDomain: void 0 });
+	} else {
+		R.error("Failed to remove domain.");
+		process.exitCode = 1;
+	}
+}
+async function domainDefault() {
+	const auth = await requireAuth();
+	if (!auth) return;
+	const listResult = await auth.api.domains.list({});
+	if (listResult.status !== 200) {
+		R.error("Failed to fetch domains.");
+		process.exitCode = 1;
+		return;
+	}
+	const verifiedDomains = listResult.body.filter((d) => d.verified);
+	if (verifiedDomains.length === 0) {
+		R.info("No verified domains. Add and verify a domain first.");
+		return;
+	}
+	const defaults = await getDefaults();
+	const selected = await Je({
+		message: "Select default domain:",
+		options: [{
+			value: "__none__",
+			label: "None (no default domain)"
+		}, ...verifiedDomains.map((d) => ({
+			value: d.domain,
+			label: d.domain,
+			hint: defaults.defaultDomain === d.domain ? "current default" : void 0
+		}))],
+		initialValue: defaults.defaultDomain ?? "__none__"
+	});
+	if (Ct(selected)) {
+		R.info("Cancelled.");
+		return;
+	}
+	const newDefault = selected === "__none__" ? void 0 : selected;
+	await setDefaults({ defaultDomain: newDefault });
+	if (newDefault) R.success(`Default domain set to: ${newDefault}`);
+	else R.success("Default domain cleared.");
+}
+
+//#endregion
+export { domainAdd, domainDefault, domainList, domainRemove, domainVerify };

package/dist/{format-DbYC9f36.mjs → format-CaRgIpjB.mjs}

@@ -1,11 +1,12 @@
 #!/usr/bin/env node
-import { t as APP_URL } from "./config-B5jPCcGo.mjs";
+import { t as APP_URL } from "./config-cFx42NU7.mjs";
 
 //#region src/cli/lib/format.ts
-function formatDocumentUrl(doc) {
+function formatDocumentUrl(doc, username) {
+	if (doc.urlType === "user_scoped" && username) return `${APP_URL}/@${username}/${doc.slug}`;
 	return `${APP_URL}/d/${doc.slug}`;
 }
-function formatDocumentTable(items, total, offset) {
+function formatDocumentTable(items, total, offset, username) {
 	if (items.length === 0) return "No documents found.";
 	const lines = [];
 	const header = padColumns([
@@ -21,7 +22,7 @@ function formatDocumentTable(items, total, offset) {
 	for (const doc of items) {
 		const title = doc.title || "(untitled)";
 		const created = new Date(doc.createdAt).toLocaleDateString();
-		const link = formatDocumentUrl(doc);
+		const link = formatDocumentUrl(doc, username);
 		lines.push(padColumns([
 			truncate(title, 30),
 			truncate(doc.slug, 20),

package/dist/handle-C-teVKcx.mjs

@@ -0,0 +1,82 @@
+#!/usr/bin/env node
+import "./api-CPJjLxqz.mjs";
+import { m as storeUsername, n as SERVER_URL } from "./config-cFx42NU7.mjs";
+import { n as R, o as bt } from "./dist-BbvD4qtQ.mjs";
+import { n as requireAuth } from "./require-auth-m9LOildn.mjs";
+
+//#region src/cli/commands/handle.ts
+async function handleShow() {
+	const auth = await requireAuth();
+	if (!auth) return;
+	const { api } = auth;
+	const result = await api.users.getMe({});
+	if (result.status !== 200) {
+		R.error("Failed to fetch profile.");
+		process.exitCode = 1;
+		return;
+	}
+	const username = result.body.username;
+	if (username) {
+		await storeUsername(username);
+		R.info(`Your handle: @${username}`);
+	} else R.info("No handle set. Use `mdtl handle set <name>` to claim one.");
+}
+async function handleSet(name) {
+	const auth = await requireAuth();
+	if (!auth) return;
+	const { token } = auth;
+	const handle = name.startsWith("@") ? name.slice(1) : name;
+	if (!/^[a-z0-9][a-z0-9_-]*$/.test(handle)) {
+		R.error("Invalid handle. Use lowercase letters, numbers, hyphens, and underscores. Must start with a letter or number.");
+		process.exitCode = 1;
+		return;
+	}
+	if (handle.length < 3 || handle.length > 30) {
+		R.error("Handle must be between 3 and 30 characters.");
+		process.exitCode = 1;
+		return;
+	}
+	const spin = bt();
+	spin.start("Setting handle...");
+	const response = await fetch(`${SERVER_URL}/api/auth/update-user`, {
+		method: "POST",
+		headers: {
+			"Content-Type": "application/json",
+			Authorization: `Bearer ${token}`
+		},
+		body: JSON.stringify({ username: handle })
+	});
+	if (!response.ok) {
+		const body = await response.json();
+		const message = typeof body.message === "string" ? body.message : "Failed to set handle. It may already be taken.";
+		spin.stop("Failed.");
+		R.error(message);
+		process.exitCode = 1;
+		return;
+	}
+	await storeUsername(handle);
+	spin.stop("Done!");
+	R.success(`Handle set to @${handle}`);
+}
+async function handleRemove() {
+	const auth = await requireAuth();
+	if (!auth) return;
+	const { token } = auth;
+	if (!(await fetch(`${SERVER_URL}/api/auth/update-user`, {
+		method: "POST",
+		headers: {
+			"Content-Type": "application/json",
+			Authorization: `Bearer ${token}`
+		},
+		body: JSON.stringify({ username: "" })
+	})).ok) {
+		R.error("Failed to remove handle.");
+		process.exitCode = 1;
+		return;
+	}
+	await storeUsername("");
+	R.success("Handle removed.");
+}
+
+//#endregion
+export { handleRemove, handleSet, handleShow };

package/dist/index.mjs

@@ -3030,15 +3030,15 @@ const { program: program$1, createCommand, createArgument, createOption, Command
 const program = new Command();
 program.name("mdtolink").description("Publish markdown files to shareable URLs").version("0.1.0");
 program.command("login").aliases(["auth", "signin"]).description("Authenticate with MDtolink").action(async () => {
-	const { login } = await import("./login-DKrVl_-X.mjs");
+	const { login } = await import("./login-DOLV04ZV.mjs");
 	await login();
 });
 program.command("logout").aliases(["signout"]).description("Clear stored authentication token").action(async () => {
-	const { logout } = await import("./logout-2ajJT8D-.mjs");
+	const { logout } = await import("./logout-t5CtUkc2.mjs");
 	await logout();
 });
-program.command("publish").aliases(["p", "pub"]).description("Publish or update a markdown file").argument("<file>", "Path to markdown file").option("--slug <slug>", "Custom URL slug (Pro+ only)").option("--title <title>", "Custom title (defaults to filename)").action(async (file, options) => {
-	const { publish } = await import("./publish-S5e-jsL5.mjs");
+program.command("publish").aliases(["p", "pub"]).description("Publish or update a markdown file").argument("<file>", "Path to markdown file").option("--slug <slug>", "Custom filename (Pro+ only, e.g., meeting-notes)").option("--title <title>", "Custom title (defaults to filename)").action(async (file, options) => {
+	const { publish } = await import("./publish-DdAgmsVg.mjs");
 	await publish(file, options);
 });
 program.command("unpublish").aliases([
@@ -3046,28 +3046,70 @@ program.command("unpublish").aliases([
 	"remove",
 	"delete"
 ]).description("Remove a published document").argument("[file-or-slug]", "File path or document slug").action(async (fileOrSlug) => {
-	const { unpublish } = await import("./unpublish-DguElyLU.mjs");
+	const { unpublish } = await import("./unpublish-DqwzN793.mjs");
 	await unpublish(fileOrSlug);
 });
 program.command("list").aliases(["ls", "l"]).description("List published documents").option("--limit <n>", "Number of documents to show", "20").option("--offset <n>", "Skip N documents", "0").action(async (options) => {
-	const { list } = await import("./list-Dv3o-Yt-.mjs");
+	const { list } = await import("./list-5TKm4hrp.mjs");
 	await list({
 		limit: Number.parseInt(options.limit, 10),
 		offset: Number.parseInt(options.offset, 10)
 	});
 });
+const handleCmd = program.command("handle").aliases(["h"]).description("Manage your handle (@username)");
+handleCmd.command("show").description("Show current handle").action(async () => {
+	const { handleShow } = await import("./handle-C-teVKcx.mjs");
+	await handleShow();
+});
+handleCmd.command("set").argument("<name>", "Handle to claim (e.g., david)").description("Set your handle").action(async (name) => {
+	const { handleSet } = await import("./handle-C-teVKcx.mjs");
+	await handleSet(name);
+});
+handleCmd.command("remove").description("Remove your handle").action(async () => {
+	const { handleRemove } = await import("./handle-C-teVKcx.mjs");
+	await handleRemove();
+});
+handleCmd.action(async () => {
+	const { handleShow } = await import("./handle-C-teVKcx.mjs");
+	await handleShow();
+});
+const domainCmd = program.command("domain").aliases(["dom"]).description("Manage custom domains");
+domainCmd.command("list").description("List your custom domains").action(async () => {
+	const { domainList } = await import("./domain-D5HsJ52R.mjs");
+	await domainList();
+});
+domainCmd.command("add").argument("<domain>", "Domain name (e.g., docs.example.com)").description("Add a custom domain").action(async (domain) => {
+	const { domainAdd } = await import("./domain-D5HsJ52R.mjs");
+	await domainAdd(domain);
+});
+domainCmd.command("verify").argument("<domain>", "Domain name to verify").description("Verify domain DNS ownership").action(async (domain) => {
+	const { domainVerify } = await import("./domain-D5HsJ52R.mjs");
+	await domainVerify(domain);
+});
+domainCmd.command("remove").argument("<domain>", "Domain name to remove").description("Remove a custom domain").action(async (domain) => {
+	const { domainRemove } = await import("./domain-D5HsJ52R.mjs");
+	await domainRemove(domain);
+});
+domainCmd.command("default").description("Set default custom domain").action(async () => {
+	const { domainDefault } = await import("./domain-D5HsJ52R.mjs");
+	await domainDefault();
+});
+domainCmd.action(async () => {
+	const { domainList } = await import("./domain-D5HsJ52R.mjs");
+	await domainList();
+});
 program.command("commands").description("Show all available commands").action(() => {
 	printCommands();
 });
 program.argument("[file]", "Markdown file to publish (shorthand for `publish`)");
-program.option("--slug <slug>", "Custom URL slug (Pro+ only)");
+program.option("--slug <slug>", "Custom filename (Pro+ only, e.g., meeting-notes)");
 program.option("--title <title>", "Custom title (defaults to filename)");
 program.action(async (file, options) => {
-	if (!file) {
+	if (!file || file === "help") {
 		program.help();
 		return;
 	}
-	const { publish } = await import("./publish-S5e-jsL5.mjs");
+	const { publish } = await import("./publish-DdAgmsVg.mjs");
 	await publish(file, options);
 });
 program.addHelpText("after", () => {
@@ -3077,14 +3119,15 @@ program.addHelpText("after", () => {
 Aliases:
   publish   p, pub        login    auth, signin
   unpublish rm, remove    logout   signout
-  list      ls, l`;
+  list      ls, l         handle   h
+  domain    dom`;
 });
 function printCommands() {
 	console.log(`
 mdtolink commands:
 
   publish <file>       Publish or update a markdown file
-    --slug <slug>      Custom URL slug (Pro+ only)
+    --slug <name>      Custom filename (Pro+ only, e.g., meeting-notes)
     --title <title>    Custom title (defaults to filename)
 
   unpublish [target]   Remove a published document
@@ -3092,6 +3135,16 @@ mdtolink commands:
     --limit <n>        Number of documents to show (default: 20)
     --offset <n>       Skip N documents (default: 0)
 
+  handle               Show your handle (@username)
+  handle set <name>    Set your handle (e.g., mdtl handle set david)
+  handle remove        Remove your handle
+
+  domain               List your custom domains
+  domain add <domain>  Add a custom domain (Publisher only)
+  domain verify <dom>  Verify domain DNS ownership
+  domain remove <dom>  Remove a custom domain
+  domain default       Set default custom domain
+
   login                Authenticate with MDtolink
   logout               Clear stored authentication token
   commands             Show this list
@@ -3102,7 +3155,8 @@ Shortcuts:
 Aliases:
   publish   p, pub        login    auth, signin
   unpublish rm, remove    logout   signout
-  list      ls, l
+  list      ls, l         handle   h
+  domain    dom
 `);
 }
 await program.parseAsync();

package/dist/{list-Dv3o-Yt-.mjs → list-5TKm4hrp.mjs}

@@ -1,18 +1,15 @@
 #!/usr/bin/env node
-import { t as createApiClient } from "./api-D4MGz1n7.mjs";
-import { o as getToken } from "./config-B5jPCcGo.mjs";
-import { t as formatDocumentTable } from "./format-DbYC9f36.mjs";
-import { a as bt, t as R } from "./dist-DVBd1E-5.mjs";
+import "./api-CPJjLxqz.mjs";
+import "./config-cFx42NU7.mjs";
+import { t as formatDocumentTable } from "./format-CaRgIpjB.mjs";
+import { n as R, o as bt } from "./dist-BbvD4qtQ.mjs";
+import { n as requireAuth } from "./require-auth-m9LOildn.mjs";
 
 //#region src/cli/commands/list.ts
 async function list(options) {
-	const token = await getToken();
-	if (!token) {
-		R.error("Not logged in. Run `mdtolink login` first.");
-		process.exitCode = 1;
-		return;
-	}
-	const api = createApiClient(token);
+	const auth = await requireAuth();
+	if (!auth) return;
+	const { api, username } = auth;
 	const spin = bt();
 	spin.start("Fetching documents...");
 	try {
@@ -23,7 +20,7 @@ async function list(options) {
 		if (result.status === 200) {
 			spin.stop("Documents loaded.");
 			const { items, total, offset } = result.body;
-			const output = formatDocumentTable(items, total, offset);
+			const output = formatDocumentTable(items, total, offset, username);
 			R.info(output);
 		} else {
 			const body = result.body;

package/dist/{login-DKrVl_-X.mjs → login-DOLV04ZV.mjs}

@@ -1,8 +1,9 @@
 #!/usr/bin/env node
-import { n as SERVER_URL, u as storeToken } from "./config-B5jPCcGo.mjs";
-import { a as bt, r as We, t as R } from "./dist-DVBd1E-5.mjs";
+import { t as createApiClient } from "./api-CPJjLxqz.mjs";
+import { m as storeUsername, n as SERVER_URL, p as storeToken } from "./config-cFx42NU7.mjs";
+import { i as We, n as R, o as bt } from "./dist-BbvD4qtQ.mjs";
 
-//#region ../../node_modules/.pnpm/better-auth@1.4.20_drizzle-kit@0.31.9_drizzle-orm@0.45.1_@opentelemetry+api@1.9.0_@type_6e9d8bfe34916fc4fa1d1185a8201c1b/node_modules/better-auth/dist/client/broadcast-channel.mjs
+//#region ../../node_modules/.pnpm/better-auth@1.4.20_drizzle-kit@0.31.9_drizzle-orm@0.45.1_@opentelemetry+api@1.9.0_@type_a40a2e15f82eb076fc233026dff617a5/node_modules/better-auth/dist/client/broadcast-channel.mjs
 const kBroadcastChannel = Symbol.for("better-auth:broadcast-channel");
 const now$1 = () => Math.floor(Date.now() / 1e3);
 var WindowBroadcastChannel = class {
@@ -46,7 +47,7 @@ function getGlobalBroadcastChannel(name = "better-auth.message") {
 }
 
 //#endregion
-//#region ../../node_modules/.pnpm/better-auth@1.4.20_drizzle-kit@0.31.9_drizzle-orm@0.45.1_@opentelemetry+api@1.9.0_@type_6e9d8bfe34916fc4fa1d1185a8201c1b/node_modules/better-auth/dist/client/focus-manager.mjs
+//#region ../../node_modules/.pnpm/better-auth@1.4.20_drizzle-kit@0.31.9_drizzle-orm@0.45.1_@opentelemetry+api@1.9.0_@type_a40a2e15f82eb076fc233026dff617a5/node_modules/better-auth/dist/client/focus-manager.mjs
 const kFocusManager = Symbol.for("better-auth:focus-manager");
 var WindowFocusManager = class {
 	listeners = /* @__PURE__ */ new Set();
@@ -76,7 +77,7 @@ function getGlobalFocusManager() {
 }
 
 //#endregion
-//#region ../../node_modules/.pnpm/better-auth@1.4.20_drizzle-kit@0.31.9_drizzle-orm@0.45.1_@opentelemetry+api@1.9.0_@type_6e9d8bfe34916fc4fa1d1185a8201c1b/node_modules/better-auth/dist/client/online-manager.mjs
+//#region ../../node_modules/.pnpm/better-auth@1.4.20_drizzle-kit@0.31.9_drizzle-orm@0.45.1_@opentelemetry+api@1.9.0_@type_a40a2e15f82eb076fc233026dff617a5/node_modules/better-auth/dist/client/online-manager.mjs
 const kOnlineManager = Symbol.for("better-auth:online-manager");
 var WindowOnlineManager = class {
 	listeners = /* @__PURE__ */ new Set();
@@ -240,7 +241,7 @@ let onMount = ($store, initialize) => {
 };
 
 //#endregion
-//#region ../../node_modules/.pnpm/better-auth@1.4.20_drizzle-kit@0.31.9_drizzle-orm@0.45.1_@opentelemetry+api@1.9.0_@type_6e9d8bfe34916fc4fa1d1185a8201c1b/node_modules/better-auth/dist/client/query.mjs
+//#region ../../node_modules/.pnpm/better-auth@1.4.20_drizzle-kit@0.31.9_drizzle-orm@0.45.1_@opentelemetry+api@1.9.0_@type_a40a2e15f82eb076fc233026dff617a5/node_modules/better-auth/dist/client/query.mjs
 const isServer = () => typeof window === "undefined";
 const useAuthQuery = (initializedAtom, path, $fetch, options) => {
 	const value = /* @__PURE__ */ atom({
@@ -334,7 +335,7 @@ const useAuthQuery = (initializedAtom, path, $fetch, options) => {
 };
 
 //#endregion
-//#region ../../node_modules/.pnpm/better-auth@1.4.20_drizzle-kit@0.31.9_drizzle-orm@0.45.1_@opentelemetry+api@1.9.0_@type_6e9d8bfe34916fc4fa1d1185a8201c1b/node_modules/better-auth/dist/client/session-refresh.mjs
+//#region ../../node_modules/.pnpm/better-auth@1.4.20_drizzle-kit@0.31.9_drizzle-orm@0.45.1_@opentelemetry+api@1.9.0_@type_a40a2e15f82eb076fc233026dff617a5/node_modules/better-auth/dist/client/session-refresh.mjs
 const now = () => Math.floor(Date.now() / 1e3);
 /**
 * Rate limit: don't refetch on focus if a session request was made within this many seconds
@@ -753,7 +754,7 @@ var BetterAuthError = class extends Error {
 };
 
 //#endregion
-//#region ../../node_modules/.pnpm/better-auth@1.4.20_drizzle-kit@0.31.9_drizzle-orm@0.45.1_@opentelemetry+api@1.9.0_@type_6e9d8bfe34916fc4fa1d1185a8201c1b/node_modules/better-auth/dist/utils/url.mjs
+//#region ../../node_modules/.pnpm/better-auth@1.4.20_drizzle-kit@0.31.9_drizzle-orm@0.45.1_@opentelemetry+api@1.9.0_@type_a40a2e15f82eb076fc233026dff617a5/node_modules/better-auth/dist/utils/url.mjs
 function checkHasPath(url) {
 	try {
 		return (new URL(url).pathname.replace(/\/+$/, "") || "/") !== "/";
@@ -826,7 +827,7 @@ function getOrigin(url) {
 }
 
 //#endregion
-//#region ../../node_modules/.pnpm/better-auth@1.4.20_drizzle-kit@0.31.9_drizzle-orm@0.45.1_@opentelemetry+api@1.9.0_@type_6e9d8bfe34916fc4fa1d1185a8201c1b/node_modules/better-auth/dist/client/fetch-plugins.mjs
+//#region ../../node_modules/.pnpm/better-auth@1.4.20_drizzle-kit@0.31.9_drizzle-orm@0.45.1_@opentelemetry+api@1.9.0_@type_a40a2e15f82eb076fc233026dff617a5/node_modules/better-auth/dist/client/fetch-plugins.mjs
 const redirectPlugin = {
 	id: "redirect",
 	name: "Redirect",
@@ -842,7 +843,7 @@ const redirectPlugin = {
 };
 
 //#endregion
-//#region ../../node_modules/.pnpm/better-auth@1.4.20_drizzle-kit@0.31.9_drizzle-orm@0.45.1_@opentelemetry+api@1.9.0_@type_6e9d8bfe34916fc4fa1d1185a8201c1b/node_modules/better-auth/dist/client/parser.mjs
+//#region ../../node_modules/.pnpm/better-auth@1.4.20_drizzle-kit@0.31.9_drizzle-orm@0.45.1_@opentelemetry+api@1.9.0_@type_a40a2e15f82eb076fc233026dff617a5/node_modules/better-auth/dist/client/parser.mjs
 const PROTO_POLLUTION_PATTERNS = {
 	proto: /"(?:_|\\u0{2}5[Ff]){2}(?:p|\\u0{2}70)(?:r|\\u0{2}72)(?:o|\\u0{2}6[Ff])(?:t|\\u0{2}74)(?:o|\\u0{2}6[Ff])(?:_|\\u0{2}5[Ff]){2}"\s*:/,
 	constructor: /"(?:c|\\u0063)(?:o|\\u006[Ff])(?:n|\\u006[Ee])(?:s|\\u0073)(?:t|\\u0074)(?:r|\\u0072)(?:u|\\u0075)(?:c|\\u0063)(?:t|\\u0074)(?:o|\\u006[Ff])(?:r|\\u0072)"\s*:/,
@@ -913,7 +914,7 @@ function parseJSON(value, options = { strict: true }) {
 }
 
 //#endregion
-//#region ../../node_modules/.pnpm/better-auth@1.4.20_drizzle-kit@0.31.9_drizzle-orm@0.45.1_@opentelemetry+api@1.9.0_@type_6e9d8bfe34916fc4fa1d1185a8201c1b/node_modules/better-auth/dist/client/session-atom.mjs
+//#region ../../node_modules/.pnpm/better-auth@1.4.20_drizzle-kit@0.31.9_drizzle-orm@0.45.1_@opentelemetry+api@1.9.0_@type_a40a2e15f82eb076fc233026dff617a5/node_modules/better-auth/dist/client/session-atom.mjs
 function getSessionAtom($fetch, options) {
 	const $signal = /* @__PURE__ */ atom(false);
 	const session = useAuthQuery($signal, "/get-session", $fetch, { method: "GET" });
@@ -1412,7 +1413,7 @@ var betterFetch = async (url, options) => {
 };
 
 //#endregion
-//#region ../../node_modules/.pnpm/better-auth@1.4.20_drizzle-kit@0.31.9_drizzle-orm@0.45.1_@opentelemetry+api@1.9.0_@type_6e9d8bfe34916fc4fa1d1185a8201c1b/node_modules/better-auth/dist/client/config.mjs
+//#region ../../node_modules/.pnpm/better-auth@1.4.20_drizzle-kit@0.31.9_drizzle-orm@0.45.1_@opentelemetry+api@1.9.0_@type_a40a2e15f82eb076fc233026dff617a5/node_modules/better-auth/dist/client/config.mjs
 const getClientConfig = (options, loadEnv) => {
 	const isCredentialsSupported = "credentials" in Request.prototype;
 	const baseURL = getBaseURL(options?.baseURL, options?.basePath, void 0, loadEnv) ?? "/api/auth";
@@ -1493,13 +1494,13 @@ const getClientConfig = (options, loadEnv) => {
 };
 
 //#endregion
-//#region ../../node_modules/.pnpm/better-auth@1.4.20_drizzle-kit@0.31.9_drizzle-orm@0.45.1_@opentelemetry+api@1.9.0_@type_6e9d8bfe34916fc4fa1d1185a8201c1b/node_modules/better-auth/dist/utils/is-atom.mjs
+//#region ../../node_modules/.pnpm/better-auth@1.4.20_drizzle-kit@0.31.9_drizzle-orm@0.45.1_@opentelemetry+api@1.9.0_@type_a40a2e15f82eb076fc233026dff617a5/node_modules/better-auth/dist/utils/is-atom.mjs
 function isAtom(value) {
 	return typeof value === "object" && value !== null && "get" in value && typeof value.get === "function" && "lc" in value && typeof value.lc === "number";
 }
 
 //#endregion
-//#region ../../node_modules/.pnpm/better-auth@1.4.20_drizzle-kit@0.31.9_drizzle-orm@0.45.1_@opentelemetry+api@1.9.0_@type_6e9d8bfe34916fc4fa1d1185a8201c1b/node_modules/better-auth/dist/client/proxy.mjs
+//#region ../../node_modules/.pnpm/better-auth@1.4.20_drizzle-kit@0.31.9_drizzle-orm@0.45.1_@opentelemetry+api@1.9.0_@type_a40a2e15f82eb076fc233026dff617a5/node_modules/better-auth/dist/client/proxy.mjs
 function getMethod(path, knownPathMethods, args) {
 	const method = knownPathMethods[path];
 	const { fetchOptions, query: _query, ...body } = args || {};
@@ -1574,7 +1575,7 @@ function createDynamicPathProxy(routes, client, knownPathMethods, atoms, atomLis
 }
 
 //#endregion
-//#region ../../node_modules/.pnpm/better-auth@1.4.20_drizzle-kit@0.31.9_drizzle-orm@0.45.1_@opentelemetry+api@1.9.0_@type_6e9d8bfe34916fc4fa1d1185a8201c1b/node_modules/better-auth/dist/client/vanilla.mjs
+//#region ../../node_modules/.pnpm/better-auth@1.4.20_drizzle-kit@0.31.9_drizzle-orm@0.45.1_@opentelemetry+api@1.9.0_@type_a40a2e15f82eb076fc233026dff617a5/node_modules/better-auth/dist/client/vanilla.mjs
 function createAuthClient(options) {
 	const { pluginPathMethods, pluginsActions, pluginsAtoms, $fetch, atomListeners, $store } = getClientConfig(options);
 	const resolvedHooks = {};
@@ -1588,7 +1589,7 @@ function createAuthClient(options) {
 }
 
 //#endregion
-//#region ../../node_modules/.pnpm/better-auth@1.4.20_drizzle-kit@0.31.9_drizzle-orm@0.45.1_@opentelemetry+api@1.9.0_@type_6e9d8bfe34916fc4fa1d1185a8201c1b/node_modules/better-auth/dist/plugins/access/access.mjs
+//#region ../../node_modules/.pnpm/better-auth@1.4.20_drizzle-kit@0.31.9_drizzle-orm@0.45.1_@opentelemetry+api@1.9.0_@type_a40a2e15f82eb076fc233026dff617a5/node_modules/better-auth/dist/plugins/access/access.mjs
 function role(statements) {
 	return {
 		authorize(request, connector = "AND") {
@@ -1630,7 +1631,7 @@ function createAccessControl(s) {
 }
 
 //#endregion
-//#region ../../node_modules/.pnpm/better-auth@1.4.20_drizzle-kit@0.31.9_drizzle-orm@0.45.1_@opentelemetry+api@1.9.0_@type_6e9d8bfe34916fc4fa1d1185a8201c1b/node_modules/better-auth/dist/plugins/admin/access/statement.mjs
+//#region ../../node_modules/.pnpm/better-auth@1.4.20_drizzle-kit@0.31.9_drizzle-orm@0.45.1_@opentelemetry+api@1.9.0_@type_a40a2e15f82eb076fc233026dff617a5/node_modules/better-auth/dist/plugins/admin/access/statement.mjs
 const defaultStatements$1 = {
 	user: [
 		"create",
@@ -1674,7 +1675,7 @@ const userAc = defaultAc$1.newRole({
 });
 
 //#endregion
-//#region ../../node_modules/.pnpm/better-auth@1.4.20_drizzle-kit@0.31.9_drizzle-orm@0.45.1_@opentelemetry+api@1.9.0_@type_6e9d8bfe34916fc4fa1d1185a8201c1b/node_modules/better-auth/dist/plugins/device-authorization/client.mjs
+//#region ../../node_modules/.pnpm/better-auth@1.4.20_drizzle-kit@0.31.9_drizzle-orm@0.45.1_@opentelemetry+api@1.9.0_@type_a40a2e15f82eb076fc233026dff617a5/node_modules/better-auth/dist/plugins/device-authorization/client.mjs
 const deviceAuthorizationClient = () => {
 	return {
 		id: "device-authorization",
@@ -1690,7 +1691,7 @@ const deviceAuthorizationClient = () => {
 };
 
 //#endregion
-//#region ../../node_modules/.pnpm/better-auth@1.4.20_drizzle-kit@0.31.9_drizzle-orm@0.45.1_@opentelemetry+api@1.9.0_@type_6e9d8bfe34916fc4fa1d1185a8201c1b/node_modules/better-auth/dist/plugins/organization/access/statement.mjs
+//#region ../../node_modules/.pnpm/better-auth@1.4.20_drizzle-kit@0.31.9_drizzle-orm@0.45.1_@opentelemetry+api@1.9.0_@type_a40a2e15f82eb076fc233026dff617a5/node_modules/better-auth/dist/plugins/organization/access/statement.mjs
 const defaultStatements = {
 	organization: ["update", "delete"],
 	member: [
@@ -1784,6 +1785,10 @@ async function pollForToken(deviceCode, interval) {
 			const userName = session?.user?.name || "there";
 			R.success(`Authenticated successfully! Hello, ${userName}!`);
 			R.info("Token stored at ~/.config/mdtolink/token.json");
+			try {
+				const result = await createApiClient(data.access_token).users.getMe({});
+				if (result.status === 200 && result.body.username) await storeUsername(result.body.username);
+			} catch {}
 			return;
 		}
 		if (error) {
@@ -1824,7 +1829,7 @@ async function login() {
 	R.info(`Your code: ${user_code}`);
 	R.info(`Visit: ${verification_uri}`);
 	try {
-		const { default: open } = await import("./open-CZUGhT0Q.mjs");
+		const { default: open } = await import("./open-DQe1i6ko.mjs");
 		const urlToOpen = verification_uri_complete || verification_uri;
 		if (urlToOpen) {
 			await open(urlToOpen);

package/dist/{logout-2ajJT8D-.mjs → logout-t5CtUkc2.mjs}

@@ -1,6 +1,6 @@
 #!/usr/bin/env node
-import { r as clearToken, s as isLoggedIn } from "./config-B5jPCcGo.mjs";
-import { t as R } from "./dist-DVBd1E-5.mjs";
+import { l as isLoggedIn, r as clearToken } from "./config-cFx42NU7.mjs";
+import { n as R } from "./dist-BbvD4qtQ.mjs";
 
 //#region src/cli/commands/logout.ts
 async function logout() {

package/dist/mcp.mjs

@@ -1,8 +1,8 @@
 #!/usr/bin/env node
 import { r as __toESM, t as __commonJSMin } from "./chunk-DrUt9iA_.mjs";
-import { A as clone, C as meta$1, D as parseAsync, E as parse$1, M as normalizeParams, N as $constructor, O as safeParse$1, S as describe$1, T as $ZodType, _ as string, a as array, b as datetime, c as discriminatedUnion, d as looseObject, f as number, g as record, h as preprocess, i as _null, j as defineLazy, k as safeParseAsync$1, l as intersection, m as optional, n as ZodOptional, o as boolean, p as object$1, r as _enum, s as custom, t as createApiClient, u as literal, v as union, w as $ZodObject, x as toJSONSchema, y as unknown } from "./api-D4MGz1n7.mjs";
-import { o as getToken } from "./config-B5jPCcGo.mjs";
-import { n as formatDocumentUrl } from "./format-DbYC9f36.mjs";
+import { A as clone, C as meta$1, D as parseAsync, E as parse$1, M as normalizeParams, N as $constructor, O as safeParse$1, S as describe$1, T as $ZodType, _ as string, a as array, b as datetime, c as discriminatedUnion, d as looseObject, f as number, g as record, h as preprocess, i as _null, j as defineLazy, k as safeParseAsync$1, l as intersection, m as optional, n as ZodOptional, o as boolean, p as object$1, r as _enum, s as custom, t as createApiClient, u as literal, v as union, w as $ZodObject, x as toJSONSchema, y as unknown } from "./api-CPJjLxqz.mjs";
+import { s as getToken } from "./config-cFx42NU7.mjs";
+import { n as formatDocumentUrl } from "./format-CaRgIpjB.mjs";
 import N from "node:process";
 
 //#region ../../node_modules/.pnpm/zod@4.3.6/node_modules/zod/v3/helpers/util.js

package/dist/{publish-S5e-jsL5.mjs → publish-DdAgmsVg.mjs}

@@ -1,8 +1,9 @@
 #!/usr/bin/env node
-import { t as createApiClient } from "./api-D4MGz1n7.mjs";
-import { a as getDocumentMap, l as setDocumentMapping, o as getToken } from "./config-B5jPCcGo.mjs";
-import { n as formatDocumentUrl } from "./format-DbYC9f36.mjs";
-import { a as bt, n as Re, s as Ct, t as R } from "./dist-DVBd1E-5.mjs";
+import "./api-CPJjLxqz.mjs";
+import { f as setDocumentMapping, o as getDocumentMap } from "./config-cFx42NU7.mjs";
+import { n as formatDocumentUrl } from "./format-CaRgIpjB.mjs";
+import { n as R, o as bt } from "./dist-BbvD4qtQ.mjs";
+import { n as requireAuth, t as promptReauth } from "./require-auth-m9LOildn.mjs";
 import { basename, extname, resolve } from "node:path";
 import { access, readFile } from "node:fs/promises";
 
@@ -16,22 +17,8 @@ async function publish(filePath, options) {
 		process.exitCode = 1;
 		return;
 	}
-	let token = await getToken();
-	if (!token) {
-		const shouldLogin = await Re({ message: "You are not logged in. Would you like to authorize now?" });
-		if (Ct(shouldLogin) || !shouldLogin) {
-			R.info("Publish cancelled. Run `mdtolink login` to authenticate.");
-			return;
-		}
-		const { login } = await import("./login-DKrVl_-X.mjs");
-		await login();
-		token = await getToken();
-		if (!token) {
-			R.error("Authentication failed. Cannot publish.");
-			process.exitCode = 1;
-			return;
-		}
-	}
+	const auth = await requireAuth();
+	if (!auth) return;
 	const content = await readFile(absolutePath, "utf-8");
 	if (content.trim().length === 0) {
 		R.error("File is empty.");
@@ -40,17 +27,36 @@ async function publish(filePath, options) {
 	}
 	const title = options.title ?? basename(absolutePath, extname(absolutePath));
 	const existingMapping = (await getDocumentMap())[absolutePath];
-	const api = createApiClient(token);
+	let { api, username } = auth;
 	const spin = bt();
 	if (existingMapping) {
 		spin.start("Updating document...");
-		await updateExisting(api, absolutePath, existingMapping.documentId, content, title, options.slug, spin);
+		if (await updateExisting(api, absolutePath, existingMapping.documentId, content, title, options.slug, spin, username)) {
+			const reauthed = await promptReauth();
+			if (!reauthed) return;
+			api = reauthed.api;
+			username = reauthed.username;
+			const retrySpin = bt();
+			retrySpin.start("Retrying update...");
+			await updateExisting(api, absolutePath, existingMapping.documentId, content, title, options.slug, retrySpin, username);
+		}
 	} else {
 		spin.start("Publishing document...");
-		await publishNew(api, absolutePath, content, title, options.slug, spin);
+		if (await publishNew(api, absolutePath, content, title, options.slug, spin, username)) {
+			const reauthed = await promptReauth();
+			if (!reauthed) return;
+			api = reauthed.api;
+			username = reauthed.username;
+			const retrySpin = bt();
+			retrySpin.start("Retrying publish...");
+			await publishNew(api, absolutePath, content, title, options.slug, retrySpin, username);
+		}
 	}
 }
-async function updateExisting(api, absolutePath, documentId, content, title, slug, spin) {
+/**
+* Returns true if the caller should prompt re-auth and retry.
+*/
+async function updateExisting(api, absolutePath, documentId, content, title, slug, spin, username) {
 	try {
 		const result = await api.documents.update({
 			params: { id: documentId },
@@ -62,7 +68,7 @@ async function updateExisting(api, absolutePath, documentId, content, title, slu
 		});
 		if (result.status === 200) {
 			const doc = result.body;
-			const url = formatDocumentUrl(doc);
+			const url = formatDocumentUrl(doc, username);
 			await setDocumentMapping(absolutePath, {
 				documentId: doc.id,
 				slug: doc.slug,
@@ -71,32 +77,33 @@ async function updateExisting(api, absolutePath, documentId, content, title, slu
 			});
 			spin.stop("Document updated!");
 			R.success(`Updated: ${url}`);
-			return;
+			return false;
 		}
 		const body = result.body;
 		const errorMsg = body.message ?? body.error ?? "Unknown error";
 		spin.stop(`Update failed: ${errorMsg}`);
-		if (result.status === 401) {
-			R.error("Session expired. Run `mdtolink login` to re-authenticate.");
-			process.exitCode = 1;
-			return;
-		}
+		if (result.status === 401) return true;
 		if (result.status === 404) {
 			R.warning("Previous document no longer exists on server. Creating a new one...");
 			const newSpin = bt();
 			newSpin.start("Publishing document...");
-			await publishNew(api, absolutePath, content, title, slug, newSpin);
-			return;
+			await publishNew(api, absolutePath, content, title, slug, newSpin, username);
+			return false;
 		}
 		if (result.status === 403) R.info("Upgrade at https://mdtolink.com/pricing");
 		process.exitCode = 1;
+		return false;
 	} catch {
 		spin.stop("Update failed.");
 		R.error("Could not connect to server. Check MDTOLINK_SERVER_URL.");
 		process.exitCode = 1;
+		return false;
 	}
 }
-async function publishNew(api, absolutePath, content, title, slug, spin) {
+/**
+* Returns true if the caller should prompt re-auth and retry.
+*/
+async function publishNew(api, absolutePath, content, title, slug, spin, username) {
 	try {
 		const result = await api.documents.create({ body: {
 			content,
@@ -106,7 +113,7 @@ async function publishNew(api, absolutePath, content, title, slug, spin) {
 		} });
 		if (result.status === 201) {
 			const doc = result.body;
-			const url = formatDocumentUrl(doc);
+			const url = formatDocumentUrl(doc, username);
 			await setDocumentMapping(absolutePath, {
 				documentId: doc.id,
 				slug: doc.slug,
@@ -115,20 +122,22 @@ async function publishNew(api, absolutePath, content, title, slug, spin) {
 			});
 			spin.stop("Published!");
 			R.success(`Published: ${url}`);
-			return;
+			return false;
 		}
 		spin.stop("Publish failed.");
 		const body = result.body;
-		if (result.status === 401) R.error("Session expired. Run `mdtolink login` to re-authenticate.");
-		else if (result.status === 403) {
+		if (result.status === 401) return true;
+		if (result.status === 403) {
 			R.error(body.message ?? body.error);
 			R.info("Upgrade at https://mdtolink.com/pricing");
 		} else R.error(body.message ?? body.error);
 		process.exitCode = 1;
+		return false;
 	} catch {
 		spin.stop("Publish failed.");
 		R.error("Could not connect to server. Check MDTOLINK_SERVER_URL.");
 		process.exitCode = 1;
+		return false;
 	}
 }
 

package/dist/require-auth-m9LOildn.mjs

@@ -0,0 +1,64 @@
+#!/usr/bin/env node
+import { t as createApiClient } from "./api-CPJjLxqz.mjs";
+import { c as getUsername, s as getToken } from "./config-cFx42NU7.mjs";
+import { c as Ct, n as R, r as Re } from "./dist-BbvD4qtQ.mjs";
+
+//#region src/cli/lib/require-auth.ts
+/**
+* Ensure the user is authenticated. If no token exists, prompts to login.
+* Returns an auth context with API client, token, and username — or null if auth failed.
+*/
+async function requireAuth() {
+	let token = await getToken();
+	if (!token) {
+		const shouldLogin = await Re({ message: "You are not logged in. Would you like to authorize now?" });
+		if (Ct(shouldLogin) || !shouldLogin) {
+			R.info("Run `mdtolink login` to authenticate.");
+			process.exitCode = 1;
+			return null;
+		}
+		const { login } = await import("./login-DOLV04ZV.mjs");
+		await login();
+		token = await getToken();
+		if (!token) {
+			R.error("Authentication failed.");
+			process.exitCode = 1;
+			return null;
+		}
+	}
+	const username = await getUsername();
+	return {
+		api: createApiClient(token),
+		token,
+		username
+	};
+}
+/**
+* Prompt re-authentication on expired session (401).
+* Returns a fresh auth context, or null if re-auth failed/declined.
+*/
+async function promptReauth() {
+	const shouldLogin = await Re({ message: "Session expired. Re-authenticate?" });
+	if (Ct(shouldLogin) || !shouldLogin) {
+		R.info("Run `mdtolink login` to re-authenticate.");
+		process.exitCode = 1;
+		return null;
+	}
+	const { login } = await import("./login-DOLV04ZV.mjs");
+	await login();
+	const token = await getToken();
+	if (!token) {
+		R.error("Authentication failed.");
+		process.exitCode = 1;
+		return null;
+	}
+	const username = await getUsername();
+	return {
+		api: createApiClient(token),
+		token,
+		username
+	};
+}
+
+//#endregion
+export { requireAuth as n, promptReauth as t };

package/dist/{unpublish-DguElyLU.mjs → unpublish-DqwzN793.mjs}

@@ -1,18 +1,15 @@
 #!/usr/bin/env node
-import { t as createApiClient } from "./api-D4MGz1n7.mjs";
-import { a as getDocumentMap, c as removeDocumentMapping, i as findMappingBySlug, o as getToken } from "./config-B5jPCcGo.mjs";
-import { a as bt, i as Ze, n as Re, o as je, s as Ct, t as R } from "./dist-DVBd1E-5.mjs";
+import "./api-CPJjLxqz.mjs";
+import { i as findMappingBySlug, o as getDocumentMap, u as removeDocumentMapping } from "./config-cFx42NU7.mjs";
+import { a as Ze, c as Ct, n as R, o as bt, r as Re, s as je } from "./dist-BbvD4qtQ.mjs";
+import { n as requireAuth } from "./require-auth-m9LOildn.mjs";
 import { resolve } from "node:path";
 
 //#region src/cli/commands/unpublish.ts
 async function unpublish(fileOrSlug) {
-	const token = await getToken();
-	if (!token) {
-		R.error("Not logged in. Run `mdtolink login` first.");
-		process.exitCode = 1;
-		return;
-	}
-	const api = createApiClient(token);
+	const auth = await requireAuth();
+	if (!auth) return;
+	const { api } = auth;
 	if (fileOrSlug) await unpublishByArg(api, fileOrSlug);
 	else await unpublishInteractive(api);
 }
@@ -75,7 +72,7 @@ async function unpublishInteractive(api) {
 			const slug = await Ze({
 				message: "Enter the document slug:",
 				validate: (val) => {
-					if (val.trim().length === 0) return "Slug cannot be empty.";
+					if (!val || val.trim().length === 0) return "Slug cannot be empty.";
 				}
 			});
 			if (Ct(slug)) {

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "mdtolink",
-  "version": "0.1.5",
+  "version": "0.1.7",
   "description": "Publish markdown files to shareable URLs with one command",
   "type": "module",
   "license": "UNLICENSED",
@@ -34,17 +34,22 @@
     "@opentui/core": "^0.1.84",
     "@ts-rest/core": "3.53.0-rc.1",
     "@types/node": "22.19.13",
+    "@vitest/coverage-v8": "^3.2.3",
     "better-auth": "^1.4.19",
     "commander": "^14.0.3",
     "open": "^10.1.0",
     "tsdown": "^0.16.8",
     "tsx": "^4.21.0",
     "typescript": "5.9.3",
+    "vitest": "^3.2.3",
     "@mdtolink/contracts": "0.0.1"
   },
   "scripts": {
     "build": "tsdown",
     "dev:tui": "bun run --watch src/index.ts",
-    "dev:cli": "tsx src/cli/index.ts"
+    "dev:cli": "tsx src/cli/index.ts",
+    "test": "vitest run",
+    "test:watch": "vitest",
+    "test:coverage": "vitest run --coverage"
   }
 }