npm - mumpix - Versions diffs - 1.0.12 → 1.0.13 - Mend

mumpix 1.0.12 → 1.0.13

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (3) hide show

package/README.md +4 -1
package/package.json +2 -1
package/scripts/postinstall-auth.js +100 -0

package/README.md CHANGED Viewed

@@ -299,6 +299,7 @@ npm run release:publish-and-deprecate -- --otp=123456
 # --skip-verify   skip verify:claims
 # --skip-publish  only deprecate older versions
 # --dry-run       no writes to npm
+# --remove-old    try to unpublish old versions; deprecate on failure
 ```
 ---
@@ -376,6 +377,8 @@ mumpix auth login --license=<signed-license>   # direct import
 mumpix auth logout
 ```
+For `--token` exchange, your backend should expose `/api/mumpix/auth/token/exchange` and map account tokens server-side (for example via `MUMPIX_AUTH_TOKEN_MAP`), not raw user IDs.
 By default, auth state is stored at `~/.config/mumpix/auth.json` (or `%APPDATA%/mumpix/auth.json` on Windows).
 ### Install-time auth flow
@@ -383,6 +386,6 @@ By default, auth state is stored at `~/.config/mumpix/auth.json` (or `%APPDATA%/
 On `npm install mumpix`, the package runs an install-time auth prompt in interactive terminals:
 - Press **Enter**: browser opens for account auth and local signed license is stored.
-- Type **skip**: install continues in `eventual` mode only.
+- Press any other key: install continues in `eventual` mode only.
 Non-interactive installs (CI/containers) skip this prompt automatically and default to `eventual`.

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "mumpix",
-  "version": "1.0.12",
+  "version": "1.0.13",
   "description": "SQLite for AI — embedded, zero-config memory database for AI agents and LLM applications",
   "main": "src/index.js",
   "bin": {
@@ -39,6 +39,7 @@
   "files": [
     "src/",
     "bin/",
+    "scripts/postinstall-auth.js",
     "examples/",
     "CHANGELOG.md",
     "README.md",

package/scripts/postinstall-auth.js ADDED Viewed

@@ -0,0 +1,100 @@
+#!/usr/bin/env node
+'use strict';
+const readline = require('readline');
+const { spawn } = require('child_process');
+const {
+  loginWithDeviceFlow,
+  exchangeTokenForLicense,
+  authStatePath,
+} = require('../src/core/auth');
+function isInteractive() {
+  return Boolean(process.stdin.isTTY && process.stdout.isTTY && process.env.CI !== 'true');
+}
+function fmtExpiry(ts) {
+  if (!ts) return '-';
+  const d = new Date(Number(ts));
+  if (Number.isNaN(d.getTime())) return '-';
+  return d.toISOString();
+}
+function openBrowser(url) {
+  if (!url) return false;
+  try {
+    if (process.platform === 'darwin') {
+      spawn('open', [url], { stdio: 'ignore', detached: true }).unref();
+      return true;
+    }
+    if (process.platform === 'win32') {
+      spawn('cmd', ['/c', 'start', '', url], { stdio: 'ignore', detached: true }).unref();
+      return true;
+    }
+    spawn('xdg-open', [url], { stdio: 'ignore', detached: true }).unref();
+    return true;
+  } catch {
+    return false;
+  }
+}
+function ask(question) {
+  return new Promise((resolve) => {
+    const rl = readline.createInterface({ input: process.stdin, output: process.stdout });
+    rl.question(question, (answer) => {
+      rl.close();
+      resolve(String(answer || '').trim());
+    });
+  });
+}
+async function run() {
+  try {
+    if (String(process.env.MUMPIX_POSTINSTALL_AUTH || '1') === '0') return;
+    const token = String(process.env.MUMPIX_AUTH_TOKEN || '').trim();
+    if (token) {
+      const state = await exchangeTokenForLicense(token, {});
+      console.log(`[mumpix] account linked via token. tier=${state.license.tier || '-'} exp=${fmtExpiry(state.license.exp)}`);
+      return;
+    }
+    if (!isInteractive()) {
+      console.log('[mumpix] install complete. auth skipped (non-interactive).');
+      console.log('[mumpix] run "mumpix auth login" later to unlock strict/verified. default mode remains eventual.');
+      return;
+    }
+    console.log('\n[mumpix] authenticate to unlock your paid durability modes (strict/verified).');
+    const answer = await ask('[mumpix] press Enter to continue, or press any other key to install free (eventual mode): ');
+    if (answer.length > 0) {
+      console.log('[mumpix] auth skipped. default mode is eventual.');
+      return;
+    }
+    const state = await loginWithDeviceFlow({
+      onPrompt: ({ userCode, verifyUrl, expiresInSec, intervalSec }) => {
+        const opened = openBrowser(verifyUrl);
+        if (opened) {
+          console.log(`[mumpix] opened browser: ${verifyUrl}`);
+        } else {
+          console.log(`[mumpix] open this URL in your browser: ${verifyUrl}`);
+        }
+        console.log(`[mumpix] enter code: ${userCode}`);
+        console.log(`[mumpix] waiting for approval (expires in ${expiresInSec}s, polling ${intervalSec}s)...`);
+      }
+    });
+    console.log(`[mumpix] auth success. tier=${state.license.tier || state.account.tier || '-'} exp=${fmtExpiry(state.license.exp)}`);
+    console.log(`[mumpix] saved auth: ${authStatePath()}`);
+  } catch (err) {
+    const msg = err && err.message ? err.message : 'unknown error';
+    console.log(`[mumpix] auth step failed (${msg}).`);
+    if (String(msg).includes('404')) {
+      console.log('[mumpix] auth endpoints not found on this host. check MUMPIX_AUTH_BASE_URL or server auth routes.');
+    }
+    console.log('[mumpix] continuing install in eventual mode. run "mumpix auth login" later.');
+  }
+}
+run();