neonctl 0.5.4 → 0.7.0-test.1

package/api.js

@@ -0,0 +1,3 @@
+import { createApiClient } from '@neondatabase/api-client';
+export const getApiClient = ({ apiKey, apiHost }) => createApiClient({ apiKey, baseURL: apiHost });
+export const isApiError = (err) => err instanceof Error && 'response' in err;

package/auth.js

@@ -0,0 +1,90 @@
+import { custom, generators, Issuer } from 'openid-client';
+import { createServer } from 'node:http';
+import { createReadStream } from 'node:fs';
+import { join } from 'node:path';
+import open from 'open';
+import { log } from './log.js';
+import { fileURLToPath } from 'node:url';
+// oauth server timeouts
+const SERVER_TIMEOUT = 10000;
+// where to wait for incoming redirect request from oauth server to arrive
+const REDIRECT_URI = (port) => `http://127.0.0.1:${port}/callback`;
+// These scopes cannot be cancelled, they are always needed.
+const ALWAYS_PRESENT_SCOPES = ['openid', 'offline', 'offline_access'];
+const NEONCTL_SCOPES = [
+    ...ALWAYS_PRESENT_SCOPES,
+    'urn:neoncloud:projects:create',
+    'urn:neoncloud:projects:read',
+    'urn:neoncloud:projects:update',
+    'urn:neoncloud:projects:delete',
+];
+export const defaultClientID = 'neonctl';
+custom.setHttpOptionsDefaults({
+    timeout: SERVER_TIMEOUT,
+});
+export const refreshToken = async ({ oauthHost, clientId }, tokenSet) => {
+    log.info('Discovering oauth server');
+    const issuer = await Issuer.discover(oauthHost);
+    const neonOAuthClient = new issuer.Client({
+        token_endpoint_auth_method: 'none',
+        client_id: clientId,
+        response_types: ['code'],
+    });
+    return await neonOAuthClient.refresh(tokenSet);
+};
+export const auth = async ({ oauthHost, clientId }) => {
+    log.info('Discovering oauth server');
+    const issuer = await Issuer.discover(oauthHost);
+    //
+    // Start HTTP server and wait till /callback is hit
+    //
+    const server = createServer();
+    server.listen(0, function () {
+        log.info(`Listening on port ${this.address().port}`);
+    });
+    const listen_port = server.address().port;
+    const neonOAuthClient = new issuer.Client({
+        token_endpoint_auth_method: 'none',
+        client_id: clientId,
+        redirect_uris: [REDIRECT_URI(listen_port)],
+        response_types: ['code'],
+    });
+    // https://datatracker.ietf.org/doc/html/rfc6819#section-4.4.1.8
+    const state = generators.state();
+    // we store the code_verifier in memory
+    const codeVerifier = generators.codeVerifier();
+    const codeChallenge = generators.codeChallenge(codeVerifier);
+    return new Promise((resolve) => {
+        server.on('request', async (request, response) => {
+            //
+            // Wait for callback and follow oauth flow.
+            //
+            if (!request.url?.startsWith('/callback')) {
+                response.writeHead(404);
+                response.end();
+                return;
+            }
+            log.info(`Callback received: ${request.url}`);
+            const params = neonOAuthClient.callbackParams(request);
+            const tokenSet = await neonOAuthClient.callback(REDIRECT_URI(listen_port), params, {
+                code_verifier: codeVerifier,
+                state,
+            });
+            response.writeHead(200, { 'Content-Type': 'text/html' });
+            createReadStream(join(fileURLToPath(new URL('.', import.meta.url)), './callback.html')).pipe(response);
+            resolve(tokenSet);
+            server.close();
+        });
+        //
+        // Open browser to let user authenticate
+        //
+        const scopes = clientId == defaultClientID ? NEONCTL_SCOPES : ALWAYS_PRESENT_SCOPES;
+        const authUrl = neonOAuthClient.authorizationUrl({
+            scope: scopes.join(' '),
+            state,
+            code_challenge: codeChallenge,
+            code_challenge_method: 'S256',
+        });
+        open(authUrl);
+    });
+};

package/cli.js

@@ -0,0 +1,2 @@
+#!/usr/bin/env node
+import './index.js';

package/commands/auth.js

@@ -0,0 +1,87 @@
+import { join } from 'node:path';
+import { writeFileSync, existsSync, readFileSync } from 'node:fs';
+import { TokenSet } from 'openid-client';
+import { auth, refreshToken } from '../auth.js';
+import { log } from '../log.js';
+import { getApiClient } from '../api.js';
+const CREDENTIALS_FILE = 'credentials.json';
+export const command = 'auth';
+export const describe = 'Authenticate';
+export const builder = (yargs) => yargs;
+export const handler = async (args) => {
+    await authFlow(args);
+};
+export const authFlow = async ({ configDir, oauthHost, clientId, }) => {
+    if (!clientId) {
+        throw new Error('Missing client id');
+    }
+    const tokenSet = await auth({
+        oauthHost: oauthHost,
+        clientId: clientId,
+    });
+    const credentialsPath = join(configDir, CREDENTIALS_FILE);
+    updateCredentialsFile(credentialsPath, JSON.stringify(tokenSet));
+    log.info(`Saved credentials to ${credentialsPath}`);
+    log.info('Auth complete');
+    return tokenSet.access_token || '';
+};
+// updateCredentialsFile correctly sets needed permissions for the credentials file
+function updateCredentialsFile(path, contents) {
+    writeFileSync(path, contents, {
+        mode: 0o700,
+    });
+}
+export const ensureAuth = async (props) => {
+    if (props._.length === 0) {
+        return;
+    }
+    if (props.apiKey || props._[0] === 'auth') {
+        props.apiClient = getApiClient({
+            apiKey: props.apiKey,
+            apiHost: props.apiHost,
+        });
+        return;
+    }
+    const credentialsPath = join(props.configDir, CREDENTIALS_FILE);
+    if (existsSync(credentialsPath)) {
+        try {
+            const tokenSetContents = await JSON.parse(readFileSync(credentialsPath, 'utf8'));
+            const tokenSet = new TokenSet(tokenSetContents);
+            if (tokenSet.expired()) {
+                log.info('using refresh token to update access token');
+                const refreshedTokenSet = await refreshToken({
+                    oauthHost: props.oauthHost,
+                    clientId: props.clientId,
+                }, tokenSet);
+                props.apiKey = refreshedTokenSet.access_token || 'UNKNOWN';
+                props.apiClient = getApiClient({
+                    apiKey: props.apiKey,
+                    apiHost: props.apiHost,
+                });
+                updateCredentialsFile(credentialsPath, JSON.stringify(refreshedTokenSet));
+                return;
+            }
+            const token = tokenSet.access_token || 'UNKNOWN';
+            props.apiKey = token;
+            props.apiClient = getApiClient({
+                apiKey: props.apiKey,
+                apiHost: props.apiHost,
+            });
+            return;
+        }
+        catch (e) {
+            if (e.code !== 'ENOENT') {
+                // not a "file does not exist" error
+                throw e;
+            }
+            props.apiKey = await authFlow(props);
+        }
+    }
+    else {
+        props.apiKey = await authFlow(props);
+    }
+    props.apiClient = getApiClient({
+        apiKey: props.apiKey,
+        apiHost: props.apiHost,
+    });
+};

package/commands/index.js

@@ -0,0 +1,4 @@
+import * as auth from './auth.js';
+import * as projects from './projects.js';
+import * as users from './users.js';
+export default [auth, projects, users];

package/commands/projects.js

@@ -0,0 +1,68 @@
+import { projectCreateRequest } from '../parameters.gen.js';
+import { writeOut } from '../writer.js';
+const PROJECT_FIELDS = ['id', 'name', 'region_id', 'created_at'];
+export const command = 'projects [command]';
+export const describe = 'Manage projects';
+export const builder = (yargs) => {
+    return yargs
+        .demandCommand(1, '')
+        .fail((msg, err, yargs) => {
+        yargs.showHelp();
+        process.exit(1);
+    })
+        .usage('usage: $0 projects <cmd> [args]')
+        .command('list', 'List projects', (yargs) => yargs, async (args) => {
+        await list(args);
+    })
+        .command('create', 'Create a project', (yargs) => yargs.options(projectCreateRequest), async (args) => {
+        await create(args);
+    })
+        .command('update', 'Update a project', (yargs) => yargs
+        .option('project.id', {
+        describe: 'Project ID',
+        type: 'string',
+        demandOption: true,
+    })
+        .options(projectCreateRequest), async (args) => {
+        await update(args);
+    })
+        .command('delete', 'Delete a project', (yargs) => yargs.options({
+        'project.id': {
+            describe: 'Project ID',
+            type: 'string',
+            demandOption: true,
+        },
+    }), async (args) => {
+        await deleteProject(args);
+    });
+};
+export const handler = (args) => {
+    return args;
+};
+const list = async (props) => {
+    writeOut(props)((await props.apiClient.listProjects({})).data.projects, {
+        fields: PROJECT_FIELDS,
+    });
+};
+const create = async (props) => {
+    if (props.project == null) {
+        const inquirer = await import('inquirer');
+        const answers = await inquirer.default.prompt([
+            { name: 'name', message: 'Project name', type: 'input' },
+        ]);
+        props.project = answers;
+    }
+    writeOut(props)((await props.apiClient.createProject({
+        project: props.project,
+    })).data.project, { fields: PROJECT_FIELDS });
+};
+const deleteProject = async (props) => {
+    writeOut(props)((await props.apiClient.deleteProject(props.project.id)).data.project, {
+        fields: PROJECT_FIELDS,
+    });
+};
+const update = async (props) => {
+    writeOut(props)((await props.apiClient.updateProject(props.project.id, {
+        project: props.project,
+    })).data.project, { fields: PROJECT_FIELDS });
+};

package/commands/users.js

@@ -0,0 +1,12 @@
+import { writeOut } from '../writer.js';
+export const command = 'me';
+export const describe = 'Show current user';
+export const builder = (yargs) => yargs;
+export const handler = async (args) => {
+    await me(args);
+};
+const me = async (props) => {
+    writeOut(props)((await props.apiClient.getCurrentUserInfo()).data, {
+        fields: ['login', 'email', 'name', 'projects_limit'],
+    });
+};

package/config.js

@@ -0,0 +1,9 @@
+import { join } from 'node:path';
+import { homedir } from 'node:os';
+import { existsSync, mkdirSync } from 'node:fs';
+export const defaultDir = join(homedir(), process.env.XDG_CONFIG_HOME || '.config', 'neonctl');
+export const ensureConfigDir = async ({ 'config-dir': configDir, }) => {
+    if (!existsSync(configDir)) {
+        mkdirSync(configDir);
+    }
+};

package/index.js

@@ -0,0 +1,76 @@
+import yargs from 'yargs';
+import { hideBin } from 'yargs/helpers';
+import { readFileSync } from 'node:fs';
+import { ensureAuth } from './commands/auth.js';
+import { defaultDir, ensureConfigDir } from './config.js';
+import { log } from './log.js';
+import { defaultClientID } from './auth.js';
+import { isApiError } from './api.js';
+import { fillInArgs } from './utils.js';
+import commands from './commands/index.js';
+const pkg = JSON.parse(readFileSync('package.json', 'utf-8'));
+const builder = yargs(hideBin(process.argv))
+    .scriptName(pkg.name)
+    .usage('usage: $0 <cmd> [args]')
+    .help()
+    .option('output', {
+    describe: 'Set output format',
+    type: 'string',
+    choices: ['json', 'yaml', 'table'],
+    default: 'table',
+})
+    .option('api-host', {
+    describe: 'The API host',
+    default: 'https://console.neon.tech/api/v2',
+})
+    // Setup config directory
+    .option('config-dir', {
+    describe: 'Path to config directory',
+    type: 'string',
+    default: defaultDir,
+})
+    .middleware(ensureConfigDir)
+    // Auth flow
+    .option('oauth-host', {
+    description: 'URL to Neon OAUTH host',
+    default: 'https://oauth2.neon.tech',
+})
+    .option('client-id', {
+    description: 'OAuth client id',
+    type: 'string',
+    default: defaultClientID,
+})
+    .option('api-key', {
+    describe: 'API key',
+    type: 'string',
+    default: '',
+})
+    .option('apiClient', {
+    hidden: true,
+    coerce: (v) => v,
+    default: true,
+})
+    .middleware((args) => fillInArgs(args), true)
+    .middleware(ensureAuth)
+    .command(commands)
+    .fail(async (msg, err) => {
+    if (isApiError(err)) {
+        if (err.response.status === 401) {
+            log.error('Authentication failed, please run `neonctl auth`');
+        }
+        else {
+            log.error('%d: %s\n%s', err.response.status, err.response.statusText, err.response.data?.message);
+        }
+    }
+    else {
+        log.error(msg || err?.message);
+    }
+    process.exit(1);
+});
+(async () => {
+    const args = await builder.argv;
+    if (args._.length === 0) {
+        builder.showHelp();
+        process.exit(0);
+    }
+})();

package/log.js

@@ -0,0 +1,9 @@
+import { format } from 'node:util';
+export const log = {
+    info: (...args) => {
+        process.stderr.write(`INFO: ${format(...args)}\n`);
+    },
+    error: (...args) => {
+        process.stderr.write(`ERROR: ${format(...args)}\n`);
+    },
+};

package/package.json

@@ -1,50 +1,65 @@
 {
-    "name": "neonctl",
-    "version": "0.5.4",
-    "description": "CLI tool for NeonDB Cloud management",
-    "main": "index.js",
-    "author": "NeonDB",
-    "license": "MIT",
-    "private": false,
-    "bin": {
-        "neonctl": "src/cli.js"
-    },
-    "devDependencies": {
-        "@types/cli-table": "^0.3.0",
-        "@types/node": "^18.7.13",
-        "@types/yargs": "^17.0.11",
-        "@typescript-eslint/eslint-plugin": "^5.34.0",
-        "@typescript-eslint/parser": "^5.34.0",
-        "eslint": "^8.22.0",
-        "husky": "^8.0.1",
-        "lint-staged": "^13.0.3",
-        "prettier": "^2.7.1",
-        "ts-node": "^10.9.1",
-        "typescript": "^4.7.4"
-    },
-    "dependencies": {
-        "cli-table": "^0.3.11",
-        "open": "^8.4.0",
-        "openid-client": "^5.1.9",
-        "yargs": "^17.5.1"
-    },
-    "publishConfig": {
-        "access": "public",
-        "registry": "https://registry.npmjs.org/"
-    },
-    "scripts": {
-        "dev": "node dev.js",
-        "lint": "eslint src --ext .ts",
-        "debug": "node --inspect-brk dev.js",
-        "build": "npm run clean && tsc && cp src/*.html dist/src/",
-        "clean": "rm -rf dist",
-        "start": "node index.js",
-        "publizh": "npm run build && npm publish ./dist && git push"
-    },
-    "lint-staged": {
-        "*.ts": [
-            "eslint --cache --fix",
-            "prettier --write"
-        ]
-    }
+  "name": "neonctl",
+  "repository": {
+    "type": "git",
+    "url": "git@github.com:neondatabase/neonctl.git"
+  },
+  "type": "module",
+  "version": "0.7.0-test.1",
+  "description": "CLI tool for NeonDB Cloud management",
+  "main": "index.js",
+  "author": "NeonDB",
+  "license": "MIT",
+  "private": false,
+  "engines": {
+    "node": ">=18"
+  },
+  "bin": {
+    "neonctl": "cli.js"
+  },
+  "devDependencies": {
+    "@semantic-release/git": "^10.0.1",
+    "@types/cli-table": "^0.3.0",
+    "@types/inquirer": "^9.0.3",
+    "@types/node": "^18.7.13",
+    "@types/yargs": "^17.0.24",
+    "@typescript-eslint/eslint-plugin": "^5.34.0",
+    "@typescript-eslint/parser": "^5.34.0",
+    "eslint": "^8.22.0",
+    "husky": "^8.0.1",
+    "lint-staged": "^13.0.3",
+    "prettier": "^2.7.1",
+    "semantic-release": "^21.0.2",
+    "ts-morph": "^18.0.0",
+    "ts-node": "^10.9.1",
+    "typescript": "^4.7.4"
+  },
+  "dependencies": {
+    "@neondatabase/api-client": "^0.1.0",
+    "axios": "^1.4.0",
+    "cli-table": "^0.3.11",
+    "inquirer": "^9.2.6",
+    "open": "^8.4.0",
+    "openid-client": "^5.1.9",
+    "yaml": "^2.1.1",
+    "yargs": "^17.7.2"
+  },
+  "publishConfig": {
+    "access": "public",
+    "registry": "https://registry.npmjs.org/"
+  },
+  "scripts": {
+    "watch": "tsc --watch",
+    "lint": "tsc --noEmit && eslint src --ext .ts",
+    "build": "npm run generateParams && npm run clean && tsc && cp src/*.html dist/ && cp package.json ./dist",
+    "clean": "rm -rf dist",
+    "generateParams": "ts-node --esm generateParams.ts",
+    "start": "node src/index.js"
+  },
+  "lint-staged": {
+    "*.ts": [
+      "eslint --cache --fix",
+      "prettier --write"
+    ]
+  }
 }

package/parameters.gen.js

@@ -0,0 +1,64 @@
+// FILE IS GENERATED, DO NOT EDIT
+export const projectCreateRequest = {
+    'project.settings.quota.active_time_seconds': {
+        type: 'number',
+        description: "The total amount of wall-clock time allowed to be spent by project's compute endpoints.",
+    },
+    'project.settings.quota.compute_time_seconds': {
+        type: 'number',
+        description: "The total amount of CPU seconds allowed to be spent by project's compute endpoints.",
+    },
+    'project.settings.quota.written_data_bytes': {
+        type: 'number',
+        description: "Total amount of data written to all project's branches.",
+    },
+    'project.settings.quota.data_transfer_bytes': {
+        type: 'number',
+        description: "Total amount of data transferred from all project's branches using proxy.",
+    },
+    'project.settings.quota.logical_size_bytes': {
+        type: 'number',
+        description: "Limit on the logical size of every project's branch.",
+    },
+    'project.name': {
+        type: 'string',
+        description: "The project name",
+    },
+    'project.branch.name': {
+        type: 'string',
+        description: "The branch name. If not specified, the default branch name will be used.",
+    },
+    'project.branch.role_name': {
+        type: 'string',
+        description: "The role name. If not specified, the default role name will be used.",
+    },
+    'project.branch.database_name': {
+        type: 'string',
+        description: "The database name. If not specified, the default database name will be used.",
+    },
+    'project.autoscaling_limit_min_cu': {
+        type: 'number',
+        description: "The minimum number of CPU units",
+    },
+    'project.autoscaling_limit_max_cu': {
+        type: 'number',
+        description: "The maximum number of CPU units",
+    },
+    'project.provisioner': {
+        type: 'string',
+        choices: ["k8s-pod", "k8s-neonvm", "docker"],
+        description: "The Neon compute provisioner.",
+    },
+    'project.region_id': {
+        type: 'string',
+        description: "The region identifier. See [the documentation](https://neon.tech/docs/introduction/regions) for the list of supported regions.",
+    },
+    'project.pg_version': {
+        type: 'number',
+        description: "The major PostgreSQL version number. Currently supported version are `14` and `15`.",
+    },
+    'project.store_passwords': {
+        type: 'boolean',
+        description: "Whether or not passwords are stored for roles in the Neon project. Storing passwords facilitates access to Neon features that require authorization.",
+    },
+};

package/types.js

@@ -0,0 +1 @@
+export {};

package/utils.js

@@ -0,0 +1,20 @@
+/**
+ * This middleware is needed to fill in the args for nested objects,
+ * so that required arguments would work
+ * otherwise yargs just throws an error
+ */
+export const fillInArgs = (args, currentArgs = args, acc = []) => {
+    Object.entries(currentArgs).forEach(([k, v]) => {
+        if (k === '_') {
+            return;
+        }
+        // check if the value is an Object
+        if (typeof v === 'object' && v !== null) {
+            fillInArgs(args, v, [...acc, k]);
+        }
+        else if (acc.length > 0) {
+            // if it's not an object, and we have a path, fill it in
+            args[acc.join('.') + '.' + k] = v;
+        }
+    });
+};

package/writer.js

@@ -0,0 +1,33 @@
+import YAML from 'yaml';
+import Table from 'cli-table';
+// Allow PIPE to finish reading before the end of the output.
+process.stdout.on('error', function (err) {
+    if (err.code == 'EPIPE') {
+        process.exit(0);
+    }
+});
+export const writeOut = (props) => (data, config) => {
+    if (props.output == 'yaml') {
+        process.stdout.write(YAML.stringify(data, null, 2));
+        return;
+    }
+    if (props.output == 'json') {
+        process.stdout.write(JSON.stringify(data, null, 2));
+        return;
+    }
+    const arrayData = Array.isArray(data) ? data : [data];
+    const table = new Table({
+        style: {
+            head: ['green'],
+        },
+        head: config.fields.map((field) => field
+            .split('_')
+            .map((word) => word[0].toUpperCase() + word.slice(1))
+            .join(' ')),
+    });
+    arrayData.forEach((item) => {
+        table.push(config.fields.map((field) => item[field] ?? ''));
+    });
+    process.stdout.write(table.toString());
+    process.stdout.write('\n');
+};

package/src/api/gateway.js

@@ -1,72 +0,0 @@
-"use strict";
-var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
-    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
-    return new (P || (P = Promise))(function (resolve, reject) {
-        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
-        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
-        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
-        step((generator = generator.apply(thisArg, _arguments || [])).next());
-    });
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.apiCall = exports.ApiError = void 0;
-const node_https_1 = require("node:https");
-class ApiError extends Error {
-    constructor(response) {
-        super(response.statusMessage);
-        this.response = response;
-    }
-    getApiError() {
-        return __awaiter(this, void 0, void 0, function* () {
-            return new Promise((resolve, reject) => {
-                const data = [];
-                this.response
-                    .on('data', (chunk) => {
-                    data.push(chunk);
-                })
-                    .on('end', () => {
-                    try {
-                        const json = JSON.parse(data.join(''));
-                        resolve((json === null || json === void 0 ? void 0 : json.message) ||
-                            `${this.response.statusCode}:${this.message}:${data.join('')}`);
-                    }
-                    catch (e) {
-                        reject(e);
-                    }
-                })
-                    .on('error', (e) => {
-                    reject(e);
-                });
-            });
-        });
-    }
-}
-exports.ApiError = ApiError;
-const apiCall = ({ apiHost, token, path, body, method = 'GET', }) => new Promise((resolve, reject) => {
-    const req = (0, node_https_1.request)(`${apiHost}/api/v1/${path}`, {
-        headers: {
-            Authorization: `Bearer ${token}`,
-            Accept: 'application/json',
-            'Content-Type': 'application/json',
-        },
-        method,
-    }, (res) => {
-        if (!res.statusCode || res.statusCode >= 400) {
-            reject(new ApiError(res));
-            return;
-        }
-        let result = '';
-        res.on('data', (data) => {
-            result += data;
-        });
-        res.on('end', () => {
-            resolve(JSON.parse(result));
-        });
-    });
-    req.on('error', reject);
-    if (body) {
-        req.write(JSON.stringify(body));
-    }
-    req.end();
-});
-exports.apiCall = apiCall;

package/src/api/projects.js

@@ -1,13 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.createProject = exports.listProjects = void 0;
-const gateway_1 = require("./gateway");
-const listProjects = (props) => (0, gateway_1.apiCall)(Object.assign(Object.assign({}, props), { path: 'projects', method: 'GET' }));
-exports.listProjects = listProjects;
-const createProject = (props) => (0, gateway_1.apiCall)(Object.assign(Object.assign({}, props), { body: {
-        project: {
-            settings: props.settings,
-            name: props.name,
-        },
-    }, path: 'projects', method: 'POST' }));
-exports.createProject = createProject;

package/src/api/users.js

@@ -1,6 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.apiMe = void 0;
-const gateway_1 = require("./gateway");
-const apiMe = (props) => (0, gateway_1.apiCall)(Object.assign(Object.assign({}, props), { path: 'users/me', method: 'GET' }));
-exports.apiMe = apiMe;

package/src/auth.js

@@ -1,106 +0,0 @@
-"use strict";
-var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
-    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
-    return new (P || (P = Promise))(function (resolve, reject) {
-        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
-        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
-        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
-        step((generator = generator.apply(thisArg, _arguments || [])).next());
-    });
-};
-var __importDefault = (this && this.__importDefault) || function (mod) {
-    return (mod && mod.__esModule) ? mod : { "default": mod };
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.auth = exports.refreshToken = void 0;
-const openid_client_1 = require("openid-client");
-const node_http_1 = require("node:http");
-const node_fs_1 = require("node:fs");
-const node_path_1 = require("node:path");
-const open_1 = __importDefault(require("open"));
-const log_1 = require("./log");
-// oauth server timeouts
-const SERVER_TIMEOUT = 10000;
-// where to wait for incoming redirect request from oauth server to arrive
-const REDIRECT_URI = (port) => `http://127.0.0.1:${port}/callback`;
-// These scopes cannot be cancelled, they are always needed.
-const DEFAULT_SCOPES = [
-    'openid',
-    'offline',
-    'offline_access',
-    'urn:neoncloud:projects:create',
-    'urn:neoncloud:projects:read',
-    'urn:neoncloud:projects:modify',
-    'urn:neoncloud:projects:delete',
-];
-openid_client_1.custom.setHttpOptionsDefaults({
-    timeout: SERVER_TIMEOUT,
-});
-const refreshToken = ({ oauthHost, clientId }, tokenSet) => __awaiter(void 0, void 0, void 0, function* () {
-    log_1.log.info('Discovering oauth server');
-    const issuer = yield openid_client_1.Issuer.discover(oauthHost);
-    const neonOAuthClient = new issuer.Client({
-        token_endpoint_auth_method: 'none',
-        client_id: clientId,
-        response_types: ['code'],
-    });
-    return yield neonOAuthClient.refresh(tokenSet);
-});
-exports.refreshToken = refreshToken;
-const auth = ({ oauthHost, clientId }) => __awaiter(void 0, void 0, void 0, function* () {
-    log_1.log.info('Discovering oauth server');
-    const issuer = yield openid_client_1.Issuer.discover(oauthHost);
-    //
-    // Start HTTP server and wait till /callback is hit
-    //
-    const server = (0, node_http_1.createServer)();
-    server.listen(0, function () {
-        log_1.log.info(`Listening on port ${this.address().port}`);
-    });
-    const listen_port = server.address().port;
-    const neonOAuthClient = new issuer.Client({
-        token_endpoint_auth_method: 'none',
-        client_id: clientId,
-        redirect_uris: [REDIRECT_URI(listen_port)],
-        response_types: ['code'],
-    });
-    // https://datatracker.ietf.org/doc/html/rfc6819#section-4.4.1.8
-    const state = openid_client_1.generators.state();
-    // we store the code_verifier in memory
-    const codeVerifier = openid_client_1.generators.codeVerifier();
-    const codeChallenge = openid_client_1.generators.codeChallenge(codeVerifier);
-    return new Promise((resolve) => {
-        server.on('request', (request, response) => __awaiter(void 0, void 0, void 0, function* () {
-            var _a;
-            //
-            // Wait for callback and follow oauth flow.
-            //
-            if (!((_a = request.url) === null || _a === void 0 ? void 0 : _a.startsWith('/callback'))) {
-                response.writeHead(404);
-                response.end();
-                return;
-            }
-            log_1.log.info(`Callback received: ${request.url}`);
-            const params = neonOAuthClient.callbackParams(request);
-            const tokenSet = yield neonOAuthClient.callback(REDIRECT_URI(listen_port), params, {
-                code_verifier: codeVerifier,
-                state,
-            });
-            response.writeHead(200, { 'Content-Type': 'text/html' });
-            (0, node_fs_1.createReadStream)((0, node_path_1.join)(__dirname, './callback.html')).pipe(response);
-            resolve(tokenSet);
-            server.close();
-        }));
-        //
-        // Open browser to let user authenticate
-        //
-        const authUrl = neonOAuthClient.authorizationUrl({
-            scope: DEFAULT_SCOPES.join(' '),
-            state,
-            code_challenge: codeChallenge,
-            code_challenge_method: 'S256',
-        });
-        (0, open_1.default)(authUrl);
-    });
-});
-exports.auth = auth;

package/src/cli.js

@@ -1,4 +0,0 @@
-#!/usr/bin/env node
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-require("./index");

package/src/commands/auth.js

@@ -1,113 +0,0 @@
-"use strict";
-var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    var desc = Object.getOwnPropertyDescriptor(m, k);
-    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
-      desc = { enumerable: true, get: function() { return m[k]; } };
-    }
-    Object.defineProperty(o, k2, desc);
-}) : (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    o[k2] = m[k];
-}));
-var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
-    Object.defineProperty(o, "default", { enumerable: true, value: v });
-}) : function(o, v) {
-    o["default"] = v;
-});
-var __importStar = (this && this.__importStar) || function (mod) {
-    if (mod && mod.__esModule) return mod;
-    var result = {};
-    if (mod != null) for (var k in mod) if (k !== "default" && Object.prototype.hasOwnProperty.call(mod, k)) __createBinding(result, mod, k);
-    __setModuleDefault(result, mod);
-    return result;
-};
-var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
-    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
-    return new (P || (P = Promise))(function (resolve, reject) {
-        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
-        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
-        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
-        step((generator = generator.apply(thisArg, _arguments || [])).next());
-    });
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.ensureAuth = exports.authFlow = void 0;
-const node_path_1 = require("node:path");
-const node_fs_1 = require("node:fs");
-const openid_client_1 = require("openid-client");
-const auth_1 = require("../auth");
-const log_1 = require("../log");
-const users_1 = require("../api/users");
-const gateway_1 = require("../api/gateway");
-const CREDENTIALS_FILE = 'credentials.json';
-const authFlow = ({ 'config-dir': configDir, 'oauth-host': oauthHost, 'client-id': clientId, }) => __awaiter(void 0, void 0, void 0, function* () {
-    if (!clientId) {
-        throw new Error('Missing client id');
-    }
-    const tokenSet = yield (0, auth_1.auth)({
-        oauthHost: oauthHost,
-        clientId: clientId,
-    });
-    const credentialsPath = (0, node_path_1.join)(configDir, CREDENTIALS_FILE);
-    updateCredentialsFile(credentialsPath, JSON.stringify(tokenSet));
-    log_1.log.info(`Saved credentials to ${credentialsPath}`);
-    log_1.log.info('Auth complete');
-    return tokenSet.access_token || '';
-});
-exports.authFlow = authFlow;
-const validateToken = (props) => __awaiter(void 0, void 0, void 0, function* () {
-    try {
-        yield (0, users_1.apiMe)(props);
-    }
-    catch (e) {
-        if (e instanceof gateway_1.ApiError) {
-            if (e.response.statusCode === 401) {
-                throw new Error('Invalid token');
-            }
-        }
-    }
-});
-// updateCredentialsFile correctly sets needed permissions for the credentials file
-function updateCredentialsFile(path, contents) {
-    (0, node_fs_1.writeFileSync)(path, contents, {
-        mode: 0o700,
-    });
-}
-const ensureAuth = (props) => __awaiter(void 0, void 0, void 0, function* () {
-    if (props.token || props._[0] === 'auth') {
-        return;
-    }
-    const credentialsPath = (0, node_path_1.join)(props['config-dir'], CREDENTIALS_FILE);
-    if ((0, node_fs_1.existsSync)(credentialsPath)) {
-        try {
-            const tokenSetContents = yield Promise.resolve().then(() => __importStar(require(credentialsPath)));
-            const tokenSet = new openid_client_1.TokenSet(tokenSetContents);
-            if (tokenSet.expired()) {
-                log_1.log.info('using refresh token to update access token');
-                const refreshedTokenSet = yield (0, auth_1.refreshToken)({
-                    oauthHost: props['oauth-host'],
-                    clientId: props['client-id'],
-                }, tokenSet);
-                props.token = refreshedTokenSet.access_token || 'UNKNOWN';
-                updateCredentialsFile(credentialsPath, JSON.stringify(refreshedTokenSet));
-                return;
-            }
-            const token = tokenSet.access_token || 'UNKNOWN';
-            yield validateToken({ apiHost: props['api-host'], token });
-            props.token = token;
-            return;
-        }
-        catch (e) {
-            if (e.code !== 'ENOENT') {
-                // not a "file does not exist" error
-                throw e;
-            }
-            props.token = yield (0, exports.authFlow)(props);
-        }
-    }
-    else {
-        props.token = yield (0, exports.authFlow)(props);
-    }
-});
-exports.ensureAuth = ensureAuth;

package/src/commands/projects.js

@@ -1,22 +0,0 @@
-"use strict";
-var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
-    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
-    return new (P || (P = Promise))(function (resolve, reject) {
-        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
-        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
-        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
-        step((generator = generator.apply(thisArg, _arguments || [])).next());
-    });
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.create = exports.list = void 0;
-const projects_1 = require("../api/projects");
-const writer_1 = require("../writer");
-const list = (props) => __awaiter(void 0, void 0, void 0, function* () {
-    (0, writer_1.writeOut)(props)(yield (0, projects_1.listProjects)(props), { fields: [] });
-});
-exports.list = list;
-const create = (props) => __awaiter(void 0, void 0, void 0, function* () {
-    (0, writer_1.writeOut)(props)(yield (0, projects_1.createProject)(Object.assign(Object.assign({}, props), { settings: {}, name: props.name })), { fields: ['id', 'name', 'region_name', 'created_at'] });
-});
-exports.create = create;

package/src/commands/users.js

@@ -1,20 +0,0 @@
-"use strict";
-var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
-    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
-    return new (P || (P = Promise))(function (resolve, reject) {
-        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
-        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
-        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
-        step((generator = generator.apply(thisArg, _arguments || [])).next());
-    });
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.me = void 0;
-const users_1 = require("../api/users");
-const writer_1 = require("../writer");
-const me = (props) => __awaiter(void 0, void 0, void 0, function* () {
-    (0, writer_1.writeOut)(props)(yield (0, users_1.apiMe)(props), {
-        fields: ['login', 'email', 'name', 'projects_limit'],
-    });
-});
-exports.me = me;

package/src/config.js

@@ -1,25 +0,0 @@
-"use strict";
-var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
-    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
-    return new (P || (P = Promise))(function (resolve, reject) {
-        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
-        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
-        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
-        step((generator = generator.apply(thisArg, _arguments || [])).next());
-    });
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.ensureConfigDir = exports.defaultDir = void 0;
-const node_path_1 = require("node:path");
-const node_os_1 = require("node:os");
-const node_fs_1 = require("node:fs");
-const DIR_NAME = '.neonctl';
-const cwdDir = (0, node_path_1.join)(process.cwd(), DIR_NAME);
-const homeConfigDir = (0, node_path_1.join)((0, node_os_1.homedir)(), process.env.XDG_CONFIG_HOME || '.config', DIR_NAME);
-exports.defaultDir = (0, node_fs_1.existsSync)(cwdDir) ? cwdDir : homeConfigDir;
-const ensureConfigDir = ({ 'config-dir': configDir, }) => __awaiter(void 0, void 0, void 0, function* () {
-    if (!(0, node_fs_1.existsSync)(configDir)) {
-        (0, node_fs_1.mkdirSync)(configDir);
-    }
-});
-exports.ensureConfigDir = ensureConfigDir;

package/src/index.js

@@ -1,127 +0,0 @@
-"use strict";
-var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    var desc = Object.getOwnPropertyDescriptor(m, k);
-    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
-      desc = { enumerable: true, get: function() { return m[k]; } };
-    }
-    Object.defineProperty(o, k2, desc);
-}) : (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    o[k2] = m[k];
-}));
-var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
-    Object.defineProperty(o, "default", { enumerable: true, value: v });
-}) : function(o, v) {
-    o["default"] = v;
-});
-var __importStar = (this && this.__importStar) || function (mod) {
-    if (mod && mod.__esModule) return mod;
-    var result = {};
-    if (mod != null) for (var k in mod) if (k !== "default" && Object.prototype.hasOwnProperty.call(mod, k)) __createBinding(result, mod, k);
-    __setModuleDefault(result, mod);
-    return result;
-};
-var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
-    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
-    return new (P || (P = Promise))(function (resolve, reject) {
-        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
-        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
-        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
-        step((generator = generator.apply(thisArg, _arguments || [])).next());
-    });
-};
-var __importDefault = (this && this.__importDefault) || function (mod) {
-    return (mod && mod.__esModule) ? mod : { "default": mod };
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-const yargs = __importStar(require("yargs"));
-const package_json_1 = __importDefault(require("../package.json"));
-const gateway_1 = require("./api/gateway");
-const auth_1 = require("./commands/auth");
-const config_1 = require("./config");
-const log_1 = require("./log");
-const showHelpMiddleware = (argv) => {
-    if (argv._.length === 1) {
-        yargs.showHelp();
-        process.exit(0);
-    }
-};
-const builder = yargs
-    .scriptName(package_json_1.default.name)
-    .usage('usage: $0 <cmd> [args]')
-    .help()
-    .option('json', {
-    describe: 'Set output format to JSON',
-    type: 'boolean',
-})
-    .option('api-host', {
-    describe: 'The API host',
-    default: 'https://console.neon.tech',
-})
-    // Setup config directory
-    .option('config-dir', {
-    describe: 'Path to config directory',
-    type: 'string',
-    default: config_1.defaultDir,
-})
-    .middleware(config_1.ensureConfigDir)
-    // Auth flow
-    .option('oauth-host', {
-    description: 'URL to Neon OAUTH host',
-    default: 'https://oauth2.neon.tech',
-})
-    .option('client-id', {
-    description: 'OAuth client id',
-    type: 'string',
-    default: 'neonctl',
-})
-    .command('auth', 'Authenticate user', (yargs) => yargs, (args) => __awaiter(void 0, void 0, void 0, function* () {
-    (yield Promise.resolve().then(() => __importStar(require('./commands/auth')))).authFlow(args);
-}))
-    // Ensure auth token
-    .option('token', {
-    describe: 'Auth token',
-    type: 'string',
-    default: '',
-})
-    .command('me', 'Get user info', (yargs) => yargs.middleware(auth_1.ensureAuth), (args) => __awaiter(void 0, void 0, void 0, function* () {
-    yield (yield Promise.resolve().then(() => __importStar(require('./commands/users')))).me(args);
-}))
-    .command('projects', 'Manage projects', (yargs) => __awaiter(void 0, void 0, void 0, function* () {
-    yargs
-        .usage('usage: $0 projects <cmd> [args]')
-        // .command(
-        //   'list',
-        //   'List projects',
-        //   (yargs) => yargs,
-        //   async (args) => {
-        //     await (await import('./commands/projects')).list(args);
-        //   }
-        // )
-        .command('create', 'Create a project', (yargs) => yargs.option('name', {
-        describe: 'Project name',
-        type: 'string',
-    }), (args) => __awaiter(void 0, void 0, void 0, function* () {
-        yield (yield Promise.resolve().then(() => __importStar(require('./commands/projects')))).create(args);
-    }))
-        .middleware(showHelpMiddleware)
-        .middleware(auth_1.ensureAuth);
-}))
-    .strict()
-    .fail((msg, err) => __awaiter(void 0, void 0, void 0, function* () {
-    if (err instanceof gateway_1.ApiError) {
-        log_1.log.error(yield err.getApiError());
-    }
-    else {
-        log_1.log.error(msg || err.message);
-    }
-    process.exit(1);
-}));
-(() => __awaiter(void 0, void 0, void 0, function* () {
-    const args = yield builder.argv;
-    if (args._.length === 0) {
-        yargs.showHelp();
-        process.exit(0);
-    }
-}))();

package/src/log.js

@@ -1,12 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.log = void 0;
-const node_util_1 = require("node:util");
-exports.log = {
-    info: (...args) => {
-        process.stderr.write(`INFO: ${(0, node_util_1.format)(...args)}\n`);
-    },
-    error: (...args) => {
-        process.stderr.write(`ERROR: ${(0, node_util_1.format)(...args)}\n`);
-    },
-};

package/src/types.js

@@ -1,2 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });

package/src/writer.js

@@ -1,29 +0,0 @@
-"use strict";
-var __importDefault = (this && this.__importDefault) || function (mod) {
-    return (mod && mod.__esModule) ? mod : { "default": mod };
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.writeOut = void 0;
-const cli_table_1 = __importDefault(require("cli-table"));
-const writeOut = (props) => (data, config) => {
-    if (props.json) {
-        process.stdout.write(JSON.stringify(data, null, 2));
-        return;
-    }
-    const arrayData = Array.isArray(data) ? data : [data];
-    const table = new cli_table_1.default({
-        style: {
-            head: ['green'],
-        },
-        head: config.fields.map((field) => field
-            .split('_')
-            .map((word) => word[0].toUpperCase() + word.slice(1))
-            .join(' ')),
-    });
-    arrayData.forEach((item) => {
-        table.push(config.fields.map((field) => { var _a; return (_a = item[field]) !== null && _a !== void 0 ? _a : ''; }));
-    });
-    process.stdout.write(table.toString());
-    process.stdout.write('\n');
-};
-exports.writeOut = writeOut;