npm - oathbound - Versions diffs - 0.6.0 → 0.6.1 - Mend

oathbound 0.6.0 → 0.6.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (3) hide show

package/auth.ts CHANGED Viewed

@@ -1,14 +1,16 @@
 import { createClient } from '@supabase/supabase-js';
+import { spawn } from 'node:child_process';
 import {
   mkdirSync, writeFileSync, readFileSync, unlinkSync, existsSync,
 } from 'node:fs';
 import { join } from 'node:path';
 import { homedir } from 'node:os';
-import { intro, outro, text, password, cancel, isCancel } from '@clack/prompts';
+import { intro, outro } from '@clack/prompts';
 import { BRAND, GREEN, DIM, BOLD, RESET, fail, spinner } from './ui';
 const SUPABASE_URL = 'https://mjnfqagwuewhgwbtrdgs.supabase.co';
 const SUPABASE_ANON_KEY = 'sb_publishable_T-rk0azNRqAMLLGCyadyhQ_ulk9685n';
+const API_BASE = process.env.OATHBOUND_API_URL ?? 'https://oathbound.ai';
 const AUTH_DIR = join(homedir(), '.oathbound');
 const AUTH_FILE = join(AUTH_DIR, 'auth.json');
@@ -37,51 +39,117 @@ function clearSession(): void {
   if (existsSync(AUTH_FILE)) unlinkSync(AUTH_FILE);
 }
+function openBrowser(url: string): void {
+  const cmd = process.platform === 'darwin' ? 'open'
+    : process.platform === 'win32' ? 'cmd'
+    : 'xdg-open';
+  const args = process.platform === 'win32' ? ['/c', 'start', '', url] : [url];
+  try {
+    spawn(cmd, args, { stdio: 'ignore', detached: true }).unref();
+  } catch {
+    // URL is already printed — user can open manually
+  }
+}
+const SUCCESS_HTML = `<!DOCTYPE html>
+<html><head><title>Oathbound CLI</title></head>
+<body style="font-family:system-ui;display:flex;justify-content:center;align-items:center;height:100vh;margin:0;background:#0a0a0a;color:#e5e5e5">
+<div style="text-align:center">
+<h1 style="color:#3fa8a4">&#10003; Logged in</h1>
+<p>You can close this tab and return to your terminal.</p>
+</div></body></html>`;
+const ERROR_HTML = `<!DOCTYPE html>
+<html><head><title>Oathbound CLI</title></head>
+<body style="font-family:system-ui;display:flex;justify-content:center;align-items:center;height:100vh;margin:0;background:#0a0a0a;color:#e5e5e5">
+<div style="text-align:center">
+<h1 style="color:#ef4444">Login failed</h1>
+<p>Missing session tokens. Please try again.</p>
+</div></body></html>`;
 export async function login(): Promise<void> {
   intro(BRAND);
-  const email = await text({
-    message: 'Email:',
-    validate(value) {
-      if (!value.includes('@')) return 'Please enter a valid email';
+  let resolveSession: (s: StoredSession) => void;
+  let rejectSession: (e: Error) => void;
+  const sessionPromise = new Promise<StoredSession>((res, rej) => {
+    resolveSession = res;
+    rejectSession = rej;
+  });
+  const server = Bun.serve({
+    port: 0,
+    fetch(req) {
+      const url = new URL(req.url);
+      if (url.pathname !== '/callback') {
+        return new Response('Not found', { status: 404 });
+      }
+      const accessToken = url.searchParams.get('access_token');
+      const refreshToken = url.searchParams.get('refresh_token');
+      const expiresAt = url.searchParams.get('expires_at');
+      if (!accessToken || !refreshToken || !expiresAt) {
+        rejectSession!(new Error('Missing session tokens from callback'));
+        setTimeout(() => server.stop(), 500);
+        return new Response(ERROR_HTML, { headers: { 'Content-Type': 'text/html' } });
+      }
+      resolveSession!({
+        access_token: accessToken,
+        refresh_token: refreshToken,
+        expires_at: Number(expiresAt),
+      });
+      setTimeout(() => server.stop(), 500);
+      return new Response(SUCCESS_HTML, { headers: { 'Content-Type': 'text/html' } });
     },
   });
-  if (isCancel(email)) { cancel('Login cancelled.'); process.exit(0); }
-  const pw = await password({ message: 'Password:' });
-  if (isCancel(pw)) { cancel('Login cancelled.'); process.exit(0); }
+  const port = server.port;
+  const loginUrl = `${API_BASE}/cli-login?port=${port}`;
-  const spin = spinner('Signing in...');
+  console.log(`${DIM}   Opening browser...${RESET}`);
+  console.log(`${DIM}   If it doesn't open, visit:${RESET}`);
+  console.log(`${DIM}   ${loginUrl}${RESET}\n`);
-  const supabase = createClient(SUPABASE_URL, SUPABASE_ANON_KEY, {
-    auth: { autoRefreshToken: false, persistSession: false },
-  });
+  openBrowser(loginUrl);
-  const { data, error } = await supabase.auth.signInWithPassword({
-    email: email as string,
-    password: pw as string,
-  });
+  const spin = spinner('Waiting for login...');
-  spin.stop();
+  const timeout = new Promise<never>((_, rej) =>
+    setTimeout(() => rej(new Error('Login timed out (2 minutes). Please try again.')), 120_000),
+  );
-  if (error || !data.session) {
-    fail('Login failed', error?.message ?? 'No session returned');
+  let session: StoredSession;
+  try {
+    session = await Promise.race([sessionPromise, timeout]);
+  } catch (err) {
+    spin.stop();
+    server.stop();
+    fail('Login failed', err instanceof Error ? err.message : 'Unknown error');
   }
-  saveSession({
-    access_token: data.session.access_token,
-    refresh_token: data.session.refresh_token,
-    expires_at: data.session.expires_at!,
-  });
+  spin.stop();
+  saveSession(session);
   // Get username for display
-  const { data: userRecord } = await supabase
-    .from('users')
-    .select('username')
-    .eq('user_id', data.user.id)
-    .single();
+  const supabase = createClient(SUPABASE_URL, SUPABASE_ANON_KEY, {
+    global: { headers: { Authorization: `Bearer ${session.access_token}` } },
+    auth: { autoRefreshToken: false, persistSession: false },
+  });
+  const { data: { user } } = await supabase.auth.getUser();
+  let displayName = user?.email ?? 'unknown';
+  if (user) {
+    const { data: userRecord } = await supabase
+      .from('users')
+      .select('username')
+      .eq('user_id', user.id)
+      .single();
+    if (userRecord?.username) displayName = userRecord.username;
+  }
-  const displayName = userRecord?.username ?? data.user.email ?? 'unknown';
   outro(`Logged in as ${BOLD}${displayName}${RESET}`);
 }

package/cli.ts CHANGED Viewed

@@ -25,7 +25,7 @@ export { stripJsoncComments, writeOathboundConfig, mergeClaudeSettings, type Mer
 export { isNewer } from './update';
 export { installDevDependency, type InstallResult, setup, addPrepareScript, type PrepareResult };
-const VERSION = '0.6.0';
+const VERSION = '0.6.1';
 // --- Supabase ---
 const SUPABASE_URL = 'https://mjnfqagwuewhgwbtrdgs.supabase.co';

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "oathbound",
-  "version": "0.6.0",
+  "version": "0.6.1",
   "description": "Install verified Claude Code skills from the Oath Bound registry",
   "license": "BUSL-1.1",
   "author": "Josh Anderson",