santree 0.5.2 → 0.5.4

package/dist/lib/trackers/linear/auth.js

@@ -0,0 +1,206 @@
+import * as http from "http";
+import * as crypto from "crypto";
+import { exec } from "child_process";
+import { readAllMetadata, writeAllMetadata } from "../../metadata.js";
+import { readLinearAuthStore, writeLinearTokens, deleteLinearTokens, } from "../auth-store.js";
+const CLIENT_ID = "4be2738749371d7d3401061aabe2d11b";
+const LINEAR_AUTHORIZE_URL = "https://linear.app/oauth/authorize";
+const LINEAR_TOKEN_URL = "https://api.linear.app/oauth/token";
+const LINEAR_REVOKE_URL = "https://api.linear.app/oauth/revoke";
+const LINEAR_GRAPHQL_URL = "https://api.linear.app/graphql";
+const OAUTH_PORT = 8420;
+const REDIRECT_URI = `http://localhost:${OAUTH_PORT}`;
+function generateCodeVerifier() {
+    return crypto.randomBytes(32).toString("base64url");
+}
+function generateCodeChallenge(verifier) {
+    return crypto.createHash("sha256").update(verifier).digest("base64url");
+}
+export async function startOAuthFlow() {
+    const codeVerifier = generateCodeVerifier();
+    const codeChallenge = generateCodeChallenge(codeVerifier);
+    const state = crypto.randomBytes(16).toString("hex");
+    return new Promise((resolve) => {
+        let handled = false;
+        const server = http.createServer(async (req, res) => {
+            const url = new URL(req.url, `http://localhost`);
+            const code = url.searchParams.get("code");
+            const returnedState = url.searchParams.get("state");
+            if (!code || returnedState !== state) {
+                res.writeHead(404);
+                res.end();
+                return;
+            }
+            if (handled) {
+                res.writeHead(200);
+                res.end();
+                return;
+            }
+            handled = true;
+            res.writeHead(200, { "Content-Type": "text/html" });
+            res.end("<html><body><h2>Authentication successful!</h2><p>You can close this tab.</p></body></html>");
+            try {
+                const tokens = await exchangeCode(code, REDIRECT_URI, codeVerifier);
+                const orgInfo = await fetchViewerOrg(tokens.access_token);
+                if (!orgInfo) {
+                    server.close();
+                    resolve(null);
+                    return;
+                }
+                writeLinearTokens(orgInfo.urlKey, {
+                    access_token: tokens.access_token,
+                    refresh_token: tokens.refresh_token,
+                    expires_at: tokens.expires_at,
+                    org_name: orgInfo.name,
+                });
+                server.close();
+                resolve({ orgSlug: orgInfo.urlKey, orgName: orgInfo.name });
+            }
+            catch {
+                server.close();
+                resolve(null);
+            }
+        });
+        server.listen(OAUTH_PORT, () => {
+            const params = new URLSearchParams({
+                client_id: CLIENT_ID,
+                redirect_uri: REDIRECT_URI,
+                response_type: "code",
+                scope: "read",
+                state,
+                code_challenge: codeChallenge,
+                code_challenge_method: "S256",
+            });
+            const authUrl = `${LINEAR_AUTHORIZE_URL}?${params.toString()}`;
+            const openCmd = process.platform === "darwin"
+                ? "open"
+                : process.platform === "win32"
+                    ? "start"
+                    : "xdg-open";
+            exec(`${openCmd} "${authUrl}"`, (err) => {
+                if (err) {
+                    console.error(`\nCouldn't open browser automatically. Open this URL manually:\n${authUrl}\n`);
+                }
+            });
+        });
+        setTimeout(() => {
+            server.close();
+            resolve(null);
+        }, 120_000);
+    });
+}
+async function exchangeCode(code, redirectUri, codeVerifier) {
+    const res = await fetch(LINEAR_TOKEN_URL, {
+        method: "POST",
+        headers: { "Content-Type": "application/x-www-form-urlencoded" },
+        body: new URLSearchParams({
+            grant_type: "authorization_code",
+            client_id: CLIENT_ID,
+            code,
+            redirect_uri: redirectUri,
+            code_verifier: codeVerifier,
+        }),
+    });
+    if (!res.ok) {
+        throw new Error(`Token exchange failed: ${res.status}`);
+    }
+    const data = (await res.json());
+    return {
+        access_token: data.access_token,
+        refresh_token: data.refresh_token,
+        expires_at: Date.now() + data.expires_in * 1000,
+    };
+}
+async function fetchViewerOrg(accessToken) {
+    const res = await fetch(LINEAR_GRAPHQL_URL, {
+        method: "POST",
+        headers: {
+            "Content-Type": "application/json",
+            Authorization: `Bearer ${accessToken}`,
+        },
+        body: JSON.stringify({
+            query: `query { viewer { organization { urlKey name } } }`,
+        }),
+    });
+    if (!res.ok)
+        return null;
+    const json = (await res.json());
+    const org = json.data?.viewer?.organization;
+    return org ?? null;
+}
+function isTokenExpired(tokens) {
+    return Date.now() >= tokens.expires_at - 5 * 60 * 1000;
+}
+async function refreshTokens(orgSlug, tokens) {
+    try {
+        const res = await fetch(LINEAR_TOKEN_URL, {
+            method: "POST",
+            headers: { "Content-Type": "application/x-www-form-urlencoded" },
+            body: new URLSearchParams({
+                grant_type: "refresh_token",
+                client_id: CLIENT_ID,
+                refresh_token: tokens.refresh_token,
+            }),
+        });
+        if (!res.ok)
+            return null;
+        const data = (await res.json());
+        const updated = {
+            access_token: data.access_token,
+            refresh_token: data.refresh_token,
+            expires_at: Date.now() + data.expires_in * 1000,
+            org_name: tokens.org_name,
+        };
+        writeLinearTokens(orgSlug, updated);
+        return updated;
+    }
+    catch {
+        return null;
+    }
+}
+export async function revokeTokens(orgSlug) {
+    const store = readLinearAuthStore();
+    const tokens = store[orgSlug];
+    if (!tokens)
+        return false;
+    try {
+        await fetch(LINEAR_REVOKE_URL, {
+            method: "POST",
+            headers: { "Content-Type": "application/x-www-form-urlencoded" },
+            body: new URLSearchParams({
+                client_id: CLIENT_ID,
+                token: tokens.access_token,
+            }),
+        });
+    }
+    catch {
+        // best effort
+    }
+    deleteLinearTokens(orgSlug);
+    return true;
+}
+export async function getValidTokens(orgSlug) {
+    const store = readLinearAuthStore();
+    const tokens = store[orgSlug];
+    if (!tokens)
+        return null;
+    if (isTokenExpired(tokens)) {
+        return refreshTokens(orgSlug, tokens);
+    }
+    return tokens;
+}
+export function getRepoLinearOrg(repoRoot) {
+    const all = readAllMetadata(repoRoot);
+    const linear = all._linear;
+    return linear?.org ?? null;
+}
+export function setRepoLinearOrg(repoRoot, orgSlug) {
+    const all = readAllMetadata(repoRoot);
+    all._linear = { org: orgSlug };
+    writeAllMetadata(repoRoot, all);
+}
+export function removeRepoLinearOrg(repoRoot) {
+    const all = readAllMetadata(repoRoot);
+    delete all._linear;
+    writeAllMetadata(repoRoot, all);
+}

package/dist/lib/trackers/linear/images.d.ts

@@ -0,0 +1,2 @@
+export declare function rewriteLinearImages(markdown: string, ticketId: string, accessToken: string): Promise<string>;
+export declare function cleanupLinearImages(ticketId: string): void;

package/dist/lib/trackers/linear/images.js

@@ -0,0 +1,44 @@
+import * as fs from "fs";
+import * as os from "os";
+import * as path from "path";
+function getTempImageDir(ticketId) {
+    return path.join(os.tmpdir(), `santree-images-${ticketId}`);
+}
+export async function rewriteLinearImages(markdown, ticketId, accessToken) {
+    const imageRegex = /!\[([^\]]*)\]\((https:\/\/uploads\.linear\.app[^)]+)\)/g;
+    const matches = [...markdown.matchAll(imageRegex)];
+    if (matches.length === 0)
+        return markdown;
+    const tempDir = getTempImageDir(ticketId);
+    if (!fs.existsSync(tempDir)) {
+        fs.mkdirSync(tempDir, { recursive: true });
+    }
+    let result = markdown;
+    for (let i = 0; i < matches.length; i++) {
+        const match = matches[i];
+        const [fullMatch, altText, url] = match;
+        try {
+            const res = await fetch(url, {
+                headers: { Authorization: `Bearer ${accessToken}` },
+            });
+            if (!res.ok)
+                continue;
+            const buffer = Buffer.from(await res.arrayBuffer());
+            const ext = path.extname(new URL(url).pathname) || ".png";
+            const filename = `image-${i}${ext}`;
+            const filePath = path.join(tempDir, filename);
+            fs.writeFileSync(filePath, buffer);
+            result = result.replace(fullMatch, `![${altText}](${filePath})`);
+        }
+        catch {
+            // keep original URL on failure
+        }
+    }
+    return result;
+}
+export function cleanupLinearImages(ticketId) {
+    const tempDir = getTempImageDir(ticketId);
+    if (fs.existsSync(tempDir)) {
+        fs.rmSync(tempDir, { recursive: true, force: true });
+    }
+}

package/dist/lib/trackers/linear/index.d.ts

@@ -0,0 +1,3 @@
+import type { IssueTracker } from "../types.js";
+export { getRepoLinearOrg, setRepoLinearOrg, removeRepoLinearOrg, getValidTokens, revokeTokens, startOAuthFlow, } from "./auth.js";
+export declare const linearTracker: IssueTracker;

package/dist/lib/trackers/linear/index.js

@@ -0,0 +1,100 @@
+import { readLinearAuthStore } from "../auth-store.js";
+import { getRepoLinearOrg, getValidTokens, removeRepoLinearOrg, revokeTokens } from "./auth.js";
+import { fetchAssignedIssues, fetchIssue } from "./api.js";
+import { cleanupLinearImages, rewriteLinearImages } from "./images.js";
+export { getRepoLinearOrg, setRepoLinearOrg, removeRepoLinearOrg, getValidTokens, revokeTokens, startOAuthFlow, } from "./auth.js";
+async function getAuthStatus(repoRoot) {
+    const store = readLinearAuthStore();
+    const orgs = Object.keys(store);
+    if (orgs.length === 0) {
+        return { authenticated: false, hint: "Run: santree linear auth" };
+    }
+    if (repoRoot) {
+        const repoOrg = getRepoLinearOrg(repoRoot);
+        if (repoOrg && store[repoOrg]) {
+            const tokens = store[repoOrg];
+            return {
+                authenticated: true,
+                accountLabel: `${tokens.org_name} (${repoOrg})`,
+                expiresAt: tokens.expires_at,
+                repoLinked: true,
+            };
+        }
+    }
+    const orgSlug = orgs[0];
+    const tokens = store[orgSlug];
+    return {
+        authenticated: true,
+        accountLabel: `${tokens.org_name} (${orgSlug})`,
+        expiresAt: tokens.expires_at,
+        repoLinked: false,
+        hint: "Repo not linked. Run: santree linear auth",
+    };
+}
+async function signOut(repoRoot) {
+    const orgSlug = getRepoLinearOrg(repoRoot);
+    if (orgSlug) {
+        await revokeTokens(orgSlug);
+        removeRepoLinearOrg(repoRoot);
+    }
+}
+function extractIdFromBranch(branch) {
+    const match = branch.match(/([a-zA-Z]+)-(\d+)/);
+    if (!match)
+        return null;
+    return `${match[1].toUpperCase()}-${match[2]}`;
+}
+async function listAssigned(repoRoot) {
+    const orgSlug = getRepoLinearOrg(repoRoot);
+    if (!orgSlug) {
+        return { ok: false, reason: "unauthenticated", message: "Run: santree linear auth" };
+    }
+    const tokens = await getValidTokens(orgSlug);
+    if (!tokens) {
+        return { ok: false, reason: "unauthenticated", message: "Run: santree linear auth" };
+    }
+    const issues = await fetchAssignedIssues(tokens.access_token);
+    if (issues === null) {
+        return { ok: false, reason: "network", message: "Linear API request failed" };
+    }
+    return { ok: true, value: issues };
+}
+async function getIssue(identifier, repoRoot) {
+    const orgSlug = getRepoLinearOrg(repoRoot);
+    if (!orgSlug) {
+        return { ok: false, reason: "unauthenticated", message: "Run: santree linear auth" };
+    }
+    const tokens = await getValidTokens(orgSlug);
+    if (!tokens) {
+        return { ok: false, reason: "unauthenticated", message: "Run: santree linear auth" };
+    }
+    const issue = await fetchIssue(identifier, tokens.access_token);
+    if (!issue) {
+        return { ok: false, reason: "not-found", message: `Issue ${identifier} not found` };
+    }
+    if (issue.description) {
+        issue.description = await rewriteLinearImages(issue.description, identifier, tokens.access_token);
+    }
+    for (const comment of issue.comments) {
+        if (comment.body) {
+            comment.body = await rewriteLinearImages(comment.body, identifier, tokens.access_token);
+        }
+        for (const child of comment.children) {
+            if (child.body) {
+                child.body = await rewriteLinearImages(child.body, identifier, tokens.access_token);
+            }
+        }
+    }
+    return { ok: true, value: issue };
+}
+export const linearTracker = {
+    kind: "linear",
+    displayName: "Linear",
+    issueNoun: "ticket",
+    getAuthStatus,
+    signOut,
+    extractIdFromBranch,
+    cleanupCache: cleanupLinearImages,
+    listAssigned,
+    getIssue,
+};

package/dist/lib/trackers/types.d.ts

@@ -0,0 +1,52 @@
+export type IssueTrackerKind = "linear" | "github";
+export interface Comment {
+    author: string;
+    body: string;
+    createdAt: string;
+    children: Comment[];
+}
+export interface State {
+    name: string;
+    type: string;
+}
+export interface AssignedIssue {
+    identifier: string;
+    title: string;
+    description: string | null;
+    url: string;
+    priority: number;
+    priorityLabel: string;
+    state: State;
+    labels: string[];
+    projectId: string | null;
+    projectName: string | null;
+}
+export interface Issue extends AssignedIssue {
+    comments: Comment[];
+}
+export interface AuthStatus {
+    authenticated: boolean;
+    accountLabel?: string;
+    expiresAt?: number;
+    repoLinked?: boolean;
+    hint?: string;
+}
+export type IssueTrackerResult<T> = {
+    ok: true;
+    value: T;
+} | {
+    ok: false;
+    reason: "unauthenticated" | "not-found" | "network";
+    message?: string;
+};
+export interface IssueTracker {
+    readonly kind: IssueTrackerKind;
+    readonly displayName: string;
+    readonly issueNoun: string;
+    getAuthStatus(repoRoot: string | null): Promise<AuthStatus>;
+    signOut(repoRoot: string): Promise<void>;
+    extractIdFromBranch(branch: string): string | null;
+    cleanupCache(identifier: string): void;
+    listAssigned(repoRoot: string): Promise<IssueTrackerResult<AssignedIssue[]>>;
+    getIssue(identifier: string, repoRoot: string): Promise<IssueTrackerResult<Issue>>;
+}

package/dist/lib/trackers/types.js

@@ -0,0 +1 @@
+export {};

package/package.json

@@ -1,6 +1,6 @@
 {
 	"name": "santree",
-	"version": "0.5.2",
+	"version": "0.5.4",
 	"description": "Git worktree manager",
 	"license": "MIT",
 	"author": "Santiago Toscanini",

package/prompts/ticket.njk

@@ -1,7 +1,7 @@
-## Linear Ticket: {{ identifier }}
+## {{ trackerName }} Issue: {{ identifier }}
 **{{ title }}**
-{% if url %}[View in Linear]({{ url }}){% endif %}
-{% if status %}Status: {{ status }}{% endif %}{% if priority %} | Priority: {{ priority }}{% endif %}{% if labels | length %} | Labels: {{ labels | join(", ") }}{% endif %}
+{% if url %}[View in {{ trackerName }}]({{ url }}){% endif %}
+{% if state and state.name %}Status: {{ state.name }}{% endif %}{% if priorityLabel %} | Priority: {{ priorityLabel }}{% endif %}{% if labels | length %} | Labels: {{ labels | join(", ") }}{% endif %}
 
 {% if description %}
 ### Description

package/dist/commands/linear/open.d.ts

@@ -1,2 +0,0 @@
-export declare const description = "Open the current Linear ticket in the browser";
-export default function LinearOpen(): import("react/jsx-runtime").JSX.Element;

package/dist/lib/linear.d.ts

@@ -1,83 +0,0 @@
-export interface LinearTokens {
-    access_token: string;
-    refresh_token: string;
-    expires_at: number;
-    org_name: string;
-}
-export interface LinearComment {
-    author: string;
-    body: string;
-    createdAt: string;
-    children: LinearComment[];
-}
-export interface LinearIssue {
-    identifier: string;
-    title: string;
-    description: string | null;
-    status: string | null;
-    priority: string | null;
-    labels: string[];
-    url: string;
-    comments: LinearComment[];
-}
-type AuthStore = Record<string, LinearTokens>;
-export declare function readAuthStore(): AuthStore;
-/**
- * Run the full OAuth PKCE flow:
- * 1. Start a temp HTTP server on an ephemeral port
- * 2. Open browser to Linear authorize URL
- * 3. Wait for callback with auth code
- * 4. Exchange code for tokens
- * 5. Fetch org info
- * 6. Store tokens
- * Returns the org slug on success, null on failure.
- */
-export declare function startOAuthFlow(): Promise<{
-    orgSlug: string;
-    orgName: string;
-} | null>;
-export declare function revokeTokens(orgSlug: string): Promise<boolean>;
-/**
- * Get valid tokens for an org, auto-refreshing if expired.
- * Returns null if no tokens found or refresh fails.
- */
-export declare function getValidTokens(orgSlug: string): Promise<LinearTokens | null>;
-export declare function cleanupImages(ticketId: string): void;
-export interface AuthStatus {
-    authenticated: boolean;
-    orgSlug?: string;
-    orgName?: string;
-    expiresAt?: number;
-    repoLinked?: boolean;
-}
-/**
- * Get auth status for the current repo's Linear org (or any stored org).
- */
-export declare function getAuthStatus(repoRoot: string | null): AuthStatus;
-export interface LinearAssignedIssue {
-    identifier: string;
-    title: string;
-    description: string | null;
-    url: string;
-    priority: number;
-    priorityLabel: string;
-    state: {
-        name: string;
-        type: string;
-    };
-    labels: string[];
-    projectId: string | null;
-    projectName: string | null;
-}
-/**
- * Fetch all active issues assigned to the current user.
- * Returns null if not authenticated or fetch fails.
- */
-export declare function fetchAssignedIssues(repoRoot: string): Promise<LinearAssignedIssue[] | null>;
-/**
- * Fetch full ticket content for a given ticket ID.
- * Looks up the repo's Linear org, gets valid tokens, fetches issue, downloads images.
- * Returns null if not authenticated or fetch fails.
- */
-export declare function getTicketContent(ticketId: string, repoRoot: string): Promise<LinearIssue | null>;
-export {};