tirtc-devtools-cli 0.0.11 → 0.0.13

package/README.md

@@ -20,7 +20,7 @@
 - **产品级 Observability**：将底层的运行时事件和状态翻译为结构化输出 (JSON) 或友好的终端日志输出；对长耗时命令补轻量进度提示。
 - **调试期工具内聚**：承接调试期必要工具（如 token bootstrap、二维码与媒体预处理）的产品化入口，避免把调试流程散落在 runtime 或外部手工步骤中。
 - **本地 token 工具**：提供直接签发 token、打印组合 JSON、单独 token 与本地二维码 PNG 路径的公开 CLI 能力，服务本地联调与体验验证。
-- **本地 license 二维码工具**：提供 server 扫码用的 license JSON 二维码生成能力，支持可选 `service_entry`。
+- **本地 license 二维码工具**：提供 server 扫码用的 license JSON 二维码生成能力，支持可选 `endpoint`。
 
 ## 不负责什么
 

package/USAGE.md

@@ -70,6 +70,7 @@ node products/cli/bin/tirtc-devtools-cli.js service --help
 node products/cli/bin/tirtc-devtools-cli.js stream --help
 node products/cli/bin/tirtc-devtools-cli.js command --help
 node products/cli/bin/tirtc-devtools-cli.js token issue --help
+node products/cli/bin/tirtc-devtools-cli.js license qrcode --help
 ```
 
 当前关键子菜单快照：
@@ -96,20 +97,22 @@ Commands:
   tail                                                             持续监听命令相关事件
 
 $ node ... token issue --help
+Usage: tirtc-devtools-cli token issue [options] <remote_id>
+
 Options:
-  --access-id <accessId>
-  --secret-key <secretKey>
-  --local-id <localId>
-  --openapi-entry <url>
-  --service-entry <entry>
-  --user-ttl-seconds <seconds>
-  --channel-ttl-seconds <seconds>
+  --access-key-id <accessKeyId>
+  --secret-key-id <secretKeyId>
+  --app-id <appId>
+  --openapi-endpoint <url>
+  --endpoint <entry>
   --qr-error-correction-level <level>
   --ascii-max-columns <columns>
 
 $ node ... license qrcode --help
+Usage: tirtc-devtools-cli license qrcode [options] <license>
+
 Options:
-  --service-entry <entry>
+  --endpoint <entry>
   --qr-error-correction-level <level>
   --ascii-max-columns <columns>
 ```
@@ -143,7 +146,6 @@ license = "runtime-license"
 mp4_path = "/Users/allenfeng/Development/Repositories/tirtc-nexus/tirtc-matrix/.refers/simple.mp4"
 video_stream_id = 11
 audio_stream_id = 10
-
 ```
 
 说明：
@@ -250,10 +252,80 @@ CLI 仍会在本地收紧最小组合矩阵：
 
 `command request` 是 canonical 主语，`command send` 只保留为兼容别名。若要发 JSON，请把 JSON 文本作为 `payload` 传入。`command pending list` 用于恢复或轮询当前积压，`command reply` 基于 `remoteRequestId` 显式回复待处理请求。
 
-## 十、token / debug / report
+## 十、token / license / debug / report
+
+### token issue
+
+命令形态：
+
+```bash
+export TIRTC_ACCESS_KEY_ID="<ACCESS_KEY_ID>"
+export TIRTC_SECRET_KEY_ID="<SECRET_KEY_ID>"
+export TIRTC_APP_ID="<APP_ID>"
+node products/cli/bin/tirtc-devtools-cli.js --json token issue <REMOTE_ID>
+```
+
+如果要覆盖默认 endpoint，并显式透传给底层签发路径：
+
+```bash
+node products/cli/bin/tirtc-devtools-cli.js --json token issue <REMOTE_ID> \
+  --endpoint <ENDPOINT> \
+  --openapi-endpoint <OPENAPI_ENDPOINT>
+```
+
+当前 CLI 合同：
+
+- 位置参数改为 `<remote_id>`。
+- `app_id` 必填；可通过 `--app-id` 或 `TIRTC_APP_ID` 提供。
+- `--endpoint` 取代旧 `--service-entry`。
+- `--openapi-endpoint` 取代旧 `--openapi-entry`。
+- 不再接收 `local_id`。
+- 显式传入的 `endpoint` / `openapi_endpoint` 会透传给 C 层签发路径；其中 `app_id` / `endpoint` / `openapi_endpoint` 会进入二维码 payload。
+- 若未显式传入 `endpoint` / `openapi_endpoint`，则 payload 中不再补默认字段。
+
+`--json` 输出保持外层 envelope 不变：
+
+```json
+{
+  "code": 0,
+  "message": "OK",
+  "data": {
+    "payload": {
+      "app_id": "AD_testapp",
+      "remote_id": "TESTFENGJUN4",
+      "token": "<TOKEN>",
+      "endpoint": "http://ep-test-tirtc.tange365.com",
+      "openapi_endpoint": "http://api-test-tirtc.tange365.com"
+    },
+    "payloadJson": "{\"app_id\":\"AD_testapp\",\"remote_id\":\"TESTFENGJUN4\",\"token\":\"<TOKEN>\",\"endpoint\":\"http://ep-test-tirtc.tange365.com\",\"openapi_endpoint\":\"http://api-test-tirtc.tange365.com\"}",
+    "token": "<TOKEN>",
+    "qrCodePngPath": "/absolute/path/to/token-*.png"
+  }
+}
+```
+
+说明：
+
+- payload 只保留 `app_id`、`remote_id`、`token`、可选 `endpoint`、可选 `openapi_endpoint`。
+- 已删除字段不再出现：`version`、`type`、`local_id`、`peer_id`、`openapi_entry`、`service_entry`、`user_ttl_seconds`、`channel_ttl_seconds`、`generated_at`。
+
+### license qrcode
+
+命令形态：
+
+```bash
+node products/cli/bin/tirtc-devtools-cli.js --json license qrcode <LICENSE>
+node products/cli/bin/tirtc-devtools-cli.js --json license qrcode <LICENSE> --endpoint <ENDPOINT>
+```
+
+当前 CLI 合同：
+
+- 只保留 `license` 和可选 `endpoint`。
+- `--endpoint` 取代旧 `--service-entry`。
+- 若未显式传入 `endpoint`，payload 中不再补默认字段。
+
+### 其他命令
 
-- `token issue <peerId>`：本地签发 token。
-- `license qrcode <license>`：本地生成 server 扫码二维码。
 - `debug bootstrap qrcode ...` / `debug bootstrap qrcode-from-config`：生成联调用二维码。
 - `events tail`：实时查看事件流。
 - `logs export <outputPath>`：导出日志。
@@ -267,7 +339,7 @@ CLI 仍会在本地收紧最小组合矩阵：
 - `client.local.toml` 字段：`[client]` + `[debug.token_issue]`
 - CLI server-only E2E 不再要求先手工 `media assets prepare` 再回填 `assetsDir`
 
-## 十一、Android 人工闭环脚本
+## 十二、Android 人工闭环脚本
 
 如果需要把 CLI 侧闭环常驻起来，再手工去操作 Android example，使用：
 

package/dist/cli/src/guide.js

@@ -21,9 +21,10 @@ function printQuickstartGuide() {
         '  # service start 成功后会自动 prepare 并按 AUTO_ON_CONNECTED 进入待发流语义',
         '',
         '步骤 3：显式签发 client token（可本地执行，也可由外部系统提供）',
-        '  export TIRTC_CONN_ACCESS_ID="<ACCESS_ID>"',
-        '  export TIRTC_CONN_SECRET_KEY="<SECRET_KEY>"',
-        '  node products/cli/bin/tirtc-devtools-cli.js --json token issue "<PEER_ID>" --service-entry "<SERVICE_ENTRY>"',
+        '  export TIRTC_ACCESS_KEY_ID="<ACCESS_KEY_ID>"',
+        '  export TIRTC_SECRET_KEY_ID="<SECRET_KEY_ID>"',
+        '  export TIRTC_APP_ID="<APP_ID>"',
+        '  node products/cli/bin/tirtc-devtools-cli.js --json token issue "<REMOTE_ID>" --endpoint "<ENDPOINT>"',
         '',
         '步骤 4：启动 client 本地 web preview',
         '  node products/cli/bin/tirtc-devtools-cli.js --config ./client.toml client start --token "<TOKEN>"',

package/dist/cli/src/index.js

@@ -11,7 +11,7 @@ const media_assets_1 = require("./media_assets");
 const token_command_1 = require("./token_command");
 const transport_1 = require("./transport");
 const progress_1 = require("./progress");
-const CLI_VERSION = '0.0.10';
+const CLI_VERSION = '0.0.13';
 const HOST_VERSION = '1.0.0';
 const PROTOCOL_VERSION = '1.0.0';
 if (process.argv.includes('--version') || process.argv.includes('-V')) {
@@ -585,15 +585,15 @@ const debugBootstrap = debug.command('bootstrap').description('连接 bootstrap
 debugBootstrap.command('qrcode <access_id> <secret_key> <peer_id> [service_entry]')
     .description('生成客户端连接 bootstrap 二维码（payload 包含 access_id/secret_key/peer_id）')
     .action((accessId, secretKey, peerId, serviceEntry) => {
-    const payload = JSON.stringify({
-        version: 1,
-        type: 'tirtc-connect-bootstrap',
+    const payloadObject = {
         access_id: accessId,
         secret_key: secretKey,
         peer_id: peerId,
-        service_entry: serviceEntry ?? '',
-        generated_at: new Date().toISOString(),
-    });
+    };
+    if (serviceEntry && serviceEntry.length > 0) {
+        payloadObject.service_entry = serviceEntry;
+    }
+    const payload = JSON.stringify(payloadObject);
     runAndExit(runCommand('debug bootstrap qrcode', { payload, outputStem: 'connect-bootstrap' }, getCliOptions()));
 });
 debugBootstrap.command('qrcode-from-config')
@@ -607,15 +607,15 @@ debugBootstrap.command('qrcode-from-config')
     if (!bootstrap.access_id || !bootstrap.secret_key || !bootstrap.peer_id) {
         throw new Error('debug.connect_bootstrap requires access_id + secret_key + peer_id');
     }
-    const payload = JSON.stringify({
-        version: 1,
-        type: 'tirtc-connect-bootstrap',
+    const payloadObject = {
         access_id: bootstrap.access_id,
         secret_key: bootstrap.secret_key,
         peer_id: bootstrap.peer_id,
-        service_entry: bootstrap.service_entry ?? '',
-        generated_at: new Date().toISOString(),
-    });
+    };
+    if (bootstrap.service_entry && bootstrap.service_entry.length > 0) {
+        payloadObject.service_entry = bootstrap.service_entry;
+    }
+    const payload = JSON.stringify(payloadObject);
     runAndExit(runCommand('debug bootstrap qrcode', { payload, outputStem: 'connect-bootstrap' }, getCliOptions()));
 });
 const events = program.command('events').description('事件订阅：实时观察 Host 事件');

package/dist/cli/src/token_command.js

@@ -3,8 +3,9 @@ Object.defineProperty(exports, "__esModule", { value: true });
 exports.registerTokenCommands = registerTokenCommands;
 const facade_1 = require("./facade");
 const token_tool_1 = require("./token_tool");
-const kTokenIssueAccessIdEnvVar = 'TIRTC_CONN_ACCESS_ID';
-const kTokenIssueSecretKeyEnvVar = 'TIRTC_CONN_SECRET_KEY';
+const kTokenIssueAccessKeyIdEnvVar = 'TIRTC_ACCESS_KEY_ID';
+const kTokenIssueSecretKeyIdEnvVar = 'TIRTC_SECRET_KEY_ID';
+const kTokenIssueAppIdEnvVar = 'TIRTC_APP_ID';
 function normalizeTokenCommandError(error) {
     if (error instanceof Error) {
         return {
@@ -45,7 +46,16 @@ function printTokenCommandError(error, options) {
 }
 async function runTokenIssue(params, options) {
     try {
-        const result = await (0, token_tool_1.issueTokenWithQrcode)(params);
+        const result = await (0, token_tool_1.issueTokenWithQrcode)({
+            accessId: params.accessKeyId,
+            secretKey: params.secretKeyId,
+            appId: params.appId,
+            remoteId: params.remoteId,
+            openapiEndpoint: params.openapiEndpoint,
+            endpoint: params.endpoint,
+            qrErrorCorrectionLevel: params.qrErrorCorrectionLevel,
+            asciiMaxColumns: params.asciiMaxColumns,
+        });
         if (options.json) {
             console.log(JSON.stringify({
                 code: 0,
@@ -90,7 +100,7 @@ async function runLicenseQrcode(params, options) {
         return printTokenCommandError(error, options);
     }
 }
-function resolveTokenIssueCredential(explicitValue, envVarName, optionName) {
+function resolveRequiredTokenIssueValue(explicitValue, fieldName, envVarName, optionName) {
     const normalizedExplicit = explicitValue?.trim();
     if (normalizedExplicit) {
         return normalizedExplicit;
@@ -99,10 +109,10 @@ function resolveTokenIssueCredential(explicitValue, envVarName, optionName) {
     if (normalizedEnv) {
         return normalizedEnv;
     }
-    throw new Error('missing credential: set environment variable ' + envVarName +
+    throw new Error('missing required ' + fieldName + ': set environment variable ' + envVarName +
         ' or pass ' + optionName + ' explicitly');
 }
-async function runTokenIssueFromCli(peerId, commandOptions, options) {
+async function runTokenIssueFromCli(remoteId, commandOptions, options) {
     const parsePositiveInt = (name, raw) => {
         if (raw === undefined) {
             return undefined;
@@ -124,17 +134,16 @@ async function runTokenIssueFromCli(peerId, commandOptions, options) {
         return normalized;
     };
     try {
-        const accessId = resolveTokenIssueCredential(commandOptions.accessId, kTokenIssueAccessIdEnvVar, '--access-id');
-        const secretKey = resolveTokenIssueCredential(commandOptions.secretKey, kTokenIssueSecretKeyEnvVar, '--secret-key');
+        const accessKeyId = resolveRequiredTokenIssueValue(commandOptions.accessKeyId, 'access_key_id', kTokenIssueAccessKeyIdEnvVar, '--access-key-id');
+        const secretKeyId = resolveRequiredTokenIssueValue(commandOptions.secretKeyId, 'secret_key_id', kTokenIssueSecretKeyIdEnvVar, '--secret-key-id');
+        const appId = resolveRequiredTokenIssueValue(commandOptions.appId, 'app_id', kTokenIssueAppIdEnvVar, '--app-id');
         return await runTokenIssue({
-            accessId,
-            secretKey,
-            localId: commandOptions.localId?.trim() || peerId,
-            peerId,
-            openapiEntry: commandOptions.openapiEntry,
-            serviceEntry: commandOptions.serviceEntry,
-            userTtlSeconds: parsePositiveInt('user-ttl-seconds', commandOptions.userTtlSeconds),
-            channelTtlSeconds: parsePositiveInt('channel-ttl-seconds', commandOptions.channelTtlSeconds),
+            accessKeyId,
+            secretKeyId,
+            appId,
+            remoteId,
+            openapiEndpoint: commandOptions.openapiEndpoint,
+            endpoint: commandOptions.endpoint,
             qrErrorCorrectionLevel: parseQrErrorCorrectionLevel(commandOptions.qrErrorCorrectionLevel),
             asciiMaxColumns: parsePositiveInt('ascii-max-columns', commandOptions.asciiMaxColumns),
         }, options);
@@ -169,11 +178,12 @@ async function runLicenseQrcodeFromCli(license, commandOptions, options) {
         if (normalizedLicense.length === 0) {
             throw new Error('license must not be empty');
         }
+        const asciiMaxColumns = commandOptions.asciiMaxColumns === undefined ? undefined : parsePositiveInt('ascii-max-columns', commandOptions.asciiMaxColumns);
         return await runLicenseQrcode({
             license: normalizedLicense,
-            serviceEntry: commandOptions.serviceEntry,
+            endpoint: commandOptions.endpoint,
             qrErrorCorrectionLevel: parseQrErrorCorrectionLevel(commandOptions.qrErrorCorrectionLevel),
-            asciiMaxColumns: parsePositiveInt('ascii-max-columns', commandOptions.asciiMaxColumns),
+            asciiMaxColumns,
         }, options);
     }
     catch (error) {
@@ -182,24 +192,22 @@ async function runLicenseQrcodeFromCli(license, commandOptions, options) {
 }
 function registerTokenCommands(program, getCliOptions, runAndExit) {
     const token = program.command('token').description('Token 工具：签发 token，并输出可直接使用的 JSON 与本地二维码 PNG');
-    token.command('issue <peer_id>')
-        .description('默认从环境变量读取 access/secret，并以 peer_id 作为默认 local_id 来签发 token')
-        .option('--access-id <accessId>', '显式 access id；不传时读取 ' + kTokenIssueAccessIdEnvVar)
-        .option('--secret-key <secretKey>', '显式 secret key；不传时读取 ' + kTokenIssueSecretKeyEnvVar)
-        .option('--local-id <localId>', '显式 local id；不传时默认使用 peer_id')
-        .option('--openapi-entry <url>', '可选 openapi entry；留空时走 runtime 默认值')
-        .option('--service-entry <entry>', '可选 service entry；用于组合连接 payload 与二维码 PNG')
-        .option('--user-ttl-seconds <seconds>', '可选 user token ttl（秒）')
-        .option('--channel-ttl-seconds <seconds>', '可选 channel token ttl（秒）')
+    token.command('issue <remote_id>')
+        .description('默认从环境变量读取 access_key_id / secret_key_id / app_id，并基于 remote_id 签发 token')
+        .option('--access-key-id <accessKeyId>', '显式 access_key_id；不传时读取 ' + kTokenIssueAccessKeyIdEnvVar)
+        .option('--secret-key-id <secretKeyId>', '显式 secret_key_id；不传时读取 ' + kTokenIssueSecretKeyIdEnvVar)
+        .option('--app-id <appId>', '必填 app_id；不传时读取 ' + kTokenIssueAppIdEnvVar)
+        .option('--openapi-endpoint <url>', '可选 openapi endpoint；传了就透传到底层签发')
+        .option('--endpoint <entry>', '可选 endpoint；传了就写入 payload 与二维码')
         .option('--qr-error-correction-level <level>', '二维码纠错级别：L/M/Q/H；默认 M')
         .option('--ascii-max-columns <columns>', 'ASCII 二维码最大宽度；不传时优先读取当前终端宽度或 COLUMNS')
-        .action((peerId, commandOptions) => {
-        runAndExit(runTokenIssueFromCli(peerId, commandOptions, getCliOptions()));
+        .action((remoteId, commandOptions) => {
+        runAndExit(runTokenIssueFromCli(remoteId, commandOptions, getCliOptions()));
     });
     const license = program.command('license').description('License 工具：生成 server 扫码 JSON 与本地二维码 PNG');
     license.command('qrcode <license>')
-        .description('生成包含 license 与可选 service_entry 的本地二维码')
-        .option('--service-entry <entry>', '可选 service entry；留空时消费端走默认值')
+        .description('生成包含 license 与可选 endpoint 的本地二维码')
+        .option('--endpoint <entry>', '可选 endpoint；传了就写入 payload 与二维码')
         .option('--qr-error-correction-level <level>', '二维码纠错级别：L/M/Q/H；默认 M')
         .option('--ascii-max-columns <columns>', 'ASCII 二维码最大宽度；不传时优先读取当前终端宽度或 COLUMNS')
         .action((licenseValue, commandOptions) => {

package/dist/cli/src/token_tool.d.ts

@@ -1,26 +1,19 @@
 export type TokenIssueInput = {
     accessId: string;
     secretKey: string;
-    localId: string;
-    peerId: string;
-    openapiEntry?: string;
-    serviceEntry?: string;
-    userTtlSeconds?: number;
-    channelTtlSeconds?: number;
+    appId: string;
+    remoteId: string;
+    openapiEndpoint?: string;
+    endpoint?: string;
     qrErrorCorrectionLevel?: 'L' | 'M' | 'Q' | 'H';
     asciiMaxColumns?: number;
 };
 export type IssuedTokenPayload = {
-    version: 1;
-    type: 'tirtc-connect-token';
-    peer_id: string;
-    local_id: string;
-    service_entry: string;
+    app_id: string;
+    remote_id: string;
     token: string;
-    openapi_entry: string;
-    user_ttl_seconds: number;
-    channel_ttl_seconds: number;
-    generated_at: string;
+    endpoint?: string;
+    openapi_endpoint?: string;
 };
 export type TokenIssueOutput = {
     payload: IssuedTokenPayload;
@@ -32,13 +25,13 @@ export type TokenIssueOutput = {
 };
 export type LicenseQrcodeInput = {
     license: string;
-    serviceEntry?: string;
+    endpoint?: string;
     qrErrorCorrectionLevel?: 'L' | 'M' | 'Q' | 'H';
     asciiMaxColumns?: number;
 };
 export type LicenseQrcodePayload = {
     license: string;
-    service_entry: string;
+    endpoint?: string;
 };
 export type LicenseQrcodeOutput = {
     payload: LicenseQrcodePayload;

package/dist/cli/src/token_tool.js

@@ -51,9 +51,6 @@ const fs_1 = __importDefault(require("fs"));
 const path_1 = __importDefault(require("path"));
 const qrcode_1 = __importDefault(require("qrcode"));
 const embedded_paths_1 = require("./embedded_paths");
-const kDefaultOpenapiEntry = 'http://api-test-tirtc.tange365.com';
-const kDefaultUserTtlSeconds = 86400;
-const kDefaultChannelTtlSeconds = 300;
 const kAsciiQrQuietZoneModules = 2;
 function pathExists(filePath) {
     return fs_1.default.existsSync(filePath);
@@ -76,7 +73,7 @@ function buildQrCodePngPath(prefix, ...parts) {
     return path_1.default.join(resolveQrCodeOutputDir(), fileName);
 }
 function buildTokenQrCodePngPath(payload) {
-    return buildQrCodePngPath('token', payload.local_id, payload.peer_id);
+    return buildQrCodePngPath('token', payload.remote_id);
 }
 function buildLicenseQrCodePngPath(payload) {
     return buildQrCodePngPath('license', payload.license);
@@ -206,13 +203,10 @@ function buildIssueTokenHelperSource() {
         '});',
         'try {',
         '  const token = addon.issueToken({',
-        '    openapiEntry: input.openapiEntry,',
+        '    openapiEndpoint: input.openapiEndpoint,',
         '    accessId: input.accessId,',
         '    secretKey: input.secretKey,',
-        '    localId: input.localId,',
-        '    peerId: input.peerId,',
-        '    userTtlSeconds: input.userTtlSeconds,',
-        '    channelTtlSeconds: input.channelTtlSeconds,',
+        '    remoteId: input.remoteId,',
         '  });',
         '  process.stdout.write(String(token).trim());',
         '} finally {',
@@ -220,6 +214,62 @@ function buildIssueTokenHelperSource() {
         '}',
     ].join('\n');
 }
+function parseIssueTokenFailure(message) {
+    const matched = message.match(/issue token failed error=(\d+) http_status=(\d+)/i);
+    if (!matched) {
+        return {};
+    }
+    const errorCode = Number.parseInt(matched[1] ?? '', 10);
+    const httpStatus = Number.parseInt(matched[2] ?? '', 10);
+    return {
+        errorCode: Number.isNaN(errorCode) ? undefined : errorCode,
+        httpStatus: Number.isNaN(httpStatus) ? undefined : httpStatus,
+    };
+}
+function isNodeStackNoise(line) {
+    return line.startsWith('[eval]:') ||
+        line.startsWith('at [eval]') ||
+        line.startsWith('at runScriptInThisContext') ||
+        line.startsWith('at node:internal/') ||
+        line.startsWith('Node.js v');
+}
+function sanitizeIssueTokenFailureText(message) {
+    const lines = message
+        .split(/\r?\n/)
+        .map((line) => line.trim())
+        .filter((line) => line.length > 0 && !isNodeStackNoise(line));
+    const collapsed = lines.join(' | ');
+    if (collapsed.length === 0) {
+        return 'token issuing failed';
+    }
+    return collapsed;
+}
+function formatIssueTokenFailureMessage(message) {
+    const parsed = parseIssueTokenFailure(message);
+    const detail = sanitizeIssueTokenFailureText(message);
+    if (parsed.httpStatus === 200 && parsed.errorCode === 3) {
+        return [
+            'token issuing failed: remote service rejected the request.',
+            'Check whether remote_id, access_key_id, secret_key_id, and openapi-endpoint are correct.',
+            'detail: error=3 http_status=200',
+        ].join(' ');
+    }
+    if (parsed.httpStatus !== undefined || parsed.errorCode !== undefined) {
+        const detailParts = [];
+        if (parsed.errorCode !== undefined) {
+            detailParts.push('error=' + parsed.errorCode);
+        }
+        if (parsed.httpStatus !== undefined) {
+            detailParts.push('http_status=' + parsed.httpStatus);
+        }
+        return [
+            'token issuing failed: remote authentication request was not accepted.',
+            'Check whether remote_id, access_key_id, secret_key_id, and openapi-endpoint are correct.',
+            'detail: ' + detailParts.join(' '),
+        ].join(' ');
+    }
+    return 'token issuing failed: ' + detail;
+}
 function issueTokenViaSubprocess(addonPath, input) {
     const result = childProcess.spawnSync(process.execPath, ['-e', buildIssueTokenHelperSource()], {
         encoding: 'utf8',
@@ -235,7 +285,7 @@ function issueTokenViaSubprocess(addonPath, input) {
     }
     if (result.status !== 0) {
         const details = String(result.stderr || result.stdout || 'issue token subprocess failed').trim();
-        throw new Error(details || 'issue token subprocess failed');
+        throw new Error(formatIssueTokenFailureMessage(details || 'issue token subprocess failed'));
     }
     return normalizeIssuedToken(String(result.stdout || ''));
 }
@@ -301,28 +351,34 @@ async function issueToken(input) {
     }
     catch (error) {
         const message = error instanceof Error ? error.message : String(error);
-        throw new Error('issue token failed: ' + message);
+        throw new Error(message);
     }
 }
 function buildIssuedTokenPayload(input, token) {
-    return {
-        version: 1,
-        type: 'tirtc-connect-token',
-        peer_id: input.peerId,
-        local_id: input.localId,
-        service_entry: input.serviceEntry ?? '',
+    const payload = {
+        app_id: input.appId.trim(),
+        remote_id: input.remoteId,
         token,
-        openapi_entry: input.openapiEntry?.trim() || kDefaultOpenapiEntry,
-        user_ttl_seconds: input.userTtlSeconds ?? kDefaultUserTtlSeconds,
-        channel_ttl_seconds: input.channelTtlSeconds ?? kDefaultChannelTtlSeconds,
-        generated_at: new Date().toISOString(),
     };
+    const normalizedEndpoint = input.endpoint?.trim();
+    if (normalizedEndpoint) {
+        payload.endpoint = normalizedEndpoint;
+    }
+    const normalizedOpenapiEndpoint = input.openapiEndpoint?.trim();
+    if (normalizedOpenapiEndpoint) {
+        payload.openapi_endpoint = normalizedOpenapiEndpoint;
+    }
+    return payload;
 }
 function buildLicenseQrcodePayload(input) {
-    return {
+    const payload = {
         license: input.license.trim(),
-        service_entry: input.serviceEntry?.trim() ?? '',
     };
+    const normalizedEndpoint = input.endpoint?.trim();
+    if (normalizedEndpoint) {
+        payload.endpoint = normalizedEndpoint;
+    }
+    return payload;
 }
 async function writePngQrcode(payloadJson, outputPath, errorCorrectionLevel) {
     const resolvedPath = path_1.default.resolve(outputPath);
@@ -382,13 +438,10 @@ async function buildLicenseQrcode(input) {
 function formatTokenIssueConsoleOutput(output) {
     const summaryLines = [
         'Issued Token Summary:',
-        '  local_id: ' + output.payload.local_id,
-        '  peer_id: ' + output.payload.peer_id,
-        '  service_entry: ' + (output.payload.service_entry || '(empty)'),
-        '  openapi_entry: ' + output.payload.openapi_entry,
-        '  user_ttl_seconds: ' + output.payload.user_ttl_seconds,
-        '  channel_ttl_seconds: ' + output.payload.channel_ttl_seconds,
-        '  generated_at: ' + output.payload.generated_at,
+        '  app_id: ' + output.payload.app_id,
+        '  remote_id: ' + output.payload.remote_id,
+        '  endpoint: ' + (output.payload.endpoint ?? '(omitted)'),
+        '  openapi_endpoint: ' + (output.payload.openapi_endpoint ?? '(omitted)'),
         '',
         'Token:',
         output.token,
@@ -408,7 +461,7 @@ function formatLicenseQrcodeConsoleOutput(output) {
     const summaryLines = [
         'License QR Code Summary:',
         '  license: ' + output.payload.license,
-        '  service_entry: ' + (output.payload.service_entry || '(empty)'),
+        '  endpoint: ' + (output.payload.endpoint ?? '(omitted)'),
         '',
         'Payload JSON:',
         JSON.stringify(output.payload, null, 2),

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "tirtc-devtools-cli",
-  "version": "0.0.11",
+  "version": "0.0.13",
   "private": false,
   "main": "dist/cli/src/index.js",
   "types": "dist/cli/src/index.d.ts",

package/vendor/app-server/bin/runtime/linux-x64/include/tirtc/error.h

@@ -7,25 +7,44 @@ extern "C" {
 
 typedef enum TirtcError {
   TIRTC_ERROR_OK = 0,
-  TIRTC_ERROR_INVALID_ARGUMENT = 1,
-  TIRTC_ERROR_NOT_INITIALIZED = 2,
-  TIRTC_ERROR_INTERNAL = 3,
-  TIRTC_ERROR_NOT_READY = 4,
-  TIRTC_ERROR_UNSUPPORTED_LOOP_POLICY = 5,
-  TIRTC_ERROR_SOURCE_HASH_MISMATCH = 6,
-  TIRTC_ERROR_STOPPED = 7,
-  TIRTC_ERROR_DESTROYED = 8,
-  TIRTC_ERROR_TRANSPORT_INVALID_LICENSE = 9,
-  TIRTC_ERROR_TRANSPORT_TIMEOUT = 10,
-  TIRTC_ERROR_TRANSPORT_BUSY = 11,
-  TIRTC_ERROR_TRANSPORT_CONNECTION_TIMEOUT_CLOSED = 12,
-  TIRTC_ERROR_TRANSPORT_REMOTE_CLOSED = 13,
-  TIRTC_ERROR_TRANSPORT_CONNECTION_OTHER_ERROR = 14,
-  TIRTC_ERROR_TRANSPORT_TOKEN_EXPIRED = 15,
-  TIRTC_ERROR_DUMP_ROOT_UNAVAILABLE = 16,
-  TIRTC_ERROR_DUMP_ALREADY_ACTIVE = 17,
+  TIRTC_ERROR_INVALID_ARGUMENT = 6000,
+  TIRTC_ERROR_NOT_INITIALIZED = 6001,
+  TIRTC_ERROR_INTERNAL = 6002,
+  TIRTC_ERROR_NOT_READY = 6003,
+  TIRTC_ERROR_UNSUPPORTED_LOOP_POLICY = 6004,
+  TIRTC_ERROR_SOURCE_HASH_MISMATCH = 6005,
+  TIRTC_ERROR_ALREADY_STOPPED = 6006,
+  TIRTC_ERROR_STOPPED = TIRTC_ERROR_ALREADY_STOPPED,
+  TIRTC_ERROR_ALREADY_DESTROYED = 6007,
+  TIRTC_ERROR_DESTROYED = TIRTC_ERROR_ALREADY_DESTROYED,
+  TIRTC_ERROR_TRANSPORT_INVALID_LICENSE = 6008,
+  TIRTC_ERROR_TRANSPORT_TIMEOUT = 6009,
+  TIRTC_ERROR_TRANSPORT_BUSY = 6010,
+  TIRTC_ERROR_TRANSPORT_CONNECTION_TIMEOUT_CLOSED = 6011,
+  TIRTC_ERROR_TRANSPORT_REMOTE_CLOSED = 6012,
+  TIRTC_ERROR_TRANSPORT_CONNECTION_OTHER_ERROR = 6013,
+  TIRTC_ERROR_TRANSPORT_TOKEN_EXPIRED = 6014,
+  TIRTC_ERROR_DUMP_ROOT_UNAVAILABLE = 6015,
+  TIRTC_ERROR_DUMP_ALREADY_ACTIVE = 6016,
+  TIRTC_ERROR_TRANSPORT_RESOURCE_EXHAUSTED = 6017,
+  TIRTC_ERROR_TRANSPORT_SERVER_ERROR = 6018,
+  TIRTC_ERROR_TRANSPORT_BACKEND_INTERNAL_ERROR = 6019,
+  TIRTC_ERROR_TRANSPORT_NO_SECRET_KEY = 6020,
+  TIRTC_ERROR_TRANSPORT_UNEXPECTED_RESPONSE = 6021,
+  TIRTC_ERROR_ALREADY_INITIALIZED = 6022,
+  TIRTC_ERROR_INVALID_THREAD = 6023,
+  TIRTC_ERROR_PERMISSION_DENIED = 6024,
+  TIRTC_ERROR_ALREADY_BOUND = 6025,
+  TIRTC_ERROR_IN_USE = 6026,
+  TIRTC_ERROR_NOT_STARTED = 6027,
+  TIRTC_ERROR_NOT_CONNECTED = 6028,
+  TIRTC_ERROR_NOT_BOUND = 6029,
+  TIRTC_ERROR_NOT_CONFIGURED = 6030,
+  TIRTC_ERROR_NOT_OPEN = 6031,
 } TirtcError;
 
+const char* tirtc_error_to_string(TirtcError error);
+
 #ifdef __cplusplus
 }
 #endif