vestauth 0.4.9 → 0.5.0

package/README.md

@@ -2,29 +2,28 @@
 
 *auth for agents*–from the creator of [`dotenvx`](https://github.com/dotenvx/dotenvx).
 
-* auth
+* identity
+* authentication
+* messaging (coming soon)
 
  
 
 ### Quickstart [![npm version](https://img.shields.io/npm/v/vestauth.svg)](https://www.npmjs.com/package/vestauth) [![downloads](https://img.shields.io/npm/dw/vestauth)](https://www.npmjs.com/package/vestauth)
 
 ```sh
-npm install vestauth --save
-```
-```js
-// index.js
-// TODO
+curl -sfS https://vestauth.sh | sh
+vestauth agent init
+vestauth agent curl https://api.vestauth.com/whoami
 ```
 
  
 
-or install globally - *unlocks vestauth for any language, framework, or platform!*
+or install as npm - *unlocks vestauth inside code!*
 
-<details><summary>with curl 🌐 </summary><br>
+<details><summary>with npm 📦</summary><br>
 
 ```sh
-curl -sfS https://vestauth.sh | sh
-vestauth help
+npm install vestauth --save
 ```
 
 &nbsp;

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "vestauth",
-  "version": "0.4.9",
+  "version": "0.5.0",
   "description": "auth for agents–from the creator of dotenvx",
   "keywords": [
     "vestauth"

package/src/cli/actions/agent/curl.js

@@ -20,15 +20,19 @@ async function curl () {
     ...commandArgs
   ]
 
-  const child = execute.execa(injected[0], injected.slice(1), { stdio: 'inherit' })
-
-  // Wait for the command process to finish
-  const { exitCode } = await child
+  const { stdout, exitCode } = await execute.execa(injected[0], injected.slice(1), {})
 
   if (exitCode !== 0) {
     logger.debug(`received exitCode ${exitCode}`)
     throw new Error(`Command exited with exit code ${exitCode}`)
   }
+
+  let space = 0
+  if (options.prettyPrint) {
+    space = 2
+  }
+
+  console.log(JSON.stringify(JSON.parse(stdout), null, space))
 }
 
 module.exports = curl

package/src/cli/actions/agent/init.js

@@ -8,12 +8,13 @@ async function init () {
 
   const output = await agent.init()
 
-  let space = 0
-  if (options.prettyPrint) {
-    space = 2
+  if (output.isNew) {
+    logger.success(`✔ agent created (${output.path}/AGENT_ID=${output.AGENT_ID})`)
+  } else {
+    logger.info(`agent exists (${output.path}/AGENT_ID=${output.AGENT_ID})`)
   }
 
-  console.log(JSON.stringify(output, null, space))
+  logger.help('⮕  next run: [vestauth agent curl https://api.vestauth.com/whoami]')
 }
 
 module.exports = init

package/src/cli/commands/agent.js

@@ -4,7 +4,7 @@ const agent = new Command('agent')
 
 agent
   .usage('run -- yourcommand')
-  .description('🤖 agent')
+  .description('▶️  agent')
   .allowUnknownOption()
 
 // vestauth agent init
@@ -19,7 +19,7 @@ const curlAction = require('./../actions/agent/curl')
 agent.command('curl')
   .description('run curl as agent')
   .allowUnknownOption()
-  .option('--tag <tag>', 'vestauth (default) | web-bot-auth', 'vestauth')
+  .option('--tag <tag>', 'web-bot-auth (default) | web-bot-auth', 'vestauth')
   .option('--nonce <nonce>', 'null (default)')
   .option('-pp, --pretty-print', 'pretty print output')
   .action(curlAction)
@@ -30,7 +30,7 @@ agent.command('headers')
   .description('generate headers as agent')
   .argument('<httpMethod>', 'GET (default)')
   .argument('<uri>', '')
-  .option('--tag <tag>', 'vestauth (default) | web-bot-auth', 'vestauth')
+  .option('--tag <tag>', 'web-bot-auth (default) | web-bot-auth', 'vestauth')
   .option('--nonce <nonce>', 'null (default)')
   .option('--privateKey <privateKey>', 'AGENT_PUBLIC_KEY (default)')
   .option('-pp, --pretty-print', 'pretty print output')

package/src/cli/commands/primitives.js

@@ -22,7 +22,7 @@ primitives.command('headers')
   .argument('<httpMethod>', 'GET (default)')
   .argument('<uri>', '')
   .argument('<privateKey>', 'private key (json string)')
-  .option('--tag <tag>', 'vestauth (default) | web-bot-auth', 'vestauth')
+  .option('--tag <tag>', 'web-bot-auth (default) | web-bot-auth', 'vestauth')
   .option('--nonce <nonce>', 'null (default)')
   .option('-pp, --pretty-print', 'pretty print output')
   .action(headersAction)

package/src/lib/helpers/agentInit.js

@@ -13,6 +13,7 @@ async function agentInit () {
 
   touch(envPath)
 
+  // must come before registration so that registration can send headers
   dotenvx.set('AGENT_PUBLIC_KEY', JSON.stringify(kp.publicKey), { path: envPath, plain: true, quiet: true })
   dotenvx.set('AGENT_PRIVATE_KEY', JSON.stringify(kp.privateKey), { path: envPath, plain: true, quiet: true })
 
@@ -23,7 +24,8 @@ async function agentInit () {
   return {
     AGENT_PUBLIC_KEY: kp.publicKey,
     AGENT_ID: agent.uid,
-    path: envPath
+    path: envPath,
+    isNew: agent.is_new
   }
 }
 

package/src/lib/helpers/headers.js

@@ -3,7 +3,16 @@ const signatureParams = require('./signatureParams')
 const webBotAuthSignature = require('./webBotAuthSignature')
 
 async function headers (httpMethod, uri, privateKeyString, tag = 'vestauth', nonce = null) {
-  const privateKey = JSON.parse(privateKeyString)
+  if (!privateKeyString) throw new Error('missing privateKey')
+
+  let privateKey
+  try {
+    privateKey = JSON.parse(privateKeyString)
+  } catch (err) {
+    throw new Error('invalid privateKey')
+  }
+  if (!privateKey || typeof privateKey !== 'object') throw new Error('invalid privateKey')
+
   const kid = thumbprint(privateKey)
   privateKey.kid = kid
 

package/src/lib/helpers/thumbprint.js

@@ -2,7 +2,11 @@ const crypto = require('crypto')
 
 function thumbprint (publicJwk) {
   // RFC 7638 canonical JSON for OKP (Ed25519)
-  const canon = `{"crv":"${publicJwk.crv}","kty":"${publicJwk.kty}","x":"${publicJwk.x}"}`
+  const jwk = publicJwk && typeof publicJwk === 'object' ? publicJwk : {}
+  const crv = jwk.crv || ''
+  const kty = jwk.kty || ''
+  const x = jwk.x || ''
+  const canon = `{"crv":"${crv}","kty":"${kty}","x":"${x}"}`
   const sha256 = crypto.createHash('sha256').update(canon).digest()
   return Buffer.from(sha256).toString('base64url')
 }