cursorflow 2.7.7__py3-none-any.whl → 2.7.8__py3-none-any.whl

cursorflow/cli.py

@@ -1116,6 +1116,158 @@ def sessions(subcommand, name):
         else:
             console.print(f"[yellow]⚠️  Session not found: {name}[/yellow]")
 
+@main.command()
+@click.option('--base-url', '-u', required=True, help='Base URL of your application')
+@click.option('--path', '-p', default='/', help='Path to navigate to after login (e.g., /dashboard)')
+@click.option('--output', '-o', default='auth-capture.json', help='Output file for captured auth state')
+@click.option('--wait', type=int, default=60, help='Seconds to wait for manual login (default: 60)')
+def capture_auth(base_url, path, output, wait):
+    """
+    Capture authentication state after manual SSO/OAuth login
+    
+    Opens a browser, waits for you to complete SSO login manually,
+    then captures all cookies, localStorage, and sessionStorage.
+    Perfect for Google/Microsoft/Okta SSO authentication.
+    
+    \b
+    Process:
+      1. Browser opens to your app
+      2. Complete SSO login manually (Google, Microsoft, Okta, etc.)
+      3. Navigate to a protected page (e.g., /dashboard)
+      4. CursorFlow captures all auth state
+      5. Auth state saved to JSON file
+      6. Use in .cursorflow/config.json as cookie authentication
+    
+    \b
+    Examples:
+      # Capture Google SSO auth
+      cursorflow capture-auth --base-url http://localhost:3000 --path /dashboard
+      
+      # Capture with custom wait time
+      cursorflow capture-auth -u http://localhost:3000 -p /dashboard --wait 120
+      
+      # Save to custom file
+      cursorflow capture-auth -u http://localhost:3000 --output google-sso.json
+    """
+    console.print(f"\n🔐 SSO Authentication Capture")
+    console.print(f"📍 Base URL: [cyan]{base_url}[/cyan]")
+    console.print(f"🎯 Target path: [cyan]{path}[/cyan]")
+    console.print(f"⏱️  Wait time: [yellow]{wait}[/yellow] seconds")
+    console.print(f"📄 Output file: [green]{output}[/green]\n")
+    
+    console.print("📋 [bold]Instructions:[/bold]")
+    console.print("  1. Browser will open to your application")
+    console.print("  2. [yellow]Complete SSO login manually[/yellow] (Google, Microsoft, Okta, etc.)")
+    console.print("  3. Navigate to a protected page (e.g., /dashboard)")
+    console.print("  4. [green]Press Enter[/green] when fully logged in")
+    console.print("  5. CursorFlow will capture all auth state\n")
+    
+    input("Press Enter to open browser and start capture...")
+    
+    try:
+        from playwright.async_api import async_playwright
+        import json
+        
+        async def capture_process():
+            async with async_playwright() as p:
+                # Launch browser in HEADED mode (user needs to interact)
+                browser = await p.chromium.launch(headless=False)
+                context = await browser.new_context()
+                page = await context.new_page()
+                
+                console.print(f"\n🌐 Opening browser to: [cyan]{base_url}[/cyan]")
+                await page.goto(base_url)
+                
+                console.print(f"\n⏳ [yellow]Complete your SSO login in the browser...[/yellow]")
+                console.print(f"   Waiting up to {wait} seconds...")
+                console.print(f"   [bold]Press Enter in this terminal when logged in and on {path}[/bold]\n")
+                
+                # Wait for user to complete login
+                import sys
+                import select
+                
+                # Simple blocking wait for Enter key
+                input("Press Enter after completing login... ")
+                
+                # Navigate to target path to ensure we're at the right place
+                if path != '/':
+                    console.print(f"📍 Navigating to: [cyan]{path}[/cyan]")
+                    await page.goto(f"{base_url.rstrip('/')}{path}")
+                    await page.wait_for_load_state("networkidle")
+                
+                console.print("\n📸 Capturing authentication state...")
+                
+                # Capture all authentication data
+                storage_state = await context.storage_state()
+                
+                # Get localStorage
+                local_storage = await page.evaluate("""
+                    () => {
+                        const storage = {};
+                        for (let i = 0; i < localStorage.length; i++) {
+                            const key = localStorage.key(i);
+                            storage[key] = localStorage.getItem(key);
+                        }
+                        return storage;
+                    }
+                """)
+                
+                # Get sessionStorage
+                session_storage = await page.evaluate("""
+                    () => {
+                        const storage = {};
+                        for (let i = 0; i < sessionStorage.length; i++) {
+                            const key = sessionStorage.key(i);
+                            storage[key] = sessionStorage.getItem(key);
+                        }
+                        return storage;
+                    }
+                """)
+                
+                # Organize captured data
+                auth_data = {
+                    "captured_at": time.strftime("%Y-%m-%d %H:%M:%S"),
+                    "base_url": base_url,
+                    "current_url": page.url,
+                    "method": "cookies",
+                    "cookies": storage_state.get("cookies", []),
+                    "localStorage": local_storage,
+                    "sessionStorage": session_storage,
+                    "usage_instructions": {
+                        "1": "Copy the 'cookies' array below",
+                        "2": "Add to .cursorflow/config.json under auth.cookies",
+                        "3": "Set auth.method to 'cookies'",
+                        "4": "Use with: cursorflow test --use-session <name>"
+                    }
+                }
+                
+                # Save to file
+                output_path = Path(output)
+                with open(output_path, 'w') as f:
+                    json.dump(auth_data, f, indent=2)
+                
+                console.print(f"\n✅ Authentication state captured!")
+                console.print(f"📄 Saved to: [green]{output_path.absolute()}[/green]")
+                console.print(f"🍪 Captured {len(auth_data['cookies'])} cookies")
+                console.print(f"💾 localStorage: {len(local_storage)} items")
+                console.print(f"💾 sessionStorage: {len(session_storage)} items")
+                
+                console.print(f"\n📋 [bold]Next steps:[/bold]")
+                console.print(f"  1. Open: [cyan]{output}[/cyan]")
+                console.print(f"  2. Copy the 'cookies' array")
+                console.print(f"  3. Add to .cursorflow/config.json:")
+                console.print(f'\n  {{\n    "auth": {{\n      "method": "cookies",\n      "cookies": [... paste here ...]\n    }}\n  }}\n')
+                console.print(f"  4. Test with: [cyan]cursorflow test --use-session sso-user[/cyan]\n")
+                
+                await browser.close()
+        
+        asyncio.run(capture_process())
+        
+    except KeyboardInterrupt:
+        console.print("\n[yellow]⚠️  Capture cancelled by user[/yellow]")
+    except Exception as e:
+        console.print(f"[red]❌ Error capturing auth: {escape(str(e))}[/red]")
+
 @main.command()
 @click.option('--base-url', '-u', required=True)
 @click.option('--path', '-p', default='/', help='Path to navigate to')

cursorflow/rules/cursorflow-usage.mdc

@@ -1076,6 +1076,45 @@ cursorflow test --actions '[
 ]' --save-session "2fa-user"
 ```
 
+### **SSO Authentication (Google, Microsoft, Okta)**
+
+**SSO requires manual capture** because of external identity providers:
+
+```bash
+# 1. Capture SSO auth (opens browser, you login manually)
+cursorflow capture-auth --base-url http://localhost:3000 \
+  --path /dashboard \
+  --output google-sso.json
+
+# Browser opens, you complete SSO login, CursorFlow captures cookies
+
+# 2. Copy cookies from google-sso.json to .cursorflow/config.json:
+{
+  "auth": {
+    "method": "cookies",
+    "cookies": [/* paste from google-sso.json */]
+  }
+}
+
+# 3. Use captured auth
+cursorflow test --use-session "sso-user" --path /dashboard
+```
+
+**SSO providers supported:**
+- Google OAuth
+- Microsoft Azure AD
+- Okta
+- Auth0
+- Any OAuth/SAML provider
+
+**When SSO tokens expire:**
+```bash
+# Re-capture auth (SSO tokens typically expire in 1-24 hours)
+cursorflow capture-auth --base-url http://localhost:3000 \
+  --path /dashboard \
+  --output sso-refreshed.json
+```
+
 ### **Troubleshooting Auth**
 
 **Auth failing?**
@@ -1100,6 +1139,18 @@ cat .cursorflow/sessions/user_session.json
 cursorflow test --use-session "user" --fresh-session
 ```
 
+**SSO not working?**
+```bash
+# Re-capture auth state
+cursorflow capture-auth --base-url http://localhost:3000 --path /dashboard
+
+# Check if localStorage has tokens (some SSO stores tokens there)
+cat auth-capture.json | grep localStorage
+
+# Test immediately after capture
+cursorflow test --use-session "sso-user" --path /dashboard
+```
+
 ## Best Practices
 
 ### **🔥 Hot Reload CSS Iteration Best Practices**

{cursorflow-2.7.7.dist-info → cursorflow-2.7.8.dist-info}/METADATA

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: cursorflow
-Version: 2.7.7
+Version: 2.7.8
 Summary: 🔥 Complete page intelligence for AI-driven development with Hot Reload Intelligence - captures DOM, network, console, performance, HMR events, and comprehensive page analysis
 Author-email: GeekWarrior Development <rbush@cooltheory.com>
 License-Expression: MIT
@@ -177,6 +177,19 @@ cursorflow test --use-session "user" \
 - Form authentication (username/password)
 - Cookie authentication (JWT tokens, session cookies)
 - Header authentication (Bearer tokens, API keys)
+- SSO authentication (Google, Microsoft, Okta, Auth0)
+
+**SSO/OAuth Quick Start:**
+```bash
+# Capture SSO auth (opens browser for manual login)
+cursorflow capture-auth --base-url http://localhost:3000 \
+  --path /dashboard \
+  --output google-sso.json
+
+# Use captured auth
+# (Copy cookies from google-sso.json to .cursorflow/config.json)
+cursorflow test --use-session "sso-user" --path /dashboard
+```
 
 **See:** [Complete Authentication Guide](docs/user/USAGE_GUIDE.md#authentication--session-management)
 

{cursorflow-2.7.7.dist-info → cursorflow-2.7.8.dist-info}/RECORD

@@ -1,7 +1,7 @@
 cursorflow/__init__.py,sha256=2V9xzG2tYxVWOTmSw2v9Jdbr7lSrMi_y2SMUMuNZdvw,2990
 cursorflow/auto_init.py,sha256=dXQaXXiXe4wkUP-jd8fcJ5fYVt7ASdTb47b7SzXymOM,6122
 cursorflow/auto_updater.py,sha256=oQ12TIMZ6Cm3HF-x9iRWFtvOLkRh-JWPqitS69-4roE,7851
-cursorflow/cli.py,sha256=5uObhh0ggolMX9DBHtQ8F74ewpzEcUxj9XkwoWyfCBA,80095
+cursorflow/cli.py,sha256=Tt3I9d6SFplJjM4UPdxXklGjh1kt511-irE_jqDAw_A,87342
 cursorflow/install_cursorflow_rules.py,sha256=DsZ0680y9JMuTKFXjdgYtOKIEAjBMsdwL8LmA9WEb5A,11864
 cursorflow/post_install.py,sha256=WieBiKWG0qBAQpF8iMVWUyb9Fr2Xky9qECTMPrlAbpE,2678
 cursorflow/updater.py,sha256=SroSQHQi5cYyzcOK_bf-WzmQmE7yeOs8qo3r__j-Z6E,19583
@@ -33,10 +33,10 @@ cursorflow/log_sources/local_file.py,sha256=GVnhsaifIdc41twXwbxRM9-fBeRDsknDpk5I
 cursorflow/log_sources/ssh_remote.py,sha256=_Kwh0bhRpKgq-0c98oaX2hN6h9cT-wCHlqY5NiWVCoY,8388
 cursorflow/rules/__init__.py,sha256=gPcA-IkhXj03sl7cvZV0wwo7CtEkcyuKs4y0F5oQbqE,458
 cursorflow/rules/cursorflow-installation.mdc,sha256=D55pzzDPAVVbE3gAtKPUGoT-2fvB-FI2l6yrTdzUIEo,10208
-cursorflow/rules/cursorflow-usage.mdc,sha256=oTp9RTyhZfRjX5DJq-R2lthT2E0nF-5gA-Ao13jjS5A,37490
-cursorflow-2.7.7.dist-info/licenses/LICENSE,sha256=e4QbjAsj3bW-xgQOvQelr8sGLYDoqc48k6cKgCr_pBU,1080
-cursorflow-2.7.7.dist-info/METADATA,sha256=M_sXtrzj4lW1jDIHuRnuPzrotxlv8scA78PdvRQORKg,20838
-cursorflow-2.7.7.dist-info/WHEEL,sha256=_zCd3N1l69ArxyTb8rzEoP9TpbYXkqRFSNOD5OuxnTs,91
-cursorflow-2.7.7.dist-info/entry_points.txt,sha256=-Ed_n4Uff7wClEtWS-Py6xmQabecB9f0QAOjX0w7ljA,51
-cursorflow-2.7.7.dist-info/top_level.txt,sha256=t1UZwRyZP4u-ng2CEcNHmk_ZT4ibQxoihB2IjTF7ovc,11
-cursorflow-2.7.7.dist-info/RECORD,,
+cursorflow/rules/cursorflow-usage.mdc,sha256=wv7EOeybBUmgYGux9yE_8SWAgoNYa5DfbT5sC44WNOU,38768
+cursorflow-2.7.8.dist-info/licenses/LICENSE,sha256=e4QbjAsj3bW-xgQOvQelr8sGLYDoqc48k6cKgCr_pBU,1080
+cursorflow-2.7.8.dist-info/METADATA,sha256=aCPcMbLb-PrXzfCqebLSdwjW17Fs33sRVteAa81uRlM,21237
+cursorflow-2.7.8.dist-info/WHEEL,sha256=_zCd3N1l69ArxyTb8rzEoP9TpbYXkqRFSNOD5OuxnTs,91
+cursorflow-2.7.8.dist-info/entry_points.txt,sha256=-Ed_n4Uff7wClEtWS-Py6xmQabecB9f0QAOjX0w7ljA,51
+cursorflow-2.7.8.dist-info/top_level.txt,sha256=t1UZwRyZP4u-ng2CEcNHmk_ZT4ibQxoihB2IjTF7ovc,11
+cursorflow-2.7.8.dist-info/RECORD,,