UNPKG

@ably/cli

Version:

Ably CLI for Pub/Sub, Chat and Spaces

github.com/ably/ably-cli

ably/ably-cli

184 lines (183 loc) 7.32 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
import { Args, Flags } from "@oclif/core"; import * as https from "node:https"; import { AblyBaseCommand } from "../../base-command.js"; export default class RevokeTokenCommand extends AblyBaseCommand { static args = { token: Args.string({ description: "Token to revoke", name: "token", required: true, }), }; static description = "Revokes the token provided"; static examples = [ "$ ably auth revoke-token TOKEN", "$ ably auth revoke-token TOKEN --client-id clientid", "$ ably auth revoke-token TOKEN --json", "$ ably auth revoke-token TOKEN --pretty-json", ]; static flags = { ...AblyBaseCommand.globalFlags, app: Flags.string({ description: "App ID to use (uses current app if not specified)", env: "ABLY_APP_ID", }), "client-id": Flags.string({ char: "c", description: "Client ID to revoke tokens for", }), debug: Flags.boolean({ default: false, description: "Show debug information", }), }; // Property to store the Ably client ablyClient; async run() { const { args, flags } = await this.parse(RevokeTokenCommand); // Get app and key const appAndKey = await this.ensureAppAndKey(flags); if (!appAndKey) { return; } const { apiKey } = appAndKey; const { token } = args; try { if (flags.debug) { this.log(`Debug: Using API key: ${apiKey.replace(/:.+/, ":***")}`); } // Create Ably Realtime client const client = await this.createAblyRealtimeClient(flags); if (!client) return; this.ablyClient = client; const clientId = flags["client-id"] || token; if (!flags["client-id"]) { // We need to warn the user that we're using the token as a client ID this.warn("Revoking a specific token is only possible if it has a client ID or revocation key"); this.warn("For advanced token revocation options, see: https://ably.com/docs/auth/revocation"); this.warn("Using the token argument as a client ID for this operation"); } // Extract the keyName (appId.keyId) from the API key const keyParts = apiKey.split(":"); if (keyParts.length !== 2) { this.error("Invalid API key format. Expected format: appId.keyId:secret"); return; } const keyName = keyParts[0]; // This gets the appId.keyId portion const secret = keyParts[1]; // Create the properly formatted body for token revocation const requestBody = { targets: [`clientId:${clientId}`], }; if (flags.debug) { this.log(`Debug: Sending request to endpoint: /keys/${keyName}/revokeTokens`); this.log(`Debug: Request body: ${JSON.stringify(requestBody)}`); } try { // Make direct HTTPS request to Ably REST API const response = await this.makeHttpRequest(keyName, secret, requestBody, flags.debug); if (flags.debug) { this.log(`Debug: Response received:`); this.log(JSON.stringify(response, null, 2)); } if (this.shouldOutputJson(flags)) { this.log(this.formatJsonOutput({ message: "Token revocation processed successfully", response, success: true, }, flags)); } else { this.log("Token successfully revoked"); } } catch (requestError) { // Handle specific API errors if (flags.debug) { this.log(`Debug: API Error:`); this.log(JSON.stringify(requestError, null, 2)); } const error = requestError; if (error.message && error.message.includes("token_not_found")) { if (this.shouldOutputJson(flags)) { this.log(this.formatJsonOutput({ error: "Token not found or already revoked", success: false, }, flags)); } else { this.log("Error: Token not found or already revoked"); } } else { throw requestError; } } } catch (error) { let errorMessage = "Unknown error"; if (error instanceof Error) { errorMessage = error.message; } else if (typeof error === "string") { errorMessage = error; } else if (error && typeof error === "object") { errorMessage = JSON.stringify(error); } this.error(`Error revoking token: ${errorMessage}`); } finally { // Close the client if it exists if (this.ablyClient) { this.ablyClient.close(); } } } // Helper method to make a direct HTTP request to the Ably REST API makeHttpRequest(keyName, secret, requestBody, debug) { return new Promise((resolve, reject) => { const encodedAuth = Buffer.from(`${keyName}:${secret}`).toString("base64"); const options = { headers: { Accept: "application/json", Authorization: `Basic ${encodedAuth}`, "Content-Type": "application/json", }, hostname: "rest.ably.io", method: "POST", path: `/keys/${keyName}/revokeTokens`, port: 443, }; if (debug) { this.log(`Debug: Making HTTPS request to: https://${options.hostname}${options.path}`); } const req = https.request(options, (res) => { let data = ""; res.on("data", (chunk) => { data += chunk; }); res.on("end", () => { if (res.statusCode && res.statusCode >= 200 && res.statusCode < 300) { try { const jsonResponse = data.length > 0 ? JSON.parse(data) : null; resolve(jsonResponse); } catch { resolve(data); } } else { reject(new Error(`Request failed with status code ${res.statusCode}: ${data}`)); } }); }); req.on("error", (error) => { reject(error); }); req.write(JSON.stringify(requestBody)); req.end(); }); } }