UNPKG

@dataroadinc/setup-auth

Version:

CLI tool and programmatic API for automated OAuth setup across cloud platforms

github.com/dataroadinc/dr-ts-setup-auth

dataroadinc/dr-ts-setup-auth

158 lines (157 loc) 6.35 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
import * as fs from "fs"; import * as path from "path"; import { GCP_OAUTH_ALLOWED_DOMAINS, GCP_OAUTH_CLIENT_ID, GCP_OAUTH_CLIENT_SECRET, } from "../env-handler.js"; import { SetupAuthError } from "../error.js"; import { fileExists } from "../file.js"; import { VercelApiClientImpl } from "./api/index.js"; export async function getVercelJsonPath() { const rootPath = path.resolve(process.cwd(), "../../"); const vercelJsonPath = path.join(rootPath, "vercel.json"); if (fs.existsSync(vercelJsonPath)) { return vercelJsonPath; } return null; } export async function getVercelJson() { const vercelJsonPath = await getVercelJsonPath(); if (vercelJsonPath && fs.existsSync(vercelJsonPath)) { try { const vercelJson = JSON.parse(fs.readFileSync(vercelJsonPath, "utf8")); if (vercelJson.token) { return vercelJson.token; } } catch (error) { console.warn("Error reading vercel.json:", error); } } return null; } export async function updateVercelWithOAuthCredentials(vercelClient, clientId, clientSecret, allowedDomains) { const projectName = await vercelClient.getProjectName(); if (!projectName) { throw new SetupAuthError("Could not determine Vercel project name."); } const projectInfo = await vercelClient.getProject(projectName); const projectId = projectInfo?.id; if (!projectId) { throw new SetupAuthError(`Could not retrieve Vercel project info/ID for project name: ${projectName}.`); } console.log(`Updating Vercel environment variables for project ${projectName} (ID: ${projectId})...`); const targets = ["production", "preview", "development"]; const envVarsToSet = [ { key: GCP_OAUTH_CLIENT_ID, value: clientId, targets }, ...(clientSecret ? [{ key: GCP_OAUTH_CLIENT_SECRET, value: clientSecret, targets }] : []), ...(allowedDomains ? [{ key: GCP_OAUTH_ALLOWED_DOMAINS, value: allowedDomains, targets }] : []), ]; try { const existingVars = await vercelClient.getEnvVariables(); const existingVarsMap = new Map(existingVars.map(v => [v.key, v])); for (const envVar of envVarsToSet) { const existingVar = existingVarsMap.get(envVar.key); if (existingVar) { if (existingVar.value !== envVar.value) { console.log(`Updating Vercel environment variable ${envVar.key}...`); try { await vercelClient.updateEnvVariable(existingVar.id, envVar); console.log(`Updated Vercel environment variable ${envVar.key}.`); } catch (updateError) { console.warn(`Failed to update env var ${envVar.key}:`, updateError); } } else { console.log(`Vercel environment variable ${envVar.key} already up-to-date.`); } } else { console.log(`Creating Vercel environment variable ${envVar.key}...`); await vercelClient.createEnvVariable(envVar); } } } catch (error) { console.error("Failed to update Vercel environment variables:", error); throw new SetupAuthError("Failed to update Vercel environment variables. Please check your Vercel configuration.", { cause: error }); } } export async function getVercelClient() { const client = new VercelApiClientImpl(process.env.VERCEL_ACCESS_TOKEN || ""); try { await client.getTeamId(); } catch (error) { throw new SetupAuthError("Failed to validate Vercel authentication. Please check your VERCEL_ACCESS_TOKEN and VERCEL_TEAM_ID.", { cause: error }); } return client; } export async function updateVercelEnvVarWithRetry(client, key, value, scope = undefined, maxRetries = 3) { let attempts = 0; while (attempts < maxRetries) { try { attempts++; console.log(`Setting ${key} in Vercel (attempt ${attempts})...`); const envVars = await client.getEnvVariables(); const existingVar = envVars.find((env) => env.key === key); if (existingVar) { if (existingVar.value === value) { console.log(`✅ ${key} already has the correct value in Vercel`); return true; } console.log(`Updating ${key} in Vercel...`); await client.updateEnvVariable(existingVar.id, { key, value, targets: undefined, scope: scope, }); console.log(`✅ Updated ${key} in Vercel`); } else { await client.createEnvVariable({ key, value, targets: undefined, scope: scope, }); console.log(`✅ Added ${key} to Vercel`); } return true; } catch (error) { console.error(`❌ Error setting ${key} in Vercel (attempt ${attempts}):`, error); if (attempts >= maxRetries) { return false; } await new Promise(resolve => setTimeout(resolve, 1000)); } } return false; } export async function _getVercelTokenFromEnvironment() { if (process.env.VERCEL_ACCESS_TOKEN) { return process.env.VERCEL_ACCESS_TOKEN; } try { const homeDir = process.env.HOME || process.env.USERPROFILE; if (homeDir) { const vercelAuthPath = path.join(homeDir, ".vercel", "auth.json"); if (await fileExists(vercelAuthPath)) { const authJson = JSON.parse(fs.readFileSync(vercelAuthPath, "utf8")); if (authJson.token) { return authJson.token; } } } } catch (error) { console.warn("Error reading Vercel auth file:", error); return null; } console.warn("No Vercel token found, please set VERCEL_ACCESS_TOKEN environment variable"); return null; }