UNPKG

bktide

Version:

Command-line interface for Buildkite CI/CD workflows with rich shell completions (Fish, Bash, Zsh) and Alfred workflow integration for macOS power users

github.com/technicalpickles/bktide

technicalpickles/bktide

201 lines 8.67 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
import { BaseCommand } from './BaseCommand.js'; import { logger } from '../services/logger.js'; import { TokenSetupGuide } from '../services/TokenSetupGuide.js'; import prompts from 'prompts'; import { FormatterFactory, FormatterType } from '../formatters/FormatterFactory.js'; import { isRunningInAlfred } from '../utils/alfred.js'; import { Reporter } from '../ui/reporter.js'; export class ManageToken extends BaseCommand { formatter; reporter; constructor(options) { super(options); this.formatter = FormatterFactory.getFormatter(FormatterType.TOKEN, options?.format); this.reporter = new Reporter(options?.format || 'plain', options?.quiet, options?.tips); } static get requiresToken() { return false; } async execute(options) { try { // Handle option priorities: if multiple options are provided, // we'll process them in this priority: store > reset > check if (options.store) { const { success, errors } = await this.storeToken(); if (success) { // Add next-steps hints after successful token storage (no redundant success message) this.reporter.tips([ 'Verify access with: bktide token --check', 'Explore your organizations: bktide orgs', 'List pipelines: bktide pipelines' ]); return 0; } else { const formattedErrors = this.formatter.formatAuthErrors('storing', errors); logger.console(formattedErrors); return 1; } } else if (options.reset) { await this.resetToken(); } else if (options.check) { const { errors } = await this.checkToken({ format: options.format }); if (errors.length > 0) { const formattedErrors = this.formatter.formatAuthErrors('validating', errors); logger.console(formattedErrors); return 0; } } else { const { errors } = await this.checkOrStoreToken({ format: options.format }); if (errors.length > 0) { const formattedErrors = this.formatter.formatAuthErrors('checking or storing', errors); logger.console(formattedErrors); return 0; } } return 0; // Success } catch (error) { const formattedError = this.formatter.formatError('executing', error); logger.console(formattedError); return 1; // Error } } async storeToken() { try { let tokenToStore; // If token is provided in options, use it if (this.options.token) { tokenToStore = this.options.token; } else { const guide = new TokenSetupGuide(); const env = guide.detectEnvironment(); if (env === 'agent') { const guidance = guide.getStoreGuidance(); logger.console(guidance); return { success: false, errors: [new Error('Token setup must be done interactively by the user.')] }; } if (isRunningInAlfred()) { return { success: false, errors: [new Error('In Alfred, set token via Workflow Configuration.')] }; } // Otherwise prompt the user const response = await prompts({ type: 'password', name: 'token', message: 'Enter your Buildkite API token:', validate: value => value.length > 0 ? true : 'Please enter a valid token' }); // Check if user cancelled the prompt (Ctrl+C) if (!response.token) { return { success: false, errors: [new Error('Token storage cancelled')] }; } tokenToStore = response.token; } // Ensure we have a valid token before proceeding if (!tokenToStore) { return { success: false, errors: [new Error('No token provided')] }; } // Validate the token using the CredentialManager const validationResult = await BaseCommand.credentialManager.validateToken(tokenToStore, { showProgress: true // Show progress when validating during store }); if (!validationResult.canListOrganizations) { throw new Error('Token is invalid or does not have access to list organizations'); } if (!validationResult.valid) { const invalidOrgs = Object.entries(validationResult.organizations) .filter(([_, status]) => !status.graphql || !status.builds || !status.organizations) .map(([org, status]) => { const invalidApis = []; if (!status.graphql) invalidApis.push('GraphQL'); if (!status.builds) invalidApis.push('Builds'); if (!status.organizations) invalidApis.push('Organizations'); return `${org} (${invalidApis.join(', ')})`; }); throw new Error(`Token has limited access in some organizations: ${invalidOrgs.join(', ')}`); } // Store the token if it's valid const success = await BaseCommand.credentialManager.saveToken(tokenToStore); return { success, errors: [] }; } catch (error) { return { success: false, errors: [error] }; } } async resetToken() { try { const hadToken = await BaseCommand.credentialManager.hasToken(); let success = false; if (hadToken) { success = await BaseCommand.credentialManager.deleteToken(); } const formattedResult = this.formatter.formatTokenResetResult(success, hadToken); logger.console(formattedResult); } catch (error) { const formattedError = this.formatter.formatError('resetting', error); logger.console(formattedError); } } async checkOrStoreToken(options) { const { status, errors } = await this.checkToken({ ...options, suppressOutput: true }); if (!status.hasToken || !status.isValid) { const { success, errors: storeErrors } = await this.storeToken(); if (success) { return { stored: true, errors: [] }; } else { return { stored: false, errors: storeErrors }; } } return { stored: false, errors }; } async checkToken(options) { const errors = []; // Get token using standard resolution: --token flag > env var > keychain // This ensures `bktide token --check --token <token>` validates the provided token // and `BUILDKITE_API_TOKEN=<token> bktide token --check` works as expected const token = this.options.token || process.env.BUILDKITE_API_TOKEN || process.env.BK_TOKEN || await BaseCommand.credentialManager.getToken(); const hasToken = !!token; let isValid = false; let validation = { valid: false, canListOrganizations: false, organizations: {} }; if (hasToken && token) { // Validate the token using the CredentialManager try { validation = await BaseCommand.credentialManager.validateToken(token, { format: options?.format, showProgress: true }); isValid = validation.valid && validation.canListOrganizations; } catch (error) { errors.push(error); } } const tokenStatus = { hasToken, isValid, validation }; if (!options?.suppressOutput) { const formattedResult = this.formatter.formatTokenStatus(tokenStatus); logger.console(formattedResult); } return { status: tokenStatus, errors }; } } //# sourceMappingURL=ManageToken.js.map