UNPKG

zapier-platform-cli

Version:

The CLI for managing integrations in Zapier Developer Platform.

platform.zapier.com

zapier/zapier-platform

291 lines (262 loc) 9.18 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
const crypto = require('node:crypto'); const http = require('node:http'); const _ = require('lodash'); const debug = require('debug')('zapier:invoke'); const { localAppCommand } = require('../../../../utils/local'); const { startSpinner, endSpinner } = require('../../../../utils/display'); const { appendEnv } = require('../env'); const { customLogger } = require('../logger'); const { formatFieldDisplay } = require('../prompts'); /** * Prompts the user for authentication field values. * Handles password fields with hidden input. * @param {import('../../../ZapierBaseCommand')} command - The command instance for prompting * @param {Array<Object>} authFields - Array of auth field definitions * @returns {Promise<Object>} Object containing field keys and user-provided values */ const promptForAuthFields = async (command, authFields) => { const authData = {}; for (const field of authFields) { if (field.computed) { continue; } const message = formatFieldDisplay(field) + ':'; let value; if (field.type === 'password') { value = await command.promptHidden(message, true); } else { value = await command.prompt(message, { useStderr: true }); } authData[field.key] = value; } return authData; }; /** * Initializes basic authentication by prompting for username and password. * @param {import('../../../ZapierBaseCommand')} command - The command instance for prompting * @param {Object} context - The execution context * @returns {Promise<Object>} Auth data with username and password * @throws {Error} If in non-interactive mode */ const startBasicAuth = async (command, context) => { if (context.nonInteractive) { throw new Error( 'The `auth start` subcommand for "basic" authentication type only works in interactive mode.', ); } return promptForAuthFields(command, [ { key: 'username', label: 'Username', required: true, }, { key: 'password', label: 'Password', required: true, }, ]); }; /** * Initializes custom authentication by prompting for configured auth fields. * @param {import('../../../ZapierBaseCommand')} command - The command instance for prompting * @param {Object} context - The execution context * @returns {Promise<Object>} Auth data with field values * @throws {Error} If in non-interactive mode */ const startCustomAuth = async (command, context) => { if (context.nonInteractive) { throw new Error( 'The `auth start` subcommand for "custom" authentication type only works in interactive mode.', ); } return promptForAuthFields( command, context.appDefinition.authentication.fields, ); }; /** * Initializes OAuth2 authentication. * Prompts for CLIENT_ID/SECRET if needed, starts a local HTTP server, * opens the browser for authorization, and exchanges the code for tokens. * @param {import('../../../ZapierBaseCommand')} command - The command instance for prompting * @param {Object} context - The execution context * @returns {Promise<Object>} Auth data with access token and other OAuth2 fields */ const startOAuth2 = async (command, context) => { const env = {}; if (!process.env.CLIENT_ID || !process.env.CLIENT_SECRET) { if (context.nonInteractive) { throw new Error( 'CLIENT_ID and CLIENT_SECRET must be set in the .env file in non-interactive mode.', ); } else { console.warn( 'CLIENT_ID and CLIENT_SECRET are required for OAuth2, ' + "but they are not found in the .env file. I'll prompt you for them now.", ); } } if (!process.env.CLIENT_ID) { env.CLIENT_ID = await command.prompt('CLIENT_ID:', { useStderr: true }); process.env.CLIENT_ID = env.CLIENT_ID; } if (!process.env.CLIENT_SECRET) { env.CLIENT_SECRET = await command.prompt('CLIENT_SECRET:', { useStderr: true, }); process.env.CLIENT_SECRET = env.CLIENT_SECRET; } if (!_.isEmpty(env)) { // Save envs so the user won't have to re-enter them if the command fails await appendEnv(env); console.warn('CLIENT_ID and CLIENT_SECRET saved to .env file.'); } startSpinner('Invoking authentication.oauth2Config.authorizeUrl'); const stateParam = crypto.randomBytes(20).toString('hex'); let authorizeUrl = await localAppCommand({ command: 'execute', method: 'authentication.oauth2Config.authorizeUrl', bundle: { inputData: { response_type: 'code', redirect_uri: context.redirectUri, state: stateParam, }, }, zcacheTestObj: context.zcacheTestObj, customLogger, calledFromCliInvoke: true, }); if (!authorizeUrl.includes('&scope=')) { const scope = context.appDefinition.authentication.oauth2Config.scope; if (scope) { authorizeUrl += `&scope=${encodeURIComponent(scope)}`; } } debug('authorizeUrl:', authorizeUrl); endSpinner(); startSpinner('Starting local HTTP server'); let resolveCode; const codePromise = new Promise((resolve) => { resolveCode = resolve; }); const server = http.createServer((req, res) => { // Parse the request URL to extract the query parameters const code = new URL(req.url, context.redirectUri).searchParams.get('code'); if (code) { resolveCode(code); debug(`Received code '${code}' from ${req.headers.referer}`); res.writeHead(200, { 'Content-Type': 'text/plain' }); res.end( 'Parameter `code` received successfully. Go back to the terminal to continue.', ); } else { res.writeHead(400, { 'Content-Type': 'text/plain' }); res.end( 'Error: Did not receive `code` query parameter. ' + 'Did you have the right CLIENT_ID and CLIENT_SECRET? ' + 'Or did your server respond properly?', ); } }); await new Promise((resolve) => { server.listen(context.port, resolve); }); endSpinner(); startSpinner('Opening browser to authorize (press Ctrl-C to exit on error)'); const { default: open } = await import('open'); open(authorizeUrl); const code = await codePromise; endSpinner(); startSpinner('Closing local HTTP server'); await new Promise((resolve) => { server.close(resolve); }); debug('Local HTTP server closed'); endSpinner(); startSpinner('Invoking authentication.oauth2Config.getAccessToken'); const authData = await localAppCommand({ command: 'execute', method: 'authentication.oauth2Config.getAccessToken', bundle: { authData: {}, inputData: { code, redirect_uri: context.redirectUri, }, }, zcacheTestObj: context.zcacheTestObj, customLogger, calledFromCliInvoke: true, }); endSpinner(); return authData; }; /** * Initializes session authentication. * Prompts for auth fields and then calls the session config perform method. * @param {import('../../../ZapierBaseCommand')} command - The command instance for prompting * @param {Object} context - The execution context * @returns {Promise<Object>} Combined auth data and session data * @throws {Error} If in non-interactive mode */ const startSessionAuth = async (command, context) => { if (context.nonInteractive) { throw new Error( 'The `auth start` subcommand for "session" authentication type only works in interactive mode.', ); } const authData = await promptForAuthFields( command, context.appDefinition.authentication.fields, ); startSpinner('Invoking authentication.sessionConfig.perform'); const sessionData = await localAppCommand({ command: 'execute', method: 'authentication.sessionConfig.perform', bundle: { authData, }, zcacheTestObj: context.zcacheTestObj, customLogger, calledFromCliInvoke: true, }); endSpinner(); return { ...authData, ...sessionData }; }; /** * Main entry point for initializing authentication. * Routes to the appropriate auth type handler based on the app definition. * @param {import('../../../ZapierBaseCommand')} command - The command instance for prompting * @param {Object} context - The execution context * @returns {Promise<Object|null>} Auth data or null if no authentication needed * @throws {Error} If the authentication type is not supported */ const startAuth = async (command, context) => { const authentication = context.appDefinition.authentication; if (!authentication) { console.warn( "Your integration doesn't seem to need authentication. " + "If that isn't true, the app definition should have " + 'an `authentication` object at the root level.', ); return null; } switch (authentication.type) { case 'basic': return startBasicAuth(command, context); case 'custom': return startCustomAuth(command, context); case 'oauth2': return startOAuth2(command, context); case 'session': return startSessionAuth(command, context); default: // TODO: Add support for 'digest' and 'oauth1' throw new Error( `This command doesn't support authentication type "${authentication.type}".`, ); } }; module.exports = { startAuth };