pantheon-systems · kevinstubbs · Aug 19, 2024 · Sep 14, 2024 · Sep 15, 2024 · Oct 3, 2024
@@ -2,16 +2,13 @@
 import http from "http";
 import { dirname, join } from "path";
 import url, { fileURLToPath } from "url";
-import { parseJwt } from "@pantheon-systems/pcc-sdk-core";
-import { OAuth2Client } from "google-auth-library";
 import nunjucks from "nunjucks";
 import open from "open";
 import ora from "ora";
 import destroyer from "server-destroy";
-import AddOnApiHelper from "../../lib/addonApiHelper";
-import { getApiConfig } from "../../lib/apiConfig";
 import {
   getLocalAuthDetails,
+  JwtCredentials,
   persistAuthDetails,
 } from "../../lib/localStorage";
 import { errorHandler } from "../exceptions";
@@ -20,69 +17,61 @@
 
 const OAUTH_SCOPES = ["https://www.googleapis.com/auth/userinfo.email"];
 
-function login(extraScopes: string[]): Promise<void> {
+function login(): Promise<void> {
   return new Promise(
     // eslint-disable-next-line no-async-promise-executor -- Handling promise rejection in the executor
     async (resolve, reject) => {
       const spinner = ora("Logging you in...").start();
       try {
-        const authData = await getLocalAuthDetails(extraScopes);
+        const authData = (await getLocalAuthDetails()) as JwtCredentials | null;
         if (authData) {
-          const scopes = authData.scope?.split(" ");
-
-          if (
-            !extraScopes?.length ||
-            extraScopes.find((x) => scopes?.includes(x))
-          ) {
-            const jwtPayload = parseJwt(authData.id_token as string);
-            spinner.succeed(
-              `You are already logged in as ${jwtPayload.email}.`,
-            );
-            return resolve();
-          }
+          console.log("already exists", JSON.stringify({ authData }, null, 4));
+          //   spinner.succeed(
+          //     `You are already logged in as ${authData.email}.`,
+          //   );
+          //   return resolve();
         }
 
-        const apiConfig = await getApiConfig();
-        const oAuth2Client = new OAuth2Client({
-          clientId: apiConfig.googleClientId,
-          redirectUri: apiConfig.googleRedirectUri,
-        });
-
-        // Generate the url that will be used for the consent dialog.
-        const authorizeUrl = oAuth2Client.generateAuthUrl({
-          access_type: "offline",
-          scope: [...OAUTH_SCOPES, ...extraScopes],
-        });
-
         const server = http.createServer(async (req, res) => {
           try {
             if (!req.url) {
               throw new Error("No URL path provided");
             }
 
-            if (req.url.indexOf("/oauth-redirect") > -1) {
+            if (req.url.indexOf("/auth-success") !== -1) {
               const qs = new url.URL(req.url, "http://localhost:3030")
                 .searchParams;
-              const code = qs.get("code");
+              const idToken = qs.get("idToken") as string;
+              const oauthToken = qs.get("oauthToken") as string;
+              const email = qs.get("email") as string;
+              const expiration = qs.get("expiration") as string;
               const currDir = dirname(fileURLToPath(import.meta.url));
               const content = readFileSync(
                 join(currDir, "../templates/loginSuccess.html"),
               );
-              const credentials = await AddOnApiHelper.getToken(code as string);
-              const jwtPayload = parseJwt(credentials.id_token as string);
-              await persistAuthDetails(credentials);
+
+              await persistAuthDetails(
+                {
+                  idToken,
+                  oauthToken,
+                  email,
+                  expiration,
+                }
+              );
 
               res.end(
                 nunjucks.renderString(content.toString(), {
-                  email: jwtPayload.email,
+                  email: email,
                 }),
               );
               server.destroy();
 
-              spinner.succeed(
-                `You are successfully logged in as ${jwtPayload.email}`,
-              );
+              spinner.succeed(`You are successfully logged in as ${email}`);
               resolve();
+            } else {
+              res.writeHead(200, { "Content-Type": "text/plain" });
+              res.end("Hello World\n");
+              return;
             }
           } catch (e) {
             spinner.fail();
@@ -93,7 +82,10 @@
         destroyer(server);
 
         server.listen(3030, () => {
-          open(authorizeUrl, { wait: true }).then((cp) => cp.kill());
+          // const apiConfig = await getApiConfig();
+          open("http://localhost:3000/auth/cli", { wait: true }).then((cp) =>
+            cp.kill(),
+          );
         });
       } catch (e) {
         spinner.fail();
@@ -102,7 +94,7 @@
     },
   );
 }
-export default errorHandler<string[]>(login);
+export default errorHandler<void>(login);
 export const LOGIN_EXAMPLES = [
   { description: "Login the user", command: "$0 login" },
 ];
@@ -1,12 +1,15 @@
 import { existsSync, rmSync } from "fs";
 import ora from "ora";
-import { AUTH_FILE_PATH } from "../../lib/localStorage";
+import { AUTH_FOLDER_PATH } from "../../lib/localStorage";
 import { errorHandler } from "../exceptions";
 
 const logout = async () => {
   const spinner = ora("Logging you out...").start();
   try {
-    if (existsSync(AUTH_FILE_PATH)) rmSync(AUTH_FILE_PATH);
+    if (existsSync(AUTH_FOLDER_PATH))
+      rmSync(AUTH_FOLDER_PATH, {
+        recursive: true,
+      });
     spinner.succeed("Successfully logged you out from PPC client!");
   } catch (e) {
     spinner.fail();

@@ -1,16 +1,39 @@
 import { parseJwt } from "@pantheon-systems/pcc-sdk-core";
 import chalk from "chalk";
-import { getLocalAuthDetails } from "../../lib/localStorage";
+import { Credentials } from "google-auth-library";
+import {
+  CREDENTIAL_TYPE,
+  getLocalAuthDetails,
+  JwtCredentials,
+} from "../../lib/localStorage";
 import { errorHandler } from "../exceptions";
 
 const printWhoAmI = async () => {
   try {
-    const authData = await getLocalAuthDetails();
-    if (!authData) {
+    const nextJwt = (await getLocalAuthDetails(
+      CREDENTIAL_TYPE.NEXT_JWT,
+    )) as JwtCredentials | null;
+    if (!nextJwt) {
       console.log("You aren't logged in.");
+    } else {
+      console.log(`You're logged in as ${nextJwt.email}`);
+    }
+  } catch (e) {
+    chalk.red("Something went wrong - couldn't retrieve auth info.");
+    throw e;
+  }
+
+  try {
+    const authData = (await getLocalAuthDetails(
+      CREDENTIAL_TYPE.OAUTH,
+    )) as Credentials | null;
+    if (!authData) {
+      console.log(
+        "You aren't logged into oauth. For some actions, the oauth connection isn't necessary. If you run a command that requires it, you will be only prompted to log in with oauth at that point.",
+      );
     } else {
       const jwtPayload = parseJwt(authData.id_token as string);
-      console.log(`You're logged in as ${jwtPayload.email}`);
+      console.log(`Oauth: You're logged in as ${jwtPayload.email}`);
     }
   } catch (e) {
     chalk.red("Something went wrong - couldn't retrieve auth info.");