feat(cli): simplify auth commands

ex3ndr · ex3ndr · commit 268699ec10b5 · 2026-02-02T20:17:25.000-08:00
diff --git a/README.md b/README.md
@@ -43,10 +43,9 @@ bee <command> [options]
 
 ## Commands
 
-- `auth` - Authenticate the CLI with your Bee account.
-  - `auth login` - Log in interactively, or with `--token <token>` / `--token-stdin`.
-  - `auth status` - Show current authentication status.
-  - `auth logout` - Log out and clear stored credentials.
+- `login` - Log in interactively, or with `--token <token>` / `--token-stdin`.
+- `status` - Show current authentication status.
+- `logout` - Log out and clear stored credentials.
 
 - `me` - Fetch your user profile.
 
diff --git a/sources/commands/auth/developerMe.ts b/sources/commands/auth/developerMe.ts
@@ -0,0 +1,55 @@
+import type { CommandContext } from "@/commands/types";
+
+type DevUser = {
+  id: number;
+  first_name: string;
+  last_name: string | null;
+};
+
+export async function fetchDeveloperMe(
+  context: CommandContext,
+  token: string
+): Promise<DevUser> {
+  const response = await context.client.fetch("/v1/me", {
+    method: "GET",
+    headers: {
+      Authorization: `Bearer ${token}`,
+    },
+  });
+
+  if (!response.ok) {
+    const errorPayload = await safeJson(response);
+    const message =
+      typeof errorPayload?.["error"] === "string"
+        ? errorPayload["error"]
+        : `Request failed with status ${response.status}`;
+    throw new Error(message);
+  }
+
+  const data = await safeJson(response);
+  const id = data?.["id"];
+  const firstName = data?.["first_name"];
+  if (typeof id !== "number" || typeof firstName !== "string") {
+    throw new Error("Invalid response from developer API.");
+  }
+
+  return {
+    id,
+    first_name: firstName,
+    last_name: typeof data?.["last_name"] === "string" ? data["last_name"] : null,
+  };
+}
+
+async function safeJson(
+  response: Response
+): Promise<Record<string, unknown> | null> {
+  try {
+    const parsed = (await response.json()) as Record<string, unknown>;
+    if (!parsed || typeof parsed !== "object") {
+      return null;
+    }
+    return parsed;
+  } catch {
+    return null;
+  }
+}
diff --git a/sources/commands/developerApi.ts b/sources/commands/developerApi.ts
@@ -16,7 +16,7 @@ type JsonRequestInit = RequestInit & {
 export async function requireToken(context: CommandContext): Promise<string> {
   const token = await loadToken(context.env);
   if (!token) {
-    throw new Error('Not logged in. Run "bee auth login" first.');
+    throw new Error('Not logged in. Run "bee login" first.');
   }
   return token;
 }
diff --git a/sources/commands/login/index.ts b/sources/commands/login/index.ts
@@ -1,63 +1,36 @@
 import { select } from "@inquirer/prompts";
 import type { Command, CommandContext } from "@/commands/types";
-import { getEnvironmentConfig, type Environment } from "@/environment";
-import { clearToken, loadToken, saveToken } from "@/secureStore";
-import { requestAppPairing } from "./appPairingRequest";
+import type { Environment } from "@/environment";
+import { saveToken } from "@/secureStore";
+import { requestAppPairing } from "@/commands/auth/appPairingRequest";
 import {
   decryptAppPairingToken,
   generateAppPairingKeyPair,
 } from "@/utils/appPairingCrypto";
 import { emojiHash } from "@/utils/emojiHash";
 import { openBrowser } from "@/utils/browser";
 import { renderQrCode } from "@/utils/qrCode";
+import { fetchDeveloperMe } from "@/commands/auth/developerMe";
 
 type LoginOptions = {
   token?: string;
   tokenStdin: boolean;
 };
 
-type DevUser = {
-  id: number;
-  first_name: string;
-  last_name: string | null;
-};
-
 type DeviceAuthMethod = "browser" | "qr";
 
 const USAGE = [
-  "bee auth login",
-  "bee auth login --token <token>",
-  "bee auth login --token-stdin",
-  "bee auth status",
-  "bee auth logout",
+  "bee login",
+  "bee login --token <token>",
+  "bee login --token-stdin",
 ].join("\n");
 
-const DESCRIPTION =
-  "Manage developer API authentication (app tokens with embedded secrets).";
-
-export const authCommand: Command = {
-  name: "auth",
-  description: DESCRIPTION,
+export const loginCommand: Command = {
+  name: "login",
+  description: "Authenticate the CLI with your Bee account.",
   usage: USAGE,
   run: async (args, context) => {
-    if (args.length === 0) {
-      throw new Error("Missing subcommand. Use login, status, or logout.");
-    }
-
-    const [subcommand, ...rest] = args;
-    switch (subcommand) {
-      case "login":
-        await handleLogin(rest, context);
-        return;
-      case "status":
-        await handleStatus(rest, context);
-        return;
-      case "logout":
-        await handleLogout(rest, context);
-        return;
-      default:
-        throw new Error(`Unknown auth subcommand: ${subcommand}`);
-    }
+    await handleLogin(args, context);
   },
 };
 
@@ -103,41 +76,6 @@ async function handleLogin(
   console.log("Token stored.");
 }
 
-async function handleStatus(
-  _args: readonly string[],
-  context: CommandContext
-): Promise<void> {
-  if (_args.length > 0) {
-    throw new Error("status does not accept arguments.");
-  }
-  const token = await loadToken(context.env);
-  const config = getEnvironmentConfig(context.env);
-
-  if (!token) {
-    console.log("Not logged in.");
-    console.log(`API: ${config.label} (${config.apiUrl})`);
-    return;
-  }
-
-  console.log(`API: ${config.label} (${config.apiUrl})`);
-  console.log(`Token: ${maskToken(token)}`);
-
-  const user = await fetchDeveloperMe(context, token);
-  const name = [user.first_name, user.last_name].filter(Boolean).join(" ");
-  console.log(`Verified as ${name} (id ${user.id}).`);
-}
-
-async function handleLogout(
-  args: readonly string[],
-  context: CommandContext
-): Promise<void> {
-  if (args.length > 0) {
-    throw new Error("logout does not accept arguments.");
-  }
-  await clearToken(context.env);
-  console.log("Logged out.");
-}
-
 function parseLoginArgs(args: readonly string[]): LoginOptions {
   let token: string | undefined;
   let tokenStdin = false;
@@ -207,14 +145,6 @@ async function readTokenFromStdin(): Promise<string> {
   });
 }
 
-function maskToken(token: string): string {
-  const trimmed = token.trim();
-  if (trimmed.length <= 8) {
-    return "********";
-  }
-  return `${trimmed.slice(0, 4)}...${trimmed.slice(-4)}`;
-}
-
 async function loginWithAppPairing(context: CommandContext): Promise<string> {
   if (!process.stdin.isTTY) {
     throw new Error(
@@ -356,51 +286,3 @@ async function sleep(durationMs: number): Promise<void> {
     setTimeout(resolve, durationMs);
   });
 }
-
-async function fetchDeveloperMe(
-  context: CommandContext,
-  token: string
-): Promise<DevUser> {
-  const response = await context.client.fetch("/v1/me", {
-    method: "GET",
-    headers: {
-      Authorization: `Bearer ${token}`,
-    },
-  });
-
-  if (!response.ok) {
-    const errorPayload = await safeJson(response);
-    const message =
-      typeof errorPayload?.["error"] === "string"
-        ? errorPayload["error"]
-        : `Request failed with status ${response.status}`;
-    throw new Error(message);
-  }
-
-  const data = await safeJson(response);
-  const id = data?.["id"];
-  const firstName = data?.["first_name"];
-  if (typeof id !== "number" || typeof firstName !== "string") {
-    throw new Error("Invalid response from developer API.");
-  }
-
-  return {
-    id,
-    first_name: firstName,
-    last_name: typeof data?.["last_name"] === "string" ? data["last_name"] : null,
-  };
-}
-
-async function safeJson(
-  response: Response
-): Promise<Record<string, unknown> | null> {
-  try {
-    const parsed = (await response.json()) as Record<string, unknown>;
-    if (!parsed || typeof parsed !== "object") {
-      return null;
-    }
-    return parsed;
-  } catch {
-    return null;
-  }
-}
diff --git a/sources/commands/logout/index.ts b/sources/commands/logout/index.ts
@@ -0,0 +1,24 @@
+import type { Command, CommandContext } from "@/commands/types";
+import { clearToken } from "@/secureStore";
+
+const USAGE = "bee logout";
+
+export const logoutCommand: Command = {
+  name: "logout",
+  description: "Log out and clear stored credentials.",
+  usage: USAGE,
+  run: async (args, context) => {
+    await handleLogout(args, context);
+  },
+};
+
+async function handleLogout(
+  args: readonly string[],
+  context: CommandContext
+): Promise<void> {
+  if (args.length > 0) {
+    throw new Error("logout does not accept arguments.");
+  }
+  await clearToken(context.env);
+  console.log("Logged out.");
+}
diff --git a/sources/commands/status/index.ts b/sources/commands/status/index.ts
@@ -0,0 +1,48 @@
+import type { Command, CommandContext } from "@/commands/types";
+import { getEnvironmentConfig } from "@/environment";
+import { loadToken } from "@/secureStore";
+import { fetchDeveloperMe } from "@/commands/auth/developerMe";
+
+const USAGE = "bee status";
+
+export const statusCommand: Command = {
+  name: "status",
+  description: "Show current authentication status.",
+  usage: USAGE,
+  run: async (args, context) => {
+    await handleStatus(args, context);
+  },
+};
+
+async function handleStatus(
+  args: readonly string[],
+  context: CommandContext
+): Promise<void> {
+  if (args.length > 0) {
+    throw new Error("status does not accept arguments.");
+  }
+
+  const token = await loadToken(context.env);
+  const config = getEnvironmentConfig(context.env);
+
+  if (!token) {
+    console.log("Not logged in.");
+    console.log(`API: ${config.label} (${config.apiUrl})`);
+    return;
+  }
+
+  console.log(`API: ${config.label} (${config.apiUrl})`);
+  console.log(`Token: ${maskToken(token)}`);
+
+  const user = await fetchDeveloperMe(context, token);
+  const name = [user.first_name, user.last_name].filter(Boolean).join(" ");
+  console.log(`Verified as ${name} (id ${user.id}).`);
+}
+
+function maskToken(token: string): string {
+  const trimmed = token.trim();
+  if (trimmed.length <= 8) {
+    return "********";
+  }
+  return `${trimmed.slice(0, 4)}...${trimmed.slice(-4)}`;
+}
diff --git a/sources/main.ts b/sources/main.ts
@@ -1,13 +1,15 @@
 import type { Command, CommandContext } from "@/commands/types";
 import { createDeveloperClient } from "@/client";
-import { authCommand } from "@/commands/auth";
 import { conversationsCommand } from "@/commands/conversations";
 import { dailyCommand } from "@/commands/daily";
 import { factsCommand } from "@/commands/facts";
+import { loginCommand } from "@/commands/login";
+import { logoutCommand } from "@/commands/logout";
 import { meCommand } from "@/commands/me";
 import { pingCommand } from "@/commands/ping";
 import { proxyCommand } from "@/commands/proxy";
 import { searchCommand } from "@/commands/search";
+import { statusCommand } from "@/commands/status";
 import { syncCommand } from "@/commands/sync";
 import { todosCommand } from "@/commands/todos";
 import { todayCommand } from "@/commands/today";
@@ -17,7 +19,9 @@ import type { Environment } from "@/environment";
 const BIN = "bee";
 
 const commands = [
-  authCommand,
+  loginCommand,
+  logoutCommand,
+  statusCommand,
   todayCommand,
   conversationsCommand,
   dailyCommand,

Original file line number	Diff line number	Diff line change
`@@ -16,7 +16,7 @@ type JsonRequestInit = RequestInit & {`
`16`	`16`	`export async function requireToken(context: CommandContext): Promise<string> {`
`17`	`17`	`const token = await loadToken(context.env);`
`18`	`18`	`if (!token) {`
`19`		`- throw new Error('Not logged in. Run "bee auth login" first.');`
	`19`	`+ throw new Error('Not logged in. Run "bee login" first.');`
`20`	`20`	`}`
`21`	`21`	`return token;`
`22`	`22`	`}`