Skip to content

feat: add environment, organization, and user management commands #59

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
nicknisi merged 8 commits into from
Feb 17, 2026
Merged

feat: add environment, organization, and user management commands #59

Show file tree
Hide file tree
Changes from 5 commits
Commits
Show all changes
8 commits
Select commit Hold shift + click to select a range
4dd0175
feat: add environment management commands and config store
nicknisi Feb 17, 2026
3485fe5
feat: add organization management commands
nicknisi Feb 17, 2026
ac80eef
chore: formatting
nicknisi Feb 17, 2026
60643fb
feat: add user management commands
nicknisi Feb 17, 2026
774ab8a
chore: formatting
nicknisi Feb 17, 2026
7dffcc7
docs: update README, DEVELOPMENT, and CLAUDE.md for management commands
nicknisi Feb 17, 2026
6957845
chore: remove accidentally committed .claude and docs directories
nicknisi Feb 17, 2026
ca49fe6
feat: reconcile credential stores for seamless management commands
nicknisi Feb 17, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
229 changes: 229 additions & 0 deletions src/bin.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -35,7 +35,9 @@ import clack from './utils/clack.js';
async function applyInsecureStorage(insecureStorage?: boolean): Promise<void> {
if (insecureStorage) {
const { setInsecureStorage } = await import('./lib/credentials.js');
const { setInsecureConfigStorage } = await import('./lib/config-store.js');
setInsecureStorage(true);
setInsecureConfigStorage(true);
}
}

Expand Down Expand Up @@ -223,6 +225,233 @@ yargs(hideBin(process.argv))
await handleDoctor(argv);
},
)
.command('env', 'Manage environment configurations', (yargs) =>
yargs
.options(insecureStorageOption)
.command(
'add [name] [apiKey]',
'Add an environment configuration',
(yargs) =>
yargs
.positional('name', { type: 'string', describe: 'Environment name' })
.positional('apiKey', { type: 'string', describe: 'WorkOS API key' })
.option('endpoint', { type: 'string', describe: 'Custom API endpoint' }),
async (argv) => {
await applyInsecureStorage(argv.insecureStorage);
const { runEnvAdd } = await import('./commands/env.js');
await runEnvAdd({
name: argv.name,
apiKey: argv.apiKey,
endpoint: argv.endpoint,
});
},
)
.command(
'remove <name>',
'Remove an environment configuration',
(yargs) => yargs.positional('name', { type: 'string', demandOption: true, describe: 'Environment name' }),
async (argv) => {
await applyInsecureStorage(argv.insecureStorage);
const { runEnvRemove } = await import('./commands/env.js');
await runEnvRemove(argv.name);
},
)
.command(
'switch [name]',
'Switch active environment',
(yargs) => yargs.positional('name', { type: 'string', describe: 'Environment name' }),
async (argv) => {
await applyInsecureStorage(argv.insecureStorage);
const { runEnvSwitch } = await import('./commands/env.js');
await runEnvSwitch(argv.name);
},
)
.command('list', 'List configured environments', {}, async (argv) => {
await applyInsecureStorage((argv as any).insecureStorage);
const { runEnvList } = await import('./commands/env.js');
await runEnvList();
})
.demandCommand(1, 'Please specify an env subcommand')
.strict(),
)
.command('organization', 'Manage organizations', (yargs) =>
yargs
.options({
...insecureStorageOption,
'api-key': { type: 'string' as const, describe: 'WorkOS API key (overrides environment config)' },
})
.command(
'create <name> [domains..]',
'Create a new organization',
(yargs) =>
yargs
.positional('name', { type: 'string', demandOption: true, describe: 'Organization name' })
.positional('domains', { type: 'string', array: true, describe: 'Domains as domain:state' }),
async (argv) => {
await applyInsecureStorage(argv.insecureStorage);
const { resolveApiKey, resolveApiBaseUrl } = await import('./lib/api-key.js');
const { runOrgCreate } = await import('./commands/organization.js');
const apiKey = resolveApiKey({ apiKey: argv.apiKey });
await runOrgCreate(argv.name, (argv.domains as string[]) || [], apiKey, resolveApiBaseUrl());
},
)
.command(
'update <orgId> <name> [domain] [state]',
'Update an organization',
(yargs) =>
yargs
.positional('orgId', { type: 'string', demandOption: true, describe: 'Organization ID' })
.positional('name', { type: 'string', demandOption: true, describe: 'Organization name' })
.positional('domain', { type: 'string', describe: 'Domain' })
.positional('state', { type: 'string', describe: 'Domain state (verified or pending)' }),
async (argv) => {
await applyInsecureStorage(argv.insecureStorage);
const { resolveApiKey, resolveApiBaseUrl } = await import('./lib/api-key.js');
const { runOrgUpdate } = await import('./commands/organization.js');
const apiKey = resolveApiKey({ apiKey: argv.apiKey });
await runOrgUpdate(argv.orgId, argv.name, apiKey, argv.domain, argv.state, resolveApiBaseUrl());
},
)
.command(
'get <orgId>',
'Get an organization by ID',
(yargs) => yargs.positional('orgId', { type: 'string', demandOption: true, describe: 'Organization ID' }),
async (argv) => {
await applyInsecureStorage(argv.insecureStorage);
const { resolveApiKey, resolveApiBaseUrl } = await import('./lib/api-key.js');
const { runOrgGet } = await import('./commands/organization.js');
const apiKey = resolveApiKey({ apiKey: argv.apiKey });
await runOrgGet(argv.orgId, apiKey, resolveApiBaseUrl());
},
)
.command(
'list',
'List organizations',
(yargs) =>
yargs.options({
domain: { type: 'string', describe: 'Filter by domain' },
limit: { type: 'number', describe: 'Limit number of results' },
before: { type: 'string', describe: 'Cursor for results before a specific item' },
after: { type: 'string', describe: 'Cursor for results after a specific item' },
order: { type: 'string', describe: 'Order of results (asc or desc)' },
}),
async (argv) => {
await applyInsecureStorage(argv.insecureStorage);
const { resolveApiKey, resolveApiBaseUrl } = await import('./lib/api-key.js');
const { runOrgList } = await import('./commands/organization.js');
const apiKey = resolveApiKey({ apiKey: argv.apiKey });
await runOrgList(
{ domain: argv.domain, limit: argv.limit, before: argv.before, after: argv.after, order: argv.order },
apiKey,
resolveApiBaseUrl(),
);
},
)
.command(
'delete <orgId>',
'Delete an organization',
(yargs) => yargs.positional('orgId', { type: 'string', demandOption: true, describe: 'Organization ID' }),
async (argv) => {
await applyInsecureStorage(argv.insecureStorage);
const { resolveApiKey, resolveApiBaseUrl } = await import('./lib/api-key.js');
const { runOrgDelete } = await import('./commands/organization.js');
const apiKey = resolveApiKey({ apiKey: argv.apiKey });
await runOrgDelete(argv.orgId, apiKey, resolveApiBaseUrl());
},
)
.demandCommand(1, 'Please specify an organization subcommand')
.strict(),
)
.command('user', 'Manage users', (yargs) =>
yargs
.options({
...insecureStorageOption,
'api-key': { type: 'string' as const, describe: 'WorkOS API key (overrides environment config)' },
})
.command(
'get <userId>',
'Get a user by ID',
(yargs) => yargs.positional('userId', { type: 'string', demandOption: true, describe: 'User ID' }),
async (argv) => {
await applyInsecureStorage(argv.insecureStorage);
const { resolveApiKey, resolveApiBaseUrl } = await import('./lib/api-key.js');
const { runUserGet } = await import('./commands/user.js');
await runUserGet(argv.userId, resolveApiKey({ apiKey: argv.apiKey }), resolveApiBaseUrl());
},
)
.command(
'list',
'List users',
(yargs) =>
yargs.options({
email: { type: 'string', describe: 'Filter by email' },
organization: { type: 'string', describe: 'Filter by organization ID' },
limit: { type: 'number', describe: 'Limit number of results' },
before: { type: 'string', describe: 'Cursor for results before a specific item' },
after: { type: 'string', describe: 'Cursor for results after a specific item' },
order: { type: 'string', describe: 'Order of results (asc or desc)' },
}),
async (argv) => {
await applyInsecureStorage(argv.insecureStorage);
const { resolveApiKey, resolveApiBaseUrl } = await import('./lib/api-key.js');
const { runUserList } = await import('./commands/user.js');
await runUserList(
{
email: argv.email,
organization: argv.organization,
limit: argv.limit,
before: argv.before,
after: argv.after,
order: argv.order,
},
resolveApiKey({ apiKey: argv.apiKey }),
resolveApiBaseUrl(),
);
},
)
.command(
'update <userId>',
'Update a user',
(yargs) =>
yargs.positional('userId', { type: 'string', demandOption: true, describe: 'User ID' }).options({
'first-name': { type: 'string', describe: 'First name' },
'last-name': { type: 'string', describe: 'Last name' },
'email-verified': { type: 'boolean', describe: 'Email verification status' },
password: { type: 'string', describe: 'New password' },
'external-id': { type: 'string', describe: 'External ID' },
}),
async (argv) => {
await applyInsecureStorage(argv.insecureStorage);
const { resolveApiKey, resolveApiBaseUrl } = await import('./lib/api-key.js');
const { runUserUpdate } = await import('./commands/user.js');
await runUserUpdate(
argv.userId,
resolveApiKey({ apiKey: argv.apiKey }),
{
firstName: argv.firstName,
lastName: argv.lastName,
emailVerified: argv.emailVerified,
password: argv.password,
externalId: argv.externalId,
},
resolveApiBaseUrl(),
);
},
)
.command(
'delete <userId>',
'Delete a user',
(yargs) => yargs.positional('userId', { type: 'string', demandOption: true, describe: 'User ID' }),
async (argv) => {
await applyInsecureStorage(argv.insecureStorage);
const { resolveApiKey, resolveApiBaseUrl } = await import('./lib/api-key.js');
const { runUserDelete } = await import('./commands/user.js');
await runUserDelete(argv.userId, resolveApiKey({ apiKey: argv.apiKey }), resolveApiBaseUrl());
},
)
.demandCommand(1, 'Please specify a user subcommand')
.strict(),
)
.command(
'install',
'Install WorkOS AuthKit into your project',
Expand Down
Loading