We would love for you to contribute to this project and help make it even better than it is today! 💎
As a contributor, here are the guidelines we would like you to follow:
We are excited to have you onboard as a contributor to Permit CLI! 🎉
For new commands, we have a few guidelines to ensure consistency and maintainability:
Come talk to us about Permit CLI, or authorization in general - we would love to hear from you ❤️
You can:
- Raise questions in our GitHub discussions
- Report issues and ask for features in GitHub issues
- Follow us on Twitter to get the latest Permit CLI updates
- Join our Slack community to chat about authorization, open-source, realtime communication, tech or anything else! We are super available on Slack ;)
If you are using our project, please consider giving us a ⭐️
If you find a bug in the source code, you can help us by submitting an issue or even better, you can submit a Pull Request with a fix.
Before you submit an issue, please search the issue tracker; maybe an issue for your problem already exists, and the discussion might inform you of workarounds readily available.
We want to fix all the issues as soon as possible, but before fixing a bug, we need to reproduce and confirm it. In order to reproduce bugs, we require that you provide a full loom or other kind of terminal recording, so we can understand the issue and reproduce it.
You can request a new feature by submitting an issue to our GitHub Repository. Please provide as much detail and context as possible, along with examples or references to similar features, as this will help us understand your request better.
We encourage you to contribute to Permit CLI by submitting a Pull Request with your feature implementation and are happy to guide you through the process.
We are always looking to improve Permit CLI and would love to hear your ideas!
Pull requests are welcome! 🙏
Please follow these guidelines:
- Create an Issue: Open a GitHub Issue for your feature or bug fix.
- Fork & Branch: Fork this repository and create a new branch based on
main. Name your branch descriptively (e.g.,fix/issue-123,feature/new-fetch-provider). - Write Tests: If your changes affect functionality, include tests.
- Update Documentation: Ensure any new features or configurations are documented.
- Check Quality: Run all tests and linters:
npm run lint npm run test - Submit PR: Open a pull request, linking to the issue and explaining your changes clearly.
We aim to review all PRs promptly. After you submit a PR, here’s what you can expect:
- Initial Review: A maintainer will review your PR within a few days. If there are any issues, they will provide feedback.
- Feedback: If changes are needed, please make the necessary updates and push them to your branch. The PR will be updated automatically.
- Approval: Once your PR is approved, it will be merged into the main branch.
- Release: Your changes will be included in the next release of Permit CLI. We will update the changelog and release notes accordingly.
- Announcement: We will announce your contribution in our community channels and give you a shoutout! 🎉
Before submitting your contribution, ensure the following:
- Issue created and linked in the PR
- Branch created from
mainand appropriately named - Tests written and passing
- Documentation updated (if applicable)
- Code formatted and linted
- Changes thoroughly explained in the PR description
The AuthProvider component is a React context provider designed to manage authentication, authorization, and API key handling for CLI-based workflows. It handles multiple flows, such as login, API key validation, token management, and organization/project/environment selection.
This component is the backbone of authentication for the CLI app. It ensures a smooth and secure authentication process by abstracting away the complexities of API key creation, validation, and token management.
-
Token Validation:
- It attempts to load an existing authentication token using
loadAuthToken(). - If a token exists but has the wrong scope or is invalid, the user is redirected to reauthenticate.
- It attempts to load an existing authentication token using
-
API Key Validation:
- The component validates the provided
--key(if supplied) against the required scope (e.g., organization, project, or environment). - If invalid, it throws an error.
- The component validates the provided
-
Token Creation and Management:
- If no key is provided or no stored key is found, we take the user through appropriate selection flow, and get a token of that scope.
- If while fetching the token, no valid key with name (
CLI_API_Key) is found, the component handles the creation of a new API key (CLI_API_Key), ensuring it is scoped appropriately.
- Prompts users to select an organization or project if required and dynamically handles state transitions based on the user's input.
- Any error in the authentication flow (e.g., invalid token, API failure) is captured and displayed to the user. If an error is critical, the CLI exits with a non-zero status.
-
--key<-->permitKeyFunctionality:- Users can pass a
--keyflag to provide an API key directly to thepermitKeyprop ofAuthProvider. The component validates the key and uses it if valid + has a valid scope. - If not passed, the component tries to load a previously stored token or guides the user through a scope based selection and key creation flow.
- Users can pass a
-
Scope Handling:
- The
scopeprop defines the required level of access (e.g.,organization,project, orenvironment). - Based on the scope, the component dynamically fetches or validates the key.
- The
-
Key Creation:
- If on an organization/project scope level, we fetch the key, and we don't find a
CLI_API_Key, we create one for the user and notify them that it's a secure token and not to edit it in any way.
- If on an organization/project scope level, we fetch the key, and we don't find a
-
Error and Loading Indicators:
- Displays appropriate messages during loading or error states to ensure users are informed about what’s happening.
- Any component that is wrapped with AuthProvider can use
useAuth()to access:
type AuthContextType = {
authToken: string;
loading: boolean;
error?: string | null;
scope: ApiKeyScope;
};-
Wrap Your Application:
- The
AuthProvidershould wrap the root of your CLI app. It ensures that authentication is initialized before the app runs.
import { AuthProvider } from './context/AuthProvider'; const App = () => ( <AuthProvider scope="project"> // The scope here is optional and defaults to environment <YourCLICommands /> </AuthProvider> );
- The
-
Access Authentication Context:
- Use the
useAuthhook to access theauthTokenand other authentication states in your components.
import { useAuth } from './context/AuthProvider'; const MyCommand = () => { const { authToken, loading, error, scope } = useAuth(); if (loading) { return <Text>Loading...</Text>; } if (error) { return <Text>Error: {error}</Text>; } return <Text>Authenticated with token: {authToken}</Text>; };
- Use the
-
Customizing Behavior:
- Pass the
permit_keyorscopeprop to customize the authentication flow. - Example:
<AuthProvider permit_key="my-key" scope="organization"> <YourCLICommands /> </AuthProvider>
- Pass the
-
Initialization:
- Checks if a
permit_keyor token is already available. - Validates the token against the required
scope.
- Checks if a
-
Token Validation:
- If invalid or missing, it guides the user through organization/project/environment selection.
-
API Key Handling:
- Searches for an existing
CLI_API_Keyscoped to the organization/project. - Creates one if it doesn’t exist and retrieves its secret.
- Searches for an existing
-
State Transition:
- Handles transitions between
loading,login,organization,project, anddonestates based on user input and validation results.
- Handles transitions between
-
Error Handling:
- Displays errors and exits the process if authentication fails irrecoverably.