workspace/scripts/auth-utils.js at ae50ea5f7ee96adba9921ed90c724bfa69df55ff · gemini-cli-extensions/workspace · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
/**
 * @license
 * Copyright 2025 Google LLC
 * SPDX-License-Identifier: Apache-2.0
 */

const { OAuthCredentialStorage } = require('../workspace-mcp-server/dist/auth-utils.js');

async function clearAuth() {
  try {
    await OAuthCredentialStorage.clearCredentials();
    console.log('✅ Authentication credentials cleared successfully.');
  } catch (error) {
    console.error('❌ Failed to clear authentication credentials:', error);
    process.exit(1);
  }
}

async function expireToken() {
  try {
    const credentials = await OAuthCredentialStorage.loadCredentials();
    if (!credentials) {
      console.log('ℹ️  No credentials found to expire.');
      return;
    }

    // Set expiry to 1 second ago
    credentials.expiry_date = Date.now() - 1000;
    await OAuthCredentialStorage.saveCredentials(credentials);
    console.log('✅ Access token expired successfully.');
    console.log('   Next API call will trigger proactive refresh.');
  } catch (error) {
    console.error('❌ Failed to expire token:', error);
    process.exit(1);
  }
}

async function showStatus() {
  try {
    const credentials = await OAuthCredentialStorage.loadCredentials();
    if (!credentials) {
      console.log('ℹ️  No credentials found.');
      return;
    }

    const now = Date.now();
    const expiry = credentials.expiry_date;
    const hasRefreshToken = !!credentials.refresh_token;
    const hasAccessToken = !!credentials.access_token;
    const isExpired = expiry ? expiry < now : false;

    console.log('📊 Auth Status:');
    console.log(`   Access Token: ${hasAccessToken ? '✅ Present' : '❌ Missing'}`);
    console.log(`   Refresh Token: ${hasRefreshToken ? '✅ Present' : '❌ Missing'}`);
    if (expiry) {
      console.log(`   Expiry: ${new Date(expiry).toISOString()}`);
      console.log(`   Status: ${isExpired ? '❌ EXPIRED' : '✅ Valid'}`);
      if (!isExpired) {
        const minutesLeft = Math.floor((expiry - now) / 1000 / 60);
        console.log(`   Time left: ~${minutesLeft} minutes`);
      }
    } else {
      console.log(`   Expiry: ⚠️  Unknown`);
    }
  } catch (error) {
    console.error('❌ Failed to get auth status:', error);
    process.exit(1);
  }
}

function showHelp() {
  console.log(`
Auth Management CLI

Usage: node scripts/auth-utils.js <command>

Commands:
  clear     Clear all authentication credentials
  expire    Force the access token to expire (for testing refresh)
  status    Show current authentication status
  help      Show this help message

Examples:
  node scripts/auth-utils.js clear
  node scripts/auth-utils.js expire
  node scripts/auth-utils.js status
`);
}

async function main() {
  const command = process.argv[2];

  switch (command) {
    case 'clear':
      await clearAuth();
      break;
    case 'expire':
      await expireToken();
      break;
    case 'status':
      await showStatus();
      break;
    case 'help':
    case '--help':
    case '-h':
      showHelp();
      break;
    default:
      if (!command) {
        console.error('❌ No command specified.');
      } else {
        console.error(`❌ Unknown command: ${command}`);
      }
      showHelp();
      process.exit(1);
  }
}

main();