+3

.gitignore

reviewed

··· 1 1 + node_modules/ 2 2 + /workspace/.cache/ 3 3 + *.log

+64

README.md

reviewed

··· 1 1 + # create-tangled-repo 2 2 + 3 3 + A small Bun + Playwright helper that creates Tangled repositories through Tangled's real appview flow. 4 4 + 5 5 + It logs in through the Bluesky OAuth page when needed, saves a reusable Tangled web session locally, and then creates repositories by posting to the same `/repo/new` route the web UI uses. 6 6 + 7 7 + ## Why this exists 8 8 + 9 9 + Tangled exposes lower-level repo creation plumbing, but creating a repo directly through the knot XRPC path can leave you with a repo that the appview does not ingest. This tool uses the appview-backed path so the created repo shows up properly in Tangled. 10 10 + 11 11 + ## Requirements 12 12 + 13 13 + - [Bun](https://bun.sh/) 14 14 + - A Tangled / Bluesky account 15 15 + - Your normal account password for the Bluesky auth flow 16 16 + - A Tangled knot where you can create repos 17 17 + 18 18 + The script downloads Playwright Chromium automatically on first run. 19 19 + 20 20 + ## Usage 21 21 + 22 22 + ```bash 23 23 + bun install 24 24 + ./create-tangled-repo.js --identifier alice.mosphere.at --password 'your-normal-password' my-repo 25 25 + ``` 26 26 + 27 27 + You can create more than one repo at once: 28 28 + 29 29 + ```bash 30 30 + ./create-tangled-repo.js repo-one repo-two 31 31 + ``` 32 32 + 33 33 + The script remembers the last knot you used. If no knot is configured yet, it defaults to `knot1.tangled.sh`. 34 34 + 35 35 + ## Options 36 36 + 37 37 + ```text 38 38 + --identifier <handle> Bluesky/Tangled handle for login, if a new session is needed 39 39 + --password <password> Account password for OAuth login, not an app password 40 40 + --knot <domain> Knot domain to host the repo on 41 41 + --branch <name> Default branch. Default: main 42 42 + --description <text> Optional repo description 43 43 + --host <url> Tangled appview base URL. Default: https://tangled.org 44 44 + --session-file <path> Stored session state file 45 45 + --config-file <path> Stored config file 46 46 + --login-only Refresh/login and save session, create nothing 47 47 + --show-browser Show the browser window during login 48 48 + ``` 49 49 + 50 50 + ## Cache files 51 51 + 52 52 + By default the script stores: 53 53 + 54 54 + - session state in `/workspace/.cache/tangled/session.json` 55 55 + - config in `/workspace/.cache/tangled/config.json` 56 56 + - Playwright browsers in `/workspace/.cache/ms-playwright` 57 57 + 58 58 + You can override those with environment variables. 59 59 + 60 60 + ## Notes 61 61 + 62 62 + - The password is your normal account password, not an app password. 63 63 + - App passwords are fine for the lower-level protocol path, but that path can create ghost repos. 64 64 + - This script intentionally takes the dirty path because it is the one that works today.

+19

bun.lock

reviewed

··· 1 1 + { 2 2 + "lockfileVersion": 1, 3 3 + "configVersion": 1, 4 4 + "workspaces": { 5 5 + "": { 6 6 + "name": "create-tangled-repo", 7 7 + "dependencies": { 8 8 + "playwright": "^1.59.1", 9 9 + }, 10 10 + }, 11 11 + }, 12 12 + "packages": { 13 13 + "fsevents": ["fsevents@2.3.2", "", { "os": "darwin" }, "sha512-xiqMQR4xAeHTuB9uWm+fFRcIOgKBMiOBP+eXiyT7jsgVCq1bkVygt00oASowB7EdtpOHaaPgKt812P9ab+DDKA=="], 14 14 + 15 15 + "playwright": ["playwright@1.59.1", "", { "dependencies": { "playwright-core": "1.59.1" }, "optionalDependencies": { "fsevents": "2.3.2" }, "bin": { "playwright": "cli.js" } }, "sha512-C8oWjPR3F81yljW9o5OxcWzfh6avkVwDD2VYdwIGqTkl+OGFISgypqzfu7dOe4QNLL2aqcWBmI3PMtLIK233lw=="], 16 16 + 17 17 + "playwright-core": ["playwright-core@1.59.1", "", { "bin": { "playwright-core": "cli.js" } }, "sha512-HBV/RJg81z5BiiZ9yPzIiClYV/QMsDCKUyogwH9p3MCP6IYjUFu/MActgYAvK0oWyV9NlwM3GLBjADyWgydVyg=="], 18 18 + } 19 19 + }

+574

create-tangled-repo.js

reviewed

··· 1 1 + #!/usr/bin/env bun 2 2 + 3 3 + process.env.PLAYWRIGHT_BROWSERS_PATH ||= '/workspace/.cache/ms-playwright'; 4 4 + 5 5 + import { chromium } from 'playwright'; 6 6 + import { existsSync, mkdirSync, readFileSync, readdirSync } from 'node:fs'; 7 7 + import { dirname, join } from 'node:path'; 8 8 + 9 9 + const FALLBACK_KNOT = 'knot1.tangled.sh'; 10 10 + const DEFAULT_HOST = process.env.TANGLED_HOST || 'https://tangled.org'; 11 11 + const DEFAULT_SESSION_FILE = process.env.TANGLED_SESSION_FILE || '/workspace/.cache/tangled/session.json'; 12 12 + const DEFAULT_CONFIG_FILE = process.env.TANGLED_CONFIG_FILE || '/workspace/.cache/tangled/config.json'; 13 13 + const DEFAULT_BROWSERS_PATH = process.env.PLAYWRIGHT_BROWSERS_PATH || '/workspace/.cache/ms-playwright'; 14 14 + 15 15 + const USAGE = `Usage: 16 16 + create-tangled-repo.js [options] <repo-name> [repo-name ...] 17 17 + 18 18 + Options: 19 19 + --identifier <handle> Bluesky/Tangled handle for login, if a new session is needed 20 20 + --password <password> Account password for OAuth login, not an app password 21 21 + --knot <domain> Knot domain to host the repo on 22 22 + Default: cached knot, otherwise ${FALLBACK_KNOT} 23 23 + --branch <name> Default branch. Default: main 24 24 + --description <text> Optional repo description 25 25 + --host <url> Tangled appview base URL. Default: ${DEFAULT_HOST} 26 26 + --session-file <path> Stored session state file. Default: ${DEFAULT_SESSION_FILE} 27 27 + --config-file <path> Stored config file. Default: ${DEFAULT_CONFIG_FILE} 28 28 + --login-only Refresh/login and save session, create nothing 29 29 + --show-browser Show the browser window during login 30 30 + --help Show this help 31 31 + 32 32 + Environment: 33 33 + TANGLED_IDENTIFIER Default for --identifier 34 34 + TANGLED_PASSWORD Default for --password 35 35 + TANGLED_KNOT_DOMAIN Default for --knot 36 36 + TANGLED_DEFAULT_BRANCH Default for --branch 37 37 + TANGLED_DESCRIPTION Default for --description 38 38 + TANGLED_HOST Default for --host 39 39 + TANGLED_SESSION_FILE Default for --session-file 40 40 + TANGLED_CONFIG_FILE Default for --config-file 41 41 + PLAYWRIGHT_BROWSERS_PATH Browser download path 42 42 + 43 43 + Notes: 44 44 + This script uses the same appview route as the web UI: POST /repo/new. 45 45 + It stores a reusable Tangled web session locally after the first successful login. 46 46 + It also remembers the last knot you used, so future runs can omit --knot. 47 47 + The password must be your normal account password for the Bluesky auth flow. 48 48 + App passwords are for the direct protocol route and do not create appview-visible repos. 49 49 + 50 50 + Examples: 51 51 + ./create-tangled-repo.js \ 52 52 + --identifier alice.mosphere.at \ 53 53 + --password 'your-account-password' \ 54 54 + pix 55 55 + 56 56 + ./create-tangled-repo.js --knot other-knot.example repo-one repo-two 57 57 + ./create-tangled-repo.js --login-only --identifier alice.mosphere.at --password 'your-account-password' 58 58 + `; 59 59 + 60 60 + function die(message, code = 1) { 61 61 + console.error(message); 62 62 + process.exit(code); 63 63 + } 64 64 + 65 65 + function parseJsonFile(path) { 66 66 + if (!existsSync(path)) return null; 67 67 + try { 68 68 + return JSON.parse(readFileSync(path, 'utf8')); 69 69 + } catch { 70 70 + return null; 71 71 + } 72 72 + } 73 73 + 74 74 + function parseArgs(argv) { 75 75 + const opts = { 76 76 + identifier: process.env.TANGLED_IDENTIFIER || '', 77 77 + password: process.env.TANGLED_PASSWORD || '', 78 78 + knot: process.env.TANGLED_KNOT_DOMAIN || '', 79 79 + branch: process.env.TANGLED_DEFAULT_BRANCH || 'main', 80 80 + description: process.env.TANGLED_DESCRIPTION || '', 81 81 + host: DEFAULT_HOST, 82 82 + sessionFile: DEFAULT_SESSION_FILE, 83 83 + configFile: DEFAULT_CONFIG_FILE, 84 84 + showBrowser: false, 85 85 + loginOnly: false, 86 86 + names: [], 87 87 + }; 88 88 + 89 89 + for (let i = 0; i < argv.length; i++) { 90 90 + const arg = argv[i]; 91 91 + switch (arg) { 92 92 + case '--help': 93 93 + case '-h': 94 94 + console.log(USAGE); 95 95 + process.exit(0); 96 96 + case '--identifier': 97 97 + opts.identifier = argv[++i] || ''; 98 98 + break; 99 99 + case '--password': 100 100 + opts.password = argv[++i] || ''; 101 101 + break; 102 102 + case '--knot': 103 103 + opts.knot = argv[++i] || ''; 104 104 + break; 105 105 + case '--branch': 106 106 + opts.branch = argv[++i] || ''; 107 107 + break; 108 108 + case '--description': 109 109 + opts.description = argv[++i] || ''; 110 110 + break; 111 111 + case '--host': 112 112 + opts.host = argv[++i] || ''; 113 113 + break; 114 114 + case '--session-file': 115 115 + opts.sessionFile = argv[++i] || ''; 116 116 + break; 117 117 + case '--config-file': 118 118 + opts.configFile = argv[++i] || ''; 119 119 + break; 120 120 + case '--show-browser': 121 121 + opts.showBrowser = true; 122 122 + break; 123 123 + case '--login-only': 124 124 + opts.loginOnly = true; 125 125 + break; 126 126 + default: 127 127 + if (arg.startsWith('--')) { 128 128 + die(`Unknown option: ${arg}\n\n${USAGE}`); 129 129 + } 130 130 + opts.names.push(arg); 131 131 + } 132 132 + } 133 133 + 134 134 + opts.host = (opts.host || DEFAULT_HOST).replace(/\/+$/, ''); 135 135 + opts.sessionFile = opts.sessionFile || DEFAULT_SESSION_FILE; 136 136 + opts.configFile = opts.configFile || DEFAULT_CONFIG_FILE; 137 137 + 138 138 + if (!opts.loginOnly && opts.names.length === 0) { 139 139 + die(`Missing repo name.\n\n${USAGE}`); 140 140 + } 141 141 + 142 142 + return opts; 143 143 + } 144 144 + 145 145 + function resolveDefaults(opts) { 146 146 + const config = parseJsonFile(opts.configFile) || {}; 147 147 + 148 148 + if (!opts.knot) { 149 149 + opts.knot = config.knot || FALLBACK_KNOT; 150 150 + } 151 151 + 152 152 + if (!opts.host && config.host) { 153 153 + opts.host = String(config.host).replace(/\/+$/, ''); 154 154 + } 155 155 + 156 156 + return config; 157 157 + } 158 158 + 159 159 + function saveConfig(path, nextValues) { 160 160 + ensureParentDir(path); 161 161 + const current = parseJsonFile(path) || {}; 162 162 + const merged = { 163 163 + ...current, 164 164 + ...Object.fromEntries(Object.entries(nextValues).filter(([, value]) => value)), 165 165 + }; 166 166 + Bun.write(path, JSON.stringify(merged, null, 2) + '\n'); 167 167 + } 168 168 + 169 169 + function validateRepoName(name) { 170 170 + if (!name) throw new Error('repository name cannot be empty'); 171 171 + if (name.endsWith('.git')) name = name.slice(0, -4); 172 172 + 173 173 + if ( 174 174 + name === '.' || 175 175 + name === '..' || 176 176 + name.includes('/') || 177 177 + name.includes('\\') || 178 178 + name.includes('./') || 179 179 + name.includes('../') || 180 180 + name.startsWith('.') || 181 181 + name.endsWith('.') || 182 182 + name.includes('..') 183 183 + ) { 184 184 + throw new Error(`invalid repository name '${name}'`); 185 185 + } 186 186 + 187 187 + for (const ch of name) { 188 188 + const ok = 189 189 + (ch >= 'a' && ch <= 'z') || 190 190 + (ch >= 'A' && ch <= 'Z') || 191 191 + (ch >= '0' && ch <= '9') || 192 192 + ch === '-' || 193 193 + ch === '_' || 194 194 + ch === '.'; 195 195 + if (!ok) { 196 196 + throw new Error(`repository name '${name}' can only contain letters, numbers, periods, hyphens, and underscores`); 197 197 + } 198 198 + } 199 199 + 200 200 + return name; 201 201 + } 202 202 + 203 203 + function ensureParentDir(path) { 204 204 + mkdirSync(dirname(path), { recursive: true }); 205 205 + } 206 206 + 207 207 + function parseStorageState(sessionFile) { 208 208 + return parseJsonFile(sessionFile); 209 209 + } 210 210 + 211 211 + function cookieHeaderForHost(host, storageState) { 212 212 + if (!storageState?.cookies?.length) return ''; 213 213 + const url = new URL(host); 214 214 + const hostname = url.hostname; 215 215 + const isHttps = url.protocol === 'https:'; 216 216 + const cookies = storageState.cookies.filter((cookie) => { 217 217 + if (!cookie.name || cookie.value == null) return false; 218 218 + const domain = String(cookie.domain || '').replace(/^\./, ''); 219 219 + const matchesDomain = hostname === domain || hostname.endsWith(`.${domain}`); 220 220 + const secureOk = !cookie.secure || isHttps; 221 221 + return matchesDomain && secureOk; 222 222 + }); 223 223 + return cookies.map((cookie) => `${cookie.name}=${cookie.value}`).join('; '); 224 224 + } 225 225 + 226 226 + async function fetchCreate(host, cookieHeader, knot, branch, description, repoName) { 227 227 + const body = new URLSearchParams(); 228 228 + body.set('domain', knot); 229 229 + body.set('name', repoName); 230 230 + body.set('branch', branch || 'main'); 231 231 + if (description) body.set('description', description); 232 232 + 233 233 + const res = await fetch(`${host}/repo/new`, { 234 234 + method: 'POST', 235 235 + headers: { 236 236 + 'content-type': 'application/x-www-form-urlencoded', 237 237 + 'cookie': cookieHeader, 238 238 + 'hx-request': 'true', 239 239 + 'referer': `${host}/repo/new`, 240 240 + }, 241 241 + body: body.toString(), 242 242 + redirect: 'manual', 243 243 + }); 244 244 + 245 245 + const text = await res.text(); 246 246 + return { 247 247 + status: res.status, 248 248 + body: text, 249 249 + hxLocation: res.headers.get('hx-location'), 250 250 + hxRedirect: res.headers.get('hx-redirect'), 251 251 + }; 252 252 + } 253 253 + 254 254 + function extractRepoError(html) { 255 255 + const match = html.match(/<span[^>]*id="repo"[^>]*>(.*?)<\/span>/is); 256 256 + if (!match) return ''; 257 257 + return match[1] 258 258 + .replace(/<[^>]+>/g, ' ') 259 259 + .replace(/&mdash;/g, '—') 260 260 + .replace(/&amp;/g, '&') 261 261 + .replace(/&lt;/g, '<') 262 262 + .replace(/&gt;/g, '>') 263 263 + .replace(/&#39;/g, "'") 264 264 + .replace(/&quot;/g, '"') 265 265 + .replace(/\s+/g, ' ') 266 266 + .trim(); 267 267 + } 268 268 + 269 269 + function needsAuthentication(resp) { 270 270 + return Boolean(resp.hxRedirect && resp.hxRedirect.includes('/login')); 271 271 + } 272 272 + 273 273 + function uniqueDirs(items) { 274 274 + return [...new Set(items.filter(Boolean))]; 275 275 + } 276 276 + 277 277 + function buildBrowserEnv() { 278 278 + const env = { ...process.env }; 279 279 + env.PLAYWRIGHT_BROWSERS_PATH = DEFAULT_BROWSERS_PATH; 280 280 + 281 281 + if (env.LD_LIBRARY_PATH && env.LD_LIBRARY_PATH.trim()) { 282 282 + return env; 283 283 + } 284 284 + 285 285 + const store = '/nix/store'; 286 286 + const patterns = [ 287 287 + { re: /-ld-library-path$/, suffix: 'share/nix-ld/lib' }, 288 288 + { re: /-system-path$/, suffix: 'lib' }, 289 289 + { re: /-nspr-/, suffix: 'lib' }, 290 290 + { re: /-nss-/, suffix: 'lib' }, 291 291 + { re: /-dbus-.*-lib$/, suffix: 'lib' }, 292 292 + { re: /-mesa-libgbm-/, suffix: 'lib' }, 293 293 + { re: /-libxkbcommon-/, suffix: 'lib' }, 294 294 + { re: /-alsa-lib-/, suffix: 'lib' }, 295 295 + { re: /-libxdamage-/, suffix: 'lib' }, 296 296 + ]; 297 297 + 298 298 + let entries = []; 299 299 + try { 300 300 + entries = readdirSync(store); 301 301 + } catch { 302 302 + entries = []; 303 303 + } 304 304 + 305 305 + const dirs = uniqueDirs( 306 306 + entries.flatMap((entry) => 307 307 + patterns 308 308 + .filter((pattern) => pattern.re.test(entry)) 309 309 + .map((pattern) => join(store, entry, pattern.suffix)) 310 310 + ) 311 311 + ); 312 312 + 313 313 + if (dirs.length > 0) { 314 314 + env.LD_LIBRARY_PATH = dirs.join(':'); 315 315 + } 316 316 + 317 317 + return env; 318 318 + } 319 319 + 320 320 + function browserCandidates() { 321 321 + const candidates = []; 322 322 + 323 323 + try { 324 324 + const entries = readdirSync(DEFAULT_BROWSERS_PATH); 325 325 + for (const entry of entries) { 326 326 + if (entry.startsWith('chromium-')) { 327 327 + candidates.push(join(DEFAULT_BROWSERS_PATH, entry, 'chrome-linux', 'chrome')); 328 328 + } 329 329 + if (entry.startsWith('chromium_headless_shell-')) { 330 330 + candidates.push(join(DEFAULT_BROWSERS_PATH, entry, 'chrome-linux', 'headless_shell')); 331 331 + } 332 332 + } 333 333 + } catch {} 334 334 + 335 335 + return candidates; 336 336 + } 337 337 + 338 338 + function findInstalledBrowserExecutable() { 339 339 + for (const candidate of browserCandidates()) { 340 340 + if (existsSync(candidate)) return candidate; 341 341 + } 342 342 + return ''; 343 343 + } 344 344 + 345 345 + async function ensureBrowserInstalled() { 346 346 + if (findInstalledBrowserExecutable()) return; 347 347 + 348 348 + console.error(`installing Playwright Chromium into ${DEFAULT_BROWSERS_PATH}...`); 349 349 + const proc = Bun.spawn([ 350 350 + 'bunx', 351 351 + 'playwright', 352 352 + 'install', 353 353 + 'chromium', 354 354 + ], { 355 355 + stdout: 'inherit', 356 356 + stderr: 'inherit', 357 357 + env: { 358 358 + ...process.env, 359 359 + PLAYWRIGHT_BROWSERS_PATH: DEFAULT_BROWSERS_PATH, 360 360 + }, 361 361 + }); 362 362 + 363 363 + const exitCode = await proc.exited; 364 364 + if (exitCode !== 0) { 365 365 + throw new Error(`Failed to install Playwright Chromium (exit ${exitCode})`); 366 366 + } 367 367 + 368 368 + if (!findInstalledBrowserExecutable()) { 369 369 + throw new Error(`Playwright reported success, but no Chromium executable was found under ${DEFAULT_BROWSERS_PATH}`); 370 370 + } 371 371 + } 372 372 + 373 373 + async function launchBrowser(headless) { 374 374 + await ensureBrowserInstalled(); 375 375 + const executablePath = findInstalledBrowserExecutable(); 376 376 + 377 377 + return await chromium.launch({ 378 378 + headless, 379 379 + executablePath, 380 380 + args: ['--no-sandbox'], 381 381 + env: buildBrowserEnv(), 382 382 + }); 383 383 + } 384 384 + 385 385 + async function loginAndSaveSession(opts) { 386 386 + if (!opts.identifier || !opts.password) { 387 387 + throw new Error('No valid Tangled session found. Re-run with --identifier and --password to create one. Use your normal account password, not an app password.'); 388 388 + } 389 389 + 390 390 + ensureParentDir(opts.sessionFile); 391 391 + 392 392 + console.error('starting Tangled login flow...'); 393 393 + const browser = await launchBrowser(!opts.showBrowser); 394 394 + const context = await browser.newContext(); 395 395 + const page = await context.newPage(); 396 396 + 397 397 + try { 398 398 + await page.goto(`${opts.host}/login`, { waitUntil: 'domcontentloaded' }); 399 399 + await page.locator('input[name="handle"]').fill(opts.identifier); 400 400 + await Promise.all([ 401 401 + page.waitForURL((url) => !url.toString().startsWith(`${opts.host}/login`), { timeout: 30000 }), 402 402 + page.locator('button#login-button').click(), 403 403 + ]); 404 404 + 405 405 + await page.waitForLoadState('domcontentloaded'); 406 406 + 407 407 + if (page.url().includes('/oauth/authorize')) { 408 408 + const passwordInput = page.locator('input[name="password"]'); 409 409 + await passwordInput.waitFor({ state: 'visible', timeout: 30000 }); 410 410 + await passwordInput.fill(opts.password); 411 411 + 412 412 + const remember = page.locator('input[name="remember"]'); 413 413 + if (await remember.count()) { 414 414 + try { 415 415 + await remember.check(); 416 416 + } catch {} 417 417 + } 418 418 + 419 419 + await page.getByRole('button', { name: /^sign in$/i }).click(); 420 420 + } 421 421 + 422 422 + const consentPattern = /^(continue|authorize|allow|approve|accept|grant access|continue as .+)$/i; 423 423 + const denyPattern = /^(cancel|back)$/i; 424 424 + const deadline = Date.now() + 90000; 425 425 + 426 426 + while (Date.now() < deadline) { 427 427 + const url = page.url(); 428 428 + if (url.startsWith(opts.host) && !url.includes('/login')) { 429 429 + await context.storageState({ path: opts.sessionFile }); 430 430 + saveConfig(opts.configFile, { host: opts.host, knot: opts.knot }); 431 431 + console.error(`saved session to ${opts.sessionFile}`); 432 432 + return; 433 433 + } 434 434 + 435 435 + const authError = await page.locator('text=/incorrect|invalid|try again|too many attempts/i').count(); 436 436 + if (authError > 0) { 437 437 + throw new Error('The auth server rejected the login. Check the username/password and try again.'); 438 438 + } 439 439 + 440 440 + const buttons = page.getByRole('button'); 441 441 + const count = await buttons.count(); 442 442 + let clicked = false; 443 443 + for (let i = 0; i < count; i++) { 444 444 + const button = buttons.nth(i); 445 445 + const text = (await button.innerText().catch(() => '')).trim(); 446 446 + if (!text || denyPattern.test(text)) continue; 447 447 + if (consentPattern.test(text)) { 448 448 + await button.click(); 449 449 + clicked = true; 450 450 + break; 451 451 + } 452 452 + } 453 453 + 454 454 + if (!clicked) { 455 455 + await page.waitForTimeout(500); 456 456 + } else { 457 457 + await page.waitForLoadState('domcontentloaded'); 458 458 + } 459 459 + } 460 460 + 461 461 + throw new Error('Timed out waiting for Tangled OAuth login to complete. Re-run with --show-browser if you need to watch the flow.'); 462 462 + } finally { 463 463 + await browser.close(); 464 464 + } 465 465 + } 466 466 + 467 467 + async function verifyRepoPage(location, storageState) { 468 468 + const cookieHeader = cookieHeaderForHost(location, storageState); 469 469 + const res = await fetch(location, { 470 470 + headers: cookieHeader ? { cookie: cookieHeader } : {}, 471 471 + redirect: 'manual', 472 472 + }); 473 473 + return { 474 474 + status: res.status, 475 475 + location: res.headers.get('location'), 476 476 + }; 477 477 + } 478 478 + 479 479 + async function createRepos(opts, storageState) { 480 480 + const cookieHeader = cookieHeaderForHost(opts.host, storageState); 481 481 + if (!cookieHeader) { 482 482 + throw new Error(`No usable cookies found in ${opts.sessionFile}. Re-run with --identifier and --password.`); 483 483 + } 484 484 + 485 485 + const results = []; 486 486 + for (const rawName of opts.names) { 487 487 + const repoName = validateRepoName(rawName); 488 488 + console.error(`creating ${repoName}...`); 489 489 + 490 490 + const resp = await fetchCreate(opts.host, cookieHeader, opts.knot, opts.branch, opts.description, repoName); 491 491 + if (needsAuthentication(resp)) { 492 492 + throw new Error('The saved Tangled session is no longer valid. Re-run with --identifier and --password to refresh it.'); 493 493 + } 494 494 + if (!resp.hxLocation) { 495 495 + const message = extractRepoError(resp.body); 496 496 + if (message) throw new Error(message); 497 497 + throw new Error(`Unexpected appview response for ${repoName}: HTTP ${resp.status}`); 498 498 + } 499 499 + 500 500 + const location = resp.hxLocation.startsWith('http') ? resp.hxLocation : `${opts.host}${resp.hxLocation}`; 501 501 + const verification = await verifyRepoPage(location, storageState); 502 502 + 503 503 + results.push({ 504 504 + name: repoName, 505 505 + location, 506 506 + verifyStatus: verification.status, 507 507 + redirectTo: verification.location, 508 508 + }); 509 509 + 510 510 + console.error(`created ${repoName}: ${location}`); 511 511 + } 512 512 + 513 513 + return results; 514 514 + } 515 515 + 516 516 + async function main() { 517 517 + const opts = parseArgs(process.argv.slice(2)); 518 518 + resolveDefaults(opts); 519 519 + saveConfig(opts.configFile, { host: opts.host, knot: opts.knot }); 520 520 + 521 521 + console.error(`using appview: ${opts.host}`); 522 522 + if (!opts.loginOnly) { 523 523 + console.error(`using knot: ${opts.knot}`); 524 524 + } 525 525 + 526 526 + let storageState = parseStorageState(opts.sessionFile); 527 527 + 528 528 + if (!storageState) { 529 529 + await loginAndSaveSession(opts); 530 530 + storageState = parseStorageState(opts.sessionFile); 531 531 + } 532 532 + 533 533 + if (opts.loginOnly) { 534 534 + console.log(JSON.stringify({ 535 535 + host: opts.host, 536 536 + knot: opts.knot, 537 537 + sessionFile: opts.sessionFile, 538 538 + configFile: opts.configFile, 539 539 + loggedIn: true, 540 540 + }, null, 2)); 541 541 + return; 542 542 + } 543 543 + 544 544 + try { 545 545 + const repos = await createRepos(opts, storageState); 546 546 + console.log(JSON.stringify({ 547 547 + host: opts.host, 548 548 + knot: opts.knot, 549 549 + sessionFile: opts.sessionFile, 550 550 + configFile: opts.configFile, 551 551 + repos, 552 552 + }, null, 2)); 553 553 + } catch (err) { 554 554 + const message = err?.message || String(err); 555 555 + if (message.includes('session is no longer valid') || message.includes('No usable cookies found')) { 556 556 + await loginAndSaveSession(opts); 557 557 + storageState = parseStorageState(opts.sessionFile); 558 558 + const repos = await createRepos(opts, storageState); 559 559 + console.log(JSON.stringify({ 560 560 + host: opts.host, 561 561 + knot: opts.knot, 562 562 + sessionFile: opts.sessionFile, 563 563 + configFile: opts.configFile, 564 564 + repos, 565 565 + }, null, 2)); 566 566 + return; 567 567 + } 568 568 + throw err; 569 569 + } 570 570 + } 571 571 + 572 572 + main().catch((err) => { 573 573 + die(`error: ${err?.message || err}`); 574 574 + });

+16

package.json

reviewed

··· 1 1 + { 2 2 + "name": "create-tangled-repo", 3 3 + "version": "0.1.0", 4 4 + "private": true, 5 5 + "type": "module", 6 6 + "description": "Create Tangled repositories through the real appview flow", 7 7 + "bin": { 8 8 + "create-tangled-repo": "./create-tangled-repo.js" 9 9 + }, 10 10 + "scripts": { 11 11 + "start": "./create-tangled-repo.js --help" 12 12 + }, 13 13 + "dependencies": { 14 14 + "playwright": "^1.59.1" 15 15 + } 16 16 + }