|
| 1 | +#!/usr/bin/env node |
| 2 | +/** |
| 3 | + * crs-pool-config.mjs — shared CRS + rotation config resolution for public installs. |
| 4 | + * |
| 5 | + * Vault key ↔ CRS account name mapping is NEVER hardcoded in repo scripts. |
| 6 | + * Configure per account via `crsAccountName` and/or optional `crs.nameByVaultKey`. |
| 7 | + */ |
| 8 | + |
| 9 | +import { readFileSync, existsSync } from 'fs'; |
| 10 | +import { join, dirname } from 'path'; |
| 11 | +import { fileURLToPath } from 'url'; |
| 12 | +import { homedir } from 'os'; |
| 13 | + |
| 14 | +const __dirname = dirname(fileURLToPath(import.meta.url)); |
| 15 | +const PLUGIN_ROOT = process.env.CLAUDE_PLUGIN_ROOT || join(__dirname, '..', '..'); |
| 16 | +const DATA_DIR = |
| 17 | + process.env.CLAUDE_PLUGIN_DATA_DIR || join(homedir(), '.claude', 'plugins', 'data', 'ops-ops-marketplace'); |
| 18 | + |
| 19 | +export const CONFIG_CANDIDATES = [ |
| 20 | + process.env.CRS_CONFIG, |
| 21 | + join(DATA_DIR, 'account-rotation', 'config.json'), |
| 22 | + join(homedir(), '.claude', 'plugins', 'data', 'ops', 'account-rotation', 'config.json'), |
| 23 | + join(PLUGIN_ROOT, 'scripts', 'account-rotation', 'config.json'), |
| 24 | + join(__dirname, 'config.json'), |
| 25 | +].filter(Boolean); |
| 26 | + |
| 27 | +export function resolveConfigPath() { |
| 28 | + for (const p of CONFIG_CANDIDATES) { |
| 29 | + if (existsSync(p)) return p; |
| 30 | + } |
| 31 | + return null; |
| 32 | +} |
| 33 | + |
| 34 | +export function loadRotationConfig() { |
| 35 | + const path = resolveConfigPath(); |
| 36 | + if (!path) return { crs: {}, accounts: [] }; |
| 37 | + try { |
| 38 | + return { crs: {}, accounts: [], ...JSON.parse(readFileSync(path, 'utf8')) }; |
| 39 | + } catch { |
| 40 | + return { crs: {}, accounts: [] }; |
| 41 | + } |
| 42 | +} |
| 43 | + |
| 44 | +/** |
| 45 | + * @returns {{ nameByVaultKey: Record<string,string>, vaultKeyByCrsName: Record<string,string> }} |
| 46 | + */ |
| 47 | +export function buildCrsNameMaps(config = loadRotationConfig()) { |
| 48 | + const nameByVaultKey = {}; |
| 49 | + const vaultKeyByCrsName = {}; |
| 50 | + |
| 51 | + const overrides = config.crs?.nameByVaultKey; |
| 52 | + if (overrides && typeof overrides === 'object') { |
| 53 | + for (const [vaultKey, crsName] of Object.entries(overrides)) { |
| 54 | + if (!vaultKey || !crsName) continue; |
| 55 | + nameByVaultKey[vaultKey] = crsName; |
| 56 | + if (!vaultKeyByCrsName[crsName]) vaultKeyByCrsName[crsName] = vaultKey; |
| 57 | + } |
| 58 | + } |
| 59 | + |
| 60 | + for (const a of config.accounts || []) { |
| 61 | + const crsName = a.crsAccountName || a.crsName; |
| 62 | + if (!crsName) continue; |
| 63 | + const keys = []; |
| 64 | + if (a.email) keys.push(a.email); |
| 65 | + if (a.label) keys.push(a.label); |
| 66 | + for (const k of keys) { |
| 67 | + if (!k) continue; |
| 68 | + nameByVaultKey[k] = crsName; |
| 69 | + } |
| 70 | + if (!vaultKeyByCrsName[crsName]) { |
| 71 | + vaultKeyByCrsName[crsName] = a.email || a.label || null; |
| 72 | + } |
| 73 | + } |
| 74 | + |
| 75 | + for (const [vaultKey, crsName] of Object.entries(nameByVaultKey)) { |
| 76 | + if (crsName && !vaultKeyByCrsName[crsName]) vaultKeyByCrsName[crsName] = vaultKey; |
| 77 | + } |
| 78 | + |
| 79 | + return { nameByVaultKey, vaultKeyByCrsName }; |
| 80 | +} |
| 81 | + |
| 82 | +export function crsBaseUrl(config = loadRotationConfig()) { |
| 83 | + return process.env.CRS_BASE || config.crs?.baseUrl || 'http://127.0.0.1:3005'; |
| 84 | +} |
| 85 | + |
| 86 | +export function crsFileVaultPath(config = loadRotationConfig()) { |
| 87 | + const fromEnv = process.env.CRS_FILE_VAULT; |
| 88 | + if (fromEnv) return fromEnv.replace(/^~(?=$|\/)/, homedir()); |
| 89 | + const fromCfg = config.crs?.fileVaultPath; |
| 90 | + if (fromCfg) return fromCfg.replace(/^~(?=$|\/)/, homedir()); |
| 91 | + return join(homedir(), '.claude', '.credentials.json'); |
| 92 | +} |
| 93 | + |
| 94 | +export function crsPolicy(config = loadRotationConfig()) { |
| 95 | + const raw = String(process.env.CRS_POLICY || config.crs?.policy || 'conservative') |
| 96 | + .trim() |
| 97 | + .toLowerCase() |
| 98 | + .replace(/_/g, '-'); |
| 99 | + if (raw === 'maxout' || raw === 'max-out') return 'max-out'; |
| 100 | + return 'conservative'; |
| 101 | +} |
| 102 | + |
| 103 | +export function vaultLookupKeysForEmail(email, accounts = []) { |
| 104 | + const keys = new Set(); |
| 105 | + if (email) keys.add(email); |
| 106 | + for (const a of accounts) { |
| 107 | + const label = a.label || a.email; |
| 108 | + const addr = a.email || a.label; |
| 109 | + if (addr === email || label === email) { |
| 110 | + if (label) keys.add(label); |
| 111 | + if (addr) keys.add(addr); |
| 112 | + } |
| 113 | + } |
| 114 | + return [...keys]; |
| 115 | +} |
0 commit comments