panva/README.md

## 2 changes: 1 addition & 1 deletion README.md
@@ -3,5 +3,5 @@

    run
run


    ```sh
```sh

    npx --node-options '--experimental-strip-types' https://gist.github.com/panva/ebaacfe433a8677bdbf458f6e1132045
npx --node-options '--experimental-strip-types' https://gist.github.com/panva/ebaacfe433a8677bdbf458f6e1132045

    npx https://gist.github.com/panva/ebaacfe433a8677bdbf458f6e1132045
npx https://gist.github.com/panva/ebaacfe433a8677bdbf458f6e1132045

    ```
```

## 6 changes: 1 addition & 5 deletions dcr.mts → dcr.mjs
@@ -1,7 +1,3 @@

    #!/usr/bin/env node
#!/usr/bin/env node


    import type { ClientMetadata } from "openid-client";
import type { ClientMetadata } from "openid-client";


    const r = await fetch("https://op.panva.cz/reg", {
const r = await fetch("https://op.panva.cz/reg", {

      method: "POST",
  method: "POST",

      headers: {
  headers: {
@@ -16,6 +12,6 @@ const r = await fetch("https://op.panva.cz/reg", {

      }),
  }),

    });
});


    const { client_id } = (await r.json()) as ClientMetadata;
const { client_id } = (await r.json()) as ClientMetadata;

    const { client_id } = await r.json();
const { client_id } = await r.json();


    export { client_id };
export { client_id };

## 4 changes: 2 additions & 2 deletions index.mts → index.mjs
@@ -2,7 +2,7 @@


    import * as client from "openid-client";
import * as client from "openid-client";

    import open from "open";
import open from "open";

    import { client_id } from "./dcr.mts";
import { client_id } from "./dcr.mts";

    import { client_id } from "./dcr.mjs";
import { client_id } from "./dcr.mjs";


    const config = await client.discovery(
const config = await client.discovery(

      new URL("https://op.panva.cz"),
  new URL("https://op.panva.cz"),
@@ -16,7 +16,7 @@ const deviceAuthorizationResponse = await client.initiateDeviceAuthorization(


    console.log("user code:", deviceAuthorizationResponse.user_code);
console.log("user code:", deviceAuthorizationResponse.user_code);


    await open(deviceAuthorizationResponse.verification_uri_complete!, {
await open(deviceAuthorizationResponse.verification_uri_complete!, {

    await open(deviceAuthorizationResponse.verification_uri_complete, {
await open(deviceAuthorizationResponse.verification_uri_complete, {

      wait: false,
  wait: false,

    });
});


## 4 changes: 2 additions & 2 deletions package.json
@@ -2,8 +2,8 @@

      "name": "pg",
  "name": "pg",

      "version": "1.0.0",
  "version": "1.0.0",

      "description": "",
  "description": "",

      "main": "index.mts",
  "main": "index.mts",

      "bin": "./index.mts",
  "bin": "./index.mts",

      "main": "index.mjs",
  "main": "index.mjs",

      "bin": "./index.mjs",
  "bin": "./index.mjs",

      "scripts": {
  "scripts": {

        "test": "echo \"Error: no test specified\" && exit 1"
    "test": "echo \"Error: no test specified\" && exit 1"

      },
  },


## 6 changes: 3 additions & 3 deletions README.md
@@ -1,7 +1,7 @@

    # Simple Device Flow Login CLI implementation
# Simple Device Flow Login CLI implementation


    run
run

    run
run


    ```sh
```sh

    npx https://gist.github.com/panva/ebaacfe433a8677bdbf458f6e1132045
npx https://gist.github.com/panva/ebaacfe433a8677bdbf458f6e1132045

    ```
```

    npx --node-options '--experimental-strip-types' https://gist.github.com/panva/ebaacfe433a8677bdbf458f6e1132045
npx --node-options '--experimental-strip-types' https://gist.github.com/panva/ebaacfe433a8677bdbf458f6e1132045

    ```
```

## 21 changes: 21 additions & 0 deletions dcr.mts
@@ -0,0 +1,21 @@

    #!/usr/bin/env node
#!/usr/bin/env node


    import type { ClientMetadata } from "openid-client";
import type { ClientMetadata } from "openid-client";


    const r = await fetch("https://op.panva.cz/reg", {
const r = await fetch("https://op.panva.cz/reg", {

      method: "POST",
  method: "POST",

      headers: {
  headers: {

        "content-type": "application/json",
    "content-type": "application/json",

      },
  },

      body: JSON.stringify({
  body: JSON.stringify({

        grant_types: ["urn:ietf:params:oauth:grant-type:device_code"],
    grant_types: ["urn:ietf:params:oauth:grant-type:device_code"],

        response_types: [],
    response_types: [],

        redirect_uris: [],
    redirect_uris: [],

        token_endpoint_auth_method: "none",
    token_endpoint_auth_method: "none",

        application_type: "native",
    application_type: "native",

      }),
  }),

    });
});


    const { client_id } = (await r.json()) as ClientMetadata;
const { client_id } = (await r.json()) as ClientMetadata;


    export { client_id };
export { client_id };

## 36 changes: 0 additions & 36 deletions index.js
@@ -1,36 +0,0 @@

    #!/usr/bin/env node
#!/usr/bin/env node


    /* eslint-disable no-console, camelcase */
/* eslint-disable no-console, camelcase */


    const { Issuer } = require('openid-client');
const { Issuer } = require('openid-client');

    const open = require('open');
const open = require('open');


    const { ISSUER = 'https://op.panva.cz' } = process.env;
const { ISSUER = 'https://op.panva.cz' } = process.env;

    const GRANT_TYPE = 'urn:ietf:params:oauth:grant-type:device_code';
const GRANT_TYPE = 'urn:ietf:params:oauth:grant-type:device_code';


    (async () => {
(async () => {

      const issuer = await Issuer.discover(ISSUER);
  const issuer = await Issuer.discover(ISSUER);


      const client = await issuer.Client.register({
  const client = await issuer.Client.register({

        grant_types: [GRANT_TYPE],
    grant_types: [GRANT_TYPE],

        response_types: [],
    response_types: [],

        redirect_uris: [],
    redirect_uris: [],

        token_endpoint_auth_method: 'none',
    token_endpoint_auth_method: 'none',

        application_type: 'native',
    application_type: 'native',

      });
  });


      const handle = await client.deviceAuthorization();
  const handle = await client.deviceAuthorization();


      await open(handle.verification_uri_complete, { wait: false });
  await open(handle.verification_uri_complete, { wait: false });


      const tokenSet = await handle.poll();
  const tokenSet = await handle.poll();


      console.log('got', tokenSet);
  console.log('got', tokenSet);

      console.log('id token claims', tokenSet.claims());
  console.log('id token claims', tokenSet.claims());


      const userinfo = await client.userinfo(tokenSet);
  const userinfo = await client.userinfo(tokenSet);

      console.log('userinfo', userinfo);
  console.log('userinfo', userinfo);

    })().catch((err) => {
})().catch((err) => {

      console.error(err);
  console.error(err);

      process.exitCode = 1;
  process.exitCode = 1;

    });
});


## 39 changes: 39 additions & 0 deletions index.mts
@@ -0,0 +1,39 @@

    #!/usr/bin/env node
#!/usr/bin/env node


    import * as client from "openid-client";
import * as client from "openid-client";

    import open from "open";
import open from "open";

    import { client_id } from "./dcr.mts";
import { client_id } from "./dcr.mts";


    const config = await client.discovery(
const config = await client.discovery(

      new URL("https://op.panva.cz"),
  new URL("https://op.panva.cz"),

      client_id,
  client_id,

    );
);


    const deviceAuthorizationResponse = await client.initiateDeviceAuthorization(
const deviceAuthorizationResponse = await client.initiateDeviceAuthorization(

      config,
  config,

      { scope: "openid email" },
  { scope: "openid email" },

    );
);


    console.log("user code:", deviceAuthorizationResponse.user_code);
console.log("user code:", deviceAuthorizationResponse.user_code);


    await open(deviceAuthorizationResponse.verification_uri_complete!, {
await open(deviceAuthorizationResponse.verification_uri_complete!, {

      wait: false,
  wait: false,

    });
});


    const tokens = await client.pollDeviceAuthorizationGrant(
const tokens = await client.pollDeviceAuthorizationGrant(

      config,
  config,

      deviceAuthorizationResponse,
  deviceAuthorizationResponse,

    );
);


    console.log("got", tokens);
console.log("got", tokens);

    const idTokenClaims = tokens.claims();
const idTokenClaims = tokens.claims();

    if (idTokenClaims) {
if (idTokenClaims) {

      console.log("id token claims", idTokenClaims);
  console.log("id token claims", idTokenClaims);


      const userinfo = await client.fetchUserInfo(
  const userinfo = await client.fetchUserInfo(

        config,
    config,

        tokens.access_token,
    tokens.access_token,

        idTokenClaims.sub,
    idTokenClaims.sub,

      );
  );

      console.log("userinfo", userinfo);
  console.log("userinfo", userinfo);

    }
}

## 204 changes: 204 additions & 0 deletions package-lock.json
@@ -0,0 +1,204 @@

    {
{

      "name": "pg",
  "name": "pg",

      "version": "1.0.0",
  "version": "1.0.0",

      "lockfileVersion": 3,
  "lockfileVersion": 3,

      "requires": true,
  "requires": true,

      "packages": {
  "packages": {

        "": {
    "": {

          "name": "pg",
      "name": "pg",

          "version": "1.0.0",
      "version": "1.0.0",

          "license": "ISC",
      "license": "ISC",

          "dependencies": {
      "dependencies": {

            "open": "^10.1.0",
        "open": "^10.1.0",

            "openid-client": "^6.1.1"
        "openid-client": "^6.1.1"

          },
      },

          "bin": {
      "bin": {

            "pg": "index.js"
        "pg": "index.js"

          },
      },

          "devDependencies": {
      "devDependencies": {

            "@types/node": "^22.7.7"
        "@types/node": "^22.7.7"

          }
      }

        },
    },

        "node_modules/@types/node": {
    "node_modules/@types/node": {

          "version": "22.7.7",
      "version": "22.7.7",

          "resolved": "https://registry.npmjs.org/@types/node/-/node-22.7.7.tgz",
      "resolved": "https://registry.npmjs.org/@types/node/-/node-22.7.7.tgz",

          "integrity": "sha512-SRxCrrg9CL/y54aiMCG3edPKdprgMVGDXjA3gB8UmmBW5TcXzRUYAh8EWzTnSJFAd1rgImPELza+A3bJ+qxz8Q==",
      "integrity": "sha512-SRxCrrg9CL/y54aiMCG3edPKdprgMVGDXjA3gB8UmmBW5TcXzRUYAh8EWzTnSJFAd1rgImPELza+A3bJ+qxz8Q==",

          "dev": true,
      "dev": true,

          "license": "MIT",
      "license": "MIT",

          "dependencies": {
      "dependencies": {

            "undici-types": "~6.19.2"
        "undici-types": "~6.19.2"

          }
      }

        },
    },

        "node_modules/bundle-name": {
    "node_modules/bundle-name": {

          "version": "4.1.0",
      "version": "4.1.0",

          "resolved": "https://registry.npmjs.org/bundle-name/-/bundle-name-4.1.0.tgz",
      "resolved": "https://registry.npmjs.org/bundle-name/-/bundle-name-4.1.0.tgz",

          "integrity": "sha512-tjwM5exMg6BGRI+kNmTntNsvdZS1X8BFYS6tnJ2hdH0kVxM6/eVZ2xy+FqStSWvYmtfFMDLIxurorHwDKfDz5Q==",
      "integrity": "sha512-tjwM5exMg6BGRI+kNmTntNsvdZS1X8BFYS6tnJ2hdH0kVxM6/eVZ2xy+FqStSWvYmtfFMDLIxurorHwDKfDz5Q==",

          "license": "MIT",
      "license": "MIT",

          "dependencies": {
      "dependencies": {

            "run-applescript": "^7.0.0"
        "run-applescript": "^7.0.0"

          },
      },

          "engines": {
      "engines": {

            "node": ">=18"
        "node": ">=18"

          },
      },

          "funding": {
      "funding": {

            "url": "https://github.com/sponsors/sindresorhus"
        "url": "https://github.com/sponsors/sindresorhus"

          }
      }

        },
    },

        "node_modules/default-browser": {
    "node_modules/default-browser": {

          "version": "5.2.1",
      "version": "5.2.1",

          "resolved": "https://registry.npmjs.org/default-browser/-/default-browser-5.2.1.tgz",
      "resolved": "https://registry.npmjs.org/default-browser/-/default-browser-5.2.1.tgz",

          "integrity": "sha512-WY/3TUME0x3KPYdRRxEJJvXRHV4PyPoUsxtZa78lwItwRQRHhd2U9xOscaT/YTf8uCXIAjeJOFBVEh/7FtD8Xg==",
      "integrity": "sha512-WY/3TUME0x3KPYdRRxEJJvXRHV4PyPoUsxtZa78lwItwRQRHhd2U9xOscaT/YTf8uCXIAjeJOFBVEh/7FtD8Xg==",

          "license": "MIT",
      "license": "MIT",

          "dependencies": {
      "dependencies": {

            "bundle-name": "^4.1.0",
        "bundle-name": "^4.1.0",

            "default-browser-id": "^5.0.0"
        "default-browser-id": "^5.0.0"

          },
      },

          "engines": {
      "engines": {

            "node": ">=18"
        "node": ">=18"

          },
      },

          "funding": {
      "funding": {

            "url": "https://github.com/sponsors/sindresorhus"
        "url": "https://github.com/sponsors/sindresorhus"

          }
      }

        },
    },

        "node_modules/default-browser-id": {
    "node_modules/default-browser-id": {

          "version": "5.0.0",
      "version": "5.0.0",

          "resolved": "https://registry.npmjs.org/default-browser-id/-/default-browser-id-5.0.0.tgz",
      "resolved": "https://registry.npmjs.org/default-browser-id/-/default-browser-id-5.0.0.tgz",

          "integrity": "sha512-A6p/pu/6fyBcA1TRz/GqWYPViplrftcW2gZC9q79ngNCKAeR/X3gcEdXQHl4KNXV+3wgIJ1CPkJQ3IHM6lcsyA==",
      "integrity": "sha512-A6p/pu/6fyBcA1TRz/GqWYPViplrftcW2gZC9q79ngNCKAeR/X3gcEdXQHl4KNXV+3wgIJ1CPkJQ3IHM6lcsyA==",

          "license": "MIT",
      "license": "MIT",

          "engines": {
      "engines": {

            "node": ">=18"
        "node": ">=18"

          },
      },

          "funding": {
      "funding": {

            "url": "https://github.com/sponsors/sindresorhus"
        "url": "https://github.com/sponsors/sindresorhus"

          }
      }

        },
    },

        "node_modules/define-lazy-prop": {
    "node_modules/define-lazy-prop": {

          "version": "3.0.0",
      "version": "3.0.0",

          "resolved": "https://registry.npmjs.org/define-lazy-prop/-/define-lazy-prop-3.0.0.tgz",
      "resolved": "https://registry.npmjs.org/define-lazy-prop/-/define-lazy-prop-3.0.0.tgz",

          "integrity": "sha512-N+MeXYoqr3pOgn8xfyRPREN7gHakLYjhsHhWGT3fWAiL4IkAt0iDw14QiiEm2bE30c5XX5q0FtAA3CK5f9/BUg==",
      "integrity": "sha512-N+MeXYoqr3pOgn8xfyRPREN7gHakLYjhsHhWGT3fWAiL4IkAt0iDw14QiiEm2bE30c5XX5q0FtAA3CK5f9/BUg==",

          "license": "MIT",
      "license": "MIT",

          "engines": {
      "engines": {

            "node": ">=12"
        "node": ">=12"

          },
      },

          "funding": {
      "funding": {

            "url": "https://github.com/sponsors/sindresorhus"
        "url": "https://github.com/sponsors/sindresorhus"

          }
      }

        },
    },

        "node_modules/is-docker": {
    "node_modules/is-docker": {

          "version": "3.0.0",
      "version": "3.0.0",

          "resolved": "https://registry.npmjs.org/is-docker/-/is-docker-3.0.0.tgz",
      "resolved": "https://registry.npmjs.org/is-docker/-/is-docker-3.0.0.tgz",

          "integrity": "sha512-eljcgEDlEns/7AXFosB5K/2nCM4P7FQPkGc/DWLy5rmFEWvZayGrik1d9/QIY5nJ4f9YsVvBkA6kJpHn9rISdQ==",
      "integrity": "sha512-eljcgEDlEns/7AXFosB5K/2nCM4P7FQPkGc/DWLy5rmFEWvZayGrik1d9/QIY5nJ4f9YsVvBkA6kJpHn9rISdQ==",

          "license": "MIT",
      "license": "MIT",

          "bin": {
      "bin": {

            "is-docker": "cli.js"
        "is-docker": "cli.js"

          },
      },

          "engines": {
      "engines": {

            "node": "^12.20.0 || ^14.13.1 || >=16.0.0"
        "node": "^12.20.0 || ^14.13.1 || >=16.0.0"

          },
      },

          "funding": {
      "funding": {

            "url": "https://github.com/sponsors/sindresorhus"
        "url": "https://github.com/sponsors/sindresorhus"

          }
      }

        },
    },

        "node_modules/is-inside-container": {
    "node_modules/is-inside-container": {

          "version": "1.0.0",
      "version": "1.0.0",

          "resolved": "https://registry.npmjs.org/is-inside-container/-/is-inside-container-1.0.0.tgz",
      "resolved": "https://registry.npmjs.org/is-inside-container/-/is-inside-container-1.0.0.tgz",

          "integrity": "sha512-KIYLCCJghfHZxqjYBE7rEy0OBuTd5xCHS7tHVgvCLkx7StIoaxwNW3hCALgEUjFfeRk+MG/Qxmp/vtETEF3tRA==",
      "integrity": "sha512-KIYLCCJghfHZxqjYBE7rEy0OBuTd5xCHS7tHVgvCLkx7StIoaxwNW3hCALgEUjFfeRk+MG/Qxmp/vtETEF3tRA==",

          "license": "MIT",
      "license": "MIT",

          "dependencies": {
      "dependencies": {

            "is-docker": "^3.0.0"
        "is-docker": "^3.0.0"

          },
      },

          "bin": {
      "bin": {

            "is-inside-container": "cli.js"
        "is-inside-container": "cli.js"

          },
      },

          "engines": {
      "engines": {

            "node": ">=14.16"
        "node": ">=14.16"

          },
      },

          "funding": {
      "funding": {

            "url": "https://github.com/sponsors/sindresorhus"
        "url": "https://github.com/sponsors/sindresorhus"

          }
      }

        },
    },

        "node_modules/is-wsl": {
    "node_modules/is-wsl": {

          "version": "3.1.0",
      "version": "3.1.0",

          "resolved": "https://registry.npmjs.org/is-wsl/-/is-wsl-3.1.0.tgz",
      "resolved": "https://registry.npmjs.org/is-wsl/-/is-wsl-3.1.0.tgz",

          "integrity": "sha512-UcVfVfaK4Sc4m7X3dUSoHoozQGBEFeDC+zVo06t98xe8CzHSZZBekNXH+tu0NalHolcJ/QAGqS46Hef7QXBIMw==",
      "integrity": "sha512-UcVfVfaK4Sc4m7X3dUSoHoozQGBEFeDC+zVo06t98xe8CzHSZZBekNXH+tu0NalHolcJ/QAGqS46Hef7QXBIMw==",

          "license": "MIT",
      "license": "MIT",

          "dependencies": {
      "dependencies": {

            "is-inside-container": "^1.0.0"
        "is-inside-container": "^1.0.0"

          },
      },

          "engines": {
      "engines": {

            "node": ">=16"
        "node": ">=16"

          },
      },

          "funding": {
      "funding": {

            "url": "https://github.com/sponsors/sindresorhus"
        "url": "https://github.com/sponsors/sindresorhus"

          }
      }

        },
    },

        "node_modules/jose": {
    "node_modules/jose": {

          "version": "5.9.4",
      "version": "5.9.4",

          "resolved": "https://registry.npmjs.org/jose/-/jose-5.9.4.tgz",
      "resolved": "https://registry.npmjs.org/jose/-/jose-5.9.4.tgz",

          "integrity": "sha512-WBBl6au1qg6OHj67yCffCgFR3BADJBXN8MdRvCgJDuMv3driV2nHr7jdGvaKX9IolosAsn+M0XRArqLXUhyJHQ==",
      "integrity": "sha512-WBBl6au1qg6OHj67yCffCgFR3BADJBXN8MdRvCgJDuMv3driV2nHr7jdGvaKX9IolosAsn+M0XRArqLXUhyJHQ==",

          "license": "MIT",
      "license": "MIT",

          "funding": {
      "funding": {

            "url": "https://github.com/sponsors/panva"
        "url": "https://github.com/sponsors/panva"

          }
      }

        },
    },

        "node_modules/oauth4webapi": {
    "node_modules/oauth4webapi": {

          "version": "3.1.1",
      "version": "3.1.1",

          "resolved": "https://registry.npmjs.org/oauth4webapi/-/oauth4webapi-3.1.1.tgz",
      "resolved": "https://registry.npmjs.org/oauth4webapi/-/oauth4webapi-3.1.1.tgz",

          "integrity": "sha512-0h4FZjsntbKQ5IHGM9mFT7uOwQCRdcTG7YhC0xXlWIcCch24wUa6Vggaipa3Sw6Ab7nEnmO4rctROmyuHBfP7Q==",
      "integrity": "sha512-0h4FZjsntbKQ5IHGM9mFT7uOwQCRdcTG7YhC0xXlWIcCch24wUa6Vggaipa3Sw6Ab7nEnmO4rctROmyuHBfP7Q==",

          "license": "MIT",
      "license": "MIT",

          "funding": {
      "funding": {

            "url": "https://github.com/sponsors/panva"
        "url": "https://github.com/sponsors/panva"

          }
      }

        },
    },

        "node_modules/open": {
    "node_modules/open": {

          "version": "10.1.0",
      "version": "10.1.0",

          "resolved": "https://registry.npmjs.org/open/-/open-10.1.0.tgz",
      "resolved": "https://registry.npmjs.org/open/-/open-10.1.0.tgz",

          "integrity": "sha512-mnkeQ1qP5Ue2wd+aivTD3NHd/lZ96Lu0jgf0pwktLPtx6cTZiH7tyeGRRHs0zX0rbrahXPnXlUnbeXyaBBuIaw==",
      "integrity": "sha512-mnkeQ1qP5Ue2wd+aivTD3NHd/lZ96Lu0jgf0pwktLPtx6cTZiH7tyeGRRHs0zX0rbrahXPnXlUnbeXyaBBuIaw==",

          "license": "MIT",
      "license": "MIT",

          "dependencies": {
      "dependencies": {

            "default-browser": "^5.2.1",
        "default-browser": "^5.2.1",

            "define-lazy-prop": "^3.0.0",
        "define-lazy-prop": "^3.0.0",

            "is-inside-container": "^1.0.0",
        "is-inside-container": "^1.0.0",

            "is-wsl": "^3.1.0"
        "is-wsl": "^3.1.0"

          },
      },

          "engines": {
      "engines": {

            "node": ">=18"
        "node": ">=18"

          },
      },

          "funding": {
      "funding": {

            "url": "https://github.com/sponsors/sindresorhus"
        "url": "https://github.com/sponsors/sindresorhus"

          }
      }

        },
    },

        "node_modules/openid-client": {
    "node_modules/openid-client": {

          "version": "6.1.1",
      "version": "6.1.1",

          "resolved": "https://registry.npmjs.org/openid-client/-/openid-client-6.1.1.tgz",
      "resolved": "https://registry.npmjs.org/openid-client/-/openid-client-6.1.1.tgz",

          "integrity": "sha512-JVN2ao1ErxHdWTme+xAQrLsQV2rV4RlhdiR8ZfaN0ktMhE8lEapU+VH7XuHSxTPHaAK7Rz7AqIB98ea+cHaCUg==",
      "integrity": "sha512-JVN2ao1ErxHdWTme+xAQrLsQV2rV4RlhdiR8ZfaN0ktMhE8lEapU+VH7XuHSxTPHaAK7Rz7AqIB98ea+cHaCUg==",

          "license": "MIT",
      "license": "MIT",

          "dependencies": {
      "dependencies": {

            "jose": "^5.9.4",
        "jose": "^5.9.4",

            "oauth4webapi": "^3.1.1"
        "oauth4webapi": "^3.1.1"

          },
      },

          "funding": {
      "funding": {

            "url": "https://github.com/sponsors/panva"
        "url": "https://github.com/sponsors/panva"

          }
      }

        },
    },

        "node_modules/run-applescript": {
    "node_modules/run-applescript": {

          "version": "7.0.0",
      "version": "7.0.0",

          "resolved": "https://registry.npmjs.org/run-applescript/-/run-applescript-7.0.0.tgz",
      "resolved": "https://registry.npmjs.org/run-applescript/-/run-applescript-7.0.0.tgz",

          "integrity": "sha512-9by4Ij99JUr/MCFBUkDKLWK3G9HVXmabKz9U5MlIAIuvuzkiOicRYs8XJLxX+xahD+mLiiCYDqF9dKAgtzKP1A==",
      "integrity": "sha512-9by4Ij99JUr/MCFBUkDKLWK3G9HVXmabKz9U5MlIAIuvuzkiOicRYs8XJLxX+xahD+mLiiCYDqF9dKAgtzKP1A==",

          "license": "MIT",
      "license": "MIT",

          "engines": {
      "engines": {

            "node": ">=18"
        "node": ">=18"

          },
      },

          "funding": {
      "funding": {

            "url": "https://github.com/sponsors/sindresorhus"
        "url": "https://github.com/sponsors/sindresorhus"

          }
      }

        },
    },

        "node_modules/undici-types": {
    "node_modules/undici-types": {

          "version": "6.19.8",
      "version": "6.19.8",

          "resolved": "https://registry.npmjs.org/undici-types/-/undici-types-6.19.8.tgz",
      "resolved": "https://registry.npmjs.org/undici-types/-/undici-types-6.19.8.tgz",

          "integrity": "sha512-ve2KP6f/JnbPBFyobGHuerC9g1FYGn/F8n1LWTwNxCEzd6IfqTwUQcNXgEtmmQ6DlRrC1hrSrBnCZPokRrDHjw==",
      "integrity": "sha512-ve2KP6f/JnbPBFyobGHuerC9g1FYGn/F8n1LWTwNxCEzd6IfqTwUQcNXgEtmmQ6DlRrC1hrSrBnCZPokRrDHjw==",

          "dev": true,
      "dev": true,

          "license": "MIT"
      "license": "MIT"

        }
    }

      }
  }

    }
}

## 11 changes: 7 additions & 4 deletions package.json
@@ -2,15 +2,18 @@

      "name": "pg",
  "name": "pg",

      "version": "1.0.0",
  "version": "1.0.0",

      "description": "",
  "description": "",

      "main": "index.js",
  "main": "index.js",

      "bin": "./index.js",
  "bin": "./index.js",

      "main": "index.mts",
  "main": "index.mts",

      "bin": "./index.mts",
  "bin": "./index.mts",

      "scripts": {
  "scripts": {

        "test": "echo \"Error: no test specified\" && exit 1"
    "test": "echo \"Error: no test specified\" && exit 1"

      },
  },

      "author": "",
  "author": "",

      "license": "ISC",
  "license": "ISC",

      "dependencies": {
  "dependencies": {

        "open": "^7.0.0",
    "open": "^7.0.0",

        "openid-client": "^3.8.3"
    "openid-client": "^3.8.3"

        "open": "^10.1.0",
    "open": "^10.1.0",

        "openid-client": "^6.1.1"
    "openid-client": "^6.1.1"

      },
  },

      "devDependencies": {
  "devDependencies": {

        "@types/node": "^22.7.7"
    "@types/node": "^22.7.7"

      }
  }

    }
}

## 7 changes: 7 additions & 0 deletions README.md
@@ -0,0 +1,7 @@

    # Simple Device Flow Login CLI implementation
# Simple Device Flow Login CLI implementation


    run
run


    ```sh
```sh

    npx https://gist.github.com/panva/ebaacfe433a8677bdbf458f6e1132045
npx https://gist.github.com/panva/ebaacfe433a8677bdbf458f6e1132045

    ```
```

## 2 changes: 2 additions & 0 deletions index.js
@@ -1,3 +1,5 @@

    #!/usr/bin/env node
#!/usr/bin/env node


    /* eslint-disable no-console, camelcase */
/* eslint-disable no-console, camelcase */


    const { Issuer } = require('openid-client');
const { Issuer } = require('openid-client');


## 3 changes: 2 additions & 1 deletion package.json
@@ -2,7 +2,8 @@

      "name": "pg",
  "name": "pg",

      "version": "1.0.0",
  "version": "1.0.0",

      "description": "",
  "description": "",

      "main": "codeflow.js",
  "main": "codeflow.js",

      "main": "index.js",
  "main": "index.js",

      "bin": "./index.js",
  "bin": "./index.js",

      "scripts": {
  "scripts": {

        "test": "echo \"Error: no test specified\" && exit 1"
    "test": "echo \"Error: no test specified\" && exit 1"

      },
  },


## 4 changes: 2 additions & 2 deletions index.js
@@ -1,7 +1,7 @@

    /* eslint-disable no-console, camelcase */
/* eslint-disable no-console, camelcase */


    const { Issuer } = require('openid-client');
const { Issuer } = require('openid-client');

    const opn = require('opn');
const opn = require('opn');

    const open = require('open');
const open = require('open');


    const { ISSUER = 'https://op.panva.cz' } = process.env;
const { ISSUER = 'https://op.panva.cz' } = process.env;

    const GRANT_TYPE = 'urn:ietf:params:oauth:grant-type:device_code';
const GRANT_TYPE = 'urn:ietf:params:oauth:grant-type:device_code';
@@ -19,7 +19,7 @@ const GRANT_TYPE = 'urn:ietf:params:oauth:grant-type:device_code';


      const handle = await client.deviceAuthorization();
  const handle = await client.deviceAuthorization();


      await opn(handle.verification_uri_complete, { wait: false });
  await opn(handle.verification_uri_complete, { wait: false });

      await open(handle.verification_uri_complete, { wait: false });
  await open(handle.verification_uri_complete, { wait: false });


      const tokenSet = await handle.poll();
  const tokenSet = await handle.poll();


## 8 changes: 4 additions & 4 deletions package.json
@@ -1,15 +1,15 @@

    {
{

      "name": "example",
  "name": "example",

      "name": "pg",
  "name": "pg",

      "version": "1.0.0",
  "version": "1.0.0",

      "description": "",
  "description": "",

      "main": "index.js",
  "main": "index.js",

      "main": "codeflow.js",
  "main": "codeflow.js",

      "scripts": {
  "scripts": {

        "test": "echo \"Error: no test specified\" && exit 1"
    "test": "echo \"Error: no test specified\" && exit 1"

      },
  },

      "author": "",
  "author": "",

      "license": "ISC",
  "license": "ISC",

      "dependencies": {
  "dependencies": {

        "openid-client": "^3.8.3",
    "openid-client": "^3.8.3",

        "opn": "^5.3.0"
    "opn": "^5.3.0"

        "open": "^7.0.0",
    "open": "^7.0.0",

        "openid-client": "^3.8.3"
    "openid-client": "^3.8.3"

      }
  }

    }
}

## 46 changes: 5 additions & 41 deletions index.js
@@ -1,19 +1,13 @@

    /* eslint-disable no-console, camelcase */
/* eslint-disable no-console, camelcase */


    const { randomBytes, createHash } = require('crypto');
const { randomBytes, createHash } = require('crypto');


    const { encode } = require('base64url');
const { encode } = require('base64url');

    const { post } = require('got');
const { post } = require('got');

    const { Issuer } = require('openid-client');
const { Issuer } = require('openid-client');

    const opn = require('opn');
const opn = require('opn');


    const { ISSUER = 'https://guarded-cliffs-8635.herokuapp.com' } = process.env;
const { ISSUER = 'https://guarded-cliffs-8635.herokuapp.com' } = process.env;

    const { ISSUER = 'https://op.panva.cz' } = process.env;
const { ISSUER = 'https://op.panva.cz' } = process.env;

    const GRANT_TYPE = 'urn:ietf:params:oauth:grant-type:device_code';
const GRANT_TYPE = 'urn:ietf:params:oauth:grant-type:device_code';

    const SOFT_ERRORS = new Set(['authorization_pending', 'slow_down']);
const SOFT_ERRORS = new Set(['authorization_pending', 'slow_down']);


    (async () => {
(async () => {

      const issuer = await Issuer.discover(ISSUER);
  const issuer = await Issuer.discover(ISSUER);

      const { device_authorization_endpoint } = issuer;
  const { device_authorization_endpoint } = issuer;


      const client = await issuer.Client.register({
  const client = await issuer.Client.register({

        grant_types: [GRANT_TYPE],
    grant_types: [GRANT_TYPE],
@@ -23,44 +17,14 @@ const SOFT_ERRORS = new Set(['authorization_pending', 'slow_down']);

        application_type: 'native',
    application_type: 'native',

      });
  });


      const code_verifier = randomBytes(8).toString('hex');
  const code_verifier = randomBytes(8).toString('hex');

      const code_challenge = encode(createHash('sha256').update(code_verifier).digest());
  const code_challenge = encode(createHash('sha256').update(code_verifier).digest());


      const {
  const {

        body: { device_code, verification_uri_complete },
    body: { device_code, verification_uri_complete },

      } = await post(device_authorization_endpoint, {
  } = await post(device_authorization_endpoint, {

        json: true,
    json: true,

        form: true,
    form: true,

        body: {
    body: {

          client_id: client.client_id,
      client_id: client.client_id,

          scope: 'openid email',
      scope: 'openid email',

          code_challenge,
      code_challenge,

          code_challenge_method: 'S256',
      code_challenge_method: 'S256',

          claims: JSON.stringify({ id_token: { email: null } }),
      claims: JSON.stringify({ id_token: { email: null } }),

        },
    },

      });
  });

      const handle = await client.deviceAuthorization();
  const handle = await client.deviceAuthorization();


      await opn(verification_uri_complete, { wait: false });
  await opn(verification_uri_complete, { wait: false });

      await opn(handle.verification_uri_complete, { wait: false });
  await opn(handle.verification_uri_complete, { wait: false });


      const tokenSet = await new Promise((resolve, reject) => {
  const tokenSet = await new Promise((resolve, reject) => {

        function poll() {
    function poll() {

          client.grant({
      client.grant({

            grant_type: GRANT_TYPE,
        grant_type: GRANT_TYPE,

            device_code,
        device_code,

            code_verifier,
        code_verifier,

          }).then(resolve, (err) => {
      }).then(resolve, (err) => {

            if (err.name === 'OpenIdConnectError' && SOFT_ERRORS.has(err.error)) {
        if (err.name === 'OpenIdConnectError' && SOFT_ERRORS.has(err.error)) {

              setTimeout(poll, 3000);
          setTimeout(poll, 3000);

            } else {
        } else {

              reject(err);
          reject(err);

            }
        }

          });
      });

        }
    }

        setTimeout(poll, 3000);
    setTimeout(poll, 3000);

      });
  });

      const tokenSet = await handle.poll();
  const tokenSet = await handle.poll();


      console.log('got', tokenSet);
  console.log('got', tokenSet);

      console.log('id token claims', tokenSet.claims);
  console.log('id token claims', tokenSet.claims);

      console.log('id token claims', tokenSet.claims());
  console.log('id token claims', tokenSet.claims());


      const userinfo = await client.userinfo(tokenSet);
  const userinfo = await client.userinfo(tokenSet);

      console.log('userinfo', userinfo);
  console.log('userinfo', userinfo);


## 4 changes: 1 addition & 3 deletions package.json
@@ -9,9 +9,7 @@

      "author": "",
  "author": "",

      "license": "ISC",
  "license": "ISC",

      "dependencies": {
  "dependencies": {

        "base64url": "^3.0.0",
    "base64url": "^3.0.0",

        "got": "^8.3.2",
    "got": "^8.3.2",

        "openid-client": "^2.2.1",
    "openid-client": "^2.2.1",

        "openid-client": "^3.8.3",
    "openid-client": "^3.8.3",

        "opn": "^5.3.0"
    "opn": "^5.3.0"

      }
  }

    }
}

## 17 changes: 17 additions & 0 deletions package.json
@@ -0,0 +1,17 @@

    {
{

      "name": "example",
  "name": "example",

      "version": "1.0.0",
  "version": "1.0.0",

      "description": "",
  "description": "",

      "main": "index.js",
  "main": "index.js",

      "scripts": {
  "scripts": {

        "test": "echo \"Error: no test specified\" && exit 1"
    "test": "echo \"Error: no test specified\" && exit 1"

      },
  },

      "author": "",
  "author": "",

      "license": "ISC",
  "license": "ISC",

      "dependencies": {
  "dependencies": {

        "base64url": "^3.0.0",
    "base64url": "^3.0.0",

        "got": "^8.3.2",
    "got": "^8.3.2",

        "openid-client": "^2.2.1",
    "openid-client": "^2.2.1",

        "opn": "^5.3.0"
    "opn": "^5.3.0"

      }
  }

    }
}

## 0 device_flow.js → index.js

    
            0
            
          
  device_flow.js → index.js

  
              Show comments
            

   View file


            File renamed without changes.
          

## 70 changes: 70 additions & 0 deletions device_flow.js
@@ -0,0 +1,70 @@

    /* eslint-disable no-console, camelcase */
/* eslint-disable no-console, camelcase */


    const { randomBytes, createHash } = require('crypto');
const { randomBytes, createHash } = require('crypto');


    const { encode } = require('base64url');
const { encode } = require('base64url');

    const { post } = require('got');
const { post } = require('got');

    const { Issuer } = require('openid-client');
const { Issuer } = require('openid-client');

    const opn = require('opn');
const opn = require('opn');


    const { ISSUER = 'https://guarded-cliffs-8635.herokuapp.com' } = process.env;
const { ISSUER = 'https://guarded-cliffs-8635.herokuapp.com' } = process.env;

    const GRANT_TYPE = 'urn:ietf:params:oauth:grant-type:device_code';
const GRANT_TYPE = 'urn:ietf:params:oauth:grant-type:device_code';

    const SOFT_ERRORS = new Set(['authorization_pending', 'slow_down']);
const SOFT_ERRORS = new Set(['authorization_pending', 'slow_down']);


    (async () => {
(async () => {

      const issuer = await Issuer.discover(ISSUER);
  const issuer = await Issuer.discover(ISSUER);

      const { device_authorization_endpoint } = issuer;
  const { device_authorization_endpoint } = issuer;


      const client = await issuer.Client.register({
  const client = await issuer.Client.register({

        grant_types: [GRANT_TYPE],
    grant_types: [GRANT_TYPE],

        response_types: [],
    response_types: [],

        redirect_uris: [],
    redirect_uris: [],

        token_endpoint_auth_method: 'none',
    token_endpoint_auth_method: 'none',

        application_type: 'native',
    application_type: 'native',

      });
  });


      const code_verifier = randomBytes(8).toString('hex');
  const code_verifier = randomBytes(8).toString('hex');

      const code_challenge = encode(createHash('sha256').update(code_verifier).digest());
  const code_challenge = encode(createHash('sha256').update(code_verifier).digest());


      const {
  const {

        body: { device_code, verification_uri_complete },
    body: { device_code, verification_uri_complete },

      } = await post(device_authorization_endpoint, {
  } = await post(device_authorization_endpoint, {

        json: true,
    json: true,

        form: true,
    form: true,

        body: {
    body: {

          client_id: client.client_id,
      client_id: client.client_id,

          scope: 'openid email',
      scope: 'openid email',

          code_challenge,
      code_challenge,

          code_challenge_method: 'S256',
      code_challenge_method: 'S256',

          claims: JSON.stringify({ id_token: { email: null } }),
      claims: JSON.stringify({ id_token: { email: null } }),

        },
    },

      });
  });


      await opn(verification_uri_complete, { wait: false });
  await opn(verification_uri_complete, { wait: false });


      const tokenSet = await new Promise((resolve, reject) => {
  const tokenSet = await new Promise((resolve, reject) => {

        function poll() {
    function poll() {

          client.grant({
      client.grant({

            grant_type: GRANT_TYPE,
        grant_type: GRANT_TYPE,

            device_code,
        device_code,

            code_verifier,
        code_verifier,

          }).then(resolve, (err) => {
      }).then(resolve, (err) => {

            if (err.name === 'OpenIdConnectError' && SOFT_ERRORS.has(err.error)) {
        if (err.name === 'OpenIdConnectError' && SOFT_ERRORS.has(err.error)) {

              setTimeout(poll, 3000);
          setTimeout(poll, 3000);

            } else {
        } else {

              reject(err);
          reject(err);

            }
        }

          });
      });

        }
    }

        setTimeout(poll, 3000);
    setTimeout(poll, 3000);

      });
  });


      console.log('got', tokenSet);
  console.log('got', tokenSet);

      console.log('id token claims', tokenSet.claims);
  console.log('id token claims', tokenSet.claims);


      const userinfo = await client.userinfo(tokenSet);
  const userinfo = await client.userinfo(tokenSet);

      console.log('userinfo', userinfo);
  console.log('userinfo', userinfo);

    })().catch((err) => {
})().catch((err) => {

      console.error(err);
  console.error(err);

      process.exitCode = 1;
  process.exitCode = 1;

    });
});