Merge branch 'master' into feature/prism-changes-node

sangeet-joy-tw · web-flow · commit f293fdfa13c5 · 2025-06-27T23:22:50.000+05:30
diff --git a/.github/actions/notify-slack/action.yml b/.github/actions/notify-slack/action.yml
@@ -0,0 +1,103 @@
+name: slack-alert-action
+description: "Action to send slack payload to public-sdk-events channel"
+
+inputs:
+  heading_text:
+    required: true
+    description: "Heading of the slack payload"
+  alert_type:
+    required: true
+    description: "type of the slack alert"
+  job_status:
+    required: true
+    description: "status of the job"
+  XERO_SLACK_WEBHOOK_URL:
+    required: true
+    description: "webhook url for channel - public-sdk-events"
+  job_url:
+    required: true
+    description: "job run id link"
+  button_type:
+    required: true
+    description: "color for the check logs button"
+  package_version:
+    required: true
+    description: "released package version"
+  repo_link:
+    required: true
+    description: "link of the repo"
+
+
+runs:
+  using: "composite"
+
+  steps:
+
+      - name: Send slack notification
+        id: slack
+        uses: slackapi/slack-github-action@v1.27.0
+        env:
+          SLACK_WEBHOOK_URL: ${{inputs.XERO_SLACK_WEBHOOK_URL}}
+          SLACK_WEBHOOK_TYPE: INCOMING_WEBHOOK
+        with:
+         payload: |
+          {
+            "blocks": [
+              {
+                "type": "rich_text",
+                "elements": [
+                  {
+                    "type": "rich_text_section",
+                    "elements": [
+                      {
+                        "type": "text",
+                        "text": "${{inputs.heading_text}} ",
+                        "style": {
+                          "bold": true
+                        }
+                      },
+                      {
+                        "type": "emoji",
+                        "name": "${{inputs.alert_type}}"
+                      }
+                    ]
+                  }
+                ]
+              },
+              {
+                "type": "divider"
+              },
+             {
+                "type": "section",
+                "fields": [
+                  {
+                    "type": "mrkdwn",
+                    "text": "*Repository:* \n ${{inputs.repo_link}}"
+                  },
+                  {
+                    "type": "mrkdwn",
+                    "text": "*Status:*\n ${{inputs.job_status}}"
+                  },
+                  {
+                    "type": "mrkdwn",
+                    "text": "*Package Version:*\n ${{inputs.package_version}}"
+                  }
+                ]
+              },
+              {
+                "type": "actions",
+                "elements": [
+                  {
+                    "type": "button",
+                    "text": {
+                      "type": "plain_text",
+                      "text": "Check the logs",
+                      "emoji": true
+                  },
+                    "style": "${{inputs.button_type}}",
+                    "url": "${{inputs.job_url}}"
+                  }
+                ]
+              }
+            ]
+          }
diff --git a/.github/octokit/index.js b/.github/octokit/index.js
@@ -0,0 +1,30 @@
+import {Octokit} from "@octokit/rest";
+import {createAppAuth} from "@octokit/auth-app"
+
+export const getAccessToken = async () => {
+
+ const {GITHUB_APP_ID, GITHUB_APP_PRIVATE_KEY} = process.env
+
+ const octoKitInstance = new Octokit({
+  authStrategy: createAppAuth,
+  auth: {
+   appId: GITHUB_APP_ID,
+   privateKey: GITHUB_APP_PRIVATE_KEY
+  }
+ });
+
+ const {data: installations} = await octoKitInstance.rest.apps.listInstallations()
+
+ console.log("installations -----", installations);
+ 
+
+ if(!installations.length) {
+   throw new Error("No Installations found for this github app")
+ }
+
+ const installationId = installations[0].id;
+
+ const installationAccessToken = await octoKitInstance.rest.apps.createInstallationAccessToken({installation_id: installationId})
+
+ return installationAccessToken.data.token
+}
diff --git a/.github/octokit/package.json b/.github/octokit/package.json
@@ -0,0 +1,16 @@
+{
+    "name": "xero-octokit",
+    "version": "1.0.0",
+    "description": "",
+    "main": "index.js",
+    "type": "module",
+    "scripts": {
+      "test": "echo \"Error: no test specified\" && exit 1"
+    },
+    "author": "",
+    "license": "ISC",
+    "dependencies": {
+      "@octokit/auth-app": "^7.1.1",
+      "@octokit/rest": "^21.0.2"
+    }
+  }
diff --git a/.github/workflows/publish.yml b/.github/workflows/publish.yml
@@ -0,0 +1,157 @@
+name: Publish & Release SDK
+on:
+  workflow_dispatch:
+    inputs:
+      cab_id:
+        description: "CAB id for the change/release"
+        required: true
+        type: string
+
+jobs:
+  publish:
+    runs-on: ubuntu-latest
+    environment: prod
+    outputs:
+      release_number: ${{steps.get_latest_release_number.outputs.release_tag}}
+    permissions:
+      contents: write
+      pull-requests: write
+    steps:
+      - name: Checkout xero-node repo
+        uses: actions/checkout@v4
+        with:
+          repository: XeroAPI/xero-node
+          path: xero-node
+
+      - name: Set up Node environment
+        uses: actions/setup-node@v4
+        with:
+          node-version: 20
+          cache: 'npm'
+          cache-dependency-path: '**/package-lock.json'
+          registry-url: 'https://registry.npmjs.org'
+
+      - name: Install dependencies
+        run: npm ci
+        working-directory: xero-node
+
+      - name: Run Build
+        run: npm run build
+        working-directory: xero-node
+
+      - name: Fetch Latest release number
+        id: get_latest_release_number
+        run: |
+          latest_version=$(gh release view --json tagName --jq '.tagName')
+          echo "Latest release version is - $latest_version"
+          echo "::set-output name=release_tag::$latest_version"
+        working-directory: xero-node
+        env:
+         GH_TOKEN: ${{secrets.GITHUB_TOKEN}}
+
+      - name: Publish to npm
+        env:
+          NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }}
+        run: npm publish
+        working-directory: xero-node
+
+  notify-codegen-repo:
+    needs: publish
+    if: always()
+    runs-on: ubuntu-latest
+    permissions:
+      contents: write
+      pull-requests: write
+
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+        with:
+          repository: XeroAPI/xero-node
+          path: xero-node
+
+      - name: Install octokit dependencies
+        run: npm i
+        working-directory: xero-node/.github/octokit
+
+      - name: Get github app access token
+        id: get_access_token
+        env:
+          GITHUB_APP_ID: ${{ secrets.XERO_CODEGEN_BOT_APPLICATION_ID }}
+          GITHUB_APP_PRIVATE_KEY: ${{ secrets.XERO_CODEGEN_BOT_APPLICATION_KEY }}
+        uses: actions/github-script@v7
+        with:
+          result-encoding: string
+          script: |
+              const { getAccessToken } = await import('${{ github.workspace }}/xero-node/.github/octokit/index.js')
+              const token = await getAccessToken()
+              return token
+
+      - name: Notify codegen repo
+        run: |
+            curl -X POST -H "Authorization: token ${{ steps.get_access_token.outputs.result }}" \
+              -H "Accept: application/vnd.github.v3+json" \
+              -H "Content-Type: application/json" \
+              https://api.github.com/repos/xero-internal/xeroapi-sdk-codegen/actions/workflows/notify-sdk-publish.yml/dispatches \
+              -d '{
+                "ref": "master",
+                "inputs": {
+                  "commit": "${{ github.event_name == 'pull_request' && github.event.pull_request.head.sha || github.sha }}",
+                  "status": "${{needs.publish.result}}",
+                  "deployer": "xero-codegen-bot",
+                  "url": "${{ github.server_url }}/${{ github.repository }}/actions/runs/${{ github.run_id }}",
+                  "environment": "prod",
+                  "sdk_type": "node",
+                  "cab_key": "${{ github.event.inputs.cab_id }}"
+                  }
+                }'
+
+  notify-slack-on-success:
+    runs-on: ubuntu-latest
+    needs: publish
+    permissions:
+      contents: read
+    if: success()
+    steps:
+      - name: Checkout xero-node repo
+        uses: actions/checkout@v4
+        with:
+          repository: XeroAPI/xero-node
+          path: xero-node
+
+      - name: Send slack notification on success
+        uses: ./xero-node/.github/actions/notify-slack
+        with:
+         heading_text: "Publish job has succeeded !"
+         alert_type: "thumbsup"
+         job_status: "Success"
+         XERO_SLACK_WEBHOOK_URL: ${{secrets.XERO_SLACK_WEBHOOK_URL}}
+         job_url: "https://github.com/${{github.repository}}/actions/runs/${{github.run_id}}"
+         button_type: "primary"
+         package_version: ${{needs.publish.outputs.release_number}}
+         repo_link: ${{github.server_url}}/${{github.repository}}
+
+  notify-slack-on-failure:
+    runs-on: ubuntu-latest
+    needs: publish
+    permissions:
+      contents: read
+    if: failure()
+    steps:
+      - name: Checkout xero-node repo
+        uses: actions/checkout@v4
+        with:
+         repository: XeroAPI/xero-node
+         path: xero-node
+
+      - name: Send slack notification on failure
+        uses: ./xero-node/.github/actions/notify-slack
+        with:
+          heading_text: "Publish job has failed !"
+          alert_type: "alert"
+          job_status: "Failed"
+          XERO_SLACK_WEBHOOK_URL: ${{secrets.XERO_SLACK_WEBHOOK_URL}}
+          job_url: "https://github.com/${{github.repository}}/actions/runs/${{github.run_id}}"
+          button_type: "danger"
+          package_version: ${{needs.publish.outputs.release_number}}
+          repo_link: ${{github.server_url}}/${{github.repository}}
diff --git a/README.md b/README.md
@@ -75,7 +75,7 @@ const xero = new XeroClient({
   clientId: 'YOUR_CLIENT_ID',
   clientSecret: 'YOUR_CLIENT_SECRET',
   redirectUris: [`http://localhost:${port}/callback`],
-  scopes: 'openid profile email accounting.transactions offline_access'.split(" "),
+  scopes: 'openid profile email accounting.settings accounting.transactions offline_access'.split(" "),
   state: 'returnPage=my-sweet-dashboard', // custom params (optional)
   httpTimeout: 3000, // ms (optional)
   clockTolerance: 10 // seconds (optional)
@@ -113,7 +113,7 @@ It is recommended that you store this token set JSON in a datastore in relation
 | access_token: | "xxx.yyy.zzz" | [Bearer token](https://oauth.net/2/jwt/) with a 30 minute expiration required for all API calls |
 | expires_in: | 1800 | Time in seconds till the token expires - 1800s is 30m |
 | refresh_token: | "XXXXXXX" | Alphanumeric string used to obtain a new Token Set w/ a fresh access_token - 60 day expiry |
-| scope: | ["email", "profile", "openid", "accounting.transactions", "offline_access"] | The Xero permissions that are embedded in the `access_token` |
+| scope: | ["email", "profile", "openid", "accounting.settings", "accounting.transactions", "offline_access"] | The Xero permissions that are embedded in the `access_token` |
 
 Example Token Set JSON:
 ```
@@ -123,7 +123,7 @@ Example Token Set JSON:
   "expires_in": 1800,
   "token_type": "Bearer",
   "refresh_token": "xxxxxxxxx",
-  "scope": ["email", "profile", "openid", "accounting.transactions", "offline_access"]
+  "scope": ["email", "profile", "openid", "accounting.settings", "accounting.transactions", "offline_access"]
 }
 ```
 
@@ -233,7 +233,7 @@ const xero = new XeroClient({
   clientSecret: 'YOUR_CLIENT_SECRET', // required
   redirectUris: [`http://localhost:${port}/callback`], // not used for client_credentials auth flow
   grantType: 'client_credentials', // only used for client_credentials auth flow
-  scopes: 'openid profile email accounting.transactions offline_access'.split(" "), // not used for client_credentials auth flow
+  scopes: 'openid profile email accounting.settings accounting.transactions offline_access'.split(" "), // not used for client_credentials auth flow
   state: 'returnPage=my-sweet-dashboard', // custom params (optional), not used for client_credentials auth flow
   httpTimeout: 3000, // ms (optional)
   clockTolerance: 10 // seconds (optional)
@@ -261,7 +261,7 @@ const xero = new XeroClient({
   clientId: 'YOUR_CLIENT_ID',
   clientSecret: 'YOUR_CLIENT_SECRET',
   redirectUris: [`http://localhost:${port}/callback`],
-  scopes: 'openid profile email accounting.transactions offline_access'.split(" ")
+  scopes: 'openid profile email accounting.settings accounting.transactions offline_access'.split(" ")
 });
 
 await xero.initialize();
@@ -316,7 +316,7 @@ const xero = new XeroClient({
   clientId: 'YOUR_CLIENT_ID',
   clientSecret: 'YOUR_CLIENT_SECRET',
   redirectUris: [`http://localhost:${port}/callback`],
-  scopes: 'openid profile email accounting.transactions offline_access'.split(" ")
+  scopes: 'openid profile email accounting.settings accounting.transactions offline_access'.split(" ")
 });
 
 await xero.initialize();
