V3 backport for #9799 (#9807)

* Better messaging for account owned tokens

* Create thin-grapes-rescue.md

* fix tests

* Update packages/wrangler/src/user/whoami.ts

Co-authored-by: Pete Bacon Darwin <[email protected]>

* further fixups

---------

Co-authored-by: Pete Bacon Darwin <[email protected]>
Co-authored-by: Peter Bacon Darwin <[email protected]>

Author: penalosa

.changeset/thin-grapes-rescue.md

@@ -0,0 +1,5 @@
+---
+"wrangler": patch
+---
+
+Better messaging for account owned tokens in `wrangler whoami`

packages/wrangler/src/__tests__/cfetch-utils.test.ts

@@ -75,6 +75,9 @@ describe("throwFetchError", () => {
 						["message one", "message two"]
 					)
 				);
+			}),
+			http.get("*/user/tokens/verify", () => {
+				return HttpResponse.json(createFetchResult([]));
 			})
 		);
 		await expect(runWrangler("whoami")).rejects.toMatchObject({
@@ -135,6 +138,9 @@ describe("throwFetchError", () => {
 						["message one", "message two"]
 					)
 				);
+			}),
+			http.get("*/user/tokens/verify", () => {
+				return HttpResponse.json(createFetchResult([]));
 			})
 		);
 		await expect(runWrangler("whoami")).rejects.toMatchInlineSnapshot(
@@ -182,6 +188,9 @@ describe("throwFetchError", () => {
 						{ code: 10001, message: "error 1" },
 					],
 				});
+			}),
+			http.get("*/user/tokens/verify", () => {
+				return HttpResponse.json(createFetchResult([]));
 			})
 		);
 		await expect(runWrangler("whoami")).rejects.toMatchObject({

packages/wrangler/src/__tests__/deploy.test.ts

@@ -444,7 +444,10 @@ describe("deploy", () => {
 						})
 					);
 				}
-			)
+			),
+			http.get("*/user/tokens/verify", () => {
+				return HttpResponse.json(createFetchResult([]));
+			})
 		);
 
 		await expect(
@@ -463,8 +466,8 @@ describe("deploy", () => {
 		Please ensure it has the correct permissions for this operation.
 
 		Getting User settings...
-		ℹ️  The API Token is read from the CLOUDFLARE_API_TOKEN in your environment.
-		👋 You are logged in with an API Token, associated with the email [email protected].
+		ℹ️  The API Token is read from the CLOUDFLARE_API_TOKEN environment variable.
+		👋 You are logged in with an User API Token, associated with the email [email protected].
 		┌───────────────┬────────────┐
 		│ Account Name  │ Account ID │
 		├───────────────┼────────────┤

packages/wrangler/src/__tests__/sentry.test.ts

@@ -6,7 +6,7 @@ import { mockAccountId, mockApiToken } from "./helpers/mock-account-id";
 import { mockConsoleMethods } from "./helpers/mock-console";
 import { clearDialogs, mockConfirm } from "./helpers/mock-dialogs";
 import { useMockIsTTY } from "./helpers/mock-istty";
-import { msw } from "./helpers/msw";
+import { createFetchResult, msw } from "./helpers/msw";
 import { runInTempDir } from "./helpers/run-in-tmp";
 import { runWrangler } from "./helpers/run-wrangler";
 
@@ -55,7 +55,10 @@ describe("sentry", () => {
 						return HttpResponse.error();
 					},
 					{ once: true }
-				)
+				),
+				http.get("*/user/tokens/verify", () => {
+					return HttpResponse.json(createFetchResult([]));
+				})
 			);
 			await expect(runWrangler("whoami")).rejects.toMatchInlineSnapshot(
 				`[TypeError: Failed to fetch]`
@@ -100,7 +103,10 @@ describe("sentry", () => {
 						return HttpResponse.error();
 					},
 					{ once: true }
-				)
+				),
+				http.get("*/user/tokens/verify", () => {
+					return HttpResponse.json(createFetchResult([]));
+				})
 			);
 			mockConfirm({
 				text: "Would you like to report this error to Cloudflare? Wrangler's output and the error details will be shared with the Wrangler team to help us diagnose and fix the issue.",
@@ -126,7 +132,10 @@ describe("sentry", () => {
 						return HttpResponse.error();
 					},
 					{ once: true }
-				)
+				),
+				http.get("*/user/tokens/verify", () => {
+					return HttpResponse.json(createFetchResult([]));
+				})
 			);
 			mockConfirm({
 				text: "Would you like to report this error to Cloudflare? Wrangler's output and the error details will be shared with the Wrangler team to help us diagnose and fix the issue.",
@@ -259,22 +268,22 @@ describe("sentry", () => {
 				              Object {
 				                "colno": 0,
 				                "context_line": "",
-				                "filename": "/wrangler/packages/wrangler/src/core/register-yargs-command.ts",
+				                "filename": "/wrangler/packages/wrangler/src/user/commands.ts",
 				                "function": "",
 				                "in_app": false,
 				                "lineno": 0,
-				                "module": "register-yargs-command.ts",
+				                "module": "commands.ts",
 				                "post_context": Array [],
 				                "pre_context": Array [],
 				              },
 				              Object {
 				                "colno": 0,
 				                "context_line": "",
-				                "filename": "/wrangler/packages/wrangler/src/user/commands.ts",
+				                "filename": "/wrangler/packages/wrangler/src/user/whoami.ts",
 				                "function": "",
 				                "in_app": false,
 				                "lineno": 0,
-				                "module": "commands.ts",
+				                "module": "whoami.ts",
 				                "post_context": Array [],
 				                "pre_context": Array [],
 				              },
@@ -303,22 +312,22 @@ describe("sentry", () => {
 				              Object {
 				                "colno": 0,
 				                "context_line": "",
-				                "filename": "/wrangler/packages/wrangler/src/user/whoami.ts",
+				                "filename": "/wrangler/packages/wrangler/src/cfetch/index.ts",
 				                "function": "",
 				                "in_app": false,
 				                "lineno": 0,
-				                "module": "whoami.ts",
+				                "module": "index.ts",
 				                "post_context": Array [],
 				                "pre_context": Array [],
 				              },
 				              Object {
 				                "colno": 0,
 				                "context_line": "",
-				                "filename": "/wrangler/packages/wrangler/src/cfetch/index.ts",
+				                "filename": "/wrangler/packages/wrangler/src/cfetch/internal.ts",
 				                "function": "",
 				                "in_app": false,
 				                "lineno": 0,
-				                "module": "index.ts",
+				                "module": "internal.ts",
 				                "post_context": Array [],
 				                "pre_context": Array [],
 				              },
@@ -336,11 +345,11 @@ describe("sentry", () => {
 				              Object {
 				                "colno": 0,
 				                "context_line": "",
-				                "filename": "/wrangler/packages/wrangler/src/cfetch/internal.ts",
+				                "filename": "node:internal/process/task_queues",
 				                "function": "",
 				                "in_app": false,
 				                "lineno": 0,
-				                "module": "internal.ts",
+				                "module": "task_queues",
 				                "post_context": Array [],
 				                "pre_context": Array [],
 				              },

packages/wrangler/src/__tests__/whoami.test.ts

@@ -50,6 +50,13 @@ describe("getUserInfo()", () => {
 				},
 				{ once: true }
 			),
+			http.get(
+				"*/user/tokens/verify",
+				() => {
+					return HttpResponse.json(createFetchResult([]));
+				},
+				{ once: true }
+			),
 			http.get(
 				"*/accounts",
 				({ request }) => {
@@ -71,10 +78,18 @@ describe("getUserInfo()", () => {
 	});
 	it("should say it's using an API token when one is set", async () => {
 		vi.stubEnv("CLOUDFLARE_API_TOKEN", "123456789");
-
+		msw.use(
+			http.get(
+				"*/user/tokens/verify",
+				() => {
+					return HttpResponse.json(createFetchResult([]));
+				},
+				{ once: true }
+			)
+		);
 		const userInfo = await getUserInfo();
 		expect(userInfo).toEqual({
-			authType: "API Token",
+			authType: "User API Token",
 			apiToken: "123456789",
 			email: "[email protected]",
 			accounts: [
@@ -147,14 +162,14 @@ describe("getUserInfo()", () => {
 		await getUserInfo();
 
 		expect(std.warn).toMatchInlineSnapshot(`
-			"[33m▲ [43;33m[[43;30mWARNING[43;33m][0m [1mIt looks like you have used Wrangler v1's \`config\` command to login with an API token.[0m
+				"[33m▲ [43;33m[[43;30mWARNING[43;33m][0m [1mIt looks like you have used Wrangler v1's \`config\` command to login with an API token.[0m
 
-			  This is no longer supported in the current version of Wrangler.
-			  If you wish to authenticate via an API token then please set the \`CLOUDFLARE_API_TOKEN\`
-			  environment variable.
+				  This is no longer supported in the current version of Wrangler.
+				  If you wish to authenticate via an API token then please set the \`CLOUDFLARE_API_TOKEN\`
+				  environment variable.
 
-			"
-		`);
+				"
+			`);
 	});
 });
 
@@ -184,22 +199,22 @@ describe("whoami", () => {
 		);
 		await runWrangler(`whoami --account "account-2"`);
 		expect(std.out).toMatchInlineSnapshot(`
-			"Getting User settings...
-			👋 You are logged in with an OAuth Token, associated with the email [email protected].
-			┌───────────────┬────────────┐
-			│ Account Name  │ Account ID │
-			├───────────────┼────────────┤
-			│ Account One   │ account-1  │
-			├───────────────┼────────────┤
-			│ Account Two   │ account-2  │
-			├───────────────┼────────────┤
-			│ Account Three │ account-3  │
-			└───────────────┴────────────┘
-			🔓 Token Permissions: If scopes are missing, you may need to logout and re-login.
-			Scope (Access)
-			🎢 Membership roles in \\"Account Two\\": Contact account super admin to change your permissions.
-			- Test role"
-		`);
+				"Getting User settings...
+				👋 You are logged in with an OAuth Token, associated with the email [email protected].
+				┌───────────────┬────────────┐
+				│ Account Name  │ Account ID │
+				├───────────────┼────────────┤
+				│ Account One   │ account-1  │
+				├───────────────┼────────────┤
+				│ Account Two   │ account-2  │
+				├───────────────┼────────────┤
+				│ Account Three │ account-3  │
+				└───────────────┴────────────┘
+				🔓 Token Permissions: If scopes are missing, you may need to logout and re-login.
+				Scope (Access)
+				🎢 Membership roles in \\"Account Two\\": Contact account super admin to change your permissions.
+				- Test role"
+			`);
 	});
 
 	it("should display membership error on authentication error 10000", async () => {
@@ -218,20 +233,20 @@ describe("whoami", () => {
 		);
 		await runWrangler(`whoami --account "account-2"`);
 		expect(std.out).toMatchInlineSnapshot(`
-			"Getting User settings...
-			👋 You are logged in with an OAuth Token, associated with the email [email protected].
-			┌───────────────┬────────────┐
-			│ Account Name  │ Account ID │
-			├───────────────┼────────────┤
-			│ Account One   │ account-1  │
-			├───────────────┼────────────┤
-			│ Account Two   │ account-2  │
-			├───────────────┼────────────┤
-			│ Account Three │ account-3  │
-			└───────────────┴────────────┘
-			🔓 Token Permissions: If scopes are missing, you may need to logout and re-login.
-			Scope (Access)
-			🎢 Unable to get membership roles. Make sure you have permissions to read the account. Are you missing the \`User->Memberships->Read\` permission?"
-		`);
+				"Getting User settings...
+				👋 You are logged in with an OAuth Token, associated with the email [email protected].
+				┌───────────────┬────────────┐
+				│ Account Name  │ Account ID │
+				├───────────────┼────────────┤
+				│ Account One   │ account-1  │
+				├───────────────┼────────────┤
+				│ Account Two   │ account-2  │
+				├───────────────┼────────────┤
+				│ Account Three │ account-3  │
+				└───────────────┴────────────┘
+				🔓 Token Permissions: If scopes are missing, you may need to logout and re-login.
+				Scope (Access)
+				🎢 Unable to get membership roles. Make sure you have permissions to read the account. Are you missing the \`User->Memberships->Read\` permission?"
+			`);
 	});
 });