chore: release

Author: xtfer

.github/workflows/release.yml

@@ -4,7 +4,7 @@ name: Release CLI
 on:
   push:
     tags:
-      - '**'      # match all tags, e.g. 1.0.0, release-1, beta, etc.
+      - '*.*.*'   # semver-ish tags like 0.9.0 (repo uses non-v tags)
   workflow_dispatch:
 
 env:

CHANGELOG.md

@@ -7,6 +7,19 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 
 ## [Unreleased]
 
+### Added
+
+### Changed
+
+### Fixed
+
+## [0.9.0] - 2025-12-12
+
+### Added
+
+- **`token:get` command**
+  - Retrieve a machine token without running the authorization flow
+
 ### Changed
 
 - **SDK Update: runbeam-sdk 0.8.0 → 0.9.1**
@@ -16,9 +29,9 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
     - Use `JwtValidationOptions::default()` for standard validation behavior
     - See runbeam-sdk 0.9.0 release notes for migration details
 
-### Harmony DSL 1.9.0 Alignment
-- Updated all JWT token validation calls to use new `JwtValidationOptions` API
-- Full compatibility with runbeam-sdk 0.9.1 (includes harmony-dsl 1.9.0)
+- **Harmony DSL 1.9.0 alignment**
+  - Updated all JWT token validation calls to use new `JwtValidationOptions` API
+  - Full compatibility with runbeam-sdk 0.9.1 (includes harmony-dsl 1.9.0)
 
 ## [0.8.0] - 2025-11-20
 
@@ -248,7 +261,9 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 - Harmony commands (`harmony:add`, `harmony:list`, `harmony:remove`)
 - Harmony management API integration
 
-[0.4.0]: https://github.com/aurabx/runbeam-cli/compare/v0.3.0...v0.4.0
-[0.3.0]: https://github.com/aurabx/runbeam-cli/compare/v0.2.0...v0.3.0
-[0.2.0]: https://github.com/aurabx/runbeam-cli/compare/v0.1.0...v0.2.0
-[0.1.0]: https://github.com/aurabx/runbeam-cli/releases/tag/v0.1.0
+[0.9.0]: https://github.com/aurabx/runbeam-cli/compare/0.8.0...0.9.0
+[0.8.0]: https://github.com/aurabx/runbeam-cli/compare/0.7.8...0.8.0
+[0.4.0]: https://github.com/aurabx/runbeam-cli/compare/0.3.0...0.4.0
+[0.3.0]: https://github.com/aurabx/runbeam-cli/compare/0.2.0...0.3.0
+[0.2.0]: https://github.com/aurabx/runbeam-cli/compare/0.1.0...0.2.0
+[0.1.0]: https://github.com/aurabx/runbeam-cli/releases/tag/0.1.0

Cargo.lock

@@ -1,6 +1,6 @@
 [package]
 name = "runbeam-cli"
-version = "0.9.0-dev"
+version = "0.9.0"
 edition = "2024"
 authors = ["Aurabox <hello@aurabox.cloud>"]
 description = "CLI for managing Runbeam and Harmony"

Cargo.toml

@@ -1,8 +1,9 @@
 pkg_fmt = "tgz"
 bin_dir = "runbeam-{ target }/{ bin }"
-pkg_url = "{ repo }/releases/download/v{ version }/runbeam-{ target }.tar.gz"
+# Tags in this repo are version-only (e.g. "0.9.0"), not "v0.9.0"
+pkg_url = "{ repo }/releases/download/{ version }/runbeam-{ target }.tar.gz"
 
 [target.x86_64-pc-windows-msvc]
 pkg_fmt = "zip"
-pkg_url = "{ repo }/releases/download/v{ version }/runbeam-{ target }.zip"
+pkg_url = "{ repo }/releases/download/{ version }/runbeam-{ target }.zip"
 bin_dir = "runbeam-{ target }/{ bin }.exe"

binstall.toml

@@ -1,5 +1,7 @@
 use anyhow::{Context, Result};
-use runbeam_sdk::{RunbeamClient, UserInfo, validate_jwt_token as sdk_validate_jwt, JwtValidationOptions};
+use runbeam_sdk::{
+    JwtValidationOptions, RunbeamClient, UserInfo, validate_jwt_token as sdk_validate_jwt,
+};
 use serde::{Deserialize, Serialize};
 use std::thread;
 use std::time::{Duration, SystemTime, UNIX_EPOCH};
@@ -49,7 +51,10 @@ pub fn login() -> Result<()> {
         // Verify the token is still valid
         let validation_result = tokio::runtime::Runtime::new()
             .expect("Failed to create Tokio runtime")
-            .block_on(sdk_validate_jwt(&existing_auth.token, &JwtValidationOptions::default()));
+            .block_on(sdk_validate_jwt(
+                &existing_auth.token,
+                &JwtValidationOptions::default(),
+            ));
 
         if validation_result.is_ok() {
             println!("✓ Already logged in with a valid token.");
@@ -207,7 +212,10 @@ pub fn login() -> Result<()> {
                 // Verify the token using SDK (RS256 with JWKS)
                 let validation_result = tokio::runtime::Runtime::new()
                     .expect("Failed to create Tokio runtime")
-                    .block_on(sdk_validate_jwt(&token_clone, &JwtValidationOptions::default()));
+                    .block_on(sdk_validate_jwt(
+                        &token_clone,
+                        &JwtValidationOptions::default(),
+                    ));
 
                 match validation_result {
                     Ok(jwt_claims) => {
@@ -291,7 +299,10 @@ pub fn authorize_harmony(
     debug!("Validating JWT token before authorization...");
     let validation_result = tokio::runtime::Runtime::new()
         .expect("Failed to create Tokio runtime")
-        .block_on(sdk_validate_jwt(&auth.token, &JwtValidationOptions::default()));
+        .block_on(sdk_validate_jwt(
+            &auth.token,
+            &JwtValidationOptions::default(),
+        ));
 
     match validation_result {
         Ok(claims) => {
@@ -303,7 +314,10 @@ pub fn authorize_harmony(
                 .as_secs() as i64;
             let time_remaining = claims.exp - now;
             if time_remaining < 3600 {
-                println!("⚠️  Warning: Your token expires in {} minutes.", time_remaining / 60);
+                println!(
+                    "⚠️  Warning: Your token expires in {} minutes.",
+                    time_remaining / 60
+                );
                 println!("   Consider running `runbeam login` to refresh your token.");
                 println!();
             }
@@ -399,7 +413,10 @@ pub fn authorize_harmony(
     if let Some(stored_instance) = instances.iter_mut().find(|i| i.id == instance_id) {
         stored_instance.gateway_id = Some(auth_response.gateway.id.clone());
         storage::save_harmony_instances(&instances)?;
-        debug!("Stored gateway_id {} for instance {}", auth_response.gateway.id, instance_id);
+        debug!(
+            "Stored gateway_id {} for instance {}",
+            auth_response.gateway.id, instance_id
+        );
     }
 
     // Send machine token to Harmony proxy instance
@@ -461,7 +478,9 @@ pub fn authorize_harmony(
                 } else {
                     // Interactive prompt
                     println!("📡 Upload local configuration to Runbeam Cloud?");
-                    println!("   This will overwrite any configuration changes made on Runbeam Cloud.");
+                    println!(
+                        "   This will overwrite any configuration changes made on Runbeam Cloud."
+                    );
                     print!("   Upload configuration? [y/N]: ");
                     std::io::Write::flush(&mut std::io::stdout()).ok();
 
@@ -481,7 +500,9 @@ pub fn authorize_harmony(
                         Err(e) => {
                             warn!("Configuration upload failed: {}", e);
                             println!("⚠️  Configuration upload failed: {}", e);
-                            println!("   Authorization is still valid. You can manually upload config with:");
+                            println!(
+                                "   Authorization is still valid. You can manually upload config with:"
+                            );
                             println!("   runbeam harmony:update --id {}", instance_id);
                         }
                     }
@@ -583,7 +604,10 @@ pub fn verify_token() -> Result<()> {
     // Validate the token using SDK (async)
     let validation_result = tokio::runtime::Runtime::new()
         .expect("Failed to create Tokio runtime")
-        .block_on(sdk_validate_jwt(&auth.token, &JwtValidationOptions::default()));
+        .block_on(sdk_validate_jwt(
+            &auth.token,
+            &JwtValidationOptions::default(),
+        ));
 
     match validation_result {
         Ok(claims) => {
@@ -702,7 +726,10 @@ pub fn get_token(gateway_code: &str, raw: bool) -> Result<()> {
         // Output with context
         println!("✅ Machine token retrieved successfully!");
         println!();
-        println!("Gateway: {} ({})", auth_response.gateway.name, auth_response.gateway.code);
+        println!(
+            "Gateway: {} ({})",
+            auth_response.gateway.name, auth_response.gateway.code
+        );
         println!("Gateway ID: {}", auth_response.gateway.id);
         println!("Expires at: {}", auth_response.expires_at);
         let expires_in_days = (auth_response.expires_in / 86400.0).round() as i64;
@@ -715,7 +742,10 @@ pub fn get_token(gateway_code: &str, raw: bool) -> Result<()> {
         println!("{}", auth_response.machine_token);
         println!();
         println!("Usage:");
-        println!("  export RUNBEAM_MACHINE_TOKEN=$(runbeam token:get -g {} --raw)", gateway_code);
+        println!(
+            "  export RUNBEAM_MACHINE_TOKEN=$(runbeam token:get -g {} --raw)",
+            gateway_code
+        );
     }
 
     info!("Token retrieved for gateway: {}", auth_response.gateway.id);

src/commands/auth.rs

@@ -28,7 +28,7 @@ pub fn harmony_add(
         port,
         label: final_label.clone(),
         path_prefix: path_prefix.to_string(),
-        gateway_id: None,  // Will be set after authorization
+        gateway_id: None, // Will be set after authorization
     };
     crate::storage::add_harmony_instance(instance.clone())?;
 

src/commands/harmony/harmony.rs

@@ -1,13 +1,13 @@
 use anyhow::{Context, Result, anyhow};
-use reqwest::blocking::Client;
 use directories::BaseDirs;
+use flate2::read::GzDecoder;
+use reqwest::blocking::Client;
 use std::env::consts::{ARCH, OS};
 use std::fs::{self};
-use std::io::{Cursor};
+use std::io::Cursor;
 #[cfg(unix)]
 use std::os::unix::fs::PermissionsExt;
-use std::path::{PathBuf};
-use flate2::read::GzDecoder;
+use std::path::PathBuf;
 use tar::Archive;
 use tracing::info;
 
@@ -16,7 +16,7 @@ fn get_default_install_dir() -> Result<PathBuf> {
         if let Some(exe_dir) = base_dirs.executable_dir() {
             return Ok(exe_dir.to_path_buf());
         }
-        
+
         // Fallback for platforms where executable_dir() is None (e.g. macOS, Windows)
         #[cfg(target_os = "macos")]
         {
@@ -34,8 +34,10 @@ fn get_default_install_dir() -> Result<PathBuf> {
             return Ok(base_dirs.home_dir().join(".local").join("bin"));
         }
     }
-    
-    Err(anyhow!("Could not determine default installation directory"))
+
+    Err(anyhow!(
+        "Could not determine default installation directory"
+    ))
 }
 
 pub fn install(version: Option<&str>, output_dir: Option<PathBuf>) -> Result<()> {
@@ -53,7 +55,7 @@ pub fn install(version: Option<&str>, output_dir: Option<PathBuf>) -> Result<()>
     let filename = format!("harmony-{}.tar.gz", target);
     let url = if let Some(v) = version {
         if !v.starts_with('v') {
-             return Err(anyhow!("Version must start with 'v' (e.g. v0.7.0)"));
+            return Err(anyhow!("Version must start with 'v' (e.g. v0.7.0)"));
         }
         format!(
             "https://github.com/aurabx/harmony/releases/download/{}/{}",
@@ -91,12 +93,12 @@ pub fn install(version: Option<&str>, output_dir: Option<PathBuf>) -> Result<()>
         Some(d) => d,
         None => get_default_install_dir()?,
     };
-    
+
     if !output_path.exists() {
         println!("Creating directory: {}", output_path.display());
         fs::create_dir_all(&output_path).context("Failed to create output directory")?;
     }
-    
+
     println!("Extracting to {}", output_path.display());
 
     let decoder = GzDecoder::new(Cursor::new(&content));
@@ -109,25 +111,36 @@ pub fn install(version: Option<&str>, output_dir: Option<PathBuf>) -> Result<()>
     // So it likely contains the `harmony` binary at the root of the archive.
 
     // Let's extract to the target directory.
-    archive.unpack(&output_path).context("Failed to unpack archive")?;
+    archive
+        .unpack(&output_path)
+        .context("Failed to unpack archive")?;
 
     // 6. Make executable (Unix only)
     #[cfg(unix)]
     {
         let binary_name = "harmony";
         let binary_path = output_path.join(binary_name);
         if binary_path.exists() {
-            println!("Setting executable permissions for {}", binary_path.display());
+            println!(
+                "Setting executable permissions for {}",
+                binary_path.display()
+            );
             let mut perms = fs::metadata(&binary_path)?.permissions();
             perms.set_mode(0o755);
             fs::set_permissions(&binary_path, perms)?;
         } else {
             // It might be in a subdirectory if the tarball structure changed, but assuming README is correct.
             // If not found, we just warn.
-             println!("Warning: '{}' not found in extraction output. You may need to find the binary manually.", binary_name);
+            println!(
+                "Warning: '{}' not found in extraction output. You may need to find the binary manually.",
+                binary_name
+            );
         }
     }
 
-    println!("✓ Harmony installed successfully to {}", output_path.display());
+    println!(
+        "✓ Harmony installed successfully to {}",
+        output_path.display()
+    );
     Ok(())
 }

src/commands/harmony/install.rs

@@ -263,10 +263,7 @@ pub fn reload(id: Option<&str>, label: Option<&str>) -> Result<()> {
 
 pub fn update(id: Option<&str>, label: Option<&str>) -> Result<()> {
     let inst = resolve_instance(id, label)?;
-    let url = format!(
-        "{}/update",
-        base_url(&inst)
-    );
+    let url = format!("{}/update", base_url(&inst));
     let client = Client::new();
     let resp = client
         .post(&url)
@@ -277,13 +274,18 @@ pub fn update(id: Option<&str>, label: Option<&str>) -> Result<()> {
     let json: Value = resp.json().context("parsing JSON response")?;
 
     if status.is_success() {
-        let config_size = json.get("config_size")
+        let config_size = json
+            .get("config_size")
             .and_then(|v| v.as_u64())
             .unwrap_or(0);
-        println!("✓ Configuration uploaded successfully ({} bytes)", config_size);
+        println!(
+            "✓ Configuration uploaded successfully ({} bytes)",
+            config_size
+        );
         Ok(())
     } else {
-        let message = json.get("message")
+        let message = json
+            .get("message")
             .and_then(|v| v.as_str())
             .unwrap_or("Unknown error");
         Err(anyhow!("Failed to update configuration: {}", message))

src/commands/harmony/management.rs

@@ -87,7 +87,12 @@ fn main() -> Result<()> {
         Some(cli::Command::HarmonyReload { id, label }) => {
             harmony::management::reload(id.as_deref(), label.as_deref())?;
         }
-        Some(cli::Command::HarmonyAuthorize { id, label, update, yes }) => {
+        Some(cli::Command::HarmonyAuthorize {
+            id,
+            label,
+            update,
+            yes,
+        }) => {
             auth::authorize_harmony(id.as_deref(), label.as_deref(), update, yes)?;
         }
         Some(cli::Command::HarmonySetKey { id, encryption_key }) => {
@@ -102,7 +107,10 @@ fn main() -> Result<()> {
         Some(cli::Command::HarmonyUpdate { id, label }) => {
             harmony::management::update(id.as_deref(), label.as_deref())?;
         }
-        Some(cli::Command::HarmonyInstall { version, output_dir }) => {
+        Some(cli::Command::HarmonyInstall {
+            version,
+            output_dir,
+        }) => {
             harmony::install::install(version.as_deref(), output_dir)?;
         }
         Some(cli::Command::TestBrowser) => {