alezmad/claudemesh
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix(cli+web): claudemesh rename via inline-JWT route (v1.19.1)
Some checks failed
CI / Lint (push) Has been cancelled
Details
CI / Typecheck (push) Has been cancelled
Details
CI / Broker tests (Postgres) (push) Has been cancelled
Details
CI / Docker build (linux/amd64) (push) Has been cancelled
Details

Browse Source 
The /api/my/meshes/:slug PATCH route was never implemented and
better-auth's enforceAuth middleware can't validate the CLI's
device-code JWT (signed with CLI_SYNC_SECRET, not a better-auth
session). Adds /api/cli/meshes/:slug on the web app — verifies
the HS256 JWT inline, scopes the rename to (slug, ownerUserId).
CLI now calls the new path. Mirrors the cli-sync-token pattern.

Closes the "API error 401: Unauthorized" hit after a successful
claudemesh login.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
This commit is contained in:
Alejandro Gutiérrez
2026-05-03 14:11:31 +01:00
parent 3a3d2a6c4c
commit b69df75f0c
4 changed files with 127 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
apps/cli/src/services/api/my.ts
View File

@@ -20,8 +20,11 @@ export async function createMesh(
}
export async function renameMesh(token: string, slug: string, newName: string) {
// Routed through /api/cli/* (not /api/my/*) because the CLI JWT
// can't authenticate against the better-auth-protected myRouter.
// The /api/cli/meshes/:slug route validates the JWT inline.
return request<{ slug: string; name: string }>({
path: `/api/my/meshes/${slug}`,
path: `/api/cli/meshes/${slug}`,
method: "PATCH",
body: { name: newName },
token,