Skip to content

feat(dashboard): copyable 'connect CLI' command in API-key-created popup + fix X close #60

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
dvcdsys merged 2 commits into from
Jun 3, 2026
Merged

feat(dashboard): copyable 'connect CLI' command in API-key-created popup + fix X close #60

Changes from all commits
Commits
Show all changes
2 commits
Select commit Hold shift + click to select a range
a0ae31f
feat(dashboard): add copyable "connect CLI" command to API-key-create…
dvcdsys Jun 3, 2026
8803463
fix(dashboard): make the X button close the "API key created" popup
dvcdsys Jun 3, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
127 changes: 107 additions & 20 deletions server/dashboard/src/modules/api-keys/components/CreateApiKeyDialog.tsx
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,5 +1,5 @@
import { useEffect, useRef, useState } from 'react';
import { Check, Copy, Loader2, KeyRound, AlertTriangle } from 'lucide-react';
import { Check, Copy, Loader2, KeyRound, AlertTriangle, Terminal } from 'lucide-react';
import { toast } from 'sonner';
import { ApiError } from '@/api/client';
import { Alert, AlertDescription, AlertTitle } from '@/ui/alert';
Expand Down Expand Up @@ -41,6 +41,21 @@ function legacyCopy(text: string): boolean {
return ok;
}

// Derive a cix CLI server alias from the browser host. The CLI stores each
// server as one entry under `server.<alias>` and parses that config key by
// splitting on dots, so the alias must be dot-free (and whitespace-free, and
// non-empty) — see validateServerName / parseServerKey in the CLI. We fold the
// host (including any non-default port, so distinct ports get distinct aliases)
// to [a-z0-9-]: "cix.example.com" -> "cix-example-com",
// "localhost:21847" -> "localhost-21847".
function cixServerAlias(host: string): string {
const alias = host
.toLowerCase()
.replace(/[^a-z0-9]+/g, '-')
.replace(/^-+|-+$/g, '');
return alias || 'default';
}

// Two-stage dialog: collect a name, then reveal the freshly minted key once.
// Once revealed, the dialog refuses outside-click and Escape — accidental
// dismissal would lose the unrecoverable secret. Only the explicit "I've
Expand All @@ -49,7 +64,8 @@ export function CreateApiKeyDialog() {
const [open, setOpen] = useState(false);
const [name, setName] = useState('');
const [revealed, setRevealed] = useState<string | null>(null);
const [copied, setCopied] = useState(false);
const [copiedKey, setCopiedKey] = useState(false);
const [copiedCmd, setCopiedCmd] = useState(false);
const inputRef = useRef<HTMLInputElement>(null);
const create = useCreateApiKey();

Expand All @@ -65,7 +81,8 @@ export function CreateApiKeyDialog() {
function reset() {
setName('');
setRevealed(null);
setCopied(false);
setCopiedKey(false);
setCopiedCmd(false);
create.reset();
}

Expand All @@ -81,35 +98,65 @@ export function CreateApiKeyDialog() {
}
}

async function copyToClipboard() {
if (!revealed) return;
// navigator.clipboard requires a secure context (HTTPS or localhost). On
// bare-IP / HTTP deploys it throws — fall back to document.execCommand
// through a transient textarea so users still get one-click copy.
// copyText copies one string to the clipboard, surfacing a toast on failure.
// navigator.clipboard requires a secure context (HTTPS or localhost). On
// bare-IP / HTTP deploys it throws — fall back to document.execCommand
// through a transient textarea so users still get one-click copy.
async function copyText(text: string): Promise<boolean> {
try {
if (window.isSecureContext && navigator.clipboard?.writeText) {
await navigator.clipboard.writeText(revealed);
await navigator.clipboard.writeText(text);
} else {
if (!legacyCopy(revealed)) throw new Error('legacy copy failed');
if (!legacyCopy(text)) throw new Error('legacy copy failed');
}
setCopied(true);
window.setTimeout(() => setCopied(false), 2000);
return true;
} catch {
toast.error('Could not copy automatically.', {
description: 'Click the field, ⌘A / Ctrl-A to select, then copy.',
description: 'Select the text, ⌘A / Ctrl-A, then copy.',
});
return false;
}
}

// One-paste command that registers THIS server (URL + the freshly minted key,
// as a single `server.<alias>` entry) in the cix CLI config and makes it the
// default. The dashboard is served same-origin from cix-server, so
// window.location.origin is exactly the base URL the CLI must talk to. Values
// are shell-safe (a URL, a `cix_<hex>` key, an [a-z0-9-] alias), so no quoting
// is needed — matching the CLI README's unquoted examples.
const alias = cixServerAlias(window.location.host);
const connectCmd =
`cix config set server.${alias}.url ${window.location.origin} && ` +
`cix config set server.${alias}.key ${revealed ?? '<key>'} && ` +
`cix config set default_server ${alias}`;

async function copyKey() {
if (!revealed) return;
if (await copyText(revealed)) {
setCopiedKey(true);
window.setTimeout(() => setCopiedKey(false), 2000);
}
}

async function copyConnectCmd() {
if (await copyText(connectCmd)) {
setCopiedCmd(true);
window.setTimeout(() => setCopiedCmd(false), 2000);
}
}

return (
<Dialog
open={open}
onOpenChange={(next) => {
// Once a key is revealed, only the explicit "I've saved it" button
// (or close-X) may dismiss the dialog. Outside-click and Escape are
// blocked at the DialogContent layer below; we still gate state-resets
// here so a sibling dismiss path can't wipe the key silently.
if (!next && revealed) return;
// Accidental dismissal of the reveal screen (outside-click, Escape) is
// blocked at the DialogContent layer below via preventDefault, so it
// never reaches here. The only close paths that DO reach onOpenChange
// while a key is revealed are explicit user intent — the top-right X
// button (the "I've saved it" button sets state directly) — so honor
// every close and always reset. (An earlier guard returned here when a
// key was revealed, which also swallowed the X click: the dialog could
// then only be dismissed by reloading the page.)
setOpen(next);
if (!next) reset();
}}
Expand Down Expand Up @@ -165,8 +212,8 @@ export function CreateApiKeyDialog() {
onFocus={(e) => e.currentTarget.select()}
onClick={(e) => e.currentTarget.select()}
/>
<Button type="button" variant="secondary" onClick={copyToClipboard}>
{copied ? (
<Button type="button" variant="secondary" onClick={copyKey}>
{copiedKey ? (
<>
<Check className="mr-1 h-4 w-4" />
Copied
Expand All @@ -184,6 +231,46 @@ export function CreateApiKeyDialog() {
button is blocked by your browser.
</p>
</div>
<div className="space-y-2">
<Label htmlFor="apikey-connect-cmd" className="flex items-center gap-1.5">
<Terminal className="h-4 w-4" />
Connect the cix CLI
</Label>
<div className="flex items-stretch gap-2">
{/* Read-only, wrapping command box: one paste registers this
server (URL + key as a single entry) and makes it the
default, so `cix search …` works right after. */}
<pre
id="apikey-connect-cmd"
className="flex-1 overflow-auto rounded-md border bg-muted p-2 font-mono text-xs whitespace-pre-wrap break-all max-h-32"
>
{connectCmd}
</pre>
<Button
type="button"
variant="secondary"
className="self-start"
onClick={copyConnectCmd}
>
{copiedCmd ? (
<>
<Check className="mr-1 h-4 w-4" />
Copied
</>
) : (
<>
<Copy className="mr-1 h-4 w-4" />
Copy
</>
)}
</Button>
</div>
<p className="text-xs text-muted-foreground">
Paste this in a terminal with the cix CLI installed. It saves the
server to <code>~/.cix/config.yaml</code> as the default, then{' '}
<code>cix search &quot;…&quot;</code> works.
</p>
</div>
<DialogFooter>
<Button
onClick={() => {
Expand Down
Loading