feat: verify if vsce pat is valid or not (#105)

This also bumps the minimum version of `vsce` to 1.85.1, which is where the required command was added.

Fixes #89

Author: felipecrs

lib/set-auth.js

@@ -0,0 +1,17 @@
+const execa = require('execa');
+const SemanticReleaseError = require('@semantic-release/error');
+
+module.exports = async (logger) => {
+  logger.log('Verify authentication for vsce');
+  const { VSCE_TOKEN } = process.env;
+
+  if (!VSCE_TOKEN) {
+    throw new SemanticReleaseError('No vsce personal access token specified (set the "VSCE_TOKEN" environment variable).', 'ENOVSCEPAT');
+  }
+
+  try {
+    execa.sync('vsce', ['verify-pat', '--pat', VSCE_TOKEN]);
+  } catch (e) {
+    throw new SemanticReleaseError(`Invalid vsce token. Additional information:\n\n${e}`, 'EINVALIDVSCETOKEN');
+  }
+};

lib/verify-auth.js

@@ -1,5 +1,5 @@
 const verifyPkg = require('./verify-pkg');
-const setAuth = require('./set-auth');
+const verifyAuth = require('./verify-auth');
 const getPkg = require('read-pkg-up');
 const SemanticReleaseError = require('@semantic-release/error');
 
@@ -12,10 +12,6 @@ module.exports = async logger => {
     );
   }
   verifyPkg(packageJson);
-  await setAuth(logger);
-  try {
-    // TODO: Verify output
-  } catch (err) {
-    throw new SemanticReleaseError('Invalid vsce token.', 'EINVALIDVSCETOKEN');
-  }
+
+  verifyAuth(logger);
 };

lib/verify.js

@@ -61,7 +61,7 @@
     "execa": "^5.0.0",
     "fs-extra": "^9.0.1",
     "read-pkg-up": "^7.0.1",
-    "vsce": "^1.73.0"
+    "vsce": "^1.85.1"
   },
   "peerDependencies": {
     "semantic-release": ">=16.0.0"

package-lock.json

@@ -0,0 +1,36 @@
+const test = require('ava');
+const sinon = require('sinon');
+const execa = require('execa');
+const SemanticReleaseError = require('@semantic-release/error');
+const verifyAuth = require('../lib/verify-auth');
+
+const logger = {
+  log: sinon.fake()
+};
+
+sinon.stub(execa, 'sync').withArgs('vsce', ['verify-pat', '--pat', process.env.VSCE_TOKEN]).returns();
+
+test('VSCE_TOKEN is set', async t => {
+  process.env.VSCE_TOKEN = 'abc123';
+
+  await t.notThrowsAsync(() => verifyAuth(logger));
+});
+
+test('VSCE_TOKEN is not set', async t => {
+  delete process.env.VSCE_TOKEN;
+
+  await t.throwsAsync(() => verifyAuth(logger), { instanceOf: SemanticReleaseError, code: 'ENOVSCEPAT' });
+});
+
+test('VSCE_TOKEN is valid', async t => {
+  process.env.VSCE_TOKEN = 'abc123';
+
+  await t.notThrowsAsync(() => verifyAuth(logger));
+});
+
+test('VSCE_TOKEN is invalid', async t => {
+  process.env.VSCE_TOKEN = 'abc123';
+  execa.sync.restore();
+
+  await t.throwsAsync(() => verifyAuth(logger), { instanceOf: SemanticReleaseError, code: 'EINVALIDVSCETOKEN' });
+});

package.json

@@ -9,7 +9,7 @@ const logger = {
 
 test('package.json is found', async t => {
   const verify = proxyquire('../lib/verify', {
-    './set-auth': sinon.stub().resolves(),
+    './verify-auth': sinon.stub().resolves(),
     './verify-pkg': sinon.stub(),
     'read-pkg-up': sinon.stub().returns({ packageJson: {} })
   });
@@ -19,7 +19,7 @@ test('package.json is found', async t => {
 
 test('package.json is not found', async t => {
   const verify = proxyquire('../lib/verify', {
-    './set-auth': sinon.stub().resolves(),
+    './verify-auth': sinon.stub().resolves(),
     './verify-pkg': sinon.stub(),
     'read-pkg-up': sinon.stub().returns({ })
   });