feat(api): project and personal scoped access tokens (#7206)

Author: n1ru4l

.changeset/five-hoops-punch.md

@@ -0,0 +1,5 @@
+---
+'@graphql-hive/cli': minor
+---
+
+Improve output of the `hive whoami` command. It now also handles the new access token format.

.changeset/long-impalas-wash.md

@@ -0,0 +1,5 @@
+---
+'hive': minor
+---
+
+Introduce personal access tokens (PAT) and project scoped access tokens.

integration-tests/testkit/seed.ts

@@ -60,7 +60,7 @@ import {
 import { execute } from './graphql';
 import { UpdateSchemaPolicyForOrganization, UpdateSchemaPolicyForProject } from './schema-policy';
 import { collect, CollectedOperation, legacyCollect } from './usage';
-import { generateUnique } from './utils';
+import { generateUnique, getServiceHost } from './utils';
 
 export function initSeed() {
   function createConnectionPool() {
@@ -89,6 +89,15 @@ export function initSeed() {
     },
     authenticate,
     generateEmail: () => userEmail(generateUnique()),
+    async purgeOrganizationAccessTokenById(id: string) {
+      const registryAddress = await getServiceHost('server', 8082);
+      await fetch(
+        'http://' + registryAddress + '/cache/organization-access-token-cache/delete/' + id,
+        {
+          method: 'POST',
+        },
+      ).then(res => res.json());
+    },
     async createOwner() {
       const ownerEmail = userEmail(generateUnique());
       const auth = await authenticate(ownerEmail);
@@ -120,7 +129,7 @@ export function initSeed() {
             ) {
               const result = await createOrganizationAccessToken(
                 {
-                  title: 'A Access Token',
+                  title: 'an access token',
                   description: 'access token',
                   organization: {
                     byId: organization.id,
@@ -488,7 +497,7 @@ export function initSeed() {
                   return result.addAlertChannel;
                 },
                 /**
-                 * Create a access token for a given target.
+                 * Create an access token for a given target.
                  * This token can be used for usage reporting and all actions that would be performed by the CLI.
                  */
                 async createTargetAccessToken({

integration-tests/testkit/utils.ts

@@ -111,3 +111,12 @@ export function assertNonNull<T>(
     throw new Error(message);
   }
 }
+
+export function assertNonNullish<T>(
+  value: T | null | undefined,
+  message = 'Expected non-null value.',
+): asserts value is T {
+  if (value === null) {
+    throw new Error(message);
+  }
+}