tenant-id at wrong level/config

Author: clavery

packages/b2c-cli/src/commands/setup/config.ts

@@ -191,7 +191,16 @@ export default class SetupConfig extends BaseCommand<typeof SetupConfig> {
     );
 
     // SCAPI section
-    this.renderSection(ui, 'SCAPI', [['shortCode', config.shortCode]], fieldSources, unmask);
+    this.renderSection(
+      ui,
+      'SCAPI',
+      [
+        ['shortCode', config.shortCode],
+        ['tenantId', config.tenantId],
+      ],
+      fieldSources,
+      unmask,
+    );
 
     // MRT section
     this.renderSection(

packages/b2c-cli/src/commands/slas/client/create.ts

@@ -109,7 +109,6 @@ export default class SlasClientCreate extends SlasClientCommand<typeof SlasClien
     this.requireOAuthCredentials();
 
     const {
-      'tenant-id': tenantId,
       name,
       channels,
       scopes,
@@ -120,6 +119,7 @@ export default class SlasClientCreate extends SlasClientCommand<typeof SlasClien
       public: isPublic,
       'create-tenant': createTenant,
     } = this.flags;
+    const tenantId = this.requireTenantId();
 
     // Validate that either --scopes or --default-scopes is provided
     if (!scopes && !useDefaultScopes) {

packages/b2c-cli/src/commands/slas/client/delete.ts

@@ -36,7 +36,7 @@ export default class SlasClientDelete extends SlasClientCommand<typeof SlasClien
   async run(): Promise<DeleteOutput> {
     this.requireOAuthCredentials();
 
-    const {'tenant-id': tenantId} = this.flags;
+    const tenantId = this.requireTenantId();
     const {clientId} = this.args;
 
     if (!this.jsonEnabled()) {

packages/b2c-cli/src/commands/slas/client/get.ts

@@ -38,7 +38,7 @@ export default class SlasClientGet extends SlasClientCommand<typeof SlasClientGe
   async run(): Promise<ClientOutput> {
     this.requireOAuthCredentials();
 
-    const {'tenant-id': tenantId} = this.flags;
+    const tenantId = this.requireTenantId();
     const {clientId} = this.args;
 
     if (!this.jsonEnabled()) {

packages/b2c-cli/src/commands/slas/client/list.ts

@@ -51,7 +51,7 @@ export default class SlasClientList extends SlasClientCommand<typeof SlasClientL
   async run(): Promise<ClientListOutput> {
     this.requireOAuthCredentials();
 
-    const {'tenant-id': tenantId} = this.flags;
+    const tenantId = this.requireTenantId();
 
     if (!this.jsonEnabled()) {
       this.log(t('commands.slas.client.list.fetching', 'Fetching SLAS clients for tenant {{tenantId}}...', {tenantId}));

packages/b2c-cli/src/commands/slas/client/update.ts

@@ -77,7 +77,6 @@ export default class SlasClientUpdate extends SlasClientCommand<typeof SlasClien
     this.requireOAuthCredentials();
 
     const {
-      'tenant-id': tenantId,
       name,
       secret,
       channels,
@@ -87,6 +86,7 @@ export default class SlasClientUpdate extends SlasClientCommand<typeof SlasClien
       replace,
     } = this.flags;
     const {clientId} = this.args;
+    const tenantId = this.requireTenantId();
 
     if (!this.jsonEnabled()) {
       this.log(t('commands.slas.client.update.fetching', 'Fetching SLAS client {{clientId}}...', {clientId}));

packages/b2c-cli/src/utils/ecdn/base-command.ts

@@ -3,7 +3,7 @@
  * SPDX-License-Identifier: Apache-2
  * For full license text, see the license.txt file in the repo root or http://www.apache.org/licenses/LICENSE-2.0
  */
-import {Command, Flags} from '@oclif/core';
+import {Command} from '@oclif/core';
 import {OAuthCommand} from '@salesforce/b2c-tooling-sdk/cli';
 import {createCdnZonesClient, toOrganizationId, type CdnZonesClient} from '@salesforce/b2c-tooling-sdk/clients';
 import {t} from '../../i18n/index.js';
@@ -17,18 +17,9 @@ export function formatApiError(error: unknown): string {
 
 /**
  * Base command for eCDN operations.
- * Provides tenant-id flag and lazy-loaded CDN Zones client.
+ * Provides lazy-loaded CDN Zones client.
  */
 export abstract class EcdnCommand<T extends typeof Command> extends OAuthCommand<T> {
-  static baseFlags = {
-    ...OAuthCommand.baseFlags,
-    'tenant-id': Flags.string({
-      description: t('flags.tenantId.description', 'Organization/tenant ID'),
-      env: 'SFCC_TENANT_ID',
-      required: true,
-    }),
-  };
-
   private _cdnZonesClient?: CdnZonesClient;
   private _cdnZonesRwClient?: CdnZonesClient;
 
@@ -37,8 +28,7 @@ export abstract class EcdnCommand<T extends typeof Command> extends OAuthCommand
    */
   protected getCdnZonesClient(): CdnZonesClient {
     if (!this._cdnZonesClient) {
-      const {shortCode} = this.resolvedConfig.values;
-      const tenantId = (this.flags as Record<string, string>)['tenant-id'];
+      const {shortCode, tenantId} = this.resolvedConfig.values;
 
       if (!shortCode) {
         this.error(
@@ -48,6 +38,14 @@ export abstract class EcdnCommand<T extends typeof Command> extends OAuthCommand
           ),
         );
       }
+      if (!tenantId) {
+        this.error(
+          t(
+            'error.tenantIdRequired',
+            'tenant-id is required. Provide via --tenant-id flag, SFCC_TENANT_ID env var, or tenant-id in dw.json.',
+          ),
+        );
+      }
 
       const oauthStrategy = this.getOAuthStrategy();
       this._cdnZonesClient = createCdnZonesClient({shortCode, tenantId}, oauthStrategy);
@@ -60,8 +58,7 @@ export abstract class EcdnCommand<T extends typeof Command> extends OAuthCommand
    */
   protected getCdnZonesRwClient(): CdnZonesClient {
     if (!this._cdnZonesRwClient) {
-      const {shortCode} = this.resolvedConfig.values;
-      const tenantId = (this.flags as Record<string, string>)['tenant-id'];
+      const {shortCode, tenantId} = this.resolvedConfig.values;
 
       if (!shortCode) {
         this.error(
@@ -71,6 +68,14 @@ export abstract class EcdnCommand<T extends typeof Command> extends OAuthCommand
           ),
         );
       }
+      if (!tenantId) {
+        this.error(
+          t(
+            'error.tenantIdRequired',
+            'tenant-id is required. Provide via --tenant-id flag, SFCC_TENANT_ID env var, or tenant-id in dw.json.',
+          ),
+        );
+      }
 
       const oauthStrategy = this.getOAuthStrategy();
       this._cdnZonesRwClient = createCdnZonesClient({shortCode, tenantId}, oauthStrategy, {readWrite: true});
@@ -79,10 +84,19 @@ export abstract class EcdnCommand<T extends typeof Command> extends OAuthCommand
   }
 
   /**
-   * Get the organization ID from the tenant-id flag.
+   * Get the organization ID from resolved config.
+   * @throws Error if tenant ID is not provided through any source
    */
   protected getOrganizationId(): string {
-    const tenantId = (this.flags as Record<string, string>)['tenant-id'];
+    const {tenantId} = this.resolvedConfig.values;
+    if (!tenantId) {
+      this.error(
+        t(
+          'error.tenantIdRequired',
+          'tenant-id is required. Provide via --tenant-id flag, SFCC_TENANT_ID env var, or tenant-id in dw.json.',
+        ),
+      );
+    }
     return toOrganizationId(tenantId);
   }
 }

packages/b2c-cli/src/utils/scapi/schemas.ts

@@ -3,7 +3,7 @@
  * SPDX-License-Identifier: Apache-2
  * For full license text, see the license.txt file in the repo root or http://www.apache.org/licenses/LICENSE-2.0
  */
-import {Command, Flags} from '@oclif/core';
+import {Command} from '@oclif/core';
 import {OAuthCommand} from '@salesforce/b2c-tooling-sdk/cli';
 import {
   createScapiSchemasClient,
@@ -25,29 +25,28 @@ export function formatApiError(error: unknown, response: Response): string {
  * Provides common flags and helper methods for interacting with the SCAPI Schemas API.
  */
 export abstract class ScapiSchemasCommand<T extends typeof Command> extends OAuthCommand<T> {
-  static baseFlags = {
-    ...OAuthCommand.baseFlags,
-    'tenant-id': Flags.string({
-      description: t('flags.tenantId.description', 'Organization/tenant ID'),
-      env: 'SFCC_TENANT_ID',
-      required: true,
-    }),
-  };
-
   /**
-   * Get the organization ID from the tenant-id flag.
+   * Get the organization ID from resolved config.
+   * @throws Error if tenant ID is not provided through any source
    */
   protected getOrganizationId(): string {
-    const tenantId = (this.flags as Record<string, string>)['tenant-id'];
+    const {tenantId} = this.resolvedConfig.values;
+    if (!tenantId) {
+      this.error(
+        t(
+          'error.tenantIdRequired',
+          'tenant-id is required. Provide via --tenant-id flag, SFCC_TENANT_ID env var, or tenant-id in dw.json.',
+        ),
+      );
+    }
     return toOrganizationId(tenantId);
   }
 
   /**
-   * Get the SCAPI Schemas client, ensuring short code is configured.
+   * Get the SCAPI Schemas client, ensuring short code and tenant ID are configured.
    */
   protected getSchemasClient(): ScapiSchemasClient {
-    const {shortCode} = this.resolvedConfig.values;
-    const tenantId = (this.flags as Record<string, string>)['tenant-id'];
+    const {shortCode, tenantId} = this.resolvedConfig.values;
 
     if (!shortCode) {
       this.error(
@@ -57,6 +56,14 @@ export abstract class ScapiSchemasCommand<T extends typeof Command> extends OAut
         ),
       );
     }
+    if (!tenantId) {
+      this.error(
+        t(
+          'error.tenantIdRequired',
+          'tenant-id is required. Provide via --tenant-id flag, SFCC_TENANT_ID env var, or tenant-id in dw.json.',
+        ),
+      );
+    }
 
     const oauthStrategy = this.getOAuthStrategy();
     return createScapiSchemasClient({shortCode, tenantId}, oauthStrategy);

packages/b2c-cli/src/utils/slas/client.ts

@@ -3,7 +3,7 @@
  * SPDX-License-Identifier: Apache-2
  * For full license text, see the license.txt file in the repo root or http://www.apache.org/licenses/LICENSE-2.0
  */
-import {Command, Flags, ux} from '@oclif/core';
+import {Command, ux} from '@oclif/core';
 import cliui from 'cliui';
 import {OAuthCommand} from '@salesforce/b2c-tooling-sdk/cli';
 import {createSlasClient, getApiErrorMessage, type SlasClient, type SlasComponents} from '@salesforce/b2c-tooling-sdk';
@@ -100,15 +100,6 @@ export function formatApiError(error: unknown, response: Response): string {
  * Provides common flags and helper methods.
  */
 export abstract class SlasClientCommand<T extends typeof Command> extends OAuthCommand<T> {
-  static baseFlags = {
-    ...OAuthCommand.baseFlags,
-    'tenant-id': Flags.string({
-      description: 'SLAS tenant ID (organization ID)',
-      env: 'SFCC_TENANT_ID',
-      required: true,
-    }),
-  };
-
   /**
    * Ensure tenant exists, creating it if necessary.
    * This is required before creating SLAS clients.
@@ -193,4 +184,22 @@ export abstract class SlasClientCommand<T extends typeof Command> extends OAuthC
     const oauthStrategy = this.getOAuthStrategy();
     return createSlasClient({shortCode}, oauthStrategy);
   }
+
+  /**
+   * Get the tenant ID from resolved config, throwing if not available.
+   * @throws Error if tenant ID is not provided through any source
+   */
+  protected requireTenantId(): string {
+    const tenantId = this.resolvedConfig.values.tenantId;
+
+    if (!tenantId) {
+      this.error(
+        t(
+          'error.tenantIdRequired',
+          'tenant-id is required. Provide via --tenant-id flag, SFCC_TENANT_ID env var, or tenant-id in dw.json.',
+        ),
+      );
+    }
+    return tenantId;
+  }
 }

packages/b2c-tooling-sdk/src/cli/oauth-command.ts

@@ -49,6 +49,11 @@ export abstract class OAuthCommand<T extends typeof Command> extends BaseCommand
       env: 'SFCC_SHORTCODE',
       helpGroup: 'AUTH',
     }),
+    'tenant-id': Flags.string({
+      description: 'Organization/tenant ID',
+      env: 'SFCC_TENANT_ID',
+      helpGroup: 'AUTH',
+    }),
     'auth-methods': Flags.string({
       description: 'Allowed auth methods in priority order (comma-separated)',
       env: 'SFCC_AUTH_METHODS',
@@ -93,6 +98,7 @@ export abstract class OAuthCommand<T extends typeof Command> extends BaseCommand
       clientId: this.flags['client-id'],
       clientSecret: this.flags['client-secret'],
       shortCode: this.flags['short-code'],
+      tenantId: this.flags['tenant-id'],
       authMethods: this.parseAuthMethods(),
       accountManagerHost: this.flags['account-manager-host'],
       // Merge scopes from flags (if provided)