--- name: enonic-cli description: > Reference for the Enonic CLI (enonic command). Covers all commands including project creation, sandbox management, data export/import, snapshots, dumps, application lifecycle, cloud deployment, and server administration. Use when the user needs to run enonic commands, manage Enonic XP instances, deploy applications, or perform data operations with the Enonic CLI tool. license: MIT compatibility: Claude Code, Codex allowed-tools: Bash(enonic:*) Read metadata: author: enonic cli-version: "4.0.0" --- ## Critical Rules 1. **Always use `-f` (force) flag.** Every `enonic` command that accepts `-f` must include it. This prevents interactive prompts that block automation. The only exception is `enonic cloud login` (browser-based OAuth). 2. **Local vs remote commands:** - **Local commands** run against files on disk — no auth needed: `project *` (except `install`), `sandbox *`, `create`, `dev`. - **Remote commands** talk to a running XP instance via the management API — accept auth flags: `snapshot *`, `dump *`, `export`, `import`, `app *`, `repo *`, `cms *`, `system info`, `auditlog *`, `vacuum`. (`system info` needed no auth before 4.0.0; it now accepts the standard auth flags.) - `project install` is a local build + remote install hybrid — auth required. - **Maintenance commands** (`latest`, `upgrade`, `uninstall`) manage the CLI itself; `latest` also accepts auth flags but only checks the CLI version. 3. **Management port is 4848, not 8080.** The CLI talks to the management API on port 4848. Port 8080 is the web/content API. Never use 8080 for CLI remote operations. 4. **`.enonic` file** — `project create` writes a `.enonic` file in the project root linking it to a sandbox. Commands like `project deploy` and `dev` use this automatically. 5. **Command aliases:** - `enonic create` = simplified `enonic project create`; `enonic dev` = `enonic project dev` - `project sandbox` → `sbox`, `sb`; `project install` → `i` - `sandbox list` → `ls`; `sandbox delete` → `del`, `rm`; `sandbox upgrade` → `up`; `sandbox copy` → `cp` - `snapshot list` → `ls`; `snapshot delete` → `del` - `dump list` → `ls`; `dump upgrade` → `up` - `app install` → `i`; `repo list` → `ls`; `system info` → `i` 6. **XP 8 API format is the default (CLI 4.x).** `snapshot create/restore` and `dump create/load` use the XP 8 management API format by default. Add `--compat 7` (any value starting with `7`) to target a legacy XP 7 instance. The `--archive` flag on `dump create/load` is only effective in compat mode (XP 7). ## Command Syntax ``` enonic [positional-args] [flags] ``` Groups: `project`, `sandbox`, `snapshot`, `dump`, `app`, `repo`, `cms`, `system`, `auditlog`, `cloud`. Standalone: `create`, `dev`, `export`, `import`, `vacuum`, `latest`, `upgrade`, `uninstall`. ## Auth Flags (Remote Commands) | Method | Flags | When to use | |---------------------|-----------------------------------------------|----------------------------------| | Basic auth | `-a user:password` | XP < 7.15 or quick local testing | | Service account key | `--cred-file path/to/key.json` | XP 7.15+ / CI/CD (preferred) | | Mutual TLS | `--client-cert cert.pem --client-key key.pem` | Zero-trust environments | Priority: flags → environment variables → no auth. See `references/auth-and-env.md` for details. ## Environment Variables | Variable | Default | Purpose | |--------------------------|------------------|-------------------------------| | `ENONIC_CLI_REMOTE_URL` | `localhost:4848` | Management API endpoint | | `ENONIC_CLI_REMOTE_USER` | — | Basic auth user | | `ENONIC_CLI_REMOTE_PASS` | — | Basic auth password | | `ENONIC_CLI_CRED_FILE` | — | Service account key file path | | `ENONIC_CLI_CLIENT_KEY` | — | mTLS private key path | | `ENONIC_CLI_CLIENT_CERT` | — | mTLS client cert path | | `ENONIC_CLI_HTTP_PROXY` | — | HTTP proxy URL | | `ENONIC_CLI_HOME_PATH` | `~/.enonic` | CLI home directory | ## Project Commands All run from the project root directory. | Command | Description | Key flags | |----------------------------|---------------------------------|-----------------------------------------------------------------------| | `project create [name]` | Create project from starter | `-r `, `-s `, `-v `, `--prod`, `--skip-start` | | `project sandbox [name]` | Set project's default sandbox | — | | `project build` | Build via Gradle | — | | `project clean` | Clean build artifacts | — | | `project test` | Run tests via Gradle | — | | `project deploy [sandbox]` | Build + deploy to sandbox | `--prod`, `--debug`, `-c` (continuous), `--skip-start` | | `project install` | Build + install to running XP | Auth flags required | | `project shell` | Open shell with XP env vars set | No `-f` needed | | `project gradle [args]` | Run arbitrary Gradle tasks | Forwards all args to gradlew | | `project env` | Export JAVA_HOME + XP_HOME | Use with `eval $(...)` | `enonic create [name]` is a shorthand for `project create` with sensible defaults. `enonic dev` starts hot-reload mode (sandbox detached, watches source files, exit with Ctrl-C). ## Sandbox Commands | Command | Description | Key flags | |----------------------------|-----------------------------------|------------------------------------------------------------------------------------------------------------| | `sandbox create [name]` | Create new sandbox | `-v `, `-t