Fix API compatibility issues and add comprehensive tests

- Fix auth header to use Api-Token instead of Authorization Bearer
- Fix request/response structures to match Mailtrap API docs:
  tokens (permissions), contacts (wrapped response, fields),
  contact-lists/fields (flat body), domains (sending_domain wrapper),
  suppressions (string ID), account-access (nested specifier),
  email-logs (cursor pagination), stats (sending_domain_ids),
  organizations (account wrapper), messages (headers JSON, source endpoint)
- Add domains send-setup-instructions command
- Add comprehensive tests for all commands (197 total tests)
  covering read/write operations, request validation, and error cases

Author: SergeyKorolev

README.md

@@ -103,6 +103,7 @@ mailtrap messages spam-score --sandbox-id 12345 --id 67890
 # Domains
 mailtrap domains list
 mailtrap domains create --name "yourdomain.com"
+mailtrap domains send-setup-instructions --id 123 --email "admin@yourdomain.com"
 
 # Templates
 mailtrap templates list
@@ -111,6 +112,7 @@ mailtrap templates create --name "Welcome" --subject "Hello {{name}}" --body-htm
 # Contacts
 mailtrap contacts create --email "user@example.com" --first-name "John"
 mailtrap contact-lists list
+mailtrap contact-fields create --name "Company" --data-type text
 
 # Sandboxes & projects
 mailtrap projects list
@@ -136,7 +138,7 @@ mailtrap domains list --output text
 |-------|----------|
 | **Sending** | `send transactional`, `send bulk`, `send batch-transactional`, `send batch-bulk` |
 | **Sandbox Send** | `sandbox-send single`, `sandbox-send batch` |
-| **Domains** | `domains list`, `domains get`, `domains create`, `domains delete` |
+| **Domains** | `domains list`, `domains get`, `domains create`, `domains delete`, `domains send-setup-instructions` |
 | **Templates** | `templates list`, `templates get`, `templates create`, `templates update`, `templates delete` |
 | **Suppressions** | `suppressions list`, `suppressions delete` |
 | **Stats** | `stats get`, `stats by-domain`, `stats by-category`, `stats by-esp`, `stats by-date` |

internal/client/client.go

@@ -102,7 +102,7 @@ func (c *Client) do(ctx context.Context, base BaseURL, method, path string, quer
 }
 
 func (c *Client) setAuthHeader(req *http.Request, base BaseURL) {
-	req.Header.Set("Authorization", "Bearer "+c.apiToken)
+	req.Header.Set("Api-Token", c.apiToken)
 }
 
 func (c *Client) Get(ctx context.Context, base BaseURL, path string, query url.Values, result interface{}) error {

internal/client/client_test.go

@@ -413,16 +413,15 @@ func TestGetRaw_Error(t *testing.T) {
 	}
 }
 
-// --- 12. Auth header is set correctly (Authorization: Bearer) ---
+// --- 12. Auth header is set correctly (Api-Token) ---
 
 func TestAuthHeader(t *testing.T) {
 	const token = "secret-token-12345"
 
 	_, c, base := setupTestServer(t, func(w http.ResponseWriter, r *http.Request) {
-		expected := "Bearer " + token
-		got := r.Header.Get("Authorization")
-		if got != expected {
-			t.Errorf("expected Authorization header %q, got %q", expected, got)
+		got := r.Header.Get("Api-Token")
+		if got != token {
+			t.Errorf("expected Api-Token header %q, got %q", token, got)
 		}
 		w.WriteHeader(http.StatusOK)
 	})
@@ -438,10 +437,9 @@ func TestAuthHeader_GetRaw(t *testing.T) {
 	const token = "raw-token-xyz"
 
 	_, c, base := setupTestServer(t, func(w http.ResponseWriter, r *http.Request) {
-		expected := "Bearer " + token
-		got := r.Header.Get("Authorization")
-		if got != expected {
-			t.Errorf("expected Authorization header %q, got %q", expected, got)
+		got := r.Header.Get("Api-Token")
+		if got != token {
+			t.Errorf("expected Api-Token header %q, got %q", token, got)
 		}
 		w.WriteHeader(http.StatusOK)
 		w.Write([]byte("ok"))

internal/commands/account_access/account_access_test.go

@@ -0,0 +1,188 @@
+package account_access_test
+
+import (
+	"bytes"
+	"encoding/json"
+	"net/http"
+	"net/http/httptest"
+	"strings"
+	"testing"
+
+	"github.com/mailtrap/mailtrap-cli/internal/client"
+	"github.com/mailtrap/mailtrap-cli/internal/cmdutil"
+	"github.com/mailtrap/mailtrap-cli/internal/commands/account_access"
+	"github.com/mailtrap/mailtrap-cli/internal/config"
+	"github.com/spf13/viper"
+)
+
+func setupTest(handler http.HandlerFunc) (*cmdutil.Factory, *bytes.Buffer, func()) {
+	server := httptest.NewServer(handler)
+	c := client.New("test-token")
+	c.SetBaseURL(client.BaseGeneral, server.URL)
+	buf := &bytes.Buffer{}
+	f := &cmdutil.Factory{
+		Config: func() *config.Config {
+			return &config.Config{APIToken: "test-token", AccountID: "123"}
+		},
+		IOStreams: &cmdutil.IOStreams{
+			Out:    buf,
+			ErrOut: &bytes.Buffer{},
+		},
+		ClientOverride: c,
+	}
+	viper.Set("api-token", "test-token")
+	viper.Set("account-id", "123")
+	viper.Set("output", "table")
+	return f, buf, func() {
+		server.Close()
+		viper.Reset()
+	}
+}
+
+func TestAccountAccessList(t *testing.T) {
+	f, buf, cleanup := setupTest(func(w http.ResponseWriter, r *http.Request) {
+		if r.Method != http.MethodGet {
+			t.Errorf("expected GET, got %s", r.Method)
+		}
+		if !strings.Contains(r.URL.Path, "/api/accounts/123/account_accesses") {
+			t.Errorf("unexpected path: %s", r.URL.Path)
+		}
+		w.Header().Set("Content-Type", "application/json")
+		json.NewEncoder(w).Encode([]map[string]interface{}{
+			{
+				"id":             1,
+				"specifier_type": "User",
+				"specifier": map[string]interface{}{
+					"id":    10,
+					"email": "user@test.com",
+					"name":  "Test User",
+				},
+				"resources": []map[string]interface{}{
+					{
+						"resource_id":   123,
+						"resource_type": "account",
+						"access_level":  100,
+					},
+				},
+			},
+		})
+	})
+	defer cleanup()
+
+	cmd := account_access.NewCmdAccountAccess(f)
+	cmd.SetArgs([]string{"list"})
+	cmd.SetOut(buf)
+
+	if err := cmd.Execute(); err != nil {
+		t.Fatalf("unexpected error: %v", err)
+	}
+
+	output := buf.String()
+	if !strings.Contains(output, "user@test.com") {
+		t.Errorf("expected output to contain 'user@test.com', got:\n%s", output)
+	}
+	if !strings.Contains(output, "Test User") {
+		t.Errorf("expected output to contain 'Test User', got:\n%s", output)
+	}
+	if !strings.Contains(output, "account") {
+		t.Errorf("expected output to contain 'account', got:\n%s", output)
+	}
+}
+
+func TestAccountAccessListJSON(t *testing.T) {
+	f, buf, cleanup := setupTest(func(w http.ResponseWriter, r *http.Request) {
+		w.Header().Set("Content-Type", "application/json")
+		json.NewEncoder(w).Encode([]map[string]interface{}{
+			{
+				"id":             1,
+				"specifier_type": "User",
+				"specifier": map[string]interface{}{
+					"id":    10,
+					"email": "user@test.com",
+					"name":  "Test User",
+				},
+				"resources": []map[string]interface{}{
+					{
+						"resource_id":   123,
+						"resource_type": "account",
+						"access_level":  100,
+					},
+				},
+			},
+		})
+	})
+	defer cleanup()
+
+	viper.Set("output", "json")
+
+	cmd := account_access.NewCmdAccountAccess(f)
+	cmd.SetArgs([]string{"list"})
+	cmd.SetOut(buf)
+
+	if err := cmd.Execute(); err != nil {
+		t.Fatalf("unexpected error: %v", err)
+	}
+
+	output := buf.String()
+	var result []map[string]interface{}
+	if err := json.Unmarshal([]byte(output), &result); err != nil {
+		t.Fatalf("output is not valid JSON: %v\noutput:\n%s", err, output)
+	}
+	if len(result) != 1 {
+		t.Fatalf("expected 1 access, got %d", len(result))
+	}
+	// Verify nested structure is preserved in JSON mode
+	specifier, ok := result[0]["specifier"].(map[string]interface{})
+	if !ok {
+		t.Fatal("expected 'specifier' to be a nested object")
+	}
+	if specifier["email"] != "user@test.com" {
+		t.Errorf("expected specifier email 'user@test.com', got %v", specifier["email"])
+	}
+}
+
+func TestAccountAccessRemove(t *testing.T) {
+	f, buf, cleanup := setupTest(func(w http.ResponseWriter, r *http.Request) {
+		if r.Method != http.MethodDelete {
+			t.Errorf("expected DELETE, got %s", r.Method)
+		}
+		if !strings.Contains(r.URL.Path, "/api/accounts/123/account_accesses/1") {
+			t.Errorf("unexpected path: %s", r.URL.Path)
+		}
+		w.WriteHeader(http.StatusOK)
+	})
+	defer cleanup()
+
+	cmd := account_access.NewCmdAccountAccess(f)
+	cmd.SetArgs([]string{"remove", "--id", "1"})
+	cmd.SetOut(buf)
+
+	if err := cmd.Execute(); err != nil {
+		t.Fatalf("unexpected error: %v", err)
+	}
+
+	output := buf.String()
+	if !strings.Contains(output, "removed successfully") {
+		t.Errorf("expected 'removed successfully' in output, got:\n%s", output)
+	}
+}
+
+func TestAccountAccessRemoveMissingID(t *testing.T) {
+	f, _, cleanup := setupTest(func(w http.ResponseWriter, r *http.Request) {})
+	defer cleanup()
+
+	buf := &bytes.Buffer{}
+	f.IOStreams.Out = buf
+
+	cmd := account_access.NewCmdAccountAccess(f)
+	cmd.SetArgs([]string{"remove"})
+	cmd.SetOut(buf)
+
+	err := cmd.Execute()
+	if err == nil {
+		t.Fatal("expected error when --id is missing")
+	}
+	if !strings.Contains(err.Error(), "--id is required") {
+		t.Errorf("expected '--id is required' error, got: %v", err)
+	}
+}

internal/commands/account_access/list.go

@@ -10,20 +10,41 @@ import (
 	"github.com/spf13/cobra"
 )
 
+type Specifier struct {
+	ID    int    `json:"id"`
+	Email string `json:"email"`
+	Name  string `json:"name"`
+}
+
+type Resource struct {
+	ResourceID   int    `json:"resource_id"`
+	ResourceType string `json:"resource_type"`
+	AccessLevel  int    `json:"access_level"`
+}
+
 type AccountAccess struct {
-	ID          int    `json:"id"`
-	UserID      int    `json:"specifier_id"`
-	UserEmail   string `json:"specifier_email"`
-	AccessLevel int    `json:"access_level"`
-	CreatedAt   string `json:"created_at"`
+	ID            int        `json:"id"`
+	SpecifierType string     `json:"specifier_type"`
+	Specifier     Specifier  `json:"specifier"`
+	Resources     []Resource `json:"resources"`
+}
+
+type accountAccessRow struct {
+	ID            int    `json:"id"`
+	SpecifierType string `json:"specifier_type"`
+	Email         string `json:"email"`
+	Name          string `json:"name"`
+	AccessLevel   int    `json:"access_level"`
+	ResourceType  string `json:"resource_type"`
 }
 
 var accountAccessColumns = []output.Column{
 	{Header: "ID", Field: "id"},
-	{Header: "USER_ID", Field: "specifier_id"},
-	{Header: "USER_EMAIL", Field: "specifier_email"},
+	{Header: "TYPE", Field: "specifier_type"},
+	{Header: "EMAIL", Field: "email"},
+	{Header: "NAME", Field: "name"},
 	{Header: "ACCESS_LEVEL", Field: "access_level"},
-	{Header: "CREATED_AT", Field: "created_at"},
+	{Header: "RESOURCE_TYPE", Field: "resource_type"},
 }
 
 func NewCmdList(f *cmdutil.Factory) *cobra.Command {
@@ -49,7 +70,29 @@ func NewCmdList(f *cmdutil.Factory) *cobra.Command {
 			}
 
 			format := cmdutil.GetOutputFormat()
-			return output.Print(f.IOStreams.Out, format, accesses, accountAccessColumns)
+
+			if format == output.FormatJSON {
+				return output.Print(f.IOStreams.Out, format, accesses, nil)
+			}
+
+			var rows []accountAccessRow
+			for _, a := range accesses {
+				topLevel := 0
+				topResource := ""
+				if len(a.Resources) > 0 {
+					topLevel = a.Resources[0].AccessLevel
+					topResource = a.Resources[0].ResourceType
+				}
+				rows = append(rows, accountAccessRow{
+					ID:            a.ID,
+					SpecifierType: a.SpecifierType,
+					Email:         a.Specifier.Email,
+					Name:          a.Specifier.Name,
+					AccessLevel:   topLevel,
+					ResourceType:  topResource,
+				})
+			}
+			return output.Print(f.IOStreams.Out, format, rows, accountAccessColumns)
 		},
 	}
 

internal/commands/accounts/accounts_test.go

@@ -51,8 +51,8 @@ func TestAccountsList(t *testing.T) {
 		if r.URL.Path != "/api/accounts" {
 			t.Errorf("unexpected path: %s", r.URL.Path)
 		}
-		if r.Header.Get("Authorization") != "Bearer test-token" {
-			t.Errorf("expected Authorization header 'Bearer test-token', got %q", r.Header.Get("Authorization"))
+		if r.Header.Get("Api-Token") != "test-token" {
+			t.Errorf("expected Api-Token header 'test-token', got %q", r.Header.Get("Api-Token"))
 		}
 
 		w.Header().Set("Content-Type", "application/json")