Add local store auth summary API

[dmerand]

Summary

Introduce a local store-auth summary API without changing command behavior yet.

Scope

• add StoredStoreAuthSummary
• add listStoredStoreAuthSummaries() under services/store/auth
• keep token-bearing session buckets as the current persistence source of truth
• keep conf traversal and bucket cleanup in session-store.ts
• re-export the summary API from services/store/auth/index.ts
• sort summaries newest-auth-first for the “return to the store I was working on” use case

Why this split exists

The next PR needs one narrow question answered first:

• what directly authenticated store auth exists on this machine?

This PR answers that without taking on product behavior:

• no auth-listing command yet
• no persistence migration
• no access-token exposure

That keeps the behavior PR focused on command policy and output, not on storage traversal.

Boundary this PR is trying to establish

• persistence details stay in session-store.ts
• callers see StoredStoreAuthSummary[]
• callers do not need token-bearing session buckets or conf layout knowledge

Not changed / deferred

• Did not add the shopify auth list command in this PR. This PR is only the storage projection; command behavior lands upstack.
• Did not expose access tokens or refresh tokens. The summary API is deliberately safe for display/automation consumers.
• Did not migrate the persisted store-auth schema or add an index key for known stores. This keeps existing auth sessions compatible and avoids making a storage migration part of this stack.
• Did not add a public LocalStorage.entries() / enumeration API in cli-kit. Follow-through review correctly noted that session-store.ts still relies on the underlying conf layout to discover existing buckets; fixing that should be a focused storage follow-up before adding more local-auth inventory features.

[dmerand]

Warning

This pull request is not mergeable via GitHub because a downstack PR is open. Once all requirements are satisfied, merge this PR as a stack on Graphite.
Learn more

• Escape store auth session keys #7864
• Add store auth list for local store auth sessions #7714
• Add local store auth summary API #7709 👈 (View in Graphite)
• Add store list for organization stores #7708
• main

This stack of pull requests is managed by Graphite. Learn more about stacking.

[amcaplan]

This function is kind of an abomination. I would strongly prefer that we have a background task that fixes the storage once (e.g. foo.myshopify.com => foo-myshopify-com) and then we can avoid this complexity going forward.

By the way, we don't really test this crawling logic anywhere if I am understanding correctly.

[isaacroldan]

Let's migrate to the new format and ignore old sessions. Worst case, people will need to re-auth their stores. But it will be better long time

[github-actions]

Differences in type declarations

We detected differences in the type declarations generated by Typescript for this branch compared to the baseline ('main' branch). Please, review them to ensure they are backward-compatible. Here are some important things to keep in mind:

• Some seemingly private modules might be re-exported through public modules.
• If the branch is behind main you might see odd diffs, rebase main into this branch.

New type declarations

We found no new type declarations in this PR

Existing type declarations

packages/cli-kit/dist/public/common/string.d.ts

@@ -102,6 +102,16 @@ export declare function formatDate(date: Date): string;
  * @returns The transformed string in local system time.
  */
 export declare function formatLocalDate(dateString: string): string;
+/**
+ * Formats a date as a short calendar date like "May 22, 2026" () in UTC.
+ *
+ * UTC keeps the output deterministic regardless of the machine timezone. Returns an empty string
+ * when the value cannot be parsed into a valid date.
+ *
+ * @param value - A Date, epoch milliseconds, or a date string such as an ISO 8601 timestamp.
+ * @returns The formatted date, or an empty string when the value is invalid.
+ */
+export declare function formatShortDate(value: Date | number | string): string;
 /**
  * Given a list of items, it returns a string with the items joined by commas and the last item joined by "and".
  * All items are wrapped in double quotes.

packages/cli-kit/dist/public/common/url.d.ts

@@ -28,4 +28,13 @@ export declare function extractHost(value: string | null | undefined): string |
  * @param value - A URL or host string, possibly null/undefined.
  * @returns The myshopify subdomain handle, or undefined when the input isn't a  URL.
  */
-export declare function extractMyshopifyHandle(value: string | null | undefined): string | undefined;
\ No newline at end of file
+export declare function extractMyshopifyHandle(value: string | null | undefined): string | undefined;
+/**
+ * Extracts the leading subdomain label from a URL or host, across environments — e.g.
+ * , , or local development hosts — rather than assuming a
+ *  domain.
+ *
+ * @param value - A URL or host string, possibly null/undefined.
+ * @returns The first DNS label, or undefined when no host can be extracted.
+ */
+export declare function extractSubdomain(value: string | null | undefined): string | undefined;
\ No newline at end of file