near · volovyks · Nov 30, 2021 · Nov 30, 2021 · Nov 30, 2021 · Nov 30, 2021
diff --git a/README.md b/README.md
@@ -1257,6 +1257,8 @@ With NEAR REPL you have complete access to [`near-api-js`](https://github.com/ne
 | `--masterAccount`          |  Master account used when creating new accounts  [string]                                                                              |
 | `--helperAccount`          |  Expected top-level account for a network  [string]                                                                                    |
 | `-v, --verbose`            |  Prints out verbose output  [boolean] [default: false]                                                                                 |
+|`-f, --force`               |  Forcefully execute the desired action even if it is unsafe to do so  [boolean] [default: false]|
+
 
 > Got a question? <a href="https://stackoverflow.com/questions/tagged/nearprotocol"> <h8>Ask it on StackOverflow!</h8></a>
 

diff --git a/commands/delete-key.js b/commands/delete-key.js
@@ -1,7 +1,9 @@
 const exitOnError = require('../utils/exit-on-error');
+const chalk = require('chalk');
 const connect = require('../utils/connect');
 const inspectResponse = require('../utils/inspect-response');
 const checkCredentials = require('../utils/check-credentials');
+const { askYesNoQuestion } = require('../utils/readline');
 
 module.exports = {
     command: 'delete-key <account-id> <access-key>',
@@ -17,9 +19,32 @@ module.exports = {
 
 async function deleteAccessKey(options) {
     await checkCredentials(options.accountId, options.networkId, options.keyStore);
-    console.log(`Deleting key = ${options.accessKey} on ${options.accountId}.`);
     const near = await connect(options);
     const account = await near.account(options.accountId);
-    const result = await account.deleteKey(options.accessKey);
-    inspectResponse.prettyPrintResponse(result, options);
+    if (options.force || await isAllApprovalsGranted(account, options.accessKey)) {
+        console.log(chalk`{bold.white Deleting key {bold.blue ${options.accessKey}} on {bold.blue ${options.accountId}.}}`);
+        const result = await account.deleteKey(options.accessKey);
+        inspectResponse.prettyPrintResponse(result, options);
+    } else {
+        console.log(chalk`{bold.white Deletion of {bold.blue  ${options.accessKey} } key on {bold.blue ${options.accountId}}. was {bold.red canceled}}`);
+    }
+}
+
+async function isAllApprovalsGranted(account, accessKey) {
+    let accessKeys = await account.getAccessKeys();
+    let fullAccessKeys = accessKeys.filter(accessKey => accessKey.access_key.permission === 'FullAccess');
+
+    // aks for approvals if user is deleting Full Access Key
-    // aks for approvals if user is deleting Full Access Key
+    // asks for approval if user is deleting Full Access Key
-    // aks for approvals if user is deleting Full Access Key
+    // asks for approval if user is deleting Full Access Key
+    if (fullAccessKeys.find(key => key.public_key === accessKey)) {
+        if (!await askYesNoQuestion(
+            chalk`{bold.white Key {bold.blue ${accessKey}} is a Full Access key. Make sure it's not your recovery method. Do you want to proceed? {bold.green (y/n) }}`,
+            false)
+        ) { return false; }
+        // ask additional questions if it's the last Full Access Key
+        if (fullAccessKeys.length === 1 && !await askYesNoQuestion(
+            chalk`{bold.white Key {bold.blue ${accessKey}} is the last Full Access key. In case of deletion, you will not be able to restore access to the account {bold.blue ${account.accountId}}. Do you want to proceed? {bold.green (y/n) }}`,
+            false)
+        ) { return false; }
+    }
+    return true;
 }