mirror of
https://github.com/samsonjs/vibetunnel.git
synced 2026-04-09 11:55:53 +00:00
d4b8748b22
- Rename index.ts to cli.ts as single entry point - Merge app.ts and shutdown-state.ts into server.ts - Update all imports and references to use new structure - Update e2e tests and dev script to spawn via cli.ts - Remove execution code from server.ts (only cli.ts executes) - Clean up tsconfig.client.json exclude path This creates a cleaner separation where cli.ts is the only entry point that decides whether to run server or forward mode. 🤖 Generated with [Claude Code](https://claude.ai/code) Co-Authored-By: Claude <noreply@anthropic.com>
538 lines
17 KiB
TypeScript
538 lines
17 KiB
TypeScript
import express from 'express';
|
|
import { createServer } from 'http';
|
|
import { WebSocketServer } from 'ws';
|
|
import * as path from 'path';
|
|
import * as fs from 'fs';
|
|
import * as os from 'os';
|
|
import chalk from 'chalk';
|
|
import { PtyManager } from './pty/index.js';
|
|
import { TerminalManager } from './services/terminal-manager.js';
|
|
import { StreamWatcher } from './services/stream-watcher.js';
|
|
import { RemoteRegistry } from './services/remote-registry.js';
|
|
import { HQClient } from './services/hq-client.js';
|
|
import { createAuthMiddleware } from './middleware/auth.js';
|
|
import { createSessionRoutes } from './routes/sessions.js';
|
|
import { createRemoteRoutes } from './routes/remotes.js';
|
|
import { ControlDirWatcher } from './services/control-dir-watcher.js';
|
|
import { BufferAggregator } from './services/buffer-aggregator.js';
|
|
import { v4 as uuidv4 } from 'uuid';
|
|
import { getVersionInfo, printVersionBanner } from './version.js';
|
|
|
|
// Global shutdown state management
|
|
let shuttingDown = false;
|
|
|
|
export function isShuttingDown(): boolean {
|
|
return shuttingDown;
|
|
}
|
|
|
|
export function setShuttingDown(value: boolean): void {
|
|
shuttingDown = value;
|
|
}
|
|
|
|
interface Config {
|
|
port: number | null;
|
|
basicAuthUsername: string | null;
|
|
basicAuthPassword: string | null;
|
|
isHQMode: boolean;
|
|
hqUrl: string | null;
|
|
hqUsername: string | null;
|
|
hqPassword: string | null;
|
|
remoteName: string | null;
|
|
allowInsecureHQ: boolean;
|
|
showHelp: boolean;
|
|
showVersion: boolean;
|
|
}
|
|
|
|
// Show help message
|
|
function showHelp() {
|
|
console.log(`
|
|
VibeTunnel Server - Terminal Multiplexer
|
|
|
|
Usage: vibetunnel-server [options]
|
|
|
|
Options:
|
|
--help Show this help message
|
|
--version Show version information
|
|
--port <number> Server port (default: 4020 or PORT env var)
|
|
--username <string> Basic auth username (or VIBETUNNEL_USERNAME env var)
|
|
--password <string> Basic auth password (or VIBETUNNEL_PASSWORD env var)
|
|
|
|
HQ Mode Options:
|
|
--hq Run as HQ (headquarters) server
|
|
|
|
Remote Server Options:
|
|
--hq-url <url> HQ server URL to register with
|
|
--hq-username <user> Username for HQ authentication
|
|
--hq-password <pass> Password for HQ authentication
|
|
--name <name> Unique name for this remote server
|
|
--allow-insecure-hq Allow HTTP URLs for HQ (default: HTTPS only)
|
|
|
|
Environment Variables:
|
|
PORT Default port if --port not specified
|
|
VIBETUNNEL_USERNAME Default username if --username not specified
|
|
VIBETUNNEL_PASSWORD Default password if --password not specified
|
|
VIBETUNNEL_CONTROL_DIR Control directory for session data
|
|
|
|
Examples:
|
|
# Run a simple server with authentication
|
|
vibetunnel-server --username admin --password secret
|
|
|
|
# Run as HQ server
|
|
vibetunnel-server --hq --username hq-admin --password hq-secret
|
|
|
|
# Run as remote server registering with HQ
|
|
vibetunnel-server --username local --password local123 \\
|
|
--hq-url https://hq.example.com \\
|
|
--hq-username hq-admin --hq-password hq-secret \\
|
|
--name remote-1
|
|
`);
|
|
}
|
|
|
|
// Parse command line arguments
|
|
function parseArgs(): Config {
|
|
const args = process.argv.slice(2);
|
|
const config = {
|
|
port: null as number | null,
|
|
basicAuthUsername: null as string | null,
|
|
basicAuthPassword: null as string | null,
|
|
isHQMode: false,
|
|
hqUrl: null as string | null,
|
|
hqUsername: null as string | null,
|
|
hqPassword: null as string | null,
|
|
remoteName: null as string | null,
|
|
allowInsecureHQ: false,
|
|
showHelp: false,
|
|
showVersion: false,
|
|
};
|
|
|
|
// Check for help flag first
|
|
if (args.includes('--help') || args.includes('-h')) {
|
|
config.showHelp = true;
|
|
return config;
|
|
}
|
|
|
|
// Check for version flag
|
|
if (args.includes('--version') || args.includes('-v')) {
|
|
config.showVersion = true;
|
|
return config;
|
|
}
|
|
|
|
// Check for command line arguments
|
|
for (let i = 0; i < args.length; i++) {
|
|
if (args[i] === '--port' && i + 1 < args.length) {
|
|
config.port = parseInt(args[i + 1], 10);
|
|
i++; // Skip the port value in next iteration
|
|
} else if (args[i] === '--username' && i + 1 < args.length) {
|
|
config.basicAuthUsername = args[i + 1];
|
|
i++; // Skip the username value in next iteration
|
|
} else if (args[i] === '--password' && i + 1 < args.length) {
|
|
config.basicAuthPassword = args[i + 1];
|
|
i++; // Skip the password value in next iteration
|
|
} else if (args[i] === '--hq') {
|
|
config.isHQMode = true;
|
|
} else if (args[i] === '--hq-url' && i + 1 < args.length) {
|
|
config.hqUrl = args[i + 1];
|
|
i++; // Skip the URL value in next iteration
|
|
} else if (args[i] === '--hq-username' && i + 1 < args.length) {
|
|
config.hqUsername = args[i + 1];
|
|
i++; // Skip the username value in next iteration
|
|
} else if (args[i] === '--hq-password' && i + 1 < args.length) {
|
|
config.hqPassword = args[i + 1];
|
|
i++; // Skip the password value in next iteration
|
|
} else if (args[i] === '--name' && i + 1 < args.length) {
|
|
config.remoteName = args[i + 1];
|
|
i++; // Skip the name value in next iteration
|
|
} else if (args[i] === '--allow-insecure-hq') {
|
|
config.allowInsecureHQ = true;
|
|
} else if (args[i].startsWith('--')) {
|
|
// Unknown argument
|
|
console.error(chalk.red(`ERROR: Unknown argument: ${args[i]}`));
|
|
console.error('Use --help to see available options');
|
|
process.exit(1);
|
|
}
|
|
}
|
|
|
|
// Check environment variables for local auth
|
|
if (!config.basicAuthUsername && process.env.VIBETUNNEL_USERNAME) {
|
|
config.basicAuthUsername = process.env.VIBETUNNEL_USERNAME;
|
|
}
|
|
if (!config.basicAuthPassword && process.env.VIBETUNNEL_PASSWORD) {
|
|
config.basicAuthPassword = process.env.VIBETUNNEL_PASSWORD;
|
|
}
|
|
|
|
return config;
|
|
}
|
|
|
|
// Validate configuration
|
|
function validateConfig(config: ReturnType<typeof parseArgs>) {
|
|
// Validate local auth configuration
|
|
if (
|
|
(config.basicAuthUsername && !config.basicAuthPassword) ||
|
|
(!config.basicAuthUsername && config.basicAuthPassword)
|
|
) {
|
|
console.error(
|
|
chalk.red('ERROR: Both username and password must be provided for authentication')
|
|
);
|
|
console.error(
|
|
'Use --username and --password, or set both VIBETUNNEL_USERNAME and VIBETUNNEL_PASSWORD'
|
|
);
|
|
process.exit(1);
|
|
}
|
|
|
|
// Validate HQ registration configuration
|
|
if (config.hqUrl && (!config.hqUsername || !config.hqPassword)) {
|
|
console.error(chalk.red('ERROR: HQ username and password required when --hq-url is specified'));
|
|
console.error('Use --hq-username and --hq-password with --hq-url');
|
|
process.exit(1);
|
|
}
|
|
|
|
// Validate remote name is provided when registering with HQ
|
|
if (config.hqUrl && !config.remoteName) {
|
|
console.error(chalk.red('ERROR: Remote name required when --hq-url is specified'));
|
|
console.error('Use --name to specify a unique name for this remote server');
|
|
process.exit(1);
|
|
}
|
|
|
|
// Validate HQ URL is HTTPS unless explicitly allowed
|
|
if (config.hqUrl && !config.hqUrl.startsWith('https://') && !config.allowInsecureHQ) {
|
|
console.error(chalk.red('ERROR: HQ URL must use HTTPS protocol'));
|
|
console.error('Use --allow-insecure-hq to allow HTTP for testing');
|
|
process.exit(1);
|
|
}
|
|
|
|
// Validate HQ registration configuration
|
|
if (
|
|
(config.hqUrl || config.hqUsername || config.hqPassword) &&
|
|
(!config.hqUrl || !config.hqUsername || !config.hqPassword)
|
|
) {
|
|
console.error(
|
|
chalk.red('ERROR: All HQ parameters required: --hq-url, --hq-username, --hq-password')
|
|
);
|
|
process.exit(1);
|
|
}
|
|
|
|
// Can't be both HQ mode and register with HQ
|
|
if (config.isHQMode && config.hqUrl) {
|
|
console.error(chalk.red('ERROR: Cannot use --hq and --hq-url together'));
|
|
console.error('Use --hq to run as HQ server, or --hq-url to register with an HQ');
|
|
process.exit(1);
|
|
}
|
|
|
|
// If not HQ mode and no HQ URL, warn about authentication
|
|
if (!config.basicAuthUsername && !config.basicAuthPassword && !config.isHQMode && !config.hqUrl) {
|
|
console.log(chalk.red('WARNING: No authentication configured!'));
|
|
console.log(
|
|
chalk.yellow(
|
|
'Set VIBETUNNEL_USERNAME and VIBETUNNEL_PASSWORD or use --username and --password flags.'
|
|
)
|
|
);
|
|
}
|
|
}
|
|
|
|
interface AppInstance {
|
|
app: express.Application;
|
|
server: ReturnType<typeof createServer>;
|
|
wss: WebSocketServer;
|
|
startServer: () => void;
|
|
config: Config;
|
|
ptyManager: PtyManager;
|
|
terminalManager: TerminalManager;
|
|
streamWatcher: StreamWatcher;
|
|
remoteRegistry: RemoteRegistry | null;
|
|
hqClient: HQClient | null;
|
|
controlDirWatcher: ControlDirWatcher | null;
|
|
bufferAggregator: BufferAggregator | null;
|
|
}
|
|
|
|
export function createApp(): AppInstance {
|
|
const config = parseArgs();
|
|
|
|
// Check if help was requested
|
|
if (config.showHelp) {
|
|
showHelp();
|
|
process.exit(0);
|
|
}
|
|
|
|
// Check if version was requested
|
|
if (config.showVersion) {
|
|
const versionInfo = getVersionInfo();
|
|
console.log(`VibeTunnel Server v${versionInfo.version}`);
|
|
console.log(`Built: ${versionInfo.buildDate}`);
|
|
console.log(`Platform: ${versionInfo.platform}/${versionInfo.arch}`);
|
|
console.log(`Node: ${versionInfo.nodeVersion}`);
|
|
process.exit(0);
|
|
}
|
|
|
|
// Print version banner on startup
|
|
printVersionBanner();
|
|
|
|
validateConfig(config);
|
|
|
|
const app = express();
|
|
const server = createServer(app);
|
|
const wss = new WebSocketServer({ server });
|
|
|
|
// Add JSON body parser middleware
|
|
app.use(express.json());
|
|
|
|
// Control directory for session data
|
|
const CONTROL_DIR =
|
|
process.env.VIBETUNNEL_CONTROL_DIR || path.join(os.homedir(), '.vibetunnel/control');
|
|
|
|
// Ensure control directory exists
|
|
if (!fs.existsSync(CONTROL_DIR)) {
|
|
fs.mkdirSync(CONTROL_DIR, { recursive: true });
|
|
console.log(chalk.green(`Created control directory: ${CONTROL_DIR}`));
|
|
}
|
|
|
|
// Initialize PTY manager
|
|
const ptyManager = new PtyManager(CONTROL_DIR);
|
|
|
|
// Initialize Terminal Manager for server-side terminal state
|
|
const terminalManager = new TerminalManager(CONTROL_DIR);
|
|
|
|
// Initialize stream watcher for file-based streaming
|
|
const streamWatcher = new StreamWatcher();
|
|
|
|
// Initialize HQ components
|
|
let remoteRegistry: RemoteRegistry | null = null;
|
|
let hqClient: HQClient | null = null;
|
|
let controlDirWatcher: ControlDirWatcher | null = null;
|
|
let bufferAggregator: BufferAggregator | null = null;
|
|
let remoteBearerToken: string | null = null;
|
|
|
|
if (config.isHQMode) {
|
|
remoteRegistry = new RemoteRegistry();
|
|
console.log(chalk.green('Running in HQ mode'));
|
|
} else if (config.hqUrl && config.hqUsername && config.hqPassword && config.remoteName) {
|
|
// Generate bearer token for this remote server
|
|
remoteBearerToken = uuidv4();
|
|
}
|
|
|
|
// Initialize buffer aggregator
|
|
bufferAggregator = new BufferAggregator({
|
|
terminalManager,
|
|
remoteRegistry,
|
|
isHQMode: config.isHQMode,
|
|
});
|
|
|
|
// Set up authentication
|
|
const authMiddleware = createAuthMiddleware({
|
|
basicAuthUsername: config.basicAuthUsername,
|
|
basicAuthPassword: config.basicAuthPassword,
|
|
isHQMode: config.isHQMode,
|
|
bearerToken: remoteBearerToken || undefined, // Token that HQ must use to auth with us
|
|
});
|
|
|
|
// Apply auth middleware to all API routes
|
|
app.use('/api', authMiddleware);
|
|
|
|
// Serve static files
|
|
const publicPath = path.join(process.cwd(), 'public');
|
|
app.use(express.static(publicPath));
|
|
|
|
// Health check endpoint (no auth required)
|
|
app.get('/api/health', (req, res) => {
|
|
const versionInfo = getVersionInfo();
|
|
res.json({
|
|
status: 'ok',
|
|
timestamp: new Date().toISOString(),
|
|
mode: config.isHQMode ? 'hq' : 'remote',
|
|
version: versionInfo.version,
|
|
buildDate: versionInfo.buildDate,
|
|
uptime: versionInfo.uptime,
|
|
pid: versionInfo.pid,
|
|
});
|
|
});
|
|
|
|
// Mount routes
|
|
app.use(
|
|
'/api',
|
|
createSessionRoutes({
|
|
ptyManager,
|
|
terminalManager,
|
|
streamWatcher,
|
|
remoteRegistry,
|
|
isHQMode: config.isHQMode,
|
|
})
|
|
);
|
|
|
|
app.use(
|
|
'/api',
|
|
createRemoteRoutes({
|
|
remoteRegistry,
|
|
isHQMode: config.isHQMode,
|
|
})
|
|
);
|
|
|
|
// WebSocket endpoint for buffer updates
|
|
wss.on('connection', (ws, _req) => {
|
|
if (bufferAggregator) {
|
|
bufferAggregator.handleClientConnection(ws);
|
|
} else {
|
|
console.error(chalk.red('[WS] BufferAggregator not initialized'));
|
|
ws.close();
|
|
}
|
|
});
|
|
|
|
// Serve index.html for client-side routes (but not API routes)
|
|
app.get('/', (req, res) => {
|
|
res.sendFile(path.join(publicPath, 'index.html'));
|
|
});
|
|
|
|
// 404 handler for all other routes
|
|
app.use((req, res) => {
|
|
if (req.path.startsWith('/api/')) {
|
|
res.status(404).json({ error: 'API endpoint not found' });
|
|
} else {
|
|
res.status(404).sendFile(path.join(publicPath, '404.html'), (err) => {
|
|
if (err) {
|
|
res.status(404).send('404 - Page not found');
|
|
}
|
|
});
|
|
}
|
|
});
|
|
|
|
// Start server function
|
|
const startServer = () => {
|
|
const requestedPort = config.port !== null ? config.port : Number(process.env.PORT) || 4020;
|
|
server.listen(requestedPort, () => {
|
|
const address = server.address();
|
|
const actualPort =
|
|
typeof address === 'string' ? requestedPort : address?.port || requestedPort;
|
|
console.log(chalk.green(`VibeTunnel Server running on http://localhost:${actualPort}`));
|
|
|
|
if (config.basicAuthUsername && config.basicAuthPassword) {
|
|
console.log(chalk.green('Basic authentication: ENABLED'));
|
|
console.log(`Username: ${config.basicAuthUsername}`);
|
|
console.log(`Password: ${'*'.repeat(config.basicAuthPassword.length)}`);
|
|
} else {
|
|
console.log(chalk.red('⚠️ WARNING: Server running without authentication!'));
|
|
console.log(
|
|
chalk.yellow(
|
|
'Anyone can access this server. Use --username and --password or set VIBETUNNEL_USERNAME and VIBETUNNEL_PASSWORD.'
|
|
)
|
|
);
|
|
}
|
|
|
|
// Initialize HQ client now that we know the actual port
|
|
if (config.hqUrl && config.hqUsername && config.hqPassword && config.remoteName) {
|
|
const remoteUrl = `http://localhost:${actualPort}`;
|
|
hqClient = new HQClient(
|
|
config.hqUrl,
|
|
config.hqUsername,
|
|
config.hqPassword,
|
|
config.remoteName,
|
|
remoteUrl,
|
|
remoteBearerToken || ''
|
|
);
|
|
console.log(chalk.green('Remote mode: Will accept Bearer token for HQ access'));
|
|
console.log(`Token: ${hqClient.getToken()}`);
|
|
}
|
|
|
|
// Send message to parent process if running as child (for testing)
|
|
// Skip in vitest environment to avoid channel conflicts
|
|
if (process.send && !process.env.VITEST) {
|
|
process.send({ type: 'server-started', port: actualPort });
|
|
}
|
|
|
|
// Register with HQ if configured
|
|
if (hqClient) {
|
|
hqClient.register().catch((err) => {
|
|
console.error('Failed to register with HQ:', err);
|
|
});
|
|
}
|
|
|
|
// Start control directory watcher
|
|
controlDirWatcher = new ControlDirWatcher({
|
|
controlDir: CONTROL_DIR,
|
|
remoteRegistry,
|
|
isHQMode: config.isHQMode,
|
|
hqClient,
|
|
});
|
|
controlDirWatcher.start();
|
|
});
|
|
};
|
|
|
|
return {
|
|
app,
|
|
server,
|
|
wss,
|
|
startServer,
|
|
config,
|
|
ptyManager,
|
|
terminalManager,
|
|
streamWatcher,
|
|
remoteRegistry,
|
|
hqClient,
|
|
controlDirWatcher,
|
|
bufferAggregator,
|
|
};
|
|
}
|
|
|
|
// Export a function to start the server
|
|
export function startVibeTunnelServer() {
|
|
// Create and configure the app
|
|
const appInstance = createApp();
|
|
const { startServer, server, terminalManager, remoteRegistry, hqClient, controlDirWatcher } =
|
|
appInstance;
|
|
|
|
startServer();
|
|
|
|
// Cleanup old terminals every 5 minutes
|
|
setInterval(
|
|
() => {
|
|
terminalManager.cleanup(5 * 60 * 1000); // 5 minutes
|
|
},
|
|
5 * 60 * 1000
|
|
);
|
|
|
|
// Graceful shutdown
|
|
let localShuttingDown = false;
|
|
|
|
const shutdown = async () => {
|
|
if (localShuttingDown) {
|
|
console.log(chalk.red('Force exit...'));
|
|
process.exit(1);
|
|
}
|
|
|
|
localShuttingDown = true;
|
|
setShuttingDown(true);
|
|
console.log(chalk.yellow('\nShutting down...'));
|
|
|
|
try {
|
|
// Stop control directory watcher
|
|
if (controlDirWatcher) {
|
|
controlDirWatcher.stop();
|
|
}
|
|
|
|
if (hqClient) {
|
|
await hqClient.destroy();
|
|
}
|
|
|
|
if (remoteRegistry) {
|
|
remoteRegistry.destroy();
|
|
}
|
|
|
|
server.close(() => {
|
|
console.log(chalk.green('Server closed successfully'));
|
|
process.exit(0);
|
|
});
|
|
|
|
// Force exit after 5 seconds if graceful shutdown fails
|
|
setTimeout(() => {
|
|
console.log(chalk.red('Graceful shutdown timeout, forcing exit...'));
|
|
process.exit(1);
|
|
}, 5000);
|
|
} catch (error) {
|
|
console.error(chalk.red('Error during shutdown:'), error);
|
|
process.exit(1);
|
|
}
|
|
};
|
|
|
|
process.on('SIGINT', shutdown);
|
|
process.on('SIGTERM', shutdown);
|
|
}
|
|
|
|
// Export for testing
|
|
export * from './version.js';
|