eks-cent 1.0.0

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA256:
+  metadata.gz: 73efb3a1a1ad1d549803f630114430b8434017ea8baff4e8caf07155e0c97772
+  data.tar.gz: a26be3a7a6be66e1da635495af7c2f99e12914512cea12c46caa59365f865eb8
+SHA512:
+  metadata.gz: 7b82cd30fcb60e6aa144a37ebd0d16820079a210b633e249bd534eb2e08d7d9da6ce65c1e39516c17de2373a05f9c23058684bf8d914ef53611c3c09e0de5f07
+  data.tar.gz: a26da376408cbe2b99a928ff78ca78928fa3d8f0ffe790a7bf6b947e4cab3396f108f5d762bd8f4953510a53b6cc5884a1243e21581aa0f8a01092ecfe754124

data/LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2026 IshikawaUta
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

data/README.md

@@ -0,0 +1,106 @@
+# Eks-Cent Framework 🚀
+
+**Eks-Cent** adalah framework web Ruby ringan yang terinspirasi oleh Rack. Dirancang untuk kecepatan, keamanan, dan kemudahan penggunaan tanpa dependensi eksternal yang berat.
+
+Eks-Cent menggunakan **Eksa-Server** sebagai engine server bawaan untuk performa tinggi di lingkungan produksi.
+
+## ✨ Fitur Utama
+
+- 🛤 **Advanced Routing**: DSL rute yang bersih dengan dukungan parameter dinamis dan namespace.
+- 🔐 **Security Pack**:
+  - **Signed Sessions**: Data session aman dengan HMAC-SHA256.
+  - **XSS Protection**: Helper `h` otomatis untuk escape HTML di template.
+  - **Security Headers**: Middleware bawaan untuk header Frame-Options, XSS-Protection, dll.
+- 🎨 **Templating**: Integrasi native dengan **ERB** (Embedded Ruby).
+- 📦 **JSON Ready**: Parsing otomatis untuk request body `application/json`.
+- ⚡ **High Performance**: Terintegrasi dengan Eksa-Server (Cluster mode & Workers).
+- 🛠 **CLI Tool**: Jalankan aplikasi dengan perintah `ekscentup` layaknya `rackup`.
+
+## 📦 Instalasi
+
+Tambahkan baris ini ke dalam Gemfile aplikasi Anda:
+
+```ruby
+gem 'eks-cent'
+```
+
+Lalu jalankan:
+```bash
+gem install eks-cent
+```
+
+## 🚀 Memulai Cepat
+
+Buat file bernama `config.eks`:
+
+```ruby
+# config.eks
+use EksCent::Middleware::ContentSecurity
+use EksCent::Middleware::Session
+use EksCent::Middleware::Logger
+use EksCent::Middleware::ShowExceptions
+
+router = EksCent::Router.new do
+  # Halaman Utama
+  get '/' do |req, res|
+    req.session['visits'] ||= 0
+    req.session['visits'] += 1
+    res.write "<h1>Halo! Anda sudah berkunjung #{req.session['visits']} kali.</h1>"
+  end
+
+  # Rute Dinamis
+  get '/hello/:name' do |req, res|
+    res.render 'welcome', name: req.params['name']
+  end
+
+  # API JSON
+  namespace '/api' do
+    post '/data' do |req, res|
+      res.headers['Content-Type'] = 'application/json'
+      res.write({ status: 'success', data: req.params }.to_json)
+    end
+  end
+end
+
+run router
+```
+
+Jalankan server:
+```bash
+./bin/ekscentup -p 3000
+```
+
+## 🛠 Penggunaan CLI (`ekscentup`)
+
+| Opsi | Deskripsi |
+|------|-----------|
+| `-p, --port` | Menentukan port server (default: 3000) |
+| `-o, --host` | Menentukan host server (default: 0.0.0.0) |
+| `-w, --workers` | Jumlah worker untuk mode Cluster |
+| `-R, --reload` | Aktifkan auto-reload saat file berubah |
+| `-e, --env` | Set lingkungan (`development` atau `production`) |
+| `-L, --log` | Simpan log ke file tertentu |
+
+## 🛡 Mode Produksi
+
+Untuk keamanan maksimal di produksi, pastikan Anda menyetel environment variable dan secret key:
+
+```bash
+export EKS_CENT_SECRET_KEY_BASE="kunci_rahasia_anda_yang_unik"
+export RACK_ENV=production
+./bin/ekscentup -p 80 -e production
+```
+
+## 🧪 Pengujian
+
+Eks-Cent dilengkapi dengan suite pengujian yang lengkap. Untuk menjalankan semua tes:
+
+```bash
+ruby test/eks_cent_test.rb
+ruby test/router_test.rb
+ruby test/security_test.rb
+```
+
+## 📄 Lisensi
+
+Eks-Cent didistribusikan di bawah [Lisensi MIT](LICENSE).

data/bin/ekscentup

@@ -0,0 +1,120 @@
+#!/usr/bin/env ruby
+# File: bin/ekscentup
+
+require 'optparse'
+require 'fileutils'
+require_relative '../lib/eks-cent'
+
+# Cari lokasi gem eksa-server agar bisa memuat server.rb
+begin
+  spec = Gem::Specification.find_by_name('eksa-server')
+  gem_root = spec.gem_dir
+  require File.join(gem_root, 'server.rb')
+rescue Gem::LoadError
+  puts "\e[31mError: Gem 'eksa-server' tidak ditemukan.\e[0m"
+  puts "Silakan instal dengan: gem install eksa-server"
+  exit 1
+end
+
+options = {
+  port: 3000,
+  host: '0.0.0.0',
+  workers: 0,
+  reload: false,
+  timeout: 30,
+  env: ENV['RACK_ENV'] || 'development'
+}
+
+OptionParser.new do |opts|
+  opts.banner = "Penggunaan: ekscentup [opsi] [file_konfigurasi]"
+  opts.separator ""
+  opts.separator "Opsi Eks-Cent:"
+
+  opts.on("-p", "--port PORT", Integer, "Port untuk server (default: 3000)") do |v|
+    options[:port] = v
+  end
+
+  opts.on("-o", "--host HOST", "Host untuk server (default: 0.0.0.0)") do |v|
+    options[:host] = v
+  end
+
+  opts.on("-w", "--workers COUNT", Integer, "Jumlah worker (untuk cluster mode)") do |v|
+    options[:workers] = v
+  end
+
+  opts.on("-R", "--reload", "Aktifkan auto-reload saat file berubah") do
+    options[:reload] = true
+  end
+
+  opts.on("-L", "--log PATH", "Path untuk file log") do |v|
+    options[:log_file] = v
+  end
+
+  opts.on("-D", "--daemonize", "Jalankan di latar belakang") do
+    options[:daemonize] = true
+  end
+
+  opts.on("-e", "--env ENV", "Set environment (development/production)") do |v|
+    options[:env] = v
+    ENV['RACK_ENV'] = v
+  end
+
+  opts.on("-v", "--version", "Tampilkan versi Eks-Cent") do
+    puts "Eks-Cent versi #{EksCent::VERSION}"
+    puts "Eksa-Server versi #{EksaServer::VERSION}" if defined?(EksaServer::VERSION)
+    exit
+  end
+
+  opts.on("-h", "--help", "Tampilkan pesan bantuan ini") do
+    puts opts
+    exit
+  end
+end.parse!
+
+# File konfigurasi default adalah config.eks
+config_file = ARGV[0] || 'config.eks'
+config_path = File.expand_path(config_file)
+
+unless File.exist?(config_path)
+  puts "\e[31mError: File '#{config_file}' tidak ditemukan.\e[0m"
+  exit 1
+end
+
+puts "\e[32m[Eks-Cent] Memuat aplikasi dari #{config_file}...\e[0m"
+
+# Set logger global EksCent jika ada opsi -L
+if options[:log_file]
+  EksCent.logger = File.open(options[:log_file], 'a')
+  EksCent.logger.sync = true
+end
+
+# Check Secret Key di mode produksi
+if EksCent.production?
+  default_key = '1e8a93e80c85b1a6c4b69d9c2e8b2a1a8e1b1d8c1c2e1f2g1h1i1j1k1l1m1n1o'
+  if EksCent.secret_key_base == default_key
+    puts "\e[33m[PERINGATAN] Aplikasi berjalan di mode PRODUCTION dengan SECRET_KEY_BASE default.\e[0m"
+    puts "\e[33mSegera atur EKS_CENT_SECRET_KEY_BASE di environment variable Anda untuk keamanan!\e[0m"
+  end
+end
+
+puts "\e[34m[Eks-Cent] Environment: #{EksCent.env}\e[0m"
+
+# Load aplikasi via Builder
+begin
+  app = EksCent.load(config_path)
+rescue => e
+  puts "\e[31mGagal memuat aplikasi: #{e.message}\e[0m"
+  puts e.backtrace.first(5).join("\n")
+  exit 1
+end
+
+# Jalankan menggunakan EksaServerCore
+begin
+  server = EksaServerCore.new(app, options)
+  server.start
+rescue Interrupt
+  puts "\n\e[33mMenutup server Eks-Cent...\e[0m"
+rescue => e
+  puts "\e[31mServer error: #{e.message}\e[0m"
+  exit 1
+end

data/config.eks

@@ -0,0 +1,44 @@
+# File: config.eks
+# Contoh konfigurasi untuk Eks-Cent
+
+use EksCent::Middleware::ContentSecurity
+use EksCent::Middleware::Session
+use EksCent::Middleware::Static, root: 'public'
+use EksCent::Middleware::Logger
+use EksCent::Middleware::ShowExceptions
+
+# Aplikasi Utama
+# Aplikasi Utama menggunakan Router
+router = EksCent::Router.new do
+  get '/' do |req, res|
+    # Contoh penggunaan session
+    req.session['visits'] ||= 0
+    req.session['visits'] += 1
+    
+    res.write "<h1>Selamat Datang di Eks-Cent!</h1>"
+    res.write "<p>Ini adalah framework tanpa dependensi.</p>"
+    res.write "<p>Jumlah kunjungan Anda: <strong>#{req.session['visits']}</strong></p>"
+    res.write "<p>Cobalah akses <a href='/error'>/error</a> untuk melihat middleware ShowExceptions.</p>"
+  end
+
+  get '/welcome' do |req, res|
+    # Contoh penggunaan ERB rendering dan h helper
+    res.render 'test', name: req.params['name'] || 'Tamu'
+  end
+
+  get '/hello/:name' do |req, res|
+    name = req.params['name'] || 'Fulan'
+    res.write "Halo, #{name}! Senang bertemu Anda di #{req.user_agent}."
+  end
+
+  get '/hello' do |req, res|
+    name = req.params['name'] || 'Fulan'
+    res.write "Halo, #{name}! Senang bertemu Anda di #{req.user_agent}."
+  end
+
+  get '/error' do |req, res|
+    raise "Waduh! Ada kesalahan yang disengaja di sini."
+  end
+end
+
+run router

data/lib/eks-cent.rb

@@ -0,0 +1,41 @@
+# Eks-Cent: Lightweight Rack-like Communication Interface for Ruby.
+
+require_relative 'eks_cent/version'
+require_relative 'eks_cent/request'
+require_relative 'eks_cent/response'
+require_relative 'eks_cent/builder'
+require_relative 'eks_cent/router'
+require_relative 'eks_cent/mock_request'
+require_relative 'eks_cent/middleware/logger'
+require_relative 'eks_cent/middleware/session'
+require_relative 'eks_cent/middleware/content_security'
+require_relative 'eks_cent/middleware/show_exceptions'
+require_relative 'eks_cent/middleware/static'
+
+module EksCent
+  
+  class << self
+    attr_accessor :logger, :secret_key_base
+  end
+  self.logger = $stdout
+  # Default secret key (sebaiknya diatur via ENV di produksi)
+  self.secret_key_base = ENV['EKS_CENT_SECRET_KEY_BASE'] || '1e8a93e80c85b1a6c4b69d9c2e8b2a1a8e1b1d8c1c2e1f2g1h1i1j1k1l1m1n1o'
+
+  def self.env
+    ENV['RACK_ENV'] || ENV['EKS_CENT_ENV'] || 'development'
+  end
+
+  def self.production?
+    env == 'production'
+  end
+
+  # Helper to create a new app directly
+  def self.build(&block)
+    Builder.new(&block).to_app
+  end
+
+  # Helper to load from file
+  def self.load(file)
+    Builder.parse_file(file)
+  end
+end

data/lib/eks_cent/builder.rb

@@ -0,0 +1,36 @@
+module EksCent
+  class Builder
+    def initialize(&block)
+      @use = []
+      @run = nil
+      instance_eval(&block) if block_given?
+    end
+
+    def use(middleware, *args, **kwargs, &block)
+      @use << proc { |app| middleware.new(app, *args, **kwargs, &block) }
+    end
+
+    def run(app)
+      @run = app
+    end
+
+    def to_app
+      app = @run
+      raise "Aplikasi tidak ditemukan (run nil)" unless app
+      @use.reverse_each { |middleware| app = middleware.call(app) }
+      app
+    end
+
+    def self.parse_file(file)
+      content = File.read(file)
+      builder = new
+      builder.instance_eval(content, file)
+      builder.to_app
+    end
+
+    # Helper for Rack-like interface call
+    def call(env)
+      to_app.call(env)
+    end
+  end
+end

data/lib/eks_cent/middleware/content_security.rb

@@ -0,0 +1,21 @@
+module EksCent
+  module Middleware
+    class ContentSecurity
+      def initialize(app)
+        @app = app
+      end
+
+      def call(env)
+        status, headers, body = @app.call(env)
+        
+        # Security headers
+        headers['X-Frame-Options'] ||= 'SAMEORIGIN'
+        headers['X-XSS-Protection'] ||= '1; mode=block'
+        headers['X-Content-Type-Options'] ||= 'nosniff'
+        headers['Referrer-Policy'] ||= 'strict-origin-when-cross-origin'
+        
+        [status, headers, body]
+      end
+    end
+  end
+end

data/lib/eks_cent/middleware/logger.rb

@@ -0,0 +1,20 @@
+module EksCent
+  module Middleware
+    class Logger
+      def initialize(app, output = EksCent.logger)
+        @app = app
+        @output = output
+      end
+
+      def call(env)
+        start_time = Time.now
+        status, headers, body = @app.call(env)
+        duration = Time.now - start_time
+        
+        @output.puts "[EksCent] #{Time.now} | #{env['REQUEST_METHOD']} #{env['PATH_INFO']} | Status: #{status} | Duration: #{'%.4f' % duration}s"
+        
+        [status, headers, body]
+      end
+    end
+  end
+end

data/lib/eks_cent/middleware/session.rb

@@ -0,0 +1,90 @@
+require 'json'
+require 'base64'
+require 'openssl'
+
+module EksCent
+  module Middleware
+    class Session
+      SESSION_KEY = 'eks_cent.session'
+
+      def initialize(app, options = {})
+        @app = app
+        @cookie_name = options[:cookie_name] || '_eks_cent_session'
+        @secret = options[:secret] # Placeholder for future signing
+      end
+
+      def call(env)
+        # 1. Load session from cookie
+        load_session(env)
+        
+        # 2. Call the app
+        status, headers, body = @app.call(env)
+        
+        # 3. Save session back to cookie if data exists
+        if env[SESSION_KEY]
+          json_data = JSON.dump(env[SESSION_KEY])
+          encoded_data = Base64.strict_encode64(json_data)
+          signed_data = sign(encoded_data)
+          
+          cookie = "#{@cookie_name}=#{signed_data}; path=/; HttpOnly"
+          
+          if headers['Set-Cookie']
+            headers['Set-Cookie'] = [headers['Set-Cookie'], cookie].flatten
+          else
+            headers['Set-Cookie'] = cookie
+          end
+        end
+
+        [status, headers, body]
+      end
+
+      private
+
+      def load_session(env)
+        cookie_header = env['HTTP_COOKIE']
+        session_data = nil
+        
+        if cookie_header
+          cookies = CGI::Cookie.parse(cookie_header)
+          if cookies[@cookie_name] && !cookies[@cookie_name].empty?
+            begin
+              signed_data = cookies[@cookie_name].first
+              encoded_data = verify(signed_data)
+              
+              if encoded_data
+                session_data = JSON.parse(Base64.decode64(encoded_data))
+              end
+            rescue
+              session_data = {}
+            end
+          end
+        end
+        
+        env[SESSION_KEY] = session_data || {}
+      end
+
+      def sign(data)
+        secret = EksCent.secret_key_base
+        signature = OpenSSL::HMAC.hexdigest('SHA256', secret, data)
+        "#{data}--#{signature}"
+      end
+
+      def verify(signed_data)
+        data, signature = signed_data.split('--')
+        return nil unless data && signature
+        
+        expected_signature = OpenSSL::HMAC.hexdigest('SHA256', EksCent.secret_key_base, data)
+        
+        # Gunakan constant time comparison jika tersedia (Rack::Utils), 
+        # jika tidak gunakan perbandingan standar dengan aman.
+        begin
+          return data if Rack::Utils.secure_compare(signature, expected_signature)
+        rescue
+          return data if signature == expected_signature
+        end
+        
+        nil
+      end
+    end
+  end
+end

data/lib/eks_cent/middleware/show_exceptions.rb

@@ -0,0 +1,55 @@
+module EksCent
+  module Middleware
+    class ShowExceptions
+      def initialize(app)
+        @app = app
+      end
+
+      def call(env)
+        begin
+          @app.call(env)
+        rescue => e
+          if EksCent.production?
+            render_production_error
+          else
+            render_exception(e)
+          end
+        end
+      end
+
+      private
+
+      def render_production_error
+        [500, { 'Content-Type' => 'text/html' }, ["<html><body><h1>500 Internal Server Error</h1><p>Maaf, terjadi kesalahan pada server kami. Sila hubungi tim support jika masalah berlanjut.</p></body></html>"]]
+      end
+
+      def render_exception(e)
+        status = 500
+        headers = { 'Content-Type' => 'text/html' }
+        body = [<<-HTML]
+        <!DOCTYPE html>
+        <html>
+        <head>
+          <title>Eks-Cent: Gagal Diproses</title>
+          <style>
+            body { font-family: 'Inter', sans-serif; background: #fafafa; color: #d32f2f; padding: 20px; }
+            .container { background: white; border-radius: 8px; box-shadow: 0 4px 6px rgba(0,0,0,0.1); padding: 30px; border-left: 5px solid #d32f2f; }
+            h1 { color: #d32f2f; }
+            pre { background: #eee; padding: 15px; border-radius: 4px; overflow-x: auto; color: #333; }
+          </style>
+        </head>
+        <body>
+          <div class="container">
+            <h1>#{e.class}: #{e.message}</h1>
+            <p><strong>Stack Trace:</strong></p>
+            <pre>#{e.backtrace.join("\n")}</pre>
+          </div>
+        </body>
+        </html>
+        HTML
+        
+        [status, headers, body]
+      end
+    end
+  end
+end

data/lib/eks_cent/middleware/static.rb

@@ -0,0 +1,54 @@
+require 'fileutils'
+
+module EksCent
+  module Middleware
+    class Static
+      MIME_TYPES = {
+        '.html' => 'text/html',
+        '.css'  => 'text/css',
+        '.js'   => 'application/javascript',
+        '.png'  => 'image/png',
+        '.jpg'  => 'image/jpeg',
+        '.gif'  => 'image/gif',
+        '.ico'  => 'image/x-icon',
+        '.txt'  => 'text/plain'
+      }
+
+      def initialize(app, root: 'public')
+        @app = app
+        @root = root
+      end
+
+      def call(env)
+        path = env['PATH_INFO']
+        
+        # Prevent path traversal attacks
+        if path.include?('..')
+          return [403, { 'Content-Type' => 'text/plain' }, ["Forbidden (Path Traversal)"]]
+        end
+
+        file_path = File.join(@root, path)
+
+        if File.file?(file_path)
+          serve_file(file_path)
+        else
+          @app.call(env)
+        end
+      end
+
+      private
+
+      def serve_file(path)
+        ext = File.extname(path).downcase
+        content_type = MIME_TYPES[ext] || 'application/octet-stream'
+        
+        headers = { 
+          'Content-Type' => content_type,
+          'Cache-Control' => 'public, max-age=86400' # Cache for 1 day
+        }
+        
+        [200, headers, [File.read(path)]]
+      end
+    end
+  end
+end

data/lib/eks_cent/mock_request.rb

@@ -0,0 +1,30 @@
+require 'stringio'
+
+module EksCent
+  class MockRequest
+    def initialize(app)
+      @app = app
+    end
+
+    def get(uri, opts = {})
+      request('GET', uri, opts)
+    end
+
+    def post(uri, opts = {})
+      request('POST', uri, opts)
+    end
+
+    def request(method, uri, opts = {})
+      path, query = uri.split('?')
+      env = {
+        'REQUEST_METHOD' => method,
+        'PATH_INFO'      => path,
+        'QUERY_STRING'   => query || '',
+        'HTTP_USER_AGENT' => opts[:user_agent] || 'EksCent-MockRequest',
+        'rack.input'     => StringIO.new(opts[:body] || '')
+      }.merge(opts[:env] || {})
+      
+      @app.call(env)
+    end
+  end
+end

data/lib/eks_cent/request.rb

@@ -0,0 +1,92 @@
+require 'uri'
+require 'cgi'
+require 'json'
+
+module EksCent
+  class Request
+    attr_reader :env
+
+    def initialize(env)
+      @env = env
+    end
+
+    def request_method
+      @env['REQUEST_METHOD']
+    end
+
+    def path
+      @env['PATH_INFO'] || '/'
+    end
+
+    def query_string
+      @env['QUERY_STRING'] || ''
+    end
+
+    def params
+      @params ||= parse_params
+    end
+
+    def get?
+      request_method == 'GET'
+    end
+
+    def post?
+      request_method == 'POST'
+    end
+
+    def user_agent
+      @env['HTTP_USER_AGENT']
+    end
+
+    def cookies
+      @cookies ||= parse_cookies
+    end
+
+    def session
+      @env['eks_cent.session'] ||= {}
+    end
+
+    private
+
+    def parse_cookies
+      cookie_header = @env['HTTP_COOKIE']
+      return {} unless cookie_header
+      
+      CGI::Cookie.parse(cookie_header).transform_values(&:first)
+    end
+
+    def parse_params
+      params = {}
+      
+      # Parse query string
+      params.merge!(CGI.parse(query_string)) if query_string != ''
+
+      # Parse router params if any
+      if @env['eks_cent.router_params']
+        params.merge!(@env['eks_cent.router_params'])
+      end
+
+      # Parse body based on content type
+      if @env['rack.input']
+        body = @env['rack.input'].read
+        @env['rack.input'].rewind if @env['rack.input'].respond_to?(:rewind)
+        
+        if body && !body.empty?
+          if @env['CONTENT_TYPE'] == 'application/json'
+            begin
+              params.merge!(JSON.parse(body))
+            rescue JSON::ParserError
+              # Silently ignore invalid JSON or we could log it
+            end
+          else
+            # Default to form-urlencoded if it's a POST/PUT/PATCH
+            params.merge!(CGI.parse(body)) if post? || @env['REQUEST_METHOD'] == 'PUT' || @env['REQUEST_METHOD'] == 'PATCH'
+          end
+        end
+      end
+
+      # Flatten single values
+      params.transform_values { |v| v.is_a?(Array) && v.size == 1 ? v.first : v }
+    end
+  end
+end

data/lib/eks_cent/response.rb

@@ -0,0 +1,75 @@
+require 'cgi'
+require 'time'
+
+module EksCent
+  class Response
+    attr_accessor :status, :headers, :body
+
+    def initialize(body = [], status = 200, headers = {})
+      @status = status
+      @headers = { 'Content-Type' => 'text/html' }.merge(headers)
+      @body = body.is_a?(String) ? [body] : body
+    end
+
+    def write(str)
+      @body << str
+    end
+
+    def redirect(target, status = 302)
+      @status = status
+      @headers['Location'] = target
+    end
+
+    def set_cookie(name, value, options = {})
+      @cookies ||= {}
+      @cookies[name] = options.merge(value: value)
+    end
+
+    def render(template_name, locals = {})
+      require 'erb'
+      template_path = File.join('views', "#{template_name}.erb")
+      unless File.file?(template_path)
+        raise "Template tidak ditemukan: #{template_path}"
+      end
+
+      template_content = File.read(template_path)
+      
+      # Gunakan context khusus agar helper h (escape HTML) tersedia
+      context = Object.new
+      context.extend(ERB::Util)
+      locals.each { |k, v| context.instance_variable_set("@#{k}", v) }
+      
+      # Definisikan metode helper h secara eksplisit jika perlu
+      def context.h(s); html_escape(s); end
+
+      @body << ERB.new(template_content).result(context.instance_eval { binding })
+    end
+
+    def finish
+      if @cookies
+        @cookies.each do |name, opts|
+          cookie = "#{name}=#{CGI.escape(opts[:value].to_s)}"
+          cookie << "; expires=#{opts[:expires].httpdate}" if opts[:expires].is_a?(Time)
+          cookie << "; path=#{opts[:path]}" if opts[:path]
+          cookie << "; domain=#{opts[:domain]}" if opts[:domain]
+          cookie << "; secure" if opts[:secure]
+          cookie << "; httponly" if opts[:httponly]
+          cookie << "; samesite=#{opts[:samesite]}" if opts[:samesite]
+          
+          if @headers['Set-Cookie']
+            @headers['Set-Cookie'] = [@headers['Set-Cookie'], cookie].flatten
+          else
+            @headers['Set-Cookie'] = cookie
+          end
+        end
+      end
+      [@status, @headers, @body]
+    end
+
+    def self.build
+      res = new
+      yield(res)
+      res.finish
+    end
+  end
+end

data/lib/eks_cent/router.rb

@@ -0,0 +1,95 @@
+module EksCent
+  class Router
+    def initialize(&block)
+      @routes = {
+        'GET' => [],
+        'POST' => [],
+        'PUT' => [],
+        'PATCH' => [],
+        'DELETE' => []
+      }
+      @prefix = ''
+      @current_middlewares = []
+      instance_eval(&block) if block_given?
+    end
+
+    def get(path, &block)    add_route('GET', path, &block) end
+    def post(path, &block)   add_route('POST', path, &block) end
+    def put(path, &block)    add_route('PUT', path, &block) end
+    def patch(path, &block)  add_route('PATCH', path, &block) end
+    def delete(path, &block) add_route('DELETE', path, &block) end
+
+    def namespace(prefix, &block)
+      old_prefix = @prefix
+      @prefix = "#{old_prefix}#{prefix}"
+      instance_eval(&block)
+      @prefix = old_prefix
+    end
+
+    def group(middlewares: [], &block)
+      old_middlewares = @current_middlewares
+      @current_middlewares = old_middlewares + middlewares
+      instance_eval(&block)
+      @current_middlewares = old_middlewares
+    end
+
+    def call(env)
+      req = Request.new(env)
+      
+      route = find_route(req)
+      
+      if route
+        # Extract params from path
+        match_data = route[:regex].match(req.path)
+        params = {}
+        route[:keys].each_with_index do |key, index|
+          params[key] = match_data[index + 1]
+        end
+        
+        # Inject params to env so they are available to all request objects
+        env['eks_cent.router_params'] = params
+        
+        # Wrapped application with route-specific middlewares
+        app = proc do |e| 
+          req_i = Request.new(e)
+          res_i = Response.new
+          instance_exec(req_i, res_i, &route[:block])
+          res_i.finish
+        end
+        route[:middlewares].reverse_each { |m| app = m.new(app) }
+        
+        _status, headers, body = app.call(env)
+        [_status, headers, body]
+      else
+        [404, { 'Content-Type' => 'text/plain' }, ["Not Found"]]
+      end
+    end
+
+    private
+
+    def add_route(method, path, &block)
+      keys = []
+      full_path = "#{@prefix}#{path}".gsub('//', '/')
+      pattern = full_path.gsub(/:([\w\d_]+)/) do
+        keys << $1
+        "([^/]+)"
+      end
+      regex = /^#{pattern}$/
+      
+      @routes[method] << {
+        path: full_path,
+        regex: regex,
+        keys: keys,
+        middlewares: @current_middlewares.dup,
+        block: block
+      }
+    end
+
+    def find_route(req)
+      method_routes = @routes[req.request_method]
+      return nil unless method_routes
+      
+      method_routes.find { |route| route[:regex].match?(req.path) }
+    end
+  end
+end

data/lib/eks_cent/version.rb

@@ -0,0 +1,3 @@
+module EksCent
+  VERSION = '1.0.0'
+end

metadata

@@ -0,0 +1,76 @@
+--- !ruby/object:Gem::Specification
+name: eks-cent
+version: !ruby/object:Gem::Version
+  version: 1.0.0
+platform: ruby
+authors:
+- IshikawaUta
+bindir: bin
+cert_chain: []
+date: 1980-01-02 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: eksa-server
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.1'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.1'
+description: Eks-Cent adalah framework web minimalis yang menyediakan sistem routing
+  canggih, manajemen session HMAC, dan proteksi keamanan bawaan menggunakan Eksa-Server
+  sebagai engine utama.
+email:
+- komikers09@gmail.com
+executables:
+- ekscentup
+extensions: []
+extra_rdoc_files: []
+files:
+- LICENSE
+- README.md
+- bin/ekscentup
+- config.eks
+- lib/eks-cent.rb
+- lib/eks_cent/builder.rb
+- lib/eks_cent/middleware/content_security.rb
+- lib/eks_cent/middleware/logger.rb
+- lib/eks_cent/middleware/session.rb
+- lib/eks_cent/middleware/show_exceptions.rb
+- lib/eks_cent/middleware/static.rb
+- lib/eks_cent/mock_request.rb
+- lib/eks_cent/request.rb
+- lib/eks_cent/response.rb
+- lib/eks_cent/router.rb
+- lib/eks_cent/version.rb
+homepage: https://github.com/IshikawaUta/eks-cent
+licenses:
+- MIT
+metadata:
+  allowed_push_host: https://rubygems.org
+  homepage_uri: https://github.com/IshikawaUta/eks-cent
+  source_code_uri: https://github.com/IshikawaUta/eks-cent
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: 2.6.0
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubygems_version: 3.6.7
+specification_version: 4
+summary: Framework web Ruby ringan, aman, dan siap produksi berbasis Rack.
+test_files: []