@adversity/coding-tool-x 2.2.0 → 2.4.0

package/src/server/api/health-check.js

@@ -1,11 +1,6 @@
 const express = require('express');
 const router = express.Router();
-const {
-  healthCheckAllProjects,
-  scanLegacySessionFiles,
-  migrateSessionFiles,
-  cleanLegacySessionFiles
-} = require('../services/health-check');
+const { healthCheckAllProjects } = require('../services/health-check');
 const { getProjects } = require('../services/sessions');
 
 module.exports = (config) => {
@@ -31,88 +26,5 @@ module.exports = (config) => {
     }
   });
 
-  /**
-   * GET /api/health-check/scan-legacy - 扫描旧文件
-   */
-  router.get('/scan-legacy', (req, res) => {
-    try {
-      const result = scanLegacySessionFiles();
-
-      res.json({
-        success: true,
-        timestamp: new Date().toISOString(),
-        ...result
-      });
-    } catch (error) {
-      console.error('Legacy scan failed:', error);
-      res.status(500).json({
-        success: false,
-        error: error.message
-      });
-    }
-  });
-
-  /**
-   * POST /api/health-check/migrate-legacy - 迁移旧文件到正确位置
-   * Body:
-   * {
-   *   "dryRun": boolean,  // 是否只是预演
-   *   "projectNames": string[]  // 可选：指定要迁移的项目
-   * }
-   */
-  router.post('/migrate-legacy', (req, res) => {
-    try {
-      const { dryRun = false, projectNames = null } = req.body;
-
-      const result = migrateSessionFiles({
-        dryRun,
-        projectNames
-      });
-
-      res.json({
-        success: true,
-        timestamp: new Date().toISOString(),
-        ...result
-      });
-    } catch (error) {
-      console.error('Legacy migration failed:', error);
-      res.status(500).json({
-        success: false,
-        error: error.message
-      });
-    }
-  });
-
-  /**
-   * POST /api/health-check/clean-legacy - 清理旧文件
-   * Body:
-   * {
-   *   "dryRun": boolean,  // 是否只是预演
-   *   "projectNames": string[]  // 可选：指定要清理的项目
-   * }
-   */
-  router.post('/clean-legacy', (req, res) => {
-    try {
-      const { dryRun = false, projectNames = null } = req.body;
-
-      const result = cleanLegacySessionFiles({
-        dryRun,
-        projectNames
-      });
-
-      res.json({
-        success: true,
-        timestamp: new Date().toISOString(),
-        ...result
-      });
-    } catch (error) {
-      console.error('Legacy cleanup failed:', error);
-      res.status(500).json({
-        success: false,
-        error: error.message
-      });
-    }
-  });
-
   return router;
 };

package/src/server/api/permissions.js

@@ -0,0 +1,370 @@
+/**
+ * Command Permissions API 路由
+ *
+ * 管理 Claude Code / Codex / Gemini CLI 命令执行权限
+ *
+ * 三个 CLI 工具的权限控制机制：
+ *
+ * 1. Claude Code:
+ *    - 配置文件: ~/.claude/settings.json (用户级) 或 .claude/settings.json (项目级)
+ *    - 权限格式: permissions.allow / permissions.deny 数组
+ *    - 支持通配符: Bash(npm run *), Read(./src/**)
+ *
+ * 2. Codex CLI:
+ *    - 启动参数: --ask-for-approval never/on-request/on-failure
+ *    - 沙箱模式: --sandbox read-only/workspace-write/danger-full-access
+ *    - YOLO 模式: --yolo 或 --dangerously-bypass-approvals-and-sandbox
+ *
+ * 3. Gemini CLI:
+ *    - 启动参数: --approval-mode default/auto_edit/yolo
+ *    - 允许工具: --allowed-tools "ShellTool(git status)"
+ *    - 沙箱: --sandbox / -s
+ */
+
+const express = require('express');
+const fs = require('fs');
+const path = require('path');
+const os = require('os');
+const permissionTemplatesService = require('../services/permission-templates-service');
+
+const router = express.Router();
+
+// Claude Code 设置文件路径
+function getClaudeSettingsPath(projectPath, isLocal = false) {
+  if (projectPath) {
+    return path.join(projectPath, '.claude', isLocal ? 'settings.local.json' : 'settings.json');
+  }
+  return path.join(os.homedir(), '.claude', 'settings.json');
+}
+
+// 读取 Claude Code settings.json
+function readClaudeSettings(projectPath, isLocal = false) {
+  const settingsPath = getClaudeSettingsPath(projectPath, isLocal);
+  try {
+    if (fs.existsSync(settingsPath)) {
+      const content = fs.readFileSync(settingsPath, 'utf-8');
+      return JSON.parse(content);
+    }
+  } catch (err) {
+    console.error('[Permissions API] Error reading Claude settings:', err);
+  }
+  return {};
+}
+
+// 保存 Claude Code settings.json
+function saveClaudeSettings(projectPath, settings, isLocal = false) {
+  const settingsPath = getClaudeSettingsPath(projectPath, isLocal);
+  const settingsDir = path.dirname(settingsPath);
+
+  if (!fs.existsSync(settingsDir)) {
+    fs.mkdirSync(settingsDir, { recursive: true });
+  }
+
+  fs.writeFileSync(settingsPath, JSON.stringify(settings, null, 2), 'utf-8');
+}
+
+// 全局 all-allow 状态（内存中）
+let globalAllAllowEnabled = process.env.CLAUDE_ALL_ALLOW === 'true';
+
+/**
+ * 获取项目的命令执行权限设置
+ * GET /api/permissions
+ * Query: projectPath - 项目路径, cliType - CLI 类型 (claude/codex/gemini)
+ */
+router.get('/', (req, res) => {
+  try {
+    const { projectPath, cliType = 'claude' } = req.query;
+
+    if (!projectPath) {
+      return res.status(400).json({
+        success: false,
+        message: '缺少 projectPath 参数'
+      });
+    }
+
+    if (!fs.existsSync(projectPath)) {
+      return res.status(404).json({
+        success: false,
+        message: '项目路径不存在'
+      });
+    }
+
+    // 读取 Claude Code 配置（所有 CLI 工具共用此配置管理）
+    const settings = readClaudeSettings(projectPath);
+    const permissions = settings.permissions || {};
+
+    res.json({
+      success: true,
+      cliType,
+      settings: {
+        // Claude Code 格式
+        allow: permissions.allow || [],
+        deny: permissions.deny || [],
+        // 兼容旧格式
+        allowedCommands: permissions.allow || [],
+        denyCommands: permissions.deny || []
+      }
+    });
+  } catch (err) {
+    console.error('[Permissions API] Get permissions error:', err);
+    res.status(500).json({
+      success: false,
+      message: err.message
+    });
+  }
+});
+
+/**
+ * 保存项目的命令执行权限设置
+ * POST /api/permissions
+ * Body: { projectPath, settings: { allow, deny }, isLocal }
+ */
+router.post('/', (req, res) => {
+  try {
+    const { projectPath, settings: newPermissions, isLocal = false } = req.body;
+
+    if (!projectPath) {
+      return res.status(400).json({
+        success: false,
+        message: '缺少 projectPath 参数'
+      });
+    }
+
+    if (!fs.existsSync(projectPath)) {
+      return res.status(404).json({
+        success: false,
+        message: '项目路径不存在'
+      });
+    }
+
+    // 读取现有设置
+    const settings = readClaudeSettings(projectPath, isLocal);
+
+    // 更新权限设置（使用 Claude Code 的标准格式）
+    settings.permissions = {
+      allow: newPermissions?.allow || newPermissions?.allowedCommands || [],
+      deny: newPermissions?.deny || newPermissions?.denyCommands || []
+    };
+
+    // 保存设置
+    saveClaudeSettings(projectPath, settings, isLocal);
+
+    res.json({
+      success: true,
+      message: '权限设置已保存',
+      savedTo: isLocal ? '.claude/settings.local.json' : '.claude/settings.json'
+    });
+  } catch (err) {
+    console.error('[Permissions API] Save permissions error:', err);
+    res.status(500).json({
+      success: false,
+      message: err.message
+    });
+  }
+});
+
+/**
+ * 获取全局 all-allow 模式状态
+ * GET /api/permissions/all-allow
+ */
+router.get('/all-allow', (req, res) => {
+  try {
+    res.json({
+      success: true,
+      enabled: globalAllAllowEnabled,
+      note: '此设置通过启动命令参数控制，如 claude --dangerously-skip-permissions'
+    });
+  } catch (err) {
+    console.error('[Permissions API] Get all-allow status error:', err);
+    res.status(500).json({
+      success: false,
+      message: err.message
+    });
+  }
+});
+
+/**
+ * 设置全局 all-allow 模式（运行时）
+ * POST /api/permissions/all-allow
+ * Body: { enabled }
+ */
+router.post('/all-allow', (req, res) => {
+  try {
+    const { enabled } = req.body;
+    globalAllAllowEnabled = !!enabled;
+
+    res.json({
+      success: true,
+      enabled: globalAllAllowEnabled,
+      message: enabled ? 'All-Allow 模式已启用' : 'All-Allow 模式已禁用'
+    });
+  } catch (err) {
+    console.error('[Permissions API] Set all-allow status error:', err);
+    res.status(500).json({
+      success: false,
+      message: err.message
+    });
+  }
+});
+
+/**
+ * 获取所有权限模版（内置 + 自定义）
+ * GET /api/permissions/templates
+ */
+router.get('/templates', (req, res) => {
+  try {
+    const templates = permissionTemplatesService.getAllTemplates();
+    res.json({
+      success: true,
+      data: templates
+    });
+  } catch (err) {
+    console.error('[Permissions API] Get templates error:', err);
+    res.status(500).json({
+      success: false,
+      message: err.message
+    });
+  }
+});
+
+/**
+ * 获取单个权限模版
+ * GET /api/permissions/templates/:id
+ */
+router.get('/templates/:id', (req, res) => {
+  try {
+    const template = permissionTemplatesService.getTemplateById(req.params.id);
+    if (!template) {
+      return res.status(404).json({
+        success: false,
+        message: '模版不存在'
+      });
+    }
+    res.json({
+      success: true,
+      data: template
+    });
+  } catch (err) {
+    console.error('[Permissions API] Get template error:', err);
+    res.status(500).json({
+      success: false,
+      message: err.message
+    });
+  }
+});
+
+/**
+ * 创建自定义权限模版
+ * POST /api/permissions/templates
+ */
+router.post('/templates', (req, res) => {
+  try {
+    const template = permissionTemplatesService.createTemplate(req.body);
+    res.json({
+      success: true,
+      data: template,
+      message: '模版创建成功'
+    });
+  } catch (err) {
+    console.error('[Permissions API] Create template error:', err);
+    res.status(400).json({
+      success: false,
+      message: err.message
+    });
+  }
+});
+
+/**
+ * 更新自定义权限模版
+ * PUT /api/permissions/templates/:id
+ */
+router.put('/templates/:id', (req, res) => {
+  try {
+    const template = permissionTemplatesService.updateTemplate(req.params.id, req.body);
+    res.json({
+      success: true,
+      data: template,
+      message: '模版更新成功'
+    });
+  } catch (err) {
+    console.error('[Permissions API] Update template error:', err);
+    res.status(400).json({
+      success: false,
+      message: err.message
+    });
+  }
+});
+
+/**
+ * 删除自定义权限模版
+ * DELETE /api/permissions/templates/:id
+ */
+router.delete('/templates/:id', (req, res) => {
+  try {
+    permissionTemplatesService.deleteTemplate(req.params.id);
+    res.json({
+      success: true,
+      message: '模版删除成功'
+    });
+  } catch (err) {
+    console.error('[Permissions API] Delete template error:', err);
+    res.status(400).json({
+      success: false,
+      message: err.message
+    });
+  }
+});
+
+/**
+ * 获取各 CLI 工具的启动参数配置说明
+ * GET /api/permissions/cli-config
+ */
+router.get('/cli-config', (req, res) => {
+  try {
+    const cliConfigs = {
+      claude: {
+        name: 'Claude Code',
+        configFile: '.claude/settings.json',
+        userConfigFile: '~/.claude/settings.json',
+        permissionFormat: {
+          example: {
+            permissions: {
+              allow: ['Bash(npm run:*)', 'Read(./src/**)'],
+              deny: ['Bash(rm:*)', 'Read(.env)']
+            }
+          }
+        },
+        allAllowFlag: '--dangerously-skip-permissions',
+        docs: 'https://docs.anthropic.com/en/docs/claude-code'
+      },
+      codex: {
+        name: 'Codex CLI',
+        sandboxModes: ['read-only', 'workspace-write'],
+        approvalModes: ['suggest', 'auto-edit'],
+        allAllowFlag: '--dangerously-bypass-approvals-and-sandbox',
+        example: 'codex --approval-mode auto-edit --sandbox workspace-write "task"',
+        docs: 'https://github.com/openai/codex'
+      },
+      gemini: {
+        name: 'Gemini CLI',
+        allowedToolsFlag: '--allowedTools "ShellTool(git status)"',
+        sandboxFlag: '--sandbox / -s',
+        allAllowFlag: '--yolo',
+        docs: 'https://github.com/google-gemini/gemini-cli'
+      }
+    };
+
+    res.json({
+      success: true,
+      cliConfigs
+    });
+  } catch (err) {
+    console.error('[Permissions API] Get CLI config error:', err);
+    res.status(500).json({
+      success: false,
+      message: err.message
+    });
+  }
+});
+
+module.exports = router;

package/src/server/api/rules.js

@@ -268,4 +268,192 @@ router.delete('/:scope/*', (req, res) => {
   }
 });
 
+// ==================== 仓库管理 API ====================
+
+/**
+ * 获取所有规则（包括远程仓库）
+ * GET /api/rules/all
+ * Query: projectPath, refresh=1 强制刷新缓存
+ */
+router.get('/all', async (req, res) => {
+  try {
+    const { projectPath, refresh } = req.query;
+    const forceRefresh = refresh === '1';
+    const result = await rulesService.listAllRules(projectPath || null, forceRefresh);
+
+    res.json({
+      success: true,
+      ...result
+    });
+  } catch (err) {
+    console.error('[Rules API] List all rules error:', err);
+    res.status(500).json({
+      success: false,
+      message: err.message
+    });
+  }
+});
+
+/**
+ * 获取仓库列表
+ * GET /api/rules/repos
+ */
+router.get('/repos', (req, res) => {
+  try {
+    const repos = rulesService.getRepos();
+    res.json({
+      success: true,
+      repos
+    });
+  } catch (err) {
+    console.error('[Rules API] Get repos error:', err);
+    res.status(500).json({
+      success: false,
+      message: err.message
+    });
+  }
+});
+
+/**
+ * 添加仓库
+ * POST /api/rules/repos
+ * Body: { owner, name, branch, directory, enabled }
+ */
+router.post('/repos', (req, res) => {
+  try {
+    const { owner, name, branch = 'main', directory = '', enabled = true } = req.body;
+
+    if (!owner || !name) {
+      return res.status(400).json({
+        success: false,
+        message: 'Missing owner or name'
+      });
+    }
+
+    const repos = rulesService.addRepo({ owner, name, branch, directory, enabled });
+
+    res.json({
+      success: true,
+      repos
+    });
+  } catch (err) {
+    console.error('[Rules API] Add repo error:', err);
+    res.status(500).json({
+      success: false,
+      message: err.message
+    });
+  }
+});
+
+/**
+ * 删除仓库
+ * DELETE /api/rules/repos/:owner/:name
+ * Query: directory - 可选，子目录路径
+ */
+router.delete('/repos/:owner/:name', (req, res) => {
+  try {
+    const { owner, name } = req.params;
+    const { directory = '' } = req.query;
+    const repos = rulesService.removeRepo(owner, name, directory);
+
+    res.json({
+      success: true,
+      repos
+    });
+  } catch (err) {
+    console.error('[Rules API] Remove repo error:', err);
+    res.status(500).json({
+      success: false,
+      message: err.message
+    });
+  }
+});
+
+/**
+ * 切换仓库启用状态
+ * PUT /api/rules/repos/:owner/:name/toggle
+ * Body: { enabled, directory }
+ */
+router.put('/repos/:owner/:name/toggle', (req, res) => {
+  try {
+    const { owner, name } = req.params;
+    const { enabled, directory = '' } = req.body;
+
+    const repos = rulesService.toggleRepo(owner, name, directory, enabled);
+
+    res.json({
+      success: true,
+      repos
+    });
+  } catch (err) {
+    console.error('[Rules API] Toggle repo error:', err);
+    res.status(500).json({
+      success: false,
+      message: err.message
+    });
+  }
+});
+
+/**
+ * 从远程仓库安装规则
+ * POST /api/rules/install
+ * Body: rule object from listAllRules
+ */
+router.post('/install', async (req, res) => {
+  try {
+    const rule = req.body;
+
+    if (!rule || !rule.repoOwner || !rule.repoName) {
+      return res.status(400).json({
+        success: false,
+        message: 'Missing rule info or repo info'
+      });
+    }
+
+    const result = await rulesService.installFromRemote(rule);
+
+    res.json({
+      success: true,
+      ...result
+    });
+  } catch (err) {
+    console.error('[Rules API] Install rule error:', err);
+    res.status(500).json({
+      success: false,
+      message: err.message
+    });
+  }
+});
+
+/**
+ * 卸载规则
+ * POST /api/rules/uninstall
+ * Body: { path } - 规则的相对路径
+ */
+router.post('/uninstall', (req, res) => {
+  try {
+    const { path } = req.body;
+
+    if (!path) {
+      return res.status(400).json({
+        success: false,
+        message: 'Missing path'
+      });
+    }
+
+    const result = rulesService.uninstallRule(path);
+
+    res.json({
+      success: true,
+      ...result
+    });
+  } catch (err) {
+    console.error('[Rules API] Uninstall rule error:', err);
+    res.status(500).json({
+      success: false,
+      message: err.message
+    });
+  }
+});
+
 module.exports = router;