@databricks/appkit 0.0.2

package/dist/server/remote-tunnel/remote-tunnel-manager.js

@@ -0,0 +1,320 @@
+import { REMOTE_TUNNEL_ASSET_PREFIXES } from "./gate.js";
+import { generateTunnelIdFromEmail, getConfigScript, parseCookies } from "../utils.js";
+import { randomUUID } from "node:crypto";
+import path from "node:path";
+import fs from "node:fs";
+import { fileURLToPath } from "node:url";
+import { WebSocketServer } from "ws";
+
+//#region src/server/remote-tunnel/remote-tunnel-manager.ts
+const __filename = fileURLToPath(import.meta.url);
+const __dirname = path.dirname(__filename);
+const MAX_ASSET_FETCH_TIMEOUT = 6e4;
+/**
+* Remote tunnel manager for the AppKit.
+*
+* This class is responsible for managing the remote tunnels for the development server.
+* It also handles the asset fetching and the HMR for the development server.
+*
+* @example
+* ```ts
+* const remoteTunnelManager = new RemoteTunnelManager(devFileReader);
+* remoteTunnelManager.setup(app);
+* ```
+*/
+var RemoteTunnelManager = class {
+	constructor(devFileReader) {
+		this.tunnels = /* @__PURE__ */ new Map();
+		this.devFileReader = devFileReader;
+		this.wss = new WebSocketServer({
+			noServer: true,
+			path: "/dev-tunnel"
+		});
+		this.hmrWss = new WebSocketServer({
+			noServer: true,
+			path: "/dev-hmr"
+		});
+		this.registerTunnelGetter();
+	}
+	setServer(server) {
+		this.server = server;
+	}
+	/** Asset middleware for the development server. */
+	assetMiddleware() {
+		return async (req, res) => {
+			const email = req.headers["x-forwarded-email"];
+			let tunnelId;
+			const cookieHeader = req.headers.cookie;
+			if (cookieHeader) {
+				const match = cookieHeader.match(/dev-tunnel-id=([^;]+)/);
+				if (match) tunnelId = match[1];
+			}
+			if (!tunnelId) tunnelId = generateTunnelIdFromEmail(email);
+			if (!tunnelId) return res.status(404).send("Tunnel not ready");
+			const tunnel = this.tunnels.get(tunnelId);
+			if (!tunnel) return res.status(404).send("Tunnel not found");
+			const { ws, approvedViewers, pendingFetches } = tunnel;
+			if (!approvedViewers.has(email)) return res.status(403).send("Not approved for this tunnel");
+			const path$1 = req.originalUrl;
+			const requestId = randomUUID();
+			const request = {
+				type: "fetch",
+				path: path$1,
+				method: req.method,
+				requestId
+			};
+			const r = await new Promise((resolve, reject) => {
+				const timeout = setTimeout(() => {
+					pendingFetches.delete(requestId);
+					reject(/* @__PURE__ */ new Error("Asset fetch timeout"));
+				}, MAX_ASSET_FETCH_TIMEOUT);
+				pendingFetches.set(requestId, {
+					resolve,
+					reject,
+					timeout
+				});
+				ws.send(JSON.stringify(request));
+			}).catch((err) => {
+				console.error(`Failed to fetch ${path$1}:`, err.message);
+				return {
+					status: 504,
+					body: Buffer.from(""),
+					headers: {}
+				};
+			});
+			res.status(r.status).set(r.headers).send(r.body || Buffer.from(""));
+		};
+	}
+	/** Dev mode middleware for the development server. */
+	devModeMiddleware() {
+		return async (req, res, next) => {
+			const dev = req.query?.dev;
+			if (dev === void 0) return next();
+			if (req.path.startsWith("/api") || req.path.startsWith("/query") || req.path.match(/\.(js|css|png|jpg|jpeg|svg|ico|json|woff|woff2|ttf)$/)) return next();
+			const viewerEmail = req.headers["x-forwarded-email"];
+			const isOwnerMode = dev === "" || dev === "true";
+			const tunnelId = isOwnerMode ? generateTunnelIdFromEmail(viewerEmail) : dev.toString();
+			if (!tunnelId) return res.status(400).send("Invalid tunnel ID");
+			if (!isOwnerMode) {
+				const approvalResponse = this.handleViewerApproval(tunnelId, viewerEmail, req.query.retry === "true", res);
+				if (approvalResponse) return approvalResponse;
+			}
+			res.cookie("dev-tunnel-id", tunnelId, {
+				httpOnly: false,
+				sameSite: "lax"
+			});
+			const indexPath = path.join(__dirname, "index.html");
+			let html = fs.readFileSync(indexPath, "utf-8");
+			html = html.replace("<body>", `<body>${getConfigScript()}`);
+			res.send(html);
+		};
+	}
+	/** Setup the dev mode middleware. */
+	setup(app) {
+		app.use(this.devModeMiddleware());
+		app.use(REMOTE_TUNNEL_ASSET_PREFIXES, this.assetMiddleware());
+	}
+	static isRemoteServerEnabled() {
+		return process.env.NODE_ENV !== "production" && process.env.DISABLE_REMOTE_SERVING !== "true" && Boolean(process.env.DATABRICKS_CLIENT_SECRET);
+	}
+	loadHtmlTemplate(filename, replacements) {
+		const filePath = path.join(__dirname, filename);
+		let content = fs.readFileSync(filePath, "utf-8");
+		for (const [key, value] of Object.entries(replacements)) content = content.replaceAll(`{{${key}}}`, value);
+		return content;
+	}
+	handleViewerApproval(tunnelId, viewerEmail, retry, res) {
+		const tunnel = this.tunnels.get(tunnelId);
+		if (!tunnel) return res.status(404).send("Tunnel not found");
+		if (viewerEmail === tunnel.owner) return null;
+		if (retry) tunnel.rejectedViewers.delete(viewerEmail);
+		if (tunnel.rejectedViewers.has(viewerEmail)) {
+			const html$1 = this.loadHtmlTemplate("denied.html", { tunnelId });
+			return res.status(403).send(html$1);
+		}
+		if (tunnel.approvedViewers.has(viewerEmail)) return null;
+		if (!tunnel.pendingRequests.has(viewerEmail)) {
+			const requestId = randomUUID();
+			tunnel.pendingRequests.add(viewerEmail);
+			tunnel.ws.send(JSON.stringify({
+				type: "connection:request",
+				requestId,
+				viewer: viewerEmail
+			}));
+		}
+		const html = this.loadHtmlTemplate("wait.html", { tunnelId });
+		return res.status(200).send(html);
+	}
+	setupWebSocket() {
+		this.wss.on("connection", (ws, req) => {
+			const email = req.headers["x-forwarded-email"];
+			const tunnelId = generateTunnelIdFromEmail(email);
+			if (!tunnelId) return ws.close();
+			this.tunnels.set(tunnelId, {
+				ws,
+				owner: email,
+				approvedViewers: new Set([email]),
+				pendingRequests: /* @__PURE__ */ new Set(),
+				rejectedViewers: /* @__PURE__ */ new Set(),
+				pendingFetches: /* @__PURE__ */ new Map(),
+				pendingFileReads: /* @__PURE__ */ new Map(),
+				waitingForBinaryBody: null
+			});
+			ws.on("message", (msg, isBinary) => {
+				const tunnel = this.tunnels.get(tunnelId);
+				if (!tunnel) return;
+				if (isBinary) {
+					if (!tunnel.waitingForBinaryBody) {
+						console.warn("Received binary message but no requestId is waiting for body");
+						return;
+					}
+					const requestId = tunnel.waitingForBinaryBody;
+					const pending = tunnel.pendingFetches.get(requestId);
+					if (!pending || !pending.metadata) {
+						console.warn("Received binary message but pending fetch not found");
+						tunnel.waitingForBinaryBody = null;
+						return;
+					}
+					tunnel.waitingForBinaryBody = null;
+					clearTimeout(pending.timeout);
+					tunnel.pendingFetches.delete(requestId);
+					pending.resolve({
+						status: pending.metadata.status,
+						headers: pending.metadata.headers,
+						body: msg
+					});
+					return;
+				}
+				try {
+					const data = JSON.parse(msg.toString());
+					if (data.type === "connection:response") {
+						if (tunnel && data.viewer) {
+							tunnel.pendingRequests.delete(data.viewer);
+							if (data.approved) {
+								tunnel.approvedViewers.add(data.viewer);
+								console.log(`✅ Approved ${data.viewer} for tunnel ${tunnelId}`);
+							} else {
+								tunnel.rejectedViewers.add(data.viewer);
+								console.log(`❌ Denied ${data.viewer} for tunnel ${tunnelId}`);
+							}
+						}
+					} else if (data.type === "fetch:response:meta") {
+						const pending = tunnel.pendingFetches.get(data.requestId);
+						if (pending) {
+							pending.metadata = {
+								status: data.status,
+								headers: data.headers
+							};
+							if (data.status === 304 || data.status === 204 || data.status >= 300 && data.status < 400) {
+								clearTimeout(pending.timeout);
+								tunnel.pendingFetches.delete(data.requestId);
+								pending.resolve({
+									status: data.status,
+									headers: data.headers,
+									body: Buffer.from("")
+								});
+							} else tunnel.waitingForBinaryBody = data.requestId;
+						}
+					} else if (data.type === "file:read:response") {
+						const pending = tunnel.pendingFileReads.get(data.requestId);
+						if (pending) {
+							clearTimeout(pending.timeout);
+							tunnel.pendingFileReads.delete(data.requestId);
+							if (data.error) pending.reject(new Error(data.error));
+							else pending.resolve(data.content);
+						}
+					}
+				} catch (e) {
+					console.error("Failed to parse WebSocket message:", e);
+				}
+			});
+			ws.send(JSON.stringify({
+				type: "tunnel:ready",
+				tunnelId
+			}));
+			ws.on("close", () => {
+				const tunnel = this.tunnels.get(tunnelId);
+				if (tunnel) {
+					for (const [_, pending] of tunnel.pendingFetches) {
+						clearTimeout(pending.timeout);
+						pending.reject(/* @__PURE__ */ new Error("Tunnel closed"));
+					}
+					tunnel.pendingFetches.clear();
+				}
+				this.tunnels.delete(tunnelId);
+			});
+		});
+		this.hmrWss.on("connection", (browserWs, req) => {
+			const cookies = parseCookies(req);
+			const email = req.headers["x-forwarded-email"];
+			const tunnelId = cookies["dev-tunnel-id"] || generateTunnelIdFromEmail(email);
+			if (!tunnelId) return browserWs.close();
+			const cliTunnel = this.tunnels.get(tunnelId);
+			if (!cliTunnel) return browserWs.close();
+			const { ws: cliWs, approvedViewers } = cliTunnel;
+			if (!approvedViewers.has(email)) return browserWs.close(1008, "Not approved");
+			browserWs.on("message", (msg) => {
+				const hmrStart = Date.now();
+				console.log("browser -> cli browserWS message", msg.toString());
+				cliWs.send(JSON.stringify({
+					type: "hmr:message",
+					body: msg.toString(),
+					timestamp: hmrStart
+				}));
+			});
+			const cliHandler = (msg, isBinary) => {
+				if (isBinary) return;
+				try {
+					const data = JSON.parse(msg.toString());
+					if (data.type === "hmr:message") browserWs.send(data.body);
+				} catch {
+					console.error("Failed to parse CLI message for HMR:", msg.toString().substring(0, 100));
+				}
+			};
+			cliWs.on("message", cliHandler);
+			browserWs.on("close", () => {
+				cliWs.off("message", cliHandler);
+			});
+		});
+		this.server?.on("upgrade", (req, socket, head) => {
+			const url = req.url ?? "";
+			if (url.startsWith("/dev-tunnel")) this.wss.handleUpgrade(req, socket, head, (ws) => {
+				this.wss.emit("connection", ws, req);
+			});
+			else if (url.startsWith("/dev-hmr")) this.hmrWss.handleUpgrade(req, socket, head, (browserWs) => {
+				this.hmrWss.emit("connection", browserWs, req);
+			});
+		});
+	}
+	registerTunnelGetter() {
+		this.devFileReader.registerTunnelGetter(this.getTunnelForRequest.bind(this));
+	}
+	getTunnelForRequest(req) {
+		const email = req.headers["x-forwarded-email"];
+		const cookieHeader = req.headers.cookie;
+		let tunnelId;
+		if (cookieHeader) {
+			const match = cookieHeader.match(/dev-tunnel-id=([^;]+)/);
+			if (match) tunnelId = match[1];
+		}
+		if (!tunnelId) tunnelId = generateTunnelIdFromEmail(email);
+		return tunnelId ? this.tunnels.get(tunnelId) || null : null;
+	}
+	cleanup() {
+		for (const [, tunnel] of this.tunnels) {
+			for (const [_, pending] of tunnel.pendingFetches) {
+				clearTimeout(pending.timeout);
+				pending.reject(/* @__PURE__ */ new Error("Server shutting down"));
+			}
+			tunnel.pendingFetches.clear();
+			tunnel.ws.close();
+		}
+		this.tunnels.clear();
+		if (this.wss) this.wss.close();
+		if (this.hmrWss) this.hmrWss.close();
+	}
+};
+
+//#endregion
+export { RemoteTunnelManager };
+//# sourceMappingURL=remote-tunnel-manager.js.map

package/dist/server/remote-tunnel/remote-tunnel-manager.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"remote-tunnel-manager.js","names":["tunnelId: string | undefined","path","html"],"sources":["../../../src/server/remote-tunnel/remote-tunnel-manager.ts"],"sourcesContent":["import { randomUUID } from \"node:crypto\";\nimport fs from \"node:fs\";\nimport type { Server as HTTPServer } from \"node:http\";\nimport path from \"node:path\";\nimport { fileURLToPath } from \"node:url\";\nimport type express from \"express\";\nimport type { TunnelConnection } from \"shared\";\nimport { WebSocketServer } from \"ws\";\nimport {\n  generateTunnelIdFromEmail,\n  getConfigScript,\n  parseCookies,\n} from \"../utils\";\nimport { REMOTE_TUNNEL_ASSET_PREFIXES } from \"./gate\";\n\nconst __filename = fileURLToPath(import.meta.url);\nconst __dirname = path.dirname(__filename);\nconst MAX_ASSET_FETCH_TIMEOUT = 60_000;\n\ninterface DevFileReader {\n  registerTunnelGetter(\n    getter: (req: express.Request) => TunnelConnection | null,\n  ): void;\n}\n\n/**\n * Remote tunnel manager for the AppKit.\n *\n * This class is responsible for managing the remote tunnels for the development server.\n * It also handles the asset fetching and the HMR for the development server.\n *\n * @example\n * ```ts\n * const remoteTunnelManager = new RemoteTunnelManager(devFileReader);\n * remoteTunnelManager.setup(app);\n * ```\n */\nexport class RemoteTunnelManager {\n  private tunnels = new Map<string, TunnelConnection>();\n  private wss: WebSocketServer;\n  private hmrWss: WebSocketServer;\n  private server?: HTTPServer;\n  private devFileReader: DevFileReader;\n\n  constructor(devFileReader: DevFileReader) {\n    this.devFileReader = devFileReader;\n    this.wss = new WebSocketServer({ noServer: true, path: \"/dev-tunnel\" });\n    this.hmrWss = new WebSocketServer({ noServer: true, path: \"/dev-hmr\" });\n\n    this.registerTunnelGetter();\n  }\n\n  setServer(server: HTTPServer) {\n    this.server = server;\n  }\n\n  /** Asset middleware for the development server. */\n  assetMiddleware() {\n    return async (req: express.Request, res: express.Response) => {\n      const email = req.headers[\"x-forwarded-email\"] as string;\n\n      // Try cookie first, then generate from email\n      let tunnelId: string | undefined;\n      const cookieHeader = req.headers.cookie;\n\n      if (cookieHeader) {\n        // Fast path: extract dev-tunnel-id from cookie without full parse\n        const match = cookieHeader.match(/dev-tunnel-id=([^;]+)/);\n        if (match) {\n          tunnelId = match[1];\n        }\n      }\n\n      if (!tunnelId) {\n        tunnelId = generateTunnelIdFromEmail(email);\n      }\n\n      if (!tunnelId) return res.status(404).send(\"Tunnel not ready\");\n\n      const tunnel = this.tunnels.get(tunnelId);\n\n      if (!tunnel) return res.status(404).send(\"Tunnel not found\");\n\n      const { ws, approvedViewers, pendingFetches } = tunnel;\n\n      if (!approvedViewers.has(email)) {\n        return res.status(403).send(\"Not approved for this tunnel\");\n      }\n\n      const path = req.originalUrl;\n      const requestId = randomUUID();\n\n      const request = { type: \"fetch\", path, method: req.method, requestId };\n\n      const response = await new Promise((resolve, reject) => {\n        const timeout = setTimeout(() => {\n          pendingFetches.delete(requestId);\n          reject(new Error(\"Asset fetch timeout\"));\n        }, MAX_ASSET_FETCH_TIMEOUT);\n\n        pendingFetches.set(requestId, { resolve, reject, timeout });\n\n        ws.send(JSON.stringify(request));\n      }).catch((err) => {\n        console.error(`Failed to fetch ${path}:`, err.message);\n        return { status: 504, body: Buffer.from(\"\"), headers: {} };\n      });\n\n      const r = response as any;\n\n      res\n        .status(r.status)\n        .set(r.headers)\n        .send(r.body || Buffer.from(\"\"));\n    };\n  }\n\n  /** Dev mode middleware for the development server. */\n  devModeMiddleware() {\n    return async (\n      req: express.Request,\n      res: express.Response,\n      next: express.NextFunction,\n    ) => {\n      const dev = req.query?.dev;\n\n      if (dev === undefined) {\n        return next();\n      }\n\n      if (\n        req.path.startsWith(\"/api\") ||\n        req.path.startsWith(\"/query\") ||\n        req.path.match(/\\.(js|css|png|jpg|jpeg|svg|ico|json|woff|woff2|ttf)$/)\n      ) {\n        return next();\n      }\n\n      const viewerEmail = req.headers[\"x-forwarded-email\"] as string;\n      const isOwnerMode = dev === \"\" || dev === \"true\";\n\n      const tunnelId = isOwnerMode\n        ? generateTunnelIdFromEmail(viewerEmail)\n        : dev.toString();\n\n      if (!tunnelId) {\n        return res.status(400).send(\"Invalid tunnel ID\");\n      }\n\n      if (!isOwnerMode) {\n        const approvalResponse = this.handleViewerApproval(\n          tunnelId,\n          viewerEmail,\n          req.query.retry === \"true\",\n          res,\n        );\n\n        if (approvalResponse) {\n          return approvalResponse;\n        }\n      }\n\n      res.cookie(\"dev-tunnel-id\", tunnelId, {\n        httpOnly: false,\n        sameSite: \"lax\",\n      });\n\n      const indexPath = path.join(__dirname, \"index.html\");\n      let html = fs.readFileSync(indexPath, \"utf-8\");\n      html = html.replace(\"<body>\", `<body>${getConfigScript()}`);\n\n      res.send(html);\n    };\n  }\n\n  /** Setup the dev mode middleware. */\n  setup(app: express.Application) {\n    app.use(this.devModeMiddleware());\n    app.use(REMOTE_TUNNEL_ASSET_PREFIXES, this.assetMiddleware());\n  }\n\n  static isRemoteServerEnabled() {\n    return (\n      process.env.NODE_ENV !== \"production\" &&\n      process.env.DISABLE_REMOTE_SERVING !== \"true\" &&\n      // DATABRICKS_CLIENT_SECRET is set in the .env file for deployed environments\n      Boolean(process.env.DATABRICKS_CLIENT_SECRET)\n    );\n  }\n\n  private loadHtmlTemplate(\n    filename: string,\n    replacements: Record<string, string>,\n  ): string {\n    const filePath = path.join(__dirname, filename);\n    let content = fs.readFileSync(filePath, \"utf-8\");\n\n    for (const [key, value] of Object.entries(replacements)) {\n      content = content.replaceAll(`{{${key}}}`, value);\n    }\n\n    return content;\n  }\n\n  private handleViewerApproval(\n    tunnelId: string,\n    viewerEmail: string,\n    retry: boolean,\n    res: express.Response,\n  ): express.Response | null {\n    const tunnel = this.tunnels.get(tunnelId);\n\n    if (!tunnel) {\n      return res.status(404).send(\"Tunnel not found\");\n    }\n\n    if (viewerEmail === tunnel.owner) {\n      return null;\n    }\n\n    if (retry) {\n      tunnel.rejectedViewers.delete(viewerEmail);\n    }\n\n    if (tunnel.rejectedViewers.has(viewerEmail)) {\n      const html = this.loadHtmlTemplate(\"denied.html\", { tunnelId });\n      return res.status(403).send(html);\n    }\n\n    if (tunnel.approvedViewers.has(viewerEmail)) {\n      return null;\n    }\n\n    if (!tunnel.pendingRequests.has(viewerEmail)) {\n      const requestId = randomUUID();\n      tunnel.pendingRequests.add(viewerEmail);\n      tunnel.ws.send(\n        JSON.stringify({\n          type: \"connection:request\",\n          requestId,\n          viewer: viewerEmail,\n        }),\n      );\n    }\n\n    const html = this.loadHtmlTemplate(\"wait.html\", { tunnelId });\n    return res.status(200).send(html);\n  }\n\n  setupWebSocket() {\n    this.wss.on(\"connection\", (ws, req) => {\n      const email = req.headers[\"x-forwarded-email\"] as string;\n      const tunnelId = generateTunnelIdFromEmail(email);\n\n      if (!tunnelId) return ws.close();\n\n      this.tunnels.set(tunnelId, {\n        ws,\n        owner: email,\n        approvedViewers: new Set([email]),\n        pendingRequests: new Set(),\n        rejectedViewers: new Set(),\n        pendingFetches: new Map(),\n        pendingFileReads: new Map(),\n        waitingForBinaryBody: null,\n      });\n\n      ws.on(\"message\", (msg, isBinary) => {\n        const tunnel = this.tunnels.get(tunnelId);\n        if (!tunnel) return;\n\n        if (isBinary) {\n          if (!tunnel.waitingForBinaryBody) {\n            console.warn(\n              \"Received binary message but no requestId is waiting for body\",\n            );\n            return;\n          }\n\n          const requestId = tunnel.waitingForBinaryBody;\n          const pending = tunnel.pendingFetches.get(requestId);\n\n          if (!pending || !pending.metadata) {\n            console.warn(\"Received binary message but pending fetch not found\");\n            tunnel.waitingForBinaryBody = null;\n            return;\n          }\n\n          tunnel.waitingForBinaryBody = null;\n          clearTimeout(pending.timeout);\n          tunnel.pendingFetches.delete(requestId);\n\n          pending.resolve({\n            status: pending.metadata.status,\n            headers: pending.metadata.headers,\n            body: msg as Buffer,\n          });\n          return;\n        }\n\n        try {\n          const data = JSON.parse(msg.toString());\n\n          if (data.type === \"connection:response\") {\n            if (tunnel && data.viewer) {\n              tunnel.pendingRequests.delete(data.viewer);\n\n              if (data.approved) {\n                tunnel.approvedViewers.add(data.viewer);\n                console.log(\n                  `✅ Approved ${data.viewer} for tunnel ${tunnelId}`,\n                );\n              } else {\n                tunnel.rejectedViewers.add(data.viewer);\n                console.log(`❌ Denied ${data.viewer} for tunnel ${tunnelId}`);\n              }\n            }\n          } else if (data.type === \"fetch:response:meta\") {\n            const pending = tunnel.pendingFetches.get(data.requestId);\n            if (pending) {\n              pending.metadata = {\n                status: data.status,\n                headers: data.headers,\n              };\n              if (\n                data.status === 304 ||\n                data.status === 204 ||\n                (data.status >= 300 && data.status < 400)\n              ) {\n                clearTimeout(pending.timeout);\n                tunnel.pendingFetches.delete(data.requestId);\n                pending.resolve({\n                  status: data.status,\n                  headers: data.headers,\n                  body: Buffer.from(\"\"),\n                });\n              } else {\n                tunnel.waitingForBinaryBody = data.requestId;\n              }\n            }\n          } else if (data.type === \"file:read:response\") {\n            const pending = tunnel.pendingFileReads.get(data.requestId);\n            if (pending) {\n              clearTimeout(pending.timeout);\n              tunnel.pendingFileReads.delete(data.requestId);\n\n              if (data.error) {\n                pending.reject(new Error(data.error));\n              } else {\n                pending.resolve(data.content);\n              }\n            }\n          }\n        } catch (e) {\n          console.error(\"Failed to parse WebSocket message:\", e);\n        }\n      });\n\n      ws.send(JSON.stringify({ type: \"tunnel:ready\", tunnelId }));\n\n      ws.on(\"close\", () => {\n        const tunnel = this.tunnels.get(tunnelId);\n\n        if (tunnel) {\n          for (const [_, pending] of tunnel.pendingFetches) {\n            clearTimeout(pending.timeout);\n            pending.reject(new Error(\"Tunnel closed\"));\n          }\n          tunnel.pendingFetches.clear();\n        }\n\n        this.tunnels.delete(tunnelId);\n      });\n    });\n\n    this.hmrWss.on(\"connection\", (browserWs, req) => {\n      const cookies = parseCookies(req);\n      const email = req.headers[\"x-forwarded-email\"] as string;\n      const tunnelId =\n        cookies[\"dev-tunnel-id\"] || generateTunnelIdFromEmail(email);\n\n      if (!tunnelId) return browserWs.close();\n\n      const cliTunnel = this.tunnels.get(tunnelId);\n\n      if (!cliTunnel) return browserWs.close();\n\n      const { ws: cliWs, approvedViewers } = cliTunnel;\n\n      if (!approvedViewers.has(email)) {\n        return browserWs.close(1008, \"Not approved\");\n      }\n      // Browser → CLI\n      browserWs.on(\"message\", (msg) => {\n        const hmrStart = Date.now();\n        console.log(\"browser -> cli browserWS message\", msg.toString());\n        cliWs.send(\n          JSON.stringify({\n            type: \"hmr:message\",\n            body: msg.toString(),\n            timestamp: hmrStart,\n          }),\n        );\n      });\n\n      // // CLI → Browser\n      const cliHandler = (msg: Buffer | string, isBinary: boolean) => {\n        // Ignore binary messages (they're for fetch responses, not HMR)\n        if (isBinary) return;\n\n        try {\n          const data = JSON.parse(msg.toString());\n\n          if (data.type === \"hmr:message\") {\n            browserWs.send(data.body);\n          }\n        } catch {\n          console.error(\n            \"Failed to parse CLI message for HMR:\",\n            msg.toString().substring(0, 100),\n          );\n        }\n      };\n      cliWs.on(\"message\", cliHandler);\n\n      browserWs.on(\"close\", () => {\n        cliWs.off(\"message\", cliHandler);\n      });\n    });\n\n    // // Browser HMR connection\n    this.server?.on(\"upgrade\", (req, socket, head) => {\n      const url = req.url ?? \"\";\n\n      if (url.startsWith(\"/dev-tunnel\")) {\n        this.wss.handleUpgrade(req, socket, head, (ws) => {\n          this.wss.emit(\"connection\", ws, req);\n        });\n      } else if (url.startsWith(\"/dev-hmr\")) {\n        this.hmrWss.handleUpgrade(req, socket, head, (browserWs) => {\n          this.hmrWss.emit(\"connection\", browserWs, req);\n        });\n      }\n    });\n  }\n\n  registerTunnelGetter() {\n    this.devFileReader.registerTunnelGetter(\n      this.getTunnelForRequest.bind(this),\n    );\n  }\n\n  getTunnelForRequest(req: express.Request) {\n    const email = req.headers[\"x-forwarded-email\"] as string;\n    const cookieHeader = req.headers.cookie;\n\n    let tunnelId: string | undefined;\n\n    if (cookieHeader) {\n      const match = cookieHeader.match(/dev-tunnel-id=([^;]+)/);\n      if (match) {\n        tunnelId = match[1];\n      }\n    }\n\n    if (!tunnelId) {\n      tunnelId = generateTunnelIdFromEmail(email);\n    }\n\n    return tunnelId ? this.tunnels.get(tunnelId) || null : null;\n  }\n\n  cleanup() {\n    for (const [, tunnel] of this.tunnels) {\n      for (const [_, pending] of tunnel.pendingFetches) {\n        clearTimeout(pending.timeout);\n        pending.reject(new Error(\"Server shutting down\"));\n      }\n      tunnel.pendingFetches.clear();\n      tunnel.ws.close();\n    }\n    this.tunnels.clear();\n\n    if (this.wss) {\n      this.wss.close();\n    }\n    if (this.hmrWss) {\n      this.hmrWss.close();\n    }\n  }\n}\n"],"mappings":";;;;;;;;;AAeA,MAAM,aAAa,cAAc,OAAO,KAAK,IAAI;AACjD,MAAM,YAAY,KAAK,QAAQ,WAAW;AAC1C,MAAM,0BAA0B;;;;;;;;;;;;;AAoBhC,IAAa,sBAAb,MAAiC;CAO/B,YAAY,eAA8B;iCANxB,IAAI,KAA+B;AAOnD,OAAK,gBAAgB;AACrB,OAAK,MAAM,IAAI,gBAAgB;GAAE,UAAU;GAAM,MAAM;GAAe,CAAC;AACvE,OAAK,SAAS,IAAI,gBAAgB;GAAE,UAAU;GAAM,MAAM;GAAY,CAAC;AAEvE,OAAK,sBAAsB;;CAG7B,UAAU,QAAoB;AAC5B,OAAK,SAAS;;;CAIhB,kBAAkB;AAChB,SAAO,OAAO,KAAsB,QAA0B;GAC5D,MAAM,QAAQ,IAAI,QAAQ;GAG1B,IAAIA;GACJ,MAAM,eAAe,IAAI,QAAQ;AAEjC,OAAI,cAAc;IAEhB,MAAM,QAAQ,aAAa,MAAM,wBAAwB;AACzD,QAAI,MACF,YAAW,MAAM;;AAIrB,OAAI,CAAC,SACH,YAAW,0BAA0B,MAAM;AAG7C,OAAI,CAAC,SAAU,QAAO,IAAI,OAAO,IAAI,CAAC,KAAK,mBAAmB;GAE9D,MAAM,SAAS,KAAK,QAAQ,IAAI,SAAS;AAEzC,OAAI,CAAC,OAAQ,QAAO,IAAI,OAAO,IAAI,CAAC,KAAK,mBAAmB;GAE5D,MAAM,EAAE,IAAI,iBAAiB,mBAAmB;AAEhD,OAAI,CAAC,gBAAgB,IAAI,MAAM,CAC7B,QAAO,IAAI,OAAO,IAAI,CAAC,KAAK,+BAA+B;GAG7D,MAAMC,SAAO,IAAI;GACjB,MAAM,YAAY,YAAY;GAE9B,MAAM,UAAU;IAAE,MAAM;IAAS;IAAM,QAAQ,IAAI;IAAQ;IAAW;GAgBtE,MAAM,IAdW,MAAM,IAAI,SAAS,SAAS,WAAW;IACtD,MAAM,UAAU,iBAAiB;AAC/B,oBAAe,OAAO,UAAU;AAChC,4BAAO,IAAI,MAAM,sBAAsB,CAAC;OACvC,wBAAwB;AAE3B,mBAAe,IAAI,WAAW;KAAE;KAAS;KAAQ;KAAS,CAAC;AAE3D,OAAG,KAAK,KAAK,UAAU,QAAQ,CAAC;KAChC,CAAC,OAAO,QAAQ;AAChB,YAAQ,MAAM,mBAAmBA,OAAK,IAAI,IAAI,QAAQ;AACtD,WAAO;KAAE,QAAQ;KAAK,MAAM,OAAO,KAAK,GAAG;KAAE,SAAS,EAAE;KAAE;KAC1D;AAIF,OACG,OAAO,EAAE,OAAO,CAChB,IAAI,EAAE,QAAQ,CACd,KAAK,EAAE,QAAQ,OAAO,KAAK,GAAG,CAAC;;;;CAKtC,oBAAoB;AAClB,SAAO,OACL,KACA,KACA,SACG;GACH,MAAM,MAAM,IAAI,OAAO;AAEvB,OAAI,QAAQ,OACV,QAAO,MAAM;AAGf,OACE,IAAI,KAAK,WAAW,OAAO,IAC3B,IAAI,KAAK,WAAW,SAAS,IAC7B,IAAI,KAAK,MAAM,uDAAuD,CAEtE,QAAO,MAAM;GAGf,MAAM,cAAc,IAAI,QAAQ;GAChC,MAAM,cAAc,QAAQ,MAAM,QAAQ;GAE1C,MAAM,WAAW,cACb,0BAA0B,YAAY,GACtC,IAAI,UAAU;AAElB,OAAI,CAAC,SACH,QAAO,IAAI,OAAO,IAAI,CAAC,KAAK,oBAAoB;AAGlD,OAAI,CAAC,aAAa;IAChB,MAAM,mBAAmB,KAAK,qBAC5B,UACA,aACA,IAAI,MAAM,UAAU,QACpB,IACD;AAED,QAAI,iBACF,QAAO;;AAIX,OAAI,OAAO,iBAAiB,UAAU;IACpC,UAAU;IACV,UAAU;IACX,CAAC;GAEF,MAAM,YAAY,KAAK,KAAK,WAAW,aAAa;GACpD,IAAI,OAAO,GAAG,aAAa,WAAW,QAAQ;AAC9C,UAAO,KAAK,QAAQ,UAAU,SAAS,iBAAiB,GAAG;AAE3D,OAAI,KAAK,KAAK;;;;CAKlB,MAAM,KAA0B;AAC9B,MAAI,IAAI,KAAK,mBAAmB,CAAC;AACjC,MAAI,IAAI,8BAA8B,KAAK,iBAAiB,CAAC;;CAG/D,OAAO,wBAAwB;AAC7B,SACE,QAAQ,IAAI,aAAa,gBACzB,QAAQ,IAAI,2BAA2B,UAEvC,QAAQ,QAAQ,IAAI,yBAAyB;;CAIjD,AAAQ,iBACN,UACA,cACQ;EACR,MAAM,WAAW,KAAK,KAAK,WAAW,SAAS;EAC/C,IAAI,UAAU,GAAG,aAAa,UAAU,QAAQ;AAEhD,OAAK,MAAM,CAAC,KAAK,UAAU,OAAO,QAAQ,aAAa,CACrD,WAAU,QAAQ,WAAW,KAAK,IAAI,KAAK,MAAM;AAGnD,SAAO;;CAGT,AAAQ,qBACN,UACA,aACA,OACA,KACyB;EACzB,MAAM,SAAS,KAAK,QAAQ,IAAI,SAAS;AAEzC,MAAI,CAAC,OACH,QAAO,IAAI,OAAO,IAAI,CAAC,KAAK,mBAAmB;AAGjD,MAAI,gBAAgB,OAAO,MACzB,QAAO;AAGT,MAAI,MACF,QAAO,gBAAgB,OAAO,YAAY;AAG5C,MAAI,OAAO,gBAAgB,IAAI,YAAY,EAAE;GAC3C,MAAMC,SAAO,KAAK,iBAAiB,eAAe,EAAE,UAAU,CAAC;AAC/D,UAAO,IAAI,OAAO,IAAI,CAAC,KAAKA,OAAK;;AAGnC,MAAI,OAAO,gBAAgB,IAAI,YAAY,CACzC,QAAO;AAGT,MAAI,CAAC,OAAO,gBAAgB,IAAI,YAAY,EAAE;GAC5C,MAAM,YAAY,YAAY;AAC9B,UAAO,gBAAgB,IAAI,YAAY;AACvC,UAAO,GAAG,KACR,KAAK,UAAU;IACb,MAAM;IACN;IACA,QAAQ;IACT,CAAC,CACH;;EAGH,MAAM,OAAO,KAAK,iBAAiB,aAAa,EAAE,UAAU,CAAC;AAC7D,SAAO,IAAI,OAAO,IAAI,CAAC,KAAK,KAAK;;CAGnC,iBAAiB;AACf,OAAK,IAAI,GAAG,eAAe,IAAI,QAAQ;GACrC,MAAM,QAAQ,IAAI,QAAQ;GAC1B,MAAM,WAAW,0BAA0B,MAAM;AAEjD,OAAI,CAAC,SAAU,QAAO,GAAG,OAAO;AAEhC,QAAK,QAAQ,IAAI,UAAU;IACzB;IACA,OAAO;IACP,iBAAiB,IAAI,IAAI,CAAC,MAAM,CAAC;IACjC,iCAAiB,IAAI,KAAK;IAC1B,iCAAiB,IAAI,KAAK;IAC1B,gCAAgB,IAAI,KAAK;IACzB,kCAAkB,IAAI,KAAK;IAC3B,sBAAsB;IACvB,CAAC;AAEF,MAAG,GAAG,YAAY,KAAK,aAAa;IAClC,MAAM,SAAS,KAAK,QAAQ,IAAI,SAAS;AACzC,QAAI,CAAC,OAAQ;AAEb,QAAI,UAAU;AACZ,SAAI,CAAC,OAAO,sBAAsB;AAChC,cAAQ,KACN,+DACD;AACD;;KAGF,MAAM,YAAY,OAAO;KACzB,MAAM,UAAU,OAAO,eAAe,IAAI,UAAU;AAEpD,SAAI,CAAC,WAAW,CAAC,QAAQ,UAAU;AACjC,cAAQ,KAAK,sDAAsD;AACnE,aAAO,uBAAuB;AAC9B;;AAGF,YAAO,uBAAuB;AAC9B,kBAAa,QAAQ,QAAQ;AAC7B,YAAO,eAAe,OAAO,UAAU;AAEvC,aAAQ,QAAQ;MACd,QAAQ,QAAQ,SAAS;MACzB,SAAS,QAAQ,SAAS;MAC1B,MAAM;MACP,CAAC;AACF;;AAGF,QAAI;KACF,MAAM,OAAO,KAAK,MAAM,IAAI,UAAU,CAAC;AAEvC,SAAI,KAAK,SAAS,uBAChB;UAAI,UAAU,KAAK,QAAQ;AACzB,cAAO,gBAAgB,OAAO,KAAK,OAAO;AAE1C,WAAI,KAAK,UAAU;AACjB,eAAO,gBAAgB,IAAI,KAAK,OAAO;AACvC,gBAAQ,IACN,cAAc,KAAK,OAAO,cAAc,WACzC;cACI;AACL,eAAO,gBAAgB,IAAI,KAAK,OAAO;AACvC,gBAAQ,IAAI,YAAY,KAAK,OAAO,cAAc,WAAW;;;gBAGxD,KAAK,SAAS,uBAAuB;MAC9C,MAAM,UAAU,OAAO,eAAe,IAAI,KAAK,UAAU;AACzD,UAAI,SAAS;AACX,eAAQ,WAAW;QACjB,QAAQ,KAAK;QACb,SAAS,KAAK;QACf;AACD,WACE,KAAK,WAAW,OAChB,KAAK,WAAW,OACf,KAAK,UAAU,OAAO,KAAK,SAAS,KACrC;AACA,qBAAa,QAAQ,QAAQ;AAC7B,eAAO,eAAe,OAAO,KAAK,UAAU;AAC5C,gBAAQ,QAAQ;SACd,QAAQ,KAAK;SACb,SAAS,KAAK;SACd,MAAM,OAAO,KAAK,GAAG;SACtB,CAAC;aAEF,QAAO,uBAAuB,KAAK;;gBAG9B,KAAK,SAAS,sBAAsB;MAC7C,MAAM,UAAU,OAAO,iBAAiB,IAAI,KAAK,UAAU;AAC3D,UAAI,SAAS;AACX,oBAAa,QAAQ,QAAQ;AAC7B,cAAO,iBAAiB,OAAO,KAAK,UAAU;AAE9C,WAAI,KAAK,MACP,SAAQ,OAAO,IAAI,MAAM,KAAK,MAAM,CAAC;WAErC,SAAQ,QAAQ,KAAK,QAAQ;;;aAI5B,GAAG;AACV,aAAQ,MAAM,sCAAsC,EAAE;;KAExD;AAEF,MAAG,KAAK,KAAK,UAAU;IAAE,MAAM;IAAgB;IAAU,CAAC,CAAC;AAE3D,MAAG,GAAG,eAAe;IACnB,MAAM,SAAS,KAAK,QAAQ,IAAI,SAAS;AAEzC,QAAI,QAAQ;AACV,UAAK,MAAM,CAAC,GAAG,YAAY,OAAO,gBAAgB;AAChD,mBAAa,QAAQ,QAAQ;AAC7B,cAAQ,uBAAO,IAAI,MAAM,gBAAgB,CAAC;;AAE5C,YAAO,eAAe,OAAO;;AAG/B,SAAK,QAAQ,OAAO,SAAS;KAC7B;IACF;AAEF,OAAK,OAAO,GAAG,eAAe,WAAW,QAAQ;GAC/C,MAAM,UAAU,aAAa,IAAI;GACjC,MAAM,QAAQ,IAAI,QAAQ;GAC1B,MAAM,WACJ,QAAQ,oBAAoB,0BAA0B,MAAM;AAE9D,OAAI,CAAC,SAAU,QAAO,UAAU,OAAO;GAEvC,MAAM,YAAY,KAAK,QAAQ,IAAI,SAAS;AAE5C,OAAI,CAAC,UAAW,QAAO,UAAU,OAAO;GAExC,MAAM,EAAE,IAAI,OAAO,oBAAoB;AAEvC,OAAI,CAAC,gBAAgB,IAAI,MAAM,CAC7B,QAAO,UAAU,MAAM,MAAM,eAAe;AAG9C,aAAU,GAAG,YAAY,QAAQ;IAC/B,MAAM,WAAW,KAAK,KAAK;AAC3B,YAAQ,IAAI,oCAAoC,IAAI,UAAU,CAAC;AAC/D,UAAM,KACJ,KAAK,UAAU;KACb,MAAM;KACN,MAAM,IAAI,UAAU;KACpB,WAAW;KACZ,CAAC,CACH;KACD;GAGF,MAAM,cAAc,KAAsB,aAAsB;AAE9D,QAAI,SAAU;AAEd,QAAI;KACF,MAAM,OAAO,KAAK,MAAM,IAAI,UAAU,CAAC;AAEvC,SAAI,KAAK,SAAS,cAChB,WAAU,KAAK,KAAK,KAAK;YAErB;AACN,aAAQ,MACN,wCACA,IAAI,UAAU,CAAC,UAAU,GAAG,IAAI,CACjC;;;AAGL,SAAM,GAAG,WAAW,WAAW;AAE/B,aAAU,GAAG,eAAe;AAC1B,UAAM,IAAI,WAAW,WAAW;KAChC;IACF;AAGF,OAAK,QAAQ,GAAG,YAAY,KAAK,QAAQ,SAAS;GAChD,MAAM,MAAM,IAAI,OAAO;AAEvB,OAAI,IAAI,WAAW,cAAc,CAC/B,MAAK,IAAI,cAAc,KAAK,QAAQ,OAAO,OAAO;AAChD,SAAK,IAAI,KAAK,cAAc,IAAI,IAAI;KACpC;YACO,IAAI,WAAW,WAAW,CACnC,MAAK,OAAO,cAAc,KAAK,QAAQ,OAAO,cAAc;AAC1D,SAAK,OAAO,KAAK,cAAc,WAAW,IAAI;KAC9C;IAEJ;;CAGJ,uBAAuB;AACrB,OAAK,cAAc,qBACjB,KAAK,oBAAoB,KAAK,KAAK,CACpC;;CAGH,oBAAoB,KAAsB;EACxC,MAAM,QAAQ,IAAI,QAAQ;EAC1B,MAAM,eAAe,IAAI,QAAQ;EAEjC,IAAIF;AAEJ,MAAI,cAAc;GAChB,MAAM,QAAQ,aAAa,MAAM,wBAAwB;AACzD,OAAI,MACF,YAAW,MAAM;;AAIrB,MAAI,CAAC,SACH,YAAW,0BAA0B,MAAM;AAG7C,SAAO,WAAW,KAAK,QAAQ,IAAI,SAAS,IAAI,OAAO;;CAGzD,UAAU;AACR,OAAK,MAAM,GAAG,WAAW,KAAK,SAAS;AACrC,QAAK,MAAM,CAAC,GAAG,YAAY,OAAO,gBAAgB;AAChD,iBAAa,QAAQ,QAAQ;AAC7B,YAAQ,uBAAO,IAAI,MAAM,uBAAuB,CAAC;;AAEnD,UAAO,eAAe,OAAO;AAC7B,UAAO,GAAG,OAAO;;AAEnB,OAAK,QAAQ,OAAO;AAEpB,MAAI,KAAK,IACP,MAAK,IAAI,OAAO;AAElB,MAAI,KAAK,OACP,MAAK,OAAO,OAAO"}

package/dist/server/remote-tunnel/wait.html

@@ -0,0 +1,158 @@
+<!DOCTYPE html>
+<html lang="en">
+  <head>
+    <meta charset="UTF-8" />
+    <title>Waiting for Approval</title>
+    <meta http-equiv="refresh" content="2">
+  </head>
+  <body>
+    <div id="root">
+      <style>
+        body {
+          background: #1b1b1d;
+          height: 100vh;
+          margin: 0;
+          display: flex;
+          align-items: center;
+          justify-content: center;
+          font-family: -apple-system, BlinkMacSystemFont, "Segoe UI", "Roboto",
+            "Helvetica", "Arial", sans-serif;
+        }
+        .loader-container {
+          display: flex;
+          flex-direction: column;
+          align-items: center;
+          padding: 50px 70px;
+        }
+        .logo {
+          width: 64px;
+          height: 64px;
+          margin-bottom: 32px;
+          position: relative;
+        }
+        .logo svg {
+          width: 100%;
+          height: 100%;
+        }
+        .spinner {
+          width: 32px;
+          height: 32px;
+          border: 3px solid rgba(255, 255, 255, 0.1);
+          border-top: 3px solid #ff3621;
+          border-radius: 50%;
+          animation: spin 0.8s linear infinite;
+          margin-bottom: 32px;
+        }
+        @keyframes spin {
+          0% {
+            transform: rotate(0deg);
+          }
+          100% {
+            transform: rotate(360deg);
+          }
+        }
+        .loading-text {
+          font-size: 1.125rem;
+          color: #ffffff;
+          letter-spacing: 0.02em;
+          font-weight: 400;
+          text-align: center;
+          margin-top: 0;
+          opacity: 0.9;
+        }
+        .sub-text {
+          font-size: 0.875rem;
+          color: rgba(255, 255, 255, 0.6);
+          margin-top: 12px;
+          text-align: center;
+        }
+        .tunnel-id {
+          font-size: 0.75rem;
+          color: rgba(255, 255, 255, 0.4);
+          margin-top: 8px;
+          letter-spacing: 0.05em;
+          font-family: monospace;
+        }
+        .databricks-brand {
+          font-size: 0.875rem;
+          color: rgba(255, 255, 255, 0.5);
+          margin-top: 24px;
+          letter-spacing: 0.05em;
+          text-transform: uppercase;
+          font-weight: 500;
+        }
+        .dots {
+          display: inline-block;
+          animation: dots 1.5s steps(4, end) infinite;
+        }
+        @keyframes dots {
+          0%,
+          20% {
+            content: ".";
+          }
+          40% {
+            content: "..";
+          }
+          60%,
+          100% {
+            content: "...";
+          }
+        }
+      </style>
+      <div class="loader-container">
+        <div class="logo">
+          <svg
+            version="1.1"
+            id="Layer_1"
+            xmlns:x="ns_extend;"
+            xmlns:i="ns_ai;"
+            xmlns:graph="ns_graphs;"
+            xmlns="http://www.w3.org/2000/svg"
+            xmlns:xlink="http://www.w3.org/1999/xlink"
+            x="0px"
+            y="0px"
+            viewBox="0 0 40.1 42"
+            style="enable-background: new 0 0 40.1 42"
+            xml:space="preserve"
+          >
+            <style type="text/css">
+              .st0 {
+                fill: #ff3621;
+              }
+            </style>
+            <metadata>
+              <sfw xmlns="ns_sfw;">
+                <slices></slices>
+                <sliceSourceBounds
+                  bottomLeftOrigin="true"
+                  height="42"
+                  width="40.1"
+                  x="-69.1"
+                  y="-10.5"
+                ></sliceSourceBounds>
+              </sfw>
+            </metadata>
+            <g>
+              <path
+                class="st0"
+                d="M40.1,31.1v-7.4l-0.8-0.5L20.1,33.7l-18.2-10l0-4.3l18.2,9.9l20.1-10.9v-7.3l-0.8-0.5L20.1,21.2L2.6,11.6
+           L20.1,2l14.1,7.7l1.1-0.6V8.3L20.1,0L0,10.9V12L20.1,23l18.2-10v4.4l-18.2,10L0.8,16.8L0,17.3v7.4l20.1,10.9l18.2-9.9v4.3l-18.2,10
+           L0.8,29.5L0,30v1.1L20.1,42L40.1,31.1z"
+              ></path>
+            </g>
+          </svg>
+        </div>
+
+        <div class="spinner"></div>
+        <div class="loading-text">
+          Waiting for approval<span class="dots">...</span>
+        </div>
+        <div class="sub-text">
+          Requesting access to tunnel from owner
+        </div>
+        <div class="tunnel-id">Tunnel ID: {{tunnelId}}</div>
+        <div class="databricks-brand">Databricks</div>
+      </div>
+    </div>
+  </body>
+</html>

package/dist/server/static-server.js

@@ -0,0 +1,47 @@
+import { BaseServer } from "./base-server.js";
+import path from "node:path";
+import fs from "node:fs";
+import express from "express";
+
+//#region src/server/static-server.ts
+/**
+* Static server for the AppKit.
+*
+* Serves pre-built static files in production mode. Handles SPA routing
+* by serving index.html for non-API routes and injects runtime configuration.
+*
+* @example
+* ```ts
+* const staticServer = new StaticServer(app, staticPath, endpoints);
+* staticServer.setup();
+* ```
+*/
+var StaticServer = class extends BaseServer {
+	constructor(app, staticPath, endpoints = {}) {
+		super(app, endpoints);
+		this.staticPath = staticPath;
+	}
+	/** Setup the static server. */
+	setup() {
+		this.app.use(express.static(this.staticPath, { index: false }));
+		this.app.get("*", (req, res, next) => {
+			if (req.path.startsWith("/api") || req.path.startsWith("/query")) return next();
+			this.serveIndex(res);
+		});
+	}
+	/** Serve the index.html file. */
+	serveIndex(res) {
+		const indexPath = path.join(this.staticPath, "index.html");
+		if (!fs.existsSync(indexPath)) {
+			res.status(404).send("index.html not found");
+			return;
+		}
+		let html = fs.readFileSync(indexPath, "utf-8");
+		html = html.replace("<body>", `<body>${this.getConfigScript()}`);
+		res.send(html);
+	}
+};
+
+//#endregion
+export { StaticServer };
+//# sourceMappingURL=static-server.js.map

package/dist/server/static-server.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"static-server.js","names":["expressStatic"],"sources":["../../src/server/static-server.ts"],"sourcesContent":["import fs from \"node:fs\";\nimport path from \"node:path\";\nimport type express from \"express\";\nimport expressStatic from \"express\";\nimport { BaseServer } from \"./base-server\";\nimport type { PluginEndpoints } from \"./utils\";\n\n/**\n * Static server for the AppKit.\n *\n * Serves pre-built static files in production mode. Handles SPA routing\n * by serving index.html for non-API routes and injects runtime configuration.\n *\n * @example\n * ```ts\n * const staticServer = new StaticServer(app, staticPath, endpoints);\n * staticServer.setup();\n * ```\n */\nexport class StaticServer extends BaseServer {\n  private staticPath: string;\n\n  constructor(\n    app: express.Application,\n    staticPath: string,\n    endpoints: PluginEndpoints = {},\n  ) {\n    super(app, endpoints);\n    this.staticPath = staticPath;\n  }\n\n  /** Setup the static server. */\n  setup() {\n    this.app.use(\n      expressStatic.static(this.staticPath, {\n        index: false,\n      }),\n    );\n\n    this.app.get(\"*\", (req, res, next) => {\n      if (req.path.startsWith(\"/api\") || req.path.startsWith(\"/query\")) {\n        return next();\n      }\n      this.serveIndex(res);\n    });\n  }\n\n  /** Serve the index.html file. */\n  private serveIndex(res: express.Response) {\n    const indexPath = path.join(this.staticPath, \"index.html\");\n\n    if (!fs.existsSync(indexPath)) {\n      res.status(404).send(\"index.html not found\");\n      return;\n    }\n\n    let html = fs.readFileSync(indexPath, \"utf-8\");\n    html = html.replace(\"<body>\", `<body>${this.getConfigScript()}`);\n    res.send(html);\n  }\n}\n"],"mappings":";;;;;;;;;;;;;;;;;;AAmBA,IAAa,eAAb,cAAkC,WAAW;CAG3C,YACE,KACA,YACA,YAA6B,EAAE,EAC/B;AACA,QAAM,KAAK,UAAU;AACrB,OAAK,aAAa;;;CAIpB,QAAQ;AACN,OAAK,IAAI,IACPA,QAAc,OAAO,KAAK,YAAY,EACpC,OAAO,OACR,CAAC,CACH;AAED,OAAK,IAAI,IAAI,MAAM,KAAK,KAAK,SAAS;AACpC,OAAI,IAAI,KAAK,WAAW,OAAO,IAAI,IAAI,KAAK,WAAW,SAAS,CAC9D,QAAO,MAAM;AAEf,QAAK,WAAW,IAAI;IACpB;;;CAIJ,AAAQ,WAAW,KAAuB;EACxC,MAAM,YAAY,KAAK,KAAK,KAAK,YAAY,aAAa;AAE1D,MAAI,CAAC,GAAG,WAAW,UAAU,EAAE;AAC7B,OAAI,OAAO,IAAI,CAAC,KAAK,uBAAuB;AAC5C;;EAGF,IAAI,OAAO,GAAG,aAAa,WAAW,QAAQ;AAC9C,SAAO,KAAK,QAAQ,UAAU,SAAS,KAAK,iBAAiB,GAAG;AAChE,MAAI,KAAK,KAAK"}

package/dist/server/types.d.ts

@@ -0,0 +1,14 @@
+import { BasePluginConfig } from "../shared/src/plugin.js";
+import { Plugin } from "../plugin/plugin.js";
+
+//#region src/server/types.d.ts
+interface ServerConfig extends BasePluginConfig {
+  port?: number;
+  plugins?: Record<string, Plugin>;
+  staticPath?: string;
+  autoStart?: boolean;
+  host?: string;
+}
+//#endregion
+export { ServerConfig };
+//# sourceMappingURL=types.d.ts.map

package/dist/server/types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.d.ts","names":[],"sources":["../../src/server/types.ts"],"sourcesContent":[],"mappings":";;;;UAGiB,YAAA,SAAqB;;EAArB,OAAA,CAAA,EAEL,MAFkB,CAAA,MAAA,EAEH,MAFG,CAAA;EAAA,UAAA,CAAA,EAAA,MAAA;WAEH,CAAA,EAAA,OAAA;MAAf,CAAA,EAAA,MAAA"}

package/dist/server/utils.js

@@ -0,0 +1,70 @@
+import crypto from "node:crypto";
+import path from "node:path";
+import fs from "node:fs";
+
+//#region src/server/utils.ts
+function parseCookies(req) {
+	const cookieHeader = req.headers.cookie;
+	if (!cookieHeader) return {};
+	if (cookieHeader.indexOf(";") === -1) {
+		const eqIndex = cookieHeader.indexOf("=");
+		if (eqIndex === -1) return {};
+		return { [cookieHeader.slice(0, eqIndex).trim()]: cookieHeader.slice(eqIndex + 1) };
+	}
+	const cookies = {};
+	const parts = cookieHeader.split(";");
+	for (let i = 0; i < parts.length; i++) {
+		const eqIndex = parts[i].indexOf("=");
+		if (eqIndex !== -1) {
+			const key = parts[i].slice(0, eqIndex).trim();
+			cookies[key] = parts[i].slice(eqIndex + 1);
+		}
+	}
+	return cookies;
+}
+function generateTunnelIdFromEmail(email) {
+	if (!email) return void 0;
+	return crypto.createHash("sha256").update(email).digest("base64url").slice(0, 8);
+}
+function getRoutes(stack, basePath = "") {
+	const routes = [];
+	stack.forEach((layer) => {
+		if (layer.route) {
+			const path$1 = basePath + layer.route.path;
+			const methods = Object.keys(layer.route.methods).map((m) => m.toUpperCase());
+			routes.push({
+				path: path$1,
+				methods
+			});
+		} else if (layer.name === "router" && layer.handle.stack) {
+			const nestedBase = basePath + layer.regexp.source.replace("^\\", "").replace("\\/?(?=\\/|$)", "").replace(/\\\//g, "/").replace(/\$$/, "") || "";
+			routes.push(...getRoutes(layer.handle.stack, nestedBase));
+		}
+	});
+	return routes;
+}
+function getQueries(configFolder) {
+	const queriesFolder = path.join(configFolder, "queries");
+	if (!fs.existsSync(queriesFolder)) return {};
+	return Object.fromEntries(fs.readdirSync(queriesFolder).filter((f) => path.extname(f) === ".sql").map((f) => [path.basename(f, ".sql"), path.basename(f, ".sql")]));
+}
+function getRuntimeConfig(endpoints = {}) {
+	const configFolder = path.join(process.cwd(), "config");
+	return {
+		appName: process.env.DATABRICKS_APP_NAME || "",
+		queries: getQueries(configFolder),
+		endpoints
+	};
+}
+function getConfigScript(endpoints = {}) {
+	const config = getRuntimeConfig(endpoints);
+	return `
+    <script>
+      window.__CONFIG__ = ${JSON.stringify(config)};
+    <\/script>
+  `;
+}
+
+//#endregion
+export { generateTunnelIdFromEmail, getConfigScript, getRoutes, parseCookies };
+//# sourceMappingURL=utils.js.map