npm - @kimuson/claude-code-viewer - Versions diffs - 0.6.0-beta.1 → 0.6.0-beta.2 - Mend

@kimuson/claude-code-viewer 0.6.0-beta.1 → 0.6.0-beta.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (14) hide show

package/README.md CHANGED Viewed

@@ -168,6 +168,15 @@ Claude Code Viewer can be configured using command-line options or environment v
 - `CLAUDE_CODE_VIEWER_CC_EXECUTABLE_PATH` → `CCV_CC_EXECUTABLE_PATH`
 - New environment variable added: `CCV_GLOBAL_CLAUDE_DIR` (previously the Claude directory path was hardcoded to `~/.claude`)
+### API Authentication
+When `--password` / `CCV_PASSWORD` is set, all `/api` routes (except auth-related endpoints) require authentication. You can authenticate in two ways:
+1. **Session cookie**: Use the `/api/auth/login` endpoint to set the `ccv-session` cookie, then include it in subsequent requests.
+2. **Authorization header**: Send `Authorization: Bearer <password>` on each request.
+If no password is configured, API authentication is disabled.
 ### User Settings
 Settings can be configured from the sidebar in Claude Code Viewer.

package/dist/main.js CHANGED Viewed

@@ -7,7 +7,7 @@ import { Effect as Effect65 } from "effect";
 // package.json
 var package_default = {
   name: "@kimuson/claude-code-viewer",
-  version: "0.6.0-beta.1",
+  version: "0.6.0-beta.2",
   description: "A full-featured web-based Claude Code client that provides complete interactive functionality for managing Claude Code projects.",
   type: "module",
   license: "MIT",
@@ -39,7 +39,7 @@ var package_default = {
     fix: "run-s 'fix:*'",
     "fix:biome-format": "biome format --write .",
     "fix:biome-lint": "biome check --write --unsafe .",
-    typecheck: "tsc --noEmit",
+    typecheck: "tsgo --noEmit",
     test: "vitest --run",
     "test:watch": "vitest",
     e2e: "./scripts/e2e/exec_e2e.sh",
@@ -76,6 +76,7 @@ var package_default = {
     "@radix-ui/react-slot": "1.2.4",
     "@radix-ui/react-tabs": "1.1.13",
     "@radix-ui/react-tooltip": "1.2.8",
+    "@replit/ruspty": "^3.6.0",
     "@tailwindcss/vite": "4.1.18",
     "@tanstack/react-devtools": "0.9.2",
     "@tanstack/react-query": "5.90.20",
@@ -107,7 +108,6 @@ var package_default = {
     sonner: "2.0.7",
     "tailwind-merge": "3.4.0",
     ulid: "3.0.2",
-    "node-pty": "1.1.0-beta34",
     ws: "8.18.3",
     zod: "4.3.6"
   },
@@ -127,6 +127,7 @@ var package_default = {
     "@types/react-dom": "19.2.3",
     "@types/react-syntax-highlighter": "15.5.13",
     "@types/ws": "8.18.0",
+    "@typescript/native-preview": "7.0.0-dev.20260207.1",
     "@vitejs/plugin-react-swc": "4.2.2",
     dotenv: "17.2.3",
     esbuild: "0.27.2",
@@ -8758,6 +8759,41 @@ var TasksController = class extends Context37.Tag("TasksController")() {
 // src/server/core/terminal/TerminalService.ts
 import { Context as Context38, Effect as Effect48, Layer as Layer40 } from "effect";
 import { ulid as ulid5 } from "ulid";
+// src/server/core/terminal/normalizePtyChunk.ts
+var normalizePtyChunk = (chunk) => {
+  if (typeof chunk === "string") {
+    return chunk;
+  }
+  if (chunk instanceof Uint8Array) {
+    return Buffer.from(chunk).toString("utf8");
+  }
+  if (chunk instanceof ArrayBuffer) {
+    return Buffer.from(chunk).toString("utf8");
+  }
+  return null;
+};
+// src/server/core/terminal/rusptyAdapter.ts
+var createRusptySession = (ruspty, options) => {
+  const pty = new ruspty.Pty(options);
+  return {
+    process: {
+      write: (data) => {
+        pty.write.write(data);
+      },
+      resize: (cols, rows) => {
+        pty.resize({ cols, rows });
+      },
+      kill: () => {
+        pty.close();
+      }
+    },
+    read: pty.read
+  };
+};
+// src/server/core/terminal/TerminalService.ts
 var DEFAULT_COLS = 80;
 var DEFAULT_ROWS = 24;
 var MAX_BUFFER_BYTES = 1024 * 1024 * 2;
@@ -8794,9 +8830,9 @@ var LayerImpl30 = Effect48.gen(function* () {
       snapshotSince: () => Effect48.succeed(void 0)
     };
   };
-  const nodePty = yield* Effect48.tryPromise({
-    try: () => import("node-pty"),
-    catch: (error) => new Error(`Failed to load node-pty: ${String(error)}`)
+  const ruspty = yield* Effect48.tryPromise({
+    try: () => import("@replit/ruspty"),
+    catch: (error) => new Error(`Failed to load @replit/ruspty: ${String(error)}`)
   }).pipe(
     Effect48.catchAll(
       (error) => Effect48.sync(() => {
@@ -8805,10 +8841,9 @@ var LayerImpl30 = Effect48.gen(function* () {
       })
     )
   );
-  if (!nodePty) {
-    return disabledService("node-pty failed to load");
+  if (!ruspty) {
+    return disabledService("@replit/ruspty failed to load");
   }
-  const { spawn } = nodePty;
   const trimBuffer = (session) => {
     while (session.bufferBytes > MAX_BUFFER_BYTES && session.buffer.length > 0) {
       const removed = session.buffer.shift();
@@ -8864,16 +8899,26 @@ var LayerImpl30 = Effect48.gen(function* () {
       options.fallbackShell,
       options.unrestrictedFlag
     );
-    const pty = spawn(shell.command, shell.args, {
-      name: "xterm-color",
-      cols: DEFAULT_COLS,
-      rows: DEFAULT_ROWS,
-      cwd: options.cwd,
-      env: options.env
+    const { process: ptyProcess, read } = createRusptySession(ruspty, {
+      command: shell.command,
+      args: shell.args,
+      envs: options.env,
+      dir: options.cwd,
+      size: { cols: DEFAULT_COLS, rows: DEFAULT_ROWS },
+      onExit: (_error, exitCode) => {
+        const current = sessions.get(id);
+        if (!current) return;
+        current.exited = true;
+        current.lastActivity = Date.now();
+        broadcast(current, { type: "exit", code: exitCode });
+        if (current.clients.size === 0) {
+          destroySession(current.id);
+        }
+      }
     });
     const session = {
       id,
-      pty,
+      pty: ptyProcess,
       seq: 0,
       buffer: [],
       bufferBytes: 0,
@@ -8882,27 +8927,22 @@ var LayerImpl30 = Effect48.gen(function* () {
       exited: false,
       inputBuffer: ""
     };
-    pty.onData((data) => {
-      if (session.exited) return;
-      session.lastActivity = Date.now();
-      session.seq += 1;
-      session.buffer.push({ seq: session.seq, data });
-      session.bufferBytes += Buffer.byteLength(data, "utf8");
-      trimBuffer(session);
-      broadcast(session, {
+    read.on("data", (chunk) => {
+      const data = normalizePtyChunk(chunk);
+      if (data === null) return;
+      const current = sessions.get(session.id);
+      if (!current || current.exited) return;
+      current.lastActivity = Date.now();
+      current.seq += 1;
+      current.buffer.push({ seq: current.seq, data });
+      current.bufferBytes += Buffer.byteLength(data, "utf8");
+      trimBuffer(current);
+      broadcast(current, {
         type: "output",
-        seq: session.seq,
+        seq: current.seq,
         data
       });
     });
-    pty.onExit((event) => {
-      session.exited = true;
-      session.lastActivity = Date.now();
-      broadcast(session, { type: "exit", code: event.exitCode });
-      if (session.clients.size === 0) {
-        destroySession(session.id);
-      }
-    });
     sessions.set(id, session);
     return session;
   };
@@ -9139,7 +9179,15 @@ var generateSessionToken = (password) => {
   if (!password) return "";
   return Buffer.from(`ccv-session:${password}`).toString("base64");
 };
-var createAuthRequiredMiddleware = (authEnabled, validSessionToken) => {
+var getBearerToken = (authorization) => {
+  if (!authorization) return void 0;
+  const [scheme, token] = authorization.split(" ");
+  if (!scheme || !token) return void 0;
+  if (scheme.toLowerCase() !== "bearer") return void 0;
+  const trimmedToken = token.trim();
+  return trimmedToken.length > 0 ? trimmedToken : void 0;
+};
+var createAuthRequiredMiddleware = (authEnabled, validSessionToken, authPassword) => {
   return createMiddleware(async (c, next) => {
     if (!c.req.path.startsWith("/api")) {
       return next();
@@ -9148,7 +9196,10 @@ var createAuthRequiredMiddleware = (authEnabled, validSessionToken) => {
       return next();
     }
     const sessionToken = getCookie(c, "ccv-session");
-    if (!sessionToken || sessionToken !== validSessionToken) {
+    const bearerToken = getBearerToken(c.req.header("Authorization"));
+    const cookieAuthorized = sessionToken === validSessionToken;
+    const bearerAuthorized = authPassword !== void 0 && bearerToken === authPassword;
+    if (!cookieAuthorized && !bearerAuthorized) {
       return c.json({ error: "Unauthorized" }, 401);
     }
     await next();
@@ -9170,11 +9221,12 @@ var LayerImpl31 = Effect50.gen(function* () {
         if (!c.req.path.startsWith("/api")) {
           return next();
         }
-        const { authEnabled, validSessionToken } = await runPromise(getAuthState);
-        return createAuthRequiredMiddleware(authEnabled, validSessionToken)(
-          c,
-          next
-        );
+        const { authEnabled, validSessionToken, authPassword } = await runPromise(getAuthState);
+        return createAuthRequiredMiddleware(
+          authEnabled,
+          validSessionToken,
+          authPassword
+        )(c, next);
       }
     );
     return {