@qiaolei81/copilot-session-viewer 0.3.3 → 0.3.5

package/scripts/release.sh

@@ -1,43 +0,0 @@
-#!/bin/bash
-# Bump version and create GitHub release
-# Usage: ./release.sh [patch|minor|major]
-
-set -e
-
-# Default to patch if no argument
-VERSION_TYPE=${1:-patch}
-
-# Validate version type
-if [[ ! "$VERSION_TYPE" =~ ^(patch|minor|major)$ ]]; then
-  echo "❌ Invalid version type: $VERSION_TYPE"
-  echo "Usage: $0 [patch|minor|major]"
-  exit 1
-fi
-
-# Ensure working directory is clean
-if [[ -n $(git status -s) ]]; then
-  echo "❌ Working directory is not clean. Commit or stash changes first."
-  exit 1
-fi
-
-# Bump version
-echo "📦 Bumping $VERSION_TYPE version..."
-npm version $VERSION_TYPE -m "chore: release v%s"
-
-# Get new version
-NEW_VERSION=$(node -p "require('./package.json').version")
-echo "✅ Version bumped to: $NEW_VERSION"
-
-# Push tag and code
-echo "🚀 Pushing to GitHub..."
-git push --follow-tags
-
-# Create GitHub release
-echo "🎉 Creating GitHub release..."
-gh release create "v$NEW_VERSION" \
-  --title "v$NEW_VERSION" \
-  --generate-notes \
-  --verify-tag
-
-echo "✅ Release v$NEW_VERSION created!"
-echo "🔗 https://github.com/qiaolei81/copilot-session-viewer/releases/tag/v$NEW_VERSION"

package/server.js

@@ -1,29 +0,0 @@
-// IMPORTANT: Initialize telemetry FIRST, before any other requires (especially Express)
-require('./src/telemetry');
-
-const createApp = require('./src/app');
-const config = require('./src/config');
-const processManager = require('./src/utils/processManager');
-
-// Create the Express app
-const app = createApp();
-
-// Export app for testing
-module.exports = app;
-
-// Start server only if not being required by tests
-if (require.main === module) {
-  const server = app.listen(config.PORT, () => {
-    console.log(`🚀 Copilot Session Viewer running at http://localhost:${config.PORT}`);
-    console.log(`🔧 Environment: ${config.NODE_ENV}`);
-    console.log(`⚡ Active processes: ${processManager.getActiveCount()}`);
-  });
-
-  // Graceful shutdown
-  process.on('SIGTERM', () => {
-    console.log('📛 SIGTERM received, closing server...');
-    server.close(() => {
-      console.log('✅ Server closed');
-    });
-  });
-}

package/src/app.js

@@ -1,129 +0,0 @@
-const express = require('express');
-const path = require('path');
-const compression = require('compression');
-const helmet = require('helmet');
-
-// Configuration
-const config = require('./config');
-
-// Middleware
-// Rate limiting disabled for local development
-// const { globalLimiter, insightGenerationLimiter, insightAccessLimiter, uploadLimiter } = require('./middleware/rateLimiting');
-const { requestTimeout, developmentCors, errorHandler, notFoundHandler, telemetryLocals } = require('./middleware/common');
-
-// Controllers
-const SessionController = require('./controllers/sessionController');
-const InsightController = require('./controllers/insightController');
-const UploadController = require('./controllers/uploadController');
-const TagController = require('./controllers/tagController');
-
-function createApp(options = {}) {
-  const app = express();
-
-  // Disable Express's automatic ETag generation (prevents 304 on live/active session files)
-  app.set('etag', false);
-
-  // Create controller instances (with optional dependency injection)
-  const sessionController = new SessionController(options.sessionService);
-  const insightController = new InsightController(options.insightService, options.sessionService);
-  const uploadController = new UploadController();
-  const tagController = new TagController(options.tagService);
-
-  // Minimal security headers for local development tool
-  // Custom CSP without upgrade-insecure-requests
-  app.use((req, res, next) => {
-    res.setHeader(
-      'Content-Security-Policy',
-      "default-src 'self'; " +
-      "style-src 'self' 'unsafe-inline' https: http:; " +
-      "font-src 'self' https: http:; " +
-      "script-src 'self' 'unsafe-inline' 'unsafe-eval' https: http:; " +
-      "img-src 'self' data: https: http:; " +
-      "connect-src 'self' https: http:"
-    );
-    next();
-  });
-  
-  // Other helmet protections (without CSP and HSTS)
-  app.use(helmet({
-    contentSecurityPolicy: false,
-    hsts: false,
-    referrerPolicy: false,
-    crossOriginEmbedderPolicy: false,
-    crossOriginOpenerPolicy: false,
-    crossOriginResourcePolicy: false
-  }));
-
-  app.use(compression({
-    level: 1, // Fast compression (speed > ratio for local use)
-    threshold: 1024, // Compress responses > 1KB
-    filter: (req, res) => {
-      // Skip compression for large JSON API responses (handled separately)
-      if (req.path.includes('/events') && res.getHeader('Content-Type')?.includes('application/json')) {
-        return false;
-      }
-      return compression.filter(req, res);
-    }
-  }));
-  app.use(express.json({ limit: '1mb' }));
-  app.use(express.urlencoded({ extended: true }));
-  app.use(requestTimeout);
-  app.use(telemetryLocals);
-
-  // CORS in development
-  if (config.NODE_ENV === 'development') {
-    app.use(developmentCors);
-  }
-
-  // Rate limiting - DISABLED for local development
-  // app.use(globalLimiter);
-
-  // Static files
-  app.use('/public', express.static(path.join(__dirname, '../public')));
-
-  // View engine
-  app.set('view engine', 'ejs');
-  app.set('views', path.join(__dirname, '../views'));
-
-  // Routes with controllers
-
-  // Page routes
-  app.get('/', sessionController.getHomepage.bind(sessionController));
-  app.get('/session/:id', sessionController.getSessionDetail.bind(sessionController));
-  app.get('/session/:id/time-analyze', sessionController.getTimeAnalysis.bind(sessionController));
-  app.get('/session/:id/export', sessionController.exportSession.bind(sessionController));
-
-  // API routes (more specific routes first)
-  app.get('/api/sessions/load-more', sessionController.loadMoreSessions.bind(sessionController));
-  app.get('/api/sessions', sessionController.getSessions.bind(sessionController));
-  app.get('/api/sessions/:id/events', sessionController.getSessionEvents.bind(sessionController));
-  app.get('/api/sessions/:id/timeline', sessionController.getTimeline.bind(sessionController));
-
-  // Tag routes
-  app.get('/api/tags', tagController.getAllTags.bind(tagController));
-  app.get('/api/sessions/:id/tags', tagController.getSessionTags.bind(tagController));
-  app.put('/api/sessions/:id/tags', tagController.setSessionTags.bind(tagController));
-
-  // Upload routes
-  app.get('/session/:id/share', uploadController.shareSession.bind(uploadController));
-  app.post('/session/import',
-    (req, res, next) => uploadController.getUploadMiddleware()(req, res, next),
-    uploadController.importSession.bind(uploadController)
-  );
-
-  // Insight routes (rate limiting disabled)
-  app.post('/session/:id/insight', insightController.generateInsight.bind(insightController));
-  app.get('/session/:id/insight', insightController.getInsightStatus.bind(insightController));
-  app.delete('/session/:id/insight', insightController.deleteInsight.bind(insightController));
-
-  // Upload rate limiting - DISABLED
-  // app.use('/session/import', uploadLimiter);
-
-  // Error handling
-  app.use(notFoundHandler);
-  app.use(errorHandler);
-
-  return app;
-}
-
-module.exports = createApp;

package/src/config/index.js

@@ -1,27 +0,0 @@
-/**
- * Application Configuration Constants
- */
-
-module.exports = {
-  // Server
-  PORT: process.env.PORT || 3838,
-  NODE_ENV: process.env.NODE_ENV || 'production', // Default to production for security
-
-  // Logging
-  LOG_LEVEL: process.env.LOG_LEVEL || (process.env.NODE_ENV === 'development' ? 'DEBUG' : 'INFO'),
-
-  // Insight Generation
-  INSIGHT_TIMEOUT_MS: 5 * 60 * 1000, // 5 minutes
-  INSIGHT_CACHE_TTL_MS: 24 * 60 * 60 * 1000, // 24 hours
-
-  // File Upload
-  MAX_UPLOAD_SIZE: 10 * 1024 * 1024, // 10MB (reduced from 50MB for security)
-
-  // Session Repository
-  SESSION_CACHE_TTL_MS: 30 * 1000, // 30 seconds
-
-  // Request Limits - More lenient for better UX
-  RATE_LIMIT_WINDOW_MS: 15 * 60 * 1000, // 15 minutes
-  RATE_LIMIT_MAX_REQUESTS: 15, // Increased from 5 to 15 for better UX
-  REQUEST_TIMEOUT_MS: 30 * 1000 // 30 seconds
-};

package/src/controllers/insightController.js

@@ -1,136 +0,0 @@
-const InsightService = require('../services/insightService');
-const { isValidSessionId } = require('../utils/helpers');
-const { trackEvent, trackMetric, trackException } = require('../telemetry');
-
-class InsightController {
-  constructor(insightService = null, sessionService = null) {
-    if (insightService) {
-      this.insightService = insightService;
-    } else {
-      // Use default multi-source configuration
-      this.insightService = new InsightService();
-    }
-    
-    // SessionService for getting session metadata (source)
-    if (sessionService) {
-      this.sessionService = sessionService;
-    } else {
-      const SessionService = require('../services/sessionService');
-      this.sessionService = new SessionService();
-    }
-  }
-
-  // Generate or get insight
-  async generateInsight(req, res) {
-    try {
-      const sessionId = req.params.id;
-      const forceRegenerate = req.body?.force === true;
-
-      if (!isValidSessionId(sessionId)) {
-        return res.status(400).json({ error: 'Invalid session ID' });
-      }
-
-      // Get session to determine source and directory
-      const session = await this.sessionService.getSessionById(sessionId);
-      if (!session) {
-        return res.status(404).json({ error: 'Session not found' });
-      }
-
-      if (!session.directory) {
-        return res.status(400).json({ error: 'Session directory not available' });
-      }
-
-      const startTime = Date.now();
-      const result = await this.insightService.generateInsight(session.id, session.directory, session.source, forceRegenerate);
-      const durationMs = Date.now() - startTime;
-
-      // Track InsightGenerated event
-      trackEvent('InsightGenerated', {
-        sessionId,
-        source: session.source || 'unknown',
-        durationMs: durationMs.toString()
-      });
-
-      // Track InsightGenerationTime metric
-      trackMetric('InsightGenerationTime', durationMs, { sessionId, source: session.source || 'unknown' });
-
-      res.json(result);
-    } catch (err) {
-      console.error('Error generating insight:', err);
-
-      // Track insight generation failure
-      trackException(err, {
-        sessionId: req.params.id,
-        operation: 'generateInsight'
-      });
-
-      res.status(500).json({ error: err.message || 'Error generating insight' });
-    }
-  }
-
-  // Get insight status
-  async getInsightStatus(req, res) {
-    try {
-      const sessionId = req.params.id;
-
-      if (!isValidSessionId(sessionId)) {
-        return res.status(400).json({ error: 'Invalid session ID' });
-      }
-
-      // Get session to determine directory
-      const session = await this.sessionService.getSessionById(sessionId);
-      if (!session) {
-        return res.status(404).json({ error: 'Session not found' });
-      }
-
-      if (!session.directory) {
-        return res.status(400).json({ error: 'Session directory not available' });
-      }
-
-      const result = await this.insightService.getInsightStatus(session.id, session.directory, session.source);
-
-      // Track InsightViewed event if insight is ready
-      if (result.status === 'ready' && result.report) {
-        trackEvent('InsightViewed', { sessionId });
-      }
-
-      res.json(result);
-    } catch (err) {
-      console.error('Error getting insight status:', err);
-      res.status(500).json({ error: 'Error getting insight status' });
-    }
-  }
-
-  // Delete insight
-  async deleteInsight(req, res) {
-    try {
-      const sessionId = req.params.id;
-
-      if (!isValidSessionId(sessionId)) {
-        return res.status(400).json({ error: 'Invalid session ID' });
-      }
-
-      // Get session to determine directory
-      const session = await this.sessionService.getSessionById(sessionId);
-      if (!session) {
-        return res.status(404).json({ error: 'Session not found' });
-      }
-
-      if (!session.directory) {
-        return res.status(400).json({ error: 'Session directory not available' });
-      }
-
-      const result = await this.insightService.deleteInsight(session.id, session.directory, session.source);
-
-      // Track InsightDeleted event
-      trackEvent('InsightDeleted', { sessionId });
-
-      res.json(result);
-    } catch (err) {
-      console.error('Error deleting insight:', err);
-      res.status(500).json({ error: 'Error deleting insight' });
-    }
-  }
-}
-
-module.exports = InsightController;