@undefineds.co/xpod 0.1.6 → 0.2.0-preview.2

package/dist/api/handlers/SubdomainClientHandler.js.map

@@ -1 +1 @@
-{"version":3,"file":"SubdomainClientHandler.js","sourceRoot":"","sources":["../../../src/api/handlers/SubdomainClientHandler.ts"],"names":[],"mappings":";AAAA;;;;GAIG;;AAyBH,sEA8HC;AApJD,iEAAqD;AASrD;;;;;;;;;;;;GAYG;AACH,SAAgB,6BAA6B,CAC3C,MAAiB,EACjB,OAAsC;IAEtC,MAAM,MAAM,GAAG,IAAA,oCAAY,EAAC,wBAAwB,CAAC,CAAC;IACtD,MAAM,MAAM,GAAG,OAAO,CAAC,eAAe,CAAC;IAEvC,oDAAoD;IACpD,MAAM,CAAC,GAAG,CAAC,qBAAqB,EAAE,KAAK,EAAE,OAAO,EAAE,QAAQ,EAAE,OAAO,EAAE,EAAE;QACrE,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,OAAO,CAAC,GAAG,IAAI,GAAG,EAAE,UAAU,OAAO,CAAC,OAAO,CAAC,IAAI,IAAI,WAAW,EAAE,CAAC,CAAC;QACzF,MAAM,IAAI,GAAG,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;QAE1C,IAAI,CAAC,IAAI,EAAE,CAAC;YACV,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,gCAAgC,EAAE,CAAC,CAAC;YACrE,OAAO;QACT,CAAC;QAED,IAAI,CAAC;YACH,MAAM,MAAM,GAAG,MAAM,MAAM,CAAC,iBAAiB,CAAC,IAAI,CAAC,CAAC;YACpD,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,MAAM,CAAC,CAAC;QAClC,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,CAAC,KAAK,CAAC,iCAAiC,KAAK,EAAE,CAAC,CAAC;YACvD,aAAa,CAAC,QAAQ,EAAE,KAAK,CAAC,CAAC;QACjC,CAAC;IACH,CAAC,EAAE,EAAE,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC;IAErB,4BAA4B;IAC5B,MAAM,CAAC,GAAG,CAAC,eAAe,EAAE,KAAK,EAAE,QAAQ,EAAE,QAAQ,EAAE,OAAO,EAAE,EAAE;QAChE,IAAI,CAAC;YACH,MAAM,MAAM,GAAG,MAAM,MAAM,CAAC,IAAI,EAAE,CAAC;YACnC,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,MAAM,CAAC,CAAC;QAClC,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,CAAC,KAAK,CAAC,8BAA8B,KAAK,EAAE,CAAC,CAAC;YACpD,aAAa,CAAC,QAAQ,EAAE,KAAK,CAAC,CAAC;QACjC,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,oCAAoC;IACpC,MAAM,CAAC,GAAG,CAAC,qBAAqB,EAAE,KAAK,EAAE,QAAQ,EAAE,QAAQ,EAAE,MAAM,EAAE,EAAE;QACrE,MAAM,IAAI,GAAG,kBAAkB,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC;QAE7C,IAAI,CAAC;YACH,MAAM,MAAM,GAAG,MAAM,MAAM,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC;YAC1C,IAAI,CAAC,MAAM,EAAE,CAAC;gBACZ,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,qBAAqB,EAAE,CAAC,CAAC;gBAC1D,OAAO;YACT,CAAC;YACD,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,MAAM,CAAC,CAAC;QAClC,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,CAAC,KAAK,CAAC,iCAAiC,KAAK,EAAE,CAAC,CAAC;YACvD,aAAa,CAAC,QAAQ,EAAE,KAAK,CAAC,CAAC;QACjC,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,sCAAsC;IACtC,MAAM,CAAC,IAAI,CAAC,wBAAwB,EAAE,KAAK,EAAE,OAAO,EAAE,QAAQ,EAAE,OAAO,EAAE,EAAE;QACzE,MAAM,IAAI,GAAG,MAAM,YAAY,CAAC,OAAO,CAAC,CAAC;QAEzC,IAAI,CAAC,IAAI,IAAI,OAAO,IAAI,KAAK,QAAQ,EAAE,CAAC;YACtC,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,sBAAsB,EAAE,CAAC,CAAC;YAC3D,OAAO;QACT,CAAC;QAED,MAAM,EAAE,SAAS,EAAE,SAAS,EAAE,QAAQ,EAAE,GAAG,IAA+B,CAAC;QAE3E,IAAI,CAAC,SAAS,IAAI,OAAO,SAAS,KAAK,QAAQ,EAAE,CAAC;YAChD,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,2BAA2B,EAAE,CAAC,CAAC;YAChE,OAAO;QACT,CAAC;QAED,IAAI,CAAC,SAAS,IAAI,OAAO,SAAS,KAAK,QAAQ,EAAE,CAAC;YAChD,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,sCAAsC,EAAE,CAAC,CAAC;YAC3E,OAAO;QACT,CAAC;QAED,IAAI,CAAC;YACH,MAAM,MAAM,GAAG,MAAM,MAAM,CAAC,QAAQ,CAAC;gBACnC,SAAS;gBACT,SAAS;gBACT,QAAQ,EAAE,OAAO,QAAQ,KAAK,QAAQ,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS;aAC9D,CAAC,CAAC;YACH,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,MAAM,CAAC,CAAC;QAClC,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,CAAC,KAAK,CAAC,iCAAiC,KAAK,EAAE,CAAC,CAAC;YACvD,aAAa,CAAC,QAAQ,EAAE,KAAK,CAAC,CAAC;QACjC,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,qCAAqC;IACrC,MAAM,CAAC,MAAM,CAAC,qBAAqB,EAAE,KAAK,EAAE,QAAQ,EAAE,QAAQ,EAAE,MAAM,EAAE,EAAE;QACxE,MAAM,IAAI,GAAG,kBAAkB,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC;QAE7C,IAAI,CAAC;YACH,MAAM,MAAM,GAAG,MAAM,MAAM,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC;YAC1C,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,MAAM,CAAC,CAAC;QAClC,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,CAAC,KAAK,CAAC,gCAAgC,KAAK,EAAE,CAAC,CAAC;YACtD,aAAa,CAAC,QAAQ,EAAE,KAAK,CAAC,CAAC;QACjC,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,wCAAwC;IACxC,MAAM,CAAC,IAAI,CAAC,2BAA2B,EAAE,KAAK,EAAE,QAAQ,EAAE,QAAQ,EAAE,MAAM,EAAE,EAAE;QAC5E,MAAM,IAAI,GAAG,kBAAkB,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC;QAE7C,IAAI,CAAC;YACH,MAAM,MAAM,GAAG,MAAM,MAAM,CAAC,WAAW,CAAC,IAAI,CAAC,CAAC;YAC9C,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,MAAM,CAAC,CAAC;QAClC,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,CAAC,KAAK,CAAC,2BAA2B,KAAK,EAAE,CAAC,CAAC;YACjD,aAAa,CAAC,QAAQ,EAAE,KAAK,CAAC,CAAC;QACjC,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,uCAAuC;IACvC,MAAM,CAAC,IAAI,CAAC,0BAA0B,EAAE,KAAK,EAAE,QAAQ,EAAE,QAAQ,EAAE,MAAM,EAAE,EAAE;QAC3E,MAAM,IAAI,GAAG,kBAAkB,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC;QAE7C,IAAI,CAAC;YACH,MAAM,MAAM,GAAG,MAAM,MAAM,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC;YAC7C,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,MAAM,CAAC,CAAC;QAClC,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,CAAC,KAAK,CAAC,0BAA0B,KAAK,EAAE,CAAC,CAAC;YAChD,aAAa,CAAC,QAAQ,EAAE,KAAK,CAAC,CAAC;QACjC,CAAC;IACH,CAAC,CAAC,CAAC;AACL,CAAC;AAED,6CAA6C;AAE7C,KAAK,UAAU,YAAY,CAAC,OAA6B;IACvD,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;QACrC,IAAI,IAAI,GAAG,EAAE,CAAC;QACd,OAAO,CAAC,WAAW,CAAC,MAAM,CAAC,CAAC;QAC5B,OAAO,CAAC,EAAE,CAAC,MAAM,EAAE,CAAC,KAAa,EAAE,EAAE;YACnC,IAAI,IAAI,KAAK,CAAC;QAChB,CAAC,CAAC,CAAC;QACH,OAAO,CAAC,EAAE,CAAC,KAAK,EAAE,GAAG,EAAE;YACrB,IAAI,CAAC,IAAI,EAAE,CAAC;gBACV,OAAO,CAAC,SAAS,CAAC,CAAC;gBACnB,OAAO;YACT,CAAC;YACD,IAAI,CAAC;gBACH,OAAO,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC;YAC5B,CAAC;YAAC,MAAM,CAAC;gBACP,OAAO,CAAC,SAAS,CAAC,CAAC;YACrB,CAAC;QACH,CAAC,CAAC,CAAC;QACH,OAAO,CAAC,EAAE,CAAC,OAAO,EAAE,MAAM,CAAC,CAAC;IAC9B,CAAC,CAAC,CAAC;AACL,CAAC;AAED,SAAS,QAAQ,CAAC,QAAwB,EAAE,MAAc,EAAE,IAAa;IACvE,QAAQ,CAAC,UAAU,GAAG,MAAM,CAAC;IAC7B,QAAQ,CAAC,SAAS,CAAC,cAAc,EAAE,kBAAkB,CAAC,CAAC;IACvD,QAAQ,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC,CAAC;AACrC,CAAC;AAED,SAAS,aAAa,CAAC,QAAwB,EAAE,KAAc;IAC7D,MAAM,MAAM,GAAI,KAAa,EAAE,MAAM,IAAI,GAAG,CAAC;IAC7C,MAAM,OAAO,GAAG,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,CAAC;IACzE,QAAQ,CAAC,QAAQ,EAAE,MAAM,EAAE,EAAE,KAAK,EAAE,OAAO,EAAE,CAAC,CAAC;AACjD,CAAC","sourcesContent":["/**\n * SubdomainClientHandler - Local 模式子域名 API\n * \n * 代理请求到 Cloud API，供本地 UI 调用\n */\n\nimport type { ServerResponse } from 'node:http';\nimport { getLoggerFor } from 'global-logger-factory';\nimport type { AuthenticatedRequest } from '../middleware/AuthMiddleware';\nimport type { ApiServer } from '../ApiServer';\nimport type { SubdomainClient } from '../../subdomain/SubdomainClient';\n\nexport interface SubdomainClientHandlerOptions {\n  subdomainClient: SubdomainClient;\n}\n\n/**\n * 注册 Local 模式子域名路由\n * \n * 这些路由是本地 UI 调用的入口，内部通过 SubdomainClient 转发到 Cloud\n * \n * GET  /v1/subdomain/check?name=xxx - 检查子域名可用性\n * GET  /v1/subdomain - 列出子域名\n * GET  /v1/subdomain/:name - 获取子域名详情\n * POST /v1/subdomain/register - 注册子域名\n * DELETE /v1/subdomain/:name - 释放子域名\n * POST /v1/subdomain/:name/start - 启动隧道\n * POST /v1/subdomain/:name/stop - 停止隧道\n */\nexport function registerSubdomainClientRoutes(\n  server: ApiServer,\n  options: SubdomainClientHandlerOptions,\n): void {\n  const logger = getLoggerFor('SubdomainClientHandler');\n  const client = options.subdomainClient;\n\n  // GET /v1/subdomain/check?name=xxx - 检查可用性 (public)\n  server.get('/v1/subdomain/check', async (request, response, _params) => {\n    const url = new URL(request.url ?? '/', `http://${request.headers.host ?? 'localhost'}`);\n    const name = url.searchParams.get('name');\n\n    if (!name) {\n      sendJson(response, 400, { error: 'Missing \"name\" query parameter' });\n      return;\n    }\n\n    try {\n      const result = await client.checkAvailability(name);\n      sendJson(response, 200, result);\n    } catch (error) {\n      logger.error(`Failed to check availability: ${error}`);\n      sendErrorJson(response, error);\n    }\n  }, { public: true });\n\n  // GET /v1/subdomain - 列出子域名\n  server.get('/v1/subdomain', async (_request, response, _params) => {\n    try {\n      const result = await client.list();\n      sendJson(response, 200, result);\n    } catch (error) {\n      logger.error(`Failed to list subdomains: ${error}`);\n      sendErrorJson(response, error);\n    }\n  });\n\n  // GET /v1/subdomain/:name - 获取子域名详情\n  server.get('/v1/subdomain/:name', async (_request, response, params) => {\n    const name = decodeURIComponent(params.name);\n\n    try {\n      const result = await client.getInfo(name);\n      if (!result) {\n        sendJson(response, 404, { error: 'Subdomain not found' });\n        return;\n      }\n      sendJson(response, 200, result);\n    } catch (error) {\n      logger.error(`Failed to get subdomain info: ${error}`);\n      sendErrorJson(response, error);\n    }\n  });\n\n  // POST /v1/subdomain/register - 注册子域名\n  server.post('/v1/subdomain/register', async (request, response, _params) => {\n    const body = await readJsonBody(request);\n    \n    if (!body || typeof body !== 'object') {\n      sendJson(response, 400, { error: 'Invalid request body' });\n      return;\n    }\n\n    const { subdomain, localPort, publicIp } = body as Record<string, unknown>;\n\n    if (!subdomain || typeof subdomain !== 'string') {\n      sendJson(response, 400, { error: 'Missing \"subdomain\" field' });\n      return;\n    }\n\n    if (!localPort || typeof localPort !== 'number') {\n      sendJson(response, 400, { error: 'Missing or invalid \"localPort\" field' });\n      return;\n    }\n\n    try {\n      const result = await client.register({\n        subdomain,\n        localPort,\n        publicIp: typeof publicIp === 'string' ? publicIp : undefined,\n      });\n      sendJson(response, 201, result);\n    } catch (error) {\n      logger.error(`Failed to register subdomain: ${error}`);\n      sendErrorJson(response, error);\n    }\n  });\n\n  // DELETE /v1/subdomain/:name - 释放子域名\n  server.delete('/v1/subdomain/:name', async (_request, response, params) => {\n    const name = decodeURIComponent(params.name);\n\n    try {\n      const result = await client.release(name);\n      sendJson(response, 200, result);\n    } catch (error) {\n      logger.error(`Failed to release subdomain: ${error}`);\n      sendErrorJson(response, error);\n    }\n  });\n\n  // POST /v1/subdomain/:name/start - 启动隧道\n  server.post('/v1/subdomain/:name/start', async (_request, response, params) => {\n    const name = decodeURIComponent(params.name);\n\n    try {\n      const result = await client.startTunnel(name);\n      sendJson(response, 200, result);\n    } catch (error) {\n      logger.error(`Failed to start tunnel: ${error}`);\n      sendErrorJson(response, error);\n    }\n  });\n\n  // POST /v1/subdomain/:name/stop - 停止隧道\n  server.post('/v1/subdomain/:name/stop', async (_request, response, params) => {\n    const name = decodeURIComponent(params.name);\n\n    try {\n      const result = await client.stopTunnel(name);\n      sendJson(response, 200, result);\n    } catch (error) {\n      logger.error(`Failed to stop tunnel: ${error}`);\n      sendErrorJson(response, error);\n    }\n  });\n}\n\n// ============ Helper Functions ============\n\nasync function readJsonBody(request: AuthenticatedRequest): Promise<unknown> {\n  return new Promise((resolve, reject) => {\n    let data = '';\n    request.setEncoding('utf8');\n    request.on('data', (chunk: string) => {\n      data += chunk;\n    });\n    request.on('end', () => {\n      if (!data) {\n        resolve(undefined);\n        return;\n      }\n      try {\n        resolve(JSON.parse(data));\n      } catch {\n        resolve(undefined);\n      }\n    });\n    request.on('error', reject);\n  });\n}\n\nfunction sendJson(response: ServerResponse, status: number, data: unknown): void {\n  response.statusCode = status;\n  response.setHeader('Content-Type', 'application/json');\n  response.end(JSON.stringify(data));\n}\n\nfunction sendErrorJson(response: ServerResponse, error: unknown): void {\n  const status = (error as any)?.status ?? 500;\n  const message = error instanceof Error ? error.message : 'Unknown error';\n  sendJson(response, status, { error: message });\n}\n"]}
+{"version":3,"file":"SubdomainClientHandler.js","sourceRoot":"","sources":["../../../src/api/handlers/SubdomainClientHandler.ts"],"names":[],"mappings":";AAAA;;;;GAIG;;AAyBH,sEA8HC;AApJD,iEAAqD;AASrD;;;;;;;;;;;;GAYG;AACH,SAAgB,6BAA6B,CAC3C,MAAiB,EACjB,OAAsC;IAEtC,MAAM,MAAM,GAAG,IAAA,oCAAY,EAAC,wBAAwB,CAAC,CAAC;IACtD,MAAM,MAAM,GAAG,OAAO,CAAC,eAAe,CAAC;IAEvC,oDAAoD;IACpD,MAAM,CAAC,GAAG,CAAC,qBAAqB,EAAE,KAAK,EAAE,OAAO,EAAE,QAAQ,EAAE,OAAO,EAAE,EAAE;QACrE,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,OAAO,CAAC,GAAG,IAAI,GAAG,EAAE,UAAU,OAAO,CAAC,OAAO,CAAC,IAAI,IAAI,WAAW,EAAE,CAAC,CAAC;QACzF,MAAM,IAAI,GAAG,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;QAE1C,IAAI,CAAC,IAAI,EAAE,CAAC;YACV,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,gCAAgC,EAAE,CAAC,CAAC;YACrE,OAAO;QACT,CAAC;QAED,IAAI,CAAC;YACH,MAAM,MAAM,GAAG,MAAM,MAAM,CAAC,iBAAiB,CAAC,IAAI,CAAC,CAAC;YACpD,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,MAAM,CAAC,CAAC;QAClC,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,CAAC,KAAK,CAAC,iCAAiC,KAAK,EAAE,CAAC,CAAC;YACvD,aAAa,CAAC,QAAQ,EAAE,KAAK,CAAC,CAAC;QACjC,CAAC;IACH,CAAC,EAAE,EAAE,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC;IAErB,4BAA4B;IAC5B,MAAM,CAAC,GAAG,CAAC,eAAe,EAAE,KAAK,EAAE,QAAQ,EAAE,QAAQ,EAAE,OAAO,EAAE,EAAE;QAChE,IAAI,CAAC;YACH,MAAM,MAAM,GAAG,MAAM,MAAM,CAAC,IAAI,EAAE,CAAC;YACnC,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,MAAM,CAAC,CAAC;QAClC,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,CAAC,KAAK,CAAC,8BAA8B,KAAK,EAAE,CAAC,CAAC;YACpD,aAAa,CAAC,QAAQ,EAAE,KAAK,CAAC,CAAC;QACjC,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,oCAAoC;IACpC,MAAM,CAAC,GAAG,CAAC,qBAAqB,EAAE,KAAK,EAAE,QAAQ,EAAE,QAAQ,EAAE,MAAM,EAAE,EAAE;QACrE,MAAM,IAAI,GAAG,kBAAkB,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC;QAE7C,IAAI,CAAC;YACH,MAAM,MAAM,GAAG,MAAM,MAAM,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC;YAC1C,IAAI,CAAC,MAAM,EAAE,CAAC;gBACZ,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,qBAAqB,EAAE,CAAC,CAAC;gBAC1D,OAAO;YACT,CAAC;YACD,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,MAAM,CAAC,CAAC;QAClC,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,CAAC,KAAK,CAAC,iCAAiC,KAAK,EAAE,CAAC,CAAC;YACvD,aAAa,CAAC,QAAQ,EAAE,KAAK,CAAC,CAAC;QACjC,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,sCAAsC;IACtC,MAAM,CAAC,IAAI,CAAC,wBAAwB,EAAE,KAAK,EAAE,OAAO,EAAE,QAAQ,EAAE,OAAO,EAAE,EAAE;QACzE,MAAM,IAAI,GAAG,MAAM,YAAY,CAAC,OAAO,CAAC,CAAC;QAEzC,IAAI,CAAC,IAAI,IAAI,OAAO,IAAI,KAAK,QAAQ,EAAE,CAAC;YACtC,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,sBAAsB,EAAE,CAAC,CAAC;YAC3D,OAAO;QACT,CAAC;QAED,MAAM,EAAE,SAAS,EAAE,SAAS,EAAE,IAAI,EAAE,GAAG,IAA+B,CAAC;QAEvE,IAAI,CAAC,SAAS,IAAI,OAAO,SAAS,KAAK,QAAQ,EAAE,CAAC;YAChD,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,2BAA2B,EAAE,CAAC,CAAC;YAChE,OAAO;QACT,CAAC;QAED,IAAI,CAAC,SAAS,IAAI,OAAO,SAAS,KAAK,QAAQ,EAAE,CAAC;YAChD,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,sCAAsC,EAAE,CAAC,CAAC;YAC3E,OAAO;QACT,CAAC;QAED,IAAI,CAAC;YACH,MAAM,MAAM,GAAG,MAAM,MAAM,CAAC,QAAQ,CAAC;gBACnC,SAAS;gBACT,SAAS;gBACT,IAAI,EAAE,OAAO,IAAI,KAAK,QAAQ,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS;aAClD,CAAC,CAAC;YACH,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,MAAM,CAAC,CAAC;QAClC,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,CAAC,KAAK,CAAC,iCAAiC,KAAK,EAAE,CAAC,CAAC;YACvD,aAAa,CAAC,QAAQ,EAAE,KAAK,CAAC,CAAC;QACjC,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,qCAAqC;IACrC,MAAM,CAAC,MAAM,CAAC,qBAAqB,EAAE,KAAK,EAAE,QAAQ,EAAE,QAAQ,EAAE,MAAM,EAAE,EAAE;QACxE,MAAM,IAAI,GAAG,kBAAkB,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC;QAE7C,IAAI,CAAC;YACH,MAAM,MAAM,GAAG,MAAM,MAAM,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC;YAC1C,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,MAAM,CAAC,CAAC;QAClC,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,CAAC,KAAK,CAAC,gCAAgC,KAAK,EAAE,CAAC,CAAC;YACtD,aAAa,CAAC,QAAQ,EAAE,KAAK,CAAC,CAAC;QACjC,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,wCAAwC;IACxC,MAAM,CAAC,IAAI,CAAC,2BAA2B,EAAE,KAAK,EAAE,QAAQ,EAAE,QAAQ,EAAE,MAAM,EAAE,EAAE;QAC5E,MAAM,IAAI,GAAG,kBAAkB,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC;QAE7C,IAAI,CAAC;YACH,MAAM,MAAM,GAAG,MAAM,MAAM,CAAC,WAAW,CAAC,IAAI,CAAC,CAAC;YAC9C,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,MAAM,CAAC,CAAC;QAClC,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,CAAC,KAAK,CAAC,2BAA2B,KAAK,EAAE,CAAC,CAAC;YACjD,aAAa,CAAC,QAAQ,EAAE,KAAK,CAAC,CAAC;QACjC,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,uCAAuC;IACvC,MAAM,CAAC,IAAI,CAAC,0BAA0B,EAAE,KAAK,EAAE,QAAQ,EAAE,QAAQ,EAAE,MAAM,EAAE,EAAE;QAC3E,MAAM,IAAI,GAAG,kBAAkB,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC;QAE7C,IAAI,CAAC;YACH,MAAM,MAAM,GAAG,MAAM,MAAM,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC;YAC7C,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,MAAM,CAAC,CAAC;QAClC,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,CAAC,KAAK,CAAC,0BAA0B,KAAK,EAAE,CAAC,CAAC;YAChD,aAAa,CAAC,QAAQ,EAAE,KAAK,CAAC,CAAC;QACjC,CAAC;IACH,CAAC,CAAC,CAAC;AACL,CAAC;AAED,6CAA6C;AAE7C,KAAK,UAAU,YAAY,CAAC,OAA6B;IACvD,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;QACrC,IAAI,IAAI,GAAG,EAAE,CAAC;QACd,OAAO,CAAC,WAAW,CAAC,MAAM,CAAC,CAAC;QAC5B,OAAO,CAAC,EAAE,CAAC,MAAM,EAAE,CAAC,KAAa,EAAE,EAAE;YACnC,IAAI,IAAI,KAAK,CAAC;QAChB,CAAC,CAAC,CAAC;QACH,OAAO,CAAC,EAAE,CAAC,KAAK,EAAE,GAAG,EAAE;YACrB,IAAI,CAAC,IAAI,EAAE,CAAC;gBACV,OAAO,CAAC,SAAS,CAAC,CAAC;gBACnB,OAAO;YACT,CAAC;YACD,IAAI,CAAC;gBACH,OAAO,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC;YAC5B,CAAC;YAAC,MAAM,CAAC;gBACP,OAAO,CAAC,SAAS,CAAC,CAAC;YACrB,CAAC;QACH,CAAC,CAAC,CAAC;QACH,OAAO,CAAC,EAAE,CAAC,OAAO,EAAE,MAAM,CAAC,CAAC;IAC9B,CAAC,CAAC,CAAC;AACL,CAAC;AAED,SAAS,QAAQ,CAAC,QAAwB,EAAE,MAAc,EAAE,IAAa;IACvE,QAAQ,CAAC,UAAU,GAAG,MAAM,CAAC;IAC7B,QAAQ,CAAC,SAAS,CAAC,cAAc,EAAE,kBAAkB,CAAC,CAAC;IACvD,QAAQ,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC,CAAC;AACrC,CAAC;AAED,SAAS,aAAa,CAAC,QAAwB,EAAE,KAAc;IAC7D,MAAM,MAAM,GAAI,KAAa,EAAE,MAAM,IAAI,GAAG,CAAC;IAC7C,MAAM,OAAO,GAAG,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,CAAC;IACzE,QAAQ,CAAC,QAAQ,EAAE,MAAM,EAAE,EAAE,KAAK,EAAE,OAAO,EAAE,CAAC,CAAC;AACjD,CAAC","sourcesContent":["/**\n * SubdomainClientHandler - Local 模式子域名 API\n * \n * 代理请求到 Cloud API，供本地 UI 调用\n */\n\nimport type { ServerResponse } from 'node:http';\nimport { getLoggerFor } from 'global-logger-factory';\nimport type { AuthenticatedRequest } from '../middleware/AuthMiddleware';\nimport type { ApiServer } from '../ApiServer';\nimport type { SubdomainClient } from '../../subdomain/SubdomainClient';\n\nexport interface SubdomainClientHandlerOptions {\n  subdomainClient: SubdomainClient;\n}\n\n/**\n * 注册 Local 模式子域名路由\n * \n * 这些路由是本地 UI 调用的入口，内部通过 SubdomainClient 转发到 Cloud\n * \n * GET  /v1/subdomain/check?name=xxx - 检查子域名可用性\n * GET  /v1/subdomain - 列出子域名\n * GET  /v1/subdomain/:name - 获取子域名详情\n * POST /v1/subdomain/register - 注册子域名\n * DELETE /v1/subdomain/:name - 释放子域名\n * POST /v1/subdomain/:name/start - 启动隧道\n * POST /v1/subdomain/:name/stop - 停止隧道\n */\nexport function registerSubdomainClientRoutes(\n  server: ApiServer,\n  options: SubdomainClientHandlerOptions,\n): void {\n  const logger = getLoggerFor('SubdomainClientHandler');\n  const client = options.subdomainClient;\n\n  // GET /v1/subdomain/check?name=xxx - 检查可用性 (public)\n  server.get('/v1/subdomain/check', async (request, response, _params) => {\n    const url = new URL(request.url ?? '/', `http://${request.headers.host ?? 'localhost'}`);\n    const name = url.searchParams.get('name');\n\n    if (!name) {\n      sendJson(response, 400, { error: 'Missing \"name\" query parameter' });\n      return;\n    }\n\n    try {\n      const result = await client.checkAvailability(name);\n      sendJson(response, 200, result);\n    } catch (error) {\n      logger.error(`Failed to check availability: ${error}`);\n      sendErrorJson(response, error);\n    }\n  }, { public: true });\n\n  // GET /v1/subdomain - 列出子域名\n  server.get('/v1/subdomain', async (_request, response, _params) => {\n    try {\n      const result = await client.list();\n      sendJson(response, 200, result);\n    } catch (error) {\n      logger.error(`Failed to list subdomains: ${error}`);\n      sendErrorJson(response, error);\n    }\n  });\n\n  // GET /v1/subdomain/:name - 获取子域名详情\n  server.get('/v1/subdomain/:name', async (_request, response, params) => {\n    const name = decodeURIComponent(params.name);\n\n    try {\n      const result = await client.getInfo(name);\n      if (!result) {\n        sendJson(response, 404, { error: 'Subdomain not found' });\n        return;\n      }\n      sendJson(response, 200, result);\n    } catch (error) {\n      logger.error(`Failed to get subdomain info: ${error}`);\n      sendErrorJson(response, error);\n    }\n  });\n\n  // POST /v1/subdomain/register - 注册子域名\n  server.post('/v1/subdomain/register', async (request, response, _params) => {\n    const body = await readJsonBody(request);\n    \n    if (!body || typeof body !== 'object') {\n      sendJson(response, 400, { error: 'Invalid request body' });\n      return;\n    }\n\n    const { subdomain, localPort, ipv4 } = body as Record<string, unknown>;\n\n    if (!subdomain || typeof subdomain !== 'string') {\n      sendJson(response, 400, { error: 'Missing \"subdomain\" field' });\n      return;\n    }\n\n    if (!localPort || typeof localPort !== 'number') {\n      sendJson(response, 400, { error: 'Missing or invalid \"localPort\" field' });\n      return;\n    }\n\n    try {\n      const result = await client.register({\n        subdomain,\n        localPort,\n        ipv4: typeof ipv4 === 'string' ? ipv4 : undefined,\n      });\n      sendJson(response, 201, result);\n    } catch (error) {\n      logger.error(`Failed to register subdomain: ${error}`);\n      sendErrorJson(response, error);\n    }\n  });\n\n  // DELETE /v1/subdomain/:name - 释放子域名\n  server.delete('/v1/subdomain/:name', async (_request, response, params) => {\n    const name = decodeURIComponent(params.name);\n\n    try {\n      const result = await client.release(name);\n      sendJson(response, 200, result);\n    } catch (error) {\n      logger.error(`Failed to release subdomain: ${error}`);\n      sendErrorJson(response, error);\n    }\n  });\n\n  // POST /v1/subdomain/:name/start - 启动隧道\n  server.post('/v1/subdomain/:name/start', async (_request, response, params) => {\n    const name = decodeURIComponent(params.name);\n\n    try {\n      const result = await client.startTunnel(name);\n      sendJson(response, 200, result);\n    } catch (error) {\n      logger.error(`Failed to start tunnel: ${error}`);\n      sendErrorJson(response, error);\n    }\n  });\n\n  // POST /v1/subdomain/:name/stop - 停止隧道\n  server.post('/v1/subdomain/:name/stop', async (_request, response, params) => {\n    const name = decodeURIComponent(params.name);\n\n    try {\n      const result = await client.stopTunnel(name);\n      sendJson(response, 200, result);\n    } catch (error) {\n      logger.error(`Failed to stop tunnel: ${error}`);\n      sendErrorJson(response, error);\n    }\n  });\n}\n\n// ============ Helper Functions ============\n\nasync function readJsonBody(request: AuthenticatedRequest): Promise<unknown> {\n  return new Promise((resolve, reject) => {\n    let data = '';\n    request.setEncoding('utf8');\n    request.on('data', (chunk: string) => {\n      data += chunk;\n    });\n    request.on('end', () => {\n      if (!data) {\n        resolve(undefined);\n        return;\n      }\n      try {\n        resolve(JSON.parse(data));\n      } catch {\n        resolve(undefined);\n      }\n    });\n    request.on('error', reject);\n  });\n}\n\nfunction sendJson(response: ServerResponse, status: number, data: unknown): void {\n  response.statusCode = status;\n  response.setHeader('Content-Type', 'application/json');\n  response.end(JSON.stringify(data));\n}\n\nfunction sendErrorJson(response: ServerResponse, error: unknown): void {\n  const status = (error as any)?.status ?? 500;\n  const message = error instanceof Error ? error.message : 'Unknown error';\n  sendJson(response, status, { error: message });\n}\n"]}

package/dist/api/handlers/SubdomainHandler.js

@@ -60,7 +60,7 @@ function registerSubdomainRoutes(server, options) {
         }
         try {
             // Filter registrations by owner
-            const allRegistrations = service.getAllRegistrations();
+            const allRegistrations = await service.getAllRegistrations();
             const userRegistrations = allRegistrations.filter(r => r.ownerId === webId);
             sendJson(response, 200, {
                 registrations: userRegistrations.map(formatRegistration),
@@ -86,7 +86,7 @@ function registerSubdomainRoutes(server, options) {
             return;
         }
         try {
-            const registration = service.getRegistration(name);
+            const registration = await service.getRegistration(name);
             if (!registration) {
                 sendJson(response, 404, { error: 'Subdomain not found' });
                 return;
@@ -122,11 +122,15 @@ function registerSubdomainRoutes(server, options) {
             sendJson(response, 400, { error: 'Invalid request body' });
             return;
         }
-        const { subdomain, localPort, publicIp } = body;
+        const { subdomain, nodeId, localPort, ipv4 } = body;
         if (!subdomain || typeof subdomain !== 'string') {
             sendJson(response, 400, { error: 'Missing "subdomain" field' });
             return;
         }
+        if (!nodeId || typeof nodeId !== 'string') {
+            sendJson(response, 400, { error: 'Missing "nodeId" field' });
+            return;
+        }
         if (!localPort || typeof localPort !== 'number') {
             sendJson(response, 400, { error: 'Missing or invalid "localPort" field' });
             return;
@@ -134,8 +138,9 @@ function registerSubdomainRoutes(server, options) {
         try {
             const registration = await service.register({
                 subdomain,
+                nodeId,
                 localPort,
-                publicIp: typeof publicIp === 'string' ? publicIp : undefined,
+                ipv4: typeof ipv4 === 'string' ? ipv4 : undefined,
                 ownerId: webId,
             });
             logger.info(`Registered subdomain: ${registration.fullDomain} for ${webId} (mode: ${registration.mode})`);
@@ -168,7 +173,7 @@ function registerSubdomainRoutes(server, options) {
             return;
         }
         try {
-            const registration = service.getRegistration(name);
+            const registration = await service.getRegistration(name);
             if (!registration) {
                 sendJson(response, 404, { error: 'Subdomain not found' });
                 return;
@@ -205,7 +210,7 @@ function registerSubdomainRoutes(server, options) {
             return;
         }
         try {
-            const registration = service.getRegistration(name);
+            const registration = await service.getRegistration(name);
             if (!registration) {
                 sendJson(response, 404, { error: 'Subdomain not found' });
                 return;
@@ -246,7 +251,7 @@ function registerSubdomainRoutes(server, options) {
             return;
         }
         try {
-            const registration = service.getRegistration(name);
+            const registration = await service.getRegistration(name);
             if (!registration) {
                 sendJson(response, 404, { error: 'Subdomain not found' });
                 return;
@@ -275,7 +280,7 @@ function formatRegistration(reg) {
         subdomain: reg.subdomain,
         fullDomain: reg.fullDomain,
         mode: reg.mode,
-        publicIp: reg.publicIp,
+        ipv4: reg.ipv4,
         tunnelProvider: reg.tunnelConfig?.provider,
         tunnelEndpoint: reg.tunnelConfig?.endpoint,
         registeredAt: reg.registeredAt.toISOString(),

package/dist/api/handlers/SubdomainHandler.js.map

@@ -1 +1 @@
-{"version":3,"file":"SubdomainHandler.js","sourceRoot":"","sources":["../../../src/api/handlers/SubdomainHandler.ts"],"names":[],"mappings":";;AAsBA,0DAkSC;AAvTD,iEAAqD;AAIrD,qDAA4D;AAM5D;;;;;;;;;;GAUG;AACH,SAAgB,uBAAuB,CAAC,MAAiB,EAAE,OAAgC;IACzF,MAAM,MAAM,GAAG,IAAA,oCAAY,EAAC,kBAAkB,CAAC,CAAC;IAChD,MAAM,OAAO,GAAG,OAAO,CAAC,gBAAgB,CAAC;IAEzC,MAAM,YAAY,GAAG,CAAC,OAA6B,EAAE,QAAwB,EAAW,EAAE;QACxF,MAAM,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC;QAC1B,IAAI,IAAI,IAAI,IAAA,yBAAW,EAAC,IAAI,CAAC,IAAI,IAAI,CAAC,SAAS,EAAE,CAAC;YAChD,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,0CAA0C,EAAE,CAAC,CAAC;YAC/E,OAAO,IAAI,CAAC;QACd,CAAC;QACD,OAAO,KAAK,CAAC;IACf,CAAC,CAAC;IAEF,iEAAiE;IACjE,MAAM,CAAC,GAAG,CAAC,qBAAqB,EAAE,KAAK,EAAE,OAAO,EAAE,QAAQ,EAAE,OAAO,EAAE,EAAE;QACrE,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,OAAO,CAAC,GAAG,IAAI,GAAG,EAAE,UAAU,OAAO,CAAC,OAAO,CAAC,IAAI,IAAI,WAAW,EAAE,CAAC,CAAC;QACzF,MAAM,IAAI,GAAG,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;QAE1C,IAAI,CAAC,IAAI,EAAE,CAAC;YACV,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,gCAAgC,EAAE,CAAC,CAAC;YACrE,OAAO;QACT,CAAC;QAED,IAAI,CAAC;YACH,MAAM,MAAM,GAAG,MAAM,OAAO,CAAC,iBAAiB,CAAC,IAAI,CAAC,CAAC;YACrD,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE;gBACtB,SAAS,EAAE,IAAI;gBACf,SAAS,EAAE,MAAM,CAAC,SAAS;gBAC3B,MAAM,EAAE,MAAM,CAAC,MAAM;gBACrB,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;aACpC,CAAC,CAAC;QACL,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,CAAC,KAAK,CAAC,iCAAiC,KAAK,EAAE,CAAC,CAAC;YACvD,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,8BAA8B,EAAE,CAAC,CAAC;QACrE,CAAC;IACH,CAAC,EAAE,EAAE,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC;IAErB,gDAAgD;IAChD,MAAM,CAAC,GAAG,CAAC,eAAe,EAAE,KAAK,EAAE,OAAO,EAAE,QAAQ,EAAE,OAAO,EAAE,EAAE;QAC/D,IAAI,YAAY,CAAC,OAAO,EAAE,QAAQ,CAAC,EAAE,CAAC;YACpC,OAAO;QACT,CAAC;QACD,MAAM,IAAI,GAAG,OAAO,CAAC,IAAK,CAAC;QAC3B,MAAM,KAAK,GAAG,IAAA,sBAAQ,EAAC,IAAI,CAAC,CAAC;QAE7B,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,uBAAuB,EAAE,CAAC,CAAC;YAC5D,OAAO;QACT,CAAC;QAED,IAAI,CAAC;YACH,gCAAgC;YAChC,MAAM,gBAAgB,GAAG,OAAO,CAAC,mBAAmB,EAAE,CAAC;YACvD,MAAM,iBAAiB,GAAG,gBAAgB,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,OAAO,KAAK,KAAK,CAAC,CAAC;YAE5E,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE;gBACtB,aAAa,EAAE,iBAAiB,CAAC,GAAG,CAAC,kBAAkB,CAAC;gBACxD,KAAK,EAAE,iBAAiB,CAAC,MAAM;gBAC/B,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;aACpC,CAAC,CAAC;QACL,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,CAAC,KAAK,CAAC,iCAAiC,KAAK,EAAE,CAAC,CAAC;YACvD,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,8BAA8B,EAAE,CAAC,CAAC;QACrE,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,+CAA+C;IAC/C,MAAM,CAAC,GAAG,CAAC,qBAAqB,EAAE,KAAK,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,EAAE,EAAE;QACpE,IAAI,YAAY,CAAC,OAAO,EAAE,QAAQ,CAAC,EAAE,CAAC;YACpC,OAAO;QACT,CAAC;QACD,MAAM,IAAI,GAAG,OAAO,CAAC,IAAK,CAAC;QAC3B,MAAM,KAAK,GAAG,IAAA,sBAAQ,EAAC,IAAI,CAAC,CAAC;QAC7B,MAAM,IAAI,GAAG,kBAAkB,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC;QAE7C,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,uBAAuB,EAAE,CAAC,CAAC;YAC5D,OAAO;QACT,CAAC;QAED,IAAI,CAAC;YACH,MAAM,YAAY,GAAG,OAAO,CAAC,eAAe,CAAC,IAAI,CAAC,CAAC;YAEnD,IAAI,CAAC,YAAY,EAAE,CAAC;gBAClB,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,qBAAqB,EAAE,CAAC,CAAC;gBAC1D,OAAO;YACT,CAAC;YAED,kBAAkB;YAClB,IAAI,YAAY,CAAC,OAAO,KAAK,KAAK,EAAE,CAAC;gBACnC,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,eAAe,EAAE,CAAC,CAAC;gBACpD,OAAO;YACT,CAAC;YAED,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE;gBACtB,GAAG,kBAAkB,CAAC,YAAY,CAAC;gBACnC,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;aACpC,CAAC,CAAC;QACL,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,CAAC,KAAK,CAAC,+BAA+B,KAAK,EAAE,CAAC,CAAC;YACrD,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,4BAA4B,EAAE,CAAC,CAAC;QACnE,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,yDAAyD;IACzD,MAAM,CAAC,IAAI,CAAC,wBAAwB,EAAE,KAAK,EAAE,OAAO,EAAE,QAAQ,EAAE,OAAO,EAAE,EAAE;QACzE,IAAI,YAAY,CAAC,OAAO,EAAE,QAAQ,CAAC,EAAE,CAAC;YACpC,OAAO;QACT,CAAC;QACD,MAAM,IAAI,GAAG,OAAO,CAAC,IAAK,CAAC;QAC3B,MAAM,KAAK,GAAG,IAAA,sBAAQ,EAAC,IAAI,CAAC,CAAC;QAE7B,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,uBAAuB,EAAE,CAAC,CAAC;YAC5D,OAAO;QACT,CAAC;QAED,MAAM,IAAI,GAAG,MAAM,YAAY,CAAC,OAAO,CAAC,CAAC;QACzC,IAAI,CAAC,IAAI,IAAI,OAAO,IAAI,KAAK,QAAQ,EAAE,CAAC;YACtC,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,sBAAsB,EAAE,CAAC,CAAC;YAC3D,OAAO;QACT,CAAC;QAED,MAAM,EAAE,SAAS,EAAE,SAAS,EAAE,QAAQ,EAAE,GAAG,IAA+B,CAAC;QAE3E,IAAI,CAAC,SAAS,IAAI,OAAO,SAAS,KAAK,QAAQ,EAAE,CAAC;YAChD,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,2BAA2B,EAAE,CAAC,CAAC;YAChE,OAAO;QACT,CAAC;QAED,IAAI,CAAC,SAAS,IAAI,OAAO,SAAS,KAAK,QAAQ,EAAE,CAAC;YAChD,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,sCAAsC,EAAE,CAAC,CAAC;YAC3E,OAAO;QACT,CAAC;QAED,IAAI,CAAC;YACH,MAAM,YAAY,GAAG,MAAM,OAAO,CAAC,QAAQ,CAAC;gBAC1C,SAAS;gBACT,SAAS;gBACT,QAAQ,EAAE,OAAO,QAAQ,KAAK,QAAQ,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS;gBAC7D,OAAO,EAAE,KAAK;aACf,CAAC,CAAC;YAEH,MAAM,CAAC,IAAI,CAAC,yBAAyB,YAAY,CAAC,UAAU,QAAQ,KAAK,WAAW,YAAY,CAAC,IAAI,GAAG,CAAC,CAAC;YAE1G,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE;gBACtB,OAAO,EAAE,IAAI;gBACb,GAAG,kBAAkB,CAAC,YAAY,CAAC;gBACnC,OAAO,EAAE,wCAAwC,YAAY,CAAC,IAAI,QAAQ;aAC3E,CAAC,CAAC;QACL,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,CAAC,KAAK,CAAC,iCAAiC,KAAK,EAAE,CAAC,CAAC;YACvD,IAAI,KAAK,YAAY,KAAK,EAAE,CAAC;gBAC3B,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,KAAK,CAAC,OAAO,EAAE,CAAC,CAAC;YACpD,CAAC;iBAAM,CAAC;gBACN,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,8BAA8B,EAAE,CAAC,CAAC;YACrE,CAAC;QACH,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,mDAAmD;IACnD,MAAM,CAAC,MAAM,CAAC,qBAAqB,EAAE,KAAK,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,EAAE,EAAE;QACvE,IAAI,YAAY,CAAC,OAAO,EAAE,QAAQ,CAAC,EAAE,CAAC;YACpC,OAAO;QACT,CAAC;QACD,MAAM,IAAI,GAAG,OAAO,CAAC,IAAK,CAAC;QAC3B,MAAM,KAAK,GAAG,IAAA,sBAAQ,EAAC,IAAI,CAAC,CAAC;QAC7B,MAAM,IAAI,GAAG,kBAAkB,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC;QAE7C,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,uBAAuB,EAAE,CAAC,CAAC;YAC5D,OAAO;QACT,CAAC;QAED,IAAI,CAAC;YACH,MAAM,YAAY,GAAG,OAAO,CAAC,eAAe,CAAC,IAAI,CAAC,CAAC;YAEnD,IAAI,CAAC,YAAY,EAAE,CAAC;gBAClB,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,qBAAqB,EAAE,CAAC,CAAC;gBAC1D,OAAO;YACT,CAAC;YAED,kBAAkB;YAClB,IAAI,YAAY,CAAC,OAAO,KAAK,KAAK,EAAE,CAAC;gBACnC,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,eAAe,EAAE,CAAC,CAAC;gBACpD,OAAO;YACT,CAAC;YAED,MAAM,OAAO,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC;YAE5B,MAAM,CAAC,IAAI,CAAC,uBAAuB,IAAI,OAAO,KAAK,EAAE,CAAC,CAAC;YACvD,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE;gBACtB,OAAO,EAAE,IAAI;gBACb,SAAS,EAAE,IAAI;gBACf,OAAO,EAAE,kCAAkC;gBAC3C,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;aACpC,CAAC,CAAC;QACL,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,CAAC,KAAK,CAAC,gCAAgC,KAAK,EAAE,CAAC,CAAC;YACtD,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,6BAA6B,EAAE,CAAC,CAAC;QACpE,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,gDAAgD;IAChD,MAAM,CAAC,IAAI,CAAC,2BAA2B,EAAE,KAAK,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,EAAE,EAAE;QAC3E,IAAI,YAAY,CAAC,OAAO,EAAE,QAAQ,CAAC,EAAE,CAAC;YACpC,OAAO;QACT,CAAC;QACD,MAAM,IAAI,GAAG,OAAO,CAAC,IAAK,CAAC;QAC3B,MAAM,KAAK,GAAG,IAAA,sBAAQ,EAAC,IAAI,CAAC,CAAC;QAC7B,MAAM,IAAI,GAAG,kBAAkB,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC;QAE7C,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,uBAAuB,EAAE,CAAC,CAAC;YAC5D,OAAO;QACT,CAAC;QAED,IAAI,CAAC;YACH,MAAM,YAAY,GAAG,OAAO,CAAC,eAAe,CAAC,IAAI,CAAC,CAAC;YAEnD,IAAI,CAAC,YAAY,EAAE,CAAC;gBAClB,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,qBAAqB,EAAE,CAAC,CAAC;gBAC1D,OAAO;YACT,CAAC;YAED,IAAI,YAAY,CAAC,OAAO,KAAK,KAAK,EAAE,CAAC;gBACnC,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,eAAe,EAAE,CAAC,CAAC;gBACpD,OAAO;YACT,CAAC;YAED,MAAM,OAAO,CAAC,WAAW,CAAC,IAAI,CAAC,CAAC;YAEhC,MAAM,CAAC,IAAI,CAAC,iCAAiC,IAAI,EAAE,CAAC,CAAC;YACrD,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE;gBACtB,OAAO,EAAE,IAAI;gBACb,SAAS,EAAE,IAAI;gBACf,OAAO,EAAE,8BAA8B;gBACvC,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;aACpC,CAAC,CAAC;QACL,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,CAAC,KAAK,CAAC,2BAA2B,KAAK,EAAE,CAAC,CAAC;YACjD,IAAI,KAAK,YAAY,KAAK,EAAE,CAAC;gBAC3B,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,KAAK,CAAC,OAAO,EAAE,CAAC,CAAC;YACpD,CAAC;iBAAM,CAAC;gBACN,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,wBAAwB,EAAE,CAAC,CAAC;YAC/D,CAAC;QACH,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,8CAA8C;IAC9C,MAAM,CAAC,IAAI,CAAC,0BAA0B,EAAE,KAAK,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,EAAE,EAAE;QAC1E,IAAI,YAAY,CAAC,OAAO,EAAE,QAAQ,CAAC,EAAE,CAAC;YACpC,OAAO;QACT,CAAC;QACD,MAAM,IAAI,GAAG,OAAO,CAAC,IAAK,CAAC;QAC3B,MAAM,KAAK,GAAG,IAAA,sBAAQ,EAAC,IAAI,CAAC,CAAC;QAC7B,MAAM,IAAI,GAAG,kBAAkB,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC;QAE7C,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,uBAAuB,EAAE,CAAC,CAAC;YAC5D,OAAO;QACT,CAAC;QAED,IAAI,CAAC;YACH,MAAM,YAAY,GAAG,OAAO,CAAC,eAAe,CAAC,IAAI,CAAC,CAAC;YAEnD,IAAI,CAAC,YAAY,EAAE,CAAC;gBAClB,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,qBAAqB,EAAE,CAAC,CAAC;gBAC1D,OAAO;YACT,CAAC;YAED,IAAI,YAAY,CAAC,OAAO,KAAK,KAAK,EAAE,CAAC;gBACnC,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,eAAe,EAAE,CAAC,CAAC;gBACpD,OAAO;YACT,CAAC;YAED,MAAM,OAAO,CAAC,UAAU,EAAE,CAAC;YAE3B,MAAM,CAAC,IAAI,CAAC,iCAAiC,IAAI,EAAE,CAAC,CAAC;YACrD,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE;gBACtB,OAAO,EAAE,IAAI;gBACb,SAAS,EAAE,IAAI;gBACf,OAAO,EAAE,8BAA8B;gBACvC,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;aACpC,CAAC,CAAC;QACL,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,CAAC,KAAK,CAAC,0BAA0B,KAAK,EAAE,CAAC,CAAC;YAChD,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,uBAAuB,EAAE,CAAC,CAAC;QAC9D,CAAC;IACH,CAAC,CAAC,CAAC;AACL,CAAC;AAED,SAAS,kBAAkB,CAAC,GAA0B;IACpD,OAAO;QACL,SAAS,EAAE,GAAG,CAAC,SAAS;QACxB,UAAU,EAAE,GAAG,CAAC,UAAU;QAC1B,IAAI,EAAE,GAAG,CAAC,IAAI;QACd,QAAQ,EAAE,GAAG,CAAC,QAAQ;QACtB,cAAc,EAAE,GAAG,CAAC,YAAY,EAAE,QAAQ;QAC1C,cAAc,EAAE,GAAG,CAAC,YAAY,EAAE,QAAQ;QAC1C,YAAY,EAAE,GAAG,CAAC,YAAY,CAAC,WAAW,EAAE;QAC5C,OAAO,EAAE,GAAG,CAAC,OAAO;KACrB,CAAC;AACJ,CAAC;AAED,KAAK,UAAU,YAAY,CAAC,OAA6B;IACvD,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;QACrC,IAAI,IAAI,GAAG,EAAE,CAAC;QACd,OAAO,CAAC,WAAW,CAAC,MAAM,CAAC,CAAC;QAC5B,OAAO,CAAC,EAAE,CAAC,MAAM,EAAE,CAAC,KAAa,EAAE,EAAE;YACnC,IAAI,IAAI,KAAK,CAAC;QAChB,CAAC,CAAC,CAAC;QACH,OAAO,CAAC,EAAE,CAAC,KAAK,EAAE,GAAG,EAAE;YACrB,IAAI,CAAC,IAAI,EAAE,CAAC;gBACV,OAAO,CAAC,SAAS,CAAC,CAAC;gBACnB,OAAO;YACT,CAAC;YACD,IAAI,CAAC;gBACH,OAAO,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC;YAC5B,CAAC;YAAC,MAAM,CAAC;gBACP,OAAO,CAAC,SAAS,CAAC,CAAC;YACrB,CAAC;QACH,CAAC,CAAC,CAAC;QACH,OAAO,CAAC,EAAE,CAAC,OAAO,EAAE,MAAM,CAAC,CAAC;IAC9B,CAAC,CAAC,CAAC;AACL,CAAC;AAED,SAAS,QAAQ,CAAC,QAAwB,EAAE,MAAc,EAAE,IAAa;IACvE,QAAQ,CAAC,UAAU,GAAG,MAAM,CAAC;IAC7B,QAAQ,CAAC,SAAS,CAAC,cAAc,EAAE,kBAAkB,CAAC,CAAC;IACvD,QAAQ,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC,CAAC;AACrC,CAAC","sourcesContent":["import type { ServerResponse } from 'node:http';\nimport { getLoggerFor } from 'global-logger-factory';\nimport type { AuthenticatedRequest } from '../middleware/AuthMiddleware';\nimport type { ApiServer } from '../ApiServer';\nimport type { SubdomainService, SubdomainRegistration } from '../../subdomain/SubdomainService';\nimport { getWebId, isSolidAuth } from '../auth/AuthContext';\n\nexport interface SubdomainHandlerOptions {\n  subdomainService: SubdomainService;\n}\n\n/**\n * Handler for subdomain management API\n *\n * GET  /v1/subdomain/check?name=xxx - Check subdomain availability (public)\n * GET  /v1/subdomain - List user's subdomain registrations\n * GET  /v1/subdomain/:name - Get subdomain info\n * POST /v1/subdomain/register - Register a new subdomain\n * DELETE /v1/subdomain/:name - Release a subdomain\n * POST /v1/subdomain/:name/start - Start tunnel\n * POST /v1/subdomain/:name/stop - Stop tunnel\n */\nexport function registerSubdomainRoutes(server: ApiServer, options: SubdomainHandlerOptions): void {\n  const logger = getLoggerFor('SubdomainHandler');\n  const service = options.subdomainService;\n\n  const rejectApiKey = (request: AuthenticatedRequest, response: ServerResponse): boolean => {\n    const auth = request.auth;\n    if (auth && isSolidAuth(auth) && auth.viaApiKey) {\n      sendJson(response, 403, { error: 'API key is not allowed for this endpoint' });\n      return true;\n    }\n    return false;\n  };\n\n  // GET /v1/subdomain/check?name=xxx - Check availability (public)\n  server.get('/v1/subdomain/check', async (request, response, _params) => {\n    const url = new URL(request.url ?? '/', `http://${request.headers.host ?? 'localhost'}`);\n    const name = url.searchParams.get('name');\n\n    if (!name) {\n      sendJson(response, 400, { error: 'Missing \"name\" query parameter' });\n      return;\n    }\n\n    try {\n      const result = await service.checkAvailability(name);\n      sendJson(response, 200, {\n        subdomain: name,\n        available: result.available,\n        reason: result.reason,\n        timestamp: new Date().toISOString(),\n      });\n    } catch (error) {\n      logger.error(`Failed to check availability: ${error}`);\n      sendJson(response, 500, { error: 'Failed to check availability' });\n    }\n  }, { public: true });\n\n  // GET /v1/subdomain - List user's registrations\n  server.get('/v1/subdomain', async (request, response, _params) => {\n    if (rejectApiKey(request, response)) {\n      return;\n    }\n    const auth = request.auth!;\n    const webId = getWebId(auth);\n\n    if (!webId) {\n      sendJson(response, 400, { error: 'Cannot determine user' });\n      return;\n    }\n\n    try {\n      // Filter registrations by owner\n      const allRegistrations = service.getAllRegistrations();\n      const userRegistrations = allRegistrations.filter(r => r.ownerId === webId);\n\n      sendJson(response, 200, {\n        registrations: userRegistrations.map(formatRegistration),\n        total: userRegistrations.length,\n        timestamp: new Date().toISOString(),\n      });\n    } catch (error) {\n      logger.error(`Failed to list registrations: ${error}`);\n      sendJson(response, 500, { error: 'Failed to list registrations' });\n    }\n  });\n\n  // GET /v1/subdomain/:name - Get subdomain info\n  server.get('/v1/subdomain/:name', async (request, response, params) => {\n    if (rejectApiKey(request, response)) {\n      return;\n    }\n    const auth = request.auth!;\n    const webId = getWebId(auth);\n    const name = decodeURIComponent(params.name);\n\n    if (!webId) {\n      sendJson(response, 400, { error: 'Cannot determine user' });\n      return;\n    }\n\n    try {\n      const registration = service.getRegistration(name);\n      \n      if (!registration) {\n        sendJson(response, 404, { error: 'Subdomain not found' });\n        return;\n      }\n\n      // Check ownership\n      if (registration.ownerId !== webId) {\n        sendJson(response, 403, { error: 'Access denied' });\n        return;\n      }\n\n      sendJson(response, 200, {\n        ...formatRegistration(registration),\n        timestamp: new Date().toISOString(),\n      });\n    } catch (error) {\n      logger.error(`Failed to get registration: ${error}`);\n      sendJson(response, 500, { error: 'Failed to get registration' });\n    }\n  });\n\n  // POST /v1/subdomain/register - Register a new subdomain\n  server.post('/v1/subdomain/register', async (request, response, _params) => {\n    if (rejectApiKey(request, response)) {\n      return;\n    }\n    const auth = request.auth!;\n    const webId = getWebId(auth);\n\n    if (!webId) {\n      sendJson(response, 400, { error: 'Cannot determine user' });\n      return;\n    }\n\n    const body = await readJsonBody(request);\n    if (!body || typeof body !== 'object') {\n      sendJson(response, 400, { error: 'Invalid request body' });\n      return;\n    }\n\n    const { subdomain, localPort, publicIp } = body as Record<string, unknown>;\n\n    if (!subdomain || typeof subdomain !== 'string') {\n      sendJson(response, 400, { error: 'Missing \"subdomain\" field' });\n      return;\n    }\n\n    if (!localPort || typeof localPort !== 'number') {\n      sendJson(response, 400, { error: 'Missing or invalid \"localPort\" field' });\n      return;\n    }\n\n    try {\n      const registration = await service.register({\n        subdomain,\n        localPort,\n        publicIp: typeof publicIp === 'string' ? publicIp : undefined,\n        ownerId: webId,\n      });\n\n      logger.info(`Registered subdomain: ${registration.fullDomain} for ${webId} (mode: ${registration.mode})`);\n\n      sendJson(response, 201, {\n        success: true,\n        ...formatRegistration(registration),\n        message: `Subdomain registered successfully in ${registration.mode} mode.`,\n      });\n    } catch (error) {\n      logger.error(`Failed to register subdomain: ${error}`);\n      if (error instanceof Error) {\n        sendJson(response, 400, { error: error.message });\n      } else {\n        sendJson(response, 500, { error: 'Failed to register subdomain' });\n      }\n    }\n  });\n\n  // DELETE /v1/subdomain/:name - Release a subdomain\n  server.delete('/v1/subdomain/:name', async (request, response, params) => {\n    if (rejectApiKey(request, response)) {\n      return;\n    }\n    const auth = request.auth!;\n    const webId = getWebId(auth);\n    const name = decodeURIComponent(params.name);\n\n    if (!webId) {\n      sendJson(response, 400, { error: 'Cannot determine user' });\n      return;\n    }\n\n    try {\n      const registration = service.getRegistration(name);\n      \n      if (!registration) {\n        sendJson(response, 404, { error: 'Subdomain not found' });\n        return;\n      }\n\n      // Check ownership\n      if (registration.ownerId !== webId) {\n        sendJson(response, 403, { error: 'Access denied' });\n        return;\n      }\n\n      await service.release(name);\n\n      logger.info(`Released subdomain: ${name} by ${webId}`);\n      sendJson(response, 200, {\n        success: true,\n        subdomain: name,\n        message: 'Subdomain released successfully.',\n        timestamp: new Date().toISOString(),\n      });\n    } catch (error) {\n      logger.error(`Failed to release subdomain: ${error}`);\n      sendJson(response, 500, { error: 'Failed to release subdomain' });\n    }\n  });\n\n  // POST /v1/subdomain/:name/start - Start tunnel\n  server.post('/v1/subdomain/:name/start', async (request, response, params) => {\n    if (rejectApiKey(request, response)) {\n      return;\n    }\n    const auth = request.auth!;\n    const webId = getWebId(auth);\n    const name = decodeURIComponent(params.name);\n\n    if (!webId) {\n      sendJson(response, 400, { error: 'Cannot determine user' });\n      return;\n    }\n\n    try {\n      const registration = service.getRegistration(name);\n      \n      if (!registration) {\n        sendJson(response, 404, { error: 'Subdomain not found' });\n        return;\n      }\n\n      if (registration.ownerId !== webId) {\n        sendJson(response, 403, { error: 'Access denied' });\n        return;\n      }\n\n      await service.startTunnel(name);\n\n      logger.info(`Started tunnel for subdomain: ${name}`);\n      sendJson(response, 200, {\n        success: true,\n        subdomain: name,\n        message: 'Tunnel started successfully.',\n        timestamp: new Date().toISOString(),\n      });\n    } catch (error) {\n      logger.error(`Failed to start tunnel: ${error}`);\n      if (error instanceof Error) {\n        sendJson(response, 400, { error: error.message });\n      } else {\n        sendJson(response, 500, { error: 'Failed to start tunnel' });\n      }\n    }\n  });\n\n  // POST /v1/subdomain/:name/stop - Stop tunnel\n  server.post('/v1/subdomain/:name/stop', async (request, response, params) => {\n    if (rejectApiKey(request, response)) {\n      return;\n    }\n    const auth = request.auth!;\n    const webId = getWebId(auth);\n    const name = decodeURIComponent(params.name);\n\n    if (!webId) {\n      sendJson(response, 400, { error: 'Cannot determine user' });\n      return;\n    }\n\n    try {\n      const registration = service.getRegistration(name);\n      \n      if (!registration) {\n        sendJson(response, 404, { error: 'Subdomain not found' });\n        return;\n      }\n\n      if (registration.ownerId !== webId) {\n        sendJson(response, 403, { error: 'Access denied' });\n        return;\n      }\n\n      await service.stopTunnel();\n\n      logger.info(`Stopped tunnel for subdomain: ${name}`);\n      sendJson(response, 200, {\n        success: true,\n        subdomain: name,\n        message: 'Tunnel stopped successfully.',\n        timestamp: new Date().toISOString(),\n      });\n    } catch (error) {\n      logger.error(`Failed to stop tunnel: ${error}`);\n      sendJson(response, 500, { error: 'Failed to stop tunnel' });\n    }\n  });\n}\n\nfunction formatRegistration(reg: SubdomainRegistration): Record<string, unknown> {\n  return {\n    subdomain: reg.subdomain,\n    fullDomain: reg.fullDomain,\n    mode: reg.mode,\n    publicIp: reg.publicIp,\n    tunnelProvider: reg.tunnelConfig?.provider,\n    tunnelEndpoint: reg.tunnelConfig?.endpoint,\n    registeredAt: reg.registeredAt.toISOString(),\n    ownerId: reg.ownerId,\n  };\n}\n\nasync function readJsonBody(request: AuthenticatedRequest): Promise<unknown> {\n  return new Promise((resolve, reject) => {\n    let data = '';\n    request.setEncoding('utf8');\n    request.on('data', (chunk: string) => {\n      data += chunk;\n    });\n    request.on('end', () => {\n      if (!data) {\n        resolve(undefined);\n        return;\n      }\n      try {\n        resolve(JSON.parse(data));\n      } catch {\n        resolve(undefined);\n      }\n    });\n    request.on('error', reject);\n  });\n}\n\nfunction sendJson(response: ServerResponse, status: number, data: unknown): void {\n  response.statusCode = status;\n  response.setHeader('Content-Type', 'application/json');\n  response.end(JSON.stringify(data));\n}\n"]}
+{"version":3,"file":"SubdomainHandler.js","sourceRoot":"","sources":["../../../src/api/handlers/SubdomainHandler.ts"],"names":[],"mappings":";;AAsBA,0DAwSC;AA7TD,iEAAqD;AAIrD,qDAA4D;AAM5D;;;;;;;;;;GAUG;AACH,SAAgB,uBAAuB,CAAC,MAAiB,EAAE,OAAgC;IACzF,MAAM,MAAM,GAAG,IAAA,oCAAY,EAAC,kBAAkB,CAAC,CAAC;IAChD,MAAM,OAAO,GAAG,OAAO,CAAC,gBAAgB,CAAC;IAEzC,MAAM,YAAY,GAAG,CAAC,OAA6B,EAAE,QAAwB,EAAW,EAAE;QACxF,MAAM,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC;QAC1B,IAAI,IAAI,IAAI,IAAA,yBAAW,EAAC,IAAI,CAAC,IAAI,IAAI,CAAC,SAAS,EAAE,CAAC;YAChD,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,0CAA0C,EAAE,CAAC,CAAC;YAC/E,OAAO,IAAI,CAAC;QACd,CAAC;QACD,OAAO,KAAK,CAAC;IACf,CAAC,CAAC;IAEF,iEAAiE;IACjE,MAAM,CAAC,GAAG,CAAC,qBAAqB,EAAE,KAAK,EAAE,OAAO,EAAE,QAAQ,EAAE,OAAO,EAAE,EAAE;QACrE,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,OAAO,CAAC,GAAG,IAAI,GAAG,EAAE,UAAU,OAAO,CAAC,OAAO,CAAC,IAAI,IAAI,WAAW,EAAE,CAAC,CAAC;QACzF,MAAM,IAAI,GAAG,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;QAE1C,IAAI,CAAC,IAAI,EAAE,CAAC;YACV,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,gCAAgC,EAAE,CAAC,CAAC;YACrE,OAAO;QACT,CAAC;QAED,IAAI,CAAC;YACH,MAAM,MAAM,GAAG,MAAM,OAAO,CAAC,iBAAiB,CAAC,IAAI,CAAC,CAAC;YACrD,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE;gBACtB,SAAS,EAAE,IAAI;gBACf,SAAS,EAAE,MAAM,CAAC,SAAS;gBAC3B,MAAM,EAAE,MAAM,CAAC,MAAM;gBACrB,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;aACpC,CAAC,CAAC;QACL,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,CAAC,KAAK,CAAC,iCAAiC,KAAK,EAAE,CAAC,CAAC;YACvD,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,8BAA8B,EAAE,CAAC,CAAC;QACrE,CAAC;IACH,CAAC,EAAE,EAAE,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC;IAErB,gDAAgD;IAChD,MAAM,CAAC,GAAG,CAAC,eAAe,EAAE,KAAK,EAAE,OAAO,EAAE,QAAQ,EAAE,OAAO,EAAE,EAAE;QAC/D,IAAI,YAAY,CAAC,OAAO,EAAE,QAAQ,CAAC,EAAE,CAAC;YACpC,OAAO;QACT,CAAC;QACD,MAAM,IAAI,GAAG,OAAO,CAAC,IAAK,CAAC;QAC3B,MAAM,KAAK,GAAG,IAAA,sBAAQ,EAAC,IAAI,CAAC,CAAC;QAE7B,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,uBAAuB,EAAE,CAAC,CAAC;YAC5D,OAAO;QACT,CAAC;QAED,IAAI,CAAC;YACH,gCAAgC;YAChC,MAAM,gBAAgB,GAAG,MAAM,OAAO,CAAC,mBAAmB,EAAE,CAAC;YAC7D,MAAM,iBAAiB,GAAG,gBAAgB,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,OAAO,KAAK,KAAK,CAAC,CAAC;YAE5E,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE;gBACtB,aAAa,EAAE,iBAAiB,CAAC,GAAG,CAAC,kBAAkB,CAAC;gBACxD,KAAK,EAAE,iBAAiB,CAAC,MAAM;gBAC/B,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;aACpC,CAAC,CAAC;QACL,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,CAAC,KAAK,CAAC,iCAAiC,KAAK,EAAE,CAAC,CAAC;YACvD,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,8BAA8B,EAAE,CAAC,CAAC;QACrE,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,+CAA+C;IAC/C,MAAM,CAAC,GAAG,CAAC,qBAAqB,EAAE,KAAK,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,EAAE,EAAE;QACpE,IAAI,YAAY,CAAC,OAAO,EAAE,QAAQ,CAAC,EAAE,CAAC;YACpC,OAAO;QACT,CAAC;QACD,MAAM,IAAI,GAAG,OAAO,CAAC,IAAK,CAAC;QAC3B,MAAM,KAAK,GAAG,IAAA,sBAAQ,EAAC,IAAI,CAAC,CAAC;QAC7B,MAAM,IAAI,GAAG,kBAAkB,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC;QAE7C,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,uBAAuB,EAAE,CAAC,CAAC;YAC5D,OAAO;QACT,CAAC;QAED,IAAI,CAAC;YACH,MAAM,YAAY,GAAG,MAAM,OAAO,CAAC,eAAe,CAAC,IAAI,CAAC,CAAC;YAEzD,IAAI,CAAC,YAAY,EAAE,CAAC;gBAClB,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,qBAAqB,EAAE,CAAC,CAAC;gBAC1D,OAAO;YACT,CAAC;YAED,kBAAkB;YAClB,IAAI,YAAY,CAAC,OAAO,KAAK,KAAK,EAAE,CAAC;gBACnC,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,eAAe,EAAE,CAAC,CAAC;gBACpD,OAAO;YACT,CAAC;YAED,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE;gBACtB,GAAG,kBAAkB,CAAC,YAAY,CAAC;gBACnC,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;aACpC,CAAC,CAAC;QACL,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,CAAC,KAAK,CAAC,+BAA+B,KAAK,EAAE,CAAC,CAAC;YACrD,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,4BAA4B,EAAE,CAAC,CAAC;QACnE,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,yDAAyD;IACzD,MAAM,CAAC,IAAI,CAAC,wBAAwB,EAAE,KAAK,EAAE,OAAO,EAAE,QAAQ,EAAE,OAAO,EAAE,EAAE;QACzE,IAAI,YAAY,CAAC,OAAO,EAAE,QAAQ,CAAC,EAAE,CAAC;YACpC,OAAO;QACT,CAAC;QACD,MAAM,IAAI,GAAG,OAAO,CAAC,IAAK,CAAC;QAC3B,MAAM,KAAK,GAAG,IAAA,sBAAQ,EAAC,IAAI,CAAC,CAAC;QAE7B,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,uBAAuB,EAAE,CAAC,CAAC;YAC5D,OAAO;QACT,CAAC;QAED,MAAM,IAAI,GAAG,MAAM,YAAY,CAAC,OAAO,CAAC,CAAC;QACzC,IAAI,CAAC,IAAI,IAAI,OAAO,IAAI,KAAK,QAAQ,EAAE,CAAC;YACtC,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,sBAAsB,EAAE,CAAC,CAAC;YAC3D,OAAO;QACT,CAAC;QAED,MAAM,EAAE,SAAS,EAAE,MAAM,EAAE,SAAS,EAAE,IAAI,EAAE,GAAG,IAA+B,CAAC;QAE/E,IAAI,CAAC,SAAS,IAAI,OAAO,SAAS,KAAK,QAAQ,EAAE,CAAC;YAChD,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,2BAA2B,EAAE,CAAC,CAAC;YAChE,OAAO;QACT,CAAC;QAED,IAAI,CAAC,MAAM,IAAI,OAAO,MAAM,KAAK,QAAQ,EAAE,CAAC;YAC1C,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,wBAAwB,EAAE,CAAC,CAAC;YAC7D,OAAO;QACT,CAAC;QAED,IAAI,CAAC,SAAS,IAAI,OAAO,SAAS,KAAK,QAAQ,EAAE,CAAC;YAChD,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,sCAAsC,EAAE,CAAC,CAAC;YAC3E,OAAO;QACT,CAAC;QAED,IAAI,CAAC;YACH,MAAM,YAAY,GAAG,MAAM,OAAO,CAAC,QAAQ,CAAC;gBAC1C,SAAS;gBACT,MAAM;gBACN,SAAS;gBACT,IAAI,EAAE,OAAO,IAAI,KAAK,QAAQ,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS;gBACjD,OAAO,EAAE,KAAK;aACf,CAAC,CAAC;YAEH,MAAM,CAAC,IAAI,CAAC,yBAAyB,YAAY,CAAC,UAAU,QAAQ,KAAK,WAAW,YAAY,CAAC,IAAI,GAAG,CAAC,CAAC;YAE1G,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE;gBACtB,OAAO,EAAE,IAAI;gBACb,GAAG,kBAAkB,CAAC,YAAY,CAAC;gBACnC,OAAO,EAAE,wCAAwC,YAAY,CAAC,IAAI,QAAQ;aAC3E,CAAC,CAAC;QACL,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,CAAC,KAAK,CAAC,iCAAiC,KAAK,EAAE,CAAC,CAAC;YACvD,IAAI,KAAK,YAAY,KAAK,EAAE,CAAC;gBAC3B,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,KAAK,CAAC,OAAO,EAAE,CAAC,CAAC;YACpD,CAAC;iBAAM,CAAC;gBACN,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,8BAA8B,EAAE,CAAC,CAAC;YACrE,CAAC;QACH,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,mDAAmD;IACnD,MAAM,CAAC,MAAM,CAAC,qBAAqB,EAAE,KAAK,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,EAAE,EAAE;QACvE,IAAI,YAAY,CAAC,OAAO,EAAE,QAAQ,CAAC,EAAE,CAAC;YACpC,OAAO;QACT,CAAC;QACD,MAAM,IAAI,GAAG,OAAO,CAAC,IAAK,CAAC;QAC3B,MAAM,KAAK,GAAG,IAAA,sBAAQ,EAAC,IAAI,CAAC,CAAC;QAC7B,MAAM,IAAI,GAAG,kBAAkB,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC;QAE7C,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,uBAAuB,EAAE,CAAC,CAAC;YAC5D,OAAO;QACT,CAAC;QAED,IAAI,CAAC;YACH,MAAM,YAAY,GAAG,MAAM,OAAO,CAAC,eAAe,CAAC,IAAI,CAAC,CAAC;YAEzD,IAAI,CAAC,YAAY,EAAE,CAAC;gBAClB,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,qBAAqB,EAAE,CAAC,CAAC;gBAC1D,OAAO;YACT,CAAC;YAED,kBAAkB;YAClB,IAAI,YAAY,CAAC,OAAO,KAAK,KAAK,EAAE,CAAC;gBACnC,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,eAAe,EAAE,CAAC,CAAC;gBACpD,OAAO;YACT,CAAC;YAED,MAAM,OAAO,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC;YAE5B,MAAM,CAAC,IAAI,CAAC,uBAAuB,IAAI,OAAO,KAAK,EAAE,CAAC,CAAC;YACvD,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE;gBACtB,OAAO,EAAE,IAAI;gBACb,SAAS,EAAE,IAAI;gBACf,OAAO,EAAE,kCAAkC;gBAC3C,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;aACpC,CAAC,CAAC;QACL,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,CAAC,KAAK,CAAC,gCAAgC,KAAK,EAAE,CAAC,CAAC;YACtD,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,6BAA6B,EAAE,CAAC,CAAC;QACpE,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,gDAAgD;IAChD,MAAM,CAAC,IAAI,CAAC,2BAA2B,EAAE,KAAK,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,EAAE,EAAE;QAC3E,IAAI,YAAY,CAAC,OAAO,EAAE,QAAQ,CAAC,EAAE,CAAC;YACpC,OAAO;QACT,CAAC;QACD,MAAM,IAAI,GAAG,OAAO,CAAC,IAAK,CAAC;QAC3B,MAAM,KAAK,GAAG,IAAA,sBAAQ,EAAC,IAAI,CAAC,CAAC;QAC7B,MAAM,IAAI,GAAG,kBAAkB,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC;QAE7C,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,uBAAuB,EAAE,CAAC,CAAC;YAC5D,OAAO;QACT,CAAC;QAED,IAAI,CAAC;YACH,MAAM,YAAY,GAAG,MAAM,OAAO,CAAC,eAAe,CAAC,IAAI,CAAC,CAAC;YAEzD,IAAI,CAAC,YAAY,EAAE,CAAC;gBAClB,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,qBAAqB,EAAE,CAAC,CAAC;gBAC1D,OAAO;YACT,CAAC;YAED,IAAI,YAAY,CAAC,OAAO,KAAK,KAAK,EAAE,CAAC;gBACnC,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,eAAe,EAAE,CAAC,CAAC;gBACpD,OAAO;YACT,CAAC;YAED,MAAM,OAAO,CAAC,WAAW,CAAC,IAAI,CAAC,CAAC;YAEhC,MAAM,CAAC,IAAI,CAAC,iCAAiC,IAAI,EAAE,CAAC,CAAC;YACrD,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE;gBACtB,OAAO,EAAE,IAAI;gBACb,SAAS,EAAE,IAAI;gBACf,OAAO,EAAE,8BAA8B;gBACvC,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;aACpC,CAAC,CAAC;QACL,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,CAAC,KAAK,CAAC,2BAA2B,KAAK,EAAE,CAAC,CAAC;YACjD,IAAI,KAAK,YAAY,KAAK,EAAE,CAAC;gBAC3B,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,KAAK,CAAC,OAAO,EAAE,CAAC,CAAC;YACpD,CAAC;iBAAM,CAAC;gBACN,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,wBAAwB,EAAE,CAAC,CAAC;YAC/D,CAAC;QACH,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,8CAA8C;IAC9C,MAAM,CAAC,IAAI,CAAC,0BAA0B,EAAE,KAAK,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,EAAE,EAAE;QAC1E,IAAI,YAAY,CAAC,OAAO,EAAE,QAAQ,CAAC,EAAE,CAAC;YACpC,OAAO;QACT,CAAC;QACD,MAAM,IAAI,GAAG,OAAO,CAAC,IAAK,CAAC;QAC3B,MAAM,KAAK,GAAG,IAAA,sBAAQ,EAAC,IAAI,CAAC,CAAC;QAC7B,MAAM,IAAI,GAAG,kBAAkB,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC;QAE7C,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,uBAAuB,EAAE,CAAC,CAAC;YAC5D,OAAO;QACT,CAAC;QAED,IAAI,CAAC;YACH,MAAM,YAAY,GAAG,MAAM,OAAO,CAAC,eAAe,CAAC,IAAI,CAAC,CAAC;YAEzD,IAAI,CAAC,YAAY,EAAE,CAAC;gBAClB,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,qBAAqB,EAAE,CAAC,CAAC;gBAC1D,OAAO;YACT,CAAC;YAED,IAAI,YAAY,CAAC,OAAO,KAAK,KAAK,EAAE,CAAC;gBACnC,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,eAAe,EAAE,CAAC,CAAC;gBACpD,OAAO;YACT,CAAC;YAED,MAAM,OAAO,CAAC,UAAU,EAAE,CAAC;YAE3B,MAAM,CAAC,IAAI,CAAC,iCAAiC,IAAI,EAAE,CAAC,CAAC;YACrD,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE;gBACtB,OAAO,EAAE,IAAI;gBACb,SAAS,EAAE,IAAI;gBACf,OAAO,EAAE,8BAA8B;gBACvC,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;aACpC,CAAC,CAAC;QACL,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,CAAC,KAAK,CAAC,0BAA0B,KAAK,EAAE,CAAC,CAAC;YAChD,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,uBAAuB,EAAE,CAAC,CAAC;QAC9D,CAAC;IACH,CAAC,CAAC,CAAC;AACL,CAAC;AAED,SAAS,kBAAkB,CAAC,GAA0B;IACpD,OAAO;QACL,SAAS,EAAE,GAAG,CAAC,SAAS;QACxB,UAAU,EAAE,GAAG,CAAC,UAAU;QAC1B,IAAI,EAAE,GAAG,CAAC,IAAI;QACd,IAAI,EAAE,GAAG,CAAC,IAAI;QACd,cAAc,EAAE,GAAG,CAAC,YAAY,EAAE,QAAQ;QAC1C,cAAc,EAAE,GAAG,CAAC,YAAY,EAAE,QAAQ;QAC1C,YAAY,EAAE,GAAG,CAAC,YAAY,CAAC,WAAW,EAAE;QAC5C,OAAO,EAAE,GAAG,CAAC,OAAO;KACrB,CAAC;AACJ,CAAC;AAED,KAAK,UAAU,YAAY,CAAC,OAA6B;IACvD,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;QACrC,IAAI,IAAI,GAAG,EAAE,CAAC;QACd,OAAO,CAAC,WAAW,CAAC,MAAM,CAAC,CAAC;QAC5B,OAAO,CAAC,EAAE,CAAC,MAAM,EAAE,CAAC,KAAa,EAAE,EAAE;YACnC,IAAI,IAAI,KAAK,CAAC;QAChB,CAAC,CAAC,CAAC;QACH,OAAO,CAAC,EAAE,CAAC,KAAK,EAAE,GAAG,EAAE;YACrB,IAAI,CAAC,IAAI,EAAE,CAAC;gBACV,OAAO,CAAC,SAAS,CAAC,CAAC;gBACnB,OAAO;YACT,CAAC;YACD,IAAI,CAAC;gBACH,OAAO,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC;YAC5B,CAAC;YAAC,MAAM,CAAC;gBACP,OAAO,CAAC,SAAS,CAAC,CAAC;YACrB,CAAC;QACH,CAAC,CAAC,CAAC;QACH,OAAO,CAAC,EAAE,CAAC,OAAO,EAAE,MAAM,CAAC,CAAC;IAC9B,CAAC,CAAC,CAAC;AACL,CAAC;AAED,SAAS,QAAQ,CAAC,QAAwB,EAAE,MAAc,EAAE,IAAa;IACvE,QAAQ,CAAC,UAAU,GAAG,MAAM,CAAC;IAC7B,QAAQ,CAAC,SAAS,CAAC,cAAc,EAAE,kBAAkB,CAAC,CAAC;IACvD,QAAQ,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC,CAAC;AACrC,CAAC","sourcesContent":["import type { ServerResponse } from 'node:http';\nimport { getLoggerFor } from 'global-logger-factory';\nimport type { AuthenticatedRequest } from '../middleware/AuthMiddleware';\nimport type { ApiServer } from '../ApiServer';\nimport type { SubdomainService, SubdomainRegistration } from '../../subdomain/SubdomainService';\nimport { getWebId, isSolidAuth } from '../auth/AuthContext';\n\nexport interface SubdomainHandlerOptions {\n  subdomainService: SubdomainService;\n}\n\n/**\n * Handler for subdomain management API\n *\n * GET  /v1/subdomain/check?name=xxx - Check subdomain availability (public)\n * GET  /v1/subdomain - List user's subdomain registrations\n * GET  /v1/subdomain/:name - Get subdomain info\n * POST /v1/subdomain/register - Register a new subdomain\n * DELETE /v1/subdomain/:name - Release a subdomain\n * POST /v1/subdomain/:name/start - Start tunnel\n * POST /v1/subdomain/:name/stop - Stop tunnel\n */\nexport function registerSubdomainRoutes(server: ApiServer, options: SubdomainHandlerOptions): void {\n  const logger = getLoggerFor('SubdomainHandler');\n  const service = options.subdomainService;\n\n  const rejectApiKey = (request: AuthenticatedRequest, response: ServerResponse): boolean => {\n    const auth = request.auth;\n    if (auth && isSolidAuth(auth) && auth.viaApiKey) {\n      sendJson(response, 403, { error: 'API key is not allowed for this endpoint' });\n      return true;\n    }\n    return false;\n  };\n\n  // GET /v1/subdomain/check?name=xxx - Check availability (public)\n  server.get('/v1/subdomain/check', async (request, response, _params) => {\n    const url = new URL(request.url ?? '/', `http://${request.headers.host ?? 'localhost'}`);\n    const name = url.searchParams.get('name');\n\n    if (!name) {\n      sendJson(response, 400, { error: 'Missing \"name\" query parameter' });\n      return;\n    }\n\n    try {\n      const result = await service.checkAvailability(name);\n      sendJson(response, 200, {\n        subdomain: name,\n        available: result.available,\n        reason: result.reason,\n        timestamp: new Date().toISOString(),\n      });\n    } catch (error) {\n      logger.error(`Failed to check availability: ${error}`);\n      sendJson(response, 500, { error: 'Failed to check availability' });\n    }\n  }, { public: true });\n\n  // GET /v1/subdomain - List user's registrations\n  server.get('/v1/subdomain', async (request, response, _params) => {\n    if (rejectApiKey(request, response)) {\n      return;\n    }\n    const auth = request.auth!;\n    const webId = getWebId(auth);\n\n    if (!webId) {\n      sendJson(response, 400, { error: 'Cannot determine user' });\n      return;\n    }\n\n    try {\n      // Filter registrations by owner\n      const allRegistrations = await service.getAllRegistrations();\n      const userRegistrations = allRegistrations.filter(r => r.ownerId === webId);\n\n      sendJson(response, 200, {\n        registrations: userRegistrations.map(formatRegistration),\n        total: userRegistrations.length,\n        timestamp: new Date().toISOString(),\n      });\n    } catch (error) {\n      logger.error(`Failed to list registrations: ${error}`);\n      sendJson(response, 500, { error: 'Failed to list registrations' });\n    }\n  });\n\n  // GET /v1/subdomain/:name - Get subdomain info\n  server.get('/v1/subdomain/:name', async (request, response, params) => {\n    if (rejectApiKey(request, response)) {\n      return;\n    }\n    const auth = request.auth!;\n    const webId = getWebId(auth);\n    const name = decodeURIComponent(params.name);\n\n    if (!webId) {\n      sendJson(response, 400, { error: 'Cannot determine user' });\n      return;\n    }\n\n    try {\n      const registration = await service.getRegistration(name);\n\n      if (!registration) {\n        sendJson(response, 404, { error: 'Subdomain not found' });\n        return;\n      }\n\n      // Check ownership\n      if (registration.ownerId !== webId) {\n        sendJson(response, 403, { error: 'Access denied' });\n        return;\n      }\n\n      sendJson(response, 200, {\n        ...formatRegistration(registration),\n        timestamp: new Date().toISOString(),\n      });\n    } catch (error) {\n      logger.error(`Failed to get registration: ${error}`);\n      sendJson(response, 500, { error: 'Failed to get registration' });\n    }\n  });\n\n  // POST /v1/subdomain/register - Register a new subdomain\n  server.post('/v1/subdomain/register', async (request, response, _params) => {\n    if (rejectApiKey(request, response)) {\n      return;\n    }\n    const auth = request.auth!;\n    const webId = getWebId(auth);\n\n    if (!webId) {\n      sendJson(response, 400, { error: 'Cannot determine user' });\n      return;\n    }\n\n    const body = await readJsonBody(request);\n    if (!body || typeof body !== 'object') {\n      sendJson(response, 400, { error: 'Invalid request body' });\n      return;\n    }\n\n    const { subdomain, nodeId, localPort, ipv4 } = body as Record<string, unknown>;\n\n    if (!subdomain || typeof subdomain !== 'string') {\n      sendJson(response, 400, { error: 'Missing \"subdomain\" field' });\n      return;\n    }\n\n    if (!nodeId || typeof nodeId !== 'string') {\n      sendJson(response, 400, { error: 'Missing \"nodeId\" field' });\n      return;\n    }\n\n    if (!localPort || typeof localPort !== 'number') {\n      sendJson(response, 400, { error: 'Missing or invalid \"localPort\" field' });\n      return;\n    }\n\n    try {\n      const registration = await service.register({\n        subdomain,\n        nodeId,\n        localPort,\n        ipv4: typeof ipv4 === 'string' ? ipv4 : undefined,\n        ownerId: webId,\n      });\n\n      logger.info(`Registered subdomain: ${registration.fullDomain} for ${webId} (mode: ${registration.mode})`);\n\n      sendJson(response, 201, {\n        success: true,\n        ...formatRegistration(registration),\n        message: `Subdomain registered successfully in ${registration.mode} mode.`,\n      });\n    } catch (error) {\n      logger.error(`Failed to register subdomain: ${error}`);\n      if (error instanceof Error) {\n        sendJson(response, 400, { error: error.message });\n      } else {\n        sendJson(response, 500, { error: 'Failed to register subdomain' });\n      }\n    }\n  });\n\n  // DELETE /v1/subdomain/:name - Release a subdomain\n  server.delete('/v1/subdomain/:name', async (request, response, params) => {\n    if (rejectApiKey(request, response)) {\n      return;\n    }\n    const auth = request.auth!;\n    const webId = getWebId(auth);\n    const name = decodeURIComponent(params.name);\n\n    if (!webId) {\n      sendJson(response, 400, { error: 'Cannot determine user' });\n      return;\n    }\n\n    try {\n      const registration = await service.getRegistration(name);\n\n      if (!registration) {\n        sendJson(response, 404, { error: 'Subdomain not found' });\n        return;\n      }\n\n      // Check ownership\n      if (registration.ownerId !== webId) {\n        sendJson(response, 403, { error: 'Access denied' });\n        return;\n      }\n\n      await service.release(name);\n\n      logger.info(`Released subdomain: ${name} by ${webId}`);\n      sendJson(response, 200, {\n        success: true,\n        subdomain: name,\n        message: 'Subdomain released successfully.',\n        timestamp: new Date().toISOString(),\n      });\n    } catch (error) {\n      logger.error(`Failed to release subdomain: ${error}`);\n      sendJson(response, 500, { error: 'Failed to release subdomain' });\n    }\n  });\n\n  // POST /v1/subdomain/:name/start - Start tunnel\n  server.post('/v1/subdomain/:name/start', async (request, response, params) => {\n    if (rejectApiKey(request, response)) {\n      return;\n    }\n    const auth = request.auth!;\n    const webId = getWebId(auth);\n    const name = decodeURIComponent(params.name);\n\n    if (!webId) {\n      sendJson(response, 400, { error: 'Cannot determine user' });\n      return;\n    }\n\n    try {\n      const registration = await service.getRegistration(name);\n\n      if (!registration) {\n        sendJson(response, 404, { error: 'Subdomain not found' });\n        return;\n      }\n\n      if (registration.ownerId !== webId) {\n        sendJson(response, 403, { error: 'Access denied' });\n        return;\n      }\n\n      await service.startTunnel(name);\n\n      logger.info(`Started tunnel for subdomain: ${name}`);\n      sendJson(response, 200, {\n        success: true,\n        subdomain: name,\n        message: 'Tunnel started successfully.',\n        timestamp: new Date().toISOString(),\n      });\n    } catch (error) {\n      logger.error(`Failed to start tunnel: ${error}`);\n      if (error instanceof Error) {\n        sendJson(response, 400, { error: error.message });\n      } else {\n        sendJson(response, 500, { error: 'Failed to start tunnel' });\n      }\n    }\n  });\n\n  // POST /v1/subdomain/:name/stop - Stop tunnel\n  server.post('/v1/subdomain/:name/stop', async (request, response, params) => {\n    if (rejectApiKey(request, response)) {\n      return;\n    }\n    const auth = request.auth!;\n    const webId = getWebId(auth);\n    const name = decodeURIComponent(params.name);\n\n    if (!webId) {\n      sendJson(response, 400, { error: 'Cannot determine user' });\n      return;\n    }\n\n    try {\n      const registration = await service.getRegistration(name);\n\n      if (!registration) {\n        sendJson(response, 404, { error: 'Subdomain not found' });\n        return;\n      }\n\n      if (registration.ownerId !== webId) {\n        sendJson(response, 403, { error: 'Access denied' });\n        return;\n      }\n\n      await service.stopTunnel();\n\n      logger.info(`Stopped tunnel for subdomain: ${name}`);\n      sendJson(response, 200, {\n        success: true,\n        subdomain: name,\n        message: 'Tunnel stopped successfully.',\n        timestamp: new Date().toISOString(),\n      });\n    } catch (error) {\n      logger.error(`Failed to stop tunnel: ${error}`);\n      sendJson(response, 500, { error: 'Failed to stop tunnel' });\n    }\n  });\n}\n\nfunction formatRegistration(reg: SubdomainRegistration): Record<string, unknown> {\n  return {\n    subdomain: reg.subdomain,\n    fullDomain: reg.fullDomain,\n    mode: reg.mode,\n    ipv4: reg.ipv4,\n    tunnelProvider: reg.tunnelConfig?.provider,\n    tunnelEndpoint: reg.tunnelConfig?.endpoint,\n    registeredAt: reg.registeredAt.toISOString(),\n    ownerId: reg.ownerId,\n  };\n}\n\nasync function readJsonBody(request: AuthenticatedRequest): Promise<unknown> {\n  return new Promise((resolve, reject) => {\n    let data = '';\n    request.setEncoding('utf8');\n    request.on('data', (chunk: string) => {\n      data += chunk;\n    });\n    request.on('end', () => {\n      if (!data) {\n        resolve(undefined);\n        return;\n      }\n      try {\n        resolve(JSON.parse(data));\n      } catch {\n        resolve(undefined);\n      }\n    });\n    request.on('error', reject);\n  });\n}\n\nfunction sendJson(response: ServerResponse, status: number, data: unknown): void {\n  response.statusCode = status;\n  response.setHeader('Content-Type', 'application/json');\n  response.end(JSON.stringify(data));\n}\n"]}

package/dist/api/handlers/UsageHandler.d.ts

@@ -0,0 +1,14 @@
+import type { ApiServer } from '../ApiServer';
+import type { UsageRepository } from '../../storage/quota/UsageRepository';
+export interface UsageHandlerOptions {
+    usageRepo: UsageRepository;
+}
+/**
+ * Handler for usage query API
+ *
+ * Requires ServiceAuthContext with 'usage:read' scope.
+ *
+ * GET /v1/usage/accounts/:accountId - Get account usage details
+ * GET /v1/usage/pods/:podId         - Get pod usage details
+ */
+export declare function registerUsageRoutes(server: ApiServer, options: UsageHandlerOptions): void;

package/dist/api/handlers/UsageHandler.js

@@ -0,0 +1,123 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.registerUsageRoutes = registerUsageRoutes;
+const global_logger_factory_1 = require("global-logger-factory");
+const AuthContext_1 = require("../auth/AuthContext");
+/**
+ * Handler for usage query API
+ *
+ * Requires ServiceAuthContext with 'usage:read' scope.
+ *
+ * GET /v1/usage/accounts/:accountId - Get account usage details
+ * GET /v1/usage/pods/:podId         - Get pod usage details
+ */
+function registerUsageRoutes(server, options) {
+    const logger = (0, global_logger_factory_1.getLoggerFor)('UsageHandler');
+    const { usageRepo } = options;
+    // GET /v1/usage/accounts/:accountId
+    server.get('/v1/usage/accounts/:accountId', async (request, response, params) => {
+        if (!requireUsageRead(request, response)) {
+            return;
+        }
+        const accountId = decodeURIComponent(params.accountId);
+        try {
+            const usage = await usageRepo.getAccountUsage(accountId);
+            if (!usage) {
+                sendJson(response, 200, {
+                    accountId,
+                    usage: {
+                        storageBytes: 0,
+                        ingressBytes: 0,
+                        egressBytes: 0,
+                        computeSeconds: 0,
+                        tokensUsed: 0,
+                        periodStart: null,
+                    },
+                });
+                return;
+            }
+            sendJson(response, 200, {
+                accountId,
+                usage: {
+                    storageBytes: usage.storageBytes,
+                    ingressBytes: usage.ingressBytes,
+                    egressBytes: usage.egressBytes,
+                    computeSeconds: usage.computeSeconds,
+                    tokensUsed: usage.tokensUsed,
+                    periodStart: usage.periodStart ? new Date(usage.periodStart * 1000).toISOString() : null,
+                },
+                limits: {
+                    storageLimitBytes: usage.storageLimitBytes ?? null,
+                    bandwidthLimitBps: usage.bandwidthLimitBps ?? null,
+                    computeLimitSeconds: usage.computeLimitSeconds ?? null,
+                    tokenLimitMonthly: usage.tokenLimitMonthly ?? null,
+                },
+            });
+        }
+        catch (error) {
+            logger.error(`Failed to get account usage: ${error}`);
+            sendJson(response, 500, { error: 'Failed to get usage' });
+        }
+    });
+    // GET /v1/usage/pods/:podId
+    server.get('/v1/usage/pods/:podId', async (request, response, params) => {
+        if (!requireUsageRead(request, response)) {
+            return;
+        }
+        const podId = decodeURIComponent(params.podId);
+        try {
+            const usage = await usageRepo.getPodUsage(podId);
+            if (!usage) {
+                sendJson(response, 404, { error: 'Pod usage not found' });
+                return;
+            }
+            sendJson(response, 200, {
+                podId,
+                accountId: usage.accountId,
+                usage: {
+                    storageBytes: usage.storageBytes,
+                    ingressBytes: usage.ingressBytes,
+                    egressBytes: usage.egressBytes,
+                    computeSeconds: usage.computeSeconds,
+                    tokensUsed: usage.tokensUsed,
+                    periodStart: usage.periodStart ? new Date(usage.periodStart * 1000).toISOString() : null,
+                },
+                limits: {
+                    storageLimitBytes: usage.storageLimitBytes ?? null,
+                    bandwidthLimitBps: usage.bandwidthLimitBps ?? null,
+                    computeLimitSeconds: usage.computeLimitSeconds ?? null,
+                    tokenLimitMonthly: usage.tokenLimitMonthly ?? null,
+                },
+            });
+        }
+        catch (error) {
+            logger.error(`Failed to get pod usage: ${error}`);
+            sendJson(response, 500, { error: 'Failed to get usage' });
+        }
+    });
+}
+function requireUsageRead(request, response) {
+    if (!request.auth) {
+        sendJson(response, 401, { error: 'Authentication required' });
+        return false;
+    }
+    if (request.auth.type === 'service') {
+        if (!(0, AuthContext_1.hasScope)(request.auth, 'usage:read')) {
+            sendJson(response, 403, { error: 'Missing required scope: usage:read' });
+            return false;
+        }
+        return true;
+    }
+    // Allow Solid auth (for admin/user self-query)
+    if (request.auth.type === 'solid') {
+        return true;
+    }
+    sendJson(response, 403, { error: 'Insufficient permissions' });
+    return false;
+}
+function sendJson(response, status, data) {
+    response.statusCode = status;
+    response.setHeader('Content-Type', 'application/json');
+    response.end(JSON.stringify(data));
+}
+//# sourceMappingURL=UsageHandler.js.map

package/dist/api/handlers/UsageHandler.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"UsageHandler.js","sourceRoot":"","sources":["../../../src/api/handlers/UsageHandler.ts"],"names":[],"mappings":";;AAmBA,kDA0FC;AA5GD,iEAAqD;AAIrD,qDAA+C;AAM/C;;;;;;;GAOG;AACH,SAAgB,mBAAmB,CAAC,MAAiB,EAAE,OAA4B;IACjF,MAAM,MAAM,GAAG,IAAA,oCAAY,EAAC,cAAc,CAAC,CAAC;IAC5C,MAAM,EAAE,SAAS,EAAE,GAAG,OAAO,CAAC;IAE9B,oCAAoC;IACpC,MAAM,CAAC,GAAG,CAAC,+BAA+B,EAAE,KAAK,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,EAAE,EAAE;QAC9E,IAAI,CAAC,gBAAgB,CAAC,OAAO,EAAE,QAAQ,CAAC,EAAE,CAAC;YACzC,OAAO;QACT,CAAC;QAED,MAAM,SAAS,GAAG,kBAAkB,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC;QAEvD,IAAI,CAAC;YACH,MAAM,KAAK,GAAG,MAAM,SAAS,CAAC,eAAe,CAAC,SAAS,CAAC,CAAC;YACzD,IAAI,CAAC,KAAK,EAAE,CAAC;gBACX,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE;oBACtB,SAAS;oBACT,KAAK,EAAE;wBACL,YAAY,EAAE,CAAC;wBACf,YAAY,EAAE,CAAC;wBACf,WAAW,EAAE,CAAC;wBACd,cAAc,EAAE,CAAC;wBACjB,UAAU,EAAE,CAAC;wBACb,WAAW,EAAE,IAAI;qBAClB;iBACF,CAAC,CAAC;gBACH,OAAO;YACT,CAAC;YAED,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE;gBACtB,SAAS;gBACT,KAAK,EAAE;oBACL,YAAY,EAAE,KAAK,CAAC,YAAY;oBAChC,YAAY,EAAE,KAAK,CAAC,YAAY;oBAChC,WAAW,EAAE,KAAK,CAAC,WAAW;oBAC9B,cAAc,EAAE,KAAK,CAAC,cAAc;oBACpC,UAAU,EAAE,KAAK,CAAC,UAAU;oBAC5B,WAAW,EAAE,KAAK,CAAC,WAAW,CAAC,CAAC,CAAC,IAAI,IAAI,CAAC,KAAK,CAAC,WAAW,GAAG,IAAI,CAAC,CAAC,WAAW,EAAE,CAAC,CAAC,CAAC,IAAI;iBACzF;gBACD,MAAM,EAAE;oBACN,iBAAiB,EAAE,KAAK,CAAC,iBAAiB,IAAI,IAAI;oBAClD,iBAAiB,EAAE,KAAK,CAAC,iBAAiB,IAAI,IAAI;oBAClD,mBAAmB,EAAE,KAAK,CAAC,mBAAmB,IAAI,IAAI;oBACtD,iBAAiB,EAAE,KAAK,CAAC,iBAAiB,IAAI,IAAI;iBACnD;aACF,CAAC,CAAC;QACL,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,CAAC,KAAK,CAAC,gCAAgC,KAAK,EAAE,CAAC,CAAC;YACtD,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,qBAAqB,EAAE,CAAC,CAAC;QAC5D,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,4BAA4B;IAC5B,MAAM,CAAC,GAAG,CAAC,uBAAuB,EAAE,KAAK,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,EAAE,EAAE;QACtE,IAAI,CAAC,gBAAgB,CAAC,OAAO,EAAE,QAAQ,CAAC,EAAE,CAAC;YACzC,OAAO;QACT,CAAC;QAED,MAAM,KAAK,GAAG,kBAAkB,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;QAE/C,IAAI,CAAC;YACH,MAAM,KAAK,GAAG,MAAM,SAAS,CAAC,WAAW,CAAC,KAAK,CAAC,CAAC;YACjD,IAAI,CAAC,KAAK,EAAE,CAAC;gBACX,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,qBAAqB,EAAE,CAAC,CAAC;gBAC1D,OAAO;YACT,CAAC;YAED,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE;gBACtB,KAAK;gBACL,SAAS,EAAE,KAAK,CAAC,SAAS;gBAC1B,KAAK,EAAE;oBACL,YAAY,EAAE,KAAK,CAAC,YAAY;oBAChC,YAAY,EAAE,KAAK,CAAC,YAAY;oBAChC,WAAW,EAAE,KAAK,CAAC,WAAW;oBAC9B,cAAc,EAAE,KAAK,CAAC,cAAc;oBACpC,UAAU,EAAE,KAAK,CAAC,UAAU;oBAC5B,WAAW,EAAE,KAAK,CAAC,WAAW,CAAC,CAAC,CAAC,IAAI,IAAI,CAAC,KAAK,CAAC,WAAW,GAAG,IAAI,CAAC,CAAC,WAAW,EAAE,CAAC,CAAC,CAAC,IAAI;iBACzF;gBACD,MAAM,EAAE;oBACN,iBAAiB,EAAE,KAAK,CAAC,iBAAiB,IAAI,IAAI;oBAClD,iBAAiB,EAAE,KAAK,CAAC,iBAAiB,IAAI,IAAI;oBAClD,mBAAmB,EAAE,KAAK,CAAC,mBAAmB,IAAI,IAAI;oBACtD,iBAAiB,EAAE,KAAK,CAAC,iBAAiB,IAAI,IAAI;iBACnD;aACF,CAAC,CAAC;QACL,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,CAAC,KAAK,CAAC,4BAA4B,KAAK,EAAE,CAAC,CAAC;YAClD,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,qBAAqB,EAAE,CAAC,CAAC;QAC5D,CAAC;IACH,CAAC,CAAC,CAAC;AACL,CAAC;AAED,SAAS,gBAAgB,CAAC,OAA6B,EAAE,QAAwB;IAC/E,IAAI,CAAC,OAAO,CAAC,IAAI,EAAE,CAAC;QAClB,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,yBAAyB,EAAE,CAAC,CAAC;QAC9D,OAAO,KAAK,CAAC;IACf,CAAC;IACD,IAAI,OAAO,CAAC,IAAI,CAAC,IAAI,KAAK,SAAS,EAAE,CAAC;QACpC,IAAI,CAAC,IAAA,sBAAQ,EAAC,OAAO,CAAC,IAAI,EAAE,YAAY,CAAC,EAAE,CAAC;YAC1C,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,oCAAoC,EAAE,CAAC,CAAC;YACzE,OAAO,KAAK,CAAC;QACf,CAAC;QACD,OAAO,IAAI,CAAC;IACd,CAAC;IACD,+CAA+C;IAC/C,IAAI,OAAO,CAAC,IAAI,CAAC,IAAI,KAAK,OAAO,EAAE,CAAC;QAClC,OAAO,IAAI,CAAC;IACd,CAAC;IACD,QAAQ,CAAC,QAAQ,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,0BAA0B,EAAE,CAAC,CAAC;IAC/D,OAAO,KAAK,CAAC;AACf,CAAC;AAED,SAAS,QAAQ,CAAC,QAAwB,EAAE,MAAc,EAAE,IAAa;IACvE,QAAQ,CAAC,UAAU,GAAG,MAAM,CAAC;IAC7B,QAAQ,CAAC,SAAS,CAAC,cAAc,EAAE,kBAAkB,CAAC,CAAC;IACvD,QAAQ,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC,CAAC;AACrC,CAAC","sourcesContent":["import type { ServerResponse } from 'node:http';\nimport { getLoggerFor } from 'global-logger-factory';\nimport type { AuthenticatedRequest } from '../middleware/AuthMiddleware';\nimport type { ApiServer } from '../ApiServer';\nimport type { UsageRepository } from '../../storage/quota/UsageRepository';\nimport { hasScope } from '../auth/AuthContext';\n\nexport interface UsageHandlerOptions {\n  usageRepo: UsageRepository;\n}\n\n/**\n * Handler for usage query API\n *\n * Requires ServiceAuthContext with 'usage:read' scope.\n *\n * GET /v1/usage/accounts/:accountId - Get account usage details\n * GET /v1/usage/pods/:podId         - Get pod usage details\n */\nexport function registerUsageRoutes(server: ApiServer, options: UsageHandlerOptions): void {\n  const logger = getLoggerFor('UsageHandler');\n  const { usageRepo } = options;\n\n  // GET /v1/usage/accounts/:accountId\n  server.get('/v1/usage/accounts/:accountId', async (request, response, params) => {\n    if (!requireUsageRead(request, response)) {\n      return;\n    }\n\n    const accountId = decodeURIComponent(params.accountId);\n\n    try {\n      const usage = await usageRepo.getAccountUsage(accountId);\n      if (!usage) {\n        sendJson(response, 200, {\n          accountId,\n          usage: {\n            storageBytes: 0,\n            ingressBytes: 0,\n            egressBytes: 0,\n            computeSeconds: 0,\n            tokensUsed: 0,\n            periodStart: null,\n          },\n        });\n        return;\n      }\n\n      sendJson(response, 200, {\n        accountId,\n        usage: {\n          storageBytes: usage.storageBytes,\n          ingressBytes: usage.ingressBytes,\n          egressBytes: usage.egressBytes,\n          computeSeconds: usage.computeSeconds,\n          tokensUsed: usage.tokensUsed,\n          periodStart: usage.periodStart ? new Date(usage.periodStart * 1000).toISOString() : null,\n        },\n        limits: {\n          storageLimitBytes: usage.storageLimitBytes ?? null,\n          bandwidthLimitBps: usage.bandwidthLimitBps ?? null,\n          computeLimitSeconds: usage.computeLimitSeconds ?? null,\n          tokenLimitMonthly: usage.tokenLimitMonthly ?? null,\n        },\n      });\n    } catch (error) {\n      logger.error(`Failed to get account usage: ${error}`);\n      sendJson(response, 500, { error: 'Failed to get usage' });\n    }\n  });\n\n  // GET /v1/usage/pods/:podId\n  server.get('/v1/usage/pods/:podId', async (request, response, params) => {\n    if (!requireUsageRead(request, response)) {\n      return;\n    }\n\n    const podId = decodeURIComponent(params.podId);\n\n    try {\n      const usage = await usageRepo.getPodUsage(podId);\n      if (!usage) {\n        sendJson(response, 404, { error: 'Pod usage not found' });\n        return;\n      }\n\n      sendJson(response, 200, {\n        podId,\n        accountId: usage.accountId,\n        usage: {\n          storageBytes: usage.storageBytes,\n          ingressBytes: usage.ingressBytes,\n          egressBytes: usage.egressBytes,\n          computeSeconds: usage.computeSeconds,\n          tokensUsed: usage.tokensUsed,\n          periodStart: usage.periodStart ? new Date(usage.periodStart * 1000).toISOString() : null,\n        },\n        limits: {\n          storageLimitBytes: usage.storageLimitBytes ?? null,\n          bandwidthLimitBps: usage.bandwidthLimitBps ?? null,\n          computeLimitSeconds: usage.computeLimitSeconds ?? null,\n          tokenLimitMonthly: usage.tokenLimitMonthly ?? null,\n        },\n      });\n    } catch (error) {\n      logger.error(`Failed to get pod usage: ${error}`);\n      sendJson(response, 500, { error: 'Failed to get usage' });\n    }\n  });\n}\n\nfunction requireUsageRead(request: AuthenticatedRequest, response: ServerResponse): boolean {\n  if (!request.auth) {\n    sendJson(response, 401, { error: 'Authentication required' });\n    return false;\n  }\n  if (request.auth.type === 'service') {\n    if (!hasScope(request.auth, 'usage:read')) {\n      sendJson(response, 403, { error: 'Missing required scope: usage:read' });\n      return false;\n    }\n    return true;\n  }\n  // Allow Solid auth (for admin/user self-query)\n  if (request.auth.type === 'solid') {\n    return true;\n  }\n  sendJson(response, 403, { error: 'Insufficient permissions' });\n  return false;\n}\n\nfunction sendJson(response: ServerResponse, status: number, data: unknown): void {\n  response.statusCode = status;\n  response.setHeader('Content-Type', 'application/json');\n  response.end(JSON.stringify(data));\n}\n"]}

package/dist/api/handlers/index.d.ts

@@ -1,4 +1,4 @@
-export * from './SignalHandler';
+export * from './EdgeNodeSignalHandler';
 export * from './QuotaHandler';
 export * from './NodeHandler';
 export * from './ChatHandler';
@@ -9,3 +9,5 @@ export * from './ApiKeyHandler';
 export * from './SubdomainHandler';
 export * from './SubdomainClientHandler';
 export * from './ChatKitHandler';
+export * from './ProvisionHandler';
+export * from './PodManagementHandler';

package/dist/api/handlers/index.js

@@ -14,7 +14,7 @@ var __exportStar = (this && this.__exportStar) || function(m, exports) {
     for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
 };
 Object.defineProperty(exports, "__esModule", { value: true });
-__exportStar(require("./SignalHandler"), exports);
+__exportStar(require("./EdgeNodeSignalHandler"), exports);
 __exportStar(require("./QuotaHandler"), exports);
 __exportStar(require("./NodeHandler"), exports);
 __exportStar(require("./ChatHandler"), exports);
@@ -25,4 +25,6 @@ __exportStar(require("./ApiKeyHandler"), exports);
 __exportStar(require("./SubdomainHandler"), exports);
 __exportStar(require("./SubdomainClientHandler"), exports);
 __exportStar(require("./ChatKitHandler"), exports);
+__exportStar(require("./ProvisionHandler"), exports);
+__exportStar(require("./PodManagementHandler"), exports);
 //# sourceMappingURL=index.js.map

package/dist/api/handlers/index.js.map

@@ -1 +1 @@
-{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/api/handlers/index.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;AAAA,kDAAgC;AAChC,iDAA+B;AAC/B,gDAA8B;AAC9B,gDAA8B;AAC9B,kDAAgC;AAChC,uDAAqC;AACrC,8DAA4C;AAC5C,kDAAgC;AAChC,qDAAmC;AACnC,2DAAyC;AACzC,mDAAiC","sourcesContent":["export * from './SignalHandler';\nexport * from './QuotaHandler';\nexport * from './NodeHandler';\nexport * from './ChatHandler';\nexport * from './VectorHandler';\nexport * from './VectorStoreHandler';\nexport * from './VectorStoreWebhookHandler';\nexport * from './ApiKeyHandler';\nexport * from './SubdomainHandler';\nexport * from './SubdomainClientHandler';\nexport * from './ChatKitHandler';\n"]}
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/api/handlers/index.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;AAAA,0DAAwC;AACxC,iDAA+B;AAC/B,gDAA8B;AAC9B,gDAA8B;AAC9B,kDAAgC;AAChC,uDAAqC;AACrC,8DAA4C;AAC5C,kDAAgC;AAChC,qDAAmC;AACnC,2DAAyC;AACzC,mDAAiC;AACjC,qDAAmC;AACnC,yDAAuC","sourcesContent":["export * from './EdgeNodeSignalHandler';\nexport * from './QuotaHandler';\nexport * from './NodeHandler';\nexport * from './ChatHandler';\nexport * from './VectorHandler';\nexport * from './VectorStoreHandler';\nexport * from './VectorStoreWebhookHandler';\nexport * from './ApiKeyHandler';\nexport * from './SubdomainHandler';\nexport * from './SubdomainClientHandler';\nexport * from './ChatKitHandler';\nexport * from './ProvisionHandler';\nexport * from './PodManagementHandler';\n"]}

package/dist/api/main.js

@@ -36,6 +36,24 @@ async function main() {
     const container = (0, container_1.createApiContainer)(config);
     // 注册路由
     (0, routes_1.registerRoutes)(container);
+    // 自动注册 service token（如果配置了 XPOD_SERVICE_TOKEN）
+    try {
+        const serviceToken = process.env.XPOD_SERVICE_TOKEN;
+        if (serviceToken) {
+            const serviceTokenRepo = container.resolve('serviceTokenRepo');
+            const serviceType = config.edition === 'cloud' ? 'cloud' : 'local';
+            const serviceId = process.env.XPOD_NODE_ID || (config.edition === 'cloud' ? 'cloud-1' : 'local-1');
+            await serviceTokenRepo.registerToken(serviceToken, {
+                serviceType,
+                serviceId,
+                scopes: ['quota:write', 'usage:read', 'account:manage'],
+            });
+            logger.info(`Registered service token for ${serviceType}:${serviceId}`);
+        }
+    }
+    catch (error) {
+        logger.error(`Failed to register service token: ${error}`);
+    }
     // Start background maintenance (IPv6 DDNS / Tunnel Control)
     try {
         const localNetworkManager = container.resolve('localNetworkManager', { allowUnregistered: true });

package/dist/api/main.js.map

@@ -1 +1 @@
-{"version":3,"file":"main.js","sourceRoot":"","sources":["../../src/api/main.ts"],"names":[],"mappings":";;AACA;;;;;;;;;;;GAWG;;AAEH,2CAAoE;AACpE,+CAAoD;AACpD,iEAA6E;AAC7E,oFAAiF;AAEjF,KAAK,UAAU,IAAI;IACjB,YAAY;IACZ,MAAM,MAAM,GAAG,IAAA,6BAAiB,GAAE,CAAC;IAEnC,cAAc;IACd,MAAM,aAAa,GAAG,IAAI,qDAAyB,CAAC,OAAO,CAAC,GAAG,CAAC,iBAAiB,IAAI,MAAM,EAAE;QAC3F,QAAQ,EAAE,wBAAwB;QAClC,YAAY,EAAE,IAAI;KACnB,CAAC,CAAC;IACH,IAAA,8CAAsB,EAAC,aAAa,CAAC,CAAC;IAEtC,MAAM,MAAM,GAAG,IAAA,oCAAY,EAAC,MAAM,CAAC,CAAC;IAEpC,IAAI,CAAC,MAAM,CAAC,WAAW,EAAE,CAAC;QACxB,MAAM,CAAC,KAAK,CAAC,sEAAsE,CAAC,CAAC;QACrF,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAClB,CAAC;IAED,MAAM,CAAC,IAAI,CAAC,kCAAkC,MAAM,CAAC,OAAO,MAAM,CAAC,CAAC;IAEpE,WAAW;IACX,MAAM,SAAS,GAAG,IAAA,8BAAkB,EAAC,MAAM,CAAC,CAAC;IAE7C,OAAO;IACP,IAAA,uBAAc,EAAC,SAAS,CAAC,CAAC;IAE1B,4DAA4D;IAC5D,IAAI,CAAC;QACH,MAAM,mBAAmB,GAAG,SAAS,CAAC,OAAO,CAAC,qBAAqB,EAAE,EAAE,iBAAiB,EAAE,IAAI,EAAE,CAAQ,CAAC;QACzG,IAAI,mBAAmB,EAAE,CAAC;YACxB,mBAAmB,CAAC,KAAK,EAAE,CAAC;QAC9B,CAAC;IACH,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,MAAM,CAAC,KAAK,CAAC,6CAA6C,KAAK,EAAE,CAAC,CAAC;IACrE,CAAC;IAED,oCAAoC;IACpC,IAAI,CAAC;QACH,MAAM,WAAW,GAAG,SAAS,CAAC,OAAO,CAAC,aAAa,EAAE,EAAE,iBAAiB,EAAE,IAAI,EAAE,CAAQ,CAAC;QACzF,IAAI,WAAW,EAAE,CAAC;YAChB,MAAM,WAAW,CAAC,KAAK,EAAE,CAAC;YAC1B,MAAM,CAAC,IAAI,CAAC,sBAAsB,CAAC,CAAC;QACtC,CAAC;IACH,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,MAAM,CAAC,KAAK,CAAC,qCAAqC,KAAK,EAAE,CAAC,CAAC;IAC7D,CAAC;IAED,sEAAsE;IACtE,IAAI,CAAC;QACH,MAAM,mBAAmB,GAAG,SAAS,CAAC,OAAO,CAAC,qBAAqB,EAAE,EAAE,iBAAiB,EAAE,IAAI,EAAE,CAAC,CAAC;QAClG,MAAM,mBAAmB,GAAG,SAAS,CAAC,OAAO,CAAC,qBAAqB,EAAE,EAAE,iBAAiB,EAAE,IAAI,EAAE,CAAQ,CAAC;QAEzG,oEAAoE;QACpE,IAAI,CAAC,mBAAmB,IAAI,mBAAmB,EAAE,CAAC;YAChD,MAAM,CAAC,IAAI,CAAC,iDAAiD,CAAC,CAAC;YAC/D,MAAM,mBAAmB,CAAC,KAAK,EAAE,CAAC;YAClC,MAAM,CAAC,IAAI,CAAC,2BAA2B,CAAC,CAAC;QAC3C,CAAC;IACH,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,MAAM,CAAC,KAAK,CAAC,sCAAsC,KAAK,EAAE,CAAC,CAAC;IAC9D,CAAC;IAED,wBAAwB;IACxB,MAAM,MAAM,GAAG,SAAS,CAAC,OAAO,CAAC,WAAW,CAAQ,CAAC;IACrD,MAAM,MAAM,CAAC,KAAK,EAAE,CAAC;IACrB,MAAM,CAAC,IAAI,CAAC,yBAAyB,MAAM,CAAC,IAAI,IAAI,MAAM,CAAC,IAAI,EAAE,CAAC,CAAC;IAEnE,oBAAoB;IACpB,MAAM,QAAQ,GAAG,KAAK,EAAE,MAAc,EAAiB,EAAE;QACvD,MAAM,CAAC,IAAI,CAAC,yBAAyB,MAAM,MAAM,CAAC,CAAC;QAEnD,IAAI,CAAC;YACH,MAAM,WAAW,GAAG,SAAS,CAAC,OAAO,CAAC,aAAa,EAAE,EAAE,iBAAiB,EAAE,IAAI,EAAE,CAAQ,CAAC;YACzF,WAAW,EAAE,IAAI,EAAE,CAAC;QACtB,CAAC;QAAC,MAAM,CAAC,CAAA,CAAC;QAEV,IAAI,CAAC;YACH,MAAM,mBAAmB,GAAG,SAAS,CAAC,OAAO,CAAC,qBAAqB,EAAE,EAAE,iBAAiB,EAAE,IAAI,EAAE,CAAC,CAAC;YAClG,MAAM,mBAAmB,EAAE,IAAI,EAAE,CAAC;QACpC,CAAC;QAAC,MAAM,CAAC,CAAA,CAAC;QAEV,IAAI,CAAC;YACH,MAAM,mBAAmB,GAAG,SAAS,CAAC,OAAO,CAAC,qBAAqB,EAAE,EAAE,iBAAiB,EAAE,IAAI,EAAE,CAAQ,CAAC;YACzG,MAAM,mBAAmB,EAAE,IAAI,EAAE,CAAC;QACpC,CAAC;QAAC,MAAM,CAAC,CAAA,CAAC;QAEV,MAAM,MAAM,CAAC,IAAI,EAAE,CAAC;QACpB,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAClB,CAAC,CAAC;IAEF,OAAO,CAAC,EAAE,CAAC,SAAS,EAAE,GAAG,EAAE,CAAC,QAAQ,CAAC,SAAS,CAAC,CAAC,CAAC;IACjD,OAAO,CAAC,EAAE,CAAC,QAAQ,EAAE,GAAG,EAAE,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAC,CAAC;AACjD,CAAC;AAED,IAAI,EAAE,CAAC,KAAK,CAAC,CAAC,KAAK,EAAE,EAAE;IACrB,OAAO,CAAC,KAAK,CAAC,gCAAgC,KAAK,EAAE,CAAC,CAAC;IACvD,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;AAClB,CAAC,CAAC,CAAC","sourcesContent":["#!/usr/bin/env node\n/**\n * API Service Entry Point\n *\n * 使用 Awilix 依赖注入，根据 XPOD_EDITION 环境变量切换 cloud/local 模式\n *\n * - cloud: 持有 DNS/Tunnel 密钥，直接操作子域名，提供身份服务\n * - local: 连接 Cloud 获取身份服务和 DDNS，或独立运行\n *\n * Authentication:\n * - Solid DPoP Token: for browser/frontend users\n * - Client Credentials (Basic Auth with client_id:client_secret): for edge nodes and third-party backends\n */\n\nimport { createApiContainer, loadConfigFromEnv } from './container';\nimport { registerRoutes } from './container/routes';\nimport { setGlobalLoggerFactory, getLoggerFor } from 'global-logger-factory';\nimport { ConfigurableLoggerFactory } from '../logging/ConfigurableLoggerFactory';\n\nasync function main(): Promise<void> {\n  // 从环境变量加载配置\n  const config = loadConfigFromEnv();\n\n  // 初始化全局统一日志工厂\n  const loggerFactory = new ConfigurableLoggerFactory(process.env.CSS_LOGGING_LEVEL || 'info', {\n    fileName: './logs/xpod-%DATE%.log',\n    showLocation: true,\n  });\n  setGlobalLoggerFactory(loggerFactory);\n\n  const logger = getLoggerFor('Main');\n\n  if (!config.databaseUrl) {\n    logger.error('CSS_IDENTITY_DB_URL or DATABASE_URL environment variable is required');\n    process.exit(1);\n  }\n\n  logger.info(`Starting API Service (edition: ${config.edition})...`);\n\n  // 创建 DI 容器\n  const container = createApiContainer(config);\n\n  // 注册路由\n  registerRoutes(container);\n\n  // Start background maintenance (IPv6 DDNS / Tunnel Control)\n  try {\n    const localNetworkManager = container.resolve('localNetworkManager', { allowUnregistered: true }) as any;\n    if (localNetworkManager) {\n      localNetworkManager.start();\n    }\n  } catch (error) {\n    logger.error(`Failed to initialize LocalNetworkManager: ${error}`);\n  }\n\n  // Start DDNS Manager (托管式 Local 模式)\n  try {\n    const ddnsManager = container.resolve('ddnsManager', { allowUnregistered: true }) as any;\n    if (ddnsManager) {\n      await ddnsManager.start();\n      logger.info('DDNS Manager started');\n    }\n  } catch (error) {\n    logger.error(`Failed to initialize DdnsManager: ${error}`);\n  }\n\n  // Start Cloudflare Tunnel (独立式 Local 模式，没有 LocalNetworkManager 时直接启动)\n  try {\n    const localNetworkManager = container.resolve('localNetworkManager', { allowUnregistered: true });\n    const localTunnelProvider = container.resolve('localTunnelProvider', { allowUnregistered: true }) as any;\n\n    // 只有当没有 LocalNetworkManager（它会自动管理 Tunnel）且有 Tunnel Provider 时才手动启动\n    if (!localNetworkManager && localTunnelProvider) {\n      logger.info('Starting Cloudflare Tunnel (standalone mode)...');\n      await localTunnelProvider.start();\n      logger.info('Cloudflare Tunnel started');\n    }\n  } catch (error) {\n    logger.error(`Failed to start Cloudflare Tunnel: ${error}`);\n  }\n\n  // Start the HTTP server\n  const server = container.resolve('apiServer') as any;\n  await server.start();\n  logger.info(`API Service active on ${config.host}:${config.port}`);\n\n  // Graceful shutdown\n  const shutdown = async (signal: string): Promise<void> => {\n    logger.info(`Stopping API Service (${signal})...`);\n\n    try {\n      const ddnsManager = container.resolve('ddnsManager', { allowUnregistered: true }) as any;\n      ddnsManager?.stop();\n    } catch {}\n\n    try {\n      const localNetworkManager = container.resolve('localNetworkManager', { allowUnregistered: true });\n      await localNetworkManager?.stop();\n    } catch {}\n\n    try {\n      const localTunnelProvider = container.resolve('localTunnelProvider', { allowUnregistered: true }) as any;\n      await localTunnelProvider?.stop();\n    } catch {}\n\n    await server.stop();\n    process.exit(0);\n  };\n\n  process.on('SIGTERM', () => shutdown('SIGTERM'));\n  process.on('SIGINT', () => shutdown('SIGINT'));\n}\n\nmain().catch((error) => {\n  console.error(`Failed to start API Service: ${error}`);\n  process.exit(1);\n});\n"]}
+{"version":3,"file":"main.js","sourceRoot":"","sources":["../../src/api/main.ts"],"names":[],"mappings":";;AACA;;;;;;;;;;;GAWG;;AAEH,2CAAoE;AACpE,+CAAoD;AACpD,iEAA6E;AAC7E,oFAAiF;AAEjF,KAAK,UAAU,IAAI;IACjB,YAAY;IACZ,MAAM,MAAM,GAAG,IAAA,6BAAiB,GAAE,CAAC;IAEnC,cAAc;IACd,MAAM,aAAa,GAAG,IAAI,qDAAyB,CAAC,OAAO,CAAC,GAAG,CAAC,iBAAiB,IAAI,MAAM,EAAE;QAC3F,QAAQ,EAAE,wBAAwB;QAClC,YAAY,EAAE,IAAI;KACnB,CAAC,CAAC;IACH,IAAA,8CAAsB,EAAC,aAAa,CAAC,CAAC;IAEtC,MAAM,MAAM,GAAG,IAAA,oCAAY,EAAC,MAAM,CAAC,CAAC;IAEpC,IAAI,CAAC,MAAM,CAAC,WAAW,EAAE,CAAC;QACxB,MAAM,CAAC,KAAK,CAAC,sEAAsE,CAAC,CAAC;QACrF,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAClB,CAAC;IAED,MAAM,CAAC,IAAI,CAAC,kCAAkC,MAAM,CAAC,OAAO,MAAM,CAAC,CAAC;IAEpE,WAAW;IACX,MAAM,SAAS,GAAG,IAAA,8BAAkB,EAAC,MAAM,CAAC,CAAC;IAE7C,OAAO;IACP,IAAA,uBAAc,EAAC,SAAS,CAAC,CAAC;IAE1B,+CAA+C;IAC/C,IAAI,CAAC;QACH,MAAM,YAAY,GAAG,OAAO,CAAC,GAAG,CAAC,kBAAkB,CAAC;QACpD,IAAI,YAAY,EAAE,CAAC;YACjB,MAAM,gBAAgB,GAAG,SAAS,CAAC,OAAO,CAAC,kBAAkB,CAAQ,CAAC;YACtE,MAAM,WAAW,GAAG,MAAM,CAAC,OAAO,KAAK,OAAO,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,OAAO,CAAC;YACnE,MAAM,SAAS,GAAG,OAAO,CAAC,GAAG,CAAC,YAAY,IAAI,CAAC,MAAM,CAAC,OAAO,KAAK,OAAO,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC;YAEnG,MAAM,gBAAgB,CAAC,aAAa,CAAC,YAAY,EAAE;gBACjD,WAAW;gBACX,SAAS;gBACT,MAAM,EAAE,CAAC,aAAa,EAAE,YAAY,EAAE,gBAAgB,CAAC;aACxD,CAAC,CAAC;YAEH,MAAM,CAAC,IAAI,CAAC,gCAAgC,WAAW,IAAI,SAAS,EAAE,CAAC,CAAC;QAC1E,CAAC;IACH,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,MAAM,CAAC,KAAK,CAAC,qCAAqC,KAAK,EAAE,CAAC,CAAC;IAC7D,CAAC;IAED,4DAA4D;IAC5D,IAAI,CAAC;QACH,MAAM,mBAAmB,GAAG,SAAS,CAAC,OAAO,CAAC,qBAAqB,EAAE,EAAE,iBAAiB,EAAE,IAAI,EAAE,CAAQ,CAAC;QACzG,IAAI,mBAAmB,EAAE,CAAC;YACxB,mBAAmB,CAAC,KAAK,EAAE,CAAC;QAC9B,CAAC;IACH,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,MAAM,CAAC,KAAK,CAAC,6CAA6C,KAAK,EAAE,CAAC,CAAC;IACrE,CAAC;IAED,oCAAoC;IACpC,IAAI,CAAC;QACH,MAAM,WAAW,GAAG,SAAS,CAAC,OAAO,CAAC,aAAa,EAAE,EAAE,iBAAiB,EAAE,IAAI,EAAE,CAAQ,CAAC;QACzF,IAAI,WAAW,EAAE,CAAC;YAChB,MAAM,WAAW,CAAC,KAAK,EAAE,CAAC;YAC1B,MAAM,CAAC,IAAI,CAAC,sBAAsB,CAAC,CAAC;QACtC,CAAC;IACH,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,MAAM,CAAC,KAAK,CAAC,qCAAqC,KAAK,EAAE,CAAC,CAAC;IAC7D,CAAC;IAED,sEAAsE;IACtE,IAAI,CAAC;QACH,MAAM,mBAAmB,GAAG,SAAS,CAAC,OAAO,CAAC,qBAAqB,EAAE,EAAE,iBAAiB,EAAE,IAAI,EAAE,CAAC,CAAC;QAClG,MAAM,mBAAmB,GAAG,SAAS,CAAC,OAAO,CAAC,qBAAqB,EAAE,EAAE,iBAAiB,EAAE,IAAI,EAAE,CAAQ,CAAC;QAEzG,oEAAoE;QACpE,IAAI,CAAC,mBAAmB,IAAI,mBAAmB,EAAE,CAAC;YAChD,MAAM,CAAC,IAAI,CAAC,iDAAiD,CAAC,CAAC;YAC/D,MAAM,mBAAmB,CAAC,KAAK,EAAE,CAAC;YAClC,MAAM,CAAC,IAAI,CAAC,2BAA2B,CAAC,CAAC;QAC3C,CAAC;IACH,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,MAAM,CAAC,KAAK,CAAC,sCAAsC,KAAK,EAAE,CAAC,CAAC;IAC9D,CAAC;IAED,wBAAwB;IACxB,MAAM,MAAM,GAAG,SAAS,CAAC,OAAO,CAAC,WAAW,CAAQ,CAAC;IACrD,MAAM,MAAM,CAAC,KAAK,EAAE,CAAC;IACrB,MAAM,CAAC,IAAI,CAAC,yBAAyB,MAAM,CAAC,IAAI,IAAI,MAAM,CAAC,IAAI,EAAE,CAAC,CAAC;IAEnE,oBAAoB;IACpB,MAAM,QAAQ,GAAG,KAAK,EAAE,MAAc,EAAiB,EAAE;QACvD,MAAM,CAAC,IAAI,CAAC,yBAAyB,MAAM,MAAM,CAAC,CAAC;QAEnD,IAAI,CAAC;YACH,MAAM,WAAW,GAAG,SAAS,CAAC,OAAO,CAAC,aAAa,EAAE,EAAE,iBAAiB,EAAE,IAAI,EAAE,CAAQ,CAAC;YACzF,WAAW,EAAE,IAAI,EAAE,CAAC;QACtB,CAAC;QAAC,MAAM,CAAC,CAAA,CAAC;QAEV,IAAI,CAAC;YACH,MAAM,mBAAmB,GAAG,SAAS,CAAC,OAAO,CAAC,qBAAqB,EAAE,EAAE,iBAAiB,EAAE,IAAI,EAAE,CAAC,CAAC;YAClG,MAAM,mBAAmB,EAAE,IAAI,EAAE,CAAC;QACpC,CAAC;QAAC,MAAM,CAAC,CAAA,CAAC;QAEV,IAAI,CAAC;YACH,MAAM,mBAAmB,GAAG,SAAS,CAAC,OAAO,CAAC,qBAAqB,EAAE,EAAE,iBAAiB,EAAE,IAAI,EAAE,CAAQ,CAAC;YACzG,MAAM,mBAAmB,EAAE,IAAI,EAAE,CAAC;QACpC,CAAC;QAAC,MAAM,CAAC,CAAA,CAAC;QAEV,MAAM,MAAM,CAAC,IAAI,EAAE,CAAC;QACpB,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAClB,CAAC,CAAC;IAEF,OAAO,CAAC,EAAE,CAAC,SAAS,EAAE,GAAG,EAAE,CAAC,QAAQ,CAAC,SAAS,CAAC,CAAC,CAAC;IACjD,OAAO,CAAC,EAAE,CAAC,QAAQ,EAAE,GAAG,EAAE,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAC,CAAC;AACjD,CAAC;AAED,IAAI,EAAE,CAAC,KAAK,CAAC,CAAC,KAAK,EAAE,EAAE;IACrB,OAAO,CAAC,KAAK,CAAC,gCAAgC,KAAK,EAAE,CAAC,CAAC;IACvD,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;AAClB,CAAC,CAAC,CAAC","sourcesContent":["#!/usr/bin/env node\n/**\n * API Service Entry Point\n *\n * 使用 Awilix 依赖注入，根据 XPOD_EDITION 环境变量切换 cloud/local 模式\n *\n * - cloud: 持有 DNS/Tunnel 密钥，直接操作子域名，提供身份服务\n * - local: 连接 Cloud 获取身份服务和 DDNS，或独立运行\n *\n * Authentication:\n * - Solid DPoP Token: for browser/frontend users\n * - Client Credentials (Basic Auth with client_id:client_secret): for edge nodes and third-party backends\n */\n\nimport { createApiContainer, loadConfigFromEnv } from './container';\nimport { registerRoutes } from './container/routes';\nimport { setGlobalLoggerFactory, getLoggerFor } from 'global-logger-factory';\nimport { ConfigurableLoggerFactory } from '../logging/ConfigurableLoggerFactory';\n\nasync function main(): Promise<void> {\n  // 从环境变量加载配置\n  const config = loadConfigFromEnv();\n\n  // 初始化全局统一日志工厂\n  const loggerFactory = new ConfigurableLoggerFactory(process.env.CSS_LOGGING_LEVEL || 'info', {\n    fileName: './logs/xpod-%DATE%.log',\n    showLocation: true,\n  });\n  setGlobalLoggerFactory(loggerFactory);\n\n  const logger = getLoggerFor('Main');\n\n  if (!config.databaseUrl) {\n    logger.error('CSS_IDENTITY_DB_URL or DATABASE_URL environment variable is required');\n    process.exit(1);\n  }\n\n  logger.info(`Starting API Service (edition: ${config.edition})...`);\n\n  // 创建 DI 容器\n  const container = createApiContainer(config);\n\n  // 注册路由\n  registerRoutes(container);\n\n  // 自动注册 service token（如果配置了 XPOD_SERVICE_TOKEN）\n  try {\n    const serviceToken = process.env.XPOD_SERVICE_TOKEN;\n    if (serviceToken) {\n      const serviceTokenRepo = container.resolve('serviceTokenRepo') as any;\n      const serviceType = config.edition === 'cloud' ? 'cloud' : 'local';\n      const serviceId = process.env.XPOD_NODE_ID || (config.edition === 'cloud' ? 'cloud-1' : 'local-1');\n\n      await serviceTokenRepo.registerToken(serviceToken, {\n        serviceType,\n        serviceId,\n        scopes: ['quota:write', 'usage:read', 'account:manage'],\n      });\n\n      logger.info(`Registered service token for ${serviceType}:${serviceId}`);\n    }\n  } catch (error) {\n    logger.error(`Failed to register service token: ${error}`);\n  }\n\n  // Start background maintenance (IPv6 DDNS / Tunnel Control)\n  try {\n    const localNetworkManager = container.resolve('localNetworkManager', { allowUnregistered: true }) as any;\n    if (localNetworkManager) {\n      localNetworkManager.start();\n    }\n  } catch (error) {\n    logger.error(`Failed to initialize LocalNetworkManager: ${error}`);\n  }\n\n  // Start DDNS Manager (托管式 Local 模式)\n  try {\n    const ddnsManager = container.resolve('ddnsManager', { allowUnregistered: true }) as any;\n    if (ddnsManager) {\n      await ddnsManager.start();\n      logger.info('DDNS Manager started');\n    }\n  } catch (error) {\n    logger.error(`Failed to initialize DdnsManager: ${error}`);\n  }\n\n  // Start Cloudflare Tunnel (独立式 Local 模式，没有 LocalNetworkManager 时直接启动)\n  try {\n    const localNetworkManager = container.resolve('localNetworkManager', { allowUnregistered: true });\n    const localTunnelProvider = container.resolve('localTunnelProvider', { allowUnregistered: true }) as any;\n\n    // 只有当没有 LocalNetworkManager（它会自动管理 Tunnel）且有 Tunnel Provider 时才手动启动\n    if (!localNetworkManager && localTunnelProvider) {\n      logger.info('Starting Cloudflare Tunnel (standalone mode)...');\n      await localTunnelProvider.start();\n      logger.info('Cloudflare Tunnel started');\n    }\n  } catch (error) {\n    logger.error(`Failed to start Cloudflare Tunnel: ${error}`);\n  }\n\n  // Start the HTTP server\n  const server = container.resolve('apiServer') as any;\n  await server.start();\n  logger.info(`API Service active on ${config.host}:${config.port}`);\n\n  // Graceful shutdown\n  const shutdown = async (signal: string): Promise<void> => {\n    logger.info(`Stopping API Service (${signal})...`);\n\n    try {\n      const ddnsManager = container.resolve('ddnsManager', { allowUnregistered: true }) as any;\n      ddnsManager?.stop();\n    } catch {}\n\n    try {\n      const localNetworkManager = container.resolve('localNetworkManager', { allowUnregistered: true });\n      await localNetworkManager?.stop();\n    } catch {}\n\n    try {\n      const localTunnelProvider = container.resolve('localTunnelProvider', { allowUnregistered: true }) as any;\n      await localTunnelProvider?.stop();\n    } catch {}\n\n    await server.stop();\n    process.exit(0);\n  };\n\n  process.on('SIGTERM', () => shutdown('SIGTERM'));\n  process.on('SIGINT', () => shutdown('SIGINT'));\n}\n\nmain().catch((error) => {\n  console.error(`Failed to start API Service: ${error}`);\n  process.exit(1);\n});\n"]}

package/dist/api/middleware/OpenAuthMiddleware.d.ts

@@ -0,0 +1,12 @@
+import type { ServerResponse } from 'node:http';
+import type { AuthContext } from '../auth/AuthContext';
+import type { AuthenticatedRequest } from './AuthMiddleware';
+import { AuthMiddleware } from './AuthMiddleware';
+export interface OpenAuthMiddlewareOptions {
+    context?: AuthContext;
+}
+export declare class OpenAuthMiddleware extends AuthMiddleware {
+    private readonly context;
+    constructor(options?: OpenAuthMiddlewareOptions);
+    process(request: AuthenticatedRequest, _response: ServerResponse): Promise<boolean>;
+}

package/dist/api/middleware/OpenAuthMiddleware.js

@@ -0,0 +1,27 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.OpenAuthMiddleware = void 0;
+const AuthMiddleware_1 = require("./AuthMiddleware");
+const DEFAULT_OPEN_AUTH_CONTEXT = {
+    type: 'solid',
+    webId: 'http://xpod.test/test/profile/card#me',
+    accountId: 'xpod-open-account',
+    displayName: 'Xpod Open Mode',
+};
+class OpenAuthMiddleware extends AuthMiddleware_1.AuthMiddleware {
+    constructor(options = {}) {
+        super({
+            authenticator: {
+                canAuthenticate: () => true,
+                authenticate: async () => ({ success: true, context: options.context ?? DEFAULT_OPEN_AUTH_CONTEXT }),
+            },
+        });
+        this.context = options.context ?? DEFAULT_OPEN_AUTH_CONTEXT;
+    }
+    async process(request, _response) {
+        request.auth = this.context;
+        return true;
+    }
+}
+exports.OpenAuthMiddleware = OpenAuthMiddleware;
+//# sourceMappingURL=OpenAuthMiddleware.js.map

package/dist/api/middleware/OpenAuthMiddleware.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"OpenAuthMiddleware.js","sourceRoot":"","sources":["../../../src/api/middleware/OpenAuthMiddleware.ts"],"names":[],"mappings":";;;AAGA,qDAAkD;AAElD,MAAM,yBAAyB,GAAgB;IAC7C,IAAI,EAAE,OAAO;IACb,KAAK,EAAE,uCAAuC;IAC9C,SAAS,EAAE,mBAAmB;IAC9B,WAAW,EAAE,gBAAgB;CAC9B,CAAC;AAMF,MAAa,kBAAmB,SAAQ,+BAAc;IAGpD,YAAmB,UAAqC,EAAE;QACxD,KAAK,CAAC;YACJ,aAAa,EAAE;gBACb,eAAe,EAAE,GAAG,EAAE,CAAC,IAAI;gBAC3B,YAAY,EAAE,KAAK,IAAI,EAAE,CAAC,CAAC,EAAE,OAAO,EAAE,IAAI,EAAE,OAAO,EAAE,OAAO,CAAC,OAAO,IAAI,yBAAyB,EAAE,CAAC;aACrG;SACF,CAAC,CAAC;QACH,IAAI,CAAC,OAAO,GAAG,OAAO,CAAC,OAAO,IAAI,yBAAyB,CAAC;IAC9D,CAAC;IAEe,KAAK,CAAC,OAAO,CAAC,OAA6B,EAAE,SAAyB;QACpF,OAAO,CAAC,IAAI,GAAG,IAAI,CAAC,OAAO,CAAC;QAC5B,OAAO,IAAI,CAAC;IACd,CAAC;CACF;AAjBD,gDAiBC","sourcesContent":["import type { ServerResponse } from 'node:http';\nimport type { AuthContext } from '../auth/AuthContext';\nimport type { AuthenticatedRequest } from './AuthMiddleware';\nimport { AuthMiddleware } from './AuthMiddleware';\n\nconst DEFAULT_OPEN_AUTH_CONTEXT: AuthContext = {\n  type: 'solid',\n  webId: 'http://xpod.test/test/profile/card#me',\n  accountId: 'xpod-open-account',\n  displayName: 'Xpod Open Mode',\n};\n\nexport interface OpenAuthMiddlewareOptions {\n  context?: AuthContext;\n}\n\nexport class OpenAuthMiddleware extends AuthMiddleware {\n  private readonly context: AuthContext;\n\n  public constructor(options: OpenAuthMiddlewareOptions = {}) {\n    super({\n      authenticator: {\n        canAuthenticate: () => true,\n        authenticate: async () => ({ success: true, context: options.context ?? DEFAULT_OPEN_AUTH_CONTEXT }),\n      },\n    });\n    this.context = options.context ?? DEFAULT_OPEN_AUTH_CONTEXT;\n  }\n\n  public override async process(request: AuthenticatedRequest, _response: ServerResponse): Promise<boolean> {\n    request.auth = this.context;\n    return true;\n  }\n}\n"]}

package/dist/api/runtime.d.ts

@@ -0,0 +1,15 @@
+import { type AwilixContainer } from 'awilix';
+import { type ApiContainerConfig, type ApiContainerCradle } from './container';
+import type { AuthContext } from './auth/AuthContext';
+export interface StartApiServiceOptions {
+    config?: ApiContainerConfig;
+    open?: boolean;
+    authContext?: AuthContext;
+    initializeLogger?: boolean;
+}
+export interface ApiServiceHandle {
+    config: ApiContainerConfig;
+    container: AwilixContainer<ApiContainerCradle>;
+    stop: () => Promise<void>;
+}
+export declare function startApiService(options?: StartApiServiceOptions): Promise<ApiServiceHandle>;