@undefineds.co/xpod 0.1.7 → 0.2.0-preview.2

package/dist/subdomain/SubdomainClient.js.map

@@ -1 +1 @@
-{"version":3,"file":"SubdomainClient.js","sourceRoot":"","sources":["../../src/subdomain/SubdomainClient.ts"],"names":[],"mappings":";AAAA;;;;;GAKG;;;;;;;;;;;;;;;;;;;;;;;;;;AAEH,iEAAqD;AA8ErD;;;;GAIG;AACH,MAAa,eAAe;IAO1B,YAAY,OAA+B;QAN1B,WAAM,GAAG,IAAA,oCAAY,EAAC,IAAI,CAAC,CAAC;QAO3C,IAAI,CAAC,gBAAgB,GAAG,OAAO,CAAC,gBAAgB,CAAC,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC;QACpE,IAAI,CAAC,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;QAC7B,IAAI,CAAC,SAAS,GAAG,OAAO,CAAC,SAAS,CAAC;QACnC,IAAI,CAAC,SAAS,GAAG,OAAO,CAAC,SAAS,IAAI,KAAK,CAAC;IAC9C,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,iBAAiB,CAAC,IAAY;QAClC,MAAM,GAAG,GAAG,GAAG,IAAI,CAAC,gBAAgB,eAAe,kBAAkB,CAAC,IAAI,CAAC,EAAE,CAAC;QAC9E,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,KAAK,CAAC,GAAG,EAAE,EAAE,MAAM,EAAE,KAAK,EAAE,CAAC,CAAC;QAC1D,OAAO,QAAgC,CAAC;IAC1C,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,QAAQ,CAAC,OAId;QACC,MAAM,GAAG,GAAG,GAAG,IAAI,CAAC,gBAAgB,WAAW,CAAC;QAChD,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,KAAK,CAAC,GAAG,EAAE;YACrC,MAAM,EAAE,MAAM;YACd,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC;gBACnB,SAAS,EAAE,OAAO,CAAC,SAAS;gBAC5B,SAAS,EAAE,OAAO,CAAC,SAAS;gBAC5B,QAAQ,EAAE,OAAO,CAAC,QAAQ;gBAC1B,MAAM,EAAE,IAAI,CAAC,MAAM;aACpB,CAAC;SACH,CAAC,CAAC;QACH,OAAO,QAAuC,CAAC;IACjD,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,OAAO,CAAC,IAAY;QACxB,MAAM,GAAG,GAAG,GAAG,IAAI,CAAC,gBAAgB,IAAI,kBAAkB,CAAC,IAAI,CAAC,EAAE,CAAC;QACnE,IAAI,CAAC;YACH,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,KAAK,CAAC,GAAG,EAAE,EAAE,MAAM,EAAE,KAAK,EAAE,CAAC,CAAC;YAC1D,OAAO,QAAyB,CAAC;QACnC,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,IAAI,KAAK,YAAY,oBAAoB,IAAI,KAAK,CAAC,MAAM,KAAK,GAAG,EAAE,CAAC;gBAClE,OAAO,IAAI,CAAC;YACd,CAAC;YACD,MAAM,KAAK,CAAC;QACd,CAAC;IACH,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,IAAI;QACR,MAAM,GAAG,GAAG,IAAI,CAAC,gBAAgB,CAAC;QAClC,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,KAAK,CAAC,GAAG,EAAE,EAAE,MAAM,EAAE,KAAK,EAAE,CAAC,CAAC;QAC1D,OAAO,QAA6D,CAAC;IACvE,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,OAAO,CAAC,IAAY;QACxB,MAAM,GAAG,GAAG,GAAG,IAAI,CAAC,gBAAgB,IAAI,kBAAkB,CAAC,IAAI,CAAC,EAAE,CAAC;QACnE,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,KAAK,CAAC,GAAG,EAAE,EAAE,MAAM,EAAE,QAAQ,EAAE,CAAC,CAAC;QAC7D,OAAO,QAAiD,CAAC;IAC3D,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,WAAW,CAAC,IAAY;QAC5B,MAAM,GAAG,GAAG,GAAG,IAAI,CAAC,gBAAgB,IAAI,kBAAkB,CAAC,IAAI,CAAC,QAAQ,CAAC;QACzE,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,KAAK,CAAC,GAAG,EAAE,EAAE,MAAM,EAAE,MAAM,EAAE,CAAC,CAAC;QAC3D,OAAO,QAAiD,CAAC;IAC3D,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,UAAU,CAAC,IAAY;QAC3B,MAAM,GAAG,GAAG,GAAG,IAAI,CAAC,gBAAgB,IAAI,kBAAkB,CAAC,IAAI,CAAC,OAAO,CAAC;QACxE,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,KAAK,CAAC,GAAG,EAAE,EAAE,MAAM,EAAE,MAAM,EAAE,CAAC,CAAC;QAC3D,OAAO,QAAiD,CAAC;IAC3D,CAAC;IAED,qCAAqC;IAErC;;OAEG;IACH,KAAK,CAAC,YAAY,CAAC,OAMlB;QACC,MAAM,GAAG,GAAG,GAAG,IAAI,CAAC,gBAAgB,uBAAuB,CAAC;QAC5D,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,KAAK,CAAC,GAAG,EAAE;YACrC,MAAM,EAAE,MAAM;YACd,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC;gBACnB,SAAS,EAAE,OAAO,CAAC,SAAS;gBAC5B,MAAM,EAAE,IAAI,CAAC,MAAM;gBACnB,SAAS,EAAE,OAAO,CAAC,SAAS;gBAC5B,WAAW,EAAE,OAAO,CAAC,WAAW;gBAChC,IAAI,EAAE,OAAO,CAAC,IAAI;gBAClB,cAAc,EAAE,OAAO,CAAC,cAAc;aACvC,CAAC;SACH,CAAC,CAAC;QACH,OAAO,QAAgC,CAAC;IAC1C,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,UAAU,CAAC,SAAiB,EAAE,OAKnC;QACC,MAAM,GAAG,GAAG,GAAG,IAAI,CAAC,gBAAgB,gBAAgB,kBAAkB,CAAC,SAAS,CAAC,EAAE,CAAC;QACpF,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,KAAK,CAAC,GAAG,EAAE;YACrC,MAAM,EAAE,MAAM;YACd,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC;gBACnB,EAAE,EAAE,OAAO,CAAC,SAAS;gBACrB,WAAW,EAAE,OAAO,CAAC,WAAW;gBAChC,IAAI,EAAE,OAAO,CAAC,IAAI;gBAClB,cAAc,EAAE,OAAO,CAAC,cAAc;aACvC,CAAC;SACH,CAAC,CAAC;QACH,OAAO,QAA4B,CAAC;IACtC,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,OAAO,CAAC,SAAiB;QAC7B,MAAM,GAAG,GAAG,GAAG,IAAI,CAAC,gBAAgB,gBAAgB,kBAAkB,CAAC,SAAS,CAAC,EAAE,CAAC;QACpF,IAAI,CAAC;YACH,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,KAAK,CAAC,GAAG,EAAE,EAAE,MAAM,EAAE,KAAK,EAAE,CAAC,CAAC;YAC1D,OAAO,QAA0B,CAAC;QACpC,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,IAAI,KAAK,YAAY,oBAAoB,IAAI,KAAK,CAAC,MAAM,KAAK,GAAG,EAAE,CAAC;gBAClE,OAAO,IAAI,CAAC;YACd,CAAC;YACD,MAAM,KAAK,CAAC;QACd,CAAC;IACH,CAAC;IAED,4CAA4C;IAEpC,KAAK,CAAC,KAAK,CAAC,GAAW,EAAE,OAGhC;QACC,MAAM,UAAU,GAAG,IAAI,eAAe,EAAE,CAAC;QACzC,MAAM,OAAO,GAAG,UAAU,CAAC,GAAG,EAAE,CAAC,UAAU,CAAC,KAAK,EAAE,EAAE,IAAI,CAAC,SAAS,CAAC,CAAC;QAErE,IAAI,CAAC;YACH,yBAAyB;YACzB,MAAM,EAAE,KAAK,EAAE,WAAW,EAAE,KAAK,EAAE,GAAG,wDAAa,QAAQ,GAAC,CAAC;YAC7D,MAAM,KAAK,GAAG,IAAI,KAAK,CAAC;gBACtB,OAAO,EAAE,EAAE,OAAO,EAAE,IAAI,CAAC,SAAS,EAAE;aACrC,CAAC,CAAC;YAEH,MAAM,QAAQ,GAAG,MAAM,WAAW,CAAC,GAAG,EAAE;gBACtC,MAAM,EAAE,OAAO,CAAC,MAAM;gBACtB,OAAO,EAAE;oBACP,cAAc,EAAE,kBAAkB;oBAClC,eAAe,EAAE,UAAU,IAAI,CAAC,SAAS,EAAE;oBAC3C,WAAW,EAAE,IAAI,CAAC,MAAM;iBACzB;gBACD,IAAI,EAAE,OAAO,CAAC,IAAI;gBAClB,MAAM,EAAE,UAAU,CAAC,MAAM;gBACzB,UAAU,EAAE,KAAK;aAClB,CAAC,CAAC;YAEH,MAAM,IAAI,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;YAEnC,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;gBACjB,MAAM,KAAK,GAAI,IAAY,EAAE,KAAK,IAAI,eAAe,CAAC;gBACtD,MAAM,IAAI,oBAAoB,CAAC,KAAK,EAAE,QAAQ,CAAC,MAAM,CAAC,CAAC;YACzD,CAAC;YAED,OAAO,IAAI,CAAC;QACd,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,IAAI,KAAK,YAAY,oBAAoB,EAAE,CAAC;gBAC1C,MAAM,KAAK,CAAC;YACd,CAAC;YACD,IAAI,KAAK,YAAY,KAAK,IAAI,KAAK,CAAC,IAAI,KAAK,YAAY,EAAE,CAAC;gBAC1D,MAAM,IAAI,oBAAoB,CAAC,iBAAiB,EAAE,GAAG,CAAC,CAAC;YACzD,CAAC;YACD,MAAM,IAAI,oBAAoB,CAC5B,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,EACxD,GAAG,CACJ,CAAC;QACJ,CAAC;gBAAS,CAAC;YACT,YAAY,CAAC,OAAO,CAAC,CAAC;QACxB,CAAC;IACH,CAAC;CACF;AApND,0CAoNC;AAED;;GAEG;AACH,MAAa,oBAAqB,SAAQ,KAAK;IAC7C,YACE,OAAe,EACC,MAAc;QAE9B,KAAK,CAAC,OAAO,CAAC,CAAC;QAFC,WAAM,GAAN,MAAM,CAAQ;QAG9B,IAAI,CAAC,IAAI,GAAG,sBAAsB,CAAC;IACrC,CAAC;CACF;AARD,oDAQC","sourcesContent":["/**\n * SubdomainClient - Local 模式子域名客户端\n * \n * Local 模式不持有 DNS/Tunnel 密钥，通过调用 Cloud API 来管理子域名。\n * 使用 Node Token 认证（与 Edge Node 心跳相同的认证方式）。\n */\n\nimport { getLoggerFor } from 'global-logger-factory';\n\nexport interface SubdomainClientOptions {\n  /** Cloud API 端点 (如 https://center.example.com/v1/subdomain) */\n  cloudApiEndpoint: string;\n  \n  /** 节点 ID */\n  nodeId: string;\n  \n  /** 节点 Token */\n  nodeToken: string;\n  \n  /** 请求超时 (ms) */\n  timeoutMs?: number;\n}\n\nexport interface SubdomainCheckResult {\n  subdomain: string;\n  available: boolean;\n  reason?: string;\n}\n\nexport interface SubdomainRegistrationResult {\n  success: boolean;\n  subdomain: string;\n  fullDomain: string;\n  mode: 'direct' | 'tunnel';\n  publicIp?: string;\n  tunnelProvider?: string;\n  tunnelEndpoint?: string;\n  registeredAt: string;\n  message?: string;\n}\n\nexport interface SubdomainInfo {\n  subdomain: string;\n  fullDomain: string;\n  mode: 'direct' | 'tunnel';\n  publicIp?: string;\n  tunnelProvider?: string;\n  tunnelEndpoint?: string;\n  registeredAt: string;\n  ownerId?: string;\n}\n\nexport interface DdnsAllocationResult {\n  success: boolean;\n  subdomain: string;\n  domain: string;\n  fqdn: string;\n  ipAddress?: string;\n  ipv6Address?: string;\n  createdAt: string;\n}\n\nexport interface DdnsUpdateResult {\n  success: boolean;\n  subdomain: string;\n  domain: string;\n  fqdn: string;\n  ipAddress?: string;\n  ipv6Address?: string;\n  updatedAt: string;\n}\n\nexport interface DdnsRecordInfo {\n  subdomain: string;\n  domain: string;\n  fqdn: string;\n  ipAddress?: string;\n  ipv6Address?: string;\n  recordType: string;\n  status: string;\n  ttl: number;\n  createdAt: string;\n  updatedAt: string;\n}\n\n/**\n * 子域名客户端 (Local 模式)\n * \n * 通过 HTTP 调用 Cloud 的子域名 API\n */\nexport class SubdomainClient {\n  private readonly logger = getLoggerFor(this);\n  private readonly cloudApiEndpoint: string;\n  private readonly nodeId: string;\n  private readonly nodeToken: string;\n  private readonly timeoutMs: number;\n\n  constructor(options: SubdomainClientOptions) {\n    this.cloudApiEndpoint = options.cloudApiEndpoint.replace(/\\/$/, '');\n    this.nodeId = options.nodeId;\n    this.nodeToken = options.nodeToken;\n    this.timeoutMs = options.timeoutMs ?? 30000;\n  }\n\n  /**\n   * 检查子域名可用性\n   */\n  async checkAvailability(name: string): Promise<SubdomainCheckResult> {\n    const url = `${this.cloudApiEndpoint}/check?name=${encodeURIComponent(name)}`;\n    const response = await this.fetch(url, { method: 'GET' });\n    return response as SubdomainCheckResult;\n  }\n\n  /**\n   * 注册子域名\n   */\n  async register(options: {\n    subdomain: string;\n    localPort: number;\n    publicIp?: string;\n  }): Promise<SubdomainRegistrationResult> {\n    const url = `${this.cloudApiEndpoint}/register`;\n    const response = await this.fetch(url, {\n      method: 'POST',\n      body: JSON.stringify({\n        subdomain: options.subdomain,\n        localPort: options.localPort,\n        publicIp: options.publicIp,\n        nodeId: this.nodeId,\n      }),\n    });\n    return response as SubdomainRegistrationResult;\n  }\n\n  /**\n   * 获取子域名信息\n   */\n  async getInfo(name: string): Promise<SubdomainInfo | null> {\n    const url = `${this.cloudApiEndpoint}/${encodeURIComponent(name)}`;\n    try {\n      const response = await this.fetch(url, { method: 'GET' });\n      return response as SubdomainInfo;\n    } catch (error) {\n      if (error instanceof SubdomainClientError && error.status === 404) {\n        return null;\n      }\n      throw error;\n    }\n  }\n\n  /**\n   * 列出所有子域名\n   */\n  async list(): Promise<{ registrations: SubdomainInfo[]; total: number }> {\n    const url = this.cloudApiEndpoint;\n    const response = await this.fetch(url, { method: 'GET' });\n    return response as { registrations: SubdomainInfo[]; total: number };\n  }\n\n  /**\n   * 释放子域名\n   */\n  async release(name: string): Promise<{ success: boolean; message: string }> {\n    const url = `${this.cloudApiEndpoint}/${encodeURIComponent(name)}`;\n    const response = await this.fetch(url, { method: 'DELETE' });\n    return response as { success: boolean; message: string };\n  }\n\n  /**\n   * 启动隧道\n   */\n  async startTunnel(name: string): Promise<{ success: boolean; message: string }> {\n    const url = `${this.cloudApiEndpoint}/${encodeURIComponent(name)}/start`;\n    const response = await this.fetch(url, { method: 'POST' });\n    return response as { success: boolean; message: string };\n  }\n\n  /**\n   * 停止隧道\n   */\n  async stopTunnel(name: string): Promise<{ success: boolean; message: string }> {\n    const url = `${this.cloudApiEndpoint}/${encodeURIComponent(name)}/stop`;\n    const response = await this.fetch(url, { method: 'POST' });\n    return response as { success: boolean; message: string };\n  }\n\n  // ============ DDNS API ============\n\n  /**\n   * 分配 DDNS 子域名\n   */\n  async allocateDdns(options: {\n    subdomain: string;\n    ipAddress?: string;\n    ipv6Address?: string;\n    mode?: 'direct' | 'tunnel';\n    tunnelProvider?: string;\n  }): Promise<DdnsAllocationResult> {\n    const url = `${this.cloudApiEndpoint}/api/v1/ddns/allocate`;\n    const response = await this.fetch(url, {\n      method: 'POST',\n      body: JSON.stringify({\n        subdomain: options.subdomain,\n        nodeId: this.nodeId,\n        ipAddress: options.ipAddress,\n        ipv6Address: options.ipv6Address,\n        mode: options.mode,\n        tunnelProvider: options.tunnelProvider,\n      }),\n    });\n    return response as DdnsAllocationResult;\n  }\n\n  /**\n   * 更新 DDNS 记录\n   */\n  async updateDdns(subdomain: string, options: {\n    ipAddress?: string;\n    ipv6Address?: string;\n    mode?: 'direct' | 'tunnel';\n    tunnelProvider?: string;\n  }): Promise<DdnsUpdateResult> {\n    const url = `${this.cloudApiEndpoint}/api/v1/ddns/${encodeURIComponent(subdomain)}`;\n    const response = await this.fetch(url, {\n      method: 'POST',\n      body: JSON.stringify({\n        ip: options.ipAddress,\n        ipv6Address: options.ipv6Address,\n        mode: options.mode,\n        tunnelProvider: options.tunnelProvider,\n      }),\n    });\n    return response as DdnsUpdateResult;\n  }\n\n  /**\n   * 获取 DDNS 记录\n   */\n  async getDdns(subdomain: string): Promise<DdnsRecordInfo | null> {\n    const url = `${this.cloudApiEndpoint}/api/v1/ddns/${encodeURIComponent(subdomain)}`;\n    try {\n      const response = await this.fetch(url, { method: 'GET' });\n      return response as DdnsRecordInfo;\n    } catch (error) {\n      if (error instanceof SubdomainClientError && error.status === 404) {\n        return null;\n      }\n      throw error;\n    }\n  }\n\n  // ============ Private Methods ============\n\n  private async fetch(url: string, options: {\n    method: string;\n    body?: string;\n  }): Promise<unknown> {\n    const controller = new AbortController();\n    const timeout = setTimeout(() => controller.abort(), this.timeoutMs);\n\n    try {\n      // 使用 undici 的 fetch，禁用代理\n      const { fetch: undiciFetch, Agent } = await import('undici');\n      const agent = new Agent({\n        connect: { timeout: this.timeoutMs },\n      });\n\n      const response = await undiciFetch(url, {\n        method: options.method,\n        headers: {\n          'Content-Type': 'application/json',\n          'Authorization': `Bearer ${this.nodeToken}`,\n          'X-Node-Id': this.nodeId,\n        },\n        body: options.body,\n        signal: controller.signal,\n        dispatcher: agent,\n      });\n\n      const data = await response.json();\n\n      if (!response.ok) {\n        const error = (data as any)?.error ?? 'Unknown error';\n        throw new SubdomainClientError(error, response.status);\n      }\n\n      return data;\n    } catch (error) {\n      if (error instanceof SubdomainClientError) {\n        throw error;\n      }\n      if (error instanceof Error && error.name === 'AbortError') {\n        throw new SubdomainClientError('Request timeout', 408);\n      }\n      throw new SubdomainClientError(\n        error instanceof Error ? error.message : 'Unknown error',\n        500,\n      );\n    } finally {\n      clearTimeout(timeout);\n    }\n  }\n}\n\n/**\n * SubdomainClient 错误\n */\nexport class SubdomainClientError extends Error {\n  constructor(\n    message: string,\n    public readonly status: number,\n  ) {\n    super(message);\n    this.name = 'SubdomainClientError';\n  }\n}\n"]}
+{"version":3,"file":"SubdomainClient.js","sourceRoot":"","sources":["../../src/subdomain/SubdomainClient.ts"],"names":[],"mappings":";AAAA;;;;;GAKG;;;;;;;;;;;;;;;;;;;;;;;;;;AAEH,iEAAqD;AA8ErD;;;;GAIG;AACH,MAAa,eAAe;IAO1B,YAAY,OAA+B;QAN1B,WAAM,GAAG,IAAA,oCAAY,EAAC,IAAI,CAAC,CAAC;QAO3C,IAAI,CAAC,gBAAgB,GAAG,OAAO,CAAC,gBAAgB,CAAC,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC;QACpE,IAAI,CAAC,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;QAC7B,IAAI,CAAC,SAAS,GAAG,OAAO,CAAC,SAAS,CAAC;QACnC,IAAI,CAAC,SAAS,GAAG,OAAO,CAAC,SAAS,IAAI,KAAK,CAAC;IAC9C,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,iBAAiB,CAAC,IAAY;QAClC,MAAM,GAAG,GAAG,GAAG,IAAI,CAAC,gBAAgB,eAAe,kBAAkB,CAAC,IAAI,CAAC,EAAE,CAAC;QAC9E,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,KAAK,CAAC,GAAG,EAAE,EAAE,MAAM,EAAE,KAAK,EAAE,CAAC,CAAC;QAC1D,OAAO,QAAgC,CAAC;IAC1C,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,QAAQ,CAAC,OAId;QACC,MAAM,GAAG,GAAG,GAAG,IAAI,CAAC,gBAAgB,WAAW,CAAC;QAChD,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,KAAK,CAAC,GAAG,EAAE;YACrC,MAAM,EAAE,MAAM;YACd,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC;gBACnB,SAAS,EAAE,OAAO,CAAC,SAAS;gBAC5B,SAAS,EAAE,OAAO,CAAC,SAAS;gBAC5B,IAAI,EAAE,OAAO,CAAC,IAAI;gBAClB,MAAM,EAAE,IAAI,CAAC,MAAM;aACpB,CAAC;SACH,CAAC,CAAC;QACH,OAAO,QAAuC,CAAC;IACjD,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,OAAO,CAAC,IAAY;QACxB,MAAM,GAAG,GAAG,GAAG,IAAI,CAAC,gBAAgB,IAAI,kBAAkB,CAAC,IAAI,CAAC,EAAE,CAAC;QACnE,IAAI,CAAC;YACH,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,KAAK,CAAC,GAAG,EAAE,EAAE,MAAM,EAAE,KAAK,EAAE,CAAC,CAAC;YAC1D,OAAO,QAAyB,CAAC;QACnC,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,IAAI,KAAK,YAAY,oBAAoB,IAAI,KAAK,CAAC,MAAM,KAAK,GAAG,EAAE,CAAC;gBAClE,OAAO,IAAI,CAAC;YACd,CAAC;YACD,MAAM,KAAK,CAAC;QACd,CAAC;IACH,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,IAAI;QACR,MAAM,GAAG,GAAG,IAAI,CAAC,gBAAgB,CAAC;QAClC,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,KAAK,CAAC,GAAG,EAAE,EAAE,MAAM,EAAE,KAAK,EAAE,CAAC,CAAC;QAC1D,OAAO,QAA6D,CAAC;IACvE,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,OAAO,CAAC,IAAY;QACxB,MAAM,GAAG,GAAG,GAAG,IAAI,CAAC,gBAAgB,IAAI,kBAAkB,CAAC,IAAI,CAAC,EAAE,CAAC;QACnE,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,KAAK,CAAC,GAAG,EAAE,EAAE,MAAM,EAAE,QAAQ,EAAE,CAAC,CAAC;QAC7D,OAAO,QAAiD,CAAC;IAC3D,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,WAAW,CAAC,IAAY;QAC5B,MAAM,GAAG,GAAG,GAAG,IAAI,CAAC,gBAAgB,IAAI,kBAAkB,CAAC,IAAI,CAAC,QAAQ,CAAC;QACzE,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,KAAK,CAAC,GAAG,EAAE,EAAE,MAAM,EAAE,MAAM,EAAE,CAAC,CAAC;QAC3D,OAAO,QAAiD,CAAC;IAC3D,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,UAAU,CAAC,IAAY;QAC3B,MAAM,GAAG,GAAG,GAAG,IAAI,CAAC,gBAAgB,IAAI,kBAAkB,CAAC,IAAI,CAAC,OAAO,CAAC;QACxE,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,KAAK,CAAC,GAAG,EAAE,EAAE,MAAM,EAAE,MAAM,EAAE,CAAC,CAAC;QAC3D,OAAO,QAAiD,CAAC;IAC3D,CAAC;IAED,qCAAqC;IAErC;;OAEG;IACH,KAAK,CAAC,YAAY,CAAC,OAMlB;QACC,MAAM,GAAG,GAAG,GAAG,IAAI,CAAC,gBAAgB,uBAAuB,CAAC;QAC5D,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,KAAK,CAAC,GAAG,EAAE;YACrC,MAAM,EAAE,MAAM;YACd,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC;gBACnB,SAAS,EAAE,OAAO,CAAC,SAAS;gBAC5B,MAAM,EAAE,IAAI,CAAC,MAAM;gBACnB,SAAS,EAAE,OAAO,CAAC,SAAS;gBAC5B,WAAW,EAAE,OAAO,CAAC,WAAW;gBAChC,IAAI,EAAE,OAAO,CAAC,IAAI;gBAClB,cAAc,EAAE,OAAO,CAAC,cAAc;aACvC,CAAC;SACH,CAAC,CAAC;QACH,OAAO,QAAgC,CAAC;IAC1C,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,UAAU,CAAC,SAAiB,EAAE,OAKnC;QACC,MAAM,GAAG,GAAG,GAAG,IAAI,CAAC,gBAAgB,gBAAgB,kBAAkB,CAAC,SAAS,CAAC,EAAE,CAAC;QACpF,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,KAAK,CAAC,GAAG,EAAE;YACrC,MAAM,EAAE,MAAM;YACd,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC;gBACnB,EAAE,EAAE,OAAO,CAAC,SAAS;gBACrB,WAAW,EAAE,OAAO,CAAC,WAAW;gBAChC,IAAI,EAAE,OAAO,CAAC,IAAI;gBAClB,cAAc,EAAE,OAAO,CAAC,cAAc;aACvC,CAAC;SACH,CAAC,CAAC;QACH,OAAO,QAA4B,CAAC;IACtC,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,OAAO,CAAC,SAAiB;QAC7B,MAAM,GAAG,GAAG,GAAG,IAAI,CAAC,gBAAgB,gBAAgB,kBAAkB,CAAC,SAAS,CAAC,EAAE,CAAC;QACpF,IAAI,CAAC;YACH,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,KAAK,CAAC,GAAG,EAAE,EAAE,MAAM,EAAE,KAAK,EAAE,CAAC,CAAC;YAC1D,OAAO,QAA0B,CAAC;QACpC,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,IAAI,KAAK,YAAY,oBAAoB,IAAI,KAAK,CAAC,MAAM,KAAK,GAAG,EAAE,CAAC;gBAClE,OAAO,IAAI,CAAC;YACd,CAAC;YACD,MAAM,KAAK,CAAC;QACd,CAAC;IACH,CAAC;IAED,4CAA4C;IAEpC,KAAK,CAAC,KAAK,CAAC,GAAW,EAAE,OAGhC;QACC,MAAM,UAAU,GAAG,IAAI,eAAe,EAAE,CAAC;QACzC,MAAM,OAAO,GAAG,UAAU,CAAC,GAAG,EAAE,CAAC,UAAU,CAAC,KAAK,EAAE,EAAE,IAAI,CAAC,SAAS,CAAC,CAAC;QAErE,IAAI,CAAC;YACH,yBAAyB;YACzB,MAAM,EAAE,KAAK,EAAE,WAAW,EAAE,KAAK,EAAE,GAAG,wDAAa,QAAQ,GAAC,CAAC;YAC7D,MAAM,KAAK,GAAG,IAAI,KAAK,CAAC;gBACtB,OAAO,EAAE,EAAE,OAAO,EAAE,IAAI,CAAC,SAAS,EAAE;aACrC,CAAC,CAAC;YAEH,MAAM,QAAQ,GAAG,MAAM,WAAW,CAAC,GAAG,EAAE;gBACtC,MAAM,EAAE,OAAO,CAAC,MAAM;gBACtB,OAAO,EAAE;oBACP,cAAc,EAAE,kBAAkB;oBAClC,eAAe,EAAE,UAAU,IAAI,CAAC,SAAS,EAAE;oBAC3C,WAAW,EAAE,IAAI,CAAC,MAAM;iBACzB;gBACD,IAAI,EAAE,OAAO,CAAC,IAAI;gBAClB,MAAM,EAAE,UAAU,CAAC,MAAM;gBACzB,UAAU,EAAE,KAAK;aAClB,CAAC,CAAC;YAEH,MAAM,IAAI,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;YAEnC,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;gBACjB,MAAM,KAAK,GAAI,IAAY,EAAE,KAAK,IAAI,eAAe,CAAC;gBACtD,MAAM,IAAI,oBAAoB,CAAC,KAAK,EAAE,QAAQ,CAAC,MAAM,CAAC,CAAC;YACzD,CAAC;YAED,OAAO,IAAI,CAAC;QACd,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,IAAI,KAAK,YAAY,oBAAoB,EAAE,CAAC;gBAC1C,MAAM,KAAK,CAAC;YACd,CAAC;YACD,IAAI,KAAK,YAAY,KAAK,IAAI,KAAK,CAAC,IAAI,KAAK,YAAY,EAAE,CAAC;gBAC1D,MAAM,IAAI,oBAAoB,CAAC,iBAAiB,EAAE,GAAG,CAAC,CAAC;YACzD,CAAC;YACD,MAAM,IAAI,oBAAoB,CAC5B,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,EACxD,GAAG,CACJ,CAAC;QACJ,CAAC;gBAAS,CAAC;YACT,YAAY,CAAC,OAAO,CAAC,CAAC;QACxB,CAAC;IACH,CAAC;CACF;AApND,0CAoNC;AAED;;GAEG;AACH,MAAa,oBAAqB,SAAQ,KAAK;IAC7C,YACE,OAAe,EACC,MAAc;QAE9B,KAAK,CAAC,OAAO,CAAC,CAAC;QAFC,WAAM,GAAN,MAAM,CAAQ;QAG9B,IAAI,CAAC,IAAI,GAAG,sBAAsB,CAAC;IACrC,CAAC;CACF;AARD,oDAQC","sourcesContent":["/**\n * SubdomainClient - Local 模式子域名客户端\n * \n * Local 模式不持有 DNS/Tunnel 密钥，通过调用 Cloud API 来管理子域名。\n * 使用 Node Token 认证（与 Edge Node 心跳相同的认证方式）。\n */\n\nimport { getLoggerFor } from 'global-logger-factory';\n\nexport interface SubdomainClientOptions {\n  /** Cloud API 端点 (如 https://center.example.com/v1/subdomain) */\n  cloudApiEndpoint: string;\n  \n  /** 节点 ID */\n  nodeId: string;\n  \n  /** 节点 Token */\n  nodeToken: string;\n  \n  /** 请求超时 (ms) */\n  timeoutMs?: number;\n}\n\nexport interface SubdomainCheckResult {\n  subdomain: string;\n  available: boolean;\n  reason?: string;\n}\n\nexport interface SubdomainRegistrationResult {\n  success: boolean;\n  subdomain: string;\n  fullDomain: string;\n  mode: 'direct' | 'tunnel';\n  ipv4?: string;\n  tunnelProvider?: string;\n  tunnelEndpoint?: string;\n  registeredAt: string;\n  message?: string;\n}\n\nexport interface SubdomainInfo {\n  subdomain: string;\n  fullDomain: string;\n  mode: 'direct' | 'tunnel';\n  ipv4?: string;\n  tunnelProvider?: string;\n  tunnelEndpoint?: string;\n  registeredAt: string;\n  ownerId?: string;\n}\n\nexport interface DdnsAllocationResult {\n  success: boolean;\n  subdomain: string;\n  domain: string;\n  fqdn: string;\n  ipAddress?: string;\n  ipv6Address?: string;\n  createdAt: string;\n}\n\nexport interface DdnsUpdateResult {\n  success: boolean;\n  subdomain: string;\n  domain: string;\n  fqdn: string;\n  ipAddress?: string;\n  ipv6Address?: string;\n  updatedAt: string;\n}\n\nexport interface DdnsRecordInfo {\n  subdomain: string;\n  domain: string;\n  fqdn: string;\n  ipAddress?: string;\n  ipv6Address?: string;\n  recordType: string;\n  status: string;\n  ttl: number;\n  createdAt: string;\n  updatedAt: string;\n}\n\n/**\n * 子域名客户端 (Local 模式)\n * \n * 通过 HTTP 调用 Cloud 的子域名 API\n */\nexport class SubdomainClient {\n  private readonly logger = getLoggerFor(this);\n  private readonly cloudApiEndpoint: string;\n  private readonly nodeId: string;\n  private readonly nodeToken: string;\n  private readonly timeoutMs: number;\n\n  constructor(options: SubdomainClientOptions) {\n    this.cloudApiEndpoint = options.cloudApiEndpoint.replace(/\\/$/, '');\n    this.nodeId = options.nodeId;\n    this.nodeToken = options.nodeToken;\n    this.timeoutMs = options.timeoutMs ?? 30000;\n  }\n\n  /**\n   * 检查子域名可用性\n   */\n  async checkAvailability(name: string): Promise<SubdomainCheckResult> {\n    const url = `${this.cloudApiEndpoint}/check?name=${encodeURIComponent(name)}`;\n    const response = await this.fetch(url, { method: 'GET' });\n    return response as SubdomainCheckResult;\n  }\n\n  /**\n   * 注册子域名\n   */\n  async register(options: {\n    subdomain: string;\n    localPort: number;\n    ipv4?: string;\n  }): Promise<SubdomainRegistrationResult> {\n    const url = `${this.cloudApiEndpoint}/register`;\n    const response = await this.fetch(url, {\n      method: 'POST',\n      body: JSON.stringify({\n        subdomain: options.subdomain,\n        localPort: options.localPort,\n        ipv4: options.ipv4,\n        nodeId: this.nodeId,\n      }),\n    });\n    return response as SubdomainRegistrationResult;\n  }\n\n  /**\n   * 获取子域名信息\n   */\n  async getInfo(name: string): Promise<SubdomainInfo | null> {\n    const url = `${this.cloudApiEndpoint}/${encodeURIComponent(name)}`;\n    try {\n      const response = await this.fetch(url, { method: 'GET' });\n      return response as SubdomainInfo;\n    } catch (error) {\n      if (error instanceof SubdomainClientError && error.status === 404) {\n        return null;\n      }\n      throw error;\n    }\n  }\n\n  /**\n   * 列出所有子域名\n   */\n  async list(): Promise<{ registrations: SubdomainInfo[]; total: number }> {\n    const url = this.cloudApiEndpoint;\n    const response = await this.fetch(url, { method: 'GET' });\n    return response as { registrations: SubdomainInfo[]; total: number };\n  }\n\n  /**\n   * 释放子域名\n   */\n  async release(name: string): Promise<{ success: boolean; message: string }> {\n    const url = `${this.cloudApiEndpoint}/${encodeURIComponent(name)}`;\n    const response = await this.fetch(url, { method: 'DELETE' });\n    return response as { success: boolean; message: string };\n  }\n\n  /**\n   * 启动隧道\n   */\n  async startTunnel(name: string): Promise<{ success: boolean; message: string }> {\n    const url = `${this.cloudApiEndpoint}/${encodeURIComponent(name)}/start`;\n    const response = await this.fetch(url, { method: 'POST' });\n    return response as { success: boolean; message: string };\n  }\n\n  /**\n   * 停止隧道\n   */\n  async stopTunnel(name: string): Promise<{ success: boolean; message: string }> {\n    const url = `${this.cloudApiEndpoint}/${encodeURIComponent(name)}/stop`;\n    const response = await this.fetch(url, { method: 'POST' });\n    return response as { success: boolean; message: string };\n  }\n\n  // ============ DDNS API ============\n\n  /**\n   * 分配 DDNS 子域名\n   */\n  async allocateDdns(options: {\n    subdomain: string;\n    ipAddress?: string;\n    ipv6Address?: string;\n    mode?: 'direct' | 'tunnel';\n    tunnelProvider?: string;\n  }): Promise<DdnsAllocationResult> {\n    const url = `${this.cloudApiEndpoint}/api/v1/ddns/allocate`;\n    const response = await this.fetch(url, {\n      method: 'POST',\n      body: JSON.stringify({\n        subdomain: options.subdomain,\n        nodeId: this.nodeId,\n        ipAddress: options.ipAddress,\n        ipv6Address: options.ipv6Address,\n        mode: options.mode,\n        tunnelProvider: options.tunnelProvider,\n      }),\n    });\n    return response as DdnsAllocationResult;\n  }\n\n  /**\n   * 更新 DDNS 记录\n   */\n  async updateDdns(subdomain: string, options: {\n    ipAddress?: string;\n    ipv6Address?: string;\n    mode?: 'direct' | 'tunnel';\n    tunnelProvider?: string;\n  }): Promise<DdnsUpdateResult> {\n    const url = `${this.cloudApiEndpoint}/api/v1/ddns/${encodeURIComponent(subdomain)}`;\n    const response = await this.fetch(url, {\n      method: 'POST',\n      body: JSON.stringify({\n        ip: options.ipAddress,\n        ipv6Address: options.ipv6Address,\n        mode: options.mode,\n        tunnelProvider: options.tunnelProvider,\n      }),\n    });\n    return response as DdnsUpdateResult;\n  }\n\n  /**\n   * 获取 DDNS 记录\n   */\n  async getDdns(subdomain: string): Promise<DdnsRecordInfo | null> {\n    const url = `${this.cloudApiEndpoint}/api/v1/ddns/${encodeURIComponent(subdomain)}`;\n    try {\n      const response = await this.fetch(url, { method: 'GET' });\n      return response as DdnsRecordInfo;\n    } catch (error) {\n      if (error instanceof SubdomainClientError && error.status === 404) {\n        return null;\n      }\n      throw error;\n    }\n  }\n\n  // ============ Private Methods ============\n\n  private async fetch(url: string, options: {\n    method: string;\n    body?: string;\n  }): Promise<unknown> {\n    const controller = new AbortController();\n    const timeout = setTimeout(() => controller.abort(), this.timeoutMs);\n\n    try {\n      // 使用 undici 的 fetch，禁用代理\n      const { fetch: undiciFetch, Agent } = await import('undici');\n      const agent = new Agent({\n        connect: { timeout: this.timeoutMs },\n      });\n\n      const response = await undiciFetch(url, {\n        method: options.method,\n        headers: {\n          'Content-Type': 'application/json',\n          'Authorization': `Bearer ${this.nodeToken}`,\n          'X-Node-Id': this.nodeId,\n        },\n        body: options.body,\n        signal: controller.signal,\n        dispatcher: agent,\n      });\n\n      const data = await response.json();\n\n      if (!response.ok) {\n        const error = (data as any)?.error ?? 'Unknown error';\n        throw new SubdomainClientError(error, response.status);\n      }\n\n      return data;\n    } catch (error) {\n      if (error instanceof SubdomainClientError) {\n        throw error;\n      }\n      if (error instanceof Error && error.name === 'AbortError') {\n        throw new SubdomainClientError('Request timeout', 408);\n      }\n      throw new SubdomainClientError(\n        error instanceof Error ? error.message : 'Unknown error',\n        500,\n      );\n    } finally {\n      clearTimeout(timeout);\n    }\n  }\n}\n\n/**\n * SubdomainClient 错误\n */\nexport class SubdomainClientError extends Error {\n  constructor(\n    message: string,\n    public readonly status: number,\n  ) {\n    super(message);\n    this.name = 'SubdomainClientError';\n  }\n}\n"]}

package/dist/subdomain/SubdomainService.d.ts

@@ -1,5 +1,6 @@
 import type { TunnelProvider, TunnelConfig } from '../tunnel/TunnelProvider';
 import type { DnsProvider } from '../dns/DnsProvider';
+import type { EdgeNodeRepository } from '../identity/drizzle/EdgeNodeRepository';
 /**
  * 子域名注册信息
  */
@@ -11,13 +12,15 @@ export interface SubdomainRegistration {
     /** 访问模式 */
     mode: 'direct' | 'tunnel';
     /** 公网 IP (直连模式) */
-    publicIp?: string;
+    ipv4?: string;
     /** 隧道配置 (隧道模式) */
     tunnelConfig?: TunnelConfig;
     /** 注册时间 */
     registeredAt: Date;
     /** 所有者 ID */
     ownerId?: string;
+    /** 绑定的节点 ID */
+    nodeId?: string;
 }
 /**
  * 连通性检测结果
@@ -26,7 +29,7 @@ export interface ConnectivityResult {
     /** 是否可达 */
     reachable: boolean;
     /** 公网 IP */
-    publicIp?: string;
+    ipv4?: string;
     /** 延迟 (ms) */
     latency?: number;
     /** 错误信息 */
@@ -42,8 +45,8 @@ export interface SubdomainServiceOptions {
     dnsProvider: DnsProvider;
     /** Tunnel Provider */
     tunnelProvider: TunnelProvider;
-    /** 连通性检测端点 (可选，用于回调检测) */
-    connectivityCheckEndpoint?: string;
+    /** Edge Node Repository (持久化) */
+    edgeNodeRepo: EdgeNodeRepository;
     /** 保留的子域名列表 */
     reservedSubdomains?: string[];
 }
@@ -56,15 +59,15 @@ export interface SubdomainServiceOptions {
  * 3. 直连/隧道模式选择
  * 4. DNS 记录管理
  * 5. 隧道创建
+ *
+ * 注册信息持久化到 EdgeNodeRepository（identity_edge_node.subdomain 字段）
  */
 export declare class SubdomainService {
     private readonly baseDomain;
     private readonly dnsProvider;
     private readonly tunnelProvider;
-    private readonly connectivityCheckEndpoint?;
+    private readonly edgeNodeRepo;
     private readonly reservedSubdomains;
-    /** 已注册的子域名 (内存缓存，后续可改为数据库) */
-    private registrations;
     constructor(options: SubdomainServiceOptions);
     /**
      * 检查子域名是否可用
@@ -78,8 +81,9 @@ export declare class SubdomainService {
      */
     register(options: {
         subdomain: string;
+        nodeId: string;
         localPort: number;
-        publicIp?: string;
+        ipv4?: string;
         ownerId?: string;
     }): Promise<SubdomainRegistration>;
     /**
@@ -89,11 +93,11 @@ export declare class SubdomainService {
     /**
      * 获取注册信息
      */
-    getRegistration(subdomain: string): SubdomainRegistration | undefined;
+    getRegistration(subdomain: string): Promise<SubdomainRegistration | undefined>;
     /**
      * 获取所有注册
      */
-    getAllRegistrations(): SubdomainRegistration[];
+    getAllRegistrations(): Promise<SubdomainRegistration[]>;
     /**
      * 启动隧道
      */
@@ -102,13 +106,8 @@ export declare class SubdomainService {
      * 停止隧道
      */
     stopTunnel(): Promise<void>;
-    /**
-     * 校验子域名格式
-     */
+    private nodeToRegistration;
     private isValidSubdomain;
-    /**
-     * 连通性检测
-     */
     private checkConnectivity;
     private isIpv6;
 }

package/dist/subdomain/SubdomainService.js

@@ -10,15 +10,15 @@ exports.SubdomainService = void 0;
  * 3. 直连/隧道模式选择
  * 4. DNS 记录管理
  * 5. 隧道创建
+ *
+ * 注册信息持久化到 EdgeNodeRepository（identity_edge_node.subdomain 字段）
  */
 class SubdomainService {
     constructor(options) {
-        /** 已注册的子域名 (内存缓存，后续可改为数据库) */
-        this.registrations = new Map();
         this.baseDomain = options.baseDomain;
         this.dnsProvider = options.dnsProvider;
         this.tunnelProvider = options.tunnelProvider;
-        this.connectivityCheckEndpoint = options.connectivityCheckEndpoint;
+        this.edgeNodeRepo = options.edgeNodeRepo;
         this.reservedSubdomains = new Set(options.reservedSubdomains ?? [
             'www', 'api', 'app', 'admin', 'mail', 'ftp', 'ssh',
             'pods', 'center', 'edge', 'node', 'test', 'dev', 'staging',
@@ -28,22 +28,20 @@ class SubdomainService {
      * 检查子域名是否可用
      */
     async checkAvailability(subdomain) {
-        // 1. 格式校验
         if (!this.isValidSubdomain(subdomain)) {
             return {
                 available: false,
                 reason: 'Invalid subdomain format. Use 3-63 lowercase letters, numbers, or hyphens.',
             };
         }
-        // 2. 保留名检查
         if (this.reservedSubdomains.has(subdomain.toLowerCase())) {
             return {
                 available: false,
                 reason: 'This subdomain is reserved.',
             };
         }
-        // 3. 已注册检查
-        if (this.registrations.has(subdomain.toLowerCase())) {
+        const existing = await this.edgeNodeRepo.findNodeBySubdomain(subdomain.toLowerCase());
+        if (existing) {
             return {
                 available: false,
                 reason: 'This subdomain is already registered.',
@@ -55,31 +53,27 @@ class SubdomainService {
      * 注册子域名
      */
     async register(options) {
-        const { subdomain, localPort, publicIp, ownerId } = options;
+        const { subdomain, nodeId, localPort, ipv4, ownerId } = options;
         const normalizedSubdomain = subdomain.toLowerCase();
-        // 1. 检查可用性
         const availability = await this.checkAvailability(normalizedSubdomain);
         if (!availability.available) {
             throw new Error(availability.reason);
         }
         const fullDomain = `${normalizedSubdomain}.${this.baseDomain}`;
-        // 2. 连通性检测 (如果提供了公网 IP)
+        // 连通性检测
         let mode = 'tunnel';
         let verifiedIp;
-        if (publicIp) {
-            const connectivity = await this.checkConnectivity(publicIp, localPort);
-            // 如果可达，或者虽然不可达但我们是在 Local 模式且用户显式指定了 IP
-            // 这里可以放宽一点限制，因为有些网络环境可能单向不通但 DNS 应该先挂上去
+        if (ipv4) {
+            const connectivity = await this.checkConnectivity(ipv4, localPort);
             if (connectivity.reachable) {
                 mode = 'direct';
-                verifiedIp = publicIp;
+                verifiedIp = ipv4;
             }
         }
-        // 3. 根据模式设置 DNS 和隧道
+        // DNS / 隧道
         let tunnelConfig;
         if (mode === 'direct') {
             const type = this.isIpv6(verifiedIp) ? 'AAAA' : 'A';
-            // 直连模式：创建 A 或 AAAA 记录
             await this.dnsProvider.upsertRecord({
                 subdomain: normalizedSubdomain,
                 domain: this.baseDomain,
@@ -89,76 +83,106 @@ class SubdomainService {
             });
         }
         else {
-            // 隧道模式：创建隧道 + CNAME
             tunnelConfig = await this.tunnelProvider.setup({
                 subdomain: normalizedSubdomain,
                 localPort,
             });
         }
-        // 4. 保存注册信息
-        const registration = {
+        // 持久化到 EdgeNodeRepository
+        await this.edgeNodeRepo.updateNodeMode(nodeId, {
+            accessMode: mode === 'direct' ? 'direct' : 'proxy',
+            ipv4: verifiedIp,
+            publicPort: localPort,
+            subdomain: normalizedSubdomain,
+            connectivityStatus: mode === 'direct' ? 'reachable' : 'unknown',
+        });
+        return {
             subdomain: normalizedSubdomain,
             fullDomain,
             mode,
-            publicIp: verifiedIp,
+            ipv4: verifiedIp,
             tunnelConfig,
             registeredAt: new Date(),
             ownerId,
+            nodeId,
         };
-        this.registrations.set(normalizedSubdomain, registration);
-        return registration;
     }
     /**
      * 释放子域名
      */
     async release(subdomain) {
         const normalizedSubdomain = subdomain.toLowerCase();
-        const registration = this.registrations.get(normalizedSubdomain);
-        if (!registration) {
+        const node = await this.edgeNodeRepo.findNodeBySubdomain(normalizedSubdomain);
+        if (!node) {
             throw new Error('Subdomain not found');
         }
-        // 1. 清理隧道
-        if (registration.tunnelConfig) {
-            await this.tunnelProvider.cleanup(registration.tunnelConfig);
-        }
-        // 2. 删除 DNS 记录 (尝试删除 A 和 CNAME 类型)
+        // 获取完整连通性信息以判断模式
+        const info = await this.edgeNodeRepo.getNodeConnectivityInfo(node.nodeId);
+        const accessMode = info?.accessMode;
+        // 删除 DNS 记录
         try {
             await this.dnsProvider.deleteRecord({
                 subdomain: normalizedSubdomain,
                 domain: this.baseDomain,
-                type: registration.mode === 'direct' ? 'A' : 'CNAME',
+                type: accessMode === 'direct' ? 'A' : 'CNAME',
             });
         }
-        catch (error) {
-            console.warn(`Failed to delete DNS record for ${normalizedSubdomain}:`, error);
+        catch {
+            // DNS 删除失败不阻塞释放
         }
-        // 3. 移除注册信息
-        this.registrations.delete(normalizedSubdomain);
+        // 清除 DB 中的 subdomain
+        await this.edgeNodeRepo.updateNodeMode(node.nodeId, {
+            accessMode: 'proxy',
+            subdomain: undefined,
+            connectivityStatus: 'unknown',
+        });
     }
     /**
      * 获取注册信息
      */
-    getRegistration(subdomain) {
-        return this.registrations.get(subdomain.toLowerCase());
+    async getRegistration(subdomain) {
+        const node = await this.edgeNodeRepo.findNodeBySubdomain(subdomain.toLowerCase());
+        if (!node) {
+            return undefined;
+        }
+        return this.nodeToRegistration(node);
     }
     /**
      * 获取所有注册
      */
-    getAllRegistrations() {
-        return Array.from(this.registrations.values());
+    async getAllRegistrations() {
+        const nodes = await this.edgeNodeRepo.listNodes();
+        const results = [];
+        for (const n of nodes) {
+            if (!n.metadata || !n.metadata.subdomain) {
+                // 需要查 connectivity info 获取 subdomain
+                const info = await this.edgeNodeRepo.getNodeConnectivityInfo(n.nodeId);
+                if (info?.subdomain) {
+                    results.push({
+                        subdomain: info.subdomain,
+                        fullDomain: `${info.subdomain}.${this.baseDomain}`,
+                        mode: info.accessMode === 'direct' ? 'direct' : 'tunnel',
+                        ipv4: info.ipv4,
+                        registeredAt: new Date(),
+                        nodeId: n.nodeId,
+                    });
+                }
+            }
+        }
+        return results;
     }
     /**
      * 启动隧道
      */
     async startTunnel(subdomain) {
-        const registration = this.registrations.get(subdomain.toLowerCase());
-        if (!registration) {
+        const reg = await this.getRegistration(subdomain);
+        if (!reg) {
             throw new Error('Subdomain not found');
         }
-        if (registration.mode !== 'tunnel' || !registration.tunnelConfig) {
+        if (reg.mode !== 'tunnel' || !reg.tunnelConfig) {
             throw new Error('Subdomain is not in tunnel mode');
         }
-        await this.tunnelProvider.start(registration.tunnelConfig);
+        await this.tunnelProvider.start(reg.tunnelConfig);
     }
     /**
      * 停止隧道
@@ -167,34 +191,36 @@ class SubdomainService {
         await this.tunnelProvider.stop();
     }
     // ============ 私有方法 ============
-    /**
-     * 校验子域名格式
-     */
+    nodeToRegistration(node) {
+        const sub = node.subdomain;
+        return {
+            subdomain: sub,
+            fullDomain: `${sub}.${this.baseDomain}`,
+            mode: node.accessMode === 'direct' ? 'direct' : 'tunnel',
+            registeredAt: new Date(),
+            nodeId: node.nodeId,
+            ownerId: node.metadata?.ownerId,
+        };
+    }
     isValidSubdomain(subdomain) {
-        // 3-63 字符，小写字母、数字、连字符，不能以连字符开头或结尾
         const regex = /^[a-z0-9]([a-z0-9-]{1,61}[a-z0-9])?$/;
         return regex.test(subdomain) && subdomain.length >= 3 && subdomain.length <= 63;
     }
-    /**
-     * 连通性检测
-     */
     async checkConnectivity(ip, port) {
         try {
             const start = Date.now();
             const controller = new AbortController();
             const timeout = setTimeout(() => controller.abort(), 5000);
-            // IPv6 需要加中括号
             const host = this.isIpv6(ip) ? `[${ip}]` : ip;
             const response = await fetch(`http://${host}:${port}/.well-known/solid`, {
                 method: 'HEAD',
                 signal: controller.signal,
             });
             clearTimeout(timeout);
-            const latency = Date.now() - start;
             return {
                 reachable: response.ok || response.status === 401,
-                publicIp: ip,
-                latency,
+                ipv4: ip,
+                latency: Date.now() - start,
             };
         }
         catch (error) {

package/dist/subdomain/SubdomainService.js.map

@@ -1 +1 @@
-{"version":3,"file":"SubdomainService.js","sourceRoot":"","sources":["../../src/subdomain/SubdomainService.ts"],"names":[],"mappings":";;;AAkEA;;;;;;;;;GASG;AACH,MAAa,gBAAgB;IAU3B,YAAY,OAAgC;QAH5C,8BAA8B;QACtB,kBAAa,GAAuC,IAAI,GAAG,EAAE,CAAC;QAGpE,IAAI,CAAC,UAAU,GAAG,OAAO,CAAC,UAAU,CAAC;QACrC,IAAI,CAAC,WAAW,GAAG,OAAO,CAAC,WAAW,CAAC;QACvC,IAAI,CAAC,cAAc,GAAG,OAAO,CAAC,cAAc,CAAC;QAC7C,IAAI,CAAC,yBAAyB,GAAG,OAAO,CAAC,yBAAyB,CAAC;QACnE,IAAI,CAAC,kBAAkB,GAAG,IAAI,GAAG,CAAC,OAAO,CAAC,kBAAkB,IAAI;YAC9D,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,KAAK;YAClD,MAAM,EAAE,QAAQ,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,KAAK,EAAE,SAAS;SAC3D,CAAC,CAAC;IACL,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,iBAAiB,CAAC,SAAiB;QAIvC,UAAU;QACV,IAAI,CAAC,IAAI,CAAC,gBAAgB,CAAC,SAAS,CAAC,EAAE,CAAC;YACtC,OAAO;gBACL,SAAS,EAAE,KAAK;gBAChB,MAAM,EAAE,4EAA4E;aACrF,CAAC;QACJ,CAAC;QAED,WAAW;QACX,IAAI,IAAI,CAAC,kBAAkB,CAAC,GAAG,CAAC,SAAS,CAAC,WAAW,EAAE,CAAC,EAAE,CAAC;YACzD,OAAO;gBACL,SAAS,EAAE,KAAK;gBAChB,MAAM,EAAE,6BAA6B;aACtC,CAAC;QACJ,CAAC;QAED,WAAW;QACX,IAAI,IAAI,CAAC,aAAa,CAAC,GAAG,CAAC,SAAS,CAAC,WAAW,EAAE,CAAC,EAAE,CAAC;YACpD,OAAO;gBACL,SAAS,EAAE,KAAK;gBAChB,MAAM,EAAE,uCAAuC;aAChD,CAAC;QACJ,CAAC;QAED,OAAO,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC;IAC7B,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,QAAQ,CAAC,OAKd;QACC,MAAM,EAAE,SAAS,EAAE,SAAS,EAAE,QAAQ,EAAE,OAAO,EAAE,GAAG,OAAO,CAAC;QAC5D,MAAM,mBAAmB,GAAG,SAAS,CAAC,WAAW,EAAE,CAAC;QAEpD,WAAW;QACX,MAAM,YAAY,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,mBAAmB,CAAC,CAAC;QACvE,IAAI,CAAC,YAAY,CAAC,SAAS,EAAE,CAAC;YAC5B,MAAM,IAAI,KAAK,CAAC,YAAY,CAAC,MAAM,CAAC,CAAC;QACvC,CAAC;QAED,MAAM,UAAU,GAAG,GAAG,mBAAmB,IAAI,IAAI,CAAC,UAAU,EAAE,CAAC;QAE/D,wBAAwB;QACxB,IAAI,IAAI,GAAwB,QAAQ,CAAC;QACzC,IAAI,UAA8B,CAAC;QAEnC,IAAI,QAAQ,EAAE,CAAC;YACb,MAAM,YAAY,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,QAAQ,EAAE,SAAS,CAAC,CAAC;YACvE,wCAAwC;YACxC,wCAAwC;YACxC,IAAI,YAAY,CAAC,SAAS,EAAE,CAAC;gBAC3B,IAAI,GAAG,QAAQ,CAAC;gBAChB,UAAU,GAAG,QAAQ,CAAC;YACxB,CAAC;QACH,CAAC;QAED,oBAAoB;QACpB,IAAI,YAAsC,CAAC;QAE3C,IAAI,IAAI,KAAK,QAAQ,EAAE,CAAC;YACtB,MAAM,IAAI,GAAG,IAAI,CAAC,MAAM,CAAC,UAAW,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,GAAG,CAAC;YACrD,sBAAsB;YACtB,MAAM,IAAI,CAAC,WAAW,CAAC,YAAY,CAAC;gBAClC,SAAS,EAAE,mBAAmB;gBAC9B,MAAM,EAAE,IAAI,CAAC,UAAU;gBACvB,IAAI;gBACJ,KAAK,EAAE,UAAW;gBAClB,GAAG,EAAE,EAAE;aACR,CAAC,CAAC;QACL,CAAC;aAAM,CAAC;YACN,oBAAoB;YACpB,YAAY,GAAG,MAAM,IAAI,CAAC,cAAc,CAAC,KAAK,CAAC;gBAC7C,SAAS,EAAE,mBAAmB;gBAC9B,SAAS;aACV,CAAC,CAAC;QACL,CAAC;QAED,YAAY;QACZ,MAAM,YAAY,GAA0B;YAC1C,SAAS,EAAE,mBAAmB;YAC9B,UAAU;YACV,IAAI;YACJ,QAAQ,EAAE,UAAU;YACpB,YAAY;YACZ,YAAY,EAAE,IAAI,IAAI,EAAE;YACxB,OAAO;SACR,CAAC;QAEF,IAAI,CAAC,aAAa,CAAC,GAAG,CAAC,mBAAmB,EAAE,YAAY,CAAC,CAAC;QAE1D,OAAO,YAAY,CAAC;IACtB,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,OAAO,CAAC,SAAiB;QAC7B,MAAM,mBAAmB,GAAG,SAAS,CAAC,WAAW,EAAE,CAAC;QACpD,MAAM,YAAY,GAAG,IAAI,CAAC,aAAa,CAAC,GAAG,CAAC,mBAAmB,CAAC,CAAC;QAEjE,IAAI,CAAC,YAAY,EAAE,CAAC;YAClB,MAAM,IAAI,KAAK,CAAC,qBAAqB,CAAC,CAAC;QACzC,CAAC;QAED,UAAU;QACV,IAAI,YAAY,CAAC,YAAY,EAAE,CAAC;YAC9B,MAAM,IAAI,CAAC,cAAc,CAAC,OAAO,CAAC,YAAY,CAAC,YAAY,CAAC,CAAC;QAC/D,CAAC;QAED,mCAAmC;QACnC,IAAI,CAAC;YACH,MAAM,IAAI,CAAC,WAAW,CAAC,YAAY,CAAC;gBAClC,SAAS,EAAE,mBAAmB;gBAC9B,MAAM,EAAE,IAAI,CAAC,UAAU;gBACvB,IAAI,EAAE,YAAY,CAAC,IAAI,KAAK,QAAQ,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,OAAO;aACrD,CAAC,CAAC;QACL,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,OAAO,CAAC,IAAI,CAAC,mCAAmC,mBAAmB,GAAG,EAAE,KAAK,CAAC,CAAC;QACjF,CAAC;QAED,YAAY;QACZ,IAAI,CAAC,aAAa,CAAC,MAAM,CAAC,mBAAmB,CAAC,CAAC;IACjD,CAAC;IAED;;OAEG;IACH,eAAe,CAAC,SAAiB;QAC/B,OAAO,IAAI,CAAC,aAAa,CAAC,GAAG,CAAC,SAAS,CAAC,WAAW,EAAE,CAAC,CAAC;IACzD,CAAC;IAED;;OAEG;IACH,mBAAmB;QACjB,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,aAAa,CAAC,MAAM,EAAE,CAAC,CAAC;IACjD,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,WAAW,CAAC,SAAiB;QACjC,MAAM,YAAY,GAAG,IAAI,CAAC,aAAa,CAAC,GAAG,CAAC,SAAS,CAAC,WAAW,EAAE,CAAC,CAAC;QAErE,IAAI,CAAC,YAAY,EAAE,CAAC;YAClB,MAAM,IAAI,KAAK,CAAC,qBAAqB,CAAC,CAAC;QACzC,CAAC;QAED,IAAI,YAAY,CAAC,IAAI,KAAK,QAAQ,IAAI,CAAC,YAAY,CAAC,YAAY,EAAE,CAAC;YACjE,MAAM,IAAI,KAAK,CAAC,iCAAiC,CAAC,CAAC;QACrD,CAAC;QAED,MAAM,IAAI,CAAC,cAAc,CAAC,KAAK,CAAC,YAAY,CAAC,YAAY,CAAC,CAAC;IAC7D,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,UAAU;QACd,MAAM,IAAI,CAAC,cAAc,CAAC,IAAI,EAAE,CAAC;IACnC,CAAC;IAED,iCAAiC;IAEjC;;OAEG;IACK,gBAAgB,CAAC,SAAiB;QACxC,kCAAkC;QAClC,MAAM,KAAK,GAAG,sCAAsC,CAAC;QACrD,OAAO,KAAK,CAAC,IAAI,CAAC,SAAS,CAAC,IAAI,SAAS,CAAC,MAAM,IAAI,CAAC,IAAI,SAAS,CAAC,MAAM,IAAI,EAAE,CAAC;IAClF,CAAC;IAED;;OAEG;IACK,KAAK,CAAC,iBAAiB,CAC7B,EAAU,EACV,IAAY;QAEZ,IAAI,CAAC;YACH,MAAM,KAAK,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;YACzB,MAAM,UAAU,GAAG,IAAI,eAAe,EAAE,CAAC;YACzC,MAAM,OAAO,GAAG,UAAU,CAAC,GAAG,EAAE,CAAC,UAAU,CAAC,KAAK,EAAE,EAAE,IAAI,CAAC,CAAC;YAE3D,cAAc;YACd,MAAM,IAAI,GAAG,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC,IAAI,EAAE,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC;YAC9C,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,UAAU,IAAI,IAAI,IAAI,oBAAoB,EAAE;gBACvE,MAAM,EAAE,MAAM;gBACd,MAAM,EAAE,UAAU,CAAC,MAAM;aAC1B,CAAC,CAAC;YAEH,YAAY,CAAC,OAAO,CAAC,CAAC;YAEtB,MAAM,OAAO,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,KAAK,CAAC;YAEnC,OAAO;gBACL,SAAS,EAAE,QAAQ,CAAC,EAAE,IAAI,QAAQ,CAAC,MAAM,KAAK,GAAG;gBACjD,QAAQ,EAAE,EAAE;gBACZ,OAAO;aACR,CAAC;QACJ,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,OAAO;gBACL,SAAS,EAAE,KAAK;gBAChB,KAAK,EAAE,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe;aAChE,CAAC;QACJ,CAAC;IACH,CAAC;IAEO,MAAM,CAAC,EAAU;QACvB,OAAO,EAAE,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC;IAC1B,CAAC;CACF;AArPD,4CAqPC","sourcesContent":["import type { TunnelProvider, TunnelConfig } from '../tunnel/TunnelProvider';\nimport type { DnsProvider } from '../dns/DnsProvider';\n\n/**\n * 子域名注册信息\n */\nexport interface SubdomainRegistration {\n  /** 子域名 (如 mynode) */\n  subdomain: string;\n\n  /** 完整域名 (如 mynode.pods.undefieds.co) */\n  fullDomain: string;\n\n  /** 访问模式 */\n  mode: 'direct' | 'tunnel';\n\n  /** 公网 IP (直连模式) */\n  publicIp?: string;\n\n  /** 隧道配置 (隧道模式) */\n  tunnelConfig?: TunnelConfig;\n\n  /** 注册时间 */\n  registeredAt: Date;\n\n  /** 所有者 ID */\n  ownerId?: string;\n}\n\n/**\n * 连通性检测结果\n */\nexport interface ConnectivityResult {\n  /** 是否可达 */\n  reachable: boolean;\n\n  /** 公网 IP */\n  publicIp?: string;\n\n  /** 延迟 (ms) */\n  latency?: number;\n\n  /** 错误信息 */\n  error?: string;\n}\n\n/**\n * SubdomainService 配置\n */\nexport interface SubdomainServiceOptions {\n  /** 基础域名 (如 pods.undefieds.co) */\n  baseDomain: string;\n\n  /** DNS Provider */\n  dnsProvider: DnsProvider;\n\n  /** Tunnel Provider */\n  tunnelProvider: TunnelProvider;\n\n  /** 连通性检测端点 (可选，用于回调检测) */\n  connectivityCheckEndpoint?: string;\n\n  /** 保留的子域名列表 */\n  reservedSubdomains?: string[];\n}\n\n/**\n * 子域名管理服务\n * \n * 负责：\n * 1. 子域名可用性检查\n * 2. 连通性检测\n * 3. 直连/隧道模式选择\n * 4. DNS 记录管理\n * 5. 隧道创建\n */\nexport class SubdomainService {\n  private readonly baseDomain: string;\n  private readonly dnsProvider: DnsProvider;\n  private readonly tunnelProvider: TunnelProvider;\n  private readonly connectivityCheckEndpoint?: string;\n  private readonly reservedSubdomains: Set<string>;\n\n  /** 已注册的子域名 (内存缓存，后续可改为数据库) */\n  private registrations: Map<string, SubdomainRegistration> = new Map();\n\n  constructor(options: SubdomainServiceOptions) {\n    this.baseDomain = options.baseDomain;\n    this.dnsProvider = options.dnsProvider;\n    this.tunnelProvider = options.tunnelProvider;\n    this.connectivityCheckEndpoint = options.connectivityCheckEndpoint;\n    this.reservedSubdomains = new Set(options.reservedSubdomains ?? [\n      'www', 'api', 'app', 'admin', 'mail', 'ftp', 'ssh',\n      'pods', 'center', 'edge', 'node', 'test', 'dev', 'staging',\n    ]);\n  }\n\n  /**\n   * 检查子域名是否可用\n   */\n  async checkAvailability(subdomain: string): Promise<{\n    available: boolean;\n    reason?: string;\n  }> {\n    // 1. 格式校验\n    if (!this.isValidSubdomain(subdomain)) {\n      return {\n        available: false,\n        reason: 'Invalid subdomain format. Use 3-63 lowercase letters, numbers, or hyphens.',\n      };\n    }\n\n    // 2. 保留名检查\n    if (this.reservedSubdomains.has(subdomain.toLowerCase())) {\n      return {\n        available: false,\n        reason: 'This subdomain is reserved.',\n      };\n    }\n\n    // 3. 已注册检查\n    if (this.registrations.has(subdomain.toLowerCase())) {\n      return {\n        available: false,\n        reason: 'This subdomain is already registered.',\n      };\n    }\n\n    return { available: true };\n  }\n\n  /**\n   * 注册子域名\n   */\n  async register(options: {\n    subdomain: string;\n    localPort: number;\n    publicIp?: string;\n    ownerId?: string;\n  }): Promise<SubdomainRegistration> {\n    const { subdomain, localPort, publicIp, ownerId } = options;\n    const normalizedSubdomain = subdomain.toLowerCase();\n\n    // 1. 检查可用性\n    const availability = await this.checkAvailability(normalizedSubdomain);\n    if (!availability.available) {\n      throw new Error(availability.reason);\n    }\n\n    const fullDomain = `${normalizedSubdomain}.${this.baseDomain}`;\n\n    // 2. 连通性检测 (如果提供了公网 IP)\n    let mode: 'direct' | 'tunnel' = 'tunnel';\n    let verifiedIp: string | undefined;\n\n    if (publicIp) {\n      const connectivity = await this.checkConnectivity(publicIp, localPort);\n      // 如果可达，或者虽然不可达但我们是在 Local 模式且用户显式指定了 IP\n      // 这里可以放宽一点限制，因为有些网络环境可能单向不通但 DNS 应该先挂上去\n      if (connectivity.reachable) {\n        mode = 'direct';\n        verifiedIp = publicIp;\n      }\n    }\n\n    // 3. 根据模式设置 DNS 和隧道\n    let tunnelConfig: TunnelConfig | undefined;\n\n    if (mode === 'direct') {\n      const type = this.isIpv6(verifiedIp!) ? 'AAAA' : 'A';\n      // 直连模式：创建 A 或 AAAA 记录\n      await this.dnsProvider.upsertRecord({\n        subdomain: normalizedSubdomain,\n        domain: this.baseDomain,\n        type,\n        value: verifiedIp!,\n        ttl: 60,\n      });\n    } else {\n      // 隧道模式：创建隧道 + CNAME\n      tunnelConfig = await this.tunnelProvider.setup({\n        subdomain: normalizedSubdomain,\n        localPort,\n      });\n    }\n\n    // 4. 保存注册信息\n    const registration: SubdomainRegistration = {\n      subdomain: normalizedSubdomain,\n      fullDomain,\n      mode,\n      publicIp: verifiedIp,\n      tunnelConfig,\n      registeredAt: new Date(),\n      ownerId,\n    };\n\n    this.registrations.set(normalizedSubdomain, registration);\n\n    return registration;\n  }\n\n  /**\n   * 释放子域名\n   */\n  async release(subdomain: string): Promise<void> {\n    const normalizedSubdomain = subdomain.toLowerCase();\n    const registration = this.registrations.get(normalizedSubdomain);\n\n    if (!registration) {\n      throw new Error('Subdomain not found');\n    }\n\n    // 1. 清理隧道\n    if (registration.tunnelConfig) {\n      await this.tunnelProvider.cleanup(registration.tunnelConfig);\n    }\n\n    // 2. 删除 DNS 记录 (尝试删除 A 和 CNAME 类型)\n    try {\n      await this.dnsProvider.deleteRecord({\n        subdomain: normalizedSubdomain,\n        domain: this.baseDomain,\n        type: registration.mode === 'direct' ? 'A' : 'CNAME',\n      });\n    } catch (error) {\n      console.warn(`Failed to delete DNS record for ${normalizedSubdomain}:`, error);\n    }\n\n    // 3. 移除注册信息\n    this.registrations.delete(normalizedSubdomain);\n  }\n\n  /**\n   * 获取注册信息\n   */\n  getRegistration(subdomain: string): SubdomainRegistration | undefined {\n    return this.registrations.get(subdomain.toLowerCase());\n  }\n\n  /**\n   * 获取所有注册\n   */\n  getAllRegistrations(): SubdomainRegistration[] {\n    return Array.from(this.registrations.values());\n  }\n\n  /**\n   * 启动隧道\n   */\n  async startTunnel(subdomain: string): Promise<void> {\n    const registration = this.registrations.get(subdomain.toLowerCase());\n\n    if (!registration) {\n      throw new Error('Subdomain not found');\n    }\n\n    if (registration.mode !== 'tunnel' || !registration.tunnelConfig) {\n      throw new Error('Subdomain is not in tunnel mode');\n    }\n\n    await this.tunnelProvider.start(registration.tunnelConfig);\n  }\n\n  /**\n   * 停止隧道\n   */\n  async stopTunnel(): Promise<void> {\n    await this.tunnelProvider.stop();\n  }\n\n  // ============ 私有方法 ============\n\n  /**\n   * 校验子域名格式\n   */\n  private isValidSubdomain(subdomain: string): boolean {\n    // 3-63 字符，小写字母、数字、连字符，不能以连字符开头或结尾\n    const regex = /^[a-z0-9]([a-z0-9-]{1,61}[a-z0-9])?$/;\n    return regex.test(subdomain) && subdomain.length >= 3 && subdomain.length <= 63;\n  }\n\n  /**\n   * 连通性检测\n   */\n  private async checkConnectivity(\n    ip: string,\n    port: number\n  ): Promise<ConnectivityResult> {\n    try {\n      const start = Date.now();\n      const controller = new AbortController();\n      const timeout = setTimeout(() => controller.abort(), 5000);\n\n      // IPv6 需要加中括号\n      const host = this.isIpv6(ip) ? `[${ip}]` : ip;\n      const response = await fetch(`http://${host}:${port}/.well-known/solid`, {\n        method: 'HEAD',\n        signal: controller.signal,\n      });\n\n      clearTimeout(timeout);\n\n      const latency = Date.now() - start;\n\n      return {\n        reachable: response.ok || response.status === 401,\n        publicIp: ip,\n        latency,\n      };\n    } catch (error) {\n      return {\n        reachable: false,\n        error: error instanceof Error ? error.message : 'Unknown error',\n      };\n    }\n  }\n\n  private isIpv6(ip: string): boolean {\n    return ip.includes(':');\n  }\n}\n"]}
+{"version":3,"file":"SubdomainService.js","sourceRoot":"","sources":["../../src/subdomain/SubdomainService.ts"],"names":[],"mappings":";;;AAsEA;;;;;;;;;;;GAWG;AACH,MAAa,gBAAgB;IAO3B,YAAY,OAAgC;QAC1C,IAAI,CAAC,UAAU,GAAG,OAAO,CAAC,UAAU,CAAC;QACrC,IAAI,CAAC,WAAW,GAAG,OAAO,CAAC,WAAW,CAAC;QACvC,IAAI,CAAC,cAAc,GAAG,OAAO,CAAC,cAAc,CAAC;QAC7C,IAAI,CAAC,YAAY,GAAG,OAAO,CAAC,YAAY,CAAC;QACzC,IAAI,CAAC,kBAAkB,GAAG,IAAI,GAAG,CAAC,OAAO,CAAC,kBAAkB,IAAI;YAC9D,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,KAAK;YAClD,MAAM,EAAE,QAAQ,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,KAAK,EAAE,SAAS;SAC3D,CAAC,CAAC;IACL,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,iBAAiB,CAAC,SAAiB;QAIvC,IAAI,CAAC,IAAI,CAAC,gBAAgB,CAAC,SAAS,CAAC,EAAE,CAAC;YACtC,OAAO;gBACL,SAAS,EAAE,KAAK;gBAChB,MAAM,EAAE,4EAA4E;aACrF,CAAC;QACJ,CAAC;QAED,IAAI,IAAI,CAAC,kBAAkB,CAAC,GAAG,CAAC,SAAS,CAAC,WAAW,EAAE,CAAC,EAAE,CAAC;YACzD,OAAO;gBACL,SAAS,EAAE,KAAK;gBAChB,MAAM,EAAE,6BAA6B;aACtC,CAAC;QACJ,CAAC;QAED,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,YAAY,CAAC,mBAAmB,CAAC,SAAS,CAAC,WAAW,EAAE,CAAC,CAAC;QACtF,IAAI,QAAQ,EAAE,CAAC;YACb,OAAO;gBACL,SAAS,EAAE,KAAK;gBAChB,MAAM,EAAE,uCAAuC;aAChD,CAAC;QACJ,CAAC;QAED,OAAO,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC;IAC7B,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,QAAQ,CAAC,OAMd;QACC,MAAM,EAAE,SAAS,EAAE,MAAM,EAAE,SAAS,EAAE,IAAI,EAAE,OAAO,EAAE,GAAG,OAAO,CAAC;QAChE,MAAM,mBAAmB,GAAG,SAAS,CAAC,WAAW,EAAE,CAAC;QAEpD,MAAM,YAAY,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,mBAAmB,CAAC,CAAC;QACvE,IAAI,CAAC,YAAY,CAAC,SAAS,EAAE,CAAC;YAC5B,MAAM,IAAI,KAAK,CAAC,YAAY,CAAC,MAAM,CAAC,CAAC;QACvC,CAAC;QAED,MAAM,UAAU,GAAG,GAAG,mBAAmB,IAAI,IAAI,CAAC,UAAU,EAAE,CAAC;QAE/D,QAAQ;QACR,IAAI,IAAI,GAAwB,QAAQ,CAAC;QACzC,IAAI,UAA8B,CAAC;QAEnC,IAAI,IAAI,EAAE,CAAC;YACT,MAAM,YAAY,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,IAAI,EAAE,SAAS,CAAC,CAAC;YACnE,IAAI,YAAY,CAAC,SAAS,EAAE,CAAC;gBAC3B,IAAI,GAAG,QAAQ,CAAC;gBAChB,UAAU,GAAG,IAAI,CAAC;YACpB,CAAC;QACH,CAAC;QAED,WAAW;QACX,IAAI,YAAsC,CAAC;QAE3C,IAAI,IAAI,KAAK,QAAQ,EAAE,CAAC;YACtB,MAAM,IAAI,GAAG,IAAI,CAAC,MAAM,CAAC,UAAW,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,GAAG,CAAC;YACrD,MAAM,IAAI,CAAC,WAAW,CAAC,YAAY,CAAC;gBAClC,SAAS,EAAE,mBAAmB;gBAC9B,MAAM,EAAE,IAAI,CAAC,UAAU;gBACvB,IAAI;gBACJ,KAAK,EAAE,UAAW;gBAClB,GAAG,EAAE,EAAE;aACR,CAAC,CAAC;QACL,CAAC;aAAM,CAAC;YACN,YAAY,GAAG,MAAM,IAAI,CAAC,cAAc,CAAC,KAAK,CAAC;gBAC7C,SAAS,EAAE,mBAAmB;gBAC9B,SAAS;aACV,CAAC,CAAC;QACL,CAAC;QAED,0BAA0B;QAC1B,MAAM,IAAI,CAAC,YAAY,CAAC,cAAc,CAAC,MAAM,EAAE;YAC7C,UAAU,EAAE,IAAI,KAAK,QAAQ,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,OAAO;YAClD,IAAI,EAAE,UAAU;YAChB,UAAU,EAAE,SAAS;YACrB,SAAS,EAAE,mBAAmB;YAC9B,kBAAkB,EAAE,IAAI,KAAK,QAAQ,CAAC,CAAC,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS;SAChE,CAAC,CAAC;QAEH,OAAO;YACL,SAAS,EAAE,mBAAmB;YAC9B,UAAU;YACV,IAAI;YACJ,IAAI,EAAE,UAAU;YAChB,YAAY;YACZ,YAAY,EAAE,IAAI,IAAI,EAAE;YACxB,OAAO;YACP,MAAM;SACP,CAAC;IACJ,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,OAAO,CAAC,SAAiB;QAC7B,MAAM,mBAAmB,GAAG,SAAS,CAAC,WAAW,EAAE,CAAC;QACpD,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,YAAY,CAAC,mBAAmB,CAAC,mBAAmB,CAAC,CAAC;QAE9E,IAAI,CAAC,IAAI,EAAE,CAAC;YACV,MAAM,IAAI,KAAK,CAAC,qBAAqB,CAAC,CAAC;QACzC,CAAC;QAED,iBAAiB;QACjB,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,YAAY,CAAC,uBAAuB,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QAC1E,MAAM,UAAU,GAAG,IAAI,EAAE,UAAU,CAAC;QAEpC,YAAY;QACZ,IAAI,CAAC;YACH,MAAM,IAAI,CAAC,WAAW,CAAC,YAAY,CAAC;gBAClC,SAAS,EAAE,mBAAmB;gBAC9B,MAAM,EAAE,IAAI,CAAC,UAAU;gBACvB,IAAI,EAAE,UAAU,KAAK,QAAQ,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,OAAO;aAC9C,CAAC,CAAC;QACL,CAAC;QAAC,MAAM,CAAC;YACP,gBAAgB;QAClB,CAAC;QAED,qBAAqB;QACrB,MAAM,IAAI,CAAC,YAAY,CAAC,cAAc,CAAC,IAAI,CAAC,MAAM,EAAE;YAClD,UAAU,EAAE,OAAO;YACnB,SAAS,EAAE,SAAS;YACpB,kBAAkB,EAAE,SAAS;SAC9B,CAAC,CAAC;IACL,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,eAAe,CAAC,SAAiB;QACrC,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,YAAY,CAAC,mBAAmB,CAAC,SAAS,CAAC,WAAW,EAAE,CAAC,CAAC;QAClF,IAAI,CAAC,IAAI,EAAE,CAAC;YACV,OAAO,SAAS,CAAC;QACnB,CAAC;QACD,OAAO,IAAI,CAAC,kBAAkB,CAAC,IAAI,CAAC,CAAC;IACvC,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,mBAAmB;QACvB,MAAM,KAAK,GAAG,MAAM,IAAI,CAAC,YAAY,CAAC,SAAS,EAAE,CAAC;QAClD,MAAM,OAAO,GAA4B,EAAE,CAAC;QAC5C,KAAK,MAAM,CAAC,IAAI,KAAK,EAAE,CAAC;YACtB,IAAI,CAAC,CAAC,CAAC,QAAQ,IAAI,CAAE,CAAC,CAAC,QAAoC,CAAC,SAAS,EAAE,CAAC;gBACtE,qCAAqC;gBACrC,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,YAAY,CAAC,uBAAuB,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC;gBACvE,IAAI,IAAI,EAAE,SAAS,EAAE,CAAC;oBACpB,OAAO,CAAC,IAAI,CAAC;wBACX,SAAS,EAAE,IAAI,CAAC,SAAS;wBACzB,UAAU,EAAE,GAAG,IAAI,CAAC,SAAS,IAAI,IAAI,CAAC,UAAU,EAAE;wBAClD,IAAI,EAAE,IAAI,CAAC,UAAU,KAAK,QAAQ,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,QAAQ;wBACxD,IAAI,EAAE,IAAI,CAAC,IAAI;wBACf,YAAY,EAAE,IAAI,IAAI,EAAE;wBACxB,MAAM,EAAE,CAAC,CAAC,MAAM;qBACjB,CAAC,CAAC;gBACL,CAAC;YACH,CAAC;QACH,CAAC;QACD,OAAO,OAAO,CAAC;IACjB,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,WAAW,CAAC,SAAiB;QACjC,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,eAAe,CAAC,SAAS,CAAC,CAAC;QAClD,IAAI,CAAC,GAAG,EAAE,CAAC;YACT,MAAM,IAAI,KAAK,CAAC,qBAAqB,CAAC,CAAC;QACzC,CAAC;QACD,IAAI,GAAG,CAAC,IAAI,KAAK,QAAQ,IAAI,CAAC,GAAG,CAAC,YAAY,EAAE,CAAC;YAC/C,MAAM,IAAI,KAAK,CAAC,iCAAiC,CAAC,CAAC;QACrD,CAAC;QACD,MAAM,IAAI,CAAC,cAAc,CAAC,KAAK,CAAC,GAAG,CAAC,YAAY,CAAC,CAAC;IACpD,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,UAAU;QACd,MAAM,IAAI,CAAC,cAAc,CAAC,IAAI,EAAE,CAAC;IACnC,CAAC;IAED,iCAAiC;IAEzB,kBAAkB,CAAC,IAK1B;QACC,MAAM,GAAG,GAAG,IAAI,CAAC,SAAU,CAAC;QAC5B,OAAO;YACL,SAAS,EAAE,GAAG;YACd,UAAU,EAAE,GAAG,GAAG,IAAI,IAAI,CAAC,UAAU,EAAE;YACvC,IAAI,EAAE,IAAI,CAAC,UAAU,KAAK,QAAQ,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,QAAQ;YACxD,YAAY,EAAE,IAAI,IAAI,EAAE;YACxB,MAAM,EAAE,IAAI,CAAC,MAAM;YACnB,OAAO,EAAG,IAAI,CAAC,QAA2C,EAAE,OAA6B;SAC1F,CAAC;IACJ,CAAC;IAEO,gBAAgB,CAAC,SAAiB;QACxC,MAAM,KAAK,GAAG,sCAAsC,CAAC;QACrD,OAAO,KAAK,CAAC,IAAI,CAAC,SAAS,CAAC,IAAI,SAAS,CAAC,MAAM,IAAI,CAAC,IAAI,SAAS,CAAC,MAAM,IAAI,EAAE,CAAC;IAClF,CAAC;IAEO,KAAK,CAAC,iBAAiB,CAC7B,EAAU,EACV,IAAY;QAEZ,IAAI,CAAC;YACH,MAAM,KAAK,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;YACzB,MAAM,UAAU,GAAG,IAAI,eAAe,EAAE,CAAC;YACzC,MAAM,OAAO,GAAG,UAAU,CAAC,GAAG,EAAE,CAAC,UAAU,CAAC,KAAK,EAAE,EAAE,IAAI,CAAC,CAAC;YAE3D,MAAM,IAAI,GAAG,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC,IAAI,EAAE,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC;YAC9C,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,UAAU,IAAI,IAAI,IAAI,oBAAoB,EAAE;gBACvE,MAAM,EAAE,MAAM;gBACd,MAAM,EAAE,UAAU,CAAC,MAAM;aAC1B,CAAC,CAAC;YAEH,YAAY,CAAC,OAAO,CAAC,CAAC;YAEtB,OAAO;gBACL,SAAS,EAAE,QAAQ,CAAC,EAAE,IAAI,QAAQ,CAAC,MAAM,KAAK,GAAG;gBACjD,IAAI,EAAE,EAAE;gBACR,OAAO,EAAE,IAAI,CAAC,GAAG,EAAE,GAAG,KAAK;aAC5B,CAAC;QACJ,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,OAAO;gBACL,SAAS,EAAE,KAAK;gBAChB,KAAK,EAAE,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe;aAChE,CAAC;QACJ,CAAC;IACH,CAAC;IAEO,MAAM,CAAC,EAAU;QACvB,OAAO,EAAE,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC;IAC1B,CAAC;CACF;AA9QD,4CA8QC","sourcesContent":["import type { TunnelProvider, TunnelConfig } from '../tunnel/TunnelProvider';\nimport type { DnsProvider } from '../dns/DnsProvider';\nimport type { EdgeNodeRepository } from '../identity/drizzle/EdgeNodeRepository';\n\n/**\n * 子域名注册信息\n */\nexport interface SubdomainRegistration {\n  /** 子域名 (如 mynode) */\n  subdomain: string;\n\n  /** 完整域名 (如 mynode.pods.undefieds.co) */\n  fullDomain: string;\n\n  /** 访问模式 */\n  mode: 'direct' | 'tunnel';\n\n  /** 公网 IP (直连模式) */\n  ipv4?: string;\n\n  /** 隧道配置 (隧道模式) */\n  tunnelConfig?: TunnelConfig;\n\n  /** 注册时间 */\n  registeredAt: Date;\n\n  /** 所有者 ID */\n  ownerId?: string;\n\n  /** 绑定的节点 ID */\n  nodeId?: string;\n}\n\n/**\n * 连通性检测结果\n */\nexport interface ConnectivityResult {\n  /** 是否可达 */\n  reachable: boolean;\n\n  /** 公网 IP */\n  ipv4?: string;\n\n  /** 延迟 (ms) */\n  latency?: number;\n\n  /** 错误信息 */\n  error?: string;\n}\n\n/**\n * SubdomainService 配置\n */\nexport interface SubdomainServiceOptions {\n  /** 基础域名 (如 pods.undefieds.co) */\n  baseDomain: string;\n\n  /** DNS Provider */\n  dnsProvider: DnsProvider;\n\n  /** Tunnel Provider */\n  tunnelProvider: TunnelProvider;\n\n  /** Edge Node Repository (持久化) */\n  edgeNodeRepo: EdgeNodeRepository;\n\n  /** 保留的子域名列表 */\n  reservedSubdomains?: string[];\n}\n\n/**\n * 子域名管理服务\n *\n * 负责：\n * 1. 子域名可用性检查\n * 2. 连通性检测\n * 3. 直连/隧道模式选择\n * 4. DNS 记录管理\n * 5. 隧道创建\n *\n * 注册信息持久化到 EdgeNodeRepository（identity_edge_node.subdomain 字段）\n */\nexport class SubdomainService {\n  private readonly baseDomain: string;\n  private readonly dnsProvider: DnsProvider;\n  private readonly tunnelProvider: TunnelProvider;\n  private readonly edgeNodeRepo: EdgeNodeRepository;\n  private readonly reservedSubdomains: Set<string>;\n\n  constructor(options: SubdomainServiceOptions) {\n    this.baseDomain = options.baseDomain;\n    this.dnsProvider = options.dnsProvider;\n    this.tunnelProvider = options.tunnelProvider;\n    this.edgeNodeRepo = options.edgeNodeRepo;\n    this.reservedSubdomains = new Set(options.reservedSubdomains ?? [\n      'www', 'api', 'app', 'admin', 'mail', 'ftp', 'ssh',\n      'pods', 'center', 'edge', 'node', 'test', 'dev', 'staging',\n    ]);\n  }\n\n  /**\n   * 检查子域名是否可用\n   */\n  async checkAvailability(subdomain: string): Promise<{\n    available: boolean;\n    reason?: string;\n  }> {\n    if (!this.isValidSubdomain(subdomain)) {\n      return {\n        available: false,\n        reason: 'Invalid subdomain format. Use 3-63 lowercase letters, numbers, or hyphens.',\n      };\n    }\n\n    if (this.reservedSubdomains.has(subdomain.toLowerCase())) {\n      return {\n        available: false,\n        reason: 'This subdomain is reserved.',\n      };\n    }\n\n    const existing = await this.edgeNodeRepo.findNodeBySubdomain(subdomain.toLowerCase());\n    if (existing) {\n      return {\n        available: false,\n        reason: 'This subdomain is already registered.',\n      };\n    }\n\n    return { available: true };\n  }\n\n  /**\n   * 注册子域名\n   */\n  async register(options: {\n    subdomain: string;\n    nodeId: string;\n    localPort: number;\n    ipv4?: string;\n    ownerId?: string;\n  }): Promise<SubdomainRegistration> {\n    const { subdomain, nodeId, localPort, ipv4, ownerId } = options;\n    const normalizedSubdomain = subdomain.toLowerCase();\n\n    const availability = await this.checkAvailability(normalizedSubdomain);\n    if (!availability.available) {\n      throw new Error(availability.reason);\n    }\n\n    const fullDomain = `${normalizedSubdomain}.${this.baseDomain}`;\n\n    // 连通性检测\n    let mode: 'direct' | 'tunnel' = 'tunnel';\n    let verifiedIp: string | undefined;\n\n    if (ipv4) {\n      const connectivity = await this.checkConnectivity(ipv4, localPort);\n      if (connectivity.reachable) {\n        mode = 'direct';\n        verifiedIp = ipv4;\n      }\n    }\n\n    // DNS / 隧道\n    let tunnelConfig: TunnelConfig | undefined;\n\n    if (mode === 'direct') {\n      const type = this.isIpv6(verifiedIp!) ? 'AAAA' : 'A';\n      await this.dnsProvider.upsertRecord({\n        subdomain: normalizedSubdomain,\n        domain: this.baseDomain,\n        type,\n        value: verifiedIp!,\n        ttl: 60,\n      });\n    } else {\n      tunnelConfig = await this.tunnelProvider.setup({\n        subdomain: normalizedSubdomain,\n        localPort,\n      });\n    }\n\n    // 持久化到 EdgeNodeRepository\n    await this.edgeNodeRepo.updateNodeMode(nodeId, {\n      accessMode: mode === 'direct' ? 'direct' : 'proxy',\n      ipv4: verifiedIp,\n      publicPort: localPort,\n      subdomain: normalizedSubdomain,\n      connectivityStatus: mode === 'direct' ? 'reachable' : 'unknown',\n    });\n\n    return {\n      subdomain: normalizedSubdomain,\n      fullDomain,\n      mode,\n      ipv4: verifiedIp,\n      tunnelConfig,\n      registeredAt: new Date(),\n      ownerId,\n      nodeId,\n    };\n  }\n\n  /**\n   * 释放子域名\n   */\n  async release(subdomain: string): Promise<void> {\n    const normalizedSubdomain = subdomain.toLowerCase();\n    const node = await this.edgeNodeRepo.findNodeBySubdomain(normalizedSubdomain);\n\n    if (!node) {\n      throw new Error('Subdomain not found');\n    }\n\n    // 获取完整连通性信息以判断模式\n    const info = await this.edgeNodeRepo.getNodeConnectivityInfo(node.nodeId);\n    const accessMode = info?.accessMode;\n\n    // 删除 DNS 记录\n    try {\n      await this.dnsProvider.deleteRecord({\n        subdomain: normalizedSubdomain,\n        domain: this.baseDomain,\n        type: accessMode === 'direct' ? 'A' : 'CNAME',\n      });\n    } catch {\n      // DNS 删除失败不阻塞释放\n    }\n\n    // 清除 DB 中的 subdomain\n    await this.edgeNodeRepo.updateNodeMode(node.nodeId, {\n      accessMode: 'proxy',\n      subdomain: undefined,\n      connectivityStatus: 'unknown',\n    });\n  }\n\n  /**\n   * 获取注册信息\n   */\n  async getRegistration(subdomain: string): Promise<SubdomainRegistration | undefined> {\n    const node = await this.edgeNodeRepo.findNodeBySubdomain(subdomain.toLowerCase());\n    if (!node) {\n      return undefined;\n    }\n    return this.nodeToRegistration(node);\n  }\n\n  /**\n   * 获取所有注册\n   */\n  async getAllRegistrations(): Promise<SubdomainRegistration[]> {\n    const nodes = await this.edgeNodeRepo.listNodes();\n    const results: SubdomainRegistration[] = [];\n    for (const n of nodes) {\n      if (!n.metadata || !(n.metadata as Record<string, unknown>).subdomain) {\n        // 需要查 connectivity info 获取 subdomain\n        const info = await this.edgeNodeRepo.getNodeConnectivityInfo(n.nodeId);\n        if (info?.subdomain) {\n          results.push({\n            subdomain: info.subdomain,\n            fullDomain: `${info.subdomain}.${this.baseDomain}`,\n            mode: info.accessMode === 'direct' ? 'direct' : 'tunnel',\n            ipv4: info.ipv4,\n            registeredAt: new Date(),\n            nodeId: n.nodeId,\n          });\n        }\n      }\n    }\n    return results;\n  }\n\n  /**\n   * 启动隧道\n   */\n  async startTunnel(subdomain: string): Promise<void> {\n    const reg = await this.getRegistration(subdomain);\n    if (!reg) {\n      throw new Error('Subdomain not found');\n    }\n    if (reg.mode !== 'tunnel' || !reg.tunnelConfig) {\n      throw new Error('Subdomain is not in tunnel mode');\n    }\n    await this.tunnelProvider.start(reg.tunnelConfig);\n  }\n\n  /**\n   * 停止隧道\n   */\n  async stopTunnel(): Promise<void> {\n    await this.tunnelProvider.stop();\n  }\n\n  // ============ 私有方法 ============\n\n  private nodeToRegistration(node: {\n    nodeId: string;\n    accessMode?: string;\n    metadata?: Record<string, unknown> | null;\n    subdomain?: string;\n  }): SubdomainRegistration {\n    const sub = node.subdomain!;\n    return {\n      subdomain: sub,\n      fullDomain: `${sub}.${this.baseDomain}`,\n      mode: node.accessMode === 'direct' ? 'direct' : 'tunnel',\n      registeredAt: new Date(),\n      nodeId: node.nodeId,\n      ownerId: (node.metadata as Record<string, unknown> | null)?.ownerId as string | undefined,\n    };\n  }\n\n  private isValidSubdomain(subdomain: string): boolean {\n    const regex = /^[a-z0-9]([a-z0-9-]{1,61}[a-z0-9])?$/;\n    return regex.test(subdomain) && subdomain.length >= 3 && subdomain.length <= 63;\n  }\n\n  private async checkConnectivity(\n    ip: string,\n    port: number,\n  ): Promise<ConnectivityResult> {\n    try {\n      const start = Date.now();\n      const controller = new AbortController();\n      const timeout = setTimeout(() => controller.abort(), 5000);\n\n      const host = this.isIpv6(ip) ? `[${ip}]` : ip;\n      const response = await fetch(`http://${host}:${port}/.well-known/solid`, {\n        method: 'HEAD',\n        signal: controller.signal,\n      });\n\n      clearTimeout(timeout);\n\n      return {\n        reachable: response.ok || response.status === 401,\n        ipv4: ip,\n        latency: Date.now() - start,\n      };\n    } catch (error) {\n      return {\n        reachable: false,\n        error: error instanceof Error ? error.message : 'Unknown error',\n      };\n    }\n  }\n\n  private isIpv6(ip: string): boolean {\n    return ip.includes(':');\n  }\n}\n"]}

package/dist/subdomain/SubdomainService.jsonld

@@ -24,8 +24,8 @@
           "memberFieldName": "mode"
         },
         {
-          "@id": "undefineds:dist/subdomain/SubdomainService.jsonld#SubdomainRegistration__member_publicIp",
-          "memberFieldName": "publicIp"
+          "@id": "undefineds:dist/subdomain/SubdomainService.jsonld#SubdomainRegistration__member_ipv4",
+          "memberFieldName": "ipv4"
         },
         {
           "@id": "undefineds:dist/subdomain/SubdomainService.jsonld#SubdomainRegistration__member_tunnelConfig",
@@ -38,6 +38,10 @@
         {
           "@id": "undefineds:dist/subdomain/SubdomainService.jsonld#SubdomainRegistration__member_ownerId",
           "memberFieldName": "ownerId"
+        },
+        {
+          "@id": "undefineds:dist/subdomain/SubdomainService.jsonld#SubdomainRegistration__member_nodeId",
+          "memberFieldName": "nodeId"
         }
       ],
       "constructorArguments": []
@@ -54,8 +58,8 @@
           "memberFieldName": "reachable"
         },
         {
-          "@id": "undefineds:dist/subdomain/SubdomainService.jsonld#ConnectivityResult__member_publicIp",
-          "memberFieldName": "publicIp"
+          "@id": "undefineds:dist/subdomain/SubdomainService.jsonld#ConnectivityResult__member_ipv4",
+          "memberFieldName": "ipv4"
         },
         {
           "@id": "undefineds:dist/subdomain/SubdomainService.jsonld#ConnectivityResult__member_latency",
@@ -88,8 +92,8 @@
           "memberFieldName": "tunnelProvider"
         },
         {
-          "@id": "undefineds:dist/subdomain/SubdomainService.jsonld#SubdomainServiceOptions__member_connectivityCheckEndpoint",
-          "memberFieldName": "connectivityCheckEndpoint"
+          "@id": "undefineds:dist/subdomain/SubdomainService.jsonld#SubdomainServiceOptions__member_edgeNodeRepo",
+          "memberFieldName": "edgeNodeRepo"
         },
         {
           "@id": "undefineds:dist/subdomain/SubdomainService.jsonld#SubdomainServiceOptions__member_reservedSubdomains",
@@ -102,7 +106,7 @@
       "@id": "undefineds:dist/subdomain/SubdomainService.jsonld#SubdomainService",
       "@type": "Class",
       "requireElement": "SubdomainService",
-      "comment": "子域名管理服务  负责： 1. 子域名可用性检查 2. 连通性检测 3. 直连/隧道模式选择 4. DNS 记录管理 5. 隧道创建",
+      "comment": "子域名管理服务  负责： 1. 子域名可用性检查 2. 连通性检测 3. 直连/隧道模式选择 4. DNS 记录管理 5. 隧道创建  注册信息持久化到 EdgeNodeRepository（identity_edge_node.subdomain 字段）",
       "parameters": [
         {
           "@id": "undefineds:dist/subdomain/SubdomainService.jsonld#SubdomainService_options_baseDomain",
@@ -120,17 +124,9 @@
           "comment": "Tunnel Provider"
         },
         {
-          "@id": "undefineds:dist/subdomain/SubdomainService.jsonld#SubdomainService_options_connectivityCheckEndpoint",
-          "range": {
-            "@type": "ParameterRangeUnion",
-            "parameterRangeElements": [
-              "xsd:string",
-              {
-                "@type": "ParameterRangeUndefined"
-              }
-            ]
-          },
-          "comment": "连通性检测端点 (可选，用于回调检测)"
+          "@id": "undefineds:dist/subdomain/SubdomainService.jsonld#SubdomainService_options_edgeNodeRepo",
+          "range": "undefineds:dist/identity/drizzle/EdgeNodeRepository.jsonld#EdgeNodeRepository",
+          "comment": "Edge Node Repository (持久化)"
         },
         {
           "@id": "undefineds:dist/subdomain/SubdomainService.jsonld#SubdomainService_options_reservedSubdomains",
@@ -163,17 +159,13 @@
           "memberFieldName": "tunnelProvider"
         },
         {
-          "@id": "undefineds:dist/subdomain/SubdomainService.jsonld#SubdomainService__member_connectivityCheckEndpoint",
-          "memberFieldName": "connectivityCheckEndpoint"
+          "@id": "undefineds:dist/subdomain/SubdomainService.jsonld#SubdomainService__member_edgeNodeRepo",
+          "memberFieldName": "edgeNodeRepo"
         },
         {
           "@id": "undefineds:dist/subdomain/SubdomainService.jsonld#SubdomainService__member_reservedSubdomains",
           "memberFieldName": "reservedSubdomains"
         },
-        {
-          "@id": "undefineds:dist/subdomain/SubdomainService.jsonld#SubdomainService__member_registrations",
-          "memberFieldName": "registrations"
-        },
         {
           "@id": "undefineds:dist/subdomain/SubdomainService.jsonld#SubdomainService__member_constructor",
           "memberFieldName": "constructor"
@@ -206,6 +198,10 @@
           "@id": "undefineds:dist/subdomain/SubdomainService.jsonld#SubdomainService__member_stopTunnel",
           "memberFieldName": "stopTunnel"
         },
+        {
+          "@id": "undefineds:dist/subdomain/SubdomainService.jsonld#SubdomainService__member_nodeToRegistration",
+          "memberFieldName": "nodeToRegistration"
+        },
         {
           "@id": "undefineds:dist/subdomain/SubdomainService.jsonld#SubdomainService__member_isValidSubdomain",
           "memberFieldName": "isValidSubdomain"
@@ -242,9 +238,9 @@
               }
             },
             {
-              "keyRaw": "connectivityCheckEndpoint",
+              "keyRaw": "edgeNodeRepo",
               "value": {
-                "@id": "undefineds:dist/subdomain/SubdomainService.jsonld#SubdomainService_options_connectivityCheckEndpoint"
+                "@id": "undefineds:dist/subdomain/SubdomainService.jsonld#SubdomainService_options_edgeNodeRepo"
               }
             },
             {