agentgui 1.0.932 → 1.0.934

package/AGENTS.md

@@ -25,7 +25,7 @@ Local server on PORT=3056 (default), `bun server.js`:
 
 ## Learning audit
 
-- 2026-05-02 session: 5 items audited (CI bun, stream imports, windows fallback, GM blocker, ACP history), 0 removed (rs-learn retrieval not yet confirmed; safety default kept all), 1 new fact ingested (acptoapi history integration)
+- 2026-05-02 session: 5 items audited (CI bun, stream imports, windows fallback, GM blocker, ACP history), 0 removed (rs-learn retrieval not yet confirmed; safety default kept all), 1 new fact ingested (in-process ccsniff history integration)
 
 ## CI / GitHub Actions
 
@@ -74,11 +74,11 @@ The actual hook content is generated/templated from c:/dev/gm, likely from `lib/
 
 Only after the real generator is patched will agentgui sessions run autonomously without per-tool ceremony.
 
-## ACP-to-API History Integration
+## History Integration via ccsniff (2026-05-21 — reverted from acptoapi)
 
-**acptoapi (c:\dev\acptoapi) merged Claude Code history routes as of 2026-05-02; ccsniff package is no longer needed.**
+**agentgui mounts `ccsniff`'s history router in-process — no external proxy.**
 
-History functionality (`GET /v1/history/*` endpoints) is now built into acptoapi. Routes: `snapshot` (event/session/project/tool/error counts + byte/date range), `sessions` (list with title/project/cwd/counts), `sessions/:sid/events` (flattened events), `search` (BM25 with snippets), `reindex` (rebuild index), `stream` (SSE). Implementation: `lib/history/` (bm25.js for tokenize/buildIndex/search/snippet, watcher.js for JsonlWatcher + JsonlReplayer, index.js for HistoryStore singleton + flattenEvent). Reads `~/.claude/projects` by default; override with `CLAUDE_PROJECTS_DIR` env var. The ccsniff package itself is no longer needed — acptoapi covers the functionality entirely.
+`server.js` imports `createHistoryRouter` from the `ccsniff` package and mounts it on the internal Express app at `/`, exposing `GET /v1/history/{snapshot,sessions,sessions/:sid/events,search,reindex,stream}`. Reads `~/.claude/projects` by default; override with `CLAUDE_PROJECTS_DIR` env var. acptoapi's previously-bundled history routes were removed in acptoapi 1.0.103; ccsniff is now the canonical source. Browser client (`site/app/js/backend.js`) calls these same-origin via the agentgui server.
 
 ## buildSystemPrompt System Prompt for claude-code
 
@@ -124,7 +124,7 @@ Surfaced 2026-05-04 while validating the chat surface in `site/app/`. Fix applie
 
 **`site/app/js/app.js` opens SSE EventSource on navTo('history'); first /v1/history/* request triggers 30-90s loadOnce() synchronous walk.**
 
-The live history feature wires acptoapi's /v1/history/stream (SSE endpoint) via `B.streamHistory(base, onEvent)` on tab entry and closes the EventSource on tab exit. State shape: `state.live = { es, connected, lastEventTs, error, eventCount }`.
+The live history feature wires the in-process ccsniff `/v1/history/stream` SSE endpoint via `B.streamHistory(base, onEvent)` on tab entry and closes the EventSource on tab exit. State shape: `state.live = { es, connected, lastEventTs, error, eventCount }`.
 
 Event dispatch loop:
 - `hello` event: set `connected=true`
@@ -132,8 +132,8 @@ Event dispatch loop:
 - `conversation` event: call `refreshHistory()` to reload session list
 - `error` event: set `live.error`
 
-Throttle renders via `requestAnimationFrame` to avoid event storm during burst loads from acptoapi.
+Throttle renders via `requestAnimationFrame` to avoid event storm during burst loads.
 
-**First request to acptoapi /v1/history/* triggers loadOnce() that walks all JSONL files under ~/.claude/projects** (env default; override with `CLAUDE_PROJECTS_DIR`). In our test env: 299 files, 80MB, 69k events → 30-90s startup latency. Health check timeouts during this window are normal and expected. Subsequent requests are fast (cached index).
+**First request to `/v1/history/*` triggers loadOnce() that walks all JSONL files under ~/.claude/projects** (env default; override with `CLAUDE_PROJECTS_DIR`). In our test env: 299 files, 80MB, 69k events → 30-90s startup latency. Health check timeouts during this window are normal and expected. Subsequent requests are fast (cached index).
 
-acptoapi binary: `c:/dev/acptoapi/bin/agentapi.js`, default port 4800, no args; CORS `Access-Control-Allow-Origin: *` is enabled.
+The endpoints are served by ccsniff's Express router mounted in-process from `server.js`. No external proxy.

package/README.md

@@ -10,22 +10,22 @@
 
 Multi-agent GUI client for AI coding agents with real-time streaming, WebSocket sync, and SQLite persistence.
 
-## Live client (new)
+## How it works
 
-AgentGUI now ships a static GH Pages client at **`/app/`** that talks to any [`acptoapi`](https://github.com/AnEntrypoint/acptoapi) backend over plain HTTP — no install, no bundler, no DB. Open `https://anentrypoint.github.io/agentgui/app/?backend=http://your-acptoapi-host:4800` and chat with any provider acptoapi proxies (Claude / Gemini / OpenAI-compat brands / kilo / opencode), plus browse local Claude Code JSONL history right in the page.
+AgentGUI is a single Node server (`server.js`) plus a same-origin browser client (`site/app/`). The server speaks ACP directly to local agent daemons (Claude Code, OpenCode, Kilo, Gemini CLI, etc.) via `@agentclientprotocol/sdk` and hosts `ccsniff`'s `/v1/history/*` Express router in-process for Claude Code JSONL session browsing — no external proxy required.
 
 - UI: [anentrypoint-design](https://www.npmjs.com/package/anentrypoint-design) (CDN, single-file ESM)
-- Backend: [acptoapi](https://www.npmjs.com/package/acptoapi) — `npx acptoapi` on the host with Claude Code / API keys; exposes `/v1/chat/completions`, `/v1/messages`, `/v1/history/*`
-- Source: `site/app/` (this repo)
+- Server: `server.js` — ACP daemon manager + WebSocket chat + ccsniff history mount
+- Source: `site/app/` (browser) + `lib/` (server)
 
-History endpoints in `acptoapi` (formerly `ccsniff`'s job):
+History endpoints served by [`ccsniff`](https://github.com/AnEntrypoint/ccsniff) directly:
 
 - `GET /v1/history/sessions` — list Claude Code sessions on the host
 - `GET /v1/history/sessions/:sid/events` — flattened events for one session
 - `GET /v1/history/search?q=…` — BM25-ranked search across all events
 - `GET /v1/history/stream` — Server-Sent Events for live tailing
 
-The legacy Node server in this repo (`server.js`, `lib/`, `static/`) still ships in the npm `agentgui` package and is the install-friendly path. It is being phased out as the static client + acptoapi pair reach feature parity.
+Chat streams over the `/sync` WebSocket using the `chat.sendMessage` method — see "WebSocket Chat Protocol" below.
 
 ### Supported Agents
 

package/lib/http-handler.js

@@ -2,6 +2,7 @@ import fs from 'fs';
 import path from 'path';
 import os from 'os';
 import crypto from 'crypto';
+import * as term from './terminal.js';
 
 export function createHttpHandler({ BASE_URL, expressApp, queries, sendJSON, serveFile, staticDir, messageQueues, getWss, activeExecutions, getACPStatus, discoveredAgents, PKG_VERSION, RATE_LIMIT_MAX, rateLimitMap, routes, PORT }) {
   return async function httpHandler(req, res) {
@@ -49,6 +50,7 @@ export function createHttpHandler({ BASE_URL, expressApp, queries, sendJSON, ser
     else if (req.url.startsWith('/api/') || req.url.startsWith('/js/') || req.url.startsWith('/css/') ||
              req.url.startsWith('/vendor/') || req.url.startsWith('/sync') || req.url === '/' ||
              req.url === '/health' || req.url.startsWith('/v1/') ||
+             req.url.startsWith('/api/terminal/') ||
              req.url.startsWith('/conversations/')) { routePath = req.url; }
     else { res.writeHead(404); res.end('Not found'); return; }
 
@@ -66,6 +68,30 @@ export function createHttpHandler({ BASE_URL, expressApp, queries, sendJSON, ser
         return;
       }
 
+      // Terminal sessions — gated by the Basic-auth check at the top of this handler.
+      // Never expose these routes without PASSWORD set.
+      if (pathOnly === '/api/terminal/sessions' && req.method === 'GET') {
+        sendJSON(req, res, 200, term.listSessions()); return;
+      }
+      if (pathOnly === '/api/terminal/sessions' && req.method === 'POST') {
+        let body = ''; for await (const c of req) body += c;
+        let p = {}; try { p = body ? JSON.parse(body) : {}; } catch {}
+        const s = term.createSession({ shell: p.shell, cwd: p.cwd, cols: p.cols, rows: p.rows, env: p.env });
+        sendJSON(req, res, 200, { sid: s.sid, kind: s.kind, shell: s.shell, cwd: s.cwd, cols: s.cols, rows: s.rows, pid: s.proc.pid });
+        return;
+      }
+      const termMatch = pathOnly.match(/^\/api\/terminal\/sessions\/([0-9a-f]+)$/);
+      if (termMatch && req.method === 'GET') {
+        const s = term.getSession(termMatch[1]);
+        if (!s) { sendJSON(req, res, 404, { error: 'session not found' }); return; }
+        sendJSON(req, res, 200, { sid: s.sid, kind: s.kind, shell: s.shell, cwd: s.cwd, cols: s.cols, rows: s.rows, pid: s.proc.pid, clients: s.clients.size });
+        return;
+      }
+      if (termMatch && req.method === 'DELETE') {
+        const ok = term.closeSession(termMatch[1]);
+        sendJSON(req, res, ok ? 200 : 404, { ok }); return;
+      }
+
       // Legacy REST handlers removed. History served by ccsniff at /v1/history/*.
       for (const key of Object.keys(routes)) {
         try {

package/lib/terminal.js

@@ -0,0 +1,112 @@
+// WebSocket terminal sessions. Ported from acptoapi 2026-05-21.
+// Auth: callers MUST gate /api/terminal/* + the WS upgrade behind agentgui's
+// PASSWORD Basic-auth check. This module does no auth on its own — never
+// expose without the gate.
+
+import os from 'os';
+import { spawn } from 'child_process';
+import crypto from 'crypto';
+import { createRequire } from 'module';
+const require_ = createRequire(import.meta.url);
+
+let _pty = null;
+function getPty() {
+  if (_pty !== null) return _pty;
+  try { _pty = require_('node-pty'); } catch { _pty = false; }
+  return _pty;
+}
+
+const sessions = new Map();
+
+function newSid() { return crypto.randomBytes(8).toString('hex'); }
+
+function defaultShell() {
+  if (os.platform() === 'win32') return process.env.COMSPEC || 'cmd.exe';
+  return process.env.SHELL || '/bin/bash';
+}
+
+export function createSession({ shell, cwd, cols = 80, rows = 24, env } = {}) {
+  const sid = newSid();
+  const pty = getPty();
+  const _shell = shell || defaultShell();
+  const _cwd = cwd || process.env.HOME || os.homedir();
+  const _env = { ...process.env, ...(env || {}), TERM: 'xterm-256color', COLORTERM: 'truecolor' };
+  let proc, kind;
+  if (pty) {
+    proc = pty.spawn(_shell, [], { name: 'xterm-256color', cols, rows, cwd: _cwd, env: _env });
+    kind = 'pty';
+  } else {
+    proc = spawn(_shell, os.platform() === 'win32' ? [] : ['-i'], { cwd: _cwd, env: _env, stdio: ['pipe', 'pipe', 'pipe'], windowsHide: true });
+    kind = 'pipe';
+  }
+  const session = { sid, kind, proc, shell: _shell, cwd: _cwd, cols, rows, createdAt: Date.now(), clients: new Set(), exitCode: null };
+  sessions.set(sid, session);
+  const onData = (chunk) => {
+    const buf = Buffer.isBuffer(chunk) ? chunk : Buffer.from(chunk, 'utf8');
+    for (const ws of session.clients) { if (ws.readyState === 1) try { ws.send(buf); } catch {} }
+  };
+  if (kind === 'pty') {
+    proc.on('data', onData);
+    proc.on('exit', (code) => { session.exitCode = code; for (const ws of session.clients) { try { ws.close(1000, 'exit:' + code); } catch {} } sessions.delete(sid); });
+  } else {
+    proc.stdout.on('data', onData);
+    proc.stderr.on('data', onData);
+    proc.stdout.on('error', () => {});
+    proc.stderr.on('error', () => {});
+    proc.stdin.on('error', () => {});
+    proc.on('exit', (code) => { session.exitCode = code; for (const ws of session.clients) { try { ws.close(1000, 'exit:' + code); } catch {} } sessions.delete(sid); });
+    proc.on('error', (err) => { session.exitCode = -1; for (const ws of session.clients) { try { ws.close(1011, 'error:' + err.message); } catch {} } sessions.delete(sid); });
+  }
+  return session;
+}
+
+export function getSession(sid) { return sessions.get(sid); }
+
+export function listSessions() {
+  return [...sessions.values()].map(s => ({ sid: s.sid, kind: s.kind, shell: s.shell, cwd: s.cwd, cols: s.cols, rows: s.rows, createdAt: s.createdAt, clients: s.clients.size }));
+}
+
+export function closeSession(sid) {
+  const s = sessions.get(sid);
+  if (!s) return false;
+  try { s.proc.kill(); } catch {}
+  sessions.delete(sid);
+  return true;
+}
+
+export function writeToSession(sid, data) {
+  const s = sessions.get(sid);
+  if (!s) return false;
+  const buf = typeof data === 'string' ? data : Buffer.isBuffer(data) ? data : Buffer.from(data);
+  if (s.kind === 'pty') {
+    try { s.proc.write(buf); } catch { return false; }
+  } else {
+    if (!s.proc.stdin || !s.proc.stdin.writable) return false;
+    try { s.proc.stdin.write(buf); } catch { return false; }
+  }
+  return true;
+}
+
+export function resizeSession(sid, cols, rows) {
+  const s = sessions.get(sid);
+  if (!s || s.kind !== 'pty' || typeof s.proc.resize !== 'function') return false;
+  s.cols = cols; s.rows = rows;
+  try { s.proc.resize(cols, rows); return true; } catch { return false; }
+}
+
+export function attachWs(sid, ws) {
+  const s = sessions.get(sid);
+  if (!s) { try { ws.close(4404, 'session-not-found'); } catch {} return false; }
+  s.clients.add(ws);
+  ws.on('close', () => { s.clients.delete(ws); });
+  ws.on('message', (msg, isBinary) => {
+    if (isBinary || Buffer.isBuffer(msg)) { writeToSession(sid, msg); return; }
+    const text = msg.toString();
+    if (text && text.length > 0 && text[0] === '{') {
+      try { const j = JSON.parse(text); if (j.type === 'resize' && j.cols && j.rows) { resizeSession(sid, j.cols, j.rows); return; } } catch {}
+    }
+    writeToSession(sid, text);
+  });
+  ws.on('error', () => { s.clients.delete(ws); });
+  return true;
+}

package/lib/ws-setup.js

@@ -1,6 +1,7 @@
 import fs from 'fs';
 import path from 'path';
 import { WebSocketServer } from 'ws';
+import * as term from './terminal.js';
 // Legacy WS handlers removed; no-op shim kept for callsite compatibility.
 const registerLegacyHandler = () => {};
 
@@ -22,6 +23,12 @@ export function createWsSetup(server, { BASE_URL, watch, staticDir, _assetCache,
     if (wsRoute === '/hot-reload') {
       hotReloadClients.push(ws);
       ws.on('close', () => { const i = hotReloadClients.indexOf(ws); if (i > -1) hotReloadClients.splice(i, 1); });
+    } else if (wsRoute.startsWith('/api/terminal/sessions/')) {
+      // Terminal session WS — auth was already enforced by wss-level PASSWORD
+      // check at the top of this connection callback. attach to existing session.
+      const m = wsRoute.match(/^\/api\/terminal\/sessions\/([0-9a-f]+)$/);
+      if (!m) { ws.close(4400, 'bad-terminal-path'); return; }
+      term.attachWs(m[1], ws);
     } else if (wsRoute === '/sync') {
       syncClients.add(ws);
       ws.isAlive = true;

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "agentgui",
-  "version": "1.0.932",
+  "version": "1.0.934",
   "description": "Multi-agent ACP client with real-time communication",
   "type": "module",
   "main": "electron/main.js",

package/site/app/index.html

@@ -4,10 +4,10 @@
   <meta charset="utf-8">
   <meta name="viewport" content="width=device-width,initial-scale=1">
   <title>agentgui</title>
-  <meta name="description" content="agentgui — live client for any acptoapi backend.">
-  <link rel="stylesheet" href="https://unpkg.com/anentrypoint-design@latest/dist/247420.css">
+  <meta name="description" content="agentgui — multi-agent client with same-origin server, in-process ccsniff history, and ACP chat.">
+  <link rel="stylesheet" href="https://unpkg.com/anentrypoint-design@0.0.127/dist/247420.css">
   <script type="importmap">
-    { "imports": { "anentrypoint-design": "https://unpkg.com/anentrypoint-design@latest/dist/247420.js" } }
+    { "imports": { "anentrypoint-design": "https://unpkg.com/anentrypoint-design@0.0.127/dist/247420.js" } }
   </script>
   <style>
     html, body { margin: 0; height: 100%; }

package/site/app/js/app.js

@@ -3,7 +3,7 @@ import * as B from './backend.js';
 
 installStyles().catch(() => {});
 
-const { AppShell, Topbar, Crumb, Side, Status, Chat, ChatComposer, Row, Panel, PageHeader, SearchInput, TextField, EventList } = C;
+const { AppShell, Topbar, Crumb, Side, Status, Chat, ChatComposer, Row, Panel, PageHeader, SearchInput, TextField, Select, Btn, EventList } = C;
 
 const state = {
   backend: B.getBackend(),
@@ -114,18 +114,16 @@ function view() {
 
   const crumbRight = state.tab === 'chat'
     ? [
-        h('select', {
-            key: 'modelsel',
-            onchange: (e) => { state.selectedModel = e.target.value; render(); },
-          },
-          h('option', { key: '__', value: '' }, '— model —'),
-          ...state.models.map(m =>
-            h('option', { key: m.id, value: m.id, selected: m.id === state.selectedModel }, m.id)
-          ),
-        ),
+        Select({
+          key: 'modelsel',
+          value: state.selectedModel,
+          placeholder: '— model —',
+          options: state.models.map(m => ({ value: m.id, label: m.id })),
+          onChange: (v) => { state.selectedModel = v; render(); },
+        }),
         state.chat.busy
-          ? h('a', { key: 'stop', onclick: cancelChat, style: 'cursor:pointer' }, '◼ stop')
-          : h('a', { key: 'new',  onclick: newChat,    style: 'cursor:pointer' }, '+ new'),
+          ? Btn({ key: 'stop', onClick: cancelChat, children: '◼ stop' })
+          : Btn({ key: 'new',  onClick: newChat,    children: '+ new' }),
         dot,
       ]
     : [dot];
@@ -169,13 +167,22 @@ function mainContent() {
 
 // ── chat ───────────────────────────────────────────────────────────────────
 function chatMain() {
-  const msgs = state.chat.messages.map((m, i) => ({
-    key: String(i),
-    who: m.role === 'user' ? 'you' : 'them',
-    name: m.role === 'assistant' ? (state.selectedModel || 'agent') : 'you',
-    time: m.time || '',
-    parts: [{ kind: 'text', text: m.content || '' }],
-  }));
+  const lastIdx = state.chat.messages.length - 1;
+  const msgs = state.chat.messages.map((m, i) => {
+    const isAssistant = m.role === 'assistant';
+    const isStreaming = state.chat.busy && i === lastIdx && isAssistant;
+    const isEmptyStreaming = isStreaming && !m.content;
+    return {
+      key: String(i),
+      who: isAssistant ? 'them' : 'you',
+      name: isAssistant ? (state.selectedModel || 'agent') : 'you',
+      time: m.time || '',
+      typing: isEmptyStreaming,
+      parts: isEmptyStreaming
+        ? undefined
+        : [{ kind: isAssistant ? 'md' : 'text', text: m.content || '' }],
+    };
+  });
 
   const composer = ChatComposer({
     value: state.chat.draft,
@@ -250,12 +257,11 @@ function historyMain() {
     Panel({
       title: state.events.length + ' events',
       children: EventList({
-        events: state.events.map((e, i) => ({
+        items: state.events.map((e, i) => ({
           key: 'ev' + i,
-          rank: String(i + 1).padStart(3, '0'),
+          code: String(i + 1).padStart(3, '0'),
           title: (e.text || '').slice(0, 200) || '(empty)',
           sub: new Date(e.ts).toLocaleString() + ' · ' + (e.role || '?') + ' · ' + (e.type || '?') + (e.tool ? ' · ⌘ ' + e.tool : ''),
-          rail: e.role === 'error' ? 'flame' : (e.role === 'user' ? 'green' : 'purple'),
         })),
       }),
     }),
@@ -334,16 +340,19 @@ function settingsMain() {
           onInput: (v) => { state.backendDraft = v; render(); },
         }),
         h('p', { key: 'hp', class: 'lede' }, (ok ? '● ' : '○ ') + JSON.stringify(state.health)),
-        h('button', {
+        Btn({
           key: 'savebtn',
-          onclick: () => {
+          primary: true,
+          onClick: (e) => {
+            e.preventDefault();
             B.setBackend(state.backendDraft);
             state.backend = state.backendDraft;
             state.health = { status: 'unknown' };
             render();
             init();
           },
-        }, 'save + reconnect'),
+          children: 'save + reconnect',
+        }),
       ],
     }),
     Panel({

package/site/app/js/backend.js

@@ -1,4 +1,6 @@
-// acptoapi backend client. Resolves base URL from ?backend= or localStorage or default.
+// agentgui backend client. Resolves base URL from ?backend= or localStorage or default
+// (same-origin). Talks to the local agentgui server: ccsniff history routes, /health,
+// and the /sync WebSocket for chat streaming.
 const KEY = 'agentgui.backend';
 const DEFAULT_BACKEND = '';