camofox-browser 1.0.0

package/CHANGELOG.md

@@ -0,0 +1,22 @@
+# Changelog
+
+## [1.0.0] - 2026-02-15
+
+### Changed
+- Complete TypeScript rewrite with strict mode
+- Modular architecture (routes/services/middleware/utils)
+- Independent repo (no longer a fork)
+
+### Added
+- Geo preset system with 8 built-in presets (us-east, us-west, japan, uk, germany, vietnam, singapore, australia)
+- Custom preset file support via CAMOFOX_PRESETS_FILE
+- Composite session keys for multi-context support
+- Tab session index for cross-session tab lookup
+
+### Removed
+- Unused dependencies (playwright, playwright-extra, puppeteer-extra-plugin-stealth)
+- ~200MB dependency weight reduction
+
+### Fixed
+- OpenClaw /snapshot ref annotation bug (now uses shared helper)
+- Session cleanup with prefix-based matching

package/LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2025 Jo, Inc
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

package/README.md

@@ -0,0 +1,328 @@
+# CamoFox Browser Server
+
+> Anti-detection browser server for AI agents — TypeScript REST API wrapping the [Camoufox](https://github.com/daijro/camoufox) stealth browser engine
+
+[![License: MIT](https://img.shields.io/badge/License-MIT-yellow.svg)](LICENSE)
+[![TypeScript](https://img.shields.io/badge/TypeScript-strict-blue)](tsconfig.json)
+[![Node](https://img.shields.io/badge/Node-18%2B-green)](package.json)
+
+## Table of Contents
+
+- [Why CamoFox?](#why-camofox)
+- [Features](#features)
+- [Quick Start](#quick-start)
+- [Architecture](#architecture)
+- [API Reference](#api-reference)
+- [Search Macros](#search-macros)
+- [Geo Presets](#geo-presets)
+- [Environment Variables](#environment-variables)
+- [Deployment](#deployment)
+- [Used With](#used-with)
+- [Project Structure](#project-structure)
+- [Contributing](#contributing)
+- [Credits](#credits)
+- [License](#license)
+
+## Why CamoFox?
+
+**The Problem**: Standard browser automation (Puppeteer, Playwright, Selenium) is easily detected by modern anti-bot systems. JavaScript-level patches are fragile and get bypassed quickly.
+
+**The Solution**: CamoFox Browser Server wraps [Camoufox](https://github.com/daijro/camoufox), a Firefox fork with **C++ engine-level fingerprint spoofing**. No JavaScript injection — anti-detection happens at the browser engine level.
+
+| Feature | Puppeteer/Playwright | CamoFox Browser Server |
+|---------|---------------------|------------------------|
+| Anti-detection | JavaScript patches (fragile) | C++ engine-level (robust) |
+| Fingerprint spoofing | Limited | Full (engine-level) |
+| Token efficiency | Raw HTML / screenshots | Accessibility snapshots (smaller + structured) |
+| Integration | Direct SDK | REST API for any language / AI agent |
+| AI agent support | Varies | MCP + OpenClaw compatible |
+
+## Features
+
+- **C++ Anti-Detection** — fingerprint spoofing at the Camoufox engine level (not JS injection)
+- **REST API** — language-agnostic HTTP endpoints for browser automation and AI agent integration
+- **Multi-Session** — concurrent isolated browser contexts per `userId` (defaults: max 50 sessions, max 10 tabs/session)
+- **Geo Presets** — 8 built-in region presets (locale/timezone/geolocation) + custom presets file
+- **14 Search Macros** — Google, YouTube, Amazon, Reddit (search + subreddit JSON), Wikipedia, Twitter, Yelp, Spotify, Netflix, LinkedIn, Instagram, TikTok, Twitch
+- **Element Refs** — accessibility snapshots annotated with stable `eN` element references for precise interaction
+- **Cookie Persistence** — import Netscape/Playwright-style cookies into a session (optional, gated by API key)
+- **OpenClaw Plugin** — OpenClaw-compatible endpoints (`/start`, `/tabs/open`, `/act`, etc.)
+- **TypeScript** — strict mode, typed request shapes, modular Express routes
+
+## Quick Start
+
+### From Source
+
+```bash
+git clone https://github.com/redf0x1/camofox-browser.git
+cd camofox-browser
+npm install
+npm run build
+npm start
+```
+
+### Using npm (CLI)
+
+This is a **server**, not a browser automation library. Most users should run it from source or Docker.
+
+If you want a minimal CLI wrapper that starts the server (via the package `bin`):
+
+```bash
+npm install -g camofox-browser
+camofox-browser
+```
+
+Or one-off:
+
+```bash
+npx camofox-browser
+```
+
+### Using Docker
+
+```bash
+docker build -t camofox-browser .
+docker run -p 9377:9377 camofox-browser
+```
+
+### Using Docker Compose
+
+```yaml
+services:
+  camofox-browser:
+    build: .
+    ports:
+      - "9377:9377"
+    environment:
+      CAMOFOX_PORT: "9377"
+      # Optional auth gates
+      # CAMOFOX_API_KEY: "change-me"
+      # CAMOFOX_ADMIN_KEY: "change-me"
+      # Optional: proxy routing (also enables Camoufox geoip mode)
+      # PROXY_HOST: ""
+      # PROXY_PORT: ""
+      # PROXY_USERNAME: ""
+      # PROXY_PASSWORD: ""
+```
+
+### Verify
+
+```bash
+curl http://localhost:9377/health
+# {"ok":true,"engine":"camoufox","browserConnected":true}
+```
+
+## Architecture
+
+```
+AI Agent (MCP / OpenClaw / REST Client)
+    │
+    ▼ HTTP REST API (port 9377)
+┌──────────────────────────────────────────┐
+│          CamoFox Browser Server          │
+│          (Express + TypeScript)          │
+├──────────────────────────────────────────┤
+│ Routes                 Services          │
+│  ├── Core API           ├── Browser      │
+│  └── OpenClaw compat    ├── Session      │
+│                         └── Tab ops      │
+├──────────────────────────────────────────┤
+│        Camoufox Engine (anti-detect)     │
+│   Firefox fork + engine-level spoofing   │
+└──────────────────────────────────────────┘
+```
+
+## API Reference
+
+Base URL: `http://localhost:9377`
+
+### Core Endpoints
+
+Note: For any endpoint that targets an existing tab (`/tabs/:tabId/...`), the server resolves `tabId` **within a `userId` scope**. If you omit `userId`, you will typically get `404 Tab not found`.
+
+| Method | Endpoint | Description | Required | Auth |
+|--------|----------|-------------|----------|------|
+| POST | `/sessions/:userId/cookies` | Import cookies into a user session (Playwright cookie objects) | Path: `userId`; Body: `{ "cookies": Cookie[] }` | `Authorization: Bearer $CAMOFOX_API_KEY` |
+| GET | `/health` | Health check (also pre-launches the browser) | None | None |
+| GET | `/presets` | List available geo presets (built-in + custom) | None | None |
+| POST | `/tabs` | Create a new tab (supports `preset` + per-field overrides) | Body: `userId` + (`sessionKey` or `listItemId`) | None |
+| GET | `/tabs?userId=...` | List all tabs for a user (OpenClaw-compatible response shape) | Query: `userId` | None |
+| POST | `/tabs/:tabId/navigate` | Navigate to a URL, or expand a search `macro` + `query` | Body: `userId` + (`url` or `macro`) | None |
+| GET | `/tabs/:tabId/snapshot?userId=...` | Accessibility snapshot annotated with `eN` element refs | Query: `userId` | None |
+| POST | `/tabs/:tabId/wait` | Wait for page readiness (DOM + optional network idle) | Body: `userId` | None |
+| POST | `/tabs/:tabId/click` | Click by `ref` (e.g. `e12`) or CSS `selector` | Body: `userId` + (`ref` or `selector`) | None |
+| POST | `/tabs/:tabId/type` | Type into an element by `ref` or CSS `selector` | Body: `userId` + (`ref` or `selector`) + `text` | None |
+| POST | `/tabs/:tabId/press` | Press a key (e.g. `Enter`, `Escape`) | Body: `userId` + `key` | None |
+| POST | `/tabs/:tabId/scroll` | Scroll up/down by pixels | Body: `userId` | None |
+| POST | `/tabs/:tabId/back` | Go back | Body: `userId` | None |
+| POST | `/tabs/:tabId/forward` | Go forward | Body: `userId` | None |
+| POST | `/tabs/:tabId/refresh` | Refresh | Body: `userId` | None |
+| GET | `/tabs/:tabId/links?userId=...&limit=50&offset=0` | Extract links (paginated) | Query: `userId` | None |
+| GET | `/tabs/:tabId/screenshot?userId=...&fullPage=true` | Screenshot (PNG bytes) | Query: `userId` | None |
+| GET | `/tabs/:tabId/stats?userId=...` | Tab stats + visited URLs | Query: `userId` | None |
+| DELETE | `/tabs/:tabId` | Close a tab (expects JSON body: `{ "userId": "..." }`) | Body: `userId` | None |
+| DELETE | `/tabs/group/:listItemId` | Close a tab group (expects JSON body: `{ "userId": "..." }`) | Body: `userId` | None |
+| DELETE | `/sessions/:userId` | Close all sessions for a user | Path: `userId` | None |
+
+### OpenClaw Endpoints
+
+OpenClaw-compatible aliases (used by the OpenClaw plugin).
+
+| Method | Endpoint | Description | Required | Auth |
+|--------|----------|-------------|----------|------|
+| GET | `/` | Status (alias of `/health`) | None | None |
+| POST | `/tabs/open` | Open tab (OpenClaw request/response shape) | Body: `userId` + `url` | None |
+| POST | `/start` | Start browser engine | None | None |
+| POST | `/stop` | Stop browser engine | None | `x-admin-key: $CAMOFOX_ADMIN_KEY` |
+| POST | `/navigate` | Navigate (OpenClaw request shape: `targetId` in body) | Body: `userId` + `targetId` + `url` | None |
+| GET | `/snapshot?userId=...&targetId=...` | Snapshot (OpenClaw response shape) | Query: `userId` + `targetId` | None |
+| POST | `/act` | Combined actions (`click`, `type`, `press`, `scroll`, `scrollIntoView`, `hover`, `wait`, `close`) | Body: `userId` + `targetId` + `kind` | None |
+
+## Search Macros
+
+Use macros via `POST /tabs/:tabId/navigate` with `{ "macro": "@google_search", "query": "..." }`.
+
+| Macro | Engine |
+|-------|--------|
+| `@google_search` | Google |
+| `@youtube_search` | YouTube |
+| `@amazon_search` | Amazon |
+| `@reddit_search` | Reddit (JSON) |
+| `@reddit_subreddit` | Reddit subreddit (JSON) |
+| `@wikipedia_search` | Wikipedia |
+| `@twitter_search` | Twitter/X |
+| `@yelp_search` | Yelp |
+| `@spotify_search` | Spotify |
+| `@netflix_search` | Netflix |
+| `@linkedin_search` | LinkedIn |
+| `@instagram_search` | Instagram tags |
+| `@tiktok_search` | TikTok |
+| `@twitch_search` | Twitch |
+
+## Geo Presets
+
+Built-in presets (also exposed via `GET /presets`):
+
+| Preset | Locale | Timezone | Location |
+|--------|--------|----------|----------|
+| `us-east` | `en-US` | `America/New_York` | New York (40.7128, -74.0060) |
+| `us-west` | `en-US` | `America/Los_Angeles` | Los Angeles (34.0522, -118.2437) |
+| `japan` | `ja-JP` | `Asia/Tokyo` | Tokyo (35.6895, 139.6917) |
+| `uk` | `en-GB` | `Europe/London` | London (51.5074, -0.1278) |
+| `germany` | `de-DE` | `Europe/Berlin` | Berlin (52.5200, 13.4050) |
+| `vietnam` | `vi-VN` | `Asia/Ho_Chi_Minh` | Ho Chi Minh City (10.8231, 106.6297) |
+| `singapore` | `en-SG` | `Asia/Singapore` | Singapore (1.3521, 103.8198) |
+| `australia` | `en-AU` | `Australia/Sydney` | Sydney (-33.8688, 151.2093) |
+
+Create a tab with a preset:
+
+```bash
+curl -X POST http://localhost:9377/tabs \
+  -H 'Content-Type: application/json' \
+  -d '{"userId":"agent1","sessionKey":"task1","preset":"japan","url":"https://example.com"}'
+```
+
+Custom presets: set `CAMOFOX_PRESETS_FILE=/path/to/presets.json` (JSON object; keys become preset names).
+
+## Environment Variables
+
+| Variable | Default | Description |
+|----------|---------|-------------|
+| `CAMOFOX_PORT` | `9377` | Server port |
+| `PORT` | (optional) | Alternative port env var (common in PaaS) |
+| `NODE_ENV` | `development` | Node environment |
+| `CAMOFOX_ADMIN_KEY` | (empty) | Required for `POST /stop` (sent via `x-admin-key`) |
+| `CAMOFOX_API_KEY` | (empty) | Enables cookie import endpoint; sent via `Authorization: Bearer ...` |
+| `CAMOFOX_COOKIES_DIR` | `~/.camofox/cookies` | Directory used by the OpenClaw plugin cookie tool |
+| `CAMOFOX_PRESETS_FILE` | (unset) | Optional JSON file defining/overriding geo presets |
+| `CAMOFOX_SESSION_TIMEOUT` | `1800000` | Session idle timeout in ms (min `60000`) |
+| `CAMOFOX_MAX_SESSIONS` | `50` | Maximum concurrent sessions |
+| `CAMOFOX_MAX_TABS` | `10` | Maximum tabs per session |
+| `PROXY_HOST` | (empty) | Proxy host (enables proxy routing) |
+| `PROXY_PORT` | (empty) | Proxy port |
+| `PROXY_USERNAME` | (empty) | Proxy username |
+| `PROXY_PASSWORD` | (empty) | Proxy password |
+
+## Deployment
+
+### Docker (Recommended)
+
+```bash
+docker build -t camofox-browser .
+docker run -p 9377:9377 \
+  -e CAMOFOX_PORT=9377 \
+  camofox-browser
+```
+
+### Fly.io
+
+This repo includes a starter `fly.toml` for one-command deploys.
+
+```bash
+fly launch
+fly deploy
+```
+
+### Railway
+
+- Create a new project → deploy from this GitHub repo
+- Set `CAMOFOX_PORT=9377` (Railway will also provide `PORT`, which is supported)
+- Ensure the service exposes port `9377`
+
+### Render
+
+- Create a new Web Service → deploy from this GitHub repo
+- Use Docker (recommended) and expose port `9377`
+- Set `CAMOFOX_PORT=9377` (or rely on Render `PORT`)
+
+### System Requirements
+
+- Node.js 18+ (20+ recommended)
+- 2GB+ RAM (browser + contexts require significant memory)
+- Linux recommended for production; macOS is fine for development
+
+## Used With
+
+| Project | Description |
+|---------|-------------|
+| [CamoFox MCP](https://github.com/redf0x1/camofox-mcp) | MCP (Model Context Protocol) server for Claude, Cursor, VS Code |
+| [OpenClaw](https://openclaw.ai) | Open-source AI agent framework (compat endpoints included) |
+| [Camoufox](https://github.com/daijro/camoufox) | Anti-detection Firefox browser engine |
+
+## Project Structure
+
+```text
+src/
+├── server.ts           # Express app entry point
+├── types.ts            # Shared TypeScript interfaces
+├── routes/
+│   ├── core.ts         # Core REST API (~21 endpoints)
+│   └── openclaw.ts     # OpenClaw compatibility (~7 endpoints)
+├── services/
+│   ├── browser.ts      # Browser lifecycle (singleton)
+│   ├── session.ts      # Session management + limits
+│   └── tab.ts          # Tab operations (snapshot/click/type/etc.)
+├── middleware/         # Auth, logging, errors
+└── utils/              # Config, presets, macros
+```
+
+## Contributing
+
+See [CONTRIBUTING.md](CONTRIBUTING.md)
+
+## Credits
+
+This project is based on [camofox-browser](https://github.com/jo-inc/camofox-browser) by [Jo Inc](https://github.com/jo-inc) (YC W24) and the [Camoufox](https://github.com/daijro/camoufox) anti-detection browser engine by [daijro](https://github.com/daijro).
+
+- [Camoufox](https://camoufox.com) - Firefox-based browser with C++ anti-detection
+- [Donate to Camoufox's original creator daijro](https://camoufox.com/about/)
+- [OpenClaw](https://openclaw.ai) - Open-source AI agent framework
+
+## License
+
+[MIT](LICENSE)
+
+## Crypto Scam Warning
+
+Sketchy people are doing sketchy things with crypto tokens named "Camofox" now that this project is getting attention. **Camofox is not a crypto project and will never be one.** Any token, coin, or NFT using the Camofox name has nothing to do with us.
+

package/bin/camofox-browser.js

@@ -0,0 +1,6 @@
+#!/usr/bin/env node
+
+// Minimal CLI entrypoint for running the server via `npx camofox-browser`.
+// The server starts listening as a side effect of importing the built entry.
+
+require('../dist/src/server.js');

package/dist/src/middleware/auth.d.ts

@@ -0,0 +1,6 @@
+import type { Request } from 'express';
+export declare function timingSafeCompare(a: unknown, b: unknown): boolean;
+export declare function getBearerToken(req: Request): string | null;
+export declare function isAuthorizedWithApiKey(req: Request, apiKey: string): boolean;
+export declare function isAuthorizedWithAdminKey(req: Request, adminKey: string): boolean;
+//# sourceMappingURL=auth.d.ts.map

package/dist/src/middleware/auth.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth.d.ts","sourceRoot":"","sources":["../../../src/middleware/auth.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,SAAS,CAAC;AAEvC,wBAAgB,iBAAiB,CAAC,CAAC,EAAE,OAAO,EAAE,CAAC,EAAE,OAAO,GAAG,OAAO,CAUjE;AAED,wBAAgB,cAAc,CAAC,GAAG,EAAE,OAAO,GAAG,MAAM,GAAG,IAAI,CAI1D;AAED,wBAAgB,sBAAsB,CAAC,GAAG,EAAE,OAAO,EAAE,MAAM,EAAE,MAAM,GAAG,OAAO,CAI5E;AAED,wBAAgB,wBAAwB,CAAC,GAAG,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,GAAG,OAAO,CAKhF"}

package/dist/src/middleware/auth.js

@@ -0,0 +1,41 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.timingSafeCompare = timingSafeCompare;
+exports.getBearerToken = getBearerToken;
+exports.isAuthorizedWithApiKey = isAuthorizedWithApiKey;
+exports.isAuthorizedWithAdminKey = isAuthorizedWithAdminKey;
+const node_crypto_1 = __importDefault(require("node:crypto"));
+function timingSafeCompare(a, b) {
+    if (typeof a !== 'string' || typeof b !== 'string')
+        return false;
+    const bufA = Buffer.from(a);
+    const bufB = Buffer.from(b);
+    if (bufA.length !== bufB.length) {
+        // Keep timing similar even for length mismatch.
+        node_crypto_1.default.timingSafeEqual(bufA, bufA);
+        return false;
+    }
+    return node_crypto_1.default.timingSafeEqual(bufA, bufB);
+}
+function getBearerToken(req) {
+    const auth = String(req.headers['authorization'] || '');
+    const match = auth.match(/^Bearer\s+(.+)$/i);
+    return match ? match[1] : null;
+}
+function isAuthorizedWithApiKey(req, apiKey) {
+    const token = getBearerToken(req);
+    if (!token)
+        return false;
+    return timingSafeCompare(token, apiKey);
+}
+function isAuthorizedWithAdminKey(req, adminKey) {
+    const header = req.headers['x-admin-key'];
+    if (!header)
+        return false;
+    const value = Array.isArray(header) ? header[0] : String(header);
+    return timingSafeCompare(value, adminKey);
+}
+//# sourceMappingURL=auth.js.map

package/dist/src/middleware/auth.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth.js","sourceRoot":"","sources":["../../../src/middleware/auth.ts"],"names":[],"mappings":";;;;;AAGA,8CAUC;AAED,wCAIC;AAED,wDAIC;AAED,4DAKC;AAhCD,8DAAiC;AAGjC,SAAgB,iBAAiB,CAAC,CAAU,EAAE,CAAU;IACvD,IAAI,OAAO,CAAC,KAAK,QAAQ,IAAI,OAAO,CAAC,KAAK,QAAQ;QAAE,OAAO,KAAK,CAAC;IACjE,MAAM,IAAI,GAAG,MAAM,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAC5B,MAAM,IAAI,GAAG,MAAM,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAC5B,IAAI,IAAI,CAAC,MAAM,KAAK,IAAI,CAAC,MAAM,EAAE,CAAC;QACjC,gDAAgD;QAChD,qBAAM,CAAC,eAAe,CAAC,IAAI,EAAE,IAAI,CAAC,CAAC;QACnC,OAAO,KAAK,CAAC;IACd,CAAC;IACD,OAAO,qBAAM,CAAC,eAAe,CAAC,IAAI,EAAE,IAAI,CAAC,CAAC;AAC3C,CAAC;AAED,SAAgB,cAAc,CAAC,GAAY;IAC1C,MAAM,IAAI,GAAG,MAAM,CAAC,GAAG,CAAC,OAAO,CAAC,eAAe,CAAC,IAAI,EAAE,CAAC,CAAC;IACxD,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,kBAAkB,CAAC,CAAC;IAC7C,OAAO,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC;AAChC,CAAC;AAED,SAAgB,sBAAsB,CAAC,GAAY,EAAE,MAAc;IAClE,MAAM,KAAK,GAAG,cAAc,CAAC,GAAG,CAAC,CAAC;IAClC,IAAI,CAAC,KAAK;QAAE,OAAO,KAAK,CAAC;IACzB,OAAO,iBAAiB,CAAC,KAAK,EAAE,MAAM,CAAC,CAAC;AACzC,CAAC;AAED,SAAgB,wBAAwB,CAAC,GAAY,EAAE,QAAgB;IACtE,MAAM,MAAM,GAAG,GAAG,CAAC,OAAO,CAAC,aAAa,CAAC,CAAC;IAC1C,IAAI,CAAC,MAAM;QAAE,OAAO,KAAK,CAAC;IAC1B,MAAM,KAAK,GAAG,KAAK,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;IACjE,OAAO,iBAAiB,CAAC,KAAK,EAAE,QAAQ,CAAC,CAAC;AAC3C,CAAC"}

package/dist/src/middleware/errors.d.ts

@@ -0,0 +1,5 @@
+import type { NextFunction, Request, Response } from 'express';
+export declare function safeError(err: unknown): string;
+export declare function errorMiddleware(err: unknown, req: Request, res: Response, _next: NextFunction): void;
+export declare function installCrashHandlers(): void;
+//# sourceMappingURL=errors.d.ts.map

package/dist/src/middleware/errors.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"errors.d.ts","sourceRoot":"","sources":["../../../src/middleware/errors.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,YAAY,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,SAAS,CAAC;AAO/D,wBAAgB,SAAS,CAAC,GAAG,EAAE,OAAO,GAAG,MAAM,CAS9C;AAED,wBAAgB,eAAe,CAAC,GAAG,EAAE,OAAO,EAAE,GAAG,EAAE,OAAO,EAAE,GAAG,EAAE,QAAQ,EAAE,KAAK,EAAE,YAAY,GAAG,IAAI,CAIpG;AAED,wBAAgB,oBAAoB,IAAI,IAAI,CAQ3C"}

package/dist/src/middleware/errors.js

@@ -0,0 +1,33 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.safeError = safeError;
+exports.errorMiddleware = errorMiddleware;
+exports.installCrashHandlers = installCrashHandlers;
+const config_1 = require("../utils/config");
+const logging_1 = require("./logging");
+const CONFIG = (0, config_1.loadConfig)();
+function safeError(err) {
+    const message = err instanceof Error ? err.message : String(err);
+    const stack = err instanceof Error ? err.stack : undefined;
+    if (CONFIG.nodeEnv === 'production') {
+        (0, logging_1.log)('error', 'internal error', { error: message, stack });
+        return 'Internal server error';
+    }
+    return message;
+}
+function errorMiddleware(err, req, res, _next) {
+    (0, logging_1.log)('error', 'request error', { reqId: req.reqId, path: req.path, error: safeError(err) });
+    if (res.headersSent)
+        return;
+    res.status(500).json({ error: safeError(err) });
+}
+function installCrashHandlers() {
+    process.on('uncaughtException', (err) => {
+        (0, logging_1.log)('error', 'uncaughtException', { error: err.message, stack: err.stack });
+        process.exit(1);
+    });
+    process.on('unhandledRejection', (reason) => {
+        (0, logging_1.log)('error', 'unhandledRejection', { reason: String(reason) });
+    });
+}
+//# sourceMappingURL=errors.js.map

package/dist/src/middleware/errors.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"errors.js","sourceRoot":"","sources":["../../../src/middleware/errors.ts"],"names":[],"mappings":";;AAOA,8BASC;AAED,0CAIC;AAED,oDAQC;AA9BD,4CAA6C;AAC7C,uCAAgC;AAEhC,MAAM,MAAM,GAAG,IAAA,mBAAU,GAAE,CAAC;AAE5B,SAAgB,SAAS,CAAC,GAAY;IACrC,MAAM,OAAO,GAAG,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;IACjE,MAAM,KAAK,GAAG,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC;IAE3D,IAAI,MAAM,CAAC,OAAO,KAAK,YAAY,EAAE,CAAC;QACrC,IAAA,aAAG,EAAC,OAAO,EAAE,gBAAgB,EAAE,EAAE,KAAK,EAAE,OAAO,EAAE,KAAK,EAAE,CAAC,CAAC;QAC1D,OAAO,uBAAuB,CAAC;IAChC,CAAC;IACD,OAAO,OAAO,CAAC;AAChB,CAAC;AAED,SAAgB,eAAe,CAAC,GAAY,EAAE,GAAY,EAAE,GAAa,EAAE,KAAmB;IAC7F,IAAA,aAAG,EAAC,OAAO,EAAE,eAAe,EAAE,EAAE,KAAK,EAAE,GAAG,CAAC,KAAK,EAAE,IAAI,EAAE,GAAG,CAAC,IAAI,EAAE,KAAK,EAAE,SAAS,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;IAC3F,IAAI,GAAG,CAAC,WAAW;QAAE,OAAO;IAC5B,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,SAAS,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;AACjD,CAAC;AAED,SAAgB,oBAAoB;IACnC,OAAO,CAAC,EAAE,CAAC,mBAAmB,EAAE,CAAC,GAAU,EAAE,EAAE;QAC9C,IAAA,aAAG,EAAC,OAAO,EAAE,mBAAmB,EAAE,EAAE,KAAK,EAAE,GAAG,CAAC,OAAO,EAAE,KAAK,EAAE,GAAG,CAAC,KAAK,EAAE,CAAC,CAAC;QAC5E,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IACjB,CAAC,CAAC,CAAC;IACH,OAAO,CAAC,EAAE,CAAC,oBAAoB,EAAE,CAAC,MAAe,EAAE,EAAE;QACpD,IAAA,aAAG,EAAC,OAAO,EAAE,oBAAoB,EAAE,EAAE,MAAM,EAAE,MAAM,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC;IAChE,CAAC,CAAC,CAAC;AACJ,CAAC"}

package/dist/src/middleware/logging.d.ts

@@ -0,0 +1,14 @@
+import type { NextFunction, Request, Response } from 'express';
+export type LogLevel = 'info' | 'warn' | 'error';
+export declare function log(level: LogLevel, msg: string, fields?: Record<string, unknown>): void;
+export declare function loggingMiddleware(req: Request, res: Response, next: NextFunction): void;
+export interface StatsBeaconFields {
+    sessions: number;
+    tabs: number;
+    rssBytes: number;
+    heapUsedBytes: number;
+    uptimeSeconds: number;
+    browserConnected: boolean;
+}
+export declare function startStatsBeacon(getFields: () => StatsBeaconFields): NodeJS.Timeout;
+//# sourceMappingURL=logging.d.ts.map

package/dist/src/middleware/logging.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"logging.d.ts","sourceRoot":"","sources":["../../../src/middleware/logging.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,YAAY,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,SAAS,CAAC;AAE/D,MAAM,MAAM,QAAQ,GAAG,MAAM,GAAG,MAAM,GAAG,OAAO,CAAC;AAEjD,wBAAgB,GAAG,CAAC,KAAK,EAAE,QAAQ,EAAE,GAAG,EAAE,MAAM,EAAE,MAAM,GAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAM,GAAG,IAAI,CAa5F;AAED,wBAAgB,iBAAiB,CAAC,GAAG,EAAE,OAAO,EAAE,GAAG,EAAE,QAAQ,EAAE,IAAI,EAAE,YAAY,GAAG,IAAI,CAqBvF;AAED,MAAM,WAAW,iBAAiB;IACjC,QAAQ,EAAE,MAAM,CAAC;IACjB,IAAI,EAAE,MAAM,CAAC;IACb,QAAQ,EAAE,MAAM,CAAC;IACjB,aAAa,EAAE,MAAM,CAAC;IACtB,aAAa,EAAE,MAAM,CAAC;IACtB,gBAAgB,EAAE,OAAO,CAAC;CAC1B;AAED,wBAAgB,gBAAgB,CAAC,SAAS,EAAE,MAAM,iBAAiB,GAAG,MAAM,CAAC,OAAO,CAanF"}

package/dist/src/middleware/logging.js

@@ -0,0 +1,57 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.log = log;
+exports.loggingMiddleware = loggingMiddleware;
+exports.startStatsBeacon = startStatsBeacon;
+const node_crypto_1 = __importDefault(require("node:crypto"));
+function log(level, msg, fields = {}) {
+    const entry = {
+        ts: new Date().toISOString(),
+        level,
+        msg,
+        ...fields,
+    };
+    const line = JSON.stringify(entry);
+    if (level === 'error') {
+        process.stderr.write(line + '\n');
+    }
+    else {
+        process.stdout.write(line + '\n');
+    }
+}
+function loggingMiddleware(req, res, next) {
+    if (req.path === '/health')
+        return next();
+    const reqId = node_crypto_1.default.randomUUID().slice(0, 8);
+    req.reqId = reqId;
+    req.startTime = Date.now();
+    const bodyUserId = req.body?.userId;
+    const queryUserId = req.query?.userId;
+    const userId = (bodyUserId ?? queryUserId ?? '-');
+    log('info', 'req', { reqId, method: req.method, path: req.path, userId });
+    const origEnd = res.end.bind(res);
+    res.end = function patchedEnd(...args) {
+        const ms = Date.now() - (req.startTime ?? Date.now());
+        log('info', 'res', { reqId, status: res.statusCode, ms });
+        return origEnd(...args);
+    };
+    next();
+}
+function startStatsBeacon(getFields) {
+    return setInterval(() => {
+        const mem = process.memoryUsage();
+        const fields = getFields();
+        log('info', 'stats', {
+            sessions: fields.sessions,
+            tabs: fields.tabs,
+            rssBytes: mem.rss,
+            heapUsedBytes: mem.heapUsed,
+            uptimeSeconds: Math.floor(process.uptime()),
+            browserConnected: fields.browserConnected,
+        });
+    }, 5 * 60_000);
+}
+//# sourceMappingURL=logging.js.map

package/dist/src/middleware/logging.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"logging.js","sourceRoot":"","sources":["../../../src/middleware/logging.ts"],"names":[],"mappings":";;;;;AAKA,kBAaC;AAED,8CAqBC;AAWD,4CAaC;AAjED,8DAAiC;AAKjC,SAAgB,GAAG,CAAC,KAAe,EAAE,GAAW,EAAE,SAAkC,EAAE;IACrF,MAAM,KAAK,GAAG;QACb,EAAE,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;QAC5B,KAAK;QACL,GAAG;QACH,GAAG,MAAM;KACT,CAAC;IACF,MAAM,IAAI,GAAG,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC,CAAC;IACnC,IAAI,KAAK,KAAK,OAAO,EAAE,CAAC;QACvB,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,IAAI,GAAG,IAAI,CAAC,CAAC;IACnC,CAAC;SAAM,CAAC;QACP,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,IAAI,GAAG,IAAI,CAAC,CAAC;IACnC,CAAC;AACF,CAAC;AAED,SAAgB,iBAAiB,CAAC,GAAY,EAAE,GAAa,EAAE,IAAkB;IAChF,IAAI,GAAG,CAAC,IAAI,KAAK,SAAS;QAAE,OAAO,IAAI,EAAE,CAAC;IAE1C,MAAM,KAAK,GAAG,qBAAM,CAAC,UAAU,EAAE,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC;IAC9C,GAAG,CAAC,KAAK,GAAG,KAAK,CAAC;IAClB,GAAG,CAAC,SAAS,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;IAE3B,MAAM,UAAU,GAAI,GAAG,CAAC,IAAoD,EAAE,MAAM,CAAC;IACrF,MAAM,WAAW,GAAI,GAAG,CAAC,KAAqD,EAAE,MAAM,CAAC;IACvF,MAAM,MAAM,GAAG,CAAC,UAAU,IAAI,WAAW,IAAI,GAAG,CAAY,CAAC;IAE7D,GAAG,CAAC,MAAM,EAAE,KAAK,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,GAAG,CAAC,MAAM,EAAE,IAAI,EAAE,GAAG,CAAC,IAAI,EAAE,MAAM,EAAE,CAAC,CAAC;IAE1E,MAAM,OAAO,GAAG,GAAG,CAAC,GAAG,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;IAClC,GAAG,CAAC,GAAG,GAAG,SAAS,UAAU,CAAC,GAAG,IAAe;QAC/C,MAAM,EAAE,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,CAAC,GAAG,CAAC,SAAS,IAAI,IAAI,CAAC,GAAG,EAAE,CAAC,CAAC;QACtD,GAAG,CAAC,MAAM,EAAE,KAAK,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,GAAG,CAAC,UAAU,EAAE,EAAE,EAAE,CAAC,CAAC;QAC1D,OAAO,OAAO,CAAC,GAAI,IAAoC,CAAC,CAAC;IAC1D,CAAC,CAAC;IAEF,IAAI,EAAE,CAAC;AACR,CAAC;AAWD,SAAgB,gBAAgB,CAAC,SAAkC;IAClE,OAAO,WAAW,CAAC,GAAG,EAAE;QACvB,MAAM,GAAG,GAAG,OAAO,CAAC,WAAW,EAAE,CAAC;QAClC,MAAM,MAAM,GAAG,SAAS,EAAE,CAAC;QAC3B,GAAG,CAAC,MAAM,EAAE,OAAO,EAAE;YACpB,QAAQ,EAAE,MAAM,CAAC,QAAQ;YACzB,IAAI,EAAE,MAAM,CAAC,IAAI;YACjB,QAAQ,EAAE,GAAG,CAAC,GAAG;YACjB,aAAa,EAAE,GAAG,CAAC,QAAQ;YAC3B,aAAa,EAAE,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,MAAM,EAAE,CAAC;YAC3C,gBAAgB,EAAE,MAAM,CAAC,gBAAgB;SACzC,CAAC,CAAC;IACJ,CAAC,EAAE,CAAC,GAAG,MAAM,CAAC,CAAC;AAChB,CAAC"}

package/dist/src/routes/core.d.ts

@@ -0,0 +1,3 @@
+declare const router: import("express-serve-static-core").Router;
+export default router;
+//# sourceMappingURL=core.d.ts.map

package/dist/src/routes/core.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"core.d.ts","sourceRoot":"","sources":["../../../src/routes/core.ts"],"names":[],"mappings":"AA4CA,QAAA,MAAM,MAAM,4CAAW,CAAC;AA0iBxB,eAAe,MAAM,CAAC"}