cloud-ide-cide 2.0.34

package/deployer/node/upload-api.js

@@ -0,0 +1,265 @@
+/**
+ * Cloud IDE — Node.js API upload receiver (standalone Express app).
+ * Lives at: {server_root}/.cide/scripts/upload-api.js
+ *
+ * Reads config from:  ../.cide/config.json   (token, paths)
+ * Writes state to:    ../.cide/deployments.json
+ * Stores releases in: ../.cide/releases/{appCode}/{version}/
+ * Stores backups in:  ../.cide/backups/{appCode}/{version}.zip
+ * Logs to:            ../.cide/logs/deploy.log
+ * Symlinks:           {server_root}/current/{appCode} → active release
+ *
+ * Endpoints (all except /health require Authorization: Bearer <token>):
+ *
+ *   POST /upload       (multipart/form-data)  — upload & deploy a zip
+ *   GET  /history?appCode=xxx                 — deployment history
+ *   POST /rollback     { appCode, version }   — switch to previous release
+ *   GET  /health                              — uptime check (no auth)
+ */
+
+const express = require('express');
+const multer = require('multer');
+const path = require('path');
+const fs = require('fs');
+const AdmZip = require('adm-zip');
+
+const app = express();
+app.use(express.json());
+
+// ── Resolve .cide/ root ──────────────────────────────────────────────────────
+const CIDE_DIR = process.env.CIDE_UPLOAD_BASE_PATH || path.resolve(__dirname, '..');
+const CONFIG_PATH = path.join(CIDE_DIR, 'config.json');
+
+let config = {};
+try { config = JSON.parse(fs.readFileSync(CONFIG_PATH, 'utf8')); } catch { /* no config yet */ }
+
+const TOKEN       = config.token || process.env.CIDE_UPLOAD_TOKEN || '';
+const PORT        = process.env.CIDE_UPLOAD_PORT || process.env.PORT || 4500;
+const RELEASES    = config.paths?.releases || path.join(CIDE_DIR, 'releases');
+const BACKUPS     = config.paths?.backups  || path.join(CIDE_DIR, 'backups');
+const LOGS        = config.paths?.logs     || path.join(CIDE_DIR, 'logs');
+const CURRENT_DIR = config.paths?.current  || path.join(path.dirname(CIDE_DIR), 'current');
+const DEPLOYMENTS = path.join(CIDE_DIR, 'deployments.json');
+
+const upload = multer({ dest: path.join(CIDE_DIR, 'tmp') });
+
+// ── Helpers ───────────────────────────────────────────────────────────────────
+
+function loadDeployments() {
+  try { return JSON.parse(fs.readFileSync(DEPLOYMENTS, 'utf8')); } catch { return { apps: {} }; }
+}
+
+function saveDeployments(data) {
+  fs.writeFileSync(DEPLOYMENTS, JSON.stringify(data, null, 2));
+}
+
+function appendLog(message) {
+  const logFile = path.join(LOGS, 'deploy.log');
+  const line = `${new Date().toISOString()}  ${message}\n`;
+  try { fs.appendFileSync(logFile, line); } catch { /* logs dir may not exist yet */ }
+}
+
+function switchCurrent(currentPath, releasePath) {
+  fs.mkdirSync(path.dirname(currentPath), { recursive: true });
+  try {
+    const stat = fs.lstatSync(currentPath);
+    if (stat.isSymbolicLink()) {
+      fs.unlinkSync(currentPath);
+    } else if (stat.isDirectory()) {
+      fs.renameSync(currentPath, `${currentPath}_bak_${Date.now()}`);
+    }
+  } catch { /* doesn't exist yet */ }
+
+  try {
+    fs.symlinkSync(releasePath, currentPath, 'junction');
+  } catch {
+    copyRecursive(releasePath, currentPath);
+  }
+}
+
+function copyRecursive(src, dst) {
+  fs.mkdirSync(dst, { recursive: true });
+  for (const entry of fs.readdirSync(src, { withFileTypes: true })) {
+    const srcPath = path.join(src, entry.name);
+    const dstPath = path.join(dst, entry.name);
+    if (entry.isDirectory()) {
+      copyRecursive(srcPath, dstPath);
+    } else {
+      fs.copyFileSync(srcPath, dstPath);
+    }
+  }
+}
+
+// ── Auth middleware ───────────────────────────────────────────────────────────
+function authGuard(req, res, next) {
+  if (!TOKEN) {
+    return res.status(500).json({ status: 'FAILED', message: 'Server not configured. Run: cide server-init' });
+  }
+  const auth = req.headers.authorization || '';
+  const match = auth.match(/Bearer\s+(.+)$/i);
+  if (!match || match[1] !== TOKEN) {
+    return res.status(401).json({ status: 'FAILED', message: 'Unauthorized upload request.' });
+  }
+  next();
+}
+
+// ═══════════════════════════════════════════════════════════════════════════════
+// ── Upload ────────────────────────────────────────────────────────────────────
+// ═══════════════════════════════════════════════════════════════════════════════
+app.post('/upload', authGuard, upload.single('file'), (req, res) => {
+  try {
+    if (!req.file) {
+      return res.status(400).json({ status: 'FAILED', message: 'No file uploaded.' });
+    }
+
+    const appCode = (req.body.appCode || '').replace(/[^a-zA-Z0-9\-_]/g, '');
+    const environment = (req.body.environment || 'production').replace(/[^a-zA-Z0-9\-_]/g, '');
+    const deployMsg = (req.body.message || '').slice(0, 500).trim();
+
+    if (!appCode) {
+      fs.unlinkSync(req.file.path);
+      return res.status(422).json({ status: 'FAILED', message: 'Missing required field: appCode' });
+    }
+
+    const version = new Date().toISOString().replace(/[:.]/g, '-').replace('T', '_').slice(0, 19);
+    const releasePath = path.join(RELEASES, appCode, version);
+    const currentPath = path.join(CURRENT_DIR, appCode);
+
+    // ── Save backup zip ──────────────────────────────────────────────────
+    const backupDir = path.join(BACKUPS, appCode);
+    fs.mkdirSync(backupDir, { recursive: true });
+    fs.copyFileSync(req.file.path, path.join(backupDir, `${version}.zip`));
+
+    // ── Extract ──────────────────────────────────────────────────────────
+    const zip = new AdmZip(req.file.path);
+    fs.mkdirSync(releasePath, { recursive: true });
+    zip.extractAllTo(releasePath, true);
+    fs.unlinkSync(req.file.path);
+
+    // ── Track state ──────────────────────────────────────────────────────
+    const deployments = loadDeployments();
+    const previousVersion = deployments.apps?.[appCode]?.current?.version || null;
+
+    switchCurrent(currentPath, releasePath);
+
+    // ── Record ───────────────────────────────────────────────────────────
+    const record = {
+      version,
+      environment,
+      releasePath,
+      deployedAt: new Date().toISOString(),
+      action: 'upload',
+      message: deployMsg,
+      previousVersion,
+    };
+
+    if (!deployments.apps[appCode]) {
+      deployments.apps[appCode] = { current: null, history: [] };
+    }
+    deployments.apps[appCode].current = record;
+    deployments.apps[appCode].history.push(record);
+    saveDeployments(deployments);
+
+    appendLog(`UPLOAD  app=${appCode} version=${version} prev=${previousVersion} env=${environment} msg=${deployMsg}`);
+
+    res.json({
+      status: 'SUCCESS',
+      message: 'API code uploaded and deployed.',
+      appCode,
+      environment,
+      releaseVersion: version,
+      previousVersion,
+      releasePath,
+      completedAt: new Date().toISOString(),
+    });
+  } catch (err) {
+    if (req.file && fs.existsSync(req.file.path)) fs.unlinkSync(req.file.path);
+    res.status(500).json({ status: 'FAILED', message: err.message });
+  }
+});
+
+// ═══════════════════════════════════════════════════════════════════════════════
+// ── History ───────────────────────────────────────────────────────────────────
+// ═══════════════════════════════════════════════════════════════════════════════
+app.get('/history', authGuard, (req, res) => {
+  const appCode = (req.query.appCode || '').replace(/[^a-zA-Z0-9\-_]/g, '');
+  if (!appCode) {
+    return res.status(422).json({ status: 'FAILED', message: 'Missing required query param: appCode' });
+  }
+
+  const deployments = loadDeployments();
+  const appData = deployments.apps?.[appCode] || { current: null, history: [] };
+
+  res.json({
+    status: 'SUCCESS',
+    appCode,
+    current: appData.current,
+    history: appData.history,
+    totalReleases: appData.history.length,
+  });
+});
+
+// ═══════════════════════════════════════════════════════════════════════════════
+// ── Rollback ──────────────────────────────────────────────────────────────────
+// ═══════════════════════════════════════════════════════════════════════════════
+app.post('/rollback', authGuard, (req, res) => {
+  try {
+    const appCode = (req.body.appCode || '').replace(/[^a-zA-Z0-9\-_]/g, '');
+    const version = (req.body.version || '').replace(/[^a-zA-Z0-9\.\+\-_]/g, '');
+
+    if (!appCode || !version) {
+      return res.status(422).json({ status: 'FAILED', message: 'Missing required fields: appCode, version' });
+    }
+
+    const releasePath = path.join(RELEASES, appCode, version);
+    if (!fs.existsSync(releasePath)) {
+      return res.status(404).json({ status: 'FAILED', message: `Release not found: ${version}` });
+    }
+
+    const currentPath = path.join(CURRENT_DIR, appCode);
+    const deployments = loadDeployments();
+    const previousVersion = deployments.apps?.[appCode]?.current?.version || null;
+
+    switchCurrent(currentPath, releasePath);
+
+    const record = {
+      version,
+      environment: deployments.apps?.[appCode]?.current?.environment || 'production',
+      releasePath,
+      deployedAt: new Date().toISOString(),
+      action: 'rollback',
+      previousVersion,
+    };
+
+    if (!deployments.apps[appCode]) {
+      deployments.apps[appCode] = { current: null, history: [] };
+    }
+    deployments.apps[appCode].current = record;
+    deployments.apps[appCode].history.push(record);
+    saveDeployments(deployments);
+
+    appendLog(`ROLLBACK app=${appCode} to=${version} prev=${previousVersion}`);
+
+    res.json({
+      status: 'SUCCESS',
+      message: `Rolled back to version ${version}.`,
+      appCode,
+      rolledBackTo: version,
+      previousVersion,
+      completedAt: new Date().toISOString(),
+    });
+  } catch (err) {
+    res.status(500).json({ status: 'FAILED', message: err.message });
+  }
+});
+
+// ── Health check ──────────────────────────────────────────────────────────────
+app.get('/health', (_req, res) => {
+  res.json({ status: 'ok', uptime: process.uptime() });
+});
+
+// ── Start ─────────────────────────────────────────────────────────────────────
+app.listen(PORT, () => {
+  console.log(`Cloud IDE upload-api listening on port ${PORT}`);
+  console.log(`.cide dir: ${CIDE_DIR}`);
+});

package/deployer/php/setup.php

@@ -0,0 +1,332 @@
+<?php
+/**
+ * Cloud IDE — PHP Server Setup Script.
+ *
+ * Paste this file on your PHP server and open it in the browser:
+ *   https://your-server.com/setup.php?token=CREATE
+ *
+ * It will:
+ *   1) Create the full .cide/ folder structure
+ *   2) Generate a deploy token
+ *   3) Write config.json
+ *   4) Copy the upload listener (upload-ui.php) into .cide/scripts/
+ *   5) Print the config to add to your local cide.json
+ *
+ * After setup, DELETE this file from the server for security.
+ */
+
+header('Content-Type: application/json');
+
+// Simple protection — must pass ?token=CREATE to run setup
+if (($_GET['token'] ?? '') !== 'CREATE') {
+    http_response_code(403);
+    echo json_encode([
+        'status' => 'BLOCKED',
+        'message' => 'Add ?token=CREATE to the URL to run setup.'
+    ]);
+    exit;
+}
+
+$serverRoot = dirname(__FILE__);
+$cideDir    = "{$serverRoot}/.cide";
+$scriptsDir = "{$cideDir}/scripts";
+$releasesDir = "{$cideDir}/releases";
+$logsDir     = "{$cideDir}/logs";
+$currentDir  = "{$serverRoot}/current";
+
+// ── Create folder structure ──────────────────────────────────────────────────
+$dirs = [$cideDir, $scriptsDir, $releasesDir, $logsDir, $currentDir];
+foreach ($dirs as $dir) {
+    if (!is_dir($dir)) {
+        mkdir($dir, 0775, true);
+    }
+}
+
+// ── Generate token ───────────────────────────────────────────────────────────
+$configPath = "{$cideDir}/config.json";
+$existingConfig = null;
+if (file_exists($configPath)) {
+    $existingConfig = json_decode(file_get_contents($configPath), true);
+}
+
+$token = $existingConfig['token'] ?? bin2hex(random_bytes(32));
+
+// ── Write config.json ────────────────────────────────────────────────────────
+$config = [
+    'serverType' => 'php',
+    'token'      => $token,
+    'serverRoot' => $serverRoot,
+    'createdAt'  => $existingConfig['createdAt'] ?? date(DATE_ATOM),
+    'updatedAt'  => date(DATE_ATOM),
+    'paths'      => [
+        'scripts'     => $scriptsDir,
+        'releases'    => $releasesDir,
+        'logs'        => $logsDir,
+        'current'     => $currentDir,
+        'deploy_path' => $serverRoot,
+    ],
+];
+file_put_contents($configPath, json_encode($config, JSON_PRETTY_PRINT | JSON_UNESCAPED_SLASHES) . "\n");
+
+// ── Init deployments.json ────────────────────────────────────────────────────
+$deploymentsPath = "{$cideDir}/deployments.json";
+if (!file_exists($deploymentsPath)) {
+    file_put_contents($deploymentsPath, json_encode(['apps' => []], JSON_PRETTY_PRINT) . "\n");
+}
+
+// ── Init deploy log ──────────────────────────────────────────────────────────
+$logPath = "{$logsDir}/deploy.log";
+if (!file_exists($logPath)) {
+    file_put_contents($logPath, "# Cloud IDE deploy log — created " . date(DATE_ATOM) . "\n");
+}
+
+// ── Write the upload listener script ─────────────────────────────────────────
+$listenerScript = <<<'LISTENER'
+<?php
+/**
+ * Cloud IDE — UI code upload receiver.
+ * Lives at: {server_root}/.cide/scripts/upload-ui.php
+ *
+ * Endpoints (all require Authorization: Bearer <token>):
+ *   POST ?action=upload   (multipart/form-data) — file, appCode, environment, message
+ *   GET  ?action=history&appCode=xxx
+ *   POST ?action=rollback — JSON: { appCode, version }
+ */
+
+header('Content-Type: application/json');
+
+$cideDir = dirname(__DIR__);
+$configPath = "{$cideDir}/config.json";
+$config = null;
+if (file_exists($configPath)) {
+    $config = json_decode(file_get_contents($configPath), true);
+}
+$expectedToken = $config['token'] ?? getenv('PHP_UI_DEPLOY_TOKEN') ?: '';
+
+if (!$expectedToken) {
+    http_response_code(500);
+    echo json_encode(['status' => 'FAILED', 'message' => 'Server not configured. Run setup.php first.']);
+    exit;
+}
+
+$authHeader = $_SERVER['HTTP_AUTHORIZATION'] ?? '';
+if (!preg_match('/Bearer\s+(.*)$/i', $authHeader, $m) || $m[1] !== $expectedToken) {
+    http_response_code(401);
+    echo json_encode(['status' => 'FAILED', 'message' => 'Unauthorized upload request.']);
+    exit;
+}
+
+$releasesDir = $config['paths']['releases'] ?? "{$cideDir}/releases";
+$logsDir     = $config['paths']['logs']     ?? "{$cideDir}/logs";
+$currentDir  = $config['paths']['current']  ?? dirname($cideDir) . '/current';
+$deployPath  = $config['paths']['deploy_path'] ?? dirname($cideDir);
+$deploymentsFile = "{$cideDir}/deployments.json";
+
+$action = $_GET['action'] ?? $_POST['action'] ?? 'upload';
+if ($action === 'history')       handleHistory();
+elseif ($action === 'rollback')  handleRollback();
+else                             handleUpload();
+
+function handleUpload() {
+    global $releasesDir, $currentDir, $deployPath;
+    if ($_SERVER['REQUEST_METHOD'] !== 'POST') {
+        http_response_code(405);
+        echo json_encode(['status' => 'FAILED', 'message' => 'Only POST allowed.']);
+        exit;
+    }
+    if (!isset($_FILES['file']) || $_FILES['file']['error'] !== UPLOAD_ERR_OK) {
+        $code = $_FILES['file']['error'] ?? 'no file';
+        http_response_code(400);
+        echo json_encode(['status' => 'FAILED', 'message' => "File upload failed (code: {$code})."]);
+        exit;
+    }
+    $appCode     = isset($_POST['appCode']) ? preg_replace('/[^a-zA-Z0-9\-_]/', '', $_POST['appCode']) : '';
+    $environment = isset($_POST['environment']) ? preg_replace('/[^a-zA-Z0-9\-_]/', '', $_POST['environment']) : 'production';
+    $deployMsg   = isset($_POST['message']) ? substr(trim($_POST['message']), 0, 500) : '';
+    if ($appCode === '') {
+        http_response_code(422);
+        echo json_encode(['status' => 'FAILED', 'message' => 'Missing required field: appCode']);
+        exit;
+    }
+    $version     = date('Ymd_His');
+    $currentPath = "{$currentDir}/{$appCode}";
+    $tmpZip      = $_FILES['file']['tmp_name'];
+    // Save zip to releases (serves as both release and backup)
+    $releaseDir = "{$releasesDir}/{$appCode}";
+    @mkdir($releaseDir, 0775, true);
+    $releaseZip = "{$releaseDir}/{$version}.zip";
+    copy($tmpZip, $releaseZip);
+    // Extract to temp folder
+    $tmpExtract = "{$releasesDir}/{$appCode}/_tmp_{$version}";
+    $zip = new ZipArchive();
+    if ($zip->open($tmpZip) !== true) {
+        http_response_code(400);
+        echo json_encode(['status' => 'FAILED', 'message' => 'Uploaded file is not a valid zip archive.']);
+        exit;
+    }
+    @mkdir($tmpExtract, 0775, true);
+    $zip->extractTo($tmpExtract);
+    $zip->close();
+    $deployments = loadDeployments();
+    $previousVersion = $deployments['apps'][$appCode]['current']['version'] ?? null;
+    switchCurrent($currentPath, $tmpExtract);
+    // Clean old files from server root, then copy new
+    cleanDeployPath($deployPath);
+    deployToServerRoot($tmpExtract, $deployPath);
+    // Cleanup extracted temp — only zip stays in releases
+    rmdirRecursive($tmpExtract);
+    $record = [
+        'version' => $version, 'environment' => $environment, 'releasePath' => $releasePath,
+        'deployedAt' => date(DATE_ATOM), 'action' => 'upload', 'message' => $deployMsg,
+        'previousVersion' => $previousVersion,
+    ];
+    if (!isset($deployments['apps'][$appCode])) $deployments['apps'][$appCode] = ['current' => null, 'history' => []];
+    $deployments['apps'][$appCode]['current'] = $record;
+    $deployments['apps'][$appCode]['history'][] = $record;
+    saveDeployments($deployments);
+    appendLog("UPLOAD app={$appCode} v={$version} prev={$previousVersion} msg={$deployMsg}");
+    echo json_encode([
+        'status' => 'SUCCESS', 'message' => 'UI code uploaded and deployed.',
+        'appCode' => $appCode, 'environment' => $environment, 'releaseVersion' => $version,
+        'previousVersion' => $previousVersion, 'releasePath' => $releasePath,
+        'deployPath' => $deployPath, 'completedAt' => date(DATE_ATOM),
+    ]);
+}
+
+function handleHistory() {
+    $appCode = isset($_GET['appCode']) ? preg_replace('/[^a-zA-Z0-9\-_]/', '', $_GET['appCode']) : '';
+    if ($appCode === '') { http_response_code(422); echo json_encode(['status' => 'FAILED', 'message' => 'Missing appCode']); exit; }
+    $deployments = loadDeployments();
+    $appData = $deployments['apps'][$appCode] ?? ['current' => null, 'history' => []];
+    echo json_encode(['status' => 'SUCCESS', 'appCode' => $appCode, 'current' => $appData['current'], 'history' => $appData['history'], 'totalReleases' => count($appData['history'])]);
+}
+
+function handleRollback() {
+    global $releasesDir, $currentDir, $deployPath;
+    if ($_SERVER['REQUEST_METHOD'] !== 'POST') { http_response_code(405); echo json_encode(['status' => 'FAILED', 'message' => 'Only POST allowed.']); exit; }
+    $payload = json_decode(file_get_contents('php://input'), true);
+    $appCode = isset($payload['appCode']) ? preg_replace('/[^a-zA-Z0-9\-_]/', '', $payload['appCode']) : '';
+    $version = isset($payload['version']) ? preg_replace('/[^a-zA-Z0-9\.\+\-_]/', '', $payload['version']) : '';
+    if ($appCode === '' || $version === '') { http_response_code(422); echo json_encode(['status' => 'FAILED', 'message' => 'Missing appCode or version']); exit; }
+    // Re-extract from release zip
+    $releaseZip = "{$releasesDir}/{$appCode}/{$version}.zip";
+    if (!file_exists($releaseZip)) { http_response_code(404); echo json_encode(['status' => 'FAILED', 'message' => "Release zip not found: {$version}.zip"]); exit; }
+    $tmpExtract = "{$releasesDir}/{$appCode}/_tmp_{$version}";
+    $zip = new ZipArchive();
+    if ($zip->open($releaseZip) !== true) { http_response_code(500); echo json_encode(['status' => 'FAILED', 'message' => 'Failed to open release zip']); exit; }
+    @mkdir($tmpExtract, 0775, true);
+    $zip->extractTo($tmpExtract);
+    $zip->close();
+    $currentPath = "{$currentDir}/{$appCode}";
+    $deployments = loadDeployments();
+    $previousVersion = $deployments['apps'][$appCode]['current']['version'] ?? null;
+    switchCurrent($currentPath, $tmpExtract);
+    cleanDeployPath($deployPath);
+    deployToServerRoot($tmpExtract, $deployPath);
+    rmdirRecursive($tmpExtract);
+    $record = [
+        'version' => $version, 'environment' => $deployments['apps'][$appCode]['current']['environment'] ?? 'production',
+        'releasePath' => $releasePath, 'deployedAt' => date(DATE_ATOM), 'action' => 'rollback',
+        'message' => "Rollback from {$previousVersion}", 'previousVersion' => $previousVersion,
+    ];
+    if (!isset($deployments['apps'][$appCode])) $deployments['apps'][$appCode] = ['current' => null, 'history' => []];
+    $deployments['apps'][$appCode]['current'] = $record;
+    $deployments['apps'][$appCode]['history'][] = $record;
+    saveDeployments($deployments);
+    appendLog("ROLLBACK app={$appCode} to={$version} prev={$previousVersion}");
+    echo json_encode(['status' => 'SUCCESS', 'message' => "Rolled back to {$version}.", 'appCode' => $appCode, 'rolledBackTo' => $version, 'previousVersion' => $previousVersion, 'completedAt' => date(DATE_ATOM)]);
+}
+
+function loadDeployments() {
+    global $deploymentsFile;
+    if (file_exists($deploymentsFile)) { $d = json_decode(file_get_contents($deploymentsFile), true); if (is_array($d)) return $d; }
+    return ['apps' => []];
+}
+function saveDeployments($data) {
+    global $deploymentsFile;
+    file_put_contents($deploymentsFile, json_encode($data, JSON_PRETTY_PRINT | JSON_UNESCAPED_SLASHES));
+}
+function appendLog($msg) {
+    global $logsDir;
+    @file_put_contents("{$logsDir}/deploy.log", date(DATE_ATOM) . "  {$msg}\n", FILE_APPEND);
+}
+function cleanDeployPath($deployPath) {
+    if (!$deployPath || !is_dir($deployPath)) return;
+    $preserve = ['.cide', 'current', '.htaccess', '.well-known', 'web.config'];
+    $items = scandir($deployPath);
+    foreach ($items as $item) {
+        if ($item === '.' || $item === '..' || in_array($item, $preserve)) continue;
+        $p = "{$deployPath}/{$item}";
+        if (is_dir($p) && !is_link($p)) rmdirRecursive($p);
+        else @unlink($p);
+    }
+}
+function deployToServerRoot($releasePath, $deployPath) {
+    if (!$deployPath || !is_dir($releasePath)) return;
+    $skip = ['.cide', 'current', 'setup.php'];
+    $dir = opendir($releasePath);
+    while (($f = readdir($dir)) !== false) {
+        if ($f === '.' || $f === '..') continue;
+        $src = "{$releasePath}/{$f}";
+        $dst = "{$deployPath}/{$f}";
+        if (is_dir($src)) { recurseCopy($src, $dst); }
+        else { copy($src, $dst); }
+    }
+    closedir($dir);
+}
+function switchCurrent($currentPath, $releasePath) {
+    @mkdir(dirname($currentPath), 0775, true);
+    if (is_link($currentPath) || file_exists($currentPath)) {
+        if (is_link($currentPath)) @unlink($currentPath);
+        else @rename($currentPath, "{$currentPath}_bak_" . date('Ymd_His'));
+    }
+    if (!@symlink($releasePath, $currentPath)) { recurseCopy($releasePath, $currentPath); }
+}
+function recurseCopy($src, $dst) {
+    @mkdir($dst, 0775, true);
+    $dir = opendir($src);
+    while (($f = readdir($dir)) !== false) {
+        if ($f === '.' || $f === '..') continue;
+        if (is_dir("{$src}/{$f}")) recurseCopy("{$src}/{$f}", "{$dst}/{$f}");
+        else copy("{$src}/{$f}", "{$dst}/{$f}");
+    }
+    closedir($dir);
+}
+function rmdirRecursive($dir) {
+    if (!is_dir($dir)) return;
+    $items = scandir($dir);
+    foreach ($items as $item) {
+        if ($item === '.' || $item === '..') continue;
+        $p = "{$dir}/{$item}";
+        if (is_dir($p)) rmdirRecursive($p);
+        else @unlink($p);
+    }
+    @rmdir($dir);
+}
+LISTENER;
+
+file_put_contents("{$scriptsDir}/upload-ui.php", $listenerScript);
+
+// ── Response ─────────────────────────────────────────────────────────────────
+$isNewToken = ($existingConfig['token'] ?? null) !== $token;
+$scriptUrl = str_replace($serverRoot, '', $scriptsDir) . '/upload-ui.php';
+
+// ── Self-delete setup.php ────────────────────────────────────────────────────
+$selfDeleted = @unlink(__FILE__);
+
+echo json_encode([
+    'status' => 'SUCCESS',
+    'message' => 'Server setup complete!',
+    'token' => $token,
+    'tokenIsNew' => $isNewToken,
+    'serverRoot' => $serverRoot,
+    'setupFileDeleted' => $selfDeleted,
+    'folders' => [
+        '.cide/config.json',
+        '.cide/deployments.json',
+        '.cide/scripts/upload-ui.php',
+        '.cide/releases/{appCode}/{version}.zip',
+        '.cide/logs/deploy.log',
+        'current/',
+    ],
+], JSON_PRETTY_PRINT | JSON_UNESCAPED_SLASHES);