fluxy-bot 0.11.4 → 0.11.6

package/bin/cli.js

@@ -1735,6 +1735,42 @@ async function tunnel(sub) {
   }
 }
 
+// ── Password Reset ──
+
+async function passwordReset() {
+  const DB_PATH = path.join(DATA_DIR, 'memory.db');
+
+  if (!fs.existsSync(DB_PATH)) {
+    console.log(`\n  ${c.red}✗${c.reset}  No database found. Run ${c.pink}fluxy init${c.reset} and complete setup first.\n`);
+    process.exit(1);
+  }
+
+  const Database = (await import('better-sqlite3')).default;
+  const db = new Database(DB_PATH);
+
+  // Clear password and TOTP credentials
+  db.prepare("DELETE FROM settings WHERE key IN ('portal_pass', 'totp_enabled', 'totp_secret', 'totp_recovery_codes')").run();
+
+  // Reset onboard flag so the wizard appears on next visit
+  db.prepare("INSERT INTO settings (key, value) VALUES ('onboard_complete', 'false') ON CONFLICT(key) DO UPDATE SET value = 'false', updated_at = CURRENT_TIMESTAMP").run();
+
+  // Invalidate all active sessions and trusted devices
+  db.prepare('DELETE FROM sessions').run();
+  db.prepare('DELETE FROM trusted_devices').run();
+
+  db.close();
+
+  console.log(`\n  ${c.blue}✔${c.reset}  Password reset successful.\n`);
+  console.log(`  ${c.dim}The onboard wizard will appear on your next visit`);
+  console.log(`  so you can create a new password.${c.reset}\n`);
+
+  // Auto-restart daemon if it's running
+  if (isDaemonInstalled() && isDaemonActive()) {
+    console.log(`  ${c.dim}Restarting Fluxy daemon...${c.reset}`);
+    daemon('restart');
+  }
+}
+
 // ── Route ──
 
 switch (command) {
@@ -1746,6 +1782,7 @@ switch (command) {
   case 'update':  update(); break;
   case 'daemon':  daemon(subcommand); break;
   case 'tunnel':  tunnel(subcommand); break;
+  case 'password-reset': passwordReset(); break;
   default:
     fs.existsSync(CONFIG_PATH) ? start() : init();
 }

package/cli/index.ts

@@ -9,7 +9,6 @@ import { registerStartCommand } from './commands/start.js';
 import { registerTunnelCommand } from './commands/tunnel.js';
 import { registerUpdateCommand } from './commands/update.js';
 import { registerInitCommand } from './commands/init.js';
-import { registerPasswordResetCommand } from './commands/password-reset.js';
 
 const program = new Command();
 
@@ -23,7 +22,6 @@ registerDaemonCommand(program);
 registerTunnelCommand(program);
 registerUpdateCommand(program);
 registerInitCommand(program);
-registerPasswordResetCommand(program);
 
 // Aliases for convenience matching the old CLI
 program

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "fluxy-bot",
-  "version": "0.11.4",
+  "version": "0.11.6",
   "releaseNotes": [
     "Adding a way for users to claim their fluxies on the fluxy.bot dashboard",
     "2. ",

package/supervisor/index.ts

@@ -9,7 +9,8 @@ import { paths } from '../shared/paths.js';
 import { PKG_DIR, DATA_DIR, WORKSPACE_DIR } from '../shared/paths.js';
 import { log } from '../shared/logger.js';
 import { startTunnel, stopTunnel, isTunnelAlive, restartTunnel, startNamedTunnel, restartNamedTunnel } from './tunnel.js';
-import { spawnWorker, stopWorker, getWorkerPort, isWorkerAlive } from './worker.js';
+import { createWorkerApp } from '../worker/index.js';
+import { closeDb, getSession, getSetting } from '../worker/db.js';
 import { spawnBackend, stopBackend, getBackendPort, isBackendAlive, resetBackendRestarts } from './backend.js';
 import { updateTunnelUrl, startHeartbeat, stopHeartbeat, disconnect } from '../shared/relay.js';
 import { startFluxyAgentQuery, stopFluxyAgentQuery, type RecentMessage } from './fluxy-agent.js';
@@ -195,7 +196,6 @@ const RECOVERING_HTML = `<!DOCTYPE html><html style="background:#222122"><head><
 
 export async function startSupervisor() {
   const config = loadConfig();
-  const workerPort = getWorkerPort(config.port);
   const backendPort = getBackendPort(config.port);
 
   // Create HTTP server first (Vite needs it for HMR WebSocket)
@@ -211,6 +211,9 @@ export async function startSupervisor() {
   // Ensure file storage dirs exist
   ensureFileDirs();
 
+  // Initialize worker routes in-process (no separate child process)
+  const workerApp = createWorkerApp();
+
   // Fluxy's AI brain
   let ai: AiProvider | null = null;
   if (config.ai.provider && (config.ai.apiKey || config.ai.provider === 'ollama')) {
@@ -227,11 +230,11 @@ export async function startSupervisor() {
   let currentStreamConvId: string | null = null;
   let currentStreamBuffer = '';
 
-  /** Call worker API endpoints */
-  async function workerApi(path: string, method = 'GET', body?: any) {
+  /** Call worker API endpoints (in-process via supervisor's own HTTP server) */
+  async function workerApi(apiPath: string, method = 'GET', body?: any) {
     const opts: RequestInit = { method, headers: { 'Content-Type': 'application/json' } };
     if (body) opts.body = JSON.stringify(body);
-    const res = await fetch(`http://127.0.0.1:${workerPort}${path}`, opts);
+    const res = await fetch(`http://127.0.0.1:${config.port}${apiPath}`, opts);
     return res.json();
   }
 
@@ -252,13 +255,8 @@ export async function startSupervisor() {
     if (cached && cached > Date.now()) return true;
 
     try {
-      const res = await fetch(`http://127.0.0.1:${workerPort}/api/portal/validate-token`, {
-        method: 'POST',
-        headers: { 'Content-Type': 'application/json' },
-        body: JSON.stringify({ token }),
-      });
-      const data = await res.json() as { valid: boolean };
-      if (data.valid) {
+      const session = getSession(token);
+      if (session) {
         tokenCache.set(token, Date.now() + TOKEN_CACHE_TTL);
         return true;
       }
@@ -274,9 +272,7 @@ export async function startSupervisor() {
   async function isAuthRequired(): Promise<boolean> {
     if (authRequiredCache && authRequiredCache.expires > Date.now()) return authRequiredCache.value;
     try {
-      const res = await fetch(`http://127.0.0.1:${workerPort}/api/onboard/status`);
-      const data = await res.json() as { portalConfigured: boolean };
-      const required = !!data.portalConfigured;
+      const required = !!getSetting('portal_pass');
       authRequiredCache = { value: required, expires: Date.now() + 30_000 };
       return required;
     } catch {
@@ -368,16 +364,8 @@ export async function startSupervisor() {
       return;
     }
 
-    // API routes → proxy to worker
+    // API routes → handled in-process by worker Express app
     if (req.url?.startsWith('/api')) {
-      console.log(`[supervisor] → worker :${workerPort} | ${req.method} ${req.url}`);
-      if (!isWorkerAlive()) {
-        console.log('[supervisor] Worker down — returning 503');
-        res.writeHead(503, { 'Content-Type': 'text/html' });
-        res.end(RECOVERING_HTML);
-        return;
-      }
-
       // Auth check for mutation routes (POST/PUT/DELETE) — GET/HEAD are read-only, skip auth
       const method = req.method || 'GET';
       if (method !== 'GET' && method !== 'HEAD' && !isExemptRoute(method, req.url || '')) {
@@ -393,19 +381,7 @@ export async function startSupervisor() {
         }
       }
 
-      const proxy = http.request(
-        { host: '127.0.0.1', port: workerPort, path: req.url, method: req.method, headers: req.headers },
-        (proxyRes) => {
-          res.writeHead(proxyRes.statusCode!, proxyRes.headers);
-          proxyRes.pipe(res);
-        },
-      );
-      proxy.on('error', (e) => {
-        console.error(`[supervisor] Worker proxy error: ${req.url}`, e.message);
-        res.writeHead(503, { 'Content-Type': 'text/html' });
-        res.end(RECOVERING_HTML);
-      });
-      req.pipe(proxy);
+      workerApp(req, res);
       return;
     }
 
@@ -1047,8 +1023,7 @@ export async function startSupervisor() {
     }
   }
 
-  // Spawn worker + backend
-  spawnWorker(workerPort);
+  // Spawn backend (worker runs in-process)
   spawnBackend(backendPort);
 
   // Start pulse/cron scheduler
@@ -1277,7 +1252,7 @@ export async function startSupervisor() {
     // Clear persisted tunnel URL so stale values aren't reused
     delete latestConfig.tunnelUrl;
     saveConfig(latestConfig);
-    stopWorker();
+    closeDb();
     await stopBackend();
     stopTunnel();
     console.log('[supervisor] Stopping Vite dev servers...');

package/worker/index.ts

@@ -67,9 +67,7 @@ function parseCookie(cookieHeader: string | undefined, name: string): string | u
   return match ? match.slice(name.length + 1) : undefined;
 }
 
-const port = parseInt(process.env.WORKER_PORT || '3001', 10);
-const config = loadConfig();
-
+export function createWorkerApp() {
 // Database
 initDb();
 
@@ -882,10 +880,7 @@ app.post('/api/whisper/transcribe', express.json({ limit: '10mb' }), async (req,
 // Serve stored files (audio, images, documents)
 app.use('/api/files', express.static(paths.files));
 
-// Dashboard is served by Vite dev server via supervisor proxy — no static files here
-console.log('[worker] API-only mode — dashboard served by Vite dev server');
-
-// HTTP server (no WebSocket — chat lives in supervisor)
-const server = app.listen(port, () => log.ok(`Worker on port ${port}`));
+log.ok('Worker routes initialized (in-process)');
 
-process.on('SIGTERM', () => { closeDb(); server.close(); process.exit(0); });
+return app;
+}

package/cli/commands/password-reset.ts

@@ -1,44 +0,0 @@
-import { Command } from 'commander';
-import fs from 'node:fs';
-import path from 'node:path';
-import pc from 'picocolors';
-import Database from 'better-sqlite3';
-
-import { DATA_DIR } from '../core/config.js';
-
-const DB_PATH = path.join(DATA_DIR, 'memory.db');
-
-export function registerPasswordResetCommand(program: Command) {
-  program
-    .command('password-reset')
-    .description('Reset your portal password via the onboard wizard')
-    .action(() => {
-      if (!fs.existsSync(DB_PATH)) {
-        console.log(pc.red('✗ No database found. Run ' + pc.magenta('fluxy init') + ' first.'));
-        process.exit(1);
-      }
-
-      const db = new Database(DB_PATH);
-
-      // Clear password and TOTP credentials
-      db.prepare("DELETE FROM settings WHERE key IN ('portal_pass', 'totp_enabled', 'totp_secret', 'totp_recovery_codes')").run();
-
-      // Reset onboard flag so the wizard appears on next visit
-      db.prepare("INSERT INTO settings (key, value) VALUES ('onboard_complete', 'false') ON CONFLICT(key) DO UPDATE SET value = 'false', updated_at = CURRENT_TIMESTAMP").run();
-
-      // Invalidate all active sessions
-      db.prepare('DELETE FROM sessions').run();
-      db.prepare('DELETE FROM trusted_devices').run();
-
-      db.close();
-
-      console.log();
-      console.log(pc.green('✓ Password reset successful.'));
-      console.log();
-      console.log(pc.dim('  The onboard wizard will appear on your next visit'));
-      console.log(pc.dim('  so you can create a new password.'));
-      console.log();
-      console.log(pc.dim('  Restart Fluxy if it\'s running: ') + pc.magenta('fluxy stop && fluxy start'));
-      console.log();
-    });
-}