npm - ijihun-planner-studio - Versions diffs - 0.1.0 - Mend

ijihun-planner-studio 0.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (10) hide show

package/.env.example +5 -0
package/README.md +40 -0
package/bin/planner-studio.mjs +49 -0
package/dist/assets/index-BXkpRJGR.css +1 -0
package/dist/assets/index-D0WfhOqG.js +177 -0
package/dist/index.html +15 -0
package/lib/auth.mjs +64 -0
package/package.json +52 -0
package/scripts/create-owner-secret.mjs +71 -0
package/server.mjs +645 -0

package/dist/index.html ADDED Viewed

@@ -0,0 +1,15 @@
+<!doctype html>
+<html lang="ko">
+  <head>
+    <meta charset="UTF-8" />
+    <meta name="viewport" content="width=device-width, initial-scale=1.0" />
+    <meta name="color-scheme" content="light" />
+    <link rel="icon" href="data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 64 64'%3E%3Crect width='64' height='64' rx='10' fill='%231f1f23'/%3E%3Cpath d='M16 18h32M16 30h32M16 42h20' stroke='white' stroke-width='5' stroke-linecap='round'/%3E%3C/svg%3E" />
+    <title>Planner Studio</title>
+    <script type="module" crossorigin src="/assets/index-D0WfhOqG.js"></script>
+    <link rel="stylesheet" crossorigin href="/assets/index-BXkpRJGR.css">
+  </head>
+  <body>
+    <div id="root"></div>
+  </body>
+</html>

package/lib/auth.mjs ADDED Viewed

@@ -0,0 +1,64 @@
+import { createHash, createHmac, randomBytes, scrypt as scryptCallback, timingSafeEqual } from "node:crypto";
+import { promisify } from "node:util";
+const scrypt = promisify(scryptCallback);
+const DEFAULT_SCRYPT = {
+  N: 32768,
+  r: 8,
+  p: 1,
+  keyLength: 64,
+  maxmem: 64 * 1024 * 1024
+};
+export async function hashPassword(password, options = {}) {
+  if (typeof password !== "string" || password.length < 12) {
+    throw new Error("Password must be at least 12 characters.");
+  }
+  const params = { ...DEFAULT_SCRYPT, ...options };
+  const salt = randomBytes(24);
+  const key = await scrypt(password, salt, params.keyLength, {
+    N: params.N,
+    r: params.r,
+    p: params.p,
+    maxmem: params.maxmem
+  });
+  return [
+    "scrypt",
+    params.N,
+    params.r,
+    params.p,
+    salt.toString("base64url"),
+    Buffer.from(key).toString("base64url")
+  ].join("$");
+}
+export async function verifyPassword(password, encoded) {
+  try {
+    const [scheme, nValue, rValue, pValue, saltValue, keyValue] = String(encoded || "").split("$");
+    if (scheme !== "scrypt" || !nValue || !rValue || !pValue || !saltValue || !keyValue) return false;
+    const storedKey = Buffer.from(keyValue, "base64url");
+    const key = await scrypt(String(password || ""), Buffer.from(saltValue, "base64url"), storedKey.length, {
+      N: Number(nValue),
+      r: Number(rValue),
+      p: Number(pValue),
+      maxmem: DEFAULT_SCRYPT.maxmem
+    });
+    return storedKey.length === key.length && timingSafeEqual(storedKey, key);
+  } catch {
+    return false;
+  }
+}
+export function generateSessionSecret() {
+  return randomBytes(48).toString("base64url");
+}
+export function signValue(value, secret) {
+  return createHmac("sha256", secret).update(String(value)).digest("base64url");
+}
+export function timingSafeStringEqual(a, b) {
+  const left = createHash("sha256").update(String(a)).digest();
+  const right = createHash("sha256").update(String(b)).digest();
+  return timingSafeEqual(left, right);
+}

package/package.json ADDED Viewed

@@ -0,0 +1,52 @@
+{
+  "name": "ijihun-planner-studio",
+  "version": "0.1.0",
+  "description": "A local owner-only timebox and Mandarart planner with Apple Reminders and Google Tasks bridge support.",
+  "type": "module",
+  "bin": {
+    "planner-studio": "bin/planner-studio.mjs"
+  },
+  "main": "./server.mjs",
+  "files": [
+    "bin/",
+    "dist/",
+    "lib/",
+    "scripts/create-owner-secret.mjs",
+    "server.mjs",
+    ".env.example",
+    "README.md"
+  ],
+  "scripts": {
+    "dev": "node scripts/dev.mjs",
+    "api": "node server.mjs --api-only --port 4178",
+    "build": "tsc --noEmit -p tsconfig.app.json && tsc --noEmit -p tsconfig.node.json && vite build",
+    "preview": "vite preview --host 127.0.0.1 --port 5179",
+    "start": "node server.mjs --port 4179",
+    "setup-owner": "node scripts/create-owner-secret.mjs --email leejihun04@gmail.com --env .env.local",
+    "prepublishOnly": "npm run build"
+  },
+  "publishConfig": {
+    "access": "public"
+  },
+  "keywords": [
+    "planner",
+    "timebox",
+    "mandarart",
+    "apple-reminders",
+    "google-tasks"
+  ],
+  "author": "ljihun",
+  "license": "UNLICENSED",
+  "dependencies": {
+    "@vitejs/plugin-react": "^4.3.4",
+    "lucide-react": "^0.468.0",
+    "react": "^18.3.1",
+    "react-dom": "^18.3.1",
+    "typescript": "^5.7.2",
+    "vite": "^6.0.5"
+  },
+  "devDependencies": {
+    "@types/react": "^19.2.17",
+    "@types/react-dom": "^19.2.3"
+  }
+}

package/scripts/create-owner-secret.mjs ADDED Viewed

@@ -0,0 +1,71 @@
+#!/usr/bin/env node
+import { mkdir, readFile, writeFile, chmod } from "node:fs/promises";
+import { dirname, resolve } from "node:path";
+import { generateSessionSecret, hashPassword } from "../lib/auth.mjs";
+const args = process.argv.slice(2);
+const email = getArg("--email") || process.env.PLANNER_OWNER_EMAIL || "";
+const envPath = resolve(getArg("--env") || ".env.local");
+const bridgeRoot = getArg("--bridge-root") || process.env.PLANNER_REMINDERS_BRIDGE_ROOT || "/Users/ijihun/apps/icloud-reminders-google-sync";
+const password = await readPassword();
+if (!email || !email.includes("@")) {
+  console.error("Usage: create-owner-secret --email <owner-email> [--env .env.local] < password");
+  process.exit(1);
+}
+if (!password) {
+  console.error("Password must be provided on stdin or PLANNER_SETUP_PASSWORD.");
+  process.exit(1);
+}
+const passwordHash = await hashPassword(password);
+const sessionSecret = generateSessionSecret();
+const nextValues = new Map([
+  ["PLANNER_OWNER_EMAIL", email.trim().toLowerCase()],
+  ["PLANNER_PASSWORD_HASH", passwordHash],
+  ["PLANNER_SESSION_SECRET", sessionSecret],
+  ["PLANNER_COOKIE_SECURE", process.env.PLANNER_COOKIE_SECURE || "0"],
+  ["PLANNER_REMINDERS_BRIDGE_ROOT", bridgeRoot]
+]);
+const existing = await readExistingEnv(envPath);
+for (const [key, value] of nextValues) existing.set(key, value);
+const lines = [
+  "# Planner Studio local owner authentication.",
+  "# Keep this file out of git. It contains password hash and session signing material.",
+  ...Array.from(existing, ([key, value]) => `${key}=${value}`)
+];
+await mkdir(dirname(envPath), { recursive: true });
+await writeFile(envPath, `${lines.join("\n")}\n`, { mode: 0o600 });
+await chmod(envPath, 0o600);
+console.log(`Owner auth config written to ${envPath}`);
+function getArg(name) {
+  const index = args.indexOf(name);
+  return index >= 0 ? args[index + 1] : "";
+}
+async function readPassword() {
+  if (process.env.PLANNER_SETUP_PASSWORD) return process.env.PLANNER_SETUP_PASSWORD;
+  const chunks = [];
+  for await (const chunk of process.stdin) chunks.push(chunk);
+  return Buffer.concat(chunks).toString("utf8").replace(/\r?\n$/, "");
+}
+async function readExistingEnv(filePath) {
+  const values = new Map();
+  try {
+    const text = await readFile(filePath, "utf8");
+    for (const line of text.split(/\r?\n/)) {
+      const trimmed = line.trim();
+      if (!trimmed || trimmed.startsWith("#")) continue;
+      const match = /^([A-Za-z_][A-Za-z0-9_]*)=(.*)$/.exec(trimmed);
+      if (match) values.set(match[1], match[2]);
+    }
+  } catch {
+    // Missing env file is expected on first setup.
+  }
+  return values;
+}