labgate 0.5.14 → 0.5.16

package/dist/lib/ui.js

@@ -56,6 +56,8 @@ const FONTS_DIR = (0, path_1.resolve)(__dirname, '..', '..', 'node_modules', 'ge
 const WRITE_TOKEN_PLACEHOLDER = '__LABGATE_WRITE_TOKEN__';
 const UI_WRITE_TOKEN = (0, crypto_1.randomBytes)(24).toString('hex');
 const UI_AUTH_COOKIE = 'labgate_ui_token';
+const UI_SHORT_LINK_PREFIX = '/s/';
+const DASHBOARD_LINK_FILE = '.labgate-dashboard-url';
 const LABGATE_INSTRUCTION_START = '<!-- LABGATE_SESSION_INSTRUCTION_START -->';
 const LABGATE_INSTRUCTION_END = '<!-- LABGATE_SESSION_INSTRUCTION_END -->';
 // ── SLURM module state (initialised in startUI when slurm.enabled) ──
@@ -130,6 +132,44 @@ function isAuthorizedRequest(req, reqUrl, accessToken) {
         return { ok: true, tokenFromQuery: true };
     return { ok: false, tokenFromQuery: false };
 }
+function buildUiAuthCookie(accessToken) {
+    return `${UI_AUTH_COOKIE}=${accessToken}; HttpOnly; SameSite=Strict; Path=/; Max-Age=28800`;
+}
+function getDashboardLinkPath() {
+    return (0, path_1.join)((0, config_js_1.getSandboxHome)(), DASHBOARD_LINK_FILE);
+}
+function writeDashboardLink(url) {
+    const target = getDashboardLinkPath();
+    (0, config_js_1.ensurePrivateDir)((0, path_1.dirname)(target));
+    const temp = `${target}.${process.pid}.${Date.now()}.tmp`;
+    try {
+        (0, fs_1.writeFileSync)(temp, `${url}\n`, { encoding: 'utf-8', mode: config_js_1.PRIVATE_FILE_MODE });
+        (0, config_js_1.ensurePrivateFile)(temp);
+        (0, fs_1.renameSync)(temp, target);
+        (0, config_js_1.ensurePrivateFile)(target);
+    }
+    finally {
+        try {
+            if ((0, fs_1.existsSync)(temp))
+                (0, fs_1.unlinkSync)(temp);
+        }
+        catch {
+            // Best effort cleanup.
+        }
+    }
+}
+function clearDashboardLink(expectedUrl) {
+    const target = getDashboardLinkPath();
+    try {
+        const existing = (0, fs_1.readFileSync)(target, 'utf-8').trim();
+        if (existing !== expectedUrl)
+            return;
+        (0, fs_1.unlinkSync)(target);
+    }
+    catch {
+        // Best effort cleanup.
+    }
+}
 function serveFontFile(url, res) {
     // Only allow specific font files from the geist package
     const match = url.match(/^\/fonts\/([\w-]+\.woff2)$/);
@@ -2755,8 +2795,10 @@ function startUI(optsOrPort = {}, standaloneArg = true) {
     const requestedPort = tcpPort ?? 0;
     const maxPort = requestedPort + 3;
     const uiAccessToken = useTcp ? (0, crypto_1.randomBytes)(24).toString('hex') : '';
+    const uiShortCode = useTcp ? (0, crypto_1.randomBytes)(9).toString('base64url') : '';
     let listenPort = requestedPort;
     let started = false;
+    let dashboardQuickLink = '';
     (0, config_js_1.ensurePrivateDir)((0, path_1.dirname)((0, config_js_1.getConfigPath)()));
     if (!useTcp) {
         (0, config_js_1.ensurePrivateDir)((0, path_1.dirname)(socketPath));
@@ -2767,6 +2809,24 @@ function startUI(optsOrPort = {}, standaloneArg = true) {
         const pathname = reqUrl.pathname;
         const method = req.method ?? 'GET';
         if (useTcp) {
+            const shortLinkMatch = method === 'GET'
+                ? pathname.match(new RegExp(`^${UI_SHORT_LINK_PREFIX}([A-Za-z0-9_-]+)$`))
+                : null;
+            if (shortLinkMatch) {
+                if (shortLinkMatch[1] === uiShortCode) {
+                    res.writeHead(302, {
+                        Location: '/',
+                        'Set-Cookie': buildUiAuthCookie(uiAccessToken),
+                        'Cache-Control': 'no-store',
+                    });
+                    res.end();
+                }
+                else {
+                    res.writeHead(401, { 'Content-Type': 'text/plain; charset=utf-8' });
+                    res.end('Unauthorized. Open the latest quick link shown by `labgate ui`.');
+                }
+                return;
+            }
             const auth = isAuthorizedRequest(req, reqUrl, uiAccessToken);
             if (!auth.ok) {
                 if (pathname.startsWith('/api/')) {
@@ -2779,7 +2839,7 @@ function startUI(optsOrPort = {}, standaloneArg = true) {
                 return;
             }
             if (auth.tokenFromQuery) {
-                res.setHeader('Set-Cookie', `${UI_AUTH_COOKIE}=${uiAccessToken}; HttpOnly; SameSite=Strict; Path=/; Max-Age=28800`);
+                res.setHeader('Set-Cookie', buildUiAuthCookie(uiAccessToken));
             }
         }
         if (method === 'OPTIONS') {
@@ -2953,6 +3013,14 @@ function startUI(optsOrPort = {}, standaloneArg = true) {
         if (useTcp) {
             const actualPort = server.address()?.port ?? listenPort;
             log.step(`Settings: http://localhost:${actualPort}/?token=${uiAccessToken}`);
+            dashboardQuickLink = `http://localhost:${actualPort}${UI_SHORT_LINK_PREFIX}${uiShortCode}`;
+            log.step(`Settings quick link: ${dashboardQuickLink}`);
+            try {
+                writeDashboardLink(dashboardQuickLink);
+            }
+            catch {
+                // Best effort: statusline can still fall back to LABGATE_DASHBOARD_URL/default URL.
+            }
         }
         else {
             try {
@@ -2986,6 +3054,10 @@ function startUI(optsOrPort = {}, standaloneArg = true) {
         }
         startSSEBroadcast();
     });
+    server.on('close', () => {
+        if (dashboardQuickLink)
+            clearDashboardLink(dashboardQuickLink);
+    });
     server.on('error', (err) => {
         if (!useTcp && err.code === 'EADDRINUSE') {
             try {