lsh-framework 3.2.5 → 3.5.1

package/dist/daemon/saas-api-server.js

@@ -1,231 +0,0 @@
-/**
- * LSH SaaS API Server
- * Express-based RESTful API for the SaaS platform
- */
-import express from 'express';
-import cors from 'cors';
-import rateLimit from 'express-rate-limit';
-import { setupSaaSApiRoutes } from './saas-api-routes.js';
-import { getErrorMessage } from '../lib/saas-types.js';
-import { ENV_VARS, DEFAULTS } from '../constants/index.js';
-import { ERROR_CODES } from '../constants/errors.js';
-/**
- * SaaS API Server
- */
-export class SaaSApiServer {
-    app;
-    config;
-    server;
-    constructor(config) {
-        this.config = {
-            port: config?.port || parseInt(process.env[ENV_VARS.LSH_SAAS_API_PORT] || String(DEFAULTS.SAAS_API_PORT)),
-            host: config?.host || process.env[ENV_VARS.LSH_SAAS_API_HOST] || DEFAULTS.DEFAULT_HOST,
-            corsOrigins: config?.corsOrigins || (process.env[ENV_VARS.LSH_CORS_ORIGINS]?.split(',') || [...DEFAULTS.DEFAULT_CORS_ORIGINS]),
-            rateLimitWindowMs: config?.rateLimitWindowMs || 15 * 60 * 1000, // 15 minutes
-            rateLimitMax: config?.rateLimitMax || DEFAULTS.MAX_EVENTS_LIMIT, // Max 100 requests per windowMs
-        };
-        this.app = express();
-        this.setupMiddleware();
-        this.setupRoutes();
-        this.setupErrorHandlers();
-    }
-    /**
-     * Setup middleware
-     */
-    setupMiddleware() {
-        // CORS
-        this.app.use(cors({
-            origin: this.config.corsOrigins,
-            credentials: true,
-            methods: ['GET', 'POST', 'PUT', 'DELETE', 'PATCH', 'OPTIONS'],
-            allowedHeaders: ['Content-Type', 'Authorization', 'X-Requested-With'],
-        }));
-        // Rate limiting - global limit for all requests
-        const limiter = rateLimit({
-            windowMs: this.config.rateLimitWindowMs,
-            max: this.config.rateLimitMax,
-            message: {
-                success: false,
-                error: {
-                    code: 'RATE_LIMIT_EXCEEDED',
-                    message: 'Too many requests, please try again later',
-                },
-            },
-            standardHeaders: true, // Return rate limit info in `RateLimit-*` headers
-            legacyHeaders: false, // Disable `X-RateLimit-*` headers
-        });
-        this.app.use(limiter);
-        // Body parsers
-        this.app.use(express.json({ limit: '10mb' }));
-        this.app.use(express.urlencoded({ extended: true, limit: '10mb' }));
-        // Security headers
-        this.app.use((req, res, next) => {
-            res.setHeader('X-Content-Type-Options', 'nosniff');
-            res.setHeader('X-Frame-Options', 'DENY');
-            res.setHeader('X-XSS-Protection', '1; mode=block');
-            res.setHeader('Strict-Transport-Security', 'max-age=31536000; includeSubDomains');
-            // CSP
-            res.setHeader('Content-Security-Policy', "default-src 'self'; script-src 'self'; style-src 'self' 'unsafe-inline'; img-src 'self' data: https:; font-src 'self' data:; connect-src 'self'");
-            next();
-        });
-        // Request logging
-        this.app.use((req, res, next) => {
-            const start = Date.now();
-            res.on('finish', () => {
-                const duration = Date.now() - start;
-                // Sanitize path to prevent log injection attacks
-                const sanitizedPath = req.path.replace(/[\r\n]/g, '');
-                const sanitizedIp = (req.ip || 'unknown').replace(/[\r\n]/g, '');
-                console.log(`${req.method} ${sanitizedPath} ${res.statusCode} - ${duration}ms - ${sanitizedIp}`);
-            });
-            next();
-        });
-    }
-    /**
-     * Setup routes
-     */
-    setupRoutes() {
-        // Health check
-        this.app.get('/health', (req, res) => {
-            res.json({
-                status: 'ok',
-                timestamp: new Date().toISOString(),
-                uptime: process.uptime(),
-            });
-        });
-        // API version
-        this.app.get('/api/v1', (req, res) => {
-            res.json({
-                name: 'LSH SaaS API',
-                version: '1.0.0',
-                endpoints: {
-                    auth: '/api/v1/auth/*',
-                    organizations: '/api/v1/organizations/*',
-                    teams: '/api/v1/organizations/:id/teams/*',
-                    secrets: '/api/v1/teams/:id/secrets/*',
-                    billing: '/api/v1/organizations/:id/billing/*',
-                    audit: '/api/v1/organizations/:id/audit-logs',
-                },
-            });
-        });
-        // Setup SaaS routes
-        setupSaaSApiRoutes(this.app);
-        // 404 handler
-        this.app.use((req, res) => {
-            res.status(404).json({
-                success: false,
-                error: {
-                    code: ERROR_CODES.NOT_FOUND,
-                    message: `Endpoint ${req.method} ${req.path} not found`,
-                },
-            });
-        });
-    }
-    /**
-     * Setup error handlers
-     */
-    setupErrorHandlers() {
-        // Global error handler
-        const errorHandler = (err, _req, res, _next) => {
-            console.error('API Error:', err);
-            // Don't leak error details in production
-            const isDev = process.env[ENV_VARS.NODE_ENV] !== 'production';
-            const statusCode = err.status || 500;
-            const errorCode = err.code || ERROR_CODES.INTERNAL_ERROR;
-            res.status(statusCode).json({
-                success: false,
-                error: {
-                    code: errorCode,
-                    message: isDev ? getErrorMessage(err) : 'Internal server error',
-                    details: isDev ? err.stack : undefined,
-                },
-            });
-        };
-        this.app.use(errorHandler);
-    }
-    /**
-     * Start the server
-     */
-    async start() {
-        return new Promise((resolve, reject) => {
-            try {
-                this.server = this.app.listen(this.config.port, this.config.host, () => {
-                    console.log(`
-╔═══════════════════════════════════════════════════════════════╗
-║                                                               ║
-║   🔐  LSH SaaS API Server                                     ║
-║                                                               ║
-║   Status:  Running                                            ║
-║   Port:    ${this.config.port.toString().padEnd(49)} ║
-║   Host:    ${this.config.host?.padEnd(49)} ║
-║                                                               ║
-║   Endpoints:                                                  ║
-║   - Health:  http://${this.config.host}:${this.config.port}/health${' '.repeat(26)} ║
-║   - API:     http://${this.config.host}:${this.config.port}/api/v1${' '.repeat(27)} ║
-║                                                               ║
-╚═══════════════════════════════════════════════════════════════╝
-          `);
-                    resolve();
-                });
-                this.server.on('error', (error) => {
-                    if (error.code === 'EADDRINUSE') {
-                        reject(new Error(`Port ${this.config.port} is already in use`));
-                    }
-                    else {
-                        reject(error);
-                    }
-                });
-            }
-            catch (error) {
-                reject(error);
-            }
-        });
-    }
-    /**
-     * Stop the server
-     */
-    async stop() {
-        return new Promise((resolve, reject) => {
-            if (!this.server) {
-                resolve();
-                return;
-            }
-            this.server.close((err) => {
-                if (err) {
-                    reject(err);
-                }
-                else {
-                    console.log('LSH SaaS API Server stopped');
-                    resolve();
-                }
-            });
-        });
-    }
-    /**
-     * Get Express app (for testing)
-     */
-    getApp() {
-        return this.app;
-    }
-}
-/**
- * Start the server if run directly
- */
-if (import.meta.url === `file://${process.argv[1]}`) {
-    const server = new SaaSApiServer();
-    server.start().catch((error) => {
-        console.error('Failed to start SaaS API server:', error);
-        process.exit(1);
-    });
-    // Graceful shutdown
-    process.on('SIGINT', async () => {
-        console.log('\nShutting down gracefully...');
-        await server.stop();
-        process.exit(0);
-    });
-    process.on('SIGTERM', async () => {
-        console.log('\nShutting down gracefully...');
-        await server.stop();
-        process.exit(0);
-    });
-}

package/dist/examples/supabase-integration.js

@@ -1,106 +0,0 @@
-/**
- * Supabase Integration Example
- * Demonstrates how to use LSH with Supabase PostgreSQL
- */
-import { supabaseClient } from '../lib/supabase-client.js';
-import DatabasePersistence from '../lib/database-persistence.js';
-import CloudConfigManager from '../lib/cloud-config-manager.js';
-import EnhancedHistorySystem from '../lib/enhanced-history-system.js';
-async function demonstrateSupabaseIntegration() {
-    console.log('🚀 LSH Supabase Integration Demo\n');
-    // 1. Test database connection
-    console.log('1. Testing Supabase connection...');
-    const isConnected = await supabaseClient.testConnection();
-    if (!isConnected) {
-        console.log('❌ Database connection failed');
-        return;
-    }
-    console.log('✅ Database connection successful\n');
-    // 2. Initialize database persistence
-    console.log('2. Initializing database persistence...');
-    const persistence = new DatabasePersistence('demo-user');
-    console.log('✅ Database persistence initialized\n');
-    // 3. Demonstrate configuration management
-    console.log('3. Configuration management demo...');
-    const configManager = new CloudConfigManager({
-        userId: 'demo-user',
-        enableCloudSync: true,
-    });
-    // Set some configuration values
-    configManager.set('theme', 'dark', 'UI theme preference');
-    configManager.set('max_history', 1000, 'Maximum history entries');
-    configManager.set('auto_complete', true, 'Enable auto-completion');
-    console.log('Configuration set:');
-    configManager.getAll().forEach(config => {
-        console.log(`  ${config.key}: ${JSON.stringify(config.value)}`);
-    });
-    console.log('✅ Configuration management working\n');
-    // 4. Demonstrate history management
-    console.log('4. History management demo...');
-    const historySystem = new EnhancedHistorySystem({
-        userId: 'demo-user',
-        enableCloudSync: true,
-    });
-    // Add some sample commands
-    historySystem.addCommand('ls -la', 0);
-    historySystem.addCommand('cd /home/user', 0);
-    historySystem.addCommand('git status', 0);
-    historySystem.addCommand('npm install', 0);
-    // Save to database
-    const entries = historySystem.getAllEntries();
-    for (const entry of entries) {
-        await persistence.saveHistoryEntry({
-            session_id: persistence.getSessionId(),
-            command: entry.command,
-            working_directory: '/home/user',
-            exit_code: entry.exitCode,
-            timestamp: new Date(entry.timestamp).toISOString(),
-            hostname: 'demo-host',
-        });
-    }
-    console.log(`Added ${entries.length} history entries`);
-    console.log('✅ History management working\n');
-    // 5. Demonstrate job management
-    console.log('5. Job management demo...');
-    await persistence.saveJob({
-        session_id: persistence.getSessionId(),
-        job_id: 'job_1',
-        command: 'long-running-task',
-        status: 'running',
-        working_directory: '/home/user',
-        started_at: new Date().toISOString(),
-    });
-    const activeJobs = await persistence.getActiveJobs();
-    console.log(`Active jobs: ${activeJobs.length}`);
-    activeJobs.forEach(job => {
-        console.log(`  ${job.job_id}: ${job.command} (${job.status})`);
-    });
-    console.log('✅ Job management working\n');
-    // 6. Demonstrate session management
-    console.log('6. Session management demo...');
-    await persistence.startSession('/home/user', {
-        PATH: '/usr/bin:/bin',
-        HOME: '/home/user',
-        USER: 'demo-user',
-    });
-    console.log(`Session started: ${persistence.getSessionId()}`);
-    console.log('✅ Session management working\n');
-    // 7. Show statistics
-    console.log('7. Statistics:');
-    const historyStats = await historySystem.getHistoryStats();
-    console.log('History stats:', historyStats);
-    const configStats = configManager.getStats();
-    console.log('Config stats:', configStats);
-    // 8. Cleanup
-    console.log('\n8. Cleanup...');
-    await persistence.endSession();
-    historySystem.destroy();
-    configManager.destroy();
-    console.log('✅ Cleanup completed');
-    console.log('\n🎉 Supabase integration demo completed successfully!');
-}
-// Run the demo if this file is executed directly
-if (import.meta.url === `file://${process.argv[1]}`) {
-    demonstrateSupabaseIntegration().catch(console.error);
-}
-export default demonstrateSupabaseIntegration;

package/dist/lib/api-response.js

@@ -1,226 +0,0 @@
-/**
- * API Response Builder
- *
- * Standardized response utilities for the SaaS API.
- * Centralizes response formatting and error handling.
- *
- * @module api-response
- * @example
- * ```typescript
- * import { sendSuccess, ApiErrors } from './api-response.js';
- *
- * // Success response
- * app.get('/users/:id', async (req, res) => {
- *   const user = await getUser(req.params.id);
- *   return sendSuccess(res, { user });
- * });
- *
- * // Error response
- * app.get('/protected', async (req, res) => {
- *   if (!req.user) {
- *     return ApiErrors.unauthorized(res);
- *   }
- * });
- * ```
- */
-import { ERROR_CODES } from '../constants/errors.js';
-/**
- * HTTP status codes mapped to error codes
- * @internal
- */
-const ERROR_STATUS_MAP = {
-    [ERROR_CODES.UNAUTHORIZED]: 401,
-    [ERROR_CODES.INVALID_CREDENTIALS]: 401,
-    [ERROR_CODES.INVALID_TOKEN]: 401,
-    [ERROR_CODES.EMAIL_NOT_VERIFIED]: 401,
-    [ERROR_CODES.FORBIDDEN]: 403,
-    [ERROR_CODES.NOT_FOUND]: 404,
-    [ERROR_CODES.INVALID_INPUT]: 400,
-    [ERROR_CODES.ALREADY_EXISTS]: 409,
-    [ERROR_CODES.EMAIL_ALREADY_EXISTS]: 409,
-    [ERROR_CODES.PAYMENT_REQUIRED]: 402,
-    [ERROR_CODES.TIER_LIMIT_EXCEEDED]: 403,
-    [ERROR_CODES.INTERNAL_ERROR]: 500,
-    RATE_LIMIT_EXCEEDED: 429,
-};
-/**
- * Send a successful API response
- *
- * @template T - The type of the data payload
- * @param res - Express response object
- * @param data - The data to send in the response
- * @param statusCode - HTTP status code (default: 200)
- * @returns The Express response object
- *
- * @example
- * ```typescript
- * return sendSuccess(res, { user: { id: '123', name: 'John' } });
- * ```
- */
-export function sendSuccess(res, data, statusCode = 200) {
-    return res.status(statusCode).json({
-        success: true,
-        data,
-    });
-}
-/**
- * Send a created (201) response for newly created resources
- *
- * @template T - The type of the data payload
- * @param res - Express response object
- * @param data - The created resource data
- * @returns The Express response object
- *
- * @example
- * ```typescript
- * const newUser = await createUser(userData);
- * return sendCreated(res, { user: newUser });
- * ```
- */
-export function sendCreated(res, data) {
-    return sendSuccess(res, data, 201);
-}
-/**
- * Send an error response with automatic status code mapping
- *
- * @param res - Express response object
- * @param code - Error code (e.g., 'UNAUTHORIZED', 'NOT_FOUND')
- * @param message - Human-readable error message
- * @param statusCode - Optional explicit HTTP status code (auto-mapped if not provided)
- * @returns The Express response object
- *
- * @example
- * ```typescript
- * return sendError(res, 'CUSTOM_ERROR', 'Something went wrong', 422);
- * ```
- */
-export function sendError(res, code, message, statusCode) {
-    const status = statusCode ?? ERROR_STATUS_MAP[code] ?? 500;
-    return res.status(status).json({
-        success: false,
-        error: { code, message },
-    });
-}
-/**
- * Common error response helpers with pre-configured error codes and messages.
- * Each method returns the appropriate HTTP status code automatically.
- *
- * @example
- * ```typescript
- * // 401 Unauthorized
- * return ApiErrors.unauthorized(res);
- *
- * // 404 Not Found with custom resource name
- * return ApiErrors.notFound(res, 'User');
- *
- * // 400 Bad Request with validation message
- * return ApiErrors.invalidInput(res, 'Email is required');
- * ```
- */
-export const ApiErrors = {
-    /**
-     * Send a 401 Unauthorized response
-     * @param res - Express response object
-     * @param message - Custom error message (default: 'Authentication required')
-     */
-    unauthorized(res, message = 'Authentication required') {
-        return sendError(res, ERROR_CODES.UNAUTHORIZED, message);
-    },
-    /**
-     * Send a 401 Invalid Token response
-     * @param res - Express response object
-     * @param message - Custom error message (default: 'Invalid or expired token')
-     */
-    invalidToken(res, message = 'Invalid or expired token') {
-        return sendError(res, ERROR_CODES.INVALID_TOKEN, message);
-    },
-    /**
-     * Send a 403 Forbidden response
-     * @param res - Express response object
-     * @param message - Custom error message (default: 'Access denied')
-     */
-    forbidden(res, message = 'Access denied') {
-        return sendError(res, ERROR_CODES.FORBIDDEN, message);
-    },
-    /**
-     * Send a 404 Not Found response
-     * @param res - Express response object
-     * @param resource - Resource name for the error message (default: 'Resource')
-     */
-    notFound(res, resource = 'Resource') {
-        return sendError(res, ERROR_CODES.NOT_FOUND, `${resource} not found`);
-    },
-    /**
-     * Send a 400 Bad Request response for invalid input
-     * @param res - Express response object
-     * @param message - Validation error message
-     */
-    invalidInput(res, message) {
-        return sendError(res, ERROR_CODES.INVALID_INPUT, message);
-    },
-    /**
-     * Send a 409 Conflict response for duplicate resources
-     * @param res - Express response object
-     * @param resource - Resource name for the error message (default: 'Resource')
-     */
-    alreadyExists(res, resource = 'Resource') {
-        return sendError(res, ERROR_CODES.ALREADY_EXISTS, `${resource} already exists`);
-    },
-    /**
-     * Send a 500 Internal Server Error response
-     * @param res - Express response object
-     * @param message - Custom error message (default: 'An internal error occurred')
-     */
-    internalError(res, message = 'An internal error occurred') {
-        return sendError(res, ERROR_CODES.INTERNAL_ERROR, message);
-    },
-    /**
-     * Send a 402 Payment Required response
-     * @param res - Express response object
-     * @param message - Custom error message (default: 'Payment required')
-     */
-    paymentRequired(res, message = 'Payment required') {
-        return sendError(res, ERROR_CODES.PAYMENT_REQUIRED, message);
-    },
-    /**
-     * Send a 403 Tier Limit Exceeded response
-     * @param res - Express response object
-     * @param message - Custom error message (default: 'Plan limit exceeded')
-     */
-    tierLimitExceeded(res, message = 'Plan limit exceeded') {
-        return sendError(res, ERROR_CODES.TIER_LIMIT_EXCEEDED, message);
-    },
-    /**
-     * Send a 429 Rate Limit Exceeded response
-     * @param res - Express response object
-     * @param message - Custom error message (default: 'Too many requests')
-     */
-    rateLimitExceeded(res, message = 'Too many requests') {
-        return sendError(res, 'RATE_LIMIT_EXCEEDED', message, 429);
-    },
-};
-/**
- * Extract a human-readable error message from an unknown error type.
- * Useful in catch blocks where the error type is unknown.
- *
- * @param error - The caught error (unknown type)
- * @returns A string error message
- *
- * @example
- * ```typescript
- * try {
- *   await riskyOperation();
- * } catch (error) {
- *   return ApiErrors.internalError(res, extractApiErrorMessage(error));
- * }
- * ```
- */
-export function extractApiErrorMessage(error) {
-    if (error instanceof Error) {
-        return error.message;
-    }
-    if (typeof error === 'string') {
-        return error;
-    }
-    return 'An unexpected error occurred';
-}