npm - odac - Versions diffs - 0.9.0 → 1.0.0 - Mend

odac 0.9.0 → 1.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (208) hide show

package/.github/workflows/auto-pr-description.yml +0 -2
package/.github/workflows/codeql.yml +46 -0
package/.github/workflows/release.yml +13 -6
package/.github/workflows/test-coverage.yml +10 -9
package/.releaserc.js +9 -6
package/CHANGELOG.md +62 -150
package/CODE_OF_CONDUCT.md +1 -1
package/CONTRIBUTING.md +8 -8
package/LICENSE +21 -661
package/README.md +12 -12
package/SECURITY.md +4 -4
package/bin/odac.js +101 -0
package/{framework/web/candy.js → client/odac.js} +310 -44
package/docs/backend/01-overview/{01-whats-in-the-candy-box.md → 01-whats-in-the-odac-box.md} +4 -2
package/docs/backend/01-overview/02-super-handy-helper-functions.md +29 -1
package/docs/backend/01-overview/03-development-server.md +11 -11
package/docs/backend/02-structure/01-typical-project-layout.md +4 -4
package/docs/backend/03-config/00-configuration-overview.md +6 -6
package/docs/backend/03-config/01-database-connection.md +1 -1
package/docs/backend/03-config/02-static-route-mapping-optional.md +4 -4
package/docs/backend/03-config/04-environment-variables.md +20 -20
package/docs/backend/03-config/05-early-hints.md +4 -4
package/docs/backend/04-routing/01-basic-page-routes.md +4 -4
package/docs/backend/04-routing/02-controller-less-view-routes.md +5 -5
package/docs/backend/04-routing/03-api-and-data-routes.md +3 -3
package/docs/backend/04-routing/04-authentication-aware-routes.md +5 -5
package/docs/backend/04-routing/05-advanced-routing.md +3 -3
package/docs/backend/04-routing/06-error-pages.md +17 -17
package/docs/backend/04-routing/07-cron-jobs.md +13 -13
package/docs/backend/04-routing/08-middleware.md +214 -0
package/docs/backend/04-routing/09-websocket-auth-middleware.md +292 -0
package/docs/backend/04-routing/09-websocket-examples.md +381 -0
package/docs/backend/04-routing/09-websocket-quick-reference.md +211 -0
package/docs/backend/04-routing/09-websocket.md +298 -0
package/docs/backend/05-controllers/01-how-to-build-a-controller.md +3 -3
package/docs/backend/05-controllers/02-your-trusty-odac-assistant.md +41 -0
package/docs/backend/05-controllers/03-controller-classes.md +19 -19
package/docs/backend/05-forms/01-custom-forms.md +114 -114
package/docs/backend/05-forms/02-automatic-database-insert.md +82 -82
package/docs/backend/06-request-and-response/01-the-request-object-what-is-the-user-asking-for.md +26 -26
package/docs/backend/06-request-and-response/02-sending-a-response-replying-to-the-user.md +10 -10
package/docs/backend/07-views/01-the-view-directory.md +1 -1
package/docs/backend/07-views/02-rendering-a-view.md +22 -22
package/docs/backend/07-views/03-template-syntax.md +52 -52
package/docs/backend/07-views/03-variables.md +84 -84
package/docs/backend/07-views/04-request-data.md +57 -57
package/docs/backend/07-views/05-conditionals.md +78 -78
package/docs/backend/07-views/06-loops.md +114 -114
package/docs/backend/07-views/07-translations.md +66 -66
package/docs/backend/07-views/08-backend-javascript.md +103 -103
package/docs/backend/07-views/09-comments.md +71 -71
package/docs/backend/08-database/01-database-connection.md +8 -8
package/docs/backend/08-database/02-using-mysql.md +49 -49
package/docs/backend/09-validation/01-the-validator-service.md +38 -38
package/docs/backend/10-authentication/01-user-logins-with-authjs.md +15 -15
package/docs/backend/10-authentication/02-foiling-villains-with-csrf-protection.md +10 -10
package/docs/backend/10-authentication/03-register.md +12 -12
package/docs/backend/10-authentication/{04-candy-register-forms.md → 04-odac-register-forms.md} +141 -141
package/docs/backend/10-authentication/05-session-management.md +10 -10
package/docs/backend/10-authentication/{06-candy-login-forms.md → 06-odac-login-forms.md} +125 -125
package/docs/backend/11-mail/01-the-mail-service.md +5 -5
package/docs/backend/12-streaming/01-streaming-overview.md +96 -54
package/docs/backend/13-utilities/{01-candy-var.md → 01-odac-var.md} +109 -109
package/docs/frontend/01-overview/01-introduction.md +30 -30
package/docs/frontend/02-ajax-navigation/01-quick-start.md +45 -45
package/docs/frontend/02-ajax-navigation/02-configuration.md +14 -14
package/docs/frontend/02-ajax-navigation/03-advanced-usage.md +36 -36
package/docs/frontend/03-forms/01-form-handling.md +32 -32
package/docs/frontend/04-api-requests/01-get-post.md +33 -33
package/docs/frontend/05-streaming/01-client-streaming.md +15 -15
package/docs/frontend/06-websocket/00-overview.md +76 -0
package/docs/frontend/06-websocket/01-websocket-client.md +139 -0
package/docs/frontend/06-websocket/02-shared-websocket.md +149 -0
package/docs/index.json +49 -11
package/eslint.config.mjs +6 -6
package/{framework/index.js → index.js} +1 -1
package/package.json +14 -39
package/{framework/src → src}/Auth.js +59 -59
package/{framework/src → src}/Config.js +3 -3
package/{framework/src → src}/Lang.js +7 -7
package/{framework/src → src}/Mail.js +5 -5
package/{framework/src → src}/Mysql.js +42 -42
package/src/Odac.js +112 -0
package/{framework/src → src}/Request.js +38 -36
package/{framework/src → src}/Route/Internal.js +116 -116
package/src/Route/Middleware.js +75 -0
package/src/Route.js +621 -0
package/src/Server.js +22 -0
package/{framework/src → src}/Stream.js +11 -3
package/{framework/src → src}/Validator.js +21 -21
package/{framework/src → src}/Var.js +5 -5
package/{framework/src → src}/View/EarlyHints.js +1 -1
package/{framework/src → src}/View/Form.js +69 -69
package/{framework/src → src}/View.js +78 -81
package/src/WebSocket.js +403 -0
package/template/config.json +5 -0
package/{web → template}/controller/page/about.js +6 -6
package/{web → template}/controller/page/index.js +9 -9
package/{web → template}/package.json +4 -5
package/{web → template}/public/assets/css/style.css +4 -4
package/{web → template}/public/assets/js/app.js +6 -6
package/{web → template}/route/www.js +6 -6
package/{web → template}/skeleton/main.html +1 -1
package/{web → template}/view/content/about.html +5 -5
package/{web → template}/view/content/home.html +12 -12
package/template/view/footer/main.html +11 -0
package/{web → template}/view/head/main.html +1 -1
package/{web → template}/view/header/main.html +2 -2
package/test/core/Candy.test.js +58 -58
package/test/core/Commands.test.js +7 -7
package/test/core/Config.test.js +82 -85
package/test/core/Lang.test.js +2 -2
package/test/core/Process.test.js +6 -6
package/test/framework/Route.test.js +56 -37
package/test/framework/View/EarlyHints.test.js +2 -2
package/test/framework/WebSocket.test.js +100 -0
package/test/framework/middleware.test.js +85 -0
package/test/server/Api.test.js +31 -31
package/test/server/DNS.test.js +11 -11
package/test/server/Hub.test.js +497 -0
package/test/server/Mail.account.test_.js +3 -3
package/test/server/Mail.init.test_.js +10 -10
package/test/server/Mail.test_.js +20 -20
package/test/server/SSL.test_.js +54 -54
package/test/server/Server.test.js +39 -39
package/test/server/Service.test_.js +7 -7
package/test/server/Subdomain.test.js +7 -7
package/test/server/Web/Firewall.test.js +87 -87
package/test/server/Web/Proxy.test.js +397 -0
package/test/server/{Web.test_.js → Web.test.js} +137 -205
package/test/server/__mocks__/fs.js +2 -2
package/test/server/__mocks__/{globalCandy.js → globalOdac.js} +5 -5
package/test/server/__mocks__/index.js +6 -6
package/test/server/__mocks__/testFactories.js +1 -1
package/test/server/__mocks__/testHelpers.js +7 -7
package/.husky/pre-commit +0 -2
package/.kiro/steering/code-style.md +0 -56
package/.kiro/steering/product.md +0 -20
package/.kiro/steering/structure.md +0 -77
package/.kiro/steering/tech.md +0 -87
package/AGENTS.md +0 -84
package/bin/candy +0 -10
package/bin/candypack +0 -10
package/cli/index.js +0 -3
package/cli/src/Cli.js +0 -348
package/cli/src/Connector.js +0 -93
package/cli/src/Monitor.js +0 -416
package/core/Candy.js +0 -87
package/core/Commands.js +0 -239
package/core/Config.js +0 -1094
package/core/Lang.js +0 -52
package/core/Log.js +0 -43
package/core/Process.js +0 -26
package/docs/backend/05-controllers/02-your-trusty-candy-assistant.md +0 -20
package/docs/server/01-installation/01-quick-install.md +0 -19
package/docs/server/01-installation/02-manual-installation-via-npm.md +0 -9
package/docs/server/02-get-started/01-core-concepts.md +0 -7
package/docs/server/02-get-started/02-basic-commands.md +0 -57
package/docs/server/02-get-started/03-cli-reference.md +0 -276
package/docs/server/02-get-started/04-cli-quick-reference.md +0 -102
package/docs/server/03-service/01-start-a-new-service.md +0 -57
package/docs/server/03-service/02-delete-a-service.md +0 -48
package/docs/server/04-web/01-create-a-website.md +0 -36
package/docs/server/04-web/02-list-websites.md +0 -9
package/docs/server/04-web/03-delete-a-website.md +0 -29
package/docs/server/05-subdomain/01-create-a-subdomain.md +0 -32
package/docs/server/05-subdomain/02-list-subdomains.md +0 -33
package/docs/server/05-subdomain/03-delete-a-subdomain.md +0 -41
package/docs/server/06-ssl/01-renew-an-ssl-certificate.md +0 -34
package/docs/server/07-mail/01-create-a-mail-account.md +0 -23
package/docs/server/07-mail/02-delete-a-mail-account.md +0 -20
package/docs/server/07-mail/03-list-mail-accounts.md +0 -20
package/docs/server/07-mail/04-change-account-password.md +0 -23
package/framework/src/Candy.js +0 -81
package/framework/src/Route.js +0 -455
package/framework/src/Server.js +0 -15
package/locale/de-DE.json +0 -80
package/locale/en-US.json +0 -79
package/locale/es-ES.json +0 -80
package/locale/fr-FR.json +0 -80
package/locale/pt-BR.json +0 -80
package/locale/ru-RU.json +0 -80
package/locale/tr-TR.json +0 -85
package/locale/zh-CN.json +0 -80
package/server/index.js +0 -5
package/server/src/Api.js +0 -88
package/server/src/DNS.js +0 -940
package/server/src/Hub.js +0 -535
package/server/src/Mail.js +0 -571
package/server/src/SSL.js +0 -180
package/server/src/Server.js +0 -27
package/server/src/Service.js +0 -248
package/server/src/Subdomain.js +0 -64
package/server/src/Web/Firewall.js +0 -170
package/server/src/Web/Proxy.js +0 -134
package/server/src/Web.js +0 -451
package/server/src/mail/imap.js +0 -1091
package/server/src/mail/server.js +0 -32
package/server/src/mail/smtp.js +0 -786
package/test/server/Client.test.js +0 -338
package/test/server/__mocks__/http-proxy.js +0 -105
package/watchdog/index.js +0 -3
package/watchdog/src/Watchdog.js +0 -156
package/web/config.json +0 -5
package/web/view/footer/main.html +0 -11
/package/{framework/src → src}/Env.js +0 -0
/package/{framework/src → src}/Route/Cron.js +0 -0
/package/{framework/src → src}/Token.js +0 -0

package/test/server/Web/Proxy.test.js ADDED Viewed

@@ -0,0 +1,397 @@
+/**
+ * Unit tests for Web/Proxy.js module
+ * Tests custom HTTP proxy implementation for both HTTP/1 and HTTP/2
+ */
+jest.mock('http')
+const http = require('http')
+const WebProxy = require('../../../server/src/Web/Proxy.js')
+describe('WebProxy', () => {
+  let proxy
+  let mockLog
+  let mockReq
+  let mockRes
+  let mockWebsite
+  beforeEach(() => {
+    jest.clearAllMocks()
+    mockLog = jest.fn()
+    proxy = new WebProxy(mockLog)
+    mockReq = {
+      url: '/test',
+      method: 'GET',
+      headers: {
+        host: 'example.com',
+        'user-agent': 'test-agent'
+      },
+      socket: {
+        remoteAddress: '192.168.1.100'
+      },
+      setTimeout: jest.fn(),
+      on: jest.fn(),
+      pipe: jest.fn()
+    }
+    mockRes = {
+      writeHead: jest.fn(),
+      end: jest.fn(),
+      setTimeout: jest.fn(),
+      on: jest.fn(),
+      headersSent: false,
+      writeEarlyHints: jest.fn()
+    }
+    mockWebsite = {
+      port: 3000,
+      domain: 'example.com'
+    }
+  })
+  describe('http1 proxy', () => {
+    test('should create HTTP request with correct options', () => {
+      const mockProxyReq = {
+        on: jest.fn(),
+        pipe: jest.fn()
+      }
+      http.request.mockReturnValue(mockProxyReq)
+      proxy.http1(mockReq, mockRes, mockWebsite, 'example.com')
+      expect(http.request).toHaveBeenCalledWith(
+        expect.objectContaining({
+          hostname: '127.0.0.1',
+          port: 3000,
+          path: '/test',
+          method: 'GET',
+          timeout: 0
+        }),
+        expect.any(Function)
+      )
+    })
+    test('should add custom headers to proxy request', () => {
+      const mockProxyReq = {
+        on: jest.fn(),
+        pipe: jest.fn()
+      }
+      http.request.mockReturnValue(mockProxyReq)
+      proxy.http1(mockReq, mockRes, mockWebsite, 'example.com')
+      const options = http.request.mock.calls[0][0]
+      expect(options.headers).toMatchObject({
+        host: 'example.com',
+        'user-agent': 'test-agent',
+        'x-odac-connection-remoteaddress': '192.168.1.100',
+        'x-odac-connection-ssl': 'true'
+      })
+    })
+    test('should handle proxy connection errors', () => {
+      const mockProxyReq = {
+        on: jest.fn(),
+        pipe: jest.fn()
+      }
+      http.request.mockReturnValue(mockProxyReq)
+      proxy.http1(mockReq, mockRes, mockWebsite, 'example.com')
+      const errorHandler = mockProxyReq.on.mock.calls.find(call => call[0] === 'error')[1]
+      const error = new Error('Connection refused')
+      error.code = 'ECONNREFUSED'
+      errorHandler(error)
+      expect(mockLog).toHaveBeenCalledWith('Proxy error for example.com: Connection refused')
+      expect(mockRes.writeHead).toHaveBeenCalledWith(502)
+      expect(mockRes.end).toHaveBeenCalledWith('Bad Gateway')
+    })
+    test('should not send error response if headers already sent', () => {
+      const mockProxyReq = {
+        on: jest.fn(),
+        pipe: jest.fn()
+      }
+      http.request.mockReturnValue(mockProxyReq)
+      mockRes.headersSent = true
+      proxy.http1(mockReq, mockRes, mockWebsite, 'example.com')
+      const errorHandler = mockProxyReq.on.mock.calls.find(call => call[0] === 'error')[1]
+      const error = new Error('Connection timeout')
+      errorHandler(error)
+      expect(mockLog).toHaveBeenCalledWith('Proxy error for example.com: Connection timeout')
+      expect(mockRes.writeHead).not.toHaveBeenCalled()
+      expect(mockRes.end).not.toHaveBeenCalledWith('Bad Gateway')
+    })
+    test('should ignore ECONNRESET errors', () => {
+      const mockProxyReq = {
+        on: jest.fn(),
+        pipe: jest.fn()
+      }
+      http.request.mockReturnValue(mockProxyReq)
+      proxy.http1(mockReq, mockRes, mockWebsite, 'example.com')
+      const errorHandler = mockProxyReq.on.mock.calls.find(call => call[0] === 'error')[1]
+      const error = new Error('Connection reset')
+      error.code = 'ECONNRESET'
+      errorHandler(error)
+      expect(mockLog).not.toHaveBeenCalled()
+      expect(mockRes.writeHead).not.toHaveBeenCalled()
+    })
+    test('should filter forbidden response headers', done => {
+      const mockProxyRes = {
+        statusCode: 200,
+        headers: {
+          'content-type': 'application/json',
+          connection: 'keep-alive',
+          'keep-alive': 'timeout=5',
+          'transfer-encoding': 'chunked',
+          upgrade: 'websocket',
+          'proxy-connection': 'keep-alive',
+          'x-custom-header': 'value'
+        },
+        pipe: jest.fn()
+      }
+      const mockProxyReq = {
+        on: jest.fn(),
+        pipe: jest.fn()
+      }
+      http.request.mockImplementation((options, callback) => {
+        setTimeout(() => callback(mockProxyRes), 0)
+        return mockProxyReq
+      })
+      proxy.http1(mockReq, mockRes, mockWebsite, 'example.com')
+      setTimeout(() => {
+        expect(mockRes.writeHead).toHaveBeenCalledWith(
+          200,
+          expect.objectContaining({
+            'content-type': 'application/json',
+            'x-custom-header': 'value'
+          })
+        )
+        const headers = mockRes.writeHead.mock.calls[0][1]
+        expect(headers).not.toHaveProperty('connection')
+        expect(headers).not.toHaveProperty('keep-alive')
+        expect(headers).not.toHaveProperty('transfer-encoding')
+        expect(headers).not.toHaveProperty('upgrade')
+        expect(headers).not.toHaveProperty('proxy-connection')
+        done()
+      }, 10)
+    })
+    test('should handle Server-Sent Events connections', done => {
+      const mockProxyRes = {
+        statusCode: 200,
+        headers: {
+          'content-type': 'text/event-stream'
+        },
+        pipe: jest.fn()
+      }
+      const mockProxyReq = {
+        on: jest.fn(),
+        pipe: jest.fn(),
+        destroy: jest.fn()
+      }
+      http.request.mockImplementation((options, callback) => {
+        setTimeout(() => callback(mockProxyRes), 0)
+        return mockProxyReq
+      })
+      proxy.http1(mockReq, mockRes, mockWebsite, 'example.com')
+      setTimeout(() => {
+        expect(mockReq.setTimeout).toHaveBeenCalledWith(0)
+        expect(mockRes.setTimeout).toHaveBeenCalledWith(0)
+        expect(mockReq.on).toHaveBeenCalledWith('close', expect.any(Function))
+        expect(mockReq.on).toHaveBeenCalledWith('aborted', expect.any(Function))
+        expect(mockRes.on).toHaveBeenCalledWith('close', expect.any(Function))
+        done()
+      }, 10)
+    })
+    test('should handle early hints', done => {
+      const mockProxyRes = {
+        statusCode: 200,
+        headers: {
+          'content-type': 'text/html',
+          'x-odac-early-hints': JSON.stringify(['</style.css>; rel=preload; as=style'])
+        },
+        pipe: jest.fn()
+      }
+      const mockProxyReq = {
+        on: jest.fn(),
+        pipe: jest.fn()
+      }
+      http.request.mockImplementation((options, callback) => {
+        setTimeout(() => callback(mockProxyRes), 0)
+        return mockProxyReq
+      })
+      proxy.http1(mockReq, mockRes, mockWebsite, 'example.com')
+      setTimeout(() => {
+        expect(mockRes.writeEarlyHints).toHaveBeenCalledWith({
+          link: ['</style.css>; rel=preload; as=style']
+        })
+        const headers = mockRes.writeHead.mock.calls[0][1]
+        expect(headers).not.toHaveProperty('x-odac-early-hints')
+        done()
+      }, 10)
+    })
+    test('should ignore invalid early hints JSON', done => {
+      const mockProxyRes = {
+        statusCode: 200,
+        headers: {
+          'content-type': 'text/html',
+          'x-odac-early-hints': 'invalid-json'
+        },
+        pipe: jest.fn()
+      }
+      const mockProxyReq = {
+        on: jest.fn(),
+        pipe: jest.fn()
+      }
+      http.request.mockImplementation((options, callback) => {
+        setTimeout(() => callback(mockProxyRes), 0)
+        return mockProxyReq
+      })
+      proxy.http1(mockReq, mockRes, mockWebsite, 'example.com')
+      setTimeout(() => {
+        expect(mockRes.writeEarlyHints).not.toHaveBeenCalled()
+        expect(mockRes.writeHead).toHaveBeenCalled()
+        done()
+      }, 10)
+    })
+    test('should pipe request to proxy', () => {
+      const mockProxyReq = {
+        on: jest.fn(),
+        pipe: jest.fn()
+      }
+      http.request.mockReturnValue(mockProxyReq)
+      proxy.http1(mockReq, mockRes, mockWebsite, 'example.com')
+      expect(mockReq.pipe).toHaveBeenCalledWith(mockProxyReq)
+    })
+    test('should pipe proxy response to client', done => {
+      const mockProxyRes = {
+        statusCode: 200,
+        headers: {'content-type': 'text/plain'},
+        pipe: jest.fn()
+      }
+      const mockProxyReq = {
+        on: jest.fn(),
+        pipe: jest.fn()
+      }
+      http.request.mockImplementation((options, callback) => {
+        setTimeout(() => callback(mockProxyRes), 0)
+        return mockProxyReq
+      })
+      proxy.http1(mockReq, mockRes, mockWebsite, 'example.com')
+      setTimeout(() => {
+        expect(mockProxyRes.pipe).toHaveBeenCalledWith(mockRes)
+        done()
+      }, 10)
+    })
+  })
+  describe('http2 proxy', () => {
+    test('should filter HTTP/2 pseudo-headers', () => {
+      mockReq.headers[':method'] = 'GET'
+      mockReq.headers[':path'] = '/test'
+      mockReq.headers[':scheme'] = 'https'
+      mockReq.headers[':authority'] = 'example.com'
+      const mockProxyReq = {
+        on: jest.fn(),
+        pipe: jest.fn()
+      }
+      http.request.mockReturnValue(mockProxyReq)
+      proxy.http2(mockReq, mockRes, mockWebsite, 'example.com')
+      const options = http.request.mock.calls[0][0]
+      expect(options.headers).not.toHaveProperty(':method')
+      expect(options.headers).not.toHaveProperty(':path')
+      expect(options.headers).not.toHaveProperty(':scheme')
+      expect(options.headers).not.toHaveProperty(':authority')
+      expect(options.headers).toHaveProperty('user-agent')
+    })
+    test('should handle HTTP/2 proxy errors', () => {
+      const mockProxyReq = {
+        on: jest.fn(),
+        pipe: jest.fn()
+      }
+      http.request.mockReturnValue(mockProxyReq)
+      proxy.http2(mockReq, mockRes, mockWebsite, 'example.com')
+      const errorHandler = mockProxyReq.on.mock.calls.find(call => call[0] === 'error')[1]
+      const error = new Error('Connection failed')
+      errorHandler(error)
+      expect(mockLog).toHaveBeenCalledWith('Proxy error for example.com: Connection failed')
+      expect(mockRes.writeHead).toHaveBeenCalledWith(502)
+      expect(mockRes.end).toHaveBeenCalledWith('Bad Gateway')
+    })
+    test('should handle missing remote address', () => {
+      mockReq.socket = {}
+      const mockProxyReq = {
+        on: jest.fn(),
+        pipe: jest.fn()
+      }
+      http.request.mockReturnValue(mockProxyReq)
+      proxy.http2(mockReq, mockRes, mockWebsite, 'example.com')
+      const options = http.request.mock.calls[0][0]
+      expect(options.headers['x-odac-connection-remoteaddress']).toBe('')
+    })
+  })
+})