npm - pgserve - Versions diffs - 2.1.3 → 2.2.1 - Mend

pgserve 2.1.3 → 2.2.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (235) hide show

package/CHANGELOG.md +96 -0
package/README.md +105 -1
package/bin/autopg-wrapper.cjs +16 -0
package/bin/pgserve-wrapper.cjs +32 -6
package/bin/postgres-server.js +56 -0
package/console/README.md +131 -0
package/console/api.js +173 -0
package/console/app.jsx +483 -0
package/console/colors_and_type.css +227 -0
package/console/components.jsx +167 -0
package/console/console.css +1666 -0
package/console/data.jsx +350 -0
package/console/index.html +31 -0
package/console/screens/databases.jsx +5 -0
package/console/screens/health.jsx +5 -0
package/console/screens/ingress.jsx +5 -0
package/console/screens/optimizer.jsx +5 -0
package/console/screens/rlm-sim.jsx +5 -0
package/console/screens/rlm-trace.jsx +5 -0
package/console/screens/security.jsx +5 -0
package/console/screens/settings.jsx +611 -0
package/console/screens/sql.jsx +5 -0
package/console/screens/sync.jsx +5 -0
package/console/screens/tables.jsx +5 -0
package/console/tweaks-panel.jsx +425 -0
package/package.json +14 -2
package/scripts/postinstall.cjs +60 -0
package/src/cli-config.cjs +310 -0
package/src/cli-install.cjs +112 -11
package/src/cli-restart.cjs +228 -0
package/src/cli-ui.cjs +580 -0
package/src/cluster.js +43 -38
package/src/postgres.js +141 -19
package/src/settings-loader.cjs +235 -0
package/src/settings-migrate.cjs +212 -0
package/src/settings-pg-args.cjs +146 -0
package/src/settings-schema.cjs +422 -0
package/src/settings-validator.cjs +416 -0
package/src/settings-writer.cjs +288 -0
package/src/upgrade/index.js +65 -0
package/src/upgrade/runner.js +23 -0
package/src/upgrade/steps/binary-cache-flush.js +67 -0
package/src/upgrade/steps/consumer-signal.js +40 -0
package/src/upgrade/steps/env-refresh.js +89 -0
package/src/upgrade/steps/health-validate.js +53 -0
package/src/upgrade/steps/plpgsql-resolve.js +66 -0
package/src/upgrade/steps/port-reconcile.js +52 -0
package/.claude/context/windows-debug.md +0 -119
package/.genie/AGENTS.md +0 -15
package/.genie/agents/README.md +0 -110
package/.genie/agents/analyze.md +0 -176
package/.genie/agents/forge.md +0 -290
package/.genie/agents/garbage-cleaner.md +0 -324
package/.genie/agents/garbage-collector.md +0 -596
package/.genie/agents/github-issue-gc.md +0 -618
package/.genie/agents/review.md +0 -380
package/.genie/agents/semantic-analyzer/find-duplicates.md +0 -90
package/.genie/agents/semantic-analyzer/find-orphans.md +0 -99
package/.genie/agents/semantic-analyzer.md +0 -101
package/.genie/agents/update.md +0 -182
package/.genie/agents/wish.md +0 -357
package/.genie/brainstorms/pgserve-v2/DESIGN.md +0 -174
package/.genie/code/AGENTS.md +0 -694
package/.genie/code/agents/audit/risk.md +0 -173
package/.genie/code/agents/audit/security.md +0 -189
package/.genie/code/agents/audit.md +0 -145
package/.genie/code/agents/challenge.md +0 -230
package/.genie/code/agents/change-reviewer.md +0 -295
package/.genie/code/agents/code-garbage-collector.md +0 -425
package/.genie/code/agents/code-quality.md +0 -410
package/.genie/code/agents/commit-suggester.md +0 -255
package/.genie/code/agents/commit.md +0 -124
package/.genie/code/agents/consensus.md +0 -204
package/.genie/code/agents/daily-standup.md +0 -722
package/.genie/code/agents/docgen.md +0 -48
package/.genie/code/agents/explore.md +0 -79
package/.genie/code/agents/fix.md +0 -100
package/.genie/code/agents/git/commit-advisory.md +0 -219
package/.genie/code/agents/git/workflows/issue.md +0 -244
package/.genie/code/agents/git/workflows/pr.md +0 -179
package/.genie/code/agents/git/workflows/release.md +0 -460
package/.genie/code/agents/git/workflows/report.md +0 -342
package/.genie/code/agents/git.md +0 -432
package/.genie/code/agents/implementor.md +0 -161
package/.genie/code/agents/install.md +0 -515
package/.genie/code/agents/issue-creator.md +0 -344
package/.genie/code/agents/polish.md +0 -116
package/.genie/code/agents/qa.md +0 -653
package/.genie/code/agents/refactor.md +0 -294
package/.genie/code/agents/release.md +0 -1129
package/.genie/code/agents/roadmap.md +0 -885
package/.genie/code/agents/tests.md +0 -557
package/.genie/code/agents/tracer.md +0 -50
package/.genie/code/agents/update/upstream-update.md +0 -85
package/.genie/code/agents/update/versions/generic-update.md +0 -305
package/.genie/code/agents/vibe.md +0 -1317
package/.genie/code/spells/agent-configuration.md +0 -58
package/.genie/code/spells/automated-rc-publishing.md +0 -106
package/.genie/code/spells/branch-tracker-guidance.md +0 -28
package/.genie/code/spells/debug.md +0 -320
package/.genie/code/spells/emoji-naming-convention.md +0 -303
package/.genie/code/spells/evidence-storage.md +0 -26
package/.genie/code/spells/file-naming-rules.md +0 -35
package/.genie/code/spells/forge-code-blueprints.md +0 -195
package/.genie/code/spells/genie-integration.md +0 -153
package/.genie/code/spells/publishing-protocol.md +0 -61
package/.genie/code/spells/team-consultation-protocol.md +0 -284
package/.genie/code/spells/tool-requirements.md +0 -20
package/.genie/code/spells/triad-maintenance-protocol.md +0 -154
package/.genie/code/teams/tech-council/council.md +0 -328
package/.genie/code/teams/tech-council/jt.md +0 -352
package/.genie/code/teams/tech-council/nayr.md +0 -305
package/.genie/code/teams/tech-council/oettam.md +0 -375
package/.genie/neurons/README.md +0 -193
package/.genie/neurons/forge.md +0 -106
package/.genie/neurons/genie.md +0 -63
package/.genie/neurons/review.md +0 -106
package/.genie/neurons/wish.md +0 -104
package/.genie/product/README.md +0 -20
package/.genie/product/cli-automation.md +0 -359
package/.genie/product/environment.md +0 -60
package/.genie/product/mission.md +0 -60
package/.genie/product/roadmap.md +0 -44
package/.genie/product/tech-stack.md +0 -34
package/.genie/product/templates/context-template.md +0 -218
package/.genie/product/templates/qa-done-report-template.md +0 -68
package/.genie/product/templates/review-report-template.md +0 -89
package/.genie/product/templates/wish-template.md +0 -120
package/.genie/scripts/helpers/analyze-commit.js +0 -195
package/.genie/scripts/helpers/bullet-counter.js +0 -194
package/.genie/scripts/helpers/bullet-find.js +0 -289
package/.genie/scripts/helpers/bullet-id.js +0 -244
package/.genie/scripts/helpers/check-secrets.js +0 -237
package/.genie/scripts/helpers/count-tokens.js +0 -200
package/.genie/scripts/helpers/create-frontmatter.js +0 -456
package/.genie/scripts/helpers/detect-markers.js +0 -293
package/.genie/scripts/helpers/detect-todos.js +0 -267
package/.genie/scripts/helpers/detect-unlabeled-blocks.js +0 -135
package/.genie/scripts/helpers/embeddings.js +0 -344
package/.genie/scripts/helpers/find-empty-sections.js +0 -158
package/.genie/scripts/helpers/index.js +0 -319
package/.genie/scripts/helpers/validate-frontmatter.js +0 -578
package/.genie/scripts/helpers/validate-links.js +0 -207
package/.genie/scripts/helpers/validate-paths.js +0 -373
package/.genie/spells/README.md +0 -9
package/.genie/spells/ace-protocol.md +0 -118
package/.genie/spells/ask-one-at-a-time.md +0 -175
package/.genie/spells/backup-analyzer.md +0 -542
package/.genie/spells/blocker.md +0 -12
package/.genie/spells/break-things-move-fast.md +0 -56
package/.genie/spells/context-candidates.md +0 -72
package/.genie/spells/context-critic.md +0 -51
package/.genie/spells/defer-to-expertise.md +0 -278
package/.genie/spells/delegate-dont-do.md +0 -292
package/.genie/spells/error-investigation-protocol.md +0 -328
package/.genie/spells/evidence-based-completion.md +0 -273
package/.genie/spells/experiment.md +0 -65
package/.genie/spells/file-creation-protocol.md +0 -229
package/.genie/spells/forge-integration.md +0 -281
package/.genie/spells/forge-orchestration.md +0 -514
package/.genie/spells/gather-context.md +0 -18
package/.genie/spells/global-health-check.md +0 -34
package/.genie/spells/global-noop-roundtrip.md +0 -25
package/.genie/spells/install-genie.md +0 -1232
package/.genie/spells/install.md +0 -82
package/.genie/spells/investigate-before-commit.md +0 -112
package/.genie/spells/know-yourself.md +0 -288
package/.genie/spells/learn.md +0 -828
package/.genie/spells/mcp-diagnostic-protocol.md +0 -246
package/.genie/spells/mcp-first.md +0 -124
package/.genie/spells/multi-step-execution.md +0 -67
package/.genie/spells/orchestration-boundary-protocol.md +0 -256
package/.genie/spells/orchestrator-not-implementor.md +0 -189
package/.genie/spells/prompt.md +0 -746
package/.genie/spells/reflect.md +0 -404
package/.genie/spells/routing-decision-matrix.md +0 -368
package/.genie/spells/run-in-parallel.md +0 -12
package/.genie/spells/session-state-updater-example.md +0 -196
package/.genie/spells/session-state-updater.md +0 -220
package/.genie/spells/track-long-running-tasks.md +0 -133
package/.genie/spells/troubleshoot-infrastructure.md +0 -176
package/.genie/spells/upgrade-genie.md +0 -415
package/.genie/spells/url-presentation-protocol.md +0 -301
package/.genie/spells/wish-initiation.md +0 -158
package/.genie/spells/wish-issue-linkage.md +0 -410
package/.genie/spells/wish-lifecycle.md +0 -100
package/.genie/state/provider-status.json +0 -3
package/.genie/state/version.json +0 -16
package/.genie/wishes/canonical-pgserve-pm2-supervision/WISH.md +0 -290
package/.genie/wishes/pgserve-v2/BRIEF-from-genie-pgserve.md +0 -99
package/.genie/wishes/pgserve-v2/WISH.md +0 -442
package/.genie/wishes/release-system-genie-pattern/WISH.md +0 -268
package/.genie/wishes/release-system-genie-pattern/validation.md +0 -205
package/.gitguardian.yaml +0 -29
package/.gitguardianignore +0 -16
package/.github/workflows/ci.yml +0 -122
package/.github/workflows/release.yml +0 -289
package/.github/workflows/version.yml +0 -228
package/.husky/pre-commit +0 -2
package/AGENTS.md +0 -433
package/CLAUDE.md +0 -1
package/Makefile +0 -285
package/assets/icon.ico +0 -0
package/bun.lock +0 -435
package/bunfig.toml +0 -28
package/ecosystem.config.cjs +0 -23
package/eslint.config.js +0 -63
package/examples/multi-tenant-demo.js +0 -104
package/install.sh +0 -123
package/knip.json +0 -9
package/tests/audit.test.js +0 -189
package/tests/backpressure.test.js +0 -167
package/tests/benchmarks/runner.js +0 -1197
package/tests/benchmarks/vector-generator.js +0 -368
package/tests/cli-install.test.js +0 -322
package/tests/control-db.test.js +0 -285
package/tests/daemon-args.test.js +0 -86
package/tests/daemon-control.test.js +0 -171
package/tests/daemon-fingerprint-integration.test.js +0 -111
package/tests/daemon-pr24-regression.test.js +0 -198
package/tests/fingerprint.test.js +0 -263
package/tests/fixtures/240-orphan-seed.sql +0 -30
package/tests/multi-tenant.test.js +0 -374
package/tests/orphan-cleanup.test.js +0 -390
package/tests/pg-version-regex.test.js +0 -129
package/tests/quick-bench.js +0 -135
package/tests/router-handshake-retry.test.js +0 -119
package/tests/router-handshake-watchdog.test.js +0 -110
package/tests/sdk.test.js +0 -71
package/tests/stale-postmaster-pid.test.js +0 -85
package/tests/stress-test.js +0 -439
package/tests/sync-perf-test.js +0 -150
package/tests/tcp-listen.test.js +0 -368
package/tests/tenancy.test.js +0 -403
package/tests/wrapper-supervision.test.js +0 -107

package/src/cli-ui.cjs ADDED Viewed

@@ -0,0 +1,580 @@
+/**
+ * `autopg ui [--port N] [--no-open]` (also reachable via `pgserve ui`).
+ *
+ * Boots a tiny http server bound to 127.0.0.1 that:
+ *   - serves the static console at `console/` (React + Babel CDN, no build).
+ *   - exposes 4 helper endpoints used by the SPA:
+ *       GET  /api/settings   → { settings, sources, etag }
+ *       PUT  /api/settings   → writeSettings + If-Match etag check
+ *       POST /api/restart    → invokes cli-restart.dispatch
+ *       GET  /api/status     → shells out to the existing wave-1 status
+ *
+ * Single-user dev tool: 127.0.0.1 only, no auth, no TLS. Designed to ride
+ * inside an operator's localhost session — not to be exposed.
+ *
+ * Port selection:
+ *   --port N      → bind exactly N or fail.
+ *   (no flag)     → walk 8433..8533 picking the first free port.
+ *
+ * Browser opening:
+ *   --no-open     → skip browser launch (CI/headless paths).
+ *   default       → `open` (macOS) / `xdg-open` (Linux) / `start` (Windows).
+ */
+'use strict';
+const http = require('node:http');
+const fs = require('node:fs');
+const path = require('node:path');
+const { spawn, execFileSync } = require('node:child_process');
+const { loadEffectiveConfig, getSettingsPath } = require('./settings-loader.cjs');
+const { writeSettings } = require('./settings-writer.cjs');
+const cliRestart = require('./cli-restart.cjs');
+// `pg` is a devDependency today — graceful degradation if not installed.
+// /api/stats returns { ok: false, reason: 'pg-not-installed' } in that case.
+let PgClient = null;
+try { PgClient = require('pg').Client; } catch { /* optional */ }
+const {
+  ValidationError,
+  EtagMismatchError,
+  ERROR_CODES,
+} = require('./settings-validator.cjs');
+const PORT_RANGE_START = 8433;
+const PORT_RANGE_END = 8533;
+const HOST = '127.0.0.1';
+const MIME_TYPES = {
+  '.html': 'text/html; charset=utf-8',
+  '.htm': 'text/html; charset=utf-8',
+  '.js': 'application/javascript; charset=utf-8',
+  '.mjs': 'application/javascript; charset=utf-8',
+  '.jsx': 'application/javascript; charset=utf-8',
+  '.cjs': 'application/javascript; charset=utf-8',
+  '.css': 'text/css; charset=utf-8',
+  '.json': 'application/json; charset=utf-8',
+  '.svg': 'image/svg+xml',
+  '.png': 'image/png',
+  '.jpg': 'image/jpeg',
+  '.jpeg': 'image/jpeg',
+  '.gif': 'image/gif',
+  '.ico': 'image/x-icon',
+  '.txt': 'text/plain; charset=utf-8',
+  '.woff': 'font/woff',
+  '.woff2': 'font/woff2',
+};
+function parseArgs(args) {
+  const out = { port: null, noOpen: false, host: HOST };
+  for (let i = 0; i < args.length; i++) {
+    const a = args[i];
+    if (a === '--port') {
+      const v = args[++i];
+      const n = Number.parseInt(v, 10);
+      if (!Number.isInteger(n) || n < 1 || n > 65535) {
+        throw new Error(`invalid --port "${v}"`);
+      }
+      out.port = n;
+    } else if (a === '--no-open') {
+      out.noOpen = true;
+    } else if (a === '--host') {
+      // Defense: still bind 127.0.0.1 unless explicitly opted out via env.
+      // We accept --host for parity but ignore non-loopback values.
+      const v = args[++i];
+      if (v === '127.0.0.1' || v === 'localhost') {
+        out.host = v;
+      }
+    }
+  }
+  return out;
+}
+/**
+ * Try to bind a server on each candidate port until one succeeds.
+ * Returns a Promise<{server, port}>. Rejects if no port in the range works.
+ */
+function listenWithFallback(server, host, preferredPort) {
+  const candidates = preferredPort
+    ? [preferredPort]
+    : (() => {
+        const list = [];
+        for (let p = PORT_RANGE_START; p <= PORT_RANGE_END; p++) list.push(p);
+        return list;
+      })();
+  return new Promise((resolve, reject) => {
+    let i = 0;
+    function attempt() {
+      if (i >= candidates.length) {
+        reject(
+          new Error(
+            preferredPort
+              ? `port ${preferredPort} is not available`
+              : `no free port in ${PORT_RANGE_START}-${PORT_RANGE_END}`,
+          ),
+        );
+        return;
+      }
+      const port = candidates[i++];
+      const onErr = (err) => {
+        if (err.code === 'EADDRINUSE' && !preferredPort) {
+          server.removeListener('error', onErr);
+          attempt();
+          return;
+        }
+        reject(err);
+      };
+      server.once('error', onErr);
+      server.listen(port, host, () => {
+        server.removeListener('error', onErr);
+        resolve({ server, port });
+      });
+    }
+    attempt();
+  });
+}
+/**
+ * Resolve the static document root. The console directory lives at the
+ * repo root (alongside `bin/` and `src/`). When the package is installed
+ * via npm the `files` allowlist preserves the layout.
+ */
+function resolveConsoleRoot() {
+  // src/ → repo root → console/
+  return path.resolve(__dirname, '..', 'console');
+}
+/**
+ * Sanitize a request path against directory traversal, return the absolute
+ * file path on disk or null if the request escapes the document root.
+ */
+function safeJoin(root, urlPath) {
+  // Strip query string defensively even though the caller already removed it.
+  const clean = urlPath.split('?')[0];
+  // Normalize then refuse anything starting with `..` or absolute outside
+  // the root.
+  const decoded = decodeURIComponent(clean);
+  const normalized = path.posix.normalize(decoded).replace(/^\/+/, '');
+  const candidate = path.resolve(root, normalized);
+  if (!candidate.startsWith(`${root}${path.sep}`) && candidate !== root) {
+    return null;
+  }
+  return candidate;
+}
+function sendJson(res, status, payload) {
+  const body = JSON.stringify(payload);
+  res.writeHead(status, {
+    'content-type': 'application/json; charset=utf-8',
+    'content-length': Buffer.byteLength(body),
+    'cache-control': 'no-store',
+  });
+  res.end(body);
+}
+function sendError(res, status, code, message, extra = {}) {
+  sendJson(res, status, { error: { code, message, ...extra } });
+}
+function readBody(req, { limitBytes = 1_048_576 } = {}) {
+  return new Promise((resolve, reject) => {
+    const chunks = [];
+    let total = 0;
+    req.on('data', (chunk) => {
+      total += chunk.length;
+      if (total > limitBytes) {
+        reject(new Error('request body too large'));
+        req.destroy();
+        return;
+      }
+      chunks.push(chunk);
+    });
+    req.on('end', () => {
+      try {
+        const raw = Buffer.concat(chunks).toString('utf8');
+        if (!raw) return resolve({});
+        resolve(JSON.parse(raw));
+      } catch (err) {
+        reject(err);
+      }
+    });
+    req.on('error', reject);
+  });
+}
+// ─── handlers ────────────────────────────────────────────────────────────
+function handleGetSettings(req, res) {
+  try {
+    const { settings, sources, etag, path: settingsPath } = loadEffectiveConfig();
+    sendJson(res, 200, { settings, sources, etag, path: settingsPath });
+  } catch (err) {
+    sendError(res, 500, 'LOAD_FAILED', err.message ?? String(err));
+  }
+}
+async function handlePutSettings(req, res) {
+  let body;
+  try {
+    body = await readBody(req);
+  } catch (err) {
+    sendError(res, 400, 'BAD_BODY', err.message ?? 'invalid JSON');
+    return;
+  }
+  const ifMatch = req.headers['if-match'];
+  if (!ifMatch) {
+    sendError(res, 428, 'PRECONDITION_REQUIRED', 'If-Match header required');
+    return;
+  }
+  try {
+    // Merge the patch onto the current effective tree before writing so
+    // partial PUTs only touch the supplied keys. The writer re-validates.
+    const { settings: current } = loadEffectiveConfig();
+    const merged = deepMergePlain(current, body);
+    const { etag } = writeSettings(merged, { ifMatch });
+    sendJson(res, 200, { ok: true, etag });
+  } catch (err) {
+    if (err instanceof EtagMismatchError) {
+      sendJson(res, 409, {
+        error: {
+          code: ERROR_CODES.ETAG_MISMATCH,
+          message: 'settings changed on disk; reload before retry',
+        },
+        currentEtag: err.currentEtag,
+      });
+      return;
+    }
+    if (err instanceof ValidationError) {
+      sendError(res, 400, err.code, err.detail ?? err.message, { field: err.field });
+      return;
+    }
+    sendError(res, 500, 'WRITE_FAILED', err.message ?? String(err));
+  }
+}
+function deepMergePlain(base, patch) {
+  if (!patch || typeof patch !== 'object' || Array.isArray(patch)) return base;
+  const out = base && typeof base === 'object' && !Array.isArray(base) ? { ...base } : {};
+  for (const [key, value] of Object.entries(patch)) {
+    if (
+      value &&
+      typeof value === 'object' &&
+      !Array.isArray(value) &&
+      out[key] &&
+      typeof out[key] === 'object' &&
+      !Array.isArray(out[key])
+    ) {
+      out[key] = deepMergePlain(out[key], value);
+    } else {
+      out[key] = value;
+    }
+  }
+  return out;
+}
+function handlePostRestart(req, res, ctx) {
+  try {
+    const code = cliRestart.dispatch([], { scriptPath: ctx.scriptPath });
+    if (code === 0) {
+      sendJson(res, 200, { ok: true });
+    } else {
+      sendError(res, 500, 'RESTART_FAILED', `restart exited with code ${code}`);
+    }
+  } catch (err) {
+    sendError(res, 500, 'RESTART_FAILED', err.message ?? String(err));
+  }
+}
+function handleGetStatus(req, res, ctx) {
+  // The existing wave-1 `status --json` flow returns the canonical shape.
+  // Shell out via the wrapper so the response mirrors what an operator
+  // would see at the CLI.
+  try {
+    if (ctx.statusOverride) {
+      sendJson(res, 200, ctx.statusOverride());
+      return;
+    }
+    const out = execFileSync(process.execPath, [ctx.scriptPath, 'status', '--json'], {
+      encoding: 'utf8',
+      timeout: 5000,
+      stdio: ['ignore', 'pipe', 'pipe'],
+    });
+    const trimmed = out.trim();
+    sendJson(res, 200, trimmed ? JSON.parse(trimmed) : {});
+  } catch (err) {
+    // `pgserve status` exits 1 when not installed but still prints JSON.
+    // Surface the parsed payload when present; otherwise wrap the error.
+    const stdout = err?.stdout ? err.stdout.toString().trim() : '';
+    if (stdout) {
+      try {
+        sendJson(res, 200, JSON.parse(stdout));
+        return;
+      } catch {
+        // fall through
+      }
+    }
+    sendError(res, 500, 'STATUS_FAILED', err.message ?? String(err));
+  }
+}
+// Cached package.json — read once at module load so we never block on disk.
+const PKG_VERSION = (() => {
+  try { return require('../package.json').version; } catch { return 'unknown'; }
+})();
+async function handleGetStats(req, res) {
+  if (!PgClient) {
+    sendJson(res, 200, {
+      ok: false,
+      reason: 'pg-not-installed',
+      autopg: { version: PKG_VERSION },
+    });
+    return;
+  }
+  let client;
+  try {
+    const { settings } = loadEffectiveConfig();
+    const server = settings.server || {};
+    client = new PgClient({
+      host: server.host || '127.0.0.1',
+      port: server.port || 8432,
+      database: 'postgres',
+      user: server.pgUser || 'postgres',
+      password: server.pgPassword || 'postgres',
+      connectionTimeoutMillis: 1500,
+      query_timeout: 1500,
+    });
+    client.on('error', () => {}); // never crash the helper on PG hiccup
+    await client.connect();
+    // Single round-trip query covering everything the footer needs.
+    // pg_stat_activity gives client connections; pg_database the user-db
+    // count + total size; pg_stat_database the cache + xact aggregates;
+    // pg_settings for the short server_version (no parsing); and
+    // pg_postmaster_start_time for uptime.
+    const { rows: [row] } = await client.query(`
+      SELECT
+        (SELECT count(*)::int FROM pg_stat_activity
+          WHERE backend_type = 'client backend' AND pid <> pg_backend_pid()) AS connections,
+        (SELECT count(*)::int FROM pg_database
+          WHERE NOT datistemplate AND datname <> 'postgres') AS databases,
+        (SELECT setting FROM pg_settings WHERE name = 'server_version') AS pg_version,
+        EXTRACT(epoch FROM (now() - pg_postmaster_start_time()))::int AS uptime_sec,
+        (SELECT round(
+          100.0 * sum(blks_hit)::numeric
+            / nullif(sum(blks_hit) + sum(blks_read), 0),
+          2
+        )::float FROM pg_stat_database) AS cache_hit_pct,
+        (SELECT sum(xact_commit + xact_rollback)::bigint
+          FROM pg_stat_database) AS tx_total,
+        (SELECT sum(pg_database_size(datname))::bigint
+          FROM pg_database WHERE NOT datistemplate) AS size_bytes
+    `);
+    sendJson(res, 200, {
+      ok: true,
+      connections: row.connections,
+      databases: row.databases,
+      port: server.port || 8432,
+      pg: {
+        version: row.pg_version,
+        uptimeSec: row.uptime_sec,
+        cacheHitPct: row.cache_hit_pct,
+        txTotal: Number(row.tx_total ?? 0),
+        sizeBytes: Number(row.size_bytes ?? 0),
+      },
+      autopg: { version: PKG_VERSION },
+      ts: Date.now(),
+    });
+  } catch (err) {
+    sendJson(res, 200, {
+      ok: false,
+      reason: err.code || 'disconnected',
+      message: err.message,
+      autopg: { version: PKG_VERSION },
+    });
+  } finally {
+    if (client) {
+      try { await client.end(); } catch { /* already closed */ }
+    }
+  }
+}
+function handleStatic(req, res, root) {
+  let url = req.url.split('?')[0];
+  if (url === '/' || url === '') url = '/index.html';
+  const target = safeJoin(root, url);
+  if (!target) {
+    sendError(res, 400, 'BAD_PATH', 'invalid path');
+    return;
+  }
+  fs.stat(target, (statErr, stat) => {
+    if (statErr || !stat.isFile()) {
+      // SPA fallback: serve index.html on a miss so client routing works.
+      const fallback = path.join(root, 'index.html');
+      if (fs.existsSync(fallback)) {
+        serveFile(res, fallback);
+        return;
+      }
+      sendError(res, 404, 'NOT_FOUND', `no file at ${url}`);
+      return;
+    }
+    serveFile(res, target);
+  });
+}
+function serveFile(res, filePath) {
+  const ext = path.extname(filePath).toLowerCase();
+  const mime = MIME_TYPES[ext] || 'application/octet-stream';
+  fs.readFile(filePath, (err, data) => {
+    if (err) {
+      sendError(res, 500, 'READ_FAILED', err.message);
+      return;
+    }
+    res.writeHead(200, {
+      'content-type': mime,
+      'content-length': data.length,
+      'cache-control': 'no-cache',
+    });
+    res.end(data);
+  });
+}
+/**
+ * Build the request handler. `ctx.scriptPath` is the absolute path to
+ * `bin/pgserve-wrapper.cjs` (used for shell-outs). `ctx.consoleRoot`
+ * defaults to the repo's `console/` directory.
+ */
+function createHandler(ctx = {}) {
+  const consoleRoot = ctx.consoleRoot || resolveConsoleRoot();
+  return function handler(req, res) {
+    const url = req.url || '/';
+    const method = req.method || 'GET';
+    if (url.startsWith('/api/')) {
+      if (url === '/api/settings' && method === 'GET') return handleGetSettings(req, res);
+      if (url === '/api/settings' && method === 'PUT') return handlePutSettings(req, res);
+      if (url === '/api/restart' && method === 'POST') return handlePostRestart(req, res, ctx);
+      if (url === '/api/status' && method === 'GET') return handleGetStatus(req, res, ctx);
+      if (url === '/api/stats' && method === 'GET') return handleGetStats(req, res);
+      sendError(res, 404, 'NOT_FOUND', `${method} ${url}`);
+      return;
+    }
+    // Non-API → static file, GET/HEAD only.
+    if (method !== 'GET' && method !== 'HEAD') {
+      res.writeHead(405, { allow: 'GET, HEAD' });
+      res.end();
+      return;
+    }
+    handleStatic(req, res, consoleRoot);
+  };
+}
+/**
+ * Open a URL in the user's default browser. Best-effort: a failure is
+ * logged and the server keeps running. Operators can always copy the
+ * URL out of the boot banner.
+ */
+function openBrowser(url) {
+  let cmd;
+  let args;
+  if (process.platform === 'darwin') {
+    cmd = 'open';
+    args = [url];
+  } else if (process.platform === 'win32') {
+    cmd = 'cmd';
+    args = ['/c', 'start', '""', url];
+  } else {
+    cmd = 'xdg-open';
+    args = [url];
+  }
+  try {
+    const child = spawn(cmd, args, { stdio: 'ignore', detached: true });
+    child.on('error', () => {
+      process.stderr.write(`autopg: could not auto-open browser; visit ${url}\n`);
+    });
+    child.unref();
+  } catch {
+    process.stderr.write(`autopg: could not auto-open browser; visit ${url}\n`);
+  }
+}
+/**
+ * Boot the UI server. Resolves to `{ server, port, close }` so callers
+ * (and tests) can shut it down deterministically.
+ *
+ * In CLI mode, callers should pass `wireSignals: true` so SIGINT/SIGTERM
+ * stop the server cleanly and the process exits 0.
+ */
+async function startServer({ args = [], scriptPath, consoleRoot, wireSignals = false, openInBrowser = openBrowser } = {}) {
+  const opts = parseArgs(args);
+  const handler = createHandler({ scriptPath, consoleRoot });
+  const server = http.createServer(handler);
+  const { port } = await listenWithFallback(server, opts.host, opts.port);
+  const url = `http://${opts.host}:${port}`;
+  process.stdout.write(`autopg ui: listening on ${url}\n`);
+  process.stdout.write(`autopg ui: settings file is ${getSettingsPath()}\n`);
+  if (!opts.noOpen) {
+    openInBrowser(url);
+  }
+  function close() {
+    return new Promise((resolve) => server.close(() => resolve()));
+  }
+  if (wireSignals) {
+    const stop = async (sig) => {
+      process.stdout.write(`\nautopg ui: ${sig} received, shutting down\n`);
+      await close();
+      process.exit(0);
+    };
+    process.once('SIGINT', () => stop('SIGINT'));
+    process.once('SIGTERM', () => stop('SIGTERM'));
+  }
+  return { server, port, url, close };
+}
+/**
+ * CLI dispatch entry. Boots the server and parks until SIGINT/SIGTERM.
+ * Always returns 0 — the signal handlers exit the process directly.
+ */
+async function dispatch(args = [], ctx = {}) {
+  try {
+    await startServer({
+      args,
+      scriptPath: ctx.scriptPath,
+      consoleRoot: ctx.consoleRoot,
+      wireSignals: true,
+    });
+  } catch (err) {
+    process.stderr.write(`autopg ui: ${err.message ?? err}\n`);
+    return 1;
+  }
+  // Park forever — signal handlers terminate the process.
+  return new Promise(() => {});
+}
+module.exports = {
+  dispatch,
+  startServer,
+  createHandler,
+  parseArgs,
+  resolveConsoleRoot,
+  // Test surface
+  _internals: {
+    listenWithFallback,
+    safeJoin,
+    deepMergePlain,
+    handleGetSettings,
+    handlePutSettings,
+    handlePostRestart,
+    handleGetStatus,
+    openBrowser,
+    PORT_RANGE_START,
+    PORT_RANGE_END,
+  },
+};

package/src/cluster.js CHANGED Viewed

@@ -16,6 +16,7 @@ import { createLogger } from './logger.js';
 import { PostgresManager } from './postgres.js';
 import { extractDatabaseName } from './protocol.js';
 import { EventEmitter } from 'events';
+import { loadEffectiveConfig } from './settings-loader.cjs';
 // PostgreSQL protocol constants
 const PROTOCOL_VERSION_3 = 196608;
@@ -427,21 +428,31 @@ export async function startClusterServer(options = {}) {
     const workers = new Map();
     const workerStats = new Map(); // Track stats from each worker
-    // Fork workers with PostgreSQL connection info
+    // Fork workers with PostgreSQL connection info.
+    //
+    // Pass through using AUTOPG_<X> (the primary names) so workers don't
+    // emit the legacy-PGSERVE deprecation log for our own internal IPC.
+    // PGSERVE_WORKER stays as-is — it's an internal flag, not part of the
+    // settings precedence chain.
+    const workerEnv = () => ({
+      PGSERVE_WORKER: 'true',
+      AUTOPG_PORT: String(port),
+      AUTOPG_HOST: host,
+      AUTOPG_PG_SOCKET: pgSocketPath || '',
+      AUTOPG_PG_PORT: String(pgPort),
+      AUTOPG_PG_USER: 'postgres',
+      AUTOPG_PG_PASSWORD: 'postgres',
+      AUTOPG_LOG_LEVEL: options.logLevel || 'info',
+      AUTOPG_AUTO_PROVISION: options.autoProvision !== false ? 'true' : 'false',
+      // max_connections is a postgres GUC, not a server-level env. Workers
+      // read it from settings.postgres via loadEffectiveConfig; we still
+      // ship the value here so a CLI override (e.g. `--max-connections`)
+      // reaches the worker before the daemon writes settings.json.
+      AUTOPG_MAX_CONNECTIONS: String(options.maxConnections || 1000),
+      AUTOPG_ENABLE_PGVECTOR: options.enablePgvector ? 'true' : 'false',
+    });
     for (let i = 0; i < numWorkers; i++) {
-      const worker = cluster.fork({
-        PGSERVE_WORKER: 'true',
-        PGSERVE_PORT: String(port),
-        PGSERVE_HOST: host,
-        PGSERVE_PG_SOCKET: pgSocketPath || '',
-        PGSERVE_PG_PORT: String(pgPort),
-        PGSERVE_PG_USER: 'postgres',
-        PGSERVE_PG_PASSWORD: 'postgres',
-        PGSERVE_LOG_LEVEL: options.logLevel || 'info',
-        PGSERVE_AUTO_PROVISION: options.autoProvision !== false ? 'true' : 'false',
-        PGSERVE_MAX_CONNECTIONS: String(options.maxConnections || 1000),
-        PGSERVE_ENABLE_PGVECTOR: options.enablePgvector ? 'true' : 'false'
-      });
+      const worker = cluster.fork(workerEnv());
       workers.set(worker.id, worker);
     }
@@ -457,19 +468,7 @@ export async function startClusterServer(options = {}) {
       }
       console.log(`[pgserve] Worker ${worker.id} died (${signal || code}), restarting...`);
-      const newWorker = cluster.fork({
-        PGSERVE_WORKER: 'true',
-        PGSERVE_PORT: String(port),
-        PGSERVE_HOST: host,
-        PGSERVE_PG_SOCKET: pgSocketPath || '',
-        PGSERVE_PG_PORT: String(pgPort),
-        PGSERVE_PG_USER: 'postgres',
-        PGSERVE_PG_PASSWORD: 'postgres',
-        PGSERVE_LOG_LEVEL: options.logLevel || 'info',
-        PGSERVE_AUTO_PROVISION: options.autoProvision !== false ? 'true' : 'false',
-        PGSERVE_MAX_CONNECTIONS: String(options.maxConnections || 1000),
-        PGSERVE_ENABLE_PGVECTOR: options.enablePgvector ? 'true' : 'false'
-      });
+      const newWorker = cluster.fork(workerEnv());
       workers.set(newWorker.id, newWorker);
     });
@@ -545,18 +544,24 @@ export async function startClusterServer(options = {}) {
       pgManager
     };
   } else {
-    // WORKER: Only run TCP routing, connect to PRIMARY's PostgreSQL
+    // WORKER: Only run TCP routing, connect to PRIMARY's PostgreSQL.
+    //
+    // Worker config comes from loadEffectiveConfig() (defaults < file < env).
+    // The primary fork() above sets PGSERVE_* env vars so existing supervised
+    // installs keep working; AUTOPG_* env vars take precedence when set, and
+    // a one-time deprecation note is emitted for legacy-only PGSERVE_* hits.
+    const { settings } = loadEffectiveConfig();
     const router = new ClusterRouter({
-      port: parseInt(process.env.PGSERVE_PORT) || 8432,
-      host: process.env.PGSERVE_HOST || '127.0.0.1',
-      pgSocketPath: process.env.PGSERVE_PG_SOCKET || null,
-      pgPort: parseInt(process.env.PGSERVE_PG_PORT) || 6432,
-      pgUser: process.env.PGSERVE_PG_USER || 'postgres',
-      pgPassword: process.env.PGSERVE_PG_PASSWORD || 'postgres',
-      logLevel: process.env.PGSERVE_LOG_LEVEL || 'info',
-      autoProvision: process.env.PGSERVE_AUTO_PROVISION === 'true',
-      maxConnections: parseInt(process.env.PGSERVE_MAX_CONNECTIONS) || 1000,
-      enablePgvector: process.env.PGSERVE_ENABLE_PGVECTOR === 'true'
+      port: settings.server.port,
+      host: settings.server.host,
+      pgSocketPath: settings.server.pgSocketPath || null,
+      pgPort: settings.server.pgPort,
+      pgUser: settings.server.pgUser,
+      pgPassword: settings.server.pgPassword,
+      logLevel: settings.runtime.logLevel,
+      autoProvision: settings.runtime.autoProvision,
+      maxConnections: settings.postgres.max_connections,
+      enablePgvector: settings.runtime.enablePgvector,
     });
     await router.start();