npm - qhttpx - Versions diffs - 1.8.0 - Mend

qhttpx 1.8.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (197) hide show

package/.eslintrc.json +22 -0
package/.github/workflows/ci.yml +32 -0
package/.github/workflows/npm-publish.yml +37 -0
package/.github/workflows/release.yml +21 -0
package/.prettierrc +7 -0
package/CHANGELOG.md +145 -0
package/LICENSE +21 -0
package/README.md +343 -0
package/dist/package.json +61 -0
package/dist/src/benchmarks/compare-frameworks.js +119 -0
package/dist/src/benchmarks/quantam-users.js +56 -0
package/dist/src/benchmarks/simple-json.js +58 -0
package/dist/src/benchmarks/ultra-mode.js +122 -0
package/dist/src/cli/index.js +200 -0
package/dist/src/client/index.js +72 -0
package/dist/src/core/batch.js +97 -0
package/dist/src/core/body-parser.js +121 -0
package/dist/src/core/buffer-pool.js +70 -0
package/dist/src/core/config.js +50 -0
package/dist/src/core/fusion.js +183 -0
package/dist/src/core/logger.js +49 -0
package/dist/src/core/metrics.js +111 -0
package/dist/src/core/resources.js +25 -0
package/dist/src/core/scheduler.js +85 -0
package/dist/src/core/scope.js +68 -0
package/dist/src/core/serializer.js +44 -0
package/dist/src/core/server.js +905 -0
package/dist/src/core/stream.js +71 -0
package/dist/src/core/tasks.js +87 -0
package/dist/src/core/types.js +19 -0
package/dist/src/core/websocket.js +86 -0
package/dist/src/core/worker-queue.js +73 -0
package/dist/src/database/adapters/memory.js +90 -0
package/dist/src/database/adapters/mongo.js +141 -0
package/dist/src/database/adapters/postgres.js +111 -0
package/dist/src/database/adapters/sqlite.js +42 -0
package/dist/src/database/coalescer.js +134 -0
package/dist/src/database/manager.js +87 -0
package/dist/src/database/types.js +2 -0
package/dist/src/index.js +61 -0
package/dist/src/middleware/compression.js +133 -0
package/dist/src/middleware/cors.js +66 -0
package/dist/src/middleware/presets.js +33 -0
package/dist/src/middleware/rate-limit.js +77 -0
package/dist/src/middleware/security.js +69 -0
package/dist/src/middleware/static.js +191 -0
package/dist/src/openapi/generator.js +149 -0
package/dist/src/router/radix-router.js +89 -0
package/dist/src/router/radix-tree.js +81 -0
package/dist/src/router/router.js +146 -0
package/dist/src/testing/index.js +84 -0
package/dist/src/utils/cookies.js +59 -0
package/dist/src/utils/logger.js +45 -0
package/dist/src/utils/signals.js +31 -0
package/dist/src/utils/sse.js +32 -0
package/dist/src/validation/index.js +19 -0
package/dist/src/validation/simple.js +102 -0
package/dist/src/validation/types.js +12 -0
package/dist/src/validation/zod.js +18 -0
package/dist/src/views/index.js +17 -0
package/dist/src/views/types.js +2 -0
package/dist/tests/adapters.test.js +106 -0
package/dist/tests/batch.test.js +117 -0
package/dist/tests/body-parser.test.js +52 -0
package/dist/tests/compression-sse.test.js +87 -0
package/dist/tests/cookies.test.js +63 -0
package/dist/tests/cors.test.js +55 -0
package/dist/tests/database.test.js +80 -0
package/dist/tests/dx.test.js +64 -0
package/dist/tests/ecosystem.test.js +133 -0
package/dist/tests/features.test.js +47 -0
package/dist/tests/fusion.test.js +92 -0
package/dist/tests/http-basic.test.js +124 -0
package/dist/tests/logger.test.js +33 -0
package/dist/tests/middleware.test.js +109 -0
package/dist/tests/observability.test.js +59 -0
package/dist/tests/openapi.test.js +64 -0
package/dist/tests/plugin.test.js +65 -0
package/dist/tests/plugins.test.js +71 -0
package/dist/tests/rate-limit.test.js +77 -0
package/dist/tests/resources.test.js +44 -0
package/dist/tests/scheduler.test.js +46 -0
package/dist/tests/schema-routes.test.js +77 -0
package/dist/tests/security.test.js +83 -0
package/dist/tests/server-db.test.js +72 -0
package/dist/tests/smoke.test.js +10 -0
package/dist/tests/sqlite-fusion.test.js +92 -0
package/dist/tests/static.test.js +102 -0
package/dist/tests/stream.test.js +44 -0
package/dist/tests/task-metrics.test.js +53 -0
package/dist/tests/tasks.test.js +62 -0
package/dist/tests/testing.test.js +47 -0
package/dist/tests/validation.test.js +107 -0
package/dist/tests/websocket.test.js +146 -0
package/dist/vitest.config.js +9 -0
package/docs/AEGIS.md +76 -0
package/docs/BENCHMARKS.md +36 -0
package/docs/CAPABILITIES.md +70 -0
package/docs/CLI.md +43 -0
package/docs/DATABASE.md +142 -0
package/docs/ECOSYSTEM.md +146 -0
package/docs/NEXT_STEPS.md +99 -0
package/docs/OPENAPI.md +99 -0
package/docs/PLUGINS.md +59 -0
package/docs/REAL_WORLD_EXAMPLES.md +109 -0
package/docs/ROADMAP.md +366 -0
package/docs/VALIDATION.md +136 -0
package/eslint.config.cjs +26 -0
package/examples/api-server.ts +254 -0
package/package.json +61 -0
package/src/benchmarks/compare-frameworks.ts +149 -0
package/src/benchmarks/quantam-users.ts +70 -0
package/src/benchmarks/simple-json.ts +71 -0
package/src/benchmarks/ultra-mode.ts +159 -0
package/src/cli/index.ts +214 -0
package/src/client/index.ts +93 -0
package/src/core/batch.ts +110 -0
package/src/core/body-parser.ts +151 -0
package/src/core/buffer-pool.ts +96 -0
package/src/core/config.ts +60 -0
package/src/core/fusion.ts +210 -0
package/src/core/logger.ts +70 -0
package/src/core/metrics.ts +166 -0
package/src/core/resources.ts +38 -0
package/src/core/scheduler.ts +126 -0
package/src/core/scope.ts +87 -0
package/src/core/serializer.ts +41 -0
package/src/core/server.ts +1113 -0
package/src/core/stream.ts +111 -0
package/src/core/tasks.ts +138 -0
package/src/core/types.ts +178 -0
package/src/core/websocket.ts +112 -0
package/src/core/worker-queue.ts +90 -0
package/src/database/adapters/memory.ts +99 -0
package/src/database/adapters/mongo.ts +116 -0
package/src/database/adapters/postgres.ts +86 -0
package/src/database/adapters/sqlite.ts +44 -0
package/src/database/coalescer.ts +153 -0
package/src/database/manager.ts +97 -0
package/src/database/types.ts +24 -0
package/src/index.ts +42 -0
package/src/middleware/compression.ts +147 -0
package/src/middleware/cors.ts +98 -0
package/src/middleware/presets.ts +50 -0
package/src/middleware/rate-limit.ts +106 -0
package/src/middleware/security.ts +109 -0
package/src/middleware/static.ts +216 -0
package/src/openapi/generator.ts +167 -0
package/src/router/radix-router.ts +119 -0
package/src/router/radix-tree.ts +106 -0
package/src/router/router.ts +190 -0
package/src/testing/index.ts +104 -0
package/src/utils/cookies.ts +67 -0
package/src/utils/logger.ts +59 -0
package/src/utils/signals.ts +45 -0
package/src/utils/sse.ts +41 -0
package/src/validation/index.ts +3 -0
package/src/validation/simple.ts +93 -0
package/src/validation/types.ts +38 -0
package/src/validation/zod.ts +14 -0
package/src/views/index.ts +1 -0
package/src/views/types.ts +4 -0
package/tests/adapters.test.ts +120 -0
package/tests/batch.test.ts +139 -0
package/tests/body-parser.test.ts +83 -0
package/tests/compression-sse.test.ts +98 -0
package/tests/cookies.test.ts +74 -0
package/tests/cors.test.ts +79 -0
package/tests/database.test.ts +90 -0
package/tests/dx.test.ts +78 -0
package/tests/ecosystem.test.ts +156 -0
package/tests/features.test.ts +51 -0
package/tests/fusion.test.ts +121 -0
package/tests/http-basic.test.ts +161 -0
package/tests/logger.test.ts +48 -0
package/tests/middleware.test.ts +137 -0
package/tests/observability.test.ts +91 -0
package/tests/openapi.test.ts +74 -0
package/tests/plugin.test.ts +85 -0
package/tests/plugins.test.ts +93 -0
package/tests/rate-limit.test.ts +97 -0
package/tests/resources.test.ts +64 -0
package/tests/scheduler.test.ts +71 -0
package/tests/schema-routes.test.ts +89 -0
package/tests/security.test.ts +128 -0
package/tests/server-db.test.ts +72 -0
package/tests/smoke.test.ts +9 -0
package/tests/sqlite-fusion.test.ts +106 -0
package/tests/static.test.ts +111 -0
package/tests/stream.test.ts +58 -0
package/tests/task-metrics.test.ts +78 -0
package/tests/tasks.test.ts +90 -0
package/tests/testing.test.ts +53 -0
package/tests/validation.test.ts +126 -0
package/tests/websocket.test.ts +132 -0
package/tsconfig.json +16 -0
package/vitest.config.ts +9 -0

package/tests/scheduler.test.ts ADDED Viewed

@@ -0,0 +1,71 @@
+import { describe, expect, it, vi } from 'vitest';
+import { Scheduler } from '../src/core/scheduler';
+describe('Scheduler', () => {
+  it('runs tasks within concurrency limit', async () => {
+    const scheduler = new Scheduler({ maxConcurrency: 4 });
+    const order: number[] = [];
+    await Promise.all([
+      scheduler.run(
+        async () => {
+          order.push(1);
+        },
+        {},
+      ),
+      scheduler.run(
+        async () => {
+          order.push(2);
+        },
+        {},
+      ),
+    ]);
+    expect(order.sort()).toEqual([1, 2]);
+    expect(scheduler.getCurrentInFlight()).toBe(0);
+  });
+  it('calls onOverloaded when limit is reached', async () => {
+    const scheduler = new Scheduler({ maxConcurrency: 1 });
+    const overloaded = vi.fn();
+    let resolveFirst: (() => void) | undefined;
+    const firstTask = scheduler.run(
+      () =>
+        new Promise<void>((resolve) => {
+          resolveFirst = resolve;
+        }),
+      {},
+    );
+    await scheduler.run(async () => {}, { onOverloaded: overloaded });
+    expect(overloaded).toHaveBeenCalledTimes(1);
+    expect(scheduler.getCurrentInFlight()).toBe(1);
+    resolveFirst?.();
+    await firstTask;
+    expect(scheduler.getCurrentInFlight()).toBe(0);
+  });
+  it('invokes timeout callback when task exceeds timeout', async () => {
+    const scheduler = new Scheduler({ maxConcurrency: 1 });
+    const onTimeout = vi.fn();
+    await scheduler.run(
+      () =>
+        new Promise<void>((resolve) => {
+          setTimeout(resolve, 50);
+        }),
+      {
+        timeoutMs: 10,
+        onTimeout,
+      },
+    );
+    expect(onTimeout).toHaveBeenCalledTimes(1);
+    expect(scheduler.getCurrentInFlight()).toBe(0);
+  });
+});

package/tests/schema-routes.test.ts ADDED Viewed

@@ -0,0 +1,89 @@
+import { describe, it, expect, beforeAll, afterAll } from 'vitest';
+import { QHTTPX } from '../src/index';
+describe('Schema-based Routes', () => {
+  let app: QHTTPX;
+  let port: number;
+  beforeAll(async () => {
+    app = new QHTTPX({
+        performanceMode: 'ultra'
+    });
+    const UserSchema = {
+      type: 'object',
+      properties: {
+        id: { type: 'integer' },
+        name: { type: 'string' },
+        email: { type: 'string' }
+      },
+      required: ['id', 'name']
+    };
+    app.get('/user', {
+      schema: UserSchema,
+      handler(ctx) {
+        ctx.json({
+          id: 1,
+          name: 'John Doe',
+          email: 'john@example.com',
+          extra: 'should be ignored'
+        });
+      }
+    });
+    app.get('/no-schema', (ctx) => {
+        ctx.json({ foo: 'bar', run: ctx.state.middlewareRun });
+    });
+    app.use(async (ctx, next) => {
+        ctx.state.middlewareRun = true;
+        await next();
+    });
+    app.get('/middleware-check', (ctx) => {
+        ctx.json({ run: ctx.state.middlewareRun });
+    });
+    const result = await app.listen(0);
+    port = result.port;
+  });
+  afterAll(async () => {
+    await app.close();
+  });
+  it('should serialize using the provided schema', async () => {
+    const response = await fetch(`http://localhost:${port}/user`);
+    expect(response.status).toBe(200);
+    const body = await response.json();
+    expect(body).toEqual({
+      id: 1,
+      name: 'John Doe',
+      email: 'john@example.com'
+    });
+    // 'extra' should be missing
+    // eslint-disable-next-line @typescript-eslint/no-explicit-any
+    expect((body as any).extra).toBeUndefined();
+  });
+  it('should work without schema', async () => {
+      const response = await fetch(`http://localhost:${port}/no-schema`);
+      expect(response.status).toBe(200);
+      const body = await response.json();
+      expect(body).toEqual({ foo: 'bar' });
+      // Middleware was added AFTER this route, so it should NOT run
+      // eslint-disable-next-line @typescript-eslint/no-explicit-any
+      expect((body as any).run).toBeUndefined();
+  });
+  it('should run middlewares', async () => {
+      const response = await fetch(`http://localhost:${port}/middleware-check`);
+      expect(response.status).toBe(200);
+      const body = await response.json();
+      // eslint-disable-next-line @typescript-eslint/no-explicit-any
+      expect((body as any).run).toBe(true);
+  });
+});

package/tests/security.test.ts ADDED Viewed

@@ -0,0 +1,128 @@
+import { afterEach, describe, expect, it } from 'vitest';
+import {
+  QHTTPX,
+  createRateLimitMiddleware,
+  createSecureDefaults,
+  createSecurityHeadersMiddleware,
+} from '../src';
+describe('Security and rate limiting middleware', () => {
+  let app: QHTTPX | undefined;
+  afterEach(async () => {
+    if (app) {
+      await app.close();
+      app = undefined;
+    }
+  });
+  it('applies default security headers', async () => {
+    app = new QHTTPX();
+    app.use(createSecurityHeadersMiddleware());
+    app.get('/ping', (ctx) => {
+      ctx.send('pong');
+    });
+    const { port } = await app.listen(0, '127.0.0.1');
+    const response = await fetch(`http://127.0.0.1:${port}/ping`);
+    expect(response.status).toBe(200);
+    expect(await response.text()).toBe('pong');
+    expect(response.headers.get('content-security-policy')).toBe(
+      "default-src 'self'",
+    );
+    expect(response.headers.get('referrer-policy')).toBe('no-referrer');
+    expect(response.headers.get('x-frame-options')).toBe('SAMEORIGIN');
+    expect(response.headers.get('x-content-type-options')).toBe('nosniff');
+    expect(response.headers.get('x-xss-protection')).toBe('1; mode=block');
+  });
+  it('allows overriding and disabling specific headers', async () => {
+    app = new QHTTPX();
+    app.use(
+      createSecurityHeadersMiddleware({
+        contentSecurityPolicy: "default-src 'self' https://cdn.example.com",
+        referrerPolicy: 'strict-origin-when-cross-origin',
+        xFrameOptions: null,
+        strictTransportSecurity: 'max-age=31536000; includeSubDomains',
+      }),
+    );
+    app.get('/ping', (ctx) => {
+      ctx.send('pong');
+    });
+    const { port } = await app.listen(0, '127.0.0.1');
+    const response = await fetch(`http://127.0.0.1:${port}/ping`);
+    expect(response.status).toBe(200);
+    expect(response.headers.get('content-security-policy')).toBe(
+      "default-src 'self' https://cdn.example.com",
+    );
+    expect(response.headers.get('referrer-policy')).toBe(
+      'strict-origin-when-cross-origin',
+    );
+    expect(response.headers.get('x-frame-options')).toBeNull();
+    expect(response.headers.get('strict-transport-security')).toBe(
+      'max-age=31536000; includeSubDomains',
+    );
+  });
+  it('provides secure defaults preset combining CORS and headers', async () => {
+    app = new QHTTPX();
+    const middlewares = createSecureDefaults();
+    for (const mw of middlewares) {
+      app.use(mw);
+    }
+    app.get('/ping', (ctx) => {
+      ctx.send('pong');
+    });
+    const { port } = await app.listen(0, '127.0.0.1');
+    const response = await fetch(`http://127.0.0.1:${port}/ping`, {
+      method: 'GET',
+      headers: {
+        origin: 'http://example.com',
+      },
+    });
+    expect(response.status).toBe(200);
+    expect(response.headers.get('access-control-allow-origin')).toBe('*');
+    expect(response.headers.get('content-security-policy')).toBe(
+      "default-src 'self'",
+    );
+  });
+  it('applies in-memory rate limiting per remote address', async () => {
+    app = new QHTTPX();
+    app.use(
+      createRateLimitMiddleware({
+        maxRequests: 1,
+        windowMs: 1000,
+      }),
+    );
+    app.get('/ping', (ctx) => {
+      ctx.send('pong');
+    });
+    const { port } = await app.listen(0, '127.0.0.1');
+    const first = await fetch(`http://127.0.0.1:${port}/ping`);
+    const second = await fetch(`http://127.0.0.1:${port}/ping`);
+    expect(first.status).toBe(200);
+    expect(second.status).toBe(429);
+  });
+});

package/tests/server-db.test.ts ADDED Viewed

@@ -0,0 +1,72 @@
+import { describe, it, expect, beforeEach, afterEach } from 'vitest';
+import { QHTTPX } from '../src/core/server';
+import { DatabaseManager } from '../src/database/manager';
+import { MemoryAdapter } from '../src/database/adapters/memory';
+import http from 'http';
+describe('Server Database Integration', () => {
+  let app: QHTTPX;
+  let dbManager: DatabaseManager;
+  beforeEach(async () => {
+    DatabaseManager.registerAdapter('memory', MemoryAdapter);
+    dbManager = new DatabaseManager({
+      default: 'main',
+      connections: {
+        main: {
+          type: 'memory',
+          database: 'test_db'
+        }
+      }
+    });
+    await dbManager.connect();
+    app = new QHTTPX({
+      database: dbManager
+    });
+  });
+  afterEach(async () => {
+    await app.close();
+    await dbManager.disconnect();
+  });
+  it('should expose database manager in context', async () => {
+    return new Promise<void>(async (resolve, reject) => {
+      app.get('/db-test', (ctx) => {
+        try {
+          expect(ctx.db).toBeDefined();
+          expect(ctx.db).toBe(dbManager);
+          expect(ctx.db?.get('main').isConnected()).toBe(true);
+          ctx.json({ status: 'ok' });
+        } catch (error) {
+          // If expect fails, we need to make sure the test fails
+          // But throwing here might be caught by the server error handler
+          // So we set a flag or just let it fail naturally if vitest handles async exceptions
+          // For now, let's reject the promise
+          reject(error);
+        }
+      });
+      try {
+        const { port } = await app.listen(0);
+        const req = http.get(`http://localhost:${port}/db-test`, (res) => {
+            if (res.statusCode !== 200) {
+                 reject(new Error(`Status code: ${res.statusCode}`));
+                 return;
+            }
+            res.on('data', () => {});
+            res.on('end', () => {
+                resolve();
+            });
+        });
+        req.on('error', (err) => {
+            reject(err);
+        });
+      } catch (err) {
+        reject(err);
+      }
+    });
+  });
+});

package/tests/smoke.test.ts ADDED Viewed

@@ -0,0 +1,9 @@
+import { describe, expect, it } from 'vitest';
+import { QHTTPX } from '../src/index';
+describe('qhttpx smoke', () => {
+  it('constructs a QHTTPX instance', () => {
+    const app = new QHTTPX();
+    expect(app).toBeInstanceOf(QHTTPX);
+  });
+});

package/tests/sqlite-fusion.test.ts ADDED Viewed

@@ -0,0 +1,106 @@
+import { describe, it, expect, beforeEach, afterEach } from 'vitest';
+import { QHTTPX } from '../src/core/server';
+import { DatabaseManager } from '../src/database/manager';
+import { SQLiteAdapter } from '../src/database/adapters/sqlite';
+describe('SQLite Query Fusion', () => {
+  let app: QHTTPX;
+  let dbManager: DatabaseManager;
+  beforeEach(async () => {
+    // Register SQLite adapter
+    DatabaseManager.registerAdapter('sqlite', SQLiteAdapter);
+    // Use in-memory SQLite DB
+    dbManager = new DatabaseManager({
+      default: 'main',
+      connections: {
+        main: { type: 'sqlite', database: ':memory:' }
+      }
+    });
+    await dbManager.connect();
+    // Setup schema and data
+    const adapter = dbManager.get('main');
+    await adapter.query('CREATE TABLE users (id INTEGER PRIMARY KEY, name TEXT)');
+    await adapter.query("INSERT INTO users (id, name) VALUES (1, 'Alice')");
+    await adapter.query("INSERT INTO users (id, name) VALUES (2, 'Bob')");
+    await adapter.query("INSERT INTO users (id, name) VALUES (3, 'Charlie')");
+    app = new QHTTPX({
+      database: dbManager,
+      enableBatching: true
+    });
+  });
+  afterEach(async () => {
+    if (app) await app.close();
+    if (dbManager) await dbManager.disconnect();
+  });
+  it('should fuse SELECT queries with SQLite', async () => {
+    // Wrap the adapter to spy on queries
+    const realAdapter = dbManager.get('main');
+    const originalQuery = realAdapter.query.bind(realAdapter);
+    const queries: string[] = [];
+    // eslint-disable-next-line @typescript-eslint/no-explicit-any
+    realAdapter.query = async (sql: string, params?: any[]) => {
+        queries.push(sql);
+        return originalQuery(sql, params);
+    };
+    app.op('getUser', async (params, ctx) => {
+      // This matches the coalescer pattern: "SELECT ... WHERE id = ?"
+      if (!ctx.db) throw new Error('No DB');
+      const rows = await ctx.db.get().query('SELECT * FROM users WHERE id = ?', [params.id]);
+      return rows[0];
+    });
+    const { port } = await app.listen(0);
+    const batch = {
+      batch: [
+        { op: 'getUser', params: { id: 1 }, id: 1 },
+        { op: 'getUser', params: { id: 2 }, id: 2 },
+        { op: 'getUser', params: { id: 3 }, id: 3 }
+      ]
+    };
+    const response = await fetch(`http://localhost:${port}/qhttpx`, {
+      method: 'POST',
+      headers: { 'Content-Type': 'application/json' },
+      body: JSON.stringify(batch)
+    });
+    // eslint-disable-next-line @typescript-eslint/no-explicit-any
+    const data = await response.json() as any;
+    // Verify results
+    expect(data.results).toHaveLength(3);
+    // eslint-disable-next-line @typescript-eslint/no-explicit-any
+    const r1 = data.results.find((r: any) => r.id === 1);
+    // eslint-disable-next-line @typescript-eslint/no-explicit-any
+    const r2 = data.results.find((r: any) => r.id === 2);
+    // eslint-disable-next-line @typescript-eslint/no-explicit-any
+    const r3 = data.results.find((r: any) => r.id === 3);
+    expect(r1.result).toEqual({ id: 1, name: 'Alice' });
+    expect(r2.result).toEqual({ id: 2, name: 'Bob' });
+    expect(r3.result).toEqual({ id: 3, name: 'Charlie' });
+    // Verify FUSION
+    const selectQueries = queries.filter(q => q.trim().toUpperCase().startsWith('SELECT'));
+    // It should contain an IN clause
+    const fusedQuery = selectQueries.find(q => q.includes('IN ('));
+    expect(fusedQuery).toBeDefined();
+    // Ensure we didn't run 3 individual queries
+    // The spy catches the FUSED query, but NOT the individual ones if they were fused.
+    // If fusion FAILED, we would see 3 queries with "= ?"
+    const individualQueries = selectQueries.filter(q => q.includes('= ?'));
+    expect(individualQueries).toHaveLength(0);
+  });
+});

package/tests/static.test.ts ADDED Viewed

@@ -0,0 +1,111 @@
+import { describe, expect, it, beforeAll, afterAll } from 'vitest';
+import path from 'path';
+import fs from 'fs';
+// import http from 'http';
+import { QHTTPX } from '../src/core/server';
+import { createStaticMiddleware } from '../src/middleware/static';
+const TEST_DIR = path.join(__dirname, 'fixtures');
+const TEST_FILE = path.join(TEST_DIR, 'test.txt');
+const TEST_CONTENT = 'Hello World! This is a test file for QHTTPX static middleware.';
+describe('static middleware', () => {
+  let app: QHTTPX;
+  let serverUrl: string;
+  beforeAll(async () => {
+    // Create fixtures
+    if (!fs.existsSync(TEST_DIR)) fs.mkdirSync(TEST_DIR);
+    fs.writeFileSync(TEST_FILE, TEST_CONTENT);
+    app = new QHTTPX();
+    app.use(createStaticMiddleware({ root: TEST_DIR }));
+    const { port } = await app.listen(0, '127.0.0.1');
+    serverUrl = `http://127.0.0.1:${port}`;
+  });
+  afterAll(async () => {
+    await app.close();
+    // Cleanup
+    if (fs.existsSync(TEST_FILE)) fs.unlinkSync(TEST_FILE);
+    if (fs.existsSync(TEST_DIR)) fs.rmdirSync(TEST_DIR);
+  });
+  it('should serve a static file', async () => {
+    const response = await fetch(`${serverUrl}/test.txt`);
+    expect(response.status).toBe(200);
+    expect(response.headers.get('content-type')).toContain('text/plain');
+    const text = await response.text();
+    expect(text).toBe(TEST_CONTENT);
+  });
+  it('should support HEAD requests', async () => {
+    const response = await fetch(`${serverUrl}/test.txt`, { method: 'HEAD' });
+    expect(response.status).toBe(200);
+    expect(response.headers.get('content-type')).toContain('text/plain');
+    expect(response.headers.get('content-length')).toBe(TEST_CONTENT.length.toString());
+    const text = await response.text();
+    expect(text).toBe('');
+  });
+  it('should support Range requests (first byte)', async () => {
+    const response = await fetch(`${serverUrl}/test.txt`, {
+      headers: { Range: 'bytes=0-0' }
+    });
+    expect(response.status).toBe(206);
+    expect(response.headers.get('content-range')).toBe(`bytes 0-0/${TEST_CONTENT.length}`);
+    expect(response.headers.get('content-length')).toBe('1');
+    const text = await response.text();
+    expect(text).toBe('H');
+  });
+  it('should support Range requests (partial)', async () => {
+    const response = await fetch(`${serverUrl}/test.txt`, {
+      headers: { Range: 'bytes=0-4' }
+    });
+    expect(response.status).toBe(206);
+    expect(response.headers.get('content-range')).toBe(`bytes 0-4/${TEST_CONTENT.length}`);
+    expect(response.headers.get('content-length')).toBe('5');
+    const text = await response.text();
+    expect(text).toBe('Hello');
+  });
+  it('should return 416 for invalid Range', async () => {
+    const response = await fetch(`${serverUrl}/test.txt`, {
+      headers: { Range: 'bytes=1000-2000' }
+    });
+    expect(response.status).toBe(416);
+    expect(response.headers.get('content-range')).toBe(`bytes */${TEST_CONTENT.length}`);
+  });
+  it('should support ETag caching (304 Not Modified)', async () => {
+    const response1 = await fetch(`${serverUrl}/test.txt`);
+    const etag = response1.headers.get('etag');
+    expect(etag).toBeTruthy();
+    const response2 = await fetch(`${serverUrl}/test.txt`, {
+      headers: { 'If-None-Match': etag! }
+    });
+    expect(response2.status).toBe(304);
+    const text = await response2.text();
+    expect(text).toBe('');
+  });
+  it('should support Last-Modified caching (304 Not Modified)', async () => {
+    const response1 = await fetch(`${serverUrl}/test.txt`);
+    const lastModified = response1.headers.get('last-modified');
+    expect(lastModified).toBeTruthy();
+    const response2 = await fetch(`${serverUrl}/test.txt`, {
+      headers: { 'If-Modified-Since': lastModified! }
+    });
+    expect(response2.status).toBe(304);
+  });
+  it('should return 404 for non-existent file', async () => {
+    const response = await fetch(`${serverUrl}/does-not-exist.txt`);
+    expect(response.status).toBe(404);
+  });
+});

package/tests/stream.test.ts ADDED Viewed

@@ -0,0 +1,58 @@
+import { Readable } from 'stream';
+import { afterEach, describe, expect, it } from 'vitest';
+import { QHTTPX, createSseStream, sendStream } from '../src';
+describe('Streaming helpers', () => {
+  let app: QHTTPX | undefined;
+  afterEach(async () => {
+    if (app) {
+      await app.close();
+      app = undefined;
+    }
+  });
+  it('sends a simple SSE event', async () => {
+    app = new QHTTPX({ requestTimeoutMs: 5000 });
+    app.get('/sse', (ctx) => {
+      const sse = createSseStream(ctx);
+      sse.send({ message: 'hello' });
+      sse.close();
+    });
+    const { port } = await app.listen(0, '127.0.0.1');
+    const response = await fetch(`http://127.0.0.1:${port}/sse`);
+    expect(response.status).toBe(200);
+    expect(
+      response.headers.get('content-type'),
+    ).toContain('text/event-stream');
+    const text = await response.text();
+    expect(text.trim()).toBe('data: {"message":"hello"}');
+  });
+  it('streams data from a readable', async () => {
+    app = new QHTTPX();
+    app.get('/stream', async (ctx) => {
+      const readable = Readable.from(['hello', ' ', 'world']);
+      await sendStream(ctx, readable, {
+        contentType: 'text/plain; charset=utf-8',
+        status: 200,
+      });
+    });
+    const { port } = await app.listen(0, '127.0.0.1');
+    const response = await fetch(`http://127.0.0.1:${port}/stream`);
+    expect(response.status).toBe(200);
+    expect(response.headers.get('content-type')).toContain('text/plain');
+    const text = await response.text();
+    expect(text).toBe('hello world');
+  });
+});