quicklify 0.5.0 → 0.7.0

package/README.md

@@ -50,6 +50,14 @@ npx quicklify init
 - 🔑 **SSH Access** - Connect to servers or run remote commands
 - 🔄 **Coolify Update** - Update Coolify with one command
 - 🏥 **Health Check Polling** - Detects when Coolify is ready (no more blind waiting)
+- 📊 **Server Monitoring** - CPU/RAM/Disk usage and Docker container status
+- 📜 **Log Viewer** - View Coolify, Docker, or system logs with follow mode
+- 🩺 **Environment Doctor** - Diagnose local setup issues
+- 🫀 **Bulk Health Check** - Check all servers at once
+- 🔥 **Firewall Management** - UFW setup, add/remove ports, protected port safety
+- 🌐 **Domain Management** - Bind domains, DNS check, auto SSL via Coolify
+- 🛡️ **SSH Hardening** - Disable password auth, fail2ban, security audit with score
+- 🧪 **Dry-Run Mode** - Preview commands on firewall/domain/secure before executing
 - 🤖 **Non-Interactive Mode** - CI/CD friendly with `--provider --token --region --size --name` flags
 
 ## 📦 Installation
@@ -116,12 +124,12 @@ Visit the URL, create your admin account, and start deploying!
 **Important:** Port 8000 is publicly accessible after deployment.
 
 **Recommended next steps:**
-1. **Add a domain** and enable SSL in Coolify settings
-2. Use **Cloudflare** for DDoS protection
-3. Set a **strong password** on first login
-4. Consider **IP whitelisting** for sensitive deployments
-
-For production use, we recommend setting up a domain instead of using the IP address directly.
+1. **Setup firewall:** `quicklify firewall setup my-server`
+2. **Add a domain:** `quicklify domain add my-server --domain example.com`
+3. **Harden SSH:** `quicklify secure setup my-server`
+4. **Run security audit:** `quicklify secure audit my-server`
+5. Set a **strong password** on first login
+6. Consider **Cloudflare** for DDoS protection
 
 ## 🌐 Supported Providers
 
@@ -162,6 +170,22 @@ For production use, we recommend setting up a domain instead of using the IP add
 
 ## 📋 Recent Updates
 
+### v0.7.0 (2026-02-20)
+- **New commands:** `quicklify firewall`, `quicklify domain`, `quicklify secure`
+- **Firewall management:** UFW setup, add/remove ports, protected port 22 safety, Coolify port warnings
+- **Domain management:** Bind domains to Coolify, DNS A record check, auto SSL
+- **SSH hardening:** Disable password auth, key-only root login, fail2ban, security audit with 0-4 score
+- **Dry-run mode:** `--dry-run` flag previews all commands without executing
+- Zero new dependencies, 494 tests with 97%+ statement coverage
+
+### v0.6.0 (2026-02-20)
+- **New commands:** `quicklify logs`, `quicklify monitor`, `quicklify health`, `quicklify doctor`
+- **Log viewer:** View Coolify/Docker/system logs with `--follow` real-time streaming
+- **Server monitoring:** CPU/RAM/Disk usage and Docker container list
+- **Bulk health check:** Check all registered servers at once with response times
+- **Environment doctor:** Diagnose Node.js, SSH, config issues locally
+- Zero new dependencies, 354 tests with 97%+ statement coverage
+
 ### v0.5.0 (2026-02-20)
 - **New commands:** `quicklify config`, `quicklify ssh`, `quicklify update`, `quicklify restart`
 - **Default config:** Set defaults for provider, region, size with `quicklify config set`
@@ -238,14 +262,26 @@ For production use, we recommend setting up a domain instead of using the IP add
 - [x] Server restart via provider API (`quicklify restart`)
 - [x] Shared server selection and token utilities (DRY refactor)
 
+### v0.6.0 (Completed)
+
+- [x] Server monitoring - CPU/RAM/Disk usage (`quicklify monitor`)
+- [x] Log viewer - Coolify/Docker/system logs (`quicklify logs`)
+- [x] Bulk health check for all servers (`quicklify health`)
+- [x] Environment diagnostics (`quicklify doctor`)
+- [x] SSH streaming for real-time log following
+
+### v0.7.0 (Completed)
+
+- [x] Firewall management - UFW setup, add/remove ports (`quicklify firewall`)
+- [x] Domain management - Bind domains, DNS check, SSL (`quicklify domain`)
+- [x] SSH hardening - Password disable, fail2ban, security audit (`quicklify secure`)
+- [x] Dry-run mode for all security commands
+
 ### Future
 - [ ] Vultr support
 - [ ] Linode / AWS Lightsail support
-- [ ] Domain + SSL configuration helper
 - [ ] Backup/restore commands
-- [ ] Server monitoring (CPU/RAM/Disk)
 - [ ] Interactive TUI dashboard
-- [ ] Firewall management
 
 ## 🛠️ Tech Stack
 
@@ -298,6 +334,52 @@ quicklify update my-server
 # Restart a server
 quicklify restart my-server
 
+# View Coolify logs (last 50 lines)
+quicklify logs my-server
+
+# Follow Coolify logs in real-time
+quicklify logs my-server --follow
+
+# View Docker or system logs
+quicklify logs my-server --service docker --lines 100
+quicklify logs my-server --service system
+
+# Show CPU/RAM/Disk usage
+quicklify monitor my-server
+
+# Show usage with Docker containers
+quicklify monitor my-server --containers
+
+# Check health of all servers
+quicklify health
+
+# Run environment diagnostics
+quicklify doctor
+
+# Firewall management
+quicklify firewall setup my-server           # Install UFW + Coolify ports
+quicklify firewall add my-server --port 3000  # Open port 3000/tcp
+quicklify firewall add my-server --port 53 --protocol udp  # Open port 53/udp
+quicklify firewall remove my-server --port 3000  # Close port 3000
+quicklify firewall list my-server             # Show firewall rules
+quicklify firewall status my-server           # Check UFW active/inactive
+quicklify firewall setup my-server --dry-run  # Preview without executing
+
+# Domain management
+quicklify domain add my-server --domain example.com     # Bind domain + HTTPS
+quicklify domain add my-server --domain example.com --no-ssl  # HTTP only
+quicklify domain remove my-server             # Revert to IP:8000
+quicklify domain check my-server --domain example.com   # Verify DNS
+quicklify domain list my-server               # Show current domain
+quicklify domain add my-server --domain example.com --dry-run  # Preview
+
+# SSH hardening & security
+quicklify secure status my-server            # Show security settings
+quicklify secure audit my-server             # Security score (0-4)
+quicklify secure setup my-server             # Harden SSH + install fail2ban
+quicklify secure setup my-server --port 2222  # Change SSH port
+quicklify secure setup my-server --dry-run    # Preview without executing
+
 # Show version
 quicklify --version
 
@@ -378,13 +460,20 @@ tests/
 │   ├── config-command.test.ts   # Config command subcommands
 │   ├── defaults.test.ts        # Default config CRUD
 │   ├── destroy.test.ts         # Destroy command unit tests
+│   ├── doctor.test.ts           # Doctor command tests
+│   ├── domain.test.ts           # Domain command tests
+│   ├── firewall.test.ts         # Firewall command tests
+│   ├── health-command.test.ts   # Health command tests
 │   ├── healthCheck.test.ts     # Health check polling tests
 │   ├── healthCheck-edge.test.ts # Health check edge cases (302, 401, 500)
 │   ├── list.test.ts            # List command unit tests
 │   ├── logger.test.ts
+│   ├── logs.test.ts             # Logs command tests
+│   ├── monitor.test.ts          # Monitor command tests
 │   ├── prompts.test.ts
 │   ├── providerFactory.test.ts # Provider factory tests
 │   ├── restart.test.ts         # Restart command tests
+│   ├── secure.test.ts           # Secure command tests
 │   ├── serverSelect.test.ts    # Server selection utility tests
 │   ├── ssh-command.test.ts     # SSH command tests
 │   ├── ssh-utils.test.ts       # SSH helper tests
@@ -410,7 +499,7 @@ Tests run automatically on every push/PR via GitHub Actions across:
 
 ### Coverage
 
-Current coverage: **97%+ statements/lines**, **88%+ branches**, **97%+ functions**. 311 tests across 25 test suites.
+Current coverage: **97%+ statements/lines**, **85%+ branches**, **96%+ functions**. 494 tests across 32 test suites.
 
 ## 🔧 Troubleshooting
 

package/dist/commands/doctor.d.ts

@@ -0,0 +1,10 @@
+export interface CheckResult {
+    name: string;
+    status: "pass" | "fail" | "warn";
+    detail: string;
+}
+export declare function runDoctorChecks(version?: string): CheckResult[];
+export declare function doctorCommand(options?: {
+    checkTokens?: boolean;
+}, version?: string): Promise<void>;
+//# sourceMappingURL=doctor.d.ts.map

package/dist/commands/doctor.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"doctor.d.ts","sourceRoot":"","sources":["../../src/commands/doctor.ts"],"names":[],"mappings":"AAOA,MAAM,WAAW,WAAW;IAC1B,IAAI,EAAE,MAAM,CAAC;IACb,MAAM,EAAE,MAAM,GAAG,MAAM,GAAG,MAAM,CAAC;IACjC,MAAM,EAAE,MAAM,CAAC;CAChB;AAsDD,wBAAgB,eAAe,CAAC,OAAO,CAAC,EAAE,MAAM,GAAG,WAAW,EAAE,CAS/D;AAED,wBAAsB,aAAa,CACjC,OAAO,CAAC,EAAE;IAAE,WAAW,CAAC,EAAE,OAAO,CAAA;CAAE,EACnC,OAAO,CAAC,EAAE,MAAM,GACf,OAAO,CAAC,IAAI,CAAC,CA8Bf"}

package/dist/commands/doctor.js

@@ -0,0 +1,92 @@
+import { execSync } from "child_process";
+import { existsSync, accessSync, constants } from "fs";
+import { getServers } from "../utils/config.js";
+import { checkSshAvailable } from "../utils/ssh.js";
+import { logger } from "../utils/logger.js";
+import { CONFIG_DIR } from "../utils/config.js";
+function checkNodeVersion() {
+    const version = process.version;
+    const major = parseInt(version.slice(1).split(".")[0], 10);
+    if (major >= 20) {
+        return { name: "Node.js", status: "pass", detail: version };
+    }
+    return { name: "Node.js", status: "fail", detail: `${version} (requires >= 20)` };
+}
+function checkNpmVersion() {
+    try {
+        const version = execSync("npm --version", { stdio: "pipe" }).toString().trim();
+        return { name: "npm", status: "pass", detail: `v${version}` };
+    }
+    catch {
+        return { name: "npm", status: "fail", detail: "not found" };
+    }
+}
+function checkSsh() {
+    if (checkSshAvailable()) {
+        return { name: "SSH Client", status: "pass", detail: "available" };
+    }
+    return { name: "SSH Client", status: "warn", detail: "not found (needed for ssh/logs/monitor/update)" };
+}
+function checkQuicklifyVersion(version) {
+    if (version) {
+        return { name: "quicklify", status: "pass", detail: `v${version}` };
+    }
+    return { name: "quicklify", status: "warn", detail: "version unknown" };
+}
+function checkConfigDir() {
+    if (!existsSync(CONFIG_DIR)) {
+        return { name: "Config Dir", status: "warn", detail: `${CONFIG_DIR} (not created yet)` };
+    }
+    try {
+        accessSync(CONFIG_DIR, constants.R_OK | constants.W_OK);
+        return { name: "Config Dir", status: "pass", detail: CONFIG_DIR };
+    }
+    catch {
+        return { name: "Config Dir", status: "fail", detail: `${CONFIG_DIR} (not writable)` };
+    }
+}
+function checkRegisteredServers() {
+    const servers = getServers();
+    if (servers.length === 0) {
+        return { name: "Servers", status: "warn", detail: "0 registered (run quicklify init)" };
+    }
+    return { name: "Servers", status: "pass", detail: `${servers.length} registered` };
+}
+export function runDoctorChecks(version) {
+    return [
+        checkNodeVersion(),
+        checkNpmVersion(),
+        checkSsh(),
+        checkQuicklifyVersion(version),
+        checkConfigDir(),
+        checkRegisteredServers(),
+    ];
+}
+export async function doctorCommand(options, version) {
+    logger.title("Quicklify Doctor");
+    const results = runDoctorChecks(version);
+    for (const result of results) {
+        const colorFn = result.status === "pass"
+            ? logger.success
+            : result.status === "warn"
+                ? logger.warning
+                : logger.error;
+        colorFn(`${result.name}: ${result.detail}`);
+    }
+    const failures = results.filter((r) => r.status === "fail");
+    const warnings = results.filter((r) => r.status === "warn");
+    console.log();
+    if (failures.length > 0) {
+        logger.error(`${failures.length} check(s) failed. Please fix the issues above.`);
+    }
+    else if (warnings.length > 0) {
+        logger.warning(`All checks passed with ${warnings.length} warning(s).`);
+    }
+    else {
+        logger.success("All checks passed! Your environment is ready.");
+    }
+    if (options?.checkTokens) {
+        logger.info("Token validation is not yet implemented.");
+    }
+}
+//# sourceMappingURL=doctor.js.map

package/dist/commands/doctor.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"doctor.js","sourceRoot":"","sources":["../../src/commands/doctor.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,MAAM,eAAe,CAAC;AACzC,OAAO,EAAE,UAAU,EAAE,UAAU,EAAE,SAAS,EAAE,MAAM,IAAI,CAAC;AACvD,OAAO,EAAE,UAAU,EAAE,MAAM,oBAAoB,CAAC;AAChD,OAAO,EAAE,iBAAiB,EAAE,MAAM,iBAAiB,CAAC;AACpD,OAAO,EAAE,MAAM,EAAE,MAAM,oBAAoB,CAAC;AAC5C,OAAO,EAAE,UAAU,EAAE,MAAM,oBAAoB,CAAC;AAQhD,SAAS,gBAAgB;IACvB,MAAM,OAAO,GAAG,OAAO,CAAC,OAAO,CAAC;IAChC,MAAM,KAAK,GAAG,QAAQ,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;IAC3D,IAAI,KAAK,IAAI,EAAE,EAAE,CAAC;QAChB,OAAO,EAAE,IAAI,EAAE,SAAS,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,CAAC;IAC9D,CAAC;IACD,OAAO,EAAE,IAAI,EAAE,SAAS,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,GAAG,OAAO,mBAAmB,EAAE,CAAC;AACpF,CAAC;AAED,SAAS,eAAe;IACtB,IAAI,CAAC;QACH,MAAM,OAAO,GAAG,QAAQ,CAAC,eAAe,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,CAAC,CAAC,QAAQ,EAAE,CAAC,IAAI,EAAE,CAAC;QAC/E,OAAO,EAAE,IAAI,EAAE,KAAK,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,IAAI,OAAO,EAAE,EAAE,CAAC;IAChE,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,EAAE,IAAI,EAAE,KAAK,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,WAAW,EAAE,CAAC;IAC9D,CAAC;AACH,CAAC;AAED,SAAS,QAAQ;IACf,IAAI,iBAAiB,EAAE,EAAE,CAAC;QACxB,OAAO,EAAE,IAAI,EAAE,YAAY,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,WAAW,EAAE,CAAC;IACrE,CAAC;IACD,OAAO,EAAE,IAAI,EAAE,YAAY,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,gDAAgD,EAAE,CAAC;AAC1G,CAAC;AAED,SAAS,qBAAqB,CAAC,OAAgB;IAC7C,IAAI,OAAO,EAAE,CAAC;QACZ,OAAO,EAAE,IAAI,EAAE,WAAW,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,IAAI,OAAO,EAAE,EAAE,CAAC;IACtE,CAAC;IACD,OAAO,EAAE,IAAI,EAAE,WAAW,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,iBAAiB,EAAE,CAAC;AAC1E,CAAC;AAED,SAAS,cAAc;IACrB,IAAI,CAAC,UAAU,CAAC,UAAU,CAAC,EAAE,CAAC;QAC5B,OAAO,EAAE,IAAI,EAAE,YAAY,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,GAAG,UAAU,oBAAoB,EAAE,CAAC;IAC3F,CAAC;IACD,IAAI,CAAC;QACH,UAAU,CAAC,UAAU,EAAE,SAAS,CAAC,IAAI,GAAG,SAAS,CAAC,IAAI,CAAC,CAAC;QACxD,OAAO,EAAE,IAAI,EAAE,YAAY,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,UAAU,EAAE,CAAC;IACpE,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,EAAE,IAAI,EAAE,YAAY,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,GAAG,UAAU,iBAAiB,EAAE,CAAC;IACxF,CAAC;AACH,CAAC;AAED,SAAS,sBAAsB;IAC7B,MAAM,OAAO,GAAG,UAAU,EAAE,CAAC;IAC7B,IAAI,OAAO,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QACzB,OAAO,EAAE,IAAI,EAAE,SAAS,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,mCAAmC,EAAE,CAAC;IAC1F,CAAC;IACD,OAAO,EAAE,IAAI,EAAE,SAAS,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,GAAG,OAAO,CAAC,MAAM,aAAa,EAAE,CAAC;AACrF,CAAC;AAED,MAAM,UAAU,eAAe,CAAC,OAAgB;IAC9C,OAAO;QACL,gBAAgB,EAAE;QAClB,eAAe,EAAE;QACjB,QAAQ,EAAE;QACV,qBAAqB,CAAC,OAAO,CAAC;QAC9B,cAAc,EAAE;QAChB,sBAAsB,EAAE;KACzB,CAAC;AACJ,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,aAAa,CACjC,OAAmC,EACnC,OAAgB;IAEhB,MAAM,CAAC,KAAK,CAAC,kBAAkB,CAAC,CAAC;IAEjC,MAAM,OAAO,GAAG,eAAe,CAAC,OAAO,CAAC,CAAC;IAEzC,KAAK,MAAM,MAAM,IAAI,OAAO,EAAE,CAAC;QAC7B,MAAM,OAAO,GACX,MAAM,CAAC,MAAM,KAAK,MAAM;YACtB,CAAC,CAAC,MAAM,CAAC,OAAO;YAChB,CAAC,CAAC,MAAM,CAAC,MAAM,KAAK,MAAM;gBACxB,CAAC,CAAC,MAAM,CAAC,OAAO;gBAChB,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC;QACrB,OAAO,CAAC,GAAG,MAAM,CAAC,IAAI,KAAK,MAAM,CAAC,MAAM,EAAE,CAAC,CAAC;IAC9C,CAAC;IAED,MAAM,QAAQ,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,MAAM,KAAK,MAAM,CAAC,CAAC;IAC5D,MAAM,QAAQ,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,MAAM,KAAK,MAAM,CAAC,CAAC;IAE5D,OAAO,CAAC,GAAG,EAAE,CAAC;IACd,IAAI,QAAQ,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QACxB,MAAM,CAAC,KAAK,CAAC,GAAG,QAAQ,CAAC,MAAM,gDAAgD,CAAC,CAAC;IACnF,CAAC;SAAM,IAAI,QAAQ,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QAC/B,MAAM,CAAC,OAAO,CAAC,0BAA0B,QAAQ,CAAC,MAAM,cAAc,CAAC,CAAC;IAC1E,CAAC;SAAM,CAAC;QACN,MAAM,CAAC,OAAO,CAAC,+CAA+C,CAAC,CAAC;IAClE,CAAC;IAED,IAAI,OAAO,EAAE,WAAW,EAAE,CAAC;QACzB,MAAM,CAAC,IAAI,CAAC,0CAA0C,CAAC,CAAC;IAC1D,CAAC;AACH,CAAC"}

package/dist/commands/domain.d.ts

@@ -0,0 +1,13 @@
+export declare function isValidDomain(domain: string): boolean;
+export declare function sanitizeDomain(input: string): string;
+export declare function buildSetFqdnCommand(domain: string, ssl: boolean): string;
+export declare function buildGetFqdnCommand(): string;
+export declare function buildDnsCheckCommand(domain: string): string;
+export declare function parseDnsResult(stdout: string): string | null;
+export declare function parseFqdn(stdout: string): string | null;
+export declare function domainCommand(subcommand?: string, query?: string, options?: {
+    domain?: string;
+    ssl?: boolean;
+    dryRun?: boolean;
+}): Promise<void>;
+//# sourceMappingURL=domain.d.ts.map

package/dist/commands/domain.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"domain.d.ts","sourceRoot":"","sources":["../../src/commands/domain.ts"],"names":[],"mappings":"AAMA,wBAAgB,aAAa,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO,CAIrD;AAED,wBAAgB,cAAc,CAAC,KAAK,EAAE,MAAM,GAAG,MAAM,CASpD;AAED,wBAAgB,mBAAmB,CAAC,MAAM,EAAE,MAAM,EAAE,GAAG,EAAE,OAAO,GAAG,MAAM,CAIxE;AAED,wBAAgB,mBAAmB,IAAI,MAAM,CAE5C;AAED,wBAAgB,oBAAoB,CAAC,MAAM,EAAE,MAAM,GAAG,MAAM,CAE3D;AAED,wBAAgB,cAAc,CAAC,MAAM,EAAE,MAAM,GAAG,MAAM,GAAG,IAAI,CAI5D;AAED,wBAAgB,SAAS,CAAC,MAAM,EAAE,MAAM,GAAG,MAAM,GAAG,IAAI,CAIvD;AAED,wBAAsB,aAAa,CACjC,UAAU,CAAC,EAAE,MAAM,EACnB,KAAK,CAAC,EAAE,MAAM,EACd,OAAO,CAAC,EAAE;IAAE,MAAM,CAAC,EAAE,MAAM,CAAC;IAAC,GAAG,CAAC,EAAE,OAAO,CAAC;IAAC,MAAM,CAAC,EAAE,OAAO,CAAA;CAAE,GAC7D,OAAO,CAAC,IAAI,CAAC,CAiCf"}

package/dist/commands/domain.js

@@ -0,0 +1,218 @@
+import { resolveServer } from "../utils/serverSelect.js";
+import { checkSshAvailable, sshExec } from "../utils/ssh.js";
+import { logger, createSpinner } from "../utils/logger.js";
+const COOLIFY_ENV_PATH = "/data/coolify/source/.env";
+export function isValidDomain(domain) {
+    // RFC 1035 compliant domain validation
+    const pattern = /^(?!-)[a-zA-Z0-9-]{1,63}(?<!-)(\.[a-zA-Z0-9-]{1,63})*\.[a-zA-Z]{2,}$/;
+    return pattern.test(domain);
+}
+export function sanitizeDomain(input) {
+    let domain = input.trim();
+    // Strip protocol prefix
+    domain = domain.replace(/^https?:\/\//, "");
+    // Strip trailing slash
+    domain = domain.replace(/\/+$/, "");
+    // Strip port
+    domain = domain.replace(/:\d+$/, "");
+    return domain;
+}
+export function buildSetFqdnCommand(domain, ssl) {
+    const protocol = ssl ? "https" : "http";
+    const url = `${protocol}://${domain}`;
+    return `sed -i 's|^APP_URL=.*|APP_URL=${url}|' ${COOLIFY_ENV_PATH} && cd /data/coolify/source && docker compose up -d --force-recreate`;
+}
+export function buildGetFqdnCommand() {
+    return `grep '^APP_URL=' ${COOLIFY_ENV_PATH}`;
+}
+export function buildDnsCheckCommand(domain) {
+    return `dig +short A ${domain} 2>/dev/null || host -t A ${domain} 2>/dev/null || nslookup ${domain} 2>/dev/null`;
+}
+export function parseDnsResult(stdout) {
+    // dig +short returns just IP addresses
+    const ipMatch = stdout.match(/\b(\d{1,3}\.\d{1,3}\.\d{1,3}\.\d{1,3})\b/);
+    return ipMatch ? ipMatch[1] : null;
+}
+export function parseFqdn(stdout) {
+    const match = stdout.match(/^APP_URL=(.+)$/m);
+    if (!match)
+        return null;
+    return match[1].trim();
+}
+export async function domainCommand(subcommand, query, options) {
+    if (!checkSshAvailable()) {
+        logger.error("SSH client not found. Please install OpenSSH.");
+        return;
+    }
+    const validSubcommands = ["add", "remove", "check", "list"];
+    const sub = subcommand || "list";
+    if (!validSubcommands.includes(sub)) {
+        logger.error(`Invalid subcommand: ${sub}. Choose from: ${validSubcommands.join(", ")}`);
+        return;
+    }
+    const server = await resolveServer(query, "Select a server for domain management:");
+    if (!server)
+        return;
+    const dryRun = options?.dryRun || false;
+    switch (sub) {
+        case "add":
+            await domainAdd(server.ip, server.name, options, dryRun);
+            break;
+        case "remove":
+            await domainRemove(server.ip, server.name, dryRun);
+            break;
+        case "check":
+            await domainCheck(server.ip, options);
+            break;
+        case "list":
+            await domainList(server.ip, server.name);
+            break;
+    }
+}
+async function domainAdd(ip, name, options, dryRun) {
+    if (!options?.domain) {
+        logger.error("Missing --domain. Usage: quicklify domain add <server> --domain example.com");
+        return;
+    }
+    const domain = sanitizeDomain(options.domain);
+    if (!isValidDomain(domain)) {
+        logger.error(`Invalid domain: ${domain}`);
+        return;
+    }
+    const ssl = options?.ssl !== false; // default true
+    const command = buildSetFqdnCommand(domain, ssl);
+    if (dryRun) {
+        logger.title("Dry Run - Add Domain");
+        logger.info(`Server: ${name} (${ip})`);
+        logger.info(`Domain: ${domain}`);
+        logger.info(`SSL: ${ssl ? "enabled" : "disabled"}`);
+        console.log();
+        logger.info("Commands to execute:");
+        for (const cmd of command.split(" && ")) {
+            logger.step(cmd);
+        }
+        console.log();
+        logger.warning("No changes applied. Remove --dry-run to execute.");
+        return;
+    }
+    const spinner = createSpinner(`Setting domain to ${domain}...`);
+    spinner.start();
+    try {
+        // Check if .env file exists
+        const checkResult = await sshExec(ip, `test -f ${COOLIFY_ENV_PATH} && echo "exists"`);
+        if (!checkResult.stdout.includes("exists")) {
+            spinner.fail("Coolify environment file not found");
+            logger.error(`Expected: ${COOLIFY_ENV_PATH}`);
+            logger.info("Is Coolify installed on this server?");
+            return;
+        }
+        const result = await sshExec(ip, command);
+        if (result.code !== 0) {
+            spinner.fail("Failed to set domain");
+            if (result.stderr)
+                logger.error(result.stderr);
+            return;
+        }
+        spinner.succeed(`Domain set to ${domain} on ${name}`);
+        const protocol = ssl ? "https" : "http";
+        logger.success(`Coolify is now accessible at ${protocol}://${domain}`);
+        logger.info("Make sure your DNS A record points to " + ip);
+    }
+    catch (error) {
+        spinner.fail("Failed to set domain");
+        logger.error(error instanceof Error ? error.message : String(error));
+    }
+}
+async function domainRemove(ip, name, dryRun) {
+    const command = buildSetFqdnCommand(`${ip}:8000`, false);
+    if (dryRun) {
+        logger.title("Dry Run - Remove Domain");
+        logger.info(`Server: ${name} (${ip})`);
+        logger.info(`Will reset to: http://${ip}:8000`);
+        console.log();
+        logger.info("Commands to execute:");
+        for (const cmd of command.split(" && ")) {
+            logger.step(cmd);
+        }
+        console.log();
+        logger.warning("No changes applied. Remove --dry-run to execute.");
+        return;
+    }
+    const spinner = createSpinner("Removing domain...");
+    spinner.start();
+    try {
+        const result = await sshExec(ip, command);
+        if (result.code !== 0) {
+            spinner.fail("Failed to remove domain");
+            if (result.stderr)
+                logger.error(result.stderr);
+            return;
+        }
+        spinner.succeed(`Domain removed from ${name}`);
+        logger.success(`Coolify is now accessible at http://${ip}:8000`);
+    }
+    catch (error) {
+        spinner.fail("Failed to remove domain");
+        logger.error(error instanceof Error ? error.message : String(error));
+    }
+}
+async function domainCheck(ip, options) {
+    if (!options?.domain) {
+        logger.error("Missing --domain. Usage: quicklify domain check <server> --domain example.com");
+        return;
+    }
+    const domain = sanitizeDomain(options.domain);
+    if (!isValidDomain(domain)) {
+        logger.error(`Invalid domain: ${domain}`);
+        return;
+    }
+    const spinner = createSpinner(`Checking DNS for ${domain}...`);
+    spinner.start();
+    try {
+        const result = await sshExec(ip, buildDnsCheckCommand(domain));
+        const resolvedIp = parseDnsResult(result.stdout);
+        if (!resolvedIp) {
+            spinner.fail(`No A record found for ${domain}`);
+            logger.info("Add an A record pointing to " + ip);
+            return;
+        }
+        if (resolvedIp === ip) {
+            spinner.succeed(`DNS OK: ${domain} → ${resolvedIp}`);
+        }
+        else {
+            spinner.warn(`DNS mismatch: ${domain} → ${resolvedIp} (expected ${ip})`);
+            logger.info("Update your A record to point to " + ip);
+        }
+    }
+    catch (error) {
+        spinner.fail("Failed to check DNS");
+        logger.error(error instanceof Error ? error.message : String(error));
+    }
+}
+async function domainList(ip, name) {
+    const spinner = createSpinner(`Fetching domain from ${name}...`);
+    spinner.start();
+    try {
+        const result = await sshExec(ip, buildGetFqdnCommand());
+        if (result.code !== 0) {
+            spinner.fail("Failed to fetch domain");
+            if (result.stderr)
+                logger.error(result.stderr);
+            return;
+        }
+        const fqdn = parseFqdn(result.stdout);
+        if (fqdn) {
+            spinner.succeed(`Current domain for ${name}`);
+            logger.info(`APP_URL: ${fqdn}`);
+        }
+        else {
+            spinner.succeed(`No custom domain set for ${name}`);
+            logger.info(`Default: http://${ip}:8000`);
+        }
+    }
+    catch (error) {
+        spinner.fail("Failed to fetch domain");
+        logger.error(error instanceof Error ? error.message : String(error));
+    }
+}
+//# sourceMappingURL=domain.js.map

package/dist/commands/domain.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"domain.js","sourceRoot":"","sources":["../../src/commands/domain.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,aAAa,EAAE,MAAM,0BAA0B,CAAC;AACzD,OAAO,EAAE,iBAAiB,EAAE,OAAO,EAAE,MAAM,iBAAiB,CAAC;AAC7D,OAAO,EAAE,MAAM,EAAE,aAAa,EAAE,MAAM,oBAAoB,CAAC;AAE3D,MAAM,gBAAgB,GAAG,2BAA2B,CAAC;AAErD,MAAM,UAAU,aAAa,CAAC,MAAc;IAC1C,uCAAuC;IACvC,MAAM,OAAO,GAAG,sEAAsE,CAAC;IACvF,OAAO,OAAO,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;AAC9B,CAAC;AAED,MAAM,UAAU,cAAc,CAAC,KAAa;IAC1C,IAAI,MAAM,GAAG,KAAK,CAAC,IAAI,EAAE,CAAC;IAC1B,wBAAwB;IACxB,MAAM,GAAG,MAAM,CAAC,OAAO,CAAC,cAAc,EAAE,EAAE,CAAC,CAAC;IAC5C,uBAAuB;IACvB,MAAM,GAAG,MAAM,CAAC,OAAO,CAAC,MAAM,EAAE,EAAE,CAAC,CAAC;IACpC,aAAa;IACb,MAAM,GAAG,MAAM,CAAC,OAAO,CAAC,OAAO,EAAE,EAAE,CAAC,CAAC;IACrC,OAAO,MAAM,CAAC;AAChB,CAAC;AAED,MAAM,UAAU,mBAAmB,CAAC,MAAc,EAAE,GAAY;IAC9D,MAAM,QAAQ,GAAG,GAAG,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC;IACxC,MAAM,GAAG,GAAG,GAAG,QAAQ,MAAM,MAAM,EAAE,CAAC;IACtC,OAAO,iCAAiC,GAAG,MAAM,gBAAgB,sEAAsE,CAAC;AAC1I,CAAC;AAED,MAAM,UAAU,mBAAmB;IACjC,OAAO,oBAAoB,gBAAgB,EAAE,CAAC;AAChD,CAAC;AAED,MAAM,UAAU,oBAAoB,CAAC,MAAc;IACjD,OAAO,gBAAgB,MAAM,6BAA6B,MAAM,4BAA4B,MAAM,cAAc,CAAC;AACnH,CAAC;AAED,MAAM,UAAU,cAAc,CAAC,MAAc;IAC3C,uCAAuC;IACvC,MAAM,OAAO,GAAG,MAAM,CAAC,KAAK,CAAC,0CAA0C,CAAC,CAAC;IACzE,OAAO,OAAO,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC;AACrC,CAAC;AAED,MAAM,UAAU,SAAS,CAAC,MAAc;IACtC,MAAM,KAAK,GAAG,MAAM,CAAC,KAAK,CAAC,iBAAiB,CAAC,CAAC;IAC9C,IAAI,CAAC,KAAK;QAAE,OAAO,IAAI,CAAC;IACxB,OAAO,KAAK,CAAC,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;AACzB,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,aAAa,CACjC,UAAmB,EACnB,KAAc,EACd,OAA8D;IAE9D,IAAI,CAAC,iBAAiB,EAAE,EAAE,CAAC;QACzB,MAAM,CAAC,KAAK,CAAC,+CAA+C,CAAC,CAAC;QAC9D,OAAO;IACT,CAAC;IAED,MAAM,gBAAgB,GAAG,CAAC,KAAK,EAAE,QAAQ,EAAE,OAAO,EAAE,MAAM,CAAC,CAAC;IAC5D,MAAM,GAAG,GAAG,UAAU,IAAI,MAAM,CAAC;IAEjC,IAAI,CAAC,gBAAgB,CAAC,QAAQ,CAAC,GAAG,CAAC,EAAE,CAAC;QACpC,MAAM,CAAC,KAAK,CAAC,uBAAuB,GAAG,kBAAkB,gBAAgB,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QACxF,OAAO;IACT,CAAC;IAED,MAAM,MAAM,GAAG,MAAM,aAAa,CAAC,KAAK,EAAE,wCAAwC,CAAC,CAAC;IACpF,IAAI,CAAC,MAAM;QAAE,OAAO;IAEpB,MAAM,MAAM,GAAG,OAAO,EAAE,MAAM,IAAI,KAAK,CAAC;IAExC,QAAQ,GAAG,EAAE,CAAC;QACZ,KAAK,KAAK;YACR,MAAM,SAAS,CAAC,MAAM,CAAC,EAAE,EAAE,MAAM,CAAC,IAAI,EAAE,OAAO,EAAE,MAAM,CAAC,CAAC;YACzD,MAAM;QACR,KAAK,QAAQ;YACX,MAAM,YAAY,CAAC,MAAM,CAAC,EAAE,EAAE,MAAM,CAAC,IAAI,EAAE,MAAM,CAAC,CAAC;YACnD,MAAM;QACR,KAAK,OAAO;YACV,MAAM,WAAW,CAAC,MAAM,CAAC,EAAE,EAAE,OAAO,CAAC,CAAC;YACtC,MAAM;QACR,KAAK,MAAM;YACT,MAAM,UAAU,CAAC,MAAM,CAAC,EAAE,EAAE,MAAM,CAAC,IAAI,CAAC,CAAC;YACzC,MAAM;IACV,CAAC;AACH,CAAC;AAED,KAAK,UAAU,SAAS,CACtB,EAAU,EACV,IAAY,EACZ,OAA4C,EAC5C,MAAgB;IAEhB,IAAI,CAAC,OAAO,EAAE,MAAM,EAAE,CAAC;QACrB,MAAM,CAAC,KAAK,CAAC,6EAA6E,CAAC,CAAC;QAC5F,OAAO;IACT,CAAC;IAED,MAAM,MAAM,GAAG,cAAc,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC;IAC9C,IAAI,CAAC,aAAa,CAAC,MAAM,CAAC,EAAE,CAAC;QAC3B,MAAM,CAAC,KAAK,CAAC,mBAAmB,MAAM,EAAE,CAAC,CAAC;QAC1C,OAAO;IACT,CAAC;IAED,MAAM,GAAG,GAAG,OAAO,EAAE,GAAG,KAAK,KAAK,CAAC,CAAC,eAAe;IACnD,MAAM,OAAO,GAAG,mBAAmB,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC;IAEjD,IAAI,MAAM,EAAE,CAAC;QACX,MAAM,CAAC,KAAK,CAAC,sBAAsB,CAAC,CAAC;QACrC,MAAM,CAAC,IAAI,CAAC,WAAW,IAAI,KAAK,EAAE,GAAG,CAAC,CAAC;QACvC,MAAM,CAAC,IAAI,CAAC,WAAW,MAAM,EAAE,CAAC,CAAC;QACjC,MAAM,CAAC,IAAI,CAAC,QAAQ,GAAG,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,UAAU,EAAE,CAAC,CAAC;QACpD,OAAO,CAAC,GAAG,EAAE,CAAC;QACd,MAAM,CAAC,IAAI,CAAC,sBAAsB,CAAC,CAAC;QACpC,KAAK,MAAM,GAAG,IAAI,OAAO,CAAC,KAAK,CAAC,MAAM,CAAC,EAAE,CAAC;YACxC,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;QACnB,CAAC;QACD,OAAO,CAAC,GAAG,EAAE,CAAC;QACd,MAAM,CAAC,OAAO,CAAC,kDAAkD,CAAC,CAAC;QACnE,OAAO;IACT,CAAC;IAED,MAAM,OAAO,GAAG,aAAa,CAAC,qBAAqB,MAAM,KAAK,CAAC,CAAC;IAChE,OAAO,CAAC,KAAK,EAAE,CAAC;IAEhB,IAAI,CAAC;QACH,4BAA4B;QAC5B,MAAM,WAAW,GAAG,MAAM,OAAO,CAAC,EAAE,EAAE,WAAW,gBAAgB,mBAAmB,CAAC,CAAC;QACtF,IAAI,CAAC,WAAW,CAAC,MAAM,CAAC,QAAQ,CAAC,QAAQ,CAAC,EAAE,CAAC;YAC3C,OAAO,CAAC,IAAI,CAAC,oCAAoC,CAAC,CAAC;YACnD,MAAM,CAAC,KAAK,CAAC,aAAa,gBAAgB,EAAE,CAAC,CAAC;YAC9C,MAAM,CAAC,IAAI,CAAC,sCAAsC,CAAC,CAAC;YACpD,OAAO;QACT,CAAC;QAED,MAAM,MAAM,GAAG,MAAM,OAAO,CAAC,EAAE,EAAE,OAAO,CAAC,CAAC;QAC1C,IAAI,MAAM,CAAC,IAAI,KAAK,CAAC,EAAE,CAAC;YACtB,OAAO,CAAC,IAAI,CAAC,sBAAsB,CAAC,CAAC;YACrC,IAAI,MAAM,CAAC,MAAM;gBAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;YAC/C,OAAO;QACT,CAAC;QAED,OAAO,CAAC,OAAO,CAAC,iBAAiB,MAAM,OAAO,IAAI,EAAE,CAAC,CAAC;QACtD,MAAM,QAAQ,GAAG,GAAG,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC;QACxC,MAAM,CAAC,OAAO,CAAC,gCAAgC,QAAQ,MAAM,MAAM,EAAE,CAAC,CAAC;QACvE,MAAM,CAAC,IAAI,CAAC,wCAAwC,GAAG,EAAE,CAAC,CAAC;IAC7D,CAAC;IAAC,OAAO,KAAc,EAAE,CAAC;QACxB,OAAO,CAAC,IAAI,CAAC,sBAAsB,CAAC,CAAC;QACrC,MAAM,CAAC,KAAK,CAAC,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC;IACvE,CAAC;AACH,CAAC;AAED,KAAK,UAAU,YAAY,CAAC,EAAU,EAAE,IAAY,EAAE,MAAe;IACnE,MAAM,OAAO,GAAG,mBAAmB,CAAC,GAAG,EAAE,OAAO,EAAE,KAAK,CAAC,CAAC;IAEzD,IAAI,MAAM,EAAE,CAAC;QACX,MAAM,CAAC,KAAK,CAAC,yBAAyB,CAAC,CAAC;QACxC,MAAM,CAAC,IAAI,CAAC,WAAW,IAAI,KAAK,EAAE,GAAG,CAAC,CAAC;QACvC,MAAM,CAAC,IAAI,CAAC,yBAAyB,EAAE,OAAO,CAAC,CAAC;QAChD,OAAO,CAAC,GAAG,EAAE,CAAC;QACd,MAAM,CAAC,IAAI,CAAC,sBAAsB,CAAC,CAAC;QACpC,KAAK,MAAM,GAAG,IAAI,OAAO,CAAC,KAAK,CAAC,MAAM,CAAC,EAAE,CAAC;YACxC,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;QACnB,CAAC;QACD,OAAO,CAAC,GAAG,EAAE,CAAC;QACd,MAAM,CAAC,OAAO,CAAC,kDAAkD,CAAC,CAAC;QACnE,OAAO;IACT,CAAC;IAED,MAAM,OAAO,GAAG,aAAa,CAAC,oBAAoB,CAAC,CAAC;IACpD,OAAO,CAAC,KAAK,EAAE,CAAC;IAEhB,IAAI,CAAC;QACH,MAAM,MAAM,GAAG,MAAM,OAAO,CAAC,EAAE,EAAE,OAAO,CAAC,CAAC;QAC1C,IAAI,MAAM,CAAC,IAAI,KAAK,CAAC,EAAE,CAAC;YACtB,OAAO,CAAC,IAAI,CAAC,yBAAyB,CAAC,CAAC;YACxC,IAAI,MAAM,CAAC,MAAM;gBAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;YAC/C,OAAO;QACT,CAAC;QAED,OAAO,CAAC,OAAO,CAAC,uBAAuB,IAAI,EAAE,CAAC,CAAC;QAC/C,MAAM,CAAC,OAAO,CAAC,uCAAuC,EAAE,OAAO,CAAC,CAAC;IACnE,CAAC;IAAC,OAAO,KAAc,EAAE,CAAC;QACxB,OAAO,CAAC,IAAI,CAAC,yBAAyB,CAAC,CAAC;QACxC,MAAM,CAAC,KAAK,CAAC,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC;IACvE,CAAC;AACH,CAAC;AAED,KAAK,UAAU,WAAW,CAAC,EAAU,EAAE,OAA6B;IAClE,IAAI,CAAC,OAAO,EAAE,MAAM,EAAE,CAAC;QACrB,MAAM,CAAC,KAAK,CAAC,+EAA+E,CAAC,CAAC;QAC9F,OAAO;IACT,CAAC;IAED,MAAM,MAAM,GAAG,cAAc,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC;IAC9C,IAAI,CAAC,aAAa,CAAC,MAAM,CAAC,EAAE,CAAC;QAC3B,MAAM,CAAC,KAAK,CAAC,mBAAmB,MAAM,EAAE,CAAC,CAAC;QAC1C,OAAO;IACT,CAAC;IAED,MAAM,OAAO,GAAG,aAAa,CAAC,oBAAoB,MAAM,KAAK,CAAC,CAAC;IAC/D,OAAO,CAAC,KAAK,EAAE,CAAC;IAEhB,IAAI,CAAC;QACH,MAAM,MAAM,GAAG,MAAM,OAAO,CAAC,EAAE,EAAE,oBAAoB,CAAC,MAAM,CAAC,CAAC,CAAC;QAC/D,MAAM,UAAU,GAAG,cAAc,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;QAEjD,IAAI,CAAC,UAAU,EAAE,CAAC;YAChB,OAAO,CAAC,IAAI,CAAC,yBAAyB,MAAM,EAAE,CAAC,CAAC;YAChD,MAAM,CAAC,IAAI,CAAC,8BAA8B,GAAG,EAAE,CAAC,CAAC;YACjD,OAAO;QACT,CAAC;QAED,IAAI,UAAU,KAAK,EAAE,EAAE,CAAC;YACtB,OAAO,CAAC,OAAO,CAAC,WAAW,MAAM,MAAM,UAAU,EAAE,CAAC,CAAC;QACvD,CAAC;aAAM,CAAC;YACN,OAAO,CAAC,IAAI,CAAC,iBAAiB,MAAM,MAAM,UAAU,cAAc,EAAE,GAAG,CAAC,CAAC;YACzE,MAAM,CAAC,IAAI,CAAC,mCAAmC,GAAG,EAAE,CAAC,CAAC;QACxD,CAAC;IACH,CAAC;IAAC,OAAO,KAAc,EAAE,CAAC;QACxB,OAAO,CAAC,IAAI,CAAC,qBAAqB,CAAC,CAAC;QACpC,MAAM,CAAC,KAAK,CAAC,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC;IACvE,CAAC;AACH,CAAC;AAED,KAAK,UAAU,UAAU,CAAC,EAAU,EAAE,IAAY;IAChD,MAAM,OAAO,GAAG,aAAa,CAAC,wBAAwB,IAAI,KAAK,CAAC,CAAC;IACjE,OAAO,CAAC,KAAK,EAAE,CAAC;IAEhB,IAAI,CAAC;QACH,MAAM,MAAM,GAAG,MAAM,OAAO,CAAC,EAAE,EAAE,mBAAmB,EAAE,CAAC,CAAC;QACxD,IAAI,MAAM,CAAC,IAAI,KAAK,CAAC,EAAE,CAAC;YACtB,OAAO,CAAC,IAAI,CAAC,wBAAwB,CAAC,CAAC;YACvC,IAAI,MAAM,CAAC,MAAM;gBAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;YAC/C,OAAO;QACT,CAAC;QAED,MAAM,IAAI,GAAG,SAAS,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;QACtC,IAAI,IAAI,EAAE,CAAC;YACT,OAAO,CAAC,OAAO,CAAC,sBAAsB,IAAI,EAAE,CAAC,CAAC;YAC9C,MAAM,CAAC,IAAI,CAAC,YAAY,IAAI,EAAE,CAAC,CAAC;QAClC,CAAC;aAAM,CAAC;YACN,OAAO,CAAC,OAAO,CAAC,4BAA4B,IAAI,EAAE,CAAC,CAAC;YACpD,MAAM,CAAC,IAAI,CAAC,mBAAmB,EAAE,OAAO,CAAC,CAAC;QAC5C,CAAC;IACH,CAAC;IAAC,OAAO,KAAc,EAAE,CAAC;QACxB,OAAO,CAAC,IAAI,CAAC,wBAAwB,CAAC,CAAC;QACvC,MAAM,CAAC,KAAK,CAAC,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC;IACvE,CAAC;AACH,CAAC"}

package/dist/commands/firewall.d.ts

@@ -0,0 +1,15 @@
+import type { FirewallStatus, FirewallProtocol } from "../types/index.js";
+export declare const PROTECTED_PORTS: number[];
+export declare const COOLIFY_PORTS: number[];
+export declare function isValidPort(port: number): boolean;
+export declare function isProtectedPort(port: number): boolean;
+export declare function buildUfwRuleCommand(action: "allow" | "delete allow", port: number, protocol?: FirewallProtocol): string;
+export declare function buildFirewallSetupCommand(): string;
+export declare function buildUfwStatusCommand(): string;
+export declare function parseUfwStatus(stdout: string): FirewallStatus;
+export declare function firewallCommand(subcommand?: string, query?: string, options?: {
+    port?: string;
+    protocol?: string;
+    dryRun?: boolean;
+}): Promise<void>;
+//# sourceMappingURL=firewall.d.ts.map

package/dist/commands/firewall.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"firewall.d.ts","sourceRoot":"","sources":["../../src/commands/firewall.ts"],"names":[],"mappings":"AAIA,OAAO,KAAK,EAAE,cAAc,EAAgB,gBAAgB,EAAE,MAAM,mBAAmB,CAAC;AAExF,eAAO,MAAM,eAAe,UAAO,CAAC;AACpC,eAAO,MAAM,aAAa,UAA8B,CAAC;AAEzD,wBAAgB,WAAW,CAAC,IAAI,EAAE,MAAM,GAAG,OAAO,CAEjD;AAED,wBAAgB,eAAe,CAAC,IAAI,EAAE,MAAM,GAAG,OAAO,CAErD;AAED,wBAAgB,mBAAmB,CACjC,MAAM,EAAE,OAAO,GAAG,cAAc,EAChC,IAAI,EAAE,MAAM,EACZ,QAAQ,GAAE,gBAAwB,GACjC,MAAM,CAER;AAED,wBAAgB,yBAAyB,IAAI,MAAM,CAUlD;AAED,wBAAgB,qBAAqB,IAAI,MAAM,CAE9C;AAED,wBAAgB,cAAc,CAAC,MAAM,EAAE,MAAM,GAAG,cAAc,CAmB7D;AAED,wBAAsB,eAAe,CACnC,UAAU,CAAC,EAAE,MAAM,EACnB,KAAK,CAAC,EAAE,MAAM,EACd,OAAO,CAAC,EAAE;IAAE,IAAI,CAAC,EAAE,MAAM,CAAC;IAAC,QAAQ,CAAC,EAAE,MAAM,CAAC;IAAC,MAAM,CAAC,EAAE,OAAO,CAAA;CAAE,GAC/D,OAAO,CAAC,IAAI,CAAC,CAoCf"}