securenow 5.0.4 → 5.2.0

package/README.md

@@ -98,7 +98,7 @@ pnpm add securenow
 SECURENOW_APPID=my-app-name
 
 # Optional: Your SigNoz/OTLP collector endpoint
-# Default: http://46.62.173.237:4318
+# Default: https://freetrial.securenow.ai:4318
 SECURENOW_INSTANCE=http://your-signoz-server:4318
 
 # Optional: Enable Logging

package/cli.js

@@ -59,7 +59,7 @@ export function register() {
 SECURENOW_APPID=my-nextjs-app
 
 # Optional: Your SigNoz/OpenTelemetry collector endpoint
-# Default: http://46.62.173.237:4318
+# Default: https://freetrial.securenow.ai:4318
 SECURENOW_INSTANCE=http://your-signoz-server:4318
 
 # Optional: API key or authentication headers

package/docs/ENVIRONMENT-VARIABLES.md

@@ -9,7 +9,7 @@ Complete reference for all environment variables supported by SecureNow.
 | Variable | Type | Default | Description |
 |----------|------|---------|-------------|
 | **SECURENOW_APPID** | Required | - | Application identifier / service name |
-| **SECURENOW_INSTANCE** | Required | `http://46.62.173.237:4318` | OTLP collector base URL |
+| **SECURENOW_INSTANCE** | Required | `https://freetrial.securenow.ai:4318` | OTLP collector base URL |
 | **SECURENOW_LOGGING_ENABLED** | Optional | `1` | Enable/disable logging |
 | **SECURENOW_NO_UUID** | Optional | `0` | Disable UUID suffix on service name |
 | **SECURENOW_STRICT** | Optional | `0` | Exit if APPID missing in cluster mode |
@@ -72,7 +72,7 @@ export SECURENOW_INSTANCE=http://collector.example.com:4318
 export SECURENOW_INSTANCE=https://collector.example.com:4318
 ```
 
-**Default:** `http://46.62.173.237:4318` (if not set)
+**Default:** `https://freetrial.securenow.ai:4318` (if not set)
 
 **Notes:**
 - Used to construct traces and logs endpoints
@@ -540,7 +540,7 @@ When multiple variables are set, this is the priority order:
 2. `OTEL_EXPORTER_OTLP_LOGS_ENDPOINT` (for logs)
 3. `OTEL_EXPORTER_OTLP_ENDPOINT`
 4. `SECURENOW_INSTANCE`
-5. Default: `http://46.62.173.237:4318` (lowest priority)
+5. Default: `https://freetrial.securenow.ai:4318` (lowest priority)
 
 ---
 

package/docs/LOGGING-GUIDE.md

@@ -39,7 +39,7 @@ export SECURENOW_LOGGING_ENABLED=1
 # Required: Your app identifier
 export SECURENOW_APPID=my-app
 
-# Optional: Your SigNoz endpoint (defaults to http://46.62.173.237:4318)
+# Optional: Your SigNoz endpoint (defaults to https://freetrial.securenow.ai:4318)
 export SECURENOW_INSTANCE=http://your-signoz-server:4318
 
 # Optional: SigNoz Cloud authentication

package/examples/nextjs-env-example.txt

@@ -5,7 +5,7 @@
 SECURENOW_APPID=my-nextjs-app
 
 # Optional: Your SigNoz/OpenTelemetry collector endpoint
-# Default: http://46.62.173.237:4318
+# Default: https://freetrial.securenow.ai:4318
 SECURENOW_INSTANCE=http://your-signoz-server:4318
 
 # Optional: API Key or authentication headers

package/free-trial-banner.js

@@ -0,0 +1,154 @@
+'use strict';
+
+/**
+ * Free Trial Banner — auto-injects a visible "Testing Environment" banner
+ * into HTML pages served by apps using the SecureNow free trial instance.
+ *
+ * Opt-out: set SECURENOW_HIDE_BANNER=1
+ */
+
+const FREETRIAL_HOST = 'freetrial.securenow.ai';
+
+function isFreeTrial(endpointBase) {
+  return !!endpointBase && endpointBase.includes(FREETRIAL_HOST);
+}
+
+/* istanbul ignore next — runs in browser, not Node */
+function _bannerClientCode() {
+  if (window.__snBanner) return;
+  window.__snBanner = 1;
+
+  function create() {
+    if (document.getElementById('sn-ft-banner')) return;
+
+    var d = document.createElement('div');
+    d.id = 'sn-ft-banner';
+    d.style.cssText =
+      'position:fixed;top:0;left:0;right:0;z-index:2147483647;' +
+      'background:#FEF3CD;color:#856404;padding:10px 16px;' +
+      'font-family:system-ui,-apple-system,sans-serif;font-size:13px;' +
+      'text-align:center;border-bottom:2px solid #FFE69C;' +
+      'display:flex;align-items:center;justify-content:center;gap:6px;' +
+      'box-shadow:0 2px 8px rgba(0,0,0,0.12)';
+
+    var icon = document.createElement('span');
+    icon.textContent = '\u26a0\ufe0f';
+    d.appendChild(icon);
+
+    var msg = document.createElement('span');
+    var strong = document.createElement('strong');
+    strong.textContent = 'Testing Environment:';
+    msg.appendChild(strong);
+    msg.appendChild(document.createTextNode(
+      ' Only add test applications. For production usage, please '
+    ));
+
+    var link = document.createElement('a');
+    link.href = 'https://securenow.ai/contact';
+    link.target = '_blank';
+    link.rel = 'noopener';
+    link.style.cssText = 'color:#664D03;font-weight:600;text-decoration:underline';
+    link.textContent = 'contact our team for a demo';
+    msg.appendChild(link);
+    msg.appendChild(document.createTextNode('.'));
+    d.appendChild(msg);
+
+    var close = document.createElement('button');
+    close.textContent = '\u00d7';
+    close.style.cssText =
+      'background:none;border:none;color:#856404;font-size:18px;' +
+      'cursor:pointer;margin-left:12px;padding:0 4px;line-height:1';
+    close.onclick = function () { d.style.display = 'none'; };
+    d.appendChild(close);
+
+    document.body.prepend(d);
+  }
+
+  if (document.readyState === 'loading') {
+    document.addEventListener('DOMContentLoaded', create);
+  } else {
+    create();
+  }
+}
+
+var BANNER_SCRIPT =
+  '<script data-securenow-banner>(' +
+  _bannerClientCode.toString() +
+  ')()</scr' + 'ipt>';
+
+/**
+ * Monkey-patch http.ServerResponse to inject the banner script into HTML
+ * responses. Searches for `<head...>` and inserts the script right after it.
+ * Skips compressed responses and non-HTML content types.
+ */
+function patchHttpForBanner() {
+  try {
+    var http = require('http');
+    var _origWrite = http.ServerResponse.prototype.write;
+    var _origEnd   = http.ServerResponse.prototype.end;
+
+    function maybeInject(res, chunk) {
+      if (res._snBannerDone || !chunk) return chunk;
+
+      if (res._snIsHtml === undefined) {
+        var ct = res.getHeader('content-type');
+        var ce = res.getHeader('content-encoding');
+        res._snIsHtml = !!(ct && String(ct).includes('text/html') && !ce);
+      }
+      if (!res._snIsHtml) {
+        res._snBannerDone = true;
+        return chunk;
+      }
+
+      var isStr = typeof chunk === 'string';
+      var isBuf = Buffer.isBuffer(chunk);
+      if (!isStr && !isBuf) return chunk;
+
+      var str = isStr ? chunk : chunk.toString('utf8');
+      var headIdx = str.indexOf('<head');
+      if (headIdx === -1) return chunk;
+
+      var gt = str.indexOf('>', headIdx);
+      if (gt === -1) return chunk;
+
+      res._snBannerDone = true;
+      var result = str.slice(0, gt + 1) + BANNER_SCRIPT + str.slice(gt + 1);
+      return isStr ? result : Buffer.from(result, 'utf8');
+    }
+
+    http.ServerResponse.prototype.write = function (chunk, encoding, cb) {
+      try {
+        var modified = maybeInject(this, chunk);
+        if (modified !== chunk) {
+          var enc = typeof encoding === 'function' ? 'utf8' : encoding;
+          var callback = typeof encoding === 'function' ? encoding : cb;
+          return _origWrite.call(this, modified, enc, callback);
+        }
+      } catch (_) { /* never break the app */ }
+      return _origWrite.call(this, chunk, encoding, cb);
+    };
+
+    http.ServerResponse.prototype.end = function (chunk, encoding, cb) {
+      try {
+        var modified = maybeInject(this, chunk);
+        if (modified !== chunk) {
+          var enc = typeof encoding === 'function' ? 'utf8' : encoding;
+          var callback = typeof encoding === 'function' ? encoding : cb;
+          try {
+            if (this.getHeader('content-length')) {
+              this.setHeader('content-length', Buffer.byteLength(modified));
+            }
+          } catch (_) { /* headers already sent */ }
+          return _origEnd.call(this, modified, enc, callback);
+        }
+      } catch (_) { /* never break the app */ }
+      return _origEnd.call(this, chunk, encoding, cb);
+    };
+
+    console.log('[securenow] Free trial banner injection enabled');
+  } catch (err) {
+    console.warn('[securenow] Could not setup free trial banner:', err.message);
+  }
+}
+
+module.exports = { isFreeTrial, patchHttpForBanner, BANNER_SCRIPT };

package/nextjs.d.ts

@@ -11,7 +11,7 @@ export interface RegisterOptions {
 
   /**
    * OTLP endpoint for traces
-   * @default process.env.SECURENOW_INSTANCE || 'http://46.62.173.237:4318'
+   * @default process.env.SECURENOW_INSTANCE || 'https://freetrial.securenow.ai:4318'
    */
   endpoint?: string;
 

package/nextjs.js

@@ -257,10 +257,11 @@ function registerSecureNow(options = {}) {
       options.endpoint || 
       env('SECURENOW_INSTANCE') || 
       env('OTEL_EXPORTER_OTLP_ENDPOINT') || 
-      'http://46.62.173.237:4318'
+      'https://freetrial.securenow.ai:4318'
     ).replace(/\/$/, '');
     
     const tracesUrl = env('OTEL_EXPORTER_OTLP_TRACES_ENDPOINT') || `${endpointBase}/v1/traces`;
+    const logsUrl = env('OTEL_EXPORTER_OTLP_LOGS_ENDPOINT') || `${endpointBase}/v1/logs`;
 
     // Set environment variables for @vercel/otel to pick up
     process.env.OTEL_SERVICE_NAME = serviceName;
@@ -504,9 +505,69 @@ function registerSecureNow(options = {}) {
       
       sdk.start();
       console.log('[securenow] 🎯 Vanilla SDK initialized for self-hosted environment');
+
+      // -------- Logging (self-hosted only) --------
+      const loggingEnabled = String(env('SECURENOW_LOGGING_ENABLED')) === '1' || String(env('SECURENOW_LOGGING_ENABLED')).toLowerCase() === 'true';
+      if (loggingEnabled) {
+        try {
+          const { OTLPLogExporter } = require('@opentelemetry/exporter-logs-otlp-http');
+          const { LoggerProvider, BatchLogRecordProcessor } = require('@opentelemetry/sdk-logs');
+
+          const logExporter = new OTLPLogExporter({
+            url: logsUrl,
+            headers: parseHeaders(env('OTEL_EXPORTER_OTLP_HEADERS')),
+          });
+
+          const loggerProvider = new LoggerProvider({
+            resource: new Resource({
+              [SemanticResourceAttributes.SERVICE_NAME]: serviceName,
+              [SemanticResourceAttributes.DEPLOYMENT_ENVIRONMENT]: env('NODE_ENV') || 'production',
+            }),
+          });
+          loggerProvider.addLogRecordProcessor(new BatchLogRecordProcessor(logExporter));
+
+          // Patch console to forward logs as OTLP log records
+          const logger = loggerProvider.getLogger('console', '1.0.0');
+          const SeverityNumber = { INFO: 9, WARN: 13, ERROR: 17 };
+          const origLog = console.log;
+          const origWarn = console.warn;
+          const origError = console.error;
+
+          console.log = (...args) => {
+            origLog.apply(console, args);
+            try { logger.emit({ severityNumber: SeverityNumber.INFO, severityText: 'INFO', body: args.map(String).join(' ') }); } catch (_) {}
+          };
+          console.warn = (...args) => {
+            origWarn.apply(console, args);
+            try { logger.emit({ severityNumber: SeverityNumber.WARN, severityText: 'WARN', body: args.map(String).join(' ') }); } catch (_) {}
+          };
+          console.error = (...args) => {
+            origError.apply(console, args);
+            try { logger.emit({ severityNumber: SeverityNumber.ERROR, severityText: 'ERROR', body: args.map(String).join(' ') }); } catch (_) {}
+          };
+
+          console.log('[securenow] 📋 Logging: ENABLED → %s', logsUrl);
+
+          // Graceful shutdown for logs
+          const origShutdown = sdk.shutdown?.bind(sdk);
+          process.on('SIGTERM', async () => { try { await loggerProvider.shutdown(); } catch (_) {} });
+          process.on('SIGINT', async () => { try { await loggerProvider.shutdown(); } catch (_) {} });
+        } catch (e) {
+          console.warn('[securenow] ⚠️  Logging setup failed (missing @opentelemetry/exporter-logs-otlp-http or @opentelemetry/sdk-logs):', e.message);
+        }
+      } else {
+        console.log('[securenow] 📋 Logging: DISABLED (set SECURENOW_LOGGING_ENABLED=1 to enable)');
+      }
     }
 
     isRegistered = true;
+
+    // Free trial banner
+    const { isFreeTrial, patchHttpForBanner } = require('./free-trial-banner');
+    if (isFreeTrial(endpointBase) && String(env('SECURENOW_HIDE_BANNER')) !== '1') {
+      patchHttpForBanner();
+    }
+
     console.log('[securenow] ✅ OpenTelemetry started for Next.js → %s', tracesUrl);
     console.log('[securenow] 📊 Auto-capturing comprehensive request metadata:');
     console.log('[securenow]    • IP addresses (x-forwarded-for, x-real-ip, socket)');

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "securenow",
-  "version": "5.0.4",
+  "version": "5.2.0",
   "description": "OpenTelemetry instrumentation for Node.js and Next.js - Send traces and logs to SigNoz or any OTLP backend",
   "type": "commonjs",
   "main": "register.js",
@@ -85,6 +85,7 @@
     "nextjs-wrapper.js",
     "nextjs-wrapper.d.ts",
     "cli.js",
+    "free-trial-banner.js",
     "postinstall.js",
     "register-vite.js",
     "web-vite.mjs",

package/postinstall.js

@@ -151,7 +151,7 @@ function createEnvTemplate(targetPath) {
 SECURENOW_APPID=my-nextjs-app
 
 # Optional: Your SigNoz/OpenTelemetry collector endpoint
-# Default: http://46.62.173.237:4318
+# Default: https://freetrial.securenow.ai:4318
 SECURENOW_INSTANCE=http://your-signoz-server:4318
 
 # Optional: API key or authentication headers

package/tracing.js

@@ -245,7 +245,7 @@ const httpInstrumentation = new HttpInstrumentation({
 });
 
 // -------- Logging Configuration --------
-const loggingEnabled = String(env('SECURENOW_LOGGING_ENABLED')) !== '0' && String(env('SECURENOW_LOGGING_ENABLED')).toLowerCase() !== 'false';
+const loggingEnabled = String(env('SECURENOW_LOGGING_ENABLED')) === '1' || String(env('SECURENOW_LOGGING_ENABLED')).toLowerCase() === 'true';
 
 // Create shared resource for both traces and logs
 const sharedResource = new Resource({
@@ -257,7 +257,6 @@ const sharedResource = new Resource({
 
 // Initialize LoggerProvider if logging is enabled
 let loggerProvider = null;
-let globalLogger = null;
 
 if (loggingEnabled) {
   const logExporter = new OTLPLogExporter({ 
@@ -270,8 +269,6 @@ if (loggingEnabled) {
     resource: sharedResource,
   });
   loggerProvider.addLogRecordProcessor(batchLogProcessor);
-  
-  globalLogger = loggerProvider.getLogger('securenow', '1.0.0');
 }
 
 // -------- SDK --------
@@ -306,12 +303,21 @@ const sdk = new NodeSDK({
       const tracer = api.trace.getTracer('securenow-smoke');
       const span = tracer.startSpan('securenow.startup.smoke'); span.end();
     }
+
+    // Free trial banner
+    const { isFreeTrial, patchHttpForBanner } = require('./free-trial-banner');
+    if (isFreeTrial(endpointBase) && String(env('SECURENOW_HIDE_BANNER')) !== '1') {
+      patchHttpForBanner();
+    }
   } catch (e) {
     console.error('[securenow] OTel start failed:', e && e.stack || e);
   }
 })();
 
+let shuttingDown = false;
 async function safeShutdown(sig) {
+  if (shuttingDown) return;
+  shuttingDown = true;
   try { 
     await Promise.resolve(sdk.shutdown?.()); 
     if (loggerProvider) {

package/web-vite.mjs

@@ -43,7 +43,7 @@ function parseHeaders(str?: string) {
 
 // ---- endpoints (same defaults as tracing.js) ----
 const endpointBase =
-  (env('SECURENOW_INSTANCE') || env('OTEL_EXPORTER_OTLP_ENDPOINT') || 'http://46.62.173.237:4318')
+  (env('SECURENOW_INSTANCE') || env('OTEL_EXPORTER_OTLP_ENDPOINT') || 'https://freetrial.securenow.ai:4318')
     .replace(/\/$/, '');
 const tracesUrl =
   env('OTEL_EXPORTER_OTLP_TRACES_ENDPOINT') || `${endpointBase}/v1/traces`;
@@ -144,9 +144,70 @@ export function startSecurenowWeb() {
   console.log('[securenow] Web OTel started → %s', tracesUrl);
 }
 
+// ---- Free trial banner (browser DOM injection) ----
+function injectFreeTrialBanner(): void {
+  const FREETRIAL_HOST = 'freetrial.securenow.ai';
+  const hideBanner = String(env('SECURENOW_HIDE_BANNER')) === '1';
+  if (hideBanner || !endpointBase.includes(FREETRIAL_HOST)) return;
+  if (typeof document === 'undefined') return;
+
+  function create(): void {
+    if (document.getElementById('sn-ft-banner')) return;
+
+    const d = document.createElement('div');
+    d.id = 'sn-ft-banner';
+    d.style.cssText =
+      'position:fixed;top:0;left:0;right:0;z-index:2147483647;' +
+      'background:#FEF3CD;color:#856404;padding:10px 16px;' +
+      'font-family:system-ui,-apple-system,sans-serif;font-size:13px;' +
+      'text-align:center;border-bottom:2px solid #FFE69C;' +
+      'display:flex;align-items:center;justify-content:center;gap:6px;' +
+      'box-shadow:0 2px 8px rgba(0,0,0,0.12)';
+
+    const icon = document.createElement('span');
+    icon.textContent = '\u26a0\ufe0f';
+    d.appendChild(icon);
+
+    const msg = document.createElement('span');
+    const strong = document.createElement('strong');
+    strong.textContent = 'Testing Environment:';
+    msg.appendChild(strong);
+    msg.appendChild(document.createTextNode(
+      ' Only add test applications. For production usage, please '
+    ));
+
+    const link = document.createElement('a');
+    link.href = 'https://securenow.ai/contact';
+    link.target = '_blank';
+    link.rel = 'noopener';
+    link.style.cssText = 'color:#664D03;font-weight:600;text-decoration:underline';
+    link.textContent = 'contact our team for a demo';
+    msg.appendChild(link);
+    msg.appendChild(document.createTextNode('.'));
+    d.appendChild(msg);
+
+    const close = document.createElement('button');
+    close.textContent = '\u00d7';
+    close.style.cssText =
+      'background:none;border:none;color:#856404;font-size:18px;' +
+      'cursor:pointer;margin-left:12px;padding:0 4px;line-height:1';
+    close.onclick = () => { d.style.display = 'none'; };
+    d.appendChild(close);
+
+    document.body.prepend(d);
+  }
+
+  if (document.readyState === 'loading') {
+    document.addEventListener('DOMContentLoaded', create);
+  } else {
+    create();
+  }
+}
+
 // Auto-start
 try {
   startSecurenowWeb();
+  injectFreeTrialBanner();
 } catch (e: any) {
   if (String(e?.message) !== '__SECURENOW_NO_START__') {
     console.error('[securenow/web-vite] failed to start:', e);