sunpeak 0.10.6 → 0.10.7

package/dist/{server-B-T6Y3-J.cjs → server-D_oRdZjX.cjs}

@@ -4821,7 +4821,7 @@ union([
   ListTasksResultSchema,
   CreateTaskResultSchema
 ]);
-function readResourceHtml(distPath) {
+function readResourceHtmlProd(distPath) {
   const htmlPath = path.resolve(distPath);
   if (!fs.existsSync(htmlPath)) {
     throw new Error(
@@ -4843,12 +4843,76 @@ ${jsContents}
 </body>
 </html>`;
 }
-function createAppServer(config2) {
-  const { name = "sunpeak-app", version: version2 = "0.1.0", simulations } = config2;
+function getViteResourceHtml(srcPath) {
+  const fileName = srcPath.split("/").pop()?.replace(/-resource\.tsx$/, "") ?? "";
+  const componentName = fileName.split("-").map((part) => part.charAt(0).toUpperCase() + part.slice(1)).join("") + "Resource";
+  const devServerUrl = "http://localhost:6766";
+  const entryParams = new URLSearchParams({ src: srcPath, component: componentName });
+  const virtualModuleUrl = `${devServerUrl}/@id/virtual:sunpeak-entry?${entryParams.toString()}`;
+  return `<!DOCTYPE html>
+<html>
+<head>
+  <meta charset="UTF-8">
+  <meta name="viewport" content="width=device-width, initial-scale=1.0">
+</head>
+<body>
+  <script type="module">
+    import { injectIntoGlobalHook } from "${devServerUrl}/@react-refresh";
+    injectIntoGlobalHook(window);
+    window.$RefreshReg$ = () => {};
+    window.$RefreshSig$ = () => (type) => type;
+    window.__vite_plugin_react_preamble_installed__ = true;
+  <\/script>
+  <script type="module" src="${devServerUrl}/@vite/client"><\/script>
+  <script type="module">
+    // Local network access check (matching skybridge)
+    (async () => {
+      if (!navigator.permissions?.query) return;
+      const protocol = window.location.protocol;
+      if (protocol !== 'http:' && protocol !== 'https:') return;
+      const host = window.location.hostname;
+      const isLoopback = host === 'localhost' || /^127\\.(\\d{1,3})\\.(\\d{1,3})\\.(\\d{1,3})$/.test(host) || host === '::1';
+      if (isLoopback) return;
+      try {
+        const status = await navigator.permissions.query({ name: "local-network-access" });
+        if (status.state === "denied") {
+          document.getElementById('root').innerHTML = '<div style="background:#fef2f2;border:2px solid #ef4444;border-radius:8px;padding:16px;text-align:center;font-family:system-ui,sans-serif;"><div style="color:#ef4444;font-size:18px;font-weight:600;margin-bottom:8px;">Local network access permission is denied</div><div style="color:#ef4444;font-size:14px;">Please enable it in your browser settings. <a href="https://developer.chrome.com/blog/local-network-access" target="_blank" style="color:#ef4444;text-decoration:underline;">Learn more</a></div></div>';
+        }
+      } catch (e) {}
+    })();
+  <\/script>
+  <div id="root"></div>
+  <script type="module" src="${virtualModuleUrl}"><\/script>
+</body>
+</html>`;
+}
+function getResourceHtml(simulation, viteMode) {
+  if (viteMode && simulation.srcPath) {
+    return getViteResourceHtml(simulation.srcPath);
+  }
+  return readResourceHtmlProd(simulation.distPath);
+}
+const DEV_SERVER_URL = "http://localhost:6766";
+const HMR_WS_URL = "ws://localhost:24678";
+function injectViteCSP(existingMeta) {
+  const meta = existingMeta ?? {};
+  const widgetCSP = meta["openai/widgetCSP"] ?? {};
+  const existingResourceDomains = widgetCSP["resource_domains"] ?? [];
+  const resourceDomains = existingResourceDomains.includes(DEV_SERVER_URL) ? existingResourceDomains : [...existingResourceDomains, DEV_SERVER_URL];
+  const existingConnectDomains = widgetCSP["connect_domains"] ?? [];
+  const connectDomains = existingConnectDomains.includes(HMR_WS_URL) ? existingConnectDomains : [...existingConnectDomains, HMR_WS_URL];
+  return {
+    ...meta,
+    "openai/widgetCSP": {
+      ...widgetCSP,
+      resource_domains: resourceDomains,
+      connect_domains: connectDomains
+    }
+  };
+}
+function createAppServer(config2, simulations, viteMode) {
+  const { name = "sunpeak-app", version: version2 = "0.1.0" } = config2;
   const toolInputParser = zod.z.object({});
-  const resourceContentMap = new Map(
-    simulations.map((simulation) => [simulation.tool.name, readResourceHtml(simulation.distPath)])
-  );
   const devTimestamp = Date.now().toString(36);
   const resources = simulations.map((simulation) => {
     const resource = simulation.resource;
@@ -4872,11 +4936,13 @@ function createAppServer(config2) {
       simulation.callToolResult ?? { structuredContent: null, _meta: {} }
     ])
   );
-  const resourceMap = new Map(
+  const uriToSimulation = new Map(
+    resources.map((resource, index) => [resource.uri, simulations[index]])
+  );
+  const resourceMetaMap = new Map(
     resources.map((resource, index) => [
       resource.uri,
       {
-        content: resourceContentMap.get(simulations[index].tool.name),
         resource,
         _meta: simulations[index].resource._meta
       }
@@ -4895,24 +4961,35 @@ function createAppServer(config2) {
     }
   );
   server.setRequestHandler(ListResourcesRequestSchema, async (_request) => {
-    console.log(`[MCP] ListResources → ${resources.length} resource(s)`);
+    console.log(
+      `[MCP] ListResources → ${resources.length} resource(s)${viteMode ? " (vite mode)" : ""}`
+    );
+    if (viteMode) {
+      const resourcesWithCsp = resources.map((resource) => ({
+        ...resource,
+        _meta: injectViteCSP(resource._meta)
+      }));
+      return { resources: resourcesWithCsp };
+    }
     return { resources };
   });
   server.setRequestHandler(ReadResourceRequestSchema, async (request) => {
     const requestedUri = request.params.uri;
-    const resourceData = resourceMap.get(requestedUri);
-    if (!resourceData) {
+    const simulation = uriToSimulation.get(requestedUri);
+    const meta = resourceMetaMap.get(requestedUri);
+    if (!simulation || !meta) {
       throw new Error(`Unknown resource: ${requestedUri}`);
     }
-    const sizeKB = (resourceData.content.length / 1024).toFixed(1);
-    console.log(`[MCP] ReadResource: ${requestedUri} → ${sizeKB}KB`);
+    const content = getResourceHtml(simulation, viteMode);
+    const sizeKB = (content.length / 1024).toFixed(1);
+    console.log(`[MCP] ReadResource: ${requestedUri} → ${sizeKB}KB${viteMode ? " (vite)" : ""}`);
     return {
       contents: [
         {
-          uri: resourceData.resource.uri,
-          mimeType: resourceData.resource.mimeType,
-          text: resourceData.content,
-          _meta: resourceData._meta
+          uri: meta.resource.uri,
+          mimeType: meta.resource.mimeType,
+          text: content,
+          _meta: viteMode ? injectViteCSP(meta._meta) : meta._meta
         }
       ]
     };
@@ -4951,9 +5028,9 @@ function createAppServer(config2) {
 const sessions = /* @__PURE__ */ new Map();
 const ssePath = "/mcp";
 const postPath = "/mcp/messages";
-async function handleSseRequest(res, config2) {
+async function handleSseRequest(res, config2, simulations, viteMode) {
   res.setHeader("Access-Control-Allow-Origin", "*");
-  const server = createAppServer(config2);
+  const server = createAppServer(config2, simulations, viteMode);
   const transport = new sse_js.SSEServerTransport(postPath, res);
   const sessionId = transport.sessionId;
   sessions.set(sessionId, { server, transport });
@@ -4979,7 +5056,7 @@ async function handleSseRequest(res, config2) {
 }
 async function handlePostMessage(req, res, url) {
   res.setHeader("Access-Control-Allow-Origin", "*");
-  res.setHeader("Access-Control-Allow-Headers", "content-type");
+  res.setHeader("Access-Control-Allow-Headers", "content-type, ngrok-skip-browser-warning");
   const sessionId = url.searchParams.get("sessionId");
   if (!sessionId) {
     res.writeHead(400).end("Missing sessionId query parameter");
@@ -5002,32 +5079,48 @@ async function handlePostMessage(req, res, url) {
 function runMCPServer(config2) {
   const portEnv = Number(process.env.PORT ?? 6766);
   const port = config2.port ?? (Number.isFinite(portEnv) ? portEnv : 6766);
+  const { simulations } = config2;
+  const viteServer = config2.viteServer;
+  const viteMode = !!viteServer;
   const httpServer = node_http.createServer(async (req, res) => {
     if (!req.url) {
       res.writeHead(400).end("Missing URL");
       return;
     }
     const url = new node_url.URL(req.url, `http://${req.headers.host ?? "localhost"}`);
-    console.log(`[HTTP] ${req.method} ${url.pathname}`);
-    if (req.method === "OPTIONS" && (url.pathname === ssePath || url.pathname === postPath)) {
+    if (req.method === "OPTIONS") {
       res.writeHead(204, {
         "Access-Control-Allow-Origin": "*",
         "Access-Control-Allow-Methods": "GET, POST, OPTIONS",
-        "Access-Control-Allow-Headers": "content-type"
+        "Access-Control-Allow-Headers": "content-type, ngrok-skip-browser-warning"
       });
       res.end();
       return;
     }
     if (req.method === "GET" && url.pathname === ssePath) {
-      await handleSseRequest(res, config2);
+      console.log(`[HTTP] ${req.method} ${url.pathname}`);
+      await handleSseRequest(res, config2, simulations, viteMode);
       return;
     }
     if (req.method === "POST" && url.pathname === postPath) {
+      console.log(`[HTTP] ${req.method} ${url.pathname}`);
       await handlePostMessage(req, res, url);
       return;
     }
+    if (viteServer) {
+      res.setHeader("Access-Control-Allow-Origin", "*");
+      res.setHeader("Access-Control-Allow-Headers", "content-type, ngrok-skip-browser-warning");
+      viteServer.middlewares(req, res);
+      return;
+    }
+    console.log(`[HTTP] ${req.method} ${url.pathname} → 404`);
     res.writeHead(404).end("Not Found");
   });
+  if (viteServer) {
+    httpServer.on("upgrade", (request, socket, head) => {
+      viteServer.ws.handleUpgrade(request, socket, head);
+    });
+  }
   httpServer.on("clientError", (err, socket) => {
     console.error("HTTP client error", err);
     socket.end("HTTP/1.1 400 Bad Request\r\n\r\n");
@@ -5036,8 +5129,11 @@ function runMCPServer(config2) {
     console.log(`Sunpeak MCP server listening on http://localhost:${port}`);
     console.log(`  SSE stream: GET http://localhost:${port}${ssePath}`);
     console.log(`  Message post endpoint: POST http://localhost:${port}${postPath}?sessionId=...`);
+    if (viteMode) {
+      console.log(`  Vite HMR: enabled (source files served with hot reload)`);
+    }
   });
-  const shutdown = () => {
+  const shutdown = async () => {
     console.log("\nShutting down MCP server...");
     httpServer.close(() => {
       console.log("MCP server closed");
@@ -5048,8 +5144,8 @@ function runMCPServer(config2) {
       process.exit(1);
     }, 5e3);
   };
-  process.on("SIGTERM", shutdown);
-  process.on("SIGINT", shutdown);
+  process.on("SIGTERM", () => void shutdown());
+  process.on("SIGINT", () => void shutdown());
 }
 exports.runMCPServer = runMCPServer;
-//# sourceMappingURL=server-B-T6Y3-J.cjs.map
+//# sourceMappingURL=server-D_oRdZjX.cjs.map