brianhansonxyz/rspade_system
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Fix bin/publish: copy docs.dist from project root

Browse Source 
Fix bin/publish: use correct .env path for rspade_system
Fix bin/publish script: prevent grep exit code 1 from terminating script

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude <noreply@anthropic.com>
This commit is contained in:
root
2025-10-21 02:08:33 +00:00
commit f6fac6c4bc
79758 changed files with 10547827 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

11
app/RSpade/resource/DebugProxy/dist/http/auth.d.ts vendored Executable file
View File

@@ -0,0 +1,11 @@
import { Request, Response, NextFunction } from 'express';
export declare class AuthValidator {
private logger;
private sessionsCache;
constructor();
validateWebSocketAuth(sessionId: string, signature: string): Promise<boolean>;
authMiddleware(): (req: Request, res: Response, next: NextFunction) => Promise<void>;
private loadSession;
clearCache(): void;
}
//# sourceMappingURL=auth.d.ts.map

1
app/RSpade/resource/DebugProxy/dist/http/auth.d.ts.map vendored Executable file
View File

@@ -0,0 +1 @@
{"version":3,"file":"auth.d.ts","sourceRoot":"","sources":["../../src/http/auth.ts"],"names":[],"mappings":"AAGA,OAAO,EAAE,OAAO,EAAE,QAAQ,EAAE,YAAY,EAAE,MAAM,SAAS,CAAC;AAW1D,qBAAa,aAAa;IACtB,OAAO,CAAC,MAAM,CAAS;IACvB,OAAO,CAAC,aAAa,CAAuC;;IAM/C,qBAAqB,CAAC,SAAS,EAAE,MAAM,EAAE,SAAS,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC;IAsBnF,cAAc,KACH,KAAK,OAAO,EAAE,KAAK,QAAQ,EAAE,MAAM,YAAY;YAsEnD,WAAW;IAuBlB,UAAU,IAAI,IAAI;CAG5B"}

157
app/RSpade/resource/DebugProxy/dist/http/auth.js vendored Executable file
View File

@@ -0,0 +1,157 @@
"use strict";
var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
if (k2 === undefined) k2 = k;
var desc = Object.getOwnPropertyDescriptor(m, k);
if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
desc = { enumerable: true, get: function() { return m[k]; } };
}
Object.defineProperty(o, k2, desc);
}) : (function(o, m, k, k2) {
if (k2 === undefined) k2 = k;
o[k2] = m[k];
}));
var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
Object.defineProperty(o, "default", { enumerable: true, value: v });
}) : function(o, v) {
o["default"] = v;
});
var __importStar = (this && this.__importStar) || (function () {
var ownKeys = function(o) {
ownKeys = Object.getOwnPropertyNames || function (o) {
var ar = [];
for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
return ar;
};
return ownKeys(o);
};
return function (mod) {
if (mod && mod.__esModule) return mod;
var result = {};
if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
__setModuleDefault(result, mod);
return result;
};
})();
Object.defineProperty(exports, "__esModule", { value: true });
exports.AuthValidator = void 0;
const fs = __importStar(require("fs/promises"));
const crypto = __importStar(require("crypto"));
const path = __importStar(require("path"));
const logger_1 = require("../utils/logger");
const config_1 = require("../utils/config");
class AuthValidator {
logger;
sessionsCache = new Map();
constructor() {
this.logger = new logger_1.Logger('AuthValidator');
}
async validateWebSocketAuth(sessionId, signature) {
try {
const session = await this.loadSession(sessionId);
if (!session) {
this.logger.warn(`Session not found: ${sessionId}`);
return false;
}
// For WebSocket, we'll validate a simple signature
// In production, this should include timestamp and nonce
const expectedSignature = crypto
.createHmac('sha256', session.server_key)
.update(sessionId)
.digest('hex');
return signature === expectedSignature;
}
catch (error) {
this.logger.error('WebSocket auth validation failed:', error);
return false;
}
}
authMiddleware() {
return async (req, res, next) => {
const sessionId = req.headers['x-session-id'];
const signature = req.headers['x-auth-signature'];
const timestamp = req.headers['x-timestamp'];
if (!sessionId || !signature || !timestamp) {
res.status(401).json({
error: 'Missing authentication headers',
code: 401
});
return;
}
try {
const session = await this.loadSession(sessionId);
if (!session) {
res.status(401).json({
error: 'Session not found',
code: 401,
recoverable: true,
recovery: 'Create new session via POST /_ide/service/auth/create'
});
return;
}
// Validate signature
const method = req.method;
const path = req.path;
const body = JSON.stringify(req.body || {});
const signatureBase = `${method}\n${path}\n${timestamp}\n${body}`;
const expectedSignature = crypto
.createHmac('sha256', session.server_key)
.update(signatureBase)
.digest('hex');
if (signature !== expectedSignature) {
this.logger.warn('Invalid signature for session:', sessionId);
res.status(401).json({
error: 'Invalid signature',
code: 401
});
return;
}
// Check timestamp to prevent replay attacks (5 minute window)
const requestTime = parseInt(timestamp, 10);
const currentTime = Math.floor(Date.now() / 1000);
if (Math.abs(currentTime - requestTime) > 300) {
res.status(401).json({
error: 'Request timestamp expired',
code: 401
});
return;
}
// Attach session to request for use in routes
req.session = session;
req.sessionId = sessionId;
next();
}
catch (error) {
this.logger.error('Auth middleware error:', error);
res.status(500).json({
error: 'Authentication error',
code: 500
});
}
};
}
async loadSession(sessionId) {
// Check cache first
if (this.sessionsCache.has(sessionId)) {
return this.sessionsCache.get(sessionId);
}
try {
const sessionPath = path.join(config_1.Config.AUTH_SESSION_PATH, `auth-${sessionId}.json`);
const data = await fs.readFile(sessionPath, 'utf8');
const session = JSON.parse(data);
// Cache the session
this.sessionsCache.set(sessionId, session);
return session;
}
catch (error) {
if (error.code === 'ENOENT') {
return null; // Session file doesn't exist
}
throw error;
}
}
clearCache() {
this.sessionsCache.clear();
}
}
exports.AuthValidator = AuthValidator;
//# sourceMappingURL=auth.js.map

1
app/RSpade/resource/DebugProxy/dist/http/auth.js.map vendored Executable file
View File

@@ -0,0 +1 @@
{"version":3,"file":"auth.js","sourceRoot":"","sources":["../../src/http/auth.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAAA,gDAAkC;AAClC,+CAAiC;AACjC,2CAA6B;AAE7B,4CAAyC;AACzC,4CAAyC;AASzC,MAAa,aAAa;IACd,MAAM,CAAS;IACf,aAAa,GAA6B,IAAI,GAAG,EAAE,CAAC;IAE5D;QACI,IAAI,CAAC,MAAM,GAAG,IAAI,eAAM,CAAC,eAAe,CAAC,CAAC;IAC9C,CAAC;IAEM,KAAK,CAAC,qBAAqB,CAAC,SAAiB,EAAE,SAAiB;QACnE,IAAI,CAAC;YACD,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,WAAW,CAAC,SAAS,CAAC,CAAC;YAClD,IAAI,CAAC,OAAO,EAAE,CAAC;gBACX,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,sBAAsB,SAAS,EAAE,CAAC,CAAC;gBACpD,OAAO,KAAK,CAAC;YACjB,CAAC;YAED,mDAAmD;YACnD,yDAAyD;YACzD,MAAM,iBAAiB,GAAG,MAAM;iBAC3B,UAAU,CAAC,QAAQ,EAAE,OAAO,CAAC,UAAU,CAAC;iBACxC,MAAM,CAAC,SAAS,CAAC;iBACjB,MAAM,CAAC,KAAK,CAAC,CAAC;YAEnB,OAAO,SAAS,KAAK,iBAAiB,CAAC;QAC3C,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACb,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,mCAAmC,EAAE,KAAK,CAAC,CAAC;YAC9D,OAAO,KAAK,CAAC;QACjB,CAAC;IACL,CAAC;IAEM,cAAc;QACjB,OAAO,KAAK,EAAE,GAAY,EAAE,GAAa,EAAE,IAAkB,EAAE,EAAE;YAC7D,MAAM,SAAS,GAAG,GAAG,CAAC,OAAO,CAAC,cAAc,CAAW,CAAC;YACxD,MAAM,SAAS,GAAG,GAAG,CAAC,OAAO,CAAC,kBAAkB,CAAW,CAAC;YAC5D,MAAM,SAAS,GAAG,GAAG,CAAC,OAAO,CAAC,aAAa,CAAW,CAAC;YAEvD,IAAI,CAAC,SAAS,IAAI,CAAC,SAAS,IAAI,CAAC,SAAS,EAAE,CAAC;gBACzC,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;oBACjB,KAAK,EAAE,gCAAgC;oBACvC,IAAI,EAAE,GAAG;iBACZ,CAAC,CAAC;gBACH,OAAO;YACX,CAAC;YAED,IAAI,CAAC;gBACD,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,WAAW,CAAC,SAAS,CAAC,CAAC;gBAClD,IAAI,CAAC,OAAO,EAAE,CAAC;oBACX,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;wBACjB,KAAK,EAAE,mBAAmB;wBAC1B,IAAI,EAAE,GAAG;wBACT,WAAW,EAAE,IAAI;wBACjB,QAAQ,EAAE,uDAAuD;qBACpE,CAAC,CAAC;oBACH,OAAO;gBACX,CAAC;gBAED,qBAAqB;gBACrB,MAAM,MAAM,GAAG,GAAG,CAAC,MAAM,CAAC;gBAC1B,MAAM,IAAI,GAAG,GAAG,CAAC,IAAI,CAAC;gBACtB,MAAM,IAAI,GAAG,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,IAAI,IAAI,EAAE,CAAC,CAAC;gBAE5C,MAAM,aAAa,GAAG,GAAG,MAAM,KAAK,IAAI,KAAK,SAAS,KAAK,IAAI,EAAE,CAAC;gBAClE,MAAM,iBAAiB,GAAG,MAAM;qBAC3B,UAAU,CAAC,QAAQ,EAAE,OAAO,CAAC,UAAU,CAAC;qBACxC,MAAM,CAAC,aAAa,CAAC;qBACrB,MAAM,CAAC,KAAK,CAAC,CAAC;gBAEnB,IAAI,SAAS,KAAK,iBAAiB,EAAE,CAAC;oBAClC,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,gCAAgC,EAAE,SAAS,CAAC,CAAC;oBAC9D,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;wBACjB,KAAK,EAAE,mBAAmB;wBAC1B,IAAI,EAAE,GAAG;qBACZ,CAAC,CAAC;oBACH,OAAO;gBACX,CAAC;gBAED,8DAA8D;gBAC9D,MAAM,WAAW,GAAG,QAAQ,CAAC,SAAS,EAAE,EAAE,CAAC,CAAC;gBAC5C,MAAM,WAAW,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC;gBAClD,IAAI,IAAI,CAAC,GAAG,CAAC,WAAW,GAAG,WAAW,CAAC,GAAG,GAAG,EAAE,CAAC;oBAC5C,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;wBACjB,KAAK,EAAE,2BAA2B;wBAClC,IAAI,EAAE,GAAG;qBACZ,CAAC,CAAC;oBACH,OAAO;gBACX,CAAC;gBAED,8CAA8C;gBAC7C,GAAW,CAAC,OAAO,GAAG,OAAO,CAAC;gBAC9B,GAAW,CAAC,SAAS,GAAG,SAAS,CAAC;gBACnC,IAAI,EAAE,CAAC;YACX,CAAC;YAAC,OAAO,KAAK,EAAE,CAAC;gBACb,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,wBAAwB,EAAE,KAAK,CAAC,CAAC;gBACnD,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;oBACjB,KAAK,EAAE,sBAAsB;oBAC7B,IAAI,EAAE,GAAG;iBACZ,CAAC,CAAC;YACP,CAAC;QACL,CAAC,CAAC;IACN,CAAC;IAEO,KAAK,CAAC,WAAW,CAAC,SAAiB;QACvC,oBAAoB;QACpB,IAAI,IAAI,CAAC,aAAa,CAAC,GAAG,CAAC,SAAS,CAAC,EAAE,CAAC;YACpC,OAAO,IAAI,CAAC,aAAa,CAAC,GAAG,CAAC,SAAS,CAAE,CAAC;QAC9C,CAAC;QAED,IAAI,CAAC;YACD,MAAM,WAAW,GAAG,IAAI,CAAC,IAAI,CAAC,eAAM,CAAC,iBAAiB,EAAE,QAAQ,SAAS,OAAO,CAAC,CAAC;YAClF,MAAM,IAAI,GAAG,MAAM,EAAE,CAAC,QAAQ,CAAC,WAAW,EAAE,MAAM,CAAC,CAAC;YACpD,MAAM,OAAO,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAgB,CAAC;YAEhD,oBAAoB;YACpB,IAAI,CAAC,aAAa,CAAC,GAAG,CAAC,SAAS,EAAE,OAAO,CAAC,CAAC;YAE3C,OAAO,OAAO,CAAC;QACnB,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACb,IAAK,KAAa,CAAC,IAAI,KAAK,QAAQ,EAAE,CAAC;gBACnC,OAAO,IAAI,CAAC,CAAC,6BAA6B;YAC9C,CAAC;YACD,MAAM,KAAK,CAAC;QAChB,CAAC;IACL,CAAC;IAEM,UAAU;QACb,IAAI,CAAC,aAAa,CAAC,KAAK,EAAE,CAAC;IAC/B,CAAC;CACJ;AA/HD,sCA+HC"}

21
app/RSpade/resource/DebugProxy/dist/http/websocket.d.ts vendored Executable file
View File

@@ -0,0 +1,21 @@
import * as http from 'http';
import { AuthValidator } from './auth';
export interface WebSocketMessage {
type: string;
data?: any;
timestamp?: number;
}
export declare class WebSocketHandler {
private wss;
private logger;
private clients;
private authValidator;
constructor(authValidator: AuthValidator);
initialize(server: http.Server): void;
private handleMessage;
private sendMessage;
private startHeartbeat;
broadcast(message: WebSocketMessage): void;
sendToSession(sessionId: string, message: WebSocketMessage): void;
}
//# sourceMappingURL=websocket.d.ts.map

1
app/RSpade/resource/DebugProxy/dist/http/websocket.d.ts.map vendored Executable file
View File

@@ -0,0 +1 @@
{"version":3,"file":"websocket.d.ts","sourceRoot":"","sources":["../../src/http/websocket.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,IAAI,MAAM,MAAM,CAAC;AAE7B,OAAO,EAAE,aAAa,EAAE,MAAM,QAAQ,CAAC;AAEvC,MAAM,WAAW,gBAAgB;IAC7B,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,CAAC,EAAE,GAAG,CAAC;IACX,SAAS,CAAC,EAAE,MAAM,CAAC;CACtB;AAED,qBAAa,gBAAgB;IACzB,OAAO,CAAC,GAAG,CAAgC;IAC3C,OAAO,CAAC,MAAM,CAAS;IACvB,OAAO,CAAC,OAAO,CAAqC;IACpD,OAAO,CAAC,aAAa,CAAgB;gBAEzB,aAAa,EAAE,aAAa;IAKjC,UAAU,CAAC,MAAM,EAAE,IAAI,CAAC,MAAM,GAAG,IAAI;IAkH5C,OAAO,CAAC,aAAa;IAmCrB,OAAO,CAAC,WAAW;IAMnB,OAAO,CAAC,cAAc;IAYf,SAAS,CAAC,OAAO,EAAE,gBAAgB,GAAG,IAAI;IAM1C,aAAa,CAAC,SAAS,EAAE,MAAM,EAAE,OAAO,EAAE,gBAAgB,GAAG,IAAI;CAM3E"}

173
app/RSpade/resource/DebugProxy/dist/http/websocket.js vendored Executable file
View File

@@ -0,0 +1,173 @@
"use strict";
Object.defineProperty(exports, "__esModule", { value: true });
exports.WebSocketHandler = void 0;
const ws_1 = require("ws");
const logger_1 = require("../utils/logger");
class WebSocketHandler {
wss = null;
logger;
clients = new Map();
authValidator;
constructor(authValidator) {
this.logger = new logger_1.Logger('WebSocketHandler');
this.authValidator = authValidator;
}
initialize(server) {
this.wss = new ws_1.WebSocketServer({
noServer: true,
path: '/_ide/debug/ws'
});
// Handle upgrade requests
server.on('upgrade', async (request, socket, head) => {
this.logger.info(`WebSocket upgrade request: ${request.url}`);
// Only handle our specific path
if (request.url !== '/_ide/debug/ws') {
socket.write('HTTP/1.1 404 Not Found\r\n\r\n');
socket.destroy();
return;
}
// Accept all connections - auth will be done via first message
this.wss.handleUpgrade(request, socket, head, (ws) => {
this.wss.emit('connection', ws, request);
});
});
// Handle new connections
this.wss.on('connection', (ws, _request) => {
this.logger.info(`WebSocket client connected (awaiting auth)`);
let sessionId = null;
let authenticated = false;
// Handle incoming messages
ws.on('message', async (data) => {
try {
const message = JSON.parse(data.toString());
// First message must be auth
if (!authenticated) {
if (message.type !== 'auth') {
this.logger.warn('First message was not auth, closing connection');
ws.close(1008, 'Authentication required');
return;
}
sessionId = message.data?.sessionId;
const signature = message.data?.signature;
if (!sessionId || !signature) {
this.logger.warn('Missing auth credentials');
ws.close(1008, 'Invalid authentication');
return;
}
const isValid = await this.authValidator.validateWebSocketAuth(sessionId, signature);
if (!isValid) {
this.logger.warn(`Invalid auth for session: ${sessionId}`);
ws.close(1008, 'Authentication failed');
return;
}
authenticated = true;
this.clients.set(sessionId, ws);
this.logger.info(`Client authenticated: ${sessionId}`);
// Send welcome message
this.sendMessage(ws, {
type: 'welcome',
data: {
message: 'Authenticated successfully',
sessionId: sessionId,
timestamp: Date.now()
}
});
return;
}
// Handle regular messages after auth
this.handleMessage(ws, sessionId, message);
}
catch (error) {
this.logger.error('Failed to parse WebSocket message:', error);
this.sendMessage(ws, {
type: 'error',
data: { message: 'Invalid message format' }
});
}
});
// Handle pong frames
ws.on('pong', () => {
if (sessionId) {
this.logger.debug(`Pong received from ${sessionId}`);
}
});
// Handle disconnection
ws.on('close', () => {
if (sessionId) {
this.logger.info(`WebSocket client disconnected: ${sessionId}`);
this.clients.delete(sessionId);
}
});
// Handle errors
ws.on('error', (error) => {
if (sessionId) {
this.logger.error(`WebSocket error for ${sessionId}:`, error);
this.clients.delete(sessionId);
}
});
});
// Start heartbeat
this.startHeartbeat();
}
handleMessage(ws, sessionId, message) {
this.logger.debug(`Message from ${sessionId}: ${message.type}`);
switch (message.type) {
case 'ping':
// Respond to ping with pong
this.sendMessage(ws, {
type: 'pong',
data: {
originalData: message.data,
timestamp: Date.now()
}
});
break;
case 'hello':
// Handle hello message
this.sendMessage(ws, {
type: 'hello_response',
data: {
message: `Hello ${message.data?.name || 'client'}! Pong from debug proxy`,
timestamp: Date.now()
}
});
break;
default:
this.logger.warn(`Unknown message type: ${message.type}`);
this.sendMessage(ws, {
type: 'error',
data: { message: `Unknown message type: ${message.type}` }
});
}
}
sendMessage(ws, message) {
if (ws.readyState === ws_1.WebSocket.OPEN) {
ws.send(JSON.stringify(message));
}
}
startHeartbeat() {
setInterval(() => {
this.clients.forEach((ws, sessionId) => {
if (ws.readyState === ws_1.WebSocket.OPEN) {
ws.ping();
}
else {
this.clients.delete(sessionId);
}
});
}, 30000); // 30 second heartbeat
}
broadcast(message) {
this.clients.forEach((ws) => {
this.sendMessage(ws, message);
});
}
sendToSession(sessionId, message) {
const ws = this.clients.get(sessionId);
if (ws) {
this.sendMessage(ws, message);
}
}
}
exports.WebSocketHandler = WebSocketHandler;
//# sourceMappingURL=websocket.js.map

1
app/RSpade/resource/DebugProxy/dist/http/websocket.js.map vendored Executable file
View File

File diff suppressed because one or more lines are too long