38648ae5f4
- Add SessionManager class to handle PTY sessions with WebSocket connections. - Implement methods for creating, retrieving, and destroying sessions. - Handle PTY output and WebSocket messages for terminal interaction. - Ensure graceful session destruction and cleanup. feat: initialize web application with Next.js and Tailwind CSS - Create initial Next.js application structure with TypeScript support. - Set up Tailwind CSS for styling with custom theme configurations. - Add ESLint configuration for code quality and consistency. feat: implement chat API and UI components - Create chat API route to handle chat requests and responses. - Develop chat layout with sidebar, header, chat window, and input components. - Integrate Zustand for state management of conversations and messages. - Add utility functions for formatting dates and managing class names. chore: add environment variables and configuration files - Create .env.example for environment variable setup. - Add configuration files for PostCSS, Tailwind CSS, and TypeScript. - Set up package.json with necessary dependencies and scripts for development.
66 lines
1.6 KiB
TypeScript
66 lines
1.6 KiB
TypeScript
import type { IncomingMessage } from "http";
|
|
|
|
/**
|
|
* Validates the auth token from a WebSocket upgrade request.
|
|
* If AUTH_TOKEN is not set, all connections are allowed.
|
|
*/
|
|
export function validateAuthToken(req: IncomingMessage): boolean {
|
|
const authToken = process.env.AUTH_TOKEN;
|
|
if (!authToken) {
|
|
return true;
|
|
}
|
|
|
|
const url = new URL(req.url ?? "/", `http://${req.headers.host ?? "localhost"}`);
|
|
const token = url.searchParams.get("token");
|
|
return token === authToken;
|
|
}
|
|
|
|
/**
|
|
* Simple per-IP rate limiter for new connections.
|
|
*/
|
|
export class ConnectionRateLimiter {
|
|
private attempts = new Map<string, number[]>();
|
|
private readonly maxPerWindow: number;
|
|
private readonly windowMs: number;
|
|
|
|
constructor(maxPerWindow = 5, windowMs = 60_000) {
|
|
this.maxPerWindow = maxPerWindow;
|
|
this.windowMs = windowMs;
|
|
}
|
|
|
|
/**
|
|
* Returns true if the connection should be allowed.
|
|
*/
|
|
allow(ip: string): boolean {
|
|
const now = Date.now();
|
|
const timestamps = this.attempts.get(ip) ?? [];
|
|
|
|
// Prune old entries
|
|
const recent = timestamps.filter((t) => now - t < this.windowMs);
|
|
|
|
if (recent.length >= this.maxPerWindow) {
|
|
this.attempts.set(ip, recent);
|
|
return false;
|
|
}
|
|
|
|
recent.push(now);
|
|
this.attempts.set(ip, recent);
|
|
return true;
|
|
}
|
|
|
|
/**
|
|
* Periodically clean up stale entries.
|
|
*/
|
|
cleanup(): void {
|
|
const now = Date.now();
|
|
for (const [ip, timestamps] of this.attempts) {
|
|
const recent = timestamps.filter((t) => now - t < this.windowMs);
|
|
if (recent.length === 0) {
|
|
this.attempts.delete(ip);
|
|
} else {
|
|
this.attempts.set(ip, recent);
|
|
}
|
|
}
|
|
}
|
|
}
|