+4 -4

deno.lock

reviewed

··· 1235 1235 "dependencies": [ 1236 1236 "jsr:@astral/astral@~0.5.5", 1237 1237 "jsr:@b-fuze/deno-dom@~0.1.56", 1238 1238 - "jsr:@civility/blobs@^1.0.0-beta.3", 1239 1239 - "jsr:@civility/hono@^1.0.0-beta.2", 1238 1238 + "jsr:@civility/blobs@^1.0.0-beta.4", 1239 1239 + "jsr:@civility/hono@^1.0.0-beta.3", 1240 1240 "jsr:@civility/store@^1.0.0-beta.5", 1241 1241 - "jsr:@civility/sync@^1.0.0-beta.5", 1241 1241 + "jsr:@civility/sync@^1.0.0-beta.6", 1242 1242 "jsr:@cliffy/ansi@1.0.0", 1243 1243 "jsr:@cliffy/command@1.0.0", 1244 1244 "jsr:@cliffy/prompt@1", ··· 1281 1281 }, 1282 1282 "packages/sync": { 1283 1283 "dependencies": [ 1284 1284 - "jsr:@civility/blobs@^1.0.0-beta.3", 1284 1284 + "jsr:@civility/blobs@^1.0.0-beta.4", 1285 1285 "jsr:@civility/store@^1.0.0-beta.5", 1286 1286 "jsr:@paulmillr/qr@~0.5.5" 1287 1287 ]

+1 -1

packages/blobs/deno.json

reviewed

··· 1 1 { 2 2 "name": "@civility/blobs", 3 3 - "version": "1.0.0-beta.3", 3 3 + "version": "1.0.0-beta.4", 4 4 "exports": { 5 5 ".": "./mod.ts", 6 6 "./idb": "./storage/idb.ts",

+140

packages/cli/SPEC.md

reviewed

··· 1 1 + # @civility/cli — Internal Specification 2 2 + 3 3 + ## Overview 4 4 + 5 5 + The CLI is a build tool and dev server for Civility web projects. It scaffolds and builds PWAs, blogs, documentation sites, and browser extensions. 6 6 + 7 7 + ## Architecture 8 8 + 9 9 + ``` 10 10 + civility CLI (main.ts) 11 11 + │ 12 12 + ├── commands/ 13 13 + │ ├── init.ts → Project scaffolding 14 14 + │ ├── start.ts → Dev server with HMR 15 15 + │ ├── build/ → Build commands 16 16 + │ │ ├── pwa.ts → PWA bundling (esbuild) 17 17 + │ │ ├── blog.ts → Static blog generator 18 18 + │ │ ├── docs.ts → Static docs generator 19 19 + │ │ └── extension.ts → Browser extension bundler 20 20 + │ ├── icons.ts → Icon generation 21 21 + │ └── api.ts → API testing commands 22 22 + │ 23 23 + └── utils/ 24 24 + ├── config.ts → Load/resolve civility.json 25 25 + ├── build.ts → Shared build utilities 26 26 + ├── ui.ts → Logging and theming 27 27 + └── validation.ts → Config validation 28 28 + ``` 29 29 + 30 30 + ## Commands 31 31 + 32 32 + ### `civ init` 33 33 + 34 34 + Interactive project scaffolding. Prompts for: 35 35 + - Project type (pwa/blog/docs/extension) 36 36 + - Project name 37 37 + - URL 38 38 + 39 39 + Generates a `civility.json` config and starter project structure. 40 40 + 41 41 + ### `civ build` 42 42 + 43 43 + Builds the project based on `civility.json`: 44 44 + - PWA: Bundles with esbuild, generates service worker, manifest 45 45 + - Blog/Docs: Converts Markdown to static HTML 46 46 + - Extension: Bundles and packages for Chrome/Firefox 47 47 + 48 48 + Options: 49 49 + - `--watch` — Watch mode (rebuild on changes) 50 50 + - `--outdir` — Override output directory 51 51 + 52 52 + ### `civ start` 53 53 + 54 54 + Development server with live reload: 55 55 + - Serves from `root` (default: `./www`) 56 56 + - Watches for file changes 57 57 + - Rebuilds and streams to browser 58 58 + 59 59 + ### `civ icons` 60 60 + 61 61 + Generates PWA icon sizes from source image: 62 62 + - Uses ImageMagick (`convert`) 63 63 + - Outputs standard sizes (16, 32, 48, 72, 96, 128, 144, 152, 192, 512) 64 64 + - Creates `icon.ico` for IE/favicons 65 65 + 66 66 + ### `civ static` 67 67 + 68 68 + Simple static file server. Serves a directory without building. 69 69 + 70 70 + ### `civ api` 71 71 + 72 72 + API testing utilities (see `commands/api.ts`). 73 73 + 74 74 + ## Configuration 75 75 + 76 76 + `civility.json` schema: 77 77 + 78 78 + ```ts 79 79 + interface CivilityConfig { 80 80 + name: string 81 81 + type: 'pwa' | 'blog' | 'docs' | 'extension' 82 82 + url?: string 83 83 + root?: string // Source directory (default: ./www) 84 84 + outdir?: string // Output directory (default: ./dist) 85 85 + static?: string // Static assets to copy 86 86 + input?: string // Input for blog/docs (default: ./md) 87 87 + output?: string // Output for blog/docs 88 88 + template?: string // Template file path 89 89 + icon?: { 90 90 + source: string 91 91 + output: string 92 92 + } 93 93 + platforms?: ('chrome' | 'firefox')[] // Extension targets 94 94 + entryPoints?: string[] // PWA entry points 95 95 + } 96 96 + ``` 97 97 + 98 98 + ## Build Pipeline 99 99 + 100 100 + ### PWA Build 101 101 + 102 102 + 1. Resolve entry points from config 103 103 + 2. Bundle with esbuild: 104 104 + - Compile TypeScript 105 105 + - Bundle imports 106 106 + - Generate source maps 107 107 + 3. Generate `service-worker.js`: 108 108 + - Cache strategies: cache-first for assets, network-first for data 109 109 + - Offline support 110 110 + 4. Generate `manifest.json`: 111 111 + - Name, description, icons 112 112 + - Start URL, display mode 113 113 + - Theme colors 114 114 + 5. Copy static assets to dist 115 115 + 116 116 + ### Extension Build 117 117 + 118 118 + 1. Bundle background, content scripts, popup, options 119 119 + 2. Generate `manifest.json` (MV3 for Chrome, MV2 for Firefox) 120 120 + 3. Package with web-ext or chrome-cli 121 121 + 122 122 + ### Blog/Docs Build 123 123 + 124 124 + 1. Scan input directory for `.md` files 125 125 + 2. Parse frontmatter (title, date, etc.) 126 126 + 3. Convert Markdown to HTML using marked 127 127 + 4. Apply template (layout.html / template.html) 128 128 + 5. Output to static HTML 129 129 + 130 130 + ## Dependencies 131 131 + 132 132 + - `@cliffy/command` — CLI framework 133 133 + - `esbuild` — Bundler 134 134 + - `@std/fs` — File utilities 135 135 + - `marked` — Markdown parser (blog/docs) 136 136 + - ImageMagick — Icon generation 137 137 + 138 138 + ## Version 139 139 + 140 140 + Current version: `0.3.1`

+5 -5

packages/cli/deno.json

reviewed

··· 1 1 { 2 2 "name": "@civility/cli", 3 3 - "version": "1.0.0-beta.6", 3 3 + "version": "1.0.0-beta.7", 4 4 "deploy": { 5 5 "org": "bpev", 6 6 "app": "civility" ··· 18 18 "@cliffy/command": "jsr:@cliffy/command@1.0.0", 19 19 "@cliffy/prompt": "jsr:@cliffy/prompt@^1.0.0", 20 20 "@cliffy/table": "jsr:@cliffy/table@1.0.0", 21 21 - "@civility/blobs": "jsr:@civility/blobs@^1.0.0-beta.3", 22 22 - "@civility/blobs/idb": "jsr:@civility/blobs@^1.0.0-beta.3/idb", 23 23 - "@civility/hono": "jsr:@civility/hono@^1.0.0-beta.2", 21 21 + "@civility/blobs": "jsr:@civility/blobs@^1.0.0-beta.4", 22 22 + "@civility/blobs/idb": "jsr:@civility/blobs@^1.0.0-beta.4/idb", 23 23 + "@civility/hono": "jsr:@civility/hono@^1.0.0-beta.3", 24 24 "@civility/store": "jsr:@civility/store@^1.0.0-beta.5", 25 25 "@civility/store/deno-kv": "jsr:@civility/store@^1.0.0-beta.5/deno-kv", 26 26 - "@civility/sync": "jsr:@civility/sync@^1.0.0-beta.5", 26 26 + "@civility/sync": "jsr:@civility/sync@^1.0.0-beta.6", 27 27 "@hono/hono": "npm:hono@^4.12.9", 28 28 "@hono/swagger-ui": "npm:@hono/swagger-ui@^0.6.1", 29 29 "@hono/zod-openapi": "npm:@hono/zod-openapi@^1.2.4",

+389

packages/hono/__tests__/server.test.ts

reviewed

··· 1 1 + /** 2 2 + * @module E2E tests for @civility/hono server 3 3 + * 4 4 + * Tests full client ↔ server round-trip: auth, app CRUD, sync push/pull. 5 5 + */ 6 6 + 7 7 + import { assertEquals, assertExists } from '@std/assert' 8 8 + import { createServer } from '../mod.ts' 9 9 + import type { OpenAPIHono } from '@hono/zod-openapi' 10 10 + 11 11 + interface ApiResponse<T> { 12 12 + status: 'success' | 'error' 13 13 + message: string 14 14 + data: T | null 15 15 + } 16 16 + 17 17 + async function request( 18 18 + app: OpenAPIHono, 19 19 + input: string | URL, 20 20 + init?: RequestInit, 21 21 + ): Promise<Response> { 22 22 + const url = input instanceof URL ? input.toString() : input 23 23 + const req = new Request(url, init) 24 24 + return await app.fetch(req) 25 25 + } 26 26 + 27 27 + async function json<T>(res: Response): Promise<ApiResponse<T>> { 28 28 + return await res.json() as ApiResponse<T> 29 29 + } 30 30 + 31 31 + Deno.test('E2E: Server', async (t) => { 32 32 + const path = await Deno.makeTempFile({ suffix: '.kv' }) 33 33 + const kv = await Deno.openKv(path) 34 34 + const app = await createServer({ kv }) 35 35 + 36 36 + const baseUrl = 'http://localhost:8081' 37 37 + 38 38 + await t.step('signup creates user and returns token', async () => { 39 39 + const res = await request(app, `${baseUrl}/api/v1/auth/signup`, { 40 40 + method: 'POST', 41 41 + headers: { 'Content-Type': 'application/json' }, 42 42 + body: JSON.stringify({ 43 43 + email: 'test@example.com', 44 44 + password: 'password123', 45 45 + }), 46 46 + }) 47 47 + 48 48 + assertEquals(res.status, 201) 49 49 + const body = await json<{ token: string; user: { id: string } }>(res) 50 50 + assertEquals(body.status, 'success') 51 51 + assertExists(body.data?.token) 52 52 + assertExists(body.data?.user.id) 53 53 + 54 54 + const cookie = res.headers.get('set-cookie') 55 55 + assertExists(cookie) 56 56 + }) 57 57 + 58 58 + await t.step('login authenticates and returns token', async () => { 59 59 + const res = await request(app, `${baseUrl}/api/v1/auth/login`, { 60 60 + method: 'POST', 61 61 + headers: { 'Content-Type': 'application/json' }, 62 62 + body: JSON.stringify({ 63 63 + email: 'test@example.com', 64 64 + password: 'password123', 65 65 + }), 66 66 + }) 67 67 + 68 68 + assertEquals(res.status, 200) 69 69 + const body = await json<{ token: string; user: { id: string } }>(res) 70 70 + assertEquals(body.status, 'success') 71 71 + assertExists(body.data?.token) 72 72 + }) 73 73 + 74 74 + await t.step('create app returns created app', async () => { 75 75 + const loginRes = await request(app, `${baseUrl}/api/v1/auth/login`, { 76 76 + method: 'POST', 77 77 + headers: { 'Content-Type': 'application/json' }, 78 78 + body: JSON.stringify({ 79 79 + email: 'test@example.com', 80 80 + password: 'password123', 81 81 + }), 82 82 + }) 83 83 + 84 84 + const loginBody = await json<{ token: string }>(loginRes) 85 85 + const token = loginBody.data?.token! 86 86 + 87 87 + const appRes = await request(app, `${baseUrl}/api/v1/sync/apps`, { 88 88 + method: 'POST', 89 89 + headers: { 90 90 + 'Content-Type': 'application/json', 91 91 + 'Authorization': `Bearer ${token}`, 92 92 + }, 93 93 + body: JSON.stringify({ 94 94 + name: 'My Test App', 95 95 + }), 96 96 + }) 97 97 + 98 98 + assertEquals(appRes.status, 201) 99 99 + const appBody = await json<{ app: { id: string; name: string } }>(appRes) 100 100 + assertEquals(appBody.status, 'success') 101 101 + assertExists(appBody.data?.app.id) 102 102 + assertEquals(appBody.data?.app.name, 'My Test App') 103 103 + }) 104 104 + 105 105 + await t.step('list apps returns user apps', async () => { 106 106 + const loginRes = await request(app, `${baseUrl}/api/v1/auth/login`, { 107 107 + method: 'POST', 108 108 + headers: { 'Content-Type': 'application/json' }, 109 109 + body: JSON.stringify({ 110 110 + email: 'test@example.com', 111 111 + password: 'password123', 112 112 + }), 113 113 + }) 114 114 + 115 115 + const loginBody = await json<{ token: string }>(loginRes) 116 116 + const token = loginBody.data?.token! 117 117 + 118 118 + const listRes = await request(app, `${baseUrl}/api/v1/sync/apps`, { 119 119 + headers: { 'Authorization': `Bearer ${token}` }, 120 120 + }) 121 121 + 122 122 + assertEquals(listRes.status, 200) 123 123 + const listBody = await json<{ apps: Array<{ id: string; name: string }> }>( 124 124 + listRes, 125 125 + ) 126 126 + assertEquals(listBody.status, 'success') 127 127 + assertEquals(listBody.data?.apps.length, 1) 128 128 + }) 129 129 + 130 130 + await t.step('get app returns app details', async () => { 131 131 + const loginRes = await request(app, `${baseUrl}/api/v1/auth/login`, { 132 132 + method: 'POST', 133 133 + headers: { 'Content-Type': 'application/json' }, 134 134 + body: JSON.stringify({ 135 135 + email: 'test@example.com', 136 136 + password: 'password123', 137 137 + }), 138 138 + }) 139 139 + 140 140 + const loginBody = await json<{ token: string }>(loginRes) 141 141 + const token = loginBody.data?.token! 142 142 + 143 143 + const listRes = await request(app, `${baseUrl}/api/v1/sync/apps`, { 144 144 + headers: { 'Authorization': `Bearer ${token}` }, 145 145 + }) 146 146 + 147 147 + const listBody = await json<{ apps: Array<{ id: string }> }>(listRes) 148 148 + const appId = listBody.data?.apps[0].id! 149 149 + 150 150 + const getRes = await request(app, `${baseUrl}/api/v1/sync/apps/${appId}`, { 151 151 + headers: { 'Authorization': `Bearer ${token}` }, 152 152 + }) 153 153 + 154 154 + assertEquals(getRes.status, 200) 155 155 + const getBody = await json<{ app: { id: string; name: string } }>(getRes) 156 156 + assertEquals(getBody.status, 'success') 157 157 + assertEquals(getBody.data?.app.id, appId) 158 158 + assertEquals(getBody.data?.app.name, 'My Test App') 159 159 + }) 160 160 + 161 161 + await t.step('push changes applies them to store', async () => { 162 162 + const loginRes = await request(app, `${baseUrl}/api/v1/auth/login`, { 163 163 + method: 'POST', 164 164 + headers: { 'Content-Type': 'application/json' }, 165 165 + body: JSON.stringify({ 166 166 + email: 'test@example.com', 167 167 + password: 'password123', 168 168 + }), 169 169 + }) 170 170 + 171 171 + const loginBody = await json<{ token: string }>(loginRes) 172 172 + const token = loginBody.data?.token! 173 173 + 174 174 + const listRes = await request(app, `${baseUrl}/api/v1/sync/apps`, { 175 175 + headers: { 'Authorization': `Bearer ${token}` }, 176 176 + }) 177 177 + 178 178 + const listBody = await json<{ apps: Array<{ id: string }> }>(listRes) 179 179 + const appId = listBody.data?.apps[0].id! 180 180 + 181 181 + const pushRes = await request( 182 182 + app, 183 183 + `${baseUrl}/api/v1/sync/apps/${appId}/push`, 184 184 + { 185 185 + method: 'POST', 186 186 + headers: { 187 187 + 'Content-Type': 'application/json', 188 188 + 'Authorization': `Bearer ${token}`, 189 189 + }, 190 190 + body: JSON.stringify({ 191 191 + changes: [ 192 192 + { 193 193 + id: 'change-1', 194 194 + documentId: 'doc-1', 195 195 + patch: [{ op: 'add', path: '/title', value: 'Hello' }], 196 196 + inversePatch: [{ op: 'remove', path: '/title' }], 197 197 + hlc: '2024-01-01T00:00:00.000Z@local', 198 198 + origin: 'local', 199 199 + createdAt: '2024-01-01T00:00:00.000Z', 200 200 + synced: false, 201 201 + }, 202 202 + ], 203 203 + clientHLC: '2024-01-01T00:00:00.000Z@local', 204 204 + storeName: 'default', 205 205 + }), 206 206 + }, 207 207 + ) 208 208 + 209 209 + assertEquals(pushRes.status, 200) 210 210 + const pushBody = await json<{ accepted: string[] }>(pushRes) 211 211 + assertEquals(pushBody.status, 'success') 212 212 + assertEquals(pushBody.data?.accepted.length, 1) 213 213 + assertEquals(pushBody.data?.accepted[0], 'change-1') 214 214 + }) 215 215 + 216 216 + await t.step('pull changes returns changes since HLC', async () => { 217 217 + const loginRes = await request(app, `${baseUrl}/api/v1/auth/login`, { 218 218 + method: 'POST', 219 219 + headers: { 'Content-Type': 'application/json' }, 220 220 + body: JSON.stringify({ 221 221 + email: 'test@example.com', 222 222 + password: 'password123', 223 223 + }), 224 224 + }) 225 225 + 226 226 + const loginBody = await json<{ token: string }>(loginRes) 227 227 + const token = loginBody.data?.token! 228 228 + 229 229 + const listRes = await request(app, `${baseUrl}/api/v1/sync/apps`, { 230 230 + headers: { 'Authorization': `Bearer ${token}` }, 231 231 + }) 232 232 + 233 233 + const listBody = await json<{ apps: Array<{ id: string }> }>(listRes) 234 234 + const appId = listBody.data?.apps[0].id! 235 235 + 236 236 + const pullRes = await request( 237 237 + app, 238 238 + `${baseUrl}/api/v1/sync/apps/${appId}/pull`, 239 239 + { 240 240 + method: 'POST', 241 241 + headers: { 242 242 + 'Content-Type': 'application/json', 243 243 + 'Authorization': `Bearer ${token}`, 244 244 + }, 245 245 + body: JSON.stringify({ 246 246 + sinceHLC: '2023-01-01T00:00:00.000Z@local', 247 247 + storeName: 'default', 248 248 + }), 249 249 + }, 250 250 + ) 251 251 + 252 252 + assertEquals(pullRes.status, 200) 253 253 + const pullBody = await json<{ changes: Array<{ id: string }> }>(pullRes) 254 254 + assertEquals(pullBody.status, 'success') 255 255 + assertEquals(pullBody.data?.changes.length, 1) 256 256 + assertEquals(pullBody.data?.changes[0].id, 'change-1') 257 257 + }) 258 258 + 259 259 + await t.step('delete app removes it from database', async () => { 260 260 + const loginRes = await request(app, `${baseUrl}/api/v1/auth/login`, { 261 261 + method: 'POST', 262 262 + headers: { 'Content-Type': 'application/json' }, 263 263 + body: JSON.stringify({ 264 264 + email: 'test@example.com', 265 265 + password: 'password123', 266 266 + }), 267 267 + }) 268 268 + 269 269 + const loginBody = await json<{ token: string }>(loginRes) 270 270 + const token = loginBody.data?.token! 271 271 + 272 272 + const createRes = await request(app, `${baseUrl}/api/v1/sync/apps`, { 273 273 + method: 'POST', 274 274 + headers: { 275 275 + 'Content-Type': 'application/json', 276 276 + 'Authorization': `Bearer ${token}`, 277 277 + }, 278 278 + body: JSON.stringify({ name: 'Delete Me' }), 279 279 + }) 280 280 + 281 281 + const createBody = await json<{ app: { id: string } }>(createRes) 282 282 + const appId = createBody.data?.app.id! 283 283 + 284 284 + const deleteRes = await request( 285 285 + app, 286 286 + `${baseUrl}/api/v1/sync/apps/${appId}`, 287 287 + { 288 288 + method: 'DELETE', 289 289 + headers: { 'Authorization': `Bearer ${token}` }, 290 290 + }, 291 291 + ) 292 292 + 293 293 + assertEquals(deleteRes.status, 200) 294 294 + 295 295 + const listRes = await request(app, `${baseUrl}/api/v1/sync/apps`, { 296 296 + headers: { 'Authorization': `Bearer ${token}` }, 297 297 + }) 298 298 + 299 299 + const listBody = await json<{ apps: unknown[] }>(listRes) 300 300 + assertEquals(listBody.data?.apps.length, 1) 301 301 + }) 302 302 + 303 303 + await t.step('unauthorized request returns 401', async () => { 304 304 + const res = await request(app, `${baseUrl}/api/v1/sync/apps`, { 305 305 + method: 'GET', 306 306 + }) 307 307 + 308 308 + assertEquals(res.status, 401) 309 309 + }) 310 310 + 311 311 + await t.step('create token returns new token', async () => { 312 312 + const loginRes = await request(app, `${baseUrl}/api/v1/auth/login`, { 313 313 + method: 'POST', 314 314 + headers: { 'Content-Type': 'application/json' }, 315 315 + body: JSON.stringify({ 316 316 + email: 'test@example.com', 317 317 + password: 'password123', 318 318 + }), 319 319 + }) 320 320 + 321 321 + const loginBody = await json<{ token: string }>(loginRes) 322 322 + const token = loginBody.data?.token! 323 323 + 324 324 + const listRes = await request(app, `${baseUrl}/api/v1/sync/apps`, { 325 325 + headers: { 'Authorization': `Bearer ${token}` }, 326 326 + }) 327 327 + 328 328 + const listBody = await json<{ apps: Array<{ id: string }> }>(listRes) 329 329 + const appId = listBody.data?.apps[0].id! 330 330 + 331 331 + const tokenRes = await request( 332 332 + app, 333 333 + `${baseUrl}/api/v1/sync/apps/${appId}/tokens`, 334 334 + { 335 335 + method: 'POST', 336 336 + headers: { 337 337 + 'Content-Type': 'application/json', 338 338 + 'Authorization': `Bearer ${token}`, 339 339 + }, 340 340 + body: JSON.stringify({ name: 'My Token', permissions: 'read-write' }), 341 341 + }, 342 342 + ) 343 343 + 344 344 + assertEquals(tokenRes.status, 201) 345 345 + const tokenBody = await json<{ token: { id: string; token: string } }>( 346 346 + tokenRes, 347 347 + ) 348 348 + assertEquals(tokenBody.status, 'success') 349 349 + assertExists(tokenBody.data?.token.id) 350 350 + assertExists(tokenBody.data?.token.token) 351 351 + }) 352 352 + 353 353 + await t.step('list tokens returns app tokens', async () => { 354 354 + const loginRes = await request(app, `${baseUrl}/api/v1/auth/login`, { 355 355 + method: 'POST', 356 356 + headers: { 'Content-Type': 'application/json' }, 357 357 + body: JSON.stringify({ 358 358 + email: 'test@example.com', 359 359 + password: 'password123', 360 360 + }), 361 361 + }) 362 362 + 363 363 + const loginBody = await json<{ token: string }>(loginRes) 364 364 + const token = loginBody.data?.token! 365 365 + 366 366 + const listRes = await request(app, `${baseUrl}/api/v1/sync/apps`, { 367 367 + headers: { 'Authorization': `Bearer ${token}` }, 368 368 + }) 369 369 + 370 370 + const listBody = await json<{ apps: Array<{ id: string }> }>(listRes) 371 371 + const appId = listBody.data?.apps[0].id! 372 372 + 373 373 + const tokensRes = await request( 374 374 + app, 375 375 + `${baseUrl}/api/v1/sync/apps/${appId}/tokens`, 376 376 + { 377 377 + headers: { 'Authorization': `Bearer ${token}` }, 378 378 + }, 379 379 + ) 380 380 + 381 381 + assertEquals(tokensRes.status, 200) 382 382 + const tokensBody = await json<{ tokens: Array<{ id: string }> }>(tokensRes) 383 383 + assertEquals(tokensBody.status, 'success') 384 384 + assertEquals(tokensBody.data?.tokens.length, 1) 385 385 + }) 386 386 + 387 387 + await kv.close() 388 388 + await Deno.remove(path) 389 389 + })

+226

packages/sync/README.md

reviewed

··· 1 1 + # @civility/sync 2 2 + 3 3 + Change-based synchronization for Civility stores. Syncs `@civility/store` data with a Civility Sync server, handling conflict resolution, blob syncing, and offline support. 4 4 + 5 5 + ## Install 6 6 + 7 7 + ```sh 8 8 + deno add @civility/sync 9 9 + ``` 10 10 + 11 11 + ## Quick Start 12 12 + 13 13 + ```ts 14 14 + import { Collection } from '@civility/store' 15 15 + import { Synced } from '@civility/sync' 16 16 + 17 17 + const todos = new Collection({ 18 18 + name: 'todos', 19 19 + schema: { version: '1', schema: TodosSchema }, 20 20 + backend, 21 21 + }) 22 22 + 23 23 + const synced = new Synced({ 24 24 + stores: [todos], 25 25 + appId: 'my-app', 26 26 + }) 27 27 + 28 28 + synced.connect('https://sync.example.com') 29 29 + await synced.login('user@example.com', 'password') 30 30 + synced.startSync() 31 31 + ``` 32 32 + 33 33 + ## Core Concepts 34 34 + 35 35 + ### Synced Orchestrator 36 36 + 37 37 + The `Synced` class wraps one or more stores and manages the sync lifecycle: 38 38 + 39 39 + ```ts 40 40 + const synced = new Synced({ 41 41 + stores: [todosStore, settingsStore], 42 42 + appId: 'my-app', 43 43 + blobStore, // optional, for binary data 44 44 + syncInterval: 30000, // ms between sync cycles (default: 30s) 45 45 + debounceDelay: 500, // ms to wait after local changes (default: 500ms) 46 46 + timeout: 10000, // request timeout in ms (default: 10s) 47 47 + }) 48 48 + ``` 49 49 + 50 50 + ### Connection & Authentication 51 51 + 52 52 + ```ts 53 53 + // Connect to server 54 54 + synced.connect('https://sync.example.com') 55 55 + 56 56 + // Login or signup 57 57 + await synced.login('user@example.com', 'password') 58 58 + // or 59 59 + await synced.signup('user@example.com', 'password') 60 60 + 61 61 + // Or restore an existing session 62 62 + synced.setToken('existing-token') 63 63 + 64 64 + // Start automatic sync 65 65 + synced.startSync() 66 66 + ``` 67 67 + 68 68 + ### Sync Events 69 69 + 70 70 + Listen to sync events: 71 71 + 72 72 + ```ts 73 73 + synced.addEventListener('connected', () => console.log('Connected')) 74 74 + synced.addEventListener('auth', () => console.log('Authenticated')) 75 75 + synced.addEventListener('sync', (e) => { 76 76 + const { pushed, pulled } = e.detail 77 77 + console.log(`Synced: ${pushed} pushed, ${pulled} pulled`) 78 78 + }) 79 79 + synced.addEventListener('error', (e) => console.error('Sync error:', e.error)) 80 80 + ``` 81 81 + 82 82 + ### Manual Sync 83 83 + 84 84 + ```ts 85 85 + // Force push without pulling 86 86 + await synced.forcePush() 87 87 + 88 88 + // Force pull without pushing 89 89 + await synced.forcePull() 90 90 + 91 91 + // Full sync cycle 92 92 + await synced.sync() 93 93 + ``` 94 94 + 95 95 + ### Blob Sync 96 96 + 97 97 + If your documents contain binary data (images, files), provide a `BlobStore`: 98 98 + 99 99 + ```ts 100 100 + import { BlobStore } from '@civility/blobs' 101 101 + 102 102 + const blobStore = new BlobStore({ kv, namespace: 'blobs' }) 103 103 + 104 104 + const synced = new Synced({ 105 105 + stores: [todos], 106 106 + appId: 'my-app', 107 107 + blobStore, 108 108 + }) 109 109 + 110 110 + // Blobs referenced in documents are automatically uploaded/downloaded 111 111 + ``` 112 112 + 113 113 + Blob references in documents should use this structure: 114 114 + 115 115 + ```ts 116 116 + interface BlobRef { 117 117 + hash: string // sha256:... 118 118 + mime: string // image/png 119 119 + size: number // bytes 120 120 + } 121 121 + ``` 122 122 + 123 123 + ## SyncApi (HTTP Client) 124 124 + 125 125 + For scripts or admin tools, use `SyncApi` directly: 126 126 + 127 127 + ```ts 128 128 + import { SyncApi } from '@civility/sync' 129 129 + 130 130 + const api = new SyncApi({ baseUrl: 'https://sync.example.com' }) 131 131 + 132 132 + // Auth 133 133 + const auth = await api.login('user@example.com', 'password') 134 134 + api.setToken(auth.token) 135 135 + 136 136 + // App management 137 137 + const apps = await api.listApps() 138 138 + const app = await api.createApp('My App', 'Description') 139 139 + await api.deleteApp(app.id) 140 140 + 141 141 + // Push/pull changes 142 142 + const pushResult = await api.pushChanges(appId, changes, clientHLC) 143 143 + const pullResult = await api.pullChanges(appId, sinceHLC) 144 144 + 145 145 + // Blobs 146 146 + await api.uploadBlob(hash, blobData) 147 147 + const blob = await api.downloadBlob(hash) 148 148 + ``` 149 149 + 150 150 + ## API Reference 151 151 + 152 152 + ### Synced 153 153 + 154 154 + | Method | Description | 155 155 + |--------|-------------| 156 156 + | `connect(url)` | Connect to sync server | 157 157 + | `disconnect()` | Disconnect and stop sync | 158 158 + | `login(email, password)` | Authenticate user | 159 159 + | `signup(email, password)` | Create new account | 160 160 + | `logout()` | Log out and stop sync | 161 161 + | `setToken(token)` | Set auth token directly | 162 162 + | `startSync()` | Begin periodic sync | 163 163 + | `stopSync()` | Stop periodic sync | 164 164 + | `sync()` | Run single sync cycle | 165 165 + | `forcePush()` | Push without pulling | 166 166 + | `forcePull()` | Pull without pushing | 167 167 + | `dispose()` | Release all resources | 168 168 + 169 169 + ### Properties 170 170 + 171 171 + | Property | Type | Description | 172 172 + |----------|------|-------------| 173 173 + | `connected` | `boolean` | Whether connected to server | 174 174 + | `authenticated` | `boolean` | Whether authenticated | 175 175 + | `syncing` | `boolean` | Whether sync in progress | 176 176 + | `lastSync` | `string \| null` | ISO timestamp of last sync | 177 177 + | `appId` | `string` | Current app ID | 178 178 + | `api` | `SyncApi \| null` | Underlying API client | 179 179 + 180 180 + ### SyncApi 181 181 + 182 182 + | Method | Description | 183 183 + |--------|-------------| 184 184 + | `login(email, password)` | Authenticate | 185 185 + | `signup(email, password)` | Create account | 186 186 + | `logout()` | Log out | 187 187 + | `verifyToken()` | Check token validity | 188 188 + | `getMe()` | Get current user profile | 189 189 + | `listApps()` | List user's apps | 190 190 + | `createApp(name, desc?)` | Create app | 191 191 + | `getApp(id)` | Get app by ID | 192 192 + | `deleteApp(id)` | Delete app | 193 193 + | `listAppTokens(appId)` | List app tokens | 194 194 + | `createAppToken(appId, name, perms?)` | Create token | 195 195 + | `deleteAppToken(appId, tokenId)` | Delete token | 196 196 + | `registerApp(appId, schema)` | Register schema | 197 197 + | `pushChanges(appId, changes, hlc)` | Push changes | 198 198 + | `pullChanges(appId, sinceHlc, store?)` | Pull changes | 199 199 + | `uploadBlob(hash, data)` | Upload blob | 200 200 + | `downloadBlob(hash)` | Download blob | 201 201 + | `hasBlobRemote(hash)` | Check blob exists | 202 202 + 203 203 + ## Conflict Resolution 204 204 + 205 205 + When the same document is modified on multiple devices, conflicts are resolved automatically using HLC timestamps. The default strategy (`auto`) compares timestamps and newer wins. 206 206 + 207 207 + Configure conflict strategy via schema: 208 208 + 209 209 + ```ts 210 210 + const collection = new Collection({ 211 211 + name: 'todos', 212 212 + schema: { 213 213 + version: '1', 214 214 + schema: TodosSchema, 215 215 + // Strategies: 'auto' | 'local-first' | 'remote-first' | 'prompt' 216 216 + initialSyncStrategy: 'remote-first', 217 217 + }, 218 218 + backend, 219 219 + }) 220 220 + ``` 221 221 + 222 222 + ## Requirements 223 223 + 224 224 + - A running Civility Sync server (see `@civility/hono`) 225 225 + - `@civility/store` for data storage 226 226 + - Optionally `@civility/blobs` for binary data

+169

packages/sync/SPEC.md

reviewed

··· 1 1 + # @civility/sync — Internal Specification 2 2 + 3 3 + ## Overview 4 4 + 5 5 + The sync package provides change-based synchronization for `@civility/store` collections. It handles bidirectional sync with a Civility Sync server, including conflict resolution, blob syncing, and offline support. 6 6 + 7 7 + ## Architecture 8 8 + 9 9 + ``` 10 10 + ┌─────────────────┐ ┌─────────────────┐ 11 11 + │ App Code │ │ Sync Server │ 12 12 + │ │ │ (@civility/ │ 13 13 + │ Collection │ │ hono) │ 14 14 + │ (local store) │◄───►│ │ 15 15 + │ │ │ REST API │ 16 16 + └────────┬────────┘ └────────┬────────┘ 17 17 + │ │ 18 18 + ▼ ▼ 19 19 + ┌─────────────────┐ ┌─────────────────┐ 20 20 + │ Synced │ │ SyncApi │ 21 21 + │ (orchestrator) │────►│ (HTTP client) │ 22 22 + └─────────────────┘ └─────────────────┘ 23 23 + ``` 24 24 + 25 25 + ## Components 26 26 + 27 27 + ### Synced (`synced.ts`) 28 28 + 29 29 + The main orchestrator class that wraps store instances and manages the sync lifecycle. 30 30 + 31 31 + **Responsibilities:** 32 32 + - Connect/disconnect from server 33 33 + - Authenticate users 34 34 + - Coordinate periodic push/pull sync 35 35 + - Handle debouncing of local changes 36 36 + - Emit sync events 37 37 + - Manage blob sync (upload/download) 38 38 + 39 39 + **State Machine:** 40 40 + ``` 41 41 + disconnected → connected → authenticated → syncing 42 42 + ▲ │ │ │ 43 43 + └──────────────┴──────────────┴─────────────┘ 44 44 + (logout/disconnect) 45 45 + ``` 46 46 + 47 47 + **Key Methods:** 48 48 + - `connect(url)` — Create SyncApi client 49 49 + - `login()`/`signup()`/`setToken()` — Authenticate 50 50 + - `startSync()` — Begin periodic sync loop 51 51 + - `sync()` — Single sync cycle (push then pull) 52 52 + - `forcePush()` / `forcePull()` — One-way sync 53 53 + - `disconnect()`/`dispose()` — Cleanup 54 54 + 55 55 + **Events:** 56 56 + - `connected` — Server connection established 57 57 + - `disconnected` — Server disconnected 58 58 + - `auth` — Authentication state changed 59 59 + - `sync` — Sync cycle completed (detail: {pushed, pulled, serverHLC}) 60 60 + - `error` — Sync error occurred 61 61 + 62 62 + ### SyncApi (`api.ts`) 63 63 + 64 64 + HTTP client for the Civility Sync server REST API. 65 65 + 66 66 + **Endpoints:** 67 67 + - `POST /login` — Authenticate 68 68 + - `POST /signup` — Create account 69 69 + - `POST /logout` — Log out 70 70 + - `GET /verify` — Verify token 71 71 + - `GET /me` — Get user profile 72 72 + - `GET/POST/DELETE /apps` — App CRUD 73 73 + - `GET/POST/DELETE /apps/:id/tokens` — Token management 74 74 + - `POST /apps/:id/register` — Register schema 75 75 + - `POST /apps/:id/push` — Push changes 76 76 + - `POST /apps/:id/pull` — Pull changes 77 77 + - `POST/HEAD/GET /blobs/:hash` — Blob operations 78 78 + 79 79 + **Error Handling:** 80 80 + - Throws `ApiError` on failure 81 81 + - `ApiError.status` — HTTP status code 82 82 + - `ApiError.response` — Parsed API response 83 83 + 84 84 + ### Types (`types.ts`) 85 85 + 86 86 + Shared types used by both Synced and SyncApi. 87 87 + 88 88 + **Key Types:** 89 89 + - `AuthToken` — Auth response with user info 90 90 + - `UserProfile` — User data 91 91 + - `App` — App record (legacy compatibility) 92 92 + - `AppRegistration` — App with serialized schema 93 93 + - `PushRequest`/`PushResult` — Change push protocol 94 94 + - `PullRequest`/`PullResult` — Change pull protocol 95 95 + - `InitialSyncStrategy` — Conflict resolution enum 96 96 + 97 97 + ## Sync Protocol 98 98 + 99 99 + ### Change Format 100 100 + 101 101 + Changes are `ChangeEntry` objects from `@civility/store`: 102 102 + - `id` — Unique change ID 103 103 + - `docId` — Document ID 104 104 + - `hlc` — Hybrid Logical Clock timestamp 105 105 + - `patch` — Array of operations 106 106 + - `synced` — Whether synced to server 107 107 + 108 108 + ### Push 109 109 + 110 110 + 1. Get unsynced changes from each store 111 111 + 2. Upload referenced blobs if using BlobStore 112 112 + 3. POST to `/apps/:id/push` with `{changes, clientHLC}` 113 113 + 4. Server returns accepted IDs, remote changes, server HLC 114 114 + 5. Mark accepted changes as synced 115 115 + 6. Apply any remote changes returned 116 116 + 117 117 + ### Pull 118 118 + 119 119 + 1. POST to `/apps/:id/pull` with `{sinceHLC, storeName?}` 120 120 + 2. Server returns changes since last HLC 121 121 + 3. Download any referenced blobs 122 122 + 4. Apply changes to local store 123 123 + 124 124 + ### HLC (Hybrid Logical Clock) 125 125 + 126 126 + The sync protocol uses HLC timestamps for conflict resolution: 127 127 + - Combines logical timestamps with wall-clock time 128 128 + - Ensures causality is preserved across devices 129 129 + - Newer timestamp wins in conflicts (default) 130 130 + 131 131 + ## Blob Sync 132 132 + 133 133 + Blobs are identified by SHA-256 hash. The sync flow: 134 134 + 135 135 + 1. **Upload:** Before pushing changes, extract blob refs, check if server has them, upload missing 136 136 + 2. **Download:** After pulling changes, extract blob refs, check local store, download missing 137 137 + 138 138 + Blob references use this structure: 139 139 + ```ts 140 140 + interface BlobRef { 141 141 + hash: string // sha256:... 142 142 + mime: string 143 143 + size: number 144 144 + } 145 145 + ``` 146 146 + 147 147 + ## Testing 148 148 + 149 149 + Tests are in `__tests__/`: 150 150 + - `synced.test.ts` — Synced orchestrator tests 151 151 + - `api.test.ts` — SyncApi client tests 152 152 + 153 153 + Run tests: 154 154 + ```sh 155 155 + deno test packages/sync 156 156 + ``` 157 157 + 158 158 + ## Dependencies 159 159 + 160 160 + - `@civility/store` — Data storage and change tracking 161 161 + - `@civility/blobs` — Optional, for binary data sync 162 162 + - `@std/fs` — File utilities (Deno) 163 163 + 164 164 + ## Future Improvements 165 165 + 166 166 + - WebSocket-based real-time sync 167 167 + - CRDT-based conflict resolution 168 168 + - Selective sync (filter by store/collection) 169 169 + - Background sync with Service Worker

+2 -2

packages/sync/deno.json

reviewed

··· 1 1 { 2 2 "name": "@civility/sync", 3 3 - "version": "1.0.0-beta.5", 3 3 + "version": "1.0.0-beta.6", 4 4 "license": "MIT", 5 5 "exports": { 6 6 ".": "./mod.ts", 7 7 "./qr": "./utils/qr.ts" 8 8 }, 9 9 "imports": { 10 10 - "@civility/blobs": "jsr:@civility/blobs@^1.0.0-beta.3", 10 10 + "@civility/blobs": "jsr:@civility/blobs@^1.0.0-beta.4", 11 11 "@civility/store": "jsr:@civility/store@^1.0.0-beta.5", 12 12 "@paulmillr/qr": "jsr:@paulmillr/qr@^0.5.5" 13 13 }