cflx 0.6.98

Conflux – a spec-driven parallel coding orchestrator that runs AI agents on git worktrees
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245

//! Server daemon module for multi-project management.
//!
//! The server daemon listens for HTTP API requests to manage multiple projects
//! identified by (remote_url, branch) pairs.
//!
//! # Security Policy
//! - When binding to a non-loopback address, bearer token authentication is REQUIRED.
//! - This module deliberately does NOT reference or execute `~/.wt/setup`.
//!   The server is directory-independent and uses only its configured data_dir.

#[allow(dead_code)]
pub mod acp_client;
pub mod active_commands;
pub mod api;
pub mod db;
pub mod proposal_session;
pub mod registry;
pub mod runner;
pub mod terminal;

use std::io::Write;
use std::net::SocketAddr;

use tracing::{info, warn};

use crate::config::{ProposalSessionConfig, ServerConfig};
use crate::error::Result;
use crate::server::db::ServerDb;

fn server_base_url(bind: &str, actual_port: u16) -> String {
    crate::web::build_access_url(bind, actual_port)
}

/// Run the server daemon.
///
/// # Arguments
/// * `config` - Resolved server configuration (bind, port, auth, data_dir, max_concurrent_total).
/// * `resolve_command` - Top-level resolve_command from global config (used for auto_resolve).
pub async fn run_server(
    config: ServerConfig,
    resolve_command: Option<String>,
    proposal_session_config: ProposalSessionConfig,
) -> Result<()> {
    // Validate config (enforces auth for non-loopback binds, and rejects deprecated server.resolve_command).
    config.validate()?;

    // Build the shared registry.
    let registry = registry::create_shared_registry(&config.data_dir, config.max_concurrent_total)?;

    // Initialize persistent server database.
    let db = ServerDb::new(&config.data_dir)?;
    if let Err(e) = db.cleanup_old_logs(30) {
        warn!(error = %e, "Failed to run startup log cleanup");
    }

    // Restore persisted change states into registry.
    {
        let mut reg = registry.write().await;
        for row in db.load_change_states()? {
            reg.set_change_state(
                &row.project_id,
                &row.change_id,
                row.selected,
                row.error_message,
            );
        }
    }

    // In-memory runners map (per-project execution).
    let runners = runner::create_shared_runners();

    // Build app state.
    // Resolve the effective auth token: token_env takes precedence over token.
    let auth_token = match &config.auth.mode {
        crate::config::ServerAuthMode::BearerToken => config.auth.resolve_token(),
        crate::config::ServerAuthMode::None => None,
    };

    // Create broadcast channels for streaming execution logs and incremental state updates.
    let (log_tx, _) = tokio::sync::broadcast::channel(crate::server::api::SERVER_LOG_BUFFER_SIZE);
    let state_update_tx = crate::server::api::create_state_update_channel();

    let proposal_session_manager = proposal_session::create_proposal_session_manager(
        proposal_session_config,
        Some(db.clone()),
    );

    // Restore proposal sessions persisted in sqlite.
    {
        let active_sessions = db.load_active_proposal_sessions()?;
        let mut manager = proposal_session_manager.write().await;
        for row in active_sessions {
            match manager.restore_session(&row).await {
                Ok(Some(_)) => {
                    info!(session_id = %row.id, "Restored proposal session from database");
                }
                Ok(None) => {
                    info!(session_id = %row.id, "Removed stale persisted proposal session");
                }
                Err(e) => {
                    warn!(
                        session_id = %row.id,
                        error = %e,
                        "Failed to restore persisted proposal session"
                    );
                }
            }
        }
    }

    let app_state = api::AppState {
        registry,
        runners,
        db: Some(db.clone()),
        auth_token,
        max_concurrent_total: config.max_concurrent_total,
        resolve_command,
        log_tx,
        state_update_tx,
        orchestration_status: std::sync::Arc::new(tokio::sync::RwLock::new(
            registry::OrchestrationStatus::default(),
        )),
        shared_orchestrator_state: std::sync::Arc::new(tokio::sync::RwLock::new(
            crate::orchestration::state::OrchestratorState::new(Vec::new(), 1),
        )),
        terminal_manager: terminal::create_terminal_manager(),
        active_commands: active_commands::create_shared_active_commands(),
        proposal_session_manager,
    };

    {
        let registry_for_monitor = app_state.registry.clone();
        tokio::spawn(async move {
            api::run_remote_sync_state_monitor(registry_for_monitor).await;
        });
    }

    // Build router.
    let router = api::build_router(app_state.clone());

    // Bind and serve.
    let addr: SocketAddr = format!("{}:{}", config.bind, config.port)
        .parse()
        .map_err(|e| {
            crate::error::OrchestratorError::ConfigLoad(format!(
                "Invalid server address '{}:{}': {}",
                config.bind, config.port, e
            ))
        })?;

    info!("Starting server daemon on {}", addr);

    let listener = tokio::net::TcpListener::bind(addr).await.map_err(|e| {
        crate::error::OrchestratorError::Io(std::io::Error::other(format!(
            "Failed to bind to {}: {}",
            addr, e
        )))
    })?;

    let actual_addr = listener.local_addr().map_err(|e| {
        crate::error::OrchestratorError::Io(std::io::Error::other(format!(
            "Failed to resolve bound address: {}",
            e
        )))
    })?;

    let url = server_base_url(&config.bind, actual_addr.port());

    // Print the accessible base URL to stdout for easy copy-paste.
    // Keep this output minimal (URL only) to support scripts.
    println!("{}", url);
    let _ = std::io::stdout().flush();

    info!("Server daemon listening on {}", url);

    // Start proposal session inactivity timeout scanner
    let psm_for_scanner = app_state.proposal_session_manager.clone();
    tokio::spawn(async move {
        let mut interval = tokio::time::interval(std::time::Duration::from_secs(60));
        loop {
            interval.tick().await;
            let mut manager = psm_for_scanner.write().await;
            manager.scan_timeouts().await;
        }
    });

    // Start daily log cleanup task (keep 30 days).
    let db_for_cleanup = db.clone();
    tokio::spawn(async move {
        let mut interval = tokio::time::interval(std::time::Duration::from_secs(24 * 60 * 60));
        loop {
            interval.tick().await;
            match db_for_cleanup.cleanup_old_logs(30) {
                Ok(deleted) => info!(deleted, "Completed periodic log cleanup"),
                Err(e) => warn!(error = %e, "Failed periodic log cleanup"),
            }
        }
    });

    // Run the server with graceful shutdown support
    let psm_for_shutdown = app_state.proposal_session_manager.clone();
    let server = axum::serve(listener, router).with_graceful_shutdown(async move {
        tokio::signal::ctrl_c()
            .await
            .expect("Failed to install Ctrl+C handler");
        info!("Shutdown signal received, cleaning up proposal sessions...");
        let mut manager = psm_for_shutdown.write().await;
        manager.cleanup_all(None).await;
        info!("Proposal session cleanup complete");
    });

    server.await.map_err(|e| {
        crate::error::OrchestratorError::Io(std::io::Error::other(format!("Server error: {}", e)))
    })?;

    Ok(())
}

#[cfg(test)]
mod tests {
    use super::server_base_url;

    #[test]
    fn test_server_base_url_localhost() {
        let url = server_base_url("127.0.0.1", 39876);
        assert_eq!(url, "http://localhost:39876");

        let url = server_base_url("localhost", 39876);
        assert_eq!(url, "http://localhost:39876");
    }

    #[test]
    fn test_server_base_url_specific_address() {
        let url = server_base_url("192.168.1.50", 9000);
        assert_eq!(url, "http://192.168.1.50:9000");
    }

    #[test]
    fn test_server_base_url_zero_address_does_not_expose_zeros() {
        let url = server_base_url("0.0.0.0", 8080);
        assert!(url.starts_with("http://"));
        assert!(url.ends_with(":8080"));
        assert!(!url.contains("0.0.0.0"));
    }
}