crw-server 0.6.1

Firecrawl-compatible API server for the CRW web scraper
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162

//! Interactive setup command that downloads LightPanda and creates a local config.

use sha2::{Digest, Sha256};
use std::env::consts::{ARCH, OS};
use std::path::PathBuf;

const LIGHTPANDA_BASE_URL: &str =
    "https://github.com/lightpanda-io/browser/releases/download/nightly";

/// Run the interactive setup: download LightPanda binary and create config.
pub async fn run_setup() {
    println!();
    let (os_label, arch_label, binary_name) = match (OS, ARCH) {
        ("linux", "x86_64") => ("Linux", "x86_64", "lightpanda-x86_64-linux"),
        ("macos", "aarch64") => ("macOS", "aarch64", "lightpanda-aarch64-macos"),
        _ => {
            eprintln!("  ✗ Unsupported platform: {OS} {ARCH}");
            eprintln!("    LightPanda provides binaries for Linux x86_64 and macOS aarch64.");
            std::process::exit(1);
        }
    };

    println!("  → Detected: {os_label} {arch_label}");

    // Download LightPanda binary.
    let install_dir = home_local_bin();
    let install_path = install_dir.join("lightpanda");

    println!("  → Downloading LightPanda...");

    let url = format!("{LIGHTPANDA_BASE_URL}/{binary_name}");
    let bytes = match download_binary(&url).await {
        Ok(b) => b,
        Err(e) => {
            eprintln!("  ✗ Download failed: {e}");
            std::process::exit(1);
        }
    };

    // Verify binary integrity via SHA256 checksum.
    let actual_hash = sha256_hex(&bytes);
    let checksum_url = format!("{LIGHTPANDA_BASE_URL}/{binary_name}.sha256");
    match download_checksum(&checksum_url).await {
        Ok(expected_hash) => {
            if actual_hash != expected_hash {
                eprintln!("  ✗ SHA256 checksum mismatch!");
                eprintln!("    Expected: {expected_hash}");
                eprintln!("    Actual:   {actual_hash}");
                eprintln!("    The downloaded binary may be corrupted or tampered with.");
                std::process::exit(1);
            }
            println!("  ✓ SHA256 checksum verified: {actual_hash}");
        }
        Err(_) => {
            // Checksum file not available — log the hash for manual verification.
            println!("  ⚠ No checksum file available, SHA256: {actual_hash}");
        }
    }

    if let Err(e) = std::fs::create_dir_all(&install_dir) {
        eprintln!("  ✗ Failed to create {}: {e}", install_dir.display());
        std::process::exit(1);
    }

    if let Err(e) = std::fs::write(&install_path, &bytes) {
        eprintln!("  ✗ Failed to write {}: {e}", install_path.display());
        std::process::exit(1);
    }

    #[cfg(unix)]
    {
        use std::os::unix::fs::PermissionsExt;
        let perms = std::fs::Permissions::from_mode(0o755);
        if let Err(e) = std::fs::set_permissions(&install_path, perms) {
            eprintln!("  ✗ Failed to chmod +x: {e}");
            std::process::exit(1);
        }
    }

    println!("  ✓ Installed to {}", install_path.display());

    // Write config.local.toml if it doesn't exist.
    let config_path = PathBuf::from("config.local.toml");
    if config_path.exists() {
        println!("  ✓ config.local.toml already exists (skipped)");
    } else {
        let config_content = r#"[renderer]
mode = "lightpanda"

[renderer.lightpanda]
ws_url = "ws://127.0.0.1:9222/"
"#;
        if let Err(e) = std::fs::write(&config_path, config_content) {
            eprintln!("  ✗ Failed to write config.local.toml: {e}");
            std::process::exit(1);
        }
        println!("  ✓ Created config.local.toml");
    }

    println!();
    println!("  Start the server with JS rendering:");
    println!("    lightpanda serve --host 127.0.0.1 --port 9222 &");
    println!("    crw-server");
    println!();
}

async fn download_binary(url: &str) -> Result<Vec<u8>, reqwest::Error> {
    let client = reqwest::Client::builder()
        .redirect(crw_core::url_safety::safe_redirect_policy())
        .build()?;

    let resp = client.get(url).send().await?.error_for_status()?;
    let bytes = resp.bytes().await?;
    Ok(bytes.to_vec())
}

/// Download and parse a .sha256 checksum file (format: "<hash>  <filename>" or just "<hash>").
async fn download_checksum(url: &str) -> Result<String, String> {
    let client = reqwest::Client::builder()
        .redirect(crw_core::url_safety::safe_redirect_policy())
        .build()
        .map_err(|e| format!("client build error: {e}"))?;

    let resp = client
        .get(url)
        .send()
        .await
        .map_err(|e| format!("fetch error: {e}"))?;

    if !resp.status().is_success() {
        return Err(format!("HTTP {}", resp.status()));
    }

    let text = resp.text().await.map_err(|e| format!("read error: {e}"))?;

    // Parse checksum file: first token is the hex hash.
    let hash = text
        .split_whitespace()
        .next()
        .ok_or_else(|| "empty checksum file".to_string())?
        .to_lowercase();

    // Sanity check: should be 64 hex chars (SHA256).
    if hash.len() != 64 || !hash.chars().all(|c| c.is_ascii_hexdigit()) {
        return Err(format!("invalid checksum format: {hash}"));
    }

    Ok(hash)
}

fn sha256_hex(data: &[u8]) -> String {
    let mut hasher = Sha256::new();
    hasher.update(data);
    hex::encode(hasher.finalize())
}

fn home_local_bin() -> PathBuf {
    let home = std::env::var("HOME")
        .or_else(|_| std::env::var("USERPROFILE"))
        .unwrap_or_else(|_| ".".to_string());
    PathBuf::from(home).join(".local").join("bin")
}