[ { "path": ".github/FUNDING.yml", "content": "github: owenthereal\nopen_collective: upterm\n" }, { "path": ".github/dependabot.yml", "content": "version: 2\nupdates:\n - package-ecosystem: \"github-actions\"\n directory: \"/\"\n schedule:\n interval: \"weekly\"\n - package-ecosystem: \"gomod\"\n directory: \"/\"\n schedule:\n interval: \"weekly\"\n" }, { "path": ".github/workflows/build-and-release.yaml", "content": "name: Build and Release\n\non:\n workflow_call:\n inputs:\n snapshot:\n description: 'Build snapshot (no publishing)'\n required: false\n default: true\n type: boolean\n docker_repo:\n description: 'Docker repository'\n required: false\n default: 'ghcr.io/owenthereal/upterm/uptermd'\n type: string\n\njobs:\n goreleaser:\n runs-on: ubuntu-latest\n steps:\n - uses: actions/checkout@v6\n with:\n fetch-depth: 0\n\n - name: Set up Go\n uses: actions/setup-go@v6\n with:\n go-version-file: go.mod\n check-latest: true\n\n - name: Set up Docker Buildx\n uses: docker/setup-buildx-action@v4\n\n - name: Set up Docker QEMU\n uses: docker/setup-qemu-action@v4\n with:\n platforms: 'amd64,arm64,ppc64le,s390x'\n\n - name: Login to ghcr.io\n if: ${{ !inputs.snapshot }}\n uses: docker/login-action@v4\n with:\n registry: ghcr.io\n username: ${{ github.actor }}\n password: ${{ secrets.GH_TOKEN }}\n\n - name: Run GoReleaser (Snapshot)\n if: ${{ inputs.snapshot }}\n uses: goreleaser/goreleaser-action@v7\n with:\n distribution: goreleaser\n version: '~> v2'\n args: release --clean --snapshot --skip=publish\n env:\n GITHUB_TOKEN: ${{ secrets.GH_TOKEN }}\n DOCKER_REPO: ${{ inputs.docker_repo }}\n\n - name: Run GoReleaser (Release)\n if: ${{ !inputs.snapshot }}\n uses: goreleaser/goreleaser-action@v7\n with:\n distribution: goreleaser\n version: '~> v2'\n args: release --clean\n env:\n GITHUB_TOKEN: ${{ secrets.GH_TOKEN }}\n DOCKER_REPO: ${{ inputs.docker_repo }}\n" }, { "path": ".github/workflows/build.yaml", "content": "name: Build\non:\n push:\n branches:\n - master\n pull_request:\npermissions:\n contents: write\n packages: write\njobs:\n build:\n name: Compile\n runs-on: ${{ matrix.os }}\n strategy:\n fail-fast: false\n matrix:\n os: [macos-latest, ubuntu-latest, windows-latest]\n steps:\n - uses: actions/checkout@v6\n - name: Set up Go\n uses: actions/setup-go@v6\n with:\n go-version-file: go.mod\n check-latest: true\n - name: Compile\n run: make install\n test-macos:\n name: Test (macOS)\n runs-on: macos-latest\n steps:\n - uses: actions/checkout@v6\n - name: Set up Go\n uses: actions/setup-go@v6\n with:\n go-version-file: go.mod\n check-latest: true\n - name: Test\n run: make test\n env:\n BASH_SILENCE_DEPRECATION_WARNING: 1\n MUTE_FLAKY_TESTS: 1\n\n test-ubuntu:\n name: Test (Ubuntu + Consul)\n runs-on: ubuntu-latest\n services:\n consul:\n image: consul:1.15\n ports:\n - 8500:8500\n options: >-\n --health-cmd \"consul members\"\n --health-interval 10s\n --health-timeout 5s\n --health-retries 5\n steps:\n - uses: actions/checkout@v6\n - name: Set up Go\n uses: actions/setup-go@v6\n with:\n go-version-file: go.mod\n check-latest: true\n - name: Test\n run: make test\n env:\n BASH_SILENCE_DEPRECATION_WARNING: 1\n MUTE_FLAKY_TESTS: 1\n\n test-windows:\n name: Test (Windows)\n runs-on: windows-latest\n steps:\n - uses: actions/checkout@v6\n - name: Set up Go\n uses: actions/setup-go@v6\n with:\n go-version-file: go.mod\n check-latest: true\n - name: Test\n run: make test\n env:\n MUTE_FLAKY_TESTS: 1\n vet:\n name: Vet\n runs-on: ubuntu-latest\n steps:\n - uses: actions/checkout@v6\n - name: Set up Go\n uses: actions/setup-go@v6\n with:\n go-version-file: go.mod\n check-latest: true\n - name: Vet\n run: make vet\n\n test-e2e:\n name: E2E Tests\n runs-on: ubuntu-latest\n steps:\n - uses: actions/checkout@v6\n\n - name: Set up Go\n uses: actions/setup-go@v6\n with:\n go-version-file: go.mod\n check-latest: true\n\n - name: Install tmux\n run: sudo apt-get update && sudo apt-get install -y tmux\n\n - name: Build upterm\n run: make install\n\n - name: Generate SSH host keys\n run: |\n mkdir -p /tmp/uptermd\n ssh-keygen -t ed25519 -f /tmp/uptermd/id_ed25519 -N \"\"\n\n - name: Build and start uptermd\n run: |\n go build -o /tmp/uptermd/uptermd ./cmd/uptermd\n /tmp/uptermd/uptermd --ssh-addr 127.0.0.1:2222 --private-key /tmp/uptermd/id_ed25519 > /tmp/uptermd/uptermd.log 2>&1 &\n echo \"Waiting for uptermd to start...\"\n for i in $(seq 1 30); do\n if nc -z 127.0.0.1 2222 2>/dev/null; then\n echo \"uptermd is ready\"\n break\n fi\n if [ $i -eq 30 ]; then\n echo \"uptermd failed to start\"\n cat /tmp/uptermd/uptermd.log\n exit 1\n fi\n sleep 1\n done\n\n - name: Run E2E Tests\n run: make test-e2e\n env:\n UPTERM_E2E_SERVER: ssh://127.0.0.1:2222\n\n - name: Cleanup uptermd\n if: always()\n run: pkill uptermd || true\n\n build-and-release:\n name: Build and Release (Snapshot)\n uses: ./.github/workflows/build-and-release.yaml\n with:\n snapshot: true\n docker_repo: ghcr.io/owenthereal/upterm/uptermd\n secrets: inherit\n" }, { "path": ".github/workflows/codeql-analysis.yml", "content": "# For most projects, this workflow file will not need changing; you simply need\n# to commit it to your repository.\n#\n# You may wish to alter this file to override the set of languages analyzed,\n# or to provide custom queries or build logic.\n#\n# ******** NOTE ********\n# We have attempted to detect the languages in your repository. Please check\n# the `language` matrix defined below to confirm you have the correct set of\n# supported CodeQL languages.\n#\nname: \"CodeQL\"\n\non:\n push:\n branches: [ master ]\n pull_request:\n # The branches below must be a subset of the branches above\n branches: [ master ]\n schedule:\n - cron: '26 15 * * 1'\n\njobs:\n analyze:\n name: Analyze\n runs-on: ubuntu-latest\n permissions:\n actions: read\n contents: read\n security-events: write\n\n strategy:\n fail-fast: false\n matrix:\n language: [ 'go' ]\n # CodeQL supports [ 'cpp', 'csharp', 'go', 'java', 'javascript', 'python', 'ruby' ]\n # Learn more about CodeQL language support at https://git.io/codeql-language-support\n\n steps:\n - name: Checkout repository\n uses: actions/checkout@v6\n\n # Initializes the CodeQL tools for scanning.\n - name: Initialize CodeQL\n uses: github/codeql-action/init@v4\n with:\n languages: ${{ matrix.language }}\n # If you wish to specify custom queries, you can do so here or in a config file.\n # By default, queries listed here will override any specified in a config file.\n # Prefix the list here with \"+\" to use these queries and those in the config file.\n # queries: ./path/to/local/query, your-org/your-repo/queries@main\n\n # Autobuild attempts to build any compiled languages (C/C++, C#, or Java).\n # If this step fails, then you should remove it and run the build manually (see below)\n - name: Autobuild\n uses: github/codeql-action/autobuild@v4\n\n # ℹ️ Command-line programs to run using the OS shell.\n # πŸ“š https://git.io/JvXDl\n\n # ✏️ If the Autobuild fails above, remove it and uncomment the following three lines\n # and modify them (or add more) to build your code if your project\n # uses a compiled language\n\n #- run: |\n # make bootstrap\n # make release\n\n - name: Perform CodeQL Analysis\n uses: github/codeql-action/analyze@v4\n" }, { "path": ".github/workflows/e2e.yaml", "content": "name: E2E Tests\n\non:\n workflow_dispatch:\n inputs:\n uptermd_url:\n description: 'Uptermd server URL (e.g., ssh://uptermd.upterm.dev:22)'\n required: true\n default: 'ssh://uptermd.upterm.dev:22'\n\njobs:\n e2e:\n name: E2E Tests\n runs-on: ubuntu-latest\n steps:\n - uses: actions/checkout@v6\n\n - name: Set up Go\n uses: actions/setup-go@v6\n with:\n go-version-file: go.mod\n check-latest: true\n\n - name: Install tmux\n run: sudo apt-get update && sudo apt-get install -y tmux\n\n - name: Install upterm (latest release)\n run: |\n mkdir -p /tmp/upterm-release\n curl -sL https://github.com/owenthereal/upterm/releases/latest/download/upterm_linux_amd64.tar.gz | tar xz -C /tmp/upterm-release\n sudo mv /tmp/upterm-release/upterm /usr/local/bin/\n\n - name: Run E2E Tests\n run: make test-e2e\n env:\n UPTERM_E2E_SERVER: ${{ inputs.uptermd_url }}\n" }, { "path": ".github/workflows/release.yaml", "content": "name: Release\non:\n push:\n tags:\n - 'v*'\npermissions:\n contents: write\n packages: write\njobs:\n build-and-release:\n name: Release binaries and Docker images\n uses: ./.github/workflows/build-and-release.yaml\n with:\n snapshot: false\n docker_repo: ghcr.io/owenthereal/upterm/uptermd\n secrets: inherit\n deploy:\n name: Deploy app\n runs-on: ubuntu-latest\n needs: [build-and-release]\n steps:\n - uses: actions/checkout@v6\n - uses: superfly/flyctl-actions/setup-flyctl@master\n - name: Get version from tag\n id: version\n run: |\n VERSION=${GITHUB_REF#refs/tags/v}\n echo \"version=$VERSION\" >> $GITHUB_OUTPUT\n echo \"git_commit=$GITHUB_SHA\" >> $GITHUB_OUTPUT\n echo \"build_date=$(date -u +'%Y-%m-%dT%H:%M:%SZ')\" >> $GITHUB_OUTPUT\n - name: Deploy to Fly.io\n run: |\n flyctl deploy --remote-only \\\n --build-arg VERSION=${{ steps.version.outputs.version }} \\\n --build-arg GIT_COMMIT=${{ steps.version.outputs.git_commit }} \\\n --build-arg BUILD_DATE=${{ steps.version.outputs.build_date }}\n env:\n FLY_API_TOKEN: ${{ secrets.FLY_API_TOKEN }}\n" }, { "path": ".gitignore", "content": "build\nc.out\nrelease\n.terraform\n*.tfstate\n*.tfstate.backup\ndist\nbin\nCLAUDE.md\n.claude/\n*.exe\n*.exe~\n" }, { "path": ".goreleaser.yml", "content": "version: 2\nbuilds:\n - id: upterm\n env:\n - CGO_ENABLED=0\n goos:\n - linux\n - darwin\n - windows\n goarch:\n - \"386\"\n - \"amd64\"\n - \"arm\"\n - \"arm64\"\n - \"ppc64le\"\n - \"s390x\"\n main: ./cmd/upterm\n ldflags:\n - -s -w -X github.com/owenthereal/upterm/internal/version.Version={{.Version}} -X github.com/owenthereal/upterm/internal/version.GitCommit={{.Commit}} -X github.com/owenthereal/upterm/internal/version.Date={{.CommitDate}}\n - id: uptermd\n env:\n - CGO_ENABLED=0\n goos:\n - linux\n goarch:\n - \"amd64\"\n - \"arm64\"\n - \"ppc64le\"\n - \"s390x\"\n main: ./cmd/uptermd\n binary: uptermd\n ldflags:\n - -s -w -X github.com/owenthereal/upterm/internal/version.Version={{.Version}} -X github.com/owenthereal/upterm/internal/version.GitCommit={{.Commit}} -X github.com/owenthereal/upterm/internal/version.Date={{.CommitDate}}\narchives:\n - id: upterm\n name_template: '{{ .Binary }}_{{ .Os }}_{{ .Arch }}{{ with .Arm }}v{{ . }}{{ end }}{{ with .Mips }}_{{ . }}{{ end }}{{ if not (eq .Amd64 \"v1\") }}{{ .Amd64 }}{{ end }}'\n wrap_in_directory: false\n ids:\n - upterm\n files:\n - LICENSE*\n - README*\n - etc/*\n - docs/*\n - id: uptermd\n name_template: '{{ .Binary }}_{{ .Os }}_{{ .Arch }}{{ with .Arm }}v{{ . }}{{ end }}{{ with .Mips }}_{{ . }}{{ end }}{{ if not (eq .Amd64 \"v1\") }}{{ .Amd64 }}{{ end }}'\n wrap_in_directory: false\n ids:\n - uptermd\n files:\n - LICENSE*\n - README*\nhomebrew_casks:\n - repository:\n owner: owenthereal\n name: homebrew-upterm\n commit_author:\n name: Owen Ou\n email: o@owenou.com\n homepage: https://upterm.dev\n description: Instant Terminal Sharing\n directory: Casks\n ids:\n - upterm\n license: \"Apache 2.0\"\n manpages:\n - \"etc/man/man1/upterm.1\"\n - \"etc/man/man1/upterm-host.1\"\n - \"etc/man/man1/upterm-proxy.1\"\n - \"etc/man/man1/upterm-session.1\"\n - \"etc/man/man1/upterm-session-current.1\"\n - \"etc/man/man1/upterm-session-info.1\"\n - \"etc/man/man1/upterm-session-list.1\"\n - \"etc/man/man1/upterm-upgrade.1\"\n - \"etc/man/man1/upterm-version.1\"\n completions:\n bash: \"etc/completion/upterm.bash_completion.sh\"\n zsh: \"etc/completion/upterm.zsh_completion\"\n hooks:\n post:\n install: |\n if OS.mac?\n system_command \"/usr/bin/xattr\", args: [\"-dr\", \"com.apple.quarantine\", \"#{staged_path}/upterm\"]\n end\nscoops:\n - repository:\n owner: owenthereal\n name: scoop-upterm\n commit_author:\n name: Owen Ou\n email: o@owenou.com\n homepage: https://upterm.dev\n description: Instant Terminal Sharing\n license: Apache-2.0\n ids:\n - upterm\ndockers_v2:\n - dockerfile: Dockerfile.uptermd\n ids:\n - uptermd\n images:\n - \"{{ .Env.DOCKER_REPO }}\"\n tags:\n - \"{{ .Tag }}\"\n - latest\n platforms:\n - linux/amd64\n - linux/arm64\n - linux/ppc64le\n - linux/s390x\n flags:\n - \"--target=pre-built-binary\"\n labels:\n \"org.opencontainers.image.title\": \"{{ .ProjectName }}\"\n \"org.opencontainers.image.description\": \"Upterm server daemon\"\n \"org.opencontainers.image.url\": \"https://github.com/owenthereal/upterm\"\n \"org.opencontainers.image.source\": \"https://github.com/owenthereal/upterm\"\n \"org.opencontainers.image.version\": \"{{ .Version }}\"\n \"org.opencontainers.image.created\": '{{ time \"2006-01-02T15:04:05Z07:00\" }}'\n \"org.opencontainers.image.revision\": \"{{ .FullCommit }}\"\n \"org.opencontainers.image.licenses\": \"Apache-2.0\"\n extra_files:\n - go.mod\n - go.sum\nchecksum:\n name_template: \"checksums.txt\"\nsnapshot:\n version_template: \"{{ incpatch .Version }}-snapshot\"\nrelease:\n prerelease: auto\n name_template: \"Upterm {{.Version}}\"\n mode: append\nchangelog:\n sort: asc\n use: github\n filters:\n exclude:\n - \"^docs:\"\n - \"^script:\"\n - \"^go.mod:\"\n - \"^.github:\"\n - Merge branch\nnfpms: #build:linux\n - license: Apache-2.0\n maintainer: Owen Ou \n ids:\n - upterm\n homepage: https://github.com/owenthereal/upterm\n bindir: /usr/bin\n description: Instant Terminal Sharing\n file_name_template: '{{ .PackageName }}_{{ .Os }}_{{ .Arch }}{{ with .Arm }}v{{ . }}{{ end }}{{ with .Mips }}_{{ . }}{{ end }}{{ if not (eq .Amd64 \"v1\") }}{{ .Amd64 }}{{ end }}'\n formats:\n - deb\n - rpm\n contents:\n - src: \"./etc/man/man1/upterm*.1\"\n dst: \"/usr/share/man/man1\"\n - src: \"./etc/completion/upterm.bash_completion.sh\"\n dst: \"/usr/share/bash-completion/completions/upterm\"\n - src: \"./etc/completion/upterm.zsh_completion\"\n dst: \"/usr/share/zsh/site-functions/_upterm\"\n" }, { "path": "CONTRIBUTING.md", "content": "# Contributing\n\nWhen contributing to this repository, please first discuss the change you wish to make via issue,\nemail, or any other method with the owners of this repository before making a change. \n\nPlease note we have a code of conduct, please follow it in all your interactions with the project.\n\n## Pull Request Process\n\n1. Ensure any install or build dependencies are removed before the end of the layer when doing a \n build.\n2. Update the README.md with details of changes to the interface, this includes new environment \n variables, exposed ports, useful file locations and container parameters.\n3. Increase the version numbers in any examples files and the README.md to the new version that this\n Pull Request would represent. The versioning scheme we use is [SemVer](http://semver.org/).\n4. You may merge the Pull Request in once you have the sign-off of two other developers, or if you \n do not have permission to do that, you may request the second reviewer to merge it for you.\n\n## Code of Conduct\n\n### Our Pledge\n\nIn the interest of fostering an open and welcoming environment, we as\ncontributors and maintainers pledge to making participation in our project and\nour community a harassment-free experience for everyone, regardless of age, body\nsize, disability, ethnicity, gender identity and expression, level of experience,\nnationality, personal appearance, race, religion, or sexual identity and\norientation.\n\n### Our Standards\n\nExamples of behavior that contributes to creating a positive environment\ninclude:\n\n* Using welcoming and inclusive language\n* Being respectful of differing viewpoints and experiences\n* Gracefully accepting constructive criticism\n* Focusing on what is best for the community\n* Showing empathy towards other community members\n\nExamples of unacceptable behavior by participants include:\n\n* The use of sexualized language or imagery and unwelcome sexual attention or\nadvances\n* Trolling, insulting/derogatory comments, and personal or political attacks\n* Public or private harassment\n* Publishing others' private information, such as a physical or electronic\n address, without explicit permission\n* Other conduct which could reasonably be considered inappropriate in a\n professional setting\n\n### Our Responsibilities\n\nProject maintainers are responsible for clarifying the standards of acceptable\nbehavior and are expected to take appropriate and fair corrective action in\nresponse to any instances of unacceptable behavior.\n\nProject maintainers have the right and responsibility to remove, edit, or\nreject comments, commits, code, wiki edits, issues, and other contributions\nthat are not aligned to this Code of Conduct, or to ban temporarily or\npermanently any contributor for other behaviors that they deem inappropriate,\nthreatening, offensive, or harmful.\n\n### Scope\n\nThis Code of Conduct applies both within project spaces and in public spaces\nwhen an individual is representing the project or its community. Examples of\nrepresenting a project or community include using an official project e-mail\naddress, posting via an official social media account, or acting as an appointed\nrepresentative at an online or offline event. Representation of a project may be\nfurther defined and clarified by project maintainers.\n\n### Enforcement\n\nInstances of abusive, harassing, or otherwise unacceptable behavior may be\nreported by contacting the project team at [INSERT EMAIL ADDRESS]. All\ncomplaints will be reviewed and investigated and will result in a response that\nis deemed necessary and appropriate to the circumstances. The project team is\nobligated to maintain confidentiality with regard to the reporter of an incident.\nFurther details of specific enforcement policies may be posted separately.\n\nProject maintainers who do not follow or enforce the Code of Conduct in good\nfaith may face temporary or permanent repercussions as determined by other\nmembers of the project's leadership.\n\n### Attribution\n\nThis Code of Conduct is adapted from the [Contributor Covenant][homepage], version 1.4,\navailable at [http://contributor-covenant.org/version/1/4][version]\n\n[homepage]: http://contributor-covenant.org\n[version]: http://contributor-covenant.org/version/1/4/\n" }, { "path": "Dockerfile.uptermd", "content": "# syntax=docker/dockerfile:1\n\n# Build stage - builds from source (used by Fly deployment)\nFROM golang:latest AS builder\n\nARG TARGETOS\nARG TARGETARCH\nARG VERSION=0.0.0+dev\nARG GIT_COMMIT=unknown\nARG BUILD_DATE=unknown\n\nWORKDIR /src\nENV CGO_ENABLED=0\nRUN --mount=target=. \\\n --mount=type=cache,target=/root/.cache/go-build \\\n --mount=type=cache,target=/go/pkg \\\n GOOS=$TARGETOS GOARCH=$TARGETARCH go install \\\n -ldflags=\"-s -w -X github.com/owenthereal/upterm/internal/version.Version=${VERSION} -X github.com/owenthereal/upterm/internal/version.GitCommit=${GIT_COMMIT} -X github.com/owenthereal/upterm/internal/version.Date=${BUILD_DATE}\" \\\n ./cmd/...\n\n# Base runtime stage\nFROM gcr.io/distroless/static:nonroot AS base\n\nWORKDIR /app\nENV PATH=\"/app:${PATH}\"\n\n# sshd ws & prometheus\nEXPOSE 2222 8080 9090\n\n# Fly deployment stage (builds from source)\nFROM base AS uptermd-fly\nCOPY --from=builder /go/bin/uptermd /go/bin/uptermd-fly /app/\nENTRYPOINT [\"uptermd-fly\"]\n\n# Pre-built binary stage (used by GoReleaser)\nFROM base AS pre-built-binary\nARG TARGETPLATFORM\nCOPY ${TARGETPLATFORM}/uptermd /app/\nENTRYPOINT [\"uptermd\"]\n\n# Default stage\nFROM base AS uptermd\nCOPY --from=builder /go/bin/uptermd /app/\nENTRYPOINT [\"uptermd\"]\n" }, { "path": "LICENSE", "content": " Apache License\n Version 2.0, January 2004\n http://www.apache.org/licenses/\n\n TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION\n\n 1. Definitions.\n\n \"License\" shall mean the terms and conditions for use, reproduction,\n and distribution as defined by Sections 1 through 9 of this document.\n\n \"Licensor\" shall mean the copyright owner or entity authorized by\n the copyright owner that is granting the License.\n\n \"Legal Entity\" shall mean the union of the acting entity and all\n other entities that control, are controlled by, or are under common\n control with that entity. For the purposes of this definition,\n \"control\" means (i) the power, direct or indirect, to cause the\n direction or management of such entity, whether by contract or\n otherwise, or (ii) ownership of fifty percent (50%) or more of the\n outstanding shares, or (iii) beneficial ownership of such entity.\n\n \"You\" (or \"Your\") shall mean an individual or Legal Entity\n exercising permissions granted by this License.\n\n \"Source\" form shall mean the preferred form for making modifications,\n including but not limited to software source code, documentation\n source, and configuration files.\n\n \"Object\" form shall mean any form resulting from mechanical\n transformation or translation of a Source form, including but\n not limited to compiled object code, generated documentation,\n and conversions to other media types.\n\n \"Work\" shall mean the work of authorship, whether in Source or\n Object form, made available under the License, as indicated by a\n copyright notice that is included in or attached to the work\n (an example is provided in the Appendix below).\n\n \"Derivative Works\" shall mean any work, whether in Source or Object\n form, that is based on (or derived from) the Work and for which the\n editorial revisions, annotations, elaborations, or other modifications\n represent, as a whole, an original work of authorship. For the purposes\n of this License, Derivative Works shall not include works that remain\n separable from, or merely link (or bind by name) to the interfaces of,\n the Work and Derivative Works thereof.\n\n \"Contribution\" shall mean any work of authorship, including\n the original version of the Work and any modifications or additions\n to that Work or Derivative Works thereof, that is intentionally\n submitted to Licensor for inclusion in the Work by the copyright owner\n or by an individual or Legal Entity authorized to submit on behalf of\n the copyright owner. For the purposes of this definition, \"submitted\"\n means any form of electronic, verbal, or written communication sent\n to the Licensor or its representatives, including but not limited to\n communication on electronic mailing lists, source code control systems,\n and issue tracking systems that are managed by, or on behalf of, the\n Licensor for the purpose of discussing and improving the Work, but\n excluding communication that is conspicuously marked or otherwise\n designated in writing by the copyright owner as \"Not a Contribution.\"\n\n \"Contributor\" shall mean Licensor and any individual or Legal Entity\n on behalf of whom a Contribution has been received by Licensor and\n subsequently incorporated within the Work.\n\n 2. Grant of Copyright License. Subject to the terms and conditions of\n this License, each Contributor hereby grants to You a perpetual,\n worldwide, non-exclusive, no-charge, royalty-free, irrevocable\n copyright license to reproduce, prepare Derivative Works of,\n publicly display, publicly perform, sublicense, and distribute the\n Work and such Derivative Works in Source or Object form.\n\n 3. Grant of Patent License. Subject to the terms and conditions of\n this License, each Contributor hereby grants to You a perpetual,\n worldwide, non-exclusive, no-charge, royalty-free, irrevocable\n (except as stated in this section) patent license to make, have made,\n use, offer to sell, sell, import, and otherwise transfer the Work,\n where such license applies only to those patent claims licensable\n by such Contributor that are necessarily infringed by their\n Contribution(s) alone or by combination of their Contribution(s)\n with the Work to which such Contribution(s) was submitted. If You\n institute patent litigation against any entity (including a\n cross-claim or counterclaim in a lawsuit) alleging that the Work\n or a Contribution incorporated within the Work constitutes direct\n or contributory patent infringement, then any patent licenses\n granted to You under this License for that Work shall terminate\n as of the date such litigation is filed.\n\n 4. Redistribution. You may reproduce and distribute copies of the\n Work or Derivative Works thereof in any medium, with or without\n modifications, and in Source or Object form, provided that You\n meet the following conditions:\n\n (a) You must give any other recipients of the Work or\n Derivative Works a copy of this License; and\n\n (b) You must cause any modified files to carry prominent notices\n stating that You changed the files; and\n\n (c) You must retain, in the Source form of any Derivative Works\n that You distribute, all copyright, patent, trademark, and\n attribution notices from the Source form of the Work,\n excluding those notices that do not pertain to any part of\n the Derivative Works; and\n\n (d) If the Work includes a \"NOTICE\" text file as part of its\n distribution, then any Derivative Works that You distribute must\n include a readable copy of the attribution notices contained\n within such NOTICE file, excluding those notices that do not\n pertain to any part of the Derivative Works, in at least one\n of the following places: within a NOTICE text file distributed\n as part of the Derivative Works; within the Source form or\n documentation, if provided along with the Derivative Works; or,\n within a display generated by the Derivative Works, if and\n wherever such third-party notices normally appear. The contents\n of the NOTICE file are for informational purposes only and\n do not modify the License. You may add Your own attribution\n notices within Derivative Works that You distribute, alongside\n or as an addendum to the NOTICE text from the Work, provided\n that such additional attribution notices cannot be construed\n as modifying the License.\n\n You may add Your own copyright statement to Your modifications and\n may provide additional or different license terms and conditions\n for use, reproduction, or distribution of Your modifications, or\n for any such Derivative Works as a whole, provided Your use,\n reproduction, and distribution of the Work otherwise complies with\n the conditions stated in this License.\n\n 5. Submission of Contributions. Unless You explicitly state otherwise,\n any Contribution intentionally submitted for inclusion in the Work\n by You to the Licensor shall be under the terms and conditions of\n this License, without any additional terms or conditions.\n Notwithstanding the above, nothing herein shall supersede or modify\n the terms of any separate license agreement you may have executed\n with Licensor regarding such Contributions.\n\n 6. Trademarks. This License does not grant permission to use the trade\n names, trademarks, service marks, or product names of the Licensor,\n except as required for reasonable and customary use in describing the\n origin of the Work and reproducing the content of the NOTICE file.\n\n 7. Disclaimer of Warranty. Unless required by applicable law or\n agreed to in writing, Licensor provides the Work (and each\n Contributor provides its Contributions) on an \"AS IS\" BASIS,\n WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or\n implied, including, without limitation, any warranties or conditions\n of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A\n PARTICULAR PURPOSE. You are solely responsible for determining the\n appropriateness of using or redistributing the Work and assume any\n risks associated with Your exercise of permissions under this License.\n\n 8. Limitation of Liability. In no event and under no legal theory,\n whether in tort (including negligence), contract, or otherwise,\n unless required by applicable law (such as deliberate and grossly\n negligent acts) or agreed to in writing, shall any Contributor be\n liable to You for damages, including any direct, indirect, special,\n incidental, or consequential damages of any character arising as a\n result of this License or out of the use or inability to use the\n Work (including but not limited to damages for loss of goodwill,\n work stoppage, computer failure or malfunction, or any and all\n other commercial damages or losses), even if such Contributor\n has been advised of the possibility of such damages.\n\n 9. Accepting Warranty or Additional Liability. While redistributing\n the Work or Derivative Works thereof, You may choose to offer,\n and charge a fee for, acceptance of support, warranty, indemnity,\n or other liability obligations and/or rights consistent with this\n License. However, in accepting such obligations, You may act only\n on Your own behalf and on Your sole responsibility, not on behalf\n of any other Contributor, and only if You agree to indemnify,\n defend, and hold each Contributor harmless for any liability\n incurred by, or claims asserted against, such Contributor by reason\n of your accepting any such warranty or additional liability.\n\n END OF TERMS AND CONDITIONS\n\n APPENDIX: How to apply the Apache License to your work.\n\n To apply the Apache License to your work, attach the following\n boilerplate notice, with the fields enclosed by brackets \"[]\"\n replaced with your own identifying information. (Don't include\n the brackets!) The text should be enclosed in the appropriate\n comment syntax for the file format. We also recommend that a\n file or class name and description of purpose be included on the\n same \"printed page\" as the copyright notice for easier\n identification within third-party archives.\n\n Copyright [yyyy] [name of copyright owner]\n\n Licensed under the Apache License, Version 2.0 (the \"License\");\n you may not use this file except in compliance with the License.\n You may obtain a copy of the License at\n\n http://www.apache.org/licenses/LICENSE-2.0\n\n Unless required by applicable law or agreed to in writing, software\n distributed under the License is distributed on an \"AS IS\" BASIS,\n WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n See the License for the specific language governing permissions and\n limitations under the License.\n" }, { "path": "Makefile", "content": "SHELL=/bin/bash -o pipefail\n\nBIN_DIR ?= $(CURDIR)/bin\nexport PATH := $(BIN_DIR):$(PATH)\n\n.PHONY: tools\ntools:\n\trm -rf $(BIN_DIR) && mkdir -p $(BIN_DIR)\n\t# goreleaser\n\tGOBIN=$(BIN_DIR) go install github.com/goreleaser/goreleaser@latest\n\n.PHONY: generate\ngenerate: proto\n\n.PHONY: docs\ndocs:\n\trm -rf docs && mkdir docs\n\trm -rf etc && mkdir -p etc/man/man1 && mkdir -p etc/completion\n\tXDG_STATE_HOME=/home/user/.local/state XDG_CONFIG_HOME=/home/user/.config XDG_RUNTIME_DIR=/run/user/1000 go run cmd/gendoc/main.go\n\n.PHONY: proto\nproto:\n\tdocker run -v $(CURDIR)/server:/defs namely/protoc-all -f server.proto -l go --go-source-relative -o .\n\tdocker run -v $(CURDIR)/host/api:/defs namely/protoc-all -f api.proto -l go --go-source-relative -o .\n\n.PHONY: build\nbuild:\n\tgo build -o $(BIN_DIR)/upterm ./cmd/upterm\n\tgo build -o $(BIN_DIR)/uptermd ./cmd/uptermd\n\tgo build -o $(BIN_DIR)/uptermd-fly ./cmd/uptermd-fly\n\n.PHONY: install\ninstall:\n\tgo install ./cmd/...\n\nTAG ?= latest\nREPO ?= ghcr.io/owenthereal/upterm/uptermd\nDOCKER_BUILD_FLAGS ?= --load\n.PHONY: docker_build\ndocker_build:\n\tdocker buildx build -t $(REPO):$(TAG) -f Dockerfile.uptermd $(DOCKER_BUILD_FLAGS) .\n\nGO_TEST_FLAGS ?= \"\"\n.PHONY: test\ntest:\n\tgo test $$(go list ./... | grep -v /e2e) -timeout=180s -coverprofile=c.out -covermode=atomic -count=1 -race -v $(GO_TEST_FLAGS)\n\n# E2E tests require tmux and UPTERM_E2E_SERVER env var\n# Example: UPTERM_E2E_SERVER=ssh://uptermd.upterm.dev:22 make test-e2e\n.PHONY: test-e2e\ntest-e2e:\n\tgo test ./internal/e2e/... -timeout=180s -count=1 -v $(GO_TEST_FLAGS)\n\n.PHONY: vet\nvet:\n\tdocker run --rm -v $(CURDIR):/app:z -w /app golangci/golangci-lint:latest golangci-lint run -v --timeout 15m --fix\n\nDOCKER_REPO ?= ghcr.io/owenthereal/upterm/uptermd\n.PHONY: goreleaser\ngoreleaser:\n\tDOCKER_REPO=$(DOCKER_REPO) goreleaser release --clean --snapshot --skip=publish\n" }, { "path": "Procfile", "content": "web: bin/uptermd --ssh-addr 0.0.0.0:2222 --ws-addr 0.0.0.0:$PORT --node-addr ${HEROKU_PRIVATE_IP:-0.0.0.0}:2222 --network mem\n" }, { "path": "README.md", "content": "# Upterm\n\n[Upterm](https://github.com/owenthereal/upterm) is an open-source tool enabling developers to share terminal sessions securely over the web. It’s perfect for remote pair programming, accessing computers behind NATs/firewalls, remote debugging, and more.\n\nThis is a [blog post](https://owenou.com/upterm) to describe Upterm in depth.\n\n## :movie_camera: Quick Demo\n\n[![demo](https://raw.githubusercontent.com/owenthereal/upterm/gh-pages/demo.gif)](https://asciinema.org/a/efeKPxxzKi3pkyu9LWs1yqdbB)\n\n## :rocket: Getting Started\n\n## Installation\n\n### Mac\n\n```console\nbrew install --cask owenthereal/upterm/upterm\n```\n\n#### Migrating from Formula to Cask\n\nIf you previously installed upterm using the Homebrew formula (without `--cask`), you'll need to migrate to the Cask version:\n\n```console\n# Uninstall the old formula version\nbrew uninstall upterm\n\n# Install the new Cask version\nbrew install --cask owenthereal/upterm/upterm\n```\n\n**Note:** Running `brew upgrade` with the old formula installed will fail with an error. Follow the migration steps above to resolve this.\n\n### Windows\n\n```powershell\nscoop bucket add upterm https://github.com/owenthereal/scoop-upterm\nscoop install upterm\n```\n\n### Standalone\n\n`upterm` can be easily installed as an executable. Download the latest [compiled binaries](https://github.com/owenthereal/upterm/releases) and put it in your executable path.\n\n### From source\n\n```console\ngit clone https://github.com/owenthereal/upterm.git\ncd upterm\ngo install ./cmd/upterm/...\n```\n\n## :wrench: Basic Usage\n\n1. Host starts a terminal session:\n\n ```console\n upterm host\n ```\n\n1. Host retrieves and shares the SSH connection string:\n\n ```console\n upterm session current\n ```\n\n1. Client connects using the shared string:\n\n ```console\n ssh TOKEN@uptermd.upterm.dev\n ```\n\n## :blue_book: Quick Reference\n\nDive into more commands and advanced usage in the [documentation](docs/upterm.md).\nBelow are some notable highlights:\n\n### Command Execution\n\nHost a session with any desired command:\n\n```console\nupterm host -- docker run --rm -ti ubuntu bash\n```\n\n### Access Control\n\nHost a session with specified client public key(s) authorized to connect:\n\n```console\nupterm host --authorized-keys PATH_TO_PUBLIC_KEY\n```\n\nAuthorize specified GitHub, GitLab, SourceHut, Codeberg users with their corresponding public keys:\n\n```console\nupterm host --github-user username\nupterm host --gitlab-user username\nupterm host --srht-user username\nupterm host --codeberg-user username\n```\n\n### Force command\n\nHost a session initiating `tmux new -t pair-programming`, while ensuring clients join with `tmux attach -t pair-programming`.\nThis mirrors functionality provided by tmate:\n\n```console\nupterm host --force-command 'tmux attach -t pair-programming' -- tmux new -t pair-programming\n```\n\n### File Transfer (SFTP/SCP)\n\nClients can transfer files using standard `scp` or `sftp` commands. The connection details are shown when running `upterm session current`:\n\n```console\n# Download a file from host\nscp -P PORT USER@HOST:/path/to/file.txt ./local/\n\n# Upload a file to host\nscp -P PORT ./local/file.txt USER@HOST:/path/to/destination/\n```\n\n**Security model:**\n\n- File transfers have the same access as the terminal session (clients can already access any file via the shell)\n- Without `--accept`, each file operation prompts the host for approval via a dialog\n- Use `--read-only` to restrict SFTP to downloads only (no uploads, deletes, or modifications)\n- Use `--no-sftp` to disable file transfers entirely\n\n### Local TCP Forwarding\n\nClients can use standard SSH local forwarding through a hosted session when the host opts in:\n\n```console\nupterm host --allow-local-tcp-forwarding\nssh -L 5555:127.0.0.1:8080 SESSION_SSH_USER@uptermd.upterm.dev\n```\n\n### WebSocket Connection\n\nIn scenarios where your host restricts ssh transport, establish a connection to `uptermd.upterm.dev` (or your self-hosted server) via WebSocket:\n\n```console\nupterm host --server wss://uptermd.upterm.dev -- bash\n```\n\nClients can connect to the host session via WebSocket as well:\n\n```console\nssh -o ProxyCommand='upterm proxy wss://TOKEN@uptermd.upterm.dev' TOKEN@uptermd.upterm.dev:443\n```\n\n### Debug GitHub Actions\n\n`upterm` can be integrated with GitHub Actions to enable real-time SSH debugging, allowing you to interact directly with the runner system during workflow execution. This is achieved through [action-upterm](https://github.com/owenthereal/action-upterm), which sets up an `upterm` session within your CI pipeline.\n\nTo get started, include `action-upterm` in your GitHub Actions workflow as follows:\n\n```yaml\nname: CI\non: [push]\njobs:\n build:\n runs-on: ubuntu-latest\n steps:\n - uses: actions/checkout@v2\n - name: Setup upterm session\n uses: owenthereal/action-upterm@v1\n```\n\nThis setup allows you to SSH into the workflow runner whenever you need to troubleshoot or inspect the execution environment. Find the SSH connection string in the `Checks` tab of your Pull Request or in the workflow logs.\n\nFor comprehensive details on configuring and using this integration, visit the [action-upterm GitHub repo](https://github.com/owenthereal/action-upterm).\n\n## :bulb: Tips\n\n### Resolving Tmux Session Display Issue\n\n**Issue**: The command `upterm session current` does not display the current session when used within Tmux.\n\n**Cause**: This occurs because `upterm session current` requires the `UPTERM_ADMIN_SOCKET` environment variable, which is set in the specified command. Tmux, however, does not carry over environment variables not on its default list to any Tmux session unless instructed to do so ([Reference](http://man.openbsd.org/i386/tmux.1#GLOBAL_AND_SESSION_ENVIRONMENT)).\n\n**Solution**: To rectify this, add the following line to your `~/.tmux.conf`:\n\n```conf\nset-option -ga update-environment \" UPTERM_ADMIN_SOCKET\"\n```\n\n### Identifying Upterm Session\n\n**Issue**: It might be unclear whether your shell command is running in an upterm session, especially with common shell commands like `bash` or `zsh`.\n\n**Solution**: Use `upterm session current -o go-template` to customize your shell prompt with session info. Add to your `~/.bashrc` or `~/.zshrc`:\n\n```bash\n# Show πŸ†™ emoji and connected client count when in upterm session\nexport PS1='$(upterm session current -o go-template=\"πŸ†™ {{.ClientCount}} \" 2>/dev/null)'\"$PS1\"\n```\n\n**Template variables available** (Go templates use PascalCase field names):\n\n- `{{.SessionID}}` - Session ID\n- `{{.ClientCount}}` - Number of connected clients\n- `{{.Host}}` - Server host\n- `{{.Command}}` - Command being shared\n- `{{.ForceCommand}}` - Force command (if set)\n\n> **Note**: JSON output (`-o json`) uses camelCase keys (e.g., `sessionId`, `clientCount`).\n>\n> **Tip**: The same template mechanism can be used for terminal titles or other integrations.\n\n**Alternative** (simpler, without client count):\n\n```bash\nexport PS1=\"$([[ ! -z \"${UPTERM_ADMIN_SOCKET}\" ]] && echo -e '\\xF0\\x9F\\x86\\x99 ')$PS1\"\n```\n\n## :gear: How it works\n\nUpterm starts an SSH server (a.k.a. `sshd`) in the host machine and sets up a reverse SSH tunnel to a [Upterm server](https://github.com/owenthereal/upterm/tree/master/cmd/uptermd) (a.k.a. `uptermd`).\nClients connect to a terminal session over the public internet via `uptermd` using `ssh` or `ssh` over WebSocket.\n\n![upterm flowchart](https://raw.githubusercontent.com/owenthereal/upterm/gh-pages/upterm-flowchart.svg?sanitize=true)\n\n## :hammer_and_wrench: Deployment\n\n### Kubernetes\n\nYou can deploy uptermd to a Kubernetes cluster. Install it with [helm](https://helm.sh):\n\n```console\nhelm repo add upterm https://upterm.dev\nhelm repo update\nhelm install uptermd upterm/uptermd\n```\n\n### Fly.io\n\nThe cheapest way to deploy a worry-free [Upterm server](https://github.com/owenthereal/upterm/tree/master/cmd/uptermd) (a.k.a. `uptermd`) is to use [Fly.io](https://fly.io).\nFly offers a generous free tier and excellent global performance. The official uptermd community server is hosted on Fly.\n\n1. Install the Fly CLI and authenticate:\n\n ```console\n curl -L https://fly.io/install.sh | sh\n flyctl auth login\n ```\n\n1. Copy and customize the [`fly.example.toml`](./fly.example.toml) file to `fly.toml` for your deployment configuration.\n1. Deploy your uptermd server:\n\n ```console\n flyctl deploy\n ```\n\nYour uptermd server will be available at `your-app-name.fly.dev`. You can connect using either SSH or WebSocket protocols.\n\n### Heroku\n\nYou can deploy an [Upterm server](https://github.com/owenthereal/upterm/tree/master/cmd/uptermd) (a.k.a. `uptermd`) to [Heroku](https://heroku.com).\nNote that Heroku discontinued their free tier in November 2022, so this option now requires paid plans.\n\nYou can deploy with one click of the following button:\n\n[![Deploy](https://www.herokucdn.com/deploy/button.svg)](https://heroku.com/deploy)\n\nYou can also automate the deployment with [Heroku Terraform](https://devcenter.heroku.com/articles/using-terraform-with-heroku).\nThe Heroku Terraform scripts are in the [terraform/heroku folder](./terraform/heroku).\nA [util script](./bin/heroku-install) is provided for your convenience to automate everything:\n\n```console\ngit clone https://github.com/owenthereal/upterm\ncd upterm\n```\n\nProvision uptermd in Heroku Common Runtime. Follow instructions.\n\n```console\nbin/heroku-install\n```\n\nProvision uptermd in Heroku Private Spaces. Follow instructions.\n\n```console\nTF_VAR_heroku_region=REGION TF_VAR_heroku_space=SPACE_NAME TF_VAR_heroku_team=TEAM_NAME bin/heroku-install\n```\n\nYou **must** use WebSocket as the protocol for a Heroku-deployed Uptermd server because the platform only support HTTP/HTTPS routing.\nThis is how you host a session and join a session:\n\nUse the Heroku-deployed Uptermd server via WebSocket\n\n```console\nupterm host --server wss://YOUR_HEROKU_APP_URL -- YOUR_COMMAND\n```\n\nA client connects to the host session via WebSocket\n\n```console\nssh -o ProxyCommand='upterm proxy wss://TOKEN@YOUR_HEROKU_APP_URL' TOKEN@YOUR_HEROKU_APP_URL:443\n```\n\n### Digital Ocean\n\nThere is an util script that makes provisioning [Digital Ocean Kubernetes](https://www.digitalocean.com/products/kubernetes) and an Upterm server easier:\n\n```bash\nTF_VAR_do_token=$DO_PAT \\\nTF_VAR_uptermd_host=uptermd.upterm.dev \\\nTF_VAR_uptermd_acme_email=YOUR_EMAIL \\\nTF_VAR_uptermd_helm_repo=http://localhost:8080 \\\nTF_VAR_uptermd_host_keys_dir=PATH_TO_HOST_KEYS \\\nbin/do-install\n```\n\n### Systemd\n\nA hardened systemd service is provided in `systemd/uptermd.service`. You can use it to easily run a\nsecured `uptermd` on your machine:\n\n```console\ncp systemd/uptermd.service /etc/systemd/system/uptermd.service\nsystemctl daemon-reload\nsystemctl start uptermd\n```\n\n### Traefik\n\nBelow is an example `docker-compose` configuration for deploying `uptermd` behind [Traefik](https://doc.traefik.io/traefik/), including support for both SSH and WebSocket connections:\n\n```yaml\nservices:\n upterm:\n build: \n context: https://github.com/owenthereal/upterm.git\n dockerfile: Dockerfile.uptermd\n labels:\n - \"traefik.enable=true\"\n - \"traefik.docker.network=web\"\n # SSH over TCP (port 2222)\n - \"traefik.tcp.services.uptermd.loadbalancer.server.port=2222\"\n - \"traefik.tcp.services.uptermd.loadbalancer.proxyProtocol.version=2\" # required for real IP forwarding over TCP\n - \"traefik.tcp.routers.uptermd.service=uptermd\"\n - \"traefik.tcp.routers.uptermd.rule=HostSNI(`*`)\"\n - \"traefik.tcp.routers.uptermd.entrypoints=uptermd\"\n # WebSocket over HTTPS (port 8443)\n - \"traefik.http.services.uptermd-wss.loadbalancer.server.port=8443\"\n - \"traefik.http.routers.uptermd-wss.service=uptermd-wss\"\n - \"traefik.http.routers.uptermd-wss.rule=Host(`upterm.example.com`)\" # edit as needed\n - \"traefik.http.routers.uptermd-wss.entrypoints=websecure\"\n - \"traefik.http.routers.uptermd-wss.tls.certresolver=\"\n\n command:\n - --ssh-addr=0.0.0.0:2222\n - --ws-addr=0.0.0.0:8443\n - --ssh-proxy-protocol\n\n networks:\n - web\n\nnetworks:\n web:\n external: true\n```\n\n**Important notes:**\n\n- **Proxy Protocol:**\n The `--ssh-proxy-protocol` flag (or `UPTERMD_SSH_PROXY_PROTOCOL=true` environment variable) tells `uptermd` to expect the [PROXY protocol](https://www.haproxy.org/download/1.8/doc/proxy-protocol.txt) header on incoming SSH connections. This is essential when using Traefik (or other TCP proxies like HAProxy or AWS ELB) to preserve the real client IP address.\n **If you enable `--ssh-proxy-protocol`, all incoming SSH connections must come through a proxy that supports and is configured to use the PROXY protocol. Direct SSH connections will fail, as `uptermd` will expect the protocol header.**\n\n- **Entrypoints:**\n Make sure to configure the appropriate [Traefik entrypoints](https://doc.traefik.io/traefik/routing/entrypoints/). This example uses two: one for SSH (`uptermd` on port `2222`) and one for WebSocket/HTTPS (`websecure` on port `443`).\n\n- **WebSocket:**\n The WebSocket service allows clients to connect to `uptermd` over HTTPS, which is useful in restrictive network environments.\n\n- **Certificates:**\n Replace `` with your actual Traefik certificate resolver for TLS.\n\nFor more details on Traefik TCP and HTTP routing, see the [Traefik documentation](https://doc.traefik.io/traefik/routing/overview/).\n\n### Restricting Host Registration\n\nBy default, any SSH client that can reach `uptermd` can register a session as a host.\nFor private or invite-only deployments, the `--authorized-keys` flag (or `UPTERMD_AUTHORIZED_KEYS` environment variable) restricts host registration to a specific set of public keys.\nThis mirrors OpenSSH's [`AuthorizedKeysFile`](https://man.openbsd.org/sshd_config#AuthorizedKeysFile) directive.\n\n```console\nuptermd --authorized-keys /etc/uptermd/authorized_keys\n```\n\nThe flag accepts standard `authorized_keys`-formatted files (one key per line, comments allowed) and may be repeated to compose keys from multiple sources:\n\n```console\nuptermd --authorized-keys /etc/uptermd/team.keys --authorized-keys /etc/uptermd/ops.keys\n```\n\nFiles are read once at startup; restart `uptermd` to pick up edits. Joiners (clients connecting to a session) are unaffected β€” they continue to be authorized by the host's own `authorized_keys`.\n\nFor the Helm chart, populate the `authorized_keys` value:\n\n```yaml\nauthorized_keys:\n - \"ssh-ed25519 AAAA... alice@laptop\"\n - \"ssh-ed25519 BBBB... bob@desktop\"\n```\n\n## :chart_with_upwards_trend: Monitoring\n\n`uptermd` exposes Prometheus metrics at the `/metrics` endpoint when configured with `--metric-addr` (or `UPTERMD_METRIC_ADDR` environment variable).\n\nAvailable metrics:\n\n- `routing_connections_count` (Counter) - Total number of SSH connections accepted\n- `routing_active_connections_count` (Gauge) - Current number of active SSH connections\n- `routing_connection_duration_seconds` (Histogram) - Connection duration in seconds\n- `routing_errors_count` (Counter) - Total number of connection errors\n- `routing_connection_timeout_count` (Counter) - Number of connections that timed out during establishment\n\n## :balance_scale: Comparison with Prior Arts\n\nUpterm stands as a modern alternative to [Tmate](https://github.com/tmate-io/tmate).\n\nTmate originates as a fork from an older iteration of Tmux, extending terminal sharing capabilities atop Tmux 2.x. However, Tmate has no plans to align with the latest Tmux updates, compelling Tmate & Tmux users to manage two separate configurations. For instance, the necessity to [bind identical keys twice, conditionally](https://github.com/tmate-io/tmate/issues/108).\n\nOn the flip side, Upterm is architected from the ground up to be an independent solution, not a fork. It embodies the idea of connecting the input & output of any shell command between a host and its clients, transcending beyond merely `tmux`. This paves the way for securely sharing terminal sessions utilizing containers.\n\nWritten in Go, Upterm is more hack-friendly compared to Tmate, which is crafted in C, akin to Tmux. The seamless compilation of Upterm CLI and server (`uptermd`) into a single binary facilitates swift [deployment of your pairing server](#hammer_and_wrench-deployment) across any cloud environment, devoid of dependencies.\n\n## License\n\n[Apache 2.0](https://github.com/owenthereal/upterm/blob/master/LICENSE)\n" }, { "path": "app.json", "content": "{\n \"name\": \"Upterm\",\n \"keywords\": [\n \"golang\",\n \"terminal\",\n \"upterm\",\n \"uptermd\"\n ],\n \"website\": \"https://upterm.dev\",\n \"success_url\": \"/getting-started\",\n \"description\": \"Secure Terminal Sharing\",\n \"repository\": \"https://github.com/owenthereal/upterm\",\n \"buildpacks\": [\n {\n \"url\": \"heroku/go\"\n }\n ]\n}" }, { "path": "charts/uptermd/.helmignore", "content": "# Patterns to ignore when building packages.\n# This supports shell glob matching, relative path matching, and\n# negation (prefixed with !). Only one pattern per line.\n.DS_Store\n# Common VCS dirs\n.git/\n.gitignore\n.bzr/\n.bzrignore\n.hg/\n.hgignore\n.svn/\n# Common backup files\n*.swp\n*.bak\n*.tmp\n*.orig\n*~\n# Various IDEs\n.project\n.idea/\n*.tmproj\n.vscode/\n" }, { "path": "charts/uptermd/Chart.yaml", "content": "apiVersion: v2\nname: uptermd\ndescription: Secure Terminal Sharing\ntype: application\nversion: 0.2.0\nappVersion: 0.14.3\nhome: https://upterm.dev\nsources:\n - https://github.com/owenthereal/upterm\ndependencies:\nmaintainers:\n - name: Owen Ou\n email: o@owenou.com\n url: https://github.com/owenthereal\n" }, { "path": "charts/uptermd/templates/NOTES.txt", "content": "Host a terminal session by running these commands:\n{{- if contains \"NodePort\" .Values.service.type }}\n export NODE_IP=$(kubectl get nodes --namespace {{ .Release.Namespace }} -o jsonpath=\"{.items[0].status.addresses[0].address}\")\n upterm host --server ssh://$NODE_IP:22 -- bash\n{{- else if contains \"LoadBalancer\" .Values.service.type }}\n NOTE: It may take a few minutes for the LoadBalancer IP to be available.\n You can watch the status of by running 'kubectl get --namespace {{ .Release.Namespace }} svc -w {{ include \"upterm.fullname\" . }}'\n\n export SERVICE_IP=$(kubectl get svc --namespace {{ .Release.Namespace }} {{ include \"upterm.fullname\" . }} --template \"{{\"{{ range (index .status.loadBalancer.ingress 0) }}{{.}}{{ end }}\"}}\")\n upterm host --server ssh://$SERVICE_IP:22 -- bash\n{{- else if contains \"ClusterIP\" .Values.service.type }}\n export POD_NAME=$(kubectl get pods --namespace {{ .Release.Namespace }} -l \"app.kubernetes.io/name={{ include \"upterm.name\" . }},app.kubernetes.io/instance={{ .Release.Name }}\" -o jsonpath=\"{.items[0].metadata.name}\")\n kubectl --namespace {{ .Release.Namespace }} port-forward $POD_NAME 2222:22\n upterm host --server ssh://localhost:2222 -- bash\n{{- end }}\n" }, { "path": "charts/uptermd/templates/_helpers.tpl", "content": "{{/* vim: set filetype=mustache: */}}\n{{/*\nExpand the name of the chart.\n*/}}\n{{- define \"upterm.name\" -}}\n{{- default .Chart.Name .Values.nameOverride | trunc 63 | trimSuffix \"-\" }}\n{{- end }}\n\n{{/*\nCreate a default fully qualified app name.\nWe truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec).\nIf release name contains chart name it will be used as a full name.\n*/}}\n{{- define \"upterm.fullname\" -}}\n{{- if .Values.fullnameOverride }}\n{{- .Values.fullnameOverride | trunc 63 | trimSuffix \"-\" }}\n{{- else }}\n{{- $name := default .Chart.Name .Values.nameOverride }}\n{{- if contains $name .Release.Name }}\n{{- .Release.Name | trunc 63 | trimSuffix \"-\" }}\n{{- else }}\n{{- printf \"%s-%s\" .Release.Name $name | trunc 63 | trimSuffix \"-\" }}\n{{- end }}\n{{- end }}\n{{- end }}\n\n{{/*\nCreate chart name and version as used by the chart label.\n*/}}\n{{- define \"upterm.chart\" -}}\n{{- printf \"%s-%s\" .Chart.Name .Chart.Version | replace \"+\" \"_\" | trunc 63 | trimSuffix \"-\" }}\n{{- end }}\n\n{{/*\nCommon labels\n*/}}\n{{- define \"upterm.labels\" -}}\nhelm.sh/chart: {{ include \"upterm.chart\" . }}\n{{ include \"upterm.selectorLabels\" . }}\n{{- if .Chart.AppVersion }}\napp.kubernetes.io/version: {{ .Chart.AppVersion | quote }}\n{{- end }}\napp.kubernetes.io/managed-by: {{ .Release.Service }}\n{{- end }}\n\n{{/*\nSelector labels\n*/}}\n{{- define \"upterm.selectorLabels\" -}}\napp.kubernetes.io/name: {{ include \"upterm.name\" . }}\napp.kubernetes.io/instance: {{ .Release.Name }}\n{{- end }}\n\n{{/*\nCreate the name of the service account to use\n*/}}\n{{- define \"upterm.serviceAccountName\" -}}\n{{- if .Values.serviceAccount.create }}\n{{- default (include \"upterm.fullname\" .) .Values.serviceAccount.name }}\n{{- else }}\n{{- default \"default\" .Values.serviceAccount.name }}\n{{- end }}\n{{- end }}\n" }, { "path": "charts/uptermd/templates/configmap.yaml", "content": "{{- if gt (len .Values.authorized_keys) 0 }}\napiVersion: v1\nkind: ConfigMap\nmetadata:\n name: {{ include \"upterm.fullname\" . }}\n labels:\n {{- include \"upterm.labels\" . | nindent 4 }}\ndata:\n authorized_keys: |-\n {{- range .Values.authorized_keys }}\n {{- . | nindent 4 }}\n {{- end }}\n{{- end }}\n" }, { "path": "charts/uptermd/templates/deployment.yaml", "content": "apiVersion: apps/v1\nkind: Deployment\nmetadata:\n name: {{ include \"upterm.fullname\" . }}\n labels:\n {{- include \"upterm.labels\" . | nindent 4 }}\nspec:\n{{- if not .Values.autoscaling.enabled }}\n replicas: {{ .Values.replicaCount }}\n{{- end }}\n selector:\n matchLabels:\n {{- include \"upterm.selectorLabels\" . | nindent 6 }}\n template:\n metadata:\n {{- with .Values.podAnnotations }}\n annotations:\n {{- toYaml . | nindent 8 }}\n {{- end }}\n labels:\n {{- include \"upterm.selectorLabels\" . | nindent 8 }}\n spec:\n {{- with .Values.imagePullSecrets }}\n imagePullSecrets:\n {{- toYaml . | nindent 8 }}\n {{- end }}\n serviceAccountName: {{ include \"upterm.serviceAccountName\" . }}\n securityContext:\n {{- toYaml .Values.podSecurityContext | nindent 8 }}\n containers:\n - name: {{ .Chart.Name }}\n securityContext:\n {{- toYaml .Values.securityContext | nindent 12 }}\n image: \"{{ .Values.image.repository }}:{{ .Values.image.tag | default .Chart.AppVersion }}\"\n imagePullPolicy: {{ .Values.image.pullPolicy }}\n args:\n - --ssh-addr\n - $(POD_IP):22\n {{- if .Values.websocket.enabled }}\n - --ws-addr\n - $(POD_IP):80\n {{- end }}\n {{- if gt (len .Values.authorized_keys) 0 }}\n - --authorized-keys\n - /etc/uptermd/authorized_keys\n {{- end }}\n - --node-addr\n - $(POD_IP):22\n - --hostname\n - {{ .Values.hostname }}\n {{- range $key, $val := .Values.host_keys }}\n {{ if hasSuffix \".pub\" $key }}\n {{ else }}\n - --private-key\n - /host-keys/{{ $key }}\n {{- end }}\n {{- end }}\n - --network\n - mem\n - --metric-addr\n - $(POD_IP):9090\n {{- if .Values.debug }}\n - --debug\n {{- end }}\n env:\n - name: POD_IP\n valueFrom:\n fieldRef:\n fieldPath: status.podIP\n ports:\n - containerPort: 22\n name: sshd\n {{- if .Values.websocket.enabled }}\n - containerPort: 80\n name: ws\n {{- end }}\n - containerPort: 9090\n name: exporter\n readinessProbe:\n tcpSocket:\n port: 22\n periodSeconds: 10\n livenessProbe:\n tcpSocket:\n port: 22\n periodSeconds: 20\n resources:\n {{- toYaml .Values.resources | nindent 12 }}\n volumeMounts:\n - mountPath: /host-keys\n name: host-keys\n {{- if gt (len .Values.authorized_keys) 0 }}\n - mountPath: /etc/uptermd\n name: authorized-keys\n {{- end }}\n volumes:\n - name: host-keys\n secret:\n secretName: {{ include \"upterm.fullname\" . }}\n defaultMode: 0600\n {{- if gt (len .Values.authorized_keys) 0 }}\n - name: authorized-keys\n configMap:\n name: {{ include \"upterm.fullname\" . }}\n {{- end }}\n {{- with .Values.nodeSelector }}\n nodeSelector:\n {{- toYaml . | nindent 8 }}\n {{- end }}\n {{- with .Values.affinity }}\n affinity:\n {{- toYaml . | nindent 8 }}\n {{- end }}\n {{- with .Values.tolerations }}\n tolerations:\n {{- toYaml . | nindent 8 }}\n {{- end }}\n" }, { "path": "charts/uptermd/templates/hpa.yaml", "content": "{{- if .Values.autoscaling.enabled }}\napiVersion: autoscaling/v2\nkind: HorizontalPodAutoscaler\nmetadata:\n name: {{ include \"upterm.fullname\" . }}\n labels:\n {{- include \"upterm.labels\" . | nindent 4 }}\nspec:\n scaleTargetRef:\n apiVersion: apps/v1\n kind: Deployment\n name: {{ include \"upterm.fullname\" . }}\n minReplicas: {{ .Values.autoscaling.minReplicas }}\n maxReplicas: {{ .Values.autoscaling.maxReplicas }}\n metrics:\n {{- if .Values.autoscaling.targetCPUUtilizationPercentage }}\n - type: Resource\n resource:\n name: cpu\n target:\n type: Utilization\n averageUtilization: {{ .Values.autoscaling.targetCPUUtilizationPercentage }}\n {{- end }}\n {{- if .Values.autoscaling.targetMemoryUtilizationPercentage }}\n - type: Resource\n resource:\n name: memory\n target:\n type: Utilization\n averageUtilization: {{ .Values.autoscaling.targetMemoryUtilizationPercentage }}\n {{- end }}\n{{- end }}\n" }, { "path": "charts/uptermd/templates/ingress.yaml", "content": "{{- if .Values.websocket.enabled }}\napiVersion: networking.k8s.io/v1\nkind: Ingress\nmetadata:\n name: {{ include \"upterm.fullname\" . }}\n labels:\n {{- include \"upterm.labels\" . | nindent 4 }}\n annotations:\n kubernetes.io/ingress.class: {{ .Values.websocket.ingress_nginx_ingress_class }}\n nginx.ingress.kubernetes.io/proxy-send-timeout: \"3600\"\n nginx.ingress.kubernetes.io/proxy-read-timeout: \"3600\"\n nginx.ingress.kubernetes.io/limit-connections: \"4\"\n nginx.ingress.kubernetes.io/limit-rps: \"5\"\n cert-manager.io/issuer: {{ include \"upterm.fullname\" . }}-letsencrypt\n {{- with .Values.websocket.ingress.annotations }}\n {{- toYaml . | nindent 4 }}\n {{- end }}\nspec:\n tls:\n - hosts:\n - {{ .Values.hostname }}\n secretName: {{ .Values.hostname | replace \".\" \"-\" }}-tls\n rules:\n - host: {{ .Values.hostname }}\n http:\n paths:\n - path: /\n pathType: Prefix\n backend:\n service:\n name: {{ include \"upterm.fullname\" . }}\n port:\n number: 80\n{{- end }}\n" }, { "path": "charts/uptermd/templates/issuer.yaml", "content": "{{- if .Values.websocket.enabled }}\napiVersion: cert-manager.io/v1\nkind: Issuer\nmetadata:\n name: {{ include \"upterm.fullname\" . }}-letsencrypt\n labels:\n {{- include \"upterm.labels\" . | nindent 4 }}\nspec:\n acme:\n # The ACME server URL\n server: https://acme-v02.api.letsencrypt.org/directory\n # Email address used for ACME registration\n email: {{ .Values.websocket.cert_manager_acme_email }}\n # Name of a secret used to store the ACME account private key\n privateKeySecretRef:\n name: {{ include \"upterm.fullname\" . }}-letsencrypt\n # Enable the HTTP-01 challenge provider\n solvers:\n - http01:\n ingress:\n class: {{ .Values.websocket.ingress_nginx_ingress_class }}\n{{- end }}\n" }, { "path": "charts/uptermd/templates/secret.yaml", "content": "apiVersion: v1\nkind: Secret\nmetadata:\n name: {{ include \"upterm.fullname\" . }}\n labels:\n {{- include \"upterm.labels\" . | nindent 4 }}\ntype: Opaque\ndata:\n {{- range $key, $val := .Values.host_keys }}\n {{ $key }}: {{ $val }}\n {{- end }}\n" }, { "path": "charts/uptermd/templates/service.yaml", "content": "apiVersion: v1\nkind: Service\nmetadata:\n name: {{ include \"upterm.fullname\" . }}\n labels:\n {{- include \"upterm.labels\" . | nindent 4 }}\n {{- with .Values.service.annotations }}\n annotations:\n {{- toYaml . | nindent 4 }}\n {{- end }}\nspec:\n type: {{ .Values.service.type }}\n ports:\n - port: 22\n protocol: TCP\n targetPort: 22\n name: sshd\n {{- if .Values.websocket.enabled }}\n - port: 80\n protocol: TCP\n targetPort: 80\n name: ws\n {{- end }}\n selector:\n {{- include \"upterm.selectorLabels\" . | nindent 4 }}\n" }, { "path": "charts/uptermd/templates/serviceaccount.yaml", "content": "{{- if .Values.serviceAccount.create -}}\napiVersion: v1\nkind: ServiceAccount\nmetadata:\n name: {{ include \"upterm.serviceAccountName\" . }}\n labels:\n {{- include \"upterm.labels\" . | nindent 4 }}\n {{- with .Values.serviceAccount.annotations }}\n annotations:\n {{- toYaml . | nindent 4 }}\n {{- end }}\n{{- end }}\n" }, { "path": "charts/uptermd/templates/tests/test-connection.yaml", "content": "apiVersion: v1\nkind: Pod\nmetadata:\n name: \"{{ include \"upterm.fullname\" . }}-test-connection\"\n labels:\n {{- include \"upterm.labels\" . | nindent 4 }}\n annotations:\n \"helm.sh/hook\": test-success\nspec:\n containers:\n - name: wget\n image: busybox\n command: ['wget']\n args: ['{{ include \"upterm.fullname\" . }}:{{ .Values.service.port }}']\n restartPolicy: Never\n" }, { "path": "charts/uptermd/values.yaml", "content": "# Default values for upterm.\n# This is a YAML-formatted file.\n# Declare variables to be passed into your templates.\n\nreplicaCount: 1\n\nimage:\n repository: ghcr.io/owenthereal/upterm/uptermd\n pullPolicy: Always\n # Overrides the image tag whose default is the chart appVersion.\n tag: latest\n\nimagePullSecrets: []\nnameOverride: \"\"\nfullnameOverride: \"\"\n\ndebug: false\n\nserviceAccount:\n # Specifies whether a service account should be created\n create: true\n # Annotations to add to the service account\n annotations: {}\n # The name of the service account to use.\n # If not set and create is true, a name is generated using the fullname template\n name: \"\"\n\npodAnnotations: {}\n\npodSecurityContext: {}\n # fsGroup: 2000\n\nsecurityContext: {}\n # capabilities:\n # drop:\n # - ALL\n # readOnlyRootFilesystem: true\n # runAsNonRoot: true\n # runAsUser: 1000\n\nservice:\n type: ClusterIP\n # Set to LoadBalancer to accept traffic from outside the cluster\n # type: LoadBalancer\n annotations: {}\n\nresources: \n limits:\n cpu: 100m\n memory: 512Mi\n requests:\n cpu: 100m\n memory: 512Mi\n\nautoscaling:\n enabled: false\n minReplicas: 1\n maxReplicas: 10\n targetCPUUtilizationPercentage: 80\n targetMemoryUtilizationPercentage: 80\n\nnodeSelector: {}\n\ntolerations: []\n\naffinity: {}\n\nhost_keys: {}\n\n# SSH public keys (in `authorized_keys` line format, one entry per list item)\n# permitted to register as hosts on this uptermd. When empty, any client may\n# register. Edits require restarting uptermd to take effect.\n# Example:\n# authorized_keys:\n# - \"ssh-ed25519 AAAA... alice@laptop\"\n# - \"ssh-ed25519 BBBB... bob@desktop\"\nauthorized_keys: []\n\nhostname: my-upterm-host\n\n# Require ingress-nginx & cert-manager\nwebsocket:\n enabled: false\n cert_manager_acme_email: your_email\n ingress_nginx_ingress_class: nginx\n ingress:\n annotations: {}\n" }, { "path": "cmd/gendoc/main.go", "content": "package main\n\nimport (\n\t\"os\"\n\n\t\"github.com/owenthereal/upterm/cmd/upterm/command\"\n\t\"github.com/owenthereal/upterm/internal/logging\"\n\t\"github.com/owenthereal/upterm/internal/version\"\n\t\"github.com/spf13/cobra/doc\"\n)\n\nfunc main() {\n\tlogger := logging.Must(logging.Console()).With(\"component\", \"gendoc\")\n\tdefer func() {\n\t\t_ = logger.Close()\n\t}()\n\n\t// Note: XDG environment variables should be set externally before running this command\n\t// to generate docs with generic paths instead of machine-specific paths.\n\t// See Makefile 'docs' target for proper environment variable setup.\n\trootCmd := command.Root()\n\n\tif err := doc.GenMarkdownTree(rootCmd, \"./docs\"); err != nil {\n\t\tlogger.Error(\"failed generating markdown docs\", \"error\", err)\n\t\tos.Exit(1)\n\t}\n\n\theader := &doc.GenManHeader{\n\t\tTitle: \"UPTERM\",\n\t\tSection: \"1\",\n\t\tSource: \"Upterm \" + version.String(),\n\t\tManual: \"Upterm Manual\",\n\t}\n\tif err := doc.GenManTree(rootCmd, header, \"./etc/man/man1\"); err != nil {\n\t\tlogger.Error(\"failed generating man pages\", \"error\", err)\n\t\tos.Exit(1)\n\t}\n\n\tif err := rootCmd.GenBashCompletionFile(\"./etc/completion/upterm.bash_completion.sh\"); err != nil {\n\t\tlogger.Error(\"failed generating bash completion\", \"error\", err)\n\t\tos.Exit(1)\n\t}\n\tif err := rootCmd.GenZshCompletionFile(\"./etc/completion/upterm.zsh_completion\"); err != nil {\n\t\tlogger.Error(\"failed generating zsh completion\", \"error\", err)\n\t\tos.Exit(1)\n\t}\n}\n" }, { "path": "cmd/upterm/command/config.go", "content": "package command\n\nimport (\n\t\"fmt\"\n\t\"os\"\n\t\"os/exec\"\n\t\"runtime\"\n\n\t\"github.com/owenthereal/upterm/utils\"\n\t\"github.com/spf13/cobra\"\n\t\"github.com/spf13/viper\"\n)\n\nfunc configCmd() *cobra.Command {\n\tconfigPath := utils.UptermConfigFilePath()\n\tcmd := &cobra.Command{\n\t\tUse: \"config\",\n\t\tShort: \"Manage upterm configuration\",\n\t\tLong: fmt.Sprintf(`Manage upterm configuration file.\n\nConfig file: %s\n\nThis follows the XDG Base Directory Specification.\n\nConfiguration priority (highest to lowest):\n 1. Command-line flags\n 2. Environment variables (UPTERM_ prefix)\n 3. Config file\n 4. Default values`, configPath),\n\t}\n\n\tcmd.AddCommand(configPathCmd())\n\tcmd.AddCommand(configViewCmd())\n\tcmd.AddCommand(configEditCmd())\n\n\treturn cmd\n}\n\nfunc configPathCmd() *cobra.Command {\n\tconfigPath := utils.UptermConfigFilePath()\n\tcmd := &cobra.Command{\n\t\tUse: \"path\",\n\t\tShort: \"Show the path to the config file\",\n\t\tLong: fmt.Sprintf(`Show the path to the config file.\n\nConfig file: %s\n\nThe config file is optional and created manually by users.`, configPath),\n\t\tExample: ` # Show config file path:\n upterm config path\n\n # Create config file directory:\n mkdir -p \"$(dirname \"$(upterm config path)\")\"`,\n\t\tRunE: configPathRunE,\n\t}\n\n\treturn cmd\n}\n\nfunc configViewCmd() *cobra.Command {\n\tconfigPath := utils.UptermConfigFilePath()\n\tcmd := &cobra.Command{\n\t\tUse: \"view\",\n\t\tShort: \"View the config file contents\",\n\t\tLong: fmt.Sprintf(`View the config file contents.\n\nConfig file: %s\n\nIf the config file exists, this command displays its contents. If it doesn't\nexist, this command shows an example config file that you can use as a template.`, configPath),\n\t\tExample: ` # View current config:\n upterm config view\n\n # View and save as new config:\n upterm config view > \"$(upterm config path)\"`,\n\t\tRunE: configViewRunE,\n\t}\n\n\treturn cmd\n}\n\nfunc configEditCmd() *cobra.Command {\n\tconfigPath := utils.UptermConfigFilePath()\n\tcmd := &cobra.Command{\n\t\tUse: \"edit\",\n\t\tShort: \"Edit the config file\",\n\t\tLong: fmt.Sprintf(`Edit the config file in your default editor.\n\nConfig file: %s\n\nThis command opens the config file in your editor (determined by $VISUAL, $EDITOR,\nor a sensible default). If the config file doesn't exist, it creates a template\nwith example settings and comments.\n\nThe config directory is created automatically if it doesn't exist.`, configPath),\n\t\tExample: ` # Edit config file:\n upterm config edit\n\n # Use a specific editor:\n EDITOR=nano upterm config edit`,\n\t\tRunE: configEditRunE,\n\t}\n\n\treturn cmd\n}\n\nfunc configPathRunE(c *cobra.Command, args []string) error {\n\tconfigPath := utils.UptermConfigFilePath()\n\tfmt.Println(configPath)\n\treturn nil\n}\n\nfunc configViewRunE(c *cobra.Command, args []string) error {\n\tconfigPath := utils.UptermConfigFilePath()\n\n\t// Check if file exists\n\tif _, err := os.Stat(configPath); os.IsNotExist(err) {\n\t\t// Show example config\n\t\tfmt.Println(\"# Config file does not exist. Example config:\")\n\t\tfmt.Println()\n\t\tfmt.Print(exampleConfig())\n\t\treturn nil\n\t}\n\n\t// Read and display file\n\tcontent, err := os.ReadFile(configPath)\n\tif err != nil {\n\t\treturn fmt.Errorf(\"failed to read config file: %w\", err)\n\t}\n\n\tfmt.Print(string(content))\n\treturn nil\n}\n\nfunc configEditRunE(c *cobra.Command, args []string) error {\n\tconfigPath := utils.UptermConfigFilePath()\n\tconfigDir := utils.UptermConfigDir()\n\n\t// Create config directory if it doesn't exist\n\tif err := os.MkdirAll(configDir, 0755); err != nil {\n\t\treturn fmt.Errorf(\"failed to create config directory: %w\", err)\n\t}\n\n\t// Create example config if file doesn't exist\n\tif _, err := os.Stat(configPath); os.IsNotExist(err) {\n\t\tif err := os.WriteFile(configPath, []byte(exampleConfig()), 0600); err != nil {\n\t\t\treturn fmt.Errorf(\"failed to create config file: %w\", err)\n\t\t}\n\t}\n\n\t// Determine editor to use\n\teditor := getEditor()\n\n\t// Open editor\n\tcmd := exec.Command(editor, configPath)\n\tcmd.Stdin = os.Stdin\n\tcmd.Stdout = os.Stdout\n\tcmd.Stderr = os.Stderr\n\n\tif err := cmd.Run(); err != nil {\n\t\treturn fmt.Errorf(\"failed to open editor: %w\", err)\n\t}\n\n\t// Validate config after editing\n\tif err := validateConfig(configPath); err != nil {\n\t\tfmt.Fprintf(os.Stderr, \"Warning: config file has syntax errors: %v\\n\", err)\n\t\tfmt.Fprintf(os.Stderr, \"Edit again with 'upterm config edit' or view with 'upterm config view'.\\n\")\n\t}\n\n\treturn nil\n}\n\n// getEditor returns the editor to use, checking $VISUAL, $EDITOR, then defaults.\nfunc getEditor() string {\n\t// Check $VISUAL first (for full-screen editors)\n\tif editor := os.Getenv(\"VISUAL\"); editor != \"\" {\n\t\treturn editor\n\t}\n\n\t// Check $EDITOR (for line editors)\n\tif editor := os.Getenv(\"EDITOR\"); editor != \"\" {\n\t\treturn editor\n\t}\n\n\t// Platform-specific defaults\n\tswitch runtime.GOOS {\n\tcase \"windows\":\n\t\treturn \"notepad\"\n\tdefault:\n\t\t// Unix-like systems: prefer nano for better UX, fall back to vi\n\t\tif _, err := exec.LookPath(\"nano\"); err == nil {\n\t\t\treturn \"nano\"\n\t\t}\n\t\treturn \"vi\"\n\t}\n}\n\n// validateConfig validates the config file by attempting to parse it.\nfunc validateConfig(path string) error {\n\tv := viper.New()\n\tv.SetConfigFile(path)\n\treturn v.ReadInConfig()\n}\n\n// exampleConfig returns an example config file with comments.\nfunc exampleConfig() string {\n\treturn `# Upterm Configuration File\n#\n# This file follows the XDG Base Directory Specification.\n# Settings here are overridden by environment variables (UPTERM_*) and command-line flags.\n#\n# Configuration priority (highest to lowest):\n# 1. Command-line flags\n# 2. Environment variables (UPTERM_* prefix)\n# 3. This config file\n# 4. Default values\n\n# Debug logging (default: false)\n# When enabled, writes debug-level logs to the log file.\n# debug: true\n\n# Default server address for hosting sessions (default: ssh://uptermd.upterm.dev:22)\n# Supported protocols: ssh, ws, wss\n# server: ssh://uptermd.upterm.dev:22\n\n# Force a specific command for clients (default: none)\n# When set, clients cannot run arbitrary commands.\n# Use YAML array syntax: [\"command\", \"arg1\", \"arg2\"]\n# force-command: [\"/bin/bash\", \"-l\"]\n\n# Path to authorized_keys file for client authentication (default: none)\n# authorized-keys: /path/to/authorized_keys\n\n# Paths to private key files (default: generates ephemeral key)\n# private-key:\n# - /path/to/private/key1\n# - /path/to/private/key2\n\n# Read-only mode (default: false)\n# When enabled, clients can view but not interact with the session.\n# read-only: false\n\n# Allow clients to use SSH local TCP forwarding (ssh -L) (default: false)\n# When enabled, clients can reach TCP destinations visible to the host.\n# Cannot be combined with read-only.\n# allow-local-tcp-forwarding: false\n\n# Auto-accept clients without confirmation (default: false)\n# WARNING: Only use this in trusted environments.\n# accept: false\n\n# Hide client IP addresses from logs and display (default: false)\n# hide-client-ip: false\n`\n}\n" }, { "path": "cmd/upterm/command/host.go", "content": "package command\n\nimport (\n\t\"context\"\n\t\"errors\"\n\t\"fmt\"\n\t\"log/slog\"\n\t\"net\"\n\t\"net/url\"\n\t\"os\"\n\t\"path/filepath\"\n\t\"time\"\n\n\ttea \"github.com/charmbracelet/bubbletea\"\n\t\"github.com/gen2brain/beeep\"\n\t\"github.com/google/shlex\"\n\t\"github.com/hashicorp/go-multierror\"\n\t\"github.com/owenthereal/upterm/cmd/upterm/command/internal/tui\"\n\t\"github.com/owenthereal/upterm/host\"\n\t\"github.com/owenthereal/upterm/host/api\"\n\t\"github.com/owenthereal/upterm/host/sftp\"\n\t\"github.com/owenthereal/upterm/icon\"\n\tuptermctx \"github.com/owenthereal/upterm/internal/context\"\n\t\"github.com/spf13/cobra\"\n\t\"golang.org/x/crypto/ssh\"\n)\n\n// UserDiscardedError represents a user's intentional choice to discard the session\ntype UserDiscardedError struct{}\n\nfunc (e UserDiscardedError) Error() string {\n\treturn \"session discarded by user\"\n}\n\n// UserInterruptedError represents a user's Ctrl+C interruption\ntype UserInterruptedError struct{}\n\nfunc (e UserInterruptedError) Error() string {\n\treturn \"interrupted by user\"\n}\n\n// SilentError wraps an error that has already been displayed to the user.\n// main.go checks for this type to avoid duplicate logging.\ntype SilentError struct {\n\tErr error\n}\n\nfunc (e SilentError) Error() string {\n\treturn e.Err.Error()\n}\n\nfunc (e SilentError) Unwrap() error {\n\treturn e.Err\n}\n\nvar (\n\tflagServer string\n\tflagForceCommand string\n\tflagPrivateKeys []string\n\tflagKnownHostsFilename string\n\tflagAuthorizedKeys string\n\tflagCodebergUsers []string\n\tflagGitHubUsers []string\n\tflagGitLabUsers []string\n\tflagSourceHutUsers []string\n\tflagReadOnly bool\n\tflagAccept bool\n\tflagSkipHostKeyCheck bool\n\tflagNoSFTP bool\n\tflagAllowLocalTCPForwarding bool\n)\n\nfunc hostCmd() *cobra.Command {\n\tcmd := &cobra.Command{\n\t\tUse: \"host\",\n\t\tShort: \"Host a terminal session\",\n\t\tLong: `Host a terminal session via a reverse SSH tunnel to the Upterm server.\n\nThe session links the host and client IO to a command's IO. Authentication with the\nUpterm server uses private keys in this order:\n 1. Private key files: ~/.ssh/id_dsa, ~/.ssh/id_ecdsa, ~/.ssh/id_ed25519, ~/.ssh/id_rsa\n 2. SSH Agent keys\n 3. Auto-generated ephemeral key (if no keys found)\n\nTo authorize client connections, use --authorized-keys to specify an authorized_keys file\ncontaining client public keys.`,\n\t\tExample: ` # Host a terminal session running $SHELL, attaching client's IO to the host's:\n upterm host\n\n # Accept client connections automatically without prompts:\n upterm host --accept\n\n # Host a terminal session allowing only specified public key(s) to connect:\n upterm host --authorized-keys PATH_TO_AUTHORIZED_KEY_FILE\n\n # Host a session executing a custom command:\n upterm host -- docker run --rm -ti ubuntu bash\n\n # Host a 'tmux new -t pair-programming' session, forcing clients to join with 'tmux attach -t pair-programming':\n upterm host --force-command 'tmux attach -t pair-programming' -- tmux new -t pair-programming\n\n # Allow clients to use local TCP forwarding (ssh -L) through the hosted session:\n upterm host --allow-local-tcp-forwarding\n\n # Use a different Uptermd server, hosting a session via WebSocket:\n upterm host --server wss://YOUR_UPTERMD_SERVER -- YOUR_COMMAND`,\n\t\tPreRunE: validateShareRequiredFlags,\n\t\tRunE: shareRunE,\n\t}\n\n\thomeDir, err := os.UserHomeDir()\n\tif err != nil {\n\t\tslog.Error(\"error getting user home directory\", \"error\", err)\n\t\tos.Exit(1)\n\t}\n\n\tcmd.PersistentFlags().StringVarP(&flagServer, \"server\", \"\", \"ssh://uptermd.upterm.dev:22\", \"Specify the upterm server address (required). Supported protocols: ssh, ws, wss.\")\n\tcmd.PersistentFlags().StringVarP(&flagForceCommand, \"force-command\", \"f\", \"\", \"Enforce a specified command for clients to join, and link the command's input/output to the client's terminal.\")\n\tcmd.PersistentFlags().StringSliceVarP(&flagPrivateKeys, \"private-key\", \"i\", defaultPrivateKeys(homeDir), \"Specify private key files for public key authentication with the upterm server (required).\")\n\tcmd.PersistentFlags().StringVarP(&flagKnownHostsFilename, \"known-hosts\", \"\", defaultKnownHost(homeDir), \"Specify a file containing known keys for remote hosts (required).\")\n\tcmd.PersistentFlags().StringVar(&flagAuthorizedKeys, \"authorized-keys\", \"\", \"Specify a authorize_keys file listing authorized public keys for connection.\")\n\tcmd.PersistentFlags().StringSliceVar(&flagCodebergUsers, \"codeberg-user\", nil, \"Authorize specified Codeberg users by allowing their public keys to connect.\")\n\tcmd.PersistentFlags().StringSliceVar(&flagGitHubUsers, \"github-user\", nil, \"Authorize specified GitHub users by allowing their public keys to connect. Configure GitHub CLI environment variables as needed; see https://cli.github.com/manual/gh_help_environment for details.\")\n\tcmd.PersistentFlags().StringSliceVar(&flagGitLabUsers, \"gitlab-user\", nil, \"Authorize specified GitLab users by allowing their public keys to connect.\")\n\tcmd.PersistentFlags().StringSliceVar(&flagSourceHutUsers, \"srht-user\", nil, \"Authorize specified SourceHut users by allowing their public keys to connect.\")\n\tcmd.PersistentFlags().BoolVar(&flagAccept, \"accept\", false, \"Automatically accept client connections without prompts.\")\n\tcmd.PersistentFlags().BoolVarP(&flagReadOnly, \"read-only\", \"r\", false, \"Host a read-only session, preventing client interaction. Also restricts SFTP to download-only.\")\n\tcmd.PersistentFlags().BoolVar(&flagHideClientIP, \"hide-client-ip\", false, \"Hide client IP addresses from output (auto-enabled in CI environments).\")\n\tcmd.PersistentFlags().BoolVar(&flagSkipHostKeyCheck, \"skip-host-key-check\", false, \"Automatically accept unknown server host keys and add them to known_hosts (similar to SSH's StrictHostKeyChecking=accept-new). This bypasses host key verification for new connections.\")\n\tcmd.PersistentFlags().BoolVar(&flagNoSFTP, \"no-sftp\", false, \"Disable file transfer via SFTP/SCP. By default, clients can transfer files with the same access as the terminal session.\")\n\tcmd.PersistentFlags().BoolVar(&flagAllowLocalTCPForwarding, \"allow-local-tcp-forwarding\", false, \"Allow clients to use SSH local TCP forwarding (ssh -L) through the hosted session, reaching TCP destinations visible to the host.\")\n\n\treturn cmd\n}\n\nfunc validateShareRequiredFlags(c *cobra.Command, args []string) error {\n\tvar result error\n\n\tif flagReadOnly && flagAllowLocalTCPForwarding {\n\t\tresult = multierror.Append(result, fmt.Errorf(\"--read-only and --allow-local-tcp-forwarding cannot be used together: a read-only session must not permit network pivoting through the host\"))\n\t}\n\n\tif flagServer == \"\" {\n\t\tresult = multierror.Append(result, fmt.Errorf(\"missing flag --server\"))\n\t} else {\n\t\tu, err := url.Parse(flagServer)\n\t\tif err != nil {\n\t\t\tresult = multierror.Append(result, fmt.Errorf(\"error parsing server URL: %w\", err))\n\t\t}\n\n\t\tif u != nil {\n\t\t\tif u.Scheme != \"ssh\" && u.Scheme != \"ws\" && u.Scheme != \"wss\" {\n\t\t\t\tresult = multierror.Append(result, fmt.Errorf(\"unsupported server protocol %s\", u.Scheme))\n\t\t\t}\n\n\t\t\tif u.Scheme == \"ssh\" {\n\t\t\t\t_, _, err := net.SplitHostPort(u.Host)\n\t\t\t\tif err != nil {\n\t\t\t\t\tresult = multierror.Append(result, err)\n\t\t\t\t}\n\t\t\t}\n\n\t\t\t// set default ports for ws or wss\n\t\t\tif u.Scheme == \"ws\" && u.Port() == \"\" {\n\t\t\t\tu.Host = u.Host + \":80\"\n\t\t\t\tflagServer = u.String()\n\t\t\t}\n\t\t\tif u.Scheme == \"wss\" && u.Port() == \"\" {\n\t\t\t\tu.Host = u.Host + \":443\"\n\t\t\t\tflagServer = u.String()\n\t\t\t}\n\t\t}\n\t}\n\n\treturn result\n}\n\nfunc shareRunE(c *cobra.Command, args []string) error {\n\t// Early TTY check: if interactive confirmation is needed but no TTY is available, fail fast\n\t// before making any network connections. This provides clear feedback and avoids orphan sessions.\n\tif !flagAccept && !tui.IsTTY() {\n\t\tc.SilenceUsage = true\n\t\tc.SilenceErrors = true\n\t\tfmt.Fprintln(os.Stderr, \"Error: interactive confirmation requires a terminal (TTY)\")\n\t\tfmt.Fprintln(os.Stderr)\n\t\tfmt.Fprintln(os.Stderr, \"To run in non-interactive environments (CI, scripts, etc.), use --accept:\")\n\t\tfmt.Fprintln(os.Stderr, \" upterm host --accept [command]\")\n\t\treturn SilentError{Err: errors.New(\"no TTY available\")}\n\t}\n\n\tvar err error\n\tif len(args) == 0 {\n\t\tshellCmd := getDefaultShell()\n\t\targs, err = shlex.Split(shellCmd)\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\n\t\tif len(args) == 0 {\n\t\t\treturn fmt.Errorf(\"no command is specified\")\n\t\t}\n\t}\n\n\tvar forceCommand []string\n\tif flagForceCommand != \"\" {\n\t\tforceCommand, err = shlex.Split(flagForceCommand)\n\t\tif err != nil {\n\t\t\treturn fmt.Errorf(\"error parsing command %s: %w\", flagForceCommand, err)\n\t\t}\n\t}\n\n\tlogger := uptermctx.Logger(c.Context())\n\tif logger == nil {\n\t\treturn fmt.Errorf(\"logger not available\")\n\t}\n\n\tvar authorizedKeys []*host.AuthorizedKey\n\tif flagAuthorizedKeys != \"\" {\n\t\taks, err := host.AuthorizedKeysFromFile(flagAuthorizedKeys)\n\t\tif err != nil {\n\t\t\treturn fmt.Errorf(\"error reading authorized keys: %w\", err)\n\t\t}\n\t\tauthorizedKeys = append(authorizedKeys, aks)\n\t}\n\tif flagCodebergUsers != nil {\n\t\tcodebergUserKeys, err := host.CodebergUserAuthorizedKeys(flagCodebergUsers)\n\t\tif err != nil {\n\t\t\treturn fmt.Errorf(\"error reading Codeberg user keys: %w\", err)\n\t\t}\n\t\tauthorizedKeys = append(authorizedKeys, codebergUserKeys...)\n\t}\n\tif flagGitHubUsers != nil {\n\t\tgitHubUserKeys, err := host.GitHubUserAuthorizedKeys(flagGitHubUsers, logger.Logger)\n\t\tif err != nil {\n\t\t\treturn fmt.Errorf(\"error reading GitHub user keys: %w\", err)\n\t\t}\n\t\tauthorizedKeys = append(authorizedKeys, gitHubUserKeys...)\n\t}\n\tif flagGitLabUsers != nil {\n\t\tgitLabUserKeys, err := host.GitLabUserAuthorizedKeys(flagGitLabUsers)\n\t\tif err != nil {\n\t\t\treturn fmt.Errorf(\"error reading GitLab user keys: %w\", err)\n\t\t}\n\t\tauthorizedKeys = append(authorizedKeys, gitLabUserKeys...)\n\t}\n\tif flagSourceHutUsers != nil {\n\t\tsourceHutUserKeys, err := host.SourceHutUserAuthorizedKeys(flagSourceHutUsers)\n\t\tif err != nil {\n\t\t\treturn fmt.Errorf(\"error reading SourceHut user keys: %w\", err)\n\t\t}\n\t\tauthorizedKeys = append(authorizedKeys, sourceHutUserKeys...)\n\t}\n\n\tsigners, cleanup, err := host.Signers(flagPrivateKeys)\n\tif err != nil {\n\t\treturn fmt.Errorf(\"error reading private keys: %w\", err)\n\t}\n\tif cleanup != nil {\n\t\tdefer cleanup()\n\t}\n\n\tvar hkcb ssh.HostKeyCallback\n\tif flagSkipHostKeyCheck {\n\t\thkcb, err = host.NewAutoAcceptingHostKeyCallback(os.Stdout, flagKnownHostsFilename)\n\t} else {\n\t\thkcb, err = host.NewPromptingHostKeyCallback(os.Stdin, os.Stdout, flagKnownHostsFilename)\n\t}\n\tif err != nil {\n\t\treturn err\n\t}\n\n\t// Set up SFTP permission checker based on --accept flag\n\tvar sftpPermissionChecker sftp.PermissionChecker\n\tif flagAccept {\n\t\tsftpPermissionChecker = &AutoAllowPermissionChecker{}\n\t} else {\n\t\tsftpPermissionChecker = &DialogPermissionChecker{}\n\t}\n\n\th := &host.Host{\n\t\tHost: flagServer,\n\t\tCommand: args,\n\t\tForceCommand: forceCommand,\n\t\tSigners: signers,\n\t\tHostKeyCallback: hkcb,\n\t\tAuthorizedKeys: authorizedKeys,\n\t\tKeepAliveDuration: 50 * time.Second, // nlb is 350 sec & heroku router is 55 sec\n\t\tSessionCreatedCallback: displaySessionCallback,\n\t\tClientJoinedCallback: clientJoinedCallback,\n\t\tClientLeftCallback: clientLeftCallback,\n\t\tStdin: os.Stdin,\n\t\tStdout: os.Stdout,\n\t\tLogger: logger.Logger,\n\t\tReadOnly: flagReadOnly,\n\t\tAllowLocalTCPForwarding: flagAllowLocalTCPForwarding,\n\t\tSFTPDisabled: flagNoSFTP,\n\t\tSFTPPermissionChecker: sftpPermissionChecker,\n\t}\n\n\terr = h.Run(c.Context())\n\n\t// Handle user actions specially - no help menu\n\tvar userDiscardedErr UserDiscardedError\n\tif errors.As(err, &userDiscardedErr) {\n\t\treturn nil // Clean exit for user discard (exit code 0)\n\t}\n\n\tvar userInterruptedErr UserInterruptedError\n\tif errors.As(err, &userInterruptedErr) {\n\t\t// Set both flags to prevent help menu and error display\n\t\tc.SilenceUsage = true\n\t\tc.SilenceErrors = true\n\t\treturn userInterruptedErr\n\t}\n\n\treturn err\n}\n\nfunc clientJoinedCallback(c *api.Client) {\n\t_ = beeep.Notify(\"Upterm Client Joined\", notifyBody(c), icon.Upterm)\n}\n\nfunc clientLeftCallback(c *api.Client) {\n\t_ = beeep.Notify(\"Upterm Client Left\", notifyBody(c), icon.Upterm)\n}\n\nfunc notifyBody(c *api.Client) string {\n\treturn clientDesc(c.Addr, c.Version, c.PublicKeyFingerprint)\n}\n\nfunc displaySessionCallback(ctx context.Context, session *api.GetSessionResponse) error {\n\t// Build session detail (includes SCP commands if SFTP is enabled)\n\tdetail, err := buildSessionDetail(session)\n\tif err != nil {\n\t\treturn fmt.Errorf(\"failed to build session detail: %w\", err)\n\t}\n\n\t// With --accept, just print session info and continue (no interactive confirmation needed)\n\tif flagAccept {\n\t\ttui.PrintSessionDetail(detail)\n\t\treturn nil\n\t}\n\n\t// Run interactive TUI for confirmation (TTY is guaranteed by early check in shareRunE)\n\tmodel := tui.NewHostSessionModel(detail, false)\n\tp := tea.NewProgram(model, tea.WithContext(ctx))\n\n\tfinalModel, err := p.Run()\n\tif err != nil {\n\t\treturn fmt.Errorf(\"session confirmation failed: %w\", err)\n\t}\n\n\t// Extract result from the model\n\tsessionModel, ok := finalModel.(tui.HostSessionModel)\n\tif !ok {\n\t\treturn fmt.Errorf(\"unexpected model type: got %T, want tui.HostSessionModel\", finalModel)\n\t}\n\n\t// Handle the result\n\tswitch sessionModel.Result() {\n\tcase tui.HostSessionConfirmAccepted:\n\t\treturn nil\n\tcase tui.HostSessionConfirmRejected:\n\t\treturn UserDiscardedError{}\n\tcase tui.HostSessionConfirmInterrupted:\n\t\treturn UserInterruptedError{}\n\tdefault:\n\t\treturn fmt.Errorf(\"unknown confirmation result: %d\", sessionModel.Result())\n\t}\n}\n\nfunc defaultPrivateKeys(homeDir string) []string {\n\tvar pks []string\n\tfor _, f := range []string{\n\t\t\"id_ed25519\",\n\t\t\"id_ed25519_sk\",\n\t\t\"id_ecdsa\",\n\t\t\"id_ecdsa_sk\",\n\t\t\"id_dsa\",\n\t\t\"id_rsa\",\n\t} {\n\t\tpk := filepath.Join(homeDir, \".ssh\", f)\n\t\tif _, err := os.Stat(pk); os.IsNotExist(err) {\n\t\t\tcontinue\n\t\t}\n\n\t\tpks = append(pks, pk)\n\t}\n\n\treturn pks\n}\n\nfunc defaultKnownHost(homeDir string) string {\n\treturn filepath.Join(homeDir, \".ssh\", \"known_hosts\")\n}\n" }, { "path": "cmd/upterm/command/host_test.go", "content": "package command\n\nimport (\n\t\"testing\"\n\n\t\"github.com/google/go-cmp/cmp\"\n\t\"github.com/stretchr/testify/assert\"\n)\n\nfunc Test_validateShareRequiredFlags_readOnlyAndLocalTCPForwarding(t *testing.T) {\n\torigServer := flagServer\n\torigReadOnly := flagReadOnly\n\torigAllowLocalTCPForwarding := flagAllowLocalTCPForwarding\n\tt.Cleanup(func() {\n\t\tflagServer = origServer\n\t\tflagReadOnly = origReadOnly\n\t\tflagAllowLocalTCPForwarding = origAllowLocalTCPForwarding\n\t})\n\n\tflagServer = \"ssh://uptermd.upterm.dev:22\"\n\n\tcases := []struct {\n\t\tname string\n\t\treadOnly bool\n\t\tallowLocalTCPForwarding bool\n\t\twantErrSubstr string\n\t}{\n\t\t{name: \"neither\", readOnly: false, allowLocalTCPForwarding: false},\n\t\t{name: \"read-only only\", readOnly: true, allowLocalTCPForwarding: false},\n\t\t{name: \"forwarding only\", readOnly: false, allowLocalTCPForwarding: true},\n\t\t{\n\t\t\tname: \"both rejected\",\n\t\t\treadOnly: true,\n\t\t\tallowLocalTCPForwarding: true,\n\t\t\twantErrSubstr: \"--read-only and --allow-local-tcp-forwarding cannot be used together\",\n\t\t},\n\t}\n\n\tfor _, c := range cases {\n\t\tcc := c\n\t\tt.Run(cc.name, func(t *testing.T) {\n\t\t\tflagReadOnly = cc.readOnly\n\t\t\tflagAllowLocalTCPForwarding = cc.allowLocalTCPForwarding\n\n\t\t\terr := validateShareRequiredFlags(nil, nil)\n\t\t\tif cc.wantErrSubstr == \"\" {\n\t\t\t\tassert.NoError(t, err)\n\t\t\t\treturn\n\t\t\t}\n\t\t\tassert.ErrorContains(t, err, cc.wantErrSubstr)\n\t\t})\n\t}\n}\n\nfunc Test_parseURL(t *testing.T) {\n\tcases := []struct {\n\t\tname string\n\t\turl string\n\t\twantScheme string\n\t\twantHost string\n\t\twantPort string\n\t}{\n\t\t{\n\t\t\tname: \"port 443\",\n\t\t\turl: \"wss://foo.com:443\",\n\t\t\twantScheme: \"wss\",\n\t\t\twantHost: \"foo.com\",\n\t\t\twantPort: \"443\",\n\t\t},\n\t\t{\n\t\t\tname: \"port 80\",\n\t\t\turl: \"http://foo.com:80\",\n\t\t\twantScheme: \"http\",\n\t\t\twantHost: \"foo.com\",\n\t\t\twantPort: \"80\",\n\t\t},\n\t\t{\n\t\t\tname: \"port 22\",\n\t\t\turl: \"ssh://foo.com:22\",\n\t\t\twantScheme: \"ssh\",\n\t\t\twantHost: \"foo.com\",\n\t\t\twantPort: \"22\",\n\t\t},\n\t\t{\n\t\t\tname: \"no port\",\n\t\t\turl: \"wss://foo.com\",\n\t\t\twantScheme: \"wss\",\n\t\t\twantHost: \"foo.com\",\n\t\t\twantPort: \"443\",\n\t\t},\n\t}\n\n\tfor _, c := range cases {\n\t\tcc := c\n\t\tt.Run(cc.name, func(t *testing.T) {\n\t\t\tt.Parallel()\n\n\t\t\t_, scheme, host, port, err := parseURL(cc.url)\n\t\t\tif err != nil {\n\t\t\t\tt.Fatal(err)\n\t\t\t}\n\n\t\t\tif diff := cmp.Diff(cc.wantScheme, scheme); diff != \"\" {\n\t\t\t\tt.Fatal(diff)\n\t\t\t}\n\n\t\t\tif diff := cmp.Diff(cc.wantHost, host); diff != \"\" {\n\t\t\t\tt.Fatal(diff)\n\t\t\t}\n\n\t\t\tif diff := cmp.Diff(cc.wantPort, port); diff != \"\" {\n\t\t\t\tt.Fatal(diff)\n\t\t\t}\n\t\t})\n\t}\n\n}\n" }, { "path": "cmd/upterm/command/host_unix.go", "content": "//go:build !windows\n\npackage command\n\nimport (\n\t\"os\"\n)\n\n// getDefaultShell returns the default shell on Unix systems\nfunc getDefaultShell() string {\n\tshell := os.Getenv(\"SHELL\")\n\tif shell == \"\" {\n\t\tshell = \"/bin/sh\"\n\t}\n\treturn shell\n}\n" }, { "path": "cmd/upterm/command/host_windows.go", "content": "//go:build windows\n\npackage command\n\nimport (\n\t\"os/exec\"\n)\n\n// getDefaultShell returns the default shell on Windows\n// Prefers PowerShell Core (pwsh) if available, otherwise falls back to cmd.exe\nfunc getDefaultShell() string {\n\t// Check for PowerShell Core first\n\tif _, err := exec.LookPath(\"pwsh\"); err == nil {\n\t\t// -NoLogo suppresses the copyright banner\n\t\treturn \"pwsh -NoLogo\"\n\t}\n\n\t// Check for PowerShell\n\tif _, err := exec.LookPath(\"powershell\"); err == nil {\n\t\t// -NoLogo suppresses the copyright banner\n\t\treturn \"powershell -NoLogo\"\n\t}\n\n\t// Fallback to cmd.exe (always available on Windows)\n\treturn \"cmd.exe\"\n}\n" }, { "path": "cmd/upterm/command/internal/tui/host_session.go", "content": "package tui\n\nimport (\n\t\"strings\"\n\n\ttea \"github.com/charmbracelet/bubbletea\"\n)\n\n// HostSessionConfirmResult represents the outcome of a confirmation prompt\ntype HostSessionConfirmResult int\n\nconst (\n\t// HostSessionConfirmAccepted indicates the user accepted (pressed 'y')\n\tHostSessionConfirmAccepted HostSessionConfirmResult = iota\n\t// HostSessionConfirmRejected indicates the user rejected (pressed 'n')\n\tHostSessionConfirmRejected\n\t// HostSessionConfirmInterrupted indicates the user interrupted (pressed Ctrl+C)\n\tHostSessionConfirmInterrupted\n)\n\n// HostSessionModel handles both session display and confirmation for the host command.\n// It renders the session information and waits for user confirmation (y/n/Ctrl+C)\n// unless auto-accept is enabled.\ntype HostSessionModel struct {\n\tdetail SessionDetail\n\tautoAccept bool\n\tstate sessionState\n\tresult HostSessionConfirmResult\n\twidth int\n}\n\n// sessionState represents the current state of the host session prompt\ntype sessionState int\n\nconst (\n\t// stateWaitingForConfirm indicates we're displaying the prompt and waiting for user input\n\tstateWaitingForConfirm sessionState = iota\n\t// stateDone indicates a decision has been made and we're ready to quit\n\tstateDone\n)\n\n// NewHostSessionModel creates a model for displaying session and getting confirmation\nfunc NewHostSessionModel(detail SessionDetail, autoAccept bool) HostSessionModel {\n\tinitialState := stateWaitingForConfirm\n\tif autoAccept {\n\t\tinitialState = stateDone\n\t}\n\n\treturn HostSessionModel{\n\t\tdetail: detail,\n\t\tautoAccept: autoAccept,\n\t\tstate: initialState,\n\t\tresult: HostSessionConfirmAccepted, // default for auto-accept\n\t\twidth: getTermWidth(),\n\t}\n}\n\nfunc (m HostSessionModel) Init() tea.Cmd {\n\t// Auto-quit immediately if auto-accept is enabled\n\tif m.autoAccept {\n\t\treturn tea.Quit\n\t}\n\treturn nil\n}\n\nfunc (m HostSessionModel) Update(msg tea.Msg) (tea.Model, tea.Cmd) {\n\tswitch msg := msg.(type) {\n\tcase tea.WindowSizeMsg:\n\t\tm.width = msg.Width\n\n\tcase tea.KeyMsg:\n\t\t// Only handle input when waiting for confirmation\n\t\tif m.state != stateWaitingForConfirm {\n\t\t\treturn m, nil\n\t\t}\n\n\t\tswitch msg.String() {\n\t\tcase \"y\", \"Y\":\n\t\t\tm.result = HostSessionConfirmAccepted\n\t\t\tm.state = stateDone\n\t\t\treturn m, tea.Quit\n\t\tcase \"n\", \"N\":\n\t\t\tm.result = HostSessionConfirmRejected\n\t\t\tm.state = stateDone\n\t\t\treturn m, tea.Quit\n\t\tcase \"ctrl+c\":\n\t\t\tm.result = HostSessionConfirmInterrupted\n\t\t\tm.state = stateDone\n\t\t\treturn m, tea.Quit\n\t\t}\n\t}\n\n\treturn m, nil\n}\n\nfunc (m HostSessionModel) View() string {\n\tvar b strings.Builder\n\n\t// Session info\n\tb.WriteString(renderSessionDetail(m.detail, m.width))\n\n\tif !IsTTY() {\n\t\treturn b.String()\n\t}\n\n\tswitch m.state {\n\tcase stateWaitingForConfirm:\n\t\tb.WriteString(\"\\n\")\n\t\tb.WriteString(FooterStyle.Render(\"Accept connections? [y/n] (or to force exit)\"))\n\t\tb.WriteString(\"\\n\")\n\n\tcase stateDone:\n\t\tb.WriteString(\"\\n\")\n\t\tswitch m.result {\n\t\tcase HostSessionConfirmAccepted:\n\t\t\tb.WriteString(CommandStyle.Render(\"Starting to accept connections...\"))\n\t\t\tb.WriteString(\"\\n\\n\")\n\t\t\tb.WriteString(FooterStyle.Render(\"πŸ’‘ Run 'upterm session current' to display session info\"))\n\t\tcase HostSessionConfirmRejected:\n\t\t\tb.WriteString(FooterStyle.Render(\"Session discarded.\"))\n\t\tcase HostSessionConfirmInterrupted:\n\t\t\tb.WriteString(FooterStyle.Render(\"Cancelled by user.\"))\n\t\t}\n\t\tb.WriteString(\"\\n\")\n\t}\n\n\treturn b.String()\n}\n\n// Result returns the confirmation result\nfunc (m HostSessionModel) Result() HostSessionConfirmResult {\n\treturn m.result\n}\n" }, { "path": "cmd/upterm/command/internal/tui/session_detail.go", "content": "package tui\n\nimport (\n\t\"fmt\"\n\t\"os\"\n\t\"strings\"\n\n\ttea \"github.com/charmbracelet/bubbletea\"\n\t\"github.com/charmbracelet/lipgloss\"\n\t\"github.com/muesli/reflow/wrap\"\n\t\"golang.org/x/term\"\n)\n\n// IsTTY returns whether stdout is a terminal\nfunc IsTTY() bool {\n\treturn term.IsTerminal(int(os.Stdout.Fd()))\n}\n\n// getTermWidth returns the terminal width, defaulting to 80 if unavailable\nfunc getTermWidth() int {\n\twidth, _, err := term.GetSize(int(os.Stdout.Fd()))\n\tif err != nil {\n\t\treturn 80\n\t}\n\treturn width\n}\n\n// RunModel runs a bubbletea model with automatic TTY detection.\n// For non-TTY environments, just prints View() once and returns.\nfunc RunModel(model tea.Model) (tea.Model, error) {\n\tif !IsTTY() {\n\t\t// Non-TTY: print View() once (lipgloss auto-strips colors)\n\t\tfmt.Print(model.View())\n\t\treturn model, nil\n\t}\n\tp := tea.NewProgram(model, tea.WithAltScreen())\n\treturn p.Run()\n}\n\n// SessionDetail holds session information for display\ntype SessionDetail struct {\n\tIsCurrent bool\n\tAdminSocket string\n\tSessionID string\n\tCommand string\n\tForceCommand string\n\tHost string\n\tSSHCommand string\n\tSFTPEnabled bool // Whether SFTP/SCP is enabled\n\tSFTPCommand string // SFTP command\n\tSCPUpload string // SCP upload example\n\tSCPDownload string // SCP download example\n\tAuthorizedKeys string\n\tConnectedClients []string\n}\n\n// FormatSessionDetail renders a SessionDetail to a string using terminal width\nfunc FormatSessionDetail(detail SessionDetail) string {\n\treturn renderSessionDetail(detail, getTermWidth())\n}\n\n// PrintSessionDetail prints session detail to stdout\nfunc PrintSessionDetail(detail SessionDetail) {\n\tfmt.Print(FormatSessionDetail(detail))\n}\n\n// wrapLines wraps text to width and returns lines.\n// For non-TTY output, skips wrapping since output may be piped to other tools,\n// but still respects embedded newlines for proper layout.\nfunc wrapLines(text string, width int) []string {\n\tif text == \"\" {\n\t\treturn []string{}\n\t}\n\tif !IsTTY() {\n\t\treturn strings.Split(text, \"\\n\") // No wrapping, but respect newlines\n\t}\n\twrapped := wrap.String(text, max(width, 10))\n\treturn strings.Split(wrapped, \"\\n\")\n}\n\n// renderWrappedRow renders a label: value row with wrapping, continuation lines indented\nfunc renderWrappedRow(b *strings.Builder, label string, value string, labelWidth int, valueWidth int, style lipgloss.Style) {\n\tl := LabelStyle.Width(labelWidth).Render(label)\n\tlines := wrapLines(value, valueWidth)\n\tif len(lines) == 0 {\n\t\tb.WriteString(l + \"\\n\")\n\t\treturn\n\t}\n\tfor i, line := range lines {\n\t\tif i == 0 {\n\t\t\tb.WriteString(l + style.Render(line) + \"\\n\")\n\t\t} else {\n\t\t\tb.WriteString(strings.Repeat(\" \", labelWidth) + style.Render(line) + \"\\n\")\n\t\t}\n\t}\n}\n\n// renderSessionDetail generates the session detail content for the given width\nfunc renderSessionDetail(detail SessionDetail, width int) string {\n\tvar b strings.Builder\n\n\t// Title\n\tb.WriteString(TitleStyle.Render(fmt.Sprintf(\"Session: %s\", detail.SessionID)))\n\tb.WriteString(\"\\n\\n\")\n\n\t// Layout constants\n\tlabelWidth := 18\n\tvalueWidth := max(width-labelWidth-2, 20)\n\n\t// Basic fields (skip empty fields to reduce noise)\n\trenderWrappedRow(&b, \"Command:\", detail.Command, labelWidth, valueWidth, ValueStyle)\n\tif detail.ForceCommand != \"\" {\n\t\trenderWrappedRow(&b, \"Force Command:\", detail.ForceCommand, labelWidth, valueWidth, ValueStyle)\n\t}\n\trenderWrappedRow(&b, \"Host:\", detail.Host, labelWidth, valueWidth, ValueStyle)\n\tif detail.AuthorizedKeys != \"\" {\n\t\trenderWrappedRow(&b, \"Authorized Keys:\", detail.AuthorizedKeys, labelWidth, valueWidth, ValueStyle)\n\t}\n\n\t// Commands section - each command on its own line for readability\n\t// Use wrapping to prevent truncation on narrow terminals\n\tcmdIndent := 4\n\tcmdWidth := max(width-cmdIndent-2, 20)\n\n\tb.WriteString(\"\\n\")\n\tb.WriteString(LabelStyle.Render(\"➀ SSH:\") + \"\\n\")\n\tfor _, line := range wrapLines(detail.SSHCommand, cmdWidth) {\n\t\tb.WriteString(strings.Repeat(\" \", cmdIndent) + CommandStyle.Render(line) + \"\\n\")\n\t}\n\n\t// SFTP and SCP commands (only shown if SFTP is enabled)\n\tif detail.SFTPEnabled {\n\t\tb.WriteString(LabelStyle.Render(\"➀ SFTP:\") + \"\\n\")\n\t\tfor _, line := range wrapLines(detail.SFTPCommand, cmdWidth) {\n\t\t\tb.WriteString(strings.Repeat(\" \", cmdIndent) + CommandStyle.Render(line) + \"\\n\")\n\t\t}\n\t\tb.WriteString(LabelStyle.Render(\"➀ SCP:\") + \"\\n\")\n\t\tfor _, line := range wrapLines(detail.SCPUpload, cmdWidth) {\n\t\t\tb.WriteString(strings.Repeat(\" \", cmdIndent) + CommandStyle.Render(line) + \"\\n\")\n\t\t}\n\t\tfor _, line := range wrapLines(detail.SCPDownload, cmdWidth) {\n\t\t\tb.WriteString(strings.Repeat(\" \", cmdIndent) + CommandStyle.Render(line) + \"\\n\")\n\t\t}\n\t}\n\n\t// Connected clients\n\tif len(detail.ConnectedClients) > 0 {\n\t\tb.WriteString(\"\\n\")\n\t\tb.WriteString(LabelStyle.Render(\"Connected Clients:\") + \"\\n\")\n\t\tfor _, client := range detail.ConnectedClients {\n\t\t\tfor i, line := range wrapLines(client, width-4) {\n\t\t\t\tindent := 2\n\t\t\t\tif i > 0 {\n\t\t\t\t\tindent = 4\n\t\t\t\t}\n\t\t\t\tb.WriteString(strings.Repeat(\" \", indent) + ValueStyle.Render(line) + \"\\n\")\n\t\t\t}\n\t\t}\n\t}\n\n\treturn b.String()\n}\n" }, { "path": "cmd/upterm/command/internal/tui/session_detail_test.go", "content": "package tui\n\nimport (\n\t\"strings\"\n\t\"testing\"\n\n\t\"github.com/stretchr/testify/assert\"\n\t\"github.com/stretchr/testify/require\"\n)\n\nfunc Test_wrapLines(t *testing.T) {\n\tcases := []struct {\n\t\tname string\n\t\ttext string\n\t\twidth int\n\t\twant []string\n\t}{\n\t\t{\n\t\t\tname: \"empty string\",\n\t\t\ttext: \"\",\n\t\t\twidth: 80,\n\t\t\twant: []string{},\n\t\t},\n\t\t{\n\t\t\tname: \"single line\",\n\t\t\ttext: \"hello world\",\n\t\t\twidth: 80,\n\t\t\twant: []string{\"hello world\"},\n\t\t},\n\t\t{\n\t\t\tname: \"multi-line with embedded newlines\",\n\t\t\ttext: \"owenthereal:\\n- SHA256:abc123\\n- SHA256:def456\",\n\t\t\twidth: 80,\n\t\t\twant: []string{\"owenthereal:\", \"- SHA256:abc123\", \"- SHA256:def456\"},\n\t\t},\n\t\t{\n\t\t\tname: \"trailing newline\",\n\t\t\ttext: \"line1\\nline2\\n\",\n\t\t\twidth: 80,\n\t\t\twant: []string{\"line1\", \"line2\", \"\"},\n\t\t},\n\t}\n\n\tfor _, c := range cases {\n\t\tt.Run(c.name, func(t *testing.T) {\n\t\t\t// wrapLines behavior depends on IsTTY(), but in test environment\n\t\t\t// it should be non-TTY, so we test the non-TTY path\n\t\t\tgot := wrapLines(c.text, c.width)\n\t\t\tassert.Equal(t, c.want, got)\n\t\t})\n\t}\n}\n\nfunc Test_renderWrappedRow_multiline(t *testing.T) {\n\t// Test that multi-line values have continuation lines properly indented\n\tvar b strings.Builder\n\tlabelWidth := 18\n\tvalueWidth := 60\n\tvalue := \"owenthereal:\\n- SHA256:abc123\\n- SHA256:def456\"\n\n\trenderWrappedRow(&b, \"Authorized Keys:\", value, labelWidth, valueWidth, ValueStyle)\n\tgot := b.String()\n\n\t// Check that continuation lines are indented\n\tlines := strings.Split(got, \"\\n\")\n\trequire.GreaterOrEqual(t, len(lines), 3, \"expected at least 3 lines, got: %q\", got)\n\n\t// First line should have the label\n\tassert.True(t, strings.HasPrefix(lines[0], \"Authorized Keys:\"), \"first line should start with label, got: %q\", lines[0])\n\n\t// Continuation lines should be indented (start with spaces)\n\tindent := strings.Repeat(\" \", labelWidth)\n\tfor i := 1; i < len(lines)-1; i++ { // -1 to skip trailing empty line\n\t\tassert.True(t, strings.HasPrefix(lines[i], indent), \"line %d should be indented with %d spaces, got: %q\", i, labelWidth, lines[i])\n\t}\n}\n\nfunc Test_FormatSessionDetail_authorizedKeys(t *testing.T) {\n\tdetail := SessionDetail{\n\t\tSessionID: \"test123\",\n\t\tCommand: \"bash\",\n\t\tHost: \"ssh://example.com:22\",\n\t\tSSHCommand: \"ssh test123@example.com\",\n\t\tAuthorizedKeys: \"user1:\\n- SHA256:key1\\nuser2:\\n- SHA256:key2\",\n\t}\n\n\toutput := FormatSessionDetail(detail)\n\n\t// Verify the output contains properly formatted authorized keys\n\tassert.Contains(t, output, \"Authorized Keys:\")\n\n\t// Check that key fingerprints are indented (appear after spaces)\n\tlines := strings.Split(output, \"\\n\")\n\tfoundIndentedKey := false\n\tfor _, line := range lines {\n\t\t// Look for lines that start with spaces followed by \"- SHA256:\"\n\t\ttrimmed := strings.TrimLeft(line, \" \")\n\t\tif strings.HasPrefix(trimmed, \"- SHA256:\") && strings.HasPrefix(line, \" \") {\n\t\t\tfoundIndentedKey = true\n\t\t\tbreak\n\t\t}\n\t}\n\tassert.True(t, foundIndentedKey, \"key fingerprints should be indented in output\")\n}\n" }, { "path": "cmd/upterm/command/internal/tui/session_list.go", "content": "package tui\n\nimport (\n\t\"fmt\"\n\n\t\"github.com/charmbracelet/bubbles/table\"\n\ttea \"github.com/charmbracelet/bubbletea\"\n\t\"github.com/charmbracelet/lipgloss\"\n)\n\n// SessionListModel provides an interactive session list using bubbles/table\ntype SessionListModel struct {\n\ttable table.Model\n\tsessions []SessionDetail\n\tdetailView *SessionDetail // nil when showing list, non-nil when showing detail\n\tquitting bool\n\twidth int\n}\n\n// List-specific styles (extend base styles)\nvar (\n\tlistHeaderStyle = TitleStyle.MarginBottom(1)\n\tlistFooterStyle = FooterStyle.MarginTop(1)\n)\n\n// calculateColumns returns table columns sized for the given terminal width\nfunc calculateColumns(width int) []table.Column {\n\t// Fixed column\n\tconst markerWidth = 2\n\t// Table adds ~3 chars padding per column (borders + spacing)\n\tconst columnPadding = 12 // 4 columns * 3\n\n\tavailable := width - markerWidth - columnPadding\n\tif available <= 0 {\n\t\tavailable = 40 // fallback minimum\n\t}\n\n\t// Proportional distribution: sessionID 35%, command 25%, host 40%\n\tsessionIDWidth := max(available*35/100, 10)\n\tcommandWidth := max(available*25/100, 8)\n\thostWidth := max(available-sessionIDWidth-commandWidth, 15)\n\n\treturn []table.Column{\n\t\t{Title: \"\", Width: markerWidth},\n\t\t{Title: \"SESSION ID\", Width: sessionIDWidth},\n\t\t{Title: \"COMMAND\", Width: commandWidth},\n\t\t{Title: \"HOST\", Width: hostWidth},\n\t}\n}\n\n// NewSessionListModel creates a new interactive session list\nfunc NewSessionListModel(sessions []SessionDetail) SessionListModel {\n\twidth := getTermWidth()\n\n\tcolumns := calculateColumns(width)\n\n\trows := make([]table.Row, len(sessions))\n\tcursorIdx := 0\n\tfor i, s := range sessions {\n\t\tmarker := \"\"\n\t\tif s.IsCurrent {\n\t\t\tmarker = \"*\"\n\t\t\tcursorIdx = i\n\t\t}\n\t\trows[i] = table.Row{marker, s.SessionID, s.Command, s.Host}\n\t}\n\n\tt := table.New(\n\t\ttable.WithColumns(columns),\n\t\ttable.WithRows(rows),\n\t\ttable.WithFocused(true),\n\t\ttable.WithHeight(min(len(sessions)+1, 10)),\n\t)\n\n\ts := table.DefaultStyles()\n\ts.Header = s.Header.\n\t\tBorderStyle(lipgloss.NormalBorder()).\n\t\tBorderForeground(lipgloss.Color(\"240\")).\n\t\tBorderBottom(true).\n\t\tBold(false)\n\ts.Selected = s.Selected.\n\t\tForeground(lipgloss.Color(\"229\")).\n\t\tBackground(lipgloss.Color(\"236\")).\n\t\tBold(true)\n\tt.SetStyles(s)\n\n\t// Set cursor to current session\n\tt.SetCursor(cursorIdx)\n\n\treturn SessionListModel{\n\t\ttable: t,\n\t\tsessions: sessions,\n\t\twidth: width,\n\t}\n}\n\nfunc (m SessionListModel) Init() tea.Cmd {\n\treturn nil\n}\n\nfunc (m SessionListModel) Update(msg tea.Msg) (tea.Model, tea.Cmd) {\n\t// If showing detail view, delegate to it\n\tswitch msg := msg.(type) {\n\tcase tea.WindowSizeMsg:\n\t\tm.width = msg.Width\n\t\tif m.detailView == nil {\n\t\t\tm.table.SetColumns(calculateColumns(msg.Width))\n\t\t}\n\n\tcase tea.KeyMsg:\n\t\t// Handle detail view keys\n\t\tif m.detailView != nil {\n\t\t\tswitch msg.String() {\n\t\t\tcase \"q\", \"esc\", \"enter\", \" \":\n\t\t\t\tm.detailView = nil\n\t\t\t\treturn m, tea.ClearScreen\n\t\t\tcase \"ctrl+c\":\n\t\t\t\tm.quitting = true\n\t\t\t\treturn m, tea.Quit\n\t\t\t}\n\t\t\treturn m, nil\n\t\t}\n\n\t\t// Handle list view keys\n\t\tswitch msg.String() {\n\t\tcase \"q\", \"ctrl+c\", \"esc\":\n\t\t\tm.quitting = true\n\t\t\treturn m, tea.Quit\n\n\t\tcase \"enter\":\n\t\t\tcursor := m.table.Cursor()\n\t\t\tif cursor >= 0 && cursor < len(m.sessions) {\n\t\t\t\tselected := m.sessions[cursor]\n\t\t\t\tm.detailView = &selected\n\t\t\t\treturn m, tea.ClearScreen\n\t\t\t}\n\t\t}\n\t}\n\n\tvar cmd tea.Cmd\n\tm.table, cmd = m.table.Update(msg)\n\treturn m, cmd\n}\n\nfunc (m SessionListModel) View() string {\n\tif m.quitting {\n\t\treturn \"\"\n\t}\n\n\t// Show detail view if active\n\tif m.detailView != nil {\n\t\tcontent := renderSessionDetail(*m.detailView, m.width)\n\t\tfooter := FooterStyle.Render(\"Press q or enter to go back\")\n\t\treturn content + \"\\n\" + footer\n\t}\n\n\tif len(m.sessions) == 0 {\n\t\theader := listHeaderStyle.Render(\"Active Sessions (0)\")\n\t\tempty := EmptyStyle.Render(\" No active sessions found\")\n\t\tif !IsTTY() {\n\t\t\treturn fmt.Sprintf(\"%s\\n%s\\n\", header, empty)\n\t\t}\n\t\thint := listFooterStyle.Render(\" Run 'upterm host' to share your terminal\")\n\t\treturn fmt.Sprintf(\"%s\\n%s\\n\\n%s\\n\", header, empty, hint)\n\t}\n\n\theader := listHeaderStyle.Render(fmt.Sprintf(\"Active Sessions (%d)\", len(m.sessions)))\n\tif !IsTTY() {\n\t\treturn fmt.Sprintf(\"%s\\n%s\\n\", header, m.table.View())\n\t}\n\n\tfooter := listFooterStyle.Render(\"↑/↓: navigate β€’ enter: view details β€’ q: quit\")\n\treturn fmt.Sprintf(\"%s\\n%s\\n%s\\n\", header, m.table.View(), footer)\n}\n" }, { "path": "cmd/upterm/command/internal/tui/styles.go", "content": "package tui\n\nimport (\n\t\"os\"\n\n\t\"github.com/charmbracelet/lipgloss\"\n)\n\n// renderer is bound to stdout for consistent style rendering\nvar renderer = lipgloss.NewRenderer(os.Stdout)\n\n// Common styles used across TUI components\n// Using basic ANSI colors (0-15) which adapt to terminal themes,\n// ensuring readability on both light and dark backgrounds.\nvar (\n\t// Title/Header style - bright cyan, bold\n\tTitleStyle = renderer.NewStyle().\n\t\t\tBold(true).\n\t\t\tForeground(lipgloss.Color(\"14\"))\n\n\t// Label style - white (terminal's default light color)\n\tLabelStyle = renderer.NewStyle().\n\t\t\tForeground(lipgloss.Color(\"7\"))\n\n\t// Value style - bright white\n\tValueStyle = renderer.NewStyle().\n\t\t\tForeground(lipgloss.Color(\"15\"))\n\n\t// Command style - bright green, bold (for SSH commands)\n\tCommandStyle = renderer.NewStyle().\n\t\t\tForeground(lipgloss.Color(\"10\")).\n\t\t\tBold(true)\n\n\t// Footer style - dark gray\n\tFooterStyle = renderer.NewStyle().\n\t\t\tForeground(lipgloss.Color(\"8\"))\n\n\t// Empty/placeholder style - dark gray, italic\n\tEmptyStyle = renderer.NewStyle().\n\t\t\tForeground(lipgloss.Color(\"8\")).\n\t\t\tItalic(true)\n)\n" }, { "path": "cmd/upterm/command/privacy.go", "content": "package command\n\nimport \"os\"\n\nvar (\n\tflagHideClientIP bool\n)\n\n// shouldHideClientIP determines if client IP addresses should be hidden from display.\n//\n// This function checks conditions in this priority order:\n// 1. Explicit --hide-client-ip flag (overrides everything)\n// 2. UPTERM_HIDE_CLIENT_IP environment variable (automatically bound by viper)\n// 3. Auto-detect CI environment (if neither flag nor env var set)\n//\n// This is particularly useful for CI/CD pipelines where session output is logged\n// and potentially publicly visible. By default, IPs are automatically hidden in\n// detected CI environments to prevent accidental exposure in build logs.\n//\n// Usage:\n// upterm host --hide-client-ip # Explicit flag\n// UPTERM_HIDE_CLIENT_IP=true upterm host # Environment variable (auto-bound)\n// upterm host # Auto-detects CI (GitHub Actions, etc.)\nfunc shouldHideClientIP() bool {\n\t// If flag is set (either via CLI flag or via UPTERM_HIDE_CLIENT_IP env var bound by viper)\n\tif flagHideClientIP {\n\t\treturn true\n\t}\n\n\t// Auto-detect CI environments as fallback\n\treturn isCI()\n}\n\n// isCI detects if the current process is running in a CI/CD environment\n// by checking for common CI environment variables.\nfunc isCI() bool {\n\tciEnvVars := []string{\n\t\t\"CI\", // Generic CI indicator (GitHub Actions, GitLab CI, etc.)\n\t\t\"GITHUB_ACTIONS\", // GitHub Actions\n\t\t\"GITLAB_CI\", // GitLab CI\n\t\t\"CIRCLECI\", // CircleCI\n\t\t\"TRAVIS\", // Travis CI\n\t\t\"JENKINS_URL\", // Jenkins\n\t\t\"BUILDKITE\", // Buildkite\n\t\t\"TF_BUILD\", // Azure Pipelines\n\t\t\"TEAMCITY_VERSION\", // TeamCity\n\t\t\"BITBUCKET_BUILD_NUMBER\", // Bitbucket Pipelines\n\t}\n\n\tfor _, envVar := range ciEnvVars {\n\t\tif os.Getenv(envVar) != \"\" {\n\t\t\treturn true\n\t\t}\n\t}\n\n\treturn false\n}\n" }, { "path": "cmd/upterm/command/proxy.go", "content": "package command\n\nimport (\n\t\"context\"\n\t\"fmt\"\n\t\"io\"\n\t\"net/url\"\n\t\"os\"\n\n\t\"github.com/oklog/run\"\n\tuio \"github.com/owenthereal/upterm/io\"\n\t\"github.com/owenthereal/upterm/ws\"\n\t\"github.com/spf13/cobra\"\n)\n\nfunc proxyCmd() *cobra.Command {\n\tcmd := &cobra.Command{\n\t\tUse: \"proxy\",\n\t\tShort: \"Proxy a terminal session via WebSocket\",\n\t\tLong: \"Proxy a terminal session via WebSocket, to be used alongside SSH ProxyCommand.\",\n\t\tExample: ` # Host shares a session running $SHELL over WebSocket:\n upterm host --server wss://uptermd.upterm.dev -- YOUR_COMMAND\n\n # Client connects to the host session via WebSocket:\n ssh -o ProxyCommand='upterm proxy wss://TOKEN@uptermd.upterm.dev' TOKEN:uptermd.uptermd.dev:443`,\n\t\tRunE: proxyRunE,\n\t}\n\n\treturn cmd\n}\n\nfunc proxyRunE(c *cobra.Command, args []string) error {\n\tif len(args) == 0 {\n\t\treturn fmt.Errorf(\"missing WebSocket url\")\n\t}\n\n\tu, err := url.Parse(args[0])\n\tif err != nil {\n\t\treturn err\n\t}\n\n\tconn, err := ws.NewWSConn(u, true)\n\tif err != nil {\n\t\treturn err\n\t}\n\n\tctx, cancel := context.WithCancel(context.Background())\n\tdefer cancel()\n\n\tvar g run.Group\n\t{\n\t\tg.Add(func() error {\n\t\t\t_, err := io.Copy(conn, uio.NewContextReader(ctx, os.Stdin))\n\t\t\treturn err\n\t\t}, func(err error) {\n\t\t\t_ = conn.Close()\n\t\t\tcancel()\n\t\t})\n\t}\n\t{\n\t\tg.Add(func() error {\n\t\t\t_, err := io.Copy(os.Stdout, uio.NewContextReader(ctx, conn))\n\t\t\treturn err\n\t\t}, func(err error) {\n\t\t\t_ = conn.Close()\n\t\t\tcancel()\n\t\t})\n\t}\n\n\treturn g.Run()\n}\n" }, { "path": "cmd/upterm/command/root.go", "content": "package command\n\nimport (\n\t\"fmt\"\n\t\"os\"\n\t\"strings\"\n\n\tuptermctx \"github.com/owenthereal/upterm/internal/context\"\n\t\"github.com/owenthereal/upterm/internal/logging\"\n\t\"github.com/owenthereal/upterm/utils\"\n\t\"github.com/spf13/cobra\"\n\t\"github.com/spf13/pflag\"\n\t\"github.com/spf13/viper\"\n)\n\nfunc Root() *cobra.Command {\n\trootCmd := &cobra.Command{\n\t\tUse: \"upterm\",\n\t\tShort: \"Instant Terminal Sharing\",\n\t\tLong: `Upterm is an open-source solution for sharing terminal sessions instantly over secure SSH tunnels to the public internet.\n\nConfiguration Priority (highest to lowest):\n 1. Command-line flags\n 2. Environment variables (UPTERM_ prefix)\n 3. Config file (see below)\n 4. Default values\n\nConfig File:\n ~/.config/upterm/config.yaml (Linux)\n ~/Library/Application Support/upterm/config.yaml (macOS)\n %LOCALAPPDATA%\\upterm\\config.yaml (Windows)\n\n Run 'upterm config path' to see your config file location.\n Run 'upterm config edit' to create and edit the config file.\n\nEnvironment Variables:\n All flags can be set via environment variables with the UPTERM_ prefix.\n Flag names are converted by replacing hyphens (-) with underscores (_).\n\n Examples:\n --hide-client-ip β†’ UPTERM_HIDE_CLIENT_IP=true\n --read-only β†’ UPTERM_READ_ONLY=true\n --accept β†’ UPTERM_ACCEPT=true`,\n\t\tExample: ` # Host a terminal session running $SHELL, attaching client's IO to the host's:\n $ upterm host\n\n # Display the SSH connection string for sharing with client(s):\n $ upterm session current\n === SESSION_ID\n Command: /bin/bash\n Force Command: n/a\n Host: ssh://uptermd.upterm.dev:22\n SSH Session: ssh TOKEN@uptermd.upterm.dev\n\n # A client connects to the host session via SSH:\n $ ssh TOKEN@uptermd.upterm.dev\n\n # Set flags via environment variables:\n $ UPTERM_HIDE_CLIENT_IP=true upterm host`,\n\t\tPersistentPreRunE: func(cmd *cobra.Command, args []string) error {\n\t\t\t// Bind all flags to environment variables with UPTERM_ prefix\n\t\t\tif err := bindFlagsToEnv(cmd); err != nil {\n\t\t\t\treturn err\n\t\t\t}\n\n\t\t\tdebug, _ := cmd.Flags().GetBool(\"debug\")\n\n\t\t\tlogOptions := []logging.Option{logging.File(utils.UptermLogFilePath())}\n\t\t\tif debug {\n\t\t\t\tlogOptions = append(logOptions, logging.Debug())\n\t\t\t}\n\n\t\t\tlogger, err := logging.New(logOptions...)\n\t\t\tif err != nil {\n\t\t\t\treturn err\n\t\t\t}\n\n\t\t\tcmd.SetContext(uptermctx.WithLogger(cmd.Context(), logger))\n\n\t\t\treturn nil\n\t\t},\n\t\tPersistentPostRunE: func(cmd *cobra.Command, args []string) error {\n\t\t\tif logger := uptermctx.Logger(cmd.Context()); logger != nil {\n\t\t\t\treturn logger.Close()\n\t\t\t}\n\n\t\t\treturn nil\n\t\t},\n\t}\n\n\tlogPath := utils.UptermLogFilePath()\n\trootCmd.PersistentFlags().Bool(\"debug\", os.Getenv(\"DEBUG\") != \"\",\n\t\tfmt.Sprintf(\"enable debug level logging (log file: %s).\", logPath))\n\n\trootCmd.AddCommand(configCmd())\n\trootCmd.AddCommand(hostCmd())\n\trootCmd.AddCommand(proxyCmd())\n\trootCmd.AddCommand(sessionCmd())\n\trootCmd.AddCommand(upgradeCmd())\n\trootCmd.AddCommand(versionCmd())\n\n\treturn rootCmd\n}\n\n// bindFlagsToEnv binds all command flags to config file and environment variables.\n// Configuration priority (highest to lowest):\n// 1. Command-line flags\n// 2. Environment variables with UPTERM_ prefix\n// 3. Config file (XDG_CONFIG_HOME/upterm/config.yaml)\n// 4. Default values\n//\n// Examples:\n//\n//\t--hide-client-ip flag -> UPTERM_HIDE_CLIENT_IP env var -> hide-client-ip in config.yaml\n//\t--read-only flag -> UPTERM_READ_ONLY env var -> read-only in config.yaml\nfunc bindFlagsToEnv(cmd *cobra.Command) error {\n\tv := viper.New()\n\n\t// Configure config file\n\tconfigPath := utils.UptermConfigFilePath()\n\tv.SetConfigFile(configPath)\n\n\t// Try to read config file (silent fail if not exists, but warn on parse errors)\n\tif err := v.ReadInConfig(); err != nil {\n\t\t// Only warn if the file exists but can't be parsed\n\t\tif _, statErr := os.Stat(configPath); statErr == nil {\n\t\t\t// File exists but couldn't be read - log warning if we have logger\n\t\t\tif logger := uptermctx.Logger(cmd.Context()); logger != nil {\n\t\t\t\tlogger.Warn(\"Failed to read config file\", \"path\", configPath, \"error\", err)\n\t\t\t}\n\t\t}\n\t\t// Otherwise silently continue - config file is optional\n\t}\n\n\t// Visit all flags and bind them to viper\n\tcmd.Flags().VisitAll(func(flag *pflag.Flag) {\n\t\tif flag.Name != \"help\" {\n\t\t\t// Ignore binding errors - not all flags support environment variable binding\n\t\t\t_ = v.BindPFlag(flag.Name, flag)\n\t\t}\n\t})\n\n\t// Enable automatic environment variable reading\n\tv.AutomaticEnv()\n\t// Replace hyphens with underscores for env var names (--hide-client-ip -> HIDE_CLIENT_IP)\n\tv.SetEnvKeyReplacer(strings.NewReplacer(\"-\", \"_\"))\n\t// Set prefix so all env vars start with UPTERM_ (UPTERM_HIDE_CLIENT_IP)\n\tv.SetEnvPrefix(\"UPTERM\")\n\n\t// Sync viper values back to flags\n\t// Priority: flags (if changed) > env vars > config file > defaults\n\tcmd.Flags().VisitAll(func(flag *pflag.Flag) {\n\t\tif flag.Name != \"help\" && !flag.Changed && v.IsSet(flag.Name) {\n\t\t\tval := v.Get(flag.Name)\n\t\t\t// Ignore setting errors - not all flag types can be set from strings\n\t\t\t_ = cmd.Flags().Set(flag.Name, toString(val))\n\t\t}\n\t})\n\n\treturn nil\n}\n\n// toString converts a value to string for flag setting.\n// Handles bool and string slice types specially, uses fmt.Sprintf for others.\nfunc toString(val any) string {\n\tswitch v := val.(type) {\n\tcase bool:\n\t\tif v {\n\t\t\treturn \"true\"\n\t\t}\n\t\treturn \"false\"\n\tcase string:\n\t\treturn v\n\tcase []string:\n\t\t// For string slice flags (e.g., --private-key), join with commas\n\t\treturn strings.Join(v, \",\")\n\tdefault:\n\t\t// For all other types (int, float, etc.), use fmt.Sprintf\n\t\treturn fmt.Sprintf(\"%v\", v)\n\t}\n}\n" }, { "path": "cmd/upterm/command/session.go", "content": "package command\n\nimport (\n\t\"context\"\n\t\"encoding/json\"\n\t\"fmt\"\n\t\"net\"\n\t\"net/url\"\n\t\"os\"\n\t\"path/filepath\"\n\t\"strings\"\n\t\"text/template\"\n\n\t\"github.com/owenthereal/upterm/cmd/upterm/command/internal/tui\"\n\t\"github.com/owenthereal/upterm/host\"\n\t\"github.com/owenthereal/upterm/host/api\"\n\t\"github.com/owenthereal/upterm/routing\"\n\t\"github.com/owenthereal/upterm/upterm\"\n\t\"github.com/owenthereal/upterm/utils\"\n\t\"github.com/spf13/cobra\"\n)\n\nvar (\n\tflagAdminSocket string\n\tflagOutput string\n)\n\n// sessionTemplateData holds data for template output\ntype sessionTemplateData struct {\n\tSessionID string `json:\"sessionId\"`\n\tClientCount int `json:\"clientCount\"`\n\tHost string `json:\"host\"`\n\tCommand string `json:\"command\"`\n\tForceCommand string `json:\"forceCommand\"`\n}\n\nfunc sessionCmd() *cobra.Command {\n\tcmd := &cobra.Command{\n\t\tUse: \"session\",\n\t\tAliases: []string{\"se\"},\n\t\tShort: \"Display and manage terminal sessions\",\n\t}\n\tcmd.AddCommand(current())\n\tcmd.AddCommand(list())\n\tcmd.AddCommand(show())\n\n\treturn cmd\n}\n\nfunc list() *cobra.Command {\n\truntimeDir := utils.UptermRuntimeDir()\n\tcmd := &cobra.Command{\n\t\tUse: \"list\",\n\t\tAliases: []string{\"ls\", \"l\"},\n\t\tShort: \"List shared sessions\",\n\t\tLong: fmt.Sprintf(`List shared sessions.\n\nSockets are stored in: %s\n\nFollows the XDG Base Directory Specification with fallback to $HOME/.upterm\nin constrained environments where XDG directories are unavailable.`, runtimeDir),\n\t\tExample: ` # List shared sessions:\n upterm session list`,\n\t\tRunE: listRunE,\n\t}\n\n\treturn cmd\n}\n\nfunc show() *cobra.Command {\n\tcmd := &cobra.Command{\n\t\tUse: \"info\",\n\t\tAliases: []string{\"i\"},\n\t\tShort: \"Display terminal session by name\",\n\t\tLong: `Display terminal session by name.`,\n\t\tExample: ` # Display session by name:\n upterm session info NAME`,\n\t\tRunE: infoRunE,\n\t}\n\n\tcmd.Flags().BoolVar(&flagHideClientIP, \"hide-client-ip\", false, \"Hide client IP addresses from output (auto-enabled in CI environments).\")\n\n\treturn cmd\n}\n\nfunc current() *cobra.Command {\n\truntimeDir := utils.UptermRuntimeDir()\n\tcmd := &cobra.Command{\n\t\tUse: \"current\",\n\t\tAliases: []string{\"c\"},\n\t\tShort: \"Display the current terminal session\",\n\t\tLong: fmt.Sprintf(`Display the current terminal session.\n\nBy default, reads the admin socket path from $UPTERM_ADMIN_SOCKET (automatically set\nwhen you run 'upterm host').\n\nSockets are stored in: %s\n\nFollows the XDG Base Directory Specification with fallback to $HOME/.upterm\nin constrained environments where XDG directories are unavailable.\n\nOutput formats:\n -o json JSON output\n -o go-template='{{.ClientCount}}' Custom Go template\n\nTemplate variables: SessionID, ClientCount, Host, Command, ForceCommand`, runtimeDir),\n\t\tExample: ` # Display the active session as defined in $UPTERM_ADMIN_SOCKET:\n upterm session current\n\n # Output as JSON:\n upterm session current -o json\n\n # Custom format for shell prompt (outputs nothing if not in session):\n upterm session current -o go-template='πŸ†™ {{.ClientCount}} '\n\n # For terminal title:\n upterm session current -o go-template='upterm: {{.ClientCount}} clients | {{.SessionID}}'`,\n\t\tPreRunE: validateCurrentRequiredFlags,\n\t\tRunE: currentRunE,\n\t}\n\n\tcmd.PersistentFlags().StringVarP(&flagAdminSocket, \"admin-socket\", \"\", currentAdminSocketFile(), \"Admin socket path (required).\")\n\tcmd.Flags().StringVarP(&flagOutput, \"output\", \"o\", \"\", \"Output format: json or go-template='...'\")\n\tcmd.Flags().BoolVar(&flagHideClientIP, \"hide-client-ip\", false, \"Hide client IP addresses from output (auto-enabled in CI environments).\")\n\n\treturn cmd\n}\n\nfunc listRunE(c *cobra.Command, args []string) error {\n\tsessions, err := listSessions(c.Context(), utils.UptermRuntimeDir())\n\tif err != nil {\n\t\treturn err\n\t}\n\n\tmodel := tui.NewSessionListModel(sessions)\n\t_, err = tui.RunModel(model)\n\treturn err\n}\n\n// fetchSessionDetail returns session details for an admin socket\nfunc fetchSessionDetail(ctx context.Context, adminSocket string) (tui.SessionDetail, error) {\n\tsess, err := session(ctx, adminSocket)\n\tif err != nil {\n\t\treturn tui.SessionDetail{}, err\n\t}\n\treturn buildSessionDetail(sess)\n}\n\nfunc infoRunE(c *cobra.Command, args []string) error {\n\tif len(args) == 0 {\n\t\treturn fmt.Errorf(\"missing session name\")\n\t}\n\n\tadminSocket := filepath.Join(utils.UptermRuntimeDir(), host.AdminSocketFile(args[0]))\n\tdetail, err := fetchSessionDetail(c.Context(), adminSocket)\n\tif err != nil {\n\t\treturn err\n\t}\n\n\ttui.PrintSessionDetail(detail)\n\treturn nil\n}\n\nfunc currentRunE(c *cobra.Command, args []string) error {\n\t// If output format specified, use special handling (non-interactive)\n\tif flagOutput != \"\" {\n\t\treturn outputSession(c.Context(), flagAdminSocket, flagOutput)\n\t}\n\n\tdetail, err := fetchSessionDetail(c.Context(), flagAdminSocket)\n\tif err != nil {\n\t\treturn err\n\t}\n\n\ttui.PrintSessionDetail(detail)\n\treturn nil\n}\n\n// outputSession handles -o/--output flag for session current\nfunc outputSession(ctx context.Context, adminSocket, format string) error {\n\t// Error if not in upterm session (no admin socket)\n\tif adminSocket == \"\" {\n\t\treturn fmt.Errorf(\"not in upterm session (UPTERM_ADMIN_SOCKET not set)\")\n\t}\n\n\t// Validate format\n\tif format != \"json\" && !strings.HasPrefix(format, \"go-template=\") {\n\t\treturn fmt.Errorf(\"invalid output format %q: must be 'json' or 'go-template=