mcp-cloudron

cloudron-client.ts•28.1 kB

/** * Cloudron API Client * MVP scope: listApps + getApp endpoints * DI-enabled for testing */ import type { CloudronClientConfig, App, AppsResponse, AppResponse, SystemStatus, TaskStatus, StorageInfo, ValidatableOperation, ValidationResult, Backup, BackupsResponse, AppStoreApp, AppStoreResponse, User, UsersResponse, LogType, LogEntry, LogsResponse, AppConfig, ConfigureAppResponse, ManifestValidationResult, AppManifest, InstallAppParams, Domain } from './types.js'; import { CloudronError, CloudronAuthError, createErrorFromStatus } from './errors.js'; const DEFAULT_TIMEOUT = 30000; export class CloudronClient { private readonly baseUrl: string; private readonly token: string; /** * Create CloudronClient with DI support * @param config - Optional config (defaults to env vars) */ constructor(config?: Partial<CloudronClientConfig>) { const baseUrl = config?.baseUrl ?? process.env.CLOUDRON_BASE_URL; const token = config?.token ?? process.env.CLOUDRON_API_TOKEN; if (!baseUrl) { throw new CloudronError('CLOUDRON_BASE_URL not set. Provide via config or environment variable.'); } if (!token) { throw new CloudronError('CLOUDRON_API_TOKEN not set. Provide via config or environment variable.'); } this.baseUrl = baseUrl.replace(/\/$/, ''); // Remove trailing slash this.token = token; } /** * Make HTTP request to Cloudron API * NO retry logic (deferred to Phase 3 with idempotency keys) */ private async makeRequest<T>( method: 'GET' | 'POST' | 'PUT' | 'DELETE', endpoint: string, body?: unknown, options?: { timeout?: number } ): Promise<T> { const url = `${this.baseUrl}${endpoint}`; const timeout = options?.timeout ?? DEFAULT_TIMEOUT; const controller = new AbortController(); const timeoutId = setTimeout(() => controller.abort(), timeout); try { const fetchOptions: RequestInit = { method, headers: { 'Authorization': `Bearer ${this.token}`, 'Content-Type': 'application/json', 'Accept': 'application/json', }, signal: controller.signal, }; if (body !== undefined) { fetchOptions.body = JSON.stringify(body); } const response = await fetch(url, fetchOptions); clearTimeout(timeoutId); if (!response.ok) { const errorBody = await response.text(); let message = `Cloudron API error: ${response.status} ${response.statusText}`; try { const parsed = JSON.parse(errorBody); if (parsed.message) message = parsed.message; } catch { // Use default message if body isn't JSON } throw createErrorFromStatus(response.status, message); } return await response.json() as T; } catch (error) { clearTimeout(timeoutId); if (error instanceof CloudronError) { throw error; } if (error instanceof Error) { if (error.name === 'AbortError') { throw new CloudronError(`Request timeout after ${timeout}ms`, undefined, 'TIMEOUT'); } throw new CloudronError(`Network error: ${error.message}`, undefined, 'NETWORK_ERROR'); } throw new CloudronError('Unknown error occurred'); } } // ==================== MVP Endpoints ==================== /** * List all installed apps * GET /api/v1/apps */ async listApps(): Promise<App[]> { const response = await this.makeRequest<AppsResponse>('GET', '/api/v1/apps'); return response.apps; } /** * Get a specific app by ID * GET /api/v1/apps/:appId * * Note: API returns app object directly, not wrapped in { app: {...} } */ async getApp(appId: string): Promise<App> { if (!appId) { throw new CloudronError('appId is required'); } return await this.makeRequest<App>('GET', `/api/v1/apps/${encodeURIComponent(appId)}`); } /** * Get Cloudron system status * GET /api/v1/cloudron/status */ async getStatus(): Promise<SystemStatus> { return await this.makeRequest<SystemStatus>('GET', '/api/v1/cloudron/status'); } /** * List all backups * GET /api/v1/backups * @returns Array of backups sorted by timestamp (newest first) */ async listBackups(): Promise<Backup[]> { const response = await this.makeRequest<BackupsResponse>('GET', '/api/v1/backups'); // Sort backups by creationTime (newest first) const backups = response.backups || []; return backups.sort((a, b) => { const timeA = new Date(a.creationTime).getTime(); const timeB = new Date(b.creationTime).getTime(); return timeB - timeA; // Descending order (newest first) }); } /** * Create a new backup (with F36 pre-flight storage check) * POST /api/v1/backups * @returns Task ID for tracking backup progress via getTaskStatus() */ async createBackup(): Promise<string> { // F36 pre-flight storage check: Require 5GB minimum for backup const BACKUP_MIN_STORAGE_MB = 5120; // 5GB const storageInfo = await this.checkStorage(BACKUP_MIN_STORAGE_MB); if (!storageInfo.sufficient) { throw new CloudronError( `Insufficient storage for backup. Required: ${BACKUP_MIN_STORAGE_MB}MB, Available: ${storageInfo.available_mb}MB` ); } if (storageInfo.warning) { // Log warning but allow operation to proceed console.warn( `Storage warning: ${storageInfo.available_mb}MB available (${((storageInfo.available_mb / storageInfo.total_mb) * 100).toFixed(1)}% of total)` ); } // Create backup (async operation) const response = await this.makeRequest<{ taskId: string }>('POST', '/api/v1/backups'); if (!response.taskId) { throw new CloudronError('Backup creation response missing taskId'); } return response.taskId; } /** * List all users on Cloudron instance * GET /api/v1/users * @returns Array of users sorted by role then email */ async listUsers(): Promise<User[]> { const response = await this.makeRequest<UsersResponse>('GET', '/api/v1/users'); // Sort users by role then email const users = response.users || []; return users.sort((a, b) => { // Sort by role first (admin > user > guest) const roleOrder = { admin: 0, user: 1, guest: 2 }; const roleCompare = roleOrder[a.role] - roleOrder[b.role]; if (roleCompare !== 0) return roleCompare; // Then by email alphabetically return a.email.localeCompare(b.email); }); } /** * Search Cloudron App Store for available applications * GET /api/v1/appstore/apps?search={query} * @param query - Optional search query (empty returns all apps) * @returns Array of app store apps sorted by relevance score */ async searchApps(query?: string): Promise<AppStoreApp[]> { const endpoint = query ? `/api/v1/appstore/apps?search=${encodeURIComponent(query)}` : '/api/v1/appstore/apps'; const response = await this.makeRequest<AppStoreResponse>('GET', endpoint); // Sort results by relevance score (highest first) if available const apps = response.apps || []; return apps.sort((a, b) => { const scoreA = a.relevanceScore ?? 0; const scoreB = b.relevanceScore ?? 0; return scoreB - scoreA; // Descending order (highest relevance first) }); } /** * Create a new user with role assignment (atomic operation) * POST /api/v1/users * @param email - User email address * @param password - User password (must meet strength requirements) * @param role - User role: 'admin', 'user', or 'guest' * @returns Created user object */ async createUser(email: string, password: string, role: 'admin' | 'user' | 'guest'): Promise<User> { // Validate email format if (!email || !this.isValidEmail(email)) { throw new CloudronError('Invalid email format'); } // Validate password strength (8+ chars, 1 uppercase, 1 number) if (!this.isValidPassword(password)) { throw new CloudronError('Password must be at least 8 characters long and contain at least 1 uppercase letter and 1 number'); } // Validate role enum if (!['admin', 'user', 'guest'].includes(role)) { throw new CloudronError(`Invalid role: ${role}. Valid options: admin, user, guest`); } return await this.makeRequest<User>('POST', '/api/v1/users', { email, password, role, }); } /** * List all configured domains on Cloudron instance * GET /api/v1/domains * @returns Array of domain configurations */ async listDomains(): Promise<Domain[]> { const response = await this.makeRequest<{ domains: Domain[] }>('GET', '/api/v1/domains'); return response.domains; } /** * Validate email format using RFC 5322 simplified regex * @param email - Email to validate * @returns true if email format is valid */ private isValidEmail(email: string): boolean { const emailRegex = /^[^\s@]+@[^\s@]+\.[^\s@]+$/; return emailRegex.test(email); } /** * Validate password strength * Requirements: 8+ characters, 1 uppercase letter, 1 number * @param password - Password to validate * @returns true if password meets strength requirements */ private isValidPassword(password: string): boolean { if (password.length < 8) return false; if (!/[A-Z]/.test(password)) return false; // At least 1 uppercase if (!/[0-9]/.test(password)) return false; // At least 1 number return true; } /** * Start an app * POST /api/v1/apps/:appId/start * @returns 202 Accepted response with task ID */ async startApp(appId: string): Promise<{ taskId: string }> { if (!appId) { throw new CloudronError('appId is required'); } return await this.makeRequest<{ taskId: string }>('POST', `/api/v1/apps/${encodeURIComponent(appId)}/start`); } /** * Stop an app * POST /api/v1/apps/:appId/stop * @returns 202 Accepted response with task ID */ async stopApp(appId: string): Promise<{ taskId: string }> { if (!appId) { throw new CloudronError('appId is required'); } return await this.makeRequest<{ taskId: string }>('POST', `/api/v1/apps/${encodeURIComponent(appId)}/stop`); } /** * Restart an app * POST /api/v1/apps/:appId/restart * @returns 202 Accepted response with task ID */ async restartApp(appId: string): Promise<{ taskId: string }> { if (!appId) { throw new CloudronError('appId is required'); } return await this.makeRequest<{ taskId: string }>('POST', `/api/v1/apps/${encodeURIComponent(appId)}/restart`); } /** * Configure app settings (env vars, memory limits, access control) * PUT /api/v1/apps/:appId/configure * @param appId - The app ID to configure * @param config - Configuration object with env vars, memoryLimit, accessRestriction * @returns Response with updated app and restart requirement flag */ async configureApp(appId: string, config: AppConfig): Promise<ConfigureAppResponse> { if (!appId) { throw new CloudronError('appId is required'); } // Validate config object has at least one field if (!config || Object.keys(config).length === 0) { throw new CloudronError('config object cannot be empty'); } // Validate config fields if present if (config.env !== undefined && typeof config.env !== 'object') { throw new CloudronError('env must be an object of key-value pairs'); } if (config.memoryLimit !== undefined) { if (typeof config.memoryLimit !== 'number' || config.memoryLimit <= 0) { throw new CloudronError('memoryLimit must be a positive number (in MB)'); } } if (config.accessRestriction !== undefined && config.accessRestriction !== null) { if (typeof config.accessRestriction !== 'string') { throw new CloudronError('accessRestriction must be a string or null'); } } return await this.makeRequest<ConfigureAppResponse>( 'PUT', `/api/v1/apps/${encodeURIComponent(appId)}/configure`, config ); } /** * Uninstall an application (DESTRUCTIVE OPERATION) * POST /api/v1/apps/:id/uninstall * Returns task ID for async operation tracking * Performs pre-flight validation via F37 before proceeding */ async uninstallApp(appId: string): Promise<{ taskId: string }> { if (!appId) { throw new CloudronError('appId is required'); } // Pre-flight validation via F37 const validation = await this.validateOperation('uninstall_app', appId); // If validation fails, throw error with validation details if (!validation.valid) { const errorMessage = `Pre-flight validation failed for uninstall_app on '${appId}':\n${validation.errors.join('\n')}`; throw new CloudronError(errorMessage); } // Proceed with uninstall if validation passes return await this.makeRequest<{ taskId: string }>( 'POST', `/api/v1/apps/${encodeURIComponent(appId)}/uninstall` ); } /** * Get task status for async operations * GET /api/v1/tasks/:taskId */ async getTaskStatus(taskId: string): Promise<TaskStatus> { if (!taskId) { throw new CloudronError('taskId is required'); } return await this.makeRequest<TaskStatus>('GET', `/api/v1/tasks/${encodeURIComponent(taskId)}`); } /** * Cancel a running async operation (kill switch) * DELETE /api/v1/tasks/:taskId * @returns Updated task status with 'cancelled' state */ async cancelTask(taskId: string): Promise<TaskStatus> { if (!taskId) { throw new CloudronError('taskId is required'); } return await this.makeRequest<TaskStatus>('DELETE', `/api/v1/tasks/${encodeURIComponent(taskId)}`); } /** * Get logs for an app or service * GET /api/v1/apps/:id/logs or GET /api/v1/services/:id/logs * @param resourceId - App ID or service ID * @param type - Type of resource ('app' or 'service') * @param lines - Optional number of log lines to retrieve (default 100, max 1000) * @returns Formatted log entries with timestamps and severity levels */ async getLogs(resourceId: string, type: LogType, lines: number = 100): Promise<LogEntry[]> { if (!resourceId) { throw new CloudronError('resourceId is required'); } if (type !== 'app' && type !== 'service') { throw new CloudronError(`Invalid type: ${type}. Valid options: app, service`); } // Clamp lines between 1 and 1000 const clampedLines = Math.max(1, Math.min(1000, lines)); // Determine endpoint based on type const endpoint = type === 'app' ? `/api/v1/apps/${encodeURIComponent(resourceId)}/logs?lines=${clampedLines}` : `/api/v1/services/${encodeURIComponent(resourceId)}/logs?lines=${clampedLines}`; const response = await this.makeRequest<LogsResponse>('GET', endpoint); // Parse and format log entries return this.parseLogEntries(response.logs || []); } /** * Parse raw log lines into structured LogEntry objects * Attempts to extract timestamp and severity level from log lines */ private parseLogEntries(logLines: string[]): LogEntry[] { return logLines.map(line => { // Try to parse common log formats: // 1. ISO timestamp at start: "2025-12-24T12:00:00Z [INFO] message" // 2. Syslog format: "Dec 24 12:00:00 host service[pid]: message" // 3. Simple format: "[INFO] message" // 4. Plain text: "message" const isoMatch = line.match(/^(\d{4}-\d{2}-\d{2}T\d{2}:\d{2}:\d{2}(?:\.\d+)?Z?)\s+\[?(\w+)\]?\s*(.*)$/); if (isoMatch && isoMatch[1] && isoMatch[2] && isoMatch[3]) { return { timestamp: isoMatch[1], severity: isoMatch[2].toUpperCase(), message: isoMatch[3].trim(), }; } const syslogMatch = line.match(/^(\w{3}\s+\d{1,2}\s+\d{2}:\d{2}:\d{2})\s+.*?\[\d+\]:\s*\[?(\w+)\]?\s*(.*)$/); if (syslogMatch && syslogMatch[1] && syslogMatch[2] && syslogMatch[3]) { return { timestamp: syslogMatch[1], severity: syslogMatch[2].toUpperCase(), message: syslogMatch[3].trim(), }; } const simpleMatch = line.match(/^\[?(\w+)\]?\s+(.*)$/); if (simpleMatch && simpleMatch[1] && simpleMatch[2] && ['DEBUG', 'INFO', 'WARN', 'WARNING', 'ERROR', 'FATAL', 'TRACE'].includes(simpleMatch[1].toUpperCase())) { return { timestamp: new Date().toISOString(), severity: simpleMatch[1].toUpperCase(), message: simpleMatch[2].trim(), }; } // Fallback: plain text log line return { timestamp: new Date().toISOString(), severity: 'INFO', message: line.trim(), }; }); } /** * Check available disk space for pre-flight validation * GET /api/v1/cloudron/status (reuses existing endpoint) * @param requiredMB - Optional required disk space in MB * @returns Storage info with availability and threshold checks */ async checkStorage(requiredMB?: number): Promise<StorageInfo> { const status = await this.getStatus(); if (!status.disk) { throw new CloudronError('Disk information not available in system status'); } // Convert bytes to MB const available_mb = Math.floor(status.disk.free / 1024 / 1024); const total_mb = Math.floor(status.disk.total / 1024 / 1024); const used_mb = Math.floor(status.disk.used / 1024 / 1024); // Check if sufficient space available (if requiredMB provided) const sufficient = requiredMB !== undefined ? available_mb >= requiredMB : true; // Warning threshold: available < 10% of total const warning = available_mb < (total_mb * 0.1); // Critical threshold: available < 5% of total const critical = available_mb < (total_mb * 0.05); return { available_mb, total_mb, used_mb, sufficient, warning, critical, }; } /** * Validate a destructive operation before execution (pre-flight safety check) * @param operation - Type of operation to validate * @param resourceId - ID of the resource being operated on * @returns Validation result with errors, warnings, and recommendations */ async validateOperation(operation: ValidatableOperation, resourceId: string): Promise<ValidationResult> { if (!resourceId) { throw new CloudronError('resourceId is required for operation validation'); } const result: ValidationResult = { valid: true, errors: [], warnings: [], recommendations: [], }; switch (operation) { case 'uninstall_app': await this.validateUninstallApp(resourceId, result); break; case 'delete_user': await this.validateDeleteUser(resourceId, result); break; case 'restore_backup': await this.validateRestoreBackup(resourceId, result); break; default: throw new CloudronError(`Invalid operation type: ${operation}. Valid options: uninstall_app, delete_user, restore_backup`); } // Set valid to false if there are any blocking errors if (result.errors.length > 0) { result.valid = false; } return result; } /** * Validate uninstall_app operation * Checks: app exists, no dependent apps, backup exists */ private async validateUninstallApp(appId: string, result: ValidationResult): Promise<void> { try { // Check if app exists const app = await this.getApp(appId); // Check app state - warn if pending operations if (app.installationState !== 'installed') { result.warnings.push(`App is in state '${app.installationState}', not 'installed'. Uninstall may fail or behave unexpectedly.`); } // Recommendation: Create backup before uninstall result.recommendations.push('Create a backup before uninstalling to preserve app data and configuration.'); // TODO: Check for dependent apps (requires app dependency API endpoint) // For now, add as recommendation result.recommendations.push('Verify no other apps depend on this app before uninstalling.'); // Check if recent backup exists (within last 24 hours) // Note: This requires listBackups() which is F07 (not yet implemented) // For now, add as recommendation result.recommendations.push('Ensure a recent backup exists for disaster recovery.'); } catch (error) { if (isCloudronError(error) && error.statusCode === 404) { result.errors.push(`App with ID '${appId}' does not exist.`); } else { throw error; } } } /** * Validate delete_user operation * Checks: user exists, not last admin, not currently logged in */ private async validateDeleteUser(userId: string, result: ValidationResult): Promise<void> { // Note: This requires listUsers() API which is F12 (not yet implemented) // For Phase 1, we provide basic validation structure // TODO: Check if user exists (requires GET /api/v1/users/:id endpoint) // TODO: Check if user is last admin (requires GET /api/v1/users with role filtering) // TODO: Check if user is currently logged in (requires session/activity API) result.warnings.push('User deletion validation is limited in current implementation.'); result.recommendations.push('Verify user is not the last admin before deletion.'); result.recommendations.push('Ensure user is not currently logged in before deletion.'); result.recommendations.push('Transfer ownership of user data/apps before deletion if needed.'); } /** * Validate restore_backup operation * Checks: backup exists, backup integrity valid, sufficient storage */ private async validateRestoreBackup(backupId: string, result: ValidationResult): Promise<void> { // Note: This requires listBackups() API which is F07 (not yet implemented) // For Phase 1, we focus on storage validation try { // Check storage sufficiency // Assume backup requires at least 1GB of free space for safety margin const RESTORE_MIN_STORAGE_MB = 1024; const storageInfo = await this.checkStorage(RESTORE_MIN_STORAGE_MB); if (!storageInfo.sufficient) { result.errors.push(`Insufficient disk space for restore. Available: ${storageInfo.available_mb} MB, Required: ${RESTORE_MIN_STORAGE_MB} MB`); } if (storageInfo.critical) { result.errors.push('CRITICAL: Less than 5% disk space remaining. Restore operation blocked.'); } else if (storageInfo.warning) { result.warnings.push('WARNING: Less than 10% disk space remaining. Monitor disk usage during restore.'); } // TODO: Check if backup exists (requires GET /api/v1/backups/:id endpoint from F07) // TODO: Check backup integrity (requires backup metadata with checksum/status) result.recommendations.push('Verify backup integrity before restore.'); result.recommendations.push('Ensure all apps are stopped before restore to prevent data corruption.'); result.recommendations.push('Create a new backup of current state before restore for rollback capability.'); } catch (error) { if (error instanceof CloudronError) { result.errors.push(`Storage check failed: ${error.message}`); } else { throw error; } } } /** * Validate app manifest before installation (F23a pre-flight safety check) * Checks: F36 storage sufficient, dependencies available, configuration schema valid * @param appId - The app ID to validate from App Store * @param requiredMB - Optional disk space requirement in MB (defaults to 500MB) * @returns Validation result with errors and warnings */ async validateManifest(appId: string, requiredMB: number = 500): Promise<ManifestValidationResult> { if (!appId) { throw new CloudronError('appId is required for manifest validation'); } const result: ManifestValidationResult = { valid: true, errors: [], warnings: [], }; try { // Step 1: Fetch app manifest from App Store // Note: Using searchApps as proxy since GET /api/v1/appstore/:id may not exist const apps = await this.searchApps(appId); const app = apps.find(a => a.id === appId); if (!app) { result.errors.push(`App not found in App Store: ${appId}`); result.valid = false; return result; } // Step 2: Check F36 storage sufficient for installation const storageInfo = await this.checkStorage(requiredMB); if (storageInfo.critical) { result.errors.push(`CRITICAL: Less than 5% disk space remaining (${storageInfo.available_mb}MB available). Installation blocked.`); } else if (!storageInfo.sufficient) { result.errors.push(`Insufficient disk space: ${storageInfo.available_mb}MB available, ${requiredMB}MB required.`); } else if (storageInfo.warning) { result.warnings.push(`WARNING: Less than 10% disk space remaining (${storageInfo.available_mb}MB available). Monitor disk usage after installation.`); } // Step 3: Check dependencies available in catalog // Note: Cloudron App Store apps declare dependencies in manifest.addons // For MVP, we'll validate basic structure exists // Full dependency resolution would require GET /api/v1/appstore/:id/manifest if (app.description && app.description.toLowerCase().includes('requires')) { result.warnings.push('App may have dependencies. Verify all required addons are available.'); } // Step 4: Validate configuration schema // Note: Full schema validation would require manifest.configSchema from API // For MVP, we'll pass this check with a recommendation result.warnings.push('Ensure app configuration matches Cloudron specification after installation.'); } catch (error) { if (error instanceof CloudronError) { result.errors.push(`Manifest validation failed: ${error.message}`); } else { throw error; } } // Set valid to false if there are any blocking errors if (result.errors.length > 0) { result.valid = false; } return result; } /** * Install an application from the App Store (F23b with pre-flight validation) * POST /api/v1/apps/install * @param params - Installation parameters (manifestId, location, optional config) * @returns Task ID for tracking installation progress via getTaskStatus() */ async installApp(params: InstallAppParams): Promise<string> { if (!params.manifestId) { throw new CloudronError('manifestId is required for app installation'); } if (!params.location) { throw new CloudronError('location (subdomain) is required for app installation'); } // F23a pre-flight validation: Check manifest validity and storage const validation = await this.validateManifest(params.manifestId); if (!validation.valid) { throw new CloudronError( `Pre-flight validation failed: ${validation.errors.join(', ')}` ); } // Log warnings but allow installation to proceed if (validation.warnings.length > 0) { console.warn(`Installation warnings: ${validation.warnings.join('; ')}`); } // Install app (async operation) const body = { appStoreId: params.manifestId, location: params.location, domain: params.domain, accessRestriction: params.accessRestriction, ...(params.portBindings && { portBindings: params.portBindings }), ...(params.env && { env: params.env }), }; const response = await this.makeRequest<{ taskId: string }>('POST', '/api/v1/apps', body); if (!response.taskId) { throw new CloudronError('App installation response missing taskId'); } return response.taskId; } } /** * Type guard for CloudronError */ function isCloudronError(error: unknown): error is CloudronError { return error instanceof CloudronError; }

Loading blob content...

Latest Blog Posts

Don't Use Large Strings as Cache Keys
By punkpeye on January 11, 2026.
markdown
node-js
cache
What are Claude Skills?
By punkpeye on January 10, 2026.
mcp
skills
How to Test MCP Streamable HTTP Endpoints Using cURL
By punkpeye on January 2, 2026.
tutorial
bash

MCP directory API

We provide all the information about MCP servers via our MCP API.

curl -X GET 'https://glama.ai/api/mcp/v1/servers/serenichron/mcp-cloudron'

If you have feedback or need assistance with the MCP directory API, please join our Discord server

cloudron-client.ts•28.1 kB