mirror of
https://github.com/memohai/Memoh.git
synced 2026-04-27 07:16:19 +09:00
Menci
d5b410d7e3
* feat(mcp): workspace container with bridge architecture
Migrate MCP containers to use UDS-based bridge communication instead of
TCP gRPC. Containers now mount runtime binaries and Unix domain sockets
from the host, eliminating the need for a dedicated MCP Docker image.
- Remove Dockerfile.mcp and entrypoint.sh in favor of standard base images
- Add toolkit Dockerfile for building MCP binary separately
- Containers use bind mounts for /opt/memoh (runtime) and /run/memoh (UDS)
- Update all config files with new runtime_path and socket_dir settings
- Support custom base images per bot (debian, alpine, ubuntu, etc.)
- Legacy container detection and TCP fallback for pre-bridge containers
- Frontend: add base image selector in container creation UI
* feat(container): SSE progress bar for container creation
Add real-time progress feedback during container image pull and creation
using Server-Sent Events, without breaking the existing synchronous JSON
API (content negotiation via Accept header).
Backend:
- Add PullProgress/LayerStatus types and OnProgress callback to
PullImageOptions (containerd service layer)
- DefaultService.PullImage polls ContentStore.ListStatuses every 500ms
when OnProgress is set; AppleService ignores it
- CreateContainer handler checks Accept: text/event-stream and switches
to SSE branch: pulling → pull_progress → creating → complete/error
Frontend:
- handleCreateContainer/handleRecreateContainer use fetch + SSE instead
of the SDK's synchronous postBotsByBotIdContainer
- Progress bar shows layer-level pull progress (offset/total) during
pulling phase and indeterminate animation during creating phase
- i18n keys added for pullingImage and creatingContainer (en/zh)
* fix(container): clear stale legacy route and type create SSE
* fix(ci): resolve lint errors and arm64 musl node.js download
- Fix unused-receiver lint: rename `s` to `_` on stub methods in
manager_legacy_test.go
- Fix sloglint: use slog.DiscardHandler instead of
slog.NewTextHandler(io.Discard, nil)
- Handle missing arm64 musl Node.js builds: unofficial-builds.nodejs.org
does not provide arm64 musl binaries, fall back to glibc build
* fix(lint): address errcheck, staticcheck, and gosec findings
- Discard os.Setenv/os.Remove return values explicitly with _
- Use omitted receiver name instead of _ (staticcheck ST1006)
- Tighten directory permissions from 0o755 to 0o750 (gosec G301)
* fix(lint): sanitize socket path to satisfy gosec G703
filepath.Clean the env-sourced socket path before os.Remove
to avoid path-traversal taint warning.
* fix(lint): use nolint directive for gosec G703 on socket path
filepath.Clean does not satisfy gosec's taint analysis. The socket
path comes from MCP_SOCKET_PATH env (operator-configured) or a
compiled-in default, not from end-user input.
* refactor: rename MCP container/bridge to workspace/bridge
Split internal/mcp/ to separate container lifecycle management from
Model Context Protocol connections, eliminating naming confusion:
- internal/mcp/ (container mgmt) → internal/workspace/
- internal/mcp/mcpclient/ → internal/workspace/bridge/
- internal/mcp/mcpcontainer/ → internal/workspace/bridgepb/
- cmd/mcp/ → cmd/bridge/
- config: MCPConfig → WorkspaceConfig, [mcp] → [workspace]
- container prefix: mcp-{id} → workspace-{id}
- labels: mcp.bot_id → memoh.bot_id, add memoh.workspace=v1
- socket: mcp.sock → bridge.sock, env BRIDGE_SOCKET_PATH
- runtime: /opt/memoh/runtime/mcp → /opt/memoh/runtime/bridge
- devenv: mcp-build.sh → bridge-build.sh
Legacy containers (mcp- prefix) detected by container name prefix
and handled via existing fallback path.
* fix(container): use memoh.workspace=v3 label value
* refactor(container): drop LegacyBotLabelKey, infer bot ID from container name
Legacy containers use mcp-{botID} naming, so bot ID can be derived
via TrimPrefix instead of looking up the mcp.bot_id label.
* fix(workspace): resolve containers via manager and drop gateway container ID
* docs: fix stale mcp references in AGENTS.md and DEPLOYMENT.md
* refactor(workspace): move container lifecycle ownership into manager
* dev: isolate local devenv from prod config
* toolkit: support musl node runtime
* containerd: fix fallback resolv.conf permissions
* web: preserve container create progress on completion
* web: add bot creation wait hint
* fix(workspace): preserve image selection across recreate
* feat(web): shorten default docker hub image refs
* fix(container): address code review findings
- Remove synchronous CreateContainer path (SSE-only now)
- Move flusher check before WriteHeader to avoid committed 200 on error
- Fix legacy container IP not cached via ensureContainerAndTask path
- Add atomic guard to prevent stale pull_progress after PullImage returns
- Defensive copy for tzEnv slice to avoid mutating shared backing array
- Restore network failure severity in restartContainer (return + Error)
- Extract duplicate progress bar into ContainerCreateProgress component
- Fix codesync comments to use repo-relative paths
- Add SaaS image validation note and kernel version comment on reaper
* refactor(devenv): extract toolkit install into shared script
Unify the Node.js + uv download logic into docker/toolkit/install.sh,
used by the production Dockerfile and runnable locally for dev.
Dev environment no longer bakes toolkit into the Docker image — it is
volume-mounted from .toolkit/ instead, so wrapper script changes take
effect immediately without rebuilding. The entrypoint checks for the
toolkit directory and prints a clear error if missing.
* fix(ci): address go ci failures
* chore(docker): remove unused containerd image
* refactor(config): rename workspace image key
* fix(workspace): fix legacy container data loss on migration and stop swallowing errors
Three root causes were identified and fixed:
1. Delete() used hardcoded "workspace-" prefix to look up legacy "mcp-"
containers, causing GetContainer to return NotFound. CleanupBotContainer
then silently skipped the error and deleted the DB record without ever
calling PreserveData. Fix: resolve the actual container ID via
ContainerID() (DB → label → scan) before operating.
2. Multiple restore error paths were silently swallowed (logged as Warn
but not returned), so the user saw HTTP 200/204 with no data and no
error. Fix: all errors in the preserve/restore chain now block the
workflow and propagate to the caller.
3. tarGzDir used cached DirEntry.Info() for tar header size, which on
overlayfs can differ from the actual file size, causing "archive/tar:
write too long". Fix: open the file first, Fstat the fd for a
race-free size, and use LimitReader as a safeguard.
Also adds a "restoring" SSE phase so the frontend shows a progress
indicator ("Restoring data, this may take a while...") during data
migration on container recreation.
* refactor(workspace): single-point container ID resolution
Replace the `containerID func(string) string` field with a single
`resolveContainerID(ctx, botID)` method that resolves the actual
container ID via DB → label → scan → fallback. All ~16 lookup
callsites across manager.go, dataio.go, versioning.go, and
manager_lifecycle.go now go through this single resolver, which
correctly handles both legacy "mcp-" and new "workspace-" containers.
Only `ensureBotWithImage` inlines `ContainerPrefix + botID` for
creating brand-new containers — every other path resolves dynamically.
* fix(web): show progress during data backup phase of container recreate
The recreate flow (delete with preserve_data + create with restore_data)
blocked on the DELETE call while backing up /data with no progress
indication. Add a 'preserving' phase to the progress component so
users see "正在备份数据..." instead of an unexplained hang.
* chore: remove [MYDEBUG] debug logging
Clean up all 112 temporary debug log statements added during the
legacy container migration investigation. Kept only meaningful
warn-level logs for non-fatal errors (network teardown, rename
failures).
16 KiB
16 KiB
Web Frontend (apps/web)
Overview
@memoh/web is the management UI for Memoh, built with Vue 3 + Vite. It provides visual configuration for bots, models, channels, memory, and more.
Tech Stack
| Category | Technology |
|---|---|
| Framework | Vue 3 (Composition API, <script setup>) |
| Build | Vite 7 + @vitejs/plugin-vue |
| CSS | Tailwind CSS 4 (CSS-based config, no tailwind.config.*) |
| UI Library | @memoh/ui (built on Reka UI + class-variance-authority) |
| State | Pinia 3 + pinia-plugin-persistedstate |
| Data Fetching | Pinia Colada (@pinia/colada) + @memoh/sdk |
| Forms | vee-validate + @vee-validate/zod + Zod |
| i18n | vue-i18n (en / zh) |
| Icons | FontAwesome (primary) + lucide-vue-next (secondary) |
| Toast | vue-sonner |
| Tables | @tanstack/vue-table |
| Markdown | markstream-vue + Shiki + Mermaid + KaTeX |
| Utilities | @vueuse/core |
| TypeScript | ~5.9 (strict mode) |
Directory Structure
src/
├── App.vue # Root component (RouterView + Toaster)
├── main.ts # App entry (plugins, global components, API client setup)
├── router.ts # Route definitions and auth guard
├── style.css # Tailwind imports, CSS variables, theme tokens
├── i18n.ts # vue-i18n configuration
├── assets/ # Static assets
├── components/ # Shared components
│ ├── sidebar/ # App sidebar navigation
│ ├── main-container/ # Main content area (header + breadcrumb + content)
│ ├── master-detail-sidebar-layout/ # Master-detail layout pattern
│ ├── data-table/ # TanStack table wrapper
│ ├── form-dialog-shell/ # Dialog wrapper for forms
│ ├── confirm-popover/ # Confirmation popover
│ ├── loading-button/ # Button with loading state
│ ├── status-dot/ # Status indicator dot
│ ├── warning-banner/ # Warning banner
│ ├── search-provider-logo/ # Search provider icons
│ ├── searchable-select-popover/ # Searchable dropdown
│ ├── add-platform/ # Add platform dialog
│ ├── add-provider/ # Add LLM provider dialog
│ ├── create-model/ # Create model dialog
│ └── chat-list/ # Chat list helpers
├── composables/ # Reusable composition functions
│ ├── api/ # API-related composables (chat, SSE, platform)
│ ├── useDialogMutation.ts # Mutation wrapper with toast error handling
│ ├── useRetryingStream.ts # SSE retry with exponential backoff
│ ├── useSyncedQueryParam.ts # URL query param sync
│ ├── useBotStatusMeta.ts # Bot status metadata
│ ├── useAvatarInitials.ts # Avatar initial generation
│ ├── useClipboard.ts # Clipboard utilities
│ └── useKeyValueTags.ts # Tag management
├── constants/ # Constants (client types, etc.)
├── i18n/locales/ # Translation files (en.json, zh.json)
├── layout/
│ └── main-layout/ # Top-level layout (SidebarProvider)
├── lib/
│ └── api-client.ts # SDK client setup (base URL, auth interceptor)
├── pages/ # Route page components
│ ├── login/ # Login page
│ ├── main-section/ # Authenticated layout wrapper
│ ├── home/ # Home page
│ ├── chat/ # Chat interface (SSE streaming)
│ ├── bots/ # Bot list + detail (tabs: overview, memory, channels, etc.)
│ ├── models/ # LLM provider & model management
│ ├── search-providers/ # Search provider management
│ ├── email-providers/ # Email provider management
│ ├── settings/ # User settings (profile, password, theme, channels)
│ └── platform/ # Platform management
├── store/ # Pinia stores
│ ├── user.ts # User state, JWT token, login/logout
│ ├── settings.ts # UI settings (theme, language)
│ ├── capabilities.ts # Server capabilities (container backend)
│ └── chat-list.ts # Chat state, messages, SSE streaming
└── utils/ # Utility functions
├── api-error.ts # API error message extraction
├── date-time.ts # Date/time formatting
├── channel-icons.ts # Channel platform icons
└── key-value-tags.ts # Tag ↔ Record conversion
Routes
| Path | Name | Component | Description |
|---|---|---|---|
/login |
Login | login/index.vue |
Login form (no auth required) |
/chat |
chat | chat/index.vue |
Chat interface with bot sidebar |
/home |
home | home/index.vue |
Home dashboard |
/bots |
bots | bots/index.vue |
Bot list grid |
/bots/:botId |
bot-detail | bots/detail.vue |
Bot detail with tabs |
/models |
models | models/index.vue |
LLM provider & model management |
/search-providers |
search-providers | search-providers/index.vue |
Search provider management |
/email-providers |
email-providers | email-providers/index.vue |
Email provider management |
/settings |
settings | settings/index.vue |
User settings |
/platform |
platform | platform/index.vue |
Platform management |
Auth guard: all routes except /login require localStorage.getItem('token'). Logged-in users accessing /login are redirected to /chat.
Layout System
Three-tier layout architecture:
- MainLayout (
layout/main-layout/) — Top-level wrapper usingSidebarProviderfrom@memoh/ui. Provides#sidebarand#mainslots. - Sidebar (
components/sidebar/) — Collapsible navigation with logo, menu items, and user avatar footer. Active route highlighting. - MainContainer (
components/main-container/) — Header (sidebar trigger + breadcrumb) + scrollable content area with<KeepAlive>wrapped<RouterView>.
Several pages use MasterDetailSidebarLayout (components/master-detail-sidebar-layout/) for left-sidebar + detail-panel patterns (chat, models, search providers, email providers).
CSS & Theming
Tailwind CSS 4
CSS-based configuration in style.css (no tailwind.config.* file):
@import "tailwindcss";
Design tokens are CSS custom properties in :root / .dark using OKLCH color space with a unified subtle purple hue (285):
- Colors:
--background,--foreground,--primary,--secondary,--muted,--accent,--destructive,--border,--input,--ring - Sidebar:
--sidebar,--sidebar-foreground,--sidebar-primary, etc. - Radius:
--radiuswith size variants (--radius-sm,--radius-md,--radius-lg,--radius-xl) - Chart:
--chart-1through--chart-5
Tokens are mapped to Tailwind via @theme inline block in style.css.
Color Design Principles
The color system avoids extreme black/white to reduce visual strain and create a layered, warm feel:
- No pure black or pure white: Light mode foreground is dark charcoal (L=25%), not black. Dark mode background is dark gray (L=20.5%), not black. Dark mode foreground is soft off-white (L=88%), not pure white.
- Subtle color temperature: All neutral grays carry a tiny chroma (0.004–0.006) at hue 285 (purple), preventing a sterile "dead gray" feel.
- Text hierarchy through lightness: Three distinct levels —
text-foreground(primary text),text-secondary-foreground(emphasis text on secondary surfaces),text-muted-foreground(secondary/helper text). - Surface layering:
background<card/popover— card surfaces are slightly lighter than the page background for visual depth.
Dark Mode
- CSS:
@custom-variant dark (&:is(.dark *))instyle.css - Runtime:
useColorModefrom@vueuse/coreinstore/settings.ts - Storage: theme preference persisted via
useStorage - Toggle: Available in Settings page and login page
- Usage: semantic tokens auto-switch; no
dark:prefix needed for themed colors
Styling Convention
- Utility-first: Tailwind classes as primary styling method. Minimal
<style>blocks. - Semantic tokens only: Always use theme variables (
text-foreground,bg-background,bg-card,text-muted-foreground,border-border,bg-accent, etc.) instead of raw Tailwind colors likegray-*,bg-white, ortext-black. This ensures dark mode works automatically withoutdark:overrides. - No hardcoded gray colors: Never use
gray-100,gray-700,bg-white dark:bg-gray-800, etc. in components. Use the semantic mapping instead:
| Instead of | Use |
|---|---|
border-gray-200 dark:border-gray-700 |
border-border |
bg-white dark:bg-gray-800 |
bg-card or bg-popover |
text-gray-900 dark:text-gray-100 |
text-foreground |
bg-gray-100 dark:bg-gray-700 |
bg-muted or bg-secondary |
hover:bg-gray-50 dark:hover:bg-gray-700 |
hover:bg-accent |
text-gray-500 / text-gray-400 |
text-muted-foreground |
text-gray-600 dark:text-gray-400 |
text-muted-foreground |
bg-gray-200 dark:bg-gray-700 (separators) |
bg-border |
- Exception: Physical UI knobs (Switch thumb, Slider thumb) may keep
bg-whiteas they need to contrast against colored tracks regardless of theme. - No scoped CSS modules: Styling is done inline via utility classes.
CSS Imports (main.ts)
style.css — Tailwind + theme tokens
markstream-vue/index.css — Markdown rendering
katex/dist/katex.min.css — Math rendering
vue-sonner/style.css — Toast notifications (in App.vue)
UI Components (@memoh/ui)
@memoh/ui provides 40+ components built on Reka UI primitives + Tailwind + class-variance-authority:
- Form:
Form,FormField,FormItem,FormControl,FormLabel,FormMessage - Input:
Input,Textarea,InputGroup,NativeSelect,Combobox,TagsInput - Selection:
Select,RadioGroup,Checkbox,Switch - Layout:
Card,Separator,Sheet,Sidebar,ScrollArea,Collapsible - Overlays:
Dialog,Popover,Tooltip,DropdownMenu,ContextMenu - Data:
Table,Badge,Avatar,Skeleton,Empty - Navigation:
Breadcrumb,Tabs,Pagination - Feedback:
Button,ButtonGroup,Spinner,Alert
Form Pattern (vee-validate + Zod)
<script setup>
const form = useForm({
validationSchema: toTypedSchema(z.object({
name: z.string().min(1),
})),
})
</script>
<template>
<FormField v-slot="{ componentField }" name="name">
<FormItem>
<Label>Name</Label>
<FormControl>
<Input v-bind="componentField" />
</FormControl>
<FormMessage />
</FormItem>
</FormField>
</template>
Icon Usage
- FontAwesome (primary): Global
<FontAwesomeIcon :icon="['fas', 'robot']" />, icons registered inmain.ts - Lucide (secondary): Direct imports
<Sun />,<Moon />, used for theme toggle
Notification Pattern
import { toast } from 'vue-sonner'
toast.success(t('common.saved'))
toast.error(resolveApiErrorMessage(error, 'Failed'))
Data Fetching
API Client Setup (lib/api-client.ts)
- SDK:
@memoh/sdkauto-generated from OpenAPI via@hey-api/openapi-ts - Base URL:
VITE_API_URLenv var (defaults to/api, proxied by Vite dev server to backend) - Auth: Request interceptor attaches
Authorization: Bearer ${token}from localStorage - 401 handling: Response interceptor removes token and redirects to
/login
Pinia Colada (Server State)
Primary data fetching mechanism for CRUD operations:
// Query — auto-generated from SDK
const { data, isLoading } = useQuery(getBotsQuery())
// Custom query with dynamic key
const { data } = useQuery({
key: () => ['bot-settings', botId.value],
query: async () => {
const { data } = await getBotsByBotIdSettings({
path: { bot_id: botId.value },
throwOnError: true,
})
return data
},
enabled: () => !!botId.value,
})
// Mutation with cache invalidation
const queryCache = useQueryCache()
const { mutateAsync } = useMutation({
mutation: async (body) => {
const { data } = await putBotsByBotIdSettings({
path: { bot_id: botId.value },
body,
throwOnError: true,
})
return data
},
onSettled: () => queryCache.invalidateQueries({
key: ['bot-settings', botId.value],
}),
})
SDK also generates colada helpers: getBotsQuery(), postBotsMutation(), query key factories.
Pinia Stores (Client State)
| Store | Purpose |
|---|---|
user |
JWT token (useLocalStorage), user info, login/logout |
settings |
Theme (dark/light), language (en/zh), persisted |
capabilities |
Server feature flags (container backend, snapshot support) |
chat-list |
Chat messages, streaming state, SSE event processing |
Stores use Composition API style (defineStore(() => { ... })), with persistence via pinia-plugin-persistedstate.
SSE Streaming (Chat)
Chat responses are streamed via Server-Sent Events:
- Endpoints:
/bots/{bot_id}/web/stream(chat),/bots/{bot_id}/messages/events(real-time updates) - Parsing:
composables/api/useChat.sse.tsreadsReadableStream<Uint8Array>and parses SSEdata:lines - Events:
text_delta,reasoning_delta,tool_call_start/end,attachment_delta,processing_completed/failed - Retry:
useRetryingStreamcomposable provides exponential backoff for reconnection - State:
store/chat-list.tsprocesses streaming events into reactive message blocks in real-time - Abort: Stream cancellation via
AbortSignal
Error Handling
- Global:
utils/api-error.ts—resolveApiErrorMessage()extracts error frommessage,error,detailfields - Mutations:
useDialogMutationcomposable wraps mutations with automatictoast.error()on failure - SDK: All calls use
throwOnError: true; try/catch at component level - Streams:
processing_failed/errorevents appended to message blocks
i18n
- Plugin: vue-i18n (Composition API,
legacy: false) - Locales:
en(English, default),zh(Chinese) - Files:
src/i18n/locales/en.json,src/i18n/locales/zh.json - Usage:
const { t } = useI18n()→t('bots.title') - Key namespaces:
common,auth,sidebar,settings,chat,models,provider,searchProvider,emailProvider,mcp,bots,home
Vite Configuration
- Dev server port: 8082 (from
config.toml) - Proxy:
/api→ backend (defaulthttp://localhost:8080) - Aliases:
@→./src,#→../ui/src - Config: reads from
MEMOH_CONFIG_PATH/CONFIG_PATHwhen provided, otherwise../../config.toml, via@memoh/config
Development Rules
- Use Vue 3 Composition API with
<script setup>exclusively. - Style with Tailwind utility classes; avoid
<style>blocks. - Always use semantic color tokens (
text-foreground,bg-card,border-border,text-muted-foreground,bg-accent, etc.) instead of raw colors (gray-*,bg-white,text-black). Never introduce hardcoded Tailwind color classes for themed elements — this breaks dark mode consistency. - Use
@memoh/uicomponents for all UI primitives; do not import Reka UI directly. - Use Pinia Colada (
useQuery/useMutation) for server state; use Pinia stores for client state only. - API calls must go through
@memoh/sdk; never callfetch()directly. - All user-facing strings must use i18n keys (
t('key')) — never hardcode text. - Forms must use vee-validate + Zod schemas via
toTypedSchema(). - Error messages via
resolveApiErrorMessage()+toast.error(). - Page components go in
pages/{feature}/; page-specific sub-components go inpages/{feature}/components/. - Shared components go in
components/. - Composables go in
composables/; API-specific composables incomposables/api/.