MahmoudEmad/herolib
1
0
Fork 0
Code Issues 55 Pull Requests 1 Actions Packages Projects Releases 26 Wiki Activity
Files
c29678b303adf26dfbe03c4bc44ce96a8f93732e
herolib/lib/hero/heroserver
History
Mahmoud-Emad 61487902d6 chore: Remove unused imports 
- Remove 'os' import from heromodels
- Remove 'json' and 'x.json2' imports from openrpc
- Remove 'console' import from openrpc
- Remove unused imports in multiple modules
2025-09-28 10:38:45 +03:00
..
templates
refactor: Update example generation and schema handling
2025-09-22 14:58:22 +03:00
ai_instructions_specs.md
...
2025-09-17 07:39:54 +02:00
api_handler.v
chore: Remove unused imports
2025-09-28 10:38:45 +03:00
auth.v
...
2025-09-17 08:54:48 +02:00
doc_handler.v
feat: Enhance logging and CORS handling
2025-09-18 17:29:11 +03:00
doc_model.v
feat: Improve example generation for API specs
2025-09-22 16:04:26 +03:00
examples.v
feat: Improve example generation for API specs
2025-09-22 16:04:26 +03:00
factory.v
refactor: Update example generation and schema handling
2025-09-22 14:58:22 +03:00
model.v
fix: Update port and improve logging
2025-09-22 10:24:15 +03:00
readme.md
feat: Add CORS support to HeroServer
2025-09-18 14:23:03 +03:00

readme.md

HeroServer

HeroServer is a secure web server built in V, designed for public key-based authentication and serving OpenRPC APIs and their documentation.

Features

  • Public Key Authentication: Secure access using cryptographic signatures.
  • OpenRPC Integration: Serve APIs defined with the OpenRPC specification.
  • Automatic Documentation: Generates HTML documentation from your OpenRPC schemas.
  • Session Management: Manages authenticated user sessions.
  • CORS Support: Configurable Cross-Origin Resource Sharing for frontend integration.
  • Extensible: Register multiple, independent handlers for different API groups.

Usage

import freeflowuniverse.herolib.hero.heroserver
import freeflowuniverse.herolib.schemas.openrpc

fn main() {
    // 1. Create a new server instance with CORS support
    mut server := heroserver.new(
        port: 8080
        cors_enabled: true
        allowed_origins: ['http://localhost:5173'] // Frontend dev server
    )!

    // 2. Create and register your OpenRPC handlers
    //    These handlers must conform to the `openrpc.OpenRPCHandler` interface.
    calendar_handler := create_calendar_handler() // Your implementation
    server.register_handler('calendar', calendar_handler)!

    task_handler := create_task_handler() // Your implementation
    server.register_handler('tasks', task_handler)!

    // 3. Start the server
    server.start()! // This call blocks and starts serving requests
}

API Endpoints

  • HTML Homepage: GET / - Returns HTML homepage with server information
  • JSON Handler Info: GET /json/{handler_type} - Returns handler information in JSON format
  • API Calls: POST /api/{handler_type}
  • Documentation: GET /doc/{handler_type}
  • Markdown Docs: GET /md/{handler_type} - Returns documentation in markdown format

Authentication Flow

  1. Register Public Key: POST /auth/register
    • Body: {"pubkey": "your_public_key"}
  2. Request Challenge: POST /auth/authreq
    • Body: {"pubkey": "your_public_key"}
    • Returns a unique challenge string.
  3. Submit Signature: POST /auth/auth
    • Sign the challenge from step 2 with your private key.
    • Body: {"pubkey": "your_public_key", "signature": "your_signature"}
    • Returns a session key.

All subsequent API calls must include the session key in the Authorization header:

Authorization: Bearer {session_key}