add self-hostable sources

Author: cyclotruc

.gitignore

@@ -0,0 +1,8 @@
+*.pyc
+*/__pycache__/*
+node_modules
+dist
+src/excalidraw
+.env
+src/frontend/.env.local
+.vscode/settings.json

Dockerfile

@@ -0,0 +1,14 @@
+FROM node:20-slim as frontend-builder
+WORKDIR /app/frontend
+COPY src/frontend/package.json src/frontend/yarn.lock ./
+RUN yarn install --frozen-lockfile
+COPY src/frontend/ ./
+RUN yarn build
+
+FROM python:3.11-slim
+WORKDIR /app
+COPY src/backend /app
+RUN pip install --no-cache-dir -r requirements.txt
+COPY --from=frontend-builder /app/frontend/dist /app/frontend/dist
+
+CMD ["uvicorn", "main:app", "--host", "0.0.0.0", "--port", "8000"] 

README.md

@@ -1,2 +1,102 @@
-# pad.ws
-Whiteboard as an IDE
+# 🚀 pad.ws: Your Whiteboard IDE 🚀
+
+Welcome to `pad.ws`, the innovative whiteboard environment integrated right into your IDE!
+
+## 🛠️ Self-Hosting Guide 🛠️
+
+Ready to host your own `pad.ws` instance? Follow these steps:
+
+### ✅ Prerequisites
+
+*   **Docker & Docker Compose:** Ensure you have both installed and running. [Install Docker](https://docs.docker.com/get-docker/) / [Install Docker Compose](https://docs.docker.com/compose/install/)
+
+### 1️⃣ Step 1: Start PostgreSQL 🐘
+
+*   Run the PostgreSQL container using the provided configuration (e.g., in your `docker-compose.yml`).
+
+```bash
+# Example command (adjust based on your setup)
+docker compose up -d postgres 
+```
+
+### 2️⃣ Step 2: Configure Keycloak 🔑
+
+*   Run the Keycloak container.
+*   Access the Keycloak admin console.
+*   **Create a Realm:** Name it appropriately (e.g., `pad-ws`).
+*   **Create a Client:**
+    *   Give it a `Client ID` (e.g., `pad-ws-client`).
+    *   Enable **Client Authentication**.
+    *   Leave other settings as default for now.
+*   **Get Credentials:**
+    *   Navigate to `Clients` -> `[Your Client ID]` -> `Credentials` tab.
+    *   Note the **Client secret**.
+    *   Update your environment variables file (`.env`) with:
+        ```dotenv
+        OIDC_CLIENT_ID=your_client_id 
+        OIDC_CLIENT_SECRET=your_client_secret 
+        ```
+*   **Create a User:**
+    *   Navigate to `Users` -> `Create user`.
+    *   Fill in the details.
+    *   **Important:** Tick `Email verified`.
+    *   Go to the `Credentials` tab for the new user and set a password.
+
+### 3️⃣ Step 3: Set Up Coder 🧑‍💻
+
+*   **Find Docker Group ID:** You'll need this to grant necessary permissions.
+    ```bash
+    getent group docker | cut -d: -f3 
+    ```
+*   Update your `.env` file with the `DOCKER_GROUP_ID`:
+    ```dotenv
+    DOCKER_GROUP_ID=your_docker_group_id 
+    ```
+*   Run the Coder container.
+*   **Access Coder UI:** Open `http://localhost:7080` in your browser.
+*   **First Login:** Create an administrator user (e.g., `admin`).
+*   **Create a Template:**
+    *   Use the "Start from template" option.
+    *   Choose a base image (e.g., `docker-containers` or a simple Ubuntu). Configure it as needed.
+*   **Generate API Key:**
+    *   Click your profile picture (top right) -> `Account` -> `API Keys`.
+    *   Generate a new token.
+    *   Update your `.env`:
+        ```dotenv
+        CODER_API_KEY=your_coder_api_key 
+        ```
+*   **Get Template ID:**
+    *   Visit `http://localhost:7080/api/v2/templates` in your browser (or use `curl`).
+    *   Find the `id` of the template you created.
+    *   Update your `.env`:
+        ```dotenv
+        CODER_TEMPLATE_ID=your_coder_template_id # Example: 85fb21ba-085b-47a6-9f4d-94ea979aaba9
+        ```
+*   **Get Default Organization ID:**
+    *   Visit `http://localhost:7080/api/v2/organizations` in your browser (or use `curl`).
+    *   Find the `id` of your organization (usually the default one).
+    *   Update your `.env`:
+        ```dotenv
+        CODER_DEFAULT_ORGANIZATION=your_organization_id # Example: 70f6af06-ef3a-4b4c-a663-c03c9ee423bb
+        ```
+
+### 4️⃣ Step 4: Build & Run the Pad App 📝
+
+*   **Build the Docker Image:**
+    ```bash
+    docker build -t pad . 
+    ```
+*   **Run the Application:**
+    *   Ensure all environment variables in your `.env` file are correctly set.
+    *   Run the `pad` application container (e.g., using `docker compose up pad`).
+
+```bash
+# Example command (adjust based on your setup)
+docker compose up -d pad 
+```
+
+🎉 **Congratulations!** You should now have your self-hosted `pad.ws` instance up and running! 🎉
+
+
+
+

docker-compose.yml

@@ -0,0 +1,83 @@
+version: '3.8'
+
+services:
+  postgres:
+    image: postgres:16
+    container_name: postgres
+    environment:
+      POSTGRES_USER: ${POSTGRES_USER}
+      POSTGRES_PASSWORD: ${POSTGRES_PASSWORD}
+      POSTGRES_DB: ${POSTGRES_DB}
+    volumes:
+      - postgres_data:/var/lib/postgresql/data
+    restart: unless-stopped
+    network_mode: host
+
+  keycloak:
+    image: quay.io/keycloak/keycloak:25.0
+    container_name: keycloak
+    command: start
+    environment:
+      KC_HOSTNAME: localhost
+      KC_HOSTNAME_PORT: ${KEYCLOAK_PORT}
+      KC_HTTP_ENABLED: "true"
+      KC_HOSTNAME_STRICT_BACKCHANNEL: "false"
+      KC_HOSTNAME_STRICT_HTTPS: "false"
+      KC_HOSTNAME_URL: http://localhost:${KEYCLOAK_PORT}
+      KC_HOSTNAME_ADMIN_URL: http://localhost:${KEYCLOAK_PORT}
+      KEYCLOAK_ADMIN: ${KEYCLOAK_ADMIN}
+      KEYCLOAK_ADMIN_PASSWORD: ${KEYCLOAK_ADMIN_PASSWORD}
+      KC_PROXY: "edge"
+      PROXY_ADDRESS_FORWARDING: "true"
+      KC_DB: postgres
+      KC_DB_URL: jdbc:postgresql://localhost:5432/${POSTGRES_DB}
+      KC_DB_USERNAME: ${POSTGRES_USER}
+      KC_DB_PASSWORD: ${POSTGRES_PASSWORD}
+    restart: unless-stopped
+    network_mode: host
+
+  coder:
+    image: ghcr.io/coder/coder:latest
+    container_name: coder
+    environment:
+      CODER_ACCESS_URL: http://localhost:${CODER_PORT}
+      CODER_OIDC_ISSUER_URL: http://localhost:8080/realms/${OIDC_REALM}
+      CODER_OIDC_CLIENT_ID: ${OIDC_CLIENT_ID}
+      CODER_OIDC_CLIENT_SECRET: ${OIDC_CLIENT_SECRET}
+      CODER_OIDC_SIGN_IN_TEXT: "Sign in for pad"
+      CODER_ADDITIONAL_CSP_POLICY: ${CODER_ADDITIONAL_CSP_POLICY}
+      CODER_OAUTH2_GITHUB_DEFAULT_PROVIDER_ENABLED: "false"
+      CODER_PG_CONNECTION_URL: postgresql://${POSTGRES_USER}:${POSTGRES_PASSWORD}@localhost:5432/${POSTGRES_DB}?sslmode=disable
+      CODER_ADDRESS: 0.0.0.0:7080
+      CODER_OIDC_IGNORE_EMAIL_VERIFIED: "true"
+    volumes:
+      - /var/run/docker.sock:/var/run/docker.sock
+    group_add:
+      - ${DOCKER_GROUP_ID}
+    restart: unless-stopped
+    network_mode: host
+
+  app:
+    image: pad-ws
+    container_name: pad
+    environment:
+      - STATIC_DIR=${STATIC_DIR}
+      - ASSETS_DIR=${ASSETS_DIR}
+      - OIDC_CLIENT_ID=${OIDC_CLIENT_ID}
+      - OIDC_CLIENT_SECRET=${OIDC_CLIENT_SECRET}
+      - OIDC_SERVER_URL=http://localhost:${KEYCLOAK_PORT}
+      - OIDC_REALM=${OIDC_REALM}
+      - REDIRECT_URI=http://localhost:${APP_PORT}/auth/callback
+      - POSTGRES_USER=${POSTGRES_USER}
+      - POSTGRES_PASSWORD=${POSTGRES_PASSWORD}
+      - POSTGRES_DB=${POSTGRES_DB}
+      - POSTGRES_HOST=localhost
+      - POSTGRES_PORT=${POSTGRES_PORT}
+      - CODER_API_KEY=${CODER_API_KEY}
+      - CODER_URL=http://localhost:${CODER_PORT}
+      - CODER_TEMPLATE_ID=${CODER_TEMPLATE_ID}
+      - CODER_DEFAULT_ORGANIZATION=${CODER_DEFAULT_ORGANIZATION}
+    network_mode: host
+
+volumes:
+  postgres_data:

docs/frontend-backend-communication.md

@@ -0,0 +1,137 @@
+# Frontend-Backend Communication (React Query Architecture)
+
+This document describes the current architecture and all communication points between the frontend and backend in the Pad.ws application, following the React Query refactor. All API interactions are now managed through React Query hooks, providing deduplication, caching, polling, and robust error handling.
+
+---
+
+## 1. Overview of Communication Architecture
+
+- **All frontend-backend communication is handled via React Query hooks.**
+- **API calls are centralized in `src/frontend/src/api/hooks.ts` and `apiUtils.ts`.**
+- **No custom context providers for authentication or workspace state are used; hooks are called directly in components.**
+- **Error and loading states are managed by React Query.**
+- **Mutations (e.g., saving data, starting/stopping workspace) automatically invalidate relevant queries.**
+
+---
+
+## 2. Authentication
+
+### 2.1. Authentication Status
+
+- **Hook:** `useAuthCheck`
+- **Endpoint:** `GET /api/workspace/state`
+- **Usage:** Determines if the user is authenticated. Returns `true` if authenticated, `false` if 401 Unauthorized.
+- **Example:**
+  ```typescript
+  import { useAuthCheck } from "./api/hooks";
+  const { data: isAuthenticated = true } = useAuthCheck();
+  ```
+- **UI:** If `isAuthenticated` is `false`, the login modal (`AuthModal`) is displayed.
+
+### 2.2. Login/Logout
+
+- **Login:** Handled via OAuth redirects (e.g., `/auth/login?kc_idp_hint=google`).
+- **Logout:** Handled via redirect to `/auth/logout`.
+- **No direct API call from React Query; handled by browser navigation.**
+
+---
+
+## 3. User Profile
+
+- **Hook:** `useUserProfile`
+- **Endpoint:** `GET /api/user/me`
+- **Usage:** Fetches the authenticated user's profile.
+- **Example:**
+  ```typescript
+  import { useUserProfile } from "./api/hooks";
+  const { data: userProfile, isLoading, error } = useUserProfile();
+  ```
+
+---
+
+## 4. Workspace Management
+
+### 4.1. Workspace State
+
+- **Hook:** `useWorkspaceState`
+- **Endpoint:** `GET /api/workspace/state`
+- **Usage:** Polls workspace state every 5 seconds.
+- **Example:**
+  ```typescript
+  import { useWorkspaceState } from "./api/hooks";
+  const { data: workspaceState, isLoading, error } = useWorkspaceState();
+  ```
+
+### 4.2. Start/Stop Workspace
+
+- **Hooks:** `useStartWorkspace`, `useStopWorkspace`
+- **Endpoints:** `POST /api/workspace/start`, `POST /api/workspace/stop`
+- **Usage:** Mutations to start/stop the workspace. On success, invalidate and refetch workspace state.
+- **Example:**
+  ```typescript
+  import { useStartWorkspace, useStopWorkspace } from "./api/hooks";
+  const { mutate: startWorkspace } = useStartWorkspace();
+  const { mutate: stopWorkspace } = useStopWorkspace();
+  // Usage: startWorkspace(); stopWorkspace();
+  ```
+
+---
+
+## 5. Canvas Data Management
+
+### 5.1. Load Canvas
+
+- **Hooks:** `useCanvas`, `useDefaultCanvas`
+- **Endpoints:** `GET /api/canvas`, `GET /api/canvas/default`
+- **Usage:** Loads user canvas data; falls back to default if not available or on error.
+- **Example:**
+  ```typescript
+  import { useCanvas, useDefaultCanvas } from "./api/hooks";
+  const { data: canvasData, isError } = useCanvas();
+  const { data: defaultCanvasData } = useDefaultCanvas({ enabled: isError });
+  ```
+
+### 5.2. Save Canvas
+
+- **Hook:** `useSaveCanvas`
+- **Endpoint:** `POST /api/canvas`
+- **Usage:** Saves canvas data. Only called if user is authenticated.
+- **Example:**
+  ```typescript
+  import { useSaveCanvas } from "./api/hooks";
+  const { mutate: saveCanvas } = useSaveCanvas();
+  // Usage: saveCanvas(canvasData);
+  ```
+
+---
+
+## 6. Error Handling
+
+- **All API errors are handled by React Query and the `fetchApi` utility.**
+- **401 Unauthorized:** Triggers unauthenticated state; login modal is shown.
+- **Other errors:** Exposed via `error` property in hook results; components can display error messages or fallback UI.
+- **Example:**
+  ```typescript
+  const { data, error, isLoading } = useWorkspaceState();
+  if (error) { /* Show error UI */ }
+  ```
+
+---
+
+## 7. API Utility Functions
+
+- **File:** `src/frontend/src/api/apiUtils.ts`
+- **Functions:** `fetchApi`, `handleResponse`
+- **Purpose:** Centralizes fetch logic, error handling, and credentials management for all API calls.
+
+---
+
+## 8. Summary
+
+- **All frontend-backend communication is now declarative and managed by React Query hooks.**
+- **No legacy context classes or direct fetches remain.**
+- **API logic is centralized, maintainable, and testable.**
+- **Error handling, caching, and polling are handled automatically.**
+- **UI components react to hook state for loading, error, and data.**
+
+This architecture ensures robust, efficient, and maintainable communication between the frontend and backend.