feat: Add ttyd web terminal daemon for productization

fanux · fanux · commit bc2cce0c8bbe · 2025-10-02T13:46:10.000Z
- Added ttyd to Dockerfile for web-based terminal access
- Created configurable entrypoint script with ttyd daemon support
- Added comprehensive ttyd environment variables for customization
- Updated README with ttyd usage instructions and examples
- Exposed port 7681 for web terminal interface
- Support for authentication, custom paths, and security options
diff --git a/Dockerfile b/Dockerfile
@@ -129,15 +129,27 @@ RUN apt-get update && apt-get install -y \
     exa \
     && rm -rf /var/lib/apt/lists/*
 
+# Install ttyd for web-based terminal access
+RUN wget -O /tmp/ttyd https://github.com/tsl0922/ttyd/releases/latest/download/ttyd.x86_64 && \
+    chmod +x /tmp/ttyd && \
+    mv /tmp/ttyd /usr/local/bin/ttyd
+
 # Create working directory
 WORKDIR /workspace
 
 # Set up a non-root user for better security (optional, can be overridden)
 RUN useradd -m -s /bin/bash developer && \
     echo 'developer ALL=(ALL) NOPASSWD:ALL' >> /etc/sudoers
 
+# Copy entrypoint script
+COPY entrypoint.sh /usr/local/bin/entrypoint.sh
+RUN chmod +x /usr/local/bin/entrypoint.sh
+
 # Expose common ports for web development
-EXPOSE 3000 3001 5000 5173 8080 8000 5432
+EXPOSE 3000 3001 5000 5173 8080 8000 5432 7681
+
+# Set entrypoint to run ttyd as daemon
+ENTRYPOINT ["/usr/local/bin/entrypoint.sh"]
 
 # Set default command
 CMD ["/bin/bash"]
diff --git a/README.md b/README.md
@@ -12,6 +12,7 @@ This runtime includes:
 - **shadcn/ui** - Modern React component library with Tailwind CSS
 - **Claude Code CLI** - AI-powered coding assistant
 - **Buildah** - Container building tool that works in unprivileged mode
+- **ttyd** - Web-based terminal access for remote development
 - **Development Tools** - Git, GitHub CLI, ripgrep, and more
 
 ## Quick Start
@@ -75,6 +76,8 @@ buildah push fullstackagent/fullstack-web-runtime:latest docker://fullstackagent
 
 The runtime supports the following environment variables:
 
+### Core Configuration
+
 | Variable | Description | Default | Required |
 |----------|-------------|---------|----------|
 | `ANTHROPIC_BASE_URL` | Base URL for Anthropic API | - | No |
@@ -84,6 +87,20 @@ The runtime supports the following environment variables:
 | `DOCKER_HUB_NAME` | Docker Hub username for pushing images | - | For pushing |
 | `DOCKER_HUB_PASSWD` | Docker Hub password for pushing images | - | For pushing |
 
+### ttyd Web Terminal Configuration
+
+| Variable | Description | Default | Required |
+|----------|-------------|---------|----------|
+| `TTYD_PORT` | Port for web terminal access | 7681 | No |
+| `TTYD_USERNAME` | Username for authentication | - | No |
+| `TTYD_PASSWORD` | Password for authentication | - | No |
+| `TTYD_INTERFACE` | Network interface to bind | 0.0.0.0 | No |
+| `TTYD_BASE_PATH` | Base URL path for ttyd | / | No |
+| `TTYD_MAX_CLIENTS` | Maximum concurrent clients (0=unlimited) | 0 | No |
+| `TTYD_READONLY` | Enable read-only mode | false | No |
+| `TTYD_ALLOW_ORIGIN` | CORS allow origin header | * | No |
+| `DISABLE_TTYD` | Disable ttyd completely | false | No |
+
 ### Setting Environment Variables
 
 When running the container:
@@ -106,6 +123,59 @@ docker run -it --rm \
   fullstackagent/fullstack-web-runtime:latest
 ```
 
+## Web Terminal Access (ttyd)
+
+The runtime includes ttyd, providing secure web-based terminal access. This is particularly useful for:
+- Remote development environments
+- Cloud-based IDEs
+- Product demonstrations
+- Educational platforms
+
+### Basic Usage
+
+```bash
+# Run with default ttyd configuration (port 7681, no auth)
+docker run -it --rm -p 7681:7681 fullstackagent/fullstack-web-runtime:latest
+
+# Access the web terminal at: http://localhost:7681
+```
+
+### Secure Usage with Authentication
+
+```bash
+# Run with authentication enabled
+docker run -it --rm \
+  -p 7681:7681 \
+  -e TTYD_USERNAME=admin \
+  -e TTYD_PASSWORD=secretpassword \
+  fullstackagent/fullstack-web-runtime:latest
+```
+
+### Custom Configuration
+
+```bash
+# Run with custom port and path
+docker run -it --rm \
+  -p 8080:8080 \
+  -e TTYD_PORT=8080 \
+  -e TTYD_BASE_PATH=/terminal \
+  -e TTYD_USERNAME=developer \
+  -e TTYD_PASSWORD=secure123 \
+  fullstackagent/fullstack-web-runtime:latest
+
+# Access at: http://localhost:8080/terminal
+```
+
+### Disable ttyd
+
+If you don't need web terminal access:
+
+```bash
+docker run -it --rm \
+  -e DISABLE_TTYD=true \
+  fullstackagent/fullstack-web-runtime:latest
+```
+
 ## Usage Examples
 
 ### Create a Next.js Application
@@ -161,6 +231,7 @@ The following ports are exposed by default:
 - `8080` - General web server
 - `8000` - Django/FastAPI
 - `5432` - PostgreSQL connection
+- `7681` - ttyd web terminal interface
 
 ## Volume Mounts
 
@@ -202,6 +273,9 @@ Recommended volume mounts:
 - Podman
 - Skopeo
 
+### Web Terminal
+- ttyd (web-based terminal with authentication support)
+
 ### Utilities
 - ripgrep (fast search)
 - fd-find (fast file finder)
diff --git a/entrypoint.sh b/entrypoint.sh
@@ -0,0 +1,96 @@
+#!/bin/bash
+
+# Entrypoint script for Full-Stack Web Runtime
+# This script starts ttyd as a daemon for web terminal access
+
+# Configuration
+TTYD_PORT=${TTYD_PORT:-7681}
+TTYD_USERNAME=${TTYD_USERNAME:-}
+TTYD_PASSWORD=${TTYD_PASSWORD:-}
+TTYD_INTERFACE=${TTYD_INTERFACE:-0.0.0.0}
+TTYD_BASE_PATH=${TTYD_BASE_PATH:-/}
+TTYD_MAX_CLIENTS=${TTYD_MAX_CLIENTS:-0}
+TTYD_READONLY=${TTYD_READONLY:-false}
+TTYD_CHECK_ORIGIN=${TTYD_CHECK_ORIGIN:-false}
+TTYD_ALLOW_ORIGIN=${TTYD_ALLOW_ORIGIN:-*}
+
+# Build ttyd command with options
+TTYD_CMD="ttyd"
+
+# Add interface and port
+TTYD_CMD="$TTYD_CMD --interface $TTYD_INTERFACE"
+TTYD_CMD="$TTYD_CMD --port $TTYD_PORT"
+
+# Add base path if specified
+if [ "$TTYD_BASE_PATH" != "/" ]; then
+    TTYD_CMD="$TTYD_CMD --base-path $TTYD_BASE_PATH"
+fi
+
+# Add authentication if username and password are provided
+if [ -n "$TTYD_USERNAME" ] && [ -n "$TTYD_PASSWORD" ]; then
+    TTYD_CMD="$TTYD_CMD --credential $TTYD_USERNAME:$TTYD_PASSWORD"
+fi
+
+# Add max clients limit
+if [ "$TTYD_MAX_CLIENTS" -gt 0 ]; then
+    TTYD_CMD="$TTYD_CMD --max-clients $TTYD_MAX_CLIENTS"
+fi
+
+# Add readonly mode if enabled
+if [ "$TTYD_READONLY" = "true" ]; then
+    TTYD_CMD="$TTYD_CMD --readonly"
+fi
+
+# Add CORS settings
+if [ "$TTYD_CHECK_ORIGIN" = "false" ]; then
+    TTYD_CMD="$TTYD_CMD --check-origin"
+fi
+
+# Add allow origin
+TTYD_CMD="$TTYD_CMD --allow-origin $TTYD_ALLOW_ORIGIN"
+
+# Function to start ttyd in background
+start_ttyd() {
+    echo "Starting ttyd web terminal on port $TTYD_PORT..."
+    echo "Access the web terminal at: http://localhost:$TTYD_PORT$TTYD_BASE_PATH"
+
+    if [ -n "$TTYD_USERNAME" ]; then
+        echo "Authentication enabled. Username: $TTYD_USERNAME"
+    else
+        echo "Warning: No authentication configured. Consider setting TTYD_USERNAME and TTYD_PASSWORD for security."
+    fi
+
+    # Start ttyd in background
+    $TTYD_CMD /bin/bash &
+    TTYD_PID=$!
+    echo "ttyd started with PID: $TTYD_PID"
+}
+
+# Function to stop ttyd gracefully
+stop_ttyd() {
+    if [ -n "$TTYD_PID" ]; then
+        echo "Stopping ttyd (PID: $TTYD_PID)..."
+        kill $TTYD_PID 2>/dev/null
+    fi
+}
+
+# Trap signals to ensure clean shutdown
+trap stop_ttyd EXIT SIGTERM SIGINT
+
+# Check if ttyd should be disabled
+if [ "$DISABLE_TTYD" = "true" ]; then
+    echo "ttyd is disabled via DISABLE_TTYD environment variable"
+else
+    # Start ttyd daemon
+    start_ttyd
+fi
+
+# If a command was provided, execute it
+if [ $# -gt 0 ]; then
+    echo "Executing command: $@"
+    exec "$@"
+else
+    # If no command provided, start an interactive bash shell
+    echo "Starting interactive bash shell..."
+    exec /bin/bash
+fi
