Vantage
= CLI
+ SSH
+ REPL
for your live node app. In one line:
require("vantage")().listen(4000);
Vantage gives you a new perspective into your live node application not previously available.
An extension of Vorpal, Vantage turns your live Node app into a immersive CLI. Accessible remotely or locally, Vantage lets you build your own API for your application and import community extensions, introducing a new means of live diagnostics and activity for your dev
and prod
environments.
- First-class CLI: tab completion, history, you name it.
- Build your own API with the familiar syntax of
commander.js
. - SSH-like client / server setup for remote access to your live Node app.
- Production-ready, with authentication middleware and a basic firewall.
- Built-in REPL.
Unlike any other REPL or CLI module, Vantage allows you to remotely connect to your live app and access the CLI transparently, exactly as you would in an SSH session. Vantage can connect through an unlimited number of live Node instances across multiple machines, piping commands and information to and from your local terminal.
Made with ❤️ by @dthree.
This is now an OPEN Open Source project. I am not able to invest a significant amount of time into maintaining Vantage and so am looking for volunteers who would like to be active maintainers of the project. If you are interested, shoot me a note.
This Vantage tour will give you a live walk-through of vantage's features.
$ npm install -g vantage
$ vantage tour
- Standalone Vantage Server
- Koa.js with Vantage
- Express.js with Vantage
- Hapi.js with Vantage
- Using the Firewall
First, install vantage
globally:
$ npm install -g vantage
Now, add the following to a file named server.js
.
// Create a new instance of vantage.
var vantage = require("vantage")();
// Add the command "foo", which logs "bar".
vantage
.command("foo")
.description("Outputs 'bar'.")
.action(function(args, callback) {
this.log("bar");
callback();
});
// Name your prompt delimiter
// "websvr~$", listen on port 80
// and show the Vantage prompt.
vantage
.delimiter("websvr~$")
.listen(80)
.show();
Run server.js
. You Node app has become a CLI.
$ node server.js
websvr~$
Open another terminal. Because Vantage is listening on port 80, you can remotely connect to it:
$ vantage 80
$ Connecting to 127.0.0.1:80 using http...
websvr~$
Try out your "foo" command.
websvr~$ foo
bar
websvr~$
Now type "help" to see Vantage's built in commands in addition to "foo":
websvr~$ help
Commands
help [command] Provides help for a given command.
exit [options] Exits instance of Vantage.
use <module> Installs a vantage extension in realtime.
vantage [server] Connects to another application running vantage.
foo Outputs "bar".
websvr~$
That's the basic idea. Once you get the hang of it, read on to learn some of the fancier things Vantage can do.
Vantage is an extension of Vorpal, and so inherits all of its properties and methods. For all command creation and CLI syntax, refer to Vorpal's API.
Starts Vantage as a server.
If you just want it to listen on a port independent of your web application, simply pass in the port and Vantage will spawn a new HTTP server. Every time a client connects to Vantage, the connection callback will be thrown and include the socket.io
connection object.
var vantage = new Vantage();
vantage.listen(80, function(socket){
this.log("Accepted a connection.")
});
If you want Vantage to listen on the same port as your web application, you can use Vantage's listen
function in place of your existing web server's listen
function.
This is useful when running clustered instances of your server, such as behind a reverse proxy, where every instance has a separate port that can only be accessed internally. In this way, you can hop into any running instance without having to remember a separate set of ports.
var koa = require('koa');
var Vantage = require('vantage');
var vantage = new Vantage();
var app = koa();
vantage.listen(app, 80);
var express = require('express');
var Vantage = require('vantage');
var vantage = new Vantage();
var app = express();
vantage.listen(app, 80);
var Hapi = require('hapi');
var Vantage = require('vantage');
var vantage = new Vantage();
var server = new Hapi.Server();
vantage.listen(server, 80);
server.start();
You can pass detailed options to your web server with the second argument in place of the port. These options are the same options you would pass into your web server, with a few exceptions:
options.port
: Tells vantage what port to listen on.options.ssl
: A boolean that tells Vantage whether to spawn an HTTP or HTTPs server.options.logActivity
: When true, a TTY acting as a Vantage server that receives a connection will log when clients log in and out of the server. Defaults tofalse
.
Default HTTPs server example:
var vantage = new Vantage();
vantage.listen(someMiddleware, {
port: 443,
ssl: true,
key: fs.readFileSync('./../../server.key'),
cert: fs.readFileSync('./../../server.crt'),
ca: fs.readFileSync('./../../ca.crt'),
requestCert: true,
rejectUnauthorized: false,
});
Sets a banner for display when logging into a given Vantage server.
var banner =
"######################################################################" +
"# Welcome to joescrabshack.com #" +
"# #" +
"# All connections are monitored and recorded #" +
"# Disconnect IMMEDIATELY if you are not an authorized user #" +
"######################################################################";
vantage
.delimiter('appsvr:3000~$')
.banner(banner)
.listen(3000);
$ vantage 3000
$ Connecting to 127.0.0.1:3000...
$ Connected successfully.
######################################################################
# Welcome to joescrabshack.com #
# #
# All connections are monitored and recorded #
# Disconnect IMMEDIATELY if you are not an authorized user #
######################################################################
? user:
Note: See authentication section for auth details.
If your Vantage server is listening on a public-facing web port such as 80 or 443, your organization's firewall is not going to help you. This is a barebones IP firewall for limiting connections down to your internal subnets. For sensitive applications, this obviously does not replace authentication.
Sets the default policy for the firewall to either ACCEPT
or REJECT
. Any request that does not match a rule will fall back to this policy. Returns vantage.firewall
.
Defaults to ACCEPT
.
// This will reject all remote connections.
vantage.firewall.policy("REJECT");
Allows a particular address / subnet to connect to Vantage. Returns vantage.firewall
. If no arguments are passed, returns the currently-applied policy.
vantage.firewall
.policy("REJECT")
.accept("10.0.0.0/8")
.accept("192.168.0.0", 24);
console.log(vantage.firewall.policy()) // -> REJECT
Denies access to a particular address / subnet. Returns vantage.firewall
.
vantage.firewall
.policy("ACCEPT")
.reject("64.0.0.0", 8)
.reject("192.168.0.0/16");
Returns an array of applied rules.
console.log(vantage.firewall.rules());
// -> [{ ip: "64.0.0.0", subnet: 8, rule: "REJECT" }]
Reverts vantage.firewall
to an ACCEPT
policy and erases all rules.
Vantage supports authentication strategies as middleware. It comes with a default Basic Authentication module.
Uses a given authentication strategy. Pass the required middleware into the first variable, and any options / configuration for that middleware as given in that module's documentation into the options parameter.
var pam = require("vantage-auth-pam");
vantage.auth(pam, options);
Vantage Basic Auth is built in, and so can be used with the "basic" string instead of requiring a module.
var users = [
{ user: "admin", pass: "4k#842jx!%s" },
{ user: "user", pass: "Unicorn11" }
];
var vantage = require("vantage")();
vantage.auth("basic", {
"users": users,
"retry": 3,
"retryTime": 500,
"deny": 1,
"unlockTime": 3000
});
If no vantage.auth
function is declared, your app will not require authentication. As a security measure, if your NODE_ENV
environment variable is not set to "development" and there is no authentication, Vantage will disallow remote connections. To permit remote connections without authentication, simply set your NODE_ENV
to "development".
You can publish your own custom authentication strategies for Vantage.js as its own Node module.
I am currently looking to team up with a rocket scientist like you to build a pam-based authentication strategy for Vantage. If you are interested, send me a note!
The format for publishing a strategy is simple:
module.exports = function(vantage, options) {
// The Vantage instance is exposed through
// the `vantage` parameter. `options` exposes
// options passed in by the strategy's user, and
// is defined by you.
// This is where you can persist the log on state of
// the users attempting to log in, etc.
// You return a function, which executes
// in the same context as a vantage command.
// Every time the user attempts to connect,
// this function runs. In it you can prompt
// the user, etc.
return function(args, callback) {
/**
* Args exposes several pieces of data
* you can use:
* {
* // If the user pre-passes auth data, it will be
* // available here. Otherwise, prompt him for it.
* user: "admin",
* pass: "Unicorn11",
* // This is based on socket.io's connection handshake,
* // and has a lot more data than this.
* handshake: {
* host: "192.168.0.1",
* port: "800"
* }
* }
*/
// Prompt user / look up credentials, etc.
// Authentication is determined by your
// callback: `callback(message, authenticated)`.
// Example of rejected auth.
callback("Invalid credentials.", false);
// Example of accepted auth.
// callback(void 0, true);
}
}
Vantage extends EventEmitter.prototype
. Simply use vantage.on('event', fn)
and vantage.emit('event', data)
. The following events are supported:
Vantage uses socket.io
to handle all communication between instances. The following events map to the default socket.io
events:
-
client_connect
: Maps toconnect
forsocket.io-client
. -
client_connect_error
: Maps toconnect_error
forsocket.io-client
. -
client_error
: Maps toerror
forsocket.io-client
. -
client_disconnect
: Maps todisconnect
forsocket.io-client
. -
server_connection
: Maps toconnection
forsocket.io
. -
server_disconnect
: Maps todisconnect
forsocket.io
.
-
client_keypress
: Fires on keypress on local client terminal. -
client_prompt_submit
: Fires when the CLI prompt has been submitted with a command, including ''. -
client_command_executed
: Fires at the client once the command has been received back as executed. -
client_command_error
: Fires at the client if a command comes back with an error thrown. -
server_command_received
: Fires at the end-server actually executing a command receives the command. -
server_command_executed
: Fires at the end-server once the command has successfully executed. -
server_command_error
: Fires at the end-server if the command has thrown an error.
Vantage allows you execute your API commands from javascript synchronously, using either callbacks or promises.
Connects to another instance of Vantage. Returns callback or promise.
// With a promise
vantage.connect('127.0.0.1', 8001).then(function(data){
// ...
}).catch(function(err){
console.log('Error connecting: ' + err);
});
// With a callback
vantage.connect('127.0.0.1', 8001, function(err) {
if (!err) {
// ... connected
}
});
ssl
: Set to true if server you are connecting to uses HTTPS.
Executes an API command string. Returns a callback or Promise.
// Using Promises:
vantage.exec("vantage 8001").then(function(data){
return vantage.exec("roll dough");
}).then(function(data){
return vantage.exec("add cheese");
}).then(function(data){
return vantage.exec("add pepperoni");
}).then(function(data){
return vantage.exec("shape crust");
}).then(function(data){
return vantage.exec("insert into oven");
}).then(function(data){
return vantage.exec("wait 480000");
}).then(function(data){
return vantage.exec("remove from oven");
}).then(function(data){
return vantage.exec("enjoy");
}).catch(function(err){
console.log("Error baking pizza: " + err);
app.orderOut();
});
// Using callbacks:
vantage.exec("vantage 8001", function(err, data) {
if (!err) {
vantage.exec("bake pizza", function(err, pizza){
if (!err) {
app.eat(pizza);
}
});
}
});
Just like Vorpal, Vantage supports extensions. Creating extensions is simple and is covered in Vorpal's documentation.
MIT
That's okay. Here's what happened:
- In my terminal, I started a local Node web server:
$ node websvr.js
Normally, you would simply see what you logged, and would have no interaction with Node. Instead, Vantage gave us a prompt:
websvr~$
-
I typed
help
, which gave me a list of all of Vantage's built-in commands as well as commands I added. -
In my
websvr.js
, I gave Vantage a command that would turn on logging only for web requests. By logging domains of activity, this assists productivity in debugging. To run this, I typeddebug web
, and it started logging all web requests. -
I then typed
debug off
, which disabled log output. -
By then entering the
repl
command, I entered a special REPL "mode" where I can access the raw javascript and objects in my application, while it's running. This is the equivalent of running$ node
in your terminal, except it is in the context of your live application! -
Satisfied with
repl
mode, I exited out of it with theexit
command. -
So that's nice, you can access the local Node instance in your terminal. But what about remote or daemonized applications? By using the built-in
vantage
command, I remotely connect to my Node database API listening on port5001
, by runningvantage 127.0.0.1:5001
. -
Just like SSH, I'm now "in" the new instance, and my prompt changed to
dbsvr~$
. -
This server supports another Vantage mode. By typing
sql
, I enter "sql mode". Using this, I typed an arbitrary SQL command and it connected to my database and executed it. When done, I enteredexit
. -
I felt like checking out the latest trend on Hacker News. I typed
help
and was disappointed to find there was nohacker-news
API command. -
Fortunately, someone made an extension for that - an NPM module called
vantage-hacker-news
. To download it and import the commands into Vantage in realtime, I typeduse vantage-hacker-news
. -
With this command,
vantage
did a temporarynpm install
on the module and loaded it into the application's memory. By typinghelp
again, I can see I now have a new Vantage command registered:hacker-news
! -
I used the command:
hacker-news --length 3
, and this showed me the top 3 items trending on Hacker News. One of them was obviously an article on the Node event loop, because Node is awesome. -
Satisfied, I typed
exit
, which brought me back to my web server. -
I then typed
exit -f
(for--force
) to actually quit the web server, which was running locally in my terminal.