claudecodeui/server/modules/database/repositories/app-config.ts

/**
 * App config repository.
 *
 * Key-value store for application-level configuration that persists
 * across restarts (JWT secret, feature flags, etc.). Values are always
 * stored as strings; callers handle parsing.
 */

import crypto from 'crypto';

import { getConnection } from '@/modules/database/connection.js';

// ---------------------------------------------------------------------------
// Queries
// ---------------------------------------------------------------------------

export const appConfigDb = {
  /** Returns the stored value for a config key, or null if missing. */
  get(key: string): string | null {
    try {
      const db = getConnection();
      const row = db
        .prepare('SELECT value FROM app_config WHERE key = ?')
        .get(key) as { value: string } | undefined;
      return row?.value ?? null;
    } catch {
      // Swallow errors so early-startup reads (e.g. JWT secret) do not crash.
      return null;
    }
  },

  /** Inserts or updates a config key (upsert). */
  set(key: string, value: string): void {
    const db = getConnection();
    db.prepare(
      'INSERT INTO app_config (key, value) VALUES (?, ?) ON CONFLICT(key) DO UPDATE SET value = excluded.value'
    ).run(key, value);
  },

  /**
   * Returns the JWT signing secret, generating and persisting one
   * if it does not already exist. This ensures the secret survives
   * server restarts while being created automatically on first boot.
   */
  getOrCreateJwtSecret(): string {
    let secret = appConfigDb.get('jwt_secret');
    if (!secret) {
      secret = crypto.randomBytes(64).toString('hex');
      appConfigDb.set('jwt_secret', secret);
    }
    return secret;
  },
};
chore: fork from siteboon/claudecodeui with Forgejo integration 2026-05-27 22:45:26 -04:00			`/**`
			`* App config repository.`
			`*`
			`* Key-value store for application-level configuration that persists`
			`* across restarts (JWT secret, feature flags, etc.). Values are always`
			`* stored as strings; callers handle parsing.`
			`*/`

			`import crypto from 'crypto';`

			`import { getConnection } from '@/modules/database/connection.js';`

			`// ---------------------------------------------------------------------------`
			`// Queries`
			`// ---------------------------------------------------------------------------`

			`export const appConfigDb = {`
			`/** Returns the stored value for a config key, or null if missing. */`
			`get(key: string): string \| null {`
			`try {`
			`const db = getConnection();`
			`const row = db`
			`.prepare('SELECT value FROM app_config WHERE key = ?')`
			`.get(key) as { value: string } \| undefined;`
			`return row?.value ?? null;`
			`} catch {`
			`// Swallow errors so early-startup reads (e.g. JWT secret) do not crash.`
			`return null;`
			`}`
			`},`

			`/** Inserts or updates a config key (upsert). */`
			`set(key: string, value: string): void {`
			`const db = getConnection();`
			`db.prepare(`
			`'INSERT INTO app_config (key, value) VALUES (?, ?) ON CONFLICT(key) DO UPDATE SET value = excluded.value'`
			`).run(key, value);`
			`},`

			`/**`
			`* Returns the JWT signing secret, generating and persisting one`
			`* if it does not already exist. This ensures the secret survives`
			`* server restarts while being created automatically on first boot.`
			`*/`
			`getOrCreateJwtSecret(): string {`
			`let secret = appConfigDb.get('jwt_secret');`
			`if (!secret) {`
			`secret = crypto.randomBytes(64).toString('hex');`
			`appConfigDb.set('jwt_secret', secret);`
			`}`
			`return secret;`
			`},`
			`};`