Simple terminal agent setup, with a backend API to control executing terminal commands in docker containers per user. Terminal output can be received either by HTTP(S) response or via SSE.

• Design
• API
• Run app via Docker
• Build terminal Docker image
• Use as a service
• Svelte REST API frontend example
• Svelte SSE frontend example

The terminal agent consists of a simple Fastify backend server based on ts-rest

The main endpoint of interest for this backend is the POST:/execute endpoint, which:

• takes a command to be executed in the terminal container
• takes a user object with id and email. This is used to configure git for the terminal image but can also be used for additional authorization, customization etc.
• takes a sessionId to ensure a separate terminal container for each user session
• creates a docker container for automated-terminal if the user does not already have a container
• stores the container in a user registry, with the sessionId as the key
• retrieves a container for the sessionId from the user registry
• executes the incoming command in the container, making sure to expose stdout and stderr so they can be captured
• capture the terminal output for stdout and stderr as a data stream converted to utf-8
• send back the terminal output in the response

Additionally it:

• stores the data stream in a Redis DB, using the sessionId as key.
• sets up a pub/sub channel to expose the terminal streaming updates to be channeled to a client subscriber via Server Side Events (SSE). This allows each user session to listen to their private stream of terminal output updates.

Two keys/channels are used:

• terminal:${sessionId}:stdout for terminal output to stdout
• terminal:${sessionId}:stderr for terminal output to stderr

Please note that currently the user registries and container registries are all stored in-memory. In the future these registries will be maintained in redis as well so they are persistent across user sessions between application shutdowns, so work can be continued seamlessly later.

• POST to /execute takes a command, userId and sessionId in the request body and creates/retrieves a container with a terminal for that sessionId, executes the command as a bash command and sends the terminal output back to the user, while storing the output in a Redis DB and publishing on a private channel for the userId session.

• /terminal/session creates and returns a unique sessionId that can be used to subscribe to terminal output for a given terminal session

• terminal/listen/:channel/:sessionId to set up a Redis subscriber to channel changes for the session and terminal output channel (stdout or stderr) and on each received message, resend via via SSE to be received by the client

The main application can be built and run via the main Dockerfile, tagged as terminal_agent

docker build --tag 'terminal_agent' .
docker run --detach 'terminal_agent'

You can check that the image is in the docker repository via

docker image ls

The docker-compose.yml contains a configuration which instantiates

• the terminal_agent container that runs the main application
• a Redis DB used by the terminal_agent for storage and pub/sub of terminal output

The docker compose file can be run via:

docker compose up

The docker compose file creates a container based on the terminal_agent image (via the Dockerfile) and sets up a Redis DB based on the standard Redis docker image redis:latest. Currently the Redis DB is hardcoded to expose redis on the default Redis port 6379.

The web app is exposed on port 3000 by default, so if run locally, is available as localhost:3000

services:
  terminal_agent:
    build:
      context: .
      dockerfile: Dockerfile
    # Add other configurations for your terminal_agent service

  redis:
    image: redis:latest
    ports:
      - "6379:6379"

The application uses Docker to build and run containers for each terminal session and to host and run a Redis DB

The docker file for running each terminal can be built via:

docker build --tag 'automated-terminal' Terminal.dockerfile

This will build and add the Terminal.dockerfile to the Docker registry. This Dockerfile is based on the alpine:latest Docker image, for a minimal linux install, where bash is then installed via apk to allow for execution of bash terminal commands.

The Terminal dockerfile will install bash and git and configure git for the user using build variables GIT_USER_NAME and GIT_USER_EMAIL. It will also install and set up zsh as the default terminal and install and configure the agnoster theme and the FiraCode ligature font so that terminal output is formatted nicely. The color coded terminal output can be mapped and sent to a web client as html using the ansi_up library

# Use Alpine Linux as the base image
FROM alpine:latest

# Set the working directory
WORKDIR /app

# Define build arguments
ARG GIT_USER_NAME
ARG GIT_USER_EMAIL

# zsh theme arguments
ARG ZSH_THEME=agnoster
ARG SOLARIZED_THEME=light

# Install required packages, including Git
RUN apk add --no-cache bash git zsh curl fontconfig

# Configure Git using environment variables
RUN git config --global user.name "$GIT_USER_NAME" \
    && git config --global user.email "$GIT_USER_EMAIL"

# Install Powerline fonts
RUN git clone https://github.com/powerline/fonts.git --depth=1 && \
    fonts/install.sh && \
    rm -rf fonts

# Install oh-my-zsh
RUN sh -c "$(curl -fsSL https://raw.githubusercontent.com/ohmyzsh/ohmyzsh/master/tools/install.sh)" "" --unattended

# Set zsh as the default shell
RUN sed -i -e "s/bin\/ash/bin\/zsh/" /etc/passwd

# Install FiraCode font
RUN mkdir -p /usr/share/fonts/FiraCode && \
    curl -L -o /usr/share/fonts/FiraCode/FiraCode-Regular.ttf \
    https://github.com/tonsky/FiraCode/blob/master/distr/ttf/FiraCode-Regular.ttf?raw=true && \
    fc-cache -fv

# Install NVM, Node.js LTS, and latest npm
ENV NVM_DIR /root/.nvm
RUN curl -o- https://raw.githubusercontent.com/nvm-sh/nvm/v0.39.3/install.sh | bash && \
    . "$NVM_DIR/nvm.sh" && \
    nvm install --lts --latest-npm && \
    nvm use --lts && \
    nvm alias default --lts

# Ensure oh-my-zsh's theme is configured
RUN sed -i 's/ZSH_THEME=".*"/ZSH_THEME="'$ZSH_THEME'"/' ~/.zshrc

# Configure oh-my-zsh with theme
RUN echo "ZSH_THEME=\"$ZSH_THEME\"" >> ~/.zshrc
RUN echo 'POWERLEVEL9K_MODE="nerdfont-complete"' >> ~/.zshrc
RUN echo 'export TERM="xterm-256color"' >> ~/.zshrc

# Set the theme to solarized light (example configuration, adjust as needed)
RUN echo "SOLARIZED_THEME=\"$SOLARIZED_THEME\"" >> ~/.zshrc

# Default command to run zsh
CMD ["zsh"]

You can experiment with the Terminal dockerfile locally bu building as follows:

docker build --build-arg GIT_USER_NAME="Your Name" --build-arg GIT_USER_EMAIL="youremail@example.com" SOLARIZED_THEME=dark --build-arg ZSH_THEME=robbyrussell -t automated-terminal .

This will set the theme to dark and ZSH theme to robbyrussell in the zsh configuration. If no arguments are provided, it will default to light for the theme and agnoster for the ZSH theme.

This dockerfile will be created and run as a separate container per user/session by the terminal agent.

The agent will execute terminal commands in the terminal container, while listening to stdout and stderr in order to process the terminal output resulting from executing the commands and resending the output via SSE to be received by a client, such as a frontend web application.

The terminal output will also be sent back as a HTTP response and will ensure ANSI escape characters for color encodings etc. will be mapped to equivalents in HTML (if enabled, which is the default)

Simply run

npm run docker:start

You can use the terminal agent without the HTTP server as an independent service, such as via a Functions or Tools API for a Large Language Model (LLM).

import { execute, definitions } from "terminal-agent/services";
// add definition to your LLM via Tools API or similar
// when receiving an LLM response that is a tools/function call, extract the arguments and call execute with the arguments.

You can find some experimental utilities for working with the Functions/Tools API of ChatGPT in src/ai/openapi

import { OpenAIAdapter } from "terminal-agent";
import { execute, definitions } from "terminal-agent/services";
const mainHandler = new MainHandler();
mainHandler.register(definitions.execute.name, execute);
const aiAdapter = new OpenAIAdapter(mainHandler);
aiAdapter.addTool(definitions.execute);

// send message to AI
await aiAdapter.notifyAi(message);
// response may then be a tool/function call which will trigger execution of a terminal command

The following is a simple Svelte frontend example demonstrating how to leverage the HTTP REST API to execute commands and receive terminal output via a request/response data flow.

<script>
  let command = '';
  let output = '';

  async function executeCommand() {
    const response = await fetch('localhost:3000/execute', {
      method: 'POST',
      headers: {
        'Content-Type': 'application/json'
      },
      body: JSON.stringify({ command })
    });
    output = await response.text();
  }
</script>

<main>
  <input type="text" bind:value={command} />
  <button on:click={executeCommand}>Execute</button>
  <pre>{output}</pre>
</main>

The following is a simple Svelte frontend example demonstrating how to leverage the HTTP REST API to execute commands and receive terminal output as asynchronous Server Side Events (SSE) via EventSource.

Sets up an EventSource to listen to SSEs as they are streamed to the client.

<script>
  let outputs = [];
  let errors = [];

  const eventSourceOut = new EventSource(`localhost:3000/terminal/stdout/${sessionId}`);
  const eventSourceErr = new EventSource(`localhost:3000/terminal/stderr/${sessionId}`);

  eventSourceOut.onmessage = (event) => {
    // Push received data to the events array
    events = [...outputs, event.data.html];
  };

  eventSourceErr.onmessage = (event) => {
    // Push received data to the events array
    errors = [...errors, event.data.html];
  };


  // Close EventSource connection when component is destroyed
  onDestroy(() => {
    eventSourceOut.close();
    eventSourceErr.close();
  });
</script>

<section>
  <h3>Terminal output</h3>
  {#each outputs as stdout}
    <p class="command">$ {stdout.command}</p>
    <p class="output">{stdout.output}</p>
  {/each}
</section>

<section>
  <h3>Terminal errors</h3>
  {#each errors as stderr}
    <p class="command"> $ {stderr.command}</p>
    <p class="error">{stderr.error}</p>
  {/each}
</section>

  <style>
    .output, .command { font-family: 'Fira Code', monospace; }
  </style>

Note that it's also possible to run and control multiple terminal/bash sessions within the same Docker container. Here's a general approach:

• Multiple Processes: Docker containers can run multiple processes simultaneously. However, it's generally recommended to have a single process per container for simplicity and better container management. But if you need to run multiple processes, you can use tools like supervisord to manage them.
• Multiplexing: You can use tools like tmux or screen within your container to manage multiple terminal sessions. These tools allow you to create multiple virtual terminal sessions within a single terminal window or container.
• Docker Exec: You can use Docker's docker exec command to execute commands within a running container. You can start additional bash sessions using docker exec -it <container_id> /bin/bash to enter an interactive bash session within the container.
• Custom Solution: Alternatively, you can develop a custom solution within your container to manage multiple terminal sessions. This could involve creating a simple server-client architecture where the server manages multiple terminal sessions and clients interact with them.

Keep in mind that running multiple processes or managing multiple terminal sessions within a container may increase complexity and resource usage. Make sure to design your solution carefully based on your specific requirements and constraints.

Yet another (opinionated) TypeScript service starter template.

1. Tries to follow Domain Driven Development and 3 Layers architecture
2. As little of externalities requirements as possible (outputs to stdout/stderr, no auth management, etc.)
3. No dependency on node_modules folder and filesystem at runtime, to allow bundling & small Docker image
4. Config should not default to either development or production (link)

And extends the ones from typescript-library-starter

1. Relies as much as possible on each included library's defaults
2. Only relies on GitHub Actions
3. Does not include documentation generation
4. Always set NODE_ENV to production and use ENV_NAME for logging purposes

1. npx degit gjuchault/typescript-service-starter my-project or click on the Use this template button on GitHub!
2. cd my-project
3. npm install
4. git init (if you used degit)
5. npm run setup

To enable deployment, you will need to:

1. Set up the NPM_TOKEN secret in GitHub Actions (Settings > Secrets > Actions)
2. Give GITHUB_TOKEN write permissions for GitHub releases (Settings > Actions > General > Workflow permissions)

This template is based on Fastify with some nice defaults (circuit breaker, redis rate limit, etc.). ts-rest is used to have nice routes & automatic client generations with zod and TypeScript. It leverages PostgreSQL as a storage (through slonik), Redis as a cache through ioredis).

For the logging & telemetry part, it uses pino and OpenTelemetry (for both prometheus-like metrics & tracing). To handle distributed tracing, it expects W3C's traceparent header to carry trace id & parent span id.

To run tasks & crons, this package leverages BullMQ.

This template also tries to be easy to deploy through esbuild's bundling. This means you can not leverage node_modules and file system at runtime: reading static files from node_modules, hooking require, etc. ill not be possible. This implies to be mindful on libraries (that would read static files from there older), or automatic instrumentation (that hook require). Yet it comes with super small Docker images hat are fast to deploy.

We also have a very simple singleton-object dependency injection. This allows for simple retrieval of dependencies without imports (which avoids module mocking).

migrations         # database migrations (.sql files, no rollback)
src/
├── application    # service code
├── domain         # pure functions & TypeScript models of your entities
├── presentation   # communication layer (http)
├── repository     # storage of your entities
├── infrastructure # technical components (cache, database connection, etc.) — most of it should be outsourced to a shared SDK library
├── helpers        # utilities functions & non-domain code
└── test-helpers   # test utilities (starting default port, resetting database, etc.)

You can check ts-rest's documentation to have an automatic client with typing. routerContract is exported on the index file.

TypeScript Service Starter relies on Volta to ensure Node.js version to be consistent across developers. It's also used in the GitHub workflow file.

Leverages esbuild for blazing fast builds, but keeps tsc to generate .d.ts files. Generates a single ESM build.

Commands:

• build: runs type checking then ESM and d.ts files in the build/ directory
• clean: removes the build/ directory
• type:dts: only generates d.ts
• type:check: only runs type checking
• type:build: only generates ESM

TypeScript Library Starter uses Node.js's native test runner. Coverage is done using c8 but will switch to Node.js's one once out.

Commands:

• test: runs test runner for both unit and integration tests
• test:unit: runs test runner for unit tests only
• test:integration: runs test runner for integration tests only
• test:watch: runs test runner in watch mode
• test:coverage: runs test runner and generates coverage reports

This template relies on the combination of ESLint — through Typescript-ESLint for linting and Prettier for formatting. It also uses cspell to ensure correct spelling.

Commands:

• format: runs Prettier with automatic fixing
• format:check: runs Prettier without automatic fixing (used in CI)
• lint: runs ESLint with automatic fixing
• lint:check: runs ESLint without automatic fixing (used in CI)
• spell:check: runs spell checking

Under the hood, this service uses semantic-release and Commitizen. The goal is to avoid manual release processes. Using semantic-release will automatically create a GitHub release (hence tags) as well as an npm release. Based on your commit history, semantic-release will automatically create a patch, feature or breaking release.

Commands:

• cz: interactive CLI that helps you generate a proper git commit message, using Commitizen
• semantic-release: triggers a release (used in CI)