Skip to content

Glyph-Software/monza-backend

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

6 Commits
cmd/server
cmd/server
 
 
devcontainers
devcontainers
 
 
internal
internal
 
 
pkg/models
pkg/models
 
 
.gitignore
.gitignore
 
 
Dockerfile
Dockerfile
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
docker-compose.yml
docker-compose.yml
 
 
go.mod
go.mod
 
 
go.sum
go.sum
 
 

Repository files navigation

Monza Backend

Go backend for managing short‑lived development sandboxes backed by Docker and PostgreSQL.

It exposes:

  • /health – service health check.
  • /hello – simple hello world endpoint.
  • /api/sandboxes – CRUD + heartbeat API for sandbox lifecycle.
  • /api/sandboxes/{id}/files/upload – upload a file into a sandbox container.
  • /api/sandboxes/{id}/files/download – download a file from a sandbox container.

The service creates Docker containers from devcontainer.json templates, tracks them in PostgreSQL, and automatically cleans up idle sandboxes after a configurable TTL (15 minutes by default).

Architecture

  • Entry point

    • cmd/server/main.go
      • Reads configuration (e.g. DATABASE_URL, SERVER_ADDR, DEVCONTAINERS_PATH).
      • Runs database migrations on startup with retry.
      • Creates the DB connection and Docker client.
      • Instantiates the sandbox Manager with a 15‑minute session TTL.
      • Starts the HTTP server.

  • HTTP server

    • internal/httpserver/server.go, internal/httpserver/routes.go
      • Uses http.ServeMux.
      • Registers:
        • GET /health
        • GET /hello
        • GET /api/sandboxes
        • POST /api/sandboxes
        • GET /api/sandboxes/{id}
        • DELETE /api/sandboxes/{id}
        • POST /api/sandboxes/{id}/heartbeat
        • POST /api/sandboxes/{id}/execute
        • POST /api/sandboxes/{id}/files/upload
        • GET /api/sandboxes/{id}/files/download

  • Handlers

    • internal/handlers/health.go – JSON health response.
    • internal/handlers/hello.go – JSON hello response.
    • internal/handlers/sandboxes.go – sandbox REST API:
      • Parses and validates requests.
      • Loads devcontainer templates.
      • Delegates to the sandbox manager.
      • Returns JSON responses and errors.
    • internal/handlers/sandbox_execute.go – run commands inside a sandbox (POST /api/sandboxes/{id}/execute).
    • internal/handlers/sandbox_files.go – file upload and download to/from a sandbox container.

  • Sandbox domain

    • internal/sandbox/*, pkg/models/sandbox.go
      • Manager orchestrates:
        • Creating containers from devcontainer templates.
        • Persisting sandbox metadata.
        • Tracking last activity and expiry.
        • Deleting containers and marking sandboxes deleted/expired.
      • Background cleanup worker:
        • Runs every minute (configurable).
        • Expires and deletes idle sandboxes older than the TTL.

  • Persistence

    • internal/db/*, internal/db/repository/*
      • PostgreSQL connection + migrations.
      • Repositories for sandboxes and port mappings.

  • Devcontainers & Docker

    • internal/devcontainer/*
      • Parses devcontainer.json templates from:
        • DEVCONTAINERS_PATH (if set), or
        • local ./devcontainers directory.
    • internal/docker/*
      • Thin wrapper around the Docker SDK for creating, starting, and cleaning up containers, and for copying files in/out via CopyToContainer and CopyFromContainer.

For a more narrative overview, also see SANDBOX.md.

Requirements

  • Go 1.22 or later
  • Docker daemon reachable from the backend
  • PostgreSQL database

Environment variables:

  • DATABASE_URLrequired, PostgreSQL connection string.
  • SERVER_ADDR – optional, listen address (default :8080).
  • DEVCONTAINERS_PATH – optional, base directory for devcontainer templates (default devcontainers).

Running the server locally

From the backend directory:

# Ensure DATABASE_URL points to a running Postgres instance
export DATABASE_URL="postgres://user:password@localhost:5432/monza?sslmode=disable"

go run ./cmd/server

By default, the server listens on http://localhost:8080.

To use a custom address:

SERVER_ADDR=":9000" go run ./cmd/server

If you want to use a custom devcontainers directory:

DEVCONTAINERS_PATH="/absolute/path/to/devcontainers" go run ./cmd/server

On startup the server will:

  1. Run database migrations (with retry) against DATABASE_URL.
  2. Connect to PostgreSQL.
  3. Create a Docker client.
  4. Start the HTTP server and the sandbox cleanup worker.

HTTP API

Health

  • GET /health

    • Description: Liveness / readiness probe.

    • Response 200 OK:

      {
  "status": "ok"
}

Hello

  • GET /hello

    • Description: Simple hello world endpoint.

    • Response 200 OK:

      {
  "message": "hello, world"
}

Sandbox model

Sandboxes are represented as:

{
  "id": "00000000-0000-0000-0000-000000000000",
  "name": "sandbox-go",
  "status": "running",
  "container_id": "docker-container-id",
  "image": "registry/image:tag",
  "workspace_mount": "/path/in/container",
  "devcontainer_config": { /* original devcontainer.json as JSON */ },
  "env_vars": {
    "EXAMPLE": "value"
  },
  "port_mappings": [
    {
      "id": "11111111-1111-1111-1111-111111111111",
      "sandbox_id": "00000000-0000-0000-0000-000000000000",
      "host_port": 12345,
      "container_port": 8080
    }
  ],
  "last_activity": "2024-01-01T12:00:00Z",
  "created_at": "2024-01-01T12:00:00Z",
  "expires_at": "2024-01-01T12:15:00Z",
  "deleted_at": null
}

Key status values:

  • creating, running, expired, deleted, error.

Sandbox Endpoints

List sandboxes

  • GET /api/sandboxes

    • Description: Returns all known sandboxes.

    • Response 200 OK:

      [
  {
    "id": "00000000-0000-0000-0000-000000000000",
    "name": "sandbox-go",
    "status": "running"
    // ... see full model above ...
  }
]

Example:

curl -X GET http://localhost:8080/api/sandboxes

Create sandbox

  • POST /api/sandboxes

    • Description: Creates a new sandbox from a devcontainer template.

    • Request body:

      {
  "name": "optional-sandbox-name",
  "template": "go"
}
      • template:
        • Name of a directory under DEVCONTAINERS_PATH (or local devcontainers) that contains devcontainer.json.
        • Defaults to "go" if omitted or empty.
      • name:
        • Optional; defaults to "sandbox-" + template if omitted or empty.

    • Responses:

      • 201 Created with sandbox JSON on success.
      • 400 Bad Request if the body is invalid or the template cannot be loaded.
      • 500 Internal Server Error for unexpected errors.

Example:

curl -X POST http://localhost:8080/api/sandboxes \
  -H "Content-Type: application/json" \
  -d '{
    "name": "sandbox-go",
    "template": "go"
  }'

Get sandbox

  • GET /api/sandboxes/{id}

    • Description: Fetch a single sandbox by its UUID.
    • Path params:
      • id – sandbox UUID.
    • Responses:
      • 200 OK with sandbox JSON.
      • 404 Not Found if the sandbox does not exist.

Example:

curl -X GET http://localhost:8080/api/sandboxes/<sandbox-id>

Delete sandbox

  • DELETE /api/sandboxes/{id}

    • Description: Deletes a sandbox and its underlying Docker container.
    • Path params:
      • id – sandbox UUID.
    • Responses:
      • 204 No Content on success.
      • 500 Internal Server Error on failure.

Example:

curl -X DELETE http://localhost:8080/api/sandboxes/<sandbox-id>

Heartbeat sandbox

  • POST /api/sandboxes/{id}/heartbeat

    • Description: Marks the sandbox as active, extending its expiry.
    • Path params:
      • id – sandbox UUID.
    • Request body: none.
    • Responses:
      • 204 No Content on success.
      • 500 Internal Server Error on failure.

Example:

curl -X POST http://localhost:8080/api/sandboxes/<sandbox-id>/heartbeat

Upload file to sandbox

  • POST /api/sandboxes/{id}/files/upload

    • Description: Uploads a single file into the sandbox’s container filesystem.
    • Path params:
      • id – sandbox UUID.
    • Request: multipart/form-data with:
      • file – the file to upload (required).
      • path – destination directory inside the container (optional; default /workspace).
    • Responses:
      • 200 OK with JSON: {"status":"ok","path":"/workspace/filename"}.
      • 400 Bad Request if the sandbox id is invalid, no file is provided, or the request body exceeds the limit (100 MB).
      • 500 Internal Server Error if the sandbox/container is not found or the copy fails.

Example:

curl -X POST http://localhost:8080/api/sandboxes/<sandbox-id>/files/upload \
  -F "file=@./main.go" \
  -F "path=/workspace"

Download file from sandbox

  • GET /api/sandboxes/{id}/files/download?path=...

    • Description: Streams a single file from the sandbox’s container to the client.
    • Path params:
      • id – sandbox UUID.
    • Query params:
      • path – full path to the file inside the container (e.g. /workspace/main.go) (required).
    • Responses:
      • 200 OK with the raw file content, Content-Disposition: attachment, and Content-Type set from the file.
      • 400 Bad Request if path is missing or the sandbox id is invalid.
      • 404 Not Found if the path does not exist or the archive is empty.
      • 500 Internal Server Error if the sandbox/container is not found or the copy fails.

Example:

curl -o main.go "http://localhost:8080/api/sandboxes/<sandbox-id>/files/download?path=/workspace/main.go"

Sandbox lifecycle

High‑level lifecycle (also described in SANDBOX.md):

  1. CreatePOST /api/sandboxes with a template name.
  2. Provision – backend reads devcontainers/{template}/devcontainer.json (or from DEVCONTAINERS_PATH) and creates a Docker container.
  3. Persist – sandbox metadata, ports, and timestamps are stored in PostgreSQL.
  4. Use – clients connect to mapped ports (e.g. editors, terminals, HTTP services inside the container), and can upload/download files via POST /api/sandboxes/{id}/files/upload and GET /api/sandboxes/{id}/files/download.
  5. Heartbeat – clients periodically call POST /api/sandboxes/{id}/heartbeat to keep the sandbox alive.
  6. Cleanup – background worker expires and deletes sandboxes idle longer than the configured TTL (15 minutes by default), updating their status to expired / deleted.

Project layout (summary)

  • cmd/server – main server binary.
  • internal/httpserver – HTTP server setup and routing.
  • internal/handlers – HTTP handlers (/health, /hello, /api/sandboxes, sandbox execute, sandbox files).
  • internal/sandbox – sandbox manager, heartbeat handling, cleanup worker.
  • internal/devcontainer – devcontainer.json parsing.
  • internal/docker – Docker client wrapper.
  • internal/db – DB connection and migrations.
  • internal/db/repository – database repositories.
  • pkg/models – shared domain models (e.g. Sandbox).

Go backend

Structured Go HTTP server with:

  • /health – health check endpoint returning {"status":"ok"}.
  • /hello – hello world endpoint returning {"message":"hello, world"}.

Project layout

  • cmd/server – main entrypoint binary.
  • internal/httpserver – HTTP server wiring and routing.
  • internal/handlers – individual HTTP handlers and response helpers.

Requirements

  • Go 1.22 or later

Run the server

cd backend
go run ./cmd/server

By default the server listens on http://localhost:8080.
You can override the address with the SERVER_ADDR environment variable, for example:

SERVER_ADDR=":9000" go run ./cmd/server

Test the endpoints

curl http://localhost:8080/health
curl http://localhost:8080/hello

About

No description, website, or topics provided.

Resources

Readme

License

MIT license
Activity
Custom properties

Stars

1 star

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages