Skip to content

M3: SwiftUI app — TrafficList, Inspector, SQLite store #74

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
kalil0321 wants to merge 13 commits into
base: claude/proxy-monitor-m2-ca-keychain
Choose a base branch
from
Open

M3: SwiftUI app — TrafficList, Inspector, SQLite store #74

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
13 commits
Select commit Hold shift + click to select a range
67930ec
M3: SwiftUI app — TrafficList, Inspector, SQLite store
claude May 19, 2026
5b329d6
M3 review fixes + tests
claude May 19, 2026
c27a3ee
fix(macos): repair M3 SwiftUI build
kalil0321 May 19, 2026
f76a7a3
fix(macos): improve M3 capture UX
kalil0321 May 19, 2026
b577344
fix(macos): rename app to rae
kalil0321 May 19, 2026
19e143c
fix(macos): recover stale app proxy
kalil0321 May 19, 2026
ef4b58b
fix(macos): restore proxy on app close
kalil0321 May 19, 2026
ae2466e
feat(macos): add resource type traffic filters
kalil0321 May 19, 2026
1fb1169
style(macos): refine rae traffic UI
kalil0321 May 19, 2026
f649db4
fix(macos): stream captured responses
kalil0321 May 19, 2026
91f017f
fix(macos): polish capture workspace
kalil0321 May 19, 2026
2242393
fix(macos): refine traffic workspace controls
kalil0321 May 19, 2026
773e59f
fix(macos): address m3 review feedback
kalil0321 May 19, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
13 changes: 13 additions & 0 deletions macos/Package.swift
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -7,12 +7,14 @@ let package = Package(
products: [
.library(name: "ReverseAPIProxy", targets: ["ReverseAPIProxy"]),
.executable(name: "rae-proxy", targets: ["rae-proxy"]),
.executable(name: "rae", targets: ["ReverseAPI"]),
],
dependencies: [
.package(url: "https://github.com/apple/swift-nio.git", from: "2.65.0"),
.package(url: "https://github.com/apple/swift-nio-ssl.git", from: "2.27.0"),
.package(url: "https://github.com/apple/swift-certificates.git", from: "1.5.0"),
.package(url: "https://github.com/apple/swift-crypto.git", from: "3.7.0"),
.package(url: "https://github.com/groue/GRDB.swift.git", from: "6.29.0"),
],
targets: [
.target(
Expand All @@ -34,9 +36,20 @@ let package = Package(
name: "rae-proxy",
dependencies: ["ReverseAPIProxy"]
),
.executableTarget(
name: "ReverseAPI",
dependencies: [
"ReverseAPIProxy",
.product(name: "GRDB", package: "GRDB.swift"),
]
),
.testTarget(
name: "ReverseAPIProxyTests",
dependencies: ["ReverseAPIProxy"]
),
.testTarget(
name: "ReverseAPITests",
dependencies: ["ReverseAPI"]
),
]
)
295 changes: 295 additions & 0 deletions macos/Sources/ReverseAPI/App/AppState.swift
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,295 @@
import Foundation
import Observation
import ReverseAPIProxy

@MainActor
@Observable
final class AppState {
enum CaptureMode: String, CaseIterable, Identifiable {
case device = "Device"
case manual = "Manual"

var id: String { rawValue }
}

private(set) var isCapturing = false
private(set) var systemProxyEnabled = false
private(set) var caTrustInstalled = false
private(set) var isWorking = false
private(set) var lastError: String?

var selectedFlowID: UUID?
var filter = TrafficFilter()
var captureMode: CaptureMode = .device

let store: FlowStore
let engine: ProxyEngine
let installer: CertificateTrustInstaller
let systemProxy: SystemProxyController

let port: Int
let caDER: Data
let caPEM: String
let caPath: String

private var proxySnapshot: [ProxyServiceSnapshot]?

init(port: Int = 8888) throws {
let appSupport = try FileManager.default.url(
for: .applicationSupportDirectory,
in: .userDomainMask,
appropriateFor: nil,
create: true
)
let caStore = try CAStore(applicationSupportURL: appSupport)
let root = try caStore.loadOrCreate()
let engine = try ProxyEngine(root: root, port: port)

let databaseURL = caStore.directory.appendingPathComponent("flows.sqlite")
let store = try FlowStore(databaseURL: databaseURL)

self.store = store
self.engine = engine
self.installer = CertificateTrustInstaller()
self.systemProxy = SystemProxyController()
self.port = port
self.caDER = Data(try root.derBytes())
self.caPEM = try root.pem()
self.caPath = caStore.certificateURL.path
self.caTrustInstalled = installer.isInstalled(derBytes: self.caDER)
self.systemProxyEnabled = (try? systemProxy.isEnabled(host: "127.0.0.1", port: port)) ?? false

store.subscribe(to: engine.bus)
}

func toggleCapture() async {
if isCapturing {
await stopCapture()
} else {
await startCapture(mode: captureMode)
}
}

func startCapture(mode: CaptureMode) async {
guard !isCapturing, !isWorking else { return }
isWorking = true
defer { isWorking = false }

do {
try await engine.start()

if mode == .device {
do {
try await applySystemProxy()
} catch {
try? await engine.stop()
throw error
}
}

isCapturing = true
lastError = nil
} catch {
isCapturing = false
lastError = "Could not start capture: \(error)"
}
}

func stopCapture() async {
guard isCapturing, !isWorking else { return }
isWorking = true
defer { isWorking = false }

var stopError: Error?
if proxySnapshot != nil {
do {
try await restoreSystemProxy()
} catch {
stopError = error
}
}

do {
try await engine.stop()
isCapturing = false
} catch {
stopError = error
}

if let stopError {
if proxySnapshot != nil {
systemProxyEnabled = (try? systemProxy.isEnabled(host: "127.0.0.1", port: port)) ?? false
}
lastError = "Could not stop capture cleanly: \(stopError)"
} else {
lastError = nil
}
}

func installCATrust() async {
guard !isWorking else { return }
isWorking = true
defer { isWorking = false }

do {
let installer = self.installer
let der = self.caDER
try await Task.detached(priority: .userInitiated) {
try installer.install(derBytes: der)
}.value
caTrustInstalled = true
lastError = nil
} catch {
lastError = "Failed to install CA trust: \(error)"
}
}

func uninstallCATrust() async {
guard !isWorking else { return }
isWorking = true
defer { isWorking = false }

do {
let installer = self.installer
let der = self.caDER
try await Task.detached(priority: .userInitiated) {
try installer.uninstall(derBytes: der)
}.value
caTrustInstalled = false
lastError = nil
} catch {
lastError = "Failed to uninstall CA trust: \(error)"
}
}

func enableSystemProxy() async {
guard !isWorking else { return }
isWorking = true
defer { isWorking = false }

do {
try await applySystemProxy()
lastError = nil
} catch {
lastError = "Failed to enable system proxy: \(error)"
}
}

func disableSystemProxy() async {
guard !isWorking else { return }
isWorking = true
defer { isWorking = false }

do {
try await restoreSystemProxy()
lastError = nil
} catch {
lastError = "Failed to disable system proxy: \(error)"
}
}

func clearFlows() {
guard !isWorking else { return }
isWorking = true
Task {
defer { isWorking = false }
do {
try await store.clear()
selectedFlowID = nil
lastError = nil
} catch {
lastError = "Failed to clear flows: \(error)"
}
}
}

func recoverStaleSystemProxyOnLaunch() async {
guard systemProxyEnabled, !isCapturing, proxySnapshot == nil, !isWorking else { return }
isWorking = true
defer { isWorking = false }

do {
try await disableCurrentRaeProxy()
lastError = "Recovered stale device proxy from a previous session."
} catch {
lastError = "Device proxy points at rae, but could not be repaired automatically: \(error)"
}
}

func restoreProxyBeforeExit() {
if let snapshot = proxySnapshot {
try? systemProxy.restore(snapshot)
proxySnapshot = nil
systemProxyEnabled = false
} else if systemProxyEnabled {
try? systemProxy.disable(host: "127.0.0.1", port: port)
systemProxyEnabled = false
}
}

func shutdownForWindowClose() async {
restoreProxyBeforeExit()
if isCapturing {
do {
try await engine.stop()
isCapturing = false
} catch {
lastError = "Could not stop capture cleanly: \(error)"
}
}
isWorking = false
}

func terminate() async {
restoreProxyBeforeExit()
do {
try await engine.terminate()
isCapturing = false
isWorking = false
} catch {
lastError = "Could not terminate proxy cleanly: \(error)"
}
}

private func applySystemProxy() async throws {
let systemProxy = self.systemProxy
let port = self.port
let snapshot = try await Task.detached(priority: .userInitiated) {
let snapshot = try systemProxy.snapshot()
do {
try systemProxy.enable(host: "127.0.0.1", port: port)
return snapshot
} catch {
try? systemProxy.restore(snapshot)
throw error
}
}.value
proxySnapshot = snapshot
systemProxyEnabled = true
}

private func restoreSystemProxy() async throws {
let systemProxy = self.systemProxy
let port = self.port
let snapshot = proxySnapshot
try await Task.detached(priority: .userInitiated) {
if let snapshot {
try systemProxy.restore(snapshot)
} else {
try systemProxy.disable(host: "127.0.0.1", port: port)
}
}.value
proxySnapshot = nil
systemProxyEnabled = false
}

private func disableCurrentRaeProxy() async throws {
let systemProxy = self.systemProxy
let port = self.port
try await Task.detached(priority: .userInitiated) {
try systemProxy.disable(host: "127.0.0.1", port: port)
}.value
proxySnapshot = nil
systemProxyEnabled = false
}
}
Loading