Vendor opencode source for docker build

opencode/infra/app.ts

@@ -0,0 +1,68 @@
+import { domain } from "./stage"
+
+const GITHUB_APP_ID = new sst.Secret("GITHUB_APP_ID")
+const GITHUB_APP_PRIVATE_KEY = new sst.Secret("GITHUB_APP_PRIVATE_KEY")
+export const EMAILOCTOPUS_API_KEY = new sst.Secret("EMAILOCTOPUS_API_KEY")
+const ADMIN_SECRET = new sst.Secret("ADMIN_SECRET")
+const DISCORD_SUPPORT_BOT_TOKEN = new sst.Secret("DISCORD_SUPPORT_BOT_TOKEN")
+const DISCORD_SUPPORT_CHANNEL_ID = new sst.Secret("DISCORD_SUPPORT_CHANNEL_ID")
+const FEISHU_APP_ID = new sst.Secret("FEISHU_APP_ID")
+const FEISHU_APP_SECRET = new sst.Secret("FEISHU_APP_SECRET")
+const bucket = new sst.cloudflare.Bucket("Bucket")
+
+export const api = new sst.cloudflare.Worker("Api", {
+  domain: `api.${domain}`,
+  handler: "packages/function/src/api.ts",
+  environment: {
+    WEB_DOMAIN: domain,
+  },
+  url: true,
+  link: [
+    bucket,
+    GITHUB_APP_ID,
+    GITHUB_APP_PRIVATE_KEY,
+    ADMIN_SECRET,
+    DISCORD_SUPPORT_BOT_TOKEN,
+    DISCORD_SUPPORT_CHANNEL_ID,
+    FEISHU_APP_ID,
+    FEISHU_APP_SECRET,
+  ],
+  transform: {
+    worker: (args) => {
+      args.logpush = true
+      args.bindings = $resolve(args.bindings).apply((bindings) => [
+        ...bindings,
+        {
+          name: "SYNC_SERVER",
+          type: "durable_object_namespace",
+          className: "SyncServer",
+        },
+      ])
+      args.migrations = {
+        // Note: when releasing the next tag, make sure all stages use tag v2
+        oldTag: $app.stage === "production" || $app.stage === "thdxr" ? "" : "v1",
+        newTag: $app.stage === "production" || $app.stage === "thdxr" ? "" : "v1",
+        //newSqliteClasses: ["SyncServer"],
+      }
+    },
+  },
+})
+
+new sst.cloudflare.x.Astro("Web", {
+  domain: "docs." + domain,
+  path: "packages/web",
+  environment: {
+    // For astro config
+    SST_STAGE: $app.stage,
+    VITE_API_URL: api.url.apply((url) => url!),
+  },
+})
+
+new sst.cloudflare.StaticSite("WebApp", {
+  domain: "app." + domain,
+  path: "packages/app",
+  build: {
+    command: "bun turbo build",
+    output: "./dist",
+  },
+})

opencode/infra/console.ts

@@ -0,0 +1,209 @@
+import { domain } from "./stage"
+import { EMAILOCTOPUS_API_KEY } from "./app"
+
+////////////////
+// DATABASE
+////////////////
+
+const cluster = planetscale.getDatabaseOutput({
+  name: "opencode",
+  organization: "anomalyco",
+})
+
+const branch =
+  $app.stage === "production"
+    ? planetscale.getBranchOutput({
+        name: "production",
+        organization: cluster.organization,
+        database: cluster.name,
+      })
+    : new planetscale.Branch("DatabaseBranch", {
+        database: cluster.name,
+        organization: cluster.organization,
+        name: $app.stage,
+        parentBranch: "production",
+      })
+const password = new planetscale.Password("DatabasePassword", {
+  name: $app.stage,
+  database: cluster.name,
+  organization: cluster.organization,
+  branch: branch.name,
+})
+
+export const database = new sst.Linkable("Database", {
+  properties: {
+    host: password.accessHostUrl,
+    database: cluster.name,
+    username: password.username,
+    password: password.plaintext,
+    port: 3306,
+  },
+})
+
+new sst.x.DevCommand("Studio", {
+  link: [database],
+  dev: {
+    command: "bun db studio",
+    directory: "packages/console/core",
+    autostart: true,
+  },
+})
+
+////////////////
+// AUTH
+////////////////
+
+const GITHUB_CLIENT_ID_CONSOLE = new sst.Secret("GITHUB_CLIENT_ID_CONSOLE")
+const GITHUB_CLIENT_SECRET_CONSOLE = new sst.Secret("GITHUB_CLIENT_SECRET_CONSOLE")
+const GOOGLE_CLIENT_ID = new sst.Secret("GOOGLE_CLIENT_ID")
+const authStorage = new sst.cloudflare.Kv("AuthStorage")
+export const auth = new sst.cloudflare.Worker("AuthApi", {
+  domain: `auth.${domain}`,
+  handler: "packages/console/function/src/auth.ts",
+  url: true,
+  link: [database, authStorage, GITHUB_CLIENT_ID_CONSOLE, GITHUB_CLIENT_SECRET_CONSOLE, GOOGLE_CLIENT_ID],
+})
+
+////////////////
+// GATEWAY
+////////////////
+
+export const stripeWebhook = new stripe.WebhookEndpoint("StripeWebhookEndpoint", {
+  url: $interpolate`https://${domain}/stripe/webhook`,
+  enabledEvents: [
+    "checkout.session.async_payment_failed",
+    "checkout.session.async_payment_succeeded",
+    "checkout.session.completed",
+    "checkout.session.expired",
+    "charge.refunded",
+    "invoice.payment_succeeded",
+    "invoice.payment_failed",
+    "invoice.payment_action_required",
+    "customer.created",
+    "customer.deleted",
+    "customer.updated",
+    "customer.discount.created",
+    "customer.discount.deleted",
+    "customer.discount.updated",
+    "customer.source.created",
+    "customer.source.deleted",
+    "customer.source.expiring",
+    "customer.source.updated",
+    "customer.subscription.created",
+    "customer.subscription.deleted",
+    "customer.subscription.paused",
+    "customer.subscription.pending_update_applied",
+    "customer.subscription.pending_update_expired",
+    "customer.subscription.resumed",
+    "customer.subscription.trial_will_end",
+    "customer.subscription.updated",
+  ],
+})
+
+const zenProduct = new stripe.Product("ZenBlack", {
+  name: "OpenCode Black",
+})
+const zenPriceProps = {
+  product: zenProduct.id,
+  currency: "usd",
+  recurring: {
+    interval: "month",
+    intervalCount: 1,
+  },
+}
+const zenPrice200 = new stripe.Price("ZenBlackPrice", { ...zenPriceProps, unitAmount: 20000 })
+const zenPrice100 = new stripe.Price("ZenBlack100Price", { ...zenPriceProps, unitAmount: 10000 })
+const zenPrice20 = new stripe.Price("ZenBlack20Price", { ...zenPriceProps, unitAmount: 2000 })
+const ZEN_BLACK_PRICE = new sst.Linkable("ZEN_BLACK_PRICE", {
+  properties: {
+    product: zenProduct.id,
+    plan200: zenPrice200.id,
+    plan100: zenPrice100.id,
+    plan20: zenPrice20.id,
+  },
+})
+const ZEN_BLACK_LIMITS = new sst.Secret("ZEN_BLACK_LIMITS")
+
+const ZEN_MODELS = [
+  new sst.Secret("ZEN_MODELS1"),
+  new sst.Secret("ZEN_MODELS2"),
+  new sst.Secret("ZEN_MODELS3"),
+  new sst.Secret("ZEN_MODELS4"),
+  new sst.Secret("ZEN_MODELS5"),
+  new sst.Secret("ZEN_MODELS6"),
+  new sst.Secret("ZEN_MODELS7"),
+  new sst.Secret("ZEN_MODELS8"),
+  new sst.Secret("ZEN_MODELS9"),
+  new sst.Secret("ZEN_MODELS10"),
+]
+const STRIPE_SECRET_KEY = new sst.Secret("STRIPE_SECRET_KEY")
+const STRIPE_PUBLISHABLE_KEY = new sst.Secret("STRIPE_PUBLISHABLE_KEY")
+const AUTH_API_URL = new sst.Linkable("AUTH_API_URL", {
+  properties: { value: auth.url.apply((url) => url!) },
+})
+const STRIPE_WEBHOOK_SECRET = new sst.Linkable("STRIPE_WEBHOOK_SECRET", {
+  properties: { value: stripeWebhook.secret },
+})
+const gatewayKv = new sst.cloudflare.Kv("GatewayKv")
+
+////////////////
+// CONSOLE
+////////////////
+
+const bucket = new sst.cloudflare.Bucket("ZenData")
+const bucketNew = new sst.cloudflare.Bucket("ZenDataNew")
+
+const AWS_SES_ACCESS_KEY_ID = new sst.Secret("AWS_SES_ACCESS_KEY_ID")
+const AWS_SES_SECRET_ACCESS_KEY = new sst.Secret("AWS_SES_SECRET_ACCESS_KEY")
+
+let logProcessor
+if ($app.stage === "production" || $app.stage === "frank") {
+  const HONEYCOMB_API_KEY = new sst.Secret("HONEYCOMB_API_KEY")
+  logProcessor = new sst.cloudflare.Worker("LogProcessor", {
+    handler: "packages/console/function/src/log-processor.ts",
+    link: [HONEYCOMB_API_KEY],
+  })
+}
+
+new sst.cloudflare.x.SolidStart("Console", {
+  domain,
+  path: "packages/console/app",
+  link: [
+    bucket,
+    bucketNew,
+    database,
+    AUTH_API_URL,
+    STRIPE_WEBHOOK_SECRET,
+    STRIPE_SECRET_KEY,
+    EMAILOCTOPUS_API_KEY,
+    AWS_SES_ACCESS_KEY_ID,
+    AWS_SES_SECRET_ACCESS_KEY,
+    ZEN_BLACK_PRICE,
+    ZEN_BLACK_LIMITS,
+    new sst.Secret("ZEN_SESSION_SECRET"),
+    ...ZEN_MODELS,
+    ...($dev
+      ? [
+          new sst.Secret("CLOUDFLARE_DEFAULT_ACCOUNT_ID", process.env.CLOUDFLARE_DEFAULT_ACCOUNT_ID!),
+          new sst.Secret("CLOUDFLARE_API_TOKEN", process.env.CLOUDFLARE_API_TOKEN!),
+        ]
+      : []),
+    gatewayKv,
+  ],
+  environment: {
+    //VITE_DOCS_URL: web.url.apply((url) => url!),
+    //VITE_API_URL: gateway.url.apply((url) => url!),
+    VITE_AUTH_URL: auth.url.apply((url) => url!),
+    VITE_STRIPE_PUBLISHABLE_KEY: STRIPE_PUBLISHABLE_KEY.value,
+  },
+  transform: {
+    server: {
+      transform: {
+        worker: {
+          placement: { mode: "smart" },
+          tailConsumers: logProcessor ? [{ service: logProcessor.nodes.worker.scriptName }] : [],
+        },
+      },
+    },
+  },
+})

opencode/infra/enterprise.ts

@@ -0,0 +1,17 @@
+import { SECRET } from "./secret"
+import { domain, shortDomain } from "./stage"
+
+const storage = new sst.cloudflare.Bucket("EnterpriseStorage")
+
+const teams = new sst.cloudflare.x.SolidStart("Teams", {
+  domain: shortDomain,
+  path: "packages/enterprise",
+  buildCommand: "bun run build:cloudflare",
+  environment: {
+    OPENCODE_STORAGE_ADAPTER: "r2",
+    OPENCODE_STORAGE_ACCOUNT_ID: sst.cloudflare.DEFAULT_ACCOUNT_ID,
+    OPENCODE_STORAGE_ACCESS_KEY_ID: SECRET.R2AccessKey.value,
+    OPENCODE_STORAGE_SECRET_ACCESS_KEY: SECRET.R2SecretKey.value,
+    OPENCODE_STORAGE_BUCKET: storage.name,
+  },
+})

opencode/infra/secret.ts

@@ -0,0 +1,4 @@
+export const SECRET = {
+  R2AccessKey: new sst.Secret("R2AccessKey", "unknown"),
+  R2SecretKey: new sst.Secret("R2SecretKey", "unknown"),
+}

opencode/infra/stage.ts

@@ -0,0 +1,19 @@
+export const domain = (() => {
+  if ($app.stage === "production") return "opencode.ai"
+  if ($app.stage === "dev") return "dev.opencode.ai"
+  return `${$app.stage}.dev.opencode.ai`
+})()
+
+export const zoneID = "430ba34c138cfb5360826c4909f99be8"
+
+new cloudflare.RegionalHostname("RegionalHostname", {
+  hostname: domain,
+  regionKey: "us",
+  zoneId: zoneID,
+})
+
+export const shortDomain = (() => {
+  if ($app.stage === "production") return "opncd.ai"
+  if ($app.stage === "dev") return "dev.opncd.ai"
+  return `${$app.stage}.dev.opncd.ai`
+})()