add Carrefour Logo

.env.example

@@ -1,4 +0,0 @@
-AUTH_HUGGINGFACE_ID=
-AUTH_HUGGINGFACE_SECRET=
-NEXTAUTH_URL=http://localhost:3001
-AUTH_SECRET=

.github/workflows/deploy-prod.yml

@@ -1,77 +0,0 @@
-name: Deploy to k8s
-on:
-  # run this workflow manually from the Actions tab
-  workflow_dispatch:
-
-jobs:
-  build-and-publish:
-    runs-on: 
-      group: cpu-high
-    steps:
-      - name: Checkout
-        uses: actions/checkout@v4
-
-      - name: Login to Registry
-        uses: docker/login-action@v3
-        with:
-          registry: registry.internal.huggingface.tech
-          username: ${{ secrets.DOCKER_INTERNAL_USERNAME }}
-          password: ${{ secrets.DOCKER_INTERNAL_PASSWORD }}
-
-      - name: Docker metadata
-        id: meta
-        uses: docker/metadata-action@v5
-        with:
-          images: |
-            registry.internal.huggingface.tech/deepsite/deepsite
-          tags: |
-            type=raw,value=latest,enable={{is_default_branch}}
-            type=sha,enable=true,prefix=sha-,format=short,sha-len=8
-
-      - name: Set up Docker Buildx
-        uses: docker/setup-buildx-action@v3
-
-      - name: Inject slug/short variables
-        uses: rlespinasse/github-slug-action@v4
-
-      - name: Build and Publish image
-        uses: docker/build-push-action@v5
-        with:
-          context: .
-          file: Dockerfile
-          push: ${{ github.event_name != 'pull_request' }}
-          tags: ${{ steps.meta.outputs.tags }}
-          labels: ${{ steps.meta.outputs.labels }}
-          platforms: linux/amd64
-          cache-to: type=gha,mode=max,scope=amd64
-          cache-from: type=gha,scope=amd64
-          provenance: false
-
-  deploy:
-    name: Deploy on prod
-    runs-on: ubuntu-latest
-    needs: ["build-and-publish"]
-    steps:
-      - name: Inject slug/short variables
-        uses: rlespinasse/github-slug-action@v4
-
-      - name: Gen values
-        run: |
-          VALUES=$(cat <<-END
-          image:
-            tag: "sha-${{ env.GITHUB_SHA_SHORT }}"
-          END
-          )
-          echo "VALUES=$(echo "$VALUES" | yq -o=json | jq tostring)" >> $GITHUB_ENV
-
-      - name: Deploy on infra-deployments
-        uses: the-actions-org/workflow-dispatch@v2
-        with:
-          workflow: Update application single value
-          repo: huggingface/infra-deployments
-          wait-for-completion: true
-          wait-for-completion-interval: 10s
-          display-workflow-run-url-interval: 10s
-          ref: refs/heads/main
-          token: ${{ secrets.GIT_TOKEN_INFRA_DEPLOYMENT }}
-          inputs: '{"path": "hub/deepsite/deepsite.yaml", "value": ${{ env.VALUES }}, "url": "${{ github.event.head_commit.url }}"}'

.gitignore

@@ -31,7 +31,7 @@ yarn-error.log*
 .pnpm-debug.log*
 
 # env files (can opt-in for committing if needed)
-.env
+.env*
 
 # vercel
 .vercel
@@ -39,9 +39,3 @@ yarn-error.log*
 # typescript
 *.tsbuildinfo
 next-env.d.ts
-
-.idea
-
-# binary assets (hosted on CDN)
-assets/assistant.jpg
-.gitattributes

Dockerfile

@@ -1,22 +1,19 @@
 FROM node:20-alpine
 USER root
 
-# Install pnpm
-RUN corepack enable && corepack prepare pnpm@latest --activate
-
 USER 1000
 WORKDIR /usr/src/app
-# Copy package.json and pnpm-lock.yaml to the container
-COPY --chown=1000 package.json pnpm-lock.yaml ./
+# Copy package.json and package-lock.json to the container
+COPY --chown=1000 package.json package-lock.json ./
 
 # Copy the rest of the application files to the container
 COPY --chown=1000 . .
 
-RUN pnpm install
-RUN pnpm run build
+RUN npm install
+RUN npm run build
 
 # Expose the application port (assuming your app runs on port 3000)
-EXPOSE 3001
+EXPOSE 3000
 
 # Start the application
-CMD ["pnpm", "start"]
+CMD ["npm", "start"]

README.md

@@ -1,23 +1,22 @@
 ---
-title: DeepSite v4
+title: DeepSite v2
 emoji: 🐳
 colorFrom: blue
 colorTo: blue
 sdk: docker
 pinned: true
-app_port: 3001
+app_port: 3000
 license: mit
-failure_strategy: rollback
-short_description: Generate any application by Vibe Coding it
+short_description: Generate any application with DeepSeek
 models:
   - deepseek-ai/DeepSeek-V3-0324
-  - deepseek-ai/DeepSeek-V3.2
-  - Qwen/Qwen3-Coder-30B-A3B-Instruct
-  - moonshotai/Kimi-K2-Instruct-0905
-  - zai-org/GLM-4.7
-  - MiniMaxAI/MiniMax-M2.1
+  - deepseek-ai/DeepSeek-R1-0528
 ---
 
 # DeepSite 🐳
 
-DeepSite is a Vibe Coding Platform designed to make coding smarter and more efficient. Tailored for developers, data scientists, and AI engineers, it integrates generative AI into your coding projects to enhance creativity and productivity.
+DeepSite is a coding platform powered by DeepSeek AI, designed to make coding smarter and more efficient. Tailored for developers, data scientists, and AI engineers, it integrates generative AI into your coding projects to enhance creativity and productivity.
+
+## How to use it locally
+
+Follow [this discussion](https://huggingface.co/spaces/enzostvs/deepsite/discussions/74)

actions/mentions.ts

@@ -1,31 +0,0 @@
-"use client";
-
-import { File } from "@/lib/type";
-
-export const searchMentions = async (query: string) => {
-  const promises = [searchModels(query), searchDatasets(query)];
-  const results = await Promise.all(promises);
-  return { models: results[0], datasets: results[1] };
-};
-
-const searchModels = async (query: string) => {
-  const response = await fetch(
-    `https://huggingface.co/api/quicksearch?q=${query}&type=model&limit=3`
-  );
-  const data = await response.json();
-  return data?.models ?? [];
-};
-
-const searchDatasets = async (query: string) => {
-  const response = await fetch(
-    `https://huggingface.co/api/quicksearch?q=${query}&type=dataset&limit=3`
-  );
-  const data = await response.json();
-  return data?.datasets ?? [];
-};
-
-export const searchFilesMentions = async (query: string, files: File[]) => {
-  if (!query) return files;
-  const lowerQuery = query.toLowerCase();
-  return files.filter((file) => file.path.toLowerCase().includes(lowerQuery));
-};

actions/projects.ts

@@ -1,175 +0,0 @@
-"use server";
-import {
-  downloadFile,
-  listCommits,
-  listFiles,
-  listSpaces,
-  RepoDesignation,
-  SpaceEntry,
-  spaceInfo,
-} from "@huggingface/hub";
-
-import { auth } from "@/lib/auth";
-import { Commit, File } from "@/lib/type";
-
-export interface ProjectWithCommits extends SpaceEntry {
-  commits?: Commit[];
-  medias?: string[];
-}
-
-const IGNORED_PATHS = ["README.md", ".gitignore", ".gitattributes"];
-const IGNORED_FORMATS = [
-  ".png",
-  ".jpg",
-  ".jpeg",
-  ".gif",
-  ".svg",
-  ".webp",
-  ".mp4",
-  ".mp3",
-  ".wav",
-];
-
-export const getProjects = async () => {
-  const projects: SpaceEntry[] = [];
-  const session = await auth();
-  if (!session?.user) {
-    return projects;
-  }
-  const token = session.accessToken;
-  for await (const space of listSpaces({
-    accessToken: token,
-    additionalFields: ["author", "cardData"],
-    search: {
-      owner: session.user.username, 
-    },
-  })) {
-    if (
-      space.sdk === "static" &&
-      Array.isArray((space.cardData as { tags?: string[] })?.tags) &&
-      (space.cardData as { tags?: string[] })?.tags?.some((tag) =>
-        tag.includes("deepsite")
-      )
-    ) {
-      projects.push(space);
-    }
-  }
-  return projects;
-};
-export const getProject = async (id: string, commitId?: string) => {
-  const session = await auth();
-  if (!session?.user) {
-    return null;
-  }
-  const token = session.accessToken;
-  try {
-    const project: ProjectWithCommits | null = await spaceInfo({
-      name: id,
-      accessToken: token,
-      additionalFields: ["author", "cardData"],
-    });
-    const repo: RepoDesignation = {
-      type: "space",
-      name: id,
-    };
-    const files: File[] = [];
-    const medias: string[] = [];
-    const params = { repo, accessToken: token };
-    if (commitId) {
-      Object.assign(params, { revision: commitId });
-    }
-    for await (const fileInfo of listFiles(params)) {
-      if (IGNORED_PATHS.includes(fileInfo.path)) continue;
-      if (IGNORED_FORMATS.some((format) => fileInfo.path.endsWith(format))) {
-        medias.push(
-          `https://huggingface.co/spaces/${id}/resolve/main/${fileInfo.path}`
-        );
-        continue;
-      }
-
-      if (fileInfo.type === "directory") {
-        for await (const subFile of listFiles({
-          repo,
-          accessToken: token,
-          path: fileInfo.path,
-        })) {
-          if (IGNORED_FORMATS.some((format) => subFile.path.endsWith(format))) {
-            medias.push(
-              `https://huggingface.co/spaces/${id}/resolve/main/${subFile.path}`
-            );
-          }
-          const blob = await downloadFile({
-            repo,
-            accessToken: token,
-            path: subFile.path,
-            raw: true,
-            ...(commitId ? { revision: commitId } : {}),
-          }).catch((_) => {
-            return null;
-          });
-          if (!blob) {
-            continue;
-          }
-          const html = await blob?.text();
-          if (!html) {
-            continue;
-          }
-          files[subFile.path === "index.html" ? "unshift" : "push"]({
-            path: subFile.path,
-            content: html,
-          });
-        }
-      } else {
-        const blob = await downloadFile({
-          repo,
-          accessToken: token,
-          path: fileInfo.path,
-          raw: true,
-          ...(commitId ? { revision: commitId } : {}),
-        }).catch((_) => {
-          return null;
-        });
-        if (!blob) {
-          continue;
-        }
-        const html = await blob?.text();
-        if (!html) {
-          continue;
-        }
-        files[fileInfo.path === "index.html" ? "unshift" : "push"]({
-          path: fileInfo.path,
-          content: html,
-        });
-      }
-    }
-    const commits: Commit[] = [];
-    const commitIterator = listCommits({ repo, accessToken: token });
-    for await (const commit of commitIterator) {
-      if (
-        commit.title?.toLowerCase() === "initial commit" ||
-        commit.title
-          ?.toLowerCase()
-          ?.includes("upload media files through deepsite")
-      )
-        continue;
-      commits.push({
-        title: commit.title,
-        oid: commit.oid,
-        date: commit.date,
-      });
-      if (commits.length >= 20) {
-        break;
-      }
-    }
-
-    project.commits = commits;
-    project.medias = medias;
-
-    return { project, files };
-  } catch (error) {
-    return {
-      project: null,
-      files: [],
-    };
-  }
-};

app/(public)/layout.tsx

@@ -1,12 +1,13 @@
-import { Navigation } from "@/components/public/navigation";
+import Navigation from "@/components/public/navigation";
 
-export default function PublicLayout({
+export default async function PublicLayout({
   children,
 }: Readonly<{
   children: React.ReactNode;
 }>) {
   return (
-    <div className="min-h-screen font-sans">
+    <div className="min-h-screen bg-black z-1 relative">
+      <div className="background__noisy" />
       <Navigation />
       {children}
     </div>

app/(public)/page.tsx

@@ -1,25 +1,44 @@
-import { AnimatedDotsBackground } from "@/components/public/animated-dots-background";
-import { HeroHeader } from "@/components/public/hero-header";
-import { UserProjects } from "@/components/projects/user-projects";
-import { AskAiLanding } from "@/components/ask-ai/ask-ai-landing";
-import { Bento } from "@/components/public/bento";
-
-export const dynamic = "force-dynamic";
-
-export default async function Homepage() {
+import { AskAi } from "@/components/space/ask-ai";
+import { redirect } from "next/navigation";
+export default function Home() {
+  redirect("/projects/new");
   return (
     <>
-      <section className="container mx-auto relative z-10">
-        <HeroHeader />
-        <div className="absolute inset-0 -z-10">
-          <AnimatedDotsBackground />
+      <header className="container mx-auto pt-20 px-6 relative flex flex-col items-center justify-center text-center">
+        <div className="rounded-full border border-neutral-100/10 bg-neutral-100/5 text-xs text-neutral-300 px-3 py-1 max-w-max mx-auto mb-2">
+          ✨ DeepSite Public Beta
         </div>
-        <div className="max-w-xl mx-auto px-6">
-          <AskAiLanding />
+        <h1 className="text-8xl font-semibold text-white font-mono max-w-4xl">
+          Code your website with AI in seconds
+        </h1>
+        <p className="text-2xl text-neutral-300/80 mt-4 text-center max-w-2xl">
+          Vibe Coding has never been so easy.
+        </p>
+        <div className="mt-14 max-w-2xl w-full mx-auto">
+          <AskAi />
         </div>
-      </section>
-      <UserProjects />
-      <Bento />
+        <div className="absolute inset-0 pointer-events-none -z-[1]">
+          <div className="w-full h-full bg-gradient-to-r from-purple-500 to-pink-500 opacity-10 blur-3xl rounded-full" />
+          <div className="w-2/3 h-3/4 bg-gradient-to-r from-blue-500 to-teal-500 opacity-24 blur-3xl absolute -top-20 right-10 transform rotate-12" />
+          <div className="w-1/2 h-1/2 bg-gradient-to-r from-amber-500 to-rose-500 opacity-20 blur-3xl absolute bottom-0 left-10 rounded-3xl" />
+          <div className="w-48 h-48 bg-gradient-to-r from-cyan-500 to-indigo-500 opacity-20 blur-3xl absolute top-1/3 right-1/3 rounded-lg transform -rotate-15" />
+        </div>
+      </header>
+      <div id="community" className="h-screen flex items-center justify-center">
+        <h1 className="text-7xl font-extrabold text-white font-mono">
+          Community Driven
+        </h1>
+      </div>
+      <div id="deploy" className="h-screen flex items-center justify-center">
+        <h1 className="text-7xl font-extrabold text-white font-mono">
+          Deploy your website in seconds
+        </h1>
+      </div>
+      <div id="features" className="h-screen flex items-center justify-center">
+        <h1 className="text-7xl font-extrabold text-white font-mono">
+          Features that make you smile
+        </h1>
+      </div>
     </>
   );
 }

app/(public)/projects/page.tsx

@@ -0,0 +1,13 @@
+import { redirect } from "next/navigation";
+
+import { MyProjects } from "@/components/my-projects";
+import { getProjects } from "@/app/actions/projects";
+
+export default async function ProjectsPage() {
+  const { ok, projects } = await getProjects();
+  if (!ok) {
+    redirect("/");
+  }
+
+  return <MyProjects projects={projects} />;
+}

app/(public)/signin/page.tsx

@@ -1,21 +0,0 @@
-import { LoginButtons } from "@/components/login/login-buttons";
-
-export default async function SignInPage({
-  searchParams,
-}: {
-  searchParams: Promise<{ callbackUrl: string }>;
-}) {
-  const { callbackUrl } = await searchParams;
-  console.log(callbackUrl);
-  return (
-    <section className="min-h-screen font-sans">
-      <div className="px-6 py-16 max-w-5xl mx-auto text-center">
-        <h1 className="text-5xl font-bold mb-5">You shall not pass 🧙</h1>
-        <p className="text-lg text-muted-foreground mb-8">
-          You can&apos;t access this resource without being signed in.
-        </p>
-        <LoginButtons callbackUrl={callbackUrl ?? "/"} />
-      </div>
-    </section>
-  );
-}

app/[owner]/[repoId]/page.tsx

@@ -1,35 +0,0 @@
-import { getProject } from "@/actions/projects";
-import { AppEditor } from "@/components/editor";
-import { auth } from "@/lib/auth";
-import { notFound, redirect } from "next/navigation";
-
-export default async function ProjectPage({
-  params,
-  searchParams,
-}: {
-  params: Promise<{ owner: string; repoId: string }>;
-  searchParams: Promise<{ commit?: string }>;
-}) {
-  const session = await auth();
-
-  const { owner, repoId } = await params;
-  const { commit } = await searchParams;
-  if (!session) {
-    redirect(
-      `/api/auth/signin?callbackUrl=/${owner}/${repoId}${
-        commit ? `?commit=${commit}` : ""
-      }`
-    );
-  }
-  const datas = await getProject(`${owner}/${repoId}`, commit);
-  if (!datas?.project) {
-    return notFound();
-  }
-  return (
-    <AppEditor
-      project={datas.project}
-      files={datas.files ?? []}
-      isHistoryView={!!commit}
-    />
-  );
-}

app/actions/auth.ts

@@ -0,0 +1,18 @@
+"use server";
+
+import { headers } from "next/headers";
+
+export async function getAuth() {
+  const authList = await headers();
+  const host = authList.get("host") ?? "localhost:3000";
+  const url = host.includes("/spaces/enzostvs")
+    ? "enzostvs-deepsite.hf.space"
+    : host;
+  const redirect_uri =
+    `${host.includes("localhost") ? "http://" : "https://"}` +
+    url +
+    "/auth/callback";
+
+  const loginRedirectUrl = `https://huggingface.co/oauth/authorize?client_id=${process.env.OAUTH_CLIENT_ID}&redirect_uri=${redirect_uri}&response_type=code&scope=openid%20profile%20write-repos%20manage-repos%20inference-api&prompt=consent&state=1234567890`;
+  return loginRedirectUrl;
+}

app/actions/projects.ts

@@ -0,0 +1,63 @@
+"use server";
+
+import { isAuthenticated } from "@/lib/auth";
+import { NextResponse } from "next/server";
+import dbConnect from "@/lib/mongodb";
+import Project from "@/models/Project";
+import { Project as ProjectType } from "@/types";
+
+export async function getProjects(): Promise<{
+  ok: boolean;
+  projects: ProjectType[];
+}> {
+  const user = await isAuthenticated();
+
+  if (user instanceof NextResponse || !user) {
+    return {
+      ok: false,
+      projects: [],
+    };
+  }
+
+  await dbConnect();
+  const projects = await Project.find({
+    user_id: user?.id,
+  })
+    .sort({ _createdAt: -1 })
+    .limit(100)
+    .lean();
+  if (!projects) {
+    return {
+      ok: false,
+      projects: [],
+    };
+  }
+  return {
+    ok: true,
+    projects: JSON.parse(JSON.stringify(projects)) as ProjectType[],
+  };
+}
+
+export async function getProject(
+  namespace: string,
+  repoId: string
+): Promise<ProjectType | null> {
+  const user = await isAuthenticated();
+
+  if (user instanceof NextResponse || !user) {
+    return null;
+  }
+
+  await dbConnect();
+  const project = await Project.findOne({
+    user_id: user.id,
+    namespace,
+    repoId,
+  }).lean();
+
+  if (!project) {
+    return null;
+  }
+
+  return JSON.parse(JSON.stringify(project)) as ProjectType;
+}

app/actions/rewrite-prompt.ts

@@ -0,0 +1,35 @@
+import { InferenceClient } from "@huggingface/inference";
+
+const START_REWRITE_PROMPT = ">>>>>>> START PROMPT >>>>>>";
+const END_REWRITE_PROMPT = ">>>>>>> END PROMPT >>>>>>";
+
+export const callAiRewritePrompt = async (prompt: string, { token, billTo }: { token: string, billTo?: string | null }) => {
+  const client = new InferenceClient(token);
+  const response = await client.chatCompletion(
+    {
+      model: "deepseek-ai/DeepSeek-V3.1",
+      provider: "novita",
+      messages: [{
+        role: "system",
+        content: `You are a helpful assistant that rewrites prompts to make them better. All the prompts will be about creating a website or app.
+Try to make the prompt more detailed and specific to create a good UI/UX Design and good code.
+Format the result by following this format:
+${START_REWRITE_PROMPT}
+new prompt here
+${END_REWRITE_PROMPT}
+If you don't rewrite the prompt, return the original prompt.
+Make sure to return the prompt in the same language as the prompt you are given. Also IMPORTANT: Make sure to keep the original intent of the prompt. Improve it it needed, but don't change the original intent.
+`
+      },{ role: "user", content: prompt }],
+    },
+    billTo ? { billTo } : {}
+  );
+  
+  const responseContent = response.choices[0]?.message?.content;
+  if (!responseContent) {
+    return prompt;
+  }
+  const startIndex = responseContent.indexOf(START_REWRITE_PROMPT);
+  const endIndex = responseContent.indexOf(END_REWRITE_PROMPT);
+  return responseContent.substring(startIndex + START_REWRITE_PROMPT.length, endIndex);
+};

app/api/ask-ai/route.ts

@@ -0,0 +1,510 @@
+/* eslint-disable @typescript-eslint/no-explicit-any */
+import type { NextRequest } from "next/server";
+import { NextResponse } from "next/server";
+import { headers } from "next/headers";
+import { InferenceClient } from "@huggingface/inference";
+
+import { MODELS, PROVIDERS } from "@/lib/providers";
+import {
+  DIVIDER,
+  FOLLOW_UP_SYSTEM_PROMPT,
+  INITIAL_SYSTEM_PROMPT,
+  MAX_REQUESTS_PER_IP,
+  NEW_PAGE_END,
+  NEW_PAGE_START,
+  REPLACE_END,
+  SEARCH_START,
+  UPDATE_PAGE_START,
+  UPDATE_PAGE_END,
+} from "@/lib/prompts";
+import MY_TOKEN_KEY from "@/lib/get-cookie-name";
+import { Page } from "@/types";
+
+const ipAddresses = new Map();
+
+export async function POST(request: NextRequest) {
+  const authHeaders = await headers();
+  const userToken = request.cookies.get(MY_TOKEN_KEY())?.value;
+
+  const body = await request.json();
+  const { prompt, provider, model, redesignMarkdown, previousPrompts, pages } = body;
+
+  if (!model || (!prompt && !redesignMarkdown)) {
+    return NextResponse.json(
+      { ok: false, error: "Missing required fields" },
+      { status: 400 }
+    );
+  }
+
+  const selectedModel = MODELS.find(
+    (m) => m.value === model || m.label === model
+  );
+
+  if (!selectedModel) {
+    return NextResponse.json(
+      { ok: false, error: "Invalid model selected" },
+      { status: 400 }
+    );
+  }
+
+  if (!selectedModel.providers.includes(provider) && provider !== "auto") {
+    return NextResponse.json(
+      {
+        ok: false,
+        error: `The selected model does not support the ${provider} provider.`,
+        openSelectProvider: true,
+      },
+      { status: 400 }
+    );
+  }
+
+  let token = userToken;
+  let billTo: string | null = null;
+
+  /**
+   * Handle local usage token, this bypass the need for a user token
+   * and allows local testing without authentication.
+   * This is useful for development and testing purposes.
+   */
+  if (process.env.HF_TOKEN && process.env.HF_TOKEN.length > 0) {
+    token = process.env.HF_TOKEN;
+  }
+
+  const ip = authHeaders.get("x-forwarded-for")?.includes(",")
+    ? authHeaders.get("x-forwarded-for")?.split(",")[1].trim()
+    : authHeaders.get("x-forwarded-for");
+
+  if (!token) {
+    ipAddresses.set(ip, (ipAddresses.get(ip) || 0) + 1);
+    if (ipAddresses.get(ip) > MAX_REQUESTS_PER_IP) {
+      return NextResponse.json(
+        {
+          ok: false,
+          openLogin: true,
+          message: "Log In to continue using the service",
+        },
+        { status: 429 }
+      );
+    }
+
+    token = process.env.DEFAULT_HF_TOKEN as string;
+    billTo = "huggingface";
+  }
+
+  const DEFAULT_PROVIDER = PROVIDERS.novita;
+  const selectedProvider =
+    provider === "auto"
+      ? PROVIDERS[selectedModel.autoProvider as keyof typeof PROVIDERS]
+      : PROVIDERS[provider as keyof typeof PROVIDERS] ?? DEFAULT_PROVIDER;
+
+  const rewrittenPrompt = prompt;
+
+  // if (prompt?.length < 240) {
+    
+    //rewrittenPrompt = await callAiRewritePrompt(prompt, { token, billTo });
+  // }
+
+  try {
+    const encoder = new TextEncoder();
+    const stream = new TransformStream();
+    const writer = stream.writable.getWriter();
+
+    const response = new NextResponse(stream.readable, {
+      headers: {
+        "Content-Type": "text/plain; charset=utf-8",
+        "Cache-Control": "no-cache",
+        Connection: "keep-alive",
+      },
+    });
+
+    (async () => {
+      // let completeResponse = "";
+      try {
+        const client = new InferenceClient(token);
+        const chatCompletion = client.chatCompletionStream(
+          {
+            model: selectedModel.value,
+            provider: selectedProvider.id as any,
+            messages: [
+              {
+                role: "system",
+                content: INITIAL_SYSTEM_PROMPT,
+              },
+              ...(pages?.length > 1 ? [{
+                role: "assistant",
+                content: `Here are the current pages:\n\n${pages.map((p: Page) => `- ${p.path} \n${p.html}`).join("\n")}\n\nNow, please create a new page based on this code. Also here are the previous prompts:\n\n${previousPrompts.map((p: string) => `- ${p}`).join("\n")}`
+              }] : []),
+              {
+                role: "user",
+                content: redesignMarkdown
+                  ? `Here is my current design as a markdown:\n\n${redesignMarkdown}\n\nNow, please create a new design based on this markdown.`
+                  : rewrittenPrompt,
+              },
+            ],
+            max_tokens: selectedProvider.max_tokens,
+          },
+          billTo ? { billTo } : {}
+        );
+
+        while (true) {
+          const { done, value } = await chatCompletion.next();
+          if (done) {
+            break;
+          }
+
+          const chunk = value.choices[0]?.delta?.content;
+          if (chunk) {
+            await writer.write(encoder.encode(chunk));
+          }
+        }
+      } catch (error: any) {
+        if (error.message?.includes("exceeded your monthly included credits")) {
+          await writer.write(
+            encoder.encode(
+              JSON.stringify({
+                ok: false,
+                openProModal: true,
+                message: error.message,
+              })
+            )
+          );
+        } else {
+          await writer.write(
+            encoder.encode(
+              JSON.stringify({
+                ok: false,
+                message:
+                  error.message ||
+                  "An error occurred while processing your request.",
+              })
+            )
+          );
+        }
+      } finally {
+        await writer?.close();
+      }
+    })();
+
+    return response;
+  } catch (error: any) {
+    return NextResponse.json(
+      {
+        ok: false,
+        openSelectProvider: true,
+        message:
+          error?.message || "An error occurred while processing your request.",
+      },
+      { status: 500 }
+    );
+  }
+}
+
+export async function PUT(request: NextRequest) {
+  const authHeaders = await headers();
+  const userToken = request.cookies.get(MY_TOKEN_KEY())?.value;
+
+  const body = await request.json();
+  const { prompt, previousPrompts, provider, selectedElementHtml, model, pages, files, } =
+    body;
+
+  if (!prompt || pages.length === 0) {
+    return NextResponse.json(
+      { ok: false, error: "Missing required fields" },
+      { status: 400 }
+    );
+  }
+
+  const selectedModel = MODELS.find(
+    (m) => m.value === model || m.label === model
+  );
+  if (!selectedModel) {
+    return NextResponse.json(
+      { ok: false, error: "Invalid model selected" },
+      { status: 400 }
+    );
+  }
+
+  let token = userToken;
+  let billTo: string | null = null;
+
+  /**
+   * Handle local usage token, this bypass the need for a user token
+   * and allows local testing without authentication.
+   * This is useful for development and testing purposes.
+   */
+  if (process.env.HF_TOKEN && process.env.HF_TOKEN.length > 0) {
+    token = process.env.HF_TOKEN;
+  }
+
+  const ip = authHeaders.get("x-forwarded-for")?.includes(",")
+    ? authHeaders.get("x-forwarded-for")?.split(",")[1].trim()
+    : authHeaders.get("x-forwarded-for");
+
+  if (!token) {
+    ipAddresses.set(ip, (ipAddresses.get(ip) || 0) + 1);
+    if (ipAddresses.get(ip) > MAX_REQUESTS_PER_IP) {
+      return NextResponse.json(
+        {
+          ok: false,
+          openLogin: true,
+          message: "Log In to continue using the service",
+        },
+        { status: 429 }
+      );
+    }
+
+    token = process.env.DEFAULT_HF_TOKEN as string;
+    billTo = "huggingface";
+  }
+
+  const client = new InferenceClient(token);
+
+  const DEFAULT_PROVIDER = PROVIDERS.novita;
+  const selectedProvider =
+    provider === "auto"
+      ? PROVIDERS[selectedModel.autoProvider as keyof typeof PROVIDERS]
+      : PROVIDERS[provider as keyof typeof PROVIDERS] ?? DEFAULT_PROVIDER;
+
+  try {
+    const response = await client.chatCompletion(
+      {
+        model: selectedModel.value,
+        provider: selectedProvider.id as any,
+        messages: [
+          {
+            role: "system",
+            content: FOLLOW_UP_SYSTEM_PROMPT,
+          },
+          {
+            role: "user",
+            content: previousPrompts
+              ? `Also here are the previous prompts:\n\n${previousPrompts.map((p: string) => `- ${p}`).join("\n")}`
+              : "You are modifying the HTML file based on the user's request.",
+          },
+          {
+            role: "assistant",
+
+            content: `${
+              selectedElementHtml
+                ? `\n\nYou have to update ONLY the following element, NOTHING ELSE: \n\n\`\`\`html\n${selectedElementHtml}\n\`\`\``
+                : ""
+            }. Current pages: ${pages?.map((p: Page) => `- ${p.path} \n${p.html}`).join("\n")}. ${files?.length > 0 ? `Current images: ${files?.map((f: string) => `- ${f}`).join("\n")}.` : ""}`,
+          },
+          {
+            role: "user",
+            content: prompt,
+          },
+        ],
+        ...(selectedProvider.id !== "sambanova"
+          ? {
+              max_tokens: selectedProvider.max_tokens,
+            }
+          : {}),
+      },
+      billTo ? { billTo } : {}
+    );
+
+    const chunk = response.choices[0]?.message?.content;
+    if (!chunk) {
+      return NextResponse.json(
+        { ok: false, message: "No content returned from the model" },
+        { status: 400 }
+      );
+    }
+
+    if (chunk) {
+      const updatedLines: number[][] = [];
+      let newHtml = "";
+      const updatedPages = [...(pages || [])];
+
+      const updatePageRegex = new RegExp(`${UPDATE_PAGE_START.replace(/[.*+?^${}()|[\]\\]/g, '\\$&')}([^\\s]+)\\s*${UPDATE_PAGE_END.replace(/[.*+?^${}()|[\]\\]/g, '\\$&')}([\\s\\S]*?)(?=${UPDATE_PAGE_START.replace(/[.*+?^${}()|[\]\\]/g, '\\$&')}|${NEW_PAGE_START.replace(/[.*+?^${}()|[\]\\]/g, '\\$&')}|$)`, 'g');
+      let updatePageMatch;
+      
+      while ((updatePageMatch = updatePageRegex.exec(chunk)) !== null) {
+        const [, pagePath, pageContent] = updatePageMatch;
+        
+        const pageIndex = updatedPages.findIndex(p => p.path === pagePath);
+        if (pageIndex !== -1) {
+          let pageHtml = updatedPages[pageIndex].html;
+          
+          let processedContent = pageContent;
+          const htmlMatch = pageContent.match(/```html\s*([\s\S]*?)\s*```/);
+          if (htmlMatch) {
+            processedContent = htmlMatch[1];
+          }
+          let position = 0;
+          let moreBlocks = true;
+
+          while (moreBlocks) {
+            const searchStartIndex = processedContent.indexOf(SEARCH_START, position);
+            if (searchStartIndex === -1) {
+              moreBlocks = false;
+              continue;
+            }
+
+            const dividerIndex = processedContent.indexOf(DIVIDER, searchStartIndex);
+            if (dividerIndex === -1) {
+              moreBlocks = false;
+              continue;
+            }
+
+            const replaceEndIndex = processedContent.indexOf(REPLACE_END, dividerIndex);
+            if (replaceEndIndex === -1) {
+              moreBlocks = false;
+              continue;
+            }
+
+            const searchBlock = processedContent.substring(
+              searchStartIndex + SEARCH_START.length,
+              dividerIndex
+            );
+            const replaceBlock = processedContent.substring(
+              dividerIndex + DIVIDER.length,
+              replaceEndIndex
+            );
+
+            if (searchBlock.trim() === "") {
+              pageHtml = `${replaceBlock}\n${pageHtml}`;
+              updatedLines.push([1, replaceBlock.split("\n").length]);
+            } else {
+              const blockPosition = pageHtml.indexOf(searchBlock);
+              if (blockPosition !== -1) {
+                const beforeText = pageHtml.substring(0, blockPosition);
+                const startLineNumber = beforeText.split("\n").length;
+                const replaceLines = replaceBlock.split("\n").length;
+                const endLineNumber = startLineNumber + replaceLines - 1;
+
+                updatedLines.push([startLineNumber, endLineNumber]);
+                pageHtml = pageHtml.replace(searchBlock, replaceBlock);
+              }
+            }
+
+            position = replaceEndIndex + REPLACE_END.length;
+          }
+
+          updatedPages[pageIndex].html = pageHtml;
+          
+          if (pagePath === '/' || pagePath === '/index' || pagePath === 'index') {
+            newHtml = pageHtml;
+          }
+        }
+      }
+
+      const newPageRegex = new RegExp(`${NEW_PAGE_START.replace(/[.*+?^${}()|[\]\\]/g, '\\$&')}([^\\s]+)\\s*${NEW_PAGE_END.replace(/[.*+?^${}()|[\]\\]/g, '\\$&')}([\\s\\S]*?)(?=${UPDATE_PAGE_START.replace(/[.*+?^${}()|[\]\\]/g, '\\$&')}|${NEW_PAGE_START.replace(/[.*+?^${}()|[\]\\]/g, '\\$&')}|$)`, 'g');
+      let newPageMatch;
+      
+      while ((newPageMatch = newPageRegex.exec(chunk)) !== null) {
+        const [, pagePath, pageContent] = newPageMatch;
+        
+        let pageHtml = pageContent;
+        const htmlMatch = pageContent.match(/```html\s*([\s\S]*?)\s*```/);
+        if (htmlMatch) {
+          pageHtml = htmlMatch[1];
+        }
+        
+        const existingPageIndex = updatedPages.findIndex(p => p.path === pagePath);
+        
+        if (existingPageIndex !== -1) {
+          updatedPages[existingPageIndex] = {
+            path: pagePath,
+            html: pageHtml.trim()
+          };
+        } else {
+          updatedPages.push({
+            path: pagePath,
+            html: pageHtml.trim()
+          });
+        }
+      }
+
+      if (updatedPages.length === pages?.length && !chunk.includes(UPDATE_PAGE_START)) {
+        let position = 0;
+        let moreBlocks = true;
+
+        while (moreBlocks) {
+          const searchStartIndex = chunk.indexOf(SEARCH_START, position);
+          if (searchStartIndex === -1) {
+            moreBlocks = false;
+            continue;
+          }
+
+          const dividerIndex = chunk.indexOf(DIVIDER, searchStartIndex);
+          if (dividerIndex === -1) {
+            moreBlocks = false;
+            continue;
+          }
+
+          const replaceEndIndex = chunk.indexOf(REPLACE_END, dividerIndex);
+          if (replaceEndIndex === -1) {
+            moreBlocks = false;
+            continue;
+          }
+
+          const searchBlock = chunk.substring(
+            searchStartIndex + SEARCH_START.length,
+            dividerIndex
+          );
+          const replaceBlock = chunk.substring(
+            dividerIndex + DIVIDER.length,
+            replaceEndIndex
+          );
+
+          if (searchBlock.trim() === "") {
+            newHtml = `${replaceBlock}\n${newHtml}`;
+            updatedLines.push([1, replaceBlock.split("\n").length]);
+          } else {
+            const blockPosition = newHtml.indexOf(searchBlock);
+            if (blockPosition !== -1) {
+              const beforeText = newHtml.substring(0, blockPosition);
+              const startLineNumber = beforeText.split("\n").length;
+              const replaceLines = replaceBlock.split("\n").length;
+              const endLineNumber = startLineNumber + replaceLines - 1;
+
+              updatedLines.push([startLineNumber, endLineNumber]);
+              newHtml = newHtml.replace(searchBlock, replaceBlock);
+            }
+          }
+
+          position = replaceEndIndex + REPLACE_END.length;
+        }
+
+        // Update the main HTML if it's the index page
+        const mainPageIndex = updatedPages.findIndex(p => p.path === '/' || p.path === '/index' || p.path === 'index');
+        if (mainPageIndex !== -1) {
+          updatedPages[mainPageIndex].html = newHtml;
+        }
+      }
+
+      return NextResponse.json({
+        ok: true,
+        updatedLines,
+        pages: updatedPages,
+      });
+    } else {
+      return NextResponse.json(
+        { ok: false, message: "No content returned from the model" },
+        { status: 400 }
+      );
+    }
+  } catch (error: any) {
+    if (error.message?.includes("exceeded your monthly included credits")) {
+      return NextResponse.json(
+        {
+          ok: false,
+          openProModal: true,
+          message: error.message,
+        },
+        { status: 402 }
+      );
+    }
+    return NextResponse.json(
+      {
+        ok: false,
+        openSelectProvider: true,
+        message:
+          error.message || "An error occurred while processing your request.",
+      },
+      { status: 500 }
+    );
+  }
+}

app/api/ask/route.ts

@@ -1,183 +0,0 @@
-import { NextResponse } from "next/server";
-import { InferenceClient } from "@huggingface/inference";
-
-import { FOLLOW_UP_SYSTEM_PROMPT, INITIAL_SYSTEM_PROMPT } from "@/lib/prompts";
-import { auth } from "@/lib/auth";
-import { File, Message } from "@/lib/type";
-import { DEFAULT_MODEL, MODELS } from "@/lib/providers";
-
-export async function POST(request: Request) {
-  const session = await auth();
-  if (!session) {
-    return NextResponse.json({ error: "Unauthorized" }, { status: 401 });
-  }
-  const token = session.accessToken;
-
-  const body = await request.json();
-  const {
-    prompt,
-    previousMessages = [],
-    files = [],
-    provider,
-    model,
-    redesignMd,
-    medias,
-  } = body;
-
-  if (!prompt) {
-    return NextResponse.json({ error: "Prompt is required" }, { status: 400 });
-  }
-  if (!model || !MODELS.find((m: (typeof MODELS)[0]) => m.value === model)) {
-    return NextResponse.json({ error: "Model is required" }, { status: 400 });
-  }
-
-  const client = new InferenceClient(token);
-
-  try {
-    const encoder = new TextEncoder();
-    const stream = new TransformStream();
-    const writer = stream.writable.getWriter();
-
-    const response = new NextResponse(stream.readable, {
-      headers: {
-        "Content-Type": "text/plain; charset=utf-8",
-        "Cache-Control": "no-cache",
-        Connection: "keep-alive",
-      },
-    });
-    (async () => {
-      let hasRetried = false;
-      let currentModel = model;
-
-      const tryGeneration = async (): Promise<void> => {
-        try {
-          const chatCompletion = client.chatCompletionStream({
-            model: currentModel + (provider !== "auto" ? `:${provider}` : ""),
-            messages: [
-              {
-                role: "system",
-                content:
-                  files.length > 0
-                    ? FOLLOW_UP_SYSTEM_PROMPT
-                    : INITIAL_SYSTEM_PROMPT,
-              },
-              ...previousMessages.map((message: Message) => ({
-                role: message.role,
-                content: message.content,
-              })),
-              ...(files?.length > 0
-                ? [
-                    {
-                      role: "user",
-                      content: `Here are the files that the user has provider:${files
-                        .map(
-                          (file: File) =>
-                            `File: ${file.path}\nContent: ${file.content}`
-                        )
-                        .join("\n")}\n\n${prompt}`,
-                    },
-                  ]
-                : []),
-              {
-                role: "user",
-                content: `${
-                  redesignMd?.url &&
-                  `Redesign the following website ${redesignMd.url}, try to use the same images and content, but you can still improve it if needed. Do the best version possibile. Here is the markdown:\n ${redesignMd.md} \n\n`
-                }${prompt} ${
-                  medias && medias.length > 0
-                    ? `\nHere is the list of my media files: ${medias.join(
-                        ", "
-                      )}\n`
-                    : ""
-                }`,
-              }
-            ],
-            stream: true,
-            max_tokens: 16_000,
-          });
-          while (true) {
-            const { done, value } = await chatCompletion.next();
-            if (done) {
-              break;
-            }
-
-            const chunk = value.choices[0]?.delta?.content;
-            if (chunk) {
-              await writer.write(encoder.encode(chunk));
-            }
-          }
-
-          await writer.close();
-        } catch (error) {
-          const errorMessage =
-            error instanceof Error
-              ? error.message
-              : "An error occurred while processing your request";
-
-          if (
-            !hasRetried &&
-            errorMessage?.includes(
-              "Failed to perform inference: Model not found"
-            )
-          ) {
-            hasRetried = true;
-            if (model === DEFAULT_MODEL) {
-              const availableFallbackModels = MODELS.filter(
-                (m) => m.value !== model
-              );
-              const randomIndex = Math.floor(
-                Math.random() * availableFallbackModels.length
-              );
-              currentModel = availableFallbackModels[randomIndex];
-            } else {
-              currentModel = DEFAULT_MODEL;
-            }
-            const switchMessage = `\n\n_Note: The selected model was not available. Switched to \`${currentModel}\`._\n\n`;
-            await writer.write(encoder.encode(switchMessage));
-
-            return tryGeneration();
-          }
-
-          try {
-            let errorPayload = "";
-            if (
-              errorMessage?.includes("exceeded your monthly included credits") ||
-              errorMessage?.includes("reached the free monthly usage limit")
-            ) {
-              errorPayload = JSON.stringify({
-                messageError: errorMessage,
-                showProMessage: true,
-                isError: true,
-              });
-            } else {
-              errorPayload = JSON.stringify({
-                messageError: errorMessage,
-                isError: true,
-              });
-            }
-            await writer.write(encoder.encode(`\n\n__ERROR__:${errorPayload}`));
-            await writer.close();
-          } catch (closeError) {
-            console.error("Failed to send error message:", closeError);
-            try {
-              await writer.abort(error);
-            } catch (abortError) {
-              console.error("Failed to abort writer:", abortError);
-            }
-          }
-        }
-      };
-
-      await tryGeneration();
-    })();
-
-    return response;
-  } catch (error) {
-    return NextResponse.json(
-      {
-        error: error instanceof Error ? error.message : "Internal Server Error",
-      },
-      { status: 500 }
-    );
-  }
-}

app/api/auth/[...nextauth]/route.ts

@@ -1,6 +0,0 @@
-import NextAuth from "next-auth";
-import { authOptions } from "@/lib/auth";
-
-const handler = NextAuth(authOptions);
-
-export { handler as GET, handler as POST };

app/api/auth/route.ts

@@ -0,0 +1,86 @@
+import { NextRequest, NextResponse } from "next/server";
+
+export async function POST(req: NextRequest) {
+  const body = await req.json();
+  const { code } = body;
+
+  if (!code) {
+    return NextResponse.json(
+      { error: "Code is required" },
+      {
+        status: 400,
+        headers: {
+          "Content-Type": "application/json",
+        },
+      }
+    );
+  }
+
+  const Authorization = `Basic ${Buffer.from(
+    `${process.env.OAUTH_CLIENT_ID}:${process.env.OAUTH_CLIENT_SECRET}`
+  ).toString("base64")}`;
+
+  const host =
+    req.headers.get("host") ?? req.headers.get("origin") ?? "localhost:3000";
+
+  const url = host.includes("/spaces/enzostvs")
+    ? "enzostvs-deepsite.hf.space"
+    : host;
+  const redirect_uri =
+    `${host.includes("localhost") ? "http://" : "https://"}` +
+    url +
+    "/auth/callback";
+  const request_auth = await fetch("https://huggingface.co/oauth/token", {
+    method: "POST",
+    headers: {
+      "Content-Type": "application/x-www-form-urlencoded",
+      Authorization,
+    },
+    body: new URLSearchParams({
+      grant_type: "authorization_code",
+      code,
+      redirect_uri,
+    }),
+  });
+
+  const response = await request_auth.json();
+  if (!response.access_token) {
+    return NextResponse.json(
+      { error: "Failed to retrieve access token" },
+      {
+        status: 400,
+        headers: {
+          "Content-Type": "application/json",
+        },
+      }
+    );
+  }
+
+  const userResponse = await fetch("https://huggingface.co/api/whoami-v2", {
+    headers: {
+      Authorization: `Bearer ${response.access_token}`,
+    },
+  });
+
+  if (!userResponse.ok) {
+    return NextResponse.json(
+      { user: null, errCode: userResponse.status },
+      { status: userResponse.status }
+    );
+  }
+  const user = await userResponse.json();
+
+  return NextResponse.json(
+    {
+      access_token: response.access_token,
+      expires_in: response.expires_in,
+      user,
+    },
+    {
+      status: 200,
+      headers: {
+        "Content-Type": "application/json",
+      },
+    }
+  );
+}

app/api/healthcheck/route.ts

@@ -1,5 +0,0 @@
-import { NextResponse } from "next/server";
-
-export async function GET() {
-  return NextResponse.json({ status: "ok" }, { status: 200 });
-}

app/api/me/projects/[namespace]/[repoId]/images/route.ts

@@ -0,0 +1,111 @@
+import { NextRequest, NextResponse } from "next/server";
+import { RepoDesignation, uploadFiles } from "@huggingface/hub";
+
+import { isAuthenticated } from "@/lib/auth";
+import Project from "@/models/Project";
+import dbConnect from "@/lib/mongodb";
+
+// No longer need the ImageUpload interface since we're handling FormData with File objects
+
+export async function POST(
+  req: NextRequest,
+  { params }: { params: Promise<{ namespace: string; repoId: string }> }
+) {
+  try {
+    const user = await isAuthenticated();
+
+    if (user instanceof NextResponse || !user) {
+      return NextResponse.json({ message: "Unauthorized" }, { status: 401 });
+    }
+
+    await dbConnect();
+    const param = await params;
+    const { namespace, repoId } = param;
+
+    const project = await Project.findOne({
+      user_id: user.id,
+      space_id: `${namespace}/${repoId}`,
+    }).lean();
+    
+    if (!project) {
+      return NextResponse.json(
+        {
+          ok: false,
+          error: "Project not found",
+        },
+        { status: 404 }
+      );
+    }
+
+    // Parse the FormData to get the images
+    const formData = await req.formData();
+    const imageFiles = formData.getAll("images") as File[];
+
+    if (!imageFiles || imageFiles.length === 0) {
+      return NextResponse.json(
+        {
+          ok: false,
+          error: "At least one image file is required under the 'images' key",
+        },
+        { status: 400 }
+      );
+    }
+
+    const files: File[] = [];
+    for (const file of imageFiles) {
+      if (!(file instanceof File)) {
+        return NextResponse.json(
+          {
+            ok: false,
+            error: "Invalid file format - all items under 'images' key must be files",
+          },
+          { status: 400 }
+        );
+      }
+
+      if (!file.type.startsWith('image/')) {
+        return NextResponse.json(
+          {
+            ok: false,
+            error: `File ${file.name} is not an image`,
+          },
+          { status: 400 }
+        );
+      }
+
+      // Create File object with images/ folder prefix
+      const fileName = `images/${file.name}`;
+      const processedFile = new File([file], fileName, { type: file.type });
+      files.push(processedFile);
+    }
+
+    // Upload files to HuggingFace space
+    const repo: RepoDesignation = {
+      type: "space",
+      name: `${namespace}/${repoId}`,
+    };
+
+    await uploadFiles({
+      repo,
+      files,
+      accessToken: user.token as string,
+      commitTitle: `Upload ${files.length} image(s)`,
+    });
+
+    return NextResponse.json({ 
+      ok: true, 
+      message: `Successfully uploaded ${files.length} image(s) to ${namespace}/${repoId}/images/`,
+      uploadedFiles: files.map((file) => `https://huggingface.co/spaces/${namespace}/${repoId}/resolve/main/${file.name}`),
+    }, { status: 200 });
+
+  } catch (error) {
+    console.error('Error uploading images:', error);
+    return NextResponse.json(
+      {
+        ok: false,
+        error: "Failed to upload images",
+      },
+      { status: 500 }
+    );
+  }
+}

app/api/me/projects/[namespace]/[repoId]/route.ts

@@ -0,0 +1,276 @@
+import { NextRequest, NextResponse } from "next/server";
+import { RepoDesignation, spaceInfo, uploadFiles, listFiles } from "@huggingface/hub";
+
+import { isAuthenticated } from "@/lib/auth";
+import Project from "@/models/Project";
+import dbConnect from "@/lib/mongodb";
+import { Page } from "@/types";
+
+export async function GET(
+  req: NextRequest,
+  { params }: { params: Promise<{ namespace: string; repoId: string }> }
+) {
+  const user = await isAuthenticated();
+
+  if (user instanceof NextResponse || !user) {
+    return NextResponse.json({ message: "Unauthorized" }, { status: 401 });
+  }
+
+  await dbConnect();
+  const param = await params;
+  const { namespace, repoId } = param;
+
+  const project = await Project.findOne({
+    user_id: user.id,
+    space_id: `${namespace}/${repoId}`,
+  }).lean();
+  if (!project) {
+    return NextResponse.json(
+      {
+        ok: false,
+        error: "Project not found",
+      },
+      { status: 404 }
+    );
+  }
+  try {
+    const space = await spaceInfo({
+      name: namespace + "/" + repoId,
+      accessToken: user.token as string,
+      additionalFields: ["author"],
+    });
+
+    if (!space || space.sdk !== "static") {
+      return NextResponse.json(
+        {
+          ok: false,
+          error: "Space is not a static space",
+        },
+        { status: 404 }
+      );
+    }
+    if (space.author !== user.name) {
+      return NextResponse.json(
+        {
+          ok: false,
+          error: "Space does not belong to the authenticated user",
+        },
+        { status: 403 }
+      );
+    }
+
+    const repo: RepoDesignation = {
+      type: "space",
+      name: `${namespace}/${repoId}`,
+    };
+
+    const htmlFiles: Page[] = [];
+    const images: string[] = [];
+
+    const allowedImagesExtensions = ["jpg", "jpeg", "png", "gif", "svg", "webp", "avif", "heic", "heif", "ico", "bmp", "tiff", "tif"];
+    
+    for await (const fileInfo of listFiles({repo, accessToken: user.token as string})) {
+      if (fileInfo.path.endsWith(".html")) {
+        const res = await fetch(`https://huggingface.co/spaces/${namespace}/${repoId}/raw/main/${fileInfo.path}`);
+        if (res.ok) {
+          const html = await res.text();
+          if (fileInfo.path === "index.html") {
+            htmlFiles.unshift({
+              path: fileInfo.path,
+              html,
+            });
+          } else {
+          htmlFiles.push({
+            path: fileInfo.path,
+              html,
+            });
+          }
+        }
+      }
+      if (fileInfo.type === "directory" && fileInfo.path === "images") {
+        for await (const imageInfo of listFiles({repo, accessToken: user.token as string, path: fileInfo.path})) {
+          if (allowedImagesExtensions.includes(imageInfo.path.split(".").pop() || "")) {
+            images.push(`https://huggingface.co/spaces/${namespace}/${repoId}/resolve/main/${imageInfo.path}`);
+          }
+        }
+      }
+    }
+
+    if (htmlFiles.length === 0) {
+      return NextResponse.json(
+        {
+          ok: false,
+          error: "No HTML files found",
+        },
+        { status: 404 }
+      );
+    }
+
+    return NextResponse.json(
+      {
+        project: {
+          ...project,
+          pages: htmlFiles,
+          images,
+        },
+        ok: true,
+      },
+      { status: 200 }
+    );
+
+    // eslint-disable-next-line @typescript-eslint/no-explicit-any
+  } catch (error: any) {
+    if (error.statusCode === 404) {
+      await Project.deleteOne({
+        user_id: user.id,
+        space_id: `${namespace}/${repoId}`,
+      });
+      return NextResponse.json(
+        { error: "Space not found", ok: false },
+        { status: 404 }
+      );
+    }
+    return NextResponse.json(
+      { error: error.message, ok: false },
+      { status: 500 }
+    );
+  }
+}
+
+export async function PUT(
+  req: NextRequest,
+  { params }: { params: Promise<{ namespace: string; repoId: string }> }
+) {
+  const user = await isAuthenticated();
+
+  if (user instanceof NextResponse || !user) {
+    return NextResponse.json({ message: "Unauthorized" }, { status: 401 });
+  }
+
+  await dbConnect();
+  const param = await params;
+  const { namespace, repoId } = param;
+  const { pages, prompts } = await req.json();
+
+  const project = await Project.findOne({
+    user_id: user.id,
+    space_id: `${namespace}/${repoId}`,
+  }).lean();
+  if (!project) {
+    return NextResponse.json(
+      {
+        ok: false,
+        error: "Project not found",
+      },
+      { status: 404 }
+    );
+  }
+
+  const repo: RepoDesignation = {
+    type: "space",
+    name: `${namespace}/${repoId}`,
+  };
+
+  const files: File[] = [];
+  const promptsFile = new File([prompts.join("\n")], "prompts.txt", {
+    type: "text/plain",
+  });
+  files.push(promptsFile);
+  pages.forEach((page: Page) => {
+    const file = new File([page.html], page.path, { type: "text/html" });
+    files.push(file);
+  });
+  await uploadFiles({
+    repo,
+    files,
+    accessToken: user.token as string,
+    commitTitle: `${prompts[prompts.length - 1]} - Follow Up Deployment`,
+  });
+
+  await Project.updateOne(
+    { user_id: user.id, space_id: `${namespace}/${repoId}` },
+    {
+      $set: {
+        prompts: [
+          ...prompts,
+        ],
+      },
+    }
+  );
+  return NextResponse.json({ ok: true }, { status: 200 });
+}
+
+export async function POST(
+  req: NextRequest,
+  { params }: { params: Promise<{ namespace: string; repoId: string }> }
+) {
+  const user = await isAuthenticated();
+
+  if (user instanceof NextResponse || !user) {
+    return NextResponse.json({ message: "Unauthorized" }, { status: 401 });
+  }
+
+  await dbConnect();
+  const param = await params;
+  const { namespace, repoId } = param;
+
+  const space = await spaceInfo({
+    name: namespace + "/" + repoId,
+    accessToken: user.token as string,
+    additionalFields: ["author"],
+  });
+
+  if (!space || space.sdk !== "static") {
+    return NextResponse.json(
+      {
+        ok: false,
+        error: "Space is not a static space",
+      },
+      { status: 404 }
+    );
+  }
+  if (space.author !== user.name) {
+    return NextResponse.json(
+      {
+        ok: false,
+        error: "Space does not belong to the authenticated user",
+      },
+      { status: 403 }
+    );
+  }
+
+  const project = await Project.findOne({
+    user_id: user.id,
+    space_id: `${namespace}/${repoId}`,
+  }).lean();
+  if (project) {
+    // redirect to the project page if it already exists
+    return NextResponse.json(
+      {
+        ok: false,
+        error: "Project already exists",
+        redirect: `/projects/${namespace}/${repoId}`,
+      },
+      { status: 400 }
+    );
+  }
+
+  const newProject = new Project({
+    user_id: user.id,
+    space_id: `${namespace}/${repoId}`,
+    prompts: [],
+  });
+
+  await newProject.save();
+  return NextResponse.json(
+    {
+      ok: true,
+      project: {
+        id: newProject._id,
+        space_id: newProject.space_id,
+        prompts: newProject.prompts,
+      },
+    },
+    { status: 201 }
+  );
+}

app/api/me/projects/route.ts

@@ -0,0 +1,127 @@
+import { NextRequest, NextResponse } from "next/server";
+import { createRepo, RepoDesignation, uploadFiles } from "@huggingface/hub";
+
+import { isAuthenticated } from "@/lib/auth";
+import Project from "@/models/Project";
+import dbConnect from "@/lib/mongodb";
+import { COLORS } from "@/lib/utils";
+import { Page } from "@/types";
+
+export async function GET() {
+  const user = await isAuthenticated();
+
+  if (user instanceof NextResponse || !user) {
+    return NextResponse.json({ message: "Unauthorized" }, { status: 401 });
+  }
+
+  await dbConnect();
+
+  const projects = await Project.find({
+    user_id: user?.id,
+  })
+    .sort({ _createdAt: -1 })
+    .limit(100)
+    .lean();
+  if (!projects) {
+    return NextResponse.json(
+      {
+        ok: false,
+        projects: [],
+      },
+      { status: 404 }
+    );
+  }
+  return NextResponse.json(
+    {
+      ok: true,
+      projects,
+    },
+    { status: 200 }
+  );
+}
+
+export async function POST(request: NextRequest) {
+  const user = await isAuthenticated();
+
+  if (user instanceof NextResponse || !user) {
+    return NextResponse.json({ message: "Unauthorized" }, { status: 401 });
+  }
+
+  const { title, pages, prompts } = await request.json();
+
+  if (!title || !pages || pages.length === 0) {
+    return NextResponse.json(
+      { message: "Title and HTML content are required.", ok: false },
+      { status: 400 }
+    );
+  }
+
+  await dbConnect();
+
+  try {
+    let readme = "";
+
+    const newTitle = title
+      .toLowerCase()
+      .replace(/[^a-z0-9]+/g, "-")
+      .split("-")
+      .filter(Boolean)
+      .join("-")
+      .slice(0, 96);
+
+    const repo: RepoDesignation = {
+      type: "space",
+      name: `${user.name}/${newTitle}`,
+    };
+
+    const { repoUrl } = await createRepo({
+      repo,
+      accessToken: user.token as string,
+    });
+    const colorFrom = COLORS[Math.floor(Math.random() * COLORS.length)];
+    const colorTo = COLORS[Math.floor(Math.random() * COLORS.length)];
+    readme = `---
+title: ${newTitle}
+emoji: 🐳
+colorFrom: ${colorFrom}
+colorTo: ${colorTo}
+sdk: static
+pinned: false
+tags:
+  - deepsite
+---
+
+Check out the configuration reference at https://huggingface.co/docs/hub/spaces-config-reference`;
+
+    const readmeFile = new File([readme], "README.md", {
+      type: "text/markdown",
+    });
+    const promptsFile = new File([prompts.join("\n")], "prompts.txt", {
+      type: "text/plain",
+    });
+    const files = [readmeFile, promptsFile];
+    pages.forEach((page: Page) => {
+      const file = new File([page.html], page.path, { type: "text/html" });
+      files.push(file);
+    });
+    await uploadFiles({
+      repo,
+      files,
+      accessToken: user.token as string,
+      commitTitle: `${prompts[prompts.length - 1]} - Initial Deployment`,
+    });
+    const path = repoUrl.split("/").slice(-2).join("/");
+    const project = await Project.create({
+      user_id: user.id,
+      space_id: path,
+      prompts,
+    });
+    return NextResponse.json({ project, path, ok: true }, { status: 201 });
+    // eslint-disable-next-line @typescript-eslint/no-explicit-any
+  } catch (err: any) {
+    return NextResponse.json(
+      { error: err.message, ok: false },
+      { status: 500 }
+    );
+  }
+}

app/api/me/route.ts

@@ -0,0 +1,25 @@
+import { headers } from "next/headers";
+import { NextResponse } from "next/server";
+
+export async function GET() {
+  const authHeaders = await headers();
+  const token = authHeaders.get("Authorization");
+  if (!token) {
+    return NextResponse.json({ user: null, errCode: 401 }, { status: 401 });
+  }
+
+  const userResponse = await fetch("https://huggingface.co/api/whoami-v2", {
+    headers: {
+      Authorization: `${token}`,
+    },
+  });
+
+  if (!userResponse.ok) {
+    return NextResponse.json(
+      { user: null, errCode: userResponse.status },
+      { status: userResponse.status }
+    );
+  }
+  const user = await userResponse.json();
+  return NextResponse.json({ user, errCode: null }, { status: 200 });
+}

app/api/projects/[repoId]/[commitId]/route.ts

@@ -1,49 +0,0 @@
-import { auth } from "@/lib/auth";
-import { createBranch, RepoDesignation } from "@huggingface/hub";
-import { format } from "date-fns";
-import { NextResponse } from "next/server";
-
-export async function POST(
-  request: Request,
-  { params }: { params: Promise<{ repoId: string; commitId: string }> }
-) {
-  const { repoId, commitId }: { repoId: string; commitId: string } =
-    await params;
-  const session = await auth();
-  if (!session) {
-    return NextResponse.json({ error: "Unauthorized" }, { status: 401 });
-  }
-  const token = session.accessToken;
-
-  const repo: RepoDesignation = {
-    type: "space",
-    name: session.user?.username + "/" + repoId,
-  };
-
-  const commitTitle = `🔖 ${format(new Date(), "dd/MM")} - ${format(
-    new Date(),
-    "HH:mm"
-  )} - Set commit ${commitId} as default.`;
-
-  await fetch(
-    `https://huggingface.co/api/spaces/${session.user?.username}/${repoId}/branch/main`,
-    {
-      method: "POST",
-      headers: {
-        Authorization: `Bearer ${token}`,
-        "Content-Type": "application/json",
-      },
-      body: JSON.stringify({
-        startingPoint: commitId,
-        overwrite: true,
-      }),
-    }
-  ).catch((error) => {
-    return NextResponse.json(
-      { error: error ?? "Failed to create branch" },
-      { status: 500 }
-    );
-  });
-
-  return NextResponse.json({ success: true }, { status: 200 });
-}

app/api/projects/[repoId]/download/route.ts

@@ -1,76 +0,0 @@
-import { auth } from "@/lib/auth";
-import { downloadFile, listFiles, RepoDesignation } from "@huggingface/hub";
-import { NextResponse } from "next/server";
-import JSZip from "jszip";
-
-export async function GET(
-  request: Request,
-  { params }: { params: Promise<{ repoId: string }> }
-) {
-  const { repoId }: { repoId: string } = await params;
-  const session = await auth();
-  if (!session) {
-    return NextResponse.json({ error: "Unauthorized" }, { status: 401 });
-  }
-  const token = session.accessToken;
-  const repo: RepoDesignation = {
-    type: "space",
-    name: session.user?.username + "/" + repoId,
-  };
-
-  try {
-    const zip = new JSZip();
-    for await (const fileInfo of listFiles({ 
-      repo, 
-      accessToken: token as string, 
-      recursive: true,
-    })) {
-      if (fileInfo.type === "directory" || fileInfo.path.startsWith(".")) {
-        continue;
-      }
-
-      try {
-        const blob = await downloadFile({ 
-          repo, 
-          accessToken: token as string, 
-          path: fileInfo.path, 
-          raw: true 
-        }).catch((error) => {
-          return null;
-        });
-        if (!blob) {
-          continue;
-        }
-
-        if (blob) {
-          const arrayBuffer = await blob.arrayBuffer();
-          zip.file(fileInfo.path, arrayBuffer);
-        }
-      } catch (error) {
-        console.error(`Error downloading file ${fileInfo.path}:`, error);
-      }
-    }
-
-    const zipBlob = await zip.generateAsync({ 
-      type: "blob",
-      compression: "DEFLATE",
-      compressionOptions: {
-        level: 6
-      }
-    });
-
-    const projectName = `${session.user?.username}-${repoId}`.replace(/[^a-zA-Z0-9-_]/g, '_');
-    const filename = `${projectName}.zip`;
-
-    return new NextResponse(zipBlob, {
-      headers: {
-        "Content-Type": "application/zip",
-        "Content-Disposition": `attachment; filename="${filename}"`,
-        "Content-Length": zipBlob.size.toString(),
-      },
-    });
-  } catch (error) {
-    console.error("Error downloading project:", error);
-    return NextResponse.json({ error: "Failed to download project" }, { status: 500 });
-  }
-}

app/api/projects/[repoId]/medias/route.ts

@@ -1,87 +0,0 @@
-import { auth } from "@/lib/auth";
-import { RepoDesignation, uploadFiles } from "@huggingface/hub";
-import { NextResponse } from "next/server";
-
-export async function POST(
-  request: Request,
-  { params }: { params: Promise<{ repoId: string }> }
-) {
-  const { repoId }: { repoId: string } = await params;
-  const session = await auth();
-  if (!session) {
-    return NextResponse.json({ error: "Unauthorized" }, { status: 401 });
-  }
-  const token = session.accessToken;
-
-  const repo: RepoDesignation = {
-    type: "space",
-    name: session.user?.username + "/" + repoId,
-  };
-
-  const formData = await request.formData();
-  const newMedias = formData.getAll("images") as File[];
-
-  const filesToUpload: File[] = [];
-
-  if (!newMedias || newMedias.length === 0) {
-    return NextResponse.json(
-      {
-        ok: false,
-        error: "At least one media file is required under the 'images' key",
-      },
-      { status: 400 }
-    );
-  }
-
-  try {
-    for (const media of newMedias) {
-      const isImage = media.type.startsWith("image/");
-      const isVideo = media.type.startsWith("video/");
-      const isAudio = media.type.startsWith("audio/");
-
-      const folderPath = isImage
-        ? "images/"
-        : isVideo
-        ? "videos/"
-        : isAudio
-        ? "audios/"
-        : null;
-
-      if (!folderPath) {
-        return NextResponse.json(
-          { ok: false, error: "Unsupported media type: " + media.type },
-          { status: 400 }
-        );
-      }
-
-      const mediaName = `${folderPath}${media.name}`;
-      const processedFile = new File([media], mediaName, { type: media.type });
-      filesToUpload.push(processedFile);
-    }
-
-    await uploadFiles({
-      repo,
-      files: filesToUpload,
-      accessToken: token,
-      commitTitle: `📁 Upload media files through DeepSite`,
-    });
-
-    return NextResponse.json(
-      {
-        success: true,
-        medias: filesToUpload.map(
-          (file) =>
-            `https://huggingface.co/spaces/${session.user?.username}/${repoId}/resolve/main/${file.name}`
-        ),
-      },
-      { status: 200 }
-    );
-  } catch (error) {
-    return NextResponse.json(
-      { ok: false, error: error ?? "Failed to upload media files" },
-      { status: 500 }
-    );
-  }
-
-  return NextResponse.json({ success: true }, { status: 200 });
-}

app/api/projects/[repoId]/rename/route.ts

@@ -1,92 +0,0 @@
-import { auth } from "@/lib/auth";
-import { downloadFile, RepoDesignation, uploadFile } from "@huggingface/hub";
-import { format } from "date-fns";
-import { NextResponse } from "next/server";
-
-export async function PUT(
-  request: Request,
-  { params }: { params: Promise<{ repoId: string }> }
-) {
-  const { repoId }: { repoId: string } = await params;
-  const session = await auth();
-  if (!session) {
-    return NextResponse.json({ error: "Unauthorized" }, { status: 401 });
-  }
-  const token = session.accessToken;
-
-  const body = await request.json();
-  const { newTitle } = body;
-
-  if (!newTitle) {
-    return NextResponse.json(
-      { error: "newTitle is required" },
-      { status: 400 }
-    );
-  }
-
-  const repo: RepoDesignation = {
-    type: "space",
-    name: session.user?.username + "/" + repoId,
-  };
-
-  const blob = await downloadFile({
-    repo,
-    accessToken: token,
-    path: "README.md",
-    raw: true,
-  }).catch((_) => {
-    return null;
-  });
-
-  if (!blob) {
-    return NextResponse.json(
-      { error: "Could not fetch README.md" },
-      { status: 500 }
-    );
-  }
-
-  const readmeFile = await blob?.text();
-  if (!readmeFile) {
-    return NextResponse.json(
-      { error: "Could not read README.md content" },
-      { status: 500 }
-    );
-  }
-
-  // Escape YAML values to prevent injection attacks
-  const escapeYamlValue = (value: string): string => {
-    if (/[:|>]|^[-*#]|^\s|['"]/.test(value) || value.includes("\n")) {
-      return `"${value.replace(/"/g, '\\"')}"`;
-    }
-    return value;
-  };
-
-  // Escape commit message to prevent injection
-  const escapeCommitMessage = (message: string): string => {
-    return message.replace(/[\r\n]/g, " ").slice(0, 200);
-  };
-
-  const updatedReadmeFile = readmeFile.replace(
-    /^title:\s*(.*)$/m,
-    `title: ${escapeYamlValue(newTitle)}`
-  );
-
-  await uploadFile({
-    repo,
-    accessToken: token,
-    file: new File([updatedReadmeFile], "README.md", { type: "text/markdown" }),
-    commitTitle: escapeCommitMessage(
-      `🐳 ${format(new Date(), "dd/MM")} - ${format(
-        new Date(),
-        "HH:mm"
-      )} - Rename project to "${newTitle}"`
-    ),
-  });
-
-  return NextResponse.json(
-    {
-      success: true,
-    },
-    { status: 200 }
-  );
-}

app/api/projects/[repoId]/route.ts

@@ -1,104 +0,0 @@
-import { auth } from "@/lib/auth";
-import { RepoDesignation, deleteRepo, uploadFiles } from "@huggingface/hub";
-import { format } from "date-fns";
-import { NextResponse } from "next/server";
-
-export async function PUT(
-  request: Request,
-  { params }: { params: Promise<{ repoId: string }> }
-) {
-  const { repoId }: { repoId: string } = await params;
-  const session = await auth();
-  if (!session) {
-    return NextResponse.json({ error: "Unauthorized" }, { status: 401 });
-  }
-  const token = session.accessToken;
-
-  const body = await request.json();
-  const { files, prompt, isManualChanges } = body;
-
-  if (!files) {
-    return NextResponse.json({ error: "Files are required" }, { status: 400 });
-  }
-
-  if (!prompt) {
-    return NextResponse.json({ error: "Prompt is required" }, { status: 400 });
-  }
-
-  const repo: RepoDesignation = {
-    type: "space",
-    name: session.user?.username + "/" + repoId,
-  };
-
-  const filesToUpload: File[] = [];
-  for (const file of files) {
-    let mimeType = "text/x-python";
-    if (file.path.endsWith(".txt")) {
-      mimeType = "text/plain";
-    } else if (file.path.endsWith(".md")) {
-      mimeType = "text/markdown";
-    } else if (file.path.endsWith(".json")) {
-      mimeType = "application/json";
-    }
-    filesToUpload.push(new File([file.content], file.path, { type: mimeType }));
-  }
-  // Escape commit title to prevent injection
-  const escapeCommitTitle = (title: string): string => {
-    return title.replace(/[\r\n]/g, " ").slice(0, 200);
-  };
-
-  const baseTitle = isManualChanges
-    ? ""
-    : `🐳 ${format(new Date(), "dd/MM")} - ${format(new Date(), "HH:mm")} - `;
-  const commitTitle = escapeCommitTitle(
-    baseTitle + (prompt ?? "Follow-up DeepSite commit")
-  );
-  const response = await uploadFiles({
-    repo,
-    files: filesToUpload,
-    accessToken: token,
-    commitTitle,
-  });
-
-  return NextResponse.json(
-    {
-      success: true,
-      commit: {
-        oid: response.commit,
-        title: commitTitle,
-        date: new Date(),
-      },
-    },
-    { status: 200 }
-  );
-}
-
-export async function DELETE(
-  request: Request,
-  { params }: { params: Promise<{ repoId: string }> }
-) {
-  const { repoId }: { repoId: string } = await params;
-  const session = await auth();
-  if (!session) {
-    return NextResponse.json({ error: "Unauthorized" }, { status: 401 });
-  }
-  const token = session.accessToken;
-
-  const repo: RepoDesignation = {
-    type: "space",
-    name: session.user?.username + "/" + repoId,
-  };
-
-  try {
-    await deleteRepo({
-      repo,
-      accessToken: token as string,
-    });
-
-    return NextResponse.json({ success: true }, { status: 200 });
-  } catch (error) {
-    const errMsg =
-      error instanceof Error ? error.message : "Failed to delete project";
-    return NextResponse.json({ error: errMsg }, { status: 500 });
-  }
-}

app/api/projects/route.ts

@@ -1,145 +0,0 @@
-import { NextResponse } from "next/server";
-import { RepoDesignation, createRepo, uploadFiles } from "@huggingface/hub";
-
-import { auth } from "@/lib/auth";
-import {
-  COLORS,
-  EMOJIS_FOR_SPACE,
-  injectDeepSiteBadge,
-  isIndexPage,
-} from "@/lib/utils";
-
-// todo: catch error while publishing project, and return the error to the user
-// if space has been created, but can't push, try again or catch well the error and return the error to the user
-
-export async function POST(request: Request) {
-  const session = await auth();
-  if (!session) {
-    return NextResponse.json({ error: "Unauthorized" }, { status: 401 });
-  }
-  const token = session.accessToken;
-
-  const body = await request.json();
-  const { projectTitle, files, prompt } = body;
-
-  if (!files) {
-    return NextResponse.json(
-      { error: "Project title and files are required" },
-      { status: 400 }
-    );
-  }
-
-  const title =
-    projectTitle || projectTitle !== "" ? projectTitle : "DeepSite Project";
-
-  let formattedTitle = title
-    .toLowerCase()
-    .replace(/[^a-z0-9]+/g, "-")
-    .split("-")
-    .filter(Boolean)
-    .join("-")
-    .slice(0, 75);
-
-  formattedTitle =
-    formattedTitle + "-" + Math.random().toString(36).substring(2, 7);
-
-  const repo: RepoDesignation = {
-    type: "space",
-    name: session.user?.username + "/" + formattedTitle,
-  };
-
-  // Escape YAML values to prevent injection attacks
-  const escapeYamlValue = (value: string): string => {
-    if (/[:|>]|^[-*#]|^\s|['"]/.test(value) || value.includes("\n")) {
-      return `"${value.replace(/"/g, '\\"')}"`;
-    }
-    return value;
-  };
-
-  // Escape markdown headers to prevent injection
-  const escapeMarkdownHeader = (value: string): string => {
-    return value.replace(/^#+\s*/g, "").replace(/\n/g, " ");
-  };
-
-  const colorFrom = COLORS[Math.floor(Math.random() * COLORS.length)];
-  const colorTo = COLORS[Math.floor(Math.random() * COLORS.length)];
-  const emoji =
-    EMOJIS_FOR_SPACE[Math.floor(Math.random() * EMOJIS_FOR_SPACE.length)];
-  const README = `---
-title: ${escapeYamlValue(projectTitle)}
-colorFrom: ${colorFrom}
-colorTo: ${colorTo}
-sdk: static
-emoji: ${emoji}
-tags:
-  - deepsite-v4
----
-
-# ${escapeMarkdownHeader(title)}
-
-This project has been created with [DeepSite](https://deepsite.hf.co) AI Vibe Coding.
-`;
-
-  const filesToUpload: File[] = [
-    new File([README], "README.md", { type: "text/markdown" }),
-  ];
-  for (const file of files) {
-    let mimeType = "text/html";
-    if (file.path.endsWith(".css")) {
-      mimeType = "text/css";
-    } else if (file.path.endsWith(".js")) {
-      mimeType = "text/javascript";
-    }
-    const content =
-      mimeType === "text/html" && isIndexPage(file.path)
-        ? injectDeepSiteBadge(file.content)
-        : file.content;
-
-    filesToUpload.push(new File([content], file.path, { type: mimeType }));
-  }
-
-  let repoUrl: string | undefined;
-  
-  try {
-    // Create the space first
-    const createResult = await createRepo({
-      accessToken: token as string,
-      repo: repo,
-      sdk: "static",
-    });
-    repoUrl = createResult.repoUrl;
-
-    // Escape commit message to prevent injection
-    const escapeCommitMessage = (message: string): string => {
-      return message.replace(/[\r\n]/g, " ").slice(0, 200);
-    };
-    const commitMessage = escapeCommitMessage(prompt ?? "Initial DeepSite commit");
-    
-    // Upload files to the created space
-    await uploadFiles({
-      repo,
-      files: filesToUpload,
-      accessToken: token as string,
-      commitTitle: commitMessage,
-    });
-
-    const path = repoUrl.split("/").slice(-2).join("/");
-
-    return NextResponse.json({ repoUrl: path }, { status: 200 });
-  } catch (error) {
-    const errMsg =
-      error instanceof Error ? error.message : "Failed to create or upload to space";
-    
-    // If space was created but upload failed, include the repo URL in the error
-    if (repoUrl) {
-      const path = repoUrl.split("/").slice(-2).join("/");
-      return NextResponse.json({ 
-        error: `${errMsg}. Space was created at ${path} but files could not be uploaded.`,
-        repoUrl: path,
-        partialSuccess: true
-      }, { status: 500 });
-    }
-    
-    return NextResponse.json({ error: errMsg }, { status: 500 });
-  }
-}

app/api/re-design/route.ts

@@ -0,0 +1,39 @@
+import { NextRequest, NextResponse } from "next/server";
+
+export async function PUT(request: NextRequest) {
+  const body = await request.json();
+  const { url } = body;
+
+  if (!url) {
+    return NextResponse.json({ error: "URL is required" }, { status: 400 });
+  }
+
+  try {
+    const response = await fetch(
+      `https://r.jina.ai/${encodeURIComponent(url)}`,
+      {
+        method: "POST",
+      }
+    );
+    if (!response.ok) {
+      return NextResponse.json(
+        { error: "Failed to fetch redesign" },
+        { status: 500 }
+      );
+    }
+    const markdown = await response.text();
+    return NextResponse.json(
+      {
+        ok: true,
+        markdown,
+      },
+      { status: 200 }
+    );
+    // eslint-disable-next-line @typescript-eslint/no-explicit-any
+  } catch (error: any) {
+    return NextResponse.json(
+      { error: error.message || "An error occurred" },
+      { status: 500 }
+    );
+  }
+}

app/api/redesign/route.ts

@@ -1,73 +0,0 @@
-/* eslint-disable @typescript-eslint/no-explicit-any */
-import { NextRequest, NextResponse } from "next/server";
-
-const FETCH_TIMEOUT = 30_000;
-export const maxDuration = 60;
-
-export async function PUT(request: NextRequest) {
-  const body = await request.json();
-  const { url } = body;
-
-  if (!url) {
-    return NextResponse.json({ error: "URL is required" }, { status: 400 });
-  }
-
-  try {
-    const controller = new AbortController();
-    const timeoutId = setTimeout(() => controller.abort(), FETCH_TIMEOUT);
-
-    try {
-      const response = await fetch(
-        `https://r.jina.ai/${encodeURIComponent(url)}`,
-        {
-          method: "POST",
-          signal: controller.signal,
-        }
-      );
-
-      clearTimeout(timeoutId);
-
-      if (!response.ok) {
-        return NextResponse.json(
-          { error: "Failed to fetch redesign" },
-          { status: 500 }
-        );
-      }
-      const markdown = await response.text();
-      return NextResponse.json(
-        {
-          ok: true,
-          markdown,
-        },
-        { status: 200 }
-      );
-    } catch (fetchError: any) {
-      clearTimeout(timeoutId);
-
-      if (fetchError.name === "AbortError") {
-        return NextResponse.json(
-          {
-            error:
-              "Request timeout: The external service took too long to respond. Please try again.",
-          },
-          { status: 504 }
-        );
-      }
-      throw fetchError;
-    }
-  } catch (error: any) {
-    if (error.name === "AbortError" || error.message?.includes("timeout")) {
-      return NextResponse.json(
-        {
-          error:
-            "Request timeout: The external service took too long to respond. Please try again.",
-        },
-        { status: 504 }
-      );
-    }
-    return NextResponse.json(
-      { error: error.message || "An error occurred" },
-      { status: 500 }
-    );
-  }
-}

app/auth/callback/page.tsx

@@ -0,0 +1,72 @@
+"use client";
+import Link from "next/link";
+import { useUser } from "@/hooks/useUser";
+import { use, useState } from "react";
+import { useMount, useTimeoutFn } from "react-use";
+
+import { Button } from "@/components/ui/button";
+export default function AuthCallback({
+  searchParams,
+}: {
+  searchParams: Promise<{ code: string }>;
+}) {
+  const [showButton, setShowButton] = useState(false);
+  const { code } = use(searchParams);
+  const { loginFromCode } = useUser();
+
+  useMount(async () => {
+    if (code) {
+      await loginFromCode(code);
+    }
+  });
+
+  useTimeoutFn(
+    () => setShowButton(true),
+    7000 // Show button after 5 seconds
+  );
+
+  return (
+    <div className="h-screen flex flex-col justify-center items-center">
+      <div className="!rounded-2xl !p-0 !bg-white !border-neutral-100 min-w-xs text-center overflow-hidden ring-[8px] ring-white/20">
+        <header className="bg-neutral-50 p-6 border-b border-neutral-200/60">
+          <div className="flex items-center justify-center -space-x-4 mb-3">
+            <div className="size-9 rounded-full bg-pink-200 shadow-2xs flex items-center justify-center text-xl opacity-50">
+              🚀
+            </div>
+            <div className="size-11 rounded-full bg-amber-200 shadow-2xl flex items-center justify-center text-2xl z-2">
+              👋
+            </div>
+            <div className="size-9 rounded-full bg-sky-200 shadow-2xs flex items-center justify-center text-xl opacity-50">
+              🙌
+            </div>
+          </div>
+          <p className="text-xl font-semibold text-neutral-950">
+            Login In Progress...
+          </p>
+          <p className="text-sm text-neutral-500 mt-1.5">
+            Wait a moment while we log you in with your code.
+          </p>
+        </header>
+        <main className="space-y-4 p-6">
+          <div>
+            <p className="text-sm text-neutral-700 mb-4 max-w-xs">
+              If you are not redirected automatically in the next 5 seconds,
+              please click the button below
+            </p>
+            {showButton ? (
+              <Link href="/">
+                <Button variant="black" className="relative">
+                  Go to Home
+                </Button>
+              </Link>
+            ) : (
+              <p className="text-xs text-neutral-500">
+                Please wait, we are logging you in...
+              </p>
+            )}
+          </div>
+        </main>
+      </div>
+    </div>
+  );
+}

app/auth/page.tsx

@@ -0,0 +1,28 @@
+import { redirect } from "next/navigation";
+import { Metadata } from "next";
+
+import { getAuth } from "@/app/actions/auth";
+
+export const revalidate = 1;
+
+export const metadata: Metadata = {
+  robots: "noindex, nofollow",
+};
+
+export default async function Auth() {
+  const loginRedirectUrl = await getAuth();
+  if (loginRedirectUrl) {
+    redirect(loginRedirectUrl);
+  }
+
+  return (
+    <div className="p-4">
+      <div className="border bg-red-500/10 border-red-500/20 text-red-500 px-5 py-3 rounded-lg">
+        <h1 className="text-xl font-bold">Error</h1>
+        <p className="text-sm">
+          An error occurred while trying to log in. Please try again later.
+        </p>
+      </div>
+    </div>
+  );
+}

app/layout.tsx

@@ -1,33 +1,54 @@
+/* eslint-disable @typescript-eslint/no-explicit-any */
 import type { Metadata, Viewport } from "next";
-import { Geist, Geist_Mono } from "next/font/google";
-import { NextStepProvider } from "nextstepjs";
-import Script from "next/script";
+import { Inter, PT_Sans } from "next/font/google";
+import { cookies } from "next/headers";
 
-import "@/app/globals.css";
-import { ThemeProvider } from "@/components/providers/theme";
-import { AuthProvider } from "@/components/providers/session";
+import TanstackProvider from "@/components/providers/tanstack-query-provider";
+import "@/assets/globals.css";
 import { Toaster } from "@/components/ui/sonner";
-import { ReactQueryProvider } from "@/components/providers/react-query";
-import { generateSEO, generateStructuredData } from "@/lib/seo";
-import { NotAuthorizedDomain } from "@/components/not-authorized";
+import MY_TOKEN_KEY from "@/lib/get-cookie-name";
+import { apiServer } from "@/lib/api";
+import AppContext from "@/components/contexts/app-context";
+import Script from "next/script";
+import IframeDetector from "@/components/iframe-detector";
 
-const geistSans = Geist({
-  variable: "--font-geist-sans",
+const inter = Inter({
+  variable: "--font-inter-sans",
   subsets: ["latin"],
 });
 
-const geistMono = Geist_Mono({
-  variable: "--font-geist-mono",
+const ptSans = PT_Sans({
+  variable: "--font-ptSans-mono",
   subsets: ["latin"],
+  weight: ["400", "700"],
 });
 
 export const metadata: Metadata = {
-  ...generateSEO({
+  title: "DeepSite | Build with AI ✨",
+  description:
+    "DeepSite is a web development tool that helps you build websites with AI, no code required. Let's deploy your website with DeepSite and enjoy the magic of AI.",
+  openGraph: {
+    title: "DeepSite | Build with AI ✨",
+    description:
+      "DeepSite is a web development tool that helps you build websites with AI, no code required. Let's deploy your website with DeepSite and enjoy the magic of AI.",
+    url: "https://deepsite.hf.co",
+    siteName: "DeepSite",
+    images: [
+      {
+        url: "https://deepsite.hf.co/banner.png",
+        width: 1200,
+        height: 630,
+        alt: "DeepSite Open Graph Image",
+      },
+    ],
+  },
+  twitter: {
+    card: "summary_large_image",
     title: "DeepSite | Build with AI ✨",
     description:
       "DeepSite is a web development tool that helps you build websites with AI, no code required. Let's deploy your website with DeepSite and enjoy the magic of AI.",
-    path: "/",
-  }),
+    images: ["https://deepsite.hf.co/banner.png"],
+  },
   appleWebApp: {
     capable: true,
     title: "DeepSite",
@@ -38,70 +59,53 @@ export const metadata: Metadata = {
     shortcut: "/logo.svg",
     apple: "/logo.svg",
   },
-  verification: {
-    google: process.env.GOOGLE_SITE_VERIFICATION,
-  },
 };
 
 export const viewport: Viewport = {
   initialScale: 1,
   maximumScale: 1,
-  themeColor: "#4f46e5",
+  themeColor: "#000000",
 };
 
+async function getMe() {
+  const cookieStore = await cookies();
+  const token = cookieStore.get(MY_TOKEN_KEY())?.value;
+  if (!token) return { user: null, errCode: null };
+  try {
+    const res = await apiServer.get("/me", {
+      headers: {
+        Authorization: `Bearer ${token}`,
+      },
+    });
+    return { user: res.data.user, errCode: null };
+  } catch (err: any) {
+    return { user: null, errCode: err.status };
+  }
+}
+
+// if domain isn't deepsite.hf.co or enzostvs-deepsite.hf.space redirect to deepsite.hf.co
+
 export default async function RootLayout({
   children,
 }: Readonly<{
   children: React.ReactNode;
 }>) {
-  const structuredData = generateStructuredData("WebApplication", {
-    name: "DeepSite",
-    description: "Build websites with AI, no code required",
-    url: "https://deepsite.hf.co",
-  });
-  const organizationData = generateStructuredData("Organization", {
-    name: "DeepSite",
-    url: "https://deepsite.hf.co",
-  });
-
+  const data = await getMe();
   return (
-    <html lang="en" suppressHydrationWarning>
+    <html lang="en">
+      <Script
+        defer
+        data-domain="deepsite.hf.co"
+        src="https://plausible.io/js/script.js"
+      ></Script>
       <body
-        className={`${geistSans.variable} ${geistMono.variable} antialiased`}
+        className={`${inter.variable} ${ptSans.variable} antialiased bg-black dark h-[100dvh] overflow-hidden`}
       >
-        <script
-          type="application/ld+json"
-          dangerouslySetInnerHTML={{
-            __html: JSON.stringify(structuredData),
-          }}
-        />
-        <script
-          type="application/ld+json"
-          dangerouslySetInnerHTML={{
-            __html: JSON.stringify(organizationData),
-          }}
-        />
-        <Script
-          defer
-          data-domain="deepsite.hf.co"
-          src="https://plausible.io/js/script.js"
-        />
-        <Toaster richColors />
-        <AuthProvider>
-          <ReactQueryProvider>
-            <ThemeProvider
-              attribute="class"
-              defaultTheme="dark"
-              enableSystem
-              disableTransitionOnChange
-            >
-              <NextStepProvider>
-                {children}
-                <NotAuthorizedDomain />
-              </NextStepProvider>
-            </ThemeProvider>
-          </ReactQueryProvider>
-        </AuthProvider>
+        <IframeDetector />
+        <Toaster richColors position="bottom-center" />
+        <TanstackProvider>
+          <AppContext me={data}>{children}</AppContext>
+        </TanstackProvider>
       </body>
     </html>
   );

app/new/page.tsx

@@ -1,18 +0,0 @@
-import { AppEditor } from "@/components/editor";
-import { auth } from "@/lib/auth";
-import { redirect } from "next/navigation";
-
-export default async function NewProjectPage({
-  searchParams,
-}: {
-  searchParams: Promise<{ prompt: string }>;
-}) {
-  const session = await auth();
-
-  if (!session) {
-    redirect("/api/auth/signin?callbackUrl=/new");
-  }
-
-  const { prompt } = await searchParams;
-  return <AppEditor isNew={true} initialPrompt={prompt} />;
-}

app/not-found.tsx

@@ -1,17 +0,0 @@
-import { NotFoundButtons } from "@/components/not-found/buttons";
-import { Navigation } from "@/components/public/navigation";
-
-export default function NotFound() {
-  return (
-    <div className="min-h-screen font-sans">
-      <Navigation />
-      <div className="px-6 py-16 max-w-5xl mx-auto text-center">
-        <h1 className="text-5xl font-bold mb-5">Oh no! Page not found.</h1>
-        <p className="text-lg text-muted-foreground mb-8">
-          The page you are looking for does not exist.
-        </p>
-        <NotFoundButtons />
-      </div>
-    </div>
-  );
-}

app/projects/[namespace]/[repoId]/page.tsx

@@ -0,0 +1,42 @@
+import { cookies } from "next/headers";
+import { redirect } from "next/navigation";
+
+import { apiServer } from "@/lib/api";
+import MY_TOKEN_KEY from "@/lib/get-cookie-name";
+import { AppEditor } from "@/components/editor";
+
+async function getProject(namespace: string, repoId: string) {
+  // TODO replace with a server action
+  const cookieStore = await cookies();
+  const token = cookieStore.get(MY_TOKEN_KEY())?.value;
+  if (!token) return {};
+  try {
+    const { data } = await apiServer.get(
+      `/me/projects/${namespace}/${repoId}`,
+      {
+        headers: {
+          Authorization: `Bearer ${token}`,
+        },
+      }
+    );
+
+    return data.project;
+  } catch {
+    return {};
+  }
+}
+
+export default async function ProjectNamespacePage({
+  params,
+}: {
+  params: Promise<{ namespace: string; repoId: string }>;
+}) {
+  const { namespace, repoId } = await params;
+  const data = await getProject(namespace, repoId);
+  if (!data?.pages) {
+    redirect("/projects");
+  }
+  return (
+    <AppEditor project={data} pages={data.pages} images={data.images ?? []} />
+  );
+}

app/projects/new/page.tsx

@@ -0,0 +1,5 @@
+import { AppEditor } from "@/components/editor";
+
+export default function ProjectsNewPage() {
+  return <AppEditor isNew />;
+}

{app → assets}/globals.css

@@ -6,8 +6,8 @@
 @theme inline {
   --color-background: var(--background);
   --color-foreground: var(--foreground);
-  --font-sans: var(--font-geist-sans);
-  --font-mono: var(--font-geist-mono);
+  --font-sans: var(--font-inter-sans);
+  --font-mono: var(--font-ptSans-mono);
   --color-sidebar-ring: var(--sidebar-ring);
   --color-sidebar-border: var(--sidebar-border);
   --color-sidebar-accent-foreground: var(--sidebar-accent-foreground);
@@ -44,7 +44,7 @@
 }
 
 :root {
-  --radius: 0.65rem;
+  --radius: 0.625rem;
   --background: oklch(1 0 0);
   --foreground: oklch(0.145 0 0);
   --card: oklch(1 0 0);
@@ -68,7 +68,6 @@
   --chart-3: oklch(0.398 0.07 227.392);
   --chart-4: oklch(0.828 0.189 84.429);
   --chart-5: oklch(0.769 0.188 70.08);
-  --radius: 0.625rem;
   --sidebar: oklch(0.985 0 0);
   --sidebar-foreground: oklch(0.145 0 0);
   --sidebar-primary: oklch(0.205 0 0);
@@ -120,49 +119,28 @@
   body {
     @apply bg-background text-foreground;
   }
+  html {
+    @apply scroll-smooth;
+  }
+}
+
+.background__noisy {
+  @apply bg-blend-normal pointer-events-none opacity-90;
+  background-size: 25ww auto;
+  background-image: url("/background_noisy.webp");
+  @apply fixed w-screen h-screen -z-1 top-0 left-0;
 }
 
 .monaco-editor .margin {
-  @apply bg-background!;
+  @apply !bg-neutral-900;
 }
 .monaco-editor .monaco-editor-background {
-  @apply bg-background!;
-}
-.monaco-editor .decorationsOverviewRuler {
-  @apply opacity-0!;
-}
-.monaco-editor .view-line {
-  /* @apply bg-primary/50!; */
+  @apply !bg-neutral-900;
 }
-.monaco-editor .scroll-decoration {
-  @apply opacity-0!;
-}
-.monaco-editor .cursors-layer .cursor {
-  @apply bg-primary!;
-}
-
-.content-placeholder::before {
-  content: attr(data-placeholder);
-  position: absolute;
-  pointer-events: none;
-  opacity: 0.5;
-  @apply top-5 left-6;
+.monaco-editor .line-numbers {
+  @apply !text-neutral-500;
 }
 
-.sp-layout
-  .sp-file-explorer
-  .sp-file-explorer-list
-  .sp-explorer[data-active="true"] {
-  @apply text-indigo-500!;
-}
-
-.sp-layout
-  .sp-stack
-  .sp-tabs
-  .sp-tab-container[aria-selected="true"]
-  .sp-tab-button {
-  @apply text-indigo-500!;
-}
-.sp-layout .sp-stack .sp-tabs .sp-tab-container:has(button:focus) {
-  @apply outline-none! border-none!;
+.matched-line {
+  @apply bg-sky-500/30;
 }

chart/Chart.yaml

@@ -1,5 +0,0 @@
-apiVersion: v2
-name: deepsite
-version: 0.0.0-latest
-type: application
-icon: https://huggingface.co/front/assets/huggingface_logo-noborder.svg

chart/env/prod.yaml

@@ -1,59 +0,0 @@
-nodeSelector:
-  role-deepsite: "true"
-
-tolerations:
-  - key: "huggingface.co/deepsite"
-    operator: "Equal"
-    value: "true"
-    effect: "NoSchedule"
-
-serviceAccount:
-  enabled: true
-  create: true
-  name: deepsite-prod
-
-ingress:
-  path: "/"
-  annotations:
-    alb.ingress.kubernetes.io/healthcheck-path: "/api/healthcheck"
-    alb.ingress.kubernetes.io/listen-ports: "[{\"HTTP\": 80}, {\"HTTPS\": 443}]"
-    alb.ingress.kubernetes.io/load-balancer-name: "hub-utils-prod-cloudfront"
-    alb.ingress.kubernetes.io/group.name: "hub-utils-prod-cloudfront"
-    alb.ingress.kubernetes.io/scheme: "internal"
-    alb.ingress.kubernetes.io/ssl-redirect: "443"
-    alb.ingress.kubernetes.io/tags: "Env=prod,Project=hub,Terraform=true"
-    alb.ingress.kubernetes.io/target-group-attributes: deregistration_delay.timeout_seconds=30
-    alb.ingress.kubernetes.io/target-type: "ip"
-    alb.ingress.kubernetes.io/certificate-arn: "arn:aws:acm:us-east-1:707930574880:certificate/5b25b145-75db-4837-b9f3-7f238ba8a9c7,arn:aws:acm:us-east-1:707930574880:certificate/bfdf509c-f44b-400f-b9e1-6f7a861abe91"
-    kubernetes.io/ingress.class: "alb"
-
-networkPolicy:
-  enabled: true
-  allowedBlocks:
-    - 10.0.0.0/16
-
-
-ingressInternal:
-  enabled: false
-
-envVars:
-  NEXTAUTH_URL: https://deepsite.hf.co/api/auth
-
-infisical:
-  enabled: true
-  env: "prod-us-east-1"
-
-autoscaling:
-  enabled: true
-  minReplicas: 1
-  maxReplicas: 10
-  targetMemoryUtilizationPercentage: "50"
-  targetCPUUtilizationPercentage: "50"
-
-resources:
-  requests:
-    cpu: 2
-    memory: 4Gi
-  limits:
-    cpu: 4
-    memory: 8Gi