a8cb7d65f4
- Shared Zod wire protocol (src/lib/sync/messages.ts): hosted/joined/snapshot/ mapImage/error; player-safe projections only (enemy HP masked on the GM before broadcast via src/lib/combat/playerProjection.ts). - wsSync adapter (src/lib/sync/wsSync.ts) behind the existing SyncAdapter seam: GM hostSession + debounced snapshot broadcast (useSessionBroadcaster), player joinSession into an ephemeral playerSessionStore, exponential-backoff reconnect with seamless room resume (GM secret). localSync remains the offline default. - buildSnapshot (src/lib/sync/snapshot.ts) reuses the same projection as the local /play view, guaranteeing parity. Player view refactored into shared PlayerBoards; /play?room=CODE = networked read-only mode. - SessionControl in the header: Host (optional password) → shareable room code/link. - Server (server/): Fastify + @fastify/websocket + @fastify/static, in-memory GM-authoritative rooms (crypto room id/secret hashed, optional join password, TTL sweep, players strictly read-only), origin allowlist, per-frame size cap + rate limit, Zod validation. esbuild bundle (server/build.mjs), tsconfig.server.json. - Dockerfile (multi-stage) + deploy/ttrpg.compose.yml (own project on external 'proxy' net, Traefik labels for ttrpg.briggen.dev, non-root, no-new-privileges). CSP connect-src now allows same-origin wss:. Tests: protocol round-trip, room hub (auth/password/resume/TTL/read-only), enemy masking, Fastify+ws integration (host→join→snapshot, player push rejected), and a two-context Playwright realtime spec (separate config) — GM hosts, player device sees live combat with masked enemy HP. Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>
44 lines
1.9 KiB
TypeScript
44 lines
1.9 KiB
TypeScript
import { test, expect, type BrowserContext } from '@playwright/test';
|
|
|
|
async function fresh(ctx: BrowserContext) {
|
|
const page = await ctx.newPage();
|
|
await page.goto('/');
|
|
await page.evaluate(() => { indexedDB.deleteDatabase('ttrpg-manager'); localStorage.clear(); });
|
|
await page.reload();
|
|
return page;
|
|
}
|
|
|
|
test('GM hosts a session; a player on another device sees live combat', async ({ browser }) => {
|
|
const gmCtx = await browser.newContext();
|
|
const playerCtx = await browser.newContext();
|
|
|
|
// GM: load the sample campaign and host a session.
|
|
const gm = await fresh(gmCtx);
|
|
gm.on('dialog', (d) => d.dismiss()); // dismiss the optional-password prompt
|
|
await gm.getByLabel('Settings').click();
|
|
await gm.getByRole('button', { name: 'Load sample campaign' }).click();
|
|
await expect(gm.getByRole('heading', { name: 'Sample: Lost Mine' })).toBeVisible();
|
|
await gm.getByRole('button', { name: '📡 Host' }).click();
|
|
const code = (await gm.getByTestId('join-code').textContent())?.replace(/[^A-Z0-9]/g, '') ?? '';
|
|
expect(code).toHaveLength(6);
|
|
|
|
// Player: join via the room code on a separate context (device).
|
|
const player = await playerCtx.newPage();
|
|
await player.goto(`/play?room=${code}`);
|
|
await expect(player.getByRole('heading', { name: 'Sample: Lost Mine' })).toBeVisible();
|
|
await expect(player.getByText('Lia the Brave')).toBeVisible(); // party synced
|
|
|
|
// GM starts the seeded encounter → player sees initiative live, enemy HP masked.
|
|
await gm.getByLabel('Primary').getByRole('link', { name: 'Combat' }).click();
|
|
await gm.getByText('Goblin Ambush').click();
|
|
await gm.getByRole('button', { name: 'Start combat' }).click();
|
|
|
|
await expect(player.getByText(/Round \d+/)).toBeVisible();
|
|
await expect(player.getByText('Goblin').first()).toBeVisible();
|
|
// enemy exact HP must NOT be shown to players
|
|
await expect(player.getByText('7/7')).toHaveCount(0);
|
|
|
|
await gmCtx.close();
|
|
await playerCtx.close();
|
|
});
|