Skip to content

acoyfellow/cloudshell

BranchesTags

Repository files navigation

Cloudshell logo

Cloudshell

Experimental

A terminal-first cloud workstation with a SvelteKit frontend and a Cloudflare Worker + Containers backend.

What it is

Cloudshell gives each user one shared workstation filesystem and lets them open isolated runtime sessions on top of it.

The core model is:

  • user workstation = one shared filesystem per user
  • session = one isolated runtime container
  • tab = one independent shell inside the active session

What ships today

  • SvelteKit app for auth, routing, and UI
  • Better Auth backed by D1
  • Cloudflare Worker backend for session orchestration
  • Cloudflare Containers for isolated runtime sessions
  • Shared per-user workstation files across sessions
  • Per-tab shell state inside each session
  • Left-side files drawer wired to the same filesystem the terminal sees
  • Ports and tools workspace for forwarding, sharing, SSH keys, and backups
  • npm-bundled terminal stack with no CDN dependency

Repo layout

src/            SvelteKit app
worker/         Cloudflare Worker + container runtime
shared/         Shared helpers used by app and worker
migrations/     Better Auth / D1 migrations
old/            Archived pre-rebuild app for reference
alchemy.run.ts  Dev + deploy orchestration

Local development

  1. Create a local env file.
cp .env.example .env
  1. Fill in the required values:
  • ALCHEMY_PASSWORD
  • BETTER_AUTH_SECRET

Optional:

  • BETTER_AUTH_URL
  • BETTER_AUTH_TRUSTED_ORIGINS
  • TERMINAL_TICKET_SECRET
  • AWS_ACCESS_KEY_ID
  • AWS_SECRET_ACCESS_KEY
  • R2_ACCOUNT_ID
  • CLOUDFLARE_ACCOUNT_ID
  1. Start the app.
bun install
bun run dev

Default local URLs:

  • app: http://localhost:5173
  • worker: http://localhost:1338

Useful scripts

bun run dev
bun run build
bun run check
bun run test
bun run deploy
bun run destroy

Database helpers:

bun run db:generate
bun run db:migrate
bun run db:local
bun run db:remote

Architecture notes

  • Better Auth uses D1 for user and auth records.
  • Runtime metadata stays in KV/R2, not D1.
  • Terminal access uses app-origin websocket routing in production and a signed direct-worker ticket in local dev.
  • @xterm/xterm and @xterm/addon-fit are bundled from npm. There is no CDN-loaded terminal dependency.

Verification

Before shipping changes:

bun run check
bun run test
bun run build

For worker container tests:

cd worker/container && go test ./...

About

Your personal terminal in the cloud. Deploy in seconds, access anywhere.

cloudshell.coey.dev

Topics

tmux typescript terminal containers cloudflare cloud-development browser-terminal remote-development

Resources

Readme

License

MIT license

Code of conduct

Code of conduct

Contributing

Contributing

Security policy

Security policy
Activity

Stars

19 stars

Watchers

0 watching

Forks

1 fork
Report repository

Releases

1 tags

Contributors

Languages