feat: initial release of sfetch

Self-hosted Salesforce-to-PostgreSQL sync pipeline.
docker compose up and connect any BI tool or SQL client directly to Postgres.

Author: SSheppDev

.dockerignore

@@ -0,0 +1,10 @@
+.env
+data/
+.git/
+node_modules/
+*.log
+*.tsbuildinfo
+.DS_Store
+src/api/dist/
+src/ui/dist/
+src/ui/node_modules/

.env.example

@@ -0,0 +1,13 @@
+# Database
+POSTGRES_USER=sfdb
+POSTGRES_PASSWORD=            # required — no default, must be set before starting
+POSTGRES_DB=sfdb
+POSTGRES_PORT=7745
+READONLY_PASSWORD=
+
+# App
+APP_PORT=7743
+NODE_ENV=production
+
+# Sync log retention (days)
+LOG_RETENTION_DAYS=14

.gitignore

@@ -0,0 +1,35 @@
+# Local data — never commit
+data/
+
+# Environment — never commit
+.env
+
+# Dependencies
+node_modules/
+
+# Build output
+dist/
+build/
+.vite/
+
+# TypeScript
+*.tsbuildinfo
+
+# Logs
+*.log
+npm-debug.log*
+
+# OS
+.DS_Store
+Thumbs.db
+
+# IDE
+.vscode/
+.idea/
+
+# Test coverage
+coverage/
+
+# Misc
+.cache/
+tmp/

CLAUDE.md

@@ -0,0 +1,159 @@
+# sfetch — Agent Rules & Project Conventions
+
+## What this project is
+
+A locally-run Docker-based Salesforce-to-PostgreSQL data pipeline. The database is the product. External apps connect directly to Postgres. A React web UI handles configuration. Everything runs via `docker compose up`.
+
+Full scope: `docs/scope.md`
+
+---
+
+## Commit Rules for Agents
+
+**Agents must commit their work after completing each task.** Do not batch multiple tasks into one commit. One task = one commit (minimum).
+
+### Commit format
+
+```
+<type>(<scope>): <short description>
+
+<optional body — what changed and why>
+
+Co-Authored-By: Claude <noreply@anthropic.com>
+```
+
+**Types:**
+- `feat` — new functionality
+- `fix` — bug fix
+- `chore` — config, tooling, setup
+- `refactor` — restructure without behavior change
+- `docs` — documentation only
+
+**Scopes:** `scaffold`, `docker`, `db`, `auth`, `bulk-api`, `ddl`, `delta-sync`, `reconciliation`, `scheduler`, `api`, `ui`, `build`
+
+**Examples:**
+```
+feat(auth): add SF org token reader from ~/.sf JSON files
+feat(delta-sync): implement initial full load when last_delta_sync is NULL
+chore(scaffold): initialize project structure and package.json files
+feat(ui): add objects page with sync toggle and row count display
+```
+
+### When to commit
+
+- After completing a full task from the task list
+- After a meaningful sub-step within a large task (e.g. after each route module, after each UI page)
+- Always before starting a new task
+- Never commit broken or partially-wired code — a commit should represent a working unit
+
+### What to stage
+
+Stage specific files by name — never `git add .` or `git add -A` blindly. Check `git status` first. Never stage:
+- `data/` (git-ignored, but double-check)
+- `.env` (git-ignored, but double-check)
+- Unrelated files touched incidentally
+
+---
+
+## Branch Strategy
+
+All work goes to `main` for this project. It is a local-only tool with a single developer. No feature branches required unless explicitly requested.
+
+---
+
+## Tech Stack (quick reference)
+
+| Layer | Technology |
+|---|---|
+| Database | PostgreSQL (Docker) |
+| Backend | Node.js + TypeScript + Express |
+| Frontend | React + TypeScript + shadcn/ui + Tailwind |
+| SF Auth | Read `~/.sf/` JSON directly (no sf binary in container) |
+| SF Data | jsforce + Bulk API 2.0 |
+| Scheduler | node-cron |
+| Containers | Docker + Docker Compose |
+
+---
+
+## Directory Structure
+
+```
+sf-db/
+├── src/
+│   ├── api/          # Express backend + sync engine
+│   └── ui/           # React frontend
+├── docker/           # Dockerfiles only
+├── data/             # LOCAL ONLY — git-ignored
+│   ├── docker/       # Postgres volume mount
+│   └── downloads/    # Future file exports
+├── docs/             # Project documentation
+├── docker-compose.yml
+├── .env              # Git-ignored — ports, DB creds, LOG_RETENTION_DAYS
+├── .env.example      # Committed — template with empty values
+└── CLAUDE.md
+```
+
+---
+
+## Code Conventions
+
+### TypeScript
+- Strict mode on (`"strict": true` in tsconfig)
+- No `any` — use `unknown` and narrow properly
+- Prefer `interface` over `type` for object shapes
+- Async/await over raw promises
+- All database queries go through the pg pool — never create ad-hoc connections
+
+### Postgres
+- Synced Salesforce data → `salesforce` schema
+- Internal app tables → `sfdb` schema
+- Every synced table must have: `id`, `sf_created_at`, `sf_updated_at`, `sf_deleted_at`, `synced_at`
+- Field names are lowercase snake_case versions of SF API names
+- DDL is always idempotent (`IF NOT EXISTS` / `IF EXISTS`)
+
+### Sync engine
+- Always acquire `sfdb.sync_lock` before running any sync
+- Always release the lock in a `finally` block — never leave it held on error
+- If `last_delta_sync` is NULL → initial full load (no SystemModstamp WHERE clause)
+- Stale lock threshold: 30 minutes
+- Log purge runs at the start of every sync (delete rows older than `LOG_RETENTION_DAYS`)
+
+### API
+- All routes under `/api/` prefix
+- Non-API routes serve the React SPA (`dist/index.html`)
+- Return consistent error shape: `{ error: string, details?: unknown }`
+- No authentication on API — local-only tool, localhost only
+
+### React / UI
+- Components in `src/ui/src/components/`
+- Pages in `src/ui/src/pages/`
+- API calls through a single typed client (`src/ui/src/lib/api.ts`)
+- Use shadcn/ui components — do not build primitives from scratch
+- Confirmation modals required before any destructive action (drop column, drop table)
+
+---
+
+## Environment Variables
+
+Only bootstrap values live in `.env` — values needed before the DB exists.
+
+```env
+POSTGRES_USER=sfdb
+POSTGRES_PASSWORD=changeme
+POSTGRES_PORT=7745
+APP_PORT=7743
+LOG_RETENTION_DAYS=14
+```
+
+All runtime config (active org alias, sync intervals, enabled objects/fields) lives in the `sfdb` schema in the database.
+
+---
+
+## Key Design Decisions (do not revisit without good reason)
+
+- **sf CLI binary is NOT in the Docker image.** Auth tokens are read directly from the `~/.sf/` JSON files mounted into the container. No `sf org display` command.
+- **The API is not a data API.** It serves the UI and orchestrates syncs only. External tools connect directly to Postgres.
+- **Deletions are soft.** `sf_deleted_at` is set — records are never hard-deleted from the local DB.
+- **Bulk API 2.0 by default.** REST query fallback only for objects under 2,000 records.
+- **Config in DB, not `.env`.** `.env` is infrastructure only. Org alias, object selection, field selection, and schedule config all live in `sfdb.app_config` / `sfdb.sync_config` / `sfdb.field_config`.
+- **One active org at a time.** Multi-org simultaneous sync is out of scope for v1.

LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2026 Seth Sheppard
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

README.md

@@ -0,0 +1,154 @@
+# sfetch
+
+A self-hosted Salesforce-to-PostgreSQL sync pipeline. Run it with `docker compose up`, point a BI tool or SQL client at the local Postgres instance, and query your Salesforce data like a normal database.
+
+**The database is the product.** The web UI configures which objects and fields to sync. External tools connect directly to Postgres — no intermediate API.
+
+---
+
+> **Security note:** The web UI and API have no authentication. This is intentional — it is a localhost-only tool. Both services bind to `127.0.0.1` and must not be exposed to a network. Do not run this on a shared or internet-accessible host without adding an auth layer.
+
+---
+
+## Features
+
+- Configure sync from a web UI — no config files to edit
+- Select individual objects and fields to sync
+- Delta sync (frequent, catches creates/updates) + full ID reconciliation (nightly, catches hard deletes)
+- Soft deletes: records deleted in Salesforce get `sf_deleted_at` set, never hard-deleted locally
+- Salesforce Bulk API 2.0 for large volumes; REST fallback for small objects
+- Auth via `~/.sfdx` files — no Salesforce credentials stored in the project
+- Sync logs with per-object record counts, errors, and duration
+
+## Prerequisites
+
+- [Docker Desktop](https://www.docker.com/products/docker-desktop/)
+- [Salesforce CLI](https://developer.salesforce.com/tools/salesforcecli) (`sf`) with at least one org authenticated
+
+## Quick start
+
+```bash
+# 1. Authenticate a Salesforce org (skip if already done)
+sf org login web --alias my-org
+
+# 2. Configure environment
+cp .env.example .env
+# Edit .env — set POSTGRES_PASSWORD at minimum
+
+# 3. Start
+docker compose up -d
+
+# 4. Open the UI
+open http://localhost:7743
+```
+
+First start takes ~30 seconds while Postgres initializes and the API container builds.
+
+The onboarding screen will detect your authenticated orgs and ask you to pick one. After that, go to the Objects page and enable the Salesforce objects you want to sync.
+
+## Connect a BI tool or SQL client
+
+Once data is syncing, connect any Postgres-compatible tool directly:
+
+| Setting  | Default value         |
+|----------|-----------------------|
+| Host     | `localhost`           |
+| Port     | `7745`                |
+| Database | `sfdb`               |
+| Schema   | `salesforce`          |
+| User     | `sfdb`               |
+| Password | *(your `.env` value)* |
+
+The Settings page in the UI shows a copyable connection string.
+
+A read-only role is also available — set `READONLY_PASSWORD` in `.env` and connect as user `sfdb_readonly`.
+
+## Ports
+
+| Service       | Default | Set via       |
+|---------------|---------|---------------|
+| UI + API      | `7743`  | `APP_PORT`    |
+| PostgreSQL    | `7745`  | `POSTGRES_PORT` |
+
+Both default ports are chosen to avoid conflicts with common local services.
+
+## Environment variables
+
+`.env` holds only bootstrap config — values needed before the database exists. All runtime config (active org, sync intervals, enabled objects) lives in the database.
+
+```env
+POSTGRES_USER=sfdb
+POSTGRES_PASSWORD=            # required
+POSTGRES_DB=sfdb
+POSTGRES_PORT=7745
+READONLY_PASSWORD=            # optional read-only role password
+
+APP_PORT=7743
+NODE_ENV=production
+
+LOG_RETENTION_DAYS=14
+```
+
+Copy `.env.example` to `.env` and fill in at minimum `POSTGRES_PASSWORD`.
+
+## How sync works
+
+### Delta sync (default: every hour)
+
+Queries `WHERE SystemModstamp >= last_delta_sync` via Bulk API 2.0, streams the CSV result, and batch-upserts into Postgres. On first sync, no WHERE clause — pulls all records.
+
+### Full ID reconciliation (default: nightly)
+
+Queries `SELECT Id FROM <Object>` for the full live ID set, diffs against local rows, and sets `sf_deleted_at` on any that are gone. This is the only way to catch hard deletes, merges, and cascade deletes.
+
+### Concurrency
+
+Only one sync runs at a time. A single-row lock table (`sfdb.sync_lock`) prevents overlap. Stale locks (> 30 min) are automatically reclaimed on startup.
+
+## Database schema
+
+**`salesforce` schema** — one table per enabled Salesforce object, e.g. `salesforce.account`
+
+| Column | Type | Notes |
+|---|---|---|
+| `id` | `text PRIMARY KEY` | 18-char Salesforce ID |
+| *(enabled fields)* | *(mapped type)* | Lowercased snake_case API names |
+| `sf_created_at` | `timestamptz` | CreatedDate |
+| `sf_updated_at` | `timestamptz` | SystemModstamp |
+| `sf_deleted_at` | `timestamptz NULL` | NULL = live; set when deletion detected |
+| `synced_at` | `timestamptz` | Last written by this tool |
+
+**`sfdb` schema** — internal app tables (sync config, logs, lock, field metadata)
+
+## Tech stack
+
+| Layer | Technology |
+|---|---|
+| Database | PostgreSQL 16 |
+| Backend | Node.js + TypeScript + Express |
+| Frontend | React + TypeScript + shadcn/ui + Tailwind |
+| Salesforce auth | `~/.sfdx` files read directly via Node `fs` (no `sf` binary in container) |
+| Salesforce data | jsforce + Bulk API 2.0 |
+| Scheduling | node-cron |
+| Containers | Docker + Docker Compose |
+
+## Stopping and data persistence
+
+```bash
+docker compose down       # stop containers — data persists
+docker compose down -v    # stop and delete all data
+```
+
+Postgres data lives in `data/docker/postgres/` (git-ignored). It survives stop/start cycles.
+
+## Rebuilding after code changes
+
+```bash
+docker compose down
+docker compose build
+docker compose up -d
+```
+
+## License
+
+MIT — see [LICENSE](LICENSE).