polish(network): outermost PIN gate + non-buffering ASGI middleware + listener test

[debpalash]

Three quality follow-ups to the network-sharing feature (#159), each from the final review.

• RemoteAuthGate at the outermost provider — moved the remote PIN gate from App.jsx (which wrapped only the main studio view) to main-app.jsx inside QueryClientProvider, so a remote device loading a bare URL (no ?pin=) during first-run states (setup-status / SetupWizard / BootstrapSplash) now gets the gate instead of a silent 401. QR path and loopback are unchanged (gate only renders on ov:pin-required). Removed the old wrap to avoid double-gating.
• Non-buffering ASGI middleware — rewrote NetworkAccessMiddleware from BaseHTTPMiddleware (which buffers StreamingResponse/SSE bodies) to a pure ASGI middleware, so PIN'd LAN clients on streaming endpoints (dictation SSE, tts streaming, /system/logs/stream) stream chunk-by-chunk. All 5 original security behaviors preserved (inert-when-no-PIN, loopback bypass, SPA-shell allowlist, constant-time PIN compare, 401) + 3 new tests (streaming pass-through, plain-ASGI guard).
• Listener lifecycle integration test — actually starts the second 0.0.0.0:<P+1> listener via enable(), connects to confirm it's live, then disable() and confirms the port closes.

Verification (full CI-equivalent suite, all green locally)

• Backend: 15 passed (test_network_middleware now 8, test_network_share, test_network_share_lifecycle, CJK guard).
• Frontend: typecheck:ci ✓, test:legacy 36/0 ✓, vitest 90/90 (17 files) ✓, build ✓.

🤖 Generated with Claude Code

Summary by CodeRabbit

• Performance Improvements

  • Optimized streaming response handling to eliminate buffering overhead and improve data delivery efficiency

• Security Enhancements

  • Extended network access controls across all application flows, including setup and configuration wizards, for consistent protection

• Infrastructure

  • Improved middleware architecture for enhanced system efficiency

[coderabbitai]

📝 Walkthrough

Walkthrough

Backend middleware refactored from buffering BaseHTTPMiddleware to pure ASGI implementation with direct cookie injection via ASGI message interception. Frontend auth gate relocated from App.jsx wrapper to outermost provider in main-app.jsx. Tests validate ASGI behavior, streaming without buffering, and cookie injection. Network share listener lifecycle integration test added.

Changes

PIN Authentication & Network Access Control

Layer / File(s)	Summary
Middleware ASGI implementation with cookie injection backend/main.py	NetworkAccessMiddleware converted from BaseHTTPMiddleware.dispatch to pure ASGI __call__, intercepting http.response.start messages to inject ov_pin cookie via MutableHeaders, eliminating response buffering.
Middleware behavior validation tests tests/test_network_middleware.py	Tests confirm implementation is non-BaseHTTPMiddleware ASGI-style callable, streaming passes through without buffering artifacts, and authorized requests receive ov_pin cookie injection.
Auth gate relocation to outermost provider frontend/src/App.jsx, frontend/src/main-app.jsx	RemoteAuthGate removed from App.jsx wrapper and relocated to main-app.jsx as outermost provider, covering widget and non-widget render paths and bootstrap flow without double-gating.
Network share listener lifecycle integration test tests/test_network_share_lifecycle.py	Integration test validates listener enable/disable lifecycle, state consistency, connection availability, port closure, graceful skip on binding restrictions, and defensive cleanup.

🎯 3 (Moderate) | ⏱️ ~25 minutes

🚥 Pre-merge checks | ✅ 4 | ❌ 1

❌ Failed checks (1 warning)

Check name	Status	Explanation	Resolution
Docstring Coverage	⚠️ Warning	Docstring coverage is 12.50% which is insufficient. The required threshold is 80.00%.	Write docstrings for the functions missing them to satisfy the coverage threshold.

✅ Passed checks (4 passed)

Check name	Status	Explanation
Title check	✅ Passed	The title accurately summarizes all three main changes: moving RemoteAuthGate to the outermost provider, converting to non-buffering ASGI middleware, and adding a listener lifecycle test.
Description check	✅ Passed	The PR description covers all required sections: a clear summary of the three follow-ups, detailed explanations of each change, verification results, and a note about test coverage. However, the template requires additional checklist items (testing locally, documentation updates, version file sync, regression fixture testing) that are not explicitly addressed.
Linked Issues check	✅ Passed	Check skipped because no linked issues were found for this pull request.
Out of Scope Changes check	✅ Passed	Check skipped because no linked issues were found for this pull request.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

📝 Generate docstrings

• Create stacked PR
• Commit on current branch

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch feat/network-sharing-polish

Warning

There were issues while running some tools. Please review the errors and either fix the tool's configuration or disable the tool if it's a critical failure.

🔧 ESLint

If the error stems from missing dependencies, add them to the package.json file. For unrecoverable errors (e.g., due to private dependencies), disable the tool in the CodeRabbit configuration.

ESLint skipped: no ESLint configuration detected in root package.json. To enable, add eslint to devDependencies.

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[greptile-apps]

Greptile Summary

This PR delivers three quality follow-ups to the network-sharing feature: the RemoteAuthGate PIN dialog is lifted to the true outermost render position in main-app.jsx so first-run states (setup wizard, bootstrap splash) on remote devices are covered; NetworkAccessMiddleware is rewritten as a pure ASGI class to stop BaseHTTPMiddleware's body-buffering from breaking SSE/streaming endpoints for LAN clients; and a new integration test actually starts the second 0.0.0.0 listener, confirms it accepts TCP connections, then tears it down.

• ASGI middleware rewrite (backend/main.py): all five original security behaviors (inert-when-no-PIN, loopback bypass, SPA-shell allowlist, constant-time PIN compare, 401) are preserved; Set-Cookie injection is handled by wrapping the ASGI send callable on the http.response.start message rather than calling response.set_cookie, which avoids ever materialising the body.
• Frontend gate promotion (main-app.jsx / App.jsx): RemoteAuthGate is moved one level up inside QueryClientProvider, wrapping both the widget and full-app paths; a comment in App.jsx explicitly warns against re-adding the old wrapper to prevent double-gating.
• New tests (test_network_middleware.py, test_network_share_lifecycle.py): cover the ASGI class-identity check, streaming pass-through, cookie injection via the send-wrapper, and the real listener lifecycle with TCP socket probing.

Confidence Score: 4/5

Safe to merge; the ASGI rewrite is a well-scoped drop-in with all original security behaviors intact, and the frontend change is a straightforward component promotion with no logic modifications.

The only findings are a style nit (module-level import placed in the hot-path) and a note that one test assertion (Content-Length absence) is a weaker proxy for non-buffering than it appears. The middleware correctness, constant-time PIN comparison, cookie injection, loopback bypass, and SPA-shell allowlist logic are all sound.

No files require special attention; backend/main.py has the minor import placement issue and is worth a quick second look on that point alone.

Important Files Changed

Filename	Overview
backend/main.py	NetworkAccessMiddleware rewritten from BaseHTTPMiddleware to pure ASGI; all 5 security behaviors preserved; minor style issue with in-body import on hot path
frontend/src/App.jsx	RemoteAuthGate wrapper removed from App.jsx with clear comment explaining it now lives in main-app.jsx; no logic changes
frontend/src/main-app.jsx	RemoteAuthGate moved to outermost position inside QueryClientProvider, correctly covering both widget and full-app render paths
tests/test_network_middleware.py	Three new tests added: ASGI class-check, streaming pass-through with valid PIN, and cookie injection via ASGI send-wrapper; content-length absence check is a reasonable proxy but may be environment-sensitive
tests/test_network_share_lifecycle.py	New integration test exercises the real listener lifecycle (enable/disable) with actual TCP socket probing; includes sandbox skip guard and defensive finally cleanup

Sequence Diagram

sequenceDiagram
    participant Client as LAN Client
    participant CORS as CORSMiddleware
    participant NAM as NetworkAccessMiddleware (ASGI)
    participant App as FastAPI App

    Client->>CORS: HTTP Request
    CORS->>NAM: scope, receive, send
    NAM->>NAM: "scope["type"] != "http"?"
    alt WebSocket / lifespan
        NAM->>App: pass-through (untouched)
    else No PIN configured
        NAM->>App: pass-through
    else Loopback client
        NAM->>App: pass-through
    else SPA shell path ("/", "/assets/…")
        NAM->>App: pass-through
    else PIN missing / wrong
        NAM-->>Client: 401 JSON (via JSONResponse ASGI call)
    else Valid PIN, cookie not set
        NAM->>App: app(scope, receive, send_with_cookie)
        App-->>NAM: http.response.start (headers)
        NAM->>NAM: "MutableHeaders.append("set-cookie", "ov_pin=…")"
        NAM-->>Client: response + Set-Cookie header (streamed chunk-by-chunk)
    else Valid PIN, cookie already present
        NAM->>App: app(scope, receive, send)
        App-->>Client: response (streamed chunk-by-chunk)
    end

Loading

_{Reviews (1): Last reviewed commit: "test(network-share): integration test fo..." | Re-trigger Greptile}

[greptile-apps]

The from starlette.requests import Request import is placed inside the __call__ hot path, so it runs a sys.modules dict lookup on every HTTP request. Move it to the module-level import block alongside the other Starlette imports already there (e.g., MutableHeaders).

Suggested change

	async def __call__(self, scope, receive, send):
	if scope["type"] != "http":
	return await self.app(scope, receive, send)
	from starlette.requests import Request
	request = Request(scope, receive=receive)
	async def __call__(self, scope, receive, send):
	if scope["type"] != "http":
	return await self.app(scope, receive, send)
	request = Request(scope, receive=receive)

Note: If this suggestion doesn't match your team's coding style, reply to this and let me know. I'll remember it for next time!

[greptile-apps]

The corresponding module-level import of Request should be added alongside the existing Starlette imports so the in-body import can be removed.

Suggested change

	from starlette.datastructures import MutableHeaders
	from starlette.datastructures import MutableHeaders
	from starlette.requests import Request

Note: If this suggestion doesn't match your team's coding style, reply to this and let me know. I'll remember it for next time!

[greptile-apps]

Content-Length absence is an indirect proxy for non-buffering

The assertion uses Content-Length absence to confirm the middleware isn't buffering the body, with the comment noting that a buffering middleware would re-materialise the body and set one. In practice, modern Starlette BaseHTTPMiddleware no longer unconditionally adds Content-Length after the buffering fix in 0.20+, so this check could silently pass even if the code regresses to BaseHTTPMiddleware. The test_middleware_is_plain_asgi_not_buffering test (line 46) is a more reliable guard for that regression. Consider strengthening this test by also verifying the body is delivered incrementally (e.g., via a chunked iter_lines() approach with the async client), or document that the Content-Length check is a best-effort signal only.

[coderabbitai]

Actionable comments posted: 1

🧹 Nitpick comments (2)

tests/test_network_middleware.py (1)

53-54: 💤 Low value

Simplify the callable check.

The Ruff B004 warning appears to be a false positive since this code uses callable() correctly. However, the check can be simplified — instances of a class are callable if the class defines __call__, and this is more directly tested by checking an instance:

-    assert not issubclass(NetworkAccessMiddleware, BaseHTTPMiddleware)
-    assert callable(getattr(NetworkAccessMiddleware, "__call__", None))
+    assert not issubclass(NetworkAccessMiddleware, BaseHTTPMiddleware)
+    # Class defines __call__ → instances are callable ASGI apps
+    assert callable(NetworkAccessMiddleware(lambda s, r, se: None))

Alternatively, keep the current form since it's functionally correct; the static analysis hint is a false positive here.

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@tests/test_network_middleware.py` around lines 53 - 54, The test currently
checks callable(getattr(NetworkAccessMiddleware, "__call__", None)) which
triggers Ruff B004; replace this with a direct instance-level callable check by
creating an instance of NetworkAccessMiddleware (e.g., middleware =
NetworkAccessMiddleware(...)) and asserting callable(middleware), while keeping
the issubclass check against BaseHTTPMiddleware unchanged; reference the
NetworkAccessMiddleware class and its __call__ behavior when making the change.

frontend/src/main-app.jsx (1)

56-92: 💤 Low value

Hardcoded string should use i18n.

Line 83 contains hardcoded English text "Loading dictation…" which should go through the translation layer.

♻️ Suggested fix

Add import at top of file:

import { useTranslation } from 'react-i18next';

Then update the Suspense fallback to use a small wrapper component (since hooks can't be called directly in JSX expressions):

+const WidgetFallback = () => {
+  const { t } = useTranslation();
+  return (
+    <div
+      style={{
+        position: 'fixed',
+        inset: 0,
+        display: 'flex',
+        alignItems: 'center',
+        justifyContent: 'center',
+        background: 'rgba(18, 18, 22, 0.88)',
+        backdropFilter: 'blur(24px) saturate(180%)',
+        WebkitBackdropFilter: 'blur(24px) saturate(180%)',
+        border: '1px solid rgba(255, 255, 255, 0.08)',
+        borderRadius: '100px',
+        color: 'rgba(255, 255, 255, 0.9)',
+        fontFamily: '"Inter Variable", "Inter", -apple-system, sans-serif',
+        fontSize: 13,
+        userSelect: 'none',
+      }}
+    >
+      {t('widget.loading_dictation')}
+    </div>
+  );
+};

And use <WidgetFallback /> as the Suspense fallback.

As per coding guidelines: "All user-facing text in the UI must go through the i18n translation layer using t('...') keys in locales/*.json files, never hardcode non-English text"

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@frontend/src/main-app.jsx` around lines 56 - 92, The Suspense fallback
contains a hardcoded user-facing string "Loading dictation…" which must use the
i18n layer; import useTranslation from 'react-i18next', create a small wrapper
component (e.g. WidgetFallback) that calls const { t } = useTranslation() and
returns the same styled div but with t('widget.loading_dictation') (add the key
to locales/*.json), and then replace the inline fallback JSX with
<WidgetFallback /> inside RemoteAuthGate/Suspense (refer to CaptureWidget and
Suspense fallback).

🤖 Prompt for all review comments with AI agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

Inline comments:
In `@tests/test_network_share_lifecycle.py`:
- Around line 76-94: Replace the dynamic __import__("fastapi").FastAPI() calls
in test_share_listener_lifecycle() with a module-level "from fastapi import
FastAPI" and reuse FastAPI() instances for both defensive cleanup calls; update
test_share_listener_lifecycle() to call ns.disable(FastAPI()) in the two places
where __import__ is used, and remove the now-unnecessary local "from fastapi
import FastAPI" import inside _exercise_lifecycle(); keep all calls to
ns.disable(app) as-is since it only sets app.state.network_share.

---

Nitpick comments:
In `@frontend/src/main-app.jsx`:
- Around line 56-92: The Suspense fallback contains a hardcoded user-facing
string "Loading dictation…" which must use the i18n layer; import useTranslation
from 'react-i18next', create a small wrapper component (e.g. WidgetFallback)
that calls const { t } = useTranslation() and returns the same styled div but
with t('widget.loading_dictation') (add the key to locales/*.json), and then
replace the inline fallback JSX with <WidgetFallback /> inside
RemoteAuthGate/Suspense (refer to CaptureWidget and Suspense fallback).

In `@tests/test_network_middleware.py`:
- Around line 53-54: The test currently checks
callable(getattr(NetworkAccessMiddleware, "__call__", None)) which triggers Ruff
B004; replace this with a direct instance-level callable check by creating an
instance of NetworkAccessMiddleware (e.g., middleware =
NetworkAccessMiddleware(...)) and asserting callable(middleware), while keeping
the issubclass check against BaseHTTPMiddleware unchanged; reference the
NetworkAccessMiddleware class and its __call__ behavior when making the change.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Path: .coderabbit.yaml

Review profile: CHILL

Plan: Pro Plus

Run ID: 560cafb1-644a-441a-8467-cb484157d88d

📥 Commits

Reviewing files that changed from the base of the PR and between fa1503c and 0eadd14.

📒 Files selected for processing (5)

• backend/main.py
• frontend/src/App.jsx
• frontend/src/main-app.jsx
• tests/test_network_middleware.py
• tests/test_network_share_lifecycle.py

[coderabbitai]

⚠️ Potential issue | 🟡 Minor | ⚡ Quick win

🧩 Analysis chain

🏁 Script executed:

#!/bin/bash
# Check whether disable() reads app.state.network_share (would fail on a fresh app).
fd -t f 'network_share.py' --exec rg -nP -C8 '\b(async\s+)?def\s+disable\b' {}

Repository: debpalash/OmniVoice-Studio

Length of output: 640

---

🏁 Script executed:

#!/bin/bash
set -euo pipefail

# Locate the service module
fd -t f -i 'network_share.py' .

# Print the full disable() function body and any app.state usage around it
fd -t f -i 'network_share.py' --exec rg -nP -S '^(async\s+def\s+disable\s*\(|def\s+disable\s*\()' {} \; --max-count 20

# Show the disable() body + any app.state.network_share references
fd -t f -i 'network_share.py' --exec rg -nP -S -C3 'network_share\.|app\.state\.' {} \;

# Finally, dump a wider window around disable()
fd -t f -i 'network_share.py' --exec rg -nP -S -C25 'def\s+disable\s*\(' {} \;

Repository: debpalash/OmniVoice-Studio

Length of output: 452

---

🏁 Script executed:

#!/bin/bash
set -euo pipefail

FILE="./backend/services/network_share.py"
if [ ! -f "$FILE" ]; then
  echo "Missing $FILE" >&2
  exit 1
fi

echo "== file line count =="
wc -l "$FILE"

echo "== disable() definition lines =="
rg -nP 'async\s+def\s+disable\s*\(' "$FILE" || true

echo "== disable() body (approx) =="
# Print a window around disable()
LINE=$(rg -nP 'async\s+def\s+disable\s*\(' "$FILE" | head -n1 | cut -d: -f1)
START=$((LINE-5))
END=$((LINE+120))
sed -n "${START},${END}p" "$FILE" | cat -n

echo "== occurrences of app.state.network_share =="
rg -nP 'app\.state\.network_share' "$FILE" || true

echo "== occurrences of app.state. within network_share.py =="
rg -nP 'app\.state\.' "$FILE" || true

echo "== where FastAPI is imported/used in this module =="
rg -nP '\bFastAPI\b|from\s+fastapi|import\s+fastapi' "$FILE" || true

Repository: debpalash/OmniVoice-Studio

Length of output: 1274

---

🏁 Script executed:

#!/bin/bash
set -euo pipefail

echo "== network_share.py =="
nl -ba backend/services/network_share.py | sed -n '1,160p'

echo "== locate lifecycle test file ==" 
fd -t f -i 'test_network_share_lifecycle\.py' . || true

echo "== show lifecycle test (if found) ==" 
TESTFILE=$(fd -t f -i 'test_network_share_lifecycle\.py' . | head -n1 || true)
if [ -n "${TESTFILE}" ] && [ -f "${TESTFILE}" ]; then
  echo "Using: $TESTFILE"
  nl -ba "$TESTFILE" | sed -n '1,200p'
fi

echo "== also locate any use of ns.disable(FastAPI|__import__) in tests ==" 
rg -n --hidden -S 'ns\.disable\(|network_share\.disable\(|disable\(__import__|FastAPI\(\)\)' . -g'*test*.py' || true

Repository: debpalash/OmniVoice-Studio

Length of output: 154

---

🏁 Script executed:

#!/bin/bash
set -euo pipefail

echo "== network_share.py =="
cat -n backend/services/network_share.py

echo "== locate lifecycle test file =="
fd -t f -i 'test_network_share_lifecycle\.py' . || true

echo "== locate any test file with network_share lifecycle wording =="
fd -t f -i '*network_share*lifecycle*test*.py' . || true

echo "== find uses of ns.disable/disable in tests =="
rg -n --hidden -S 'ns\.disable\(|network_share\.disable\(|disable\(__import__\(|FastAPI\(\)' . -g'*test*.py' || true

Repository: debpalash/OmniVoice-Studio

Length of output: 5488

---

🏁 Script executed:

#!/bin/bash
set -euo pipefail
cat -n tests/test_network_share_lifecycle.py | sed -n '1,140p'

Repository: debpalash/OmniVoice-Studio

Length of output: 4205

---

🏁 Script executed:

#!/bin/bash
set -euo pipefail
rg -n "__import__\\(\"fastapi\"\\)" -S tests backend || true

Repository: debpalash/OmniVoice-Studio

Length of output: 286

---

Tidy up FastAPI usage in test_share_listener_lifecycle()

• ns.disable(app) only assigns app.state.network_share (it doesn’t read it), so passing a fresh FastAPI() for the defensive cleanup at lines 79/94 won’t trigger an AttributeError.
• Replace __import__("fastapi").FastAPI() with a module-scope from fastapi import FastAPI and reuse FastAPI() for the two cleanup calls (then the local from fastapi import FastAPI inside _exercise_lifecycle can be removed).

♻️ Hoist the FastAPI import

 import asyncio
 import socket

 import pytest
+from fastapi import FastAPI

 from services import network_share as ns

     if ns.get_state().enabled:
-        asyncio.run(ns.disable(__import__("fastapi").FastAPI()))
+        asyncio.run(ns.disable(FastAPI()))

         if ns.get_state().enabled:
-            asyncio.run(ns.disable(__import__("fastapi").FastAPI()))
+            asyncio.run(ns.disable(FastAPI()))

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change

	def test_share_listener_lifecycle():
	# Ensure a clean starting state regardless of test ordering.
	if ns.get_state().enabled:
	asyncio.run(ns.disable(__import__("fastapi").FastAPI()))
	try:
	# Probe whether binding 0.0.0.0 is permitted in this sandbox.
	with socket.socket(socket.AF_INET, socket.SOCK_STREAM) as probe:
	try:
	probe.bind(("0.0.0.0", 0))
	except OSError as e:
	pytest.skip(f"binding 0.0.0.0 not permitted in this sandbox: {e}")
	asyncio.run(_exercise_lifecycle())
	finally:
	# Defensive cleanup so a failure mid-test never leaves a stray listener
	# or a dirty module-level _state for the next test.
	if ns.get_state().enabled:
	asyncio.run(ns.disable(__import__("fastapi").FastAPI()))
	def test_share_listener_lifecycle():
	# Ensure a clean starting state regardless of test ordering.
	if ns.get_state().enabled:
	asyncio.run(ns.disable(FastAPI()))
	try:
	# Probe whether binding 0.0.0.0 is permitted in this sandbox.
	with socket.socket(socket.AF_INET, socket.SOCK_STREAM) as probe:
	try:
	probe.bind(("0.0.0.0", 0))
	except OSError as e:
	pytest.skip(f"binding 0.0.0.0 not permitted in this sandbox: {e}")
	asyncio.run(_exercise_lifecycle())
	finally:
	# Defensive cleanup so a failure mid-test never leaves a stray listener
	# or a dirty module-level _state for the next test.
	if ns.get_state().enabled:
	asyncio.run(ns.disable(FastAPI()))

🧰 Tools

🪛 Ruff (0.15.14)

[error] 85-85: Possible binding to all interfaces

(S104)

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@tests/test_network_share_lifecycle.py` around lines 76 - 94, Replace the
dynamic __import__("fastapi").FastAPI() calls in test_share_listener_lifecycle()
with a module-level "from fastapi import FastAPI" and reuse FastAPI() instances
for both defensive cleanup calls; update test_share_listener_lifecycle() to call
ns.disable(FastAPI()) in the two places where __import__ is used, and remove the
now-unnecessary local "from fastapi import FastAPI" import inside
_exercise_lifecycle(); keep all calls to ns.disable(app) as-is since it only
sets app.state.network_share.