fix(review): remote review works end-to-end via HTTP+heartbeat (#213)

* fix(review): remote review works end-to-end via HTTP+heartbeat

Remote review was broken top-to-bottom:

- `HAIKU_REVIEW_SITE_URL=` empty string fell through `config.ts:str()`'s
  `??` check and produced `review.siteUrl = ""`, so `buildReviewUrl`
  generated tokens starting at `/review/#…` instead of
  `https://haikumethod.ai/review/#…`. `str()` now treats empty as
  "use default".

- `withE2E` crashed on any 204/205/304 response with "Invalid response
  status code 204" from Node's Response constructor. E2E wrapping now
  short-circuits for null-body statuses.

- CORS only allowed `Content-Type` in request headers and nothing in
  response headers. The SPA's `bypass-tunnel-reminder` request header
  tripped preflight rejection, and the browser couldn't read
  `X-E2E-Encrypted` / `X-Original-Content-Type` from responses. Added
  `HEAD`, `bypass-tunnel-reminder` to allowed headers, and the two E2E
  headers to `Access-Control-Expose-Headers`.

- Custom-subdomain requests to loca.lt hang indefinitely when the
  upstream reservation service is unhappy. Dropped the per-process
  subdomain entirely — stable subdomains aren't worth fighting for.

- WebSocket presence detection never worked through loca.lt (browser
  UA sniffing serves the interstitial on WS upgrade, and browsers can't
  set custom headers on `new WebSocket()`). Replaced WS with a HEAD
  heartbeat every 10s from the SPA to `/api/session/:id/heartbeat`. A
  per-session sweep on the server marks sessions as `presenceLost` when
  no heartbeat for 25s and wakes the waiting `_openReviewAndWait` so
  it can reopen the browser without burning a retry attempt. Simpler
  client code, no tunnel-specific workarounds, presence detection
  within ~20s of tab close.

- Review SPA now hides site header/footer and renders full-pane with
  zero chrome. Scoped via a `data-haiku-review` attribute on `<html>`
  that's torn down on unmount, so no impact on any other route.

Also adds `scripts/smoke-remote-review.ts` for end-to-end local testing
of the review transport without driving a full intent flow.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

* fix(review): StatusBadge crashes when status is undefined

Frontmatter fields like `status` / `discipline` / `stage` are optional
on some units and intents. The SPA was calling `.toLowerCase()` on
whatever came through, crashing the whole review render with
"Cannot read properties of undefined (reading 'toLowerCase')" on any
intent/unit where a referenced field was missing.

StatusBadge now treats undefined/null/empty as "unknown" and keeps
rendering.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

* style(http): biome formatting for multi-line condition

CI's biome check wanted the 204/205/304 guard broken across lines.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

* fix(review): address code review comments

- sessions.ts: evictSessions now clears heartbeat state on both TTL
  and cap-based eviction, and sweepPresence cleans up presenceLost
  entries when the backing session is gone.
- http.ts: withE2E skips encryption for null-body responses (HEAD
  endpoints), removing redundant crypto + allocation on every
  heartbeat. OPTIONS preflight no longer double-wraps withCors since
  the network-layer middleware covers it.
- server.ts: _openReviewAndWait's timeout throw path now calls
  clearHeartbeat alongside clearE2EKey.
- useReviewSession.ts: heartbeat fetch has an 8s AbortSignal timeout
  so a hung tunnel can't stack up concurrent requests.
  `isConnected` starts as `null` (not-yet-checked) so the
  "Reconnecting…" banner doesn't flash on first render while the
  initial beat is in flight.
- ReviewShell.tsx / ReviewSidebar.tsx: only show the reconnecting
  indicator when `isConnected === false`, so the `null` initial
  state renders as "connected" until proven otherwise.
- smoke-remote-review.ts: SIGINT/SIGTERM handlers close the tunnel
  before exit so Ctrl-C doesn't leave dangling resources.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

---------

Co-authored-by: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

Author: jwaldrip

packages/haiku/scripts/smoke-remote-review.ts

@@ -0,0 +1,70 @@
+#!/usr/bin/env tsx
+// Standalone smoke test for H·AI·K·U remote review.
+// Starts HTTP server, opens tunnel, creates a fake review session, builds the
+// signed review URL, and prints it. Run with:
+//
+//   HAIKU_REMOTE_REVIEW=1 npx tsx scripts/smoke-remote-review.ts [--open]
+
+import { spawn } from "node:child_process"
+import { review } from "../src/config.ts"
+import { startHttpServer } from "../src/http.ts"
+import { createSession } from "../src/sessions.ts"
+import {
+	buildReviewUrl,
+	closeTunnel,
+	isRemoteReviewEnabled,
+	openTunnel,
+} from "../src/tunnel.ts"
+
+console.error("HAIKU_REMOTE_REVIEW   :", process.env.HAIKU_REMOTE_REVIEW)
+console.error("HAIKU_REVIEW_SITE_URL :", process.env.HAIKU_REVIEW_SITE_URL)
+console.error("isRemoteReviewEnabled :", isRemoteReviewEnabled())
+console.error("review.siteUrl        :", review.siteUrl)
+
+const session = createSession({
+	intent_dir: "/tmp/fake-intent",
+	intent_slug: "smoke-test",
+	review_type: "intent",
+	target: "smoke-test",
+	html: "",
+})
+console.error("session_id            :", session.session_id)
+
+const port = await startHttpServer()
+console.error("http port             :", port)
+
+let url: string
+if (isRemoteReviewEnabled()) {
+	const tunnelUrl = await openTunnel(port)
+	console.error("tunnel url            :", tunnelUrl)
+	url = buildReviewUrl(session.session_id, tunnelUrl, "review")
+} else {
+	url = `http://127.0.0.1:${port}/review/${session.session_id}`
+}
+
+console.log("")
+console.log("REVIEW URL:")
+console.log(url)
+console.log("")
+
+if (process.argv.includes("--open")) {
+	const cmd = process.platform === "darwin" ? "open" : "xdg-open"
+	spawn(cmd, [url], { stdio: "ignore", detached: true }).unref()
+}
+
+const holdMs = Number(process.env.SMOKE_HOLD_MS ?? 600_000)
+console.error(`holding open for ${Math.round(holdMs / 1000)}s — curl or browse the URL`)
+
+function shutdown(): void {
+	try {
+		closeTunnel()
+	} catch {
+		/* best-effort */
+	}
+	process.exit(0)
+}
+
+process.on("SIGINT", shutdown)
+process.on("SIGTERM", shutdown)
+
+setTimeout(shutdown, holdMs)

packages/haiku/src/config.ts

@@ -19,7 +19,9 @@ function flag(name: string, defaultValue: boolean): boolean {
 }
 
 function str(name: string, defaultValue: string): string {
-	return process.env[name] ?? defaultValue
+	const raw = process.env[name]
+	if (raw === undefined || raw === "") return defaultValue
+	return raw
 }
 
 /** Feature flags. */

packages/haiku/src/http.ts

@@ -11,6 +11,7 @@ import { z } from "zod"
 import { REVIEW_APP_HTML } from "./review-app-html.js"
 import {
 	getSession,
+	recordHeartbeat,
 	updateDesignDirectionSession,
 	updateQuestionSession,
 	updateSession,
@@ -199,8 +200,21 @@ function withCors(response: Response): Response {
 	if (!isRemoteReviewEnabled()) return response
 	const headers = new Headers(response.headers)
 	headers.set("Access-Control-Allow-Origin", "*")
-	headers.set("Access-Control-Allow-Methods", "GET, POST, OPTIONS")
-	headers.set("Access-Control-Allow-Headers", "Content-Type")
+	headers.set("Access-Control-Allow-Methods", "GET, HEAD, POST, OPTIONS")
+	// `bypass-tunnel-reminder` is the custom header the SPA sends to skip
+	// loca.lt's interstitial reminder page. Custom headers trigger a CORS
+	// preflight and must be explicitly allowed.
+	headers.set(
+		"Access-Control-Allow-Headers",
+		"Content-Type, bypass-tunnel-reminder",
+	)
+	// `X-E2E-Encrypted` / `X-Original-Content-Type` are read by the SPA's
+	// e2eFetch helper to decide whether to decrypt. Custom response headers
+	// are only visible to cross-origin JS when exposed here.
+	headers.set(
+		"Access-Control-Expose-Headers",
+		"X-E2E-Encrypted, X-Original-Content-Type",
+	)
 	return new Response(response.body, {
 		status: response.status,
 		statusText: response.statusText,
@@ -227,6 +241,17 @@ async function withE2E(
 ): Promise<Response> {
 	if (!sessionId || !isE2EActive(sessionId) || response.status >= 400)
 		return response
+	// Null-body responses (HEAD endpoints, 204/205/304) have no payload to
+	// encrypt, and constructing `new Response(body, { status: 204 })` throws
+	// "Invalid response status code 204" in modern Node. Skip encryption
+	// and the associated crypto + allocation cost on every call.
+	if (response.body === null) return response
+	if (
+		response.status === 204 ||
+		response.status === 205 ||
+		response.status === 304
+	)
+		return response
 
 	const originalContentType =
 		response.headers.get("Content-Type") ?? "application/octet-stream"
@@ -841,9 +866,11 @@ function handleRequest(req: Request): Response | Promise<Response> {
 	const url = new URL(req.url)
 	const path = url.pathname
 
-	// CORS preflight (handled before E2E — preflight is plaintext)
+	// CORS preflight (handled before E2E — preflight is plaintext).
+	// The network-layer middleware (see `listenOnPort`) already applies
+	// `withCors` to every response, so returning a bare 204 here is enough.
 	if (req.method === "OPTIONS" && isRemoteReviewEnabled()) {
-		return withCors(new Response(null, { status: 204 }))
+		return new Response(null, { status: 204 })
 	}
 
 	// GET /files/:sessionId/*path — consolidated file serving
@@ -858,6 +885,13 @@ function handleRequest(req: Request): Response | Promise<Response> {
 		return handleSessionApi(apiSessionMatch[1])
 	}
 
+	// HEAD /api/session/:sessionId/heartbeat — client presence ping
+	const heartbeatMatch = path.match(/^\/api\/session\/([^/]+)\/heartbeat$/)
+	if (heartbeatMatch && req.method === "HEAD") {
+		const ok = recordHeartbeat(heartbeatMatch[1])
+		return new Response(null, { status: ok ? 200 : 404 })
+	}
+
 	// GET /review/:sessionId
 	const reviewMatch = path.match(/^\/review\/([^/]+)$/)
 	if (reviewMatch && req.method === "GET") {

packages/haiku/src/server.ts

@@ -36,10 +36,12 @@ import {
 	reportFeedback,
 } from "./sentry.js"
 import {
+	clearHeartbeat,
 	createDesignDirectionSession,
 	createQuestionSession,
 	createSession,
 	getSession,
+	hasPresenceLost,
 	waitForSession,
 } from "./sessions.js"
 import type {
@@ -859,32 +861,41 @@ setOpenReviewHandler(
 		openBrowser()
 
 		// Retry loop: wait → check → reopen if needed → wait again
-		for (let attempt = 0; attempt < 3; attempt++) {
-			try {
-				await waitForSession(session.session_id, 10 * 60 * 1000) // 10 min per attempt
-			} catch {
-				// Timeout — check if session is still pending (user might still be looking)
-				const check = getSession(session.session_id)
+		attempts: for (let attempt = 0; attempt < 3; attempt++) {
+			// Inner loop: handle heartbeat-driven wakeups without burning an attempt
+			while (true) {
+				let timedOut = false
+				try {
+					await waitForSession(session.session_id, 10 * 60 * 1000) // 10 min per attempt
+				} catch {
+					timedOut = true
+				}
+
+				const updated = getSession(session.session_id)
 				if (
-					check &&
-					check.session_type === "review" &&
-					check.status === "decided"
+					updated &&
+					updated.session_type === "review" &&
+					updated.status === "decided"
 				) {
+					clearHeartbeat(session.session_id)
 					if (useRemote) {
 						clearE2EKey(session.session_id)
 						closeTunnel()
 					}
 					return {
-						decision: check.decision,
-						feedback: check.feedback,
-						annotations: check.annotations,
+						decision: updated.decision,
+						feedback: updated.feedback,
+						annotations: updated.annotations,
 					}
 				}
-				// Still pending — try reopening the browser
-				if (attempt < 2) {
+
+				if (hasPresenceLost(session.session_id)) {
+					// Heartbeat gap detected — user closed the tab. Reopen without
+					// consuming a retry attempt; the user may have just refreshed.
 					console.error(
-						`[haiku] Review session timeout (attempt ${attempt + 1}/3) — reopening browser`,
+						`[haiku] Review session ${session.session_id} lost presence — reopening browser`,
 					)
+					clearHeartbeat(session.session_id)
 					if (useRemote) {
 						const tunnelUrl = await openTunnel(port)
 						const newUrl = buildReviewUrl(
@@ -898,26 +909,33 @@ setOpenReviewHandler(
 					}
 					continue
 				}
-			}
 
-			const updated = getSession(session.session_id)
-			if (
-				updated &&
-				updated.session_type === "review" &&
-				updated.status === "decided"
-			) {
-				if (useRemote) {
-					clearE2EKey(session.session_id)
-					closeTunnel()
-				}
-				return {
-					decision: updated.decision,
-					feedback: updated.feedback,
-					annotations: updated.annotations,
+				if (timedOut) {
+					if (attempt < 2) {
+						console.error(
+							`[haiku] Review session timeout (attempt ${attempt + 1}/3) — reopening browser`,
+						)
+						if (useRemote) {
+							const tunnelUrl = await openTunnel(port)
+							const newUrl = buildReviewUrl(
+								session.session_id,
+								tunnelUrl,
+								reviewType,
+							)
+							openBrowser(newUrl)
+						} else {
+							openBrowser()
+						}
+						continue attempts
+					}
+					break attempts
 				}
+
+				// Spurious wakeup — loop and wait again.
 			}
 		}
 
+		clearHeartbeat(session.session_id)
 		if (useRemote) {
 			clearE2EKey(session.session_id)
 			closeTunnel()

packages/haiku/src/sessions.ts

@@ -4,6 +4,70 @@ const sessionEvents = new EventEmitter()
 // Prevent warnings when many sessions are active concurrently
 sessionEvents.setMaxListeners(200)
 
+// ─── Presence / heartbeat tracking ───────────────────────────────────
+// Browser clients HEAD /api/session/:id/heartbeat every 10s. If no
+// heartbeat arrives within HEARTBEAT_GRACE_MS we mark the session as
+// disconnected and wake up any waiting handler so it can reopen the
+// browser or bail out. This replaces the WebSocket-based presence
+// detection that didn't work across tunnel proxies.
+const HEARTBEAT_GRACE_MS = 25_000
+const HEARTBEAT_SWEEP_INTERVAL = 5_000
+const lastHeartbeatAt = new Map<string, number>()
+const presenceLost = new Set<string>()
+
+export function recordHeartbeat(sessionId: string): boolean {
+	if (!sessions.has(sessionId)) return false
+	lastHeartbeatAt.set(sessionId, Date.now())
+	if (presenceLost.delete(sessionId)) {
+		console.error(`[haiku] Presence restored for session ${sessionId}`)
+	}
+	return true
+}
+
+export function hasPresenceLost(sessionId: string): boolean {
+	return presenceLost.has(sessionId)
+}
+
+export function clearHeartbeat(sessionId: string): void {
+	lastHeartbeatAt.delete(sessionId)
+	presenceLost.delete(sessionId)
+}
+
+function sweepPresence(): void {
+	const now = Date.now()
+	for (const [id, ts] of lastHeartbeatAt) {
+		if (now - ts <= HEARTBEAT_GRACE_MS) continue
+		const session = sessions.get(id)
+		if (!session) {
+			lastHeartbeatAt.delete(id)
+			presenceLost.delete(id)
+			continue
+		}
+		// Only interesting while a handler is still blocking on the session
+		if (
+			(session.session_type === "review" && session.status !== "pending") ||
+			(session.session_type === "question" && session.status !== "pending") ||
+			(session.session_type === "design_direction" &&
+				session.status !== "pending")
+		) {
+			continue
+		}
+		if (!presenceLost.has(id)) {
+			presenceLost.add(id)
+			console.error(
+				`[haiku] Presence lost for session ${id} — no heartbeat in ${Math.round(
+					(now - ts) / 1000,
+				)}s`,
+			)
+			sessionEvents.emit(`session:${id}`)
+		}
+	}
+}
+
+// Watchdog sweeps every HEARTBEAT_SWEEP_INTERVAL. unref() so the timer
+// never prevents the MCP process from exiting cleanly.
+setInterval(sweepPresence, HEARTBEAT_SWEEP_INTERVAL).unref()
+
 /**
  * Notify that a session's status has been updated.
  * Tool handlers awaiting waitForSession() will resolve.
@@ -159,6 +223,7 @@ function evictSessions(): void {
 		if (now - ts > SESSION_TTL_MS) {
 			sessions.delete(id)
 			sessionCreatedAt.delete(id)
+			clearHeartbeat(id)
 		}
 	}
 	// If still over cap, evict oldest
@@ -167,6 +232,7 @@ function evictSessions(): void {
 		if (!oldest) break
 		sessions.delete(oldest[0])
 		sessionCreatedAt.delete(oldest[0])
+		clearHeartbeat(oldest[0])
 	}
 }