chore: update README

Author: embbnux

README.md

@@ -1,135 +1,120 @@
-# Lite HTTP Tunnel
+# Lite HTTP Tunnel (Server)
 
-A tunnel tool to help you expose local web (HTTP/WebSocket) server behind a NAT or firewall to the internet. Inspired by [Ngrok](https://github.com/inconshreveable/ngrok) and [node-http-proxy](https://github.com/http-party/node-http-proxy).
+Expose any local HTTP or WebSocket service to the internet through a lightweight tunnel. The server multiplexes inbound traffic and streams it to connected clients over a persistent WebSocket. Inspired by [Ngrok](https://github.com/inconshreveable/ngrok) and [node-http-proxy](https://github.com/http-party/node-http-proxy).
 
 ![http tunnel](https://user-images.githubusercontent.com/7036536/155876708-f30f4921-c8c8-463d-8917-c4f932d3b2e6.png)
 
-## How it work
+## How it works
 
-The tunnel is based on `WebSocket`. We have a `WebSocket` connection between the client and server to stream HTTP/WebSocket requests from public server to your local server.
+1. The client opens a Socket.IO WebSocket to the server and stays connected.
+2. For each incoming public request, the server forwards headers and body to the client via stream events.
+3. The client makes a request to the local target and streams the response back. WebSocket upgrades are handled bidirectionally.
 
-## Usage
+Key features:
+- HTTP and WebSocket support
+- Multi-client routing by host and path prefix (longest-prefix wins)
+- Forwarded headers preserved (x-forwarded-*)
+- JWT-protected tunnel connection
 
-### Deploy at public server
+## Deploy the server
 
-Firstly please deploy this project to your own web host with public internet access. The project is just a `Node.js` web server based on `Express.js`. So just deploy as what you do for [deploying Node.js web server](https://developer.mozilla.org/en-US/docs/Learn/Server-side/Express_Nodejs/deployment).
+This is a standard Node.js/Express server.
 
-#### Deploy to Heroku with following button
+- Run locally
+	```sh
+	npm install
+	npm start
+	```
 
-[![Deploy To Heroku](https://www.herokucdn.com/deploy/button.svg)](https://heroku.com/deploy)
+- One‑click deploy
+	- Heroku: [![Deploy To Heroku](https://www.herokucdn.com/deploy/button.svg)](https://heroku.com/deploy)
+	- Render: [![Deploy to Render](https://render.com/images/deploy-to-render-button.svg)](https://render.com/deploy)
 
-#### Deploy to Render with following button
+### Required environment variables
 
-[![Deploy to Render](https://render.com/images/deploy-to-render-button.svg)](https://render.com/deploy)
+- `SECRET_KEY`: Secret used to sign/verify JWTs
+- `VERIFY_TOKEN`: Static token value expected inside the JWT payload
+- `JWT_GENERATOR_USERNAME`, `JWT_GENERATOR_PASSWORD` (optional, bootstrap only):
+	Used by `/tunnel_jwt_generator` to issue a JWT during initial setup. Remove them after obtaining the client token.
 
-#### JWT Token generator environment variables
+## Use the client
 
-In first deployment, you need to provide `JWT_GENERATOR_USERNAME` and `JWT_GENERATOR_PASSWORD` environment variables. We will use those values to auth and get JWT token at client side. After you get `JWT Token`, you can remove `JWT_GENERATOR_USERNAME` and `JWT_GENERATOR_PASSWORD` environment variables to keep safe.
+Install the client on the machine that can reach your local service:
 
-### Setup Client
-
-#### Install client
-
-Please install `lite-http-tunnel` client in your local computer where it can access your local HTTP server.
-
-```shell
-$ npm i -g lite-http-tunnel
-$ lite-http-tunnel -h
-```
-
-#### Config remote public server address:
-
-```shell
-$ lite-http-tunnel config server https://your_web_host_domain
+```sh
+npm i -g lite-http-tunnel
+lite-http-tunnel -h
 ```
 
-#### Auth with server:
-
-```shell
-$ lite-http-tunnel auth $JWT_GENERATOR_USERNAME $JWT_GENERATOR_PASSWORD
-```
-
- > Replace `$JWT_GENERATOR_USERNAME` and `$JWT_GENERATOR_PASSWORD` with values that you provide at tunnel server
-
-#### Or With specified profile
-
-```shell
-$ lite-http-tunnel config server https://your_web_host_domain -p profile1
-$ lite-http-tunnel auth $JWT_GENERATOR_USERNAME $JWT_GENERATOR_PASSWORD -p profile1
-```
+Point the client to your server and authenticate:
 
-#### Start client
+```sh
+# Set server URL (optionally with a profile)
+lite-http-tunnel config server https://your-public-server
 
-```shell
-$ lite-http-tunnel start your_local_server_port
+# Get a JWT from the server using generator credentials (bootstrap)
+lite-http-tunnel auth $JWT_GENERATOR_USERNAME $JWT_GENERATOR_PASSWORD
 ```
 
-Please replace your_local_server_port with your local HTTP server port, eg: `8080`.
-
-After that you can access your local HTTP server by access `your_public_server_domain`.
-
-#### Start with specified profile:
+Start the tunnel:
 
-```shell
-$ lite-http-tunnel start your_local_server_port -p profile1
-```
-
-#### Change origin to local server:
+```sh
+# Basic
+lite-http-tunnel start <local_port>
 
-```shell
-$ lite-http-tunnel start your_local_server_port -o localhost:5000
-```
+# With a specific profile
+lite-http-tunnel start <local_port> -p profile1
 
-#### Change local server host:
+# Override Host header (origin) for the local target
+lite-http-tunnel start <local_port> -o localhost:5000
 
-```shell
-$ lite-http-tunnel start your_local_server_port -h localhost1
+# Override local hostname used for target resolution (default: localhost)
+lite-http-tunnel start <local_port> -h my-localhost
 ```
 
-## Multiple Clients
+Once running, requests to your public server will be forwarded to your local service.
 
-### Use different domains for public server
+### Profiles (multiple saved configs)
 
-The server steams web request to WebSocket connection which has same host value in request headers.
+The CLI supports named profiles so you can save different servers/tokens locally. By default it uses the `default` profile and stores configs in `~/.lite-http-tunnel/<profile>.json`.
 
-So if you have multiple domains for the proxy server, you can have multiple clients based on different domain.
+Common examples:
 
-For example, you have `https://app1.test.com` and `https://app2.test.com` for this proxy server.
+```sh
+# Save server under a named profile
+lite-http-tunnel config server https://your-public-server -p profile1
 
-In client 1:
+# Authenticate and save JWT to that profile
+lite-http-tunnel auth $JWT_GENERATOR_USERNAME $JWT_GENERATOR_PASSWORD -p profile1
 
-```
-$ lite-http-tunnel config server https://app1.test.com -p profile1
-$ lite-http-tunnel start your_local_server_port -p profile1
+# Start the client using that profile
+lite-http-tunnel start <local_port> -p profile1
 ```
 
-In client 2:
+Use different profiles to switch between environments (e.g., staging vs prod) or to run multiple clients with distinct settings.
 
-```
-$ lite-http-tunnel config server https://app2.test.com -p profile2
-$ lite-http-tunnel start your_local_server_port -p profile2
-```
+## Multiple clients
 
-### Use path prefix
+### By domain
+Each tunnel is keyed by request `Host`. If you run the server under multiple domains, connect one client per domain.
 
-From `0.2.0`, it supports to have multiple clients with different path prefix.
-
-In client 1:
+### By path prefix
+From `0.2.0`, multiple clients can share the same host using different path prefixes.
 
+Client 1:
 ```
-$ lite-http-tunnel config path /api_v1
-$ lite-http-tunnel start your_local_server_port
+lite-http-tunnel config path /api_v1
+lite-http-tunnel start <local_port>
 ```
 
-In client 2:
-
+Client 2:
 ```
-$ lite-http-tunnel config path /api_v2
-$ lite-http-tunnel start your_local_server_port
+lite-http-tunnel config path /api_v2
+lite-http-tunnel start <local_port>
 ```
 
-With that, requests with path prefix `/api_v1` will be streamed to client 1, requests with path prefix `/api_v2` will be streamed to client 2
+Requests matching `/api_v1` route to client 1; `/api_v2` route to client 2. Longest prefix always wins.
 
 ## Related
 
-A introduce article: [Building a HTTP Tunnel with WebSocket and Node.JS](https://medium.com/@embbnux/building-a-http-tunnel-with-websocket-and-node-js-98068b0225d3?source=friends_link&sk=985d90ec9f512928b34ed38b7ddcb378)
+Intro article: [Building a HTTP Tunnel with WebSocket and Node.JS](https://medium.com/@embbnux/building-a-http-tunnel-with-websocket-and-node-js-98068b0225d3?source=friends_link&sk=985d90ec9f512928b34ed38b7ddcb378)