decision_agent 1.0.1 → 1.2.0

data/lib/decision_agent/web/public/simulation_replay.html

@@ -4,7 +4,7 @@
     <meta charset="UTF-8">
     <meta name="viewport" content="width=device-width, initial-scale=1.0">
     <title>Historical Replay / Backtesting</title>
-    <link rel="stylesheet" href="styles.css">
+    <link rel="stylesheet" href="/styles.css">
     <style>
         .simulation-container {
             max-width: 1400px;
@@ -150,7 +150,12 @@
                 <h2>Upload Historical Data</h2>
             </div>
             <p>Upload a CSV or JSON file with historical decision contexts. Each row should contain the context fields used in your rules.</p>
-            
+            <p style="margin-top: 10px;">
+                <strong>Need a template?</strong> Download sample files:
+                <a href="/sample_replay.csv" download style="color: #007bff; text-decoration: none; margin-left: 5px;">📥 Sample CSV</a> |
+                <a href="/sample_rules.json" download style="color: #007bff; text-decoration: none; margin-left: 5px;">📥 Sample Rules</a>
+            </p>
+
             <div class="file-upload-area" id="uploadArea">
                 <p>📁 Drag and drop your CSV/JSON file here, or click to browse</p>
                 <input type="file" id="fileInput" accept=".csv,.json" style="display: none;">
@@ -255,39 +260,30 @@
                 try {
                     const baseUrl = new URL(baseTag.href, window.location.href);
                     let path = baseUrl.pathname;
-                    if (path && !path.endsWith('/')) {
-                        path += '/';
-                    }
+                    if (path && !path.endsWith('/')) path += '/';
                     return path;
                 } catch (e) {
-                    if (baseTag.href.startsWith('/')) {
-                        const match = baseTag.href.match(/^(https?:\/\/[^\/]+)?(\/.*?)\/?$/);
-                        if (match && match[2]) {
-                            return match[2].endsWith('/') ? match[2] : match[2] + '/';
-                        }
-                    } else if (baseTag.href.startsWith('./')) {
-                        const pathname = window.location.pathname;
-                        return pathname.substring(0, pathname.lastIndexOf('/') + 1);
-                    }
+                    // fallback
                 }
             }
             const pathname = window.location.pathname;
-            if (pathname.includes('/decision_agent')) {
-                const match = pathname.match(/^(\/.*?\/decision_agent)\/?/);
-                if (match) {
-                    return match[1].endsWith('/') ? match[1] : match[1] + '/';
-                }
-            }
             const dirPath = pathname.substring(0, pathname.lastIndexOf('/') + 1);
             return dirPath || '/';
         }
 
+        function getAuthHeaders() {
+            const token = localStorage.getItem('auth_token');
+            const headers = { 'Content-Type': 'application/json' };
+            if (token) headers['Authorization'] = `Bearer ${token}`;
+            return headers;
+        }
+
         const basePath = getBasePath();
         let historicalData = null;
 
         // Load versions
         function loadVersions() {
-            fetch(`${basePath}api/versions`)
+            fetch(`${basePath}api/versions`, { headers: getAuthHeaders() })
                 .then(response => response.json())
                 .then(data => {
                     const ruleVersionSelect = document.getElementById('ruleVersion');
@@ -399,7 +395,7 @@
                 JSON.parse(rulesJson);
                 fetch(`${basePath}api/validate`, {
                     method: 'POST',
-                    headers: { 'Content-Type': 'application/json' },
+                    headers: getAuthHeaders(),
                     body: JSON.stringify(JSON.parse(rulesJson))
                 })
                 .then(response => response.json())
@@ -457,7 +453,7 @@
 
                 fetch(`${basePath}api/simulation/replay`, {
                     method: 'POST',
-                    headers: { 'Content-Type': 'application/json' },
+                    headers: getAuthHeaders(),
                     body: JSON.stringify(requestData)
                 })
                 .then(response => response.json())

data/lib/decision_agent/web/public/simulation_shadow.html

@@ -4,7 +4,7 @@
     <meta charset="UTF-8">
     <meta name="viewport" content="width=device-width, initial-scale=1.0">
     <title>Shadow Testing</title>
-    <link rel="stylesheet" href="styles.css">
+    <link rel="stylesheet" href="/styles.css">
     <style>
         .simulation-container {
             max-width: 1400px;
@@ -155,7 +155,12 @@
         <div class="step-section">
             <h2>Production Rules</h2>
             <p>Configure the production rules (or use active version)</p>
-            
+            <p style="margin-top: 10px;">
+                <strong>Need a template?</strong> Download sample files:
+                <a href="/sample_shadow.csv" download style="color: #007bff; text-decoration: none; margin-left: 5px;">📥 Sample CSV</a> |
+                <a href="/sample_rules.json" download style="color: #007bff; text-decoration: none; margin-left: 5px;">📥 Sample Rules</a>
+            </p>
+
             <div class="form-group">
                 <label for="productionRulesJson">Production Rules JSON:</label>
                 <textarea id="productionRulesJson" class="input" rows="10" placeholder='{"version": "1.0", "ruleset": "my_ruleset", "rules": [...]}'></textarea>
@@ -258,6 +263,7 @@
     </div>
 
     <script>
+        // Helper function to get the base path for API calls
         function getBasePath() {
             const baseTag = document.querySelector('base');
             if (baseTag && baseTag.href) {
@@ -267,30 +273,26 @@
                     if (path && !path.endsWith('/')) path += '/';
                     return path;
                 } catch (e) {
-                    if (baseTag.href.startsWith('/')) {
-                        const match = baseTag.href.match(/^(https?:\/\/[^\/]+)?(\/.*?)\/?$/);
-                        if (match && match[2]) {
-                            return match[2].endsWith('/') ? match[2] : match[2] + '/';
-                        }
-                    }
+                    // fallback
                 }
             }
             const pathname = window.location.pathname;
-            if (pathname.includes('/decision_agent')) {
-                const match = pathname.match(/^(\/.*?\/decision_agent)\/?/);
-                if (match) {
-                    return match[1].endsWith('/') ? match[1] : match[1] + '/';
-                }
-            }
-            return pathname.substring(0, pathname.lastIndexOf('/') + 1) || '/';
+            const dirPath = pathname.substring(0, pathname.lastIndexOf('/') + 1);
+            return dirPath || '/';
+        }
+
+        function getAuthHeaders() {
+            const token = localStorage.getItem('auth_token');
+            const headers = { 'Content-Type': 'application/json' };
+            if (token) headers['Authorization'] = `Bearer ${token}`;
+            return headers;
         }
 
         const basePath = getBasePath();
-        let contextCount = 1;
 
         // Load versions
         function loadVersions() {
-            fetch(`${basePath}api/versions`)
+            fetch(`${basePath}api/versions`, { headers: getAuthHeaders() })
                 .then(response => response.json())
                 .then(data => {
                     const select = document.getElementById('shadowVersion');
@@ -311,16 +313,18 @@
 
         // Add context
         document.getElementById('addContextBtn').addEventListener('click', () => {
-            contextCount++;
+            const existingContexts = document.querySelectorAll('.context-item');
+            const nextNumber = existingContexts.length + 1;
+            
             const container = document.getElementById('contextsContainer');
             const context = document.createElement('div');
             context.className = 'context-item';
             context.innerHTML = `
                 <div style="display: flex; justify-content: space-between; align-items: center; margin-bottom: 10px;">
-                    <strong>Context ${contextCount}</strong>
+                    <strong class="context-label">Context ${nextNumber}</strong>
                     <button class="btn btn-secondary" onclick="removeContext(this)" style="padding: 5px 10px;">Remove</button>
                 </div>
-                <div class="context-fields" id="contextFields${contextCount}">
+                <div class="context-fields">
                     <div class="field-input">
                         <label>Field Name</label>
                         <input type="text" class="input context-field-name" placeholder="e.g., credit_score">
@@ -337,6 +341,17 @@
 
         function removeContext(btn) {
             btn.closest('.context-item').remove();
+            updateContextLabels();
+        }
+
+        function updateContextLabels() {
+            const contexts = document.querySelectorAll('.context-item');
+            contexts.forEach((context, index) => {
+                const label = context.querySelector('.context-label');
+                if (label) {
+                    label.textContent = `Context ${index + 1}`;
+                }
+            });
         }
 
         function addField(btn) {
@@ -441,7 +456,7 @@
 
                 fetch(endpoint, {
                     method: 'POST',
-                    headers: { 'Content-Type': 'application/json' },
+                    headers: getAuthHeaders(),
                     body: JSON.stringify(requestData)
                 })
                 .then(response => response.json())

data/lib/decision_agent/web/public/simulation_whatif.html

@@ -4,7 +4,7 @@
     <meta charset="UTF-8">
     <meta name="viewport" content="width=device-width, initial-scale=1.0">
     <title>What-If Analysis</title>
-    <link rel="stylesheet" href="styles.css">
+    <link rel="stylesheet" href="/styles.css">
     <style>
         .simulation-container {
             max-width: 1400px;
@@ -102,13 +102,27 @@
         }
 
         .header-links {
-            margin-top: 20px;
+            display: flex;
+            gap: 1rem;
+            align-items: center;
+            margin-top: 1.5rem;
+            padding-top: 1rem;
+            border-top: 1px solid rgba(255, 255, 255, 0.1);
         }
 
         .header-links a {
-            margin-right: 15px;
+            padding: 0.5rem 1rem;
+            border-radius: 6px;
             text-decoration: none;
-            color: var(--primary-color);
+            color: var(--text-primary);
+            background: rgba(255, 255, 255, 0.05);
+            transition: all 0.2s;
+            font-size: 0.9rem;
+        }
+
+        .header-links a:hover {
+            background: rgba(255, 255, 255, 0.1);
+            transform: translateY(-1px);
         }
 
         .results-table {
@@ -144,7 +158,12 @@
         <div class="step-section">
             <h2>Configure Rules</h2>
             <p>Paste your rules JSON or select a version to use</p>
-            
+            <p style="margin-top: 10px;">
+                <strong>Need a template?</strong> Download sample files:
+                <a href="/sample_whatif.csv" download style="color: #007bff; text-decoration: none; margin-left: 5px;">📥 Sample Scenarios CSV</a> |
+                <a href="/sample_rules.json" download style="color: #007bff; text-decoration: none; margin-left: 5px;">📥 Sample Rules</a>
+            </p>
+
             <div class="form-group">
                 <label for="rulesJson">Rules JSON:</label>
                 <textarea id="rulesJson" class="input" rows="10" placeholder='{"version": "1.0", "ruleset": "my_ruleset", "rules": [...]}'></textarea>
@@ -248,6 +267,7 @@
     </div>
 
     <script>
+        // Helper function to get the base path for API calls
         function getBasePath() {
             const baseTag = document.querySelector('base');
             if (baseTag && baseTag.href) {
@@ -257,22 +277,19 @@
                     if (path && !path.endsWith('/')) path += '/';
                     return path;
                 } catch (e) {
-                    if (baseTag.href.startsWith('/')) {
-                        const match = baseTag.href.match(/^(https?:\/\/[^\/]+)?(\/.*?)\/?$/);
-                        if (match && match[2]) {
-                            return match[2].endsWith('/') ? match[2] : match[2] + '/';
-                        }
-                    }
+                    // fallback
                 }
             }
             const pathname = window.location.pathname;
-            if (pathname.includes('/decision_agent')) {
-                const match = pathname.match(/^(\/.*?\/decision_agent)\/?/);
-                if (match) {
-                    return match[1].endsWith('/') ? match[1] : match[1] + '/';
-                }
-            }
-            return pathname.substring(0, pathname.lastIndexOf('/') + 1) || '/';
+            const dirPath = pathname.substring(0, pathname.lastIndexOf('/') + 1);
+            return dirPath || '/';
+        }
+
+        function getAuthHeaders() {
+            const token = localStorage.getItem('auth_token');
+            const headers = { 'Content-Type': 'application/json' };
+            if (token) headers['Authorization'] = `Bearer ${token}`;
+            return headers;
         }
 
         const basePath = getBasePath();
@@ -280,7 +297,7 @@
 
         // Load versions
         function loadVersions() {
-            fetch(`${basePath}api/versions`)
+            fetch(`${basePath}api/versions`, { headers: getAuthHeaders() })
                 .then(response => response.json())
                 .then(data => {
                     const select = document.getElementById('ruleVersion');
@@ -366,7 +383,7 @@
                 JSON.parse(rulesJson);
                 fetch(`${basePath}api/validate`, {
                     method: 'POST',
-                    headers: { 'Content-Type': 'application/json' },
+                    headers: getAuthHeaders(),
                     body: JSON.stringify(JSON.parse(rulesJson))
                 })
                 .then(response => response.json())
@@ -442,7 +459,7 @@
 
                 fetch(`${basePath}api/simulation/whatif`, {
                     method: 'POST',
-                    headers: { 'Content-Type': 'application/json' },
+                    headers: getAuthHeaders(),
                     body: JSON.stringify(requestData)
                 })
                 .then(response => response.json())

data/lib/decision_agent/web/public/users.html

@@ -4,7 +4,7 @@
     <meta charset="UTF-8">
     <meta name="viewport" content="width=device-width, initial-scale=1.0">
     <title>User Management - DecisionAgent</title>
-    <link rel="stylesheet" href="styles.css">
+    <link rel="stylesheet" href="/styles.css">
     <style>
         .users-container {
             max-width: 1200px;

data/lib/decision_agent/web/rack_helpers.rb

@@ -0,0 +1,106 @@
+# frozen_string_literal: true
+
+# Rack helpers for framework-agnostic web server
+# These helpers provide convenience methods for pure Rack applications
+
+require "rack"
+require "rack/file"
+require "uri"
+
+module DecisionAgent
+  module Web
+    module RackHelpers
+      # Simple router for Rack applications
+      class Router
+        def initialize
+          @routes = []
+          @before_filters = []
+        end
+
+        def get(path, &block)
+          add_route("GET", path, block)
+        end
+
+        def post(path, &block)
+          add_route("POST", path, block)
+        end
+
+        def put(path, &block)
+          add_route("PUT", path, block)
+        end
+
+        def delete(path, &block)
+          add_route("DELETE", path, block)
+        end
+
+        def options(path, &block)
+          add_route("OPTIONS", path, block)
+        end
+
+        def before(&block)
+          @before_filters << block if block
+        end
+
+        def match(env)
+          method = env["REQUEST_METHOD"]
+          path = env["PATH_INFO"] || "/"
+          script_name = env["SCRIPT_NAME"] || ""
+
+          # Remove script_name prefix if present
+          path = path[script_name.length..] || "/" if script_name && !script_name.empty? && path.start_with?(script_name)
+
+          route = find_route(method, path)
+          return nil unless route
+
+          {
+            handler: route[:handler],
+            params: route[:params],
+            before_filters: @before_filters
+          }
+        end
+
+        private
+
+        def add_route(method, path_pattern, handler)
+          # Convert path patterns to regex
+          # Example: "/api/versions/:id" -> /^\/api\/versions\/(?<id>[^\/]+)$/
+          # Handle wildcard "*" for catch-all routes
+          regex_pattern = if path_pattern == "*"
+                            ".*"
+                          else
+                            path_pattern
+                              .gsub(%r{:[^/]+}) { |match| "(?<#{match[1..]}>[^/]+)" }
+                              .gsub("*", ".*")
+                          end
+          regex = /^#{regex_pattern}$/
+
+          @routes << {
+            method: method,
+            pattern: regex,
+            handler: handler,
+            path_pattern: path_pattern
+          }
+        end
+
+        def find_route(method, path)
+          # Try exact match first, then try routes in order
+          # More specific routes should be registered first
+          @routes.each do |route|
+            next unless [method, "*"].include?(route[:method])
+
+            match = route[:pattern].match(path)
+            next unless match
+
+            params = match.named_captures || {}
+            params.transform_keys!(&:to_sym) if params.any?
+            return {
+              handler: route[:handler],
+              params: params
+            }
+          end
+          nil
+        end
+      end
+    end
+  end
+end

data/lib/decision_agent/web/rack_request_helpers.rb

@@ -0,0 +1,196 @@
+# frozen_string_literal: true
+
+# Request/Response helpers for Rack applications
+# Provides convenience methods for handling requests and responses
+
+require "rack"
+require "rack/utils"
+require "uri"
+
+module DecisionAgent
+  module Web
+    module RackRequestHelpers
+      # Context object that provides convenience methods in route handlers
+      class RequestContext
+        attr_reader :env, :request, :response_status, :response_headers, :response_body, :halted_response
+        attr_accessor :current_user, :current_session
+
+        def initialize(env, route_params = {})
+          @env = env
+          @request = Rack::Request.new(env)
+          @route_params = route_params
+          @response_status = 200
+          @response_headers = { "Content-Type" => "text/html" }
+          @response_body = []
+          @halted = false
+          @halted_response = nil
+          @params_hybrid = nil
+
+          # Merge route params, query params, and body params
+          # Convert all keys to symbols for consistency
+          route_params_sym = route_params.transform_keys(&:to_sym)
+          query_params_sym = query_params.transform_keys(&:to_sym)
+          body_params_sym = body_params.transform_keys(&:to_sym)
+          @params = route_params_sym.merge(query_params_sym).merge(body_params_sym)
+
+          # Handle multipart form data (file uploads)
+          content_type_header = @env["CONTENT_TYPE"] || ""
+          return unless content_type_header.include?("multipart/form-data")
+
+          # Rack::Request handles multipart automatically
+          multipart_params = @request.params
+          multipart_params_sym = multipart_params.transform_keys(&:to_sym)
+          @params.merge!(multipart_params_sym)
+        end
+
+        def params
+          # Return params with support for both symbol and string key access
+          @params ||= begin
+            hash = @params.dup
+            # Add string-key versions for all symbol keys
+            @params.each do |k, v|
+              hash[k.to_s] = v if k.is_a?(Symbol)
+            end
+            # Add symbol-key versions for all string keys
+            hash.to_a.each do |k, v|
+              hash[k.to_sym] = v if k.is_a?(String) && !hash.key?(k.to_sym)
+            end
+            # Create accessor that checks both
+            def hash.[](key)
+              super(key.to_sym) || super(key.to_s) || super
+            end
+            hash
+          end
+        end
+
+        def status(code)
+          @response_status = code
+          code
+        end
+
+        def content_type(type)
+          @response_headers["Content-Type"] = type
+        end
+
+        def headers
+          @response_headers
+        end
+
+        def body(str = nil)
+          if str
+            @response_body = [str.to_s]
+            str
+          else
+            @response_body
+          end
+        end
+
+        def json(obj)
+          content_type "application/json"
+          body(obj.to_json)
+        end
+
+        def halt(status_code, body = nil)
+          @halted = true
+          @response_status = status_code
+          if body
+            content_type "application/json" if @response_headers["Content-Type"] == "text/html"
+            @halted_response = [status_code, @response_headers.dup, [body.to_s]]
+          else
+            @halted_response = [status_code, @response_headers.dup, []]
+          end
+        end
+
+        def halted?
+          @halted
+        end
+
+        def send_file(filepath)
+          return unless File.exist?(filepath)
+
+          content = File.read(filepath)
+          ext = File.extname(filepath).downcase
+          mime_types = {
+            ".css" => "text/css",
+            ".js" => "application/javascript",
+            ".html" => "text/html",
+            ".json" => "application/json",
+            ".xml" => "application/xml",
+            ".svg" => "image/svg+xml"
+          }
+          content_type(mime_types[ext] || "application/octet-stream")
+          body(content)
+        end
+
+        def script_name
+          @request.script_name
+        end
+
+        def path_info
+          @request.path_info
+        end
+
+        def cookies
+          @request.cookies
+        end
+
+        def to_rack_response
+          if @halted && @halted_response
+            @halted_response
+          else
+            # Ensure body is an array
+            body_array = @response_body.is_a?(Array) ? @response_body : [@response_body.to_s]
+            body_array = [""] if body_array.empty?
+            [@response_status, @response_headers.dup, body_array]
+          end
+        end
+
+        private
+
+        def query_params
+          @request.params
+        end
+
+        def body_params
+          return {} unless @env["rack.input"]
+
+          # Read body if content type is JSON or form data
+          content_type_header = @env["CONTENT_TYPE"] || ""
+          body_input = @env["rack.input"].read
+          @env["rack.input"].rewind
+
+          return {} if body_input.nil? || body_input.empty?
+
+          if content_type_header.include?("application/json")
+            begin
+              parsed = JSON.parse(body_input)
+              # Convert string keys to symbol keys for consistency
+              parsed.is_a?(Hash) ? parsed.transform_keys(&:to_sym) : parsed
+            rescue JSON::ParserError
+              {}
+            end
+          elsif content_type_header.include?("application/x-www-form-urlencoded")
+            parsed = Rack::Utils.parse_nested_query(body_input)
+            parsed.is_a?(Hash) ? parsed.transform_keys(&:to_sym) : parsed
+          elsif content_type_header.include?("multipart/form-data")
+            # For multipart, use Rack::Request.params which handles it automatically
+            # This will be merged in initialize
+            {}
+          else
+            {}
+          end
+        end
+      end
+
+      # Helper to read request body as string
+      def self.read_body(env)
+        input = env["rack.input"]
+        return "" unless input
+
+        body = input.read
+        input.rewind
+        body.to_s
+      end
+    end
+  end
+end