hokipoki 0.3.4 → 0.5.1

data/lib/generators/hokipoki/install_generator.rb

@@ -0,0 +1,515 @@
+# frozen_string_literal: true
+
+require 'rails/generators'
+require 'rails/generators/base'
+
+module Hokipoki
+  module Generators
+    # Hokipoki Install Generator - Sets up core gem dependencies and OTP authentication
+    # Command: rails g hokipoki:install
+    class InstallGenerator < Rails::Generators::Base
+      source_root File.expand_path('templates', __dir__)
+
+      class_option :skip_otp, type: :boolean, default: false,
+                   desc: 'Skip OTP setup (not recommended for production)'
+
+      class_option :auth_provider, type: :string, default: 'github',
+                   desc: 'Authentication provider (github, totp, both)'
+
+      class_option :force_install, type: :boolean, default: false,
+                   desc: 'Force installation even if components exist'
+
+      def display_installation_banner
+        say "\n🔐 HOKIPOKI INSTALLATION SYSTEM", :cyan
+        say "=" * 60, :cyan
+        say "Setting up parasitic intelligence framework...", :white
+        say "This will configure authentication, dependencies, and core components.", :yellow
+        say ""
+      end
+
+      def check_rails_environment
+        unless defined?(Rails)
+          say "❌ Rails environment required", :red
+          say "Please run this generator from a Rails application directory.", :yellow
+          exit(1)
+        end
+
+        say "✅ Rails detected: #{Rails.version} (#{Rails.env})", :green
+        say "📁 Project: #{Rails.application.class.module_parent_name}", :white
+        say ""
+      end
+
+      def check_existing_installation
+        if File.exist?('config/initializers/hokipoki.rb') && !options[:force_install]
+          say "⚠️  Hokipoki already installed", :yellow
+          say "Use --force-install to reinstall", :white
+          say ""
+          return
+        end
+      end
+
+      def install_core_dependencies
+        say "📦 INSTALLING CORE DEPENDENCIES:", :cyan
+
+        # Add required gems to Gemfile
+        gems_to_add = [
+          { name: 'rotp', version: '~> 7.0', comment: 'For TOTP generation/verification' },
+          { name: 'rqrcode', version: '~> 2.2', comment: 'For QR codes' },
+          { name: 'sqlite3', version: '~> 1.4', comment: 'For vector database' },
+          { name: 'pastel', version: '~> 0.8', comment: 'For colored console output' }
+        ]
+
+        if options[:auth_provider].include?('github')
+          gems_to_add << { name: 'omniauth-github', version: '~> 2.0', comment: 'For GitHub OAuth' }
+          gems_to_add << { name: 'omniauth-rails_csrf_protection', version: '~> 1.0', comment: 'CSRF protection for OAuth' }
+        end
+
+        add_gems_to_gemfile(gems_to_add)
+
+        say "  ✅ Dependencies added to Gemfile", :green
+        say "  📝 Run: bundle install", :yellow
+        say ""
+      end
+
+      def setup_encryption_keys
+        say "🔐 SETTING UP ENCRYPTION:", :cyan
+
+        # Generate Rails encryption key if not exists
+        if !Rails.application.credentials.secret_key_base
+          say "  🔑 Generating Rails encryption keys...", :white
+
+          # Create master key if it doesn't exist
+          unless File.exist?('config/master.key')
+            master_key = SecureRandom.hex(32)
+            create_file 'config/master.key', master_key
+            say "  ✅ Created config/master.key", :green
+          end
+
+          # Set up credentials for OTP
+          credentials_content = {
+            hokipoki: {
+              otp_encryption_key: SecureRandom.hex(32),
+              vector_encryption_key: SecureRandom.hex(32)
+            }
+          }
+
+          if options[:auth_provider].include?('github')
+            credentials_content[:hokipoki][:github] = {
+              client_id: 'your_github_client_id_here',
+              client_secret: 'your_github_client_secret_here'
+            }
+          end
+
+          # We'll prompt user to set up credentials manually
+          say "  📝 Credentials setup required - see installation steps below", :yellow
+        end
+
+        say "  ✅ Encryption configuration ready", :green
+        say ""
+      end
+
+      def create_hokipoki_initializer
+        say "⚙️  CREATING INITIALIZER:", :cyan
+
+        create_file "config/initializers/hokipoki.rb", <<~RUBY
+          # Hokipoki Configuration
+          # Generated by: rails g hokipoki:install
+
+          Hokipoki.configure do |config|
+            # Core settings
+            config.enabled = true
+            config.environment = Rails.env
+
+            # Authentication settings
+            config.require_otp = #{!options[:skip_otp]}
+            config.auth_provider = '#{options[:auth_provider]}'
+
+            # Vector database settings
+            config.vector_storage = :sqlite
+            config.vector_db_path = File.expand_path('~/.hokipoki/vectors.db')
+
+            # Parasite settings
+            config.parasite_mode = :auto_detect
+            config.claude_detection = :enhanced
+            config.visible_output = true
+
+            # Token budget management
+            config.max_context_tokens = 1500
+            config.max_response_tokens = 1000
+            config.total_token_budget = 3000
+
+            # Compression settings
+            config.template_compression = true
+            config.atomic_facts = true
+            config.compression_target = 0.75  # 75% reduction
+
+            # Security settings
+            config.encryption_key = Rails.application.credentials.dig(:hokipoki, :otp_encryption_key)
+            config.vector_encryption = Rails.application.credentials.dig(:hokipoki, :vector_encryption_key)
+
+            # GitHub OAuth (if enabled)
+            if config.auth_provider.include?('github')
+              config.github_client_id = Rails.application.credentials.dig(:hokipoki, :github, :client_id)
+              config.github_client_secret = Rails.application.credentials.dig(:hokipoki, :github, :client_secret)
+            end
+
+            # Development settings
+            if Rails.env.development?
+              config.debug_mode = true
+              config.verbose_logging = true
+            end
+          end
+
+          # Auto-load intelligence components
+          if Rails.env.development?
+            Rails.application.config.after_initialize do
+              Thread.new do
+                sleep(1) # Let Rails fully initialize
+
+                begin
+                  # Display startup banner
+                  puts "\\n🧠 HOKIPOKI: Parasitic intelligence framework loaded"
+                  puts "🦠 Status: Ready for enhanced Claude interactions"
+
+                  # Auto-detect Claude CLI
+                  if Hokipoki.claude_parasite_active?
+                    puts "✅ Claude CLI detected: Enhanced intelligence active"
+                    puts "🎯 Next: Run 'rails g hive_mind:install' for full setup"
+                  else
+                    puts "⚠️  Claude CLI not detected: Run when using Claude"
+                  end
+
+                  puts ""
+                rescue => e
+                  Rails.logger.error "🦠 Hokipoki startup error: \#{e.message}"
+                end
+              end
+            end
+          end
+        RUBY
+
+        say "  ✅ Created config/initializers/hokipoki.rb", :green
+        say ""
+      end
+
+      def setup_otp_authentication
+        return if options[:skip_otp]
+
+        say "🔐 SETTING UP OTP AUTHENTICATION:", :cyan
+
+        # Create OTP model
+        create_otp_model
+
+        # Create OTP controller
+        create_otp_controller
+
+        # Add routes
+        setup_otp_routes
+
+        # Create views
+        create_otp_views
+
+        say "  ✅ OTP authentication configured", :green
+        say ""
+      end
+
+      def create_vector_storage
+        say "🧠 SETTING UP VECTOR STORAGE:", :cyan
+
+        # Create vector storage directory
+        vector_dir = File.expand_path('~/.hokipoki')
+        FileUtils.mkdir_p(vector_dir) unless Dir.exist?(vector_dir)
+
+        # Create initial configuration
+        config_file = File.join(vector_dir, 'config.yml')
+        config_data = {
+          version: Hokipoki::VERSION,
+          installation_date: Time.current.iso8601,
+          project_name: Rails.application.class.module_parent_name,
+          project_path: Rails.root.to_s,
+          auth_provider: options[:auth_provider],
+          otp_enabled: !options[:skip_otp]
+        }
+
+        File.write(config_file, config_data.to_yaml)
+
+        say "  ✅ Vector storage directory: #{vector_dir}", :green
+        say "  📝 Configuration: #{config_file}", :white
+        say ""
+      end
+
+      def display_next_steps
+        say "🎉 HOKIPOKI CORE INSTALLATION COMPLETE!", :green
+        say "=" * 60, :green
+        say ""
+        say "📋 NEXT STEPS:", :cyan
+        say ""
+        say "1. 📦 Install dependencies:", :white
+        say "   bundle install", :yellow
+        say ""
+        say "2. 🔐 Configure credentials (REQUIRED):", :white
+        say "   EDITOR=nano rails credentials:edit", :yellow
+        say ""
+        say "   Add this structure:", :white
+        say credentials_template, :yellow
+        say ""
+        say "3. 🗄️  Run database migrations:", :white
+        say "   rails db:migrate", :yellow
+        say ""
+        say "4. 🧠 Install HiveMind intelligence:", :white
+        say "   rails g hive_mind:install", :yellow
+        say ""
+        say "5. 🦠 Attach parasite (after HiveMind):", :white
+        say "   rails g hokipoki:attach_parasite", :yellow
+        say ""
+        say "🔧 TROUBLESHOOTING:", :cyan
+        say "  - If bundle fails: Check Ruby version compatibility", :white
+        say "  - If credentials fail: Ensure master.key exists", :white
+        say "  - If GitHub OAuth needed: Set up GitHub app first", :white
+        say ""
+        say "📚 DOCUMENTATION:", :cyan
+        say "  - GitHub OAuth setup: https://docs.github.com/en/apps/oauth-apps", :white
+        say "  - Rails credentials: https://guides.rubyonrails.org/security.html#custom-credentials", :white
+        say ""
+      end
+
+      private
+
+      def add_gems_to_gemfile(gems)
+        gemfile_path = 'Gemfile'
+
+        gems.each do |gem_info|
+          gem_line = "gem '#{gem_info[:name]}', '#{gem_info[:version]}'  # #{gem_info[:comment]}"
+
+          # Check if gem already exists
+          if File.read(gemfile_path).include?("gem '#{gem_info[:name]}'")
+            say "  ⏭️  #{gem_info[:name]} already in Gemfile", :yellow
+          else
+            append_to_file gemfile_path, "\n#{gem_line}"
+            say "  ✅ Added #{gem_info[:name]} #{gem_info[:version]}", :green
+          end
+        end
+      end
+
+      def create_otp_model
+        migration_name = "CreateHokipokiOtpUsers"
+        migration_file = "db/migrate/#{timestamp}_create_hokipoki_otp_users.rb"
+
+        create_file migration_file, <<~RUBY
+          class CreateHokipokiOtpUsers < ActiveRecord::Migration[7.0]
+            def change
+              create_table :hokipoki_otp_users do |t|
+                t.string :email, null: false
+                t.string :encrypted_otp_secret
+                t.boolean :otp_enabled, default: false
+                t.string :backup_codes, array: true, default: []
+                t.datetime :last_otp_at
+                t.integer :failed_attempts, default: 0
+                t.datetime :locked_until
+
+                t.timestamps
+              end
+
+              add_index :hokipoki_otp_users, :email, unique: true
+            end
+          end
+        RUBY
+
+        # Create model file
+        create_file "app/models/hokipoki_otp_user.rb", <<~RUBY
+          class HokipokiOtpUser < ApplicationRecord
+            validates :email, presence: true, uniqueness: true
+
+            def generate_otp_secret
+              self.encrypted_otp_secret = encrypt_otp_secret(ROTP::Base32.random)
+              save!
+            end
+
+            def otp_code
+              return nil unless encrypted_otp_secret
+
+              secret = decrypt_otp_secret(encrypted_otp_secret)
+              ROTP::TOTP.new(secret)
+            end
+
+            def verify_otp(code)
+              return false unless otp_enabled? && otp_code
+
+              if otp_code.verify(code, drift: 30)
+                update!(last_otp_at: Time.current, failed_attempts: 0)
+                true
+              else
+                increment!(:failed_attempts)
+                false
+              end
+            end
+
+            def qr_code_uri(issuer = 'Hokipoki')
+              return nil unless encrypted_otp_secret
+
+              secret = decrypt_otp_secret(encrypted_otp_secret)
+              ROTP::TOTP.new(secret).provisioning_uri(email, issuer_name: issuer)
+            end
+
+            def generate_backup_codes
+              codes = 8.times.map { SecureRandom.hex(4).upcase }
+              self.backup_codes = codes
+              save!
+              codes
+            end
+
+            private
+
+            def encrypt_otp_secret(secret)
+              key = Hokipoki.config.encryption_key
+              crypt = ActiveSupport::MessageEncryptor.new(key[0..31])
+              crypt.encrypt_and_sign(secret)
+            end
+
+            def decrypt_otp_secret(encrypted_secret)
+              key = Hokipoki.config.encryption_key
+              crypt = ActiveSupport::MessageEncryptor.new(key[0..31])
+              crypt.decrypt_and_verify(encrypted_secret)
+            end
+          end
+        RUBY
+      end
+
+      def create_otp_controller
+        create_file "app/controllers/hokipoki/otp_controller.rb", <<~RUBY
+          class Hokipoki::OtpController < ApplicationController
+            before_action :authenticate_user!
+            before_action :find_otp_user
+
+            def show
+              if @otp_user.otp_enabled?
+                redirect_to hokipoki_otp_verify_path
+              else
+                @otp_user.generate_otp_secret unless @otp_user.encrypted_otp_secret
+                @qr_code = generate_qr_code(@otp_user.qr_code_uri)
+              end
+            end
+
+            def enable
+              if @otp_user.verify_otp(params[:otp_code])
+                @otp_user.update!(otp_enabled: true)
+                @backup_codes = @otp_user.generate_backup_codes
+                flash[:notice] = 'Two-factor authentication enabled successfully!'
+                render :backup_codes
+              else
+                flash.now[:alert] = 'Invalid verification code'
+                render :show
+              end
+            end
+
+            def verify
+              # Verification logic for enabled OTP
+            end
+
+            def disable
+              if @otp_user.verify_otp(params[:otp_code])
+                @otp_user.update!(otp_enabled: false, encrypted_otp_secret: nil)
+                flash[:notice] = 'Two-factor authentication disabled'
+                redirect_to root_path
+              else
+                flash.now[:alert] = 'Invalid verification code'
+                render :verify
+              end
+            end
+
+            private
+
+            def find_otp_user
+              @otp_user = HokipokiOtpUser.find_or_create_by(email: current_user.email)
+            end
+
+            def generate_qr_code(uri)
+              qr = RQRCode::QRCode.new(uri)
+              qr.as_svg(module_size: 4)
+            end
+          end
+        RUBY
+      end
+
+      def setup_otp_routes
+        route_content = <<~RUBY
+
+          # Hokipoki OTP routes
+          namespace :hokipoki do
+            resource :otp, only: [:show] do
+              post :enable
+              get :verify
+              delete :disable
+            end
+          end
+        RUBY
+
+        append_to_file 'config/routes.rb', route_content
+      end
+
+      def create_otp_views
+        # Create views directory
+        empty_directory "app/views/hokipoki"
+        empty_directory "app/views/hokipoki/otp"
+
+        # Show view (setup)
+        create_file "app/views/hokipoki/otp/show.html.erb", <<~ERB
+          <div class="hokipoki-otp-setup">
+            <h2>🔐 Set Up Two-Factor Authentication</h2>
+
+            <div class="setup-instructions">
+              <h3>Step 1: Install an authenticator app</h3>
+              <p>Download an app like Google Authenticator, Authy, or 1Password on your phone.</p>
+
+              <h3>Step 2: Scan this QR code</h3>
+              <div class="qr-code">
+                <%= @qr_code.html_safe %>
+              </div>
+
+              <h3>Step 3: Enter the 6-digit code</h3>
+              <%= form_with url: hokipoki_otp_enable_path, method: :post do |form| %>
+                <%= form.text_field :otp_code, placeholder: "000000", maxlength: 6, required: true %>
+                <%= form.submit "Enable Two-Factor Authentication", class: "btn btn-primary" %>
+              <% end %>
+            </div>
+          </div>
+        ERB
+
+        # Backup codes view
+        create_file "app/views/hokipoki/otp/backup_codes.html.erb", <<~ERB
+          <div class="hokipoki-backup-codes">
+            <h2>🔐 Your Backup Codes</h2>
+
+            <div class="alert alert-warning">
+              <strong>Important:</strong> Save these backup codes in a safe place.
+              You can use them to access your account if you lose your phone.
+            </div>
+
+            <div class="backup-codes">
+              <% @backup_codes.each do |code| %>
+                <code><%= code %></code>
+              <% end %>
+            </div>
+
+            <%= link_to "Continue", root_path, class: "btn btn-primary" %>
+          </div>
+        ERB
+      end
+
+      def credentials_template
+        <<~YAML
+          hokipoki:
+            otp_encryption_key: #{SecureRandom.hex(32)}
+            vector_encryption_key: #{SecureRandom.hex(32)}
+            github:
+              client_id: your_github_client_id_here
+              client_secret: your_github_client_secret_here
+        YAML
+      end
+
+      def timestamp
+        Time.current.strftime("%Y%m%d%H%M%S")
+      end
+    end
+  end
+end