npm - @a5c-ai/kradle - Versions diffs - 5.0.1-staging.3abdf9534c25 - Mend

@a5c-ai/kradle 5.0.1-staging.3abdf9534c25

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (295) hide show

package/Dockerfile +31 -0
package/README.md +187 -0
package/bin/kradle-demo.mjs +23 -0
package/bin/kradle-server.mjs +14 -0
package/dist/kradle-controller-ui.json +3482 -0
package/dist/kradle-lifecycle.json +201 -0
package/dist/kradle-runtime-snapshot.json +3125 -0
package/dist/kradle-summary.json +724 -0
package/docs/README.md +61 -0
package/docs/agents/README.md +83 -0
package/docs/agents/acceptance-test-matrix.md +193 -0
package/docs/agents/agent-mux-adapter-contract.md +167 -0
package/docs/agents/agent-mux-source-map.md +310 -0
package/docs/agents/agent-run-memory-import-spec.md +256 -0
package/docs/agents/agent-stack-management-spec.md +421 -0
package/docs/agents/api-contract-spec.md +309 -0
package/docs/agents/artifacts-writeback-spec.md +145 -0
package/docs/agents/chart-packaging-spec.md +128 -0
package/docs/agents/ci-orchestration-spec.md +140 -0
package/docs/agents/context-assembly-spec.md +219 -0
package/docs/agents/controller-reconciliation-spec.md +255 -0
package/docs/agents/crd-schema-spec.md +315 -0
package/docs/agents/decision-log-open-questions.md +169 -0
package/docs/agents/developer-implementation-checklist.md +329 -0
package/docs/agents/dispatching-design.md +262 -0
package/docs/agents/gaps-agent-mux-to-kradle-crds.md +298 -0
package/docs/agents/glossary.md +66 -0
package/docs/agents/implementation-blueprint.md +324 -0
package/docs/agents/implementation-rollout-slices.md +251 -0
package/docs/agents/memory-context-integration-spec.md +194 -0
package/docs/agents/memory-ontology-schema-spec.md +253 -0
package/docs/agents/memory-operations-runbook.md +121 -0
package/docs/agents/mvp-vertical-slice-spec.md +146 -0
package/docs/agents/observability-audit-spec.md +265 -0
package/docs/agents/operator-runbook.md +174 -0
package/docs/agents/org-memory-api-payload-examples.md +333 -0
package/docs/agents/org-memory-controller-sequence-spec.md +181 -0
package/docs/agents/org-memory-e2e-fixture-plan.md +161 -0
package/docs/agents/org-memory-ui-implementation-map.md +114 -0
package/docs/agents/org-memory-vertical-slice-spec.md +168 -0
package/docs/agents/org-resource-model-delta-spec.md +111 -0
package/docs/agents/org-route-resource-model-spec.md +183 -0
package/docs/agents/org-scoping-namespace-spec.md +114 -0
package/docs/agents/rbac-secrets-management-spec.md +406 -0
package/docs/agents/repository-page-integration-spec.md +255 -0
package/docs/agents/resource-contract-examples.md +808 -0
package/docs/agents/resource-relationship-map.md +190 -0
package/docs/agents/security-threat-model.md +188 -0
package/docs/agents/shared-memory-company-brain-spec.md +358 -0
package/docs/agents/storage-migration-spec.md +168 -0
package/docs/agents/subagent-orchestration-spec.md +152 -0
package/docs/agents/system-overview.md +88 -0
package/docs/agents/tools-mcp-skills-spec.md +189 -0
package/docs/agents/traceability-matrix.md +79 -0
package/docs/agents/ui-flow-spec.md +211 -0
package/docs/agents/ui-ux-system-spec.md +426 -0
package/docs/agents/workspace-lifecycle-spec.md +166 -0
package/docs/architecture-spec.md +78 -0
package/docs/architecture-v2.md +2759 -0
package/docs/components/control-plane.md +78 -0
package/docs/components/data-plane.md +69 -0
package/docs/components/hooks-events.md +67 -0
package/docs/components/identity-rbac-policy.md +73 -0
package/docs/components/kubevela-oam.md +70 -0
package/docs/components/operations-publishing.md +81 -0
package/docs/components/runners-ci.md +66 -0
package/docs/components/web-ui.md +94 -0
package/docs/crd-behaviors-and-relationships.md +3926 -0
package/docs/external/README.md +47 -0
package/docs/external/bidirectional-sync-design.md +134 -0
package/docs/external/cicd-interface.md +64 -0
package/docs/external/external-backend-controllers.md +170 -0
package/docs/external/external-backend-crds.md +234 -0
package/docs/external/external-backend-ui-spec.md +151 -0
package/docs/external/external-backend-ux-flows.md +115 -0
package/docs/external/external-object-mapping.md +125 -0
package/docs/external/git-forge-interface.md +68 -0
package/docs/external/github-integration-design.md +151 -0
package/docs/external/issue-tracking-interface.md +66 -0
package/docs/external/provider-capability-manifests.md +204 -0
package/docs/external/provider-catalog.md +139 -0
package/docs/external/provider-rollout-testing.md +78 -0
package/docs/external/research-results.md +48 -0
package/docs/external/security-auth-permissions.md +81 -0
package/docs/external/sync-state-machines.md +108 -0
package/docs/external/unified-external-backend-model.md +107 -0
package/docs/external/user-facing-changes.md +67 -0
package/docs/gaps.md +161 -0
package/docs/install.md +94 -0
package/docs/integration-and-design-decisions.md +1530 -0
package/docs/kradle-design.md +334 -0
package/docs/local-minikube.md +55 -0
package/docs/ontology/README.md +32 -0
package/docs/ontology/bounded-contexts.md +29 -0
package/docs/ontology/events-and-hooks.md +32 -0
package/docs/ontology/oam-kubevela.md +32 -0
package/docs/ontology/operations-and-release.md +25 -0
package/docs/ontology/personas-and-actors.md +32 -0
package/docs/ontology/policies-and-invariants.md +33 -0
package/docs/ontology/problem-space.md +30 -0
package/docs/ontology/resource-contracts.md +40 -0
package/docs/ontology/resource-taxonomy.md +42 -0
package/docs/ontology/runners-and-ci.md +29 -0
package/docs/ontology/solution-space.md +24 -0
package/docs/ontology/storage-and-data-boundaries.md +29 -0
package/docs/ontology/validation-matrix.md +24 -0
package/docs/ontology/web-ui-excellent-flows.md +32 -0
package/docs/ontology/workflows.md +39 -0
package/docs/ontology/world.md +35 -0
package/docs/openapi.yaml +1291 -0
package/docs/product-requirements.md +62 -0
package/docs/requirements-v2.md +235 -0
package/docs/roadmap-mvp.md +87 -0
package/docs/sdk-api-reference.md +1108 -0
package/docs/system-requirements.md +90 -0
package/docs/system-spec-v2.md +1230 -0
package/docs/tests/README.md +53 -0
package/docs/tests/agent-qa-plan.md +63 -0
package/docs/tests/browser-ui-tests.md +62 -0
package/docs/tests/ci-quality-gates.md +48 -0
package/docs/tests/coverage-model.md +64 -0
package/docs/tests/e2e-scenario-tests.md +53 -0
package/docs/tests/fixtures-test-data.md +63 -0
package/docs/tests/observability-reliability-tests.md +54 -0
package/docs/tests/product-test-matrix.md +145 -0
package/docs/tests/qa-adoption-roadmap.md +130 -0
package/docs/tests/qa-automation-plan.md +101 -0
package/docs/tests/security-compliance-tests.md +57 -0
package/docs/tests/test-framework-tools.md +88 -0
package/docs/tests/test-suite-layout.md +121 -0
package/docs/tests/unit-integration-tests.md +48 -0
package/docs/todo-kyverno +714 -0
package/docs/todos.md +4 -0
package/docs/user-stories.md +78 -0
package/docs/web-console-spec.md +533 -0
package/examples/minikube-demo.yaml +190 -0
package/examples/oam-application.yaml +23 -0
package/examples/policy-kyverno-pr-title.yaml +18 -0
package/package.json +66 -0
package/scripts/build.mjs +29 -0
package/scripts/setup-minikube.mjs +65 -0
package/scripts/smoke.mjs +37 -0
package/scripts/validate-doc-coverage.mjs +152 -0
package/scripts/validate-package.mjs +95 -0
package/scripts/validate-ui.mjs +305 -0
package/src/agent-adapter-controller.js +169 -0
package/src/agent-approval-controller.js +170 -0
package/src/agent-context-bundles.js +242 -0
package/src/agent-dispatch-controller.js +549 -0
package/src/agent-gateway-config-controller.js +147 -0
package/src/agent-identity-migration.js +115 -0
package/src/agent-memory-controller.js +357 -0
package/src/agent-memory-import.js +327 -0
package/src/agent-memory-query.js +292 -0
package/src/agent-memory-repository-source-controller.js +255 -0
package/src/agent-mux-client.js +589 -0
package/src/agent-permission-review.js +250 -0
package/src/agent-persona-controller.js +135 -0
package/src/agent-project-controller.js +117 -0
package/src/agent-prompt-composition.js +55 -0
package/src/agent-provider-config-controller.js +151 -0
package/src/agent-secret-config-grant-controller.js +282 -0
package/src/agent-session-transcript-controller.js +189 -0
package/src/agent-stack-controller.js +421 -0
package/src/agent-subagent-controller.js +160 -0
package/src/agent-transport-binding-controller.js +121 -0
package/src/agent-trigger-controller.js +387 -0
package/src/agent-workspace-controller.js +702 -0
package/src/agent-writeback-controller.js +302 -0
package/src/api-controller.js +621 -0
package/src/argocd-gitops.js +43 -0
package/src/artifact-registry-controller.js +542 -0
package/src/assistant-runtime.js +284 -0
package/src/async-controller.js +207 -0
package/src/audit-controller.js +191 -0
package/src/auth.js +310 -0
package/src/component-catalog.js +41 -0
package/src/control-plane.js +136 -0
package/src/controller-client.js +112 -0
package/src/controller-ui.js +620 -0
package/src/data-plane.js +179 -0
package/src/event-bus.js +397 -0
package/src/external/conflict-controller.js +225 -0
package/src/external/github/auth.js +96 -0
package/src/external/github/cicd.js +180 -0
package/src/external/github/git-forge.js +240 -0
package/src/external/github/index.js +144 -0
package/src/external/github/issue-tracking.js +163 -0
package/src/external/provider-adapter.js +161 -0
package/src/external/provider-resource-factory.js +221 -0
package/src/external/sync-controller.js +235 -0
package/src/external/webhook-controller.js +144 -0
package/src/external/write-controller.js +283 -0
package/src/gitea-backend.js +131 -0
package/src/gitea-service.js +173 -0
package/src/handoff.js +98 -0
package/src/health-probes.js +134 -0
package/src/hooks-events.js +63 -0
package/src/hooks-lifecycle.js +117 -0
package/src/http-server.js +409 -0
package/src/identity-policy.js +86 -0
package/src/index.js +71 -0
package/src/jitsi-agent-bridge.js +141 -0
package/src/jitsi-meeting-controller.js +291 -0
package/src/jitsi-sync-controller.js +198 -0
package/src/kradle-inference-service-controller.js +246 -0
package/src/kubernetes-controller-async.js +531 -0
package/src/kubernetes-controller.js +904 -0
package/src/kubernetes-resource-gateway.js +48 -0
package/src/model-route-controller.js +364 -0
package/src/notification-controller.js +178 -0
package/src/operations.js +112 -0
package/src/org-scoping.js +5 -0
package/src/resource-model.js +282 -0
package/src/runner-controller.js +272 -0
package/src/runners-ci.js +48 -0
package/src/runtime.js +196 -0
package/src/snapshot-cache.js +157 -0
package/src/virtual-model-controller.js +538 -0
package/src/virtual-model-hook-bridge.js +200 -0
package/src/web-ui.js +40 -0
package/tests/agent-adapter-controller.test.js +361 -0
package/tests/agent-approval-controller.test.js +173 -0
package/tests/agent-context-bundles.test.js +278 -0
package/tests/agent-dispatch-controller.test.js +679 -0
package/tests/agent-gateway-config-controller.test.js +386 -0
package/tests/agent-identity-migration.test.js +87 -0
package/tests/agent-memory-controller.test.js +461 -0
package/tests/agent-memory-import-snapshot.test.js +477 -0
package/tests/agent-memory-query.test.js +404 -0
package/tests/agent-memory-repository-source.test.js +514 -0
package/tests/agent-mux-client.test.js +389 -0
package/tests/agent-mux-integration.test.js +971 -0
package/tests/agent-permission-review-v2.test.js +317 -0
package/tests/agent-permission-review.test.js +209 -0
package/tests/agent-persona-controller.test.js +127 -0
package/tests/agent-project-controller.test.js +302 -0
package/tests/agent-prompt-composition.test.js +76 -0
package/tests/agent-provider-config-controller.test.js +376 -0
package/tests/agent-resources.test.js +303 -0
package/tests/agent-secret-config-grant.test.js +231 -0
package/tests/agent-session-transcript-controller.test.js +499 -0
package/tests/agent-stack-controller.test.js +283 -0
package/tests/agent-subagent-controller.test.js +201 -0
package/tests/agent-transport-binding-controller.test.js +294 -0
package/tests/agent-trigger-controller.test.js +271 -0
package/tests/agent-trigger-routes.test.js +190 -0
package/tests/agent-trigger-sources.test.js +245 -0
package/tests/agent-workspace-controller.test.js +181 -0
package/tests/agent-writeback.test.js +292 -0
package/tests/approval-persistence.test.js +171 -0
package/tests/artifact-registry.test.js +511 -0
package/tests/assistant-runtime.test.js +506 -0
package/tests/async-controller.test.js +252 -0
package/tests/audit-controller.test.js +227 -0
package/tests/codespace-controller.test.js +318 -0
package/tests/controller-client.test.js +133 -0
package/tests/deployment.test.js +527 -0
package/tests/e2e/lifecycle.test.js +120 -0
package/tests/event-bus-integration.test.js +355 -0
package/tests/external-github-forge.test.js +560 -0
package/tests/external-github-issues-cicd.test.js +520 -0
package/tests/external-integration.test.js +470 -0
package/tests/external-persistence.test.js +415 -0
package/tests/external-provider-adapter.test.js +365 -0
package/tests/external-resource-model.test.js +223 -0
package/tests/external-webhook-sync.test.js +287 -0
package/tests/external-write-conflict.test.js +353 -0
package/tests/gitea-service.test.js +253 -0
package/tests/health-check-real.test.js +165 -0
package/tests/health-probes.test.js +90 -0
package/tests/hooks-lifecycle.test.js +364 -0
package/tests/integration/full-flow.test.js +266 -0
package/tests/jitsi-agent-bridge.test.js +119 -0
package/tests/jitsi-helm-integration.test.js +77 -0
package/tests/jitsi-meeting-controller.test.js +170 -0
package/tests/jitsi-resource-model.test.js +73 -0
package/tests/jitsi-sync-controller.test.js +112 -0
package/tests/kradle-inference-service.test.js +689 -0
package/tests/kradle.test.js +779 -0
package/tests/memory-search-wiring.test.js +270 -0
package/tests/model-route-controller.test.js +733 -0
package/tests/notification-controller.test.js +196 -0
package/tests/notification-integration.test.js +179 -0
package/tests/org-scoping.test.js +687 -0
package/tests/runner-controller.test.js +327 -0
package/tests/runner-integration.test.js +231 -0
package/tests/session-cookie-hmac.test.js +151 -0
package/tests/snapshot-performance.test.js +315 -0
package/tests/sse-events.test.js +107 -0
package/tests/virtual-model-controller.test.js +877 -0
package/tests/virtual-model-hook-bridge.test.js +384 -0
package/tests/webhook-trigger.test.js +198 -0
package/tests/workspace-volumes.test.js +312 -0
package/tests/writeback-persistence.test.js +207 -0

package/src/jitsi-agent-bridge.js ADDED Viewed

@@ -0,0 +1,141 @@
+import crypto from 'node:crypto';
+const DEFAULT_SIDECAR_IMAGE = 'ghcr.io/a5c-ai/jitsi-agent-sidecar:latest';
+const SOCKET_PATH = '/tmp/jitsi-agent.sock';
+const DEFAULT_TTL_MINUTES = 60;
+function isoNow(now) {
+  return (typeof now === 'function' ? now() : new Date()).toISOString();
+}
+export function createJitsiAgentBridge(options = {}) {
+  const {
+    meetingController,
+    dispatchController,
+    eventBus,
+    sidecarImage = process.env.KRADLE_JITSI_AGENT_SIDECAR_IMAGE || DEFAULT_SIDECAR_IMAGE,
+    now = () => new Date(),
+  } = options;
+  async function resolveMeeting(meetingRef, resources = {}) {
+    const meeting = await meetingController?.getMeeting?.(meetingRef);
+    if (meeting) return meeting;
+    return (resources.JitsiMeeting || []).find((candidate) => (
+      candidate.metadata?.name === meetingRef || candidate.spec?.roomId === meetingRef
+    )) || null;
+  }
+  function generateParticipantJwt(roomId, participant, ttlMinutes) {
+    if (meetingController?.generateParticipantJwt) {
+      return meetingController.generateParticipantJwt(roomId, participant, ttlMinutes);
+    }
+    const exp = Math.floor(now().getTime() / 1000) + Math.max(1, Number(ttlMinutes) || DEFAULT_TTL_MINUTES) * 60;
+    const claims = {
+      aud: 'jitsi',
+      iss: 'kradle',
+      sub: participant.org || 'kradle',
+      room: roomId,
+      exp,
+      context: {
+        user: {
+          id: participant.id,
+          name: participant.name,
+          type: 'agent',
+          role: participant.role || 'observer',
+          avatar: participant.avatar || '',
+        },
+      },
+    };
+    const encoded = Buffer.from(JSON.stringify(claims)).toString('base64url');
+    const secret = process.env.KRADLE_JITSI_JWT_SECRET || process.env.JITSI_JWT_SECRET || 'dev-jitsi-secret';
+    const signature = crypto.createHmac('sha256', secret).update(encoded).digest('base64url');
+    return `kradle-jitsi.${encoded}.${signature}`;
+  }
+  return {
+    role: 'jitsi-agent-bridge',
+    hasMeetingCapability(stack) {
+      return stack?.spec?.jitsiCapability === true;
+    },
+    async prepareMeetingContext(dispatchRun, meetingRef, stack = {}, { resources = {} } = {}) {
+      if (!meetingRef) return null;
+      if (!this.hasMeetingCapability(stack)) return null;
+      const meeting = await resolveMeeting(meetingRef, resources);
+      if (!meeting || meeting.status?.phase !== 'Active') {
+        throw new Error(`Meeting ${meetingRef} is not active`);
+      }
+      const participantName = stack.spec?.jitsiConfig?.participantName || stack.metadata?.name || dispatchRun.metadata?.name;
+      const participant = {
+        id: dispatchRun.metadata?.name,
+        name: participantName,
+        type: 'agent',
+        role: stack.spec?.jitsiConfig?.role || 'observer',
+      };
+      const jwt = generateParticipantJwt(
+        meeting.spec.roomId,
+        participant,
+        meeting.spec.ttlMinutes || 120,
+      );
+      const context = {
+        roomUrl: meeting.status.roomUrl,
+        roomId: meeting.spec.roomId,
+        jwt,
+        participantName,
+        role: participant.role,
+        capabilities: stack.spec?.jitsiConfig?.capabilities || {},
+      };
+      dispatchRun.spec.meetingRef = meetingRef;
+      dispatchRun.spec.meetingContext = {
+        roomUrl: context.roomUrl,
+        roomId: context.roomId,
+        participantName: context.participantName,
+        role: context.role,
+        capabilities: context.capabilities,
+        tokenRef: { runtimeOnly: true },
+      };
+      return context;
+    },
+    buildSidecarSpec(meetingUrl, jwt, agentName, context = {}) {
+      const capabilities = context.capabilities || {};
+      return {
+        name: 'jitsi-agent-sidecar',
+        image: context.sidecarImage || sidecarImage,
+        env: [
+          { name: 'JITSI_ROOM_URL', value: meetingUrl },
+          { name: 'JITSI_JWT', value: jwt },
+          { name: 'JITSI_ROOM_ID', value: context.roomId || '' },
+          { name: 'JITSI_PARTICIPANT_NAME', value: agentName || 'Kradle Agent' },
+          { name: 'JITSI_PARTICIPANT_ROLE', value: context.role || 'observer' },
+          { name: 'JITSI_AUDIO_MODE', value: capabilities.audio || 'listen' },
+          { name: 'JITSI_CHAT_MODE', value: capabilities.chat || 'read' },
+          { name: 'AGENT_SOCKET_PATH', value: SOCKET_PATH },
+        ],
+        volumeMounts: [{ name: 'agent-socket', mountPath: '/tmp' }],
+        resources: {
+          requests: { cpu: '100m', memory: '256Mi' },
+          limits: { cpu: '500m', memory: '512Mi' },
+        },
+      };
+    },
+    async onAgentJoined(dispatchRunRef, meetingRef) {
+      const event = { type: 'agent-joined-meeting', dispatchRunRef, meetingRef, timestamp: isoNow(now) };
+      eventBus?.emit?.(event);
+      await dispatchController?.recordMeetingEvent?.(event);
+      return event;
+    },
+    async onAgentLeft(dispatchRunRef, meetingRef, reason = 'completed') {
+      const event = { type: 'agent-left-meeting', dispatchRunRef, meetingRef, reason, timestamp: isoNow(now) };
+      eventBus?.emit?.(event);
+      await dispatchController?.recordMeetingEvent?.(event);
+      const participantEvent = { type: 'participant-left', dispatchRunRef, meetingRef, participant: { id: dispatchRunRef, type: 'agent' }, reason, timestamp: event.timestamp };
+      eventBus?.emit?.(participantEvent);
+      await dispatchController?.recordMeetingEvent?.(participantEvent);
+      return event;
+    },
+  };
+}

package/src/jitsi-meeting-controller.js ADDED Viewed

@@ -0,0 +1,291 @@
+import crypto from 'node:crypto';
+import { createResource, validateResource, clone } from './resource-model.js';
+const DEFAULT_TTL_MINUTES = 60;
+function isoNow(now) {
+  return (typeof now === 'function' ? now() : new Date()).toISOString();
+}
+function epochSeconds(now, ttlMinutes) {
+  return Math.floor((typeof now === 'function' ? now() : new Date()).getTime() / 1000) + ttlMinutes * 60;
+}
+function encodeJwtSegment(value) {
+  return Buffer.from(JSON.stringify(value)).toString('base64url');
+}
+function signJwt(claims, secret) {
+  const header = encodeJwtSegment({ alg: 'HS256', typ: 'JWT' });
+  const payload = encodeJwtSegment(claims);
+  const signature = crypto.createHmac('sha256', secret).update(`${header}.${payload}`).digest('base64url');
+  return `${header}.${payload}.${signature}`;
+}
+export function createJitsiMeetingController(options = {}) {
+  const {
+    providerClient = {},
+    resourceGateway = null,
+    eventBus = null,
+    dispatchController = null,
+    jwtConfig = {},
+    jwtSecret = process.env.KRADLE_JITSI_JWT_SECRET || process.env.JITSI_JWT_SECRET || 'dev-jitsi-secret',
+    now = () => new Date(),
+  } = options;
+  async function listMeetings() {
+    const result = await resourceGateway?.list?.('JitsiMeeting');
+    return result?.items || (Array.isArray(result) ? result : []);
+  }
+  async function getMeeting(nameOrRoomId) {
+    const direct = await resourceGateway?.get?.('JitsiMeeting', nameOrRoomId);
+    if (direct) return direct;
+    return (await listMeetings()).find((meeting) => meeting.metadata?.name === nameOrRoomId || meeting.spec?.roomId === nameOrRoomId) || null;
+  }
+  async function getResource(kind, name) {
+    if (!name) return null;
+    return resourceGateway?.get?.(kind, name) || null;
+  }
+  async function persist(resource) {
+    if (resourceGateway?.apply) {
+      const result = await resourceGateway.apply(resource);
+      return result?.resource || resource;
+    }
+    return resource;
+  }
+  function emit(type, resource, extra = {}) {
+    eventBus?.emit?.({ type, resource, timestamp: isoNow(now), ...extra });
+  }
+  return {
+    role: 'jitsi-meeting-controller',
+    validate(resource) {
+      if (resource?.kind !== 'JitsiMeeting') throw new Error('Jitsi meeting controller validates JitsiMeeting resources only');
+      return validateResource(resource);
+    },
+    async createRoom(meetingSpec = {}) {
+      const roomId = meetingSpec.roomId;
+      if (!roomId) throw new Error('createRoom requires roomId');
+      const provider = await getResource('JitsiMeetProvider', meetingSpec.providerRef);
+      const template = await getResource('JitsiMeetingTemplate', meetingSpec.templateRef);
+      const mergedSpec = {
+        ...meetingSpec,
+        endpoint: meetingSpec.endpoint || provider?.spec?.endpoint,
+        ttlMinutes: meetingSpec.ttlMinutes || template?.spec?.ttlMinutes || provider?.spec?.defaultRoomTTL || DEFAULT_TTL_MINUTES,
+        roomConfig: {
+          ...(provider?.spec?.defaultRoomConfig || {}),
+          ...(template?.spec?.roomConfig || {}),
+          ...(meetingSpec.roomConfig || {}),
+        },
+      };
+      const providerResult = await providerClient.createRoom?.(mergedSpec) || {};
+      const resource = createResource('JitsiMeeting', {
+        name: meetingSpec.name || roomId,
+        namespace: meetingSpec.namespace || `kradle-org-${meetingSpec.organizationRef || 'default'}`,
+      }, {
+        organizationRef: meetingSpec.organizationRef || 'default',
+        providerRef: meetingSpec.providerRef || 'default',
+        templateRef: meetingSpec.templateRef,
+        roomId,
+        displayName: meetingSpec.displayName || roomId,
+        dispatchRunRef: meetingSpec.dispatchRunRef,
+        ttlMinutes: mergedSpec.ttlMinutes,
+        participants: clone(meetingSpec.participants || { invited: [] }),
+        roomConfig: clone(mergedSpec.roomConfig || {}),
+      }, {
+        phase: 'Active',
+        roomUrl: providerResult.roomUrl || meetingSpec.roomUrl || `${mergedSpec.endpoint || 'https://meet.kradle.local'}/${roomId}`,
+        startedAt: isoNow(now),
+        endedAt: null,
+        duration: null,
+        participants: { current: [], total: 0, peak: 0 },
+        recording: { active: false, recordingId: null },
+      });
+      this.validate(resource);
+      const persisted = await persist(resource);
+      emit('meeting-created', persisted, { roomId });
+      return persisted;
+    },
+    async endRoom(roomId) {
+      await providerClient.endRoom?.(roomId);
+      const meeting = await getMeeting(roomId);
+      if (!meeting) throw new Error(`JitsiMeeting for room ${roomId} not found`);
+      const endedAt = isoNow(now);
+      const updated = {
+        ...meeting,
+        status: {
+          ...(meeting.status || {}),
+          phase: 'Ended',
+          endedAt,
+        },
+      };
+      const persisted = await persist(updated);
+      emit('meeting-ended', persisted, { roomId });
+      return persisted;
+    },
+    generateParticipantJwt(roomId, participant = {}, ttlMinutes = DEFAULT_TTL_MINUTES, providerJwtConfig = {}) {
+      const config = { ...jwtConfig, ...providerJwtConfig, ...(participant.jwtConfig || {}) };
+      const claims = {
+        aud: config.audience || 'jitsi',
+        iss: config.issuer || 'kradle',
+        sub: config.subject || participant.subject || participant.org || 'kradle',
+        room: roomId,
+        exp: epochSeconds(now, Math.max(1, Number(ttlMinutes) || DEFAULT_TTL_MINUTES)),
+        context: {
+          user: {
+            id: participant.id || participant.ref || participant.name || 'kradle-user',
+            name: participant.name || participant.displayName || participant.id || 'Kradle user',
+            type: participant.type || 'user',
+            role: participant.role || 'participant',
+            avatar: participant.avatar || '',
+          },
+          features: participant.features || {},
+        },
+      };
+      return signJwt(claims, config.secret || jwtSecret);
+    },
+    async reconcile(meeting) {
+      this.validate(meeting);
+      const state = await providerClient.getRoom?.(meeting.spec.roomId) || {};
+      const currentTotal = Number(state.participantCount ?? meeting.status?.participants?.current?.length ?? 0);
+      const updated = {
+        ...meeting,
+        status: {
+          ...(meeting.status || {}),
+          phase: state.phase || meeting.status?.phase || 'Active',
+          participants: {
+            ...(meeting.status?.participants || {}),
+            total: currentTotal,
+            peak: Math.max(Number(meeting.status?.participants?.peak || 0), currentTotal),
+          },
+          lastReconciledAt: isoNow(now),
+        },
+      };
+      return persist(updated);
+    },
+    async listActiveMeetings(organizationRef) {
+      return (await listMeetings()).filter((meeting) => (
+        meeting.spec?.organizationRef === organizationRef && meeting.status?.phase === 'Active'
+      ));
+    },
+    async getMeeting(nameOrRoomId) {
+      return getMeeting(nameOrRoomId);
+    },
+    async getMeetingStats(roomId) {
+      return providerClient.getStats?.(roomId) || { active: false, participantCount: 0 };
+    },
+    async dispatchAutoJoinAgents(meetingRef, { resources = {}, repository = 'default', ref = 'main', actor = 'jitsi-meeting-controller', namespace = null } = {}) {
+      const meeting = typeof meetingRef === 'string' ? await getMeeting(meetingRef) : meetingRef;
+      if (!meeting) throw new Error(`JitsiMeeting ${meetingRef} not found`);
+      const template = meeting.spec?.templateRef
+        ? (resources.JitsiMeetingTemplate || []).find((candidate) => candidate.metadata?.name === meeting.spec.templateRef)
+        : null;
+      const autoJoin = meeting.spec?.agentConfig?.autoJoin === true || template?.spec?.agentConfig?.autoJoin === true;
+      if (!autoJoin) return [];
+      const participants = [
+        ...(meeting.spec?.participants?.autoInvite || []),
+        ...(template?.spec?.participants?.autoInvite || []),
+      ];
+      const dispatched = [];
+      for (const participant of participants) {
+        if (!['agentStack', 'agentDefinition'].includes(participant.type)) continue;
+        const result = await dispatchController?.createManualDispatch?.({
+          repository,
+          ref,
+          actor,
+          namespace: namespace || meeting.metadata?.namespace || 'default',
+          organizationRef: meeting.spec?.organizationRef || 'default',
+          meetingRef: meeting.metadata?.name,
+          resources,
+          taskKind: participant.taskKind || 'meeting',
+          ...(participant.type === 'agentDefinition' ? { agentDefinition: participant.ref } : { agentStack: participant.ref }),
+        });
+        if (result) dispatched.push(result);
+      }
+      return dispatched;
+    },
+    async startRecording(meetingRef) {
+      const meeting = await getMeeting(meetingRef);
+      if (!meeting) throw new Error(`JitsiMeeting ${meetingRef} not found`);
+      const result = await providerClient.startRecording?.(meeting.spec.roomId) || {};
+      const recordingId = result.recordingId || `rec-${meeting.metadata.name}`;
+      const recording = createResource('JitsiRecording', {
+        name: recordingId,
+        namespace: meeting.metadata?.namespace,
+      }, {
+        organizationRef: meeting.spec.organizationRef,
+        meetingRef: meeting.metadata.name,
+        providerRef: meeting.spec.providerRef,
+        format: result.format || 'mp4',
+        storageRef: result.storageRef,
+      }, {
+        phase: 'Recording',
+        startedAt: isoNow(now),
+        transcript: { available: false },
+      });
+      const updated = {
+        ...meeting,
+        status: {
+          ...(meeting.status || {}),
+          recording: { active: true, recordingId },
+        },
+      };
+      await persist(recording);
+      const persisted = await persist(updated);
+      emit('recording-started', persisted, { recordingId });
+      return persisted;
+    },
+    async stopRecording(meetingRef) {
+      const meeting = await getMeeting(meetingRef);
+      if (!meeting) throw new Error(`JitsiMeeting ${meetingRef} not found`);
+      const result = await providerClient.stopRecording?.(meeting.spec.roomId) || {};
+      const recordingId = result.recordingId || meeting.status?.recording?.recordingId || null;
+      if (recordingId) {
+        const existingRecording = await getResource('JitsiRecording', recordingId);
+        const recording = existingRecording || createResource('JitsiRecording', {
+          name: recordingId,
+          namespace: meeting.metadata?.namespace,
+        }, {
+          organizationRef: meeting.spec.organizationRef,
+          meetingRef: meeting.metadata.name,
+          providerRef: meeting.spec.providerRef,
+          format: result.format || 'mp4',
+          storageRef: result.storageRef,
+        }, {});
+        await persist({
+          ...recording,
+          status: {
+            ...(recording.status || {}),
+            phase: 'Completed',
+            endedAt: isoNow(now),
+            duration: result.duration,
+            transcript: recording.status?.transcript || { available: false },
+          },
+        });
+      }
+      const updated = {
+        ...meeting,
+        status: {
+          ...(meeting.status || {}),
+          recording: { active: false, recordingId },
+        },
+      };
+      return persist(updated);
+    },
+  };
+}

package/src/jitsi-sync-controller.js ADDED Viewed

@@ -0,0 +1,198 @@
+import { createResource, clone } from './resource-model.js';
+const EVENT_ALIASES = {
+  room_created: 'room-created',
+  room_destroyed: 'room-destroyed',
+  participant_joined: 'participant-joined',
+  participant_left: 'participant-left',
+  recording_started: 'recording-started',
+  recording_stopped: 'recording-stopped',
+};
+function canonicalType(value) {
+  return EVENT_ALIASES[value] || String(value || '').replaceAll('_', '-');
+}
+function isoNow(now) {
+  return (typeof now === 'function' ? now() : new Date()).toISOString();
+}
+export function createJitsiSyncController(options = {}) {
+  const { persistFn, eventBus, now = () => new Date() } = options;
+  const meetings = new Map();
+  const recordings = new Map();
+  const watermarks = new Map();
+  const processedDeliveries = new Set();
+  async function persist(resource) {
+    if (typeof persistFn === 'function') await persistFn(resource);
+    return resource;
+  }
+  function emit(type, resource, extra = {}) {
+    eventBus?.emit?.({ type, resource, timestamp: isoNow(now), ...extra });
+  }
+  function meetingName(roomId, state = {}) {
+    return state.meetingRef || state.name || roomId;
+  }
+  function rememberDelivery(event = {}) {
+    if (!event.deliveryId) return false;
+    if (processedDeliveries.has(event.deliveryId)) return true;
+    processedDeliveries.add(event.deliveryId);
+    return false;
+  }
+  return {
+    role: 'jitsi-sync-controller',
+    normalizeEvent(rawWebhookPayload = {}) {
+      const eventType = canonicalType(rawWebhookPayload.eventType || rawWebhookPayload.type || rawWebhookPayload.event);
+      return {
+        deliveryId: rawWebhookPayload.deliveryId || rawWebhookPayload.id || null,
+        eventType,
+        providerRef: rawWebhookPayload.providerRef || rawWebhookPayload.provider || 'default',
+        organizationRef: rawWebhookPayload.organizationRef || rawWebhookPayload.org || 'default',
+        roomId: rawWebhookPayload.roomId || rawWebhookPayload.roomName || rawWebhookPayload.room,
+        meetingRef: rawWebhookPayload.meetingRef,
+        recordingId: rawWebhookPayload.recordingId,
+        participant: rawWebhookPayload.participant || rawWebhookPayload.user || {},
+        timestamp: rawWebhookPayload.timestamp || rawWebhookPayload.receivedAt || isoNow(now),
+        data: rawWebhookPayload,
+      };
+    },
+    async syncRoom(roomId, jitsiState = {}) {
+      if (rememberDelivery(jitsiState)) return meetings.get(roomId) || null;
+      const eventType = canonicalType(jitsiState.eventType || jitsiState.type || 'room-created');
+      const key = roomId;
+      const existing = meetings.get(key);
+      const phase = eventType === 'room-destroyed' ? 'Ended' : (jitsiState.phase || 'Active');
+      const resource = {
+        ...(existing || createResource('JitsiMeeting', {
+          name: meetingName(roomId, jitsiState),
+          namespace: jitsiState.namespace || `kradle-org-${jitsiState.organizationRef || 'default'}`,
+        }, {
+          organizationRef: jitsiState.organizationRef || 'default',
+          providerRef: jitsiState.providerRef || 'default',
+          roomId,
+          displayName: jitsiState.displayName || roomId,
+          ttlMinutes: jitsiState.ttlMinutes || 120,
+          participants: { invited: [] },
+          roomConfig: {},
+        }, {
+          participants: { current: [], total: 0, peak: 0 },
+          recording: { active: false, recordingId: null },
+        })),
+      };
+      resource.status = {
+        ...(resource.status || {}),
+        phase,
+        roomUrl: jitsiState.roomUrl || resource.status?.roomUrl || `https://meet.kradle.local/${roomId}`,
+        ...(phase === 'Active' && !resource.status?.startedAt ? { startedAt: jitsiState.timestamp || isoNow(now) } : {}),
+        ...(phase === 'Ended' ? { endedAt: jitsiState.timestamp || isoNow(now) } : {}),
+      };
+      meetings.set(key, resource);
+      await persist(resource);
+      emit(phase === 'Ended' ? 'meeting-ended' : 'meeting-created', resource, { roomId });
+      return resource;
+    },
+    async syncParticipant(roomId, participantEvent = {}) {
+      if (rememberDelivery(participantEvent)) return meetings.get(roomId) || null;
+      const eventType = canonicalType(participantEvent.eventType || participantEvent.type || 'participant-joined');
+      const meeting = meetings.get(roomId) || await this.syncRoom(roomId, participantEvent);
+      const participant = {
+        id: participantEvent.participant?.id || participantEvent.id || participantEvent.participant?.name,
+        name: participantEvent.participant?.name || participantEvent.name || participantEvent.participant?.id,
+        type: participantEvent.participant?.type || participantEvent.type || 'user',
+        joinedAt: participantEvent.timestamp || isoNow(now),
+        ...clone(participantEvent.participant || {}),
+      };
+      const existing = meeting.status?.participants?.current || [];
+      const current = eventType === 'participant-left'
+        ? existing.filter((item) => item.id !== participant.id)
+        : [...existing.filter((item) => item.id !== participant.id), participant];
+      const previousTotal = Number(meeting.status?.participants?.total || 0);
+      const total = eventType === 'participant-joined' && !existing.some((item) => item.id === participant.id)
+        ? previousTotal + 1
+        : previousTotal;
+      meeting.status = {
+        ...(meeting.status || {}),
+        participants: {
+          current,
+          total,
+          peak: Math.max(Number(meeting.status?.participants?.peak || 0), current.length, total),
+        },
+      };
+      meetings.set(roomId, meeting);
+      await persist(meeting);
+      emit(eventType, meeting, { roomId, participant });
+      return meeting;
+    },
+    async syncRecording(roomId, recordingEvent = {}) {
+      if (rememberDelivery(recordingEvent)) return recordings.get(recordingEvent.recordingId || `rec-${roomId}`) || null;
+      const eventType = canonicalType(recordingEvent.eventType || recordingEvent.type || 'recording-started');
+      const recordingId = recordingEvent.recordingId || `rec-${roomId}`;
+      const existing = recordings.get(recordingId);
+      const phase = eventType === 'recording-stopped' ? 'Completed' : 'Recording';
+      const resource = {
+        ...(existing || createResource('JitsiRecording', {
+          name: recordingId,
+          namespace: recordingEvent.namespace || `kradle-org-${recordingEvent.organizationRef || 'default'}`,
+        }, {
+          organizationRef: recordingEvent.organizationRef || 'default',
+          meetingRef: recordingEvent.meetingRef || roomId,
+          providerRef: recordingEvent.providerRef || 'default',
+          format: recordingEvent.format || 'mp4',
+          storageRef: recordingEvent.storageRef,
+        }, {
+          transcript: { available: false },
+        })),
+      };
+      resource.status = {
+        ...(resource.status || {}),
+        phase,
+        ...(phase === 'Recording' ? { startedAt: recordingEvent.timestamp || isoNow(now) } : {}),
+        ...(phase === 'Completed' ? { endedAt: recordingEvent.timestamp || isoNow(now), duration: recordingEvent.duration } : {}),
+      };
+      recordings.set(recordingId, resource);
+      const meeting = meetings.get(roomId);
+      if (meeting) {
+        meeting.status = {
+          ...(meeting.status || {}),
+          recording: { active: phase === 'Recording', recordingId: phase === 'Recording' ? recordingId : null },
+        };
+        await persist(meeting);
+      }
+      await persist(resource);
+      emit(eventType, resource, { roomId, recordingId });
+      return resource;
+    },
+    async updateWatermark(providerRef, timestamp, options = {}) {
+      const current = watermarks.get(providerRef);
+      if (!current || timestamp > current) {
+        watermarks.set(providerRef, timestamp);
+        await persist({
+          apiVersion: 'kradle.a5c.ai/v1alpha1',
+          kind: 'ExternalSyncState',
+          metadata: {
+            name: `jitsi-watermark-${providerRef}`,
+            namespace: options.namespace || `kradle-org-${options.organizationRef || 'default'}`,
+            labels: {},
+            annotations: {},
+          },
+          spec: { organizationRef: options.organizationRef || 'default', providerRef, resourceRef: 'jitsi', phase: 'Synced', watermark: timestamp },
+          status: { phase: 'Synced', lastSuccessfulSyncAt: isoNow(now) },
+        });
+      }
+    },
+    getWatermark(providerRef) {
+      return watermarks.get(providerRef) || null;
+    },
+  };
+}