@agent-native/core 0.26.3 → 0.26.6

package/dist/server/core-routes-plugin.d.ts

@@ -1,11 +1,22 @@
 import type { H3Event } from "h3";
 import type { EnvKeyConfig } from "./create-server.js";
+import { type AuthSession } from "./auth.js";
 /**
  * The base path prefix for all framework-level routes.
  * All agent-native core routes live under this namespace to avoid
  * collisions with template-specific `/api/*` routes.
  */
 export declare const FRAMEWORK_ROUTE_PREFIX = "/_agent-native";
+type BuilderAnonymousOwnerResolver = (event: H3Event) => string | null | Promise<string | null>;
+export type BuilderOwnerContext = {
+    email: string | undefined;
+    session: AuthSession | null;
+    anonymous: boolean;
+};
+export declare function resolveBuilderOwnerContextForRequest(event: H3Event, options?: {
+    anonymousOwner?: BuilderAnonymousOwnerResolver;
+    getSessionForEvent?: (event: H3Event) => Promise<AuthSession | null>;
+}, mode?: "connect" | "callback"): Promise<BuilderOwnerContext>;
 /**
  * Resolves the page-level legacy `/tools` → `/extensions` redirect target.
  *
@@ -58,7 +69,7 @@ export interface CoreRoutesPluginOptions {
      * pages that let anonymous viewers connect Builder credentials for their
      * own browser-scoped agent session.
      */
-    anonymousOwner?: (event: H3Event) => string | null | Promise<string | null>;
+    anonymousOwner?: BuilderAnonymousOwnerResolver;
 }
 /**
  * Creates a Nitro plugin that mounts all standard agent-native framework routes.

package/dist/server/core-routes-plugin.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"core-routes-plugin.d.ts","sourceRoot":"","sources":["../../src/server/core-routes-plugin.ts"],"names":[],"mappings":"AAoBA,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,IAAI,CAAC;AAsBlC,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,oBAAoB,CAAC;AA6FvD;;;;GAIG;AACH,eAAO,MAAM,sBAAsB,mBAAmB,CAAC;AA2IvD;;;;;;;;;;;;;GAaG;AACH,wBAAgB,0BAA0B,CACxC,OAAO,EAAE,MAAM,EACf,MAAM,EAAE,MAAM,GACb,MAAM,GAAG,IAAI,CAWf;AAUD,KAAK,cAAc,GAAG,CAAC,QAAQ,EAAE,GAAG,KAAK,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;AAE9D,MAAM,WAAW,uBAAuB;IACtC,wEAAwE;IACxE,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,yCAAyC;IACzC,UAAU,CAAC,EAAE,OAAO,CAAC;IACrB,oDAAoD;IACpD,WAAW,CAAC,EAAE,OAAO,CAAC;IACtB,2DAA2D;IAC3D,eAAe,CAAC,EAAE,OAAO,CAAC;IAC1B,uDAAuD;IACvD,gBAAgB,CAAC,EAAE,OAAO,CAAC;IAC3B,sEAAsE;IACtE,iBAAiB,CAAC,EAAE,OAAO,CAAC;IAC5B;;;;;;;OAOG;IACH,iBAAiB,CAAC,EAAE,OAAO,CAAC;IAC5B,sEAAsE;IACtE,eAAe,CAAC,EAAE,MAAM,CAAC;IACzB,oDAAoD;IACpD,iBAAiB,CAAC,EAAE,MAAM,CAAC;IAC3B;wCACoC;IACpC,eAAe,CAAC,EAAE,OAAO,iBAAiB,EAAE,gBAAgB,CAAC,iBAAiB,CAAC,CAAC;IAChF,qEAAqE;IACrE,OAAO,CAAC,EAAE,YAAY,EAAE,CAAC;IACzB;;;;OAIG;IACH,cAAc,CAAC,EAAE,CAAC,KAAK,EAAE,OAAO,KAAK,MAAM,GAAG,IAAI,GAAG,OAAO,CAAC,MAAM,GAAG,IAAI,CAAC,CAAC;CAC7E;AAED;;;;;;;;;;;;;;;;;;;;GAoBG;AACH,wBAAgB,sBAAsB,CACpC,OAAO,GAAE,uBAA4B,GACpC,cAAc,CAmzEhB;AAED;;;;;;;;GAQG;AACH,eAAO,MAAM,uBAAuB,EAAE,cAAyC,CAAC"}
+{"version":3,"file":"core-routes-plugin.d.ts","sourceRoot":"","sources":["../../src/server/core-routes-plugin.ts"],"names":[],"mappings":"AAoBA,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,IAAI,CAAC;AAuBlC,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,oBAAoB,CAAC;AA2CvD,OAAO,EAAc,KAAK,WAAW,EAAE,MAAM,WAAW,CAAC;AAkDzD;;;;GAIG;AACH,eAAO,MAAM,sBAAsB,mBAAmB,CAAC;AA+IvD,KAAK,6BAA6B,GAAG,CACnC,KAAK,EAAE,OAAO,KACX,MAAM,GAAG,IAAI,GAAG,OAAO,CAAC,MAAM,GAAG,IAAI,CAAC,CAAC;AAE5C,MAAM,MAAM,mBAAmB,GAAG;IAChC,KAAK,EAAE,MAAM,GAAG,SAAS,CAAC;IAC1B,OAAO,EAAE,WAAW,GAAG,IAAI,CAAC;IAC5B,SAAS,EAAE,OAAO,CAAC;CACpB,CAAC;AAEF,wBAAsB,oCAAoC,CACxD,KAAK,EAAE,OAAO,EACd,OAAO,GAAE;IACP,cAAc,CAAC,EAAE,6BAA6B,CAAC;IAC/C,kBAAkB,CAAC,EAAE,CAAC,KAAK,EAAE,OAAO,KAAK,OAAO,CAAC,WAAW,GAAG,IAAI,CAAC,CAAC;CACjE,EACN,IAAI,CAAC,EAAE,SAAS,GAAG,UAAU,GAC5B,OAAO,CAAC,mBAAmB,CAAC,CAsD9B;AAED;;;;;;;;;;;;;GAaG;AACH,wBAAgB,0BAA0B,CACxC,OAAO,EAAE,MAAM,EACf,MAAM,EAAE,MAAM,GACb,MAAM,GAAG,IAAI,CAWf;AAUD,KAAK,cAAc,GAAG,CAAC,QAAQ,EAAE,GAAG,KAAK,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;AAE9D,MAAM,WAAW,uBAAuB;IACtC,wEAAwE;IACxE,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,yCAAyC;IACzC,UAAU,CAAC,EAAE,OAAO,CAAC;IACrB,oDAAoD;IACpD,WAAW,CAAC,EAAE,OAAO,CAAC;IACtB,2DAA2D;IAC3D,eAAe,CAAC,EAAE,OAAO,CAAC;IAC1B,uDAAuD;IACvD,gBAAgB,CAAC,EAAE,OAAO,CAAC;IAC3B,sEAAsE;IACtE,iBAAiB,CAAC,EAAE,OAAO,CAAC;IAC5B;;;;;;;OAOG;IACH,iBAAiB,CAAC,EAAE,OAAO,CAAC;IAC5B,sEAAsE;IACtE,eAAe,CAAC,EAAE,MAAM,CAAC;IACzB,oDAAoD;IACpD,iBAAiB,CAAC,EAAE,MAAM,CAAC;IAC3B;wCACoC;IACpC,eAAe,CAAC,EAAE,OAAO,iBAAiB,EAAE,gBAAgB,CAAC,iBAAiB,CAAC,CAAC;IAChF,qEAAqE;IACrE,OAAO,CAAC,EAAE,YAAY,EAAE,CAAC;IACzB;;;;OAIG;IACH,cAAc,CAAC,EAAE,6BAA6B,CAAC;CAChD;AAED;;;;;;;;;;;;;;;;;;;;GAoBG;AACH,wBAAgB,sBAAsB,CACpC,OAAO,GAAE,uBAA4B,GACpC,cAAc,CAiwEhB;AAED;;;;;;;;GAQG;AACH,eAAO,MAAM,uBAAuB,EAAE,cAAyC,CAAC"}

package/dist/server/core-routes-plugin.js

@@ -7,7 +7,7 @@ import { createPollEventsHandler } from "./poll-events.js";
 import { createOpenRouteHandler } from "./open-route.js";
 import { createEmbedStartRouteHandler } from "./embed-route.js";
 import { EMBED_TARGET_HEADER } from "../shared/embed-auth.js";
-import { isMcpEmbedCorsOrigin, MCP_EMBED_CORS_ALLOW_HEADERS, shouldAllowMcpEmbedCredentials, } from "../shared/mcp-embed-headers.js";
+import { EMBED_TRANSPLANT_HEADER, isMcpEmbedCorsOrigin, MCP_EMBED_CORS_ALLOW_HEADERS, shouldAllowMcpEmbedCredentials, } from "../shared/mcp-embed-headers.js";
 import { handleMcpConnect } from "../mcp/connect-route.js";
 import { handleMcpOAuth, handleMcpOAuthAuthorizationServerMetadata, handleMcpOAuthProtectedResourceMetadata, } from "../mcp/oauth-route.js";
 import { handleIdentitySso } from "./identity-sso.js";
@@ -147,6 +147,50 @@ function clearBuilderConnectOwnerCookie(event) {
         path: getBuilderConnectOwnerCookiePath(),
     });
 }
+function isAgentNativeAnonymousOwner(email) {
+    return /^anon-[^@]+@agent-native\.com$/i.test(email ?? "");
+}
+export async function resolveBuilderOwnerContextForRequest(event, options = {}, mode) {
+    const searchParams = getRequestURL(event).searchParams;
+    const signedOwner = mode === "connect"
+        ? verifyBuilderConnectTokenAndGetOwner(searchParams.get(BUILDER_CONNECT_PARAM))
+        : mode === "callback"
+            ? verifyBuilderCallbackStateAndGetOwner(searchParams.get(BUILDER_STATE_PARAM))
+            : null;
+    const cookieOwner = mode === "callback" ? readBuilderConnectOwnerCookie(event) : null;
+    const session = await (options.getSessionForEvent ?? getSession)(event).catch(() => null);
+    if (session?.email) {
+        if (signedOwner &&
+            (signedOwner === session.email ||
+                (isAgentNativeAnonymousOwner(signedOwner) &&
+                    isAgentNativeAnonymousOwner(session.email)))) {
+            // Public docs/app surfaces can mint a new anonymous session inside the
+            // popup when cookies do not round-trip. Keep the signed flow owner in
+            // that anonymous-only case, but do not override a real user session.
+            return {
+                email: signedOwner,
+                session: signedOwner === session.email ? session : null,
+                anonymous: isAgentNativeAnonymousOwner(signedOwner),
+            };
+        }
+        return { email: session.email, session, anonymous: false };
+    }
+    if (signedOwner) {
+        return {
+            email: signedOwner,
+            session: null,
+            anonymous: isAgentNativeAnonymousOwner(signedOwner),
+        };
+    }
+    if (cookieOwner) {
+        return { email: cookieOwner, session: null, anonymous: false };
+    }
+    const anonymousOwner = await options.anonymousOwner?.(event);
+    if (anonymousOwner) {
+        return { email: anonymousOwner, session: null, anonymous: true };
+    }
+    return { email: undefined, session: null, anonymous: false };
+}
 /**
  * Resolves the page-level legacy `/tools` → `/extensions` redirect target.
  *
@@ -327,7 +371,9 @@ export function createCoreRoutesPlugin(options = {}) {
                 .map((header) => header.trim());
             const mcpEmbedCorsRequest = isMcpEmbedCorsOrigin(origin) &&
                 (requestedHeaderNames.includes(EMBED_TARGET_HEADER.toLowerCase()) ||
+                    requestedHeaderNames.includes(EMBED_TRANSPLANT_HEADER) ||
                     Boolean(readRequestHeader(EMBED_TARGET_HEADER)) ||
+                    Boolean(readRequestHeader(EMBED_TRANSPLANT_HEADER)) ||
                     Boolean(readRequestHeader("authorization")));
             // Decide whether this origin is allowed. We never fall back to the
             // first allowlist entry — that previously echoed `Access-Control-
@@ -424,49 +470,7 @@ export function createCoreRoutesPlugin(options = {}) {
             })));
         }
         mountBrowserSessionRoutes(nitroApp, { routePrefix: P });
-        const resolveBuilderOwnerContext = async (event, mode) => {
-            const session = await getSession(event).catch(() => null);
-            if (session?.email) {
-                return { email: session.email, session, anonymous: false };
-            }
-            const searchParams = getRequestURL(event).searchParams;
-            if (mode === "connect") {
-                const ownerFromConnectToken = verifyBuilderConnectTokenAndGetOwner(searchParams.get(BUILDER_CONNECT_PARAM));
-                if (ownerFromConnectToken) {
-                    return {
-                        email: ownerFromConnectToken,
-                        session: null,
-                        anonymous: false,
-                    };
-                }
-            }
-            if (mode === "callback") {
-                // Prefer the signed _an_state owner over the legacy
-                // an_builder_connect_owner cookie. The cookie can be stale on a
-                // shared browser — user A signed in earlier, user B starts a fresh
-                // callback with a signed state for B — and using the cookie first
-                // would mis-attribute B's Builder credentials to A. The signed
-                // state is per-flow and TTL-bounded, so it's authoritative when
-                // both are present.
-                const ownerFromCallbackState = verifyBuilderCallbackStateAndGetOwner(searchParams.get(BUILDER_STATE_PARAM));
-                if (ownerFromCallbackState) {
-                    return {
-                        email: ownerFromCallbackState,
-                        session: null,
-                        anonymous: false,
-                    };
-                }
-                const ownerFromCookie = readBuilderConnectOwnerCookie(event);
-                if (ownerFromCookie) {
-                    return { email: ownerFromCookie, session: null, anonymous: false };
-                }
-            }
-            const anonymousOwner = await options.anonymousOwner?.(event);
-            if (anonymousOwner) {
-                return { email: anonymousOwner, session: null, anonymous: true };
-            }
-            return { email: undefined, session: null, anonymous: false };
-        };
+        const resolveBuilderOwnerContext = async (event, mode) => resolveBuilderOwnerContextForRequest(event, { anonymousOwner: options.anonymousOwner }, mode);
         getH3App(nitroApp).use(`${P}/builder/status`, defineEventHandler(async (event) => {
             const envStatus = getBuilderBrowserStatusForEvent(event);
             const ownerContext = await resolveBuilderOwnerContext(event);