@agenticmail/enterprise 0.5.100 → 0.5.102

package/dist/runtime-LA27UXAN.js

@@ -0,0 +1,49 @@
+import {
+  AgentRuntime,
+  EmailChannel,
+  FollowUpScheduler,
+  SessionManager,
+  SubAgentManager,
+  ToolRegistry,
+  callLLM,
+  createAgentRuntime,
+  createNoopHooks,
+  createRuntimeHooks,
+  estimateMessageTokens,
+  estimateTokens,
+  executeTool,
+  runAgentLoop,
+  toolsToDefinitions
+} from "./chunk-5T72N6AX.js";
+import "./chunk-NRF3YRF7.js";
+import "./chunk-TYW5XTOW.js";
+import "./chunk-AQH4DFYV.js";
+import "./chunk-JLSQOQ5L.js";
+import {
+  PROVIDER_REGISTRY,
+  listAllProviders,
+  resolveApiKeyForProvider,
+  resolveProvider
+} from "./chunk-67KZYSLU.js";
+import "./chunk-KFQGP6VL.js";
+export {
+  AgentRuntime,
+  EmailChannel,
+  FollowUpScheduler,
+  PROVIDER_REGISTRY,
+  SessionManager,
+  SubAgentManager,
+  ToolRegistry,
+  callLLM,
+  createAgentRuntime,
+  createNoopHooks,
+  createRuntimeHooks,
+  estimateMessageTokens,
+  estimateTokens,
+  executeTool,
+  listAllProviders,
+  resolveApiKeyForProvider,
+  resolveProvider,
+  runAgentLoop,
+  toolsToDefinitions
+};

package/dist/runtime-XPEXCY6Y.js

@@ -0,0 +1,49 @@
+import {
+  AgentRuntime,
+  EmailChannel,
+  FollowUpScheduler,
+  SessionManager,
+  SubAgentManager,
+  ToolRegistry,
+  callLLM,
+  createAgentRuntime,
+  createNoopHooks,
+  createRuntimeHooks,
+  estimateMessageTokens,
+  estimateTokens,
+  executeTool,
+  runAgentLoop,
+  toolsToDefinitions
+} from "./chunk-NERC4SQV.js";
+import "./chunk-NRF3YRF7.js";
+import "./chunk-TYW5XTOW.js";
+import "./chunk-AQH4DFYV.js";
+import "./chunk-JLSQOQ5L.js";
+import {
+  PROVIDER_REGISTRY,
+  listAllProviders,
+  resolveApiKeyForProvider,
+  resolveProvider
+} from "./chunk-67KZYSLU.js";
+import "./chunk-KFQGP6VL.js";
+export {
+  AgentRuntime,
+  EmailChannel,
+  FollowUpScheduler,
+  PROVIDER_REGISTRY,
+  SessionManager,
+  SubAgentManager,
+  ToolRegistry,
+  callLLM,
+  createAgentRuntime,
+  createNoopHooks,
+  createRuntimeHooks,
+  estimateMessageTokens,
+  estimateTokens,
+  executeTool,
+  listAllProviders,
+  resolveApiKeyForProvider,
+  resolveProvider,
+  runAgentLoop,
+  toolsToDefinitions
+};

package/dist/server-6EJ4TRTM.js

@@ -0,0 +1,12 @@
+import {
+  createServer
+} from "./chunk-CNJQICZY.js";
+import "./chunk-3SMTCIR4.js";
+import "./chunk-JLSQOQ5L.js";
+import "./chunk-RO537U6H.js";
+import "./chunk-DRXMYYKN.js";
+import "./chunk-67KZYSLU.js";
+import "./chunk-KFQGP6VL.js";
+export {
+  createServer
+};

package/dist/server-KF7WIPLV.js

@@ -0,0 +1,12 @@
+import {
+  createServer
+} from "./chunk-KL4U6ZNK.js";
+import "./chunk-3SMTCIR4.js";
+import "./chunk-JLSQOQ5L.js";
+import "./chunk-RO537U6H.js";
+import "./chunk-DRXMYYKN.js";
+import "./chunk-67KZYSLU.js";
+import "./chunk-KFQGP6VL.js";
+export {
+  createServer
+};

package/dist/setup-4P6TKEA2.js

@@ -0,0 +1,20 @@
+import {
+  promptCompanyInfo,
+  promptDatabase,
+  promptDeployment,
+  promptDomain,
+  promptRegistration,
+  provision,
+  runSetupWizard
+} from "./chunk-WIF5R3HF.js";
+import "./chunk-QDXUZP7Y.js";
+import "./chunk-KFQGP6VL.js";
+export {
+  promptCompanyInfo,
+  promptDatabase,
+  promptDeployment,
+  promptDomain,
+  promptRegistration,
+  provision,
+  runSetupWizard
+};

package/dist/setup-QELYIXLF.js

@@ -0,0 +1,20 @@
+import {
+  promptCompanyInfo,
+  promptDatabase,
+  promptDeployment,
+  promptDomain,
+  promptRegistration,
+  provision,
+  runSetupWizard
+} from "./chunk-Q5DKWAKT.js";
+import "./chunk-QDXUZP7Y.js";
+import "./chunk-KFQGP6VL.js";
+export {
+  promptCompanyInfo,
+  promptDatabase,
+  promptDeployment,
+  promptDomain,
+  promptRegistration,
+  provision,
+  runSetupWizard
+};

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@agenticmail/enterprise",
-  "version": "0.5.100",
+  "version": "0.5.102",
   "description": "AgenticMail Enterprise — cloud-hosted AI agent identity, email, auth & compliance for organizations",
   "type": "module",
   "bin": {

package/src/dashboard/pages/agent-detail.js

@@ -367,6 +367,19 @@ function OverviewSection(props) {
       h('div', { className: 'card-header' }, h('span', null, 'Quick Actions')),
       h('div', { className: 'card-body', style: { display: 'flex', flexWrap: 'wrap', gap: 10 } },
 
+        // Reset state (when in error/degraded)
+        (agentState === 'error' || agentState === 'degraded') && h('button', {
+          className: 'btn btn-secondary btn-sm',
+          disabled: !!acting,
+          onClick: function() {
+            setActing('reset');
+            engineCall('/agents/' + agentId + '/reset-state', { method: 'POST' })
+              .then(function() { toast('Agent state reset to ready', 'success'); reload(); })
+              .catch(function(err) { toast(err.message, 'error'); })
+              .finally(function() { setActing(''); });
+          }
+        }, I.refresh(), ' Reset State'),
+
         // Deploy / Stop / Restart
         (agentState !== 'running' && agentState !== 'active') && h('button', {
           className: 'btn btn-primary btn-sm',

package/src/engine/agent-routes.ts

@@ -72,6 +72,24 @@ export function createAgentRoutes(opts: {
     }
   });
 
+  router.post('/agents/:id/reset-state', async (c) => {
+    try {
+      const agent = lifecycle.getAgent(c.req.param('id'));
+      if (!agent) return c.json({ error: 'Agent not found' }, 404);
+      if (!['error', 'degraded', 'deploying', 'provisioning', 'starting'].includes(agent.state)) {
+        return c.json({ error: `Cannot reset from state "${agent.state}"` }, 400);
+      }
+      // Reset to ready
+      (agent as any).state = 'ready';
+      (agent as any).stateMessage = 'State reset by admin';
+      (agent as any).updatedAt = new Date().toISOString();
+      await lifecycle.saveAgent(c.req.param('id'));
+      return c.json({ agent, message: 'State reset to ready' });
+    } catch (e: any) {
+      return c.json({ error: e.message }, 400);
+    }
+  });
+
   router.post('/agents/:id/stop', async (c) => {
     const { stoppedBy, reason } = await c.req.json();
     try {

package/src/engine/deployer.ts

@@ -404,11 +404,14 @@ export class DeploymentEngine {
     const size = cloud.size || 'shared-cpu-1x';
     const FLY_API = 'https://api.machines.dev/v1';
 
+    // Fly.io tokens: FlyV1 tokens use their own prefix, others use Bearer
+    const authHeader = apiToken.startsWith('FlyV1 ') || apiToken.startsWith('fm2_') ? apiToken.startsWith('FlyV1 ') ? apiToken : `FlyV1 ${apiToken}` : `Bearer ${apiToken}`;
+
     const flyFetch = async (path: string, method: string = 'GET', body?: any): Promise<any> => {
       const res = await fetch(`${FLY_API}${path}`, {
         method,
         headers: {
-          'Authorization': `Bearer ${apiToken}`,
+          'Authorization': authHeader,
           'Content-Type': 'application/json',
         },
         body: body ? JSON.stringify(body) : undefined,
@@ -423,8 +426,18 @@ export class DeploymentEngine {
     // 1. Create app (ignore "already exists" errors)
     emit('provision', 'started', `Creating Fly.io app "${appName}"...`);
     try {
-      // Fly.io org_slug must be a Fly org slug (e.g. 'personal'), not an internal org ID
-      const flyOrg = (cloud.org && cloud.org.length < 30 && /^[a-z0-9-]+$/.test(cloud.org)) ? cloud.org : 'personal';
+      // Fly.io org_slug must be a Fly org slug (e.g. 'personal', 'ope-olatunji'), not an internal org ID
+      // If no valid org slug provided, auto-detect from token by listing apps
+      let flyOrg = (cloud.org && cloud.org.length < 40 && /^[a-z0-9-]+$/.test(cloud.org)) ? cloud.org : '';
+      if (!flyOrg) {
+        try {
+          const orgsRes = await flyFetch('/apps?org_slug=personal');
+          if (orgsRes?.apps?.length > 0 && orgsRes.apps[0].organization?.slug) {
+            flyOrg = orgsRes.apps[0].organization.slug;
+          }
+        } catch {}
+        if (!flyOrg) flyOrg = 'personal';
+      }
       await flyFetch('/apps', 'POST', {
         app_name: appName,
         org_slug: flyOrg,
@@ -618,10 +631,12 @@ export class DeploymentEngine {
 
     const appName = cloud.appName || `am-agent-${config.name.toLowerCase().replace(/[^a-z0-9-]/g, '-').slice(0, 30)}`;
     const FLY_API = 'https://api.machines.dev/v1';
+    const t = cloud.apiToken;
+    const auth = t.startsWith('FlyV1 ') ? t : t.startsWith('fm2_') ? `FlyV1 ${t}` : `Bearer ${t}`;
 
     try {
       const res = await fetch(`${FLY_API}/apps/${appName}/machines`, {
-        headers: { 'Authorization': `Bearer ${cloud.apiToken}` },
+        headers: { 'Authorization': auth },
       });
       if (!res.ok) return { ...base, status: 'error', healthStatus: 'unhealthy' };
 
@@ -654,10 +669,12 @@ export class DeploymentEngine {
 
     const appName = cloud.appName || `am-agent-${config.name.toLowerCase().replace(/[^a-z0-9-]/g, '-').slice(0, 30)}`;
     const FLY_API = 'https://api.machines.dev/v1';
+    const t = cloud.apiToken;
+    const auth = t.startsWith('FlyV1 ') ? t : t.startsWith('fm2_') ? `FlyV1 ${t}` : `Bearer ${t}`;
 
     try {
       const res = await fetch(`${FLY_API}/apps/${appName}/machines`, {
-        headers: { 'Authorization': `Bearer ${cloud.apiToken}` },
+        headers: { 'Authorization': auth },
       });
       if (!res.ok) return { success: false, message: `Failed to list machines: ${res.status}` };
       const machines = await res.json() as any[];
@@ -666,7 +683,7 @@ export class DeploymentEngine {
       const machineId = machines[0].id;
       const actionRes = await fetch(`${FLY_API}/apps/${appName}/machines/${machineId}/${action}`, {
         method: 'POST',
-        headers: { 'Authorization': `Bearer ${cloud.apiToken}` },
+        headers: { 'Authorization': auth },
       });
       if (!actionRes.ok) {
         const err = await actionRes.text();

package/src/engine/lifecycle.ts

@@ -184,6 +184,8 @@ export class AgentLifecycleManager {
   private lastBirthdayCheck: string = '';
   /** External callback for sending birthday messages (set via setBirthdaySender) */
   private birthdaySender: ((agent: ManagedAgent) => Promise<void>) | null = null;
+  /** Vault for decrypting deploy credentials */
+  private vault?: any;
 
   constructor(opts?: { db?: EngineDatabase; permissions?: PermissionEngine }) {
     this.engineDb = opts?.db;
@@ -198,6 +200,10 @@ export class AgentLifecycleManager {
     await this.loadFromDb();
   }
 
+  setVault(vault: any): void {
+    this.vault = vault;
+  }
+
   /**
    * Load all agents from DB into memory
    */
@@ -923,6 +929,7 @@ export class AgentLifecycleManager {
    * Resolve org-level deploy credentials and merge into agent config.
    * If the agent's deployment config is missing an API token, look up
    * the org's deploy_credentials table for a matching target type.
+   * Also sanitizes app names to be valid for the target platform.
    */
   private async resolveDeployCredentials(agent: ManagedAgent): Promise<void> {
     const target = agent.config?.deployment?.target;
@@ -931,10 +938,19 @@ export class AgentLifecycleManager {
     // Ensure deployment.config exists
     if (!agent.config.deployment.config) agent.config.deployment.config = {} as any;
 
-    // For fly/railway, check if cloud.apiToken is already set
+    // Sanitize cloud.appName if present (Fly.io requires lowercase alphanumeric + hyphens)
     if (target === 'fly' || target === 'railway') {
-      const cloud = agent.config.deployment.config.cloud;
-      if (cloud?.apiToken) return; // Agent has its own token
+      if (!agent.config.deployment.config.cloud) agent.config.deployment.config.cloud = {} as any;
+      const cloud = agent.config.deployment.config.cloud!;
+
+      if (cloud.appName) {
+        cloud.appName = cloud.appName.toLowerCase().replace(/[^a-z0-9-]/g, '-').replace(/-+/g, '-').replace(/^-|-$/g, '').slice(0, 30);
+      }
+      // Ensure provider is set
+      if (!cloud.provider) cloud.provider = target as any;
+
+      // If agent already has a token, we're done
+      if (cloud.apiToken) return;
 
       // Look up org-level credentials
       if (this.engineDb) {
@@ -942,14 +958,21 @@ export class AgentLifecycleManager {
           const orgId = agent.orgId || 'default';
           const creds = await this.engineDb.getDeployCredentialsByType(orgId, target);
           if (creds.length > 0) {
-            const orgCred = creds[0];
-            agent.config.deployment.config.cloud = {
-              ...agent.config.deployment.config.cloud,
-              provider: target,
-              apiToken: orgCred.config?.apiToken || orgCred.config?.token,
-              ...(orgCred.config?.region && { region: orgCred.config.region }),
-              ...(orgCred.config?.org && { org: orgCred.config.org }),
-            };
+            let credConfig = creds[0].config;
+
+            // Decrypt if encrypted
+            if (credConfig?._encrypted && this.vault) {
+              try {
+                credConfig = JSON.parse(this.vault.decrypt(credConfig._encrypted));
+              } catch (decErr) {
+                console.error('[lifecycle] Failed to decrypt deploy credential:', decErr);
+              }
+            }
+
+            if (credConfig?.apiToken || credConfig?.token) {
+              cloud.apiToken = credConfig.apiToken || credConfig.token;
+              if (credConfig.region && !cloud.region) cloud.region = credConfig.region;
+            }
           }
         } catch (err) {
           console.error('[lifecycle] Failed to resolve deploy credentials:', err);

package/src/engine/routes.ts

@@ -231,7 +231,7 @@ export async function setEngineDb(
 
   // Cascade DB to all engine modules for persistent storage
   await Promise.all([
-    lifecycle.setDb(db),
+    lifecycle.setDb(db).then(() => lifecycle.setVault(vault)),
     approvals.setDb(db),
     knowledgeBase.setDb(db),
     activity.setDb(db),