npm - @agenticmail/enterprise - Versions diffs - 0.5.195 → 0.5.196 - Mend

@agenticmail/enterprise 0.5.195 → 0.5.196

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (4) hide show

package/dist/cli-serve-LGKXTAZ3.js +114 -0
package/dist/cli.js +1 -1
package/package.json +1 -1
package/src/cli-serve.ts +59 -1

package/dist/cli-serve-LGKXTAZ3.js ADDED Viewed

@@ -0,0 +1,114 @@
+import "./chunk-KFQGP6VL.js";
+// src/cli-serve.ts
+import { existsSync, readFileSync } from "fs";
+import { join } from "path";
+import { homedir } from "os";
+function loadEnvFile() {
+  const candidates = [
+    join(process.cwd(), ".env"),
+    join(homedir(), ".agenticmail", ".env")
+  ];
+  for (const envPath of candidates) {
+    if (!existsSync(envPath)) continue;
+    try {
+      const content = readFileSync(envPath, "utf8");
+      for (const line of content.split("\n")) {
+        const trimmed = line.trim();
+        if (!trimmed || trimmed.startsWith("#")) continue;
+        const eq = trimmed.indexOf("=");
+        if (eq < 0) continue;
+        const key = trimmed.slice(0, eq).trim();
+        let val = trimmed.slice(eq + 1).trim();
+        if (val.startsWith('"') && val.endsWith('"') || val.startsWith("'") && val.endsWith("'")) {
+          val = val.slice(1, -1);
+        }
+        if (!process.env[key]) process.env[key] = val;
+      }
+      console.log(`Loaded config from ${envPath}`);
+      return;
+    } catch {
+    }
+  }
+}
+async function ensureSecrets() {
+  const { randomUUID } = await import("crypto");
+  const envDir = join(homedir(), ".agenticmail");
+  const envPath = join(envDir, ".env");
+  let dirty = false;
+  if (!process.env.JWT_SECRET) {
+    process.env.JWT_SECRET = randomUUID() + randomUUID();
+    dirty = true;
+    console.log("[startup] Generated new JWT_SECRET (existing sessions will need to re-login)");
+  }
+  if (!process.env.AGENTICMAIL_VAULT_KEY) {
+    process.env.AGENTICMAIL_VAULT_KEY = randomUUID() + randomUUID();
+    dirty = true;
+    console.log("[startup] Generated new AGENTICMAIL_VAULT_KEY");
+    console.log("[startup] \u26A0\uFE0F  Previously encrypted credentials will need to be re-entered in the dashboard");
+  }
+  if (dirty) {
+    try {
+      if (!existsSync(envDir)) {
+        const { mkdirSync } = await import("fs");
+        mkdirSync(envDir, { recursive: true });
+      }
+      const { appendFileSync } = await import("fs");
+      const lines = [];
+      let existing = "";
+      if (existsSync(envPath)) {
+        existing = readFileSync(envPath, "utf8");
+      }
+      if (!existing.includes("JWT_SECRET=")) {
+        lines.push(`JWT_SECRET=${process.env.JWT_SECRET}`);
+      }
+      if (!existing.includes("AGENTICMAIL_VAULT_KEY=")) {
+        lines.push(`AGENTICMAIL_VAULT_KEY=${process.env.AGENTICMAIL_VAULT_KEY}`);
+      }
+      if (lines.length) {
+        appendFileSync(envPath, "\n" + lines.join("\n") + "\n", { mode: 384 });
+        console.log(`[startup] Saved secrets to ${envPath}`);
+      }
+    } catch (e) {
+      console.warn(`[startup] Could not save secrets to ${envPath}: ${e.message}`);
+    }
+  }
+}
+async function runServe(_args) {
+  loadEnvFile();
+  const DATABASE_URL = process.env.DATABASE_URL;
+  const PORT = parseInt(process.env.PORT || "8080", 10);
+  await ensureSecrets();
+  const JWT_SECRET = process.env.JWT_SECRET;
+  const VAULT_KEY = process.env.AGENTICMAIL_VAULT_KEY;
+  if (!DATABASE_URL) {
+    console.error("ERROR: DATABASE_URL is required.");
+    console.error("");
+    console.error("Set it via environment variable or .env file:");
+    console.error("  DATABASE_URL=postgresql://user:pass@host:5432/db npx @agenticmail/enterprise start");
+    console.error("");
+    console.error("Or create a .env file (in cwd or ~/.agenticmail/.env):");
+    console.error("  DATABASE_URL=postgresql://user:pass@host:5432/db");
+    console.error("  JWT_SECRET=your-secret-here");
+    console.error("  PORT=3200");
+    process.exit(1);
+  }
+  const { createAdapter } = await import("./factory-K32DV2DR.js");
+  const { createServer } = await import("./server-P7UOPB2B.js");
+  const db = await createAdapter({
+    type: DATABASE_URL.startsWith("postgres") ? "postgres" : "sqlite",
+    connectionString: DATABASE_URL
+  });
+  await db.migrate();
+  const server = createServer({
+    port: PORT,
+    db,
+    jwtSecret: JWT_SECRET,
+    corsOrigins: ["*"]
+  });
+  await server.start();
+  console.log(`AgenticMail Enterprise server running on :${PORT}`);
+}
+export {
+  runServe
+};

package/dist/cli.js CHANGED Viewed

@@ -53,7 +53,7 @@ Skill Development:
     break;
   case "serve":
   case "start":
-    import("./cli-serve-4TOTP57F.js").then((m) => m.runServe(args.slice(1))).catch(fatal);
+    import("./cli-serve-LGKXTAZ3.js").then((m) => m.runServe(args.slice(1))).catch(fatal);
     break;
   case "agent":
     import("./cli-agent-XYXSRD2Q.js").then((m) => m.runAgent(args.slice(1))).catch(fatal);

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@agenticmail/enterprise",
-  "version": "0.5.195",
+  "version": "0.5.196",
   "description": "AgenticMail Enterprise — cloud-hosted AI agent identity, email, auth & compliance for organizations",
   "type": "module",
   "bin": {

package/src/cli-serve.ts CHANGED Viewed

@@ -43,13 +43,71 @@ function loadEnvFile(): void {
   }
 }
+/**
+ * If JWT_SECRET or AGENTICMAIL_VAULT_KEY are missing, generate them
+ * and append to ~/.agenticmail/.env so they persist across restarts.
+ */
+async function ensureSecrets(): Promise<void> {
+  const { randomUUID } = await import('crypto');
+  const envDir = join(homedir(), '.agenticmail');
+  const envPath = join(envDir, '.env');
+  let dirty = false;
+  if (!process.env.JWT_SECRET) {
+    process.env.JWT_SECRET = randomUUID() + randomUUID();
+    dirty = true;
+    console.log('[startup] Generated new JWT_SECRET (existing sessions will need to re-login)');
+  }
+  if (!process.env.AGENTICMAIL_VAULT_KEY) {
+    process.env.AGENTICMAIL_VAULT_KEY = randomUUID() + randomUUID();
+    dirty = true;
+    console.log('[startup] Generated new AGENTICMAIL_VAULT_KEY');
+    console.log('[startup] ⚠️  Previously encrypted credentials will need to be re-entered in the dashboard');
+  }
+  if (dirty) {
+    try {
+      if (!existsSync(envDir)) {
+        const { mkdirSync } = await import('fs');
+        mkdirSync(envDir, { recursive: true });
+      }
+      // Append new secrets to .env (don't overwrite existing)
+      const { appendFileSync } = await import('fs');
+      const lines: string[] = [];
+      // Read existing to avoid duplicates
+      let existing = '';
+      if (existsSync(envPath)) {
+        existing = readFileSync(envPath, 'utf8');
+      }
+      if (!existing.includes('JWT_SECRET=')) {
+        lines.push(`JWT_SECRET=${process.env.JWT_SECRET}`);
+      }
+      if (!existing.includes('AGENTICMAIL_VAULT_KEY=')) {
+        lines.push(`AGENTICMAIL_VAULT_KEY=${process.env.AGENTICMAIL_VAULT_KEY}`);
+      }
+      if (lines.length) {
+        appendFileSync(envPath, '\n' + lines.join('\n') + '\n', { mode: 0o600 });
+        console.log(`[startup] Saved secrets to ${envPath}`);
+      }
+    } catch (e: any) {
+      console.warn(`[startup] Could not save secrets to ${envPath}: ${e.message}`);
+    }
+  }
+}
 export async function runServe(_args: string[]) {
   loadEnvFile();
   const DATABASE_URL = process.env.DATABASE_URL;
-  const JWT_SECRET = process.env.JWT_SECRET || 'auto-' + Date.now();
   const PORT = parseInt(process.env.PORT || '8080', 10);
+  // Auto-generate and persist secrets if missing
+  await ensureSecrets();
+  const JWT_SECRET = process.env.JWT_SECRET!;
+  const VAULT_KEY = process.env.AGENTICMAIL_VAULT_KEY!;
   if (!DATABASE_URL) {
     console.error('ERROR: DATABASE_URL is required.');
     console.error('');