@cat-factory/server 0.6.0

package/dist/index.js

@@ -0,0 +1,63 @@
+// @cat-factory/server — the runtime-neutral HTTP layer shared by every deployment
+// facade. This first slice hosts the cross-cutting primitives (logging, request
+// helpers, validation envelope, error mapping, CORS policy); the controllers,
+// middleware and the Hono app factory move here in subsequent steps.
+export { logger } from './observability/logger.js';
+export {} from './http/env.js';
+export {} from './runtime/gateways.js';
+export { BraveWebSearchUpstream, SearxngWebSearchUpstream, createWebSearchUpstreamFromEnv, DEFAULT_WEB_SEARCH_COUNT, } from './modules/webSearch/upstreams.js';
+export { escalateStaleNotifications } from './runtime/escalateNotifications.js';
+export { StateSigner } from './github/state.js';
+export { GitHubOAuth, } from './auth/GitHubOAuth.js';
+export { GoogleOAuth, } from './auth/GoogleOAuth.js';
+export { WebCryptoPasswordHasher } from './crypto/WebCryptoPasswordHasher.js';
+export { authController, pickPostLoginRedirect } from './modules/auth/AuthController.js';
+export { llmProxyController } from './modules/llmProxy/LlmProxyController.js';
+export { ContainerSessionService, DEFAULT_SESSION_TTL_MS, } from './containers/ContainerSessionService.js';
+// Runtime-neutral container-agent execution machinery, shared by both facades: the
+// composite that routes repo-operating kinds to a sandbox, the container executor
+// that builds + dispatches the harness job, and the backend-polymorphic job client.
+export { CompositeAgentExecutor } from './agents/CompositeAgentExecutor.js';
+export { ContainerAgentExecutor, } from './agents/ContainerAgentExecutor.js';
+export { ensureWorkBranchViaRest } from './github/ensureWorkBranch.js';
+export { RunnerJobClient } from './agents/RunnerJobClient.js';
+export { createScopedModelProviderResolver, } from './agents/modelProviderResolver.js';
+export { resolveWorkspaceCapabilities, } from './agents/providerCapabilities.js';
+export { ContainerRepoBootstrapper, } from './agents/ContainerRepoBootstrapper.js';
+export { buildResolveRepoTarget, } from './agents/resolveRepoTarget.js';
+export { bearerToken, requireAuth, verifySession } from './auth/middleware.js';
+export { registerCoreControllers } from './app.js';
+export { FanOutEventPublisher, } from './events/FanOutEventPublisher.js';
+export { InAppNotificationChannel } from './events/InAppNotificationChannel.js';
+export { mountAuthGate } from './http/authGate.js';
+export { param } from './http/params.js';
+export { jsonBody } from './http/validation.js';
+export { handleError } from './http/errorHandler.js';
+export { parseAllowedOrigins, resolveCorsOrigin } from './http/cors.js';
+export { base64url, base64urlToBytes, pkcs8PemToDer, timingSafeEqual } from './crypto/encoding.js';
+// Runtime-neutral (Web Crypto) credential encryption + GitHub-App authentication,
+// shared by both facades so the Node service can mint installation tokens and
+// encrypt runner-pool secrets at rest exactly as the Worker does.
+export { WebCryptoSecretCipher, } from './crypto/WebCryptoSecretCipher.js';
+export { WebCryptoPersonalSecretCipher } from './crypto/WebCryptoPersonalSecretCipher.js';
+export { GitHubAppAuth } from './github/GitHubAppAuth.js';
+export { GitHubAppRegistry, } from './github/GitHubAppRegistry.js';
+// The runtime-neutral fetch-based GitHub client + the CI / merge / mergeability
+// providers (shared by every facade so a facade can gate on real CI and merge for
+// real). The client authenticates via the App registry or any AppTokenSource (e.g. a
+// static PAT in local mode).
+export { FetchGitHubClient, GitHubApiError, } from './github/FetchGitHubClient.js';
+// The privileged provisioning slice (ADR 0005): runtime-neutral so every facade can
+// back the create-repo endpoint when a privileged App is configured.
+export { FetchGitHubProvisioningClient, } from './github/FetchGitHubProvisioningClient.js';
+export { WebCryptoWebhookVerifier } from './github/WebCryptoWebhookVerifier.js';
+export { GitHubCiStatusProvider, } from './github/GitHubCiStatusProvider.js';
+export { GitHubMergeabilityProvider, classifyMergeability, } from './github/GitHubMergeabilityProvider.js';
+export { GitHubPullRequestMerger, } from './github/GitHubPullRequestMerger.js';
+export { HmacSigner, TOKEN_AUDIENCE, } from './auth/signing.js';
+export { WS_TICKET_TTL_MS, authorizeWsUpgrade, mintWsTicket, } from './auth/wsTicket.js';
+export { resolveUrlSafetyPolicy } from './config/url-safety.js';
+// Row <-> domain mappers for the SQL persistence layer (shared by the D1 repos and
+// the Drizzle/Postgres repos — both use the same column shapes).
+export * from './persistence/mappers.js';
+//# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,kFAAkF;AAClF,gFAAgF;AAChF,8EAA8E;AAC9E,qEAAqE;AACrE,OAAO,EAAE,MAAM,EAAe,MAAM,2BAA2B,CAAA;AAC/D,OAAO,EAAqC,MAAM,eAAe,CAAA;AACjE,OAAO,EAYN,MAAM,uBAAuB,CAAA;AAC9B,OAAO,EACL,sBAAsB,EACtB,wBAAwB,EACxB,8BAA8B,EAC9B,wBAAwB,GACzB,MAAM,kCAAkC,CAAA;AACzC,OAAO,EAAE,0BAA0B,EAAE,MAAM,oCAAoC,CAAA;AAC/E,OAAO,EAAE,WAAW,EAAqB,MAAM,mBAAmB,CAAA;AAClE,OAAO,EACL,WAAW,GAGZ,MAAM,uBAAuB,CAAA;AAC9B,OAAO,EACL,WAAW,GAGZ,MAAM,uBAAuB,CAAA;AAC9B,OAAO,EAAE,uBAAuB,EAAE,MAAM,qCAAqC,CAAA;AAC7E,OAAO,EAAE,cAAc,EAAE,qBAAqB,EAAE,MAAM,kCAAkC,CAAA;AACxF,OAAO,EAAE,kBAAkB,EAAE,MAAM,0CAA0C,CAAA;AAC7E,OAAO,EACL,uBAAuB,EACvB,sBAAsB,GAGvB,MAAM,yCAAyC,CAAA;AAChD,mFAAmF;AACnF,kFAAkF;AAClF,oFAAoF;AACpF,OAAO,EAAE,sBAAsB,EAAE,MAAM,oCAAoC,CAAA;AAC3E,OAAO,EACL,sBAAsB,GAMvB,MAAM,oCAAoC,CAAA;AAC3C,OAAO,EAAE,uBAAuB,EAA8B,MAAM,8BAA8B,CAAA;AAClG,OAAO,EAAE,eAAe,EAA+B,MAAM,6BAA6B,CAAA;AAC1F,OAAO,EACL,iCAAiC,GAElC,MAAM,mCAAmC,CAAA;AAC1C,OAAO,EACL,4BAA4B,GAE7B,MAAM,kCAAkC,CAAA;AACzC,OAAO,EACL,yBAAyB,GAE1B,MAAM,uCAAuC,CAAA;AAC9C,OAAO,EACL,sBAAsB,GAEvB,MAAM,+BAA+B,CAAA;AACtC,OAAO,EAAE,WAAW,EAAE,WAAW,EAAE,aAAa,EAAE,MAAM,sBAAsB,CAAA;AAC9E,OAAO,EAAE,uBAAuB,EAAE,MAAM,UAAU,CAAA;AAClD,OAAO,EACL,oBAAoB,GAErB,MAAM,kCAAkC,CAAA;AACzC,OAAO,EAAE,wBAAwB,EAAE,MAAM,sCAAsC,CAAA;AAC/E,OAAO,EAAE,aAAa,EAAE,MAAM,oBAAoB,CAAA;AAClD,OAAO,EAAE,KAAK,EAAE,MAAM,kBAAkB,CAAA;AACxC,OAAO,EAAE,QAAQ,EAAE,MAAM,sBAAsB,CAAA;AAC/C,OAAO,EAAE,WAAW,EAAE,MAAM,wBAAwB,CAAA;AACpD,OAAO,EAAE,mBAAmB,EAAE,iBAAiB,EAAE,MAAM,gBAAgB,CAAA;AACvE,OAAO,EAAE,SAAS,EAAE,gBAAgB,EAAE,aAAa,EAAE,eAAe,EAAE,MAAM,sBAAsB,CAAA;AAClG,kFAAkF;AAClF,8EAA8E;AAC9E,kEAAkE;AAClE,OAAO,EACL,qBAAqB,GAEtB,MAAM,mCAAmC,CAAA;AAC1C,OAAO,EAAE,6BAA6B,EAAE,MAAM,2CAA2C,CAAA;AACzF,OAAO,EAAE,aAAa,EAAkC,MAAM,2BAA2B,CAAA;AACzF,OAAO,EACL,iBAAiB,GAIlB,MAAM,+BAA+B,CAAA;AACtC,gFAAgF;AAChF,kFAAkF;AAClF,qFAAqF;AACrF,6BAA6B;AAC7B,OAAO,EACL,iBAAiB,EACjB,cAAc,GAEf,MAAM,+BAA+B,CAAA;AACtC,oFAAoF;AACpF,qEAAqE;AACrE,OAAO,EACL,6BAA6B,GAE9B,MAAM,2CAA2C,CAAA;AAClD,OAAO,EAAE,wBAAwB,EAAE,MAAM,sCAAsC,CAAA;AAC/E,OAAO,EACL,sBAAsB,GAEvB,MAAM,oCAAoC,CAAA;AAC3C,OAAO,EACL,0BAA0B,EAC1B,oBAAoB,GAErB,MAAM,wCAAwC,CAAA;AAC/C,OAAO,EACL,uBAAuB,GAExB,MAAM,qCAAqC,CAAA;AAC5C,OAAO,EACL,UAAU,EACV,cAAc,GAIf,MAAM,mBAAmB,CAAA;AAC1B,OAAO,EACL,gBAAgB,EAChB,kBAAkB,EAClB,YAAY,GAGb,MAAM,oBAAoB,CAAA;AAsB3B,OAAO,EAAE,sBAAsB,EAAE,MAAM,wBAAwB,CAAA;AAE/D,mFAAmF;AACnF,iEAAiE;AACjE,cAAc,0BAA0B,CAAA"}

package/dist/modules/accounts/AccountController.d.ts

@@ -0,0 +1,10 @@
+import { Hono } from 'hono';
+import type { AppEnv } from '../../http/env.js';
+/**
+ * Account tenancy: the accounts a user can switch between (their personal account
+ * plus any orgs they belong to), org creation, and membership management. Accounts
+ * are an authenticated concept; with auth disabled (no signed-in user) there is a
+ * single implicit dev context, so the list is empty and mutations are refused.
+ */
+export declare function accountController(): Hono<AppEnv>;
+//# sourceMappingURL=AccountController.d.ts.map

package/dist/modules/accounts/AccountController.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"AccountController.d.ts","sourceRoot":"","sources":["../../../src/modules/accounts/AccountController.ts"],"names":[],"mappings":"AAUA,OAAO,EAAE,IAAI,EAAE,MAAM,MAAM,CAAA;AAE3B,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,mBAAmB,CAAA;AAc/C;;;;;GAKG;AACH,wBAAgB,iBAAiB,IAAI,IAAI,CAAC,MAAM,CAAC,CAsMhD"}

package/dist/modules/accounts/AccountController.js

@@ -0,0 +1,197 @@
+import { addApiKeySchema, addMemberSchema, connectEmailSchema, createAccountSchema, createInvitationSchema, setMemberRolesSchema, testEmailSchema, updateAccountSchema, } from '@cat-factory/contracts';
+import { Hono } from 'hono';
+import { param } from '../../http/params.js';
+import { jsonBody } from '../../http/validation.js';
+import { apiKeyToWire } from '../providers/ApiKeyController.js';
+/** The signed-in user, narrowed to what the tenancy layer needs. */
+function accountUser(c) {
+    const user = c.get('user');
+    return user ? { id: user.id, login: user.login, name: user.name } : null;
+}
+const signInRequired = (c) => c.json({ error: { code: 'unauthorized', message: 'Sign in to manage accounts' } }, 401);
+/**
+ * Account tenancy: the accounts a user can switch between (their personal account
+ * plus any orgs they belong to), org creation, and membership management. Accounts
+ * are an authenticated concept; with auth disabled (no signed-in user) there is a
+ * single implicit dev context, so the list is empty and mutations are refused.
+ */
+export function accountController() {
+    const app = new Hono();
+    app.get('/accounts', async (c) => {
+        const user = accountUser(c);
+        if (!user)
+            return c.json([]);
+        return c.json(await c.get('container').accountService.listForUser(user));
+    });
+    app.post('/accounts', jsonBody(createAccountSchema), async (c) => {
+        const user = accountUser(c);
+        if (!user)
+            return signInRequired(c);
+        const account = await c.get('container').accountService.createOrg(user, c.req.valid('json'));
+        return c.json(account, 201);
+    });
+    app.patch('/accounts/:accountId', jsonBody(updateAccountSchema), async (c) => {
+        const user = accountUser(c);
+        if (!user)
+            return signInRequired(c);
+        const account = await c
+            .get('container')
+            .accountService.updateSettings(param(c, 'accountId'), user.id, c.req.valid('json'));
+        return c.json(account);
+    });
+    app.get('/accounts/:accountId/members', async (c) => {
+        const user = accountUser(c);
+        if (!user)
+            return signInRequired(c);
+        const accounts = c.get('container').accountService;
+        // Membership in the account is required to see its roster (404 otherwise).
+        await accounts.requireMember(param(c, 'accountId'), user.id);
+        return c.json(await accounts.members(param(c, 'accountId')));
+    });
+    app.post('/accounts/:accountId/members', jsonBody(addMemberSchema), async (c) => {
+        const user = accountUser(c);
+        if (!user)
+            return signInRequired(c);
+        const body = c.req.valid('json');
+        const member = await c
+            .get('container')
+            .accountService.addMember(param(c, 'accountId'), user.id, body.userId, body.roles);
+        return c.json(member, 201);
+    });
+    // Set a member's role set (admin-only). The acting admin can't drop their own admin.
+    app.patch('/accounts/:accountId/members/:userId/roles', jsonBody(setMemberRolesSchema), async (c) => {
+        const user = accountUser(c);
+        if (!user)
+            return signInRequired(c);
+        const member = await c
+            .get('container')
+            .accountService.setMemberRoles(param(c, 'accountId'), user.id, param(c, 'userId'), c.req.valid('json').roles);
+        return c.json(member);
+    });
+    // ---- Invitations (email-based org onboarding) ---------------------------
+    // Available only when the invitation repository is wired (opt-in feature).
+    app.get('/accounts/:accountId/invitations', async (c) => {
+        const user = accountUser(c);
+        if (!user)
+            return signInRequired(c);
+        const container = c.get('container');
+        if (!container.invitations)
+            return c.json([]);
+        // Membership is required to view the account's pending invitations.
+        await container.accountService.requireMember(param(c, 'accountId'), user.id);
+        return c.json(await container.invitations.list(param(c, 'accountId')));
+    });
+    app.post('/accounts/:accountId/invitations', jsonBody(createInvitationSchema), async (c) => {
+        const user = accountUser(c);
+        if (!user)
+            return signInRequired(c);
+        const container = c.get('container');
+        if (!container.invitations) {
+            return c.json({ error: { code: 'unavailable', message: 'Invitations are not configured' } }, 503);
+        }
+        const body = c.req.valid('json');
+        const created = await container.invitations.invite(param(c, 'accountId'), user.id, body.email, body.roles);
+        // The raw accept link is returned so an operator can share it manually when no
+        // email transport is configured; never re-derivable afterwards.
+        return c.json({ invitation: created.invitation, acceptUrl: created.acceptUrl }, 201);
+    });
+    app.delete('/accounts/:accountId/invitations/:invitationId', async (c) => {
+        const user = accountUser(c);
+        if (!user)
+            return signInRequired(c);
+        const container = c.get('container');
+        if (!container.invitations)
+            return c.body(null, 204);
+        await container.invitations.revoke(param(c, 'accountId'), user.id, param(c, 'invitationId'));
+        return c.body(null, 204);
+    });
+    // ---- Account-scoped provider API keys (admin-onboarded, shared org pool) ----
+    // Direct-provider keys (OpenAI/Anthropic/Qwen/DeepSeek/Moonshot) shared by every
+    // workspace in the account. Admin-gated like the other account-scoped credentials;
+    // the raw key is write-only — only secret-free metadata is ever returned. Available
+    // only when the API-key store is wired (ENCRYPTION_KEY).
+    const apiKeysUnavailable = (c) => c.json({ error: { code: 'unavailable', message: 'API key storage is not configured' } }, 503);
+    app.get('/accounts/:accountId/api-keys', async (c) => {
+        const user = accountUser(c);
+        if (!user)
+            return signInRequired(c);
+        const container = c.get('container');
+        if (!container.apiKeys)
+            return apiKeysUnavailable(c);
+        await container.accountService.requireAdmin(param(c, 'accountId'), user.id);
+        const keys = await container.apiKeys.listKeys('account', param(c, 'accountId'));
+        return c.json({ keys: keys.map(apiKeyToWire) });
+    });
+    app.post('/accounts/:accountId/api-keys', jsonBody(addApiKeySchema), async (c) => {
+        const user = accountUser(c);
+        if (!user)
+            return signInRequired(c);
+        const container = c.get('container');
+        if (!container.apiKeys)
+            return apiKeysUnavailable(c);
+        await container.accountService.requireAdmin(param(c, 'accountId'), user.id);
+        const summary = await container.apiKeys.addKey('account', param(c, 'accountId'), c.req.valid('json'));
+        return c.json(apiKeyToWire(summary), 201);
+    });
+    app.delete('/accounts/:accountId/api-keys/:id', async (c) => {
+        const user = accountUser(c);
+        if (!user)
+            return signInRequired(c);
+        const container = c.get('container');
+        if (!container.apiKeys)
+            return apiKeysUnavailable(c);
+        await container.accountService.requireAdmin(param(c, 'accountId'), user.id);
+        await container.apiKeys.removeKey('account', param(c, 'accountId'), param(c, 'id'));
+        return c.body(null, 204);
+    });
+    // ---- Email sender connection (per-account, UI-onboarded) ----------------
+    // Owner-only mutations; available only when the email module is wired.
+    app.get('/accounts/:accountId/email-connection', async (c) => {
+        const user = accountUser(c);
+        if (!user)
+            return signInRequired(c);
+        const container = c.get('container');
+        if (!container.email)
+            return c.json({ connection: null, configured: false });
+        await container.accountService.requireMember(param(c, 'accountId'), user.id);
+        const connection = await container.email.getConnection(param(c, 'accountId'));
+        return c.json({ connection, configured: true });
+    });
+    app.post('/accounts/:accountId/email-connection', jsonBody(connectEmailSchema), async (c) => {
+        const user = accountUser(c);
+        if (!user)
+            return signInRequired(c);
+        const container = c.get('container');
+        if (!container.email) {
+            return c.json({ error: { code: 'unavailable', message: 'Email is not configured' } }, 503);
+        }
+        await c.get('container').accountService.requireAdmin(param(c, 'accountId'), user.id);
+        const connection = await container.email.connect(param(c, 'accountId'), c.req.valid('json'));
+        return c.json(connection, 201);
+    });
+    app.delete('/accounts/:accountId/email-connection', async (c) => {
+        const user = accountUser(c);
+        if (!user)
+            return signInRequired(c);
+        const container = c.get('container');
+        if (!container.email)
+            return c.body(null, 204);
+        await c.get('container').accountService.requireAdmin(param(c, 'accountId'), user.id);
+        await container.email.disconnect(param(c, 'accountId'));
+        return c.body(null, 204);
+    });
+    app.post('/accounts/:accountId/email-connection/test', jsonBody(testEmailSchema), async (c) => {
+        const user = accountUser(c);
+        if (!user)
+            return signInRequired(c);
+        const container = c.get('container');
+        if (!container.email) {
+            return c.json({ error: { code: 'unavailable', message: 'Email is not configured' } }, 503);
+        }
+        await c.get('container').accountService.requireAdmin(param(c, 'accountId'), user.id);
+        await container.email.sendTest(param(c, 'accountId'), c.req.valid('json').to);
+        return c.json({ ok: true });
+    });
+    return app;
+}
+//# sourceMappingURL=AccountController.js.map

package/dist/modules/accounts/AccountController.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"AccountController.js","sourceRoot":"","sources":["../../../src/modules/accounts/AccountController.ts"],"names":[],"mappings":"AAAA,OAAO,EACL,eAAe,EACf,eAAe,EACf,kBAAkB,EAClB,mBAAmB,EACnB,sBAAsB,EACtB,oBAAoB,EACpB,eAAe,EACf,mBAAmB,GACpB,MAAM,wBAAwB,CAAA;AAC/B,OAAO,EAAE,IAAI,EAAE,MAAM,MAAM,CAAA;AAG3B,OAAO,EAAE,KAAK,EAAE,MAAM,sBAAsB,CAAA;AAC5C,OAAO,EAAE,QAAQ,EAAE,MAAM,0BAA0B,CAAA;AACnD,OAAO,EAAE,YAAY,EAAE,MAAM,kCAAkC,CAAA;AAE/D,oEAAoE;AACpE,SAAS,WAAW,CAAC,CAAkB;IACrC,MAAM,IAAI,GAAG,CAAC,CAAC,GAAG,CAAC,MAAM,CAAC,CAAA;IAC1B,OAAO,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,EAAE,IAAI,CAAC,EAAE,EAAE,KAAK,EAAE,IAAI,CAAC,KAAK,EAAE,IAAI,EAAE,IAAI,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,IAAI,CAAA;AAC1E,CAAC;AAED,MAAM,cAAc,GAAG,CAAC,CAAkB,EAAE,EAAE,CAC5C,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,EAAE,IAAI,EAAE,cAAc,EAAE,OAAO,EAAE,4BAA4B,EAAE,EAAE,EAAE,GAAG,CAAC,CAAA;AAEzF;;;;;GAKG;AACH,MAAM,UAAU,iBAAiB;IAC/B,MAAM,GAAG,GAAG,IAAI,IAAI,EAAU,CAAA;IAE9B,GAAG,CAAC,GAAG,CAAC,WAAW,EAAE,KAAK,EAAE,CAAC,EAAE,EAAE;QAC/B,MAAM,IAAI,GAAG,WAAW,CAAC,CAAC,CAAC,CAAA;QAC3B,IAAI,CAAC,IAAI;YAAE,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,CAAC,CAAA;QAC5B,OAAO,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,GAAG,CAAC,WAAW,CAAC,CAAC,cAAc,CAAC,WAAW,CAAC,IAAI,CAAC,CAAC,CAAA;IAC1E,CAAC,CAAC,CAAA;IAEF,GAAG,CAAC,IAAI,CAAC,WAAW,EAAE,QAAQ,CAAC,mBAAmB,CAAC,EAAE,KAAK,EAAE,CAAC,EAAE,EAAE;QAC/D,MAAM,IAAI,GAAG,WAAW,CAAC,CAAC,CAAC,CAAA;QAC3B,IAAI,CAAC,IAAI;YAAE,OAAO,cAAc,CAAC,CAAC,CAAC,CAAA;QACnC,MAAM,OAAO,GAAG,MAAM,CAAC,CAAC,GAAG,CAAC,WAAW,CAAC,CAAC,cAAc,CAAC,SAAS,CAAC,IAAI,EAAE,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,CAAA;QAC5F,OAAO,CAAC,CAAC,IAAI,CAAC,OAAO,EAAE,GAAG,CAAC,CAAA;IAC7B,CAAC,CAAC,CAAA;IAEF,GAAG,CAAC,KAAK,CAAC,sBAAsB,EAAE,QAAQ,CAAC,mBAAmB,CAAC,EAAE,KAAK,EAAE,CAAC,EAAE,EAAE;QAC3E,MAAM,IAAI,GAAG,WAAW,CAAC,CAAC,CAAC,CAAA;QAC3B,IAAI,CAAC,IAAI;YAAE,OAAO,cAAc,CAAC,CAAC,CAAC,CAAA;QACnC,MAAM,OAAO,GAAG,MAAM,CAAC;aACpB,GAAG,CAAC,WAAW,CAAC;aAChB,cAAc,CAAC,cAAc,CAAC,KAAK,CAAC,CAAC,EAAE,WAAW,CAAC,EAAE,IAAI,CAAC,EAAE,EAAE,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,CAAA;QACrF,OAAO,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAA;IACxB,CAAC,CAAC,CAAA;IAEF,GAAG,CAAC,GAAG,CAAC,8BAA8B,EAAE,KAAK,EAAE,CAAC,EAAE,EAAE;QAClD,MAAM,IAAI,GAAG,WAAW,CAAC,CAAC,CAAC,CAAA;QAC3B,IAAI,CAAC,IAAI;YAAE,OAAO,cAAc,CAAC,CAAC,CAAC,CAAA;QACnC,MAAM,QAAQ,GAAG,CAAC,CAAC,GAAG,CAAC,WAAW,CAAC,CAAC,cAAc,CAAA;QAClD,2EAA2E;QAC3E,MAAM,QAAQ,CAAC,aAAa,CAAC,KAAK,CAAC,CAAC,EAAE,WAAW,CAAC,EAAE,IAAI,CAAC,EAAE,CAAC,CAAA;QAC5D,OAAO,CAAC,CAAC,IAAI,CAAC,MAAM,QAAQ,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC,EAAE,WAAW,CAAC,CAAC,CAAC,CAAA;IAC9D,CAAC,CAAC,CAAA;IAEF,GAAG,CAAC,IAAI,CAAC,8BAA8B,EAAE,QAAQ,CAAC,eAAe,CAAC,EAAE,KAAK,EAAE,CAAC,EAAE,EAAE;QAC9E,MAAM,IAAI,GAAG,WAAW,CAAC,CAAC,CAAC,CAAA;QAC3B,IAAI,CAAC,IAAI;YAAE,OAAO,cAAc,CAAC,CAAC,CAAC,CAAA;QACnC,MAAM,IAAI,GAAG,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,CAAC,CAAA;QAChC,MAAM,MAAM,GAAG,MAAM,CAAC;aACnB,GAAG,CAAC,WAAW,CAAC;aAChB,cAAc,CAAC,SAAS,CAAC,KAAK,CAAC,CAAC,EAAE,WAAW,CAAC,EAAE,IAAI,CAAC,EAAE,EAAE,IAAI,CAAC,MAAM,EAAE,IAAI,CAAC,KAAK,CAAC,CAAA;QACpF,OAAO,CAAC,CAAC,IAAI,CAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IAC5B,CAAC,CAAC,CAAA;IAEF,qFAAqF;IACrF,GAAG,CAAC,KAAK,CACP,4CAA4C,EAC5C,QAAQ,CAAC,oBAAoB,CAAC,EAC9B,KAAK,EAAE,CAAC,EAAE,EAAE;QACV,MAAM,IAAI,GAAG,WAAW,CAAC,CAAC,CAAC,CAAA;QAC3B,IAAI,CAAC,IAAI;YAAE,OAAO,cAAc,CAAC,CAAC,CAAC,CAAA;QACnC,MAAM,MAAM,GAAG,MAAM,CAAC;aACnB,GAAG,CAAC,WAAW,CAAC;aAChB,cAAc,CAAC,cAAc,CAC5B,KAAK,CAAC,CAAC,EAAE,WAAW,CAAC,EACrB,IAAI,CAAC,EAAE,EACP,KAAK,CAAC,CAAC,EAAE,QAAQ,CAAC,EAClB,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,KAAK,CAC1B,CAAA;QACH,OAAO,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAA;IACvB,CAAC,CACF,CAAA;IAED,4EAA4E;IAC5E,2EAA2E;IAE3E,GAAG,CAAC,GAAG,CAAC,kCAAkC,EAAE,KAAK,EAAE,CAAC,EAAE,EAAE;QACtD,MAAM,IAAI,GAAG,WAAW,CAAC,CAAC,CAAC,CAAA;QAC3B,IAAI,CAAC,IAAI;YAAE,OAAO,cAAc,CAAC,CAAC,CAAC,CAAA;QACnC,MAAM,SAAS,GAAG,CAAC,CAAC,GAAG,CAAC,WAAW,CAAC,CAAA;QACpC,IAAI,CAAC,SAAS,CAAC,WAAW;YAAE,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,CAAC,CAAA;QAC7C,oEAAoE;QACpE,MAAM,SAAS,CAAC,cAAc,CAAC,aAAa,CAAC,KAAK,CAAC,CAAC,EAAE,WAAW,CAAC,EAAE,IAAI,CAAC,EAAE,CAAC,CAAA;QAC5E,OAAO,CAAC,CAAC,IAAI,CAAC,MAAM,SAAS,CAAC,WAAW,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,EAAE,WAAW,CAAC,CAAC,CAAC,CAAA;IACxE,CAAC,CAAC,CAAA;IAEF,GAAG,CAAC,IAAI,CAAC,kCAAkC,EAAE,QAAQ,CAAC,sBAAsB,CAAC,EAAE,KAAK,EAAE,CAAC,EAAE,EAAE;QACzF,MAAM,IAAI,GAAG,WAAW,CAAC,CAAC,CAAC,CAAA;QAC3B,IAAI,CAAC,IAAI;YAAE,OAAO,cAAc,CAAC,CAAC,CAAC,CAAA;QACnC,MAAM,SAAS,GAAG,CAAC,CAAC,GAAG,CAAC,WAAW,CAAC,CAAA;QACpC,IAAI,CAAC,SAAS,CAAC,WAAW,EAAE,CAAC;YAC3B,OAAO,CAAC,CAAC,IAAI,CACX,EAAE,KAAK,EAAE,EAAE,IAAI,EAAE,aAAa,EAAE,OAAO,EAAE,gCAAgC,EAAE,EAAE,EAC7E,GAAG,CACJ,CAAA;QACH,CAAC;QACD,MAAM,IAAI,GAAG,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,CAAC,CAAA;QAChC,MAAM,OAAO,GAAG,MAAM,SAAS,CAAC,WAAW,CAAC,MAAM,CAChD,KAAK,CAAC,CAAC,EAAE,WAAW,CAAC,EACrB,IAAI,CAAC,EAAE,EACP,IAAI,CAAC,KAAK,EACV,IAAI,CAAC,KAAK,CACX,CAAA;QACD,+EAA+E;QAC/E,gEAAgE;QAChE,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,UAAU,EAAE,OAAO,CAAC,UAAU,EAAE,SAAS,EAAE,OAAO,CAAC,SAAS,EAAE,EAAE,GAAG,CAAC,CAAA;IACtF,CAAC,CAAC,CAAA;IAEF,GAAG,CAAC,MAAM,CAAC,gDAAgD,EAAE,KAAK,EAAE,CAAC,EAAE,EAAE;QACvE,MAAM,IAAI,GAAG,WAAW,CAAC,CAAC,CAAC,CAAA;QAC3B,IAAI,CAAC,IAAI;YAAE,OAAO,cAAc,CAAC,CAAC,CAAC,CAAA;QACnC,MAAM,SAAS,GAAG,CAAC,CAAC,GAAG,CAAC,WAAW,CAAC,CAAA;QACpC,IAAI,CAAC,SAAS,CAAC,WAAW;YAAE,OAAO,CAAC,CAAC,IAAI,CAAC,IAAI,EAAE,GAAG,CAAC,CAAA;QACpD,MAAM,SAAS,CAAC,WAAW,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,EAAE,WAAW,CAAC,EAAE,IAAI,CAAC,EAAE,EAAE,KAAK,CAAC,CAAC,EAAE,cAAc,CAAC,CAAC,CAAA;QAC5F,OAAO,CAAC,CAAC,IAAI,CAAC,IAAI,EAAE,GAAG,CAAC,CAAA;IAC1B,CAAC,CAAC,CAAA;IAEF,gFAAgF;IAChF,iFAAiF;IACjF,mFAAmF;IACnF,oFAAoF;IACpF,yDAAyD;IAEzD,MAAM,kBAAkB,GAAG,CAAC,CAAkB,EAAE,EAAE,CAChD,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,EAAE,IAAI,EAAE,aAAa,EAAE,OAAO,EAAE,mCAAmC,EAAE,EAAE,EAAE,GAAG,CAAC,CAAA;IAE/F,GAAG,CAAC,GAAG,CAAC,+BAA+B,EAAE,KAAK,EAAE,CAAC,EAAE,EAAE;QACnD,MAAM,IAAI,GAAG,WAAW,CAAC,CAAC,CAAC,CAAA;QAC3B,IAAI,CAAC,IAAI;YAAE,OAAO,cAAc,CAAC,CAAC,CAAC,CAAA;QACnC,MAAM,SAAS,GAAG,CAAC,CAAC,GAAG,CAAC,WAAW,CAAC,CAAA;QACpC,IAAI,CAAC,SAAS,CAAC,OAAO;YAAE,OAAO,kBAAkB,CAAC,CAAC,CAAC,CAAA;QACpD,MAAM,SAAS,CAAC,cAAc,CAAC,YAAY,CAAC,KAAK,CAAC,CAAC,EAAE,WAAW,CAAC,EAAE,IAAI,CAAC,EAAE,CAAC,CAAA;QAC3E,MAAM,IAAI,GAAG,MAAM,SAAS,CAAC,OAAO,CAAC,QAAQ,CAAC,SAAS,EAAE,KAAK,CAAC,CAAC,EAAE,WAAW,CAAC,CAAC,CAAA;QAC/E,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,IAAI,EAAE,IAAI,CAAC,GAAG,CAAC,YAAY,CAAC,EAAE,CAAC,CAAA;IACjD,CAAC,CAAC,CAAA;IAEF,GAAG,CAAC,IAAI,CAAC,+BAA+B,EAAE,QAAQ,CAAC,eAAe,CAAC,EAAE,KAAK,EAAE,CAAC,EAAE,EAAE;QAC/E,MAAM,IAAI,GAAG,WAAW,CAAC,CAAC,CAAC,CAAA;QAC3B,IAAI,CAAC,IAAI;YAAE,OAAO,cAAc,CAAC,CAAC,CAAC,CAAA;QACnC,MAAM,SAAS,GAAG,CAAC,CAAC,GAAG,CAAC,WAAW,CAAC,CAAA;QACpC,IAAI,CAAC,SAAS,CAAC,OAAO;YAAE,OAAO,kBAAkB,CAAC,CAAC,CAAC,CAAA;QACpD,MAAM,SAAS,CAAC,cAAc,CAAC,YAAY,CAAC,KAAK,CAAC,CAAC,EAAE,WAAW,CAAC,EAAE,IAAI,CAAC,EAAE,CAAC,CAAA;QAC3E,MAAM,OAAO,GAAG,MAAM,SAAS,CAAC,OAAO,CAAC,MAAM,CAC5C,SAAS,EACT,KAAK,CAAC,CAAC,EAAE,WAAW,CAAC,EACrB,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,CAAC,CACpB,CAAA;QACD,OAAO,CAAC,CAAC,IAAI,CAAC,YAAY,CAAC,OAAO,CAAC,EAAE,GAAG,CAAC,CAAA;IAC3C,CAAC,CAAC,CAAA;IAEF,GAAG,CAAC,MAAM,CAAC,mCAAmC,EAAE,KAAK,EAAE,CAAC,EAAE,EAAE;QAC1D,MAAM,IAAI,GAAG,WAAW,CAAC,CAAC,CAAC,CAAA;QAC3B,IAAI,CAAC,IAAI;YAAE,OAAO,cAAc,CAAC,CAAC,CAAC,CAAA;QACnC,MAAM,SAAS,GAAG,CAAC,CAAC,GAAG,CAAC,WAAW,CAAC,CAAA;QACpC,IAAI,CAAC,SAAS,CAAC,OAAO;YAAE,OAAO,kBAAkB,CAAC,CAAC,CAAC,CAAA;QACpD,MAAM,SAAS,CAAC,cAAc,CAAC,YAAY,CAAC,KAAK,CAAC,CAAC,EAAE,WAAW,CAAC,EAAE,IAAI,CAAC,EAAE,CAAC,CAAA;QAC3E,MAAM,SAAS,CAAC,OAAO,CAAC,SAAS,CAAC,SAAS,EAAE,KAAK,CAAC,CAAC,EAAE,WAAW,CAAC,EAAE,KAAK,CAAC,CAAC,EAAE,IAAI,CAAC,CAAC,CAAA;QACnF,OAAO,CAAC,CAAC,IAAI,CAAC,IAAI,EAAE,GAAG,CAAC,CAAA;IAC1B,CAAC,CAAC,CAAA;IAEF,4EAA4E;IAC5E,uEAAuE;IAEvE,GAAG,CAAC,GAAG,CAAC,uCAAuC,EAAE,KAAK,EAAE,CAAC,EAAE,EAAE;QAC3D,MAAM,IAAI,GAAG,WAAW,CAAC,CAAC,CAAC,CAAA;QAC3B,IAAI,CAAC,IAAI;YAAE,OAAO,cAAc,CAAC,CAAC,CAAC,CAAA;QACnC,MAAM,SAAS,GAAG,CAAC,CAAC,GAAG,CAAC,WAAW,CAAC,CAAA;QACpC,IAAI,CAAC,SAAS,CAAC,KAAK;YAAE,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,UAAU,EAAE,IAAI,EAAE,UAAU,EAAE,KAAK,EAAE,CAAC,CAAA;QAC5E,MAAM,SAAS,CAAC,cAAc,CAAC,aAAa,CAAC,KAAK,CAAC,CAAC,EAAE,WAAW,CAAC,EAAE,IAAI,CAAC,EAAE,CAAC,CAAA;QAC5E,MAAM,UAAU,GAAG,MAAM,SAAS,CAAC,KAAK,CAAC,aAAa,CAAC,KAAK,CAAC,CAAC,EAAE,WAAW,CAAC,CAAC,CAAA;QAC7E,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,UAAU,EAAE,UAAU,EAAE,IAAI,EAAE,CAAC,CAAA;IACjD,CAAC,CAAC,CAAA;IAEF,GAAG,CAAC,IAAI,CAAC,uCAAuC,EAAE,QAAQ,CAAC,kBAAkB,CAAC,EAAE,KAAK,EAAE,CAAC,EAAE,EAAE;QAC1F,MAAM,IAAI,GAAG,WAAW,CAAC,CAAC,CAAC,CAAA;QAC3B,IAAI,CAAC,IAAI;YAAE,OAAO,cAAc,CAAC,CAAC,CAAC,CAAA;QACnC,MAAM,SAAS,GAAG,CAAC,CAAC,GAAG,CAAC,WAAW,CAAC,CAAA;QACpC,IAAI,CAAC,SAAS,CAAC,KAAK,EAAE,CAAC;YACrB,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,EAAE,IAAI,EAAE,aAAa,EAAE,OAAO,EAAE,yBAAyB,EAAE,EAAE,EAAE,GAAG,CAAC,CAAA;QAC5F,CAAC;QACD,MAAM,CAAC,CAAC,GAAG,CAAC,WAAW,CAAC,CAAC,cAAc,CAAC,YAAY,CAAC,KAAK,CAAC,CAAC,EAAE,WAAW,CAAC,EAAE,IAAI,CAAC,EAAE,CAAC,CAAA;QACpF,MAAM,UAAU,GAAG,MAAM,SAAS,CAAC,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC,EAAE,WAAW,CAAC,EAAE,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,CAAA;QAC5F,OAAO,CAAC,CAAC,IAAI,CAAC,UAAU,EAAE,GAAG,CAAC,CAAA;IAChC,CAAC,CAAC,CAAA;IAEF,GAAG,CAAC,MAAM,CAAC,uCAAuC,EAAE,KAAK,EAAE,CAAC,EAAE,EAAE;QAC9D,MAAM,IAAI,GAAG,WAAW,CAAC,CAAC,CAAC,CAAA;QAC3B,IAAI,CAAC,IAAI;YAAE,OAAO,cAAc,CAAC,CAAC,CAAC,CAAA;QACnC,MAAM,SAAS,GAAG,CAAC,CAAC,GAAG,CAAC,WAAW,CAAC,CAAA;QACpC,IAAI,CAAC,SAAS,CAAC,KAAK;YAAE,OAAO,CAAC,CAAC,IAAI,CAAC,IAAI,EAAE,GAAG,CAAC,CAAA;QAC9C,MAAM,CAAC,CAAC,GAAG,CAAC,WAAW,CAAC,CAAC,cAAc,CAAC,YAAY,CAAC,KAAK,CAAC,CAAC,EAAE,WAAW,CAAC,EAAE,IAAI,CAAC,EAAE,CAAC,CAAA;QACpF,MAAM,SAAS,CAAC,KAAK,CAAC,UAAU,CAAC,KAAK,CAAC,CAAC,EAAE,WAAW,CAAC,CAAC,CAAA;QACvD,OAAO,CAAC,CAAC,IAAI,CAAC,IAAI,EAAE,GAAG,CAAC,CAAA;IAC1B,CAAC,CAAC,CAAA;IAEF,GAAG,CAAC,IAAI,CAAC,4CAA4C,EAAE,QAAQ,CAAC,eAAe,CAAC,EAAE,KAAK,EAAE,CAAC,EAAE,EAAE;QAC5F,MAAM,IAAI,GAAG,WAAW,CAAC,CAAC,CAAC,CAAA;QAC3B,IAAI,CAAC,IAAI;YAAE,OAAO,cAAc,CAAC,CAAC,CAAC,CAAA;QACnC,MAAM,SAAS,GAAG,CAAC,CAAC,GAAG,CAAC,WAAW,CAAC,CAAA;QACpC,IAAI,CAAC,SAAS,CAAC,KAAK,EAAE,CAAC;YACrB,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,EAAE,IAAI,EAAE,aAAa,EAAE,OAAO,EAAE,yBAAyB,EAAE,EAAE,EAAE,GAAG,CAAC,CAAA;QAC5F,CAAC;QACD,MAAM,CAAC,CAAC,GAAG,CAAC,WAAW,CAAC,CAAC,cAAc,CAAC,YAAY,CAAC,KAAK,CAAC,CAAC,EAAE,WAAW,CAAC,EAAE,IAAI,CAAC,EAAE,CAAC,CAAA;QACpF,MAAM,SAAS,CAAC,KAAK,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC,EAAE,WAAW,CAAC,EAAE,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,EAAE,CAAC,CAAA;QAC7E,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,EAAE,EAAE,IAAI,EAAE,CAAC,CAAA;IAC7B,CAAC,CAAC,CAAA;IAEF,OAAO,GAAG,CAAA;AACZ,CAAC"}

package/dist/modules/agentRuns/AgentRunController.d.ts

@@ -0,0 +1,10 @@
+import { Hono } from 'hono';
+import type { AppEnv } from '../../http/env.js';
+/**
+ * Cross-cutting endpoints over any "agent run" (bootstrap or execution),
+ * dispatching to the right service by the run's kind. Mounted under
+ * `/workspaces/:workspaceId`. This is the single retry path the board uses for a
+ * failed run of either flow (replacing the bootstrap-only retry route).
+ */
+export declare function agentRunController(): Hono<AppEnv>;
+//# sourceMappingURL=AgentRunController.d.ts.map

package/dist/modules/agentRuns/AgentRunController.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"AgentRunController.d.ts","sourceRoot":"","sources":["../../../src/modules/agentRuns/AgentRunController.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,IAAI,EAAE,MAAM,MAAM,CAAA;AAE3B,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,mBAAmB,CAAA;AAO/C;;;;;GAKG;AACH,wBAAgB,kBAAkB,IAAI,IAAI,CAAC,MAAM,CAAC,CAqEjD"}

package/dist/modules/agentRuns/AgentRunController.js

@@ -0,0 +1,65 @@
+import { Hono } from 'hono';
+import { param } from '../../http/params.js';
+import { personalGateForRun, readPersonalPassword } from '../providers/personalCredentialGate.js';
+const unavailable = (c, message) => c.json({ error: { code: 'unavailable', message } }, 503);
+/**
+ * Cross-cutting endpoints over any "agent run" (bootstrap or execution),
+ * dispatching to the right service by the run's kind. Mounted under
+ * `/workspaces/:workspaceId`. This is the single retry path the board uses for a
+ * failed run of either flow (replacing the bootstrap-only retry route).
+ */
+export function agentRunController() {
+    const app = new Hono();
+    // Retry a failed run. Resolves the kind from the unified agent_runs table, then
+    // re-drives via the matching service (both 409 if the run isn't `failed`).
+    app.post('/agent-runs/:id/retry', async (c) => {
+        const container = c.get('container');
+        const workspaceId = param(c, 'workspaceId');
+        const id = param(c, 'id');
+        const ref = await container.agentRunRepository.getRef(workspaceId, id);
+        if (!ref) {
+            return c.json({ error: { code: 'not_found', message: `Agent run '${id}' not found` } }, 404);
+        }
+        if (ref.kind === 'bootstrap') {
+            const bootstrap = container.bootstrap;
+            if (!bootstrap)
+                return unavailable(c, 'Repo bootstrap is not configured');
+            if (!bootstrap.service.canBootstrap) {
+                return unavailable(c, 'Repo bootstrapping needs the GitHub App and the implementation container to be configured');
+            }
+            const run = await bootstrap.service.retry(workspaceId, id);
+            return c.json({ kind: ref.kind, run }, 201);
+        }
+        // Individual-usage models (Claude) require the retrying user's personal
+        // subscription: resolve the initiator + activation closure (throws 428 when a
+        // password is needed). The password rides on the X-Personal-Password header. A
+        // non-individual run gets a no-op gate.
+        const { initiatedBy, activate } = await personalGateForRun(container, workspaceId, id, c.get('user'), readPersonalPassword(c));
+        const run = await container.executionService.retry(workspaceId, id, initiatedBy, activate);
+        return c.json({ kind: ref.kind, run }, 201);
+    });
+    // Explicitly stop a running run (bootstrap or execution). Kills the per-run
+    // container and tears down the durable driver, then marks the run terminally
+    // `cancelled` so the board stops showing it as running. Resolves the kind from
+    // the unified agent_runs table and dispatches to the matching service.
+    app.post('/agent-runs/:id/stop', async (c) => {
+        const container = c.get('container');
+        const workspaceId = param(c, 'workspaceId');
+        const id = param(c, 'id');
+        const ref = await container.agentRunRepository.getRef(workspaceId, id);
+        if (!ref) {
+            return c.json({ error: { code: 'not_found', message: `Agent run '${id}' not found` } }, 404);
+        }
+        if (ref.kind === 'bootstrap') {
+            const bootstrap = container.bootstrap;
+            if (!bootstrap)
+                return unavailable(c, 'Repo bootstrap is not configured');
+            const run = await bootstrap.service.stop(workspaceId, id);
+            return c.json({ kind: ref.kind, run });
+        }
+        const run = await container.executionService.stopRun(workspaceId, id);
+        return c.json({ kind: ref.kind, run });
+    });
+    return app;
+}
+//# sourceMappingURL=AgentRunController.js.map

package/dist/modules/agentRuns/AgentRunController.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"AgentRunController.js","sourceRoot":"","sources":["../../../src/modules/agentRuns/AgentRunController.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,IAAI,EAAE,MAAM,MAAM,CAAA;AAG3B,OAAO,EAAE,KAAK,EAAE,MAAM,sBAAsB,CAAA;AAC5C,OAAO,EAAE,kBAAkB,EAAE,oBAAoB,EAAE,MAAM,wCAAwC,CAAA;AAEjG,MAAM,WAAW,GAAG,CAAC,CAAkB,EAAE,OAAe,EAAE,EAAE,CAC1D,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,EAAE,IAAI,EAAE,aAAa,EAAE,OAAO,EAAE,EAAE,EAAE,GAAG,CAAC,CAAA;AAE1D;;;;;GAKG;AACH,MAAM,UAAU,kBAAkB;IAChC,MAAM,GAAG,GAAG,IAAI,IAAI,EAAU,CAAA;IAE9B,gFAAgF;IAChF,2EAA2E;IAC3E,GAAG,CAAC,IAAI,CAAC,uBAAuB,EAAE,KAAK,EAAE,CAAC,EAAE,EAAE;QAC5C,MAAM,SAAS,GAAG,CAAC,CAAC,GAAG,CAAC,WAAW,CAAC,CAAA;QACpC,MAAM,WAAW,GAAG,KAAK,CAAC,CAAC,EAAE,aAAa,CAAC,CAAA;QAC3C,MAAM,EAAE,GAAG,KAAK,CAAC,CAAC,EAAE,IAAI,CAAC,CAAA;QAEzB,MAAM,GAAG,GAAG,MAAM,SAAS,CAAC,kBAAkB,CAAC,MAAM,CAAC,WAAW,EAAE,EAAE,CAAC,CAAA;QACtE,IAAI,CAAC,GAAG,EAAE,CAAC;YACT,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,EAAE,IAAI,EAAE,WAAW,EAAE,OAAO,EAAE,cAAc,EAAE,aAAa,EAAE,EAAE,EAAE,GAAG,CAAC,CAAA;QAC9F,CAAC;QAED,IAAI,GAAG,CAAC,IAAI,KAAK,WAAW,EAAE,CAAC;YAC7B,MAAM,SAAS,GAAG,SAAS,CAAC,SAAS,CAAA;YACrC,IAAI,CAAC,SAAS;gBAAE,OAAO,WAAW,CAAC,CAAC,EAAE,kCAAkC,CAAC,CAAA;YACzE,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC,YAAY,EAAE,CAAC;gBACpC,OAAO,WAAW,CAChB,CAAC,EACD,2FAA2F,CAC5F,CAAA;YACH,CAAC;YACD,MAAM,GAAG,GAAG,MAAM,SAAS,CAAC,OAAO,CAAC,KAAK,CAAC,WAAW,EAAE,EAAE,CAAC,CAAA;YAC1D,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,IAAI,EAAE,GAAG,CAAC,IAAI,EAAE,GAAG,EAAE,EAAE,GAAG,CAAC,CAAA;QAC7C,CAAC;QAED,wEAAwE;QACxE,8EAA8E;QAC9E,+EAA+E;QAC/E,wCAAwC;QACxC,MAAM,EAAE,WAAW,EAAE,QAAQ,EAAE,GAAG,MAAM,kBAAkB,CACxD,SAAS,EACT,WAAW,EACX,EAAE,EACF,CAAC,CAAC,GAAG,CAAC,MAAM,CAAC,EACb,oBAAoB,CAAC,CAAC,CAAC,CACxB,CAAA;QACD,MAAM,GAAG,GAAG,MAAM,SAAS,CAAC,gBAAgB,CAAC,KAAK,CAAC,WAAW,EAAE,EAAE,EAAE,WAAW,EAAE,QAAQ,CAAC,CAAA;QAC1F,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,IAAI,EAAE,GAAG,CAAC,IAAI,EAAE,GAAG,EAAE,EAAE,GAAG,CAAC,CAAA;IAC7C,CAAC,CAAC,CAAA;IAEF,4EAA4E;IAC5E,6EAA6E;IAC7E,+EAA+E;IAC/E,uEAAuE;IACvE,GAAG,CAAC,IAAI,CAAC,sBAAsB,EAAE,KAAK,EAAE,CAAC,EAAE,EAAE;QAC3C,MAAM,SAAS,GAAG,CAAC,CAAC,GAAG,CAAC,WAAW,CAAC,CAAA;QACpC,MAAM,WAAW,GAAG,KAAK,CAAC,CAAC,EAAE,aAAa,CAAC,CAAA;QAC3C,MAAM,EAAE,GAAG,KAAK,CAAC,CAAC,EAAE,IAAI,CAAC,CAAA;QAEzB,MAAM,GAAG,GAAG,MAAM,SAAS,CAAC,kBAAkB,CAAC,MAAM,CAAC,WAAW,EAAE,EAAE,CAAC,CAAA;QACtE,IAAI,CAAC,GAAG,EAAE,CAAC;YACT,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,EAAE,IAAI,EAAE,WAAW,EAAE,OAAO,EAAE,cAAc,EAAE,aAAa,EAAE,EAAE,EAAE,GAAG,CAAC,CAAA;QAC9F,CAAC;QAED,IAAI,GAAG,CAAC,IAAI,KAAK,WAAW,EAAE,CAAC;YAC7B,MAAM,SAAS,GAAG,SAAS,CAAC,SAAS,CAAA;YACrC,IAAI,CAAC,SAAS;gBAAE,OAAO,WAAW,CAAC,CAAC,EAAE,kCAAkC,CAAC,CAAA;YACzE,MAAM,GAAG,GAAG,MAAM,SAAS,CAAC,OAAO,CAAC,IAAI,CAAC,WAAW,EAAE,EAAE,CAAC,CAAA;YACzD,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,IAAI,EAAE,GAAG,CAAC,IAAI,EAAE,GAAG,EAAE,CAAC,CAAA;QACxC,CAAC;QAED,MAAM,GAAG,GAAG,MAAM,SAAS,CAAC,gBAAgB,CAAC,OAAO,CAAC,WAAW,EAAE,EAAE,CAAC,CAAA;QACrE,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,IAAI,EAAE,GAAG,CAAC,IAAI,EAAE,GAAG,EAAE,CAAC,CAAA;IACxC,CAAC,CAAC,CAAA;IAEF,OAAO,GAAG,CAAA;AACZ,CAAC"}

package/dist/modules/auth/AuthController.d.ts

@@ -0,0 +1,12 @@
+import { Hono } from 'hono';
+import type { AuthConfig } from '../../config/types.js';
+import type { AppEnv } from '../../http/env.js';
+/**
+ * Choose the post-login landing URL from the (untrusted) `redirect` query. The
+ * session token is appended as a fragment, so an unrestricted redirect is a
+ * token-exfiltration primitive — only same-origin or explicitly allowlisted origins
+ * are honoured, else the request origin.
+ */
+export declare function pickPostLoginRedirect(requested: string | undefined, requestOrigin: string, cfg: Pick<AuthConfig, 'successRedirectUrl' | 'allowedRedirectOrigins'>): string;
+export declare function authController(): Hono<AppEnv>;
+//# sourceMappingURL=AuthController.d.ts.map

package/dist/modules/auth/AuthController.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"AuthController.d.ts","sourceRoot":"","sources":["../../../src/modules/auth/AuthController.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,IAAI,EAAE,MAAM,MAAM,CAAA;AAY3B,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,uBAAuB,CAAA;AACvD,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,mBAAmB,CAAA;AAiE/C;;;;;GAKG;AACH,wBAAgB,qBAAqB,CACnC,SAAS,EAAE,MAAM,GAAG,SAAS,EAC7B,aAAa,EAAE,MAAM,EACrB,GAAG,EAAE,IAAI,CAAC,UAAU,EAAE,oBAAoB,GAAG,wBAAwB,CAAC,GACrE,MAAM,CAcR;AAmGD,wBAAgB,cAAc,IAAI,IAAI,CAAC,MAAM,CAAC,CA4R7C"}