npm - @codemation/host - Versions diffs - 0.8.0 → 0.9.1 - Mend

@codemation/host 0.8.0 → 0.9.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (148) hide show

package/src/presentation/http/hono/registrars/HitlDecideHonoApiRouteRegistrar.ts ADDED Viewed

@@ -0,0 +1,54 @@
+import { inject, injectable } from "@codemation/core";
+import type { JsonValue } from "@codemation/core";
+import { Hono } from "hono";
+import { DecideHumanTaskCommandHandler } from "../../../../application/hitl/DecideHumanTaskCommandHandler";
+import { HttpRequestJsonBodyReader } from "../../HttpRequestJsonBodyReader";
+import { ServerHttpErrorResponseFactory } from "../../ServerHttpErrorResponseFactory";
+import type { HonoApiRouteRegistrar } from "../HonoApiRouteRegistrar";
+import { PairingConfigToken } from "../../../../pairing/PairingConfigToken";
+import type { PairingConfig } from "../../../../pairing/pairing.types";
+/**
+ * Session-authenticated endpoint: `POST /api/hitl/tasks/:taskId/decide`
+ *
+ * Registered ONLY in non-managed mode. Used by the local /dev/inbox UI.
+ *
+ * In managed mode (`PairingConfig !== null`) the route is intentionally NOT mounted —
+ * decisions must arrive via the HMAC-signed `POST /internal/hitl/tasks/:taskId/callback`
+ * receiver from the control plane. This prevents a compromised user session
+ * from deciding arbitrary pending tasks.
+ *
+ * The session middleware is already applied on the /api sub-app by CodemationHonoApiAppFactory.
+ */
+@injectable()
+export class HitlDecideHonoApiRouteRegistrar implements HonoApiRouteRegistrar {
+  constructor(
+    @inject(DecideHumanTaskCommandHandler) private readonly handler: DecideHumanTaskCommandHandler,
+    @inject(PairingConfigToken, { isOptional: true })
+    private readonly pairingConfig: PairingConfig | null = null,
+  ) {}
+  register(app: Hono): void {
+    if (this.pairingConfig !== null) {
+      // Managed mode — decisions only via HMAC callback. Do not mount the session-auth route.
+      return;
+    }
+    app.post("/hitl/tasks/:taskId/decide", async (c) => {
+      try {
+        const taskId = c.req.param("taskId");
+        const body = await HttpRequestJsonBodyReader.readJsonBody<{
+          decision: JsonValue;
+          decidedBy?: { actorId: string; displayName?: string };
+        }>(c.req.raw);
+        const result = await this.handler.decide({
+          taskId,
+          decision: body.decision,
+          decidedBy: body.decidedBy ?? { actorId: "session-user" },
+        });
+        return c.json(result);
+      } catch (error) {
+        return ServerHttpErrorResponseFactory.fromUnknown(error);
+      }
+    });
+  }
+}

package/src/presentation/http/hono/registrars/HitlInternalCallbackHonoApiRouteRegistrar.ts ADDED Viewed

@@ -0,0 +1,33 @@
+import { inject, injectable } from "@codemation/core";
+import type { Hono } from "hono";
+import { InternalHmacAuthMiddleware } from "../../../../pairing/InternalHmacAuthMiddleware";
+import { HitlCallbackHandler } from "../../../../application/hitl/HitlCallbackHandler";
+import type { InternalHonoApiRouteRegistrar } from "../InternalHonoApiRouteRegistrar";
+/**
+ * Registers `POST /internal/hitl/tasks/:taskId/callback` — HMAC-verified endpoint
+ * that receives decision callbacks from the control plane and forwards them to
+ * `HitlCallbackHandler`.
+ *
+ * The HMAC middleware verifies the request is signed by the paired CP.
+ * `HitlCallbackHandler` additionally asserts the task's workspace matches the
+ * pairing config workspace.
+ */
+@injectable()
+export class HitlInternalCallbackHonoApiRouteRegistrar implements InternalHonoApiRouteRegistrar {
+  constructor(
+    @inject(InternalHmacAuthMiddleware) private readonly hmacMiddleware: InternalHmacAuthMiddleware,
+    @inject(HitlCallbackHandler) private readonly callbackHandler: HitlCallbackHandler,
+  ) {}
+  register(app: Hono): void {
+    app.post("/internal/hitl/tasks/:taskId/callback", this.hmacMiddleware.handle(), async (c) => {
+      const taskId = c.req.param("taskId");
+      const rawBody = c.get("body" as never) as string | undefined;
+      const body = rawBody ? JSON.parse(rawBody) : await c.req.json();
+      const result = await this.callbackHandler.handle(taskId, body);
+      return c.json(result.body, result.status);
+    });
+  }
+}

package/src/presentation/http/hono/registrars/HitlResumeHonoApiRouteRegistrar.ts ADDED Viewed

@@ -0,0 +1,43 @@
+import { inject, injectable } from "@codemation/core";
+import type { JsonValue } from "@codemation/core";
+import { Hono } from "hono";
+import { DecideHumanTaskCommandHandler } from "../../../../application/hitl/DecideHumanTaskCommandHandler";
+import { HttpRequestJsonBodyReader } from "../../HttpRequestJsonBodyReader";
+import { ServerHttpErrorResponseFactory } from "../../ServerHttpErrorResponseFactory";
+import type { HonoApiRouteRegistrar } from "../HonoApiRouteRegistrar";
+/**
+ * Token-authenticated (unauthenticated session) endpoint:
+ * `POST /api/hitl/tasks/:taskId/resume?token=<signed>`
+ *
+ * This endpoint is declared as an anonymous route in `HonoHttpAnonymousRoutePolicyRegistry`
+ * so the session middleware is bypassed. The HMAC-signed token is the auth mechanism.
+ *
+ * Used by local inbox and future magic-link channels (Slack, email).
+ */
+@injectable()
+export class HitlResumeHonoApiRouteRegistrar implements HonoApiRouteRegistrar {
+  constructor(@inject(DecideHumanTaskCommandHandler) private readonly handler: DecideHumanTaskCommandHandler) {}
+  register(app: Hono): void {
+    app.post("/hitl/tasks/:taskId/resume", async (c) => {
+      try {
+        const taskId = c.req.param("taskId");
+        const token = c.req.query("token") ?? "";
+        // Validate the signed token (replaces session auth for this endpoint)
+        await this.handler.validateResumeToken({ taskId, token });
+        const body = await HttpRequestJsonBodyReader.readJsonBody<{ decision: JsonValue }>(c.req.raw);
+        const result = await this.handler.decide({
+          taskId,
+          decision: body.decision,
+          decidedBy: { actorId: "token-bearer" },
+        });
+        return c.json(result);
+      } catch (error) {
+        return ServerHttpErrorResponseFactory.fromUnknown(error);
+      }
+    });
+  }
+}

package/src/presentation/http/routeHandlers/CredentialHttpRouteHandler.ts CHANGED Viewed

@@ -16,6 +16,7 @@ import type {
   UpsertCredentialBindingRequest,
 } from "../../../application/contracts/CredentialContractsRegistry";
 import {
+  GetCredentialAppsQuery,
   GetCredentialFieldEnvStatusQuery,
   GetCredentialInstanceQuery,
   GetCredentialInstanceWithSecretsQuery,
@@ -66,6 +67,14 @@ export class CredentialHttpRouteHandler {
     }
   }
+  async getCredentialApps(): Promise<Response> {
+    try {
+      return Response.json(await this.queryBus.execute(new GetCredentialAppsQuery()));
+    } catch (error) {
+      return ServerHttpErrorResponseFactory.fromUnknown(error);
+    }
+  }
   async getCredentialInstance(request: Request, params: ServerHttpRouteParams): Promise<Response> {
     try {
       const withSecrets = new URL(request.url).searchParams.get("withSecrets") === "1";

package/src/presentation/http/routeHandlers/OAuth2HttpRouteHandlerFactory.ts CHANGED Viewed

@@ -87,7 +87,7 @@ export class OAuth2HttpRouteHandler {
       const stateToken = url.searchParams.get("state")?.trim();
       if (!code || !stateToken) {
         return new Response(
-          this.createPopupHtml({ kind: "oauth2.error", message: "Missing code or state parameter." }),
+          this.createPopupHtml({ kind: "oauth2.error", message: "Missing code and state parameters." }),
           {
             status: 400,
             headers: { "content-type": "text/html; charset=utf-8" },

package/src/server.ts CHANGED Viewed

@@ -1,5 +1,10 @@
-export { CodemationPostgresPrismaClientFactory } from "./persistenceServer";
-export type { PrismaClient } from "./persistenceServer";
+// Direct re-export from source files, NOT via the persistenceServer barrel: that
+// barrel also re-exports PrismaMigrationDeployer, whose createRequire + dynamic
+// require.resolve trips the Turbopack module tracer ("whole project traced
+// unintentionally") when this server barrel is transitively reached from a
+// Next.js Server Component such as the dev/inbox page.
+export { CodemationPostgresPrismaClientFactory } from "./infrastructure/persistence/CodemationPostgresPrismaClientFactory";
+export type { PrismaDatabaseClient as PrismaClient } from "./infrastructure/persistence/PrismaDatabaseClient";
 export { ExecaProcessRunner } from "./process/ExecaProcessRunner";
 export type { ProcessRunner, ProcessRunOptions, ProcessRunResult } from "./process/ProcessRunner.types";
 export { ApiPaths } from "./presentation/http/ApiPaths";

package/src/workflows/InternalWorkflowTestRunRegistrar.ts CHANGED Viewed

@@ -79,6 +79,15 @@ export class InternalWorkflowTestRunRegistrar implements InternalHonoApiRouteReg
         });
       }
+      if (runResult.status === "halted") {
+        return c.json({
+          ok: false,
+          runId: runResult.runId,
+          error: `Run halted: ${runResult.reason}`,
+          durationMs: Date.now() - startMs,
+        });
+      }
       // completed
       return c.json({
         ok: true,

package/tsconfig.json CHANGED Viewed

@@ -28,6 +28,7 @@
       "@codemation/host/dev-server-sidecar": ["./src/devServerSidecar.ts"],
       "@codemation/host/persistence": ["./src/persistenceServer.ts"],
       "@codemation/canvas": ["../canvas/src/index.ts"],
+      "@codemation/canvas-core": ["../canvas-core/src/index.ts"],
       "@codemation/next-host/src/*": ["../next-host/src/*"],
       "@/*": ["../next-host/src/*"]
     }