npm - @downcity/agent - Versions diffs - 1.1.6 → 1.1.8 - Mend

@downcity/agent 1.1.6 → 1.1.8

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (284) hide show

package/bin/agent/AgentContext.d.ts.map +1 -1
package/bin/agent/AgentContext.js +1 -0
package/bin/agent/AgentContext.js.map +1 -1
package/bin/agent/AgentContextTypes.d.ts +5 -1
package/bin/agent/AgentContextTypes.d.ts.map +1 -1
package/bin/agent/AgentRuntime.d.ts +6 -1
package/bin/agent/AgentRuntime.d.ts.map +1 -1
package/bin/agent/AgentRuntime.js +22 -3
package/bin/agent/AgentRuntime.js.map +1 -1
package/bin/agent/AgentRuntimeState.d.ts.map +1 -1
package/bin/agent/AgentRuntimeState.js +58 -2
package/bin/agent/AgentRuntimeState.js.map +1 -1
package/bin/agent/AgentRuntimeTypes.d.ts +5 -1
package/bin/agent/AgentRuntimeTypes.d.ts.map +1 -1
package/bin/agent/project/AgentInitializer.d.ts +3 -2
package/bin/agent/project/AgentInitializer.d.ts.map +1 -1
package/bin/agent/project/AgentInitializer.js +34 -44
package/bin/agent/project/AgentInitializer.js.map +1 -1
package/bin/config/Config.d.ts.map +1 -1
package/bin/config/Config.js +2 -21
package/bin/config/Config.js.map +1 -1
package/bin/config/Paths.d.ts +1 -5
package/bin/config/Paths.d.ts.map +1 -1
package/bin/config/Paths.js +2 -8
package/bin/config/Paths.js.map +1 -1
package/bin/host/daemon/ProjectSetup.d.ts +2 -1
package/bin/host/daemon/ProjectSetup.d.ts.map +1 -1
package/bin/host/daemon/ProjectSetup.js +14 -21
package/bin/host/daemon/ProjectSetup.js.map +1 -1
package/bin/host/runtime/AgentHostRuntime.d.ts.map +1 -1
package/bin/host/runtime/AgentHostRuntime.js +1 -2
package/bin/host/runtime/AgentHostRuntime.js.map +1 -1
package/bin/host/runtime/CityPaths.d.ts +0 -3
package/bin/host/runtime/CityPaths.d.ts.map +1 -1
package/bin/host/runtime/CityPaths.js +0 -3
package/bin/host/runtime/CityPaths.js.map +1 -1
package/bin/host/sdk/Agent.d.ts +4 -0
package/bin/host/sdk/Agent.d.ts.map +1 -1
package/bin/host/sdk/Agent.js +71 -2
package/bin/host/sdk/Agent.js.map +1 -1
package/bin/host/sdk/AgentSdkTypes.d.ts +9 -0
package/bin/host/sdk/AgentSdkTypes.d.ts.map +1 -1
package/bin/host/sdk/SdkSessionSystemComposer.d.ts +11 -2
package/bin/host/sdk/SdkSessionSystemComposer.d.ts.map +1 -1
package/bin/host/sdk/SdkSessionSystemComposer.js +19 -2
package/bin/host/sdk/SdkSessionSystemComposer.js.map +1 -1
package/bin/host/sdk/Session.d.ts +10 -0
package/bin/host/sdk/Session.d.ts.map +1 -1
package/bin/host/sdk/Session.js +8 -0
package/bin/host/sdk/Session.js.map +1 -1
package/bin/http/Server.d.ts.map +1 -1
package/bin/http/Server.js +1 -11
package/bin/http/Server.js.map +1 -1
package/bin/http/auth/AuthEnv.d.ts +0 -9
package/bin/http/auth/AuthEnv.d.ts.map +1 -1
package/bin/http/auth/AuthEnv.js +0 -9
package/bin/http/auth/AuthEnv.js.map +1 -1
package/bin/http/auth/CliAuthStateStore.d.ts +0 -4
package/bin/http/auth/CliAuthStateStore.d.ts.map +1 -1
package/bin/http/auth/CliAuthStateStore.js +0 -4
package/bin/http/auth/CliAuthStateStore.js.map +1 -1
package/bin/http/control/ModelRoutes.d.ts.map +1 -1
package/bin/http/control/ModelRoutes.js +3 -8
package/bin/http/control/ModelRoutes.js.map +1 -1
package/bin/index.d.ts +2 -6
package/bin/index.d.ts.map +1 -1
package/bin/index.js +2 -6
package/bin/index.js.map +1 -1
package/bin/model/CreateModel.d.ts +2 -2
package/bin/model/CreateModel.d.ts.map +1 -1
package/bin/model/CreateModel.js +13 -12
package/bin/model/CreateModel.js.map +1 -1
package/bin/plugin/Activation.d.ts +4 -0
package/bin/plugin/Activation.d.ts.map +1 -1
package/bin/plugin/Activation.js +2 -2
package/bin/plugin/Activation.js.map +1 -1
package/bin/plugin/LocalExecution.d.ts.map +1 -1
package/bin/plugin/LocalExecution.js +23 -2
package/bin/plugin/LocalExecution.js.map +1 -1
package/bin/plugin/PluginRegistry.js +2 -2
package/bin/plugin/PluginRegistry.js.map +1 -1
package/bin/plugins/asr/Plugin.d.ts.map +1 -1
package/bin/plugins/asr/Plugin.js +4 -5
package/bin/plugins/asr/Plugin.js.map +1 -1
package/bin/plugins/auth/Plugin.d.ts.map +1 -1
package/bin/plugins/auth/Plugin.js +1 -0
package/bin/plugins/auth/Plugin.js.map +1 -1
package/bin/plugins/auth/runtime/AuthorizationConfig.d.ts +4 -4
package/bin/plugins/auth/runtime/AuthorizationConfig.d.ts.map +1 -1
package/bin/plugins/auth/runtime/AuthorizationConfig.js +28 -26
package/bin/plugins/auth/runtime/AuthorizationConfig.js.map +1 -1
package/bin/plugins/auth/runtime/AuthorizationPolicy.d.ts +2 -0
package/bin/plugins/auth/runtime/AuthorizationPolicy.d.ts.map +1 -1
package/bin/plugins/auth/runtime/AuthorizationPolicy.js +3 -2
package/bin/plugins/auth/runtime/AuthorizationPolicy.js.map +1 -1
package/bin/plugins/auth/runtime/AuthorizationStore.d.ts +1 -1
package/bin/plugins/auth/runtime/AuthorizationStore.d.ts.map +1 -1
package/bin/plugins/auth/runtime/AuthorizationStore.js +3 -4
package/bin/plugins/auth/runtime/AuthorizationStore.js.map +1 -1
package/bin/plugins/skill/Plugin.js +2 -2
package/bin/plugins/skill/Plugin.js.map +1 -1
package/bin/plugins/tts/Plugin.d.ts.map +1 -1
package/bin/plugins/tts/Plugin.js +4 -5
package/bin/plugins/tts/Plugin.js.map +1 -1
package/bin/plugins/web/Plugin.d.ts.map +1 -1
package/bin/plugins/web/Plugin.js +4 -5
package/bin/plugins/web/Plugin.js.map +1 -1
package/bin/plugins/workboard/Plugin.js +2 -2
package/bin/plugins/workboard/Plugin.js.map +1 -1
package/bin/service/builtins/chat/accounts/ChannelAccountService.d.ts +4 -1
package/bin/service/builtins/chat/accounts/ChannelAccountService.d.ts.map +1 -1
package/bin/service/builtins/chat/accounts/ChannelAccountService.js +64 -91
package/bin/service/builtins/chat/accounts/ChannelAccountService.js.map +1 -1
package/bin/service/builtins/chat/runtime/ChatChannelActions.d.ts.map +1 -1
package/bin/service/builtins/chat/runtime/ChatChannelActions.js +11 -18
package/bin/service/builtins/chat/runtime/ChatChannelActions.js.map +1 -1
package/bin/service/builtins/chat/runtime/ChatChannelCore.d.ts +1 -1
package/bin/service/builtins/chat/runtime/ChatChannelCore.d.ts.map +1 -1
package/bin/service/builtins/chat/runtime/ChatChannelCore.js +9 -17
package/bin/service/builtins/chat/runtime/ChatChannelCore.js.map +1 -1
package/bin/service/builtins/memory/Action.d.ts +1 -5
package/bin/service/builtins/memory/Action.d.ts.map +1 -1
package/bin/service/builtins/memory/Action.js +4 -42
package/bin/service/builtins/memory/Action.js.map +1 -1
package/bin/service/builtins/memory/MemoryService.d.ts.map +1 -1
package/bin/service/builtins/memory/MemoryService.js +2 -32
package/bin/service/builtins/memory/MemoryService.js.map +1 -1
package/bin/service/builtins/memory/runtime/Search.d.ts +7 -3
package/bin/service/builtins/memory/runtime/Search.d.ts.map +1 -1
package/bin/service/builtins/memory/runtime/Search.js +220 -16
package/bin/service/builtins/memory/runtime/Search.js.map +1 -1
package/bin/service/builtins/memory/runtime/Store.d.ts +9 -50
package/bin/service/builtins/memory/runtime/Store.d.ts.map +1 -1
package/bin/service/builtins/memory/runtime/Store.js +10 -130
package/bin/service/builtins/memory/runtime/Store.js.map +1 -1
package/bin/service/builtins/memory/runtime/Writer.d.ts.map +1 -1
package/bin/service/builtins/memory/runtime/Writer.js +1 -2
package/bin/service/builtins/memory/runtime/Writer.js.map +1 -1
package/bin/service/builtins/memory/types/Memory.d.ts +3 -57
package/bin/service/builtins/memory/types/Memory.d.ts.map +1 -1
package/bin/service/schedule/Store.d.ts +22 -25
package/bin/service/schedule/Store.d.ts.map +1 -1
package/bin/service/schedule/Store.js +172 -154
package/bin/service/schedule/Store.js.map +1 -1
package/bin/session/composer/system/default/SystemDomain.d.ts.map +1 -1
package/bin/session/composer/system/default/SystemDomain.js +1 -0
package/bin/session/composer/system/default/SystemDomain.js.map +1 -1
package/bin/shared/types/AgentHost.d.ts +120 -4
package/bin/shared/types/AgentHost.d.ts.map +1 -1
package/bin/shared/types/Plugin.d.ts +5 -1
package/bin/shared/types/Plugin.d.ts.map +1 -1
package/package.json +1 -4
package/src/agent/AgentContext.ts +1 -0
package/src/agent/AgentContextTypes.ts +5 -0
package/src/agent/AgentRuntime.ts +32 -3
package/src/agent/AgentRuntimeState.ts +66 -2
package/src/agent/AgentRuntimeTypes.ts +5 -0
package/src/agent/project/AgentInitializer.ts +40 -42
package/src/config/Config.ts +2 -17
package/src/config/Paths.ts +2 -9
package/src/host/daemon/ProjectSetup.ts +19 -21
package/src/host/runtime/AgentHostRuntime.ts +0 -2
package/src/host/runtime/CityPaths.ts +0 -3
package/src/host/sdk/Agent.ts +67 -2
package/src/host/sdk/AgentSdkTypes.ts +10 -0
package/src/host/sdk/SdkSessionSystemComposer.ts +39 -2
package/src/host/sdk/Session.ts +18 -0
package/src/http/Server.ts +0 -13
package/src/http/auth/AuthEnv.ts +0 -9
package/src/http/auth/CliAuthStateStore.ts +0 -4
package/src/http/control/ModelRoutes.ts +3 -9
package/src/index.ts +2 -12
package/src/model/CreateModel.ts +15 -13
package/src/plugin/Activation.ts +6 -2
package/src/plugin/LocalExecution.ts +24 -2
package/src/plugin/PluginRegistry.ts +2 -2
package/src/plugins/asr/Plugin.ts +4 -5
package/src/plugins/auth/Plugin.ts +1 -0
package/src/plugins/auth/runtime/AuthorizationConfig.ts +47 -37
package/src/plugins/auth/runtime/AuthorizationPolicy.ts +5 -2
package/src/plugins/auth/runtime/AuthorizationStore.ts +6 -5
package/src/plugins/skill/Plugin.ts +2 -2
package/src/plugins/tts/Plugin.ts +4 -5
package/src/plugins/web/Plugin.ts +4 -5
package/src/plugins/workboard/Plugin.ts +2 -2
package/src/service/builtins/chat/accounts/ChannelAccountService.ts +42 -62
package/src/service/builtins/chat/runtime/ChatChannelActions.ts +12 -18
package/src/service/builtins/chat/runtime/ChatChannelCore.ts +9 -14
package/src/service/builtins/memory/Action.ts +6 -47
package/src/service/builtins/memory/MemoryService.ts +1 -33
package/src/service/builtins/memory/runtime/Search.ts +256 -16
package/src/service/builtins/memory/runtime/Store.ts +13 -185
package/src/service/builtins/memory/runtime/Writer.ts +1 -2
package/src/service/builtins/memory/types/Memory.ts +2 -59
package/src/service/schedule/Store.ts +215 -175
package/src/session/composer/system/default/SystemDomain.ts +1 -0
package/src/shared/types/AgentHost.ts +138 -4
package/src/shared/types/Plugin.ts +5 -0
package/tsconfig.tsbuildinfo +1 -1
package/bin/http/auth/AuthMiddleware.d.ts +0 -36
package/bin/http/auth/AuthMiddleware.d.ts.map +0 -1
package/bin/http/auth/AuthMiddleware.js +0 -37
package/bin/http/auth/AuthMiddleware.js.map +0 -1
package/bin/http/auth/AuthRoutes.d.ts +0 -17
package/bin/http/auth/AuthRoutes.d.ts.map +0 -1
package/bin/http/auth/AuthRoutes.js +0 -78
package/bin/http/auth/AuthRoutes.js.map +0 -1
package/bin/http/auth/AuthService.d.ts +0 -119
package/bin/http/auth/AuthService.d.ts.map +0 -1
package/bin/http/auth/AuthService.js +0 -307
package/bin/http/auth/AuthService.js.map +0 -1
package/bin/http/auth/AuthStore.d.ts +0 -165
package/bin/http/auth/AuthStore.d.ts.map +0 -1
package/bin/http/auth/AuthStore.js +0 -442
package/bin/http/auth/AuthStore.js.map +0 -1
package/bin/http/auth/RoutePolicy.d.ts +0 -30
package/bin/http/auth/RoutePolicy.d.ts.map +0 -1
package/bin/http/auth/RoutePolicy.js +0 -229
package/bin/http/auth/RoutePolicy.js.map +0 -1
package/bin/plugin/Lifecycle.d.ts +0 -33
package/bin/plugin/Lifecycle.d.ts.map +0 -1
package/bin/plugin/Lifecycle.js +0 -102
package/bin/plugin/Lifecycle.js.map +0 -1
package/bin/service/builtins/memory/runtime/Indexer.d.ts +0 -71
package/bin/service/builtins/memory/runtime/Indexer.d.ts.map +0 -1
package/bin/service/builtins/memory/runtime/Indexer.js +0 -345
package/bin/service/builtins/memory/runtime/Indexer.js.map +0 -1
package/bin/service/schedule/Schema.d.ts +0 -171
package/bin/service/schedule/Schema.d.ts.map +0 -1
package/bin/service/schedule/Schema.js +0 -26
package/bin/service/schedule/Schema.js.map +0 -1
package/bin/shared/utils/store/StoreChannelAccountRepository.d.ts +0 -34
package/bin/shared/utils/store/StoreChannelAccountRepository.d.ts.map +0 -1
package/bin/shared/utils/store/StoreChannelAccountRepository.js +0 -198
package/bin/shared/utils/store/StoreChannelAccountRepository.js.map +0 -1
package/bin/shared/utils/store/StoreEnvRepository.d.ts +0 -98
package/bin/shared/utils/store/StoreEnvRepository.d.ts.map +0 -1
package/bin/shared/utils/store/StoreEnvRepository.js +0 -334
package/bin/shared/utils/store/StoreEnvRepository.js.map +0 -1
package/bin/shared/utils/store/StoreModelRepository.d.ts +0 -61
package/bin/shared/utils/store/StoreModelRepository.d.ts.map +0 -1
package/bin/shared/utils/store/StoreModelRepository.js +0 -278
package/bin/shared/utils/store/StoreModelRepository.js.map +0 -1
package/bin/shared/utils/store/StoreSchema.d.ts +0 -13
package/bin/shared/utils/store/StoreSchema.d.ts.map +0 -1
package/bin/shared/utils/store/StoreSchema.js +0 -319
package/bin/shared/utils/store/StoreSchema.js.map +0 -1
package/bin/shared/utils/store/StoreSecureSettings.d.ts +0 -33
package/bin/shared/utils/store/StoreSecureSettings.d.ts.map +0 -1
package/bin/shared/utils/store/StoreSecureSettings.js +0 -91
package/bin/shared/utils/store/StoreSecureSettings.js.map +0 -1
package/bin/shared/utils/store/StoreShared.d.ts +0 -44
package/bin/shared/utils/store/StoreShared.d.ts.map +0 -1
package/bin/shared/utils/store/StoreShared.js +0 -40
package/bin/shared/utils/store/StoreShared.js.map +0 -1
package/bin/shared/utils/store/crypto.d.ts +0 -24
package/bin/shared/utils/store/crypto.d.ts.map +0 -1
package/bin/shared/utils/store/crypto.js +0 -101
package/bin/shared/utils/store/crypto.js.map +0 -1
package/bin/shared/utils/store/index.d.ts +0 -230
package/bin/shared/utils/store/index.d.ts.map +0 -1
package/bin/shared/utils/store/index.js +0 -360
package/bin/shared/utils/store/index.js.map +0 -1
package/bin/shared/utils/store/schema.d.ts +0 -690
package/bin/shared/utils/store/schema.d.ts.map +0 -1
package/bin/shared/utils/store/schema.js +0 -81
package/bin/shared/utils/store/schema.js.map +0 -1
package/src/http/auth/AuthMiddleware.ts +0 -61
package/src/http/auth/AuthRoutes.ts +0 -100
package/src/http/auth/AuthService.ts +0 -367
package/src/http/auth/AuthStore.ts +0 -572
package/src/http/auth/RoutePolicy.ts +0 -255
package/src/plugin/Lifecycle.ts +0 -116
package/src/service/builtins/memory/runtime/Indexer.ts +0 -466
package/src/service/schedule/Schema.ts +0 -34
package/src/shared/utils/store/StoreChannelAccountRepository.ts +0 -269
package/src/shared/utils/store/StoreEnvRepository.ts +0 -452
package/src/shared/utils/store/StoreModelRepository.ts +0 -324
package/src/shared/utils/store/StoreSchema.ts +0 -344
package/src/shared/utils/store/StoreSecureSettings.ts +0 -126
package/src/shared/utils/store/StoreShared.ts +0 -67
package/src/shared/utils/store/crypto.ts +0 -112
package/src/shared/utils/store/index.ts +0 -497
package/src/shared/utils/store/schema.ts +0 -103

package/bin/shared/utils/store/schema.js DELETED Viewed

@@ -1,81 +0,0 @@
-/**
- * 模型存储表结构（drizzle schema）。
- *
- * 关键点（中文）
- * - providers 与 models 分表，使用 providerId 做关联。
- * - API Key 以密文字段存储（`apiKeyEncrypted`）。
- */
-import { index, integer, primaryKey, real, sqliteTable, text, } from "drizzle-orm/sqlite-core";
-export const modelProvidersTable = sqliteTable("model_providers", {
-    id: text("id").primaryKey(),
-    type: text("type").notNull(),
-    baseUrl: text("base_url"),
-    apiKeyEncrypted: text("api_key_encrypted"),
-    createdAt: text("created_at").notNull(),
-    updatedAt: text("updated_at").notNull(),
-});
-export const modelsTable = sqliteTable("models", {
-    id: text("id").primaryKey(),
-    providerId: text("provider_id").notNull(),
-    name: text("name").notNull(),
-    temperature: real("temperature"),
-    maxTokens: integer("max_tokens"),
-    topP: real("top_p"),
-    frequencyPenalty: real("frequency_penalty"),
-    presencePenalty: real("presence_penalty"),
-    anthropicVersion: text("anthropic_version"),
-    isPaused: integer("is_paused").notNull().default(0),
-    createdAt: text("created_at").notNull(),
-    updatedAt: text("updated_at").notNull(),
-}, (table) => ({
-    providerIdIdx: index("models_provider_id_idx").on(table.providerId),
-}));
-/**
- * 平台 Env 统一存储表。
- *
- * 关键点（中文）
- * - 全局 env 与 agent env 共用一张表，通过 `scope` + `agentId` 区分。
- * - `agentId` 在 `scope=global` 时固定为空字符串，避免 SQLite 复合主键中的 NULL 语义问题。
- * - value 采用密文存储，解密仅在运行时内存中进行。
- */
-export const envEntriesTable = sqliteTable("env_entries", {
-    scope: text("scope").notNull(),
-    agentId: text("agent_id").notNull().default(""),
-    key: text("key").notNull(),
-    description: text("description"),
-    valueEncrypted: text("value_encrypted").notNull(),
-    createdAt: text("created_at").notNull(),
-    updatedAt: text("updated_at").notNull(),
-}, (table) => ({
-    pk: primaryKey({
-        columns: [table.scope, table.agentId, table.key],
-        name: "env_entries_scope_agent_key_pk",
-    }),
-    scopeIdx: index("env_entries_scope_idx").on(table.scope),
-    agentIdIdx: index("env_entries_agent_id_idx").on(table.agentId),
-}));
-/**
- * Channel Account 表。
- *
- * 关键点（中文）
- * - 各渠道敏感字段独立密文列存储。
- * - `downcity.json` 仅保存 channelAccountId 绑定，不直接保存密钥。
- */
-export const channelAccountsTable = sqliteTable("channel_accounts", {
-    id: text("id").primaryKey(),
-    channel: text("channel").notNull(),
-    name: text("name").notNull(),
-    identity: text("identity"),
-    owner: text("owner"),
-    creator: text("creator"),
-    botTokenEncrypted: text("bot_token_encrypted"),
-    appIdEncrypted: text("app_id_encrypted"),
-    appSecretEncrypted: text("app_secret_encrypted"),
-    domain: text("domain"),
-    sandbox: integer("sandbox"),
-    createdAt: text("created_at").notNull(),
-    updatedAt: text("updated_at").notNull(),
-}, (table) => ({
-    channelIdx: index("channel_accounts_channel_idx").on(table.channel),
-}));
-//# sourceMappingURL=schema.js.map

package/bin/shared/utils/store/schema.js.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"file":"schema.js","sourceRoot":"","sources":["../../../../src/shared/utils/store/schema.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AACH,OAAO,EACL,KAAK,EACL,OAAO,EACP,UAAU,EACV,IAAI,EACJ,WAAW,EACX,IAAI,GACL,MAAM,yBAAyB,CAAC;AAEjC,MAAM,CAAC,MAAM,mBAAmB,GAAG,WAAW,CAAC,iBAAiB,EAAE;IAChE,EAAE,EAAE,IAAI,CAAC,IAAI,CAAC,CAAC,UAAU,EAAE;IAC3B,IAAI,EAAE,IAAI,CAAC,MAAM,CAAC,CAAC,OAAO,EAAE;IAC5B,OAAO,EAAE,IAAI,CAAC,UAAU,CAAC;IACzB,eAAe,EAAE,IAAI,CAAC,mBAAmB,CAAC;IAC1C,SAAS,EAAE,IAAI,CAAC,YAAY,CAAC,CAAC,OAAO,EAAE;IACvC,SAAS,EAAE,IAAI,CAAC,YAAY,CAAC,CAAC,OAAO,EAAE;CACxC,CAAC,CAAC;AAEH,MAAM,CAAC,MAAM,WAAW,GAAG,WAAW,CACpC,QAAQ,EACR;IACE,EAAE,EAAE,IAAI,CAAC,IAAI,CAAC,CAAC,UAAU,EAAE;IAC3B,UAAU,EAAE,IAAI,CAAC,aAAa,CAAC,CAAC,OAAO,EAAE;IACzC,IAAI,EAAE,IAAI,CAAC,MAAM,CAAC,CAAC,OAAO,EAAE;IAC5B,WAAW,EAAE,IAAI,CAAC,aAAa,CAAC;IAChC,SAAS,EAAE,OAAO,CAAC,YAAY,CAAC;IAChC,IAAI,EAAE,IAAI,CAAC,OAAO,CAAC;IACnB,gBAAgB,EAAE,IAAI,CAAC,mBAAmB,CAAC;IAC3C,eAAe,EAAE,IAAI,CAAC,kBAAkB,CAAC;IACzC,gBAAgB,EAAE,IAAI,CAAC,mBAAmB,CAAC;IAC3C,QAAQ,EAAE,OAAO,CAAC,WAAW,CAAC,CAAC,OAAO,EAAE,CAAC,OAAO,CAAC,CAAC,CAAC;IACnD,SAAS,EAAE,IAAI,CAAC,YAAY,CAAC,CAAC,OAAO,EAAE;IACvC,SAAS,EAAE,IAAI,CAAC,YAAY,CAAC,CAAC,OAAO,EAAE;CACxC,EACD,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC;IACV,aAAa,EAAE,KAAK,CAAC,wBAAwB,CAAC,CAAC,EAAE,CAAC,KAAK,CAAC,UAAU,CAAC;CACpE,CAAC,CACH,CAAC;AAEF;;;;;;;GAOG;AACH,MAAM,CAAC,MAAM,eAAe,GAAG,WAAW,CACxC,aAAa,EACb;IACE,KAAK,EAAE,IAAI,CAAC,OAAO,CAAC,CAAC,OAAO,EAAE;IAC9B,OAAO,EAAE,IAAI,CAAC,UAAU,CAAC,CAAC,OAAO,EAAE,CAAC,OAAO,CAAC,EAAE,CAAC;IAC/C,GAAG,EAAE,IAAI,CAAC,KAAK,CAAC,CAAC,OAAO,EAAE;IAC1B,WAAW,EAAE,IAAI,CAAC,aAAa,CAAC;IAChC,cAAc,EAAE,IAAI,CAAC,iBAAiB,CAAC,CAAC,OAAO,EAAE;IACjD,SAAS,EAAE,IAAI,CAAC,YAAY,CAAC,CAAC,OAAO,EAAE;IACvC,SAAS,EAAE,IAAI,CAAC,YAAY,CAAC,CAAC,OAAO,EAAE;CACxC,EACD,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC;IACV,EAAE,EAAE,UAAU,CAAC;QACb,OAAO,EAAE,CAAC,KAAK,CAAC,KAAK,EAAE,KAAK,CAAC,OAAO,EAAE,KAAK,CAAC,GAAG,CAAC;QAChD,IAAI,EAAE,gCAAgC;KACvC,CAAC;IACF,QAAQ,EAAE,KAAK,CAAC,uBAAuB,CAAC,CAAC,EAAE,CAAC,KAAK,CAAC,KAAK,CAAC;IACxD,UAAU,EAAE,KAAK,CAAC,0BAA0B,CAAC,CAAC,EAAE,CAAC,KAAK,CAAC,OAAO,CAAC;CAChE,CAAC,CACH,CAAC;AAEF;;;;;;GAMG;AACH,MAAM,CAAC,MAAM,oBAAoB,GAAG,WAAW,CAC7C,kBAAkB,EAClB;IACE,EAAE,EAAE,IAAI,CAAC,IAAI,CAAC,CAAC,UAAU,EAAE;IAC3B,OAAO,EAAE,IAAI,CAAC,SAAS,CAAC,CAAC,OAAO,EAAE;IAClC,IAAI,EAAE,IAAI,CAAC,MAAM,CAAC,CAAC,OAAO,EAAE;IAC5B,QAAQ,EAAE,IAAI,CAAC,UAAU,CAAC;IAC1B,KAAK,EAAE,IAAI,CAAC,OAAO,CAAC;IACpB,OAAO,EAAE,IAAI,CAAC,SAAS,CAAC;IACxB,iBAAiB,EAAE,IAAI,CAAC,qBAAqB,CAAC;IAC9C,cAAc,EAAE,IAAI,CAAC,kBAAkB,CAAC;IACxC,kBAAkB,EAAE,IAAI,CAAC,sBAAsB,CAAC;IAChD,MAAM,EAAE,IAAI,CAAC,QAAQ,CAAC;IACtB,OAAO,EAAE,OAAO,CAAC,SAAS,CAAC;IAC3B,SAAS,EAAE,IAAI,CAAC,YAAY,CAAC,CAAC,OAAO,EAAE;IACvC,SAAS,EAAE,IAAI,CAAC,YAAY,CAAC,CAAC,OAAO,EAAE;CACxC,EACD,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC;IACV,UAAU,EAAE,KAAK,CAAC,8BAA8B,CAAC,CAAC,EAAE,CAAC,KAAK,CAAC,OAAO,CAAC;CACpE,CAAC,CACH,CAAC"}

package/src/http/auth/AuthMiddleware.ts DELETED Viewed

@@ -1,61 +0,0 @@
-/**
- * Auth 中间件。
- *
- * 关键点（中文）
- * - 当前先服务 `/api/auth/*` 的受保护子路由。
- * - 后续把更多控制面路由切到 Bearer 鉴权时，可直接复用这一层。
- */
-import type { Context, MiddlewareHandler } from "hono";
-import type { AuthPrincipal } from "@/shared/types/auth/AuthTypes.js";
-import { isAuthError } from "./AuthError.js";
-import type { AuthService } from "./AuthService.js";
-/**
- * Hono Context 中保存 principal 的 key。
- */
-export const AUTH_PRINCIPAL_CONTEXT_KEY = "authPrincipal";
-/**
- * Auth 中间件变量映射。
- */
-export interface AuthMiddlewareVariables {
-  /**
-   * 当前请求的认证主体。
-   */
-  authPrincipal: AuthPrincipal;
-}
-/**
- * 生成 Bearer 鉴权中间件。
- */
-export function createRequireAuthMiddleware(
-  authService: AuthService,
-): MiddlewareHandler<{ Variables: AuthMiddlewareVariables }> {
-  return async (c, next) => {
-    try {
-      const principal = authService.authenticateBearerHeader(
-      c.req.header("authorization"),
-      );
-      c.set(AUTH_PRINCIPAL_CONTEXT_KEY, principal);
-      await next();
-    } catch (error) {
-      if (isAuthError(error)) {
-        return c.json(
-          { success: false, error: error.message },
-          error.status as 200,
-        );
-      }
-      return c.json({ success: false, error: String(error) }, 500);
-    }
-  };
-}
-/**
- * 从 Context 中读取 principal。
- */
-export function getAuthPrincipal(
-  context: Context<{ Variables: AuthMiddlewareVariables }>,
-): AuthPrincipal {
-  return context.get(AUTH_PRINCIPAL_CONTEXT_KEY);
-}

package/src/http/auth/AuthRoutes.ts DELETED Viewed

@@ -1,100 +0,0 @@
-/**
- * Auth API 路由。
- *
- * 关键点（中文）
- * - 本模块只承接 Bearer Token 模型下的最小认证接口。
- * - 路由层不做领域判断，所有业务逻辑统一委托给 `AuthService`。
- */
-import { Hono, type Context } from "hono";
-import type { AuthService } from "./AuthService.js";
-import { AuthService as DefaultAuthService } from "./AuthService.js";
-import { isAuthError } from "./AuthError.js";
-import {
-  createRequireAuthMiddleware,
-  getAuthPrincipal,
-  type AuthMiddlewareVariables,
-} from "./AuthMiddleware.js";
-/**
- * 注册 auth 路由。
- */
-export function registerAuthRoutes(params: {
-  app: Hono;
-  authService?: AuthService;
-}): void {
-  const authService = params.authService || new DefaultAuthService();
-  const router = new Hono();
-  const protectedRouter = new Hono<{ Variables: AuthMiddlewareVariables }>();
-  const requireAuth = createRequireAuthMiddleware(authService);
-  router.get("/status", (c) => {
-    const initialized = authService.hasLocalCliAccess();
-    return c.json({
-      success: true,
-      initialized,
-      requireToken: initialized,
-    });
-  });
-  protectedRouter.get("/me", requireAuth, (c) => {
-    const principal = getAuthPrincipal(c);
-    return c.json({
-      success: true,
-      user: authService.getCurrentUser(principal),
-    });
-  });
-  protectedRouter.get("/token/list", requireAuth, (c) => {
-    const principal = getAuthPrincipal(c);
-    return c.json({
-      success: true,
-      tokens: authService.listTokens(principal),
-    });
-  });
-  protectedRouter.post("/token/create", requireAuth, async (c) => {
-    try {
-      const principal = getAuthPrincipal(c);
-      const body = (await c.req.json().catch(() => ({}))) as {
-        name?: string;
-        expiresAt?: string;
-      };
-      return c.json({
-        success: true,
-        token: authService.createToken(principal, {
-          name: String(body.name || ""),
-          expiresAt: typeof body.expiresAt === "string" ? body.expiresAt : undefined,
-        }),
-      });
-    } catch (error) {
-      return toErrorResponse(c, error);
-    }
-  });
-  protectedRouter.post("/token/delete", requireAuth, async (c) => {
-    try {
-      const principal = getAuthPrincipal(c);
-      const body = (await c.req.json().catch(() => ({}))) as {
-        tokenId?: string;
-      };
-      authService.deleteToken(principal, String(body.tokenId || ""));
-      return c.json({ success: true });
-    } catch (error) {
-      return toErrorResponse(c, error);
-    }
-  });
-  router.route("/", protectedRouter);
-  params.app.route("/api/auth", router);
-}
-function toErrorResponse(c: Context, error: unknown) {
-  if (isAuthError(error)) {
-    return c.json(
-      { success: false, error: error.message },
-      error.status as 200,
-    );
-  }
-  return c.json({ success: false, error: String(error) }, 500);
-}

package/src/http/auth/AuthService.ts DELETED Viewed

@@ -1,367 +0,0 @@
-/**
- * 统一账户服务层。
- *
- * 关键点（中文）
- * - 该模块承接本机 token 初始化、token 校验与 token 管理等业务语义。
- * - 路由层只调用这里，不直接碰数据库与密码哈希细节。
- */
-import type { AuthIssuedToken, AuthTokenSummary } from "@/shared/types/auth/AuthToken.js";
-import type { AuthPrincipal, AuthTokenRecord, AuthUser } from "@/shared/types/auth/AuthTypes.js";
-import { optionalTrimmedText } from "@/shared/utils/store/StoreShared.js";
-import { AuthError } from "./AuthError.js";
-import { AuthStore, type AuthStoreOptions } from "./AuthStore.js";
-import { extractBearerToken, generateAccessToken, hashAccessToken } from "./TokenService.js";
-const LOCAL_CLI_USERNAME = "local-cli";
-const LOCAL_CLI_DISPLAY_NAME = "Local CLI";
-const LOCAL_CLI_PASSWORD_HASH = "[token-only-local-cli]";
-/**
- * AuthService 构造参数。
- */
-export interface AuthServiceOptions extends AuthStoreOptions {
-  /**
-   * 复用外部传入的 store。
-   */
-  store?: AuthStore;
-}
-/**
- * 登录/初始化后返回的用户摘要。
- */
-export interface AuthCurrentUserPayload {
-  /**
-   * 用户 ID。
-   */
-  id: string;
-  /**
-   * 用户名。
-   */
-  username: string;
-  /**
-   * 展示名。
-   */
-  displayName?: string;
-  /**
-   * 角色列表。
-   */
-  roles: string[];
-  /**
-   * 权限列表。
-   */
-  permissions: string[];
-}
-/**
- * AuthService 门面。
- */
-export class AuthService {
-  private readonly store: AuthStore;
-  private readonly ownsStore: boolean;
-  constructor(options: AuthServiceOptions = {}) {
-    if (options.store) {
-      this.store = options.store;
-      this.ownsStore = false;
-      return;
-    }
-    this.store = new AuthStore(options);
-    this.ownsStore = true;
-  }
-  /**
-   * 关闭底层连接。
-   */
-  close(): void {
-    if (this.ownsStore) this.store.close();
-  }
-  /**
-   * 判断当前是否已经存在可用的本机 CLI access token。
-   */
-  hasLocalCliAccess(): boolean {
-    const user = this.store.findUserByUsername(LOCAL_CLI_USERNAME);
-    if (!user) return false;
-    return this.store
-      .listTokensByUserId(user.id)
-      .some((item) => this.isTokenActive(item));
-  }
-  /**
-   * 确保存在本机 CLI 主体，并为其签发新的 access token。
-   */
-  ensureLocalCliAccess(input: {
-    tokenName: string;
-    expiresAt?: string;
-  }): { user: AuthCurrentUserPayload; token: AuthIssuedToken } {
-    const token = this.createLocalCliToken({
-      name: input.tokenName,
-      expiresAt: input.expiresAt,
-    });
-    const user = this.requireLocalCliUser();
-    return {
-      user: this.toUserPayload(user),
-      token,
-    };
-  }
-  /**
-   * 读取本机 CLI 主体的 token 列表。
-   */
-  listLocalCliTokens(): AuthTokenSummary[] {
-    const user = this.store.findUserByUsername(LOCAL_CLI_USERNAME);
-    if (!user) return [];
-    return this.store
-      .listTokensByUserId(user.id)
-      .filter((item) => !item.revokedAt)
-      .map((item) => this.store.toTokenSummary(item));
-  }
-  /**
-   * 为本机 CLI 主体签发新的 access token。
-   */
-  createLocalCliToken(input: {
-    name: string;
-    expiresAt?: string;
-  }): AuthIssuedToken {
-    const user = this.ensureLocalCliUser();
-    const issued = this.issueTokenForUser({
-      user,
-      tokenName: input.name,
-      expiresAt: input.expiresAt,
-    });
-    this.store.insertAuditLog({
-      actorUserId: user.id,
-      resourceType: "auth_token",
-      resourceId: issued.record.id,
-      action: "token_create",
-      result: "success",
-      metaJson: JSON.stringify({
-        name: issued.record.name,
-        source: "local-cli",
-      }),
-    });
-    return issued.token;
-  }
-  /**
-   * 删除本机 CLI 主体下的 token。
-   */
-  deleteLocalCliToken(tokenIdInput: string): void {
-    const user = this.requireLocalCliUser();
-    const record = this.requireLocalCliTokenRecord(tokenIdInput, user.id);
-    const deleted = this.store.deleteToken(record.id);
-    if (!deleted) throw new AuthError("Token not found", 404);
-    this.store.insertAuditLog({
-      actorUserId: user.id,
-      resourceType: "auth_token",
-      resourceId: record.id,
-      action: "token_delete",
-      result: "success",
-      metaJson: JSON.stringify({
-        name: record.name,
-        source: "local-cli",
-      }),
-    });
-  }
-  /**
-   * 解析 Authorization 头并返回 principal。
-   */
-  authenticateBearerHeader(headerValue: string | undefined): AuthPrincipal {
-    const plainToken = extractBearerToken(headerValue);
-    if (!plainToken) throw new AuthError("Missing bearer token", 401);
-    const record = this.store.findTokenByHash(hashAccessToken(plainToken));
-    if (!record) throw new AuthError("Invalid bearer token", 401);
-    if (record.revokedAt) throw new AuthError("Token is revoked", 401);
-    if (record.expiresAt && new Date(record.expiresAt).getTime() <= Date.now()) {
-      throw new AuthError("Token is expired", 401);
-    }
-    const user = this.store.getUserById(record.userId);
-    if (!user) throw new AuthError("User not found for token", 401);
-    this.ensureUserActive(user);
-    this.store.touchToken(record.id);
-    return {
-      userId: user.id,
-      username: user.username,
-      displayName: user.displayName,
-      status: user.status,
-      tokenId: record.id,
-      tokenName: record.name,
-      roles: this.store.listRoleNamesByUserId(user.id),
-      permissions: this.store.listPermissionKeysByUserId(user.id),
-    };
-  }
-  /**
-   * 返回当前用户信息。
-   */
-  getCurrentUser(principal: AuthPrincipal): AuthCurrentUserPayload {
-    return {
-      id: principal.userId,
-      username: principal.username,
-      displayName: principal.displayName,
-      roles: [...principal.roles],
-      permissions: [...principal.permissions],
-    };
-  }
-  /**
-   * 为当前 Bearer 调用主体创建新的 token。
-   */
-  createToken(principal: AuthPrincipal, input: {
-    name: string;
-    expiresAt?: string;
-  }): AuthIssuedToken {
-    const user = this.store.getUserById(principal.userId);
-    if (!user) throw new AuthError("User not found", 404);
-    const issued = this.issueTokenForUser({
-      user,
-      tokenName: input.name,
-      expiresAt: input.expiresAt,
-    });
-    this.store.insertAuditLog({
-      actorUserId: principal.userId,
-      actorTokenId: principal.tokenId,
-      resourceType: "auth_token",
-      resourceId: issued.record.id,
-      action: "token_create",
-      result: "success",
-      metaJson: JSON.stringify({ name: issued.record.name }),
-    });
-    return issued.token;
-  }
-  /**
-   * 读取当前用户 token 列表。
-   */
-  listTokens(principal: AuthPrincipal): AuthTokenSummary[] {
-    return this.store
-      .listTokensByUserId(principal.userId)
-      .filter((item) => !item.revokedAt)
-      .map((item) => this.store.toTokenSummary(item));
-  }
-  /**
-   * 删除当前用户的 token。
-   */
-  deleteToken(principal: AuthPrincipal, tokenIdInput: string): void {
-    const tokenId = String(tokenIdInput || "").trim();
-    if (!tokenId) throw new AuthError("tokenId is required", 400);
-    const record = this.store.getTokenById(tokenId);
-    if (!record || record.userId !== principal.userId) {
-      throw new AuthError("Token not found", 404);
-    }
-    const deleted = this.store.deleteToken(record.id);
-    if (!deleted) throw new AuthError("Token not found", 404);
-    this.store.insertAuditLog({
-      actorUserId: principal.userId,
-      actorTokenId: principal.tokenId,
-      resourceType: "auth_token",
-      resourceId: tokenId,
-      action: "token_delete",
-      result: "success",
-      metaJson: JSON.stringify({ name: record.name }),
-    });
-  }
-  private issueTokenForUser(params: {
-    user: AuthUser;
-    tokenName: string;
-    expiresAt?: string;
-  }): { record: ReturnType<AuthStore["createToken"]>; token: AuthIssuedToken } {
-    const plainToken = generateAccessToken();
-    const record = this.store.createToken({
-      userId: params.user.id,
-      name: this.requireTokenName(params.tokenName),
-      tokenHash: hashAccessToken(plainToken),
-      expiresAt: optionalTrimmedText(params.expiresAt),
-    });
-    return {
-      record,
-      token: this.store.toIssuedToken(record, plainToken),
-    };
-  }
-  private ensureUserActive(user: AuthUser): void {
-    if (user.status !== "active") {
-      throw new AuthError("User is disabled", 403);
-    }
-  }
-  private isTokenActive(record: Pick<AuthTokenRecord, "revokedAt" | "expiresAt">): boolean {
-    if (record.revokedAt) return false;
-    if (!record.expiresAt) return true;
-    return new Date(record.expiresAt).getTime() > Date.now();
-  }
-  private ensureLocalCliUser(): AuthUser {
-    this.store.ensureDefaultCatalog();
-    const existing = this.store.findUserByUsername(LOCAL_CLI_USERNAME);
-    if (existing) {
-      this.ensureUserActive(existing);
-      return existing;
-    }
-    const user = this.store.createUser({
-      username: LOCAL_CLI_USERNAME,
-      passwordHash: LOCAL_CLI_PASSWORD_HASH,
-      displayName: LOCAL_CLI_DISPLAY_NAME,
-      status: "active",
-    });
-    this.store.assignRoleToUser({
-      userId: user.id,
-      roleName: "admin",
-    });
-    return user;
-  }
-  private requireTokenName(value: string): string {
-    const tokenName = String(value || "").trim();
-    if (!tokenName) throw new AuthError("token name is required", 400);
-    return tokenName;
-  }
-  private requireUserId(value: string): string {
-    const userId = String(value || "").trim();
-    if (!userId) throw new AuthError("userId is required", 400);
-    return userId;
-  }
-  private requireUser(userIdInput: string): AuthUser {
-    const userId = this.requireUserId(userIdInput);
-    const user = this.store.getUserById(userId);
-    if (!user) throw new AuthError("User not found", 404);
-    return user;
-  }
-  private requireLocalCliUser(): AuthUser {
-    const user = this.store.findUserByUsername(LOCAL_CLI_USERNAME);
-    if (!user) throw new AuthError("Local CLI access is not initialized", 404);
-    this.ensureUserActive(user);
-    return user;
-  }
-  private requireLocalCliTokenRecord(
-    tokenIdInput: string,
-    expectedUserId: string,
-  ): AuthTokenRecord {
-    const tokenId = String(tokenIdInput || "").trim();
-    if (!tokenId) throw new AuthError("tokenId is required", 400);
-    const record = this.store.getTokenById(tokenId);
-    if (!record || record.userId !== expectedUserId) {
-      throw new AuthError("Token not found", 404);
-    }
-    return record;
-  }
-  private toUserPayload(user: AuthUser): AuthCurrentUserPayload {
-    return {
-      id: user.id,
-      username: user.username,
-      displayName: user.displayName,
-      roles: this.store.listRoleNamesByUserId(user.id),
-      permissions: this.store.listPermissionKeysByUserId(user.id),
-    };
-  }
-}