@igoruehara/canvas-flow 0.1.0

package/server/production-guard.d.ts

@@ -0,0 +1,9 @@
+type FindingLevel = 'warn' | 'fail';
+export type ProductionSafetyFinding = {
+    level: FindingLevel;
+    code: string;
+    message: string;
+};
+export declare function getProductionSafetyFindings(env?: NodeJS.ProcessEnv): ProductionSafetyFinding[];
+export declare function assertProductionSafety(env?: NodeJS.ProcessEnv): void;
+export {};

package/server/production-guard.js

@@ -0,0 +1,105 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.getProductionSafetyFindings = getProductionSafetyFindings;
+exports.assertProductionSafety = assertProductionSafety;
+const observability_1 = require("./observability/observability");
+function asBool(value) {
+    return ['true', '1', 'yes', 'sim'].includes(String(value || '').trim().toLowerCase());
+}
+function isProduction(env) {
+    return String(env.NODE_ENV || '').trim().toLowerCase() === 'production';
+}
+function isStrongSecret(value) {
+    const text = String(value || '');
+    return text.length >= 32 && !/^(changeme|change-me|secret|password|token|123456|canvas-flow)$/i.test(text);
+}
+function parseOrigins(env) {
+    return String(env.CORS_ORIGINS || env.CORS_ALLOWED_ORIGINS || '')
+        .split(',')
+        .map((origin) => origin.trim())
+        .filter(Boolean);
+}
+function parseBodyLimitBytes(value) {
+    const raw = String(value || '').trim().toLowerCase();
+    const match = raw.match(/^(\d+(?:\.\d+)?)(b|kb|mb|gb)?$/);
+    if (!match)
+        return 0;
+    const amount = Number(match[1]);
+    const unit = match[2] || 'b';
+    const multiplier = unit === 'gb' ? 1024 * 1024 * 1024 : unit === 'mb' ? 1024 * 1024 : unit === 'kb' ? 1024 : 1;
+    return Math.floor(amount * multiplier);
+}
+function getProductionSafetyFindings(env = process.env) {
+    if (!isProduction(env))
+        return [];
+    const findings = [];
+    const loginEnabled = asBool(env.CANVAS_FLOW_LOGIN);
+    const origins = parseOrigins(env);
+    if (!isStrongSecret(env.CANVAS_FLOW_API_TOKEN)) {
+        findings.push({
+            level: 'fail',
+            code: 'missing_api_token',
+            message: 'CANVAS_FLOW_API_TOKEN must be set to a strong value in production.',
+        });
+    }
+    if (loginEnabled && !isStrongSecret(env.CANVAS_FLOW_JWT_SECRET)) {
+        findings.push({
+            level: 'fail',
+            code: 'missing_jwt_secret',
+            message: 'CANVAS_FLOW_JWT_SECRET must be set to a strong value when production login is enabled.',
+        });
+    }
+    if (!loginEnabled) {
+        findings.push({
+            level: 'warn',
+            code: 'login_disabled',
+            message: 'CANVAS_FLOW_LOGIN is disabled in production; expose the admin UI only behind a trusted private boundary.',
+        });
+    }
+    if (asBool(env.ENABLE_SWAGGER)) {
+        findings.push({
+            level: 'warn',
+            code: 'swagger_enabled',
+            message: 'ENABLE_SWAGGER is true in production.',
+        });
+    }
+    if (origins.some((origin) => origin === '*')) {
+        findings.push({
+            level: 'fail',
+            code: 'cors_wildcard',
+            message: 'CORS_ORIGINS must not contain * in production.',
+        });
+    }
+    const bodyLimit = parseBodyLimitBytes(env.REQUEST_BODY_LIMIT || '2mb');
+    if (bodyLimit > 10 * 1024 * 1024) {
+        findings.push({
+            level: 'warn',
+            code: 'large_body_limit',
+            message: 'REQUEST_BODY_LIMIT is above 10mb in production.',
+        });
+    }
+    if (String(env.CANVAS_FLOW_FILES_STORAGE || '').trim().toLowerCase() === 's3' && !String(env.CANVAS_FLOW_FILES_S3_BUCKET || '').trim()) {
+        findings.push({
+            level: 'fail',
+            code: 'missing_files_s3_bucket',
+            message: 'CANVAS_FLOW_FILES_S3_BUCKET must be configured when CANVAS_FLOW_FILES_STORAGE=s3.',
+        });
+    }
+    return findings;
+}
+function assertProductionSafety(env = process.env) {
+    const findings = getProductionSafetyFindings(env);
+    if (!findings.length)
+        return;
+    findings.forEach((finding) => {
+        (0, observability_1.logEvent)(finding.level === 'fail' ? 'error' : 'warn', `production_guard.${finding.code}`, {
+            message: finding.message,
+        });
+    });
+    const strict = asBool(env.CANVAS_FLOW_STRICT_PRODUCTION);
+    const blocking = findings.filter((finding) => finding.level === 'fail' || strict);
+    if (blocking.length) {
+        throw new Error(`Unsafe production configuration: ${blocking.map((finding) => finding.code).join(', ')}`);
+    }
+}
+//# sourceMappingURL=production-guard.js.map

package/server/production-guard.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"production-guard.js","sourceRoot":"","sources":["../src/production-guard.ts"],"names":[],"mappings":";;AAwCA,kEAiEC;AAED,wDAeC;AA1HD,iEAAyD;AAUzD,SAAS,MAAM,CAAC,KAAc;IAC5B,OAAO,CAAC,MAAM,EAAE,GAAG,EAAE,KAAK,EAAE,KAAK,CAAC,CAAC,QAAQ,CAAC,MAAM,CAAC,KAAK,IAAI,EAAE,CAAC,CAAC,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC,CAAC;AACxF,CAAC;AAED,SAAS,YAAY,CAAC,GAAsB;IAC1C,OAAO,MAAM,CAAC,GAAG,CAAC,QAAQ,IAAI,EAAE,CAAC,CAAC,IAAI,EAAE,CAAC,WAAW,EAAE,KAAK,YAAY,CAAC;AAC1E,CAAC;AAED,SAAS,cAAc,CAAC,KAAc;IACpC,MAAM,IAAI,GAAG,MAAM,CAAC,KAAK,IAAI,EAAE,CAAC,CAAC;IACjC,OAAO,IAAI,CAAC,MAAM,IAAI,EAAE,IAAI,CAAC,kEAAkE,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;AAC7G,CAAC;AAED,SAAS,YAAY,CAAC,GAAsB;IAC1C,OAAO,MAAM,CAAC,GAAG,CAAC,YAAY,IAAI,GAAG,CAAC,oBAAoB,IAAI,EAAE,CAAC;SAC9D,KAAK,CAAC,GAAG,CAAC;SACV,GAAG,CAAC,CAAC,MAAM,EAAE,EAAE,CAAC,MAAM,CAAC,IAAI,EAAE,CAAC;SAC9B,MAAM,CAAC,OAAO,CAAC,CAAC;AACrB,CAAC;AAED,SAAS,mBAAmB,CAAC,KAAc;IACzC,MAAM,GAAG,GAAG,MAAM,CAAC,KAAK,IAAI,EAAE,CAAC,CAAC,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;IACrD,MAAM,KAAK,GAAG,GAAG,CAAC,KAAK,CAAC,gCAAgC,CAAC,CAAC;IAC1D,IAAI,CAAC,KAAK;QAAE,OAAO,CAAC,CAAC;IACrB,MAAM,MAAM,GAAG,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC;IAChC,MAAM,IAAI,GAAG,KAAK,CAAC,CAAC,CAAC,IAAI,GAAG,CAAC;IAC7B,MAAM,UAAU,GAAG,IAAI,KAAK,IAAI,CAAC,CAAC,CAAC,IAAI,GAAG,IAAI,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,KAAK,IAAI,CAAC,CAAC,CAAC,IAAI,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,KAAK,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC;IAC/G,OAAO,IAAI,CAAC,KAAK,CAAC,MAAM,GAAG,UAAU,CAAC,CAAC;AACzC,CAAC;AAED,SAAgB,2BAA2B,CAAC,MAAyB,OAAO,CAAC,GAAG;IAC9E,IAAI,CAAC,YAAY,CAAC,GAAG,CAAC;QAAE,OAAO,EAAE,CAAC;IAElC,MAAM,QAAQ,GAA8B,EAAE,CAAC;IAC/C,MAAM,YAAY,GAAG,MAAM,CAAC,GAAG,CAAC,iBAAiB,CAAC,CAAC;IACnD,MAAM,OAAO,GAAG,YAAY,CAAC,GAAG,CAAC,CAAC;IAElC,IAAI,CAAC,cAAc,CAAC,GAAG,CAAC,qBAAqB,CAAC,EAAE,CAAC;QAC/C,QAAQ,CAAC,IAAI,CAAC;YACZ,KAAK,EAAE,MAAM;YACb,IAAI,EAAE,mBAAmB;YACzB,OAAO,EAAE,oEAAoE;SAC9E,CAAC,CAAC;IACL,CAAC;IAED,IAAI,YAAY,IAAI,CAAC,cAAc,CAAC,GAAG,CAAC,sBAAsB,CAAC,EAAE,CAAC;QAChE,QAAQ,CAAC,IAAI,CAAC;YACZ,KAAK,EAAE,MAAM;YACb,IAAI,EAAE,oBAAoB;YAC1B,OAAO,EAAE,wFAAwF;SAClG,CAAC,CAAC;IACL,CAAC;IAED,IAAI,CAAC,YAAY,EAAE,CAAC;QAClB,QAAQ,CAAC,IAAI,CAAC;YACZ,KAAK,EAAE,MAAM;YACb,IAAI,EAAE,gBAAgB;YACtB,OAAO,EAAE,0GAA0G;SACpH,CAAC,CAAC;IACL,CAAC;IAED,IAAI,MAAM,CAAC,GAAG,CAAC,cAAc,CAAC,EAAE,CAAC;QAC/B,QAAQ,CAAC,IAAI,CAAC;YACZ,KAAK,EAAE,MAAM;YACb,IAAI,EAAE,iBAAiB;YACvB,OAAO,EAAE,uCAAuC;SACjD,CAAC,CAAC;IACL,CAAC;IAED,IAAI,OAAO,CAAC,IAAI,CAAC,CAAC,MAAM,EAAE,EAAE,CAAC,MAAM,KAAK,GAAG,CAAC,EAAE,CAAC;QAC7C,QAAQ,CAAC,IAAI,CAAC;YACZ,KAAK,EAAE,MAAM;YACb,IAAI,EAAE,eAAe;YACrB,OAAO,EAAE,gDAAgD;SAC1D,CAAC,CAAC;IACL,CAAC;IAED,MAAM,SAAS,GAAG,mBAAmB,CAAC,GAAG,CAAC,kBAAkB,IAAI,KAAK,CAAC,CAAC;IACvE,IAAI,SAAS,GAAG,EAAE,GAAG,IAAI,GAAG,IAAI,EAAE,CAAC;QACjC,QAAQ,CAAC,IAAI,CAAC;YACZ,KAAK,EAAE,MAAM;YACb,IAAI,EAAE,kBAAkB;YACxB,OAAO,EAAE,iDAAiD;SAC3D,CAAC,CAAC;IACL,CAAC;IAED,IAAI,MAAM,CAAC,GAAG,CAAC,yBAAyB,IAAI,EAAE,CAAC,CAAC,IAAI,EAAE,CAAC,WAAW,EAAE,KAAK,IAAI,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,2BAA2B,IAAI,EAAE,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC;QACvI,QAAQ,CAAC,IAAI,CAAC;YACZ,KAAK,EAAE,MAAM;YACb,IAAI,EAAE,yBAAyB;YAC/B,OAAO,EAAE,mFAAmF;SAC7F,CAAC,CAAC;IACL,CAAC;IAED,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED,SAAgB,sBAAsB,CAAC,MAAyB,OAAO,CAAC,GAAG;IACzE,MAAM,QAAQ,GAAG,2BAA2B,CAAC,GAAG,CAAC,CAAC;IAClD,IAAI,CAAC,QAAQ,CAAC,MAAM;QAAE,OAAO;IAE7B,QAAQ,CAAC,OAAO,CAAC,CAAC,OAAO,EAAE,EAAE;QAC3B,IAAA,wBAAQ,EAAC,OAAO,CAAC,KAAK,KAAK,MAAM,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,EAAE,oBAAoB,OAAO,CAAC,IAAI,EAAE,EAAE;YACxF,OAAO,EAAE,OAAO,CAAC,OAAO;SACzB,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,MAAM,MAAM,GAAG,MAAM,CAAC,GAAG,CAAC,6BAA6B,CAAC,CAAC;IACzD,MAAM,QAAQ,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,OAAO,EAAE,EAAE,CAAC,OAAO,CAAC,KAAK,KAAK,MAAM,IAAI,MAAM,CAAC,CAAC;IAClF,IAAI,QAAQ,CAAC,MAAM,EAAE,CAAC;QACpB,MAAM,IAAI,KAAK,CAAC,oCAAoC,QAAQ,CAAC,GAAG,CAAC,CAAC,OAAO,EAAE,EAAE,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IAC5G,CAAC;AACH,CAAC"}

package/server/provider-config/provider-config-connect-provider.d.ts

@@ -0,0 +1,44 @@
+import { Connection } from 'mongoose';
+export declare const connectProviders: {
+    provide: string;
+    useFactory: (connection: Connection) => import("mongoose").Model<{
+        key: string;
+        settings: any;
+        updatedBy?: string;
+    } & import("mongoose").DefaultTimestampProps, {}, {}, {}, import("mongoose").Document<unknown, {}, {
+        key: string;
+        settings: any;
+        updatedBy?: string;
+    } & import("mongoose").DefaultTimestampProps, {}, {}> & {
+        key: string;
+        settings: any;
+        updatedBy?: string;
+    } & import("mongoose").DefaultTimestampProps & {
+        _id: import("mongoose").Types.ObjectId;
+    } & {
+        __v: number;
+    }, import("mongoose").Schema<any, import("mongoose").Model<any, any, any, any, any, any>, {}, {}, {}, {}, {
+        collection: string;
+        timestamps: true;
+    }, {
+        key: string;
+        settings: any;
+        updatedBy?: string;
+    } & import("mongoose").DefaultTimestampProps, import("mongoose").Document<unknown, {}, import("mongoose").FlatRecord<{
+        key: string;
+        settings: any;
+        updatedBy?: string;
+    } & import("mongoose").DefaultTimestampProps>, {}, import("mongoose").MergeType<import("mongoose").DefaultSchemaOptions, {
+        collection: string;
+        timestamps: true;
+    }>> & import("mongoose").FlatRecord<{
+        key: string;
+        settings: any;
+        updatedBy?: string;
+    } & import("mongoose").DefaultTimestampProps> & {
+        _id: import("mongoose").Types.ObjectId;
+    } & {
+        __v: number;
+    }>>;
+    inject: string[];
+}[];

package/server/provider-config/provider-config-connect-provider.js

@@ -0,0 +1,14 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.connectProviders = void 0;
+const constants_global_1 = require("./../constants-global");
+const provider_config_constants_model_1 = require("./provider-config-constants-model");
+const provider_config_schema_1 = require("./provider-config-schema");
+exports.connectProviders = [
+    {
+        provide: provider_config_constants_model_1.MODEL_NAME,
+        useFactory: (connection) => connection.model(provider_config_constants_model_1.COLLECTION_NAME, provider_config_schema_1.EntitySchema),
+        inject: [constants_global_1.STRING_URL_DATABASE_CONNECTION],
+    },
+];
+//# sourceMappingURL=provider-config-connect-provider.js.map

package/server/provider-config/provider-config-connect-provider.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"provider-config-connect-provider.js","sourceRoot":"","sources":["../../src/provider-config/provider-config-connect-provider.ts"],"names":[],"mappings":";;;AACA,4DAAuE;AACvE,uFAAgF;AAChF,qEAAwD;AAE3C,QAAA,gBAAgB,GAAG;IAC9B;QACE,OAAO,EAAE,4CAAU;QACnB,UAAU,EAAE,CAAC,UAAsB,EAAE,EAAE,CAAC,UAAU,CAAC,KAAK,CAAC,iDAAe,EAAE,qCAAY,CAAC;QACvF,MAAM,EAAE,CAAC,iDAA8B,CAAC;KACzC;CACF,CAAC"}

package/server/provider-config/provider-config-constants-model.d.ts

@@ -0,0 +1,3 @@
+export declare const MODEL_NAME = "CANVAS_FLOW_PROVIDER_CONFIG_MODEL";
+export declare const COLLECTION_NAME = "canvas_flow_provider_configs";
+export declare const GLOBAL_CONFIG_KEY = "global";

package/server/provider-config/provider-config-constants-model.js

@@ -0,0 +1,7 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.GLOBAL_CONFIG_KEY = exports.COLLECTION_NAME = exports.MODEL_NAME = void 0;
+exports.MODEL_NAME = 'CANVAS_FLOW_PROVIDER_CONFIG_MODEL';
+exports.COLLECTION_NAME = 'canvas_flow_provider_configs';
+exports.GLOBAL_CONFIG_KEY = 'global';
+//# sourceMappingURL=provider-config-constants-model.js.map

package/server/provider-config/provider-config-constants-model.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"provider-config-constants-model.js","sourceRoot":"","sources":["../../src/provider-config/provider-config-constants-model.ts"],"names":[],"mappings":";;;AAAa,QAAA,UAAU,GAAG,mCAAmC,CAAC;AACjD,QAAA,eAAe,GAAG,8BAA8B,CAAC;AACjD,QAAA,iBAAiB,GAAG,QAAQ,CAAC"}

package/server/provider-config/provider-config-controller.d.ts

@@ -0,0 +1,23 @@
+import { AuthService } from '../auth/auth-service';
+import { ProviderConfigService } from './provider-config-service';
+export declare class ProviderConfigController {
+    private readonly service;
+    private readonly authService;
+    constructor(service: ProviderConfigService, authService: AuthService);
+    private assertAuth;
+    getConfig(agentId?: string, authorization?: string, headerToken?: string, xApiKey?: string): Promise<{
+        providerStatus?: Record<import("./provider-config-service").ProviderConfigSection, any>;
+        settings: any;
+        secretStatus: Record<string, boolean>;
+    }>;
+    updateConfig(body: any, agentId?: string, authorization?: string, headerToken?: string, xApiKey?: string): Promise<{
+        providerStatus?: Record<import("./provider-config-service").ProviderConfigSection, any>;
+        settings: any;
+        secretStatus: Record<string, boolean>;
+    }>;
+    clearConfigSection(section: string, agentId?: string, authorization?: string, headerToken?: string, xApiKey?: string): Promise<{
+        providerStatus?: Record<import("./provider-config-service").ProviderConfigSection, any>;
+        settings: any;
+        secretStatus: Record<string, boolean>;
+    }>;
+}

package/server/provider-config/provider-config-controller.js

@@ -0,0 +1,80 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+var __param = (this && this.__param) || function (paramIndex, decorator) {
+    return function (target, key) { decorator(target, key, paramIndex); }
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.ProviderConfigController = void 0;
+const common_1 = require("@nestjs/common");
+const swagger_1 = require("@nestjs/swagger");
+const auth_service_1 = require("../auth/auth-service");
+const provider_config_service_1 = require("./provider-config-service");
+let ProviderConfigController = class ProviderConfigController {
+    constructor(service, authService) {
+        this.service = service;
+        this.authService = authService;
+    }
+    async assertAuth(authorization, headerToken, xApiKey) {
+        return await this.authService.assertUiAuth(authorization, headerToken, xApiKey);
+    }
+    async getConfig(agentId, authorization, headerToken, xApiKey) {
+        await this.assertAuth(authorization, headerToken, xApiKey);
+        return await this.service.getSafeSettings(agentId);
+    }
+    async updateConfig(body, agentId, authorization, headerToken, xApiKey) {
+        const user = await this.assertAuth(authorization, headerToken, xApiKey);
+        return await this.service.updateSettings(body?.settings || body || {}, user?.id, body?.agentId || agentId);
+    }
+    async clearConfigSection(section, agentId, authorization, headerToken, xApiKey) {
+        const user = await this.assertAuth(authorization, headerToken, xApiKey);
+        return await this.service.clearSection(section, user?.id, agentId);
+    }
+};
+exports.ProviderConfigController = ProviderConfigController;
+__decorate([
+    (0, common_1.Get)(),
+    __param(0, (0, common_1.Query)('agentId')),
+    __param(1, (0, common_1.Headers)('authorization')),
+    __param(2, (0, common_1.Headers)('x-canvas-flow-token')),
+    __param(3, (0, common_1.Headers)('x-api-key')),
+    __metadata("design:type", Function),
+    __metadata("design:paramtypes", [String, String, String, String]),
+    __metadata("design:returntype", Promise)
+], ProviderConfigController.prototype, "getConfig", null);
+__decorate([
+    (0, common_1.Put)(),
+    __param(0, (0, common_1.Body)()),
+    __param(1, (0, common_1.Query)('agentId')),
+    __param(2, (0, common_1.Headers)('authorization')),
+    __param(3, (0, common_1.Headers)('x-canvas-flow-token')),
+    __param(4, (0, common_1.Headers)('x-api-key')),
+    __metadata("design:type", Function),
+    __metadata("design:paramtypes", [Object, String, String, String, String]),
+    __metadata("design:returntype", Promise)
+], ProviderConfigController.prototype, "updateConfig", null);
+__decorate([
+    (0, common_1.Delete)(':section'),
+    __param(0, (0, common_1.Param)('section')),
+    __param(1, (0, common_1.Query)('agentId')),
+    __param(2, (0, common_1.Headers)('authorization')),
+    __param(3, (0, common_1.Headers)('x-canvas-flow-token')),
+    __param(4, (0, common_1.Headers)('x-api-key')),
+    __metadata("design:type", Function),
+    __metadata("design:paramtypes", [String, String, String, String, String]),
+    __metadata("design:returntype", Promise)
+], ProviderConfigController.prototype, "clearConfigSection", null);
+exports.ProviderConfigController = ProviderConfigController = __decorate([
+    (0, swagger_1.ApiTags)('provider-config'),
+    (0, common_1.Controller)('api/provider-config'),
+    __metadata("design:paramtypes", [provider_config_service_1.ProviderConfigService,
+        auth_service_1.AuthService])
+], ProviderConfigController);
+//# sourceMappingURL=provider-config-controller.js.map

package/server/provider-config/provider-config-controller.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"provider-config-controller.js","sourceRoot":"","sources":["../../src/provider-config/provider-config-controller.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;AAAA,2CAA2F;AAC3F,6CAA0C;AAC1C,uDAAmD;AACnD,uEAAkE;AAI3D,IAAM,wBAAwB,GAA9B,MAAM,wBAAwB;IACnC,YACmB,OAA8B,EAC9B,WAAwB;QADxB,YAAO,GAAP,OAAO,CAAuB;QAC9B,gBAAW,GAAX,WAAW,CAAa;IACxC,CAAC;IAEI,KAAK,CAAC,UAAU,CAAC,aAAsB,EAAE,WAAoB,EAAE,OAAgB;QACrF,OAAO,MAAM,IAAI,CAAC,WAAW,CAAC,YAAY,CAAC,aAAa,EAAE,WAAW,EAAE,OAAO,CAAC,CAAC;IAClF,CAAC;IAGK,AAAN,KAAK,CAAC,SAAS,CACK,OAAgB,EACR,aAAsB,EAChB,WAAoB,EAC9B,OAAgB;QAEtC,MAAM,IAAI,CAAC,UAAU,CAAC,aAAa,EAAE,WAAW,EAAE,OAAO,CAAC,CAAC;QAC3D,OAAO,MAAM,IAAI,CAAC,OAAO,CAAC,eAAe,CAAC,OAAO,CAAC,CAAC;IACrD,CAAC;IAGK,AAAN,KAAK,CAAC,YAAY,CACR,IAAS,EACC,OAAgB,EACR,aAAsB,EAChB,WAAoB,EAC9B,OAAgB;QAEtC,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,aAAa,EAAE,WAAW,EAAE,OAAO,CAAC,CAAC;QACxE,OAAO,MAAM,IAAI,CAAC,OAAO,CAAC,cAAc,CAAC,IAAI,EAAE,QAAQ,IAAI,IAAI,IAAI,EAAE,EAAE,IAAI,EAAE,EAAE,EAAE,IAAI,EAAE,OAAO,IAAI,OAAO,CAAC,CAAC;IAC7G,CAAC;IAGK,AAAN,KAAK,CAAC,kBAAkB,CACJ,OAAe,EACf,OAAgB,EACR,aAAsB,EAChB,WAAoB,EAC9B,OAAgB;QAEtC,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,aAAa,EAAE,WAAW,EAAE,OAAO,CAAC,CAAC;QACxE,OAAO,MAAM,IAAI,CAAC,OAAO,CAAC,YAAY,CAAC,OAAO,EAAE,IAAI,EAAE,EAAE,EAAE,OAAO,CAAC,CAAC;IACrE,CAAC;CACF,CAAA;AA5CY,4DAAwB;AAW7B;IADL,IAAA,YAAG,GAAE;IAEH,WAAA,IAAA,cAAK,EAAC,SAAS,CAAC,CAAA;IAChB,WAAA,IAAA,gBAAO,EAAC,eAAe,CAAC,CAAA;IACxB,WAAA,IAAA,gBAAO,EAAC,qBAAqB,CAAC,CAAA;IAC9B,WAAA,IAAA,gBAAO,EAAC,WAAW,CAAC,CAAA;;;;yDAItB;AAGK;IADL,IAAA,YAAG,GAAE;IAEH,WAAA,IAAA,aAAI,GAAE,CAAA;IACN,WAAA,IAAA,cAAK,EAAC,SAAS,CAAC,CAAA;IAChB,WAAA,IAAA,gBAAO,EAAC,eAAe,CAAC,CAAA;IACxB,WAAA,IAAA,gBAAO,EAAC,qBAAqB,CAAC,CAAA;IAC9B,WAAA,IAAA,gBAAO,EAAC,WAAW,CAAC,CAAA;;;;4DAItB;AAGK;IADL,IAAA,eAAM,EAAC,UAAU,CAAC;IAEhB,WAAA,IAAA,cAAK,EAAC,SAAS,CAAC,CAAA;IAChB,WAAA,IAAA,cAAK,EAAC,SAAS,CAAC,CAAA;IAChB,WAAA,IAAA,gBAAO,EAAC,eAAe,CAAC,CAAA;IACxB,WAAA,IAAA,gBAAO,EAAC,qBAAqB,CAAC,CAAA;IAC9B,WAAA,IAAA,gBAAO,EAAC,WAAW,CAAC,CAAA;;;;kEAItB;mCA3CU,wBAAwB;IAFpC,IAAA,iBAAO,EAAC,iBAAiB,CAAC;IAC1B,IAAA,mBAAU,EAAC,qBAAqB,CAAC;qCAGJ,+CAAqB;QACjB,0BAAW;GAHhC,wBAAwB,CA4CpC"}

package/server/provider-config/provider-config-module.d.ts

@@ -0,0 +1,2 @@
+export declare class ProviderConfigModule {
+}

package/server/provider-config/provider-config-module.js

@@ -0,0 +1,27 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.ProviderConfigModule = void 0;
+const common_1 = require("@nestjs/common");
+const auth_module_1 = require("../auth/auth-module");
+const database_module_1 = require("../database/database.module");
+const provider_config_controller_1 = require("./provider-config-controller");
+const provider_config_service_1 = require("./provider-config-service");
+const provider_config_connect_provider_1 = require("./provider-config-connect-provider");
+let ProviderConfigModule = class ProviderConfigModule {
+};
+exports.ProviderConfigModule = ProviderConfigModule;
+exports.ProviderConfigModule = ProviderConfigModule = __decorate([
+    (0, common_1.Module)({
+        imports: [database_module_1.DatabaseModule, auth_module_1.AuthModule],
+        controllers: [provider_config_controller_1.ProviderConfigController],
+        providers: [provider_config_service_1.ProviderConfigService, ...provider_config_connect_provider_1.connectProviders],
+        exports: [provider_config_service_1.ProviderConfigService],
+    })
+], ProviderConfigModule);
+//# sourceMappingURL=provider-config-module.js.map

package/server/provider-config/provider-config-module.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"provider-config-module.js","sourceRoot":"","sources":["../../src/provider-config/provider-config-module.ts"],"names":[],"mappings":";;;;;;;;;AAAA,2CAAwC;AACxC,qDAAiD;AACjD,iEAA6D;AAC7D,6EAAwE;AACxE,uEAAkE;AAClE,yFAAsE;AAQ/D,IAAM,oBAAoB,GAA1B,MAAM,oBAAoB;CAAG,CAAA;AAAvB,oDAAoB;+BAApB,oBAAoB;IANhC,IAAA,eAAM,EAAC;QACN,OAAO,EAAE,CAAC,gCAAc,EAAE,wBAAU,CAAC;QACrC,WAAW,EAAE,CAAC,qDAAwB,CAAC;QACvC,SAAS,EAAE,CAAC,+CAAqB,EAAE,GAAG,mDAAgB,CAAC;QACvD,OAAO,EAAE,CAAC,+CAAqB,CAAC;KACjC,CAAC;GACW,oBAAoB,CAAG"}

package/server/provider-config/provider-config-schema.d.ts

@@ -0,0 +1,32 @@
+import * as mongoose from 'mongoose';
+import { Document } from 'mongoose';
+export declare const EntitySchema: mongoose.Schema<any, mongoose.Model<any, any, any, any, any, any>, {}, {}, {}, {}, {
+    collection: string;
+    timestamps: true;
+}, {
+    key: string;
+    settings: any;
+    updatedBy?: string;
+} & mongoose.DefaultTimestampProps, mongoose.Document<unknown, {}, mongoose.FlatRecord<{
+    key: string;
+    settings: any;
+    updatedBy?: string;
+} & mongoose.DefaultTimestampProps>, {}, mongoose.MergeType<mongoose.DefaultSchemaOptions, {
+    collection: string;
+    timestamps: true;
+}>> & mongoose.FlatRecord<{
+    key: string;
+    settings: any;
+    updatedBy?: string;
+} & mongoose.DefaultTimestampProps> & {
+    _id: mongoose.Types.ObjectId;
+} & {
+    __v: number;
+}>;
+export declare class ProviderConfigEntity extends Document {
+    key: string;
+    settings: Record<string, any>;
+    updatedBy?: string;
+    createdAt: Date;
+    updatedAt: Date;
+}

package/server/provider-config/provider-config-schema.js

@@ -0,0 +1,46 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.ProviderConfigEntity = exports.EntitySchema = void 0;
+const mongoose_1 = require("@nestjs/mongoose");
+const mongoose = require("mongoose");
+const mongoose_2 = require("mongoose");
+const provider_config_constants_model_1 = require("./provider-config-constants-model");
+exports.EntitySchema = new mongoose.Schema({
+    key: { type: String, required: true, unique: true, index: true },
+    settings: { type: Object, default: {} },
+    updatedBy: String,
+}, {
+    collection: provider_config_constants_model_1.COLLECTION_NAME,
+    timestamps: true,
+});
+let ProviderConfigEntity = class ProviderConfigEntity extends mongoose_2.Document {
+};
+exports.ProviderConfigEntity = ProviderConfigEntity;
+__decorate([
+    (0, mongoose_1.Prop)({ required: true, unique: true }),
+    __metadata("design:type", String)
+], ProviderConfigEntity.prototype, "key", void 0);
+__decorate([
+    (0, mongoose_1.Prop)({ type: Object, default: {} }),
+    __metadata("design:type", Object)
+], ProviderConfigEntity.prototype, "settings", void 0);
+__decorate([
+    (0, mongoose_1.Prop)(),
+    __metadata("design:type", String)
+], ProviderConfigEntity.prototype, "updatedBy", void 0);
+exports.ProviderConfigEntity = ProviderConfigEntity = __decorate([
+    (0, mongoose_1.Schema)({
+        collection: provider_config_constants_model_1.COLLECTION_NAME,
+        timestamps: true,
+    })
+], ProviderConfigEntity);
+//# sourceMappingURL=provider-config-schema.js.map

package/server/provider-config/provider-config-schema.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"provider-config-schema.js","sourceRoot":"","sources":["../../src/provider-config/provider-config-schema.ts"],"names":[],"mappings":";;;;;;;;;;;;AAAA,+CAAgD;AAChD,qCAAqC;AACrC,uCAAoC;AACpC,uFAAoE;AAEvD,QAAA,YAAY,GAAG,IAAI,QAAQ,CAAC,MAAM,CAC7C;IACE,GAAG,EAAE,EAAE,IAAI,EAAE,MAAM,EAAE,QAAQ,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,KAAK,EAAE,IAAI,EAAE;IAChE,QAAQ,EAAE,EAAE,IAAI,EAAE,MAAM,EAAE,OAAO,EAAE,EAAE,EAAE;IACvC,SAAS,EAAE,MAAM;CAClB,EACD;IACE,UAAU,EAAE,iDAAe;IAC3B,UAAU,EAAE,IAAI;CACjB,CACF,CAAC;AAMK,IAAM,oBAAoB,GAA1B,MAAM,oBAAqB,SAAQ,mBAAQ;CAYjD,CAAA;AAZY,oDAAoB;AAE/B;IADC,IAAA,eAAI,EAAC,EAAE,QAAQ,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,CAAC;;iDAC3B;AAGZ;IADC,IAAA,eAAI,EAAC,EAAE,IAAI,EAAE,MAAM,EAAE,OAAO,EAAE,EAAE,EAAE,CAAC;;sDACN;AAG9B;IADC,IAAA,eAAI,GAAE;;uDACY;+BARR,oBAAoB;IAJhC,IAAA,iBAAM,EAAC;QACN,UAAU,EAAE,iDAAe;QAC3B,UAAU,EAAE,IAAI;KACjB,CAAC;GACW,oBAAoB,CAYhC"}

package/server/provider-config/provider-config-service.d.ts

@@ -0,0 +1,178 @@
+import { ConfigService } from '@nestjs/config';
+import { Model } from 'mongoose';
+import { ProviderConfigEntity } from './provider-config-schema';
+export interface OpenAIRuntimeConfig {
+    openaiProvider?: string;
+    openaiApiKey?: string;
+    openaiChatModel?: string;
+    openaiEmbeddingModel?: string;
+    openaiOcrModel?: string;
+    azureOpenAIEnabled?: boolean;
+    azureOpenAIApiKey?: string;
+    azureOpenAIApiVersion?: string;
+    azureOpenAIEndpoint?: string;
+    azureOpenAIChatDeployment?: string;
+    azureOpenAIEmbeddingDeployment?: string;
+    azureOpenAIOcrDeployment?: string;
+    geminiApiKey?: string;
+    geminiChatModel?: string;
+    claudeApiKey?: string;
+    claudeChatModel?: string;
+    grokApiKey?: string;
+    grokBaseUrl?: string;
+    grokChatModel?: string;
+    bedrockApiKey?: string;
+    bedrockBaseUrl?: string;
+    bedrockRegion?: string;
+    bedrockChatModel?: string;
+}
+export interface ProviderSettings {
+    llmProvider: 'openai' | 'azure' | 'azure_openai' | 'gemini' | 'claude' | 'grok' | 'bedrock';
+    openai: {
+        enabled: boolean;
+        apiKey: string;
+        chatModel: string;
+        embeddingModel: string;
+        ocrModel: string;
+    };
+    azureOpenai: {
+        enabled: boolean;
+        apiKey: string;
+        endpoint: string;
+        apiVersion: string;
+        chatDeploymentName: string;
+        embeddingDeploymentName: string;
+        ocrDeploymentName: string;
+        embeddingDimensions: number;
+    };
+    gemini: {
+        enabled: boolean;
+        apiKey: string;
+        chatModel: string;
+    };
+    claude: {
+        enabled: boolean;
+        apiKey: string;
+        chatModel: string;
+    };
+    grok: {
+        enabled: boolean;
+        apiKey: string;
+        baseUrl: string;
+        chatModel: string;
+    };
+    bedrock: {
+        enabled: boolean;
+        apiKey: string;
+        baseUrl: string;
+        region: string;
+        chatModel: string;
+    };
+    milvus: {
+        address: string;
+        token: string;
+        username: string;
+        password: string;
+        collectionName: string;
+    };
+    azureBlob: {
+        connectionString: string;
+        containerName: string;
+    };
+    azureSearch: {
+        endpoint: string;
+        apiKey: string;
+        indexName: string;
+        apiVersion: string;
+    };
+    mongodb: {
+        connectionString: string;
+        databaseName: string;
+    };
+    webWidget: {
+        primaryColor: string;
+        accentColor: string;
+        assistantName: string;
+        subtitle: string;
+        welcomeMessage: string;
+        placeholder: string;
+        bubbleLabel: string;
+        avatarText: string;
+        openByDefault: boolean;
+        position: 'right' | 'left';
+    };
+    whatsapp: {
+        provider: 'meta' | 'blip' | 'sinch';
+        deliveryMode: 'provider' | 'apiResponse';
+        autoReply: boolean;
+        verifyToken: string;
+        businessAccountId: string;
+        phoneNumberId: string;
+        accessToken: string;
+        graphApiVersion: string;
+        blipContractId: string;
+        blipAuthorizationKey: string;
+        sinchProjectId: string;
+        sinchAppId: string;
+        sinchRegion: string;
+        sinchAccessToken: string;
+        sinchChannel: string;
+        sinchApiMode: 'conversation' | 'relay';
+        sinchServiceNumber: string;
+        sinchServiceUsername: string;
+        sinchServiceToken: string;
+    };
+}
+export type ProviderConfigSection = 'openai' | 'azureOpenai' | 'gemini' | 'claude' | 'grok' | 'bedrock' | 'milvus' | 'azureBlob' | 'azureSearch' | 'mongodb' | 'webWidget' | 'whatsapp';
+export declare class ProviderConfigService {
+    private model;
+    private readonly configService;
+    private effectiveSettingsCache;
+    constructor(model: Model<ProviderConfigEntity>, configService: ConfigService);
+    private clearEffectiveSettingsCache;
+    private configKey;
+    private envFlag;
+    private encryptSecret;
+    private decryptSecret;
+    private secretKey;
+    getEnvSettings(): ProviderSettings;
+    private deepMerge;
+    private deepMergeFallback;
+    private walkSecrets;
+    private decryptStoredSettings;
+    private buildEffectiveSettings;
+    private decryptSettings;
+    private encryptSettings;
+    private sanitizeSettingsPatch;
+    private mergePatchPreservingSecrets;
+    private maskSafe;
+    private hasOpenAIConfig;
+    private hasAzureOpenAIConfig;
+    private hasGeminiConfig;
+    private hasClaudeConfig;
+    private hasGrokConfig;
+    private hasBedrockConfig;
+    private hasSectionConfig;
+    private buildProviderStatus;
+    private hasEnvWebWidgetConfig;
+    private normalizeEffectiveSettings;
+    private blankSection;
+    private getStoredSettings;
+    getEffectiveSettings(agentId?: string): Promise<ProviderSettings>;
+    getSafeSettings(agentId?: string): Promise<{
+        providerStatus?: Record<ProviderConfigSection, any>;
+        settings: any;
+        secretStatus: Record<string, boolean>;
+    }>;
+    updateSettings(patch: any, updatedBy?: string, agentId?: string): Promise<{
+        providerStatus?: Record<ProviderConfigSection, any>;
+        settings: any;
+        secretStatus: Record<string, boolean>;
+    }>;
+    clearSection(section: string, updatedBy?: string, agentId?: string): Promise<{
+        providerStatus?: Record<ProviderConfigSection, any>;
+        settings: any;
+        secretStatus: Record<string, boolean>;
+    }>;
+    toOpenAIRuntimeConfig(settings: ProviderSettings, provider?: string): OpenAIRuntimeConfig;
+}