npm - @inkeep/agents-api - Versions diffs - 0.0.0-dev-20260219033751 → 0.0.0-dev-20260219045007 - Mend

@inkeep/agents-api 0.0.0-dev-20260219033751 → 0.0.0-dev-20260219045007

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (109) hide show

package/dist/.well-known/workflow/v1/manifest.json +34 -34
package/dist/createApp.js +16 -90
package/dist/data/db/manageDbClient.d.ts +2 -2
package/dist/domains/evals/routes/datasetTriggers.d.ts +2 -2
package/dist/domains/evals/routes/datasetTriggers.js +5 -2
package/dist/domains/evals/routes/evaluationTriggers.js +9 -4
package/dist/domains/evals/routes/index.d.ts +2 -2
package/dist/domains/evals/workflow/routes.d.ts +2 -2
package/dist/domains/manage/index.js +4 -0
package/dist/domains/manage/routes/agent.js +16 -20
package/dist/domains/manage/routes/agentFull.js +10 -17
package/dist/domains/manage/routes/apiKeys.js +12 -14
package/dist/domains/manage/routes/artifactComponents.js +12 -15
package/dist/domains/manage/routes/availableAgents.d.ts +2 -2
package/dist/domains/manage/routes/availableAgents.js +4 -2
package/dist/domains/manage/routes/branches.js +12 -14
package/dist/domains/manage/routes/cliAuth.js +4 -3
package/dist/domains/manage/routes/contextConfigs.js +12 -15
package/dist/domains/manage/routes/conversations.d.ts +2 -2
package/dist/domains/manage/routes/conversations.js +5 -2
package/dist/domains/manage/routes/credentialStores.js +7 -8
package/dist/domains/manage/routes/credentials.js +12 -14
package/dist/domains/manage/routes/dataComponents.js +12 -14
package/dist/domains/manage/routes/evals/datasetItems.js +14 -19
package/dist/domains/manage/routes/evals/datasetRunConfigs.js +13 -6
package/dist/domains/manage/routes/evals/datasetRuns.js +7 -3
package/dist/domains/manage/routes/evals/datasets.js +12 -14
package/dist/domains/manage/routes/evals/evaluationJobConfigEvaluatorRelations.js +8 -8
package/dist/domains/manage/routes/evals/evaluationJobConfigs.js +12 -14
package/dist/domains/manage/routes/evals/evaluationResults.js +10 -13
package/dist/domains/manage/routes/evals/evaluationRunConfigs.js +14 -15
package/dist/domains/manage/routes/evals/evaluationSuiteConfigEvaluatorRelations.js +8 -8
package/dist/domains/manage/routes/evals/evaluationSuiteConfigs.js +12 -14
package/dist/domains/manage/routes/evals/evaluators.js +14 -15
package/dist/domains/manage/routes/externalAgents.js +12 -14
package/dist/domains/manage/routes/functionTools.js +12 -15
package/dist/domains/manage/routes/functions.js +12 -15
package/dist/domains/manage/routes/github.js +16 -8
package/dist/domains/manage/routes/index.d.ts +2 -2
package/dist/domains/manage/routes/index.js +0 -4
package/dist/domains/manage/routes/invitations.d.ts +2 -2
package/dist/domains/manage/routes/mcpCatalog.js +5 -2
package/dist/domains/manage/routes/mcpToolGithubAccess.js +6 -4
package/dist/domains/manage/routes/oauth.js +6 -66
package/dist/domains/manage/routes/passwordResetLinks.d.ts +2 -2
package/dist/domains/manage/routes/playgroundToken.js +4 -2
package/dist/domains/manage/routes/projectFull.js +13 -26
package/dist/domains/manage/routes/projectGithubAccess.js +7 -3
package/dist/domains/manage/routes/projectMembers.js +14 -13
package/dist/domains/manage/routes/projectPermissions.js +5 -2
package/dist/domains/manage/routes/projects.js +12 -16
package/dist/domains/manage/routes/ref.js +5 -2
package/dist/domains/manage/routes/scheduledTriggers.js +24 -21
package/dist/domains/manage/routes/signoz.d.ts +2 -2
package/dist/domains/manage/routes/skills.js +12 -15
package/dist/domains/manage/routes/subAgentArtifactComponents.js +12 -14
package/dist/domains/manage/routes/subAgentDataComponents.js +12 -14
package/dist/domains/manage/routes/subAgentExternalAgentRelations.js +12 -15
package/dist/domains/manage/routes/subAgentFunctionTools.js +12 -14
package/dist/domains/manage/routes/subAgentRelations.js +12 -15
package/dist/domains/manage/routes/subAgentSkills.js +8 -12
package/dist/domains/manage/routes/subAgentTeamAgentRelations.js +12 -15
package/dist/domains/manage/routes/subAgentToolRelations.js +14 -16
package/dist/domains/manage/routes/subAgents.js +12 -15
package/dist/domains/manage/routes/thirdPartyMCPServers.js +7 -3
package/dist/domains/manage/routes/tools.js +79 -16
package/dist/domains/manage/routes/triggers.js +18 -22
package/dist/domains/manage/routes/userProjectMemberships.js +5 -3
package/dist/domains/manage/routes/users.d.ts +2 -2
package/dist/domains/mcp/routes/mcp.d.ts +2 -2
package/dist/domains/run/agents/relationTools.d.ts +2 -2
package/dist/domains/run/routes/agents.js +4 -2
package/dist/domains/run/routes/chat.js +4 -2
package/dist/domains/run/routes/chatDataStream.js +6 -3
package/dist/domains/run/routes/mcp.js +4 -2
package/dist/domains/run/routes/webhooks.js +5 -3
package/dist/domains/run/tools/distill-conversation-history-tool.d.ts +1 -1
package/dist/domains/run/types/chat.d.ts +4 -4
package/dist/domains/run/utils/token-estimator.d.ts +2 -2
package/dist/domains/run/workflow/steps/scheduledTriggerSteps.d.ts +5 -5
package/dist/factory.d.ts +21 -21
package/dist/index.d.ts +18 -18
package/dist/middleware/evalsAuth.d.ts +2 -2
package/dist/middleware/evalsAuth.js +37 -32
package/dist/middleware/index.d.ts +2 -3
package/dist/middleware/index.js +3 -4
package/dist/middleware/manageAuth.d.ts +9 -4
package/dist/middleware/manageAuth.js +24 -2
package/dist/middleware/projectAccess.d.ts +4 -3
package/dist/middleware/projectAccess.js +78 -64
package/dist/middleware/projectConfig.d.ts +3 -3
package/dist/middleware/ref.d.ts +1 -5
package/dist/middleware/ref.js +1 -21
package/dist/middleware/requirePermission.d.ts +2 -2
package/dist/middleware/requirePermission.js +64 -64
package/dist/middleware/runAuth.d.ts +4 -4
package/dist/middleware/sessionAuth.d.ts +3 -3
package/dist/middleware/sessionAuth.js +23 -18
package/dist/middleware/tenantAccess.d.ts +3 -2
package/dist/middleware/tenantAccess.js +12 -1
package/dist/middleware/tracing.d.ts +3 -3
package/dist/middleware/tracing.js +1 -1
package/dist/routes/capabilities.d.ts +10 -0
package/dist/routes/capabilities.js +35 -0
package/dist/routes/healthChecks.js +6 -3
package/dist/routes/workflowProcess.d.ts +10 -0
package/dist/routes/workflowProcess.js +23 -0
package/dist/types/app.d.ts +3 -3
package/package.json +4 -4

package/dist/domains/manage/routes/evals/evaluationRunConfigs.js CHANGED Viewed

@@ -1,26 +1,20 @@
 import { getLogger as getLogger$1 } from "../../../../logger.js";
 import runDbClient_default from "../../../../data/db/runDbClient.js";
 import { requireProjectPermission } from "../../../../middleware/projectAccess.js";
-import { OpenAPIHono, createRoute, z } from "@hono/zod-openapi";
+import { OpenAPIHono, z } from "@hono/zod-openapi";
 import { EvaluationResultApiSelectSchema, EvaluationRunConfigApiInsertSchema, EvaluationRunConfigApiUpdateSchema, EvaluationRunConfigWithSuiteConfigsApiSelectSchema, ListResponseSchema, SingleResponseSchema, TenantProjectParamsSchema, commonGetErrorResponses, createApiError, createEvaluationRunConfig, createEvaluationRunConfigEvaluationSuiteConfigRelation, deleteEvaluationRunConfig, deleteEvaluationRunConfigEvaluationSuiteConfigRelation, generateId, getConversation, getEvaluationRunConfigById, getEvaluationRunConfigEvaluationSuiteConfigRelations, getMessagesByConversation, listEvaluationResultsByRun, listEvaluationRunConfigsWithSuiteConfigs, listEvaluationRuns, updateEvaluationRunConfig } from "@inkeep/agents-core";
+import { createProtectedRoute } from "@inkeep/agents-core/middleware";
 //#region src/domains/manage/routes/evals/evaluationRunConfigs.ts
 const app = new OpenAPIHono();
 const logger = getLogger$1("evaluationRunConfigs");
-app.use("/", async (c, next) => {
-	if (c.req.method === "POST") return requireProjectPermission("edit")(c, next);
-	return next();
-});
-app.use("/:configId", async (c, next) => {
-	if (["PATCH", "DELETE"].includes(c.req.method)) return requireProjectPermission("edit")(c, next);
-	return next();
-});
-app.openapi(createRoute({
+app.openapi(createProtectedRoute({
 	method: "get",
 	path: "/",
 	summary: "List Evaluation Run Configs",
 	operationId: "list-evaluation-run-configs",
 	tags: ["Evaluations"],
+	permission: requireProjectPermission("view"),
 	request: { params: TenantProjectParamsSchema },
 	responses: {
 		200: {
@@ -58,12 +52,13 @@ app.openapi(createRoute({
 		}), 500);
 	}
 });
-app.openapi(createRoute({
+app.openapi(createProtectedRoute({
 	method: "get",
 	path: "/{configId}",
 	summary: "Get Evaluation Run Config by ID",
 	operationId: "get-evaluation-run-config",
 	tags: ["Evaluations"],
+	permission: requireProjectPermission("view"),
 	request: { params: TenantProjectParamsSchema.extend({ configId: z.string() }) },
 	responses: {
 		200: {
@@ -107,12 +102,13 @@ app.openapi(createRoute({
 		}), 500);
 	}
 });
-app.openapi(createRoute({
+app.openapi(createProtectedRoute({
 	method: "get",
 	path: "/{configId}/results",
 	summary: "Get Evaluation Results by Run Config ID",
 	operationId: "get-evaluation-run-config-results",
 	tags: ["Evaluations"],
+	permission: requireProjectPermission("view"),
 	request: { params: TenantProjectParamsSchema.extend({ configId: z.string() }) },
 	responses: {
 		200: {
@@ -209,12 +205,13 @@ app.openapi(createRoute({
 		}), 500);
 	}
 });
-app.openapi(createRoute({
+app.openapi(createProtectedRoute({
 	method: "post",
 	path: "/",
 	summary: "Create Evaluation Run Config",
 	operationId: "create-evaluation-run-config",
 	tags: ["Evaluations"],
+	permission: requireProjectPermission("edit"),
 	request: {
 		params: TenantProjectParamsSchema,
 		body: { content: { "application/json": { schema: EvaluationRunConfigApiInsertSchema } } }
@@ -274,12 +271,13 @@ app.openapi(createRoute({
 		}), 500);
 	}
 });
-app.openapi(createRoute({
+app.openapi(createProtectedRoute({
 	method: "patch",
 	path: "/{configId}",
 	summary: "Update Evaluation Run Config",
 	operationId: "update-evaluation-run-config",
 	tags: ["Evaluations"],
+	permission: requireProjectPermission("edit"),
 	request: {
 		params: TenantProjectParamsSchema.extend({ configId: z.string() }),
 		body: { content: { "application/json": { schema: EvaluationRunConfigApiUpdateSchema } } }
@@ -360,12 +358,13 @@ app.openapi(createRoute({
 		}), 500);
 	}
 });
-app.openapi(createRoute({
+app.openapi(createProtectedRoute({
 	method: "delete",
 	path: "/{configId}",
 	summary: "Delete Evaluation Run Config",
 	operationId: "delete-evaluation-run-config",
 	tags: ["Evaluations"],
+	permission: requireProjectPermission("edit"),
 	request: { params: TenantProjectParamsSchema.extend({ configId: z.string() }) },
 	responses: {
 		204: { description: "Evaluation run config deleted" },

package/dist/domains/manage/routes/evals/evaluationSuiteConfigEvaluatorRelations.js CHANGED Viewed

@@ -1,21 +1,19 @@
 import { getLogger as getLogger$1 } from "../../../../logger.js";
 import { requireProjectPermission } from "../../../../middleware/projectAccess.js";
-import { OpenAPIHono, createRoute, z } from "@hono/zod-openapi";
+import { OpenAPIHono, z } from "@hono/zod-openapi";
 import { TenantProjectParamsSchema, commonGetErrorResponses, createApiError, createEvaluationSuiteConfigEvaluatorRelation, deleteEvaluationSuiteConfigEvaluatorRelation, generateId, getEvaluationSuiteConfigEvaluatorRelations } from "@inkeep/agents-core";
+import { createProtectedRoute } from "@inkeep/agents-core/middleware";
 //#region src/domains/manage/routes/evals/evaluationSuiteConfigEvaluatorRelations.ts
 const app = new OpenAPIHono();
 const logger = getLogger$1("evaluationSuiteConfigEvaluatorRelations");
-app.use("/:configId/evaluators/:evaluatorId", async (c, next) => {
-	if (["POST", "DELETE"].includes(c.req.method)) return requireProjectPermission("edit")(c, next);
-	return next();
-});
-app.openapi(createRoute({
+app.openapi(createProtectedRoute({
 	method: "get",
 	path: "/{configId}/evaluators",
 	summary: "List Evaluators for Evaluation Suite Config",
 	operationId: "list-evaluation-suite-config-evaluators",
 	tags: ["Evaluations"],
+	permission: requireProjectPermission("view"),
 	request: { params: TenantProjectParamsSchema.extend({ configId: z.string() }) },
 	responses: {
 		200: {
@@ -47,12 +45,13 @@ app.openapi(createRoute({
 		}), 500);
 	}
 });
-app.openapi(createRoute({
+app.openapi(createProtectedRoute({
 	method: "post",
 	path: "/{configId}/evaluators/{evaluatorId}",
 	summary: "Add Evaluator to Evaluation Suite Config",
 	operationId: "add-evaluator-to-suite-config",
 	tags: ["Evaluations"],
+	permission: requireProjectPermission("edit"),
 	request: { params: TenantProjectParamsSchema.extend({
 		configId: z.string(),
 		evaluatorId: z.string()
@@ -97,12 +96,13 @@ app.openapi(createRoute({
 		}), 500);
 	}
 });
-app.openapi(createRoute({
+app.openapi(createProtectedRoute({
 	method: "delete",
 	path: "/{configId}/evaluators/{evaluatorId}",
 	summary: "Remove Evaluator from Evaluation Suite Config",
 	operationId: "remove-evaluator-from-suite-config",
 	tags: ["Evaluations"],
+	permission: requireProjectPermission("edit"),
 	request: { params: TenantProjectParamsSchema.extend({
 		configId: z.string(),
 		evaluatorId: z.string()

package/dist/domains/manage/routes/evals/evaluationSuiteConfigs.js CHANGED Viewed

@@ -1,25 +1,19 @@
 import { getLogger as getLogger$1 } from "../../../../logger.js";
 import { requireProjectPermission } from "../../../../middleware/projectAccess.js";
-import { OpenAPIHono, createRoute, z } from "@hono/zod-openapi";
+import { OpenAPIHono, z } from "@hono/zod-openapi";
 import { EvaluationSuiteConfigApiInsertSchema, EvaluationSuiteConfigApiSelectSchema, EvaluationSuiteConfigApiUpdateSchema, ListResponseSchema, SingleResponseSchema, TenantProjectParamsSchema, commonGetErrorResponses, createApiError, createEvaluationSuiteConfig, createEvaluationSuiteConfigEvaluatorRelation, deleteEvaluationSuiteConfig, generateId, getEvaluationSuiteConfigById, listEvaluationSuiteConfigs, updateEvaluationSuiteConfig } from "@inkeep/agents-core";
+import { createProtectedRoute } from "@inkeep/agents-core/middleware";
 //#region src/domains/manage/routes/evals/evaluationSuiteConfigs.ts
 const app = new OpenAPIHono();
 const logger = getLogger$1("evaluationSuiteConfigs");
-app.use("/", async (c, next) => {
-	if (c.req.method === "POST") return requireProjectPermission("edit")(c, next);
-	return next();
-});
-app.use("/:configId", async (c, next) => {
-	if (["PATCH", "DELETE"].includes(c.req.method)) return requireProjectPermission("edit")(c, next);
-	return next();
-});
-app.openapi(createRoute({
+app.openapi(createProtectedRoute({
 	method: "get",
 	path: "/",
 	summary: "List Evaluation Suite Configs",
 	operationId: "list-evaluation-suite-configs",
 	tags: ["Evaluations"],
+	permission: requireProjectPermission("view"),
 	request: { params: TenantProjectParamsSchema },
 	responses: {
 		200: {
@@ -57,12 +51,13 @@ app.openapi(createRoute({
 		}), 500);
 	}
 });
-app.openapi(createRoute({
+app.openapi(createProtectedRoute({
 	method: "get",
 	path: "/{configId}",
 	summary: "Get Evaluation Suite Config by ID",
 	operationId: "get-evaluation-suite-config",
 	tags: ["Evaluations"],
+	permission: requireProjectPermission("view"),
 	request: { params: TenantProjectParamsSchema.extend({ configId: z.string() }) },
 	responses: {
 		200: {
@@ -98,12 +93,13 @@ app.openapi(createRoute({
 		}), 500);
 	}
 });
-app.openapi(createRoute({
+app.openapi(createProtectedRoute({
 	method: "post",
 	path: "/",
 	summary: "Create Evaluation Suite Config",
 	operationId: "create-evaluation-suite-config",
 	tags: ["Evaluations"],
+	permission: requireProjectPermission("edit"),
 	request: {
 		params: TenantProjectParamsSchema,
 		body: { content: { "application/json": { schema: EvaluationSuiteConfigApiInsertSchema } } }
@@ -154,12 +150,13 @@ app.openapi(createRoute({
 		}), 500);
 	}
 });
-app.openapi(createRoute({
+app.openapi(createProtectedRoute({
 	method: "patch",
 	path: "/{configId}",
 	summary: "Update Evaluation Suite Config",
 	operationId: "update-evaluation-suite-config",
 	tags: ["Evaluations"],
+	permission: requireProjectPermission("edit"),
 	request: {
 		params: TenantProjectParamsSchema.extend({ configId: z.string() }),
 		body: { content: { "application/json": { schema: EvaluationSuiteConfigApiUpdateSchema } } }
@@ -207,12 +204,13 @@ app.openapi(createRoute({
 		}), 500);
 	}
 });
-app.openapi(createRoute({
+app.openapi(createProtectedRoute({
 	method: "delete",
 	path: "/{configId}",
 	summary: "Delete Evaluation Suite Config",
 	operationId: "delete-evaluation-suite-config",
 	tags: ["Evaluations"],
+	permission: requireProjectPermission("edit"),
 	request: { params: TenantProjectParamsSchema.extend({ configId: z.string() }) },
 	responses: {
 		204: { description: "Evaluation suite config deleted" },

package/dist/domains/manage/routes/evals/evaluators.js CHANGED Viewed

@@ -1,25 +1,19 @@
 import { getLogger as getLogger$1 } from "../../../../logger.js";
 import { requireProjectPermission } from "../../../../middleware/projectAccess.js";
-import { OpenAPIHono, createRoute, z } from "@hono/zod-openapi";
+import { OpenAPIHono, z } from "@hono/zod-openapi";
 import { EvaluatorApiInsertSchema, EvaluatorApiSelectSchema, EvaluatorApiUpdateSchema, ListResponseSchema, SingleResponseSchema, TenantProjectParamsSchema, commonGetErrorResponses, createApiError, createEvaluator, deleteEvaluator, generateId, getEvaluatorById, getEvaluatorsByIds, listEvaluators, updateEvaluator } from "@inkeep/agents-core";
+import { createProtectedRoute } from "@inkeep/agents-core/middleware";
 //#region src/domains/manage/routes/evals/evaluators.ts
 const app = new OpenAPIHono();
 const logger = getLogger$1("evaluators");
-app.use("/", async (c, next) => {
-	if (c.req.method === "POST") return requireProjectPermission("edit")(c, next);
-	return next();
-});
-app.use("/:evaluatorId", async (c, next) => {
-	if (["PATCH", "DELETE"].includes(c.req.method)) return requireProjectPermission("edit")(c, next);
-	return next();
-});
-app.openapi(createRoute({
+app.openapi(createProtectedRoute({
 	method: "get",
 	path: "/",
 	summary: "List Evaluators",
 	operationId: "list-evaluators",
 	tags: ["Evaluations"],
+	permission: requireProjectPermission("view"),
 	request: { params: TenantProjectParamsSchema },
 	responses: {
 		200: {
@@ -57,12 +51,13 @@ app.openapi(createRoute({
 		}), 500);
 	}
 });
-app.openapi(createRoute({
+app.openapi(createProtectedRoute({
 	method: "get",
 	path: "/{evaluatorId}",
 	summary: "Get Evaluator by ID",
 	operationId: "get-evaluator",
 	tags: ["Evaluations"],
+	permission: requireProjectPermission("view"),
 	request: { params: TenantProjectParamsSchema.extend({ evaluatorId: z.string() }) },
 	responses: {
 		200: {
@@ -98,12 +93,13 @@ app.openapi(createRoute({
 		}), 500);
 	}
 });
-app.openapi(createRoute({
+app.openapi(createProtectedRoute({
 	method: "post",
 	path: "/batch",
 	summary: "Get Evaluators by IDs",
 	operationId: "get-evaluators-batch",
 	tags: ["Evaluations"],
+	permission: requireProjectPermission("edit"),
 	request: {
 		params: TenantProjectParamsSchema,
 		body: { content: { "application/json": { schema: z.object({ evaluatorIds: z.array(z.string()).min(1, "At least one evaluator ID is required") }) } } }
@@ -141,12 +137,13 @@ app.openapi(createRoute({
 		}), 500);
 	}
 });
-app.openapi(createRoute({
+app.openapi(createProtectedRoute({
 	method: "post",
 	path: "/",
 	summary: "Create Evaluator",
 	operationId: "create-evaluator",
 	tags: ["Evaluations"],
+	permission: requireProjectPermission("edit"),
 	request: {
 		params: TenantProjectParamsSchema,
 		body: { content: { "application/json": { schema: EvaluatorApiInsertSchema } } }
@@ -189,12 +186,13 @@ app.openapi(createRoute({
 		}), 500);
 	}
 });
-app.openapi(createRoute({
+app.openapi(createProtectedRoute({
 	method: "patch",
 	path: "/{evaluatorId}",
 	summary: "Update Evaluator",
 	operationId: "update-evaluator",
 	tags: ["Evaluations"],
+	permission: requireProjectPermission("edit"),
 	request: {
 		params: TenantProjectParamsSchema.extend({ evaluatorId: z.string() }),
 		body: { content: { "application/json": { schema: EvaluatorApiUpdateSchema } } }
@@ -242,12 +240,13 @@ app.openapi(createRoute({
 		}), 500);
 	}
 });
-app.openapi(createRoute({
+app.openapi(createProtectedRoute({
 	method: "delete",
 	path: "/{evaluatorId}",
 	summary: "Delete Evaluator",
 	operationId: "delete-evaluator",
 	tags: ["Evaluations"],
+	permission: requireProjectPermission("edit"),
 	request: { params: TenantProjectParamsSchema.extend({ evaluatorId: z.string() }) },
 	responses: {
 		204: { description: "Evaluator deleted" },

package/dist/domains/manage/routes/externalAgents.js CHANGED Viewed

@@ -1,24 +1,18 @@
 import { requireProjectPermission } from "../../../middleware/projectAccess.js";
 import { speakeasyOffsetLimitPagination } from "../../../utils/speakeasy.js";
-import { OpenAPIHono, createRoute } from "@hono/zod-openapi";
+import { OpenAPIHono } from "@hono/zod-openapi";
 import { ErrorResponseSchema, ExternalAgentApiInsertSchema, ExternalAgentApiUpdateSchema, ExternalAgentListResponse, ExternalAgentResponse, PaginationQueryParamsSchema, TenantProjectIdParamsSchema, TenantProjectParamsSchema, commonGetErrorResponses, createApiError, createExternalAgent, deleteExternalAgent, generateId, getExternalAgent, listExternalAgentsPaginated, updateExternalAgent } from "@inkeep/agents-core";
+import { createProtectedRoute } from "@inkeep/agents-core/middleware";
 //#region src/domains/manage/routes/externalAgents.ts
 const app = new OpenAPIHono();
-app.use("/", async (c, next) => {
-	if (c.req.method === "POST") return requireProjectPermission("edit")(c, next);
-	return next();
-});
-app.use("/:id", async (c, next) => {
-	if (c.req.method === "PUT" || c.req.method === "DELETE") return requireProjectPermission("edit")(c, next);
-	return next();
-});
-app.openapi(createRoute({
+app.openapi(createProtectedRoute({
 	method: "get",
 	path: "/",
 	summary: "List External Agents",
 	operationId: "list-external-agents",
 	tags: ["External Agents"],
+	permission: requireProjectPermission("view"),
 	request: {
 		params: TenantProjectParamsSchema,
 		query: PaginationQueryParamsSchema
@@ -54,12 +48,13 @@ app.openapi(createRoute({
 	};
 	return c.json(dataWithType);
 });
-app.openapi(createRoute({
+app.openapi(createProtectedRoute({
 	method: "get",
 	path: "/{id}",
 	summary: "Get External Agent",
 	operationId: "get-external-agent-by-id",
 	tags: ["External Agents"],
+	permission: requireProjectPermission("view"),
 	request: { params: TenantProjectIdParamsSchema },
 	responses: {
 		200: {
@@ -88,12 +83,13 @@ app.openapi(createRoute({
 	};
 	return c.json({ data: agentWithType });
 });
-app.openapi(createRoute({
+app.openapi(createProtectedRoute({
 	method: "post",
 	path: "/",
 	summary: "Create External Agent",
 	operationId: "create-external-agent",
 	tags: ["External Agents"],
+	permission: requireProjectPermission("edit"),
 	request: {
 		params: TenantProjectParamsSchema,
 		body: { content: { "application/json": { schema: ExternalAgentApiInsertSchema } } }
@@ -124,12 +120,13 @@ app.openapi(createRoute({
 	};
 	return c.json({ data: agentWithType }, 201);
 });
-app.openapi(createRoute({
+app.openapi(createProtectedRoute({
 	method: "put",
 	path: "/{id}",
 	summary: "Update External Agent",
 	operationId: "update-external-agent",
 	tags: ["External Agents"],
+	permission: requireProjectPermission("edit"),
 	request: {
 		params: TenantProjectIdParamsSchema,
 		body: { content: { "application/json": { schema: ExternalAgentApiUpdateSchema } } }
@@ -163,12 +160,13 @@ app.openapi(createRoute({
 	};
 	return c.json({ data: agentWithType });
 });
-app.openapi(createRoute({
+app.openapi(createProtectedRoute({
 	method: "delete",
 	path: "/{id}",
 	summary: "Delete External Agent",
 	operationId: "delete-external-agent",
 	tags: ["External Agents"],
+	permission: requireProjectPermission("edit"),
 	request: { params: TenantProjectIdParamsSchema },
 	responses: {
 		204: { description: "External agent deleted successfully" },

package/dist/domains/manage/routes/functionTools.js CHANGED Viewed

@@ -1,27 +1,20 @@
 import { getLogger as getLogger$1 } from "../../../logger.js";
 import { requireProjectPermission } from "../../../middleware/projectAccess.js";
 import { speakeasyOffsetLimitPagination } from "../../../utils/speakeasy.js";
-import { OpenAPIHono, createRoute } from "@hono/zod-openapi";
+import { OpenAPIHono } from "@hono/zod-openapi";
 import { FunctionToolApiInsertSchema, FunctionToolApiUpdateSchema, FunctionToolListResponse, FunctionToolResponse, PaginationQueryParamsSchema, TenantProjectAgentIdParamsSchema, TenantProjectAgentParamsSchema, commonGetErrorResponses, createApiError, createFunctionTool, deleteFunctionTool, generateId, getFunctionToolById, listFunctionTools, updateFunctionTool } from "@inkeep/agents-core";
+import { createProtectedRoute } from "@inkeep/agents-core/middleware";
 //#region src/domains/manage/routes/functionTools.ts
 const logger = getLogger$1("functionTools");
 const app = new OpenAPIHono();
-app.use("/", async (c, next) => {
-	if (c.req.method === "POST") return requireProjectPermission("edit")(c, next);
-	return next();
-});
-app.use("/:id", async (c, next) => {
-	if (c.req.method === "PUT") return requireProjectPermission("edit")(c, next);
-	if (c.req.method === "DELETE") return requireProjectPermission("edit")(c, next);
-	return next();
-});
-app.openapi(createRoute({
+app.openapi(createProtectedRoute({
 	method: "get",
 	path: "/",
 	summary: "List Function Tools",
 	operationId: "list-function-tools",
 	tags: ["Function Tools"],
+	permission: requireProjectPermission("view"),
 	request: {
 		params: TenantProjectAgentParamsSchema,
 		query: PaginationQueryParamsSchema
@@ -64,12 +57,13 @@ app.openapi(createRoute({
 		}), 500);
 	}
 });
-app.openapi(createRoute({
+app.openapi(createProtectedRoute({
 	method: "get",
 	path: "/{id}",
 	summary: "Get Function Tool by ID",
 	operationId: "get-function-tool",
 	tags: ["Function Tools"],
+	permission: requireProjectPermission("view"),
 	request: { params: TenantProjectAgentIdParamsSchema },
 	responses: {
 		200: {
@@ -109,12 +103,13 @@ app.openapi(createRoute({
 		}), 500);
 	}
 });
-app.openapi(createRoute({
+app.openapi(createProtectedRoute({
 	method: "post",
 	path: "/",
 	summary: "Create Function Tool",
 	operationId: "create-function-tool",
 	tags: ["Function Tools"],
+	permission: requireProjectPermission("edit"),
 	request: {
 		params: TenantProjectAgentParamsSchema,
 		body: { content: { "application/json": { schema: FunctionToolApiInsertSchema } } }
@@ -158,12 +153,13 @@ app.openapi(createRoute({
 		}), 500);
 	}
 });
-app.openapi(createRoute({
+app.openapi(createProtectedRoute({
 	method: "put",
 	path: "/{id}",
 	summary: "Update Function Tool",
 	operationId: "update-function-tool",
 	tags: ["Function Tools"],
+	permission: requireProjectPermission("edit"),
 	request: {
 		params: TenantProjectAgentIdParamsSchema,
 		body: { content: { "application/json": { schema: FunctionToolApiUpdateSchema } } }
@@ -209,12 +205,13 @@ app.openapi(createRoute({
 		}), 500);
 	}
 });
-app.openapi(createRoute({
+app.openapi(createProtectedRoute({
 	method: "delete",
 	path: "/{id}",
 	summary: "Delete Function Tool",
 	operationId: "delete-function-tool",
 	tags: ["Function Tools"],
+	permission: requireProjectPermission("edit"),
 	request: { params: TenantProjectAgentIdParamsSchema },
 	responses: {
 		204: { description: "Function tool deleted successfully" },

package/dist/domains/manage/routes/functions.js CHANGED Viewed

@@ -1,27 +1,20 @@
 import { getLogger as getLogger$1 } from "../../../logger.js";
 import { requireProjectPermission } from "../../../middleware/projectAccess.js";
 import { speakeasyOffsetLimitPagination } from "../../../utils/speakeasy.js";
-import { OpenAPIHono, createRoute } from "@hono/zod-openapi";
+import { OpenAPIHono } from "@hono/zod-openapi";
 import { FunctionApiInsertSchema, FunctionApiUpdateSchema, FunctionListResponse, FunctionResponse, PaginationQueryParamsSchema, TenantProjectIdParamsSchema, TenantProjectParamsSchema, commonGetErrorResponses, createApiError, deleteFunction, generateId, getFunction, listFunctionsPaginated, upsertFunction } from "@inkeep/agents-core";
+import { createProtectedRoute } from "@inkeep/agents-core/middleware";
 //#region src/domains/manage/routes/functions.ts
 const logger = getLogger$1("functions");
 const app = new OpenAPIHono();
-app.use("/", async (c, next) => {
-	if (c.req.method === "POST") return requireProjectPermission("edit")(c, next);
-	return next();
-});
-app.use("/:id", async (c, next) => {
-	if (c.req.method === "PUT") return requireProjectPermission("edit")(c, next);
-	if (c.req.method === "DELETE") return requireProjectPermission("edit")(c, next);
-	return next();
-});
-app.openapi(createRoute({
+app.openapi(createProtectedRoute({
 	method: "get",
 	path: "/",
 	summary: "List Functions",
 	operationId: "list-functions",
 	tags: ["Functions"],
+	permission: requireProjectPermission("view"),
 	request: {
 		params: TenantProjectParamsSchema,
 		query: PaginationQueryParamsSchema
@@ -62,9 +55,10 @@ app.openapi(createRoute({
 		}), 500);
 	}
 });
-app.openapi(createRoute({
+app.openapi(createProtectedRoute({
 	method: "get",
 	path: "/{id}",
+	permission: requireProjectPermission("view"),
 	summary: "Get Function by ID",
 	operationId: "get-function",
 	tags: ["Functions"],
@@ -104,9 +98,10 @@ app.openapi(createRoute({
 		}), 500);
 	}
 });
-app.openapi(createRoute({
+app.openapi(createProtectedRoute({
 	method: "post",
 	path: "/",
+	permission: requireProjectPermission("edit"),
 	summary: "Create Function",
 	operationId: "create-function",
 	tags: ["Functions"],
@@ -161,9 +156,10 @@ app.openapi(createRoute({
 		}), 500);
 	}
 });
-app.openapi(createRoute({
+app.openapi(createProtectedRoute({
 	method: "put",
 	path: "/{id}",
+	permission: requireProjectPermission("edit"),
 	summary: "Update Function",
 	operationId: "update-function",
 	tags: ["Functions"],
@@ -230,9 +226,10 @@ app.openapi(createRoute({
 		}), 500);
 	}
 });
-app.openapi(createRoute({
+app.openapi(createProtectedRoute({
 	method: "delete",
 	path: "/{id}",
+	permission: requireProjectPermission("edit"),
 	summary: "Delete Function",
 	operationId: "delete-function",
 	tags: ["Functions"],