@inkeep/agents-work-apps 0.0.0-dev-20260204182014 → 0.0.0-dev-20260204210021

package/dist/slack/services/modals.js

@@ -1,203 +0,0 @@
-//#region src/slack/services/modals.ts
-/**
-* Build the agent selector modal for thread context.
-*
-* Shows:
-* - Project dropdown
-* - Agent dropdown (updates based on project selection)
-* - Include thread context checkbox (if in thread)
-* - Question/instructions input
-* - Private response checkbox
-*
-* @param params - Modal configuration parameters
-* @returns Slack ModalView object ready for views.open()
-*/
-function buildAgentSelectorModal(params) {
-	const { projects, agents, metadata, selectedProjectId } = params;
-	const isInThread = metadata.isInThread;
-	const projectOptions = projects.map((project) => ({
-		text: {
-			type: "plain_text",
-			text: project.name,
-			emoji: true
-		},
-		value: project.id
-	}));
-	const agentOptions = agents.length > 0 ? agents.map((agent) => ({
-		text: {
-			type: "plain_text",
-			text: agent.name || agent.id,
-			emoji: true
-		},
-		value: JSON.stringify({
-			agentId: agent.id,
-			projectId: agent.projectId
-		})
-	})) : [{
-		text: {
-			type: "plain_text",
-			text: "No agents available",
-			emoji: true
-		},
-		value: "none"
-	}];
-	const selectedProjectOption = selectedProjectId ? projectOptions.find((p) => p.value === selectedProjectId) : projectOptions[0];
-	const blocks = [{
-		type: "input",
-		block_id: "project_select_block",
-		element: {
-			type: "static_select",
-			action_id: "modal_project_select",
-			placeholder: {
-				type: "plain_text",
-				text: "Select a project..."
-			},
-			options: projectOptions,
-			...selectedProjectOption ? { initial_option: selectedProjectOption } : {}
-		},
-		label: {
-			type: "plain_text",
-			text: "Project",
-			emoji: true
-		}
-	}, {
-		type: "input",
-		block_id: "agent_select_block",
-		element: {
-			type: "static_select",
-			action_id: "agent_select",
-			placeholder: {
-				type: "plain_text",
-				text: "Select an agent..."
-			},
-			options: agentOptions,
-			...agents.length > 0 ? { initial_option: agentOptions[0] } : {}
-		},
-		label: {
-			type: "plain_text",
-			text: "Agent",
-			emoji: true
-		}
-	}];
-	if (isInThread) blocks.push({
-		type: "input",
-		block_id: "context_block",
-		element: {
-			type: "checkboxes",
-			action_id: "include_context_checkbox",
-			options: [{
-				text: {
-					type: "plain_text",
-					text: "Include thread context",
-					emoji: true
-				},
-				value: "include_context"
-			}],
-			initial_options: [{
-				text: {
-					type: "plain_text",
-					text: "Include thread context",
-					emoji: true
-				},
-				value: "include_context"
-			}]
-		},
-		label: {
-			type: "plain_text",
-			text: "Context",
-			emoji: true
-		},
-		optional: true
-	});
-	blocks.push({
-		type: "input",
-		block_id: "question_block",
-		element: {
-			type: "plain_text_input",
-			action_id: "question_input",
-			multiline: true,
-			placeholder: {
-				type: "plain_text",
-				text: isInThread ? "Additional instructions (optional)..." : "What would you like to ask?"
-			}
-		},
-		label: {
-			type: "plain_text",
-			text: isInThread ? "Additional Instructions" : "Your Question",
-			emoji: true
-		},
-		optional: isInThread
-	});
-	blocks.push({
-		type: "input",
-		block_id: "visibility_block",
-		element: {
-			type: "checkboxes",
-			action_id: "visibility_checkbox",
-			options: [{
-				text: {
-					type: "plain_text",
-					text: "Private response (only visible to you)",
-					emoji: true
-				},
-				value: "ephemeral"
-			}]
-		},
-		label: {
-			type: "plain_text",
-			text: "Visibility",
-			emoji: true
-		},
-		optional: true
-	});
-	return {
-		type: "modal",
-		callback_id: "agent_selector_modal",
-		private_metadata: JSON.stringify(metadata),
-		title: {
-			type: "plain_text",
-			text: isInThread ? "Ask About Thread" : "Ask an Agent",
-			emoji: true
-		},
-		submit: {
-			type: "plain_text",
-			text: "Ask Agent",
-			emoji: true
-		},
-		close: {
-			type: "plain_text",
-			text: "Cancel",
-			emoji: true
-		},
-		blocks
-	};
-}
-/**
-* Parse the modal submission payload from Slack.
-* Extracts agent selection, question, and visibility settings.
-*
-* @param view - The view object from view_submission event
-* @returns Parsed submission data, or null if parsing fails
-*/
-function parseModalSubmission(view) {
-	try {
-		const metadata = JSON.parse(view.private_metadata || "{}");
-		const values = view.state?.values || {};
-		const agentSelectValue = values.agent_select_block?.agent_select;
-		const questionValue = values.question_block?.question_input;
-		const visibilityValue = values.visibility_block?.visibility_checkbox;
-		const agentData = JSON.parse(agentSelectValue?.selected_option?.value || "{}");
-		return {
-			agentId: agentData.agentId || "",
-			projectId: agentData.projectId || "",
-			question: questionValue?.value || "",
-			isEphemeral: visibilityValue?.selected_options?.some((o) => o.value === "ephemeral") || false,
-			metadata
-		};
-	} catch {
-		return null;
-	}
-}
-
-//#endregion
-export { buildAgentSelectorModal, parseModalSubmission };

package/dist/slack/services/nango.d.ts

@@ -1,82 +0,0 @@
-import { Nango } from "@nangohq/node";
-
-//#region src/slack/services/nango.d.ts
-
-declare function getSlackNango(): Nango;
-declare function getSlackIntegrationId(): string;
-declare function createConnectSession(params: {
-  userId: string;
-  userEmail?: string;
-  userName?: string;
-  tenantId: string;
-}): Promise<{
-  sessionToken: string;
-} | null>;
-declare function getConnectionAccessToken(connectionId: string): Promise<string | null>;
-interface DefaultAgentConfig {
-  agentId: string;
-  agentName?: string;
-  projectId: string;
-  projectName?: string;
-}
-interface SlackWorkspaceConnection {
-  connectionId: string;
-  teamId: string;
-  teamName?: string;
-  botToken: string;
-  tenantId: string;
-  defaultAgent?: DefaultAgentConfig;
-}
-/**
- * Find a workspace connection by Slack team ID.
- * Used for @mentions where any user can trigger the bot.
- * Returns the bot token for the workspace.
- */
-declare function findWorkspaceConnectionByTeamId(teamId: string): Promise<SlackWorkspaceConnection | null>;
-declare function updateConnectionMetadata(connectionId: string, metadata: Record<string, string>): Promise<boolean>;
-declare function setWorkspaceDefaultAgent(teamId: string, defaultAgent: DefaultAgentConfig | null): Promise<boolean>;
-declare function getWorkspaceDefaultAgentFromNango(teamId: string): Promise<DefaultAgentConfig | null>;
-/**
- * Compute a stable, deterministic connection ID for a Slack workspace.
- * Format: "T:<team_id>" or "E:<enterprise_id>:T:<team_id>" for Enterprise Grid
- */
-declare function computeWorkspaceConnectionId(params: {
-  teamId: string;
-  enterpriseId?: string;
-}): string;
-interface WorkspaceInstallData {
-  teamId: string;
-  teamName?: string;
-  teamDomain?: string;
-  enterpriseId?: string;
-  enterpriseName?: string;
-  botUserId?: string;
-  botToken: string;
-  botScopes?: string;
-  installerUserId?: string;
-  installerUserName?: string;
-  isEnterpriseInstall?: boolean;
-  appId?: string;
-  tenantId?: string;
-  workspaceUrl?: string;
-  workspaceIconUrl?: string;
-  installationSource?: string;
-}
-/**
- * Store a workspace installation in Nango.
- * Uses upsert semantics - will update if the connection already exists.
- */
-declare function storeWorkspaceInstallation(data: WorkspaceInstallData): Promise<{
-  connectionId: string;
-  success: boolean;
-}>;
-/**
- * List all workspace installations from Nango.
- */
-declare function listWorkspaceInstallations(): Promise<SlackWorkspaceConnection[]>;
-/**
- * Delete a workspace installation from Nango.
- */
-declare function deleteWorkspaceInstallation(connectionId: string): Promise<boolean>;
-//#endregion
-export { DefaultAgentConfig, SlackWorkspaceConnection, WorkspaceInstallData, computeWorkspaceConnectionId, createConnectSession, deleteWorkspaceInstallation, findWorkspaceConnectionByTeamId, getConnectionAccessToken, getSlackIntegrationId, getSlackNango, getWorkspaceDefaultAgentFromNango, listWorkspaceInstallations, setWorkspaceDefaultAgent, storeWorkspaceInstallation, updateConnectionMetadata };

package/dist/slack/services/nango.js

@@ -1,326 +0,0 @@
-import { env } from "../../env.js";
-import { getLogger } from "../../logger.js";
-import { Nango } from "@nangohq/node";
-
-//#region src/slack/services/nango.ts
-/**
-* Nango Service for Slack OAuth Token Management
-*
-* ARCHITECTURE NOTE: PostgreSQL is the authoritative source of truth for:
-* - User linking data (work_app_slack_user_mappings table)
-* - User settings/preferences (work_app_slack_user_settings table)
-* - Workspace metadata (work_app_slack_workspaces table)
-*
-* Nango is used ONLY for:
-* - OAuth token storage and refresh (bot tokens for workspaces)
-* - OAuth flow management (createConnectSession)
-*
-* For user data, use the PostgreSQL data access layer:
-* @see packages/agents-core/src/data-access/runtime/workAppSlack.ts
-*/
-const logger = getLogger("slack-nango");
-function getSlackNango() {
-	const secretKey = env.NANGO_SLACK_SECRET_KEY || env.NANGO_SECRET_KEY;
-	if (!secretKey) throw new Error("NANGO_SLACK_SECRET_KEY or NANGO_SECRET_KEY is required for Slack integration");
-	return new Nango({ secretKey });
-}
-function getSlackIntegrationId() {
-	return env.NANGO_SLACK_INTEGRATION_ID || "slack-agent";
-}
-async function createConnectSession(params) {
-	try {
-		const nango = getSlackNango();
-		const integrationId = getSlackIntegrationId();
-		const session = await nango.createConnectSession({
-			end_user: {
-				id: params.userId,
-				email: params.userEmail,
-				display_name: params.userName
-			},
-			organization: {
-				id: params.tenantId,
-				display_name: params.tenantId
-			},
-			allowed_integrations: [integrationId]
-		});
-		logger.info({
-			userId: params.userId,
-			userEmail: params.userEmail,
-			integrationId
-		}, "Created Nango connect session");
-		return { sessionToken: session.data.token };
-	} catch (error) {
-		logger.error({ error }, "Failed to create Nango connect session");
-		return null;
-	}
-}
-async function getConnectionAccessToken(connectionId) {
-	try {
-		const nango = getSlackNango();
-		const integrationId = getSlackIntegrationId();
-		return (await nango.getConnection(integrationId, connectionId)).credentials?.access_token || null;
-	} catch (error) {
-		logger.error({
-			error,
-			connectionId
-		}, "Failed to get connection access token");
-		return null;
-	}
-}
-/**
-* Find a workspace connection by Slack team ID.
-* Used for @mentions where any user can trigger the bot.
-* Returns the bot token for the workspace.
-*/
-async function findWorkspaceConnectionByTeamId(teamId) {
-	try {
-		const nango = getSlackNango();
-		const integrationId = getSlackIntegrationId();
-		const connections = await nango.listConnections();
-		for (const conn of connections.connections) if (conn.provider_config_key === integrationId) try {
-			const fullConn = await nango.getConnection(integrationId, conn.connection_id);
-			const connectionConfig = fullConn.connection_config;
-			const metadata = fullConn.metadata;
-			const credentials = fullConn;
-			if ((connectionConfig?.["team.id"] || metadata?.slack_team_id) === teamId && credentials.credentials?.access_token) {
-				let defaultAgent;
-				if (metadata?.default_agent) try {
-					defaultAgent = JSON.parse(metadata.default_agent);
-				} catch {}
-				return {
-					connectionId: conn.connection_id,
-					teamId,
-					teamName: metadata?.slack_team_name,
-					botToken: credentials.credentials.access_token,
-					tenantId: metadata?.tenant_id || "default",
-					defaultAgent
-				};
-			}
-		} catch {}
-		return null;
-	} catch (error) {
-		logger.error({
-			error,
-			teamId
-		}, "Failed to find workspace connection by team ID");
-		return null;
-	}
-}
-async function updateConnectionMetadata(connectionId, metadata) {
-	try {
-		const nango = getSlackNango();
-		const integrationId = getSlackIntegrationId();
-		await nango.updateMetadata(integrationId, connectionId, metadata);
-		return true;
-	} catch (error) {
-		logger.error({
-			error,
-			connectionId
-		}, "Failed to update connection metadata");
-		return false;
-	}
-}
-async function setWorkspaceDefaultAgent(teamId, defaultAgent) {
-	try {
-		const workspace = await findWorkspaceConnectionByTeamId(teamId);
-		if (!workspace) {
-			logger.warn({ teamId }, "No workspace connection found to set default agent");
-			return false;
-		}
-		return updateConnectionMetadata(workspace.connectionId, { default_agent: defaultAgent ? JSON.stringify(defaultAgent) : "" });
-	} catch (error) {
-		logger.error({
-			error,
-			teamId
-		}, "Failed to set workspace default agent");
-		return false;
-	}
-}
-async function getWorkspaceDefaultAgentFromNango(teamId) {
-	try {
-		return (await findWorkspaceConnectionByTeamId(teamId))?.defaultAgent || null;
-	} catch (error) {
-		logger.error({
-			error,
-			teamId
-		}, "Failed to get workspace default agent");
-		return null;
-	}
-}
-/**
-* Compute a stable, deterministic connection ID for a Slack workspace.
-* Format: "T:<team_id>" or "E:<enterprise_id>:T:<team_id>" for Enterprise Grid
-*/
-function computeWorkspaceConnectionId(params) {
-	const { teamId, enterpriseId } = params;
-	if (enterpriseId) return `E:${enterpriseId}:T:${teamId}`;
-	return `T:${teamId}`;
-}
-/**
-* Store a workspace installation in Nango.
-* Uses upsert semantics - will update if the connection already exists.
-*/
-async function storeWorkspaceInstallation(data) {
-	const connectionId = computeWorkspaceConnectionId({
-		teamId: data.teamId,
-		enterpriseId: data.enterpriseId
-	});
-	try {
-		const integrationId = getSlackIntegrationId();
-		const secretKey = env.NANGO_SLACK_SECRET_KEY || env.NANGO_SECRET_KEY;
-		if (!secretKey) {
-			logger.error({}, "No Nango secret key available");
-			return {
-				connectionId,
-				success: false
-			};
-		}
-		const nangoApiUrl = env.NANGO_SERVER_URL || "https://api.nango.dev";
-		logger.info({
-			integrationId,
-			connectionId,
-			teamId: data.teamId,
-			teamName: data.teamName
-		}, "Importing connection to Nango");
-		const displayName = data.enterpriseName ? `${data.teamName || data.teamId} (${data.enterpriseName})` : data.teamName || data.teamId;
-		const workspaceUrl = data.workspaceUrl || (data.teamDomain ? `https://${data.teamDomain}.slack.com` : "");
-		const now = (/* @__PURE__ */ new Date()).toISOString();
-		const requestBody = {
-			provider_config_key: integrationId,
-			connection_id: connectionId,
-			credentials: {
-				type: "OAUTH2",
-				access_token: data.botToken
-			},
-			metadata: {
-				display_name: displayName,
-				connection_type: "workspace",
-				slack_team_id: data.teamId,
-				slack_team_name: data.teamName || "",
-				slack_team_domain: data.teamDomain || "",
-				slack_workspace_url: workspaceUrl,
-				slack_workspace_icon_url: data.workspaceIconUrl || "",
-				slack_enterprise_id: data.enterpriseId || "",
-				slack_enterprise_name: data.enterpriseName || "",
-				is_enterprise_install: String(data.isEnterpriseInstall || false),
-				slack_bot_user_id: data.botUserId || "",
-				slack_bot_scopes: data.botScopes || "",
-				slack_app_id: data.appId || "",
-				installed_by_slack_user_id: data.installerUserId || "",
-				installed_by_slack_user_name: data.installerUserName || "",
-				installed_at: now,
-				last_updated_at: now,
-				installation_source: data.installationSource || "dashboard",
-				inkeep_tenant_id: data.tenantId || "default",
-				status: "active"
-			},
-			connection_config: { "team.id": data.teamId }
-		};
-		const response = await fetch(`${nangoApiUrl}/connections`, {
-			method: "POST",
-			headers: {
-				Authorization: `Bearer ${secretKey}`,
-				"Content-Type": "application/json"
-			},
-			body: JSON.stringify(requestBody)
-		});
-		const responseText = await response.text();
-		if (!response.ok) {
-			logger.error({
-				status: response.status,
-				errorBody: responseText,
-				connectionId
-			}, "Failed to import connection to Nango");
-			return {
-				connectionId,
-				success: false
-			};
-		}
-		logger.info({
-			connectionId,
-			teamId: data.teamId,
-			teamName: data.teamName
-		}, "Stored workspace installation in Nango");
-		return {
-			connectionId,
-			success: true
-		};
-	} catch (error) {
-		logger.error({
-			error,
-			connectionId,
-			teamId: data.teamId
-		}, "Failed to store workspace installation");
-		return {
-			connectionId,
-			success: false
-		};
-	}
-}
-/**
-* List all workspace installations from Nango.
-*/
-async function listWorkspaceInstallations() {
-	try {
-		const nango = getSlackNango();
-		const integrationId = getSlackIntegrationId();
-		const connections = await nango.listConnections();
-		const workspaces = [];
-		for (const conn of connections.connections) if (conn.provider_config_key === integrationId) try {
-			const fullConn = await nango.getConnection(integrationId, conn.connection_id);
-			const metadata = fullConn.metadata;
-			const credentials = fullConn;
-			if (metadata?.connection_type === "workspace" && credentials.credentials?.access_token) {
-				let defaultAgent;
-				if (metadata?.default_agent) try {
-					defaultAgent = JSON.parse(metadata.default_agent);
-				} catch {}
-				workspaces.push({
-					connectionId: conn.connection_id,
-					teamId: metadata.slack_team_id || "",
-					teamName: metadata.slack_team_name,
-					botToken: credentials.credentials.access_token,
-					tenantId: metadata.tenant_id || "default",
-					defaultAgent
-				});
-			}
-		} catch {}
-		return workspaces;
-	} catch (error) {
-		logger.error({ error }, "Failed to list workspace installations");
-		return [];
-	}
-}
-/**
-* Delete a workspace installation from Nango.
-*/
-async function deleteWorkspaceInstallation(connectionId) {
-	try {
-		const nango = getSlackNango();
-		const integrationId = getSlackIntegrationId();
-		logger.info({
-			connectionId,
-			integrationId
-		}, "Attempting to delete workspace installation");
-		await nango.deleteConnection(integrationId, connectionId);
-		logger.info({ connectionId }, "Deleted workspace installation from Nango");
-		return true;
-	} catch (error) {
-		const errorObj = error;
-		const errorMessage = errorObj?.message || String(error);
-		const statusCode = errorObj?.status;
-		if (statusCode === 404 || errorMessage.includes("404") || errorMessage.includes("not found")) {
-			logger.warn({ connectionId }, "Connection not found in Nango, treating as already deleted");
-			return true;
-		}
-		logger.error({
-			error: errorMessage,
-			statusCode,
-			connectionId
-		}, "Failed to delete workspace installation");
-		return false;
-	}
-}
-
-//#endregion
-export { computeWorkspaceConnectionId, createConnectSession, deleteWorkspaceInstallation, findWorkspaceConnectionByTeamId, getConnectionAccessToken, getSlackIntegrationId, getSlackNango, getWorkspaceDefaultAgentFromNango, listWorkspaceInstallations, setWorkspaceDefaultAgent, storeWorkspaceInstallation, updateConnectionMetadata };

package/dist/slack/services/security.d.ts

@@ -1,35 +0,0 @@
-//#region src/slack/services/security.d.ts
-/**
- * Slack Security Utilities
- *
- * Provides security functions for verifying Slack requests and parsing payloads.
- * All incoming Slack requests are verified using HMAC-SHA256 signatures.
- */
-/**
- * Verify that a request originated from Slack using HMAC-SHA256 signature.
- *
- * @param signingSecret - The Slack signing secret from app settings
- * @param requestBody - The raw request body string
- * @param timestamp - The X-Slack-Request-Timestamp header value
- * @param signature - The X-Slack-Signature header value
- * @returns true if the signature is valid, false otherwise
- */
-declare function verifySlackRequest(signingSecret: string, requestBody: string, timestamp: string, signature: string): boolean;
-/**
- * Parse a URL-encoded Slack command body into key-value pairs.
- *
- * @param body - The URL-encoded request body from a slash command
- * @returns Parsed parameters as a string record
- */
-declare function parseSlackCommandBody(body: string): Record<string, string>;
-/**
- * Parse a Slack event body based on content type.
- * Handles both JSON and URL-encoded payloads (for interactive components).
- *
- * @param body - The raw request body
- * @param contentType - The Content-Type header value
- * @returns Parsed event payload
- */
-declare function parseSlackEventBody(body: string, contentType: string): Record<string, unknown>;
-//#endregion
-export { parseSlackCommandBody, parseSlackEventBody, verifySlackRequest };

package/dist/slack/services/security.js

@@ -1,65 +0,0 @@
-import { getLogger } from "../../logger.js";
-import crypto from "node:crypto";
-
-//#region src/slack/services/security.ts
-/**
-* Slack Security Utilities
-*
-* Provides security functions for verifying Slack requests and parsing payloads.
-* All incoming Slack requests are verified using HMAC-SHA256 signatures.
-*/
-const logger = getLogger("slack-security");
-/**
-* Verify that a request originated from Slack using HMAC-SHA256 signature.
-*
-* @param signingSecret - The Slack signing secret from app settings
-* @param requestBody - The raw request body string
-* @param timestamp - The X-Slack-Request-Timestamp header value
-* @param signature - The X-Slack-Signature header value
-* @returns true if the signature is valid, false otherwise
-*/
-function verifySlackRequest(signingSecret, requestBody, timestamp, signature) {
-	try {
-		const fiveMinutesAgo = Math.floor(Date.now() / 1e3) - 300;
-		if (Number.parseInt(timestamp, 10) < fiveMinutesAgo) {
-			logger.warn({}, "Slack request timestamp too old");
-			return false;
-		}
-		const sigBaseString = `v0:${timestamp}:${requestBody}`;
-		const mySignature = `v0=${crypto.createHmac("sha256", signingSecret).update(sigBaseString).digest("hex")}`;
-		return crypto.timingSafeEqual(Buffer.from(mySignature), Buffer.from(signature));
-	} catch (error) {
-		logger.error({ error }, "Error verifying Slack request");
-		return false;
-	}
-}
-/**
-* Parse a URL-encoded Slack command body into key-value pairs.
-*
-* @param body - The URL-encoded request body from a slash command
-* @returns Parsed parameters as a string record
-*/
-function parseSlackCommandBody(body) {
-	const params = new URLSearchParams(body);
-	return Object.fromEntries(params.entries());
-}
-/**
-* Parse a Slack event body based on content type.
-* Handles both JSON and URL-encoded payloads (for interactive components).
-*
-* @param body - The raw request body
-* @param contentType - The Content-Type header value
-* @returns Parsed event payload
-*/
-function parseSlackEventBody(body, contentType) {
-	if (contentType.includes("application/x-www-form-urlencoded")) {
-		const params = new URLSearchParams(body);
-		const payload = params.get("payload");
-		if (payload) return JSON.parse(payload);
-		return Object.fromEntries(params.entries());
-	}
-	return JSON.parse(body);
-}
-
-//#endregion
-export { parseSlackCommandBody, parseSlackEventBody, verifySlackRequest };