@octo-cyber/workflow 0.5.0

package/dist/controllers/ai-workflow-session.controller.d.ts

@@ -0,0 +1,19 @@
+import type { Request, Response } from '@octo/core';
+export declare class AiWorkflowSessionController {
+    private get service();
+    /** GET /api/v1/workflow-ai/sessions */
+    listSessions(_req: Request, res: Response): Promise<void>;
+    /** POST /api/v1/workflow-ai/sessions */
+    createSession(req: Request, res: Response): Promise<void>;
+    /** GET /api/v1/workflow-ai/sessions/:id */
+    getSession(req: Request, res: Response): Promise<void>;
+    /** DELETE /api/v1/workflow-ai/sessions/:id */
+    deleteSession(req: Request, res: Response): Promise<void>;
+    /** GET /api/v1/workflow-ai/sessions/:id/versions */
+    listVersions(req: Request, res: Response): Promise<void>;
+    /** POST /api/v1/workflow-ai/sessions/:id/versions */
+    addVersion(req: Request, res: Response): Promise<void>;
+    /** POST /api/v1/workflow-ai/sessions/:id/rollback */
+    rollback(req: Request, res: Response): Promise<void>;
+}
+//# sourceMappingURL=ai-workflow-session.controller.d.ts.map

package/dist/controllers/ai-workflow-session.controller.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"ai-workflow-session.controller.d.ts","sourceRoot":"","sources":["../../src/controllers/ai-workflow-session.controller.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,YAAY,CAAC;AAIpD,qBACa,2BAA2B;IACtC,OAAO,KAAK,OAAO,GAElB;IAED,uCAAuC;IAEjC,YAAY,CAAC,IAAI,EAAE,OAAO,EAAE,GAAG,EAAE,QAAQ,GAAG,OAAO,CAAC,IAAI,CAAC;IAK/D,wCAAwC;IAElC,aAAa,CAAC,GAAG,EAAE,OAAO,EAAE,GAAG,EAAE,QAAQ,GAAG,OAAO,CAAC,IAAI,CAAC;IAmB/D,2CAA2C;IAErC,UAAU,CAAC,GAAG,EAAE,OAAO,EAAE,GAAG,EAAE,QAAQ,GAAG,OAAO,CAAC,IAAI,CAAC;IAM5D,8CAA8C;IAExC,aAAa,CAAC,GAAG,EAAE,OAAO,EAAE,GAAG,EAAE,QAAQ,GAAG,OAAO,CAAC,IAAI,CAAC;IAM/D,oDAAoD;IAE9C,YAAY,CAAC,GAAG,EAAE,OAAO,EAAE,GAAG,EAAE,QAAQ,GAAG,OAAO,CAAC,IAAI,CAAC;IAM9D,qDAAqD;IAE/C,UAAU,CAAC,GAAG,EAAE,OAAO,EAAE,GAAG,EAAE,QAAQ,GAAG,OAAO,CAAC,IAAI,CAAC;IAqB5D,qDAAqD;IAE/C,QAAQ,CAAC,GAAG,EAAE,OAAO,EAAE,GAAG,EAAE,QAAQ,GAAG,OAAO,CAAC,IAAI,CAAC;CAgB3D"}

package/dist/controllers/ai-workflow-session.controller.js

@@ -0,0 +1,135 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.AiWorkflowSessionController = void 0;
+const core_1 = require("@octo/core");
+const ai_workflow_session_service_js_1 = require("../services/ai-workflow-session.service.js");
+let AiWorkflowSessionController = class AiWorkflowSessionController {
+    get service() {
+        return core_1.Container.get(ai_workflow_session_service_js_1.AiWorkflowSessionService);
+    }
+    /** GET /api/v1/workflow-ai/sessions */
+    async listSessions(_req, res) {
+        const sessions = await this.service.findAllSessions();
+        res.json(core_1.ApiResponse.ok(sessions));
+    }
+    /** POST /api/v1/workflow-ai/sessions */
+    async createSession(req, res) {
+        const body = req.body;
+        const workflowName = body.workflowName;
+        if (!workflowName) {
+            res.status(400).json(core_1.ApiResponse.error('workflowName is required'));
+            return;
+        }
+        const session = await this.service.createSession({
+            n8nWorkflowId: body.n8nWorkflowId,
+            workflowName,
+            initialJson: body.initialJson,
+            createdBy: req.user?.userId,
+        });
+        res.json(core_1.ApiResponse.ok(session));
+    }
+    /** GET /api/v1/workflow-ai/sessions/:id */
+    async getSession(req, res) {
+        const id = Number(req.params.id);
+        const session = await this.service.findSessionById(id);
+        res.json(core_1.ApiResponse.ok(session));
+    }
+    /** DELETE /api/v1/workflow-ai/sessions/:id */
+    async deleteSession(req, res) {
+        const id = Number(req.params.id);
+        await this.service.deleteSession(id);
+        res.json(core_1.ApiResponse.ok(null));
+    }
+    /** GET /api/v1/workflow-ai/sessions/:id/versions */
+    async listVersions(req, res) {
+        const sessionId = Number(req.params.id);
+        const versions = await this.service.findVersions(sessionId);
+        res.json(core_1.ApiResponse.ok(versions));
+    }
+    /** POST /api/v1/workflow-ai/sessions/:id/versions */
+    async addVersion(req, res) {
+        const sessionId = Number(req.params.id);
+        const body = req.body;
+        const workflowJson = body.workflowJson;
+        if (!workflowJson) {
+            res.status(400).json(core_1.ApiResponse.error('workflowJson is required'));
+            return;
+        }
+        const version = await this.service.addVersion(sessionId, {
+            workflowJson,
+            changeDescription: body.changeDescription,
+            aiTool: body.aiTool,
+            aiModel: body.aiModel,
+            createdBy: req.user?.userId,
+        });
+        res.json(core_1.ApiResponse.ok(version));
+    }
+    /** POST /api/v1/workflow-ai/sessions/:id/rollback */
+    async rollback(req, res) {
+        const sessionId = Number(req.params.id);
+        const body = req.body;
+        const versionNumber = body.versionNumber;
+        if (typeof versionNumber !== 'number') {
+            res.status(400).json(core_1.ApiResponse.error('versionNumber is required'));
+            return;
+        }
+        const session = await this.service.rollbackToVersion(sessionId, versionNumber);
+        res.json(core_1.ApiResponse.ok(session));
+    }
+};
+exports.AiWorkflowSessionController = AiWorkflowSessionController;
+__decorate([
+    (0, core_1.Get)('/'),
+    __metadata("design:type", Function),
+    __metadata("design:paramtypes", [Object, Object]),
+    __metadata("design:returntype", Promise)
+], AiWorkflowSessionController.prototype, "listSessions", null);
+__decorate([
+    (0, core_1.Post)('/'),
+    __metadata("design:type", Function),
+    __metadata("design:paramtypes", [Object, Object]),
+    __metadata("design:returntype", Promise)
+], AiWorkflowSessionController.prototype, "createSession", null);
+__decorate([
+    (0, core_1.Get)('/:id'),
+    __metadata("design:type", Function),
+    __metadata("design:paramtypes", [Object, Object]),
+    __metadata("design:returntype", Promise)
+], AiWorkflowSessionController.prototype, "getSession", null);
+__decorate([
+    (0, core_1.Delete)('/:id'),
+    __metadata("design:type", Function),
+    __metadata("design:paramtypes", [Object, Object]),
+    __metadata("design:returntype", Promise)
+], AiWorkflowSessionController.prototype, "deleteSession", null);
+__decorate([
+    (0, core_1.Get)('/:id/versions'),
+    __metadata("design:type", Function),
+    __metadata("design:paramtypes", [Object, Object]),
+    __metadata("design:returntype", Promise)
+], AiWorkflowSessionController.prototype, "listVersions", null);
+__decorate([
+    (0, core_1.Post)('/:id/versions'),
+    __metadata("design:type", Function),
+    __metadata("design:paramtypes", [Object, Object]),
+    __metadata("design:returntype", Promise)
+], AiWorkflowSessionController.prototype, "addVersion", null);
+__decorate([
+    (0, core_1.Post)('/:id/rollback'),
+    __metadata("design:type", Function),
+    __metadata("design:paramtypes", [Object, Object]),
+    __metadata("design:returntype", Promise)
+], AiWorkflowSessionController.prototype, "rollback", null);
+exports.AiWorkflowSessionController = AiWorkflowSessionController = __decorate([
+    (0, core_1.Controller)('/api/v1/workflow-ai/sessions')
+], AiWorkflowSessionController);
+//# sourceMappingURL=ai-workflow-session.controller.js.map

package/dist/controllers/ai-workflow-session.controller.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"ai-workflow-session.controller.js","sourceRoot":"","sources":["../../src/controllers/ai-workflow-session.controller.ts"],"names":[],"mappings":";;;;;;;;;;;;AACA,qCAAmF;AACnF,+FAAsF;AAG/E,IAAM,2BAA2B,GAAjC,MAAM,2BAA2B;IACtC,IAAY,OAAO;QACjB,OAAO,gBAAS,CAAC,GAAG,CAAC,yDAAwB,CAAC,CAAC;IACjD,CAAC;IAED,uCAAuC;IAEjC,AAAN,KAAK,CAAC,YAAY,CAAC,IAAa,EAAE,GAAa;QAC7C,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,OAAO,CAAC,eAAe,EAAE,CAAC;QACtD,GAAG,CAAC,IAAI,CAAC,kBAAW,CAAC,EAAE,CAAC,QAAQ,CAAC,CAAC,CAAC;IACrC,CAAC;IAED,wCAAwC;IAElC,AAAN,KAAK,CAAC,aAAa,CAAC,GAAY,EAAE,GAAa;QAC7C,MAAM,IAAI,GAAG,GAAG,CAAC,IAA+B,CAAC;QACjD,MAAM,YAAY,GAAG,IAAI,CAAC,YAAkC,CAAC;QAE7D,IAAI,CAAC,YAAY,EAAE,CAAC;YAClB,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,kBAAW,CAAC,KAAK,CAAC,0BAA0B,CAAC,CAAC,CAAC;YACpE,OAAO;QACT,CAAC;QAED,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,OAAO,CAAC,aAAa,CAAC;YAC/C,aAAa,EAAE,IAAI,CAAC,aAAmC;YACvD,YAAY;YACZ,WAAW,EAAE,IAAI,CAAC,WAAiC;YACnD,SAAS,EAAE,GAAG,CAAC,IAAI,EAAE,MAA4B;SAClD,CAAC,CAAC;QAEH,GAAG,CAAC,IAAI,CAAC,kBAAW,CAAC,EAAE,CAAC,OAAO,CAAC,CAAC,CAAC;IACpC,CAAC;IAED,2CAA2C;IAErC,AAAN,KAAK,CAAC,UAAU,CAAC,GAAY,EAAE,GAAa;QAC1C,MAAM,EAAE,GAAG,MAAM,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC;QACjC,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,OAAO,CAAC,eAAe,CAAC,EAAE,CAAC,CAAC;QACvD,GAAG,CAAC,IAAI,CAAC,kBAAW,CAAC,EAAE,CAAC,OAAO,CAAC,CAAC,CAAC;IACpC,CAAC;IAED,8CAA8C;IAExC,AAAN,KAAK,CAAC,aAAa,CAAC,GAAY,EAAE,GAAa;QAC7C,MAAM,EAAE,GAAG,MAAM,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC;QACjC,MAAM,IAAI,CAAC,OAAO,CAAC,aAAa,CAAC,EAAE,CAAC,CAAC;QACrC,GAAG,CAAC,IAAI,CAAC,kBAAW,CAAC,EAAE,CAAC,IAAI,CAAC,CAAC,CAAC;IACjC,CAAC;IAED,oDAAoD;IAE9C,AAAN,KAAK,CAAC,YAAY,CAAC,GAAY,EAAE,GAAa;QAC5C,MAAM,SAAS,GAAG,MAAM,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC;QACxC,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,OAAO,CAAC,YAAY,CAAC,SAAS,CAAC,CAAC;QAC5D,GAAG,CAAC,IAAI,CAAC,kBAAW,CAAC,EAAE,CAAC,QAAQ,CAAC,CAAC,CAAC;IACrC,CAAC;IAED,qDAAqD;IAE/C,AAAN,KAAK,CAAC,UAAU,CAAC,GAAY,EAAE,GAAa;QAC1C,MAAM,SAAS,GAAG,MAAM,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC;QACxC,MAAM,IAAI,GAAG,GAAG,CAAC,IAA+B,CAAC;QACjD,MAAM,YAAY,GAAG,IAAI,CAAC,YAAkC,CAAC;QAE7D,IAAI,CAAC,YAAY,EAAE,CAAC;YAClB,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,kBAAW,CAAC,KAAK,CAAC,0BAA0B,CAAC,CAAC,CAAC;YACpE,OAAO;QACT,CAAC;QAED,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,OAAO,CAAC,UAAU,CAAC,SAAS,EAAE;YACvD,YAAY;YACZ,iBAAiB,EAAE,IAAI,CAAC,iBAAuC;YAC/D,MAAM,EAAE,IAAI,CAAC,MAA4B;YACzC,OAAO,EAAE,IAAI,CAAC,OAA6B;YAC3C,SAAS,EAAE,GAAG,CAAC,IAAI,EAAE,MAA4B;SAClD,CAAC,CAAC;QAEH,GAAG,CAAC,IAAI,CAAC,kBAAW,CAAC,EAAE,CAAC,OAAO,CAAC,CAAC,CAAC;IACpC,CAAC;IAED,qDAAqD;IAE/C,AAAN,KAAK,CAAC,QAAQ,CAAC,GAAY,EAAE,GAAa;QACxC,MAAM,SAAS,GAAG,MAAM,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC;QACxC,MAAM,IAAI,GAAG,GAAG,CAAC,IAA+B,CAAC;QACjD,MAAM,aAAa,GAAG,IAAI,CAAC,aAAmC,CAAC;QAE/D,IAAI,OAAO,aAAa,KAAK,QAAQ,EAAE,CAAC;YACtC,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,kBAAW,CAAC,KAAK,CAAC,2BAA2B,CAAC,CAAC,CAAC;YACrE,OAAO;QACT,CAAC;QAED,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,OAAO,CAAC,iBAAiB,CAClD,SAAS,EACT,aAAa,CACd,CAAC;QACF,GAAG,CAAC,IAAI,CAAC,kBAAW,CAAC,EAAE,CAAC,OAAO,CAAC,CAAC,CAAC;IACpC,CAAC;CACF,CAAA;AAlGY,kEAA2B;AAOhC;IADL,IAAA,UAAG,EAAC,GAAG,CAAC;;;;+DAIR;AAIK;IADL,IAAA,WAAI,EAAC,GAAG,CAAC;;;;gEAkBT;AAIK;IADL,IAAA,UAAG,EAAC,MAAM,CAAC;;;;6DAKX;AAIK;IADL,IAAA,aAAM,EAAC,MAAM,CAAC;;;;gEAKd;AAIK;IADL,IAAA,UAAG,EAAC,eAAe,CAAC;;;;+DAKpB;AAIK;IADL,IAAA,WAAI,EAAC,eAAe,CAAC;;;;6DAoBrB;AAIK;IADL,IAAA,WAAI,EAAC,eAAe,CAAC;;;;2DAgBrB;sCAjGU,2BAA2B;IADvC,IAAA,iBAAU,EAAC,8BAA8B,CAAC;GAC9B,2BAA2B,CAkGvC"}

package/dist/controllers/credential.controller.d.ts

@@ -0,0 +1,68 @@
+import type { Request, Response } from '@octo/core';
+/**
+ * CredentialController — CRUD endpoints for workflow credentials.
+ *
+ * Credentials are encrypted at rest using AES-256-CBC via the n8n Cipher class.
+ * Sensitive field values are redacted when returned to the frontend.
+ *
+ * Routes:
+ * - GET    /api/credentials       — List all credentials (redacted)
+ * - POST   /api/credentials       — Create a new credential
+ * - GET    /api/credentials/:id   — Get a single credential (redacted)
+ * - PUT    /api/credentials/:id   — Update a credential
+ * - DELETE /api/credentials/:id   — Delete a credential
+ * - POST   /api/credentials/:id/test — Test a credential
+ */
+export declare class CredentialController {
+    private repo;
+    private cipher;
+    private logger;
+    private initialized;
+    private ensureInitialized;
+    /**
+     * GET /api/credentials
+     * List all credentials. Sensitive data is redacted.
+     */
+    list(req: Request, res: Response): Promise<void>;
+    /**
+     * GET /api/credentials/:id
+     * Get a single credential. Sensitive fields are redacted.
+     */
+    getById(req: Request, res: Response): Promise<void>;
+    /**
+     * POST /api/credentials
+     * Create a new credential with encrypted data.
+     */
+    create(req: Request, res: Response): Promise<void>;
+    /**
+     * PUT /api/credentials/:id
+     * Update an existing credential.
+     * If data is provided, it replaces the entire encrypted payload.
+     * Redacted sentinel values are merged with the existing data.
+     */
+    update(req: Request, res: Response): Promise<void>;
+    /**
+     * DELETE /api/credentials/:id
+     * Delete a credential.
+     */
+    delete(req: Request, res: Response): Promise<void>;
+    /**
+     * POST /api/credentials/:id/test
+     * Test a credential by attempting to use it.
+     *
+     * For now, just verifies that the data can be decrypted.
+     * Future: Actually test connectivity (e.g., make an API call).
+     */
+    test(req: Request, res: Response): Promise<void>;
+    private static readonly REDACT_SENTINEL;
+    private static readonly SENSITIVE_PATTERNS;
+    /**
+     * Redact fields that look like they contain sensitive data.
+     */
+    private redactSensitiveFields;
+    /**
+     * Restore redacted sentinel values from saved data.
+     */
+    private unredactData;
+}
+//# sourceMappingURL=credential.controller.d.ts.map

package/dist/controllers/credential.controller.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"credential.controller.d.ts","sourceRoot":"","sources":["../../src/controllers/credential.controller.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,YAAY,CAAC;AAiBpD;;;;;;;;;;;;;GAaG;AACH,qBACa,oBAAoB;IAC/B,OAAO,CAAC,IAAI,CAA0C;IACtD,OAAO,CAAC,MAAM,CAAU;IACxB,OAAO,CAAC,MAAM,CAA8D;IAC5E,OAAO,CAAC,WAAW,CAAS;IAE5B,OAAO,CAAC,iBAAiB;IAQzB;;;OAGG;IAEG,IAAI,CAAC,GAAG,EAAE,OAAO,EAAE,GAAG,EAAE,QAAQ,GAAG,OAAO,CAAC,IAAI,CAAC;IA0BtD;;;OAGG;IAEG,OAAO,CAAC,GAAG,EAAE,OAAO,EAAE,GAAG,EAAE,QAAQ,GAAG,OAAO,CAAC,IAAI,CAAC;IAmCzD;;;OAGG;IAEG,MAAM,CAAC,GAAG,EAAE,OAAO,EAAE,GAAG,EAAE,QAAQ,GAAG,OAAO,CAAC,IAAI,CAAC;IA4CxD;;;;;OAKG;IAEG,MAAM,CAAC,GAAG,EAAE,OAAO,EAAE,GAAG,EAAE,QAAQ,GAAG,OAAO,CAAC,IAAI,CAAC;IAqDxD;;;OAGG;IAEG,MAAM,CAAC,GAAG,EAAE,OAAO,EAAE,GAAG,EAAE,QAAQ,GAAG,OAAO,CAAC,IAAI,CAAC;IAexD;;;;;;OAMG;IAEG,IAAI,CAAC,GAAG,EAAE,OAAO,EAAE,GAAG,EAAE,QAAQ,GAAG,OAAO,CAAC,IAAI,CAAC;IAgCtD,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAC,eAAe,CAAuB;IAE9D,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAC,kBAAkB,CAUxC;IAEF;;OAEG;IACH,OAAO,CAAC,qBAAqB;IAY7B;;OAEG;IACH,OAAO,CAAC,YAAY;CAYrB"}

package/dist/controllers/credential.controller.js

@@ -0,0 +1,303 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+var CredentialController_1;
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.CredentialController = void 0;
+const core_1 = require("@octo/core");
+const credential_definition_entity_js_1 = require("../entities/credential-definition.entity.js");
+const cipher_js_1 = require("../n8n/cipher/cipher.js");
+/**
+ * CredentialController — CRUD endpoints for workflow credentials.
+ *
+ * Credentials are encrypted at rest using AES-256-CBC via the n8n Cipher class.
+ * Sensitive field values are redacted when returned to the frontend.
+ *
+ * Routes:
+ * - GET    /api/credentials       — List all credentials (redacted)
+ * - POST   /api/credentials       — Create a new credential
+ * - GET    /api/credentials/:id   — Get a single credential (redacted)
+ * - PUT    /api/credentials/:id   — Update a credential
+ * - DELETE /api/credentials/:id   — Delete a credential
+ * - POST   /api/credentials/:id/test — Test a credential
+ */
+let CredentialController = class CredentialController {
+    static { CredentialController_1 = this; }
+    repo;
+    cipher;
+    logger = core_1.Container.get(core_1.LoggerService).child('CredentialController');
+    initialized = false;
+    ensureInitialized() {
+        if (this.initialized)
+            return;
+        const db = core_1.Container.get(core_1.DatabaseService);
+        this.repo = db.getRepository(credential_definition_entity_js_1.CredentialDefinitionEntity);
+        this.cipher = core_1.Container.get(cipher_js_1.Cipher);
+        this.initialized = true;
+    }
+    /**
+     * GET /api/credentials
+     * List all credentials. Sensitive data is redacted.
+     */
+    async list(req, res) {
+        this.ensureInitialized();
+        const page = req.query.page ? Number(req.query.page) : 1;
+        const pageSize = req.query.pageSize ? Number(req.query.pageSize) : 20;
+        const [items, total] = await this.repo.findAndCount({
+            order: { updatedAt: 'DESC' },
+            skip: (page - 1) * pageSize,
+            take: pageSize,
+        });
+        // Return metadata only — never return encrypted data to the listing
+        const redacted = items.map((item) => ({
+            id: item.id,
+            name: item.name,
+            type: item.type,
+            nodesAccess: item.nodesAccess ? JSON.parse(item.nodesAccess) : [],
+            createdBy: item.createdBy,
+            createdAt: item.createdAt,
+            updatedAt: item.updatedAt,
+        }));
+        res.json(core_1.ApiResponse.paginated(redacted, total, page, pageSize));
+    }
+    /**
+     * GET /api/credentials/:id
+     * Get a single credential. Sensitive fields are redacted.
+     */
+    async getById(req, res) {
+        this.ensureInitialized();
+        const id = req.params.id;
+        if (!id)
+            throw core_1.AppError.badRequest('id is required');
+        const entity = await this.repo.findOneBy({ id });
+        if (!entity)
+            throw core_1.AppError.notFound(`Credential not found: ${id}`);
+        // Decrypt and redact sensitive fields
+        let decryptedData = {};
+        try {
+            const decrypted = this.cipher.decrypt(entity.data);
+            decryptedData = JSON.parse(decrypted);
+        }
+        catch {
+            this.logger.warn(`Failed to decrypt credential ${id}, returning empty data`);
+        }
+        // Redact password-like fields (simple heuristic)
+        const redactedData = this.redactSensitiveFields(decryptedData);
+        res.json(core_1.ApiResponse.ok({
+            id: entity.id,
+            name: entity.name,
+            type: entity.type,
+            data: redactedData,
+            nodesAccess: entity.nodesAccess ? JSON.parse(entity.nodesAccess) : [],
+            createdBy: entity.createdBy,
+            createdAt: entity.createdAt,
+            updatedAt: entity.updatedAt,
+        }));
+    }
+    /**
+     * POST /api/credentials
+     * Create a new credential with encrypted data.
+     */
+    async create(req, res) {
+        this.ensureInitialized();
+        const { name, type, data, nodesAccess } = req.body;
+        if (!name)
+            throw core_1.AppError.badRequest('name is required');
+        if (!type)
+            throw core_1.AppError.badRequest('type is required');
+        if (!data)
+            throw core_1.AppError.badRequest('data is required');
+        // Encrypt the credential data
+        const encryptedData = this.cipher.encrypt(JSON.stringify(data));
+        const entity = this.repo.create({
+            name,
+            type,
+            data: encryptedData,
+            nodesAccess: nodesAccess ? JSON.stringify(nodesAccess) : null,
+            createdBy: null, // TODO: [Octo] Extract from auth context
+        });
+        const saved = await this.repo.save(entity);
+        this.logger.info(`Credential created: ${saved.id} (${saved.name}, type=${saved.type})`);
+        res.status(201).json(core_1.ApiResponse.ok({
+            id: saved.id,
+            name: saved.name,
+            type: saved.type,
+            nodesAccess: nodesAccess ?? [],
+            createdAt: saved.createdAt,
+            updatedAt: saved.updatedAt,
+        }, 'Credential created'));
+    }
+    /**
+     * PUT /api/credentials/:id
+     * Update an existing credential.
+     * If data is provided, it replaces the entire encrypted payload.
+     * Redacted sentinel values are merged with the existing data.
+     */
+    async update(req, res) {
+        this.ensureInitialized();
+        const id = req.params.id;
+        if (!id)
+            throw core_1.AppError.badRequest('id is required');
+        const entity = await this.repo.findOneBy({ id });
+        if (!entity)
+            throw core_1.AppError.notFound(`Credential not found: ${id}`);
+        const { name, type, data, nodesAccess } = req.body;
+        if (name !== undefined)
+            entity.name = name;
+        if (type !== undefined)
+            entity.type = type;
+        if (nodesAccess !== undefined)
+            entity.nodesAccess = JSON.stringify(nodesAccess);
+        if (data !== undefined) {
+            // Merge with existing data: restore any redacted (sentinel) values
+            let existingData = {};
+            try {
+                const decrypted = this.cipher.decrypt(entity.data);
+                existingData = JSON.parse(decrypted);
+            }
+            catch {
+                // If we can't decrypt existing data, just use the new data as-is
+            }
+            const mergedData = this.unredactData(data, existingData);
+            entity.data = this.cipher.encrypt(JSON.stringify(mergedData));
+        }
+        const saved = await this.repo.save(entity);
+        this.logger.info(`Credential updated: ${saved.id}`);
+        res.json(core_1.ApiResponse.ok({
+            id: saved.id,
+            name: saved.name,
+            type: saved.type,
+            nodesAccess: saved.nodesAccess ? JSON.parse(saved.nodesAccess) : [],
+            createdAt: saved.createdAt,
+            updatedAt: saved.updatedAt,
+        }, 'Credential updated'));
+    }
+    /**
+     * DELETE /api/credentials/:id
+     * Delete a credential.
+     */
+    async delete(req, res) {
+        this.ensureInitialized();
+        const id = req.params.id;
+        if (!id)
+            throw core_1.AppError.badRequest('id is required');
+        const entity = await this.repo.findOneBy({ id });
+        if (!entity)
+            throw core_1.AppError.notFound(`Credential not found: ${id}`);
+        await this.repo.remove(entity);
+        this.logger.info(`Credential deleted: ${id}`);
+        res.json(core_1.ApiResponse.ok(null, 'Credential deleted'));
+    }
+    /**
+     * POST /api/credentials/:id/test
+     * Test a credential by attempting to use it.
+     *
+     * For now, just verifies that the data can be decrypted.
+     * Future: Actually test connectivity (e.g., make an API call).
+     */
+    async test(req, res) {
+        this.ensureInitialized();
+        const id = req.params.id;
+        if (!id)
+            throw core_1.AppError.badRequest('id is required');
+        const entity = await this.repo.findOneBy({ id });
+        if (!entity)
+            throw core_1.AppError.notFound(`Credential not found: ${id}`);
+        try {
+            const decrypted = this.cipher.decrypt(entity.data);
+            JSON.parse(decrypted);
+            res.json(core_1.ApiResponse.ok({ status: 'ok', message: 'Credential data is valid and can be decrypted' }, 'Credential test passed'));
+        }
+        catch (error) {
+            const errorMsg = error instanceof Error ? error.message : String(error);
+            res.json(core_1.ApiResponse.ok({ status: 'error', message: `Credential test failed: ${errorMsg}` }, 'Credential test failed'));
+        }
+    }
+    // ── Private Helpers ──────────────────────────────────────────
+    static REDACT_SENTINEL = '__octo_REDACTED__';
+    static SENSITIVE_PATTERNS = [
+        /password/i,
+        /secret/i,
+        /token/i,
+        /apiKey/i,
+        /api_key/i,
+        /privateKey/i,
+        /private_key/i,
+        /accessKey/i,
+        /access_key/i,
+    ];
+    /**
+     * Redact fields that look like they contain sensitive data.
+     */
+    redactSensitiveFields(data) {
+        const redacted = { ...data };
+        for (const key of Object.keys(redacted)) {
+            if (CredentialController_1.SENSITIVE_PATTERNS.some((p) => p.test(key))) {
+                if (redacted[key] && String(redacted[key]).length > 0) {
+                    redacted[key] = CredentialController_1.REDACT_SENTINEL;
+                }
+            }
+        }
+        return redacted;
+    }
+    /**
+     * Restore redacted sentinel values from saved data.
+     */
+    unredactData(newData, savedData) {
+        const merged = { ...newData };
+        for (const [key, value] of Object.entries(merged)) {
+            if (value === CredentialController_1.REDACT_SENTINEL && key in savedData) {
+                merged[key] = savedData[key];
+            }
+        }
+        return merged;
+    }
+};
+exports.CredentialController = CredentialController;
+__decorate([
+    (0, core_1.Get)('/'),
+    __metadata("design:type", Function),
+    __metadata("design:paramtypes", [Object, Object]),
+    __metadata("design:returntype", Promise)
+], CredentialController.prototype, "list", null);
+__decorate([
+    (0, core_1.Get)('/:id'),
+    __metadata("design:type", Function),
+    __metadata("design:paramtypes", [Object, Object]),
+    __metadata("design:returntype", Promise)
+], CredentialController.prototype, "getById", null);
+__decorate([
+    (0, core_1.Post)('/'),
+    __metadata("design:type", Function),
+    __metadata("design:paramtypes", [Object, Object]),
+    __metadata("design:returntype", Promise)
+], CredentialController.prototype, "create", null);
+__decorate([
+    (0, core_1.Put)('/:id'),
+    __metadata("design:type", Function),
+    __metadata("design:paramtypes", [Object, Object]),
+    __metadata("design:returntype", Promise)
+], CredentialController.prototype, "update", null);
+__decorate([
+    (0, core_1.Delete)('/:id'),
+    __metadata("design:type", Function),
+    __metadata("design:paramtypes", [Object, Object]),
+    __metadata("design:returntype", Promise)
+], CredentialController.prototype, "delete", null);
+__decorate([
+    (0, core_1.Post)('/:id/test'),
+    __metadata("design:type", Function),
+    __metadata("design:paramtypes", [Object, Object]),
+    __metadata("design:returntype", Promise)
+], CredentialController.prototype, "test", null);
+exports.CredentialController = CredentialController = CredentialController_1 = __decorate([
+    (0, core_1.Controller)('/api/credentials')
+], CredentialController);
+//# sourceMappingURL=credential.controller.js.map

package/dist/controllers/credential.controller.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"credential.controller.js","sourceRoot":"","sources":["../../src/controllers/credential.controller.ts"],"names":[],"mappings":";;;;;;;;;;;;;AACA,qCAWoB;AAEpB,iGAAyF;AACzF,uDAAiD;AAEjD;;;;;;;;;;;;;GAaG;AAEI,IAAM,oBAAoB,GAA1B,MAAM,oBAAoB;;IACvB,IAAI,CAA0C;IAC9C,MAAM,CAAU;IAChB,MAAM,GAAG,gBAAS,CAAC,GAAG,CAAC,oBAAa,CAAC,CAAC,KAAK,CAAC,sBAAsB,CAAC,CAAC;IACpE,WAAW,GAAG,KAAK,CAAC;IAEpB,iBAAiB;QACvB,IAAI,IAAI,CAAC,WAAW;YAAE,OAAO;QAC7B,MAAM,EAAE,GAAG,gBAAS,CAAC,GAAG,CAAC,sBAAe,CAAC,CAAC;QAC1C,IAAI,CAAC,IAAI,GAAG,EAAE,CAAC,aAAa,CAAC,4DAA0B,CAAC,CAAC;QACzD,IAAI,CAAC,MAAM,GAAG,gBAAS,CAAC,GAAG,CAAC,kBAAM,CAAC,CAAC;QACpC,IAAI,CAAC,WAAW,GAAG,IAAI,CAAC;IAC1B,CAAC;IAED;;;OAGG;IAEG,AAAN,KAAK,CAAC,IAAI,CAAC,GAAY,EAAE,GAAa;QACpC,IAAI,CAAC,iBAAiB,EAAE,CAAC;QAEzB,MAAM,IAAI,GAAG,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;QACzD,MAAM,QAAQ,GAAG,GAAG,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;QAEtE,MAAM,CAAC,KAAK,EAAE,KAAK,CAAC,GAAG,MAAM,IAAI,CAAC,IAAI,CAAC,YAAY,CAAC;YAClD,KAAK,EAAE,EAAE,SAAS,EAAE,MAAM,EAAE;YAC5B,IAAI,EAAE,CAAC,IAAI,GAAG,CAAC,CAAC,GAAG,QAAQ;YAC3B,IAAI,EAAE,QAAQ;SACf,CAAC,CAAC;QAEH,oEAAoE;QACpE,MAAM,QAAQ,GAAG,KAAK,CAAC,GAAG,CAAC,CAAC,IAAgC,EAAE,EAAE,CAAC,CAAC;YAChE,EAAE,EAAE,IAAI,CAAC,EAAE;YACX,IAAI,EAAE,IAAI,CAAC,IAAI;YACf,IAAI,EAAE,IAAI,CAAC,IAAI;YACf,WAAW,EAAE,IAAI,CAAC,WAAW,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC,EAAE;YACjE,SAAS,EAAE,IAAI,CAAC,SAAS;YACzB,SAAS,EAAE,IAAI,CAAC,SAAS;YACzB,SAAS,EAAE,IAAI,CAAC,SAAS;SAC1B,CAAC,CAAC,CAAC;QAEJ,GAAG,CAAC,IAAI,CAAC,kBAAW,CAAC,SAAS,CAAC,QAAQ,EAAE,KAAK,EAAE,IAAI,EAAE,QAAQ,CAAC,CAAC,CAAC;IACnE,CAAC;IAED;;;OAGG;IAEG,AAAN,KAAK,CAAC,OAAO,CAAC,GAAY,EAAE,GAAa;QACvC,IAAI,CAAC,iBAAiB,EAAE,CAAC;QAEzB,MAAM,EAAE,GAAG,GAAG,CAAC,MAAM,CAAC,EAAY,CAAC;QACnC,IAAI,CAAC,EAAE;YAAE,MAAM,eAAQ,CAAC,UAAU,CAAC,gBAAgB,CAAC,CAAC;QAErD,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC,EAAE,EAAE,EAAE,CAAC,CAAC;QACjD,IAAI,CAAC,MAAM;YAAE,MAAM,eAAQ,CAAC,QAAQ,CAAC,yBAAyB,EAAE,EAAE,CAAC,CAAC;QAEpE,sCAAsC;QACtC,IAAI,aAAa,GAA4B,EAAE,CAAC;QAChD,IAAI,CAAC;YACH,MAAM,SAAS,GAAG,IAAI,CAAC,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC;YACnD,aAAa,GAAG,IAAI,CAAC,KAAK,CAAC,SAAS,CAA4B,CAAC;QACnE,CAAC;QAAC,MAAM,CAAC;YACP,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,gCAAgC,EAAE,wBAAwB,CAAC,CAAC;QAC/E,CAAC;QAED,iDAAiD;QACjD,MAAM,YAAY,GAAG,IAAI,CAAC,qBAAqB,CAAC,aAAa,CAAC,CAAC;QAE/D,GAAG,CAAC,IAAI,CACN,kBAAW,CAAC,EAAE,CAAC;YACb,EAAE,EAAE,MAAM,CAAC,EAAE;YACb,IAAI,EAAE,MAAM,CAAC,IAAI;YACjB,IAAI,EAAE,MAAM,CAAC,IAAI;YACjB,IAAI,EAAE,YAAY;YAClB,WAAW,EAAE,MAAM,CAAC,WAAW,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC,EAAE;YACrE,SAAS,EAAE,MAAM,CAAC,SAAS;YAC3B,SAAS,EAAE,MAAM,CAAC,SAAS;YAC3B,SAAS,EAAE,MAAM,CAAC,SAAS;SAC5B,CAAC,CACH,CAAC;IACJ,CAAC;IAED;;;OAGG;IAEG,AAAN,KAAK,CAAC,MAAM,CAAC,GAAY,EAAE,GAAa;QACtC,IAAI,CAAC,iBAAiB,EAAE,CAAC;QAEzB,MAAM,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,WAAW,EAAE,GAAG,GAAG,CAAC,IAK7C,CAAC;QAEF,IAAI,CAAC,IAAI;YAAE,MAAM,eAAQ,CAAC,UAAU,CAAC,kBAAkB,CAAC,CAAC;QACzD,IAAI,CAAC,IAAI;YAAE,MAAM,eAAQ,CAAC,UAAU,CAAC,kBAAkB,CAAC,CAAC;QACzD,IAAI,CAAC,IAAI;YAAE,MAAM,eAAQ,CAAC,UAAU,CAAC,kBAAkB,CAAC,CAAC;QAEzD,8BAA8B;QAC9B,MAAM,aAAa,GAAG,IAAI,CAAC,MAAM,CAAC,OAAO,CAAC,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC,CAAC;QAEhE,MAAM,MAAM,GAAG,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC;YAC9B,IAAI;YACJ,IAAI;YACJ,IAAI,EAAE,aAAa;YACnB,WAAW,EAAE,WAAW,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC,IAAI;YAC7D,SAAS,EAAE,IAAI,EAAE,yCAAyC;SAC3D,CAAC,CAAC;QAEH,MAAM,KAAK,GAAG,MAAM,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QAE3C,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,uBAAuB,KAAK,CAAC,EAAE,KAAK,KAAK,CAAC,IAAI,UAAU,KAAK,CAAC,IAAI,GAAG,CAAC,CAAC;QAExF,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAClB,kBAAW,CAAC,EAAE,CACZ;YACE,EAAE,EAAE,KAAK,CAAC,EAAE;YACZ,IAAI,EAAE,KAAK,CAAC,IAAI;YAChB,IAAI,EAAE,KAAK,CAAC,IAAI;YAChB,WAAW,EAAE,WAAW,IAAI,EAAE;YAC9B,SAAS,EAAE,KAAK,CAAC,SAAS;YAC1B,SAAS,EAAE,KAAK,CAAC,SAAS;SAC3B,EACD,oBAAoB,CACrB,CACF,CAAC;IACJ,CAAC;IAED;;;;;OAKG;IAEG,AAAN,KAAK,CAAC,MAAM,CAAC,GAAY,EAAE,GAAa;QACtC,IAAI,CAAC,iBAAiB,EAAE,CAAC;QAEzB,MAAM,EAAE,GAAG,GAAG,CAAC,MAAM,CAAC,EAAY,CAAC;QACnC,IAAI,CAAC,EAAE;YAAE,MAAM,eAAQ,CAAC,UAAU,CAAC,gBAAgB,CAAC,CAAC;QAErD,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC,EAAE,EAAE,EAAE,CAAC,CAAC;QACjD,IAAI,CAAC,MAAM;YAAE,MAAM,eAAQ,CAAC,QAAQ,CAAC,yBAAyB,EAAE,EAAE,CAAC,CAAC;QAEpE,MAAM,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,WAAW,EAAE,GAAG,GAAG,CAAC,IAK7C,CAAC;QAEF,IAAI,IAAI,KAAK,SAAS;YAAE,MAAM,CAAC,IAAI,GAAG,IAAI,CAAC;QAC3C,IAAI,IAAI,KAAK,SAAS;YAAE,MAAM,CAAC,IAAI,GAAG,IAAI,CAAC;QAC3C,IAAI,WAAW,KAAK,SAAS;YAAE,MAAM,CAAC,WAAW,GAAG,IAAI,CAAC,SAAS,CAAC,WAAW,CAAC,CAAC;QAEhF,IAAI,IAAI,KAAK,SAAS,EAAE,CAAC;YACvB,mEAAmE;YACnE,IAAI,YAAY,GAA4B,EAAE,CAAC;YAC/C,IAAI,CAAC;gBACH,MAAM,SAAS,GAAG,IAAI,CAAC,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC;gBACnD,YAAY,GAAG,IAAI,CAAC,KAAK,CAAC,SAAS,CAA4B,CAAC;YAClE,CAAC;YAAC,MAAM,CAAC;gBACP,iEAAiE;YACnE,CAAC;YAED,MAAM,UAAU,GAAG,IAAI,CAAC,YAAY,CAAC,IAAI,EAAE,YAAY,CAAC,CAAC;YACzD,MAAM,CAAC,IAAI,GAAG,IAAI,CAAC,MAAM,CAAC,OAAO,CAAC,IAAI,CAAC,SAAS,CAAC,UAAU,CAAC,CAAC,CAAC;QAChE,CAAC;QAED,MAAM,KAAK,GAAG,MAAM,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QAE3C,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,uBAAuB,KAAK,CAAC,EAAE,EAAE,CAAC,CAAC;QAEpD,GAAG,CAAC,IAAI,CACN,kBAAW,CAAC,EAAE,CACZ;YACE,EAAE,EAAE,KAAK,CAAC,EAAE;YACZ,IAAI,EAAE,KAAK,CAAC,IAAI;YAChB,IAAI,EAAE,KAAK,CAAC,IAAI;YAChB,WAAW,EAAE,KAAK,CAAC,WAAW,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,KAAK,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC,EAAE;YACnE,SAAS,EAAE,KAAK,CAAC,SAAS;YAC1B,SAAS,EAAE,KAAK,CAAC,SAAS;SAC3B,EACD,oBAAoB,CACrB,CACF,CAAC;IACJ,CAAC;IAED;;;OAGG;IAEG,AAAN,KAAK,CAAC,MAAM,CAAC,GAAY,EAAE,GAAa;QACtC,IAAI,CAAC,iBAAiB,EAAE,CAAC;QAEzB,MAAM,EAAE,GAAG,GAAG,CAAC,MAAM,CAAC,EAAY,CAAC;QACnC,IAAI,CAAC,EAAE;YAAE,MAAM,eAAQ,CAAC,UAAU,CAAC,gBAAgB,CAAC,CAAC;QAErD,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC,EAAE,EAAE,EAAE,CAAC,CAAC;QACjD,IAAI,CAAC,MAAM;YAAE,MAAM,eAAQ,CAAC,QAAQ,CAAC,yBAAyB,EAAE,EAAE,CAAC,CAAC;QAEpE,MAAM,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;QAE/B,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,uBAAuB,EAAE,EAAE,CAAC,CAAC;QAC9C,GAAG,CAAC,IAAI,CAAC,kBAAW,CAAC,EAAE,CAAC,IAAI,EAAE,oBAAoB,CAAC,CAAC,CAAC;IACvD,CAAC;IAED;;;;;;OAMG;IAEG,AAAN,KAAK,CAAC,IAAI,CAAC,GAAY,EAAE,GAAa;QACpC,IAAI,CAAC,iBAAiB,EAAE,CAAC;QAEzB,MAAM,EAAE,GAAG,GAAG,CAAC,MAAM,CAAC,EAAY,CAAC;QACnC,IAAI,CAAC,EAAE;YAAE,MAAM,eAAQ,CAAC,UAAU,CAAC,gBAAgB,CAAC,CAAC;QAErD,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC,EAAE,EAAE,EAAE,CAAC,CAAC;QACjD,IAAI,CAAC,MAAM;YAAE,MAAM,eAAQ,CAAC,QAAQ,CAAC,yBAAyB,EAAE,EAAE,CAAC,CAAC;QAEpE,IAAI,CAAC;YACH,MAAM,SAAS,GAAG,IAAI,CAAC,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC;YACnD,IAAI,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC;YAEtB,GAAG,CAAC,IAAI,CACN,kBAAW,CAAC,EAAE,CACZ,EAAE,MAAM,EAAE,IAAI,EAAE,OAAO,EAAE,+CAA+C,EAAE,EAC1E,wBAAwB,CACzB,CACF,CAAC;QACJ,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,QAAQ,GAAG,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;YACxE,GAAG,CAAC,IAAI,CACN,kBAAW,CAAC,EAAE,CACZ,EAAE,MAAM,EAAE,OAAO,EAAE,OAAO,EAAE,2BAA2B,QAAQ,EAAE,EAAE,EACnE,wBAAwB,CACzB,CACF,CAAC;QACJ,CAAC;IACH,CAAC;IAED,gEAAgE;IAExD,MAAM,CAAU,eAAe,GAAG,mBAAmB,CAAC;IAEtD,MAAM,CAAU,kBAAkB,GAAG;QAC3C,WAAW;QACX,SAAS;QACT,QAAQ;QACR,SAAS;QACT,UAAU;QACV,aAAa;QACb,cAAc;QACd,YAAY;QACZ,aAAa;KACd,CAAC;IAEF;;OAEG;IACK,qBAAqB,CAAC,IAA6B;QACzD,MAAM,QAAQ,GAAG,EAAE,GAAG,IAAI,EAAE,CAAC;QAC7B,KAAK,MAAM,GAAG,IAAI,MAAM,CAAC,IAAI,CAAC,QAAQ,CAAC,EAAE,CAAC;YACxC,IAAI,sBAAoB,CAAC,kBAAkB,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,CAAC;gBACrE,IAAI,QAAQ,CAAC,GAAG,CAAC,IAAI,MAAM,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;oBACtD,QAAQ,CAAC,GAAG,CAAC,GAAG,sBAAoB,CAAC,eAAe,CAAC;gBACvD,CAAC;YACH,CAAC;QACH,CAAC;QACD,OAAO,QAAQ,CAAC;IAClB,CAAC;IAED;;OAEG;IACK,YAAY,CAClB,OAAgC,EAChC,SAAkC;QAElC,MAAM,MAAM,GAAG,EAAE,GAAG,OAAO,EAAE,CAAC;QAC9B,KAAK,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,EAAE,CAAC;YAClD,IAAI,KAAK,KAAK,sBAAoB,CAAC,eAAe,IAAI,GAAG,IAAI,SAAS,EAAE,CAAC;gBACvE,MAAM,CAAC,GAAG,CAAC,GAAG,SAAS,CAAC,GAAG,CAAC,CAAC;YAC/B,CAAC;QACH,CAAC;QACD,OAAO,MAAM,CAAC;IAChB,CAAC;;AAzSU,oDAAoB;AAmBzB;IADL,IAAA,UAAG,EAAC,GAAG,CAAC;;;;gDAyBR;AAOK;IADL,IAAA,UAAG,EAAC,MAAM,CAAC;;;;mDAkCX;AAOK;IADL,IAAA,WAAI,EAAC,GAAG,CAAC;;;;kDA2CT;AASK;IADL,IAAA,UAAG,EAAC,MAAM,CAAC;;;;kDAoDX;AAOK;IADL,IAAA,aAAM,EAAC,MAAM,CAAC;;;;kDAcd;AAUK;IADL,IAAA,WAAI,EAAC,WAAW,CAAC;;;;gDA6BjB;+BA1PU,oBAAoB;IADhC,IAAA,iBAAU,EAAC,kBAAkB,CAAC;GAClB,oBAAoB,CA0ShC"}

package/dist/controllers/index.d.ts

@@ -0,0 +1,3 @@
+export { WorkflowController } from './workflow.controller.js';
+export { AiWorkflowSessionController } from './ai-workflow-session.controller.js';
+//# sourceMappingURL=index.d.ts.map

package/dist/controllers/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/controllers/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,kBAAkB,EAAE,MAAM,0BAA0B,CAAC;AAC9D,OAAO,EAAE,2BAA2B,EAAE,MAAM,qCAAqC,CAAC"}

package/dist/controllers/index.js

@@ -0,0 +1,8 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.AiWorkflowSessionController = exports.WorkflowController = void 0;
+var workflow_controller_js_1 = require("./workflow.controller.js");
+Object.defineProperty(exports, "WorkflowController", { enumerable: true, get: function () { return workflow_controller_js_1.WorkflowController; } });
+var ai_workflow_session_controller_js_1 = require("./ai-workflow-session.controller.js");
+Object.defineProperty(exports, "AiWorkflowSessionController", { enumerable: true, get: function () { return ai_workflow_session_controller_js_1.AiWorkflowSessionController; } });
+//# sourceMappingURL=index.js.map

package/dist/controllers/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/controllers/index.ts"],"names":[],"mappings":";;;AAAA,mEAA8D;AAArD,4HAAA,kBAAkB,OAAA;AAC3B,yFAAkF;AAAzE,gJAAA,2BAA2B,OAAA"}

package/dist/controllers/workflow-ai.controller.d.ts

@@ -0,0 +1,23 @@
+import type { Request, Response } from '@octo/core';
+export declare class WorkflowAiController {
+    private get aiService();
+    private get contextService();
+    private get sessionService();
+    /** POST /api/v1/workflow-ai/design */
+    design(req: Request, res: Response): Promise<void>;
+    /** GET /api/v1/workflow-ai/system-prompt — returns the current AI system prompt */
+    getSystemPrompt(_req: Request, res: Response): Promise<void>;
+    /** GET /api/v1/workflow-ai/context/ai-tools */
+    listAiTools(_req: Request, res: Response): Promise<void>;
+    /** GET /api/v1/workflow-ai/context/api-docs */
+    listApiDocs(_req: Request, res: Response): Promise<void>;
+    /** GET /api/v1/workflow-ai/context/api-docs/:module */
+    getApiDoc(req: Request, res: Response): Promise<void>;
+    /** GET /api/v1/workflow-ai/context/n8n-workflows */
+    listN8nWorkflows(_req: Request, res: Response): Promise<void>;
+    /** GET /api/v1/workflow-ai/context/n8n-workflows/:id */
+    getN8nWorkflow(req: Request, res: Response): Promise<void>;
+    /** POST /api/v1/workflow-ai/sessions/:id/apply */
+    applyToN8n(req: Request, res: Response): Promise<void>;
+}
+//# sourceMappingURL=workflow-ai.controller.d.ts.map

package/dist/controllers/workflow-ai.controller.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"workflow-ai.controller.d.ts","sourceRoot":"","sources":["../../src/controllers/workflow-ai.controller.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,YAAY,CAAC;AAYpD,qBACa,oBAAoB;IAC/B,OAAO,KAAK,SAAS,GAEpB;IAED,OAAO,KAAK,cAAc,GAEzB;IAED,OAAO,KAAK,cAAc,GAEzB;IAED,sCAAsC;IAEhC,MAAM,CAAC,GAAG,EAAE,OAAO,EAAE,GAAG,EAAE,QAAQ,GAAG,OAAO,CAAC,IAAI,CAAC;IA2CxD,mFAAmF;IAE7E,eAAe,CAAC,IAAI,EAAE,OAAO,EAAE,GAAG,EAAE,QAAQ,GAAG,OAAO,CAAC,IAAI,CAAC;IAKlE,+CAA+C;IAEzC,WAAW,CAAC,IAAI,EAAE,OAAO,EAAE,GAAG,EAAE,QAAQ,GAAG,OAAO,CAAC,IAAI,CAAC;IAK9D,+CAA+C;IAEzC,WAAW,CAAC,IAAI,EAAE,OAAO,EAAE,GAAG,EAAE,QAAQ,GAAG,OAAO,CAAC,IAAI,CAAC;IAK9D,uDAAuD;IAEjD,SAAS,CAAC,GAAG,EAAE,OAAO,EAAE,GAAG,EAAE,QAAQ,GAAG,OAAO,CAAC,IAAI,CAAC;IAM3D,oDAAoD;IAE9C,gBAAgB,CAAC,IAAI,EAAE,OAAO,EAAE,GAAG,EAAE,QAAQ,GAAG,OAAO,CAAC,IAAI,CAAC;IAKnE,wDAAwD;IAElD,cAAc,CAAC,GAAG,EAAE,OAAO,EAAE,GAAG,EAAE,QAAQ,GAAG,OAAO,CAAC,IAAI,CAAC;IAMhE,kDAAkD;IAE5C,UAAU,CAAC,GAAG,EAAE,OAAO,EAAE,GAAG,EAAE,QAAQ,GAAG,OAAO,CAAC,IAAI,CAAC;CAmB7D"}