npm - @open-mercato/ai-assistant - Versions diffs - 0.5.1-develop.3036.f02c281f23 → 0.5.1-develop.3045.b4b3320cc2 - Mend

@open-mercato/ai-assistant 0.5.1-develop.3036.f02c281f23 → 0.5.1-develop.3045.b4b3320cc2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (273) hide show

package/dist/modules/ai_assistant/api/ai/actions/[id]/confirm/route.js ADDED Viewed

@@ -0,0 +1,174 @@
+import { NextResponse } from "next/server";
+import { z } from "zod";
+import { getAuthFromRequest } from "@open-mercato/shared/lib/auth/server";
+import { createRequestContainer } from "@open-mercato/shared/lib/di/container";
+import { AiPendingActionRepository } from "../../../../../data/repositories/AiPendingActionRepository.js";
+import { hasRequiredFeatures } from "../../../../../lib/auth.js";
+import { serializePendingActionForClient } from "../../../../../lib/pending-action-client.js";
+import { getAgent, loadAgentRegistry } from "../../../../../lib/agent-registry.js";
+import { toolRegistry } from "../../../../../lib/tool-registry.js";
+import { loadAllModuleTools } from "../../../../../lib/tool-loader.js";
+import {
+  runPendingActionRechecks
+} from "../../../../../lib/pending-action-recheck.js";
+import {
+  executePendingActionConfirm
+} from "../../../../../lib/pending-action-executor.js";
+import { AiAgentMutationPolicyOverrideRepository } from "../../../../../data/repositories/AiAgentMutationPolicyOverrideRepository.js";
+import { isKnownMutationPolicy } from "../../../../../lib/agent-policy.js";
+const REQUIRED_FEATURE = "ai_assistant.view";
+const idParamSchema = z.object({
+  id: z.string().trim().min(1, "id must be a non-empty string").max(128, "id exceeds the maximum length of 128 characters")
+});
+const openApi = {
+  tag: "AI Assistant",
+  summary: "Pending action (mutation approval gate) confirm",
+  methods: {
+    POST: {
+      operationId: "aiAssistantConfirmPendingAction",
+      summary: "Confirm an AI pending action, re-running every server-side check before execution.",
+      description: "Re-verifies the full contract from spec \xA79.4 (status, expiry, agent registration, required features, mutation policy, tool whitelist, attachment tenant scope, record version, and schema drift), flips the pending-action state machine to `executing`, invokes the wrapped tool handler, and persists `executionResult`. Idempotent: a second call on a row already in `confirmed` state returns the prior result without re-executing the handler.",
+      responses: [
+        {
+          status: 200,
+          description: "Confirmation complete; body includes the serialized pending action and the mutation result.",
+          mediaType: "application/json"
+        }
+      ],
+      errors: [
+        { status: 401, description: "Unauthenticated caller." },
+        { status: 403, description: "Caller lacks `ai_assistant.view`, a required agent feature, tool whitelist, or accesses attachments outside their tenant." },
+        { status: 404, description: "Pending action or agent not found in the caller scope." },
+        { status: 409, description: "Pending action is not in `pending` status or has expired." },
+        { status: 412, description: "Record version changed between propose and confirm, or the input schema no longer accepts the stored payload." },
+        { status: 500, description: "Unexpected server failure during confirm." }
+      ]
+    }
+  }
+};
+const metadata = {
+  POST: { requireAuth: true, requireFeatures: [REQUIRED_FEATURE] }
+};
+function jsonError(status, message, code, extra) {
+  return NextResponse.json({ error: message, code, ...extra ?? {} }, { status });
+}
+function fromRecheckFailure(result) {
+  return jsonError(result.status, result.message, result.code, result.extra);
+}
+async function POST(req, context) {
+  const auth = await getAuthFromRequest(req);
+  if (!auth) {
+    return jsonError(401, "Unauthorized", "unauthenticated");
+  }
+  const rawParams = await context.params;
+  const paramResult = idParamSchema.safeParse(rawParams);
+  if (!paramResult.success) {
+    return jsonError(400, "Invalid pending action id.", "validation_error", {
+      issues: paramResult.error.issues
+    });
+  }
+  const pendingActionId = paramResult.data.id;
+  try {
+    const container = await createRequestContainer();
+    const rbacService = container.resolve("rbacService");
+    const acl = await rbacService.loadAcl(auth.sub, {
+      tenantId: auth.tenantId,
+      organizationId: auth.orgId
+    });
+    if (!hasRequiredFeatures([REQUIRED_FEATURE], acl.features, acl.isSuperAdmin, rbacService)) {
+      return jsonError(403, `Caller lacks required feature "${REQUIRED_FEATURE}".`, "forbidden");
+    }
+    if (!auth.tenantId) {
+      return jsonError(
+        404,
+        `No pending action "${pendingActionId}" accessible to the caller.`,
+        "pending_action_not_found"
+      );
+    }
+    const em = container.resolve("em");
+    const repo = new AiPendingActionRepository(em);
+    const row = await repo.getById(pendingActionId, {
+      tenantId: auth.tenantId,
+      organizationId: auth.orgId ?? null,
+      userId: auth.sub
+    });
+    if (!row) {
+      return jsonError(
+        404,
+        `No pending action "${pendingActionId}" accessible to the caller.`,
+        "pending_action_not_found"
+      );
+    }
+    if (row.status === "confirmed" || row.status === "failed") {
+      const executionResult = row.executionResult ?? null;
+      return NextResponse.json({
+        ok: row.status === "confirmed",
+        pendingAction: serializePendingActionForClient(row),
+        mutationResult: executionResult
+      });
+    }
+    await loadAgentRegistry();
+    await loadAllModuleTools();
+    const agent = getAgent(row.agentId);
+    const tool = toolRegistry.getTool(row.toolName);
+    const policyOverrideRepo = new AiAgentMutationPolicyOverrideRepository(em);
+    const overrideRow = await policyOverrideRepo.get(row.agentId, {
+      tenantId: auth.tenantId,
+      organizationId: auth.orgId ?? null
+    });
+    const rawOverridePolicy = overrideRow?.mutationPolicy ?? null;
+    const mutationPolicyOverride = rawOverridePolicy && isKnownMutationPolicy(rawOverridePolicy) ? rawOverridePolicy : null;
+    const recheckResult = await runPendingActionRechecks({
+      action: row,
+      agent,
+      tool,
+      ctx: {
+        tenantId: auth.tenantId,
+        organizationId: auth.orgId ?? null,
+        userId: auth.sub,
+        userFeatures: acl.features,
+        isSuperAdmin: acl.isSuperAdmin,
+        container,
+        em
+      },
+      mutationPolicyOverride
+    });
+    if (!recheckResult.ok) {
+      return fromRecheckFailure(recheckResult);
+    }
+    const executeCtx = {
+      tenantId: auth.tenantId,
+      organizationId: auth.orgId ?? null,
+      userId: auth.sub,
+      userFeatures: acl.features,
+      isSuperAdmin: acl.isSuperAdmin,
+      container
+    };
+    const executed = await executePendingActionConfirm({
+      action: row,
+      agent,
+      tool,
+      ctx: executeCtx,
+      repo,
+      failedRecords: recheckResult.failedRecords ?? null
+    });
+    return NextResponse.json({
+      ok: executed.ok,
+      pendingAction: serializePendingActionForClient(executed.action),
+      mutationResult: executed.executionResult
+    });
+  } catch (error) {
+    console.error("[AI Pending Action CONFIRM] Failure:", error);
+    return jsonError(
+      500,
+      error instanceof Error ? error.message : "Failed to confirm pending action.",
+      "confirm_internal_error"
+    );
+  }
+}
+export {
+  POST,
+  metadata,
+  openApi
+};
+//# sourceMappingURL=route.js.map

package/dist/modules/ai_assistant/api/ai/actions/[id]/confirm/route.js.map ADDED Viewed

@@ -0,0 +1,7 @@
+{
+  "version": 3,
+  "sources": ["../../../../../../../../src/modules/ai_assistant/api/ai/actions/%5Bid%5D/confirm/route.ts"],
+  "sourcesContent": ["import { NextResponse, type NextRequest } from 'next/server'\nimport { z } from 'zod'\nimport type { EntityManager } from '@mikro-orm/postgresql'\nimport type { OpenApiRouteDoc } from '@open-mercato/shared/lib/openapi'\nimport { getAuthFromRequest } from '@open-mercato/shared/lib/auth/server'\nimport { createRequestContainer } from '@open-mercato/shared/lib/di/container'\nimport type { RbacService } from '@open-mercato/core/modules/auth/services/rbacService'\nimport { AiPendingActionRepository } from '../../../../../data/repositories/AiPendingActionRepository'\nimport { hasRequiredFeatures } from '../../../../../lib/auth'\nimport { serializePendingActionForClient } from '../../../../../lib/pending-action-client'\nimport { getAgent, loadAgentRegistry } from '../../../../../lib/agent-registry'\nimport { toolRegistry } from '../../../../../lib/tool-registry'\nimport { loadAllModuleTools } from '../../../../../lib/tool-loader'\nimport type { AiToolDefinition } from '../../../../../lib/types'\nimport {\n  runPendingActionRechecks,\n  type PendingActionRecheckResult,\n} from '../../../../../lib/pending-action-recheck'\nimport {\n  executePendingActionConfirm,\n  type PendingActionExecuteContext,\n} from '../../../../../lib/pending-action-executor'\nimport { AiAgentMutationPolicyOverrideRepository } from '../../../../../data/repositories/AiAgentMutationPolicyOverrideRepository'\nimport type { AiAgentMutationPolicy } from '../../../../../lib/ai-agent-definition'\nimport { isKnownMutationPolicy } from '../../../../../lib/agent-policy'\n\n/**\n * POST `/api/ai/actions/:id/confirm` \u2014 mutation approval gate confirm\n * endpoint (spec \u00A79.4, Step 5.8).\n *\n * Invariant: every check from spec \u00A79.4 is re-run on the server before the\n * tool handler executes. The original model-proposed tool arguments are\n * re-parsed through the CURRENT tool `inputSchema` so that a schema\n * migration between propose and confirm surfaces as `schema_drift`\n * (412) instead of silently passing through invalid data.\n *\n * Idempotency: calling this endpoint twice on the same pending-action id\n * returns the prior execution result without re-invoking the handler.\n */\n\nconst REQUIRED_FEATURE = 'ai_assistant.view'\n\nconst idParamSchema = z.object({\n  id: z\n    .string()\n    .trim()\n    .min(1, 'id must be a non-empty string')\n    .max(128, 'id exceeds the maximum length of 128 characters'),\n})\n\nexport const openApi: OpenApiRouteDoc = {\n  tag: 'AI Assistant',\n  summary: 'Pending action (mutation approval gate) confirm',\n  methods: {\n    POST: {\n      operationId: 'aiAssistantConfirmPendingAction',\n      summary: 'Confirm an AI pending action, re-running every server-side check before execution.',\n      description:\n        'Re-verifies the full contract from spec \u00A79.4 (status, expiry, agent registration, ' +\n        'required features, mutation policy, tool whitelist, attachment tenant scope, record ' +\n        'version, and schema drift), flips the pending-action state machine to `executing`, ' +\n        'invokes the wrapped tool handler, and persists `executionResult`. Idempotent: a ' +\n        'second call on a row already in `confirmed` state returns the prior result without ' +\n        're-executing the handler.',\n      responses: [\n        {\n          status: 200,\n          description: 'Confirmation complete; body includes the serialized pending action and the mutation result.',\n          mediaType: 'application/json',\n        },\n      ],\n      errors: [\n        { status: 401, description: 'Unauthenticated caller.' },\n        { status: 403, description: 'Caller lacks `ai_assistant.view`, a required agent feature, tool whitelist, or accesses attachments outside their tenant.' },\n        { status: 404, description: 'Pending action or agent not found in the caller scope.' },\n        { status: 409, description: 'Pending action is not in `pending` status or has expired.' },\n        { status: 412, description: 'Record version changed between propose and confirm, or the input schema no longer accepts the stored payload.' },\n        { status: 500, description: 'Unexpected server failure during confirm.' },\n      ],\n    },\n  },\n}\n\nexport const metadata = {\n  POST: { requireAuth: true, requireFeatures: [REQUIRED_FEATURE] },\n}\n\ninterface RouteContext {\n  params: Promise<{ id: string }>\n}\n\nfunction jsonError(\n  status: number,\n  message: string,\n  code: string,\n  extra?: Record<string, unknown>,\n): NextResponse {\n  return NextResponse.json({ error: message, code, ...(extra ?? {}) }, { status })\n}\n\nfunction fromRecheckFailure(result: PendingActionRecheckResult & { ok: false }): NextResponse {\n  return jsonError(result.status, result.message, result.code, result.extra)\n}\n\nexport async function POST(req: NextRequest, context: RouteContext): Promise<Response> {\n  const auth = await getAuthFromRequest(req)\n  if (!auth) {\n    return jsonError(401, 'Unauthorized', 'unauthenticated')\n  }\n\n  const rawParams = await context.params\n  const paramResult = idParamSchema.safeParse(rawParams)\n  if (!paramResult.success) {\n    return jsonError(400, 'Invalid pending action id.', 'validation_error', {\n      issues: paramResult.error.issues,\n    })\n  }\n  const pendingActionId = paramResult.data.id\n\n  try {\n    const container = await createRequestContainer()\n    const rbacService = container.resolve<RbacService>('rbacService')\n    const acl = await rbacService.loadAcl(auth.sub, {\n      tenantId: auth.tenantId,\n      organizationId: auth.orgId,\n    })\n\n    if (!hasRequiredFeatures([REQUIRED_FEATURE], acl.features, acl.isSuperAdmin, rbacService)) {\n      return jsonError(403, `Caller lacks required feature \"${REQUIRED_FEATURE}\".`, 'forbidden')\n    }\n\n    if (!auth.tenantId) {\n      return jsonError(\n        404,\n        `No pending action \"${pendingActionId}\" accessible to the caller.`,\n        'pending_action_not_found',\n      )\n    }\n\n    const em = container.resolve<EntityManager>('em')\n    const repo = new AiPendingActionRepository(em)\n    const row = await repo.getById(pendingActionId, {\n      tenantId: auth.tenantId,\n      organizationId: auth.orgId ?? null,\n      userId: auth.sub,\n    })\n    if (!row) {\n      return jsonError(\n        404,\n        `No pending action \"${pendingActionId}\" accessible to the caller.`,\n        'pending_action_not_found',\n      )\n    }\n\n    // Idempotency short-circuit \u2014 a prior confirm already ran.\n    if (row.status === 'confirmed' || row.status === 'failed') {\n      const executionResult = row.executionResult ?? null\n      return NextResponse.json({\n        ok: row.status === 'confirmed',\n        pendingAction: serializePendingActionForClient(row),\n        mutationResult: executionResult,\n      })\n    }\n\n    await loadAgentRegistry()\n    await loadAllModuleTools()\n    const agent = getAgent(row.agentId)\n    const tool = toolRegistry.getTool(row.toolName) as AiToolDefinition | undefined\n\n    const policyOverrideRepo = new AiAgentMutationPolicyOverrideRepository(em)\n    const overrideRow = await policyOverrideRepo.get(row.agentId, {\n      tenantId: auth.tenantId,\n      organizationId: auth.orgId ?? null,\n    })\n    const rawOverridePolicy = overrideRow?.mutationPolicy ?? null\n    const mutationPolicyOverride: AiAgentMutationPolicy | null =\n      rawOverridePolicy && isKnownMutationPolicy(rawOverridePolicy) ? rawOverridePolicy : null\n\n    const recheckResult = await runPendingActionRechecks({\n      action: row,\n      agent,\n      tool,\n      ctx: {\n        tenantId: auth.tenantId,\n        organizationId: auth.orgId ?? null,\n        userId: auth.sub,\n        userFeatures: acl.features,\n        isSuperAdmin: acl.isSuperAdmin,\n        container,\n        em,\n      },\n      mutationPolicyOverride,\n    })\n    if (!recheckResult.ok) {\n      return fromRecheckFailure(recheckResult)\n    }\n\n    const executeCtx: PendingActionExecuteContext = {\n      tenantId: auth.tenantId,\n      organizationId: auth.orgId ?? null,\n      userId: auth.sub,\n      userFeatures: acl.features,\n      isSuperAdmin: acl.isSuperAdmin,\n      container,\n    }\n\n    const executed = await executePendingActionConfirm({\n      action: row,\n      agent: agent!,\n      tool: tool!,\n      ctx: executeCtx,\n      repo,\n      failedRecords: recheckResult.failedRecords ?? null,\n    })\n\n    return NextResponse.json({\n      ok: executed.ok,\n      pendingAction: serializePendingActionForClient(executed.action),\n      mutationResult: executed.executionResult,\n    })\n  } catch (error) {\n    console.error('[AI Pending Action CONFIRM] Failure:', error)\n    return jsonError(\n      500,\n      error instanceof Error ? error.message : 'Failed to confirm pending action.',\n      'confirm_internal_error',\n    )\n  }\n}\n"],
+  "mappings": "AAAA,SAAS,oBAAsC;AAC/C,SAAS,SAAS;AAGlB,SAAS,0BAA0B;AACnC,SAAS,8BAA8B;AAEvC,SAAS,iCAAiC;AAC1C,SAAS,2BAA2B;AACpC,SAAS,uCAAuC;AAChD,SAAS,UAAU,yBAAyB;AAC5C,SAAS,oBAAoB;AAC7B,SAAS,0BAA0B;AAEnC;AAAA,EACE;AAAA,OAEK;AACP;AAAA,EACE;AAAA,OAEK;AACP,SAAS,+CAA+C;AAExD,SAAS,6BAA6B;AAgBtC,MAAM,mBAAmB;AAEzB,MAAM,gBAAgB,EAAE,OAAO;AAAA,EAC7B,IAAI,EACD,OAAO,EACP,KAAK,EACL,IAAI,GAAG,+BAA+B,EACtC,IAAI,KAAK,iDAAiD;AAC/D,CAAC;AAEM,MAAM,UAA2B;AAAA,EACtC,KAAK;AAAA,EACL,SAAS;AAAA,EACT,SAAS;AAAA,IACP,MAAM;AAAA,MACJ,aAAa;AAAA,MACb,SAAS;AAAA,MACT,aACE;AAAA,MAMF,WAAW;AAAA,QACT;AAAA,UACE,QAAQ;AAAA,UACR,aAAa;AAAA,UACb,WAAW;AAAA,QACb;AAAA,MACF;AAAA,MACA,QAAQ;AAAA,QACN,EAAE,QAAQ,KAAK,aAAa,0BAA0B;AAAA,QACtD,EAAE,QAAQ,KAAK,aAAa,4HAA4H;AAAA,QACxJ,EAAE,QAAQ,KAAK,aAAa,yDAAyD;AAAA,QACrF,EAAE,QAAQ,KAAK,aAAa,4DAA4D;AAAA,QACxF,EAAE,QAAQ,KAAK,aAAa,gHAAgH;AAAA,QAC5I,EAAE,QAAQ,KAAK,aAAa,4CAA4C;AAAA,MAC1E;AAAA,IACF;AAAA,EACF;AACF;AAEO,MAAM,WAAW;AAAA,EACtB,MAAM,EAAE,aAAa,MAAM,iBAAiB,CAAC,gBAAgB,EAAE;AACjE;AAMA,SAAS,UACP,QACA,SACA,MACA,OACc;AACd,SAAO,aAAa,KAAK,EAAE,OAAO,SAAS,MAAM,GAAI,SAAS,CAAC,EAAG,GAAG,EAAE,OAAO,CAAC;AACjF;AAEA,SAAS,mBAAmB,QAAkE;AAC5F,SAAO,UAAU,OAAO,QAAQ,OAAO,SAAS,OAAO,MAAM,OAAO,KAAK;AAC3E;AAEA,eAAsB,KAAK,KAAkB,SAA0C;AACrF,QAAM,OAAO,MAAM,mBAAmB,GAAG;AACzC,MAAI,CAAC,MAAM;AACT,WAAO,UAAU,KAAK,gBAAgB,iBAAiB;AAAA,EACzD;AAEA,QAAM,YAAY,MAAM,QAAQ;AAChC,QAAM,cAAc,cAAc,UAAU,SAAS;AACrD,MAAI,CAAC,YAAY,SAAS;AACxB,WAAO,UAAU,KAAK,8BAA8B,oBAAoB;AAAA,MACtE,QAAQ,YAAY,MAAM;AAAA,IAC5B,CAAC;AAAA,EACH;AACA,QAAM,kBAAkB,YAAY,KAAK;AAEzC,MAAI;AACF,UAAM,YAAY,MAAM,uBAAuB;AAC/C,UAAM,cAAc,UAAU,QAAqB,aAAa;AAChE,UAAM,MAAM,MAAM,YAAY,QAAQ,KAAK,KAAK;AAAA,MAC9C,UAAU,KAAK;AAAA,MACf,gBAAgB,KAAK;AAAA,IACvB,CAAC;AAED,QAAI,CAAC,oBAAoB,CAAC,gBAAgB,GAAG,IAAI,UAAU,IAAI,cAAc,WAAW,GAAG;AACzF,aAAO,UAAU,KAAK,kCAAkC,gBAAgB,MAAM,WAAW;AAAA,IAC3F;AAEA,QAAI,CAAC,KAAK,UAAU;AAClB,aAAO;AAAA,QACL;AAAA,QACA,sBAAsB,eAAe;AAAA,QACrC;AAAA,MACF;AAAA,IACF;AAEA,UAAM,KAAK,UAAU,QAAuB,IAAI;AAChD,UAAM,OAAO,IAAI,0BAA0B,EAAE;AAC7C,UAAM,MAAM,MAAM,KAAK,QAAQ,iBAAiB;AAAA,MAC9C,UAAU,KAAK;AAAA,MACf,gBAAgB,KAAK,SAAS;AAAA,MAC9B,QAAQ,KAAK;AAAA,IACf,CAAC;AACD,QAAI,CAAC,KAAK;AACR,aAAO;AAAA,QACL;AAAA,QACA,sBAAsB,eAAe;AAAA,QACrC;AAAA,MACF;AAAA,IACF;AAGA,QAAI,IAAI,WAAW,eAAe,IAAI,WAAW,UAAU;AACzD,YAAM,kBAAkB,IAAI,mBAAmB;AAC/C,aAAO,aAAa,KAAK;AAAA,QACvB,IAAI,IAAI,WAAW;AAAA,QACnB,eAAe,gCAAgC,GAAG;AAAA,QAClD,gBAAgB;AAAA,MAClB,CAAC;AAAA,IACH;AAEA,UAAM,kBAAkB;AACxB,UAAM,mBAAmB;AACzB,UAAM,QAAQ,SAAS,IAAI,OAAO;AAClC,UAAM,OAAO,aAAa,QAAQ,IAAI,QAAQ;AAE9C,UAAM,qBAAqB,IAAI,wCAAwC,EAAE;AACzE,UAAM,cAAc,MAAM,mBAAmB,IAAI,IAAI,SAAS;AAAA,MAC5D,UAAU,KAAK;AAAA,MACf,gBAAgB,KAAK,SAAS;AAAA,IAChC,CAAC;AACD,UAAM,oBAAoB,aAAa,kBAAkB;AACzD,UAAM,yBACJ,qBAAqB,sBAAsB,iBAAiB,IAAI,oBAAoB;AAEtF,UAAM,gBAAgB,MAAM,yBAAyB;AAAA,MACnD,QAAQ;AAAA,MACR;AAAA,MACA;AAAA,MACA,KAAK;AAAA,QACH,UAAU,KAAK;AAAA,QACf,gBAAgB,KAAK,SAAS;AAAA,QAC9B,QAAQ,KAAK;AAAA,QACb,cAAc,IAAI;AAAA,QAClB,cAAc,IAAI;AAAA,QAClB;AAAA,QACA;AAAA,MACF;AAAA,MACA;AAAA,IACF,CAAC;AACD,QAAI,CAAC,cAAc,IAAI;AACrB,aAAO,mBAAmB,aAAa;AAAA,IACzC;AAEA,UAAM,aAA0C;AAAA,MAC9C,UAAU,KAAK;AAAA,MACf,gBAAgB,KAAK,SAAS;AAAA,MAC9B,QAAQ,KAAK;AAAA,MACb,cAAc,IAAI;AAAA,MAClB,cAAc,IAAI;AAAA,MAClB;AAAA,IACF;AAEA,UAAM,WAAW,MAAM,4BAA4B;AAAA,MACjD,QAAQ;AAAA,MACR;AAAA,MACA;AAAA,MACA,KAAK;AAAA,MACL;AAAA,MACA,eAAe,cAAc,iBAAiB;AAAA,IAChD,CAAC;AAED,WAAO,aAAa,KAAK;AAAA,MACvB,IAAI,SAAS;AAAA,MACb,eAAe,gCAAgC,SAAS,MAAM;AAAA,MAC9D,gBAAgB,SAAS;AAAA,IAC3B,CAAC;AAAA,EACH,SAAS,OAAO;AACd,YAAQ,MAAM,wCAAwC,KAAK;AAC3D,WAAO;AAAA,MACL;AAAA,MACA,iBAAiB,QAAQ,MAAM,UAAU;AAAA,MACzC;AAAA,IACF;AAAA,EACF;AACF;",
+  "names": []
+}

package/dist/modules/ai_assistant/api/ai/actions/[id]/route.js ADDED Viewed

@@ -0,0 +1,101 @@
+import { NextResponse } from "next/server";
+import { z } from "zod";
+import { getAuthFromRequest } from "@open-mercato/shared/lib/auth/server";
+import { createRequestContainer } from "@open-mercato/shared/lib/di/container";
+import { AiPendingActionRepository } from "../../../../data/repositories/AiPendingActionRepository.js";
+import { hasRequiredFeatures } from "../../../../lib/auth.js";
+import { serializePendingActionForClient } from "../../../../lib/pending-action-client.js";
+const REQUIRED_FEATURE = "ai_assistant.view";
+const idParamSchema = z.object({
+  id: z.string().trim().min(1, "id must be a non-empty string").max(128, "id exceeds the maximum length of 128 characters")
+});
+const openApi = {
+  tag: "AI Assistant",
+  summary: "Pending action (mutation approval gate) read-side",
+  methods: {
+    GET: {
+      operationId: "aiAssistantGetPendingAction",
+      summary: "Fetch the current state of an AI pending action by id.",
+      description: "Returns the tenant-scoped {@link AiPendingAction} addressed by `:id`. Powers the chat UI reconnect/polling path: after a page reload or SSE reconnect the client carries the `pendingActionId` from an earlier `mutation-preview-card` UI part and calls this route to re-hydrate the card. Server-internal fields (`normalizedInput`, `createdByUserId`, `idempotencyKey`) are stripped by a whitelist serializer. Enforces tenant/org scoping via the repository.",
+      responses: [
+        {
+          status: 200,
+          description: "Serialized pending action. Never includes normalizedInput, createdByUserId, or idempotencyKey.",
+          mediaType: "application/json"
+        }
+      ],
+      errors: [
+        { status: 401, description: "Unauthenticated caller." },
+        { status: 403, description: "Caller lacks the `ai_assistant.view` feature." },
+        { status: 404, description: "No pending action with the given id is accessible to the caller." },
+        { status: 500, description: "Internal runtime failure." }
+      ]
+    }
+  }
+};
+const metadata = {
+  GET: { requireAuth: true, requireFeatures: [REQUIRED_FEATURE] }
+};
+function jsonError(status, message, code, extra) {
+  return NextResponse.json({ error: message, code, ...extra ?? {} }, { status });
+}
+async function GET(req, context) {
+  const auth = await getAuthFromRequest(req);
+  if (!auth) {
+    return jsonError(401, "Unauthorized", "unauthenticated");
+  }
+  const rawParams = await context.params;
+  const paramResult = idParamSchema.safeParse(rawParams);
+  if (!paramResult.success) {
+    return jsonError(400, "Invalid pending action id.", "validation_error", {
+      issues: paramResult.error.issues
+    });
+  }
+  const pendingActionId = paramResult.data.id;
+  try {
+    const container = await createRequestContainer();
+    const rbacService = container.resolve("rbacService");
+    const acl = await rbacService.loadAcl(auth.sub, {
+      tenantId: auth.tenantId,
+      organizationId: auth.orgId
+    });
+    if (!hasRequiredFeatures([REQUIRED_FEATURE], acl.features, acl.isSuperAdmin, rbacService)) {
+      return jsonError(403, `Caller lacks required feature "${REQUIRED_FEATURE}".`, "forbidden");
+    }
+    if (!auth.tenantId) {
+      return jsonError(
+        404,
+        `No pending action "${pendingActionId}" accessible to the caller.`,
+        "pending_action_not_found"
+      );
+    }
+    const em = container.resolve("em");
+    const repo = new AiPendingActionRepository(em);
+    const row = await repo.getById(pendingActionId, {
+      tenantId: auth.tenantId,
+      organizationId: auth.orgId ?? null,
+      userId: auth.sub
+    });
+    if (!row) {
+      return jsonError(
+        404,
+        `No pending action "${pendingActionId}" accessible to the caller.`,
+        "pending_action_not_found"
+      );
+    }
+    return NextResponse.json(serializePendingActionForClient(row));
+  } catch (error) {
+    console.error("[AI Pending Action GET] Failure:", error);
+    return jsonError(
+      500,
+      error instanceof Error ? error.message : "Failed to load pending action.",
+      "internal_error"
+    );
+  }
+}
+export {
+  GET,
+  metadata,
+  openApi
+};
+//# sourceMappingURL=route.js.map

package/dist/modules/ai_assistant/api/ai/actions/[id]/route.js.map ADDED Viewed

@@ -0,0 +1,7 @@
+{
+  "version": 3,
+  "sources": ["../../../../../../../src/modules/ai_assistant/api/ai/actions/%5Bid%5D/route.ts"],
+  "sourcesContent": ["import { NextResponse, type NextRequest } from 'next/server'\nimport { z } from 'zod'\nimport type { EntityManager } from '@mikro-orm/postgresql'\nimport type { OpenApiRouteDoc } from '@open-mercato/shared/lib/openapi'\nimport { getAuthFromRequest } from '@open-mercato/shared/lib/auth/server'\nimport { createRequestContainer } from '@open-mercato/shared/lib/di/container'\nimport type { RbacService } from '@open-mercato/core/modules/auth/services/rbacService'\nimport { AiPendingActionRepository } from '../../../../data/repositories/AiPendingActionRepository'\nimport { hasRequiredFeatures } from '../../../../lib/auth'\nimport { serializePendingActionForClient } from '../../../../lib/pending-action-client'\n\n/**\n * GET `/api/ai/actions/:id` \u2014 reconnect/polling endpoint for the Phase 3 WS-C\n * mutation approval gate (spec \u00A79, Step 5.7).\n *\n * When the chat UI bounces (reload, tab switch, SSE reconnect) it carries a\n * `pendingActionId` from an earlier `mutation-preview-card` UI part and needs\n * to re-hydrate the pending row's current state. This route is the authoritative\n * read-side; the confirm/cancel routes (Steps 5.8 / 5.9) use the same\n * whitelist serializer so the UI always sees the same shape.\n */\n\nconst REQUIRED_FEATURE = 'ai_assistant.view'\n\nconst idParamSchema = z.object({\n  id: z\n    .string()\n    .trim()\n    .min(1, 'id must be a non-empty string')\n    .max(128, 'id exceeds the maximum length of 128 characters'),\n})\n\nexport const openApi: OpenApiRouteDoc = {\n  tag: 'AI Assistant',\n  summary: 'Pending action (mutation approval gate) read-side',\n  methods: {\n    GET: {\n      operationId: 'aiAssistantGetPendingAction',\n      summary: 'Fetch the current state of an AI pending action by id.',\n      description:\n        'Returns the tenant-scoped {@link AiPendingAction} addressed by `:id`. Powers the ' +\n        'chat UI reconnect/polling path: after a page reload or SSE reconnect the client ' +\n        'carries the `pendingActionId` from an earlier `mutation-preview-card` UI part and ' +\n        'calls this route to re-hydrate the card. Server-internal fields (`normalizedInput`, ' +\n        '`createdByUserId`, `idempotencyKey`) are stripped by a whitelist serializer. ' +\n        'Enforces tenant/org scoping via the repository.',\n      responses: [\n        {\n          status: 200,\n          description:\n            'Serialized pending action. Never includes normalizedInput, createdByUserId, or idempotencyKey.',\n          mediaType: 'application/json',\n        },\n      ],\n      errors: [\n        { status: 401, description: 'Unauthenticated caller.' },\n        { status: 403, description: 'Caller lacks the `ai_assistant.view` feature.' },\n        { status: 404, description: 'No pending action with the given id is accessible to the caller.' },\n        { status: 500, description: 'Internal runtime failure.' },\n      ],\n    },\n  },\n}\n\nexport const metadata = {\n  GET: { requireAuth: true, requireFeatures: [REQUIRED_FEATURE] },\n}\n\ninterface RouteContext {\n  params: Promise<{ id: string }>\n}\n\nfunction jsonError(\n  status: number,\n  message: string,\n  code: string,\n  extra?: Record<string, unknown>,\n): NextResponse {\n  return NextResponse.json({ error: message, code, ...(extra ?? {}) }, { status })\n}\n\nexport async function GET(req: NextRequest, context: RouteContext): Promise<Response> {\n  const auth = await getAuthFromRequest(req)\n  if (!auth) {\n    return jsonError(401, 'Unauthorized', 'unauthenticated')\n  }\n\n  const rawParams = await context.params\n  const paramResult = idParamSchema.safeParse(rawParams)\n  if (!paramResult.success) {\n    return jsonError(400, 'Invalid pending action id.', 'validation_error', {\n      issues: paramResult.error.issues,\n    })\n  }\n  const pendingActionId = paramResult.data.id\n\n  try {\n    const container = await createRequestContainer()\n    const rbacService = container.resolve<RbacService>('rbacService')\n    const acl = await rbacService.loadAcl(auth.sub, {\n      tenantId: auth.tenantId,\n      organizationId: auth.orgId,\n    })\n\n    if (!hasRequiredFeatures([REQUIRED_FEATURE], acl.features, acl.isSuperAdmin, rbacService)) {\n      return jsonError(403, `Caller lacks required feature \"${REQUIRED_FEATURE}\".`, 'forbidden')\n    }\n\n    if (!auth.tenantId) {\n      return jsonError(\n        404,\n        `No pending action \"${pendingActionId}\" accessible to the caller.`,\n        'pending_action_not_found',\n      )\n    }\n\n    const em = container.resolve<EntityManager>('em')\n    const repo = new AiPendingActionRepository(em)\n    const row = await repo.getById(pendingActionId, {\n      tenantId: auth.tenantId,\n      organizationId: auth.orgId ?? null,\n      userId: auth.sub,\n    })\n\n    if (!row) {\n      return jsonError(\n        404,\n        `No pending action \"${pendingActionId}\" accessible to the caller.`,\n        'pending_action_not_found',\n      )\n    }\n\n    return NextResponse.json(serializePendingActionForClient(row))\n  } catch (error) {\n    console.error('[AI Pending Action GET] Failure:', error)\n    return jsonError(\n      500,\n      error instanceof Error ? error.message : 'Failed to load pending action.',\n      'internal_error',\n    )\n  }\n}\n"],
+  "mappings": "AAAA,SAAS,oBAAsC;AAC/C,SAAS,SAAS;AAGlB,SAAS,0BAA0B;AACnC,SAAS,8BAA8B;AAEvC,SAAS,iCAAiC;AAC1C,SAAS,2BAA2B;AACpC,SAAS,uCAAuC;AAahD,MAAM,mBAAmB;AAEzB,MAAM,gBAAgB,EAAE,OAAO;AAAA,EAC7B,IAAI,EACD,OAAO,EACP,KAAK,EACL,IAAI,GAAG,+BAA+B,EACtC,IAAI,KAAK,iDAAiD;AAC/D,CAAC;AAEM,MAAM,UAA2B;AAAA,EACtC,KAAK;AAAA,EACL,SAAS;AAAA,EACT,SAAS;AAAA,IACP,KAAK;AAAA,MACH,aAAa;AAAA,MACb,SAAS;AAAA,MACT,aACE;AAAA,MAMF,WAAW;AAAA,QACT;AAAA,UACE,QAAQ;AAAA,UACR,aACE;AAAA,UACF,WAAW;AAAA,QACb;AAAA,MACF;AAAA,MACA,QAAQ;AAAA,QACN,EAAE,QAAQ,KAAK,aAAa,0BAA0B;AAAA,QACtD,EAAE,QAAQ,KAAK,aAAa,gDAAgD;AAAA,QAC5E,EAAE,QAAQ,KAAK,aAAa,mEAAmE;AAAA,QAC/F,EAAE,QAAQ,KAAK,aAAa,4BAA4B;AAAA,MAC1D;AAAA,IACF;AAAA,EACF;AACF;AAEO,MAAM,WAAW;AAAA,EACtB,KAAK,EAAE,aAAa,MAAM,iBAAiB,CAAC,gBAAgB,EAAE;AAChE;AAMA,SAAS,UACP,QACA,SACA,MACA,OACc;AACd,SAAO,aAAa,KAAK,EAAE,OAAO,SAAS,MAAM,GAAI,SAAS,CAAC,EAAG,GAAG,EAAE,OAAO,CAAC;AACjF;AAEA,eAAsB,IAAI,KAAkB,SAA0C;AACpF,QAAM,OAAO,MAAM,mBAAmB,GAAG;AACzC,MAAI,CAAC,MAAM;AACT,WAAO,UAAU,KAAK,gBAAgB,iBAAiB;AAAA,EACzD;AAEA,QAAM,YAAY,MAAM,QAAQ;AAChC,QAAM,cAAc,cAAc,UAAU,SAAS;AACrD,MAAI,CAAC,YAAY,SAAS;AACxB,WAAO,UAAU,KAAK,8BAA8B,oBAAoB;AAAA,MACtE,QAAQ,YAAY,MAAM;AAAA,IAC5B,CAAC;AAAA,EACH;AACA,QAAM,kBAAkB,YAAY,KAAK;AAEzC,MAAI;AACF,UAAM,YAAY,MAAM,uBAAuB;AAC/C,UAAM,cAAc,UAAU,QAAqB,aAAa;AAChE,UAAM,MAAM,MAAM,YAAY,QAAQ,KAAK,KAAK;AAAA,MAC9C,UAAU,KAAK;AAAA,MACf,gBAAgB,KAAK;AAAA,IACvB,CAAC;AAED,QAAI,CAAC,oBAAoB,CAAC,gBAAgB,GAAG,IAAI,UAAU,IAAI,cAAc,WAAW,GAAG;AACzF,aAAO,UAAU,KAAK,kCAAkC,gBAAgB,MAAM,WAAW;AAAA,IAC3F;AAEA,QAAI,CAAC,KAAK,UAAU;AAClB,aAAO;AAAA,QACL;AAAA,QACA,sBAAsB,eAAe;AAAA,QACrC;AAAA,MACF;AAAA,IACF;AAEA,UAAM,KAAK,UAAU,QAAuB,IAAI;AAChD,UAAM,OAAO,IAAI,0BAA0B,EAAE;AAC7C,UAAM,MAAM,MAAM,KAAK,QAAQ,iBAAiB;AAAA,MAC9C,UAAU,KAAK;AAAA,MACf,gBAAgB,KAAK,SAAS;AAAA,MAC9B,QAAQ,KAAK;AAAA,IACf,CAAC;AAED,QAAI,CAAC,KAAK;AACR,aAAO;AAAA,QACL;AAAA,QACA,sBAAsB,eAAe;AAAA,QACrC;AAAA,MACF;AAAA,IACF;AAEA,WAAO,aAAa,KAAK,gCAAgC,GAAG,CAAC;AAAA,EAC/D,SAAS,OAAO;AACd,YAAQ,MAAM,oCAAoC,KAAK;AACvD,WAAO;AAAA,MACL;AAAA,MACA,iBAAiB,QAAQ,MAAM,UAAU;AAAA,MACzC;AAAA,IACF;AAAA,EACF;AACF;",
+  "names": []
+}

package/dist/modules/ai_assistant/api/ai/agents/[agentId]/mutation-policy/route.js ADDED Viewed

@@ -0,0 +1,311 @@
+import { NextResponse } from "next/server";
+import { z } from "zod";
+import { getAuthFromRequest } from "@open-mercato/shared/lib/auth/server";
+import { createRequestContainer } from "@open-mercato/shared/lib/di/container";
+import { getAgent, loadAgentRegistry } from "../../../../../lib/agent-registry.js";
+import { hasRequiredFeatures } from "../../../../../lib/auth.js";
+import {
+  isKnownMutationPolicy,
+  isMutationPolicyEscalation
+} from "../../../../../lib/agent-policy.js";
+import { AiAgentMutationPolicyOverrideRepository } from "../../../../../data/repositories/AiAgentMutationPolicyOverrideRepository.js";
+const agentIdPattern = /^[a-z0-9_]+\.[a-z0-9_]+$/;
+const agentIdParamSchema = z.object({
+  agentId: z.string().regex(agentIdPattern, 'agentId must match "<module>.<agent>" (lowercase, digits, underscores only)')
+});
+const mutationPolicySchema = z.enum([
+  "read-only",
+  "confirm-required",
+  "destructive-confirm-required"
+]);
+const mutationPolicyRequestSchema = z.object({
+  mutationPolicy: mutationPolicySchema,
+  notes: z.string().max(2e3).optional()
+});
+const VIEW_FEATURE = "ai_assistant.view";
+const MANAGE_FEATURE = "ai_assistant.settings.manage";
+const openApi = {
+  tag: "AI Assistant",
+  summary: "Tenant-scoped mutationPolicy override for an AI agent",
+  methods: {
+    GET: {
+      operationId: "aiAssistantGetMutationPolicyOverride",
+      summary: "Read the effective mutationPolicy for an agent \u2014 code-declared value plus any tenant override.",
+      description: "Returns `{ agentId, codeDeclared, override }` where `codeDeclared` is the agent's compiled-in `mutationPolicy` and `override` is the persisted tenant-scoped override (or `null`). Requires `ai_assistant.view`.",
+      responses: [
+        {
+          status: 200,
+          description: "Effective mutationPolicy payload.",
+          mediaType: "application/json"
+        }
+      ],
+      errors: [
+        { status: 400, description: "Invalid agent id." },
+        { status: 401, description: "Unauthenticated caller." },
+        { status: 403, description: "Caller lacks `ai_assistant.view`." },
+        { status: 404, description: "Unknown agent id." }
+      ]
+    },
+    POST: {
+      operationId: "aiAssistantSaveMutationPolicyOverride",
+      summary: "Set (or replace) the tenant-scoped mutationPolicy override for this agent.",
+      description: 'Body: `{ mutationPolicy: "read-only" | "confirm-required" | "destructive-confirm-required", notes? }`. The override MUST NOT escalate beyond the agent\'s code-declared policy. Escalation attempts are rejected with 400 + `code: "escalation_not_allowed"`. Requires `ai_assistant.settings.manage`.',
+      requestBody: {
+        contentType: "application/json",
+        description: "Body: `{ mutationPolicy, notes? }`.",
+        schema: mutationPolicyRequestSchema
+      },
+      responses: [
+        {
+          status: 200,
+          description: "Override persisted.",
+          mediaType: "application/json"
+        }
+      ],
+      errors: [
+        { status: 400, description: "Invalid agent id, malformed body, or escalation attempt." },
+        { status: 401, description: "Unauthenticated caller." },
+        { status: 403, description: "Caller lacks `ai_assistant.settings.manage`." },
+        { status: 404, description: "Unknown agent id." }
+      ]
+    },
+    DELETE: {
+      operationId: "aiAssistantClearMutationPolicyOverride",
+      summary: "Remove the tenant-scoped mutationPolicy override for this agent.",
+      description: "Deletes the override row if it exists; subsequent calls fall back to the agent's code-declared policy. Idempotent \u2014 returns 200 even when no override exists. Requires `ai_assistant.settings.manage`.",
+      responses: [
+        {
+          status: 200,
+          description: "Override cleared (or already absent).",
+          mediaType: "application/json"
+        }
+      ],
+      errors: [
+        { status: 400, description: "Invalid agent id." },
+        { status: 401, description: "Unauthenticated caller." },
+        { status: 403, description: "Caller lacks `ai_assistant.settings.manage`." },
+        { status: 404, description: "Unknown agent id." }
+      ]
+    }
+  }
+};
+const metadata = {
+  GET: { requireAuth: true, requireFeatures: [VIEW_FEATURE] },
+  POST: { requireAuth: true, requireFeatures: [MANAGE_FEATURE] },
+  DELETE: { requireAuth: true, requireFeatures: [MANAGE_FEATURE] }
+};
+function jsonError(status, message, code, extra) {
+  return NextResponse.json({ error: message, code, ...extra ?? {} }, { status });
+}
+async function resolveAuthOrRespond(req, requiredFeature) {
+  const auth = await getAuthFromRequest(req);
+  if (!auth) {
+    return jsonError(401, "Unauthorized", "unauthenticated");
+  }
+  const container = await createRequestContainer();
+  const rbacService = container.resolve("rbacService");
+  const acl = await rbacService.loadAcl(auth.sub, {
+    tenantId: auth.tenantId,
+    organizationId: auth.orgId
+  });
+  if (!hasRequiredFeatures([requiredFeature], acl.features, acl.isSuperAdmin, rbacService)) {
+    return jsonError(403, `Caller lacks required feature "${requiredFeature}".`, "forbidden");
+  }
+  return {
+    tenantId: auth.tenantId ?? null,
+    organizationId: auth.orgId ?? null,
+    userId: auth.sub,
+    isSuperAdmin: acl.isSuperAdmin,
+    features: acl.features,
+    container,
+    rbacService
+  };
+}
+function serializeOverride(row) {
+  return {
+    id: row.id,
+    agentId: row.agentId,
+    mutationPolicy: row.mutationPolicy,
+    notes: row.notes ?? null,
+    createdByUserId: row.createdByUserId ?? null,
+    createdAt: row.createdAt?.toISOString?.() ?? (/* @__PURE__ */ new Date()).toISOString(),
+    updatedAt: row.updatedAt?.toISOString?.() ?? (/* @__PURE__ */ new Date()).toISOString()
+  };
+}
+function codeDeclaredPolicy(agent) {
+  const declared = agent.mutationPolicy;
+  return declared && isKnownMutationPolicy(declared) ? declared : "read-only";
+}
+async function GET(req, context) {
+  const authResult = await resolveAuthOrRespond(req, VIEW_FEATURE);
+  if (authResult instanceof NextResponse) return authResult;
+  const rawParams = await context.params;
+  const paramResult = agentIdParamSchema.safeParse(rawParams);
+  if (!paramResult.success) {
+    return jsonError(400, "Invalid agent id.", "validation_error", {
+      issues: paramResult.error.issues
+    });
+  }
+  try {
+    await loadAgentRegistry();
+    const agent = getAgent(paramResult.data.agentId);
+    if (!agent) {
+      return jsonError(404, `Unknown agent "${paramResult.data.agentId}".`, "agent_unknown");
+    }
+    const declared = codeDeclaredPolicy(agent);
+    if (!authResult.tenantId) {
+      return NextResponse.json({
+        agentId: agent.id,
+        codeDeclared: declared,
+        override: null
+      });
+    }
+    const em = authResult.container.resolve("em");
+    const repo = new AiAgentMutationPolicyOverrideRepository(em);
+    const current = await repo.get(agent.id, {
+      tenantId: authResult.tenantId,
+      organizationId: authResult.organizationId
+    });
+    return NextResponse.json({
+      agentId: agent.id,
+      codeDeclared: declared,
+      override: current ? serializeOverride(current) : null
+    });
+  } catch (error) {
+    console.error("[AI Mutation Policy GET] Failure:", error);
+    return jsonError(
+      500,
+      error instanceof Error ? error.message : "Failed to load mutationPolicy override.",
+      "internal_error"
+    );
+  }
+}
+async function POST(req, context) {
+  const authResult = await resolveAuthOrRespond(req, MANAGE_FEATURE);
+  if (authResult instanceof NextResponse) return authResult;
+  const rawParams = await context.params;
+  const paramResult = agentIdParamSchema.safeParse(rawParams);
+  if (!paramResult.success) {
+    return jsonError(400, "Invalid agent id.", "validation_error", {
+      issues: paramResult.error.issues
+    });
+  }
+  let parsedBody;
+  try {
+    parsedBody = await req.json();
+  } catch {
+    return jsonError(400, "Request body must be valid JSON.", "validation_error");
+  }
+  const bodyResult = mutationPolicyRequestSchema.safeParse(parsedBody);
+  if (!bodyResult.success) {
+    return jsonError(400, "Invalid request body.", "validation_error", {
+      issues: bodyResult.error.issues
+    });
+  }
+  try {
+    await loadAgentRegistry();
+    const agent = getAgent(paramResult.data.agentId);
+    if (!agent) {
+      return jsonError(404, `Unknown agent "${paramResult.data.agentId}".`, "agent_unknown");
+    }
+    const declared = codeDeclaredPolicy(agent);
+    if (isMutationPolicyEscalation(declared, bodyResult.data.mutationPolicy)) {
+      return jsonError(
+        400,
+        `Cannot set mutationPolicy="${bodyResult.data.mutationPolicy}" for agent "${agent.id}": the agent's code-declared policy is "${declared}". Upgrading beyond the declared policy is a code-level change, not a configuration change.`,
+        "escalation_not_allowed",
+        { codeDeclared: declared, requested: bodyResult.data.mutationPolicy }
+      );
+    }
+    if (!authResult.tenantId) {
+      return jsonError(
+        400,
+        "Caller has no tenant context; cannot persist tenant-scoped mutationPolicy override.",
+        "tenant_required"
+      );
+    }
+    const em = authResult.container.resolve("em");
+    const repo = new AiAgentMutationPolicyOverrideRepository(em);
+    const saved = await repo.set(
+      {
+        agentId: agent.id,
+        mutationPolicy: bodyResult.data.mutationPolicy,
+        notes: bodyResult.data.notes ?? null
+      },
+      {
+        tenantId: authResult.tenantId,
+        organizationId: authResult.organizationId,
+        userId: authResult.userId
+      }
+    );
+    return NextResponse.json({
+      ok: true,
+      agentId: agent.id,
+      codeDeclared: declared,
+      override: serializeOverride(saved)
+    });
+  } catch (error) {
+    console.error("[AI Mutation Policy POST] Failure:", error);
+    return jsonError(
+      500,
+      error instanceof Error ? error.message : "Failed to save mutationPolicy override.",
+      "internal_error"
+    );
+  }
+}
+async function DELETE(req, context) {
+  const authResult = await resolveAuthOrRespond(req, MANAGE_FEATURE);
+  if (authResult instanceof NextResponse) return authResult;
+  const rawParams = await context.params;
+  const paramResult = agentIdParamSchema.safeParse(rawParams);
+  if (!paramResult.success) {
+    return jsonError(400, "Invalid agent id.", "validation_error", {
+      issues: paramResult.error.issues
+    });
+  }
+  try {
+    await loadAgentRegistry();
+    const agent = getAgent(paramResult.data.agentId);
+    if (!agent) {
+      return jsonError(404, `Unknown agent "${paramResult.data.agentId}".`, "agent_unknown");
+    }
+    const declared = codeDeclaredPolicy(agent);
+    if (!authResult.tenantId) {
+      return NextResponse.json({
+        ok: true,
+        agentId: agent.id,
+        codeDeclared: declared,
+        override: null,
+        cleared: false
+      });
+    }
+    const em = authResult.container.resolve("em");
+    const repo = new AiAgentMutationPolicyOverrideRepository(em);
+    const cleared = await repo.clear(agent.id, {
+      tenantId: authResult.tenantId,
+      organizationId: authResult.organizationId
+    });
+    return NextResponse.json({
+      ok: true,
+      agentId: agent.id,
+      codeDeclared: declared,
+      override: null,
+      cleared
+    });
+  } catch (error) {
+    console.error("[AI Mutation Policy DELETE] Failure:", error);
+    return jsonError(
+      500,
+      error instanceof Error ? error.message : "Failed to clear mutationPolicy override.",
+      "internal_error"
+    );
+  }
+}
+export {
+  DELETE,
+  GET,
+  POST,
+  metadata,
+  openApi
+};
+//# sourceMappingURL=route.js.map