@promptbook/cli 0.103.0-48 → 0.103.0-50

package/apps/agents-server/src/database/schema.sql

@@ -4,17 +4,20 @@
 --       To update, search for [💽]
 
 
-
-CREATE TABLE IF NOT EXISTS "EnvironmentVariable" (
+CREATE TABLE IF NOT EXISTS "prefix_Metadata" (
     "id" BIGINT GENERATED BY DEFAULT AS IDENTITY PRIMARY KEY,
+    "createdAt" TIMESTAMP WITH TIME ZONE NOT NULL DEFAULT now(),
+    "updatedAt" TIMESTAMP WITH TIME ZONE NOT NULL DEFAULT now(),
     "key" TEXT NOT NULL,
     "value" TEXT NOT NULL,
     "note" TEXT NULL,
-    CONSTRAINT EnvironmentVariable_key_key UNIQUE ("key")
+    CONSTRAINT prefix_Metadata_key_key UNIQUE ("key")
 );
 
+ALTER TABLE "prefix_Metadata" ENABLE ROW LEVEL SECURITY;
 
-CREATE TABLE IF NOT EXISTS "Agent" (
+
+CREATE TABLE IF NOT EXISTS "prefix_Agent" (
     "id" BIGINT GENERATED BY DEFAULT AS IDENTITY PRIMARY KEY,
     "agentName" TEXT NOT NULL,
     
@@ -33,18 +36,20 @@ CREATE TABLE IF NOT EXISTS "Agent" (
     "preparedExternals" JSONB NULL
 );
 -- Ensure uniqueness of agentName even on repeated schema application without duplicate constraint creation
-CREATE UNIQUE INDEX IF NOT EXISTS agent_agentname_key ON "Agent" ("agentName");
-COMMENT ON COLUMN "Agent"."agentName" IS 'The unique name of the agent derived from the first line of the `agentSource`, automatically updated on `agentSource` change';
-COMMENT ON COLUMN "Agent"."agentHash" IS 'The hash of the `agentSource`, automatically updated on `agentSource` change';
-COMMENT ON COLUMN "Agent"."agentSource" IS 'The source code of the agent';
-COMMENT ON COLUMN "Agent"."agentProfile" IS 'The profile of the agent generated from the `agentSource`, automatically updated on `agentSource` change <- TODO: [🕛]';
-COMMENT ON COLUMN "Agent"."promptbookEngineVersion" IS 'The version of the Promptbook engine used for last update of the agent';
-COMMENT ON COLUMN "Agent"."usage" IS 'Usage and spending statistics for the agent';
-COMMENT ON COLUMN "Agent"."preparedModelRequirements" IS 'The prepared model requirements for the agent, generated from the `agentSource` but not after every change (only on explicit request), there is `agentHash` to identify the version of the `agentSource` this was prepared from';
-COMMENT ON COLUMN "Agent"."preparedExternals" IS 'The prepared externals for the agent, generated from the `agentSource` but not after every change (only on explicit request), there is `agentHash` to identify the version of the `agentSource` this was prepared from';
-
-
-CREATE TABLE IF NOT EXISTS "AgentHistory" (
+CREATE UNIQUE INDEX IF NOT EXISTS prefix_agent_agentname_key ON "prefix_Agent" ("agentName");
+COMMENT ON COLUMN "prefix_Agent"."agentName" IS 'The unique name of the agent derived from the first line of the `agentSource`, automatically updated on `agentSource` change';
+COMMENT ON COLUMN "prefix_Agent"."agentHash" IS 'The hash of the `agentSource`, automatically updated on `agentSource` change';
+COMMENT ON COLUMN "prefix_Agent"."agentSource" IS 'The source code of the agent';
+COMMENT ON COLUMN "prefix_Agent"."agentProfile" IS 'The profile of the agent generated from the `agentSource`, automatically updated on `agentSource` change <- TODO: [🕛]';
+COMMENT ON COLUMN "prefix_Agent"."promptbookEngineVersion" IS 'The version of the Promptbook engine used for last update of the agent';
+COMMENT ON COLUMN "prefix_Agent"."usage" IS 'Usage and spending statistics for the agent';
+COMMENT ON COLUMN "prefix_Agent"."preparedModelRequirements" IS 'The prepared model requirements for the agent, generated from the `agentSource` but not after every change (only on explicit request), there is `agentHash` to identify the version of the `agentSource` this was prepared from';
+COMMENT ON COLUMN "prefix_Agent"."preparedExternals" IS 'The prepared externals for the agent, generated from the `agentSource` but not after every change (only on explicit request), there is `agentHash` to identify the version of the `agentSource` this was prepared from';
+
+ALTER TABLE "prefix_Agent" ENABLE ROW LEVEL SECURITY;
+
+
+CREATE TABLE IF NOT EXISTS "prefix_AgentHistory" (
     "id" BIGINT GENERATED BY DEFAULT AS IDENTITY PRIMARY KEY,
     "createdAt" TIMESTAMP WITH TIME ZONE NOT NULL DEFAULT now(),
 
@@ -56,11 +61,13 @@ CREATE TABLE IF NOT EXISTS "AgentHistory" (
     
 );
 
-CREATE INDEX IF NOT EXISTS "AgentHistory_agentName_idx" ON "AgentHistory" ("agentName");
-CREATE INDEX IF NOT EXISTS "AgentHistory_agentHash_idx" ON "AgentHistory" ("agentHash");
+CREATE INDEX IF NOT EXISTS "prefix_AgentHistory_agentName_idx" ON "prefix_AgentHistory" ("agentName");
+CREATE INDEX IF NOT EXISTS "prefix_AgentHistory_agentHash_idx" ON "prefix_AgentHistory" ("agentHash");
 
+ALTER TABLE "prefix_AgentHistory" ENABLE ROW LEVEL SECURITY;
 
-CREATE TABLE IF NOT EXISTS "ChatHistory" (
+
+CREATE TABLE IF NOT EXISTS "prefix_ChatHistory" (
     "id" BIGINT GENERATED BY DEFAULT AS IDENTITY NOT NULL,
     "createdAt" TIMESTAMP WITH TIME ZONE NOT NULL DEFAULT now(),
 
@@ -78,14 +85,16 @@ CREATE TABLE IF NOT EXISTS "ChatHistory" (
     "language" TEXT NULL,
     "platform" TEXT NULL
 );
-COMMENT ON COLUMN "ChatHistory"."url" IS 'The URL where the chat was happening';
-COMMENT ON COLUMN "ChatHistory"."ip" IS 'The IP address of the user';
-COMMENT ON COLUMN "ChatHistory"."userAgent" IS 'The user agent (browser) of the user';
-COMMENT ON COLUMN "ChatHistory"."language" IS 'The language (from the browser) of the user';
-COMMENT ON COLUMN "ChatHistory"."platform" IS 'The platform of the user';
+COMMENT ON COLUMN "prefix_ChatHistory"."url" IS 'The URL where the chat was happening';
+COMMENT ON COLUMN "prefix_ChatHistory"."ip" IS 'The IP address of the user';
+COMMENT ON COLUMN "prefix_ChatHistory"."userAgent" IS 'The user agent (browser) of the user';
+COMMENT ON COLUMN "prefix_ChatHistory"."language" IS 'The language (from the browser) of the user';
+COMMENT ON COLUMN "prefix_ChatHistory"."platform" IS 'The platform of the user';
+
+ALTER TABLE "prefix_ChatHistory" ENABLE ROW LEVEL SECURITY;
 
 
-CREATE TABLE IF NOT EXISTS "ChatFeedback" (
+CREATE TABLE IF NOT EXISTS "prefix_ChatFeedback" (
     "id" BIGINT GENERATED BY DEFAULT AS IDENTITY PRIMARY KEY,
     "createdAt" TIMESTAMP WITH TIME ZONE NOT NULL DEFAULT now(),
 
@@ -105,15 +114,31 @@ CREATE TABLE IF NOT EXISTS "ChatFeedback" (
     "language" TEXT NULL,
     "platform" TEXT NULL
 );
-COMMENT ON COLUMN "ChatFeedback"."url" IS 'The URL where the chat was happening';
-COMMENT ON COLUMN "ChatFeedback"."ip" IS 'The IP address of the user';
-COMMENT ON COLUMN "ChatFeedback"."userAgent" IS 'The user agent (browser) of the user';
-COMMENT ON COLUMN "ChatFeedback"."language" IS 'The language (from the browser) of the user';
-COMMENT ON COLUMN "ChatFeedback"."platform" IS 'The platform of the user';
+COMMENT ON COLUMN "prefix_ChatFeedback"."url" IS 'The URL where the chat was happening';
+COMMENT ON COLUMN "prefix_ChatFeedback"."ip" IS 'The IP address of the user';
+COMMENT ON COLUMN "prefix_ChatFeedback"."userAgent" IS 'The user agent (browser) of the user';
+COMMENT ON COLUMN "prefix_ChatFeedback"."language" IS 'The language (from the browser) of the user';
+COMMENT ON COLUMN "prefix_ChatFeedback"."platform" IS 'The platform of the user';
+
+ALTER TABLE "prefix_ChatFeedback" ENABLE ROW LEVEL SECURITY;
+
+
+CREATE TABLE IF NOT EXISTS "prefix_User" (
+    "id" BIGINT GENERATED BY DEFAULT AS IDENTITY PRIMARY KEY,
+    "createdAt" TIMESTAMP WITH TIME ZONE NOT NULL DEFAULT now(),
+    "updatedAt" TIMESTAMP WITH TIME ZONE NOT NULL DEFAULT now(),
+    
+    "username" TEXT NOT NULL,
+    "passwordHash" TEXT NOT NULL,
+    "isAdmin" BOOLEAN NOT NULL DEFAULT FALSE
+);
+CREATE UNIQUE INDEX IF NOT EXISTS "prefix_User_username_idx" ON "prefix_User" ("username");
+
+ALTER TABLE "prefix_User" ENABLE ROW LEVEL SECURITY;
 
 
 /*
-CREATE TABLE IF NOT EXISTS "AgentActionHistory" (
+CREATE TABLE IF NOT EXISTS "prefix_AgentActionHistory" (
 id BIGINT GENERATED BY DEFAULT AS IDENTITY NOT NULL,
 createdAt TIMESTAMP WITH TIME ZONE NOT NULL DEFAULT now(),
 
@@ -122,10 +147,33 @@ createdAt TIMESTAMP WITH TIME ZONE NOT NULL DEFAULT now(),
 
 
 /*
-CREATE TABLE IF NOT EXISTS "Xxx" (
+CREATE TABLE IF NOT EXISTS "prefix_Xxx" (
 id BIGINT GENERATED BY DEFAULT AS IDENTITY NOT NULL,
 );
 */
 
 
--- TODO: !!!! Create propper database migrations
+-- Foreign key relationships
+-- Note: Using agentName as the foreign key reference since it's the unique identifier used across tables
+ALTER TABLE "prefix_AgentHistory" 
+    DROP CONSTRAINT IF EXISTS "prefix_AgentHistory_agentName_fkey",
+    ADD CONSTRAINT "prefix_AgentHistory_agentName_fkey" 
+    FOREIGN KEY ("agentName") 
+    REFERENCES "prefix_Agent"("agentName") 
+    ON DELETE CASCADE;
+
+ALTER TABLE "prefix_ChatHistory" 
+    DROP CONSTRAINT IF EXISTS "prefix_ChatHistory_agentName_fkey",
+    ADD CONSTRAINT "prefix_ChatHistory_agentName_fkey" 
+    FOREIGN KEY ("agentName") 
+    REFERENCES "prefix_Agent"("agentName") 
+    ON DELETE CASCADE;
+
+ALTER TABLE "prefix_ChatFeedback" 
+    DROP CONSTRAINT IF EXISTS "prefix_ChatFeedback_agentName_fkey",
+    ADD CONSTRAINT "prefix_ChatFeedback_agentName_fkey" 
+    FOREIGN KEY ("agentName") 
+    REFERENCES "prefix_Agent"("agentName") 
+    ON DELETE CASCADE;
+
+-- TODO: [🐱‍🚀] Create propper database migrations

package/apps/agents-server/src/database/schema.ts

@@ -11,23 +11,30 @@ export type Json = string | number | boolean | null | { [key: string]: Json | un
 
 // Public schema database interface (Supabase convention)
 export type AgentsServerDatabase = {
+    // <- TODO: [🧠][🕜] Better naming
     public: {
         Tables: {
-            EnvironmentVariable: {
+            Metadata: {
                 Row: {
                     id: number;
+                    createdAt: string;
+                    updatedAt: string;
                     key: string;
                     value: string;
                     note: string | null;
                 };
                 Insert: {
                     id?: number;
+                    createdAt?: string;
+                    updatedAt?: string;
                     key: string;
                     value: string;
                     note?: string | null;
                 };
                 Update: {
                     id?: number;
+                    createdAt?: string;
+                    updatedAt?: string;
                     key?: string;
                     value?: string;
                     note?: string | null;
@@ -208,6 +215,33 @@ export type AgentsServerDatabase = {
                 };
                 Relationships: [];
             };
+            User: {
+                Row: {
+                    id: number;
+                    createdAt: string;
+                    updatedAt: string;
+                    username: string;
+                    passwordHash: string;
+                    isAdmin: boolean;
+                };
+                Insert: {
+                    id?: number;
+                    createdAt?: string;
+                    updatedAt?: string;
+                    username: string;
+                    passwordHash: string;
+                    isAdmin?: boolean;
+                };
+                Update: {
+                    id?: number;
+                    createdAt?: string;
+                    updatedAt?: string;
+                    username?: string;
+                    passwordHash?: string;
+                    isAdmin?: boolean;
+                };
+                Relationships: [];
+            };
         };
         Views: Record<string, never>;
         Functions: Record<string, never>;

package/apps/agents-server/src/middleware.ts

@@ -0,0 +1,200 @@
+import { TODO_any } from '@promptbook-local/types';
+import { createClient } from '@supabase/supabase-js';
+import { NextRequest, NextResponse } from 'next/server';
+import { SERVERS, SUPABASE_TABLE_PREFIX } from '../config';
+import { isIpAllowed } from './utils/isIpAllowed';
+
+// Note: Re-implementing normalizeTo_PascalCase to avoid importing from @promptbook-local/utils which might have Node.js dependencies
+function normalizeTo_PascalCase(text: string): string {
+    return text
+        .replace(/(?:^\w|[A-Z]|\b\w)/g, (word, index) => {
+            return word.toUpperCase();
+        })
+        .replace(/\s+/g, '');
+}
+
+export async function middleware(req: NextRequest) {
+    // 1. Get client IP
+    let ip = (req as TODO_any).ip;
+    const xForwardedFor = req.headers.get('x-forwarded-for');
+    if (!ip && xForwardedFor) {
+        ip = xForwardedFor.split(',')[0].trim();
+    }
+    // Fallback for local development if needed, though req.ip is usually ::1 or 127.0.0.1
+    ip = ip || '127.0.0.1';
+
+    // 2. Determine allowed IPs
+    // Priority: Metadata > Environment Variable
+
+    const allowedIpsEnv = process.env.RESTRICT_IP;
+    let allowedIpsMetadata: string | null = null;
+
+    // To fetch metadata, we need to know the table name, which depends on the host
+    const host = req.headers.get('host');
+
+    if (host) {
+        let tablePrefix = SUPABASE_TABLE_PREFIX;
+
+        if (SERVERS && SERVERS.length > 0) {
+            // Logic mirrored from src/tools/$provideServer.ts
+            if (SERVERS.some((server) => server === host)) {
+                let serverName = host;
+                serverName = serverName.replace(/\.ptbk\.io$/, '');
+                serverName = normalizeTo_PascalCase(serverName);
+                tablePrefix = `server_${serverName}_`;
+            }
+        }
+
+        const supabaseUrl = process.env.NEXT_PUBLIC_SUPABASE_URL;
+        const supabaseKey = process.env.SUPABASE_SERVICE_ROLE_KEY || process.env.NEXT_PUBLIC_SUPABASE_ANON_KEY;
+
+        if (supabaseUrl && supabaseKey) {
+            try {
+                const supabase = createClient(supabaseUrl, supabaseKey, {
+                    auth: {
+                        persistSession: false,
+                        autoRefreshToken: false,
+                    },
+                });
+
+                const { data } = await supabase
+                    .from(`${tablePrefix}Metadata`)
+                    .select('value')
+                    .eq('key', 'RESTRICT_IP')
+                    .single();
+
+                if (data && data.value) {
+                    allowedIpsMetadata = data.value;
+                }
+            } catch (error) {
+                console.error('Error fetching metadata in middleware:', error);
+            }
+        }
+    }
+
+    const allowedIps =
+        allowedIpsMetadata !== null && allowedIpsMetadata !== undefined ? allowedIpsMetadata : allowedIpsEnv;
+
+    if (isIpAllowed(ip, allowedIps)) {
+        // Handle OPTIONS (preflight) requests before any redirects
+        // to avoid CORS issues ("Redirect is not allowed for a preflight request")
+        if (req.method === 'OPTIONS') {
+            return new NextResponse(null, {
+                status: 200,
+                headers: {
+                    'Access-Control-Allow-Origin': '*',
+                    'Access-Control-Allow-Methods': 'GET, POST, OPTIONS',
+                    'Access-Control-Allow-Headers': 'Content-Type',
+                },
+            });
+        }
+
+        // 3. Redirect /:agentName/* to /agents/:agentName/*
+        //    This enables accessing agents from the root path
+        const pathParts = req.nextUrl.pathname.split('/');
+        const potentialAgentName = pathParts[1];
+
+        if (
+            potentialAgentName &&
+            !['agents', 'api', '_next', 'favicon.ico'].includes(potentialAgentName) &&
+            !potentialAgentName.startsWith('.') &&
+            // Note: Other static files are excluded by the matcher configuration below
+            true
+        ) {
+            const url = req.nextUrl.clone();
+            url.pathname = `/agents${req.nextUrl.pathname}`;
+            const response = NextResponse.redirect(url);
+
+            // Enable CORS for the redirect
+            response.headers.set('Access-Control-Allow-Origin', '*');
+            response.headers.set('Access-Control-Allow-Methods', 'GET, POST, OPTIONS');
+            response.headers.set('Access-Control-Allow-Headers', 'Content-Type');
+
+            return response;
+        }
+
+        // 4. Custom Domain Routing
+        //    If the host is not one of the configured SERVERS, try to find an agent with a matching META LINK
+
+        if (host && SERVERS && !SERVERS.some((server) => server === host)) {
+            const supabaseUrl = process.env.NEXT_PUBLIC_SUPABASE_URL;
+            const supabaseKey = process.env.SUPABASE_SERVICE_ROLE_KEY || process.env.NEXT_PUBLIC_SUPABASE_ANON_KEY;
+
+            if (supabaseUrl && supabaseKey) {
+                const supabase = createClient(supabaseUrl, supabaseKey, {
+                    auth: {
+                        persistSession: false,
+                        autoRefreshToken: false,
+                    },
+                });
+
+                // Determine prefixes to check
+                // We check all configured servers because the custom domain could point to any of them
+                // (or if they share the database, we need to check the relevant tables)
+                const serversToCheck = SERVERS;
+
+                // TODO: [🧠] If there are many servers, this loop might be slow. Optimize if needed.
+                for (const serverHost of serversToCheck) {
+                    let serverName = serverHost;
+                    serverName = serverName.replace(/\.ptbk\.io$/, '');
+                    serverName = normalizeTo_PascalCase(serverName);
+                    const prefix = `server_${serverName}_`;
+
+                    // Search for agent with matching META LINK
+                    // agentProfile->links is an array of strings
+                    // We check if it contains the host, or https://host, or http://host
+
+                    const searchLinks = [host, `https://${host}`, `http://${host}`];
+
+                    // Construct OR filter: agentProfile.cs.{"links":["link1"]},agentProfile.cs.{"links":["link2"]},...
+                    const orFilter = searchLinks.map((link) => `agentProfile.cs.{"links":["${link}"]}`).join(',');
+
+                    try {
+                        const { data } = await supabase
+                            .from(`${prefix}Agent`)
+                            .select('agentName')
+                            .or(orFilter)
+                            .limit(1)
+                            .single();
+
+                        if (data && data.agentName) {
+                            // Found the agent!
+                            const url = req.nextUrl.clone();
+                            url.pathname = `/${data.agentName}`;
+
+                            // Pass the server context to the app via header
+                            const requestHeaders = new Headers(req.headers);
+                            requestHeaders.set('x-promptbook-server', serverHost);
+
+                            return NextResponse.rewrite(url, {
+                                request: {
+                                    headers: requestHeaders,
+                                },
+                            });
+                        }
+                    } catch (error) {
+                        // Ignore error (e.g. table not found, or agent not found) and continue to next server
+                        // console.error(`Error checking server ${serverHost} for custom domain ${host}:`, error);
+                    }
+                }
+            }
+        }
+
+        return NextResponse.next();
+    }
+
+    return new NextResponse('Forbidden', { status: 403 });
+}
+
+export const config = {
+    matcher: [
+        /*
+         * Match all request paths except for the ones starting with:
+         * - _next/static (static files)
+         * - _next/image (image optimization files)
+         * - favicon.ico (favicon file)
+         * - public folder
+         */
+        '/((?!_next/static|_next/image|favicon.ico|logo-|fonts/).*)',
+    ],
+};

package/apps/agents-server/src/tools/$provideAgentCollectionForServer.ts

@@ -2,7 +2,9 @@
 
 import { AgentCollectionInSupabase } from '@promptbook-local/core';
 import { AgentCollection } from '@promptbook-local/types';
+import { just } from '../../../../src/utils/organization/just';
 import { $provideSupabaseForServer } from '../database/$provideSupabaseForServer';
+import { $provideServer } from './$provideServer';
 
 /**
  * Cache of provided agent collection
@@ -12,22 +14,22 @@ import { $provideSupabaseForServer } from '../database/$provideSupabaseForServer
 let agentCollection: null | AgentCollection = null;
 
 /**
- * !!!!
+ * [🐱‍🚀]
  */
 export async function $provideAgentCollectionForServer(): Promise<AgentCollection> {
     // <- Note: This function is potentially async
 
-    // TODO: !!!! [🌕] DRY
+    // TODO: [🐱‍🚀] [🌕] DRY
 
-    const isVerbose = true; // <- TODO: !!!! Pass
+    const isVerbose = true; // <- TODO: [🐱‍🚀] Pass
 
-    if (agentCollection !== null) {
-        console.log('!!! Returning cached agent collection');
+    if (agentCollection !== null && just(false /* <- TODO: [🐱‍🚀] Fix caching */)) {
+        console.log('[🐱‍🚀] Returning cached agent collection');
         return agentCollection;
-        // TODO: !!!! Be aware of options changes
+        // TODO: [🐱‍🚀] Be aware of options changes
     }
 
-    console.log('!!! Creating NEW agent collection');
+    console.log('[🐱‍🚀] Creating NEW agent collection');
 
     /*
     // TODO: [🧟‍♂️][◽] DRY:
@@ -41,9 +43,11 @@ export async function $provideAgentCollectionForServer(): Promise<AgentCollectio
     */
 
     const supabase = $provideSupabaseForServer();
+    const { tablePrefix } = await $provideServer();
 
     agentCollection = new AgentCollectionInSupabase(supabase, {
         isVerbose,
+        tablePrefix,
     });
 
     return agentCollection;

package/apps/agents-server/src/tools/$provideCdnForServer.ts

@@ -9,7 +9,7 @@ import { IIFilesStorageWithCdn } from '../utils/cdn/interfaces/IFilesStorage';
 let cdn: IIFilesStorageWithCdn | null = null;
 
 /**
- * !!!
+ * [🐱‍🚀]
  */
 export function $provideCdnForServer(): IIFilesStorageWithCdn {
     if (!cdn) {

package/apps/agents-server/src/tools/$provideExecutionToolsForServer.ts

@@ -43,11 +43,11 @@ $sideEffect(
     _MarkitdownScraperMetadataRegistration,
     _PdfScraperMetadataRegistration,
     _WebsiteScraperMetadataRegistration,
-    // <- TODO: !!! Export all registrations from one variabile in `@promptbook/core`
+    // <- TODO: [🐱‍🚀] Export all registrations from one variabile in `@promptbook/core`
 );
 $sideEffect(/* [㊗] */ _OpenAiRegistration);
 $sideEffect(/* [㊗] */ _GoogleRegistration);
-// <- TODO: !!!! Allow to dynamically install required metadata
+// <- TODO: [🐱‍🚀] Allow to dynamically install required metadata
 
 /**
  * Cache of provided execution tools
@@ -56,8 +56,6 @@ $sideEffect(/* [㊗] */ _GoogleRegistration);
  */
 let executionTools: null | ExecutionTools = null;
 
-
-
 /*
 TODO: [▶️]
 type ProvideExecutionToolsForServerOptions = {
@@ -66,25 +64,25 @@ type ProvideExecutionToolsForServerOptions = {
 */
 
 /**
- * !!!!
+ * [🐱‍🚀]
  */
 export async function $provideExecutionToolsForServer(): Promise<ExecutionTools> {
-    // TODO: !!!! [🌕] DRY
+    // TODO: [🐱‍🚀] [🌕] DRY
 
-    // const path = '../../agents'; // <- TODO: !!!! Pass
-    const isVerbose = true; // <- TODO: !!!! Pass
-    const isCacheReloaded = false; // <- TODO: !!!! Pass
+    // const path = '../../agents'; // <- TODO: [🐱‍🚀] Pass
+    const isVerbose = true; // <- TODO: [🐱‍🚀] Pass
+    const isCacheReloaded = false; // <- TODO: [🐱‍🚀] Pass
     const cliOptions = {
         provider: 'BRING_YOUR_OWN_KEYS',
-    } as TODO_any; // <- TODO: !!!! Pass
+    } as TODO_any; // <- TODO: [🐱‍🚀] Pass
 
     if (executionTools !== null) {
-        console.log('!!! Returning cached execution tools');
+        console.log('[🐱‍🚀] Returning cached execution tools');
         return executionTools;
-        // TODO: !!!! Be aware of options changes
+        // TODO: [🐱‍🚀] Be aware of options changes
     }
 
-    console.log('!!! Creating NEW execution tools');
+    console.log('[🐱‍🚀] Creating NEW execution tools');
 
     // TODO: DRY [◽]
     const prepareAndScrapeOptions = {

package/apps/agents-server/src/tools/$provideOpenAiAssistantExecutionToolsForServer.ts

@@ -10,23 +10,23 @@ import { OpenAiAssistantExecutionTools } from '@promptbook-local/openai';
 let executionTools: null | OpenAiAssistantExecutionTools = null;
 
 /**
- * !!!!
+ * [🐱‍🚀]
  */
 export async function $provideOpenAiAssistantExecutionToolsForServer(): Promise<OpenAiAssistantExecutionTools> {
-    // TODO: !!!! [🌕] DRY
-    const isVerbose = true; // <- TODO: !!!! Pass
+    // TODO: [🐱‍🚀] [🌕] DRY
+    const isVerbose = true; // <- TODO: [🐱‍🚀] Pass
 
     if (executionTools !== null) {
-        console.log('!!! Returning cached OpenAiAssistantExecutionTools');
+        console.log('[🐱‍🚀] Returning cached OpenAiAssistantExecutionTools');
         return executionTools;
-        // TODO: !!!! Be aware of options changes
+        // TODO: [🐱‍🚀] Be aware of options changes
     }
 
-    console.log('!!! Creating NEW OpenAiAssistantExecutionTools');
+    console.log('[🐱‍🚀] Creating NEW OpenAiAssistantExecutionTools');
 
     executionTools = new OpenAiAssistantExecutionTools({
         apiKey: process.env.OPENAI_API_KEY,
-        assistantId: 'abstract_assistant', // <- TODO: !!!! In `OpenAiAssistantExecutionTools` Allow to create abstract assistants with `isCreatingNewAssistantsAllowed`
+        assistantId: 'abstract_assistant', // <- TODO: [🐱‍🚀] In `OpenAiAssistantExecutionTools` Allow to create abstract assistants with `isCreatingNewAssistantsAllowed`
         isCreatingNewAssistantsAllowed: true,
         isVerbose,
     });

package/apps/agents-server/src/tools/$provideServer.ts

@@ -0,0 +1,39 @@
+import { NEXT_PUBLIC_URL, SERVERS, SUPABASE_TABLE_PREFIX } from '@/config';
+import { normalizeTo_PascalCase } from '@promptbook-local/utils';
+import { headers } from 'next/headers';
+
+export async function $provideServer() {
+    if (!SERVERS) {
+        return {
+            publicUrl: NEXT_PUBLIC_URL || new URL(`https://${(await headers()).get('host') || 'localhost:4440'}`),
+            tablePrefix: SUPABASE_TABLE_PREFIX,
+        };
+    }
+
+    const headersList = await headers();
+    let host = headersList.get('host');
+    const xPromptbookServer = headersList.get('x-promptbook-server');
+
+    if (host === null) {
+        throw new Error('Host header is missing');
+    }
+
+    // If host is not in known servers, check if we have a context header from middleware
+    if (!SERVERS.some((server) => server === host)) {
+        if (xPromptbookServer && SERVERS.some((server) => server === xPromptbookServer)) {
+            host = xPromptbookServer;
+        } else {
+            throw new Error(`Server with host "${host}" is not configured in SERVERS`);
+        }
+    }
+
+    let serverName = host;
+
+    serverName = serverName.replace(/\.ptbk\.io$/, '');
+    serverName = normalizeTo_PascalCase(serverName);
+
+    return {
+        publicUrl: new URL(`https://${host}`),
+        tablePrefix: `server_${serverName}_`,
+    };
+}

package/apps/agents-server/src/utils/auth.ts

@@ -0,0 +1,33 @@
+import { randomBytes, scrypt, timingSafeEqual } from 'crypto';
+import { promisify } from 'util';
+
+const scryptAsync = promisify(scrypt);
+
+/**
+ * Hashes a password using scrypt
+ * 
+ * @param password The plain text password
+ * @returns The salt and hash formatted as "salt:hash"
+ */
+export async function hashPassword(password: string): Promise<string> {
+    const salt = randomBytes(16).toString('hex');
+    const derivedKey = (await scryptAsync(password, salt, 64)) as Buffer;
+    return `${salt}:${derivedKey.toString('hex')}`;
+}
+
+/**
+ * Verifies a password against a stored hash
+ * 
+ * @param password The plain text password
+ * @param storedHash The stored hash in format "salt:hash"
+ * @returns True if the password matches
+ */
+export async function verifyPassword(password: string, storedHash: string): Promise<boolean> {
+    const [salt, key] = storedHash.split(':');
+    if (!salt || !key) return false;
+    
+    const derivedKey = (await scryptAsync(password, salt, 64)) as Buffer;
+    const keyBuffer = Buffer.from(key, 'hex');
+    
+    return timingSafeEqual(derivedKey, keyBuffer);
+}