@promptbook/cli 0.103.0-52 → 0.103.0-54

package/apps/agents-server/src/app/agents/[agentName]/page.tsx

@@ -1,39 +1,51 @@
 'use server';
 
-import { $provideAgentCollectionForServer } from '@/src/tools/$provideAgentCollectionForServer';
 // import { BookEditor } from '@promptbook-local/components';
 import { $provideServer } from '@/src/tools/$provideServer';
-import { parseAgentSource } from '@promptbook-local/core';
-import { Columns2Icon, MessagesSquareIcon, NotebookPenIcon } from 'lucide-react';
+import { PROMPTBOOK_COLOR } from '@promptbook-local/core';
+import { CodeIcon, HistoryIcon, MessageCircleQuestionIcon, MessageSquareIcon, NotebookPenIcon } from 'lucide-react';
 import { headers } from 'next/headers';
 import { notFound } from 'next/navigation';
 import { Color } from '../../../../../../src/utils/color/Color';
 import { withAlpha } from '../../../../../../src/utils/color/operators/withAlpha';
 import { $sideEffect } from '../../../../../../src/utils/organization/$sideEffect';
+import { AGENT_ACTIONS, getAgentName, getAgentProfile } from './_utils';
 import { AgentChatWrapper } from './AgentChatWrapper';
 import { AgentQrCode } from './AgentQrCode';
 import { CopyField } from './CopyField';
 import { generateAgentMetadata } from './generateAgentMetadata';
+import { InstallPwaButton } from './InstallPwaButton';
+import { ServiceWorkerRegister } from './ServiceWorkerRegister';
+import { ClearAgentChatHistoryButton } from './ClearAgentChatHistoryButton';
+import { ClearAgentChatFeedbackButton } from './ClearAgentChatFeedbackButton';
+import { CloneAgentButton } from './CloneAgentButton';
+import { isUserAdmin } from '../../../utils/isUserAdmin';
 // import { Agent } from '@promptbook-local/core';
 // import { RemoteLlmExecutionTools } from '@promptbook-local/remote-client';
 // import { OpenAiAssistantExecutionTools } from '@promptbook-local/openai';
 
 export const generateMetadata = generateAgentMetadata;
 
-export default async function AgentPage({ params }: { params: Promise<{ agentName: string }> }) {
+export default async function AgentPage({
+    params,
+    searchParams,
+}: {
+    params: Promise<{ agentName: string }>;
+    searchParams: Promise<{ [key: string]: string | string[] | undefined }>;
+}) {
     // const [apiKey, setApiKey] = useStateInLocalStorage<string>('openai-apiKey', () => '');
     // const [isApiKeyVisible, setIsApiKeyVisible] = useState(false);
     // const [isApiKeySectionCollapsed, setIsApiKeySectionCollapsed] = useState(!!apiKey);
 
     $sideEffect(headers());
 
-    let { agentName } = await params;
-    agentName = decodeURIComponent(agentName);
+    const { message } = await searchParams;
+    const agentName = await getAgentName(params);
+    const isAdmin = await isUserAdmin();
 
-    const collection = await $provideAgentCollectionForServer();
-    let agentSource;
+    let agentProfile;
     try {
-        agentSource = await collection.getAgentSource(agentName);
+        agentProfile = await getAgentProfile(agentName);
     } catch (error) {
         if (
             error instanceof Error &&
@@ -45,7 +57,6 @@ export default async function AgentPage({ params }: { params: Promise<{ agentNam
         }
         throw error;
     }
-    const agentProfile = parseAgentSource(agentSource);
 
     const { publicUrl } = await $provideServer();
 
@@ -58,13 +69,15 @@ export default async function AgentPage({ params }: { params: Promise<{ agentNam
     console.log('[🐱‍🚀]', { pageUrl: agentUrl });
 
     // Extract brand color from meta
-    const brandColor = Color.from(agentProfile.meta.color || '#3b82f6'); // Default to blue-600
+    const brandColor = Color.from(agentProfile.meta.color || PROMPTBOOK_COLOR);
 
     // Mock agent actions
-    const agentActions = ['Emails', 'Web chat', 'Read documents', 'Browser', 'WhatsApp', '<Coding/>'];
+    const agentActions = AGENT_ACTIONS;
 
     return (
         <div className="flex flex-col md:flex-row h-[calc(100vh-60px)] w-full overflow-hidden">
+            <ServiceWorkerRegister scope={`/agents/${encodeURIComponent(agentName)}/`} />
+
             {/* Left sidebar: Profile info */}
             <div
                 className="w-full md:w-[400px] flex flex-col gap-6 p-6 overflow-y-auto border-r bg-gray-50 flex-shrink-0"
@@ -114,33 +127,60 @@ export default async function AgentPage({ params }: { params: Promise<{ agentNam
                     </div>
                 </div>
 
-                <div className="flex flex-col gap-2 mt-auto">
+                <div className="flex flex-col gap-3 mt-auto">
                     <div className="flex gap-2">
                         <a
-                            href={`/agents/${encodeURIComponent(agentName)}/chat`}
+                            href={`/agents/${encodeURIComponent(agentName)}/book+chat`}
                             // <- TODO: [🧠] Can I append path like this on current browser URL in href?
                             className="flex-1 inline-flex items-center justify-center whitespace-nowrap bg-white hover:bg-gray-100 text-gray-800 px-4 py-2 rounded shadow font-semibold transition border border-gray-200"
                         >
-                            <MessagesSquareIcon className="ml-2 w-4 h-4 mr-2" />
-                            Chat
+                            <NotebookPenIcon className="ml-2 w-4 h-4 mr-2" />
+                            Edit
                         </a>
                         <a
-                            href={`/agents/${encodeURIComponent(agentName)}/book+chat`}
+                            href={`/agents/${encodeURIComponent(agentName)}/integration`}
                             // <- TODO: [🧠] Can I append path like this on current browser URL in href?
                             className="flex-1 inline-flex items-center justify-center whitespace-nowrap bg-white hover:bg-gray-100 text-gray-800 px-4 py-2 rounded shadow font-semibold transition border border-gray-200"
                         >
-                            <Columns2Icon className="ml-2 w-4 h-4 mr-2" />
-                            Book + Chat
+                            <CodeIcon className="ml-2 w-4 h-4 mr-2" />
+                            Integration
                         </a>
                         <a
-                            href={`/agents/${encodeURIComponent(agentName)}/book`}
-                            // <- TODO: [🧠] Can I append path like this on current browser URL in href?
+                            href={`/agents/${encodeURIComponent(agentName)}/history`}
                             className="flex-1 inline-flex items-center justify-center whitespace-nowrap bg-white hover:bg-gray-100 text-gray-800 px-4 py-2 rounded shadow font-semibold transition border border-gray-200"
                         >
-                            <NotebookPenIcon className="ml-2 w-4 h-4 mr-2" />
-                            Edit
+                            <HistoryIcon className="ml-2 w-4 h-4 mr-2" />
+                            History
                         </a>
+                        {isAdmin && <CloneAgentButton agentName={agentName} />}
+                        <InstallPwaButton />
                     </div>
+
+                    {isAdmin && (
+                        <div className="border-t border-dashed border-gray-300 pt-3">
+                            <h2 className="mb-2 text-xs font-semibold uppercase tracking-wide text-gray-600">
+                                Maintenance
+                            </h2>
+                            <div className="flex flex-col gap-2">
+                                <a
+                                    href={`/admin/chat-history?agentName=${encodeURIComponent(agentName)}`}
+                                    className="inline-flex items-center justify-center whitespace-nowrap rounded-md border border-gray-300 bg-white px-3 py-1.5 text-xs font-semibold text-gray-700 shadow-sm hover:bg-gray-50"
+                                >
+                                    <MessageSquareIcon className="mr-2 w-3 h-3" />
+                                    Chat history
+                                </a>
+                                <a
+                                    href={`/admin/chat-feedback?agentName=${encodeURIComponent(agentName)}`}
+                                    className="inline-flex items-center justify-center whitespace-nowrap rounded-md border border-gray-300 bg-white px-3 py-1.5 text-xs font-semibold text-gray-700 shadow-sm hover:bg-gray-50"
+                                >
+                                    <MessageCircleQuestionIcon className="mr-2 w-3 h-3" />
+                                    Chat feedback
+                                </a>
+                                <ClearAgentChatHistoryButton agentName={agentName} />
+                                <ClearAgentChatFeedbackButton agentName={agentName} />
+                            </div>
+                        </div>
+                    )}
                 </div>
 
                 <div className="flex flex-col items-center gap-4 pt-6 border-t border-gray-200 w-full">
@@ -162,7 +202,7 @@ export default async function AgentPage({ params }: { params: Promise<{ agentNam
 
             {/* Main content: Chat */}
             <div className="flex-1 relative h-full bg-white">
-                <AgentChatWrapper agentUrl={agentUrl} />
+                <AgentChatWrapper agentUrl={agentUrl} defaultMessage={message as string} />
             </div>
         </div>
     );

package/apps/agents-server/src/app/api/agents/[agentName]/clone/route.ts

@@ -0,0 +1,47 @@
+// POST /api/agents/[agentName]/clone
+import { $provideAgentCollectionForServer } from '@/src/tools/$provideAgentCollectionForServer';
+import { AgentBasicInformation } from '../../../../../../../../src/book-2.0/agent-source/AgentBasicInformation';
+import { string_book } from '../../../../../../../../src/book-2.0/agent-source/string_book';
+import { TODO_any } from '@promptbook-local/types';
+import { NextResponse } from 'next/server';
+
+export async function POST(request: Request, { params }: { params: Promise<{ agentName: string }> }) {
+    const { agentName } = await params;
+    const collection = await $provideAgentCollectionForServer();
+
+    try {
+        const source = await collection.getAgentSource(agentName);
+
+        // Generate new name
+        // TODO: [🧠] Better naming strategy, maybe check for collisions
+        let newAgentName = `${agentName} (Copy)`;
+        let counter = 1;
+
+        // eslint-disable-next-line no-constant-condition
+        while (true) {
+            try {
+                await collection.getAgentSource(newAgentName);
+                 // If success, it means it exists, so we try next one
+                 counter++;
+                 newAgentName = `${agentName} (Copy ${counter})`;
+             } catch (error) {
+                 // If error, it likely means it does not exist (NotFoundError), so we can use it
+                 // TODO: [🧠] Check if it is really NotFoundError
+                 break;
+             }
+        }
+
+        const lines = source.split('\n');
+        lines[0] = newAgentName;
+        const newSource = lines.join('\n') as string_book;
+
+        const newAgent = await collection.createAgent(newSource);
+        
+        return NextResponse.json(newAgent);
+    } catch (error) {
+        return NextResponse.json(
+            { success: false, error: (error as TODO_any)?.message || 'Failed to clone agent' },
+            { status: 500 },
+        );
+    }
+}

package/apps/agents-server/src/app/api/agents/[agentName]/route.ts

@@ -0,0 +1,19 @@
+// DELETE /api/agents/[agentName]
+import { $provideAgentCollectionForServer } from '@/src/tools/$provideAgentCollectionForServer';
+import { TODO_any } from '@promptbook-local/types';
+import { NextResponse } from 'next/server';
+
+export async function DELETE(request: Request, { params }: { params: Promise<{ agentName: string }> }) {
+    const { agentName } = await params;
+    const collection = await $provideAgentCollectionForServer();
+
+    try {
+        await collection.deleteAgent(agentName);
+        return NextResponse.json({ success: true });
+    } catch (error) {
+        return NextResponse.json(
+            { success: false, error: (error as TODO_any)?.message || 'Failed to delete agent' },
+            { status: 500 },
+        );
+    }
+}

package/apps/agents-server/src/app/api/agents/route.ts

@@ -1,6 +1,7 @@
+import { $provideServer } from '@/src/tools/$provideServer';
 import { NextResponse } from 'next/server';
-import { getMetadata } from '../../../database/getMetadata';
 import { $provideAgentCollectionForServer } from '../../../tools/$provideAgentCollectionForServer';
+import { getFederatedServersFromMetadata } from '../../../utils/getFederatedServersFromMetadata';
 
 export const dynamic = 'force-dynamic';
 
@@ -8,27 +9,35 @@ export async function GET() {
     try {
         const collection = await $provideAgentCollectionForServer();
         const agents = await collection.listAgents();
-        const serverUrl = (await getMetadata('SERVER_URL')) || '';
-        const federatedServersString = (await getMetadata('FEDERATED_SERVERS')) || '';
-        const federatedServers = federatedServersString
-            .split(',')
-            .map((s) => s.trim())
-            .filter((s) => s !== '');
+        const federatedServers = await getFederatedServersFromMetadata();
+        const { publicUrl } = await $provideServer();
 
         const agentsWithUrl = agents.map((agent) => ({
             ...agent,
-            url: `${serverUrl}/${agent.agentName}`,
+            url: `${publicUrl.href}agents/${encodeURIComponent(agent.agentName)}`,
         }));
 
-        return NextResponse.json({
+        const response = NextResponse.json({
             agents: agentsWithUrl,
             federatedServers,
         });
+
+        // Add CORS headers
+        response.headers.set('Access-Control-Allow-Origin', '*');
+        response.headers.set('Access-Control-Allow-Methods', 'GET, OPTIONS');
+        response.headers.set('Access-Control-Allow-Headers', 'Content-Type, Authorization');
+
+        return response;
     } catch (error) {
         console.error('Error fetching agents:', error);
-        return NextResponse.json(
-            { error: 'Failed to fetch agents' },
-            { status: 500 },
-        );
+        return NextResponse.json({ error: 'Failed to fetch agents' }, { status: 500 });
     }
 }
+
+export async function OPTIONS() {
+    const response = new NextResponse(null, { status: 200 });
+    response.headers.set('Access-Control-Allow-Origin', '*');
+    response.headers.set('Access-Control-Allow-Methods', 'GET, OPTIONS');
+    response.headers.set('Access-Control-Allow-Headers', 'Content-Type, Authorization');
+    return response;
+}

package/apps/agents-server/src/app/api/api-tokens/route.ts

@@ -0,0 +1,76 @@
+import { $getTableName } from '../../../database/$getTableName';
+import { $provideSupabase } from '../../../database/$provideSupabase';
+import { isUserAdmin } from '../../../utils/isUserAdmin';
+import { randomUUID } from 'crypto';
+import { NextRequest, NextResponse } from 'next/server';
+
+export async function GET(request: NextRequest) {
+    if (!(await isUserAdmin())) {
+        return NextResponse.json({ error: 'Unauthorized' }, { status: 401 });
+    }
+
+    const supabase = $provideSupabase();
+    const table = await $getTableName('ApiTokens');
+
+    const { data, error } = await supabase.from(table).select('*').order('createdAt', { ascending: false });
+
+    if (error) {
+        return NextResponse.json({ error: error.message }, { status: 500 });
+    }
+
+    return NextResponse.json(data);
+}
+
+export async function POST(request: NextRequest) {
+    if (!(await isUserAdmin())) {
+        return NextResponse.json({ error: 'Unauthorized' }, { status: 401 });
+    }
+
+    try {
+        const body = await request.json();
+        const { note } = body;
+
+        const token = `ptbk_${randomUUID().replace(/-/g, '')}`;
+
+        const supabase = $provideSupabase();
+        const table = await $getTableName('ApiTokens');
+
+        const { data, error } = await supabase
+            .from(table)
+            .insert({ token, note })
+            .select()
+            .single();
+
+        if (error) {
+            return NextResponse.json({ error: error.message }, { status: 500 });
+        }
+
+        return NextResponse.json(data);
+    } catch (e) {
+        return NextResponse.json({ error: 'Invalid request body' }, { status: 400 });
+    }
+}
+
+export async function DELETE(request: NextRequest) {
+    if (!(await isUserAdmin())) {
+        return NextResponse.json({ error: 'Unauthorized' }, { status: 401 });
+    }
+
+    const searchParams = request.nextUrl.searchParams;
+    const id = searchParams.get('id');
+
+    if (!id) {
+        return NextResponse.json({ error: 'ID is required' }, { status: 400 });
+    }
+
+    const supabase = $provideSupabase();
+    const table = await $getTableName('ApiTokens');
+
+    const { error } = await supabase.from(table).delete().eq('id', parseInt(id, 10));
+
+    if (error) {
+        return NextResponse.json({ error: error.message }, { status: 500 });
+    }
+
+    return NextResponse.json({ success: true });
+}

package/apps/agents-server/src/app/api/auth/login/route.ts

@@ -1,7 +1,4 @@
-import { $getTableName } from '@/src/database/$getTableName';
-import { $provideSupabaseForServer } from '../../../../database/$provideSupabaseForServer';
-import { AgentsServerDatabase } from '../../../../database/schema';
-import { verifyPassword } from '../../../../utils/auth';
+import { authenticateUser } from '../../../../utils/authenticateUser';
 import { setSession } from '../../../../utils/session';
 import { NextResponse } from 'next/server';
 
@@ -14,50 +11,15 @@ export async function POST(request: Request) {
             return NextResponse.json({ error: 'Username and password are required' }, { status: 400 });
         }
 
-        // 1. Check if it's the environment admin
-        if (process.env.ADMIN_PASSWORD && password === process.env.ADMIN_PASSWORD && username === 'admin') {
-             // Or maybe allow any username if password matches admin password? 
-             // The task says "process.env.ADMIN_PASSWORD is like one of the admin users"
-             // Assuming username 'admin' for environment password login.
-             await setSession({ username: 'admin', isAdmin: true });
-             return NextResponse.json({ success: true });
-        }
-        
-        // 2. Check DB users
-        const supabase = $provideSupabaseForServer();
-        const { data: user, error } = await supabase
-            .from(await $getTableName('User'))
-            .select('*')
-            .eq('username', username)
-            .single();
-
-        if (error || !user) {
-            // Check if password matches ADMIN_PASSWORD even if user doesn't exist?
-            // "The table User should work together with the process.env.ADMIN_PASSWORD"
-            // If the user enters a password that matches process.env.ADMIN_PASSWORD, should they get admin access regardless of username?
-            // "process.env.ADMIN_PASSWORD is like one of the admin users" implies it's a specific credential.
-            // Let's stick to: if username is 'admin' and password is ADMIN_PASSWORD, it works.
-            // Or if the password matches ADMIN_PASSWORD, maybe we grant admin access? 
-            // "Non-admin users can only log in... cannot see list of users"
-            
-            // Re-reading: "process.env.ADMIN_PASSWORD is like one of the admin users in the User table"
-            // This suggests it's treated as a user.
-            
-            // If I login with a valid user from DB, I check password hash.
-            // If I login with 'admin' and ADMIN_PASSWORD, I get admin.
+        const user = await authenticateUser(username, password);
 
+        if (user) {
+            await setSession(user);
+            return NextResponse.json({ success: true });
+        } else {
             return NextResponse.json({ error: 'Invalid credentials' }, { status: 401 });
         }
 
-        const isValid = await verifyPassword(password, (user as AgentsServerDatabase['public']['Tables']['User']['Row']).passwordHash);
-
-        if (!isValid) {
-             return NextResponse.json({ error: 'Invalid credentials' }, { status: 401 });
-        }
-
-        await setSession({ username: (user as AgentsServerDatabase['public']['Tables']['User']['Row']).username, isAdmin: (user as AgentsServerDatabase['public']['Tables']['User']['Row']).isAdmin });
-        return NextResponse.json({ success: true });
-
     } catch (error) {
         console.error('Login error:', error);
         return NextResponse.json({ error: 'Internal server error' }, { status: 500 });

package/apps/agents-server/src/app/api/chat-feedback/[id]/route.ts

@@ -0,0 +1,38 @@
+import { NextRequest, NextResponse } from 'next/server';
+import { $getTableName } from '../../../../database/$getTableName';
+import { $provideSupabase } from '../../../../database/$provideSupabase';
+import { isUserAdmin } from '../../../../utils/isUserAdmin';
+
+/**
+ * Delete a single chat feedback entry by ID.
+ */
+export async function DELETE(request: NextRequest, context: { params: Promise<{ id: string }> }) {
+    if (!(await isUserAdmin())) {
+        return NextResponse.json({ error: 'Unauthorized' }, { status: 401 });
+    }
+
+
+    const rawId = (await context.params).id;
+    const id = Number.parseInt(rawId, 10);
+
+    if (!Number.isFinite(id) || id <= 0) {
+        return NextResponse.json({ error: 'Invalid id' }, { status: 400 });
+    }
+
+    try {
+        const supabase = $provideSupabase();
+        const table = await $getTableName('ChatFeedback');
+
+        const { error } = await supabase.from(table).delete().eq('id', id);
+
+        if (error) {
+            console.error('Delete chat feedback row error:', error);
+            return NextResponse.json({ error: 'Internal server error' }, { status: 500 });
+        }
+
+        return NextResponse.json({ success: true });
+    } catch (error) {
+        console.error('Delete chat feedback row error:', error);
+        return NextResponse.json({ error: 'Internal server error' }, { status: 500 });
+    }
+}

package/apps/agents-server/src/app/api/chat-feedback/route.ts

@@ -0,0 +1,157 @@
+import { NextRequest, NextResponse } from 'next/server';
+import { $getTableName } from '../../../database/$getTableName';
+import { $provideSupabase } from '../../../database/$provideSupabase';
+import { isUserAdmin } from '../../../utils/isUserAdmin';
+
+const DEFAULT_PAGE_SIZE = 20;
+const MAX_PAGE_SIZE = 100;
+
+type SortField = 'createdAt' | 'agentName' | 'id';
+type SortOrder = 'asc' | 'desc';
+
+function parsePositiveInt(value: string | null, fallback: number): number {
+    if (!value) return fallback;
+    const parsed = parseInt(value, 10);
+    if (Number.isNaN(parsed) || parsed <= 0) return fallback;
+    return parsed;
+}
+
+function parseSortField(value: string | null): SortField {
+    if (value === 'agentName' || value === 'id') return value;
+    return 'createdAt';
+}
+
+function parseSortOrder(value: string | null): SortOrder {
+    return value === 'asc' ? 'asc' : 'desc';
+}
+
+/**
+ * List chat feedback with filters, search and pagination.
+ *
+ * Query params:
+ * - page: number (1-based)
+ * - pageSize: number (items per page)
+ * - agentName: filter by agent name
+ * - search: free-text search across agentName, url, ip, textRating, userNote and expectedAnswer
+ * - sortBy: createdAt | agentName | id (default: createdAt)
+ * - sortOrder: asc | desc (default: desc)
+ */
+export async function GET(request: NextRequest) {
+    if (!(await isUserAdmin())) {
+        return NextResponse.json({ error: 'Unauthorized' }, { status: 401 });
+    }
+
+    try {
+        const searchParams = request.nextUrl.searchParams;
+
+        const page = parsePositiveInt(searchParams.get('page'), 1);
+        const pageSize = Math.min(
+            MAX_PAGE_SIZE,
+            parsePositiveInt(searchParams.get('pageSize'), DEFAULT_PAGE_SIZE),
+        );
+        const agentName = searchParams.get('agentName');
+        const search = searchParams.get('search')?.trim() || '';
+        const sortBy = parseSortField(searchParams.get('sortBy'));
+        const sortOrder = parseSortOrder(searchParams.get('sortOrder'));
+
+        const supabase = $provideSupabase();
+        const table = await $getTableName('ChatFeedback');
+
+        let query = supabase
+            .from(table)
+            .select('*', { count: 'exact' });
+
+        if (agentName) {
+            query = query.eq('agentName', agentName);
+        }
+
+        if (search) {
+            // Note: We intentionally limit search to simple text columns
+            // to keep the query portable and efficient.
+            //
+            // This searches across:
+            // - agentName
+            // - url
+            // - ip
+            // - textRating
+            // - userNote
+            // - expectedAnswer
+            const escaped = search.replace(/%/g, '\\%').replace(/_/g, '\\_');
+            query = query.or(
+                [
+                    `agentName.ilike.%${escaped}%`,
+                    `url.ilike.%${escaped}%`,
+                    `ip.ilike.%${escaped}%`,
+                    `textRating.ilike.%${escaped}%`,
+                    `userNote.ilike.%${escaped}%`,
+                    `expectedAnswer.ilike.%${escaped}%`,
+                ].join(','),
+            );
+        }
+
+        query = query.order(sortBy, { ascending: sortOrder === 'asc' });
+
+        const from = (page - 1) * pageSize;
+        const to = from + pageSize - 1;
+
+        query = query.range(from, to);
+
+        const { data, error, count } = await query;
+
+        if (error) {
+            console.error('List chat feedback error:', error);
+            return NextResponse.json({ error: 'Internal server error' }, { status: 500 });
+        }
+
+        return NextResponse.json({
+            items: data ?? [],
+            total: count ?? 0,
+            page,
+            pageSize,
+            sortBy,
+            sortOrder,
+        });
+    } catch (error) {
+        console.error('List chat feedback error:', error);
+        return NextResponse.json({ error: 'Internal server error' }, { status: 500 });
+    }
+}
+
+/**
+ * Delete chat feedback for a specific agent.
+ *
+ * Query params:
+ * - agentName: name of the agent whose feedback should be removed
+ */
+export async function DELETE(request: NextRequest) {
+    if (!(await isUserAdmin())) {
+        return NextResponse.json({ error: 'Unauthorized' }, { status: 401 });
+    }
+
+    const searchParams = request.nextUrl.searchParams;
+    const agentName = searchParams.get('agentName');
+
+    if (!agentName) {
+        return NextResponse.json({ error: 'agentName is required' }, { status: 400 });
+    }
+
+    try {
+        const supabase = $provideSupabase();
+        const table = await $getTableName('ChatFeedback');
+
+        const { error } = await supabase
+            .from(table)
+            .delete()
+            .eq('agentName', agentName);
+
+        if (error) {
+            console.error('Clear chat feedback error:', error);
+            return NextResponse.json({ error: 'Internal server error' }, { status: 500 });
+        }
+
+        return NextResponse.json({ success: true });
+    } catch (error) {
+        console.error('Clear chat feedback error:', error);
+        return NextResponse.json({ error: 'Internal server error' }, { status: 500 });
+    }
+}

package/apps/agents-server/src/app/api/chat-history/[id]/route.ts

@@ -0,0 +1,37 @@
+import { NextRequest, NextResponse } from 'next/server';
+import { $getTableName } from '../../../../database/$getTableName';
+import { $provideSupabase } from '../../../../database/$provideSupabase';
+import { isUserAdmin } from '../../../../utils/isUserAdmin';
+
+/**
+ * Delete a single chat history entry by ID.
+ */
+export async function DELETE(request: NextRequest, context: { params: Promise<{ id: string }> }) {
+    if (!(await isUserAdmin())) {
+        return NextResponse.json({ error: 'Unauthorized' }, { status: 401 });
+    }
+
+    const rawId = (await context.params).id;
+    const id = Number.parseInt(rawId, 10);
+
+    if (!Number.isFinite(id) || id <= 0) {
+        return NextResponse.json({ error: 'Invalid id' }, { status: 400 });
+    }
+
+    try {
+        const supabase = $provideSupabase();
+        const table = await $getTableName('ChatHistory');
+
+        const { error } = await supabase.from(table).delete().eq('id', id);
+
+        if (error) {
+            console.error('Delete chat history row error:', error);
+            return NextResponse.json({ error: 'Internal server error' }, { status: 500 });
+        }
+
+        return NextResponse.json({ success: true });
+    } catch (error) {
+        console.error('Delete chat history row error:', error);
+        return NextResponse.json({ error: 'Internal server error' }, { status: 500 });
+    }
+}