npm - @realtimex/folio - Versions diffs - 0.1.2 - Mend

@realtimex/folio 0.1.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (163) hide show

package/.env.example +20 -0
package/README.md +63 -0
package/api/server.ts +130 -0
package/api/src/config/index.ts +96 -0
package/api/src/middleware/auth.ts +128 -0
package/api/src/middleware/errorHandler.ts +88 -0
package/api/src/middleware/index.ts +4 -0
package/api/src/middleware/rateLimit.ts +71 -0
package/api/src/middleware/validation.ts +58 -0
package/api/src/routes/accounts.ts +142 -0
package/api/src/routes/baseline-config.ts +124 -0
package/api/src/routes/chat.ts +154 -0
package/api/src/routes/health.ts +61 -0
package/api/src/routes/index.ts +35 -0
package/api/src/routes/ingestions.ts +275 -0
package/api/src/routes/migrate.ts +112 -0
package/api/src/routes/policies.ts +121 -0
package/api/src/routes/processing.ts +90 -0
package/api/src/routes/rules.ts +11 -0
package/api/src/routes/sdk.ts +100 -0
package/api/src/routes/settings.ts +80 -0
package/api/src/routes/setup.ts +389 -0
package/api/src/routes/stats.ts +81 -0
package/api/src/routes/tts.ts +190 -0
package/api/src/services/BaselineConfigService.ts +208 -0
package/api/src/services/ChatService.ts +204 -0
package/api/src/services/GoogleDriveService.ts +331 -0
package/api/src/services/GoogleSheetsService.ts +1107 -0
package/api/src/services/IngestionService.ts +1187 -0
package/api/src/services/ModelCapabilityService.ts +248 -0
package/api/src/services/PolicyEngine.ts +1625 -0
package/api/src/services/PolicyLearningService.ts +527 -0
package/api/src/services/PolicyLoader.ts +249 -0
package/api/src/services/RAGService.ts +391 -0
package/api/src/services/SDKService.ts +249 -0
package/api/src/services/supabase.ts +113 -0
package/api/src/utils/Actuator.ts +284 -0
package/api/src/utils/actions/ActionHandler.ts +34 -0
package/api/src/utils/actions/AppendToGSheetAction.ts +260 -0
package/api/src/utils/actions/AutoRenameAction.ts +58 -0
package/api/src/utils/actions/CopyAction.ts +120 -0
package/api/src/utils/actions/CopyToGDriveAction.ts +64 -0
package/api/src/utils/actions/LogCsvAction.ts +48 -0
package/api/src/utils/actions/NotifyAction.ts +39 -0
package/api/src/utils/actions/RenameAction.ts +57 -0
package/api/src/utils/actions/WebhookAction.ts +58 -0
package/api/src/utils/actions/utils.ts +293 -0
package/api/src/utils/llmResponse.ts +61 -0
package/api/src/utils/logger.ts +67 -0
package/bin/folio-deploy.js +12 -0
package/bin/folio-setup.js +45 -0
package/bin/folio.js +65 -0
package/dist/api/server.js +106 -0
package/dist/api/src/config/index.js +81 -0
package/dist/api/src/middleware/auth.js +93 -0
package/dist/api/src/middleware/errorHandler.js +73 -0
package/dist/api/src/middleware/index.js +4 -0
package/dist/api/src/middleware/rateLimit.js +43 -0
package/dist/api/src/middleware/validation.js +54 -0
package/dist/api/src/routes/accounts.js +110 -0
package/dist/api/src/routes/baseline-config.js +91 -0
package/dist/api/src/routes/chat.js +114 -0
package/dist/api/src/routes/health.js +52 -0
package/dist/api/src/routes/index.js +31 -0
package/dist/api/src/routes/ingestions.js +207 -0
package/dist/api/src/routes/migrate.js +91 -0
package/dist/api/src/routes/policies.js +86 -0
package/dist/api/src/routes/processing.js +75 -0
package/dist/api/src/routes/rules.js +8 -0
package/dist/api/src/routes/sdk.js +80 -0
package/dist/api/src/routes/settings.js +68 -0
package/dist/api/src/routes/setup.js +315 -0
package/dist/api/src/routes/stats.js +62 -0
package/dist/api/src/routes/tts.js +178 -0
package/dist/api/src/services/BaselineConfigService.js +168 -0
package/dist/api/src/services/ChatService.js +166 -0
package/dist/api/src/services/GoogleDriveService.js +280 -0
package/dist/api/src/services/GoogleSheetsService.js +795 -0
package/dist/api/src/services/IngestionService.js +990 -0
package/dist/api/src/services/ModelCapabilityService.js +179 -0
package/dist/api/src/services/PolicyEngine.js +1353 -0
package/dist/api/src/services/PolicyLearningService.js +397 -0
package/dist/api/src/services/PolicyLoader.js +159 -0
package/dist/api/src/services/RAGService.js +295 -0
package/dist/api/src/services/SDKService.js +212 -0
package/dist/api/src/services/supabase.js +72 -0
package/dist/api/src/utils/Actuator.js +225 -0
package/dist/api/src/utils/actions/ActionHandler.js +1 -0
package/dist/api/src/utils/actions/AppendToGSheetAction.js +191 -0
package/dist/api/src/utils/actions/AutoRenameAction.js +49 -0
package/dist/api/src/utils/actions/CopyAction.js +112 -0
package/dist/api/src/utils/actions/CopyToGDriveAction.js +55 -0
package/dist/api/src/utils/actions/LogCsvAction.js +42 -0
package/dist/api/src/utils/actions/NotifyAction.js +32 -0
package/dist/api/src/utils/actions/RenameAction.js +51 -0
package/dist/api/src/utils/actions/WebhookAction.js +51 -0
package/dist/api/src/utils/actions/utils.js +237 -0
package/dist/api/src/utils/llmResponse.js +63 -0
package/dist/api/src/utils/logger.js +51 -0
package/dist/assets/index-DzN8-j-e.css +1 -0
package/dist/assets/index-Uy-ai3Dh.js +113 -0
package/dist/favicon.svg +31 -0
package/dist/folio-logo.svg +46 -0
package/dist/index.html +14 -0
package/docs-dev/FPE-spec.md +196 -0
package/docs-dev/folio-prd.md +47 -0
package/docs-dev/foundation-checklist.md +30 -0
package/docs-dev/hybrid-routing-architecture.md +205 -0
package/docs-dev/ingestion-engine.md +69 -0
package/docs-dev/port-from-email-automator.md +32 -0
package/docs-dev/tech-spec.md +98 -0
package/index.html +13 -0
package/package.json +101 -0
package/public/favicon.svg +31 -0
package/public/folio-logo.svg +46 -0
package/scripts/dev-task.mjs +51 -0
package/scripts/get-latest-migration-timestamp.mjs +34 -0
package/scripts/migrate.sh +91 -0
package/supabase/.temp/cli-latest +1 -0
package/supabase/.temp/gotrue-version +1 -0
package/supabase/.temp/pooler-url +1 -0
package/supabase/.temp/postgres-version +1 -0
package/supabase/.temp/project-ref +1 -0
package/supabase/.temp/rest-version +1 -0
package/supabase/.temp/storage-migration +1 -0
package/supabase/.temp/storage-version +1 -0
package/supabase/config.toml +64 -0
package/supabase/functions/_shared/auth.ts +35 -0
package/supabase/functions/_shared/cors.ts +12 -0
package/supabase/functions/_shared/supabaseAdmin.ts +17 -0
package/supabase/functions/api-v1-settings/index.ts +66 -0
package/supabase/functions/setup/index.ts +91 -0
package/supabase/migrations/20260223000000_initial_foundation.sql +136 -0
package/supabase/migrations/20260223000001_add_migration_rpc.sql +10 -0
package/supabase/migrations/20260224000002_add_init_state_view.sql +20 -0
package/supabase/migrations/20260224000003_port_user_creation_parity.sql +139 -0
package/supabase/migrations/20260224000004_add_avatars_storage.sql +26 -0
package/supabase/migrations/20260224000005_add_tts_and_embed_settings.sql +24 -0
package/supabase/migrations/20260224000006_add_policies_table.sql +48 -0
package/supabase/migrations/20260224000007_fix_migration_rpc.sql +9 -0
package/supabase/migrations/20260224000008_add_ingestions_table.sql +42 -0
package/supabase/migrations/20260225000000_setup_compatible_mode.sql +119 -0
package/supabase/migrations/20260225000001_restore_ingestions.sql +49 -0
package/supabase/migrations/20260225000002_add_ingestion_trace.sql +2 -0
package/supabase/migrations/20260225000003_add_baseline_configs.sql +35 -0
package/supabase/migrations/20260226000000_add_processing_events.sql +26 -0
package/supabase/migrations/20260226000001_add_ingestion_file_hash.sql +10 -0
package/supabase/migrations/20260226000002_add_dynamic_rag.sql +150 -0
package/supabase/migrations/20260226000003_add_ingestion_summary.sql +4 -0
package/supabase/migrations/20260226000004_add_ingestion_tags.sql +7 -0
package/supabase/migrations/20260226000005_add_chat_tables.sql +60 -0
package/supabase/migrations/20260227000000_harden_chat_messages_rls.sql +25 -0
package/supabase/migrations/20260228000000_add_vision_model_capabilities.sql +8 -0
package/supabase/migrations/20260228000001_add_policy_match_feedback.sql +51 -0
package/supabase/migrations/29991231235959_test_migration.sql +0 -0
package/supabase/templates/confirmation.html +76 -0
package/supabase/templates/email-change.html +76 -0
package/supabase/templates/invite.html +72 -0
package/supabase/templates/magic-link.html +68 -0
package/supabase/templates/recovery.html +82 -0
package/tsconfig.api.json +16 -0
package/tsconfig.json +25 -0
package/vite.config.ts +146 -0

package/dist/api/src/services/GoogleDriveService.js ADDED Viewed

@@ -0,0 +1,280 @@
+import { getServiceRoleSupabase } from "./supabase.js";
+import { createLogger } from "../utils/logger.js";
+import fs from "node:fs";
+import path from "node:path";
+const logger = createLogger("GoogleDriveService");
+function parseCredentials(value) {
+    if (!value || typeof value !== "object") {
+        return {};
+    }
+    const record = value;
+    return {
+        access_token: typeof record.access_token === "string" ? record.access_token : undefined,
+        refresh_token: typeof record.refresh_token === "string" ? record.refresh_token : undefined,
+        expires_at: typeof record.expires_at === "number" ? record.expires_at : undefined,
+        client_id: typeof record.client_id === "string" ? record.client_id : undefined,
+        client_secret: typeof record.client_secret === "string" ? record.client_secret : undefined,
+    };
+}
+export class GoogleDriveService {
+    /**
+     * Walks a slash-separated sub-path under a root Drive folder, creating any
+     * missing folders along the way, and returns the final folder ID.
+     *
+     * e.g. resolveFolderPath(token, "rootId", ["Utilities", "PGE", "Energy Statements"])
+     *      → ID of "Energy Statements" folder (created if absent)
+     */
+    static async resolveFolderPath(token, rootFolderId, subSegments) {
+        let parentId = rootFolderId;
+        for (const segment of subSegments) {
+            const name = segment.trim();
+            if (!name)
+                continue;
+            // Search for an existing folder with this name under the current parent.
+            const q = `name='${name.replace(/'/g, "\\'")}' and mimeType='application/vnd.google-apps.folder' and '${parentId}' in parents and trashed=false`;
+            const searchResp = await fetch(`https://www.googleapis.com/drive/v3/files?q=${encodeURIComponent(q)}&fields=files(id)&spaces=drive`, { headers: { Authorization: `Bearer ${token}` } });
+            if (!searchResp.ok) {
+                throw new Error(`Drive folder search failed: HTTP ${searchResp.status}`);
+            }
+            const { files } = await searchResp.json();
+            if (files && files.length > 0) {
+                parentId = files[0].id;
+            }
+            else {
+                // Folder doesn't exist — create it.
+                const createResp = await fetch("https://www.googleapis.com/drive/v3/files", {
+                    method: "POST",
+                    headers: {
+                        Authorization: `Bearer ${token}`,
+                        "Content-Type": "application/json",
+                    },
+                    body: JSON.stringify({
+                        name,
+                        mimeType: "application/vnd.google-apps.folder",
+                        parents: [parentId],
+                    }),
+                });
+                if (!createResp.ok) {
+                    throw new Error(`Drive folder creation failed for '${name}': HTTP ${createResp.status}`);
+                }
+                const { id } = await createResp.json();
+                if (!id)
+                    throw new Error(`Folder '${name}' was created but Drive returned no ID.`);
+                logger.info(`Created Drive folder '${name}' (${id}) under parent ${parentId}`);
+                parentId = id;
+            }
+        }
+        return parentId;
+    }
+    /**
+     * Uploads a local file to a user's connected Google Drive.
+     * Handles automatic token refreshment if the access_token has expired.
+     *
+     * `folderPath` can be:
+     *   - undefined / empty  → upload to My Drive root
+     *   - a bare folder ID   → upload directly into that folder
+     *   - "rootId/Sub/Path"  → resolve (and auto-create) the subfolder hierarchy,
+     *                          then upload into the deepest folder
+     */
+    static async uploadFile(userId, localFilePath, folderId, supabaseClient, fileName) {
+        logger.info(`Initiating Google Drive upload for user ${userId}: ${localFilePath}`);
+        const supabase = supabaseClient ?? getServiceRoleSupabase();
+        if (!supabase) {
+            return { success: false, error: "System error: Supabase client unavailable." };
+        }
+        let fileStat;
+        try {
+            fileStat = await fs.promises.stat(localFilePath);
+            if (!fileStat.isFile()) {
+                return { success: false, error: "Source path is not a file." };
+            }
+        }
+        catch {
+            return { success: false, error: "Source file not found." };
+        }
+        // 1. Fetch Integration
+        const { data: integration, error } = await supabase
+            .from("integrations")
+            .select("*")
+            .eq("user_id", userId)
+            .eq("provider", "google_drive")
+            .single();
+        if (error || !integration) {
+            return { success: false, error: "Google Drive is not securely connected for this user." };
+        }
+        const credentials = parseCredentials(integration.credentials);
+        let accessToken = credentials.access_token;
+        const clientId = credentials.client_id;
+        const clientSecret = credentials.client_secret;
+        const refreshToken = credentials.refresh_token;
+        if (!accessToken) {
+            return { success: false, error: "Google Drive credentials are incomplete. Please reconnect the drive." };
+        }
+        // 2. Proactively refresh the token if it is expired or expires within 60 s.
+        // This must happen before any Drive API calls (folder resolution, upload initiation).
+        const tokenIsStale = credentials.expires_at && Date.now() >= credentials.expires_at - 60_000;
+        if (tokenIsStale && refreshToken && clientId && clientSecret) {
+            logger.info("Google Drive token is stale, refreshing before Drive API calls...");
+            try {
+                const tokenResp = await fetch("https://oauth2.googleapis.com/token", {
+                    method: "POST",
+                    headers: { "Content-Type": "application/x-www-form-urlencoded" },
+                    body: new URLSearchParams({
+                        client_id: clientId,
+                        client_secret: clientSecret,
+                        refresh_token: refreshToken,
+                        grant_type: "refresh_token",
+                    }),
+                });
+                if (!tokenResp.ok) {
+                    return { success: false, error: "Google Drive authentication expired and could not be refreshed. Please reconnect the drive." };
+                }
+                const tokenData = await tokenResp.json();
+                if (!tokenData?.access_token) {
+                    return { success: false, error: "Google OAuth token response was invalid." };
+                }
+                accessToken = tokenData.access_token;
+                const updatedCredentials = {
+                    ...credentials,
+                    access_token: accessToken,
+                    ...(typeof tokenData.refresh_token === "string" && tokenData.refresh_token
+                        ? { refresh_token: tokenData.refresh_token }
+                        : {}),
+                    ...(typeof tokenData.expires_in === "number"
+                        ? { expires_at: Date.now() + tokenData.expires_in * 1000 }
+                        : {}),
+                };
+                await supabase.from("integrations").update({
+                    credentials: updatedCredentials,
+                    updated_at: new Date().toISOString(),
+                }).eq("id", integration.id);
+            }
+            catch (refreshErr) {
+                logger.error("Proactive token refresh failed", { error: refreshErr });
+                return { success: false, error: "Failed to communicate with Google Auth server." };
+            }
+        }
+        // 3. Resolve subfolder path (auto-creates missing folders).
+        // folderPath may be "rootId", "rootId/Sub/Folder", or undefined.
+        // Drive folder IDs are stable across token refreshes so we resolve once.
+        let resolvedFolderId;
+        if (folderId && folderId.trim().length > 0) {
+            const parts = folderId.trim().split("/");
+            const rootId = parts[0];
+            const subSegments = parts.slice(1);
+            try {
+                resolvedFolderId = subSegments.length > 0
+                    ? await GoogleDriveService.resolveFolderPath(accessToken, rootId, subSegments)
+                    : rootId;
+            }
+            catch (pathErr) {
+                const msg = pathErr instanceof Error ? pathErr.message : String(pathErr);
+                return { success: false, error: `Failed to resolve Drive folder path: ${msg}` };
+            }
+        }
+        // 4. Perform upload (optimistic; catches 401 as a last-resort fallback).
+        const performUpload = async (token) => {
+            const resolvedFileName = fileName ?? path.basename(localFilePath);
+            const mimeType = "application/octet-stream";
+            const metadata = { name: resolvedFileName };
+            if (resolvedFolderId) {
+                metadata.parents = [resolvedFolderId];
+            }
+            // Resumable upload avoids buffering/base64 encoding the full file in memory.
+            const startResponse = await fetch("https://www.googleapis.com/upload/drive/v3/files?uploadType=resumable", {
+                method: "POST",
+                headers: {
+                    Authorization: `Bearer ${token}`,
+                    "Content-Type": "application/json; charset=UTF-8",
+                    "X-Upload-Content-Type": mimeType,
+                    "X-Upload-Content-Length": String(fileStat.size),
+                },
+                body: JSON.stringify(metadata),
+            });
+            if (!startResponse.ok) {
+                return startResponse;
+            }
+            const uploadUrl = startResponse.headers.get("location");
+            if (!uploadUrl) {
+                throw new Error("Google Drive did not return an upload URL.");
+            }
+            const contentRange = fileStat.size === 0
+                ? `bytes */${fileStat.size}`
+                : `bytes 0-${fileStat.size - 1}/${fileStat.size}`;
+            // duplex: "half" is required by Node.js fetch when the request body is a stream.
+            const uploadRequest = {
+                method: "PUT",
+                headers: {
+                    Authorization: `Bearer ${token}`,
+                    "Content-Type": mimeType,
+                    "Content-Length": String(fileStat.size),
+                    "Content-Range": contentRange,
+                },
+                body: fs.createReadStream(localFilePath),
+                duplex: "half",
+            };
+            return fetch(uploadUrl, uploadRequest);
+        };
+        let response = await performUpload(accessToken);
+        // 5. Handle Token Expiry (last-resort retry if upload still returns 401)
+        if (response.status === 401 && refreshToken && clientId && clientSecret) {
+            logger.info("Google Drive token expired, attempting refresh...");
+            try {
+                const tokenResp = await fetch("https://oauth2.googleapis.com/token", {
+                    method: "POST",
+                    headers: { "Content-Type": "application/x-www-form-urlencoded" },
+                    body: new URLSearchParams({
+                        client_id: clientId,
+                        client_secret: clientSecret,
+                        refresh_token: refreshToken,
+                        grant_type: "refresh_token"
+                    })
+                });
+                if (tokenResp.ok) {
+                    const tokenData = await tokenResp.json();
+                    if (!tokenData?.access_token) {
+                        return { success: false, error: "Google OAuth token response was invalid." };
+                    }
+                    const refreshedAccessToken = tokenData.access_token;
+                    accessToken = refreshedAccessToken;
+                    const updatedCredentials = {
+                        ...credentials,
+                        access_token: accessToken,
+                    };
+                    if (typeof tokenData.refresh_token === "string" && tokenData.refresh_token) {
+                        updatedCredentials.refresh_token = tokenData.refresh_token;
+                    }
+                    if (typeof tokenData.expires_in === "number") {
+                        updatedCredentials.expires_at = Date.now() + tokenData.expires_in * 1000;
+                    }
+                    // Transparently save refreshed credentials.
+                    await supabase.from("integrations").update({
+                        credentials: updatedCredentials,
+                        updated_at: new Date().toISOString()
+                    }).eq("id", integration.id);
+                    // Retry Upload
+                    logger.info("Retrying Google Drive upload with fresh token...");
+                    response = await performUpload(refreshedAccessToken);
+                }
+                else {
+                    return { success: false, error: "Google Drive authentication expired and could not be refreshed. Please reconnect the drive." };
+                }
+            }
+            catch (authErr) {
+                logger.error("Failed to refresh Google Drive token", { error: authErr });
+                return { success: false, error: "Failed to communicate with Google Auth server." };
+            }
+        }
+        if (!response.ok) {
+            const errorBody = await response.text();
+            logger.error("Google Drive API rejected upload", { status: response.status, body: errorBody });
+            return { success: false, error: `Upload failed: HTTP ${response.status}.` };
+        }
+        const responseData = await response.json();
+        if (!responseData.id) {
+            return { success: false, error: "Google Drive upload succeeded but no file ID was returned." };
+        }
+        logger.info(`Successfully uploaded file to Google Drive: ${responseData.id}`);
+        return { success: true, fileId: responseData.id };
+    }
+}