@tangle-network/agent-app 0.12.0 → 0.13.0

package/dist/model-BHLN208Z.d.ts

@@ -0,0 +1,183 @@
+/**
+ * Design-canvas scene model — the product-agnostic document behind the visual
+ * asset editor. A document is an ordered list of pages; a page is an ordered
+ * list of elements (index order IS z-order, bottom→top); every element is a
+ * typed node with a closed attribute vocabulary. The whole document
+ * serializes as one JSON value and persists atomically with a revision
+ * counter (see ./store) — every canvas action is a durable operation against
+ * this schema, which is what makes the canvas automatable: agents and
+ * external data sources mutate the same document the editor renders.
+ *
+ * Units are CSS pixels throughout; `settings.dpi` carries the print
+ * conversion factor for bleed/trim-aware exports. Angles are degrees.
+ * Nothing here touches Konva, React, or a database.
+ */
+declare const SCENE_SCHEMA_VERSION = 1;
+interface SceneDocument {
+    schemaVersion: typeof SCENE_SCHEMA_VERSION;
+    title: string;
+    pages: ScenePage[];
+    settings: SceneSettings;
+    metadata: Record<string, unknown>;
+}
+interface SceneSettings {
+    /** Print conversion factor for mm↔px math at export; 96 = CSS default. */
+    dpi: number;
+}
+/** Per-side bleed extents in px, drawn OUTSIDE the page bounds. Trim = the
+ *  page rect itself; exports may include or exclude the bleed area. */
+interface PageBleed {
+    top: number;
+    right: number;
+    bottom: number;
+    left: number;
+}
+/** Saved ruler guides, in page coordinates. */
+interface PageGuides {
+    vertical: number[];
+    horizontal: number[];
+}
+interface ScenePage {
+    id: string;
+    name: string;
+    width: number;
+    height: number;
+    /** Page background fill (color string); elements paint over it. */
+    background: string;
+    bleed: PageBleed | null;
+    guides: PageGuides;
+    elements: SceneElement[];
+}
+/** Attributes every element carries. `x`/`y` are the element's top-left in
+ *  page coordinates (for `group`, children are relative to the group origin).
+ *  `slot` names a template binding point — `apply_data` targets it. */
+interface SceneElementBase {
+    id: string;
+    name: string;
+    x: number;
+    y: number;
+    /** Degrees, clockwise, about the element's top-left origin (Konva default). */
+    rotation: number;
+    /** 0..1 */
+    opacity: number;
+    locked: boolean;
+    visible: boolean;
+    slot?: string;
+}
+interface RectElement extends SceneElementBase {
+    kind: 'rect';
+    width: number;
+    height: number;
+    fill: string;
+    stroke?: string;
+    strokeWidth?: number;
+    cornerRadius?: number;
+}
+interface EllipseElement extends SceneElementBase {
+    kind: 'ellipse';
+    width: number;
+    height: number;
+    fill: string;
+    stroke?: string;
+    strokeWidth?: number;
+}
+interface LineElement extends SceneElementBase {
+    kind: 'line';
+    /** Flat [x0, y0, x1, y1, ...] relative to (x, y); ≥ 2 points. */
+    points: number[];
+    stroke: string;
+    strokeWidth: number;
+    dash?: number[];
+}
+interface TextElement extends SceneElementBase {
+    kind: 'text';
+    text: string;
+    /** Wrap width; height derives from content. */
+    width: number;
+    fontFamily: string;
+    fontSize: number;
+    fontStyle: 'normal' | 'bold' | 'italic' | 'bold italic';
+    fill: string;
+    align: 'left' | 'center' | 'right';
+    lineHeight: number;
+    letterSpacing: number;
+}
+interface ImageElement extends SceneElementBase {
+    kind: 'image';
+    width: number;
+    height: number;
+    /** http(s) or rooted /api/ path — same boundary rule as sequences media. */
+    src: string;
+    /** How the source maps into the frame; 'fill' stretches, 'cover' crops. */
+    fit: 'fill' | 'cover' | 'contain';
+}
+/** Video placed on a canvas renders and exports as its poster frame — motion
+ *  belongs to the sequences surface; this keeps video assets placeable in
+ *  static layouts (e.g. a thumbnail mock) without a playback engine. */
+interface VideoElement extends SceneElementBase {
+    kind: 'video';
+    width: number;
+    height: number;
+    src: string;
+    posterSrc?: string;
+}
+interface GroupElement extends SceneElementBase {
+    kind: 'group';
+    children: SceneElement[];
+}
+type SceneElement = RectElement | EllipseElement | LineElement | TextElement | ImageElement | VideoElement | GroupElement;
+type SceneElementKind = SceneElement['kind'];
+declare const SCENE_ELEMENT_KINDS: readonly SceneElementKind[];
+interface Bounds {
+    x: number;
+    y: number;
+    width: number;
+    height: number;
+}
+/** Unrotated local extent of an element (line/group derive from content). */
+declare function elementExtent(element: SceneElement): {
+    width: number;
+    height: number;
+};
+declare function estimateTextHeight(element: Pick<TextElement, 'text' | 'fontSize' | 'lineHeight'>): number;
+/** Axis-aligned bounding box in the parent's coordinate space, accounting for
+ *  rotation about the element's top-left origin. */
+declare function elementAabb(element: SceneElement): Bounds;
+declare function boundsIntersect(a: Bounds, b: Bounds): boolean;
+declare function requirePage(document: SceneDocument, pageId: string): ScenePage;
+/** Depth-first search across a page including group children. Returns the
+ *  element and the array that owns it (page.elements or a group's children),
+ *  so callers can splice in place. */
+declare function findElement(page: ScenePage, elementId: string): {
+    element: SceneElement;
+    owner: SceneElement[];
+    index: number;
+} | null;
+declare function requireElement(page: ScenePage, elementId: string): {
+    element: SceneElement;
+    owner: SceneElement[];
+    index: number;
+};
+/** All slot names declared across the document — the template's fillable
+ *  surface. Duplicate slot names are a validation error (see ./validate). */
+declare function collectSlots(document: SceneDocument): Map<string, {
+    pageId: string;
+    elementId: string;
+    kind: SceneElementKind;
+}>;
+interface NewPageOptions {
+    name?: string;
+    width?: number;
+    height?: number;
+    background?: string;
+}
+declare function createEmptyDocument(title: string, page?: NewPageOptions): SceneDocument;
+declare function createPage(options: NewPageOptions, id: string): ScenePage;
+declare function assertPositiveFinite(value: number, label: string): void;
+declare function assertFinite(value: number, label: string): void;
+declare function assertColor(value: string, label: string): void;
+/** Media boundary rule shared with sequences: remote http(s) or a rooted
+ *  /api/ path — never sandbox-local files or data: blobs. */
+declare function assertSceneMediaSrc(value: string, label: string): void;
+
+export { type Bounds as B, type EllipseElement as E, type GroupElement as G, type ImageElement as I, type LineElement as L, type NewPageOptions as N, type PageBleed as P, type RectElement as R, SCENE_ELEMENT_KINDS as S, type TextElement as T, type VideoElement as V, type PageGuides as a, SCENE_SCHEMA_VERSION as b, type SceneDocument as c, type SceneElement as d, type SceneElementBase as e, type SceneElementKind as f, type ScenePage as g, type SceneSettings as h, assertColor as i, assertFinite as j, assertPositiveFinite as k, assertSceneMediaSrc as l, boundsIntersect as m, collectSlots as n, createEmptyDocument as o, createPage as p, elementAabb as q, elementExtent as r, estimateTextHeight as s, findElement as t, requireElement as u, requirePage as v };

package/dist/sequences/index.d.ts

@@ -276,6 +276,10 @@ declare function findSequenceMcpTool(name: string): SequenceMcpToolDefinition |
  * execution failures (argument shape, validation, store throws) become
  * `isError` tool results carrying the thrown message verbatim so the model can
  * read WHY and retry; only protocol-level misuse becomes a JSON-RPC error.
+ *
+ * The envelope (JSON-RPC framing, initialize/ping/tools/list/tools/call,
+ * notification 202, -32601) lives in {@link createMcpToolHandler}; this module
+ * is a thin adapter wiring the sequences tool list + playhead env.
  */
 
 /** Newest first. The handler echoes the client's requested version when

package/dist/sequences/index.js

@@ -41,7 +41,7 @@ import {
   validateSetClipText,
   validateSplitClip,
   validateTrimClip
-} from "../chunk-3WAJWYKD.js";
+} from "../chunk-6UOE5CTA.js";
 import {
   MIN_SEQUENCE_CLIP_FRAMES,
   assertClipFitsSequence,
@@ -55,7 +55,7 @@ import {
   snapshotFrame,
   trackIntervals
 } from "../chunk-ZYBWGSAZ.js";
-import "../chunk-IJZJWKUK.js";
+import "../chunk-A76ZHWNF.js";
 export {
   DEFAULT_SEQUENCES_MCP_DESCRIPTION,
   MAX_CAPTION_BATCH,

package/dist/store-CUStmtdH.d.ts

@@ -0,0 +1,64 @@
+import { c as SceneDocument } from './model-BHLN208Z.js';
+
+/**
+ * Storage contract for design-canvas documents. Unlike sequences (row per
+ * clip), a scene document persists as ONE JSON value with a monotonic
+ * revision counter — saves are atomic and optimistic: a save carrying a
+ * stale `expectedRev` throws, the caller refetches and replays. That keeps
+ * concurrent editors (human + agent in the same document) from silently
+ * clobbering each other without needing row-level merge machinery.
+ *
+ * The product constructs one store per (workspace, document, actor) request
+ * scope — RBAC runs BEFORE construction; the store never re-checks identity.
+ * Every method throws on failure; the MCP dispatcher converts throws into
+ * structured tool errors.
+ */
+
+interface SceneDocumentRecord {
+    document: SceneDocument;
+    /** Monotonic revision; increments on every successful save. */
+    rev: number;
+}
+interface SceneDecision {
+    id: string;
+    kind: 'human_edit' | 'agent_edit' | 'agent_proposal' | 'export' | 'note';
+    instruction: string;
+    reasoningSummary: string | null;
+    metadata: Record<string, unknown>;
+    createdAt: Date;
+}
+interface NewSceneDecision {
+    kind: SceneDecision['kind'];
+    instruction: string;
+    reasoningSummary?: string | null;
+    metadata?: Record<string, unknown>;
+}
+type SceneExportFormat = 'png' | 'jpeg' | 'json';
+interface SceneExportRecord {
+    id: string;
+    format: SceneExportFormat;
+    status: 'queued' | 'processing' | 'completed' | 'failed';
+    resultUrl: string | null;
+    metadata: Record<string, unknown>;
+    createdAt: Date;
+}
+interface SceneStore {
+    /** Current document + revision. */
+    getDocument(): Promise<SceneDocumentRecord>;
+    /** Atomic full-document save. Throws when `expectedRev` is stale — the
+     *  caller must refetch, reapply, and retry; never merge silently. */
+    saveDocument(document: SceneDocument, expectedRev: number): Promise<SceneDocumentRecord>;
+    recordDecision(input: NewSceneDecision): Promise<SceneDecision>;
+    createExport(format: SceneExportFormat, metadata?: Record<string, unknown>): Promise<SceneExportRecord>;
+    listDecisions(limit?: number): Promise<SceneDecision[]>;
+    listExports(limit?: number): Promise<SceneExportRecord[]>;
+}
+/** Per-request scope a product binds at store construction; decision and
+ *  export rows attribute to the acting user — never trusted from tool args. */
+interface SceneStoreScope {
+    workspaceId: string;
+    documentId: string;
+    userId: string;
+}
+
+export type { NewSceneDecision as N, SceneDecision as S, SceneDocumentRecord as a, SceneExportFormat as b, SceneExportRecord as c, SceneStore as d, SceneStoreScope as e };

package/dist/tools/index.d.ts

@@ -2,6 +2,7 @@ import { b as AppToolName, f as ToolHeaderNames } from '../mcp-CIupfjxV.js';
 export { A as APP_TOOL_NAMES, a as AppToolMcpServer, c as AuthenticateOptions, B as BuildHttpMcpServerOptions, d as BuildMcpServerOptions, D as DEFAULT_APP_TOOL_PATHS, e as DEFAULT_HEADER_NAMES, O as OpenAIFunctionTool, T as ToolAuthResult, g as authenticateToolRequest, h as buildAppToolMcpServer, i as buildAppToolOpenAITools, j as buildHttpMcpServer, k as isAppToolName, r as readToolArgs } from '../mcp-CIupfjxV.js';
 import { c as AppToolHandlers, f as AppToolTaxonomy, b as AppToolContext, e as AppToolProducedEvent, d as AppToolOutcome } from '../types-By4B3K37.js';
 export { A as AddCitationArgs, a as AddCitationResult, R as RenderUiArgs, g as RenderUiResult, S as ScheduleFollowupArgs, h as ScheduleFollowupResult, i as SubmitProposalArgs, j as SubmitProposalResult } from '../types-By4B3K37.js';
+export { C as CreateMcpToolHandlerOptions, M as MCP_PROTOCOL_VERSIONS, a as McpProtocolVersion, b as McpServerInfo, c as McpToolDefinition, d as createMcpToolHandler } from '../mcp-rpc-DLw_r9PQ.js';
 
 /** A correctable bad-input error a tool handler throws; the HTTP layer maps it
  *  to a 4xx with the code, the runtime layer to a failed tool_result. So the

package/dist/tools/index.js

@@ -4,15 +4,17 @@ import {
   handleAppToolRequest,
   verifyCapabilityToken,
   verifyExpiringCapabilityToken
-} from "../chunk-CF5DZELC.js";
+} from "../chunk-ABGSFUJQ.js";
 import {
   DEFAULT_APP_TOOL_PATHS,
   DEFAULT_HEADER_NAMES,
+  MCP_PROTOCOL_VERSIONS,
   authenticateToolRequest,
   buildAppToolMcpServer,
   buildHttpMcpServer,
+  createMcpToolHandler,
   readToolArgs
-} from "../chunk-IJZJWKUK.js";
+} from "../chunk-A76ZHWNF.js";
 import {
   APP_TOOL_NAMES,
   ToolInputError,
@@ -26,6 +28,7 @@ export {
   APP_TOOL_NAMES,
   DEFAULT_APP_TOOL_PATHS,
   DEFAULT_HEADER_NAMES,
+  MCP_PROTOCOL_VERSIONS,
   ToolInputError,
   authenticateToolRequest,
   buildAppToolMcpServer,
@@ -34,6 +37,7 @@ export {
   createAppToolRuntimeExecutor,
   createCapabilityToken,
   createExpiringCapabilityToken,
+  createMcpToolHandler,
   dispatchAppTool,
   handleAppToolRequest,
   isAppToolName,

package/package.json

@@ -1,8 +1,8 @@
 {
   "name": "@tangle-network/agent-app",
-  "version": "0.12.0",
+  "version": "0.13.0",
   "packageManager": "pnpm@10.33.4",
-  "description": "Application-shell framework for Tangle agent products: a bounded tool loop, the structured agent→app tool side channel, integration-hub client, per-workspace billing, and crypto — composed over the Tangle agent substrate through typed seams.",
+  "description": "Application-shell framework for Tangle agent products: a bounded tool loop, the structured agent\u2192app tool side channel, integration-hub client, per-workspace billing, and crypto \u2014 composed over the Tangle agent substrate through typed seams.",
   "keywords": [
     "tangle",
     "ai-agent",
@@ -166,6 +166,21 @@
       "types": "./dist/sequences-react/index.d.ts",
       "import": "./dist/sequences-react/index.js",
       "default": "./dist/sequences-react/index.js"
+    },
+    "./design-canvas": {
+      "types": "./dist/design-canvas/index.d.ts",
+      "import": "./dist/design-canvas/index.js",
+      "default": "./dist/design-canvas/index.js"
+    },
+    "./design-canvas/drizzle": {
+      "types": "./dist/design-canvas/drizzle.d.ts",
+      "import": "./dist/design-canvas/drizzle.js",
+      "default": "./dist/design-canvas/drizzle.js"
+    },
+    "./design-canvas-react": {
+      "types": "./dist/design-canvas-react/index.d.ts",
+      "import": "./dist/design-canvas-react/index.js",
+      "default": "./dist/design-canvas-react/index.js"
     }
   },
   "scripts": {
@@ -189,8 +204,10 @@
     "better-sqlite3": "^12.10.0",
     "drizzle-orm": "^0.45.2",
     "jsdom": "^29.1.1",
+    "konva": "^10.3.0",
     "react": "^19.0.0",
     "react-dom": "^19.2.7",
+    "react-konva": "^19.2.5",
     "tsup": "^8.0.0",
     "typescript": "^5.7.0",
     "vitest": "^3.0.0"
@@ -202,7 +219,9 @@
     "@tangle-network/agent-knowledge": ">=1.5.0",
     "@tangle-network/agent-runtime": ">=0.21.0",
     "drizzle-orm": ">=0.36",
-    "react": ">=18"
+    "react": ">=18",
+    "konva": ">=9",
+    "react-konva": ">=18"
   },
   "peerDependenciesMeta": {
     "@huggingface/transformers": {
@@ -219,6 +238,12 @@
     },
     "react": {
       "optional": true
+    },
+    "konva": {
+      "optional": true
+    },
+    "react-konva": {
+      "optional": true
     }
   },
   "dependencies": {

package/dist/chunk-IJZJWKUK.js

@@ -1,77 +0,0 @@
-// src/tools/auth.ts
-var DEFAULT_HEADER_NAMES = {
-  userId: "X-Agent-App-User-Id",
-  workspaceId: "X-Agent-App-Workspace-Id",
-  threadId: "X-Agent-App-Thread-Id"
-};
-async function authenticateToolRequest(request, opts) {
-  const h = opts.headerNames ?? DEFAULT_HEADER_NAMES;
-  const userId = request.headers.get(h.userId)?.trim();
-  const workspaceId = request.headers.get(h.workspaceId)?.trim();
-  const threadId = request.headers.get(h.threadId)?.trim() || null;
-  const bearer = request.headers.get("authorization")?.match(/^Bearer\s+(.+)$/i)?.[1];
-  if (!userId || !bearer) {
-    return { ok: false, response: Response.json({ error: "Missing capability credentials" }, { status: 401 }) };
-  }
-  if (!await opts.verifyToken(userId, bearer)) {
-    return { ok: false, response: Response.json({ error: "Invalid capability token" }, { status: 401 }) };
-  }
-  if (!workspaceId) {
-    return { ok: false, response: Response.json({ error: "Missing workspace context" }, { status: 400 }) };
-  }
-  return { ok: true, ctx: { userId, workspaceId, threadId } };
-}
-async function readToolArgs(request) {
-  let body;
-  try {
-    body = await request.json();
-  } catch {
-    return null;
-  }
-  return body.args ?? body.arguments ?? body;
-}
-
-// src/tools/mcp.ts
-var DEFAULT_APP_TOOL_PATHS = {
-  submit_proposal: "/api/tools/propose",
-  schedule_followup: "/api/tools/followup",
-  render_ui: "/api/tools/render-ui",
-  add_citation: "/api/tools/citation"
-};
-function buildHttpMcpServer(opts) {
-  const base = opts.baseUrl.replace(/\/+$/, "");
-  const h = opts.headerNames ?? DEFAULT_HEADER_NAMES;
-  return {
-    transport: "http",
-    url: `${base}${opts.path}`,
-    headers: {
-      Authorization: `Bearer ${opts.token}`,
-      [h.userId]: opts.ctx.userId,
-      ...opts.ctx.workspaceId ? { [h.workspaceId]: opts.ctx.workspaceId } : {},
-      ...opts.ctx.threadId ? { [h.threadId]: opts.ctx.threadId } : {},
-      "Content-Type": "application/json"
-    },
-    enabled: true,
-    metadata: { description: opts.description }
-  };
-}
-function buildAppToolMcpServer(opts) {
-  return buildHttpMcpServer({
-    path: opts.paths?.[opts.tool] ?? DEFAULT_APP_TOOL_PATHS[opts.tool],
-    baseUrl: opts.baseUrl,
-    token: opts.token,
-    ctx: opts.ctx,
-    description: opts.description,
-    headerNames: opts.headerNames
-  });
-}
-
-export {
-  DEFAULT_HEADER_NAMES,
-  authenticateToolRequest,
-  readToolArgs,
-  DEFAULT_APP_TOOL_PATHS,
-  buildHttpMcpServer,
-  buildAppToolMcpServer
-};
-//# sourceMappingURL=chunk-IJZJWKUK.js.map

package/dist/chunk-IJZJWKUK.js.map

@@ -1 +0,0 @@
-{"version":3,"sources":["../src/tools/auth.ts","../src/tools/mcp.ts"],"sourcesContent":["import type { AppToolContext } from './types'\n\n/**\n * Header names carrying the server-set per-turn context + the capability token.\n * Defaults are product-neutral (`X-Agent-App-*`); a product that already ships\n * a header convention (e.g. `X-Acme-User-Id`) passes its own.\n */\nexport interface ToolHeaderNames {\n  userId: string\n  workspaceId: string\n  threadId: string\n}\n\nexport const DEFAULT_HEADER_NAMES: ToolHeaderNames = {\n  userId: 'X-Agent-App-User-Id',\n  workspaceId: 'X-Agent-App-Workspace-Id',\n  threadId: 'X-Agent-App-Thread-Id',\n}\n\nexport interface AuthenticateOptions {\n  /** Verify the bearer capability token belongs to `userId`. The product's\n   *  HMAC/JWT impl — the seam that keeps token crypto out of this package. */\n  verifyToken: (userId: string, bearer: string) => Promise<boolean>\n  headerNames?: ToolHeaderNames\n}\n\nexport type ToolAuthResult =\n  | { ok: true; ctx: AppToolContext }\n  | { ok: false; response: Response }\n\n/**\n * Recover + verify the trusted context for a tool request. The user comes from\n * a server-set header and the bearer token MUST verify against THAT user; the\n * workspace comes from a header too — never from tool args — so the model can\n * neither forge identity nor target another workspace. Fail-closed: any missing\n * credential or a token minted for another user yields a 401/400 Response.\n */\nexport async function authenticateToolRequest(request: Request, opts: AuthenticateOptions): Promise<ToolAuthResult> {\n  const h = opts.headerNames ?? DEFAULT_HEADER_NAMES\n  const userId = request.headers.get(h.userId)?.trim()\n  const workspaceId = request.headers.get(h.workspaceId)?.trim()\n  const threadId = request.headers.get(h.threadId)?.trim() || null\n  const bearer = request.headers.get('authorization')?.match(/^Bearer\\s+(.+)$/i)?.[1]\n\n  if (!userId || !bearer) {\n    return { ok: false, response: Response.json({ error: 'Missing capability credentials' }, { status: 401 }) }\n  }\n  if (!(await opts.verifyToken(userId, bearer))) {\n    return { ok: false, response: Response.json({ error: 'Invalid capability token' }, { status: 401 }) }\n  }\n  if (!workspaceId) {\n    return { ok: false, response: Response.json({ error: 'Missing workspace context' }, { status: 400 }) }\n  }\n  return { ok: true, ctx: { userId, workspaceId, threadId } }\n}\n\n/** Read a tool's argument object from the request body, tolerant of MCP host\n *  aliases (`args` / `arguments`) or a bare body. Returns null on non-JSON. */\nexport async function readToolArgs<T>(request: Request): Promise<T | null> {\n  let body: { args?: T; arguments?: T }\n  try {\n    body = (await request.json()) as typeof body\n  } catch {\n    return null\n  }\n  return (body.args ?? body.arguments ?? (body as T)) as T\n}\n","import type { AppToolContext } from './types'\nimport type { AppToolName } from './openai'\nimport type { ToolHeaderNames } from './auth'\nimport { DEFAULT_HEADER_NAMES } from './auth'\n\n/** Default route path each app tool is served at. A product mounts its routes\n *  at these paths (or supplies its own via {@link BuildMcpServerOptions.paths}). */\nexport const DEFAULT_APP_TOOL_PATHS: Record<AppToolName, string> = {\n  submit_proposal: '/api/tools/propose',\n  schedule_followup: '/api/tools/followup',\n  render_ui: '/api/tools/render-ui',\n  add_citation: '/api/tools/citation',\n}\n\n/** The portable MCP server entry the sandbox SDK accepts (transport + url +\n *  headers). Matches `AgentProfileMcpServer` structurally without importing the\n *  sandbox SDK — products spread it into their profile's `mcp` map. */\nexport interface AppToolMcpServer {\n  transport: 'http'\n  url: string\n  headers: Record<string, string>\n  enabled: true\n  metadata: { description: string }\n}\n\nexport interface BuildHttpMcpServerOptions {\n  /** Route path on the app the sandbox POSTs to (e.g. `/api/tools/propose`). */\n  path: string\n  /** App base URL the sandbox reaches back to (no trailing slash required). */\n  baseUrl: string\n  /** Per-user capability token, baked into the Authorization header. */\n  token: string\n  ctx: AppToolContext\n  /** Tool description the model sees. */\n  description: string\n  headerNames?: ToolHeaderNames\n}\n\n/**\n * Build ONE HTTP MCP server entry — the generic agent→app bridge. The\n * capability token + the user/workspace/thread ids ride in server-set headers\n * (never tool args), so the model can't forge identity or target another\n * workspace. Workspace/thread headers are omitted when their `ctx` value is\n * empty/null (e.g. an integration-invoke bridge that's user-scoped only). Used\n * directly for non-app-tool bridges (integration_invoke) and via\n * {@link buildAppToolMcpServer} for the four app tools.\n */\nexport function buildHttpMcpServer(opts: BuildHttpMcpServerOptions): AppToolMcpServer {\n  const base = opts.baseUrl.replace(/\\/+$/, '')\n  const h = opts.headerNames ?? DEFAULT_HEADER_NAMES\n  return {\n    transport: 'http',\n    url: `${base}${opts.path}`,\n    headers: {\n      Authorization: `Bearer ${opts.token}`,\n      [h.userId]: opts.ctx.userId,\n      ...(opts.ctx.workspaceId ? { [h.workspaceId]: opts.ctx.workspaceId } : {}),\n      ...(opts.ctx.threadId ? { [h.threadId]: opts.ctx.threadId } : {}),\n      'Content-Type': 'application/json',\n    },\n    enabled: true,\n    metadata: { description: opts.description },\n  }\n}\n\nexport interface BuildMcpServerOptions {\n  tool: AppToolName\n  baseUrl: string\n  token: string\n  ctx: AppToolContext\n  description: string\n  headerNames?: ToolHeaderNames\n  paths?: Partial<Record<AppToolName, string>>\n}\n\n/** Build one of the four app-tool MCP servers — a thin wrapper over\n *  {@link buildHttpMcpServer} that maps the tool name to its route path. */\nexport function buildAppToolMcpServer(opts: BuildMcpServerOptions): AppToolMcpServer {\n  return buildHttpMcpServer({\n    path: opts.paths?.[opts.tool] ?? DEFAULT_APP_TOOL_PATHS[opts.tool],\n    baseUrl: opts.baseUrl,\n    token: opts.token,\n    ctx: opts.ctx,\n    description: opts.description,\n    headerNames: opts.headerNames,\n  })\n}\n"],"mappings":";AAaO,IAAM,uBAAwC;AAAA,EACnD,QAAQ;AAAA,EACR,aAAa;AAAA,EACb,UAAU;AACZ;AAoBA,eAAsB,wBAAwB,SAAkB,MAAoD;AAClH,QAAM,IAAI,KAAK,eAAe;AAC9B,QAAM,SAAS,QAAQ,QAAQ,IAAI,EAAE,MAAM,GAAG,KAAK;AACnD,QAAM,cAAc,QAAQ,QAAQ,IAAI,EAAE,WAAW,GAAG,KAAK;AAC7D,QAAM,WAAW,QAAQ,QAAQ,IAAI,EAAE,QAAQ,GAAG,KAAK,KAAK;AAC5D,QAAM,SAAS,QAAQ,QAAQ,IAAI,eAAe,GAAG,MAAM,kBAAkB,IAAI,CAAC;AAElF,MAAI,CAAC,UAAU,CAAC,QAAQ;AACtB,WAAO,EAAE,IAAI,OAAO,UAAU,SAAS,KAAK,EAAE,OAAO,iCAAiC,GAAG,EAAE,QAAQ,IAAI,CAAC,EAAE;AAAA,EAC5G;AACA,MAAI,CAAE,MAAM,KAAK,YAAY,QAAQ,MAAM,GAAI;AAC7C,WAAO,EAAE,IAAI,OAAO,UAAU,SAAS,KAAK,EAAE,OAAO,2BAA2B,GAAG,EAAE,QAAQ,IAAI,CAAC,EAAE;AAAA,EACtG;AACA,MAAI,CAAC,aAAa;AAChB,WAAO,EAAE,IAAI,OAAO,UAAU,SAAS,KAAK,EAAE,OAAO,4BAA4B,GAAG,EAAE,QAAQ,IAAI,CAAC,EAAE;AAAA,EACvG;AACA,SAAO,EAAE,IAAI,MAAM,KAAK,EAAE,QAAQ,aAAa,SAAS,EAAE;AAC5D;AAIA,eAAsB,aAAgB,SAAqC;AACzE,MAAI;AACJ,MAAI;AACF,WAAQ,MAAM,QAAQ,KAAK;AAAA,EAC7B,QAAQ;AACN,WAAO;AAAA,EACT;AACA,SAAQ,KAAK,QAAQ,KAAK,aAAc;AAC1C;;;AC3DO,IAAM,yBAAsD;AAAA,EACjE,iBAAiB;AAAA,EACjB,mBAAmB;AAAA,EACnB,WAAW;AAAA,EACX,cAAc;AAChB;AAmCO,SAAS,mBAAmB,MAAmD;AACpF,QAAM,OAAO,KAAK,QAAQ,QAAQ,QAAQ,EAAE;AAC5C,QAAM,IAAI,KAAK,eAAe;AAC9B,SAAO;AAAA,IACL,WAAW;AAAA,IACX,KAAK,GAAG,IAAI,GAAG,KAAK,IAAI;AAAA,IACxB,SAAS;AAAA,MACP,eAAe,UAAU,KAAK,KAAK;AAAA,MACnC,CAAC,EAAE,MAAM,GAAG,KAAK,IAAI;AAAA,MACrB,GAAI,KAAK,IAAI,cAAc,EAAE,CAAC,EAAE,WAAW,GAAG,KAAK,IAAI,YAAY,IAAI,CAAC;AAAA,MACxE,GAAI,KAAK,IAAI,WAAW,EAAE,CAAC,EAAE,QAAQ,GAAG,KAAK,IAAI,SAAS,IAAI,CAAC;AAAA,MAC/D,gBAAgB;AAAA,IAClB;AAAA,IACA,SAAS;AAAA,IACT,UAAU,EAAE,aAAa,KAAK,YAAY;AAAA,EAC5C;AACF;AAcO,SAAS,sBAAsB,MAA+C;AACnF,SAAO,mBAAmB;AAAA,IACxB,MAAM,KAAK,QAAQ,KAAK,IAAI,KAAK,uBAAuB,KAAK,IAAI;AAAA,IACjE,SAAS,KAAK;AAAA,IACd,OAAO,KAAK;AAAA,IACZ,KAAK,KAAK;AAAA,IACV,aAAa,KAAK;AAAA,IAClB,aAAa,KAAK;AAAA,EACpB,CAAC;AACH;","names":[]}