@thecorporation/corp-tools 26.3.20 → 26.3.22

package/dist/index.js

@@ -1,3 +1,235 @@
+// src/process-transport.ts
+import { execFileSync } from "child_process";
+import { existsSync as existsSync2, readFileSync as readFileSync2 } from "fs";
+import { resolve, join } from "path";
+import { homedir } from "os";
+import { createRequire } from "module";
+
+// src/env.ts
+import { readFileSync, writeFileSync, existsSync } from "fs";
+import { randomBytes } from "crypto";
+var ENV_TEMPLATE = `# Corporation API server configuration
+# Generated by: corp serve
+
+# Required \u2014 secret for signing JWTs
+JWT_SECRET={{JWT_SECRET}}
+
+# Required \u2014 Fernet key for encrypting secrets at rest (base64url, 32 bytes)
+SECRETS_MASTER_KEY={{SECRETS_MASTER_KEY}}
+
+# Required \u2014 bearer token for internal worker-to-server auth
+INTERNAL_WORKER_TOKEN={{INTERNAL_WORKER_TOKEN}}
+
+# Server port (default: 8000)
+# PORT=8000
+
+# Data directory for git repos (default: ./data/repos)
+# DATA_DIR=./data/repos
+
+# Redis URL for agent job queue (optional)
+# REDIS_URL=redis://localhost:6379/0
+
+# LLM proxy upstream (default: https://openrouter.ai/api/v1)
+# LLM_UPSTREAM_URL=https://openrouter.ai/api/v1
+
+# PEM-encoded Ed25519 key for signing git commits (optional)
+# COMMIT_SIGNING_KEY=
+
+# Max agent queue depth (default: 1000)
+# MAX_QUEUE_DEPTH=1000
+`;
+function generateFernetKey() {
+  return randomBytes(32).toString("base64url") + "=";
+}
+function generateSecret(length = 32) {
+  return randomBytes(length).toString("hex");
+}
+function loadEnvFile(path) {
+  if (!existsSync(path)) return;
+  const content = readFileSync(path, "utf-8");
+  for (const line of content.split("\n")) {
+    const trimmed = line.trim();
+    if (!trimmed || trimmed.startsWith("#")) continue;
+    const eqIdx = trimmed.indexOf("=");
+    if (eqIdx === -1) continue;
+    const key = trimmed.slice(0, eqIdx).trim();
+    const value = trimmed.slice(eqIdx + 1).trim().replace(/^["']|["']$/g, "");
+    if (!process.env[key]) {
+      process.env[key] = value;
+    }
+  }
+}
+function ensureEnvFile(envPath) {
+  if (existsSync(envPath)) return;
+  console.log("No .env file found. Generating one with dev defaults...\n");
+  const content = ENV_TEMPLATE.replace("{{JWT_SECRET}}", generateSecret()).replace("{{SECRETS_MASTER_KEY}}", generateFernetKey()).replace("{{INTERNAL_WORKER_TOKEN}}", generateSecret());
+  writeFileSync(envPath, content, "utf-8");
+  console.log(`  Created ${envPath}
+`);
+}
+
+// src/process-transport.ts
+var require2 = createRequire(import.meta.url);
+var cachedBinaryPath;
+function resolveBinaryPath(processUrl) {
+  if (cachedBinaryPath !== void 0) return cachedBinaryPath;
+  const parsed = new URL(processUrl);
+  if (parsed.pathname && parsed.pathname !== "/") {
+    cachedBinaryPath = parsed.pathname;
+    return cachedBinaryPath;
+  }
+  const envBin = process.env.CORP_SERVER_BIN;
+  if (envBin && existsSync2(envBin)) {
+    cachedBinaryPath = envBin;
+    return cachedBinaryPath;
+  }
+  try {
+    const server = require2("@thecorporation/server");
+    const pkgPath = server.getBinaryPath?.();
+    if (pkgPath) {
+      cachedBinaryPath = pkgPath;
+      return pkgPath;
+    }
+  } catch {
+  }
+  cachedBinaryPath = resolve("services/api-rs/target/release/api-rs");
+  return cachedBinaryPath;
+}
+function parseStatusFromStderr(stderr) {
+  const lines = stderr.split("\n");
+  for (let i = lines.length - 1; i >= 0; i--) {
+    const match = lines[i].match(/^HTTP (\d+)$/);
+    if (match) return parseInt(match[1], 10);
+  }
+  return null;
+}
+var STATUS_TEXT = {
+  200: "OK",
+  201: "Created",
+  204: "No Content",
+  400: "Bad Request",
+  401: "Unauthorized",
+  403: "Forbidden",
+  404: "Not Found",
+  409: "Conflict",
+  422: "Unprocessable Entity",
+  500: "Internal Server Error"
+};
+function buildProcessResponse(status, body) {
+  return {
+    status,
+    ok: status >= 200 && status < 300,
+    statusText: STATUS_TEXT[status] ?? String(status),
+    headers: new Headers({ "content-type": "application/json" }),
+    json: async () => JSON.parse(body),
+    text: async () => body,
+    body: null,
+    bodyUsed: false,
+    redirected: false,
+    type: "basic",
+    url: "",
+    clone: () => buildProcessResponse(status, body),
+    arrayBuffer: async () => new TextEncoder().encode(body).buffer,
+    blob: async () => new Blob([body]),
+    formData: async () => {
+      throw new Error("not supported");
+    },
+    bytes: async () => new TextEncoder().encode(body)
+  };
+}
+var CORP_CONFIG_DIR = process.env.CORP_CONFIG_DIR || join(homedir(), ".corp");
+function readJsonFileSafe(path) {
+  try {
+    if (!existsSync2(path)) return null;
+    return JSON.parse(readFileSync2(path, "utf-8"));
+  } catch {
+    return null;
+  }
+}
+function loadServerSecretsFromAuth() {
+  const auth = readJsonFileSafe(join(CORP_CONFIG_DIR, "auth.json"));
+  if (!auth) return null;
+  const ss = auth.server_secrets;
+  if (!ss || typeof ss !== "object") return null;
+  const s = ss;
+  if (typeof s.jwt_secret === "string" && typeof s.secrets_master_key === "string" && typeof s.internal_worker_token === "string") {
+    return { jwt_secret: s.jwt_secret, secrets_master_key: s.secrets_master_key, internal_worker_token: s.internal_worker_token };
+  }
+  return null;
+}
+function loadDataDirFromConfig() {
+  const cfg = readJsonFileSafe(join(CORP_CONFIG_DIR, "config.json"));
+  if (!cfg) return void 0;
+  const dataDir = typeof cfg.data_dir === "string" ? cfg.data_dir : void 0;
+  return dataDir || void 0;
+}
+var envLoaded = false;
+function ensureEnv() {
+  if (envLoaded) return;
+  const secrets = loadServerSecretsFromAuth();
+  if (secrets) {
+    if (!process.env.JWT_SECRET) process.env.JWT_SECRET = secrets.jwt_secret;
+    if (!process.env.SECRETS_MASTER_KEY) process.env.SECRETS_MASTER_KEY = secrets.secrets_master_key;
+    if (!process.env.INTERNAL_WORKER_TOKEN) process.env.INTERNAL_WORKER_TOKEN = secrets.internal_worker_token;
+    envLoaded = true;
+    return;
+  }
+  const envPath = resolve(process.cwd(), ".env");
+  ensureEnvFile(envPath);
+  loadEnvFile(envPath);
+  envLoaded = true;
+}
+function processRequest(processUrl, method, pathWithQuery, headers, body, options) {
+  ensureEnv();
+  const binPath = resolveBinaryPath(processUrl);
+  const args = ["--skip-validation", "call"];
+  const dataDir = options?.dataDir ?? loadDataDirFromConfig();
+  if (dataDir) {
+    args.push("--data-dir", dataDir);
+  }
+  args.push(method, pathWithQuery);
+  for (const [key, value] of Object.entries(headers)) {
+    args.push("-H", `${key}: ${value}`);
+  }
+  if (body) {
+    args.push("--stdin");
+  }
+  try {
+    const stdout = execFileSync(binPath, args, {
+      input: body ?? void 0,
+      stdio: ["pipe", "pipe", "pipe"],
+      maxBuffer: 10 * 1024 * 1024,
+      env: process.env
+    });
+    return buildProcessResponse(200, stdout.toString("utf-8"));
+  } catch (err) {
+    const execErr = err;
+    if (execErr.stdout === void 0 && execErr.stderr === void 0) {
+      throw new Error(
+        `No api-rs binary found. Install @thecorporation/server or set CORP_SERVER_BIN.
+Attempted: ${binPath}
+Error: ${execErr.message ?? String(err)}`
+      );
+    }
+    const stderr = execErr.stderr?.toString("utf-8") ?? "";
+    const stdout = execErr.stdout?.toString("utf-8") ?? "";
+    const status = parseStatusFromStderr(stderr);
+    if (status !== null) {
+      return buildProcessResponse(status, stdout);
+    }
+    const isConfigError = stderr.includes("panic") || stderr.includes("INTERNAL_WORKER_TOKEN") || stderr.includes("JWT_SECRET") || stderr.includes("SECRETS_MASTER_KEY");
+    if (isConfigError) {
+      throw new Error("Server configuration incomplete. Run 'corp setup' to configure local mode.");
+    }
+    throw new Error(`api-rs process failed:
+${stderr || stdout || String(err)}`);
+  }
+}
+function resetCache() {
+  cachedBinaryPath = void 0;
+  envLoaded = false;
+}
+
 // src/api-client.ts
 var SessionExpiredError = class extends Error {
   constructor() {
@@ -51,7 +283,7 @@ var CorpAPIClient = class {
   apiKey;
   workspaceId;
   constructor(apiUrl, apiKey, workspaceId) {
-    this.apiUrl = apiUrl.replace(/\/+$/, "");
+    this.apiUrl = apiUrl.startsWith("process://") ? apiUrl : apiUrl.replace(/\/+$/, "");
     this.apiKey = apiKey;
     this.workspaceId = workspaceId;
   }
@@ -63,11 +295,17 @@ var CorpAPIClient = class {
     };
   }
   async request(method, path, body, params) {
-    let url = `${this.apiUrl}${path}`;
+    let fullPath = path;
     if (params) {
       const qs = new URLSearchParams(params).toString();
-      if (qs) url += `?${qs}`;
+      if (qs) fullPath += `?${qs}`;
     }
+    if (this.apiUrl.startsWith("process://")) {
+      const hdrs = this.headers();
+      const bodyStr = body !== void 0 ? JSON.stringify(body) : void 0;
+      return processRequest(this.apiUrl, method, fullPath, hdrs, bodyStr);
+    }
+    const url = `${this.apiUrl}${fullPath}`;
     const opts = { method, headers: this.headers() };
     if (body !== void 0) opts.body = JSON.stringify(body);
     return fetch(url, opts);
@@ -295,6 +533,12 @@ var CorpAPIClient = class {
   getEntityDocuments(entityId) {
     return this.get(`/v1/formations/${pathSegment(entityId)}/documents`);
   }
+  getDocument(documentId, entityId) {
+    return this.get(`/v1/documents/${pathSegment(documentId)}`, { entity_id: entityId });
+  }
+  signDocument(documentId, entityId, data) {
+    return this.postWithParams(`/v1/documents/${pathSegment(documentId)}/sign`, data, { entity_id: entityId });
+  }
   generateContract(data) {
     return this.post("/v1/contracts", data);
   }
@@ -307,6 +551,9 @@ var CorpAPIClient = class {
     return { entity_id: entityId, document_id: documentId };
   }
   getPreviewPdfUrl(entityId, documentId) {
+    if (this.apiUrl.startsWith("process://")) {
+      throw new Error("getPreviewPdfUrl is not available in process transport mode \u2014 use validatePreviewPdf() and fetch the PDF via the API instead");
+    }
     const qs = new URLSearchParams({ entity_id: entityId, document_id: documentId }).toString();
     return `${this.apiUrl}/v1/documents/preview/pdf?${qs}`;
   }
@@ -405,6 +652,30 @@ var CorpAPIClient = class {
   finalizeFormation(entityId, data = {}) {
     return this.post(`/v1/formations/${pathSegment(entityId)}/finalize`, data);
   }
+  markFormationDocumentsSigned(entityId) {
+    return this.post(`/v1/formations/${pathSegment(entityId)}/mark-documents-signed`);
+  }
+  getFormationGates(entityId) {
+    return this.get(`/v1/formations/${pathSegment(entityId)}/gates`);
+  }
+  recordFilingAttestation(entityId, data) {
+    return this.post(`/v1/formations/${pathSegment(entityId)}/filing-attestation`, data);
+  }
+  addRegisteredAgentConsentEvidence(entityId, data) {
+    return this.post(`/v1/formations/${pathSegment(entityId)}/registered-agent-consent-evidence`, data);
+  }
+  submitFiling(entityId) {
+    return this.post(`/v1/formations/${pathSegment(entityId)}/submit-filing`);
+  }
+  confirmFiling(entityId, data) {
+    return this.post(`/v1/formations/${pathSegment(entityId)}/filing-confirmation`, data);
+  }
+  applyEin(entityId) {
+    return this.post(`/v1/formations/${pathSegment(entityId)}/apply-ein`);
+  }
+  confirmEin(entityId, data) {
+    return this.post(`/v1/formations/${pathSegment(entityId)}/ein-confirmation`, data);
+  }
   // --- Human obligations ---
   getHumanObligations() {
     return this.get(`/v1/workspaces/${pathSegment(this.workspaceId)}/human-obligations`);
@@ -413,8 +684,8 @@ var CorpAPIClient = class {
     return this.post(`/v1/human-obligations/${pathSegment(obligationId)}/signer-token`);
   }
   // --- Demo ---
-  seedDemo(name) {
-    return this.post("/v1/demo/seed", { name, workspace_id: this.workspaceId });
+  seedDemo(data) {
+    return this.post("/v1/demo/seed", data);
   }
   // --- Entities writes ---
   convertEntity(entityId, data) {
@@ -494,6 +765,28 @@ var CorpAPIClient = class {
   getConfig() {
     return this.get("/v1/config");
   }
+  // --- Services ---
+  listServiceCatalog() {
+    return this.get("/v1/services/catalog");
+  }
+  createServiceRequest(data) {
+    return this.post("/v1/services/requests", data);
+  }
+  getServiceRequest(id, entityId) {
+    return this.get(`/v1/services/requests/${pathSegment(id)}`, { entity_id: entityId });
+  }
+  listServiceRequests(entityId) {
+    return this.get(`/v1/entities/${pathSegment(entityId)}/service-requests`);
+  }
+  beginServiceCheckout(id, data) {
+    return this.post(`/v1/services/requests/${pathSegment(id)}/checkout`, data);
+  }
+  fulfillServiceRequest(id, data) {
+    return this.post(`/v1/services/requests/${pathSegment(id)}/fulfill`, data);
+  }
+  cancelServiceRequest(id, data) {
+    return this.post(`/v1/services/requests/${pathSegment(id)}/cancel`, data);
+  }
   // --- Feedback ---
   submitFeedback(message, category, email) {
     return this.post("/v1/feedback", { message, category, email });
@@ -510,8 +803,8 @@ var CorpAPIClient = class {
 };
 
 // src/tools.ts
-import { readFileSync, writeFileSync, mkdirSync, existsSync } from "fs";
-import { join } from "path";
+import { readFileSync as readFileSync3, writeFileSync as writeFileSync2, mkdirSync, existsSync as existsSync3 } from "fs";
+import { join as join2 } from "path";
 
 // src/tool-defs.generated.ts
 var GENERATED_TOOL_DEFINITIONS = [
@@ -1442,14 +1735,14 @@ var documentActions = {
 };
 var checklistActions = {
   get: async (_args, _client, ctx) => {
-    const path = join(ctx.dataDir, "checklist.md");
-    if (existsSync(path)) return { checklist: readFileSync(path, "utf-8") };
+    const path = join2(ctx.dataDir, "checklist.md");
+    if (existsSync3(path)) return { checklist: readFileSync3(path, "utf-8") };
     return { checklist: null, message: "No checklist yet." };
   },
   update: async (args, _client, ctx) => {
-    const path = join(ctx.dataDir, "checklist.md");
+    const path = join2(ctx.dataDir, "checklist.md");
     mkdirSync(ctx.dataDir, { recursive: true });
-    writeFileSync(path, args.checklist);
+    writeFileSync2(path, args.checklist);
     return { status: "updated", checklist: args.checklist };
   }
 };
@@ -1921,8 +2214,11 @@ var QuorumThreshold = ["majority", "supermajority", "unanimous"];
 var ReceiptStatus = ["pending", "executed", "failed"];
 var ReconciliationStatus = ["balanced", "discrepancy"];
 var Recurrence = ["one_time", "monthly", "quarterly", "annual"];
+var ReferenceKind = ["entity", "contact", "share_transfer", "invoice", "bank_account", "payment", "payroll_run", "distribution", "reconciliation", "tax_filing", "deadline", "classification", "body", "meeting", "seat", "agenda_item", "resolution", "document", "work_item", "agent", "valuation", "safe_note", "instrument", "share_class", "round"];
 var ResolutionType = ["ordinary", "special", "unanimous_written_consent"];
 var RiskLevel = ["low", "medium", "high"];
+var SafeStatus = ["issued", "converted", "cancelled"];
+var SafeType = ["post_money", "pre_money", "mfn"];
 var Scope = ["formation_create", "formation_read", "formation_sign", "equity_read", "equity_write", "equity_transfer", "governance_read", "governance_write", "governance_vote", "treasury_read", "treasury_write", "treasury_approve", "contacts_read", "contacts_write", "execution_read", "execution_write", "branch_create", "branch_merge", "branch_delete", "admin", "internal_worker_read", "internal_worker_write", "secrets_manage", "all"];
 var SeatRole = ["chair", "member", "officer", "observer"];
 var SeatStatus = ["active", "resigned", "expired"];
@@ -1938,6 +2234,7 @@ var ValuationStatus = ["draft", "pending_approval", "approved", "expired", "supe
 var ValuationType = ["four_oh_nine_a", "llc_profits_interest", "fair_market_value", "gift", "estate", "other"];
 var VoteValue = ["for", "against", "abstain", "recusal"];
 var VotingMethod = ["per_capita", "per_unit"];
+var WorkItemActorTypeValue = ["contact", "agent"];
 var WorkItemStatus = ["open", "claimed", "completed", "cancelled"];
 var WorkflowType = ["transfer", "fundraising"];
 export {
@@ -2011,9 +2308,12 @@ export {
   ReceiptStatus,
   ReconciliationStatus,
   Recurrence,
+  ReferenceKind,
   ResolutionType,
   RiskLevel,
   SYSTEM_PROMPT_BASE,
+  SafeStatus,
+  SafeType,
   Scope,
   SeatRole,
   SeatStatus,
@@ -2032,13 +2332,21 @@ export {
   ValuationType,
   VoteValue,
   VotingMethod,
+  WorkItemActorTypeValue,
   WorkItemStatus,
   WorkflowType,
   describeToolCall,
+  ensureEnvFile,
   ensureSafeInstrument,
   executeTool,
   formatConfigSection,
+  generateFernetKey,
+  generateSecret,
   isWriteTool,
-  provisionWorkspace
+  loadEnvFile,
+  processRequest,
+  provisionWorkspace,
+  resetCache,
+  resolveBinaryPath
 };
 //# sourceMappingURL=index.js.map