@wopr-network/platform-core 1.70.0 → 1.71.0

package/dist/server/container.d.ts

@@ -18,6 +18,7 @@ import type { FleetManager } from "../fleet/fleet-manager.js";
 import type { IProfileStore } from "../fleet/profile-store.js";
 import type { IServiceKeyRepository } from "../gateway/service-key-repository.js";
 import type { ProductConfig } from "../product-config/repository-types.js";
+import type { ProductConfigService } from "../product-config/service.js";
 import type { ProxyManagerInterface } from "../proxy/types.js";
 import type { IOrgMemberRepository } from "../tenancy/org-member-repository.js";
 import type { OrgService } from "../tenancy/org-service.js";
@@ -68,6 +69,7 @@ export interface PlatformContainer {
     db: DrizzleDb;
     pool: Pool;
     productConfig: ProductConfig;
+    productConfigService: ProductConfigService;
     creditLedger: ILedger;
     orgMemberRepo: IOrgMemberRepository;
     orgService: OrgService;

package/dist/server/container.js

@@ -36,7 +36,7 @@ export async function buildContainer(bootConfig) {
     await migrate(db, { migrationsFolder });
     // 4. Bootstrap product config from DB (auto-seeds from presets if needed)
     const { platformBoot } = await import("../product-config/boot.js");
-    const { config: productConfig } = await platformBoot({ slug: bootConfig.slug, db });
+    const { config: productConfig, service: productConfigService } = await platformBoot({ slug: bootConfig.slug, db });
     // 5. Credit ledger
     const { DrizzleLedger } = await import("../credits/ledger.js");
     const creditLedger = new DrizzleLedger(db);
@@ -120,6 +120,7 @@ export async function buildContainer(bootConfig) {
         db,
         pool,
         productConfig,
+        productConfigService,
         creditLedger,
         orgMemberRepo,
         orgService,

package/dist/server/test-container.js

@@ -7,6 +7,7 @@
  *   const c = createTestContainer();
  *   const c2 = createTestContainer({ creditLedger: myCustomLedger });
  */
+import { ProductConfigService } from "../product-config/service.js";
 // ---------------------------------------------------------------------------
 // Stub factories (satisfy interface contracts with no-op implementations)
 // ---------------------------------------------------------------------------
@@ -76,6 +77,18 @@ function stubProductConfig() {
         billing: null,
     };
 }
+function stubProductConfigService() {
+    const stubRepo = {
+        getBySlug: async () => stubProductConfig(),
+        listAll: async () => [],
+        upsertProduct: async () => stubProductConfig().product,
+        replaceNavItems: async () => { },
+        upsertFeatures: async () => { },
+        upsertFleetConfig: async () => { },
+        upsertBillingConfig: async () => { },
+    };
+    return new ProductConfigService(stubRepo);
+}
 // ---------------------------------------------------------------------------
 // Public API
 // ---------------------------------------------------------------------------
@@ -88,6 +101,7 @@ export function createTestContainer(overrides) {
         db: {},
         pool: { end: async () => { } },
         productConfig: stubProductConfig(),
+        productConfigService: stubProductConfigService(),
         creditLedger: stubLedger(),
         orgMemberRepo: stubOrgMemberRepo(),
         orgService: {},

package/dist/trpc/index.d.ts

@@ -3,7 +3,10 @@ export { createAssertOrgAdminOrOwner } from "./auth-helpers.js";
 export { authSocialRouter } from "./auth-social-router.js";
 export { createAdminFleetUpdateRouterFromContainer, createFleetUpdateConfigRouterFromContainer, createNotificationTemplateRouterFromContainer, createOrgRemovePaymentMethodRouterFromContainer, createProductConfigRouterFromContainer, initTrpcFromContainer, } from "./container-factories.js";
 export { createFleetUpdateConfigRouter } from "./fleet-update-config-router.js";
-export { adminProcedure, createCallerFactory, orgAdminProcedure, orgMemberProcedure, protectedProcedure, publicProcedure, router, setTrpcOrgMemberRepo, type TRPCContext, tenantProcedure, } from "./init.js";
+export { adminProcedure, createCallerFactory, createTRPCContext, orgAdminProcedure, orgMemberProcedure, protectedProcedure, publicProcedure, router, setTrpcOrgMemberRepo, type TRPCContext, tenantProcedure, } from "./init.js";
 export { createNotificationTemplateRouter } from "./notification-template-router.js";
 export { createOrgRemovePaymentMethodRouter, type OrgRemovePaymentMethodDeps, } from "./org-remove-payment-method-router.js";
 export { createProductConfigRouter } from "./product-config-router.js";
+export { type PageContextRouterDeps, pageContextRouter, setPageContextRouterDeps } from "./routers/page-context.js";
+export { type ProfileRouterDeps, profileRouter, setProfileRouterDeps } from "./routers/profile.js";
+export { type SettingsRouterDeps, setSettingsRouterDeps, settingsRouter } from "./routers/settings.js";

package/dist/trpc/index.js

@@ -3,7 +3,10 @@ export { createAssertOrgAdminOrOwner } from "./auth-helpers.js";
 export { authSocialRouter } from "./auth-social-router.js";
 export { createAdminFleetUpdateRouterFromContainer, createFleetUpdateConfigRouterFromContainer, createNotificationTemplateRouterFromContainer, createOrgRemovePaymentMethodRouterFromContainer, createProductConfigRouterFromContainer, initTrpcFromContainer, } from "./container-factories.js";
 export { createFleetUpdateConfigRouter } from "./fleet-update-config-router.js";
-export { adminProcedure, createCallerFactory, orgAdminProcedure, orgMemberProcedure, protectedProcedure, publicProcedure, router, setTrpcOrgMemberRepo, tenantProcedure, } from "./init.js";
+export { adminProcedure, createCallerFactory, createTRPCContext, orgAdminProcedure, orgMemberProcedure, protectedProcedure, publicProcedure, router, setTrpcOrgMemberRepo, tenantProcedure, } from "./init.js";
 export { createNotificationTemplateRouter } from "./notification-template-router.js";
 export { createOrgRemovePaymentMethodRouter, } from "./org-remove-payment-method-router.js";
 export { createProductConfigRouter } from "./product-config-router.js";
+export { pageContextRouter, setPageContextRouterDeps } from "./routers/page-context.js";
+export { profileRouter, setProfileRouterDeps } from "./routers/profile.js";
+export { setSettingsRouterDeps, settingsRouter } from "./routers/settings.js";

package/dist/trpc/init.d.ts

@@ -12,6 +12,11 @@ export interface TRPCContext {
     /** Tenant ID associated with the bearer token, if any. */
     tenantId: string | undefined;
 }
+/**
+ * Create a TRPCContext from an incoming request.
+ * Resolves the user from BetterAuth session cookies.
+ */
+export declare function createTRPCContext(req: Request): Promise<TRPCContext>;
 /** Wire the org member repository for tRPC tenant validation. Called from services.ts on startup. */
 export declare function setTrpcOrgMemberRepo(repo: IOrgMemberRepository): void;
 export declare const router: import("@trpc/server").TRPCRouterBuilder<{

package/dist/trpc/init.js

@@ -8,6 +8,34 @@ import { initTRPC, TRPCError } from "@trpc/server";
 import { z } from "zod";
 import { validateTenantAccess } from "../auth/index.js";
 // ---------------------------------------------------------------------------
+// Context factory — resolves BetterAuth session into TRPCContext
+// ---------------------------------------------------------------------------
+/**
+ * Create a TRPCContext from an incoming request.
+ * Resolves the user from BetterAuth session cookies.
+ */
+export async function createTRPCContext(req) {
+    let user;
+    let tenantId;
+    try {
+        const { getAuth } = await import("../auth/better-auth.js");
+        const auth = getAuth();
+        const session = await auth.api.getSession({ headers: req.headers });
+        if (session?.user) {
+            const sessionUser = session.user;
+            const roles = [];
+            if (sessionUser.role)
+                roles.push(sessionUser.role);
+            user = { id: sessionUser.id, roles };
+            tenantId = req.headers.get("x-tenant-id") || sessionUser.id;
+        }
+    }
+    catch {
+        // No session — unauthenticated request
+    }
+    return { user, tenantId: tenantId ?? "" };
+}
+// ---------------------------------------------------------------------------
 // tRPC init
 // ---------------------------------------------------------------------------
 const t = initTRPC.context().create();

package/dist/trpc/routers/page-context.d.ts

@@ -0,0 +1,37 @@
+/**
+ * tRPC page-context router — stores and retrieves per-user page context.
+ *
+ * Pure platform-core — no product-specific imports.
+ */
+import type { IPageContextRepository } from "../../fleet/page-context-repository.js";
+export interface PageContextRouterDeps {
+    repo: IPageContextRepository;
+}
+export declare function setPageContextRouterDeps(deps: PageContextRouterDeps): void;
+export declare const pageContextRouter: import("@trpc/server").TRPCBuiltRouter<{
+    ctx: import("../init.js").TRPCContext;
+    meta: object;
+    errorShape: import("@trpc/server").TRPCDefaultErrorShape;
+    transformer: false;
+}, import("@trpc/server").TRPCDecorateCreateRouterOptions<{
+    /** Update the page context for the current user. Called on route change. */
+    update: import("@trpc/server").TRPCMutationProcedure<{
+        input: {
+            currentPage: string;
+            pagePrompt: string | null;
+        };
+        output: {
+            ok: true;
+        };
+        meta: object;
+    }>;
+    /** Get the current page context for the authenticated user. */
+    current: import("@trpc/server").TRPCQueryProcedure<{
+        input: void;
+        output: {
+            currentPage: string;
+            pagePrompt: string | null;
+        } | null;
+        meta: object;
+    }>;
+}>>;

package/dist/trpc/routers/page-context.js

@@ -0,0 +1,41 @@
+/**
+ * tRPC page-context router — stores and retrieves per-user page context.
+ *
+ * Pure platform-core — no product-specific imports.
+ */
+import { TRPCError } from "@trpc/server";
+import { z } from "zod";
+import { protectedProcedure, router } from "../init.js";
+let _deps = null;
+export function setPageContextRouterDeps(deps) {
+    _deps = deps;
+}
+function deps() {
+    if (!_deps)
+        throw new TRPCError({ code: "INTERNAL_SERVER_ERROR", message: "Page context not initialized" });
+    return _deps;
+}
+// ---------------------------------------------------------------------------
+// Schema
+// ---------------------------------------------------------------------------
+const updatePageContextSchema = z.object({
+    currentPage: z.string().min(1).max(500),
+    pagePrompt: z.string().max(2000).nullable(),
+});
+// ---------------------------------------------------------------------------
+// Router
+// ---------------------------------------------------------------------------
+export const pageContextRouter = router({
+    /** Update the page context for the current user. Called on route change. */
+    update: protectedProcedure.input(updatePageContextSchema).mutation(async ({ ctx, input }) => {
+        await deps().repo.set(ctx.user.id, input.currentPage, input.pagePrompt);
+        return { ok: true };
+    }),
+    /** Get the current page context for the authenticated user. */
+    current: protectedProcedure.query(async ({ ctx }) => {
+        const pc = await deps().repo.get(ctx.user.id);
+        if (!pc)
+            return null;
+        return { currentPage: pc.currentPage, pagePrompt: pc.pagePrompt };
+    }),
+});

package/dist/trpc/routers/profile.d.ts

@@ -0,0 +1,71 @@
+/**
+ * tRPC profile router — get/update user profile and change password.
+ *
+ * Pure platform-core — no product-specific imports.
+ */
+export interface ProfileRouterDeps {
+    getUser: (userId: string) => Promise<{
+        id: string;
+        name: string;
+        email: string;
+        image: string | null;
+        twoFactorEnabled: boolean;
+    } | null>;
+    updateUser: (userId: string, data: {
+        name?: string;
+        image?: string | null;
+    }) => Promise<{
+        id: string;
+        name: string;
+        email: string;
+        image: string | null;
+        twoFactorEnabled: boolean;
+    }>;
+    changePassword: (userId: string, currentPassword: string, newPassword: string) => Promise<boolean>;
+}
+export declare function setProfileRouterDeps(deps: ProfileRouterDeps): void;
+export declare const profileRouter: import("@trpc/server").TRPCBuiltRouter<{
+    ctx: import("../init.js").TRPCContext;
+    meta: object;
+    errorShape: import("@trpc/server").TRPCDefaultErrorShape;
+    transformer: false;
+}, import("@trpc/server").TRPCDecorateCreateRouterOptions<{
+    /** Get the authenticated user's profile. */
+    getProfile: import("@trpc/server").TRPCQueryProcedure<{
+        input: void;
+        output: {
+            id: string;
+            name: string;
+            email: string;
+            image: string | null;
+            twoFactorEnabled: boolean;
+        };
+        meta: object;
+    }>;
+    /** Update the authenticated user's display name and/or avatar. */
+    updateProfile: import("@trpc/server").TRPCMutationProcedure<{
+        input: {
+            name?: string | undefined;
+            image?: string | null | undefined;
+        };
+        output: {
+            id: string;
+            name: string;
+            email: string;
+            image: string | null;
+            twoFactorEnabled: boolean;
+        };
+        meta: object;
+    }>;
+    /** Change the authenticated user's password. */
+    changePassword: import("@trpc/server").TRPCMutationProcedure<{
+        input: {
+            currentPassword: string;
+            newPassword: string;
+        };
+        output: {
+            ok: true;
+        };
+        meta: object;
+    }>;
+}>>;

package/dist/trpc/routers/profile.js

@@ -0,0 +1,68 @@
+/**
+ * tRPC profile router — get/update user profile and change password.
+ *
+ * Pure platform-core — no product-specific imports.
+ */
+import { TRPCError } from "@trpc/server";
+import { z } from "zod";
+import { protectedProcedure, router } from "../init.js";
+let _deps = null;
+export function setProfileRouterDeps(deps) {
+    _deps = deps;
+}
+function deps() {
+    if (!_deps)
+        throw new TRPCError({ code: "INTERNAL_SERVER_ERROR", message: "Profile router not initialized" });
+    return _deps;
+}
+// ---------------------------------------------------------------------------
+// Router
+// ---------------------------------------------------------------------------
+export const profileRouter = router({
+    /** Get the authenticated user's profile. */
+    getProfile: protectedProcedure.query(async ({ ctx }) => {
+        const user = await deps().getUser(ctx.user.id);
+        if (!user) {
+            throw new TRPCError({ code: "NOT_FOUND", message: "User not found" });
+        }
+        return {
+            id: user.id,
+            name: user.name,
+            email: user.email,
+            image: user.image,
+            twoFactorEnabled: user.twoFactorEnabled,
+        };
+    }),
+    /** Update the authenticated user's display name and/or avatar. */
+    updateProfile: protectedProcedure
+        .input(z.object({
+        name: z.string().min(1).max(128).optional(),
+        image: z.string().url().max(2048).nullable().optional(),
+    }))
+        .mutation(async ({ input, ctx }) => {
+        const updated = await deps().updateUser(ctx.user.id, {
+            ...(input.name !== undefined && { name: input.name }),
+            ...(input.image !== undefined && { image: input.image }),
+        });
+        return {
+            id: updated.id,
+            name: updated.name,
+            email: updated.email,
+            image: updated.image,
+            twoFactorEnabled: updated.twoFactorEnabled,
+        };
+    }),
+    /** Change the authenticated user's password. */
+    changePassword: protectedProcedure
+        .input(z.object({
+        currentPassword: z.string().min(1),
+        newPassword: z.string().min(8, "Password must be at least 8 characters"),
+    }))
+        .mutation(async ({ input, ctx }) => {
+        const ok = await deps().changePassword(ctx.user.id, input.currentPassword, input.newPassword);
+        if (!ok) {
+            throw new TRPCError({ code: "BAD_REQUEST", message: "Current password is incorrect" });
+        }
+        return { ok: true };
+    }),
+});

package/dist/trpc/routers/settings.d.ts

@@ -0,0 +1,85 @@
+/**
+ * tRPC settings router — tenant config, preferences, health.
+ *
+ * Pure platform-core — service name parameterized via deps.
+ */
+import type { INotificationPreferencesRepository } from "../../email/index.js";
+export interface SettingsRouterDeps {
+    /** Service name returned by health endpoint (e.g. "paperclip-platform"). */
+    serviceName: string;
+    getNotificationPrefsStore: () => INotificationPreferencesRepository;
+    testProvider?: (provider: string, tenantId: string) => Promise<{
+        ok: boolean;
+        latencyMs?: number;
+        error?: string;
+    }>;
+}
+export declare function setSettingsRouterDeps(deps: SettingsRouterDeps): void;
+export declare const settingsRouter: import("@trpc/server").TRPCBuiltRouter<{
+    ctx: import("../init.js").TRPCContext;
+    meta: object;
+    errorShape: import("@trpc/server").TRPCDefaultErrorShape;
+    transformer: false;
+}, import("@trpc/server").TRPCDecorateCreateRouterOptions<{
+    /** Health check — publicly accessible. */
+    health: import("@trpc/server").TRPCQueryProcedure<{
+        input: void;
+        output: {
+            status: "ok";
+            service: string;
+        };
+        meta: object;
+    }>;
+    /** Get tenant configuration summary. */
+    tenantConfig: import("@trpc/server").TRPCQueryProcedure<{
+        input: void;
+        output: {
+            tenantId: string;
+            configured: boolean;
+        };
+        meta: object;
+    }>;
+    /** Ping — verify auth and tenant context. */
+    ping: import("@trpc/server").TRPCQueryProcedure<{
+        input: void;
+        output: {
+            ok: true;
+            tenantId: string;
+            userId: string;
+            timestamp: number;
+        };
+        meta: object;
+    }>;
+    /** Get notification preferences for the authenticated tenant. */
+    notificationPreferences: import("@trpc/server").TRPCQueryProcedure<{
+        input: void;
+        output: import("../../email/notification-repository-types.js").NotificationPrefs;
+        meta: object;
+    }>;
+    /** Test connectivity to a provider. */
+    testProvider: import("@trpc/server").TRPCMutationProcedure<{
+        input: {
+            provider: string;
+        };
+        output: {
+            ok: boolean;
+            latencyMs?: number;
+            error?: string;
+        };
+        meta: object;
+    }>;
+    /** Update notification preferences for the authenticated tenant. */
+    updateNotificationPreferences: import("@trpc/server").TRPCMutationProcedure<{
+        input: {
+            billing_low_balance?: boolean | undefined;
+            billing_receipts?: boolean | undefined;
+            billing_auto_topup?: boolean | undefined;
+            agent_channel_disconnect?: boolean | undefined;
+            agent_status_changes?: boolean | undefined;
+            account_role_changes?: boolean | undefined;
+            account_team_invites?: boolean | undefined;
+        };
+        output: import("../../email/notification-repository-types.js").NotificationPrefs;
+        meta: object;
+    }>;
+}>>;

package/dist/trpc/routers/settings.js

@@ -0,0 +1,73 @@
+/**
+ * tRPC settings router — tenant config, preferences, health.
+ *
+ * Pure platform-core — service name parameterized via deps.
+ */
+import { TRPCError } from "@trpc/server";
+import { z } from "zod";
+import { publicProcedure, router, tenantProcedure } from "../init.js";
+let _deps = null;
+export function setSettingsRouterDeps(deps) {
+    _deps = deps;
+}
+function deps() {
+    if (!_deps)
+        throw new TRPCError({ code: "INTERNAL_SERVER_ERROR", message: "Settings not initialized" });
+    return _deps;
+}
+// ---------------------------------------------------------------------------
+// Router
+// ---------------------------------------------------------------------------
+export const settingsRouter = router({
+    /** Health check — publicly accessible. */
+    health: publicProcedure.query(() => {
+        return { status: "ok", service: deps().serviceName };
+    }),
+    /** Get tenant configuration summary. */
+    tenantConfig: tenantProcedure.query(({ ctx }) => {
+        return {
+            tenantId: ctx.tenantId,
+            configured: true,
+        };
+    }),
+    /** Ping — verify auth and tenant context. */
+    ping: tenantProcedure.query(({ ctx }) => {
+        return {
+            ok: true,
+            tenantId: ctx.tenantId,
+            userId: ctx.user.id,
+            timestamp: Date.now(),
+        };
+    }),
+    /** Get notification preferences for the authenticated tenant. */
+    notificationPreferences: tenantProcedure.query(({ ctx }) => {
+        const store = deps().getNotificationPrefsStore();
+        return store.get(ctx.tenantId);
+    }),
+    /** Test connectivity to a provider. */
+    testProvider: tenantProcedure
+        .input(z.object({ provider: z.string().min(1).max(64) }))
+        .mutation(async ({ input, ctx }) => {
+        const testFn = deps().testProvider;
+        if (!testFn) {
+            return { ok: false, error: "Provider testing not configured" };
+        }
+        return testFn(input.provider, ctx.tenantId);
+    }),
+    /** Update notification preferences for the authenticated tenant. */
+    updateNotificationPreferences: tenantProcedure
+        .input(z.object({
+        billing_low_balance: z.boolean().optional(),
+        billing_receipts: z.boolean().optional(),
+        billing_auto_topup: z.boolean().optional(),
+        agent_channel_disconnect: z.boolean().optional(),
+        agent_status_changes: z.boolean().optional(),
+        account_role_changes: z.boolean().optional(),
+        account_team_invites: z.boolean().optional(),
+    }))
+        .mutation(async ({ input, ctx }) => {
+        const store = deps().getNotificationPrefsStore();
+        await store.update(ctx.tenantId, input);
+        return store.get(ctx.tenantId);
+    }),
+});

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@wopr-network/platform-core",
-  "version": "1.70.0",
+  "version": "1.71.0",
   "type": "module",
   "main": "dist/index.js",
   "types": "dist/index.d.ts",

package/src/server/container.ts

@@ -19,6 +19,7 @@ import type { FleetManager } from "../fleet/fleet-manager.js";
 import type { IProfileStore } from "../fleet/profile-store.js";
 import type { IServiceKeyRepository } from "../gateway/service-key-repository.js";
 import type { ProductConfig } from "../product-config/repository-types.js";
+import type { ProductConfigService } from "../product-config/service.js";
 import type { ProxyManagerInterface } from "../proxy/types.js";
 import type { IOrgMemberRepository } from "../tenancy/org-member-repository.js";
 import type { OrgService } from "../tenancy/org-service.js";
@@ -75,6 +76,7 @@ export interface PlatformContainer {
   db: DrizzleDb;
   pool: Pool;
   productConfig: ProductConfig;
+  productConfigService: ProductConfigService;
   creditLedger: ILedger;
   orgMemberRepo: IOrgMemberRepository;
   orgService: OrgService;
@@ -128,7 +130,7 @@ export async function buildContainer(bootConfig: BootConfig): Promise<PlatformCo
 
   // 4. Bootstrap product config from DB (auto-seeds from presets if needed)
   const { platformBoot } = await import("../product-config/boot.js");
-  const { config: productConfig } = await platformBoot({ slug: bootConfig.slug, db });
+  const { config: productConfig, service: productConfigService } = await platformBoot({ slug: bootConfig.slug, db });
 
   // 5. Credit ledger
   const { DrizzleLedger } = await import("../credits/ledger.js");
@@ -232,6 +234,7 @@ export async function buildContainer(bootConfig: BootConfig): Promise<PlatformCo
     db,
     pool,
     productConfig,
+    productConfigService,
     creditLedger,
     orgMemberRepo,
     orgService,

package/src/server/test-container.ts

@@ -12,6 +12,7 @@ import type { IUserRoleRepository } from "../auth/user-role-repository.js";
 import type { ILedger } from "../credits/ledger.js";
 import type { DrizzleDb } from "../db/index.js";
 import type { ProductConfig } from "../product-config/repository-types.js";
+import { ProductConfigService } from "../product-config/service.js";
 import type { IOrgMemberRepository } from "../tenancy/org-member-repository.js";
 import type { OrgService } from "../tenancy/org-service.js";
 import type { PlatformContainer } from "./container.js";
@@ -90,6 +91,19 @@ function stubProductConfig(): ProductConfig {
   };
 }
 
+function stubProductConfigService(): ProductConfigService {
+  const stubRepo = {
+    getBySlug: async () => stubProductConfig(),
+    listAll: async () => [],
+    upsertProduct: async () => stubProductConfig().product,
+    replaceNavItems: async () => {},
+    upsertFeatures: async () => {},
+    upsertFleetConfig: async () => {},
+    upsertBillingConfig: async () => {},
+  };
+  return new ProductConfigService(stubRepo as never);
+}
+
 // ---------------------------------------------------------------------------
 // Public API
 // ---------------------------------------------------------------------------
@@ -103,6 +117,7 @@ export function createTestContainer(overrides?: Partial<PlatformContainer>): Pla
     db: {} as DrizzleDb,
     pool: { end: async () => {} } as never,
     productConfig: stubProductConfig(),
+    productConfigService: stubProductConfigService(),
     creditLedger: stubLedger(),
     orgMemberRepo: stubOrgMemberRepo(),
     orgService: {} as OrgService,

package/src/trpc/index.ts

@@ -13,6 +13,7 @@ export { createFleetUpdateConfigRouter } from "./fleet-update-config-router.js";
 export {
   adminProcedure,
   createCallerFactory,
+  createTRPCContext,
   orgAdminProcedure,
   orgMemberProcedure,
   protectedProcedure,
@@ -28,3 +29,6 @@ export {
   type OrgRemovePaymentMethodDeps,
 } from "./org-remove-payment-method-router.js";
 export { createProductConfigRouter } from "./product-config-router.js";
+export { type PageContextRouterDeps, pageContextRouter, setPageContextRouterDeps } from "./routers/page-context.js";
+export { type ProfileRouterDeps, profileRouter, setProfileRouterDeps } from "./routers/profile.js";
+export { type SettingsRouterDeps, setSettingsRouterDeps, settingsRouter } from "./routers/settings.js";

package/src/trpc/init.ts

@@ -22,6 +22,34 @@ export interface TRPCContext {
   tenantId: string | undefined;
 }
 
+// ---------------------------------------------------------------------------
+// Context factory — resolves BetterAuth session into TRPCContext
+// ---------------------------------------------------------------------------
+
+/**
+ * Create a TRPCContext from an incoming request.
+ * Resolves the user from BetterAuth session cookies.
+ */
+export async function createTRPCContext(req: Request): Promise<TRPCContext> {
+  let user: AuthUser | undefined;
+  let tenantId: string | undefined;
+  try {
+    const { getAuth } = await import("../auth/better-auth.js");
+    const auth = getAuth();
+    const session = await auth.api.getSession({ headers: req.headers });
+    if (session?.user) {
+      const sessionUser = session.user as { id: string; role?: string };
+      const roles: string[] = [];
+      if (sessionUser.role) roles.push(sessionUser.role);
+      user = { id: sessionUser.id, roles };
+      tenantId = req.headers.get("x-tenant-id") || sessionUser.id;
+    }
+  } catch {
+    // No session — unauthenticated request
+  }
+  return { user, tenantId: tenantId ?? "" };
+}
+
 // ---------------------------------------------------------------------------
 // tRPC init
 // ---------------------------------------------------------------------------

package/src/trpc/routers/page-context.ts

@@ -0,0 +1,57 @@
+/**
+ * tRPC page-context router — stores and retrieves per-user page context.
+ *
+ * Pure platform-core — no product-specific imports.
+ */
+
+import { TRPCError } from "@trpc/server";
+import { z } from "zod";
+import type { IPageContextRepository } from "../../fleet/page-context-repository.js";
+import { protectedProcedure, router } from "../init.js";
+
+// ---------------------------------------------------------------------------
+// Deps
+// ---------------------------------------------------------------------------
+
+export interface PageContextRouterDeps {
+  repo: IPageContextRepository;
+}
+
+let _deps: PageContextRouterDeps | null = null;
+
+export function setPageContextRouterDeps(deps: PageContextRouterDeps): void {
+  _deps = deps;
+}
+
+function deps(): PageContextRouterDeps {
+  if (!_deps) throw new TRPCError({ code: "INTERNAL_SERVER_ERROR", message: "Page context not initialized" });
+  return _deps;
+}
+
+// ---------------------------------------------------------------------------
+// Schema
+// ---------------------------------------------------------------------------
+
+const updatePageContextSchema = z.object({
+  currentPage: z.string().min(1).max(500),
+  pagePrompt: z.string().max(2000).nullable(),
+});
+
+// ---------------------------------------------------------------------------
+// Router
+// ---------------------------------------------------------------------------
+
+export const pageContextRouter = router({
+  /** Update the page context for the current user. Called on route change. */
+  update: protectedProcedure.input(updatePageContextSchema).mutation(async ({ ctx, input }) => {
+    await deps().repo.set(ctx.user.id, input.currentPage, input.pagePrompt);
+    return { ok: true as const };
+  }),
+
+  /** Get the current page context for the authenticated user. */
+  current: protectedProcedure.query(async ({ ctx }) => {
+    const pc = await deps().repo.get(ctx.user.id);
+    if (!pc) return null;
+    return { currentPage: pc.currentPage, pagePrompt: pc.pagePrompt };
+  }),
+});

package/src/trpc/routers/profile.ts

@@ -0,0 +1,94 @@
+/**
+ * tRPC profile router — get/update user profile and change password.
+ *
+ * Pure platform-core — no product-specific imports.
+ */
+
+import { TRPCError } from "@trpc/server";
+import { z } from "zod";
+import { protectedProcedure, router } from "../init.js";
+
+// ---------------------------------------------------------------------------
+// Deps
+// ---------------------------------------------------------------------------
+
+export interface ProfileRouterDeps {
+  getUser: (
+    userId: string,
+  ) => Promise<{ id: string; name: string; email: string; image: string | null; twoFactorEnabled: boolean } | null>;
+  updateUser: (
+    userId: string,
+    data: { name?: string; image?: string | null },
+  ) => Promise<{ id: string; name: string; email: string; image: string | null; twoFactorEnabled: boolean }>;
+  changePassword: (userId: string, currentPassword: string, newPassword: string) => Promise<boolean>;
+}
+
+let _deps: ProfileRouterDeps | null = null;
+
+export function setProfileRouterDeps(deps: ProfileRouterDeps): void {
+  _deps = deps;
+}
+
+function deps(): ProfileRouterDeps {
+  if (!_deps) throw new TRPCError({ code: "INTERNAL_SERVER_ERROR", message: "Profile router not initialized" });
+  return _deps;
+}
+
+// ---------------------------------------------------------------------------
+// Router
+// ---------------------------------------------------------------------------
+
+export const profileRouter = router({
+  /** Get the authenticated user's profile. */
+  getProfile: protectedProcedure.query(async ({ ctx }) => {
+    const user = await deps().getUser(ctx.user.id);
+    if (!user) {
+      throw new TRPCError({ code: "NOT_FOUND", message: "User not found" });
+    }
+    return {
+      id: user.id,
+      name: user.name,
+      email: user.email,
+      image: user.image,
+      twoFactorEnabled: user.twoFactorEnabled,
+    };
+  }),
+
+  /** Update the authenticated user's display name and/or avatar. */
+  updateProfile: protectedProcedure
+    .input(
+      z.object({
+        name: z.string().min(1).max(128).optional(),
+        image: z.string().url().max(2048).nullable().optional(),
+      }),
+    )
+    .mutation(async ({ input, ctx }) => {
+      const updated = await deps().updateUser(ctx.user.id, {
+        ...(input.name !== undefined && { name: input.name }),
+        ...(input.image !== undefined && { image: input.image }),
+      });
+      return {
+        id: updated.id,
+        name: updated.name,
+        email: updated.email,
+        image: updated.image,
+        twoFactorEnabled: updated.twoFactorEnabled,
+      };
+    }),
+
+  /** Change the authenticated user's password. */
+  changePassword: protectedProcedure
+    .input(
+      z.object({
+        currentPassword: z.string().min(1),
+        newPassword: z.string().min(8, "Password must be at least 8 characters"),
+      }),
+    )
+    .mutation(async ({ input, ctx }) => {
+      const ok = await deps().changePassword(ctx.user.id, input.currentPassword, input.newPassword);
+      if (!ok) {
+        throw new TRPCError({ code: "BAD_REQUEST", message: "Current password is incorrect" });
+      }
+      return { ok: true as const };
+    }),
+});

package/src/trpc/routers/settings.ts

@@ -0,0 +1,97 @@
+/**
+ * tRPC settings router — tenant config, preferences, health.
+ *
+ * Pure platform-core — service name parameterized via deps.
+ */
+
+import { TRPCError } from "@trpc/server";
+import { z } from "zod";
+import type { INotificationPreferencesRepository } from "../../email/index.js";
+import { publicProcedure, router, tenantProcedure } from "../init.js";
+
+// ---------------------------------------------------------------------------
+// Deps
+// ---------------------------------------------------------------------------
+
+export interface SettingsRouterDeps {
+  /** Service name returned by health endpoint (e.g. "paperclip-platform"). */
+  serviceName: string;
+  getNotificationPrefsStore: () => INotificationPreferencesRepository;
+  testProvider?: (provider: string, tenantId: string) => Promise<{ ok: boolean; latencyMs?: number; error?: string }>;
+}
+
+let _deps: SettingsRouterDeps | null = null;
+
+export function setSettingsRouterDeps(deps: SettingsRouterDeps): void {
+  _deps = deps;
+}
+
+function deps(): SettingsRouterDeps {
+  if (!_deps) throw new TRPCError({ code: "INTERNAL_SERVER_ERROR", message: "Settings not initialized" });
+  return _deps;
+}
+
+// ---------------------------------------------------------------------------
+// Router
+// ---------------------------------------------------------------------------
+
+export const settingsRouter = router({
+  /** Health check — publicly accessible. */
+  health: publicProcedure.query(() => {
+    return { status: "ok" as const, service: deps().serviceName };
+  }),
+
+  /** Get tenant configuration summary. */
+  tenantConfig: tenantProcedure.query(({ ctx }) => {
+    return {
+      tenantId: ctx.tenantId,
+      configured: true,
+    };
+  }),
+
+  /** Ping — verify auth and tenant context. */
+  ping: tenantProcedure.query(({ ctx }) => {
+    return {
+      ok: true as const,
+      tenantId: ctx.tenantId,
+      userId: ctx.user.id,
+      timestamp: Date.now(),
+    };
+  }),
+
+  /** Get notification preferences for the authenticated tenant. */
+  notificationPreferences: tenantProcedure.query(({ ctx }) => {
+    const store = deps().getNotificationPrefsStore();
+    return store.get(ctx.tenantId);
+  }),
+
+  /** Test connectivity to a provider. */
+  testProvider: tenantProcedure
+    .input(z.object({ provider: z.string().min(1).max(64) }))
+    .mutation(async ({ input, ctx }) => {
+      const testFn = deps().testProvider;
+      if (!testFn) {
+        return { ok: false as const, error: "Provider testing not configured" };
+      }
+      return testFn(input.provider, ctx.tenantId);
+    }),
+
+  /** Update notification preferences for the authenticated tenant. */
+  updateNotificationPreferences: tenantProcedure
+    .input(
+      z.object({
+        billing_low_balance: z.boolean().optional(),
+        billing_receipts: z.boolean().optional(),
+        billing_auto_topup: z.boolean().optional(),
+        agent_channel_disconnect: z.boolean().optional(),
+        agent_status_changes: z.boolean().optional(),
+        account_role_changes: z.boolean().optional(),
+        account_team_invites: z.boolean().optional(),
+      }),
+    )
+    .mutation(async ({ input, ctx }) => {
+      const store = deps().getNotificationPrefsStore();
+      await store.update(ctx.tenantId, input);
+      return store.get(ctx.tenantId);
+    }),
+});