npm - business-stack - Versions diffs - 0.1.0 - Mend

business-stack 0.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (181) hide show

package/.python-version +1 -0
package/backend/.env.example +65 -0
package/backend/alembic/env.py +63 -0
package/backend/alembic/script.py.mako +26 -0
package/backend/alembic/versions/2a9c8f1d0e7b_multimodal_kb_schema.py +279 -0
package/backend/alembic/versions/3c1d2e4f5a6b_sqlite_vec_embeddings.py +58 -0
package/backend/alembic/versions/4e8b0c2d1a3f_document_links.py +50 -0
package/backend/alembic/versions/6a0b1c2d3e4f_link_expansion_dedupe_columns.py +49 -0
package/backend/alembic/versions/7d8e9f0a1b2c_document_chunks.py +70 -0
package/backend/alembic/versions/8f2a1c0d9e3b_initial_empty_revision.py +22 -0
package/backend/alembic/versions/9f0a1b2c3d4e_entity_mentions_cooccurrence.py +123 -0
package/backend/alembic/versions/b1c2d3e4f5a6_pipeline_dedupe_dlq.py +99 -0
package/backend/alembic/versions/c2d3e4f5061a_chat_sessions_messages.py +59 -0
package/backend/alembic.ini +42 -0
package/backend/app/__init__.py +0 -0
package/backend/app/config.py +337 -0
package/backend/app/connectors/__init__.py +13 -0
package/backend/app/connectors/base.py +39 -0
package/backend/app/connectors/builtins.py +51 -0
package/backend/app/connectors/playwright_session.py +146 -0
package/backend/app/connectors/registry.py +68 -0
package/backend/app/connectors/thread_expansion/__init__.py +33 -0
package/backend/app/connectors/thread_expansion/fakes.py +154 -0
package/backend/app/connectors/thread_expansion/models.py +113 -0
package/backend/app/connectors/thread_expansion/reddit.py +53 -0
package/backend/app/connectors/thread_expansion/twitter.py +49 -0
package/backend/app/db.py +5 -0
package/backend/app/dependencies.py +34 -0
package/backend/app/logging_config.py +35 -0
package/backend/app/main.py +97 -0
package/backend/app/middleware/__init__.py +0 -0
package/backend/app/middleware/gateway_identity.py +17 -0
package/backend/app/middleware/openapi_gateway.py +71 -0
package/backend/app/middleware/request_id.py +23 -0
package/backend/app/openapi_config.py +126 -0
package/backend/app/routers/__init__.py +0 -0
package/backend/app/routers/admin_pipeline.py +123 -0
package/backend/app/routers/chat.py +206 -0
package/backend/app/routers/chunks.py +36 -0
package/backend/app/routers/entity_extract.py +31 -0
package/backend/app/routers/example.py +8 -0
package/backend/app/routers/gemini_embed.py +58 -0
package/backend/app/routers/health.py +28 -0
package/backend/app/routers/ingestion.py +146 -0
package/backend/app/routers/link_expansion.py +34 -0
package/backend/app/routers/pipeline_status.py +304 -0
package/backend/app/routers/query.py +63 -0
package/backend/app/routers/vectors.py +63 -0
package/backend/app/schemas/__init__.py +0 -0
package/backend/app/schemas/canonical.py +44 -0
package/backend/app/schemas/chat.py +50 -0
package/backend/app/schemas/ingest.py +29 -0
package/backend/app/schemas/query.py +153 -0
package/backend/app/schemas/vectors.py +56 -0
package/backend/app/services/__init__.py +0 -0
package/backend/app/services/chat_store.py +152 -0
package/backend/app/services/chunking/__init__.py +3 -0
package/backend/app/services/chunking/llm_boundaries.py +63 -0
package/backend/app/services/chunking/schemas.py +30 -0
package/backend/app/services/chunking/semantic_chunk.py +178 -0
package/backend/app/services/chunking/splitters.py +214 -0
package/backend/app/services/embeddings/__init__.py +20 -0
package/backend/app/services/embeddings/build_inputs.py +140 -0
package/backend/app/services/embeddings/dlq.py +128 -0
package/backend/app/services/embeddings/gemini_api.py +207 -0
package/backend/app/services/embeddings/persist.py +74 -0
package/backend/app/services/embeddings/types.py +32 -0
package/backend/app/services/embeddings/worker.py +224 -0
package/backend/app/services/entities/__init__.py +12 -0
package/backend/app/services/entities/gliner_extract.py +63 -0
package/backend/app/services/entities/llm_extract.py +94 -0
package/backend/app/services/entities/pipeline.py +179 -0
package/backend/app/services/entities/spacy_extract.py +63 -0
package/backend/app/services/entities/types.py +15 -0
package/backend/app/services/gemini_chat.py +113 -0
package/backend/app/services/hooks/__init__.py +3 -0
package/backend/app/services/hooks/post_ingest.py +186 -0
package/backend/app/services/ingestion/__init__.py +0 -0
package/backend/app/services/ingestion/persist.py +188 -0
package/backend/app/services/integrations_remote.py +91 -0
package/backend/app/services/link_expansion/__init__.py +3 -0
package/backend/app/services/link_expansion/canonical_url.py +45 -0
package/backend/app/services/link_expansion/domain_policy.py +26 -0
package/backend/app/services/link_expansion/html_extract.py +72 -0
package/backend/app/services/link_expansion/rate_limit.py +32 -0
package/backend/app/services/link_expansion/robots.py +46 -0
package/backend/app/services/link_expansion/schemas.py +67 -0
package/backend/app/services/link_expansion/worker.py +458 -0
package/backend/app/services/normalization/__init__.py +7 -0
package/backend/app/services/normalization/normalizer.py +331 -0
package/backend/app/services/normalization/persist_normalized.py +67 -0
package/backend/app/services/playwright_extract/__init__.py +13 -0
package/backend/app/services/playwright_extract/__main__.py +96 -0
package/backend/app/services/playwright_extract/extract.py +181 -0
package/backend/app/services/retrieval_service.py +351 -0
package/backend/app/sqlite_ext.py +36 -0
package/backend/app/storage/__init__.py +3 -0
package/backend/app/storage/blobs.py +30 -0
package/backend/app/vectorstore/__init__.py +13 -0
package/backend/app/vectorstore/sqlite_vec_store.py +242 -0
package/backend/backend.egg-info/PKG-INFO +18 -0
package/backend/backend.egg-info/SOURCES.txt +93 -0
package/backend/backend.egg-info/dependency_links.txt +1 -0
package/backend/backend.egg-info/entry_points.txt +2 -0
package/backend/backend.egg-info/requires.txt +15 -0
package/backend/backend.egg-info/top_level.txt +4 -0
package/backend/package.json +15 -0
package/backend/pyproject.toml +52 -0
package/backend/tests/conftest.py +40 -0
package/backend/tests/test_chat.py +92 -0
package/backend/tests/test_chunking.py +132 -0
package/backend/tests/test_entities.py +170 -0
package/backend/tests/test_gemini_embed.py +224 -0
package/backend/tests/test_health.py +24 -0
package/backend/tests/test_ingest_raw.py +123 -0
package/backend/tests/test_link_expansion.py +241 -0
package/backend/tests/test_main.py +12 -0
package/backend/tests/test_normalizer.py +114 -0
package/backend/tests/test_openapi_gateway.py +40 -0
package/backend/tests/test_pipeline_hardening.py +285 -0
package/backend/tests/test_pipeline_status.py +71 -0
package/backend/tests/test_playwright_extract.py +80 -0
package/backend/tests/test_post_ingest_hooks.py +162 -0
package/backend/tests/test_query.py +165 -0
package/backend/tests/test_thread_expansion.py +72 -0
package/backend/tests/test_vectors.py +85 -0
package/backend/uv.lock +1839 -0
package/bin/business-stack.cjs +412 -0
package/frontend/web/.env.example +23 -0
package/frontend/web/AGENTS.md +5 -0
package/frontend/web/CLAUDE.md +1 -0
package/frontend/web/README.md +36 -0
package/frontend/web/components.json +25 -0
package/frontend/web/next-env.d.ts +6 -0
package/frontend/web/next.config.ts +30 -0
package/frontend/web/package.json +65 -0
package/frontend/web/postcss.config.mjs +7 -0
package/frontend/web/skills-lock.json +35 -0
package/frontend/web/src/app/account/[[...path]]/page.tsx +19 -0
package/frontend/web/src/app/auth/[[...path]]/page.tsx +14 -0
package/frontend/web/src/app/chat/page.tsx +725 -0
package/frontend/web/src/app/favicon.ico +0 -0
package/frontend/web/src/app/globals.css +563 -0
package/frontend/web/src/app/layout.tsx +50 -0
package/frontend/web/src/app/page.tsx +96 -0
package/frontend/web/src/app/settings/integrations/actions.ts +74 -0
package/frontend/web/src/app/settings/integrations/integrations-settings-form.tsx +330 -0
package/frontend/web/src/app/settings/integrations/page.tsx +41 -0
package/frontend/web/src/app/webhooks/alpha-alerts/route.ts +84 -0
package/frontend/web/src/components/home-auth-panel.tsx +49 -0
package/frontend/web/src/components/providers.tsx +50 -0
package/frontend/web/src/lib/alpha-webhook/connectors/registry.ts +35 -0
package/frontend/web/src/lib/alpha-webhook/connectors/types.ts +8 -0
package/frontend/web/src/lib/alpha-webhook/connectors/wabridge-delivery.test.ts +40 -0
package/frontend/web/src/lib/alpha-webhook/connectors/wabridge-delivery.ts +78 -0
package/frontend/web/src/lib/alpha-webhook/connectors/wabridge.ts +30 -0
package/frontend/web/src/lib/alpha-webhook/handler.ts +12 -0
package/frontend/web/src/lib/alpha-webhook/signature.test.ts +33 -0
package/frontend/web/src/lib/alpha-webhook/signature.ts +21 -0
package/frontend/web/src/lib/alpha-webhook/types.ts +23 -0
package/frontend/web/src/lib/auth-client.ts +23 -0
package/frontend/web/src/lib/integrations-config.ts +125 -0
package/frontend/web/src/lib/ui-utills.tsx +90 -0
package/frontend/web/src/lib/utils.ts +6 -0
package/frontend/web/tsconfig.json +36 -0
package/frontend/web/tsconfig.tsbuildinfo +1 -0
package/frontend/web/vitest.config.ts +14 -0
package/gateway/.env.example +23 -0
package/gateway/README.md +13 -0
package/gateway/package.json +24 -0
package/gateway/src/auth.ts +49 -0
package/gateway/src/index.ts +141 -0
package/gateway/src/integrations/admin.ts +19 -0
package/gateway/src/integrations/crypto.ts +52 -0
package/gateway/src/integrations/handlers.ts +124 -0
package/gateway/src/integrations/keys.ts +12 -0
package/gateway/src/integrations/store.ts +106 -0
package/gateway/src/stack-secrets.ts +35 -0
package/gateway/tsconfig.json +13 -0
package/package.json +33 -0
package/turbo.json +27 -0

package/backend/tests/test_normalizer.py ADDED Viewed

@@ -0,0 +1,114 @@
+from __future__ import annotations
+import base64
+import hashlib
+from datetime import UTC, datetime
+from pathlib import Path
+import pytest
+from app.schemas.ingest import RawIngestEnvelope
+from app.services.normalization.normalizer import (
+    extract_urls_from_text,
+    normalize_envelope_to_canonical,
+    parse_blob_sha256,
+)
+from app.storage.blobs import BlobStore
+def test_text_only_string_payload(tmp_path: Path) -> None:
+    store = BlobStore(tmp_path / "blobs")
+    ts = datetime(2026, 4, 5, 12, 0, tzinfo=UTC)
+    env = RawIngestEnvelope(
+        source="slack",
+        timestamp=ts,
+        content_type="text",
+        payload="Hello from the connector.",
+        metadata={},
+    )
+    doc = normalize_envelope_to_canonical(
+        document_id="doc-1",
+        envelope=env,
+        blob_store=store,
+    )
+    assert doc.id == "doc-1"
+    assert doc.source == "slack"
+    assert doc.timestamp == ts
+    assert len(doc.content_blocks) == 1
+    assert doc.content_blocks[0].type == "text"
+    assert doc.content_blocks[0].data == "Hello from the connector."
+    assert doc.content_blocks[0].raw_input is None
+    assert doc.content_blocks[0].mime == "text/plain"
+    assert doc.links == []
+    assert doc.summary == "Hello from the connector."
+    assert doc.raw_content == "Hello from the connector."
+def test_text_and_image_multimodal_preserves_blocks_and_blob(tmp_path: Path) -> None:
+    store = BlobStore(tmp_path / "blobs")
+    image_bytes = b"\x89PNG\r\n\x1a\nfake-png-bytes-for-test"
+    b64 = base64.b64encode(image_bytes).decode("ascii")
+    expected_sha = hashlib.sha256(image_bytes).hexdigest()
+    ts = datetime(2026, 4, 5, 12, 0, tzinfo=UTC)
+    env = RawIngestEnvelope(
+        source="twitter",
+        timestamp=ts,
+        content_type="multimodal",
+        payload={
+            "tweet": "Hot take + chart",
+            "image_base64": b64,
+        },
+        metadata={},
+    )
+    doc = normalize_envelope_to_canonical(
+        document_id="doc-2",
+        envelope=env,
+        blob_store=store,
+    )
+    assert len(doc.content_blocks) == 2
+    assert doc.content_blocks[0].type == "text"
+    assert doc.content_blocks[0].data == "Hot take + chart"
+    assert doc.content_blocks[1].type == "image"
+    assert doc.content_blocks[1].raw_input == f"blob://{expected_sha}"
+    sha = parse_blob_sha256(doc.content_blocks[1].raw_input)
+    assert sha == expected_sha
+    blob_path = store._path_for(expected_sha)
+    assert blob_path.is_file()
+    assert blob_path.read_bytes() == image_bytes
+    assert doc.summary.startswith("Hot take")
+def test_url_metadata_and_inline_urls_deduped(tmp_path: Path) -> None:
+    store = BlobStore(tmp_path / "blobs")
+    ts = datetime(2026, 4, 5, 12, 0, tzinfo=UTC)
+    env = RawIngestEnvelope(
+        source="rss",
+        timestamp=ts,
+        content_type="text",
+        payload="Read https://example.com/a and also https://example.com/b",
+        metadata={
+            "url": "https://example.com/a",
+            "urls": ["https://example.com/c"],
+        },
+    )
+    doc = normalize_envelope_to_canonical(
+        document_id="doc-3",
+        envelope=env,
+        blob_store=store,
+    )
+    assert doc.links == [
+        "https://example.com/a",
+        "https://example.com/b",
+        "https://example.com/c",
+    ]
+@pytest.mark.parametrize(
+    "text,expected",
+    [
+        ("no urls here", []),
+        ("see https://x.com/foo?q=1", ["https://x.com/foo?q=1"]),
+    ],
+)
+def test_extract_urls_from_text(text: str, expected: list[str]) -> None:
+    assert extract_urls_from_text(text) == expected

package/backend/tests/test_openapi_gateway.py ADDED Viewed

@@ -0,0 +1,40 @@
+import pytest
+from httpx import ASGITransport, AsyncClient
+from app.config import get_settings
+from app.main import create_app
+@pytest.fixture
+def anyio_backend():
+    return "asyncio"
+@pytest.mark.anyio
+async def test_openapi_paths_require_gateway_secret_when_configured(monkeypatch):
+    monkeypatch.setenv("BACKEND_GATEWAY_SECRET", "test-gateway-secret")
+    get_settings.cache_clear()
+    app = create_app()
+    transport = ASGITransport(app=app)
+    async with AsyncClient(transport=transport, base_url="http://test") as client:
+        r = await client.get("/docs", headers={"x-user-id": "u1"})
+        assert r.status_code == 403
+        r2 = await client.get(
+            "/docs",
+            headers={
+                "x-user-id": "u1",
+                "x-gateway-secret": "test-gateway-secret",
+            },
+        )
+        assert r2.status_code == 200
+@pytest.mark.anyio
+async def test_openapi_paths_allow_without_secret(monkeypatch):
+    monkeypatch.delenv("BACKEND_GATEWAY_SECRET", raising=False)
+    get_settings.cache_clear()
+    app = create_app()
+    transport = ASGITransport(app=app)
+    async with AsyncClient(transport=transport, base_url="http://test") as client:
+        r = await client.get("/docs", headers={"x-user-id": "u1"})
+        assert r.status_code == 200

package/backend/tests/test_pipeline_hardening.py ADDED Viewed

@@ -0,0 +1,285 @@
+from __future__ import annotations
+import asyncio
+import json
+import os
+import sqlite3
+from datetime import UTC, datetime
+from pathlib import Path
+from unittest.mock import AsyncMock, MagicMock, patch
+from alembic.config import Config
+from fastapi.testclient import TestClient
+from sqlalchemy import text
+from sqlalchemy.ext.asyncio import AsyncSession, async_sessionmaker, create_async_engine
+from alembic import command
+from app.config import Settings, clear_settings_cache, get_settings
+from app.services.embeddings.worker import run_embed_document_job
+def test_ingest_dedupe_external_id(migrated_client: TestClient) -> None:
+    h = {"x-user-id": "u1"}
+    ts1 = datetime(2026, 4, 1, 10, 0, 0, tzinfo=UTC)
+    ts2 = datetime(2026, 4, 2, 11, 0, 0, tzinfo=UTC)
+    base = {
+        "source": "dedupe-src",
+        "content_type": "text",
+        "payload": "same body",
+        "metadata": {"external_id": "ext-42"},
+    }
+    r1 = migrated_client.post(
+        "/ingest/raw?connector=echo",
+        headers=h,
+        json={**base, "timestamp": ts1.isoformat()},
+    )
+    r2 = migrated_client.post(
+        "/ingest/raw?connector=echo",
+        headers=h,
+        json={**base, "timestamp": ts2.isoformat()},
+    )
+    assert r1.status_code == 200
+    assert r2.status_code == 200
+    assert r1.json()["document_id"] == r2.json()["document_id"]
+    assert r2.json()["deduplicated"] is True
+    assert r1.json()["deduplicated"] is False
+def test_ingest_dedupe_content_hash_no_external_id(
+    migrated_client: TestClient,
+) -> None:
+    h = {"x-user-id": "u1"}
+    ts1 = datetime(2026, 4, 1, 10, 0, 0, tzinfo=UTC)
+    ts2 = datetime(2026, 4, 2, 11, 0, 0, tzinfo=UTC)
+    body = {
+        "source": "hash-src",
+        "content_type": "text",
+        "payload": "identical",
+        "metadata": {},
+    }
+    r1 = migrated_client.post(
+        "/ingest/raw?connector=echo",
+        headers=h,
+        json={**body, "timestamp": ts1.isoformat()},
+    )
+    r2 = migrated_client.post(
+        "/ingest/raw?connector=echo",
+        headers=h,
+        json={**body, "timestamp": ts2.isoformat()},
+    )
+    assert r1.json()["document_id"] == r2.json()["document_id"]
+    assert r2.json()["deduplicated"] is True
+def test_ingest_normalization_failure_stores_error_and_partial(
+    migrated_client: TestClient,
+    monkeypatch,
+) -> None:
+    h = {"x-user-id": "u1"}
+    def boom(*args, **kwargs):
+        raise RuntimeError("normalize boom")
+    monkeypatch.setattr(
+        "app.routers.ingestion.normalize_envelope_to_canonical",
+        boom,
+    )
+    r = migrated_client.post(
+        "/ingest/raw?connector=echo",
+        headers=h,
+        json={
+            "source": "norm-fail",
+            "timestamp": datetime.now(UTC).isoformat(),
+            "content_type": "text",
+            "payload": "x",
+            "metadata": {},
+        },
+    )
+    assert r.status_code == 200
+    data = r.json()
+    assert data["normalization_failed"] is True
+    assert data["canonical"]["content_blocks"] == []
+    doc_id = data["document_id"]
+    settings = get_settings()
+    conn = sqlite3.connect(str(settings.data_dir / settings.sqlite_filename))
+    row = conn.execute(
+        "SELECT normalization_error FROM documents WHERE id = ?",
+        (doc_id,),
+    ).fetchone()
+    conn.close()
+    assert row is not None
+    assert row[0] is not None
+    err = json.loads(row[0])
+    assert err["type"] == "RuntimeError"
+def test_admin_reprocess_normalization(migrated_client: TestClient) -> None:
+    h = {"x-user-id": "u1"}
+    def boom(*args, **kwargs):
+        raise RuntimeError("temporary")
+    with patch(
+        "app.routers.ingestion.normalize_envelope_to_canonical",
+        side_effect=boom,
+    ):
+        r = migrated_client.post(
+            "/ingest/raw?connector=echo",
+            headers=h,
+            json={
+                "source": "reproc",
+                "timestamp": datetime.now(UTC).isoformat(),
+                "content_type": "text",
+                "payload": "hello reproc",
+                "metadata": {},
+            },
+        )
+    assert r.status_code == 200
+    doc_id = r.json()["document_id"]
+    rr = migrated_client.post(
+        f"/admin/documents/{doc_id}/reprocess-normalization",
+        headers=h,
+    )
+    assert rr.status_code == 200
+    settings = get_settings()
+    conn = sqlite3.connect(str(settings.data_dir / settings.sqlite_filename))
+    ne = conn.execute(
+        "SELECT normalization_error FROM documents WHERE id = ?",
+        (doc_id,),
+    ).fetchone()[0]
+    blocks = conn.execute(
+        "SELECT COUNT(*) FROM content_blocks WHERE document_id = ?",
+        (doc_id,),
+    ).fetchone()[0]
+    conn.close()
+    assert ne is None
+    assert blocks >= 1
+def test_embed_failure_writes_dlq(tmp_path, monkeypatch) -> None:
+    monkeypatch.setenv("DATA_DIR", str(tmp_path))
+    monkeypatch.setenv("GEMINI_API_KEY", "k")
+    monkeypatch.setenv("EMBEDDING_DLQ_MAX_ATTEMPTS", "3")
+    clear_settings_cache()
+    backend = Path(__file__).resolve().parents[1]
+    prev = os.getcwd()
+    os.chdir(str(backend))
+    try:
+        command.upgrade(Config(str(backend / "alembic.ini")), "head")
+    finally:
+        os.chdir(prev)
+    clear_settings_cache()
+    settings = Settings()
+    engine = create_async_engine(settings.sqlalchemy_database_url)
+    factory = async_sessionmaker(engine, class_=AsyncSession, expire_on_commit=False)
+    doc_id = "dlq-doc-1"
+    async def _seed() -> None:
+        async with factory() as session:
+            await session.execute(
+                text("INSERT INTO sources (name, connector_type) VALUES ('s','s')"),
+            )
+            sid_row = await session.execute(text("SELECT id FROM sources LIMIT 1"))
+            sid = int(sid_row.scalar_one())
+            await session.execute(
+                text(
+                    "INSERT INTO documents "
+                    "(id, source_id, timestamp, content_type, raw_content, "
+                    "summary, status) VALUES "
+                    "(:id, :sid, :ts, 'text', '{}', 'x', 'partial')",
+                ),
+                {"id": doc_id, "sid": sid, "ts": datetime.now(UTC).isoformat()},
+            )
+            await session.execute(
+                text(
+                    "INSERT INTO document_chunks "
+                    "(document_id, ordinal, text, start_block_ordinal, "
+                    "end_block_ordinal, meta) VALUES (:d, 0, 't', 0, 0, NULL)",
+                ),
+                {"d": doc_id},
+            )
+            await session.commit()
+    asyncio.run(_seed())
+    async def _fail() -> None:
+        with patch(
+            "app.services.embeddings.worker.batch_embed_contents",
+            new=AsyncMock(side_effect=RuntimeError("api down")),
+        ):
+            await run_embed_document_job(
+                document_id=doc_id,
+                multimodal=False,
+                session_factory=factory,
+                settings=get_settings(),
+                store=MagicMock(),
+            )
+    asyncio.run(_fail())
+    db_path = (get_settings().data_dir / get_settings().sqlite_filename).resolve()
+    conn = sqlite3.connect(str(db_path))
+    row = conn.execute(
+        "SELECT attempt_count, state FROM embedding_dlq WHERE document_id = ?",
+        (doc_id,),
+    ).fetchone()
+    conn.close()
+    assert row is not None
+    assert int(row[0]) == 1
+    assert row[1] == "pending_retry"
+    asyncio.run(engine.dispose())
+def test_admin_retry_embedding_clears_dlq(
+    migrated_client: TestClient,
+    monkeypatch,
+) -> None:
+    monkeypatch.setenv("GEMINI_API_KEY", "k")
+    clear_settings_cache()
+    h = {"x-user-id": "u1"}
+    ing = migrated_client.post(
+        "/ingest/raw?connector=echo",
+        headers=h,
+        json={
+            "source": "adm",
+            "timestamp": datetime.now(UTC).isoformat(),
+            "content_type": "text",
+            "payload": "p",
+            "metadata": {},
+        },
+    )
+    doc_id = ing.json()["document_id"]
+    settings = get_settings()
+    db_path = str(settings.data_dir / settings.sqlite_filename)
+    conn = sqlite3.connect(db_path)
+    conn.execute(
+        "INSERT INTO embedding_dlq (document_id, last_error, attempt_count, "
+        "next_retry_at, state, multimodal) VALUES (?, ?, 2, NULL, 'dead', 0)",
+        (doc_id, "old err"),
+    )
+    conn.commit()
+    conn.close()
+    mock_job = MagicMock()
+    with patch(
+        "app.routers.admin_pipeline.run_embed_document_job",
+        mock_job,
+    ):
+        r = migrated_client.post(
+            f"/admin/documents/{doc_id}/retry-embedding",
+            headers=h,
+            json={"multimodal": False},
+        )
+    assert r.status_code == 200
+    conn = sqlite3.connect(db_path)
+    n = conn.execute(
+        "SELECT COUNT(*) FROM embedding_dlq WHERE document_id = ?",
+        (doc_id,),
+    ).fetchone()[0]
+    conn.close()
+    assert n == 0
+    mock_job.assert_called_once()

package/backend/tests/test_pipeline_status.py ADDED Viewed

@@ -0,0 +1,71 @@
+from fastapi.testclient import TestClient
+def test_pipeline_status_404(migrated_client: TestClient) -> None:
+    h = {"x-user-id": "u-pipe"}
+    r = migrated_client.get(
+        "/ingest/documents/missing-id/pipeline",
+        headers=h,
+    )
+    assert r.status_code == 404
+def test_pipeline_status_after_ingest(migrated_client: TestClient) -> None:
+    h = {"x-user-id": "u-pipe"}
+    env = {
+        "source": "test",
+        "timestamp": "2026-04-05T00:00:00Z",
+        "content_type": "text",
+        "payload": "hello pipeline",
+        "metadata": {},
+    }
+    ing = migrated_client.post(
+        "/ingest/raw?connector=generic",
+        headers=h,
+        json=env,
+    )
+    assert ing.status_code == 200
+    doc_id = ing.json()["document_id"]
+    r = migrated_client.get(
+        f"/ingest/documents/{doc_id}/pipeline",
+        headers=h,
+    )
+    assert r.status_code == 200
+    body = r.json()
+    assert body["document_id"] == doc_id
+    assert "steps" in body
+    assert isinstance(body["steps"], list)
+    assert body["chunk_count"] >= 0
+    assert body["content_block_count"] >= 0
+def test_pipeline_response_shape(migrated_client: TestClient) -> None:
+    h = {"x-user-id": "u-pipe"}
+    env = {
+        "source": "test",
+        "timestamp": "2026-04-05T00:00:01Z",
+        "content_type": "text",
+        "payload": "shape",
+        "metadata": {},
+    }
+    ing = migrated_client.post(
+        "/ingest/raw?connector=generic",
+        headers=h,
+        json=env,
+    )
+    doc_id = ing.json()["document_id"]
+    r = migrated_client.get(
+        f"/ingest/documents/{doc_id}/pipeline",
+        headers=h,
+    )
+    assert r.status_code == 200
+    j = r.json()
+    for key in (
+        "normalization_error",
+        "ingest_meta",
+        "vector_row_count",
+        "gemini_embedding_row_count",
+        "checked_at",
+    ):
+        assert key in j

package/backend/tests/test_playwright_extract.py ADDED Viewed

@@ -0,0 +1,80 @@
+from __future__ import annotations
+from datetime import UTC, datetime
+import pytest
+from fastapi.testclient import TestClient
+from app.services.playwright_extract.extract import (
+    assert_url_allowed,
+    host_matches_allowlist,
+)
+def test_host_allowlist_exact() -> None:
+    assert host_matches_allowlist("example.com", ["example.com"])
+    assert not host_matches_allowlist("evil.com", ["example.com"])
+def test_host_allowlist_suffix() -> None:
+    assert host_matches_allowlist("sub.example.com", ["*.example.com"])
+    assert host_matches_allowlist("example.com", ["*.example.com"])
+    assert not host_matches_allowlist("notexample.com", ["*.example.com"])
+def test_assert_url_allowed_rejects_non_http() -> None:
+    with pytest.raises(ValueError, match="scheme"):
+        assert_url_allowed("file:///etc/passwd", ["x"])
+def test_assert_url_allowed_empty_hosts() -> None:
+    with pytest.raises(ValueError, match="non-empty"):
+        assert_url_allowed("https://a.com", [])
+def test_playwright_ingest_enriches_envelope(
+    migrated_client: TestClient,
+    monkeypatch,
+) -> None:
+    from app.services.playwright_extract.extract import PlaywrightExtractResult
+    def fake_extract(*args, **kwargs):
+        assert kwargs["allowlisted_hosts"] == ["example.com"]
+        return PlaywrightExtractResult(
+            visible_text="hello page",
+            title="Hi",
+            final_url="https://example.com/after",
+            truncated=False,
+            meta={},
+        )
+    monkeypatch.setattr(
+        "app.connectors.playwright_session.extract_visible_text_sync",
+        fake_extract,
+    )
+    r = migrated_client.post(
+        "/ingest/raw?connector=playwright_session",
+        headers={"x-user-id": "u1"},
+        json={
+            "source": "pw-test",
+            "timestamp": datetime(2026, 3, 1, tzinfo=UTC).isoformat(),
+            "content_type": "text",
+            "payload": "",
+            "metadata": {
+                "url": "https://example.com/start",
+                "playwright_user_data_dir": r"C:\fake\pw-profile",
+                "connector_config": {
+                    "allowlisted_hosts": ["example.com"],
+                },
+            },
+        },
+    )
+    assert r.status_code == 200, r.text
+    data = r.json()
+    assert data["normalized"]["extracted_text_chars"] == len("hello page")
+    canonical = data["canonical"]
+    assert any(
+        b.get("type") == "text" and "hello page" in (b.get("data") or "")
+        for b in canonical.get("content_blocks", [])
+    )