cdp-edge 2.5.4 → 2.5.6

package/server-edge-tracker/modules/dispatch/crm.ts

@@ -0,0 +1,382 @@
+/**
+ * CDP Edge — EVO CRM Premium Integration
+ * Fluxo: Meta CAPI → Worker → Contato + Conversa + Nota interna no EVO CRM
+ *
+ * Secrets necessários (wrangler secret put):
+ *   EVO_CRM_BASE_URL        → URL base do EVO CRM (ex: https://api-evocrm.suaempresa.com)
+ *   EVO_CRM_CLIENT_ID       → OAuth client_id (Doorkeeper app no CRM)
+ *   EVO_CRM_CLIENT_SECRET   → OAuth client_secret
+ *   EVO_CRM_INBOX_ID        → ID do inbox onde as conversas serão criadas
+ *
+ * Secrets opcionais (defaults BR):
+ *   EVO_CRM_DEFAULT_COUNTRY → Dial code para números locais sem +cc (default "55")
+ *   EVO_CRM_LOCALE          → "pt-BR" | "en-US" | "es-ES" (default "pt-BR")
+ *
+ * Uso (qualquer origem de lead):
+ *   await pushLeadToCrm(env, {
+ *     phone: '5511999990000',
+ *     name: 'João Silva',
+ *     email: 'joao@exemplo.com',
+ *     utmSource: 'facebook',
+ *     utmCampaign: 'campanha-x',
+ *     fbclid: 'AbC123...',
+ *     intentScore: 85,
+ *     ltvClass: 'high',
+ *     pageUrl: 'https://exemplo.com/lp',
+ *   });
+ */
+
+import { Env } from '../../types.js';
+
+// ── Tipos públicos ────────────────────────────────────────────────────────────
+
+export interface CrmLeadData {
+  // Identificação
+  phone: string;
+  name?: string | null;
+  email?: string | null;
+
+  // Meta CAPI
+  fbclid?: string | null;
+  fbc?: string | null;
+  fbp?: string | null;
+  ctwaClid?: string | null;
+  adId?: string | null;
+  messageBody?: string | null;
+  headline?: string | null;
+
+  // UTMs
+  utmSource?: string | null;
+  utmMedium?: string | null;
+  utmCampaign?: string | null;
+  utmContent?: string | null;
+  utmTerm?: string | null;
+
+  // Contexto
+  eventName?: string | null;
+  pageUrl?: string | null;
+  formName?: string | null;
+
+  // Scoring (Quantum Tracking)
+  intentScore?: number | null;
+  ltvClass?: string | null;
+  funnelStage?: string | null;
+  botScore?: number | null;
+
+  // Monetário
+  value?: number | null;
+  currency?: string | null;
+
+  // Atributos livres adicionais
+  attributes?: Record<string, string>;
+}
+
+/** @deprecated Use CrmLeadData + pushLeadToCrm */
+export interface CTWALeadData {
+  phone: string;
+  name?: string | null;
+  messageBody?: string | null;
+  ctwaClid?: string | null;
+  adId?: string | null;
+  sourceUrl?: string | null;
+  headline?: string | null;
+  wamid?: string | null;
+}
+
+/** @deprecated Use CrmLeadData + pushLeadToCrm */
+export interface FormLeadData {
+  phone: string;
+  name?: string | null;
+  email?: string | null;
+  formName?: string | null;
+  utmSource?: string | null;
+  utmCampaign?: string | null;
+  pageUrl?: string | null;
+}
+
+// ── Helpers internos ──────────────────────────────────────────────────────────
+
+function isCrmConfigured(env: Env): boolean {
+  return !!(env.EVO_CRM_BASE_URL && env.EVO_CRM_CLIENT_ID && env.EVO_CRM_CLIENT_SECRET);
+}
+
+function normalizePhone(phone: string, defaultCountryCode = '55'): string {
+  const trimmed = phone.trim();
+  const cc = (defaultCountryCode || '55').replace(/\D/g, '') || '55';
+
+  // Already in E.164 (starts with +): só limpa e re-prefixa
+  if (trimmed.startsWith('+')) return '+' + trimmed.replace(/\D/g, '');
+
+  const digits = trimmed.replace(/\D/g, '');
+
+  // Comportamento BR canônico (preservado): 55 + 10 ou 11 dígitos = válido
+  if (cc === '55' && digits.startsWith('55') && (digits.length === 12 || digits.length === 13)) {
+    return `+${digits}`;
+  }
+  if (cc === '55' && (digits.length === 10 || digits.length === 11)) {
+    return `+55${digits}`;
+  }
+
+  // Genérico: já tem o country code
+  if (digits.startsWith(cc) && digits.length > cc.length + 6) return `+${digits}`;
+
+  // Genérico: número local → prepend country code
+  if (digits.length >= 7 && digits.length <= 11) return `+${cc}${digits}`;
+
+  // Fallback: assume que já tem algum cc
+  return `+${digits}`;
+}
+
+// ── Localização da nota interna ───────────────────────────────────────────────
+
+type Locale = 'pt-BR' | 'en-US' | 'es-ES';
+
+const NOTE_LABELS: Record<Locale, Record<string, string>> = {
+  'pt-BR': {
+    title: '📊 *Novo Lead*',
+    name: 'Nome',
+    source: 'Origem',
+    campaign: 'Campanha',
+    form: 'Formulário',
+    ad: 'Anúncio',
+    message: 'Mensagem',
+    score: 'Score',
+    ltv: 'LTV',
+  },
+  'en-US': {
+    title: '📊 *New Lead*',
+    name: 'Name',
+    source: 'Source',
+    campaign: 'Campaign',
+    form: 'Form',
+    ad: 'Ad',
+    message: 'Message',
+    score: 'Score',
+    ltv: 'LTV',
+  },
+  'es-ES': {
+    title: '📊 *Nuevo Lead*',
+    name: 'Nombre',
+    source: 'Origen',
+    campaign: 'Campaña',
+    form: 'Formulario',
+    ad: 'Anuncio',
+    message: 'Mensaje',
+    score: 'Score',
+    ltv: 'LTV',
+  },
+};
+
+function resolveLocale(input?: string | null): Locale {
+  if (input && input in NOTE_LABELS) return input as Locale;
+  return 'pt-BR';
+}
+
+async function getAccessToken(env: Env): Promise<string | null> {
+  try {
+    const res = await fetch(`${env.EVO_CRM_BASE_URL}/oauth/token`, {
+      method: 'POST',
+      headers: { 'Content-Type': 'application/x-www-form-urlencoded' },
+      body: new URLSearchParams({
+        grant_type: 'client_credentials',
+        client_id: env.EVO_CRM_CLIENT_ID!,
+        client_secret: env.EVO_CRM_CLIENT_SECRET!,
+      }),
+    });
+    if (!res.ok) return null;
+    const data: any = await res.json();
+    return data.access_token ?? null;
+  } catch {
+    return null;
+  }
+}
+
+/** Nota interna para o agente: apenas o essencial para atender o lead. */
+function buildAgentNote(data: CrmLeadData, locale: Locale = 'pt-BR'): string {
+  const L = NOTE_LABELS[locale];
+  const lines: string[] = [L.title];
+
+  const name = data.name || data.phone;
+  lines.push(`• ${L.name}: ${name}`);
+
+  const source = [data.utmSource, data.utmMedium].filter(Boolean).join(' / ');
+  if (source) lines.push(`• ${L.source}: ${source}`);
+
+  if (data.utmCampaign) lines.push(`• ${L.campaign}: ${data.utmCampaign}`);
+  if (data.formName && data.formName !== data.eventName) lines.push(`• ${L.form}: ${data.formName}`);
+  if (data.headline)    lines.push(`• ${L.ad}: ${data.headline}`);
+  if (data.messageBody) lines.push(`• ${L.message}: "${data.messageBody}"`);
+
+  if (data.intentScore != null) {
+    const score = data.intentScore > 1 ? data.intentScore : Math.round(data.intentScore * 100);
+    const stage = data.funnelStage ? ` · ${data.funnelStage}` : '';
+    lines.push(`• ${L.score}: ${score}${stage}`);
+  }
+  if (data.ltvClass) lines.push(`• ${L.ltv}: ${data.ltvClass}`);
+
+  return lines.join('\n');
+}
+
+/** Monta additional_attributes para o contato no CRM. */
+function buildContactAttributes(data: CrmLeadData): Record<string, string> {
+  const attrs: Record<string, string> = {};
+
+  if (data.utmSource)   attrs['utm_source']   = data.utmSource;
+  if (data.utmMedium)   attrs['utm_medium']   = data.utmMedium;
+  if (data.utmCampaign) attrs['utm_campaign'] = data.utmCampaign;
+  if (data.utmContent)  attrs['utm_content']  = data.utmContent;
+  if (data.utmTerm)     attrs['utm_term']     = data.utmTerm;
+  if (data.pageUrl)     attrs['pagina']       = data.pageUrl;
+  if (data.formName)    attrs['formulario']   = data.formName;
+  if (data.fbclid)      attrs['fbclid']       = data.fbclid;
+  if (data.fbc)         attrs['fbc']          = data.fbc;
+  if (data.fbp)         attrs['fbp']          = data.fbp;
+  if (data.ctwaClid)    attrs['ctwa_clid']    = data.ctwaClid;
+  if (data.adId)        attrs['ad_id']        = data.adId;
+  if (data.messageBody) attrs['mensagem']     = data.messageBody;
+  if (data.headline)    attrs['anuncio']      = data.headline;
+  if (data.ltvClass)    attrs['ltv_class']    = data.ltvClass;
+  if (data.funnelStage) attrs['funil']        = data.funnelStage;
+  if (data.intentScore != null) attrs['intencao'] = String(data.intentScore);
+  if (data.eventName)   attrs['evento']       = data.eventName;
+
+  // Atributos livres
+  if (data.attributes) Object.assign(attrs, data.attributes);
+
+  return attrs;
+}
+
+// ── API principal (recomendada) ───────────────────────────────────────────────
+
+/**
+ * Cria contato + conversa aberta + nota interna no EVO CRM.
+ * Silencioso se os secrets não estiverem configurados.
+ * Retorna o ID do contato criado ou null em caso de erro/duplicata.
+ */
+export async function pushLeadToCrm(env: Env, data: CrmLeadData): Promise<string | null> {
+  if (!isCrmConfigured(env)) return null;
+
+  const token = await getAccessToken(env);
+  if (!token) {
+    console.warn('[EVO CRM] Failed to get access token');
+    return null;
+  }
+
+  const locale = resolveLocale(env.EVO_CRM_LOCALE);
+  const defaultCountry = env.EVO_CRM_DEFAULT_COUNTRY || '55';
+
+  const attrs = buildContactAttributes(data);
+  const contactPayload: Record<string, any> = {
+    name: data.name || data.phone,
+    phone_number: normalizePhone(data.phone, defaultCountry),
+  };
+  if (data.email) contactPayload.email = data.email;
+  if (Object.keys(attrs).length) contactPayload.additional_attributes = attrs;
+
+  // 1. Criar contato
+  let contactId: string | null = null;
+  try {
+    const res = await fetch(`${env.EVO_CRM_BASE_URL}/api/v1/contacts`, {
+      method: 'POST',
+      headers: { 'Content-Type': 'application/json', 'Authorization': `Bearer ${token}` },
+      body: JSON.stringify(contactPayload),
+    });
+    if (!res.ok) {
+      const body = await res.text();
+      console.warn('[EVO CRM] createContact non-ok:', res.status, body.slice(0, 200));
+      // 422 = contato já existe — tentar extrair o ID do payload de erro
+      if (res.status === 422) {
+        try {
+          const errJson: any = JSON.parse(body);
+          const rawId = errJson?.id ?? errJson?.data?.id ?? errJson?.contact?.id ?? errJson?.data?.contact?.id;
+          if (rawId != null) contactId = String(rawId);
+        } catch { /* body não é JSON */ }
+      }
+      if (!contactId) return null;
+    } else {
+      const result: any = await res.json();
+      // EVO CRM pode retornar { id } direto ou { data: { id } } ou { data: { contact: { id } } }
+      const rawId = result?.id ?? result?.data?.id ?? result?.data?.contact?.id;
+      contactId = rawId != null ? String(rawId) : null;
+    }
+  } catch (err: any) {
+    console.warn('[EVO CRM] createContact failed:', err?.message || String(err));
+    return null;
+  }
+
+  if (!contactId || !env.EVO_CRM_INBOX_ID) return contactId;
+
+  // 2. Criar conversa
+  let conversationId: string | null = null;
+  try {
+    const res = await fetch(`${env.EVO_CRM_BASE_URL}/api/v1/conversations`, {
+      method: 'POST',
+      headers: { 'Content-Type': 'application/json', 'Authorization': `Bearer ${token}` },
+      body: JSON.stringify({
+        inbox_id: env.EVO_CRM_INBOX_ID,
+        contact_id: contactId,
+        additional_attributes: {},
+      }),
+    });
+    if (!res.ok) {
+      const err = await res.text();
+      console.warn('[EVO CRM] createConversation non-ok:', res.status, err.slice(0, 200));
+    } else {
+      const result: any = await res.json();
+      const rawConvId = result?.id ?? result?.data?.id;
+      conversationId = rawConvId != null ? String(rawConvId) : null;
+    }
+  } catch (err: any) {
+    console.warn('[EVO CRM] createConversation failed:', err?.message || String(err));
+  }
+
+  // 3. Criar nota interna com contexto do lead
+  if (conversationId) {
+    try {
+      await fetch(`${env.EVO_CRM_BASE_URL}/api/v1/conversations/${conversationId}/messages`, {
+        method: 'POST',
+        headers: { 'Content-Type': 'application/json', 'Authorization': `Bearer ${token}` },
+        body: JSON.stringify({
+          content: buildAgentNote(data, locale),
+          message_type: 'activity',
+          private: true,
+        }),
+      });
+    } catch {
+      // nota interna é best-effort
+    }
+  }
+
+  return contactId;
+}
+
+// ── Compat: CTWA (WhatsApp click-to-chat) ────────────────────────────────────
+
+export async function notifyEvolutionCTWA(env: Env, data: CTWALeadData): Promise<void> {
+  await pushLeadToCrm(env, {
+    phone: data.phone,
+    name: data.name,
+    messageBody: data.messageBody,
+    ctwaClid: data.ctwaClid,
+    adId: data.adId,
+    pageUrl: data.sourceUrl,
+    headline: data.headline,
+    utmSource: 'whatsapp',
+    eventName: 'CTWA',
+  });
+}
+
+// ── Compat: Formulário ────────────────────────────────────────────────────────
+
+export async function notifyEvolutionForm(env: Env, data: FormLeadData): Promise<void> {
+  await pushLeadToCrm(env, {
+    phone: data.phone,
+    name: data.name,
+    email: data.email,
+    formName: data.formName,
+    utmSource: data.utmSource,
+    utmCampaign: data.utmCampaign,
+    pageUrl: data.pageUrl,
+    eventName: 'Lead',
+  });
+}

package/server-edge-tracker/modules/dispatch/whatsapp.ts

@@ -7,6 +7,7 @@ import { sha256, normalizePhone } from '../utils.js';
 import { saveLead, logApiFailure } from '../db.js';
 import { Env, TrackPayload } from '../../types.js';
 import { ExecutionContext } from '@cloudflare/workers-types';
+import { notifyEvolutionCTWA } from './crm.js';
 
 // ── Tipos ───────────────────────────────────────────────────────────────────────
 interface WhatsAppOptions {
@@ -248,6 +249,22 @@ export async function processWhatsAppWebhook(env: Env, body: any, request: Reque
       }, request, 'whatsapp')
     );
 
+    // ── Notifica o Evolution CRM sobre o novo lead CTWA ──────────────────────
+    // Cria/atualiza o contato no Evolution e abre a conversa para o vendedor.
+    // Silencioso se EVOLUTION_BASE_URL / EVOLUTION_INSTANCE / EVOLUTION_API_KEY
+    // não estiverem configurados.
+    ctx.waitUntil(
+      notifyEvolutionCTWA(env, {
+        phone:       phoneNorm,
+        messageBody: messageBody || undefined,
+        ctwaClid,
+        adId,
+        sourceUrl,
+        headline,
+        wamid,
+      })
+    );
+
     results.push({ ok: true, phone: phoneNorm.slice(0, 4) + '****', ctwa_clid: ctwaClid ? 'present' : 'absent', event_id: eventId });
   }
 

package/server-edge-tracker/modules/ml/fraud.ts

@@ -55,8 +55,11 @@ export async function checkFraudGate(env: Env, request: Request, payload: TrackP
       result.score += 40; result.reasons.push('suspicious_user_agent');
     }
 
-    // 4. Datacenter IP
+    // 4. Datacenter IP — kill-switch opcional (FRAUD_BLOCK_DATACENTERS=1 dropa direto)
     if (ip && DATACENTER_PATTERNS.test(asn)) {
+      if (env.FRAUD_BLOCK_DATACENTERS === '1') {
+        return { allowed: false, score: 100, reasons: ['datacenter_ip_killswitch'], action: 'dropped' };
+      }
       result.score += 35; result.reasons.push('datacenter_ip');
     }
 
@@ -65,6 +68,14 @@ export async function checkFraudGate(env: Env, request: Request, payload: TrackP
       result.score += 20; result.reasons.push('no_accept_language');
     }
 
+    // 5b. Geo-fence — country fora de ALLOWED_COUNTRIES (vazio = sem geo-fence)
+    const allowed = (env.ALLOWED_COUNTRIES || '').toUpperCase().split(',').map(s => s.trim()).filter(Boolean);
+    if (allowed.length > 0 && country && !allowed.includes(country)) {
+      const penalty = parseInt(env.FRAUD_GEO_PENALTY || '50');
+      result.score += penalty;
+      result.reasons.push(`country_blocked:${country}`);
+    }
+
     // 6. Velocity check via KV
     if (env.GEO_CACHE && ip) {
       const velKey1h = `fraud_velocity:${ip}:h`;
@@ -79,8 +90,9 @@ export async function checkFraudGate(env: Env, request: Request, payload: TrackP
 
     result.score = Math.min(100, result.score);
 
-    // 8. Decisão final
-    if (result.score >= 80) {
+    // 8. Decisão final — threshold configurável via FRAUD_DROP_THRESHOLD (default 50)
+    const dropThreshold = parseInt(env.FRAUD_DROP_THRESHOLD || '50');
+    if (result.score >= dropThreshold) {
       result.allowed = false;
       result.action  = 'dropped';
     } else if (result.score >= 40) {

package/server-edge-tracker/types.ts

@@ -64,6 +64,20 @@ export interface Env {
   RESEND_API_KEY?: string;
   RESEND_FROM_EMAIL?: string;
   CALLMEBOT_APIKEY?: string;
+
+  // EVO CRM — OAuth2 client_credentials
+  EVO_CRM_BASE_URL?: string;        // URL base do EVO CRM (ex: https://api-evocrm.suaempresa.com)
+  EVO_CRM_CLIENT_ID?: string;       // OAuth client_id (Doorkeeper app)
+  EVO_CRM_CLIENT_SECRET?: string;   // OAuth client_secret
+  EVO_CRM_INBOX_ID?: string;        // ID do inbox onde as conversas serão criadas
+  EVO_CRM_DEFAULT_COUNTRY?: string; // Country dial code para phones locais (default "55" = Brasil)
+  EVO_CRM_LOCALE?: string;          // Locale da nota interna: "pt-BR" | "en-US" | "es-ES" (default "pt-BR")
+
+  // Fraud Gate — defaults parametrizáveis por projeto (vazio = comportamento legado)
+  ALLOWED_COUNTRIES?: string;       // CSV ISO-2, ex: "BR" ou "BR,PT,AO". Vazio = sem geo-fence
+  FRAUD_DROP_THRESHOLD?: string;    // Score mínimo pra drop. Default "50" (antes era 80)
+  FRAUD_BLOCK_DATACENTERS?: string; // "1" = drop direto se ASN é datacenter (kill-switch)
+  FRAUD_GEO_PENALTY?: string;       // Pontos somados quando country não está em ALLOWED_COUNTRIES. Default "50"
 }
 
 // ── Event Payload Types ───────────────────────────────────────────────────────

package/server-edge-tracker/wrangler.toml

@@ -16,13 +16,13 @@ workers_dev = true
 # pattern  = "*.SEU_DOMINIO/track*"
 # zone_name = "SEU_DOMINIO"
 
-[[routes]]
-pattern  = "SEU_DOMINIO/track*"
-zone_name = "SEU_DOMINIO"
-
-[[routes]]
-pattern  = "*.SEU_DOMINIO/track*"
-zone_name = "SEU_DOMINIO"
+# [[routes]]
+# pattern  = "SEU_DOMINIO/track*"
+# zone_name = "SEU_DOMINIO"
+#
+# [[routes]]
+# pattern  = "*.SEU_DOMINIO/track*"
+# zone_name = "SEU_DOMINIO"
 
 # ── Variáveis públicas (não são segredos) ─────────────────────────────────────
 [vars]
@@ -134,3 +134,7 @@ head_sampling_rate = 1
 # wrangler secret put LINKEDIN_AD_ACCOUNT_ID    ← ID da conta de anúncios LinkedIn
 # wrangler secret put SPOTIFY_ACCESS_TOKEN      ← Bearer token Spotify Advertising API
 # wrangler secret put SPOTIFY_AD_ACCOUNT_ID     ← ID da conta de anúncios Spotify Ads
+# wrangler secret put EVO_CRM_BASE_URL          ← URL base do EVO CRM (ex: https://api-evocrm.suaempresa.com)
+# wrangler secret put EVO_CRM_CLIENT_ID         ← OAuth client_id (Doorkeeper app no CRM)
+# wrangler secret put EVO_CRM_CLIENT_SECRET     ← OAuth client_secret
+# wrangler secret put EVO_CRM_INBOX_ID          ← ID do inbox onde as conversas serão criadas