couchloop-eq-mcp 1.0.0

package/dist/server/oauth/tokenEncryption.js

@@ -0,0 +1,218 @@
+import { createCipheriv, createDecipheriv, randomBytes, scrypt, createHash, timingSafeEqual } from 'crypto';
+import { promisify } from 'util';
+import { logger } from '../../utils/logger.js';
+const scryptAsync = promisify(scrypt);
+/**
+ * Token Encryption Manager
+ * Provides AES-256-GCM encryption for tokens at rest
+ */
+export class TokenEncryption {
+    algorithm = 'aes-256-gcm';
+    saltLength = 32;
+    tagLength = 16;
+    ivLength = 16;
+    keyLength = 32;
+    /**
+     * Encrypt a token using AES-256-GCM
+     * Returns encrypted data and a hash for indexing
+     */
+    async encryptToken(plaintext) {
+        if (!plaintext) {
+            throw new Error('Cannot encrypt empty token');
+        }
+        const encryptionKey = this.getEncryptionKey();
+        // Generate salt and IV for this encryption
+        const salt = randomBytes(this.saltLength);
+        const iv = randomBytes(this.ivLength);
+        // Derive key from master key and salt
+        const key = await this.deriveKey(encryptionKey, salt);
+        // Create cipher
+        const cipher = createCipheriv(this.algorithm, key, iv);
+        // Encrypt the token
+        const encrypted = Buffer.concat([
+            cipher.update(plaintext, 'utf8'),
+            cipher.final(),
+        ]);
+        // Get the authentication tag
+        const tag = cipher.getAuthTag();
+        // Combine salt, iv, tag, and encrypted data
+        const combined = Buffer.concat([salt, iv, tag, encrypted]);
+        // Generate hash for indexing (allows searching without decryption)
+        const hash = this.hashToken(plaintext);
+        const result = {
+            encrypted: combined.toString('base64url'),
+            hash,
+        };
+        logger.debug(`Token encrypted, length: ${result.encrypted.length}`);
+        return result;
+    }
+    /**
+     * Decrypt a token
+     */
+    async decryptToken(encryptedData) {
+        if (!encryptedData) {
+            throw new Error('Cannot decrypt empty data');
+        }
+        const encryptionKey = this.getEncryptionKey();
+        try {
+            // Parse the combined buffer
+            const combined = Buffer.from(encryptedData, 'base64url');
+            if (combined.length < this.saltLength + this.ivLength + this.tagLength) {
+                throw new Error('Invalid encrypted data format');
+            }
+            // Extract components
+            const salt = combined.slice(0, this.saltLength);
+            const iv = combined.slice(this.saltLength, this.saltLength + this.ivLength);
+            const tag = combined.slice(this.saltLength + this.ivLength, this.saltLength + this.ivLength + this.tagLength);
+            const encrypted = combined.slice(this.saltLength + this.ivLength + this.tagLength);
+            // Derive the same key
+            const key = await this.deriveKey(encryptionKey, salt);
+            // Create decipher
+            const decipher = createDecipheriv(this.algorithm, key, iv);
+            decipher.setAuthTag(tag);
+            // Decrypt
+            const decrypted = Buffer.concat([
+                decipher.update(encrypted),
+                decipher.final(),
+            ]);
+            const result = decrypted.toString('utf8');
+            logger.debug('Token decrypted successfully');
+            return result;
+        }
+        catch (error) {
+            logger.error('Token decryption failed:', error);
+            throw new Error('Failed to decrypt token');
+        }
+    }
+    /**
+     * Hash a token for indexing
+     * Uses SHA256 for consistent hashing
+     */
+    hashToken(token) {
+        const hash = createHash('sha256')
+            .update(token)
+            .digest('base64url');
+        return hash;
+    }
+    /**
+     * Verify a plaintext token matches a hash
+     */
+    verifyTokenHash(plaintext, hash) {
+        const computedHash = this.hashToken(plaintext);
+        // Constant-time comparison
+        if (computedHash.length !== hash.length) {
+            return false;
+        }
+        const bufferA = Buffer.from(computedHash);
+        const bufferB = Buffer.from(hash);
+        try {
+            return timingSafeEqual(bufferA, bufferB);
+        }
+        catch {
+            return false;
+        }
+    }
+    /**
+     * Encrypt sensitive data (generic, not just tokens)
+     */
+    async encrypt(text) {
+        const { encrypted } = await this.encryptToken(text);
+        return encrypted;
+    }
+    /**
+     * Decrypt sensitive data (generic)
+     */
+    async decrypt(encryptedData) {
+        return this.decryptToken(encryptedData);
+    }
+    /**
+     * Derive encryption key from password and salt
+     * Uses scrypt for key derivation
+     */
+    async deriveKey(password, salt) {
+        const key = await scryptAsync(password, salt, this.keyLength);
+        return key;
+    }
+    /**
+     * Get the master encryption key
+     * In production, this should come from a secure key management service
+     */
+    getEncryptionKey() {
+        const key = process.env.ENCRYPTION_KEY;
+        if (!key) {
+            throw new Error('ENCRYPTION_KEY environment variable not set');
+        }
+        // Validate key strength (should be at least 32 characters)
+        if (key.length < 32) {
+            throw new Error('ENCRYPTION_KEY must be at least 32 characters');
+        }
+        return key;
+    }
+    /**
+     * Rotate encryption (re-encrypt with new salt/IV)
+     * Useful for key rotation scenarios
+     */
+    async rotateEncryption(encryptedData) {
+        // Decrypt with old parameters
+        const plaintext = await this.decryptToken(encryptedData);
+        // Re-encrypt with new salt/IV
+        return this.encryptToken(plaintext);
+    }
+    /**
+     * Batch encrypt multiple tokens
+     * More efficient than individual encryption
+     */
+    async encryptBatch(tokens) {
+        return Promise.all(tokens.map(token => this.encryptToken(token)));
+    }
+    /**
+     * Batch decrypt multiple tokens
+     */
+    async decryptBatch(encryptedTokens) {
+        return Promise.all(encryptedTokens.map(token => this.decryptToken(token)));
+    }
+    /**
+     * Generate a secure random token
+     * Useful for generating access/refresh tokens
+     */
+    generateSecureToken(length = 32) {
+        return randomBytes(length).toString('base64url');
+    }
+    /**
+     * Validate encryption key on startup
+     * Ensures the key meets security requirements
+     */
+    validateEncryptionSetup() {
+        try {
+            const key = this.getEncryptionKey();
+            // Check key entropy (rough estimate)
+            const uniqueChars = new Set(key).size;
+            if (uniqueChars < 10) {
+                logger.warn('Encryption key has low entropy');
+                return false;
+            }
+            // Test encryption/decryption
+            const testData = 'test_encryption_validation';
+            this.encryptToken(testData)
+                .then(encrypted => this.decryptToken(encrypted.encrypted))
+                .then(decrypted => {
+                if (decrypted !== testData) {
+                    throw new Error('Encryption validation failed');
+                }
+            });
+            logger.info('Token encryption setup validated successfully');
+            return true;
+        }
+        catch (error) {
+            logger.error('Encryption setup validation failed:', error);
+            return false;
+        }
+    }
+}
+// Export singleton instance
+export const tokenEncryption = new TokenEncryption();
+// Validate encryption on module load
+if (process.env.NODE_ENV !== 'test') {
+    tokenEncryption.validateEncryptionSetup();
+}
+//# sourceMappingURL=tokenEncryption.js.map

package/dist/server/oauth/tokenEncryption.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"tokenEncryption.js","sourceRoot":"","sources":["../../../src/server/oauth/tokenEncryption.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,cAAc,EAAE,gBAAgB,EAAE,WAAW,EAAE,MAAM,EAAE,UAAU,EAAE,eAAe,EAAE,MAAM,QAAQ,CAAC;AAC5G,OAAO,EAAE,SAAS,EAAE,MAAM,MAAM,CAAC;AACjC,OAAO,EAAE,MAAM,EAAE,MAAM,uBAAuB,CAAC;AAE/C,MAAM,WAAW,GAAG,SAAS,CAAC,MAAM,CAAC,CAAC;AAUtC;;;GAGG;AACH,MAAM,OAAO,eAAe;IACT,SAAS,GAAG,aAAa,CAAC;IAC1B,UAAU,GAAG,EAAE,CAAC;IAChB,SAAS,GAAG,EAAE,CAAC;IACf,QAAQ,GAAG,EAAE,CAAC;IACd,SAAS,GAAG,EAAE,CAAC;IAEhC;;;OAGG;IACH,KAAK,CAAC,YAAY,CAAC,SAAiB;QAClC,IAAI,CAAC,SAAS,EAAE,CAAC;YACf,MAAM,IAAI,KAAK,CAAC,4BAA4B,CAAC,CAAC;QAChD,CAAC;QAED,MAAM,aAAa,GAAG,IAAI,CAAC,gBAAgB,EAAE,CAAC;QAE9C,2CAA2C;QAC3C,MAAM,IAAI,GAAG,WAAW,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC;QAC1C,MAAM,EAAE,GAAG,WAAW,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QAEtC,sCAAsC;QACtC,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,SAAS,CAAC,aAAa,EAAE,IAAI,CAAC,CAAC;QAEtD,gBAAgB;QAChB,MAAM,MAAM,GAAG,cAAc,CAAC,IAAI,CAAC,SAAS,EAAE,GAAG,EAAE,EAAE,CAAC,CAAC;QAEvD,oBAAoB;QACpB,MAAM,SAAS,GAAG,MAAM,CAAC,MAAM,CAAC;YAC9B,MAAM,CAAC,MAAM,CAAC,SAAS,EAAE,MAAM,CAAC;YAChC,MAAM,CAAC,KAAK,EAAE;SACf,CAAC,CAAC;QAEH,6BAA6B;QAC7B,MAAM,GAAG,GAAG,MAAM,CAAC,UAAU,EAAE,CAAC;QAEhC,4CAA4C;QAC5C,MAAM,QAAQ,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC,IAAI,EAAE,EAAE,EAAE,GAAG,EAAE,SAAS,CAAC,CAAC,CAAC;QAE3D,mEAAmE;QACnE,MAAM,IAAI,GAAG,IAAI,CAAC,SAAS,CAAC,SAAS,CAAC,CAAC;QAEvC,MAAM,MAAM,GAAG;YACb,SAAS,EAAE,QAAQ,CAAC,QAAQ,CAAC,WAAW,CAAC;YACzC,IAAI;SACL,CAAC;QAEF,MAAM,CAAC,KAAK,CAAC,4BAA4B,MAAM,CAAC,SAAS,CAAC,MAAM,EAAE,CAAC,CAAC;QACpE,OAAO,MAAM,CAAC;IAChB,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,YAAY,CAAC,aAAqB;QACtC,IAAI,CAAC,aAAa,EAAE,CAAC;YACnB,MAAM,IAAI,KAAK,CAAC,2BAA2B,CAAC,CAAC;QAC/C,CAAC;QAED,MAAM,aAAa,GAAG,IAAI,CAAC,gBAAgB,EAAE,CAAC;QAE9C,IAAI,CAAC;YACH,4BAA4B;YAC5B,MAAM,QAAQ,GAAG,MAAM,CAAC,IAAI,CAAC,aAAa,EAAE,WAAW,CAAC,CAAC;YAEzD,IAAI,QAAQ,CAAC,MAAM,GAAG,IAAI,CAAC,UAAU,GAAG,IAAI,CAAC,QAAQ,GAAG,IAAI,CAAC,SAAS,EAAE,CAAC;gBACvE,MAAM,IAAI,KAAK,CAAC,+BAA+B,CAAC,CAAC;YACnD,CAAC;YAED,qBAAqB;YACrB,MAAM,IAAI,GAAG,QAAQ,CAAC,KAAK,CAAC,CAAC,EAAE,IAAI,CAAC,UAAU,CAAC,CAAC;YAChD,MAAM,EAAE,GAAG,QAAQ,CAAC,KAAK,CAAC,IAAI,CAAC,UAAU,EAAE,IAAI,CAAC,UAAU,GAAG,IAAI,CAAC,QAAQ,CAAC,CAAC;YAC5E,MAAM,GAAG,GAAG,QAAQ,CAAC,KAAK,CACxB,IAAI,CAAC,UAAU,GAAG,IAAI,CAAC,QAAQ,EAC/B,IAAI,CAAC,UAAU,GAAG,IAAI,CAAC,QAAQ,GAAG,IAAI,CAAC,SAAS,CACjD,CAAC;YACF,MAAM,SAAS,GAAG,QAAQ,CAAC,KAAK,CAAC,IAAI,CAAC,UAAU,GAAG,IAAI,CAAC,QAAQ,GAAG,IAAI,CAAC,SAAS,CAAC,CAAC;YAEnF,sBAAsB;YACtB,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,SAAS,CAAC,aAAa,EAAE,IAAI,CAAC,CAAC;YAEtD,kBAAkB;YAClB,MAAM,QAAQ,GAAG,gBAAgB,CAAC,IAAI,CAAC,SAAS,EAAE,GAAG,EAAE,EAAE,CAAC,CAAC;YAC3D,QAAQ,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC;YAEzB,UAAU;YACV,MAAM,SAAS,GAAG,MAAM,CAAC,MAAM,CAAC;gBAC9B,QAAQ,CAAC,MAAM,CAAC,SAAS,CAAC;gBAC1B,QAAQ,CAAC,KAAK,EAAE;aACjB,CAAC,CAAC;YAEH,MAAM,MAAM,GAAG,SAAS,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC;YAC1C,MAAM,CAAC,KAAK,CAAC,8BAA8B,CAAC,CAAC;YAC7C,OAAO,MAAM,CAAC;QAChB,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,CAAC,KAAK,CAAC,0BAA0B,EAAE,KAAK,CAAC,CAAC;YAChD,MAAM,IAAI,KAAK,CAAC,yBAAyB,CAAC,CAAC;QAC7C,CAAC;IACH,CAAC;IAED;;;OAGG;IACH,SAAS,CAAC,KAAa;QACrB,MAAM,IAAI,GAAG,UAAU,CAAC,QAAQ,CAAC;aAC9B,MAAM,CAAC,KAAK,CAAC;aACb,MAAM,CAAC,WAAW,CAAC,CAAC;QAEvB,OAAO,IAAI,CAAC;IACd,CAAC;IAED;;OAEG;IACH,eAAe,CAAC,SAAiB,EAAE,IAAY;QAC7C,MAAM,YAAY,GAAG,IAAI,CAAC,SAAS,CAAC,SAAS,CAAC,CAAC;QAE/C,2BAA2B;QAC3B,IAAI,YAAY,CAAC,MAAM,KAAK,IAAI,CAAC,MAAM,EAAE,CAAC;YACxC,OAAO,KAAK,CAAC;QACf,CAAC;QAED,MAAM,OAAO,GAAG,MAAM,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC;QAC1C,MAAM,OAAO,GAAG,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QAElC,IAAI,CAAC;YACH,OAAO,eAAe,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC;QAC3C,CAAC;QAAC,MAAM,CAAC;YACP,OAAO,KAAK,CAAC;QACf,CAAC;IACH,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,OAAO,CAAC,IAAY;QACxB,MAAM,EAAE,SAAS,EAAE,GAAG,MAAM,IAAI,CAAC,YAAY,CAAC,IAAI,CAAC,CAAC;QACpD,OAAO,SAAS,CAAC;IACnB,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,OAAO,CAAC,aAAqB;QACjC,OAAO,IAAI,CAAC,YAAY,CAAC,aAAa,CAAC,CAAC;IAC1C,CAAC;IAED;;;OAGG;IACK,KAAK,CAAC,SAAS,CAAC,QAAgB,EAAE,IAAY;QACpD,MAAM,GAAG,GAAG,MAAM,WAAW,CAAC,QAAQ,EAAE,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,CAAC;QAC9D,OAAO,GAAa,CAAC;IACvB,CAAC;IAED;;;OAGG;IACK,gBAAgB;QACtB,MAAM,GAAG,GAAG,OAAO,CAAC,GAAG,CAAC,cAAc,CAAC;QAEvC,IAAI,CAAC,GAAG,EAAE,CAAC;YACT,MAAM,IAAI,KAAK,CAAC,6CAA6C,CAAC,CAAC;QACjE,CAAC;QAED,2DAA2D;QAC3D,IAAI,GAAG,CAAC,MAAM,GAAG,EAAE,EAAE,CAAC;YACpB,MAAM,IAAI,KAAK,CAAC,+CAA+C,CAAC,CAAC;QACnE,CAAC;QAED,OAAO,GAAG,CAAC;IACb,CAAC;IAED;;;OAGG;IACH,KAAK,CAAC,gBAAgB,CAAC,aAAqB;QAC1C,8BAA8B;QAC9B,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,YAAY,CAAC,aAAa,CAAC,CAAC;QAEzD,8BAA8B;QAC9B,OAAO,IAAI,CAAC,YAAY,CAAC,SAAS,CAAC,CAAC;IACtC,CAAC;IAED;;;OAGG;IACH,KAAK,CAAC,YAAY,CAAC,MAAgB;QACjC,OAAO,OAAO,CAAC,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,KAAK,CAAC,EAAE,CAAC,IAAI,CAAC,YAAY,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;IACpE,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,YAAY,CAAC,eAAyB;QAC1C,OAAO,OAAO,CAAC,GAAG,CAAC,eAAe,CAAC,GAAG,CAAC,KAAK,CAAC,EAAE,CAAC,IAAI,CAAC,YAAY,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;IAC7E,CAAC;IAED;;;OAGG;IACH,mBAAmB,CAAC,SAAiB,EAAE;QACrC,OAAO,WAAW,CAAC,MAAM,CAAC,CAAC,QAAQ,CAAC,WAAW,CAAC,CAAC;IACnD,CAAC;IAED;;;OAGG;IACH,uBAAuB;QACrB,IAAI,CAAC;YACH,MAAM,GAAG,GAAG,IAAI,CAAC,gBAAgB,EAAE,CAAC;YAEpC,qCAAqC;YACrC,MAAM,WAAW,GAAG,IAAI,GAAG,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;YACtC,IAAI,WAAW,GAAG,EAAE,EAAE,CAAC;gBACrB,MAAM,CAAC,IAAI,CAAC,gCAAgC,CAAC,CAAC;gBAC9C,OAAO,KAAK,CAAC;YACf,CAAC;YAED,6BAA6B;YAC7B,MAAM,QAAQ,GAAG,4BAA4B,CAAC;YAC9C,IAAI,CAAC,YAAY,CAAC,QAAQ,CAAC;iBACxB,IAAI,CAAC,SAAS,CAAC,EAAE,CAAC,IAAI,CAAC,YAAY,CAAC,SAAS,CAAC,SAAS,CAAC,CAAC;iBACzD,IAAI,CAAC,SAAS,CAAC,EAAE;gBAChB,IAAI,SAAS,KAAK,QAAQ,EAAE,CAAC;oBAC3B,MAAM,IAAI,KAAK,CAAC,8BAA8B,CAAC,CAAC;gBAClD,CAAC;YACH,CAAC,CAAC,CAAC;YAEL,MAAM,CAAC,IAAI,CAAC,+CAA+C,CAAC,CAAC;YAC7D,OAAO,IAAI,CAAC;QACd,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,CAAC,KAAK,CAAC,qCAAqC,EAAE,KAAK,CAAC,CAAC;YAC3D,OAAO,KAAK,CAAC;QACf,CAAC;IACH,CAAC;CACF;AAED,4BAA4B;AAC5B,MAAM,CAAC,MAAM,eAAe,GAAG,IAAI,eAAe,EAAE,CAAC;AAErD,qCAAqC;AACrC,IAAI,OAAO,CAAC,GAAG,CAAC,QAAQ,KAAK,MAAM,EAAE,CAAC;IACpC,eAAe,CAAC,uBAAuB,EAAE,CAAC;AAC5C,CAAC"}

package/dist/tools/checkpoint.d.ts

@@ -0,0 +1,35 @@
+export declare function saveCheckpoint(args: any): Promise<{
+    error: string;
+    details?: any;
+} | {
+    checkpoint_id: string;
+    next_step: {
+        id: string;
+        order: number;
+        type: "prompt" | "checkpoint" | "summary";
+        content: {
+            prompt?: string;
+            checkpoint_key?: string;
+            instructions?: string;
+        };
+        optional: boolean;
+    } | null | undefined;
+    journey_complete: boolean;
+    message: string;
+}>;
+export declare function getCheckpoints(args: any): Promise<{
+    error: string;
+    details?: any;
+} | {
+    session_id: any;
+    checkpoints: {
+        id: string;
+        createdAt: Date;
+        sessionId: string;
+        stepId: string;
+        key: string;
+        value: unknown;
+    }[];
+    count: number;
+}>;
+//# sourceMappingURL=checkpoint.d.ts.map

package/dist/tools/checkpoint.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"checkpoint.d.ts","sourceRoot":"","sources":["../../src/tools/checkpoint.ts"],"names":[],"mappings":"AAOA,wBAAsB,cAAc,CAAC,IAAI,EAAE,GAAG;;;;;;;;;;kBA0BpB,CAAC;0BAEnB,CAAD;wBACI,CAAC;;;;;;GAmEX;AAED,wBAAsB,cAAc,CAAC,IAAI,EAAE,GAAG;;;;;;;;;;;;;;GAgC7C"}

package/dist/tools/checkpoint.js

@@ -0,0 +1,125 @@
+import { getDb } from '../db/client.js';
+import { sessions, journeys, checkpoints } from '../db/schema.js';
+import { eq } from 'drizzle-orm';
+import { SaveCheckpointSchema } from '../types/checkpoint.js';
+import { handleError, NotFoundError } from '../utils/errors.js';
+import { logger } from '../utils/logger.js';
+export async function saveCheckpoint(args) {
+    try {
+        const input = SaveCheckpointSchema.parse(args);
+        const db = getDb();
+        // Verify session exists and is active
+        const [session] = await db
+            .select()
+            .from(sessions)
+            .where(eq(sessions.id, input.session_id))
+            .limit(1);
+        if (!session) {
+            throw new NotFoundError('Session', input.session_id);
+        }
+        if (session.status !== 'active') {
+            throw new Error(`Session is ${session.status}, not active`);
+        }
+        // Get current step ID
+        let stepId = 'freeform';
+        let nextStep = null;
+        let journeyComplete = false;
+        if (session.journeyId) {
+            const [journey] = await db
+                .select()
+                .from(journeys)
+                .where(eq(journeys.id, session.journeyId))
+                .limit(1);
+            if (journey && journey.steps) {
+                const currentStepData = journey.steps[session.currentStep];
+                if (currentStepData) {
+                    stepId = currentStepData.id;
+                }
+                // Advance to next step if requested
+                if (input.advance_step) {
+                    const nextStepIndex = session.currentStep + 1;
+                    if (nextStepIndex < journey.steps.length) {
+                        nextStep = journey.steps[nextStepIndex];
+                        // Update session's current step
+                        await db
+                            .update(sessions)
+                            .set({
+                            currentStep: nextStepIndex,
+                            lastActiveAt: new Date(),
+                        })
+                            .where(eq(sessions.id, session.id));
+                    }
+                    else {
+                        // Journey complete
+                        journeyComplete = true;
+                        await db
+                            .update(sessions)
+                            .set({
+                            status: 'completed',
+                            completedAt: new Date(),
+                            lastActiveAt: new Date(),
+                        })
+                            .where(eq(sessions.id, session.id));
+                    }
+                }
+            }
+        }
+        // Save checkpoint
+        const checkpointResult = await db
+            .insert(checkpoints)
+            .values({
+            sessionId: input.session_id,
+            stepId: stepId,
+            key: input.key,
+            value: input.value,
+        })
+            .returning();
+        const checkpoint = checkpointResult[0];
+        logger.info(`Saved checkpoint: ${checkpoint.id} for session: ${session.id}`);
+        return {
+            checkpoint_id: checkpoint.id,
+            next_step: nextStep,
+            journey_complete: journeyComplete,
+            message: journeyComplete
+                ? 'Journey completed! Well done.'
+                : nextStep
+                    ? `Checkpoint saved. ${nextStep.content?.prompt || 'Continue to next step.'}`
+                    : 'Checkpoint saved.',
+        };
+    }
+    catch (error) {
+        logger.error('Error saving checkpoint:', error);
+        return handleError(error);
+    }
+}
+export async function getCheckpoints(args) {
+    try {
+        const { session_id } = args;
+        const db = getDb();
+        // Verify session exists
+        const [session] = await db
+            .select()
+            .from(sessions)
+            .where(eq(sessions.id, session_id))
+            .limit(1);
+        if (!session) {
+            throw new NotFoundError('Session', session_id);
+        }
+        // Get all checkpoints
+        const sessionCheckpoints = await db
+            .select()
+            .from(checkpoints)
+            .where(eq(checkpoints.sessionId, session_id))
+            .orderBy(checkpoints.createdAt);
+        return {
+            session_id: session_id,
+            checkpoints: sessionCheckpoints,
+            count: sessionCheckpoints.length,
+        };
+    }
+    catch (error) {
+        logger.error('Error getting checkpoints:', error);
+        return handleError(error);
+    }
+}
+//# sourceMappingURL=checkpoint.js.map

package/dist/tools/checkpoint.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"checkpoint.js","sourceRoot":"","sources":["../../src/tools/checkpoint.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,KAAK,EAAE,MAAM,iBAAiB,CAAC;AACxC,OAAO,EAAE,QAAQ,EAAE,QAAQ,EAAE,WAAW,EAAE,MAAM,iBAAiB,CAAC;AAClE,OAAO,EAAE,EAAE,EAAE,MAAM,aAAa,CAAC;AACjC,OAAO,EAAE,oBAAoB,EAAE,MAAM,wBAAwB,CAAC;AAC9D,OAAO,EAAE,WAAW,EAAE,aAAa,EAAE,MAAM,oBAAoB,CAAC;AAChE,OAAO,EAAE,MAAM,EAAE,MAAM,oBAAoB,CAAC;AAE5C,MAAM,CAAC,KAAK,UAAU,cAAc,CAAC,IAAS;IAC5C,IAAI,CAAC;QACH,MAAM,KAAK,GAAG,oBAAoB,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;QAC/C,MAAM,EAAE,GAAG,KAAK,EAAE,CAAC;QAEnB,sCAAsC;QACtC,MAAM,CAAC,OAAO,CAAC,GAAG,MAAM,EAAE;aACvB,MAAM,EAAE;aACR,IAAI,CAAC,QAAQ,CAAC;aACd,KAAK,CAAC,EAAE,CAAC,QAAQ,CAAC,EAAE,EAAE,KAAK,CAAC,UAAU,CAAC,CAAC;aACxC,KAAK,CAAC,CAAC,CAAC,CAAC;QAEZ,IAAI,CAAC,OAAO,EAAE,CAAC;YACb,MAAM,IAAI,aAAa,CAAC,SAAS,EAAE,KAAK,CAAC,UAAU,CAAC,CAAC;QACvD,CAAC;QAED,IAAI,OAAO,CAAC,MAAM,KAAK,QAAQ,EAAE,CAAC;YAChC,MAAM,IAAI,KAAK,CAAC,cAAc,OAAO,CAAC,MAAM,cAAc,CAAC,CAAC;QAC9D,CAAC;QAED,sBAAsB;QACtB,IAAI,MAAM,GAAG,UAAU,CAAC;QACxB,IAAI,QAAQ,GAAG,IAAI,CAAC;QACpB,IAAI,eAAe,GAAG,KAAK,CAAC;QAE5B,IAAI,OAAO,CAAC,SAAS,EAAE,CAAC;YACtB,MAAM,CAAC,OAAO,CAAC,GAAG,MAAM,EAAE;iBACvB,MAAM,EAAE;iBACR,IAAI,CAAC,QAAQ,CAAC;iBACd,KAAK,CAAC,EAAE,CAAC,QAAQ,CAAC,EAAE,EAAE,OAAO,CAAC,SAAS,CAAC,CAAC;iBACzC,KAAK,CAAC,CAAC,CAAC,CAAC;YAEZ,IAAI,OAAO,IAAI,OAAO,CAAC,KAAK,EAAE,CAAC;gBAC7B,MAAM,eAAe,GAAG,OAAO,CAAC,KAAK,CAAC,OAAO,CAAC,WAAW,CAAC,CAAC;gBAC3D,IAAI,eAAe,EAAE,CAAC;oBACpB,MAAM,GAAG,eAAe,CAAC,EAAE,CAAC;gBAC9B,CAAC;gBAED,oCAAoC;gBACpC,IAAI,KAAK,CAAC,YAAY,EAAE,CAAC;oBACvB,MAAM,aAAa,GAAG,OAAO,CAAC,WAAW,GAAG,CAAC,CAAC;oBAC9C,IAAI,aAAa,GAAG,OAAO,CAAC,KAAK,CAAC,MAAM,EAAE,CAAC;wBACzC,QAAQ,GAAG,OAAO,CAAC,KAAK,CAAC,aAAa,CAAC,CAAC;wBACxC,gCAAgC;wBAChC,MAAM,EAAE;6BACL,MAAM,CAAC,QAAQ,CAAC;6BAChB,GAAG,CAAC;4BACH,WAAW,EAAE,aAAa;4BAC1B,YAAY,EAAE,IAAI,IAAI,EAAE;yBACzB,CAAC;6BACD,KAAK,CAAC,EAAE,CAAC,QAAQ,CAAC,EAAE,EAAE,OAAO,CAAC,EAAE,CAAC,CAAC,CAAC;oBACxC,CAAC;yBAAM,CAAC;wBACN,mBAAmB;wBACnB,eAAe,GAAG,IAAI,CAAC;wBACvB,MAAM,EAAE;6BACL,MAAM,CAAC,QAAQ,CAAC;6BAChB,GAAG,CAAC;4BACH,MAAM,EAAE,WAAW;4BACnB,WAAW,EAAE,IAAI,IAAI,EAAE;4BACvB,YAAY,EAAE,IAAI,IAAI,EAAE;yBACzB,CAAC;6BACD,KAAK,CAAC,EAAE,CAAC,QAAQ,CAAC,EAAE,EAAE,OAAO,CAAC,EAAE,CAAC,CAAC,CAAC;oBACxC,CAAC;gBACH,CAAC;YACH,CAAC;QACH,CAAC;QAED,kBAAkB;QAClB,MAAM,gBAAgB,GAAG,MAAM,EAAE;aAC9B,MAAM,CAAC,WAAW,CAAC;aACnB,MAAM,CAAC;YACN,SAAS,EAAE,KAAK,CAAC,UAAU;YAC3B,MAAM,EAAE,MAAM;YACd,GAAG,EAAE,KAAK,CAAC,GAAG;YACd,KAAK,EAAE,KAAK,CAAC,KAAK;SACnB,CAAC;aACD,SAAS,EAAE,CAAC;QAEf,MAAM,UAAU,GAAG,gBAAgB,CAAC,CAAC,CAAE,CAAC;QAExC,MAAM,CAAC,IAAI,CAAC,qBAAqB,UAAU,CAAC,EAAE,iBAAiB,OAAO,CAAC,EAAE,EAAE,CAAC,CAAC;QAE7E,OAAO;YACL,aAAa,EAAE,UAAU,CAAC,EAAE;YAC5B,SAAS,EAAE,QAAQ;YACnB,gBAAgB,EAAE,eAAe;YACjC,OAAO,EAAE,eAAe;gBACtB,CAAC,CAAC,+BAA+B;gBACjC,CAAC,CAAC,QAAQ;oBACV,CAAC,CAAC,qBAAqB,QAAQ,CAAC,OAAO,EAAE,MAAM,IAAI,wBAAwB,EAAE;oBAC7E,CAAC,CAAC,mBAAmB;SACxB,CAAC;IACJ,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,MAAM,CAAC,KAAK,CAAC,0BAA0B,EAAE,KAAK,CAAC,CAAC;QAChD,OAAO,WAAW,CAAC,KAAK,CAAC,CAAC;IAC5B,CAAC;AACH,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,cAAc,CAAC,IAAS;IAC5C,IAAI,CAAC;QACH,MAAM,EAAE,UAAU,EAAE,GAAG,IAAI,CAAC;QAC5B,MAAM,EAAE,GAAG,KAAK,EAAE,CAAC;QAEnB,wBAAwB;QACxB,MAAM,CAAC,OAAO,CAAC,GAAG,MAAM,EAAE;aACvB,MAAM,EAAE;aACR,IAAI,CAAC,QAAQ,CAAC;aACd,KAAK,CAAC,EAAE,CAAC,QAAQ,CAAC,EAAE,EAAE,UAAU,CAAC,CAAC;aAClC,KAAK,CAAC,CAAC,CAAC,CAAC;QAEZ,IAAI,CAAC,OAAO,EAAE,CAAC;YACb,MAAM,IAAI,aAAa,CAAC,SAAS,EAAE,UAAU,CAAC,CAAC;QACjD,CAAC;QAED,sBAAsB;QACtB,MAAM,kBAAkB,GAAG,MAAM,EAAE;aAChC,MAAM,EAAE;aACR,IAAI,CAAC,WAAW,CAAC;aACjB,KAAK,CAAC,EAAE,CAAC,WAAW,CAAC,SAAS,EAAE,UAAU,CAAC,CAAC;aAC5C,OAAO,CAAC,WAAW,CAAC,SAAS,CAAC,CAAC;QAElC,OAAO;YACL,UAAU,EAAE,UAAU;YACtB,WAAW,EAAE,kBAAkB;YAC/B,KAAK,EAAE,kBAAkB,CAAC,MAAM;SACjC,CAAC;IACJ,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,MAAM,CAAC,KAAK,CAAC,4BAA4B,EAAE,KAAK,CAAC,CAAC;QAClD,OAAO,WAAW,CAAC,KAAK,CAAC,CAAC;IAC5B,CAAC;AACH,CAAC"}