fraim 2.0.177 → 2.0.180

package/dist/src/services/installer-service.js

@@ -0,0 +1,131 @@
+"use strict";
+/**
+ * InstallerService - Generates installer scripts and dashboard HTML for the Get Started flow.
+ * Scripts are loaded from templates in scripts/installer/ and populated with token/baseUrl.
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.InstallerService = void 0;
+const fs_1 = require("fs");
+const path_1 = require("path");
+function getScriptsDir() {
+    // When running from dist: dist/services/ -> dist/../scripts = scripts
+    // When running from src with tsx: src/services/ -> src/../scripts = scripts
+    const candidates = [
+        (0, path_1.join)(process.cwd(), 'scripts', 'installer'),
+        (0, path_1.join)(__dirname, '..', '..', 'scripts', 'installer'),
+        (0, path_1.join)(__dirname, '..', '..', '..', 'scripts', 'installer')
+    ];
+    for (const dir of candidates) {
+        if ((0, fs_1.existsSync)(dir))
+            return dir;
+    }
+    return null;
+}
+/**
+ * Default marketing site base URL. All asset references and nav links in the
+ * layout shell resolve against this host. Overridable via FRAIM_MARKETING_URL.
+ *
+ * Issue #258: In production, the FRAIM server (Azure) does NOT ship fraim-pro/
+ * in its deploy package — the marketing site is deployed separately via GitHub
+ * Pages. Root-relative paths like `/css/styles.css` therefore 404 on the FRAIM
+ * host. Absolute URLs to the marketing site resolve correctly regardless of
+ * where the dashboard is served from.
+ */
+const DEFAULT_MARKETING_BASE_URL = 'https://fraimworks.ai';
+function getMarketingBaseUrl() {
+    const raw = process.env.FRAIM_MARKETING_URL || DEFAULT_MARKETING_BASE_URL;
+    // Normalize: strip trailing slash so we never emit double-slashes like
+    // `https://fraimworks.ai//css/styles.css`.
+    return raw.replace(/\/+$/, '');
+}
+function buildLayoutShell(marketingBaseUrl) {
+    const m = marketingBaseUrl;
+    return `<!DOCTYPE html>
+<html lang="en"><head><meta charset="utf-8"><meta name="viewport" content="width=device-width,initial-scale=1.0,maximum-scale=5.0,user-scalable=yes">
+<script>(function(){var t=localStorage.getItem('theme')||(window.matchMedia('(prefers-color-scheme: dark)').matches?'dark':'light');document.documentElement.setAttribute('data-theme',t);})();</script>
+<title>{{TITLE}}</title><meta name="theme-color" content="#6366f1">
+<link rel="preconnect" href="https://fonts.googleapis.com"><link rel="preconnect" href="https://fonts.gstatic.com" crossorigin>
+<link href="https://fonts.googleapis.com/css2?family=Inter:wght@300;400;500;600;700&display=swap" rel="stylesheet">
+<link rel="stylesheet" href="${m}/css/styles.css"></head><body>
+<nav class="nav"><div class="nav-container"><div class="nav-logo"><a href="${m}/"><img src="${m}/images/fraim-logo.png" alt="FRAIM" class="logo-icon"/><span class="logo-text">FRAIM</span></a></div>
+<div class="nav-links"><a href="${m}/#features">Features</a><a href="${m}/#how-it-works">How it Works</a><a href="${m}/pricing.html">Pricing</a><a href="${m}/#results">Results</a>
+<button class="theme-toggle" id="theme-toggle" aria-label="Toggle dark mode"><span class="theme-icon">🌙</span></button>
+<a href="${m}/" class="nav-cta join-waitlist-btn">Get Started</a></div></div></nav>
+<main style="min-height:100vh;display:flex;align-items:center;justify-content:center;padding:80px 20px 40px">{{BODY}}</main>
+<script src="${m}/js/script.js"></script></body></html>`;
+}
+class InstallerService {
+    constructor() {
+        this.scriptsDir = getScriptsDir();
+    }
+    requireScriptsDir() {
+        if (!this.scriptsDir) {
+            throw new Error('Installer scripts directory not found. Installer download is unavailable.');
+        }
+        return this.scriptsDir;
+    }
+    /**
+     * Build the HTML layout shell (nav, styles, theme) wrapping body content.
+     *
+     * Nav links and asset references resolve against the marketing site base URL
+     * (default https://fraimworks.ai, overridable via FRAIM_MARKETING_URL). See
+     * #258: the FRAIM server and marketing site live on different hosts in prod,
+     * so root-relative paths would 404.
+     */
+    layoutShell(title, bodyContent) {
+        return buildLayoutShell(getMarketingBaseUrl())
+            .replace('{{TITLE}}', title)
+            .replace('{{BODY}}', bodyContent);
+    }
+    /**
+     * Generate the dashboard card HTML (key, installer links, CLI command).
+     *
+     * Platform-specific install flows:
+     * - Windows: download-and-double-click .cmd file (no Gatekeeper equivalent blocks it)
+     * - Mac: copy-paste `curl | sh` one-liner. Downloaded .command files are blocked
+     *   by Gatekeeper on Sequoia+ with no "Open Anyway" escape (see #256). Piping
+     *   bytes through curl avoids the quarantine attribute entirely.
+     */
+    generateDashboardCard(_data, _baseUrl) {
+        return `<div class="container" style="max-width:520px;width:100%">
+<div class="card" style="background:var(--bg-secondary);border:1px solid var(--border-color);border-radius:16px;max-width:520px;width:100%;box-shadow:var(--shadow-lg);overflow:hidden">
+<div class="card-header" style="padding:24px;background:linear-gradient(135deg,#22c55e 0%,#16a34a 100%);color:#fff;text-align:center;border-radius:16px 16px 0 0">
+<div style="font-size:48px;margin-bottom:8px">&#x2705;</div><h2 style="font-size:20px;font-weight:700">Open Account to view your FRAIM key</h2><p style="font-size:14px;opacity:.9;margin-top:4px">Your key and install commands now live in Account.</p></div>
+<div style="padding:24px">
+<p style="font-size:14px;color:var(--text-muted);line-height:1.6;margin:0 0 20px">For security, FRAIM no longer displays API keys on this standalone page. Continue to Account, reveal the key when you need it, and generate fresh install commands there.</p>
+<a href="/#account" class="btn-primary" style="display:block;padding:14px 20px;border-radius:10px;font-size:14px;font-weight:600;text-align:center;text-decoration:none">Open Account</a>
+</div></div></div>`;
+    }
+    /**
+     * Generate an error page card (missing token, invalid token, etc.).
+     */
+    generateErrorCard(title, message, linkText, linkHref) {
+        return `<div class="container" style="text-align:center;max-width:400px">
+<div class="card" style="background:var(--bg-secondary);border:1px solid var(--border-color);border-radius:16px;padding:32px">
+<h1 style="color:var(--error-color);margin-bottom:12px">${title}</h1><p style="color:var(--text-secondary)">${message}</p>
+<p style="margin-top:16px"><a href="${linkHref}" class="btn-primary">${linkText}</a></p></div></div>`;
+    }
+    /**
+     * Generate the Mac installer script (.command) with the API key embedded.
+     */
+    generateMacScript(key, _baseUrl) {
+        const fraimCmd = `npx -y fraim@latest first-run --key=${key}`;
+        const templatePath = (0, path_1.join)(this.requireScriptsDir(), 'fraim-install-mac.template.sh');
+        const template = (0, fs_1.readFileSync)(templatePath, 'utf-8');
+        return template
+            .replace('{{FRAIM_CMD}}', fraimCmd)
+            .split('{{KEY}}').join(key);
+    }
+    /**
+     * Generate the Windows installer script (.cmd) with the API key embedded.
+     */
+    generateWindowsScript(key, _baseUrl) {
+        const fraimCmd = `npx -y fraim@latest first-run --key=${key}`;
+        const templatePath = (0, path_1.join)(this.requireScriptsDir(), 'fraim-install-win.template.cmd');
+        const template = (0, fs_1.readFileSync)(templatePath, 'utf-8');
+        return template
+            .replace('{{FRAIM_CMD}}', fraimCmd)
+            .split('{{KEY}}').join(key);
+    }
+}
+exports.InstallerService = InstallerService;

package/dist/src/services/mcp-oauth-store.js

@@ -0,0 +1,33 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.mcpOAuthStore = void 0;
+const crypto_1 = require("crypto");
+class McpOAuthStore {
+    constructor() {
+        this.codes = new Map();
+    }
+    store(entry) {
+        const code = (0, crypto_1.randomBytes)(32).toString('base64url');
+        this.codes.set(code, { ...entry, expiresAt: Date.now() + 5 * 60 * 1000 });
+        this.gc();
+        return code;
+    }
+    /** Retrieve and atomically delete the code. Returns null if not found or expired. */
+    consume(code) {
+        const entry = this.codes.get(code);
+        if (!entry)
+            return null;
+        this.codes.delete(code);
+        if (entry.expiresAt < Date.now())
+            return null;
+        return entry;
+    }
+    gc() {
+        const now = Date.now();
+        for (const [k, v] of this.codes) {
+            if (v.expiresAt < now)
+                this.codes.delete(k);
+        }
+    }
+}
+exports.mcpOAuthStore = new McpOAuthStore();