next-workflow-builder 0.3.0

package/README.md

@@ -0,0 +1,165 @@
+# next-workflow-builder
+
+A Next.js plugin for building visual workflow automation platforms with drag-and-drop editing, code generation, and AI-powered automation.
+
+> **Full documentation available at [next-workflow-builder.vercel.app](https://next-workflow-builder.vercel.app)**
+
+## Features
+
+- Visual drag-and-drop workflow editor powered by React Flow
+- Code generation — export workflows as TypeScript
+- AI-powered workflow creation from natural language
+- Real-time execution tracking and logs
+- Extensible plugin system for third-party integrations
+- Built-in authentication via Better Auth
+- Dark / light / system theme support
+
+## Requirements
+
+- Node.js >= 22
+- Next.js >= 16
+- React >= 19
+- PostgreSQL database
+
+## Quick Start
+
+### 1. Install
+
+```bash
+npm install next-workflow-builder
+# or
+pnpm add next-workflow-builder
+```
+
+### 2. Configure Next.js
+
+```ts
+// next.config.ts
+import type { NextConfig } from "next";
+import nextWorkflowBuilder from "next-workflow-builder";
+
+const withNextWorkflowBuilder = nextWorkflowBuilder({
+  // debug: true,
+  // authOptions: { ... }
+});
+
+export default withNextWorkflowBuilder({
+  // Regular Next.js options
+} satisfies NextConfig);
+```
+
+### 3. Create the API route
+
+```ts
+// app/api/[[...slug]]/route.ts
+export { GET, POST, PUT, PATCH, DELETE, OPTIONS } from "next-workflow-builder/api";
+```
+
+### 4. Add the layout
+
+```tsx
+// app/layout.tsx
+import { Layout } from "next-workflow-builder/client";
+import "next-workflow-builder/styles.css";
+
+export default function RootLayout({
+  children,
+}: {
+  children: React.ReactNode;
+}) {
+  return (
+    <html lang="en" suppressHydrationWarning>
+      <body>
+        <Layout>{children}</Layout>
+      </body>
+    </html>
+  );
+}
+```
+
+### 5. Add the workflow pages
+
+```tsx
+// app/[[...slug]]/page.tsx
+export { WorkflowPage as default } from "next-workflow-builder/client";
+export { generateWorkflowMetadata as generateMetadata } from "next-workflow-builder/server";
+```
+
+### 6. Set environment variables
+
+Create a `.env.local` file:
+
+```env
+DATABASE_URL=postgres://user:password@localhost:5432/workflow
+BETTER_AUTH_SECRET=your-secret-key
+BETTER_AUTH_URL=http://localhost:3000
+INTEGRATION_ENCRYPTION_KEY=your-encryption-key
+```
+
+| Variable | Required | Description |
+| --- | --- | --- |
+| `DATABASE_URL` | Yes | PostgreSQL connection string |
+| `BETTER_AUTH_SECRET` | Yes | Secret key for session encryption |
+| `BETTER_AUTH_URL` | Yes | Base URL for auth callbacks |
+| `INTEGRATION_ENCRYPTION_KEY` | Yes | Key to encrypt stored credentials |
+
+### 7. Run
+
+```bash
+pnpm dev
+```
+
+Open [http://localhost:3000](http://localhost:3000) to see the workflow builder.
+
+## Package Exports
+
+| Import path | Description |
+| --- | --- |
+| `next-workflow-builder` | Next.js plugin — `nextWorkflowBuilder()` |
+| `next-workflow-builder/client` | React components — `Layout`, `WorkflowPage`, `WorkflowEditor` |
+| `next-workflow-builder/server` | Server utilities — `auth`, `db`, credentials, logging |
+| `next-workflow-builder/api` | HTTP handlers — `GET`, `POST`, `PUT`, `PATCH`, `DELETE`, `OPTIONS` |
+| `next-workflow-builder/plugins` | Plugin registry — `registerIntegration()`, query helpers |
+| `next-workflow-builder/server/db/schema` | Drizzle ORM schema exports |
+| `next-workflow-builder/styles.css` | Required CSS styles |
+
+## Plugin System
+
+Extend the workflow builder with custom integrations. Each plugin can provide triggers, actions, credentials configuration, and custom UI components.
+
+```bash
+# Scaffold a new plugin
+npx nwb create-plugin
+
+# Discover and register plugins
+npx nwb discover-plugins
+```
+
+See the [Plugins documentation](https://next-workflow-builder.vercel.app/docs/plugins) for details.
+
+## CLI Commands
+
+| Command | Description |
+| --- | --- |
+| `nwb create-plugin` | Scaffold a new plugin interactively |
+| `nwb discover-plugins` | Scan and register all plugins |
+| `nwb migrate-prod` | Run database migrations for production |
+
+## Documentation
+
+For full documentation including configuration, authentication, database setup, deployment, and plugin development:
+
+**[https://next-workflow-builder.vercel.app](https://next-workflow-builder.vercel.app)**
+
+- [Getting Started](https://next-workflow-builder.vercel.app/docs/getting-started)
+- [Configuration](https://next-workflow-builder.vercel.app/docs/configuration)
+- [Plugins](https://next-workflow-builder.vercel.app/docs/plugins)
+- [Creating Plugins](https://next-workflow-builder.vercel.app/docs/creating-plugins)
+- [API Reference](https://next-workflow-builder.vercel.app/docs/api-reference)
+- [CLI Reference](https://next-workflow-builder.vercel.app/docs/cli-reference)
+- [Database](https://next-workflow-builder.vercel.app/docs/database)
+- [Deployment](https://next-workflow-builder.vercel.app/docs/deployment)
+
+## License
+
+Apache-2.0

package/dist/chunk-3MSAF2TH.js

@@ -0,0 +1,438 @@
+// src/server/lib/utils/id.ts
+import { webcrypto } from "crypto";
+var ALPHABET = "0123456789abcdefghijklmnopqrstuvwxyz";
+var ID_LENGTH = 21;
+function generateId() {
+  const mask = 63;
+  const bytes = webcrypto.getRandomValues(new Uint8Array(ID_LENGTH * 2));
+  let id = "";
+  let cursor = 0;
+  while (id.length < ID_LENGTH) {
+    const val = bytes[cursor++] & mask;
+    if (val < ALPHABET.length) {
+      id += ALPHABET[val];
+    }
+    if (cursor >= bytes.length) {
+      webcrypto.getRandomValues(bytes);
+      cursor = 0;
+    }
+  }
+  return id;
+}
+
+// src/server/db/schema.ts
+import { relations } from "drizzle-orm";
+import { boolean, jsonb, pgTable, text, timestamp } from "drizzle-orm/pg-core";
+var users = pgTable("users", {
+  id: text("id").primaryKey(),
+  name: text("name"),
+  email: text("email").unique(),
+  emailVerified: boolean("email_verified").notNull().default(false),
+  image: text("image"),
+  createdAt: timestamp("created_at").notNull(),
+  updatedAt: timestamp("updated_at").notNull(),
+  // Anonymous user tracking
+  isAnonymous: boolean("is_anonymous").default(false)
+});
+var sessions = pgTable("sessions", {
+  id: text("id").primaryKey(),
+  expiresAt: timestamp("expires_at").notNull(),
+  token: text("token").notNull().unique(),
+  createdAt: timestamp("created_at").notNull(),
+  updatedAt: timestamp("updated_at").notNull(),
+  ipAddress: text("ip_address"),
+  userAgent: text("user_agent"),
+  userId: text("user_id").notNull().references(() => users.id)
+});
+var accounts = pgTable("accounts", {
+  id: text("id").primaryKey(),
+  accountId: text("account_id").notNull(),
+  providerId: text("provider_id").notNull(),
+  userId: text("user_id").notNull().references(() => users.id),
+  accessToken: text("access_token"),
+  refreshToken: text("refresh_token"),
+  idToken: text("id_token"),
+  accessTokenExpiresAt: timestamp("access_token_expires_at"),
+  refreshTokenExpiresAt: timestamp("refresh_token_expires_at"),
+  scope: text("scope"),
+  password: text("password"),
+  createdAt: timestamp("created_at").notNull(),
+  updatedAt: timestamp("updated_at").notNull()
+});
+var verifications = pgTable("verifications", {
+  id: text("id").primaryKey(),
+  identifier: text("identifier").notNull(),
+  value: text("value").notNull(),
+  expiresAt: timestamp("expires_at").notNull(),
+  createdAt: timestamp("created_at"),
+  updatedAt: timestamp("updated_at")
+});
+var workflows = pgTable("workflows", {
+  id: text("id").primaryKey().$defaultFn(() => generateId()),
+  name: text("name").notNull(),
+  description: text("description"),
+  userId: text("user_id").notNull().references(() => users.id),
+  // biome-ignore lint/suspicious/noExplicitAny: JSONB type - structure validated at application level
+  nodes: jsonb("nodes").notNull().$type(),
+  // biome-ignore lint/suspicious/noExplicitAny: JSONB type - structure validated at application level
+  edges: jsonb("edges").notNull().$type(),
+  visibility: text("visibility").notNull().default("private").$type(),
+  createdAt: timestamp("created_at").notNull().defaultNow(),
+  updatedAt: timestamp("updated_at").notNull().defaultNow()
+});
+var integrations = pgTable("integrations", {
+  id: text("id").primaryKey().$defaultFn(() => generateId()),
+  userId: text("user_id").notNull().references(() => users.id),
+  name: text("name").notNull(),
+  type: text("type").notNull().$type(),
+  // biome-ignore lint/suspicious/noExplicitAny: JSONB type - encrypted credentials stored as JSON
+  config: jsonb("config").notNull().$type(),
+  // Whether this integration was created via OAuth (managed by app) vs manual entry
+  isManaged: boolean("is_managed").default(false),
+  createdAt: timestamp("created_at").notNull().defaultNow(),
+  updatedAt: timestamp("updated_at").notNull().defaultNow()
+});
+var workflowExecutions = pgTable("workflow_executions", {
+  id: text("id").primaryKey().$defaultFn(() => generateId()),
+  workflowId: text("workflow_id").notNull().references(() => workflows.id),
+  userId: text("user_id").notNull().references(() => users.id),
+  status: text("status").notNull().$type(),
+  // biome-ignore lint/suspicious/noExplicitAny: JSONB type - structure validated at application level
+  input: jsonb("input").$type(),
+  // biome-ignore lint/suspicious/noExplicitAny: JSONB type - structure validated at application level
+  output: jsonb("output").$type(),
+  error: text("error"),
+  startedAt: timestamp("started_at").notNull().defaultNow(),
+  completedAt: timestamp("completed_at"),
+  duration: text("duration")
+  // Duration in milliseconds
+});
+var workflowExecutionLogs = pgTable("workflow_execution_logs", {
+  id: text("id").primaryKey().$defaultFn(() => generateId()),
+  executionId: text("execution_id").notNull().references(() => workflowExecutions.id),
+  nodeId: text("node_id").notNull(),
+  nodeName: text("node_name").notNull(),
+  nodeType: text("node_type").notNull(),
+  status: text("status").notNull().$type(),
+  // biome-ignore lint/suspicious/noExplicitAny: JSONB type - structure validated at application level
+  input: jsonb("input").$type(),
+  // biome-ignore lint/suspicious/noExplicitAny: JSONB type - structure validated at application level
+  output: jsonb("output").$type(),
+  error: text("error"),
+  startedAt: timestamp("started_at").notNull().defaultNow(),
+  completedAt: timestamp("completed_at"),
+  duration: text("duration"),
+  // Duration in milliseconds
+  timestamp: timestamp("timestamp").notNull().defaultNow()
+});
+var apiKeys = pgTable("api_keys", {
+  id: text("id").primaryKey().$defaultFn(() => generateId()),
+  userId: text("user_id").notNull().references(() => users.id),
+  name: text("name"),
+  // Optional label for the API key
+  keyHash: text("key_hash").notNull(),
+  // Store hashed version of the key
+  keyPrefix: text("key_prefix").notNull(),
+  // Store first few chars for display (e.g., "wf_abc...")
+  createdAt: timestamp("created_at").notNull().defaultNow(),
+  lastUsedAt: timestamp("last_used_at")
+});
+var workflowExecutionsRelations = relations(
+  workflowExecutions,
+  ({ one }) => ({
+    workflow: one(workflows, {
+      fields: [workflowExecutions.workflowId],
+      references: [workflows.id]
+    })
+  })
+);
+
+// src/server/db/index.ts
+import { drizzle } from "drizzle-orm/postgres-js";
+import postgres from "postgres";
+var schema = {
+  users,
+  sessions,
+  accounts,
+  verifications,
+  workflows,
+  workflowExecutions,
+  workflowExecutionLogs,
+  workflowExecutionsRelations,
+  apiKeys,
+  integrations
+};
+var connectionString = process.env.DATABASE_URL || "postgres://localhost:5432/workflow";
+var migrationClient = postgres(connectionString, { max: 1 });
+var globalForDb = globalThis;
+var queryClient = globalForDb.queryClient ?? postgres(connectionString, { max: 10 });
+var db = globalForDb.db ?? drizzle(queryClient, { schema });
+if (process.env.NODE_ENV !== "production") {
+  globalForDb.queryClient = queryClient;
+  globalForDb.db = db;
+}
+
+// src/server/lib/steps/step-handler.ts
+import "server-only";
+
+// src/server/lib/utils/redact.ts
+var SENSITIVE_KEYS = /* @__PURE__ */ new Set([
+  // API Keys
+  "apiKey",
+  "api_key",
+  "apikey",
+  "key",
+  // Credentials
+  "password",
+  "passwd",
+  "pwd",
+  "secret",
+  "token",
+  "accessToken",
+  "access_token",
+  "refreshToken",
+  "refresh_token",
+  "privateKey",
+  "private_key",
+  // Database
+  "databaseUrl",
+  "database_url",
+  "connectionString",
+  "connection_string",
+  // Email
+  "fromEmail",
+  "from_email",
+  // Authentication
+  "authorization",
+  "auth",
+  "bearer",
+  // Credit Card/Payment
+  "creditCard",
+  "credit_card",
+  "cardNumber",
+  "card_number",
+  "cvv",
+  "ssn",
+  // Personal Info
+  "phoneNumber",
+  "phone_number",
+  "socialSecurity",
+  "social_security"
+]);
+var SENSITIVE_PATTERNS = [
+  /api[_-]?key/i,
+  /token/i,
+  /secret/i,
+  /password/i,
+  /credential/i,
+  /auth/i
+];
+function isSensitiveKey(key) {
+  if (SENSITIVE_KEYS.has(key.toLowerCase())) {
+    return true;
+  }
+  return SENSITIVE_PATTERNS.some((pattern) => pattern.test(key));
+}
+function maskValue(value) {
+  if (!value || value.length === 0) {
+    return "[REDACTED]";
+  }
+  if (value.length <= 4) {
+    return "****";
+  }
+  const last4 = value.slice(-4);
+  const stars = "*".repeat(Math.min(8, value.length - 4));
+  return `${stars}${last4}`;
+}
+function redactObject(obj, depth = 0) {
+  if (depth > 10) {
+    return obj;
+  }
+  if (obj === null || obj === void 0) {
+    return obj;
+  }
+  if (typeof obj === "string") {
+    return obj;
+  }
+  if (typeof obj === "number" || typeof obj === "boolean") {
+    return obj;
+  }
+  if (Array.isArray(obj)) {
+    return obj.map((item) => redactObject(item, depth + 1));
+  }
+  if (typeof obj === "object") {
+    const redacted = {};
+    for (const [key, value] of Object.entries(obj)) {
+      if (isSensitiveKey(key)) {
+        if (typeof value === "string") {
+          redacted[key] = maskValue(value);
+        } else {
+          redacted[key] = "[REDACTED]";
+        }
+      } else {
+        redacted[key] = redactObject(value, depth + 1);
+      }
+    }
+    return redacted;
+  }
+  return obj;
+}
+function redactSensitiveData(data) {
+  if (data === null || data === void 0) {
+    return data;
+  }
+  try {
+    return redactObject(data);
+  } catch (error) {
+    console.error("[Redact] Error redacting data:", error);
+    return "[REDACTION_ERROR]";
+  }
+}
+
+// src/server/lib/workflow-logging.ts
+import "server-only";
+import { eq } from "drizzle-orm";
+async function logStepStartDb(params) {
+  const [log] = await db.insert(workflowExecutionLogs).values({
+    executionId: params.executionId,
+    nodeId: params.nodeId,
+    nodeName: params.nodeName,
+    nodeType: params.nodeType,
+    status: "running",
+    input: params.input,
+    startedAt: /* @__PURE__ */ new Date()
+  }).returning();
+  return {
+    logId: log.id,
+    startTime: Date.now()
+  };
+}
+async function logStepCompleteDb(params) {
+  const duration = Date.now() - params.startTime;
+  await db.update(workflowExecutionLogs).set({
+    status: params.status,
+    output: params.output,
+    error: params.error,
+    completedAt: /* @__PURE__ */ new Date(),
+    duration: duration.toString()
+  }).where(eq(workflowExecutionLogs.id, params.logId));
+}
+async function logWorkflowCompleteDb(params) {
+  const duration = Date.now() - params.startTime;
+  await db.update(workflowExecutions).set({
+    status: params.status,
+    output: params.output,
+    error: params.error,
+    completedAt: /* @__PURE__ */ new Date(),
+    duration: duration.toString()
+  }).where(eq(workflowExecutions.id, params.executionId));
+}
+
+// src/server/lib/steps/step-handler.ts
+async function logStepStart(context, input) {
+  if (!context?.executionId) {
+    return { logId: "", startTime: Date.now() };
+  }
+  try {
+    const redactedInput = redactSensitiveData(input);
+    const result = await logStepStartDb({
+      executionId: context.executionId,
+      nodeId: context.nodeId,
+      nodeName: context.nodeName,
+      nodeType: context.nodeType,
+      input: redactedInput
+    });
+    return result;
+  } catch (error) {
+    console.error("[stepHandler] Failed to log start:", error);
+    return { logId: "", startTime: Date.now() };
+  }
+}
+async function logStepComplete(logInfo, status, output, error) {
+  if (!logInfo.logId) {
+    return;
+  }
+  try {
+    const redactedOutput = redactSensitiveData(output);
+    await logStepCompleteDb({
+      logId: logInfo.logId,
+      startTime: logInfo.startTime,
+      status,
+      output: redactedOutput,
+      error
+    });
+  } catch (err) {
+    console.error("[stepHandler] Failed to log completion:", err);
+  }
+}
+var INTERNAL_FIELDS = ["_context", "actionType", "integrationId"];
+function stripInternalFields(input) {
+  const result = { ...input };
+  for (const field of INTERNAL_FIELDS) {
+    delete result[field];
+  }
+  return result;
+}
+async function logWorkflowComplete(options) {
+  try {
+    const redactedOutput = redactSensitiveData(options.output);
+    await logWorkflowCompleteDb({
+      executionId: options.executionId,
+      status: options.status,
+      output: redactedOutput,
+      error: options.error,
+      startTime: options.startTime
+    });
+  } catch (err) {
+    console.error("[stepHandler] Failed to log workflow completion:", err);
+  }
+}
+async function withStepLogging(input, stepLogic) {
+  const context = input._context;
+  const loggedInput = stripInternalFields(input);
+  const logInfo = await logStepStart(context, loggedInput);
+  try {
+    const result = await stepLogic();
+    const isStandardizedResult = result && typeof result === "object" && "success" in result && typeof result.success === "boolean";
+    const isErrorResult = isStandardizedResult && result.success === false;
+    if (isErrorResult) {
+      const errorResult = result;
+      const errorMessage = typeof errorResult.error === "string" ? errorResult.error : errorResult.error?.message || "Step execution failed";
+      const loggedOutput = errorResult.error ?? { message: errorMessage };
+      await logStepComplete(logInfo, "error", loggedOutput, errorMessage);
+    } else if (isStandardizedResult) {
+      const successResult = result;
+      await logStepComplete(logInfo, "success", successResult.data ?? result);
+    } else {
+      await logStepComplete(logInfo, "success", result);
+    }
+    if (context?._workflowComplete && context.executionId) {
+      await logWorkflowComplete({
+        executionId: context.executionId,
+        ...context._workflowComplete
+      });
+    }
+    return result;
+  } catch (error) {
+    const errorMessage = error instanceof Error ? error.message : "Unknown error";
+    await logStepComplete(logInfo, "error", void 0, errorMessage);
+    throw error;
+  }
+}
+
+export {
+  generateId,
+  users,
+  sessions,
+  accounts,
+  verifications,
+  workflows,
+  integrations,
+  workflowExecutions,
+  workflowExecutionLogs,
+  apiKeys,
+  workflowExecutionsRelations,
+  db,
+  logWorkflowComplete,
+  withStepLogging
+};

package/dist/chunk-5YYA34YV.js

@@ -0,0 +1,96 @@
+// src/client/lib/utils.ts
+import { clsx } from "clsx";
+import { twMerge } from "tailwind-merge";
+function cn(...inputs) {
+  return twMerge(clsx(inputs));
+}
+function getErrorMessage(error) {
+  if (error === null || error === void 0) {
+    return "Unknown error";
+  }
+  if (error instanceof Error) {
+    if (error.cause && error.cause instanceof Error) {
+      return `${error.message}: ${error.cause.message}`;
+    }
+    return error.message;
+  }
+  if (typeof error === "string") {
+    return error;
+  }
+  if (typeof error === "object") {
+    const obj = error;
+    if (typeof obj.message === "string" && obj.message) {
+      return obj.message;
+    }
+    if (obj.responseBody && typeof obj.responseBody === "object") {
+      const body = obj.responseBody;
+      if (typeof body.error === "string") {
+        return body.error;
+      }
+      if (body.error && typeof body.error === "object" && typeof body.error.message === "string") {
+        return body.error.message;
+      }
+    }
+    if (typeof obj.error === "string" && obj.error) {
+      return obj.error;
+    }
+    if (obj.error && typeof obj.error === "object") {
+      const nestedError = obj.error;
+      if (typeof nestedError.message === "string") {
+        return nestedError.message;
+      }
+    }
+    if (obj.data && typeof obj.data === "object") {
+      const data = obj.data;
+      if (typeof data.error === "string") {
+        return data.error;
+      }
+      if (typeof data.message === "string") {
+        return data.message;
+      }
+    }
+    if (typeof obj.reason === "string" && obj.reason) {
+      return obj.reason;
+    }
+    if (typeof obj.statusText === "string" && obj.statusText) {
+      const status = typeof obj.status === "number" ? ` (${obj.status})` : "";
+      return `${obj.statusText}${status}`;
+    }
+    try {
+      const stringified = JSON.stringify(error, null, 0);
+      if (stringified && stringified !== "{}" && stringified.length < 500) {
+        return stringified;
+      }
+    } catch {
+    }
+    const toString = Object.prototype.toString.call(error);
+    if (toString !== "[object Object]") {
+      return toString;
+    }
+  }
+  return "Unknown error";
+}
+async function getErrorMessageAsync(error) {
+  if (error instanceof Promise) {
+    try {
+      const resolvedValue = await error;
+      return getErrorMessage(resolvedValue);
+    } catch (rejectedError) {
+      return getErrorMessage(rejectedError);
+    }
+  }
+  if (error && typeof error === "object" && "then" in error && typeof error.then === "function") {
+    try {
+      const resolvedValue = await error;
+      return getErrorMessage(resolvedValue);
+    } catch (rejectedError) {
+      return getErrorMessage(rejectedError);
+    }
+  }
+  return getErrorMessage(error);
+}
+
+export {
+  cn,
+  getErrorMessageAsync
+};