npm - web-agent-bridge - Versions diffs - 1.2.0 → 2.1.0 - Mend

web-agent-bridge 1.2.0 → 2.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (111) hide show

package/LICENSE +21 -21
package/README.ar.md +572 -446
package/README.md +968 -933
package/bin/agent-runner.js +465 -0
package/bin/cli.js +138 -80
package/bin/wab.js +80 -80
package/examples/bidi-agent.js +119 -119
package/examples/mcp-agent.js +94 -94
package/examples/next-app-router/README.md +44 -0
package/examples/puppeteer-agent.js +108 -108
package/examples/saas-dashboard/README.md +55 -0
package/examples/shopify-hydrogen/README.md +74 -0
package/examples/vision-agent.js +171 -171
package/examples/wordpress-elementor/README.md +77 -0
package/package.json +71 -78
package/public/.well-known/ai-assets.json +59 -0
package/public/admin/login.html +84 -84
package/public/ai.html +196 -0
package/public/cookies.html +208 -208
package/public/css/premium.css +317 -0
package/public/css/styles.css +1235 -1235
package/public/dashboard.html +704 -704
package/public/demo.html +259 -0
package/public/docs.html +585 -585
package/public/feed.xml +89 -0
package/public/index.html +581 -332
package/public/js/auth-nav.js +31 -31
package/public/js/auth-redirect.js +12 -12
package/public/js/cookie-consent.js +56 -56
package/public/js/wab-demo-page.js +721 -0
package/public/js/ws-client.js +74 -74
package/public/llms-full.txt +309 -0
package/public/llms.txt +85 -0
package/public/login.html +83 -83
package/public/openapi.json +580 -0
package/public/premium-dashboard.html +2487 -0
package/public/premium.html +791 -0
package/public/privacy.html +295 -295
package/public/register.html +103 -103
package/public/robots.txt +87 -0
package/public/script/wab-consent.d.ts +36 -0
package/public/script/wab-consent.js +104 -0
package/public/script/wab-schema.js +131 -0
package/public/script/wab.d.ts +108 -0
package/public/script/wab.min.js +405 -0
package/public/sitemap.xml +93 -0
package/public/sovereign.html +660 -0
package/public/terms.html +254 -254
package/public/video/tutorial.mp4 +0 -0
package/script/ai-agent-bridge.js +1558 -1513
package/sdk/README.md +55 -55
package/sdk/index.d.ts +118 -0
package/sdk/index.js +257 -203
package/sdk/package.json +14 -14
package/sdk/schema-discovery.js +83 -0
package/server/config/secrets.js +94 -92
package/server/index.js +2 -9
package/server/middleware/adminAuth.js +30 -30
package/server/middleware/auth.js +41 -41
package/server/middleware/rateLimits.js +24 -24
package/server/migrations/001_add_analytics_indexes.sql +7 -7
package/server/migrations/002_premium_features.sql +418 -0
package/server/models/adapters/index.js +33 -33
package/server/models/adapters/mysql.js +183 -183
package/server/models/adapters/postgresql.js +172 -172
package/server/models/adapters/sqlite.js +7 -7
package/server/models/db.js +561 -561
package/server/routes/admin-premium.js +671 -0
package/server/routes/admin.js +247 -247
package/server/routes/api.js +131 -138
package/server/routes/auth.js +51 -51
package/server/routes/billing.js +45 -45
package/server/routes/discovery.js +406 -329
package/server/routes/license.js +240 -240
package/server/routes/noscript.js +543 -543
package/server/routes/premium-v2.js +686 -0
package/server/routes/premium.js +724 -0
package/server/routes/sovereign.js +307 -0
package/server/routes/wab-api.js +476 -476
package/server/services/agent-memory.js +625 -0
package/server/services/email.js +204 -204
package/server/services/fairness.js +420 -420
package/server/services/negotiation.js +439 -0
package/server/services/plugins.js +747 -0
package/server/services/premium.js +1883 -0
package/server/services/reputation.js +465 -0
package/server/services/self-healing.js +843 -0
package/server/services/stripe.js +192 -192
package/server/services/swarm.js +788 -0
package/server/services/verification.js +481 -0
package/server/services/vision.js +871 -0
package/server/utils/cache.js +125 -125
package/server/utils/migrate.js +81 -81
package/server/utils/secureFields.js +50 -50
package/server/ws.js +101 -101
package/templates/artisan-marketplace.yaml +104 -0
package/templates/book-price-scout.yaml +98 -0
package/templates/electronics-price-tracker.yaml +108 -0
package/templates/flight-deal-hunter.yaml +113 -0
package/templates/freelancer-direct.yaml +116 -0
package/templates/grocery-price-compare.yaml +93 -0
package/templates/hotel-direct-booking.yaml +113 -0
package/templates/local-services.yaml +98 -0
package/templates/olive-oil-tunisia.yaml +88 -0
package/templates/organic-farm-fresh.yaml +101 -0
package/templates/restaurant-direct.yaml +97 -0
package/docs/DEPLOY.md +0 -118
package/docs/SPEC.md +0 -1540
package/wab-mcp-adapter/README.md +0 -136
package/wab-mcp-adapter/index.js +0 -555
package/wab-mcp-adapter/package.json +0 -17

package/server/config/secrets.js CHANGED Viewed

@@ -1,92 +1,94 @@
-/**
- * Central JWT and startup secret checks.
- * User tokens and admin tokens use different secrets and audiences in production.
- */
-const jwt = require('jsonwebtoken');
-const JWT_ISSUER = 'wab';
-const JWT_AUD_USER = 'wab:user';
-const JWT_AUD_ADMIN = 'wab:admin';
-const jwtVerifyUser = { issuer: JWT_ISSUER, audience: JWT_AUD_USER };
-const jwtVerifyAdmin = { issuer: JWT_ISSUER, audience: JWT_AUD_ADMIN };
-function isTest() {
-  return process.env.NODE_ENV === 'test';
-}
-function isProd() {
-  return process.env.NODE_ENV === 'production';
-}
-function assertSecretsAtStartup() {
-  if (isTest()) return;
-  if (isProd()) {
-    if (!process.env.JWT_SECRET) {
-      throw new Error('FATAL: JWT_SECRET is required in production');
-    }
-    if (!process.env.JWT_SECRET_ADMIN) {
-      throw new Error('FATAL: JWT_SECRET_ADMIN is required in production');
-    }
-  }
-}
-function getJwtUserSecret() {
-  if (isTest()) {
-    return process.env.JWT_SECRET || 'test-secret-key-for-testing';
-  }
-  if (isProd()) {
-    return process.env.JWT_SECRET;
-  }
-  return process.env.JWT_SECRET || 'dev-user-secret-change-in-development';
-}
-function getJwtAdminSecret() {
-  if (isTest()) {
-    return process.env.JWT_SECRET_ADMIN || process.env.JWT_SECRET || 'test-secret-key-for-testing-admin';
-  }
-  if (isProd()) {
-    return process.env.JWT_SECRET_ADMIN;
-  }
-  return process.env.JWT_SECRET_ADMIN || process.env.JWT_SECRET || 'dev-admin-secret-change-in-development';
-}
-function signUserToken(payload, options = {}) {
-  return jwt.sign(
-    { ...payload },
-    getJwtUserSecret(),
-    { expiresIn: options.expiresIn || '7d', issuer: JWT_ISSUER, audience: JWT_AUD_USER }
-  );
-}
-function signAdminToken(payload, options = {}) {
-  return jwt.sign(
-    { ...payload },
-    getJwtAdminSecret(),
-    { expiresIn: options.expiresIn || '12h', issuer: JWT_ISSUER, audience: JWT_AUD_ADMIN }
-  );
-}
-function verifyUserToken(token) {
-  return jwt.verify(token, getJwtUserSecret(), jwtVerifyUser);
-}
-function verifyAdminToken(token) {
-  return jwt.verify(token, getJwtAdminSecret(), jwtVerifyAdmin);
-}
-module.exports = {
-  assertSecretsAtStartup,
-  getJwtUserSecret,
-  getJwtAdminSecret,
-  signUserToken,
-  signAdminToken,
-  verifyUserToken,
-  verifyAdminToken,
-  JWT_ISSUER,
-  JWT_AUD_USER,
-  JWT_AUD_ADMIN,
-  jwtVerifyUser,
-  jwtVerifyAdmin
-};
+/**
+ * Central JWT and startup secret checks.
+ * User tokens and admin tokens use different secrets and audiences in production.
+ */
+const crypto = require('crypto');
+const jwt = require('jsonwebtoken');
+const JWT_ISSUER = 'wab';
+const JWT_AUD_USER = 'wab:user';
+const JWT_AUD_ADMIN = 'wab:admin';
+const jwtVerifyUser = { issuer: JWT_ISSUER, audience: JWT_AUD_USER };
+const jwtVerifyAdmin = { issuer: JWT_ISSUER, audience: JWT_AUD_ADMIN };
+let _autoUserSecret = null;
+let _autoAdminSecret = null;
+function generateAutoSecret(label) {
+  const secret = crypto.randomBytes(48).toString('base64url');
+  console.warn(`[WAB] WARNING: ${label} not set — generated ephemeral secret. Tokens will not survive restarts. Set ${label} env var for persistent sessions.`);
+  return secret;
+}
+function isTest() {
+  return process.env.NODE_ENV === 'test';
+}
+function isProd() {
+  return process.env.NODE_ENV === 'production';
+}
+function assertSecretsAtStartup() {
+  if (isTest()) return;
+  if (isProd() && !process.env.JWT_SECRET) {
+    _autoUserSecret = generateAutoSecret('JWT_SECRET');
+  }
+  if (isProd() && !process.env.JWT_SECRET_ADMIN) {
+    _autoAdminSecret = generateAutoSecret('JWT_SECRET_ADMIN');
+  }
+}
+function getJwtUserSecret() {
+  if (isTest()) {
+    return process.env.JWT_SECRET || 'test-secret-key-for-testing';
+  }
+  return process.env.JWT_SECRET || _autoUserSecret || 'dev-user-secret-change-in-development';
+}
+function getJwtAdminSecret() {
+  if (isTest()) {
+    return process.env.JWT_SECRET_ADMIN || process.env.JWT_SECRET || 'test-secret-key-for-testing-admin';
+  }
+  return process.env.JWT_SECRET_ADMIN || process.env.JWT_SECRET || _autoAdminSecret || _autoUserSecret || 'dev-admin-secret-change-in-development';
+}
+function signUserToken(payload, options = {}) {
+  return jwt.sign(
+    { ...payload },
+    getJwtUserSecret(),
+    { expiresIn: options.expiresIn || '7d', issuer: JWT_ISSUER, audience: JWT_AUD_USER }
+  );
+}
+function signAdminToken(payload, options = {}) {
+  return jwt.sign(
+    { ...payload },
+    getJwtAdminSecret(),
+    { expiresIn: options.expiresIn || '12h', issuer: JWT_ISSUER, audience: JWT_AUD_ADMIN }
+  );
+}
+function verifyUserToken(token) {
+  return jwt.verify(token, getJwtUserSecret(), jwtVerifyUser);
+}
+function verifyAdminToken(token) {
+  return jwt.verify(token, getJwtAdminSecret(), jwtVerifyAdmin);
+}
+module.exports = {
+  assertSecretsAtStartup,
+  getJwtUserSecret,
+  getJwtAdminSecret,
+  signUserToken,
+  signAdminToken,
+  verifyUserToken,
+  verifyAdminToken,
+  JWT_ISSUER,
+  JWT_AUD_USER,
+  JWT_AUD_ADMIN,
+  jwtVerifyUser,
+  jwtVerifyAdmin
+};

package/server/index.js CHANGED Viewed

@@ -18,9 +18,7 @@ const apiRoutes = require('./routes/api');
 const licenseRoutes = require('./routes/license');
 const adminRoutes = require('./routes/admin');
 const billingRoutes = require('./routes/billing');
-const noscriptRoutes = require('./routes/noscript');
-const discoveryRoutes = require('./routes/discovery');
-const wabApiRoutes = require('./routes/wab-api');
+const sovereignRoutes = require('./routes/sovereign');
 const { handleWebhookRequest } = require('./services/stripe');
 const app = express();
@@ -114,9 +112,7 @@ app.use('/api', apiLimiter, apiRoutes);
 app.use('/api/license', licenseLimiter, licenseRoutes);
 app.use('/api/admin', apiLimiter, adminRoutes);
 app.use('/api/billing', apiLimiter, billingRoutes);
-app.use('/api/noscript', noscriptRoutes);
-app.use('/api/wab', wabApiRoutes);
-app.use('/', discoveryRoutes);
+app.use('/api/sovereign', apiLimiter, sovereignRoutes);
 app.get('/dashboard', (req, res) => {
   res.sendFile(path.join(__dirname, '..', 'public', 'dashboard.html'));
@@ -136,9 +132,6 @@ app.get('/admin/login', (req, res) => {
 app.get('/admin', (req, res) => {
   res.sendFile(path.join(__dirname, '..', 'public', 'admin', 'dashboard.html'));
 });
-app.get('/premium', (req, res) => {
-  res.sendFile(path.join(__dirname, '..', 'public', 'premium.html'));
-});
 app.get('/privacy', (req, res) => {
   res.sendFile(path.join(__dirname, '..', 'public', 'privacy.html'));
 });

package/server/middleware/adminAuth.js CHANGED Viewed

@@ -1,30 +1,30 @@
-const { signAdminToken, verifyAdminToken } = require('../config/secrets');
-function generateAdminToken(admin) {
-  return signAdminToken(
-    { id: admin.id, email: admin.email, name: admin.name, role: admin.role, isAdmin: true },
-    { expiresIn: '12h' }
-  );
-}
-function authenticateAdmin(req, res, next) {
-  const authHeader = req.headers['authorization'];
-  const token = authHeader && authHeader.split(' ')[1];
-  if (!token) {
-    return res.status(401).json({ error: 'Admin access token required' });
-  }
-  try {
-    const decoded = verifyAdminToken(token);
-    if (!decoded.isAdmin) {
-      return res.status(403).json({ error: 'Admin privileges required' });
-    }
-    req.admin = decoded;
-    next();
-  } catch (err) {
-    return res.status(403).json({ error: 'Invalid or expired admin token' });
-  }
-}
-module.exports = { generateAdminToken, authenticateAdmin };
+const { signAdminToken, verifyAdminToken } = require('../config/secrets');
+function generateAdminToken(admin) {
+  return signAdminToken(
+    { id: admin.id, email: admin.email, name: admin.name, role: admin.role, isAdmin: true },
+    { expiresIn: '12h' }
+  );
+}
+function authenticateAdmin(req, res, next) {
+  const authHeader = req.headers['authorization'];
+  const token = authHeader && authHeader.split(' ')[1];
+  if (!token) {
+    return res.status(401).json({ error: 'Admin access token required' });
+  }
+  try {
+    const decoded = verifyAdminToken(token);
+    if (!decoded.isAdmin) {
+      return res.status(403).json({ error: 'Admin privileges required' });
+    }
+    req.admin = decoded;
+    next();
+  } catch (err) {
+    return res.status(403).json({ error: 'Invalid or expired admin token' });
+  }
+}
+module.exports = { generateAdminToken, authenticateAdmin };

package/server/middleware/auth.js CHANGED Viewed

@@ -1,41 +1,41 @@
-const { signUserToken, verifyUserToken } = require('../config/secrets');
-function generateToken(user) {
-  return signUserToken(
-    { id: user.id, email: user.email, name: user.name },
-    { expiresIn: '7d' }
-  );
-}
-function authenticateToken(req, res, next) {
-  const authHeader = req.headers['authorization'];
-  const token = authHeader && authHeader.split(' ')[1];
-  if (!token) {
-    return res.status(401).json({ error: 'Access token required' });
-  }
-  try {
-    const decoded = verifyUserToken(token);
-    req.user = decoded;
-    next();
-  } catch (err) {
-    return res.status(403).json({ error: 'Invalid or expired token' });
-  }
-}
-function optionalAuth(req, res, next) {
-  const authHeader = req.headers['authorization'];
-  const token = authHeader && authHeader.split(' ')[1];
-  if (token) {
-    try {
-      req.user = verifyUserToken(token);
-    } catch (e) {
-      // ignore invalid tokens for optional auth
-    }
-  }
-  next();
-}
-module.exports = { generateToken, authenticateToken, optionalAuth };
+const { signUserToken, verifyUserToken } = require('../config/secrets');
+function generateToken(user) {
+  return signUserToken(
+    { id: user.id, email: user.email, name: user.name },
+    { expiresIn: '7d' }
+  );
+}
+function authenticateToken(req, res, next) {
+  const authHeader = req.headers['authorization'];
+  const token = authHeader && authHeader.split(' ')[1];
+  if (!token) {
+    return res.status(401).json({ error: 'Access token required' });
+  }
+  try {
+    const decoded = verifyUserToken(token);
+    req.user = decoded;
+    next();
+  } catch (err) {
+    return res.status(403).json({ error: 'Invalid or expired token' });
+  }
+}
+function optionalAuth(req, res, next) {
+  const authHeader = req.headers['authorization'];
+  const token = authHeader && authHeader.split(' ')[1];
+  if (token) {
+    try {
+      req.user = verifyUserToken(token);
+    } catch (e) {
+      // ignore invalid tokens for optional auth
+    }
+  }
+  next();
+}
+module.exports = { generateToken, authenticateToken, optionalAuth };

package/server/middleware/rateLimits.js CHANGED Viewed

@@ -1,24 +1,24 @@
-/**
- * Stricter rate limits for license token / track endpoints (used inside license router).
- */
-const rateLimit = require('express-rate-limit');
-const licenseTokenLimiter = rateLimit({
-  windowMs: 15 * 60 * 1000,
-  max: 30,
-  standardHeaders: true,
-  legacyHeaders: false,
-  message: { error: 'Too many token requests, please try again later' }
-});
-const licenseTrackLimiter = rateLimit({
-  windowMs: 60 * 1000,
-  max: 300,
-  standardHeaders: true,
-  legacyHeaders: false,
-  keyGenerator: (req) => `${req.ip}:${req.body?.sessionToken || req.body?.siteId || 'anon'}`,
-  message: { error: 'Too many track requests, please try again later' }
-});
-module.exports = { licenseTokenLimiter, licenseTrackLimiter };
+/**
+ * Stricter rate limits for license token / track endpoints (used inside license router).
+ */
+const rateLimit = require('express-rate-limit');
+const licenseTokenLimiter = rateLimit({
+  windowMs: 15 * 60 * 1000,
+  max: 30,
+  standardHeaders: true,
+  legacyHeaders: false,
+  message: { error: 'Too many token requests, please try again later' }
+});
+const licenseTrackLimiter = rateLimit({
+  windowMs: 60 * 1000,
+  max: 300,
+  standardHeaders: true,
+  legacyHeaders: false,
+  keyGenerator: (req) => `${req.ip}:${req.body?.sessionToken || req.body?.siteId || 'anon'}`,
+  message: { error: 'Too many track requests, please try again later' }
+});
+module.exports = { licenseTokenLimiter, licenseTrackLimiter };

package/server/migrations/001_add_analytics_indexes.sql CHANGED Viewed

@@ -1,7 +1,7 @@
--- Migration 001: Add composite indexes for analytics performance
--- Created: 2024-12-01
-CREATE INDEX IF NOT EXISTS idx_analytics_site_action ON analytics(site_id, action_name);
-CREATE INDEX IF NOT EXISTS idx_analytics_site_created ON analytics(site_id, created_at);
-CREATE INDEX IF NOT EXISTS idx_subscriptions_user ON subscriptions(user_id);
-CREATE INDEX IF NOT EXISTS idx_subscriptions_status ON subscriptions(status);
+-- Migration 001: Add composite indexes for analytics performance
+-- Created: 2024-12-01
+CREATE INDEX IF NOT EXISTS idx_analytics_site_action ON analytics(site_id, action_name);
+CREATE INDEX IF NOT EXISTS idx_analytics_site_created ON analytics(site_id, created_at);
+CREATE INDEX IF NOT EXISTS idx_subscriptions_user ON subscriptions(user_id);
+CREATE INDEX IF NOT EXISTS idx_subscriptions_status ON subscriptions(status);