web-agent-bridge 3.2.0 → 3.4.0

package/public/provider-onboarding.html

@@ -0,0 +1,172 @@
+<!DOCTYPE html>
+<html lang="en" dir="ltr">
+<head>
+  <meta charset="UTF-8">
+  <meta name="viewport" content="width=device-width, initial-scale=1.0">
+  <title>WAB DNS Discovery Provider Onboarding</title>
+  <meta name="description" content="Integrate WAB DNS Discovery into DNS providers and registrars with one-click enable/disable flow.">
+  <link rel="stylesheet" href="/css/styles.css?v=3.3.0">
+  <style>
+    body { background:#0a1222; color:#e6edf8; }
+    .hero { padding:110px 24px 40px; text-align:center; }
+    .hero h1 { font-size:clamp(1.9rem,4vw,3rem); margin-bottom:10px; }
+    .hero p { color:#9fb1d3; max-width:820px; margin:0 auto; line-height:1.7; }
+    .wrap { max-width:1100px; margin:0 auto; padding:0 20px 70px; }
+    .grid { display:grid; gap:14px; grid-template-columns:repeat(auto-fit,minmax(280px,1fr)); }
+    .card { background:linear-gradient(180deg,rgba(17,24,39,.9),rgba(12,18,31,.96)); border:1px solid rgba(148,163,184,.2); border-radius:14px; padding:16px; }
+    .card h3 { margin:0 0 8px; color:#fcd34d; }
+    .card p, .card li { color:#c7d2ea; line-height:1.65; font-size:.93rem; }
+    .card ul { margin:6px 0 0 20px; }
+    .badge { display:inline-block; margin:6px 0; padding:4px 9px; border-radius:999px; font-size:.73rem; font-weight:700; color:#fde68a; border:1px solid rgba(250,204,21,.45); background:rgba(250,204,21,.12); }
+    pre, code { font-family:Consolas, Menlo, Monaco, monospace; }
+    pre { background:#020617; border:1px solid rgba(148,163,184,.25); border-radius:10px; padding:11px; color:#c4b5fd; overflow:auto; font-size:.82rem; line-height:1.5; }
+    .actions { display:flex; flex-wrap:wrap; gap:10px; margin-top:12px; }
+    .actions a { text-decoration:none; }
+    .btn-mini { display:inline-block; padding:8px 12px; border-radius:9px; font-size:.83rem; font-weight:700; }
+    .btn-primary { background:linear-gradient(135deg,#f59e0b,#b45309); color:#fff; }
+    .btn-secondary { background:rgba(148,163,184,.16); border:1px solid rgba(148,163,184,.35); color:#e6edf8; }
+  </style>
+</head>
+<body>
+  <section class="hero">
+    <h1>Provider Onboarding: One-Click WAB DNS Discovery</h1>
+    <p>
+      Add WAB DNS Discovery to your DNS platform or registrar panel so domain owners can enable or disable AI discoverability
+      with a single toggle, just like SSL activation.
+    </p>
+  </section>
+
+  <div class="wrap">
+    <div class="grid">
+      <div class="card">
+        <h3>1) Fetch Protocol Manifest</h3>
+        <span class="badge">Machine contract</span>
+        <pre>GET /api/discovery/provider/manifest</pre>
+        <p>Use this endpoint to lock integration against a stable protocol definition.</p>
+      </div>
+
+      <div class="card">
+        <h3>2) Build TXT Record Template</h3>
+        <span class="badge">Per-domain payload</span>
+        <pre>GET /api/discovery/provider/record-template?domain=example.com</pre>
+        <p>Returns ready-to-write values for DNS API calls in your enable-toggle flow.</p>
+      </div>
+
+      <div class="card">
+        <h3>3) Verify Status</h3>
+        <span class="badge">UI state source</span>
+        <pre>GET /api/discovery/provider/status?domain=example.com</pre>
+        <p>Map status to your UI toggle badges:</p>
+        <ul>
+          <li>enabled: DNS + endpoint verified</li>
+          <li>partial: DNS found, endpoint issue</li>
+          <li>disabled: no valid TXT record</li>
+        </ul>
+      </div>
+
+      <div class="card">
+        <h3>4) Batch Verification + Callback</h3>
+        <span class="badge">Registrar dashboards</span>
+        <pre>POST /api/discovery/provider/verify-batch
+{
+  "domains": ["example.com", "shop.example.com"],
+  "include_agent_run": false,
+  "callback_url": "https://provider.example/webhooks/wab",
+  "callback_secret": "shared-secret"
+}</pre>
+        <p>
+          Optional callback pushes final result to your webhook endpoint with request id and optional HMAC signature.
+        </p>
+      </div>
+
+      <div class="card">
+        <h3>5) Webhook Signature Verification</h3>
+        <span class="badge">Security</span>
+        <p>
+          Verify the <code>x-wab-signature</code> header on your callback endpoint to confirm the request came from WAB.
+          The signature is <code>HMAC-SHA256(requestBody, callbackSecret)</code> encoded as hex.
+        </p>
+        <p><strong>Node.js</strong></p>
+        <pre>const crypto = require('crypto');
+
+function verifyWabSignature(rawBody, receivedSig, secret) {
+  const expected = crypto
+    .createHmac('sha256', secret)
+    .update(rawBody)            // raw Buffer or string
+    .digest('hex');
+  // constant-time compare to prevent timing attacks
+  return crypto.timingSafeEqual(
+    Buffer.from(expected, 'utf8'),
+    Buffer.from(receivedSig, 'utf8')
+  );
+}
+
+// Express example
+app.post('/webhooks/wab', express.raw({ type: '*/*' }), (req, res) => {
+  const sig = req.headers['x-wab-signature'];
+  if (!verifyWabSignature(req.body, sig, process.env.WAB_CALLBACK_SECRET)) {
+    return res.status(401).send('Invalid signature');
+  }
+  const payload = JSON.parse(req.body.toString());
+  // … process payload
+  res.sendStatus(200);
+});</pre>
+        <p><strong>Python (Flask)</strong></p>
+        <pre>import hmac, hashlib
+from flask import Flask, request, abort
+
+app = Flask(__name__)
+WAB_SECRET = os.environ['WAB_CALLBACK_SECRET']
+
+@app.route('/webhooks/wab', methods=['POST'])
+def wab_webhook():
+    sig = request.headers.get('x-wab-signature', '')
+    expected = hmac.new(
+        WAB_SECRET.encode(), request.data, hashlib.sha256
+    ).hexdigest()
+    if not hmac.compare_digest(expected, sig):
+        abort(401)
+    payload = request.get_json(force=True)
+    # … process payload
+    return '', 200</pre>
+      </div>
+
+      <div class="card">
+        <h3>Enable/Disable Flow</h3>
+        <span class="badge">One-click UX</span>
+        <ul>
+          <li>Enable: write TXT, verify, show enabled</li>
+          <li>Disable: delete TXT, verify, show disabled</li>
+          <li>Retry verification until propagation converges</li>
+        </ul>
+      </div>
+
+      <div class="card">
+        <h3>Integration Endpoints</h3>
+        <pre>/api/discovery/provider/manifest
+/api/discovery/provider/record-template
+/api/discovery/provider/enable-plan
+/api/discovery/provider/status
+/api/discovery/provider/verify-batch</pre>
+        <div class="actions">
+          <a class="btn-mini btn-primary" href="/api/discovery/provider/manifest" target="_blank" rel="noopener">Open Manifest</a>
+          <a class="btn-mini btn-secondary" href="/api/discovery/provider/record-template?domain=webagentbridge.com" target="_blank" rel="noopener">Open Template Example</a>
+          <a class="btn-mini btn-secondary" href="/provider-sandbox">Open Provider Sandbox</a>
+          <a class="btn-mini btn-primary" href="/cloudflare-integration">Cloudflare One-Click</a>
+          <a class="btn-mini btn-primary" href="/cpanel-integration">cPanel One-Click</a>
+          <a class="btn-mini btn-primary" href="/route53-integration">Route 53 One-Click</a>
+          <a class="btn-mini btn-primary" href="/plesk-integration">Plesk One-Click</a>
+          <a class="btn-mini btn-primary" href="/gcp-dns-integration">Google Cloud DNS</a>
+          <a class="btn-mini btn-primary" href="/azure-dns-integration">Azure DNS One-Click</a>
+          <a class="btn-mini btn-primary" href="/registrar-integrations">GoDaddy / Namecheap CLI</a>
+          <a class="btn-mini btn-secondary" href="/adoption-metrics">Adoption Metrics</a>
+          <a class="btn-mini btn-primary" href="/wab-trust">Trust Layer (v1.3)</a>
+          <a class="btn-mini btn-secondary" href="/wab-vs-protocols">WAB vs Other Protocols</a>
+          <a class="btn-mini btn-secondary" href="/downloads/wab-dns-provider.postman_collection.json" target="_blank" rel="noopener">Download Postman Collection</a>
+          <a class="btn-mini btn-secondary" href="/dns">Open DNS Page</a>
+        </div>
+      </div>
+    </div>
+  </div>
+</body>
+</html>

package/public/provider-sandbox.html

@@ -0,0 +1,134 @@
+<!DOCTYPE html>
+<html lang="en" dir="ltr">
+<head>
+  <meta charset="UTF-8">
+  <meta name="viewport" content="width=device-width, initial-scale=1.0">
+  <title>WAB Provider Sandbox</title>
+  <meta name="description" content="Interactive sandbox for DNS providers and registrars to test WAB DNS Discovery APIs.">
+  <link rel="stylesheet" href="/css/styles.css?v=3.3.0">
+  <style>
+    body { background:#081123; color:#e8efff; }
+    .hero { padding:100px 20px 30px; text-align:center; }
+    .hero h1 { font-size:clamp(1.8rem,4vw,2.8rem); margin-bottom:8px; }
+    .hero p { color:#9eb1d8; max-width:820px; margin:0 auto; }
+    .wrap { max-width:1100px; margin:0 auto; padding:0 18px 70px; }
+    .panel { background:linear-gradient(180deg,rgba(17,24,39,.92),rgba(10,16,30,.96)); border:1px solid rgba(148,163,184,.2); border-radius:14px; padding:14px; margin-bottom:14px; }
+    .panel h3 { margin:0 0 8px; color:#fcd34d; }
+    .row { display:grid; grid-template-columns:2fr 1fr; gap:10px; }
+    @media (max-width:760px) { .row { grid-template-columns:1fr; } }
+    label { display:block; font-size:.8rem; color:#a8b7d7; margin-bottom:5px; }
+    input, select, textarea { width:100%; background:#0b162a; border:1px solid rgba(148,163,184,.28); color:#e8efff; border-radius:10px; padding:10px; font-family:Consolas, monospace; font-size:.85rem; }
+    textarea { min-height:90px; }
+    .actions { display:flex; gap:8px; flex-wrap:wrap; margin-top:8px; }
+    button { background:linear-gradient(135deg,#f59e0b,#b45309); color:#fff; border:none; border-radius:10px; padding:9px 12px; cursor:pointer; font-weight:700; font-size:.82rem; }
+    button.alt { background:linear-gradient(135deg,#334155,#1f2937); }
+    pre { background:#020617; border:1px solid rgba(148,163,184,.26); border-radius:10px; padding:12px; color:#c4b5fd; overflow:auto; min-height:180px; }
+    .hint { color:#9eb1d8; font-size:.84rem; }
+  </style>
+</head>
+<body>
+  <section class="hero">
+    <h1>Provider Sandbox</h1>
+    <p>Run provider integration APIs end-to-end: manifest, record template, status, one-click plan, and batch verify.</p>
+  </section>
+
+  <div class="wrap">
+    <div class="panel">
+      <h3>Request Builder</h3>
+      <div class="row">
+        <div>
+          <label>Domain</label>
+          <input id="domain" value="webagentbridge.com" placeholder="example.com">
+        </div>
+        <div>
+          <label>Action</label>
+          <select id="action">
+            <option value="enable">enable</option>
+            <option value="disable">disable</option>
+          </select>
+        </div>
+      </div>
+      <div class="row" style="margin-top:8px;">
+        <div>
+          <label>Batch Domains (comma separated)</label>
+          <input id="batchDomains" value="webagentbridge.com, example.com">
+        </div>
+        <div>
+          <label>Include Agent Run</label>
+          <select id="includeAgentRun">
+            <option value="false" selected>false</option>
+            <option value="true">true</option>
+          </select>
+        </div>
+      </div>
+      <div class="actions">
+        <button onclick="runManifest()">Manifest</button>
+        <button onclick="runTemplate()">Record Template</button>
+        <button onclick="runStatus()">Status</button>
+        <button onclick="runPlan()">Enable/Disable Plan</button>
+        <button onclick="runBatch()">Verify Batch</button>
+        <button class="alt" onclick="clearOut()">Clear</button>
+      </div>
+      <p class="hint">Tip: use this page during provider integration QA before shipping one-click toggle in production.</p>
+    </div>
+
+    <div class="panel">
+      <h3>Response</h3>
+      <pre id="out">{}</pre>
+    </div>
+  </div>
+
+  <script>
+    async function call(url, opts) {
+      const out = document.getElementById('out');
+      out.textContent = 'Loading ' + url + ' ...';
+      try {
+        const res = await fetch(url, opts || {});
+        const data = await res.json().catch(() => ({}));
+        out.textContent = JSON.stringify({ http_status: res.status, data: data }, null, 2);
+      } catch (err) {
+        out.textContent = JSON.stringify({ error: String(err) }, null, 2);
+      }
+    }
+
+    function getDomain() {
+      return (document.getElementById('domain').value || '').trim();
+    }
+
+    function runManifest() {
+      call('/api/discovery/provider/manifest');
+    }
+
+    function runTemplate() {
+      const d = getDomain();
+      call('/api/discovery/provider/record-template?domain=' + encodeURIComponent(d));
+    }
+
+    function runStatus() {
+      const d = getDomain();
+      call('/api/discovery/provider/status?domain=' + encodeURIComponent(d));
+    }
+
+    function runPlan() {
+      const d = getDomain();
+      const action = document.getElementById('action').value;
+      call('/api/discovery/provider/enable-plan?domain=' + encodeURIComponent(d) + '&action=' + encodeURIComponent(action));
+    }
+
+    function runBatch() {
+      const raw = (document.getElementById('batchDomains').value || '');
+      const domains = raw.split(',').map((s) => s.trim()).filter(Boolean);
+      const includeAgentRun = document.getElementById('includeAgentRun').value === 'true';
+      call('/api/discovery/provider/verify-batch', {
+        method: 'POST',
+        headers: { 'content-type': 'application/json', accept: 'application/json' },
+        body: JSON.stringify({ domains: domains, include_agent_run: includeAgentRun })
+      });
+    }
+
+    function clearOut() {
+      document.getElementById('out').textContent = '{}';
+    }
+  </script>
+</body>
+</html>