web-agent-bridge 3.4.0 → 3.9.0

package/examples/azure-dns-wab.js

@@ -1,83 +1,83 @@
-#!/usr/bin/env node
-/**
- * azure-dns-wab.js — enable/disable WAB DNS Discovery TXT record on Azure DNS.
- *
- * Auth: Bearer token from Azure CLI:
- *   az account get-access-token --resource https://management.azure.com/ --query accessToken -o tsv
- *
- * Usage:
- *   AZURE_TOKEN="…"  node azure-dns-wab.js enable  example.com <subscription-id> <resource-group> <zone-name>
- *   AZURE_TOKEN="…"  node azure-dns-wab.js disable example.com <subscription-id> <resource-group> <zone-name>
- *   node azure-dns-wab.js status example.com
- *
- * Required role on the DNS zone: "DNS Zone Contributor"
- */
-
-'use strict';
-
-const fetch = (() => { try { return require('node-fetch'); } catch { return globalThis.fetch; } })();
-
-const [,, action, domain, subId, rg, zone] = process.argv;
-const TOKEN    = process.env.AZURE_TOKEN;
-const WAB_BASE = process.env.WAB_BASE_URL || 'https://www.webagentbridge.com';
-const ENDPOINT = process.env.WAB_ENDPOINT || `https://${domain}/.well-known/wab.json`;
-const API_VER  = '2018-05-01';
-
-if (!action || !domain) { console.error('Usage: node azure-dns-wab.js <enable|disable|status> <domain> [subscription-id] [resource-group] [zone-name]'); process.exit(1); }
-if (!['enable','disable','status'].includes(action)) { console.error('Action must be: enable | disable | status'); process.exit(1); }
-if (action !== 'status') {
-  if (!TOKEN) { console.error('Set AZURE_TOKEN (run: az account get-access-token --resource https://management.azure.com/ --query accessToken -o tsv)'); process.exit(1); }
-  if (!subId || !rg || !zone) { console.error('Need <subscription-id> <resource-group> <zone-name>'); process.exit(1); }
-}
-
-const azPath = (subId, rg, zone) =>
-  `https://management.azure.com/subscriptions/${subId}/resourceGroups/${rg}` +
-  `/providers/Microsoft.Network/dnsZones/${zone}/TXT/_wab?api-version=${API_VER}`;
-
-async function azReq(method, url, body) {
-  const r = await fetch(url, {
-    method,
-    headers: { 'Authorization': `Bearer ${TOKEN}`, 'Content-Type': 'application/json' },
-    body: body ? JSON.stringify(body) : undefined,
-  });
-  const text = await r.text();
-  if (!r.ok && !(method === 'DELETE' && r.status === 404)) {
-    throw new Error(`Azure ${method} ${r.status}: ${text}`);
-  }
-  return text ? JSON.parse(text) : {};
-}
-
-async function getTpl() {
-  const j = await (await fetch(`${WAB_BASE}/api/discovery/provider/record-template?domain=${encodeURIComponent(domain)}&endpoint=${encodeURIComponent(ENDPOINT)}`)).json();
-  if (!j.record || !j.record.value) throw new Error('Could not fetch WAB record template');
-  return j.record.value;
-}
-
-async function main() {
-  console.log(`[WAB] Action: ${action} | Domain: ${domain}`);
-
-  if (action === 'status') {
-    const j = await (await fetch(`${WAB_BASE}/api/discovery/provider/status?domain=${encodeURIComponent(domain)}`)).json();
-    console.log(`[WAB] Status: ${j.status}`);
-    console.log(JSON.stringify(j, null, 2));
-    return;
-  }
-
-  const url = azPath(subId, rg, zone);
-
-  if (action === 'enable') {
-    const txtVal = await getTpl();
-    console.log(`[WAB] TXT value: ${txtVal}`);
-    await azReq('PUT', url, { properties: { TTL: 3600, TXTRecords: [{ value: [txtVal] }] } });
-    console.log('[Azure DNS] PUT _wab TXT record done');
-    console.log('[WAB] WAB Discovery ENABLED.');
-  }
-
-  if (action === 'disable') {
-    await azReq('DELETE', url);
-    console.log('[Azure DNS] _wab TXT record deleted');
-    console.log('[WAB] WAB Discovery DISABLED.');
-  }
-}
-
-main().catch(err => { console.error('[ERROR]', err.message); process.exit(1); });
+#!/usr/bin/env node
+/**
+ * azure-dns-wab.js — enable/disable WAB DNS Discovery TXT record on Azure DNS.
+ *
+ * Auth: Bearer token from Azure CLI:
+ *   az account get-access-token --resource https://management.azure.com/ --query accessToken -o tsv
+ *
+ * Usage:
+ *   AZURE_TOKEN="…"  node azure-dns-wab.js enable  example.com <subscription-id> <resource-group> <zone-name>
+ *   AZURE_TOKEN="…"  node azure-dns-wab.js disable example.com <subscription-id> <resource-group> <zone-name>
+ *   node azure-dns-wab.js status example.com
+ *
+ * Required role on the DNS zone: "DNS Zone Contributor"
+ */
+
+'use strict';
+
+const fetch = (() => { try { return require('node-fetch'); } catch { return globalThis.fetch; } })();
+
+const [,, action, domain, subId, rg, zone] = process.argv;
+const TOKEN    = process.env.AZURE_TOKEN;
+const WAB_BASE = process.env.WAB_BASE_URL || 'https://www.webagentbridge.com';
+const ENDPOINT = process.env.WAB_ENDPOINT || `https://${domain}/.well-known/wab.json`;
+const API_VER  = '2018-05-01';
+
+if (!action || !domain) { console.error('Usage: node azure-dns-wab.js <enable|disable|status> <domain> [subscription-id] [resource-group] [zone-name]'); process.exit(1); }
+if (!['enable','disable','status'].includes(action)) { console.error('Action must be: enable | disable | status'); process.exit(1); }
+if (action !== 'status') {
+  if (!TOKEN) { console.error('Set AZURE_TOKEN (run: az account get-access-token --resource https://management.azure.com/ --query accessToken -o tsv)'); process.exit(1); }
+  if (!subId || !rg || !zone) { console.error('Need <subscription-id> <resource-group> <zone-name>'); process.exit(1); }
+}
+
+const azPath = (subId, rg, zone) =>
+  `https://management.azure.com/subscriptions/${subId}/resourceGroups/${rg}` +
+  `/providers/Microsoft.Network/dnsZones/${zone}/TXT/_wab?api-version=${API_VER}`;
+
+async function azReq(method, url, body) {
+  const r = await fetch(url, {
+    method,
+    headers: { 'Authorization': `Bearer ${TOKEN}`, 'Content-Type': 'application/json' },
+    body: body ? JSON.stringify(body) : undefined,
+  });
+  const text = await r.text();
+  if (!r.ok && !(method === 'DELETE' && r.status === 404)) {
+    throw new Error(`Azure ${method} ${r.status}: ${text}`);
+  }
+  return text ? JSON.parse(text) : {};
+}
+
+async function getTpl() {
+  const j = await (await fetch(`${WAB_BASE}/api/discovery/provider/record-template?domain=${encodeURIComponent(domain)}&endpoint=${encodeURIComponent(ENDPOINT)}`)).json();
+  if (!j.record || !j.record.value) throw new Error('Could not fetch WAB record template');
+  return j.record.value;
+}
+
+async function main() {
+  console.log(`[WAB] Action: ${action} | Domain: ${domain}`);
+
+  if (action === 'status') {
+    const j = await (await fetch(`${WAB_BASE}/api/discovery/provider/status?domain=${encodeURIComponent(domain)}`)).json();
+    console.log(`[WAB] Status: ${j.status}`);
+    console.log(JSON.stringify(j, null, 2));
+    return;
+  }
+
+  const url = azPath(subId, rg, zone);
+
+  if (action === 'enable') {
+    const txtVal = await getTpl();
+    console.log(`[WAB] TXT value: ${txtVal}`);
+    await azReq('PUT', url, { properties: { TTL: 3600, TXTRecords: [{ value: [txtVal] }] } });
+    console.log('[Azure DNS] PUT _wab TXT record done');
+    console.log('[WAB] WAB Discovery ENABLED.');
+  }
+
+  if (action === 'disable') {
+    await azReq('DELETE', url);
+    console.log('[Azure DNS] _wab TXT record deleted');
+    console.log('[WAB] WAB Discovery DISABLED.');
+  }
+}
+
+main().catch(err => { console.error('[ERROR]', err.message); process.exit(1); });

package/examples/bidi-agent.js

@@ -1,119 +1,119 @@
-/**
- * Example: AI Agent using WebDriver BiDi Protocol via WAB
- *
- * This agent connects to a website using the __wab_bidi interface,
- * which follows WebDriver BiDi conventions for standardized communication.
- *
- * Prerequisites:
- *   npm install puppeteer
- *
- * Usage:
- *   node examples/bidi-agent.js <url>
- */
-
-const puppeteer = require('puppeteer');
-
-const TARGET_URL = process.argv[2] || 'http://localhost:3000';
-
-let commandId = 0;
-
-function bidiCommand(method, params = {}) {
-  return { id: ++commandId, method, params };
-}
-
-async function main() {
-  console.log(`\n🔗 WAB BiDi Agent`);
-  console.log(`   Target: ${TARGET_URL}\n`);
-
-  const browser = await puppeteer.launch({ headless: true });
-  const page = await browser.newPage();
-
-  await page.goto(TARGET_URL, { waitUntil: 'networkidle2' });
-  console.log(`✓ Page loaded: ${await page.title()}`);
-
-  // Check for BiDi interface
-  const hasBiDi = await page.evaluate(() => {
-    return typeof window.__wab_bidi !== 'undefined' && typeof window.__wab_bidi.send === 'function';
-  });
-
-  if (!hasBiDi) {
-    console.log('✗ WAB BiDi interface not found on this page.');
-    await browser.close();
-    return;
-  }
-
-  console.log('✓ WAB BiDi interface detected\n');
-
-  // Step 1: Get BiDi context
-  const context = await page.evaluate(() => window.__wab_bidi.getContext());
-  console.log('📋 BiDi Context:');
-  console.log(`   URL: ${context.context.url}`);
-  console.log(`   Title: ${context.context.title}`);
-  console.log(`   Version: ${context.version}`);
-  console.log(`   Tier: ${context.capabilities.tier}`);
-  console.log(`   Capabilities: ${context.capabilities.actions.length} actions\n`);
-
-  // Step 2: Get actions via BiDi command
-  const actionsResult = await page.evaluate((cmd) => {
-    return window.__wab_bidi.send(cmd);
-  }, bidiCommand('wab.getActions'));
-
-  console.log(`🔍 Actions (via BiDi):`);
-  if (actionsResult.result) {
-    actionsResult.result.forEach((action) => {
-      console.log(`   • ${action.name} [${action.trigger}] — ${action.description}`);
-    });
-  }
-
-  // Step 3: Get page info via BiDi
-  const infoResult = await page.evaluate((cmd) => {
-    return window.__wab_bidi.send(cmd);
-  }, bidiCommand('wab.getPageInfo'));
-
-  console.log('\n📄 Page Info (via BiDi):');
-  if (infoResult.result) {
-    console.log(`   Title: ${infoResult.result.title}`);
-    console.log(`   Domain: ${infoResult.result.domain}`);
-    console.log(`   Bridge: v${infoResult.result.bridgeVersion}`);
-  }
-
-  // Step 4: Read content via BiDi command
-  const readResult = await page.evaluate((cmd) => {
-    return window.__wab_bidi.send(cmd);
-  }, bidiCommand('wab.readContent', { selector: 'h1' }));
-
-  if (readResult.result && readResult.result.success) {
-    console.log(`\n📖 Content: "${readResult.result.text}"`);
-  }
-
-  // Step 5: Execute an action via BiDi
-  const actions = actionsResult.result || [];
-  const firstAction = actions.find((a) => a.trigger === 'click');
-  if (firstAction) {
-    console.log(`\n▶ Executing via BiDi: "${firstAction.name}"`);
-    const execResult = await page.evaluate((cmd) => {
-      return window.__wab_bidi.send(cmd);
-    }, bidiCommand('wab.executeAction', { name: firstAction.name }));
-
-    const r = execResult.result;
-    console.log(`   Result: ${r && r.success ? '✓ Success' : '✗ ' + (r?.error || 'Unknown error')}`);
-  }
-
-  // Step 6: Test error handling
-  console.log('\n🧪 Testing error handling:');
-  const errorResult = await page.evaluate((cmd) => {
-    return window.__wab_bidi.send(cmd);
-  }, bidiCommand('wab.unknownMethod'));
-
-  if (errorResult.error) {
-    console.log(`   ✓ Unknown command handled: ${errorResult.error.code} — ${errorResult.error.message}`);
-  }
-
-  console.log('\n✓ BiDi agent session complete.');
-  await browser.close();
-}
-
-main().catch((err) => {
-  console.error('Agent error:', err.message);
-  process.exit(1);
-});
+/**
+ * Example: AI Agent using WebDriver BiDi Protocol via WAB
+ *
+ * This agent connects to a website using the __wab_bidi interface,
+ * which follows WebDriver BiDi conventions for standardized communication.
+ *
+ * Prerequisites:
+ *   npm install puppeteer
+ *
+ * Usage:
+ *   node examples/bidi-agent.js <url>
+ */
+
+const puppeteer = require('puppeteer');
+
+const TARGET_URL = process.argv[2] || 'http://localhost:3000';
+
+let commandId = 0;
+
+function bidiCommand(method, params = {}) {
+  return { id: ++commandId, method, params };
+}
+
+async function main() {
+  console.log(`\n🔗 WAB BiDi Agent`);
+  console.log(`   Target: ${TARGET_URL}\n`);
+
+  const browser = await puppeteer.launch({ headless: true });
+  const page = await browser.newPage();
+
+  await page.goto(TARGET_URL, { waitUntil: 'networkidle2' });
+  console.log(`✓ Page loaded: ${await page.title()}`);
+
+  // Check for BiDi interface
+  const hasBiDi = await page.evaluate(() => {
+    return typeof window.__wab_bidi !== 'undefined' && typeof window.__wab_bidi.send === 'function';
+  });
+
+  if (!hasBiDi) {
+    console.log('✗ WAB BiDi interface not found on this page.');
+    await browser.close();
+    return;
+  }
+
+  console.log('✓ WAB BiDi interface detected\n');
+
+  // Step 1: Get BiDi context
+  const context = await page.evaluate(() => window.__wab_bidi.getContext());
+  console.log('📋 BiDi Context:');
+  console.log(`   URL: ${context.context.url}`);
+  console.log(`   Title: ${context.context.title}`);
+  console.log(`   Version: ${context.version}`);
+  console.log(`   Tier: ${context.capabilities.tier}`);
+  console.log(`   Capabilities: ${context.capabilities.actions.length} actions\n`);
+
+  // Step 2: Get actions via BiDi command
+  const actionsResult = await page.evaluate((cmd) => {
+    return window.__wab_bidi.send(cmd);
+  }, bidiCommand('wab.getActions'));
+
+  console.log(`🔍 Actions (via BiDi):`);
+  if (actionsResult.result) {
+    actionsResult.result.forEach((action) => {
+      console.log(`   • ${action.name} [${action.trigger}] — ${action.description}`);
+    });
+  }
+
+  // Step 3: Get page info via BiDi
+  const infoResult = await page.evaluate((cmd) => {
+    return window.__wab_bidi.send(cmd);
+  }, bidiCommand('wab.getPageInfo'));
+
+  console.log('\n📄 Page Info (via BiDi):');
+  if (infoResult.result) {
+    console.log(`   Title: ${infoResult.result.title}`);
+    console.log(`   Domain: ${infoResult.result.domain}`);
+    console.log(`   Bridge: v${infoResult.result.bridgeVersion}`);
+  }
+
+  // Step 4: Read content via BiDi command
+  const readResult = await page.evaluate((cmd) => {
+    return window.__wab_bidi.send(cmd);
+  }, bidiCommand('wab.readContent', { selector: 'h1' }));
+
+  if (readResult.result && readResult.result.success) {
+    console.log(`\n📖 Content: "${readResult.result.text}"`);
+  }
+
+  // Step 5: Execute an action via BiDi
+  const actions = actionsResult.result || [];
+  const firstAction = actions.find((a) => a.trigger === 'click');
+  if (firstAction) {
+    console.log(`\n▶ Executing via BiDi: "${firstAction.name}"`);
+    const execResult = await page.evaluate((cmd) => {
+      return window.__wab_bidi.send(cmd);
+    }, bidiCommand('wab.executeAction', { name: firstAction.name }));
+
+    const r = execResult.result;
+    console.log(`   Result: ${r && r.success ? '✓ Success' : '✗ ' + (r?.error || 'Unknown error')}`);
+  }
+
+  // Step 6: Test error handling
+  console.log('\n🧪 Testing error handling:');
+  const errorResult = await page.evaluate((cmd) => {
+    return window.__wab_bidi.send(cmd);
+  }, bidiCommand('wab.unknownMethod'));
+
+  if (errorResult.error) {
+    console.log(`   ✓ Unknown command handled: ${errorResult.error.code} — ${errorResult.error.message}`);
+  }
+
+  console.log('\n✓ BiDi agent session complete.');
+  await browser.close();
+}
+
+main().catch((err) => {
+  console.error('Agent error:', err.message);
+  process.exit(1);
+});

package/examples/cloudflare-wab-dns.js

@@ -1,121 +1,121 @@
-#!/usr/bin/env node
-/**
- * cloudflare-wab-dns.js
- * ---------------------
- * CLI tool: enable or disable WAB DNS Discovery TXT record on Cloudflare.
- *
- * Usage:
- *   CF_API_TOKEN=<token> node cloudflare-wab-dns.js enable  example.com
- *   CF_API_TOKEN=<token> node cloudflare-wab-dns.js disable example.com
- *   CF_API_TOKEN=<token> node cloudflare-wab-dns.js status  example.com
- *
- * Optional: set WAB_ENDPOINT env var to override the endpoint URL in the TXT record.
- *
- * Required npm package: node-fetch (v2 for CommonJS):
- *   npm install node-fetch@2
- */
-
-'use strict';
-
-const fetch = (() => {
-  try { return require('node-fetch'); }
-  catch { return globalThis.fetch; }
-})();
-
-const CF_TOKEN   = process.env.CF_API_TOKEN;
-const [,, action, domain] = process.argv;
-
-if (!CF_TOKEN) { console.error('Error: CF_API_TOKEN env variable is required.'); process.exit(1); }
-if (!action || !domain) {
-  console.error('Usage: node cloudflare-wab-dns.js <enable|disable|status> <domain>');
-  process.exit(1);
-}
-if (!['enable', 'disable', 'status'].includes(action)) {
-  console.error('Action must be one of: enable, disable, status');
-  process.exit(1);
-}
-
-const CF_BASE  = 'https://api.cloudflare.com/client/v4';
-const WAB_BASE = process.env.WAB_BASE_URL || 'https://www.webagentbridge.com';
-const ENDPOINT = process.env.WAB_ENDPOINT || `https://${domain}/.well-known/wab.json`;
-
-function cfHeaders() {
-  return { 'Authorization': `Bearer ${CF_TOKEN}`, 'Content-Type': 'application/json' };
-}
-
-async function cfGet(path) {
-  const r = await fetch(`${CF_BASE}${path}`, { headers: cfHeaders() });
-  const j = await r.json();
-  if (!j.success) throw new Error(`CF API error: ${JSON.stringify(j.errors)}`);
-  return j;
-}
-
-async function getZoneId() {
-  const j = await cfGet(`/zones?name=${encodeURIComponent(domain)}`);
-  if (!j.result[0]) throw new Error(`Zone not found for domain "${domain}"`);
-  return j.result[0].id;
-}
-
-async function getRecordTemplate() {
-  const url = `${WAB_BASE}/api/discovery/provider/record-template?domain=${encodeURIComponent(domain)}&endpoint=${encodeURIComponent(ENDPOINT)}`;
-  const r   = await fetch(url);
-  const j   = await r.json();
-  if (!j.record || !j.record.value) throw new Error('Could not fetch WAB record template');
-  return j.record.value;
-}
-
-async function findExistingRecord(zoneId) {
-  const j = await cfGet(`/zones/${zoneId}/dns_records?type=TXT&name=_wab.${domain}`);
-  return j.result && j.result[0] ? j.result[0] : null;
-}
-
-async function main() {
-  console.log(`[WAB] Action: ${action} | Domain: ${domain}`);
-
-  if (action === 'status') {
-    const url = `${WAB_BASE}/api/discovery/provider/status?domain=${encodeURIComponent(domain)}`;
-    const j   = await (await fetch(url)).json();
-    console.log(`[WAB] Status: ${j.status}`);
-    console.log(JSON.stringify(j, null, 2));
-    return;
-  }
-
-  const txtValue = await getRecordTemplate();
-  console.log(`[WAB] TXT value: ${txtValue}`);
-
-  const zoneId   = await getZoneId();
-  console.log(`[CF]  Zone ID:   ${zoneId}`);
-
-  const existing = await findExistingRecord(zoneId);
-  const recBase  = `${CF_BASE}/zones/${zoneId}/dns_records`;
-
-  if (action === 'enable') {
-    const body = JSON.stringify({ type: 'TXT', name: `_wab.${domain}`, content: txtValue, ttl: 3600 });
-    if (existing) {
-      const r = await fetch(`${recBase}/${existing.id}`, { method: 'PUT', headers: cfHeaders(), body });
-      const j = await r.json();
-      if (!j.success) throw new Error(`PUT failed: ${JSON.stringify(j.errors)}`);
-      console.log(`[CF]  Updated TXT record (id=${existing.id})`);
-    } else {
-      const r = await fetch(recBase, { method: 'POST', headers: cfHeaders(), body });
-      const j = await r.json();
-      if (!j.success) throw new Error(`POST failed: ${JSON.stringify(j.errors)}`);
-      console.log(`[CF]  Created TXT record (id=${j.result.id})`);
-    }
-    console.log('[WAB] WAB Discovery ENABLED. Verification may take up to 60 s for DNS propagation.');
-  }
-
-  if (action === 'disable') {
-    if (!existing) {
-      console.log('[CF]  No _wab TXT record found. Already disabled.');
-      return;
-    }
-    const r = await fetch(`${recBase}/${existing.id}`, { method: 'DELETE', headers: cfHeaders() });
-    const j = await r.json();
-    if (!j.success) throw new Error(`DELETE failed: ${JSON.stringify(j.errors)}`);
-    console.log(`[CF]  Deleted TXT record (id=${existing.id})`);
-    console.log('[WAB] WAB Discovery DISABLED.');
-  }
-}
-
-main().catch(err => { console.error('[ERROR]', err.message); process.exit(1); });
+#!/usr/bin/env node
+/**
+ * cloudflare-wab-dns.js
+ * ---------------------
+ * CLI tool: enable or disable WAB DNS Discovery TXT record on Cloudflare.
+ *
+ * Usage:
+ *   CF_API_TOKEN=<token> node cloudflare-wab-dns.js enable  example.com
+ *   CF_API_TOKEN=<token> node cloudflare-wab-dns.js disable example.com
+ *   CF_API_TOKEN=<token> node cloudflare-wab-dns.js status  example.com
+ *
+ * Optional: set WAB_ENDPOINT env var to override the endpoint URL in the TXT record.
+ *
+ * Required npm package: node-fetch (v2 for CommonJS):
+ *   npm install node-fetch@2
+ */
+
+'use strict';
+
+const fetch = (() => {
+  try { return require('node-fetch'); }
+  catch { return globalThis.fetch; }
+})();
+
+const CF_TOKEN   = process.env.CF_API_TOKEN;
+const [,, action, domain] = process.argv;
+
+if (!CF_TOKEN) { console.error('Error: CF_API_TOKEN env variable is required.'); process.exit(1); }
+if (!action || !domain) {
+  console.error('Usage: node cloudflare-wab-dns.js <enable|disable|status> <domain>');
+  process.exit(1);
+}
+if (!['enable', 'disable', 'status'].includes(action)) {
+  console.error('Action must be one of: enable, disable, status');
+  process.exit(1);
+}
+
+const CF_BASE  = 'https://api.cloudflare.com/client/v4';
+const WAB_BASE = process.env.WAB_BASE_URL || 'https://www.webagentbridge.com';
+const ENDPOINT = process.env.WAB_ENDPOINT || `https://${domain}/.well-known/wab.json`;
+
+function cfHeaders() {
+  return { 'Authorization': `Bearer ${CF_TOKEN}`, 'Content-Type': 'application/json' };
+}
+
+async function cfGet(path) {
+  const r = await fetch(`${CF_BASE}${path}`, { headers: cfHeaders() });
+  const j = await r.json();
+  if (!j.success) throw new Error(`CF API error: ${JSON.stringify(j.errors)}`);
+  return j;
+}
+
+async function getZoneId() {
+  const j = await cfGet(`/zones?name=${encodeURIComponent(domain)}`);
+  if (!j.result[0]) throw new Error(`Zone not found for domain "${domain}"`);
+  return j.result[0].id;
+}
+
+async function getRecordTemplate() {
+  const url = `${WAB_BASE}/api/discovery/provider/record-template?domain=${encodeURIComponent(domain)}&endpoint=${encodeURIComponent(ENDPOINT)}`;
+  const r   = await fetch(url);
+  const j   = await r.json();
+  if (!j.record || !j.record.value) throw new Error('Could not fetch WAB record template');
+  return j.record.value;
+}
+
+async function findExistingRecord(zoneId) {
+  const j = await cfGet(`/zones/${zoneId}/dns_records?type=TXT&name=_wab.${domain}`);
+  return j.result && j.result[0] ? j.result[0] : null;
+}
+
+async function main() {
+  console.log(`[WAB] Action: ${action} | Domain: ${domain}`);
+
+  if (action === 'status') {
+    const url = `${WAB_BASE}/api/discovery/provider/status?domain=${encodeURIComponent(domain)}`;
+    const j   = await (await fetch(url)).json();
+    console.log(`[WAB] Status: ${j.status}`);
+    console.log(JSON.stringify(j, null, 2));
+    return;
+  }
+
+  const txtValue = await getRecordTemplate();
+  console.log(`[WAB] TXT value: ${txtValue}`);
+
+  const zoneId   = await getZoneId();
+  console.log(`[CF]  Zone ID:   ${zoneId}`);
+
+  const existing = await findExistingRecord(zoneId);
+  const recBase  = `${CF_BASE}/zones/${zoneId}/dns_records`;
+
+  if (action === 'enable') {
+    const body = JSON.stringify({ type: 'TXT', name: `_wab.${domain}`, content: txtValue, ttl: 3600 });
+    if (existing) {
+      const r = await fetch(`${recBase}/${existing.id}`, { method: 'PUT', headers: cfHeaders(), body });
+      const j = await r.json();
+      if (!j.success) throw new Error(`PUT failed: ${JSON.stringify(j.errors)}`);
+      console.log(`[CF]  Updated TXT record (id=${existing.id})`);
+    } else {
+      const r = await fetch(recBase, { method: 'POST', headers: cfHeaders(), body });
+      const j = await r.json();
+      if (!j.success) throw new Error(`POST failed: ${JSON.stringify(j.errors)}`);
+      console.log(`[CF]  Created TXT record (id=${j.result.id})`);
+    }
+    console.log('[WAB] WAB Discovery ENABLED. Verification may take up to 60 s for DNS propagation.');
+  }
+
+  if (action === 'disable') {
+    if (!existing) {
+      console.log('[CF]  No _wab TXT record found. Already disabled.');
+      return;
+    }
+    const r = await fetch(`${recBase}/${existing.id}`, { method: 'DELETE', headers: cfHeaders() });
+    const j = await r.json();
+    if (!j.success) throw new Error(`DELETE failed: ${JSON.stringify(j.errors)}`);
+    console.log(`[CF]  Deleted TXT record (id=${existing.id})`);
+    console.log('[WAB] WAB Discovery DISABLED.');
+  }
+}
+
+main().catch(err => { console.error('[ERROR]', err.message); process.exit(1); });