npm - webpeel - Versions diffs - 0.20.2 → 0.20.3 - Mend

webpeel 0.20.2 → 0.20.3

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (86) hide show

package/dist/server/app.d.ts +14 -0
package/dist/server/app.js +384 -0
package/dist/server/auth-store.d.ts +27 -0
package/dist/server/auth-store.js +88 -0
package/dist/server/email-service.d.ts +21 -0
package/dist/server/email-service.js +79 -0
package/dist/server/job-queue.d.ts +100 -0
package/dist/server/job-queue.js +145 -0
package/dist/server/logger.d.ts +10 -0
package/dist/server/logger.js +37 -0
package/dist/server/middleware/auth.d.ts +28 -0
package/dist/server/middleware/auth.js +221 -0
package/dist/server/middleware/rate-limit.d.ts +24 -0
package/dist/server/middleware/rate-limit.js +167 -0
package/dist/server/middleware/url-validator.d.ts +15 -0
package/dist/server/middleware/url-validator.js +186 -0
package/dist/server/openapi.yaml +6418 -0
package/dist/server/pg-auth-store.d.ts +132 -0
package/dist/server/pg-auth-store.js +472 -0
package/dist/server/pg-job-queue.d.ts +59 -0
package/dist/server/pg-job-queue.js +375 -0
package/dist/server/premium/domain-intel.d.ts +16 -0
package/dist/server/premium/domain-intel.js +133 -0
package/dist/server/premium/index.d.ts +17 -0
package/dist/server/premium/index.js +35 -0
package/dist/server/premium/swr-cache.d.ts +14 -0
package/dist/server/premium/swr-cache.js +34 -0
package/dist/server/routes/activity.d.ts +6 -0
package/dist/server/routes/activity.js +74 -0
package/dist/server/routes/answer.d.ts +5 -0
package/dist/server/routes/answer.js +125 -0
package/dist/server/routes/ask.d.ts +28 -0
package/dist/server/routes/ask.js +229 -0
package/dist/server/routes/batch.d.ts +6 -0
package/dist/server/routes/batch.js +493 -0
package/dist/server/routes/cli-usage.d.ts +6 -0
package/dist/server/routes/cli-usage.js +127 -0
package/dist/server/routes/compat.d.ts +23 -0
package/dist/server/routes/compat.js +652 -0
package/dist/server/routes/deep-fetch.d.ts +8 -0
package/dist/server/routes/deep-fetch.js +57 -0
package/dist/server/routes/demo.d.ts +24 -0
package/dist/server/routes/demo.js +517 -0
package/dist/server/routes/do.d.ts +8 -0
package/dist/server/routes/do.js +72 -0
package/dist/server/routes/extract.d.ts +8 -0
package/dist/server/routes/extract.js +235 -0
package/dist/server/routes/fetch.d.ts +7 -0
package/dist/server/routes/fetch.js +999 -0
package/dist/server/routes/health.d.ts +7 -0
package/dist/server/routes/health.js +19 -0
package/dist/server/routes/jobs.d.ts +7 -0
package/dist/server/routes/jobs.js +573 -0
package/dist/server/routes/mcp.d.ts +14 -0
package/dist/server/routes/mcp.js +141 -0
package/dist/server/routes/oauth.d.ts +9 -0
package/dist/server/routes/oauth.js +396 -0
package/dist/server/routes/playground.d.ts +17 -0
package/dist/server/routes/playground.js +283 -0
package/dist/server/routes/screenshot.d.ts +22 -0
package/dist/server/routes/screenshot.js +816 -0
package/dist/server/routes/search.d.ts +6 -0
package/dist/server/routes/search.js +303 -0
package/dist/server/routes/session.d.ts +15 -0
package/dist/server/routes/session.js +397 -0
package/dist/server/routes/stats.d.ts +6 -0
package/dist/server/routes/stats.js +71 -0
package/dist/server/routes/stripe.d.ts +15 -0
package/dist/server/routes/stripe.js +294 -0
package/dist/server/routes/users.d.ts +8 -0
package/dist/server/routes/users.js +1671 -0
package/dist/server/routes/watch.d.ts +15 -0
package/dist/server/routes/watch.js +309 -0
package/dist/server/routes/webhooks.d.ts +26 -0
package/dist/server/routes/webhooks.js +170 -0
package/dist/server/routes/youtube.d.ts +6 -0
package/dist/server/routes/youtube.js +130 -0
package/dist/server/sentry.d.ts +13 -0
package/dist/server/sentry.js +38 -0
package/dist/server/types.d.ts +15 -0
package/dist/server/types.js +7 -0
package/dist/server/utils/response.d.ts +44 -0
package/dist/server/utils/response.js +69 -0
package/dist/server/utils/sse.d.ts +22 -0
package/dist/server/utils/sse.js +38 -0
package/package.json +2 -1

package/dist/server/routes/health.d.ts ADDED Viewed

@@ -0,0 +1,7 @@
+/**
+ * Health check endpoint
+ * NOTE: This route is mounted BEFORE auth/rate-limit middleware in app.ts
+ * so it's never blocked by rate limiting (Render hits it every ~30s).
+ */
+import { Router } from 'express';
+export declare function createHealthRouter(): Router;

package/dist/server/routes/health.js ADDED Viewed

@@ -0,0 +1,19 @@
+/**
+ * Health check endpoint
+ * NOTE: This route is mounted BEFORE auth/rate-limit middleware in app.ts
+ * so it's never blocked by rate limiting (Render hits it every ~30s).
+ */
+import { Router } from 'express';
+const startTime = Date.now();
+export function createHealthRouter() {
+    const router = Router();
+    router.get('/health', (_req, res) => {
+        const uptime = Math.floor((Date.now() - startTime) / 1000);
+        res.json({
+            status: 'healthy',
+            uptime,
+            timestamp: new Date().toISOString(),
+        });
+    });
+    return router;
+}

package/dist/server/routes/jobs.d.ts ADDED Viewed

@@ -0,0 +1,7 @@
+/**
+ * Async jobs API - crawl endpoints with SSE support
+ */
+import { Router } from 'express';
+import type { AuthStore } from '../auth-store.js';
+import type { IJobQueue } from '../job-queue.js';
+export declare function createJobsRouter(jobQueue: IJobQueue, authStore: AuthStore): Router;

package/dist/server/routes/jobs.js ADDED Viewed

@@ -0,0 +1,573 @@
+/**
+ * Async jobs API - crawl endpoints with SSE support
+ */
+import { Router } from 'express';
+import crypto from 'crypto';
+import { crawl } from '../../index.js';
+import { searchJobs } from '../../core/jobs.js';
+import { sendWebhook, normalizeWebhook } from './webhooks.js';
+import { initSSE, sendSSE, endSSE, wantsSSE } from '../utils/sse.js';
+export function createJobsRouter(jobQueue, authStore) {
+    const router = Router();
+    /**
+     * POST /v1/crawl - Start async crawl job (or stream via SSE)
+     */
+    router.post('/v1/crawl', async (req, res) => {
+        try {
+            const { url, limit, maxDepth, scrapeOptions, webhook, location, languages } = req.body;
+            // Validate required parameters
+            if (!url || typeof url !== 'string') {
+                res.status(400).json({
+                    success: false,
+                    error: {
+                        type: 'invalid_request',
+                        message: 'Missing or invalid "url" parameter',
+                        hint: 'Pass a valid URL in the request body: { "url": "https://example.com" }',
+                        docs: 'https://webpeel.dev/docs/errors#invalid-request',
+                    },
+                    requestId: req.requestId || crypto.randomUUID(),
+                });
+                return;
+            }
+            // Validate URL
+            try {
+                new URL(url);
+            }
+            catch {
+                res.status(400).json({
+                    success: false,
+                    error: {
+                        type: 'invalid_url',
+                        message: 'Invalid URL format',
+                        hint: 'Ensure the URL includes a protocol: https://example.com',
+                        docs: 'https://webpeel.dev/docs/errors#invalid-url',
+                    },
+                    requestId: req.requestId || crypto.randomUUID(),
+                });
+                return;
+            }
+            const ownerId = req.auth?.keyInfo?.accountId;
+            // Normalize webhook (accept both string URL and WebhookConfig object)
+            const normalizedWebhook = webhook ? normalizeWebhook(webhook) : undefined;
+            // ── SSE streaming path ────────────────────────────────────────────────
+            if (wantsSSE(req)) {
+                const job = await jobQueue.createJob('crawl', normalizedWebhook, ownerId);
+                // Set SSE headers (X-Request-Id is already set by global middleware)
+                initSSE(res);
+                // Send started event
+                sendSSE(res, 'started', {
+                    jobId: job.id,
+                    url,
+                    depth: maxDepth || 3,
+                });
+                // Heartbeat every 15 seconds to keep connection alive
+                let closed = false;
+                const heartbeat = setInterval(() => {
+                    if (!closed) {
+                        res.write('event: ping\ndata: {}\n\n');
+                    }
+                }, 15_000);
+                req.on('close', () => {
+                    closed = true;
+                    clearInterval(heartbeat);
+                });
+                let completedCount = 0;
+                let failedCount = 0;
+                const startTime = Date.now();
+                try {
+                    jobQueue.updateJob(job.id, { status: 'processing' });
+                    const resolvedLocation = location || languages ? {
+                        country: location,
+                        languages: Array.isArray(languages) ? languages : (languages ? [languages] : undefined),
+                    } : undefined;
+                    const crawlOptions = {
+                        maxPages: limit || 100,
+                        maxDepth: maxDepth || 3,
+                        onProgress: (progress) => {
+                            const total = progress.crawled + progress.queued;
+                            jobQueue.updateJob(job.id, {
+                                total,
+                                completed: progress.crawled,
+                                creditsUsed: progress.crawled,
+                            });
+                        },
+                        onPage: (pageResult) => {
+                            if (closed)
+                                return;
+                            const total = completedCount + failedCount + 1;
+                            if (pageResult.error) {
+                                failedCount++;
+                                sendSSE(res, 'error', {
+                                    url: pageResult.url,
+                                    error: 'FETCH_ERROR',
+                                    message: pageResult.error,
+                                });
+                            }
+                            else {
+                                completedCount++;
+                                sendSSE(res, 'page', {
+                                    url: pageResult.url,
+                                    content: pageResult.markdown,
+                                    metadata: {
+                                        title: pageResult.title,
+                                        depth: pageResult.depth,
+                                        parent: pageResult.parent,
+                                        elapsed: pageResult.elapsed,
+                                    },
+                                    progress: {
+                                        completed: completedCount,
+                                        total,
+                                    },
+                                });
+                            }
+                        },
+                        ...scrapeOptions,
+                        location: resolvedLocation,
+                    };
+                    const results = await crawl(url, crawlOptions);
+                    jobQueue.updateJob(job.id, {
+                        status: 'completed',
+                        data: results,
+                        total: results.length,
+                        completed: results.length,
+                        creditsUsed: results.length,
+                    });
+                    if (!closed) {
+                        sendSSE(res, 'done', {
+                            jobId: job.id,
+                            completed: completedCount,
+                            failed: failedCount,
+                            duration: Date.now() - startTime,
+                        });
+                    }
+                }
+                catch (error) {
+                    jobQueue.updateJob(job.id, {
+                        status: 'failed',
+                        error: error.message || 'Unknown error',
+                    });
+                    if (!closed) {
+                        sendSSE(res, 'error', {
+                            error: 'CRAWL_FAILED',
+                            message: error.message || 'Unknown error',
+                        });
+                    }
+                }
+                finally {
+                    clearInterval(heartbeat);
+                    if (!closed) {
+                        endSSE(res);
+                    }
+                }
+                return;
+            }
+            // ── Regular async job path (backward compat) ─────────────────────────
+            const job = await jobQueue.createJob('crawl', normalizedWebhook, ownerId);
+            // Start crawl in background
+            setImmediate(async () => {
+                try {
+                    // Update job to processing
+                    jobQueue.updateJob(job.id, { status: 'processing' });
+                    // Send started webhook
+                    if (normalizedWebhook) {
+                        await sendWebhook(normalizedWebhook, 'started', {
+                            jobId: job.id,
+                            url,
+                        });
+                    }
+                    // Build crawl options
+                    const crawlOptions = {
+                        maxPages: limit || 100,
+                        maxDepth: maxDepth || 3,
+                        onProgress: (progress) => {
+                            // Update job progress
+                            const total = progress.crawled + progress.queued;
+                            jobQueue.updateJob(job.id, {
+                                total,
+                                completed: progress.crawled,
+                                creditsUsed: progress.crawled,
+                            });
+                            // Send page webhook
+                            if (normalizedWebhook && progress.currentUrl) {
+                                sendWebhook(normalizedWebhook, 'page', {
+                                    jobId: job.id,
+                                    url: progress.currentUrl,
+                                    completed: progress.crawled,
+                                    total,
+                                }).catch(() => { }); // Fire and forget
+                            }
+                        },
+                        // Spread existing scrapeOptions
+                        ...scrapeOptions,
+                        // Add location support if provided (CrawlOptions extends PeelOptions)
+                        location: location || languages ? {
+                            country: location,
+                            languages: Array.isArray(languages) ? languages : (languages ? [languages] : undefined),
+                        } : undefined,
+                    };
+                    // Run crawl
+                    const results = await crawl(url, crawlOptions);
+                    // Update job with results
+                    jobQueue.updateJob(job.id, {
+                        status: 'completed',
+                        data: results,
+                        total: results.length,
+                        completed: results.length,
+                        creditsUsed: results.length,
+                    });
+                    // Send completed webhook and store delivery result
+                    if (normalizedWebhook) {
+                        const delivery = await sendWebhook(normalizedWebhook, 'completed', {
+                            jobId: job.id,
+                            total: results.length,
+                        });
+                        if (delivery) {
+                            jobQueue.updateJob(job.id, { webhookDelivery: delivery });
+                        }
+                    }
+                }
+                catch (error) {
+                    // Update job with error
+                    jobQueue.updateJob(job.id, {
+                        status: 'failed',
+                        error: error.message || 'Unknown error',
+                    });
+                    // Send failed webhook
+                    if (normalizedWebhook) {
+                        await sendWebhook(normalizedWebhook, 'failed', {
+                            jobId: job.id,
+                            error: error.message || 'Unknown error',
+                        });
+                    }
+                }
+            });
+            // Return job ID immediately
+            res.status(202).json({
+                success: true,
+                id: job.id,
+                url: `/v1/crawl/${job.id}`,
+            });
+        }
+        catch (error) {
+            console.error('Crawl job creation error:', error);
+            res.status(500).json({
+                success: false,
+                error: {
+                    type: 'internal_error',
+                    message: 'Failed to create crawl job',
+                    docs: 'https://webpeel.dev/docs/errors#internal-error',
+                },
+                requestId: req.requestId || crypto.randomUUID(),
+            });
+        }
+    });
+    /**
+     * GET /v1/crawl/:id - Get crawl job status + results (with SSE support)
+     */
+    router.get('/v1/crawl/:id', async (req, res) => {
+        try {
+            const id = req.params.id;
+            const job = await jobQueue.getJob(id);
+            if (!job) {
+                res.status(404).json({
+                    success: false,
+                    error: {
+                        type: 'not_found',
+                        message: 'Job not found',
+                        hint: 'Check the job ID and ensure it has not expired.',
+                        docs: 'https://webpeel.dev/docs/errors#not-found',
+                    },
+                    requestId: req.requestId || crypto.randomUUID(),
+                });
+                return;
+            }
+            // SECURITY: Verify the requester owns this job
+            const requestOwnerId = req.auth?.keyInfo?.accountId;
+            if (job.ownerId && requestOwnerId && job.ownerId !== requestOwnerId) {
+                res.status(404).json({
+                    success: false,
+                    error: {
+                        type: 'not_found',
+                        message: 'Job not found',
+                        hint: 'Check the job ID and ensure it has not expired.',
+                        docs: 'https://webpeel.dev/docs/errors#not-found',
+                    },
+                    requestId: req.requestId || crypto.randomUUID(),
+                });
+                return;
+            }
+            // Check for SSE request
+            const acceptHeader = req.get('Accept');
+            const isSSE = acceptHeader?.includes('text/event-stream');
+            if (isSSE) {
+                // Set SSE headers
+                res.setHeader('Content-Type', 'text/event-stream');
+                res.setHeader('Cache-Control', 'no-cache');
+                res.setHeader('Connection', 'keep-alive');
+                // Send initial event
+                const sendEvent = (data) => {
+                    res.write(`data: ${JSON.stringify(data)}\n\n`);
+                };
+                sendEvent({
+                    event: 'status',
+                    ...job,
+                });
+                // Poll for updates every second
+                const interval = setInterval(async () => {
+                    const updatedJob = await jobQueue.getJob(id);
+                    if (!updatedJob) {
+                        clearInterval(interval);
+                        res.end();
+                        return;
+                    }
+                    sendEvent({
+                        event: 'status',
+                        ...updatedJob,
+                    });
+                    // End stream if job is complete
+                    if (updatedJob.status === 'completed' || updatedJob.status === 'failed' || updatedJob.status === 'cancelled') {
+                        clearInterval(interval);
+                        res.end();
+                    }
+                }, 1000);
+                // Clean up on client disconnect
+                req.on('close', () => {
+                    clearInterval(interval);
+                });
+            }
+            else {
+                // Return JSON response
+                res.json({
+                    success: true,
+                    status: job.status,
+                    progress: job.progress,
+                    total: job.total,
+                    completed: job.completed,
+                    creditsUsed: job.creditsUsed,
+                    data: job.data,
+                    error: job.error,
+                    expiresAt: job.expiresAt,
+                    ...(job.webhookDelivery ? { webhook: job.webhookDelivery } : {}),
+                });
+            }
+        }
+        catch (error) {
+            console.error('Get crawl job error:', error);
+            res.status(500).json({
+                success: false,
+                error: {
+                    type: 'internal_error',
+                    message: 'Failed to retrieve job',
+                    docs: 'https://webpeel.dev/docs/errors#internal-error',
+                },
+                requestId: req.requestId || crypto.randomUUID(),
+            });
+        }
+    });
+    /**
+     * DELETE /v1/crawl/:id - Cancel crawl job
+     */
+    router.delete('/v1/crawl/:id', async (req, res) => {
+        try {
+            const id = req.params.id;
+            // SECURITY: Verify the requester owns this job before cancelling
+            const job = await jobQueue.getJob(id);
+            const requestOwnerId = req.auth?.keyInfo?.accountId;
+            if (job?.ownerId && requestOwnerId && job.ownerId !== requestOwnerId) {
+                res.status(404).json({
+                    success: false,
+                    error: {
+                        type: 'not_found',
+                        message: 'Job not found or cannot be cancelled',
+                        hint: 'Check the job ID and ensure you own this job.',
+                        docs: 'https://webpeel.dev/docs/errors#not-found',
+                    },
+                    requestId: req.requestId || crypto.randomUUID(),
+                });
+                return;
+            }
+            const cancelled = await jobQueue.cancelJob(id);
+            if (!cancelled) {
+                res.status(404).json({
+                    success: false,
+                    error: {
+                        type: 'not_found',
+                        message: 'Job not found or cannot be cancelled',
+                        hint: 'The job may have already completed or expired.',
+                        docs: 'https://webpeel.dev/docs/errors#not-found',
+                    },
+                    requestId: req.requestId || crypto.randomUUID(),
+                });
+                return;
+            }
+            res.json({
+                success: true,
+                message: 'Job cancelled',
+            });
+        }
+        catch (error) {
+            console.error('Cancel crawl job error:', error);
+            res.status(500).json({
+                success: false,
+                error: {
+                    type: 'internal_error',
+                    message: 'Failed to cancel job',
+                    docs: 'https://webpeel.dev/docs/errors#internal-error',
+                },
+                requestId: req.requestId || crypto.randomUUID(),
+            });
+        }
+    });
+    /**
+     * GET /v1/jobs - List all jobs
+     */
+    router.get('/v1/jobs', async (req, res) => {
+        try {
+            const { type, status, limit } = req.query;
+            // SECURITY: Filter jobs by the authenticated user's ownership
+            const ownerId = req.auth?.keyInfo?.accountId;
+            const jobs = await jobQueue.listJobs({
+                type: type,
+                status: status,
+                limit: limit ? parseInt(limit, 10) : 50,
+                ownerId,
+            });
+            res.json({
+                success: true,
+                count: jobs.length,
+                jobs,
+            });
+        }
+        catch (error) {
+            console.error('List jobs error:', error);
+            res.status(500).json({
+                success: false,
+                error: {
+                    type: 'internal_error',
+                    message: 'Failed to list jobs',
+                    docs: 'https://webpeel.dev/docs/errors#internal-error',
+                },
+                requestId: req.requestId || crypto.randomUUID(),
+            });
+        }
+    });
+    /**
+     * POST /v1/jobs — Search job boards (LinkedIn, Indeed, Glassdoor)
+     *
+     * Credits: 1 for the search + 1 per detail page fetched.
+     */
+    router.post('/v1/jobs', async (req, res) => {
+        try {
+            const { url, keywords, location, source, limit, fetchDetails, timeout, webhook: jobWebhook, } = req.body;
+            // Must provide either url or keywords
+            if (!url && !keywords) {
+                res.status(400).json({
+                    success: false,
+                    error: {
+                        type: 'invalid_request',
+                        message: 'Provide either "url" or "keywords" in the request body.',
+                        hint: 'Example: { "keywords": "software engineer", "location": "New York" }',
+                        docs: 'https://webpeel.dev/docs/errors#invalid-request',
+                    },
+                    requestId: req.requestId || crypto.randomUUID(),
+                });
+                return;
+            }
+            // Validate source
+            const validSources = ['glassdoor', 'indeed', 'linkedin'];
+            if (source && !validSources.includes(source)) {
+                res.status(400).json({
+                    success: false,
+                    error: {
+                        type: 'invalid_request',
+                        message: `Invalid "source": must be one of ${validSources.join(', ')}`,
+                        hint: `Use one of: ${validSources.join(', ')}`,
+                        docs: 'https://webpeel.dev/docs/errors#invalid-request',
+                    },
+                    requestId: req.requestId || crypto.randomUUID(),
+                });
+                return;
+            }
+            // Validate numeric params
+            const resolvedLimit = typeof limit === 'number' ? Math.min(Math.max(limit, 1), 100) : 25;
+            const resolvedDetails = typeof fetchDetails === 'number' ? Math.min(Math.max(fetchDetails, 0), resolvedLimit) : 0;
+            const resolvedTimeout = typeof timeout === 'number' ? Math.min(Math.max(timeout, 5000), 120000) : 30000;
+            const searchOpts = {
+                url: url || undefined,
+                keywords: keywords || undefined,
+                location: location || undefined,
+                source: source || undefined,
+                limit: resolvedLimit,
+                fetchDetails: resolvedDetails,
+                timeout: resolvedTimeout,
+            };
+            const startTime = Date.now();
+            const result = await searchJobs(searchOpts);
+            const elapsed = Date.now() - startTime;
+            // Credits: 1 for the search + 1 per detail page fetched
+            const creditsUsed = 1 + result.detailsFetched;
+            // Track usage
+            const isSoftLimited = req.auth?.softLimited === true;
+            const hasExtraUsage = req.auth?.extraUsageAvailable === true;
+            const pgStore = authStore;
+            if (req.auth?.keyInfo?.accountId && typeof pgStore.pool !== 'undefined') {
+                pgStore.pool.query(`INSERT INTO usage_logs
+            (user_id, endpoint, url, method, processing_time_ms, status_code, ip_address, user_agent)
+          VALUES ($1, $2, $3, $4, $5, $6, $7, $8)`, [
+                    req.auth.keyInfo.accountId,
+                    'jobs',
+                    result.searchUrl || keywords || url || '',
+                    'basic',
+                    elapsed,
+                    200,
+                    req.ip || req.socket.remoteAddress,
+                    req.get('user-agent'),
+                ]).catch((err) => {
+                    console.error('Failed to log jobs request to usage_logs:', err);
+                });
+            }
+            if (req.auth?.keyInfo?.key && typeof pgStore.trackBurstUsage === 'function') {
+                await pgStore.trackBurstUsage(req.auth.keyInfo.key);
+                if (isSoftLimited && hasExtraUsage) {
+                    const extraResult = await pgStore.trackExtraUsage(req.auth.keyInfo.key, 'search', result.searchUrl || keywords || url || '', elapsed, 200);
+                    if (extraResult.success) {
+                        res.setHeader('X-Extra-Usage-Charged', `$${extraResult.cost.toFixed(4)}`);
+                        res.setHeader('X-Extra-Usage-New-Balance', extraResult.newBalance.toFixed(2));
+                    }
+                }
+                else if (!isSoftLimited) {
+                    await pgStore.trackUsage(req.auth.keyInfo.key, 'search');
+                }
+            }
+            res.setHeader('X-Credits-Used', creditsUsed.toString());
+            res.setHeader('X-Processing-Time', elapsed.toString());
+            res.json({
+                success: true,
+                data: result,
+                creditsUsed,
+            });
+            // Fire webhook after response (non-blocking, fire-and-forget)
+            if (jobWebhook) {
+                const webhookConfig = normalizeWebhook(jobWebhook, ['completed']);
+                sendWebhook(webhookConfig, 'completed', {
+                    keywords: keywords || url,
+                    total: Array.isArray(result.jobs) ? result.jobs.length : 0,
+                    data: result,
+                }).catch(() => { });
+            }
+        }
+        catch (error) {
+            console.error('POST /v1/jobs error:', error);
+            res.status(500).json({
+                success: false,
+                error: {
+                    type: 'internal_error',
+                    message: 'Job search failed. Please try again.',
+                    docs: 'https://webpeel.dev/docs/errors#internal-error',
+                },
+                requestId: req.requestId || crypto.randomUUID(),
+            });
+        }
+    });
+    return router;
+}

package/dist/server/routes/mcp.d.ts ADDED Viewed

@@ -0,0 +1,14 @@
+/**
+ * Hosted MCP endpoint — POST /mcp, POST /v2/mcp, POST /:apiKey/v2/mcp
+ *
+ * Thin HTTP/SSE transport wrapper. All tool logic lives in the shared handler
+ * registry at src/mcp/handlers/. This file handles:
+ *   - Express routing and auth
+ *   - MCP Streamable HTTP transport setup
+ *   - Passing McpContext (accountId, pool) to handlers
+ */
+import { Router } from 'express';
+import type { AuthStore } from '../auth-store.js';
+import '../types.js';
+import type { Pool } from 'pg';
+export declare function createMcpRouter(_authStore?: AuthStore, pool?: Pool | null): Router;