PyPI - cite-agent - Versions diffs - 1.0.0__py3-none-any.whl - Mend

cite-agent 1.0.0__py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Potentially problematic release.

This version of cite-agent might be problematic. Click here for more details.

Files changed (23) hide show

cite_agent/__distribution__.py +7 -0
cite_agent/__init__.py +66 -0
cite_agent/account_client.py +130 -0
cite_agent/agent_backend_only.py +172 -0
cite_agent/ascii_plotting.py +296 -0
cite_agent/auth.py +281 -0
cite_agent/backend_only_client.py +83 -0
cite_agent/cli.py +512 -0
cite_agent/cli_enhanced.py +207 -0
cite_agent/dashboard.py +339 -0
cite_agent/enhanced_ai_agent.py +172 -0
cite_agent/rate_limiter.py +298 -0
cite_agent/setup_config.py +417 -0
cite_agent/telemetry.py +85 -0
cite_agent/ui.py +175 -0
cite_agent/updater.py +187 -0
cite_agent/web_search.py +203 -0
cite_agent-1.0.0.dist-info/METADATA +234 -0
cite_agent-1.0.0.dist-info/RECORD +23 -0
cite_agent-1.0.0.dist-info/WHEEL +5 -0
cite_agent-1.0.0.dist-info/entry_points.txt +3 -0
cite_agent-1.0.0.dist-info/licenses/LICENSE +21 -0
cite_agent-1.0.0.dist-info/top_level.txt +1 -0

cite_agent/auth.py ADDED Viewed

@@ -0,0 +1,281 @@
+"""
+Authentication System for Nocturnal Archive
+Handles user login, registration, and session management
+"""
+import hashlib
+import hmac
+import json
+import os
+import time
+from pathlib import Path
+from typing import Optional, Dict
+import requests
+from datetime import datetime, timedelta
+class AuthenticationError(Exception):
+    """Authentication failed"""
+    pass
+class AuthManager:
+    """Manages user authentication and sessions"""
+    def __init__(self, config_dir: Optional[Path] = None):
+        self.config_dir = config_dir or Path.home() / ".nocturnal_archive"
+        self.config_dir.mkdir(exist_ok=True)
+        self.session_file = self.config_dir / "session.json"
+        self.api_base = os.getenv("NOCTURNAL_AUTH_API", "https://api.nocturnal.dev")
+    def login(self, email: str, password: str) -> Dict:
+        """
+        Authenticate user with email and password
+        Returns user session data
+        """
+        # Hash password
+        password_hash = hashlib.sha256(password.encode()).hexdigest()
+        try:
+            # Call auth API
+            response = requests.post(
+                f"{self.api_base}/auth/login",
+                json={
+                    "email": email,
+                    "password_hash": password_hash
+                },
+                timeout=10
+            )
+            if response.status_code == 200:
+                session_data = response.json()
+                self._save_session(session_data)
+                return session_data
+            elif response.status_code == 401:
+                raise AuthenticationError("Invalid email or password")
+            else:
+                raise AuthenticationError(f"Login failed: {response.status_code}")
+        except requests.RequestException as e:
+            # Fallback: offline mode with local validation
+            return self._offline_login(email, password_hash)
+    def register(self, email: str, password: str) -> Dict:
+        """
+        Register new user with email and password only (no license key for beta)
+        Returns user session data
+        """
+        try:
+            response = requests.post(
+                f"{self.api_base}/auth/register",
+                json={
+                    "email": email,
+                    "password": password  # Send plain password over HTTPS (backend will hash)
+                },
+                timeout=10
+            )
+            if response.status_code == 201:
+                session_data = response.json()
+                self._save_session(session_data)
+                return session_data
+            elif response.status_code == 409:
+                raise AuthenticationError("Email already registered")
+            else:
+                raise AuthenticationError(f"Registration failed: {response.status_code}")
+        except requests.RequestException as e:
+            # Fallback: create local session (beta mode)
+            return self._offline_register(email, password)
+    def get_session(self) -> Optional[Dict]:
+        """Get current session if valid"""
+        if not self.session_file.exists():
+            return None
+        try:
+            with open(self.session_file, 'r') as f:
+                session = json.load(f)
+            # Check if session expired
+            expires_at = datetime.fromisoformat(session.get('expires_at', '2000-01-01'))
+            if datetime.now() > expires_at:
+                self.logout()
+                return None
+            return session
+        except (json.JSONDecodeError, KeyError):
+            return None
+    def logout(self):
+        """Clear current session"""
+        if self.session_file.exists():
+            self.session_file.unlink()
+    def refresh_session(self) -> bool:
+        """Refresh session token"""
+        session = self.get_session()
+        if not session:
+            return False
+        try:
+            response = requests.post(
+                f"{self.api_base}/auth/refresh",
+                headers={"Authorization": f"Bearer {session['token']}"},
+                timeout=10
+            )
+            if response.status_code == 200:
+                new_session = response.json()
+                self._save_session(new_session)
+                return True
+        except requests.RequestException:
+            pass
+        return False
+    def _save_session(self, session_data: Dict):
+        """Save session to file"""
+        # Add expiration (30 days from now)
+        if 'expires_at' not in session_data:
+            expires_at = datetime.now() + timedelta(days=30)
+            session_data['expires_at'] = expires_at.isoformat()
+        with open(self.session_file, 'w') as f:
+            json.dump(session_data, f, indent=2)
+        # Secure permissions (owner only)
+        os.chmod(self.session_file, 0o600)
+    def _offline_login(self, email: str, password_hash: str) -> Dict:
+        """Offline login fallback (beta mode)"""
+        # Check if user exists in local cache
+        users_file = self.config_dir / "users.json"
+        if not users_file.exists():
+            raise AuthenticationError("No internet connection and no local user found")
+        with open(users_file, 'r') as f:
+            users = json.load(f)
+        user = users.get(email)
+        if not user or user['password_hash'] != password_hash:
+            raise AuthenticationError("Invalid credentials")
+        # Create offline session
+        session = {
+            "email": email,
+            "user_id": user['user_id'],
+            "access_token": "offline-" + hashlib.sha256(email.encode()).hexdigest()[:16],
+            "daily_token_limit": user.get('daily_token_limit', 25000),
+            "expires_at": (datetime.now() + timedelta(days=30)).isoformat(),
+            "offline_mode": True
+        }
+        self._save_session(session)
+        return session
+    def _offline_register(self, email: str, password: str) -> Dict:
+        """Offline registration fallback (beta mode) - no license key needed"""
+        # Hash password
+        password_hash = hashlib.sha256(password.encode()).hexdigest()
+        # Save user locally
+        users_file = self.config_dir / "users.json"
+        users = {}
+        if users_file.exists():
+            with open(users_file, 'r') as f:
+                users = json.load(f)
+        if email in users:
+            raise AuthenticationError("Email already registered")
+        user_id = hashlib.sha256(email.encode()).hexdigest()[:12]
+        users[email] = {
+            "user_id": user_id,
+            "password_hash": password_hash,
+            "license_key": license_key,
+            "daily_limit": 25,
+            "created_at": datetime.now().isoformat()
+        }
+        with open(users_file, 'w') as f:
+            json.dump(users, f, indent=2)
+        os.chmod(users_file, 0o600)
+        # Create session
+        session = {
+            "email": email,
+            "user_id": user_id,
+            "access_token": "offline-" + hashlib.sha256(email.encode()).hexdigest()[:16],
+            "daily_token_limit": 25000,
+            "expires_at": (datetime.now() + timedelta(days=30)).isoformat(),
+            "offline_mode": True
+        }
+        self._save_session(session)
+        return session
+    def _validate_license_format(self, license_key: str) -> bool:
+        """Validate license key format: NA-BETA-{uid}-{expiry}-{checksum}"""
+        parts = license_key.split("-")
+        return (
+            len(parts) == 5 and
+            parts[0] == "NA" and
+            parts[1] == "BETA" and
+            len(parts[2]) == 8 and  # user_id
+            len(parts[3]) == 8 and  # expiry date
+            len(parts[4]) == 8      # checksum
+        )
+    def generate_license_key(self, email: str, days: int = 30) -> str:
+        """
+        Generate a license key for a user
+        Format: NA-BETA-{user_id}-{expiry}-{checksum}
+        """
+        # Generate user ID from email
+        user_id = hashlib.sha256(email.encode()).hexdigest()[:8]
+        # Generate expiry date
+        expiry_date = datetime.now() + timedelta(days=days)
+        expiry_str = expiry_date.strftime("%Y%m%d")
+        # Generate checksum
+        data = f"{email}{user_id}{expiry_str}"
+        checksum = hashlib.sha256(data.encode()).hexdigest()[:8]
+        # Construct license key
+        license_key = f"NA-BETA-{user_id}-{expiry_str}-{checksum}"
+        return license_key
+    def _verify_license_offline(self, license_key: str, email: str) -> bool:
+        """Verify license key offline"""
+        try:
+            parts = license_key.split("-")
+            if len(parts) != 5:
+                return False
+            user_id_provided, expiry_str, checksum_provided = parts[2], parts[3], parts[4]
+            # Verify user ID matches email
+            user_id_expected = hashlib.sha256(email.encode()).hexdigest()[:8]
+            if user_id_provided != user_id_expected:
+                return False
+            # Check expiry
+            expiry_date = datetime.strptime(expiry_str, "%Y%m%d")
+            if datetime.now() > expiry_date:
+                return False
+            # Verify checksum
+            data = f"{email}{user_id_provided}{expiry_str}"
+            checksum_expected = hashlib.sha256(data.encode()).hexdigest()[:8]
+            return checksum_provided == checksum_expected
+        except Exception:
+            return False

cite_agent/backend_only_client.py ADDED Viewed

@@ -0,0 +1,83 @@
+"""
+Backend-only client for distribution.
+All queries are proxied through the centralized backend.
+Local LLM calls are not supported.
+"""
+import os
+import requests
+from typing import Dict, Any, Optional
+class BackendOnlyClient:
+    """
+    Minimal client that only talks to backend API.
+    Used in distribution to prevent local API key usage.
+    """
+    def __init__(self):
+        self.backend_url = (
+            os.getenv("NOCTURNAL_CONTROL_PLANE_URL")
+            or "https://cite-agent-api-720dfadd602c.herokuapp.com"
+        )
+        self.auth_token = os.getenv("NOCTURNAL_AUTH_TOKEN")
+    def query(self, message: str, style: str = "academic") -> Dict[str, Any]:
+        """
+        Send query to backend API.
+        Args:
+            message: User query
+            style: Response style
+        Returns:
+            Backend response with citations
+        Raises:
+            RuntimeError: If not authenticated or backend unavailable
+        """
+        if not self.auth_token:
+            raise RuntimeError(
+                "Not authenticated. Run 'cite-agent --setup' first."
+            )
+        try:
+            response = requests.post(
+                f"{self.backend_url}/api/query",
+                headers={"Authorization": f"Bearer {self.auth_token}"},
+                json={"query": message, "style": style},
+                timeout=30
+            )
+            if response.status_code == 401:
+                raise RuntimeError(
+                    "Authentication failed. Your token may have expired. "
+                    "Run 'cite-agent --setup' to log in again."
+                )
+            if response.status_code == 429:
+                raise RuntimeError(
+                    "Daily quota exceeded (25,000 tokens/day). "
+                    "Your quota will reset tomorrow."
+                )
+            response.raise_for_status()
+            return response.json()
+        except requests.RequestException as e:
+            raise RuntimeError(
+                f"Backend unavailable: {e}. "
+                f"Please check your internet connection or try again later."
+            ) from e
+    def check_quota(self) -> Dict[str, Any]:
+        """Check remaining daily quota"""
+        if not self.auth_token:
+            raise RuntimeError("Not authenticated")
+        response = requests.get(
+            f"{self.backend_url}/api/auth/me",
+            headers={"Authorization": f"Bearer {self.auth_token}"},
+            timeout=10
+        )
+        response.raise_for_status()
+        return response.json()