iatoolkit 0.22.0__py3-none-any.whl → 0.50.0__py3-none-any.whl

iatoolkit/templates/{home.html → login_test.html}

@@ -7,60 +7,20 @@
   <!-- Contenido principal con espaciado adicional respecto al header -->
   <div class="row flex-fill mt-5 flex-wrap">
 
-    {% if not user or user_company != company_short_name %}
-    <!-- Sección de login (se coloca primero en el HTML para mobile) -->
-    <div class="col-12 col-lg-5 offset-lg-1">
-      <div class="border rounded p-4 shadow-sm bg-light">
-        <h4 class="text-muted fw-semibold text-start mb-3">login integrado (IAToolkit)</h4>
-        <form id="login-form"
-              action="{{ url_for('initiate_login', company_short_name=company_short_name, external_login=True) }}"
-              method="post">
-          <div class="mb-3">
-            <label for="company_short_name" class="form-label d-block text-muted">Empresa</label>
-            <select id="company_short_name" name="company_short_name" class="form-select" required>
-              <option value="" disabled selected>Selecciona una empresa</option>
-                {% for company in companies %}
-                    <option value="{{ company.short_name }}"
-                            {% if company.short_name == company_short_name %}selected{% endif %}>
-                        {{ company.short_name }}
-                    </option>
-                {% endfor %}
-            </select>
-        </div>
 
-          <div class="mb-3">
-            <label for="email" class="form-label d-block text-muted">Correo Electrónico</label>
-            <input type="email" id="email" name="email" class="form-control" required>
-          </div>
-          <div class="mb-3">
-            <label for="password" class="form-label d-block text-muted">Contraseña</label>
-            <input type="password" id="password" name="password" class="form-control" required>
-          </div>
-          <button type="submit" class="btn btn-primary w-100">
-              Iniciar Sesión</button>
-        </form>
-
-        <div class="text-center mt-3">
-    <a href="{% if company_short_name %}{{ url_for('signup', company_short_name=company_short_name) }}{% else %}#{% endif %}"
-       id="signup-link"
-       class="btn btn-outline-primary w-100">Registrarse</a>
-</div>
-        <div class="text-center mt-3">
-          <a href="{{ url_for('forgot_password', company_short_name=company_short_name) }}" class="text-decoration-none text-muted fw-semibold">
-            ¿Olvidaste tu contraseña?
-          </a>
-        </div>
-      </div>
-    </div>
-    {% endif %}
-
-    <!-- Sección de JWT -->
+    <!-- login desde sistema  externo -->
     <div class="col-12 col-lg-5 offset-lg-1">
       <div class="border rounded p-4 shadow-sm bg-light">
-        <h4 class="text-muted fw-semibold text-start mb-3">login externo (api-key)</h4>
+        <h3 class="text-muted fw-semibold text-start mb-3">login externo (api-key)</h3>
+          <div class="text-center mb-4">
+            <p class="text-muted widget-intro-text">
+            Este formulario permite testear el acceso a IAToolkit desde un portal externo utilizando una api-key.
+                El external user ID es el nombre del usuario ya autentificado en algún portal interno de la empresa.
+            </p>
+        </div>
         <form id="jwt-form"  method="post">
           <div class="mb-3">
-            <label for="company_name" class="form-label d-block text-muted">Empresa</label>
+            <label for="company_name" class="form-label d-block">Empresa</label>
             <select id="company_name" name="company_short_name" class="form-select" required>
               <option value="" disabled selected>Selecciona una empresa</option>
                 {% for company in companies %}
@@ -73,7 +33,7 @@
         </div>
 
           <div class="mb-3">
-            <label for="external_user_id" class="form-label d-block text-muted">External user ID</label>
+            <label for="external_user_id" class="form-label d-block">External user ID</label>
             <input type="text" id="external_user_id" name="external_user_id" class="form-control" required>
           </div>
 
@@ -81,7 +41,7 @@
                   id="initiateJwtChatButton"
                   class="ml-5 btn btn-primary">
               <span class="spinner-border spinner-border-sm d-none" role="status" aria-hidden="true"></span>
-              Iniciar Sesión JWT
+              Iniciar Sesión
           </button>
         </form>
       </div>
@@ -112,7 +72,7 @@
 
           // Actualizar action del formulario "Iniciar Sesión"
           if (selectedCompany && selectedCompany.trim() !== '') {
-              const loginAction = '/' + selectedCompany + '/initiate_login';
+              const loginAction = '/' + selectedCompany + '/chat';
               $('#login-form').attr('action', loginAction); // Actualizamos la URL del form
           } else {
               $('#login-form').attr('action', '#'); // URL genérica si no hay selección

iatoolkit/views/external_login_view.py

@@ -5,150 +5,89 @@
 
 import os
 import logging
-from flask import request, jsonify, render_template, url_for, session
+from flask import request, jsonify, render_template, url_for
 from flask.views import MethodView
 from injector import inject
-from iatoolkit.common.auth import IAuthentication
+from iatoolkit.services.auth_service import AuthService
 from iatoolkit.services.profile_service import ProfileService
 from iatoolkit.services.query_service import QueryService
 from iatoolkit.services.prompt_manager_service import PromptService
-from iatoolkit.services.jwt_service import JWTService
 from iatoolkit.services.branding_service import BrandingService
 from iatoolkit.services.onboarding_service import OnboardingService
-from iatoolkit.services.jwt_service import JWTService
 
 
 class InitiateExternalChatView(MethodView):
     @inject
     def __init__(self,
-                 iauthentication: IAuthentication,
+                 iauthentication: AuthService,
                  branding_service: BrandingService,
                  profile_service: ProfileService,
                  onboarding_service: OnboardingService,
-                 jwt_service: JWTService
+                 query_service: QueryService,
+                 prompt_service: PromptService
                  ):
         self.iauthentication = iauthentication
         self.branding_service = branding_service
         self.profile_service = profile_service
         self.onboarding_service = onboarding_service
-        self.jwt_service = jwt_service
+        self.query_service = query_service
+        self.prompt_service = prompt_service
 
     def post(self, company_short_name: str):
         data = request.get_json()
         if not data or 'external_user_id' not in data:
             return jsonify({"error": "Falta external_user_id"}), 400
 
-        external_user_id = data['external_user_id']
-
         company = self.profile_service.get_company_by_short_name(company_short_name)
         if not company:
             return jsonify({"error": "Empresa no encontrada"}), 404
 
-        # 1. verify access credentials quickly
-        iaut = self.iauthentication.verify(
-            company_short_name,
-            body_external_user_id=external_user_id
-        )
-        if not iaut.get("success"):
-            return jsonify(iaut), 401
-
-        # 2. Generate a short-lived initiation token.
-        initiation_token = self.jwt_service.generate_chat_jwt(
-            company_id=company.id,
-            company_short_name=company.short_name,
-            external_user_id=external_user_id,
-            expires_delta_seconds=180
-        )
-
-        # 2. Get branding and onboarding data for the shell page
-        branding_data = self.branding_service.get_company_branding(company)
-        onboarding_cards = self.onboarding_service.get_onboarding_cards(company)
-
-        # 4. Generate the URL for the iframe's SRC, now with the secure token.
-        target_url = url_for('external_login',
-                             company_short_name=company_short_name,
-                             init_token=initiation_token,
-                             _external=True)
-
-        # 5. Render the shell.
-        return render_template("onboarding_shell.html",
-                               iframe_src_url=target_url,
-                               branding=branding_data,
-                               onboarding_cards=onboarding_cards
-                               )
-
-class ExternalChatLoginView(MethodView):
-    @inject
-    def __init__(self,
-                 profile_service: ProfileService,
-                 query_service: QueryService,
-                 prompt_service: PromptService,
-                 iauthentication: IAuthentication,
-                 jwt_service: JWTService,
-                 branding_service: BrandingService
-                 ):
-        self.profile_service = profile_service
-        self.query_service = query_service
-        self.prompt_service = prompt_service
-        self.iauthentication = iauthentication
-        self.jwt_service = jwt_service
-        self.branding_service = branding_service
-
-    def get(self, company_short_name: str):
-        # 1. Validate the initiation token from the URL
-        init_token = request.args.get('init_token')
-        if not init_token:
-            return "Falta el token de iniciación.", 401
-
-        # Reutilizamos el validador de JWT, ya que el token tiene la misma estructura
-        payload = self.jwt_service.validate_chat_jwt(init_token, company_short_name)
-        if not payload:
-            return "Token de iniciación inválido o expirado.", 401
-
-        # 2. Extract user ID securely from the validated token
-        external_user_id = payload.get('external_user_id')
+        external_user_id = data['external_user_id']
         if not external_user_id:
-            return "Token con formato incorrecto.", 400
-
-        company = self.profile_service.get_company_by_short_name(company_short_name)
-        if not company:
-            logging.error(f'Company {company_short_name} not found')
-            return jsonify({"error": "Empresa no encontrada"}), 404
+            return jsonify({"error": "missing external_user_id"}), 404
 
-        try:
-            # 3. Generate a new long-lived session JWT.
-            token = self.jwt_service.generate_chat_jwt(
-                company_id=company.id,
-                company_short_name=company.short_name,
-                external_user_id=external_user_id,
-                expires_delta_seconds=3600 * 8  # 8 horas
-            )
-            if not token:
-                raise Exception("No se pudo generar el token de sesión (JWT).")
+        # 1. Authenticate the API call.
+        iaut = self.iauthentication.verify()
+        if not iaut.get("success"):
+            return jsonify(iaut), 401
 
-            # 4. Init the company/user LLM context.
-            self.query_service.llm_init_context(
-                company_short_name=company_short_name,
-                external_user_id=external_user_id
-            )
+        # 2. Delegate session creation to ProfileService.
+        self.profile_service.create_external_user_session(company, external_user_id)
 
-            # 5. get the prompt list from backend
-            prompts = self.prompt_service.get_user_prompts(company_short_name)
+        # 3. prepare and decide the path
+        prep_result = self.query_service.prepare_context(
+            company_short_name=company_short_name, user_identifier=external_user_id
+        )
 
-            # 6. get the branding data
+        if prep_result.get('rebuild_needed'):
             branding_data = self.branding_service.get_company_branding(company)
-
-            # 7. render the chat page with the company/user information.
-            return render_template("chat.html",
-                                        company_short_name=company_short_name,
-                                        auth_method='jwt',
-                                        session_jwt=token,
-                                        external_user_id=external_user_id,
-                                        branding=branding_data,
-                                        prompts=prompts,
-                                        iatoolkit_base_url=os.getenv('IATOOLKIT_BASE_URL'),
-                                        ), 200
-
-        except Exception as e:
-            logging.exception(f"Error al inicializar el chat para {company_short_name}/{external_user_id}: {e}")
-            return jsonify({"error": f"Error interno al iniciar el chat. {str(e)}"}), 500
+            onboarding_cards = self.onboarding_service.get_onboarding_cards(company)
+            target_url = url_for('login', company_short_name=company_short_name,
+                                 _external=True)
+
+            return render_template(
+                "onboarding_shell.html",
+                iframe_src_url=target_url,
+                branding=branding_data,
+                onboarding_cards=onboarding_cards
+            )
+        else:
+            # fast path, the context is already on the cache, render the chat directly
+            try:
+                session_info = self.profile_service.get_current_session_info()
+                user_profile = session_info.get('profile', {})
+
+                prompts = self.prompt_service.get_user_prompts(company_short_name)
+                branding_data = self.branding_service.get_company_branding(company)
+
+                return render_template("chat.html",
+                                       company_short_name=company_short_name,
+                                       user_is_local=user_profile.get('user_is_local'),
+                                       user_email=user_profile.get('user_email'),
+                                       branding=branding_data,
+                                       prompts=prompts,
+                                       iatoolkit_base_url=os.getenv('IATOOLKIT_BASE_URL'),
+                                       ), 200
+            except Exception as e:
+                logging.exception(f"Error en el camino rápido para {company_short_name}/{external_user_id}: {e}")
+                return jsonify({"error": f"Error interno al iniciar el chat. {str(e)}"}), 500

iatoolkit/views/{file_store_view.py → file_store_api_view.py}

@@ -6,16 +6,16 @@
 from flask.views import MethodView
 from flask import request, jsonify
 from iatoolkit.services.load_documents_service import LoadDocumentsService
-from iatoolkit.common.auth import IAuthentication
+from iatoolkit.services.auth_service import AuthService
 from iatoolkit.repositories.profile_repo import ProfileRepo
 from injector import inject
 import base64
 
 
-class FileStoreView(MethodView):
+class FileStoreApiView(MethodView):
     @inject
     def __init__(self,
-                 iauthentication: IAuthentication,
+                 iauthentication: AuthService,
                  doc_service: LoadDocumentsService,
                  profile_repo: ProfileRepo,):
         self.iauthentication = iauthentication
@@ -43,7 +43,7 @@ class FileStoreView(MethodView):
                 return jsonify({"error": f"La empresa {company_short_name} no existe"}), 400
 
             # get access credentials
-            iaut = self.iauthentication.verify(company_short_name, requested_name)
+            iaut = self.iauthentication.verify()
             if not iaut.get("success"):
                 return jsonify(iaut), 401
 

iatoolkit/views/history_api_view.py

@@ -0,0 +1,52 @@
+# Copyright (c) 2024 Fernando Libedinsky
+# Product: IAToolkit
+#
+# IAToolkit is open source software.
+
+from flask import request, jsonify
+from flask.views import MethodView
+from iatoolkit.services.history_service import HistoryService
+from iatoolkit.services.profile_service import ProfileService
+from injector import inject
+import logging
+
+
+class HistoryApiView(MethodView):
+    """
+    Handles requests from the web UI to fetch a user's query history.
+    Authentication is based on the active Flask session.
+    """
+
+    @inject
+    def __init__(self,
+                 profile_service: ProfileService,
+                 history_service: HistoryService):
+        self.profile_service = profile_service
+        self.history_service = history_service
+
+    def post(self, company_short_name: str):
+        # 1. Get the authenticated user's info from the unified session.
+        session_info = self.profile_service.get_current_session_info()
+        user_identifier = session_info.get("user_identifier")
+
+        if not user_identifier:
+            return jsonify({'error_message': 'Usuario no autenticado o sesión inválida'}), 401
+
+        try:
+            # 2. Call the history service with the unified identifier.
+            # The service's signature should now only expect user_identifier.
+            response = self.history_service.get_history(
+                company_short_name=company_short_name,
+                user_identifier=user_identifier
+            )
+
+            if "error" in response:
+                # Handle errors reported by the service itself.
+                return jsonify({'error_message': response["error"]}), 400
+
+            return jsonify(response), 200
+
+        except Exception as e:
+            logging.exception(
+                f"Unexpected error fetching history for {company_short_name}/{user_identifier}: {e}")
+            return jsonify({"error_message": "Ha ocurrido un error inesperado en el servidor."}), 500

iatoolkit/views/init_context_api_view.py

@@ -0,0 +1,62 @@
+from flask.views import MethodView
+from injector import inject
+from iatoolkit.services.query_service import QueryService
+from iatoolkit.services.profile_service import ProfileService
+from iatoolkit.services.auth_service import AuthService
+from flask import jsonify, request
+import logging
+
+
+class InitContextApiView(MethodView):
+    """
+    API endpoint to force a full context rebuild for a user.
+    Handles both web users (via session) and API users (via API Key).
+    """
+
+    @inject
+    def __init__(self,
+                 auth_service: AuthService,
+                 query_service: QueryService,
+                 profile_service: ProfileService):
+        self.auth_service = auth_service
+        self.query_service = query_service
+        self.profile_service = profile_service
+
+    def post(self, company_short_name: str):
+        """
+        Cleans and rebuilds the context. The user is identified either by
+        an active web session or by the external_user_id in the JSON payload
+        for API calls.
+        """
+        # 1. Authenticate the request. This handles both session and API Key.
+        auth_result = self.auth_service.verify()
+        if not auth_result.get("success"):
+            return jsonify({"error": auth_result.get("error_message")}), auth_result.get("status_code", 401)
+
+        user_identifier = auth_result.get('user_identifier')
+        if not user_identifier:
+            return jsonify({"error": "Could not identify user from session or payload"}), 400
+
+        try:
+            # 2. Execute the forced rebuild sequence using the unified identifier.
+            self.query_service.session_context.clear_all_context(company_short_name, user_identifier)
+            logging.info(f"Context for {company_short_name}/{user_identifier} has been cleared.")
+
+            self.query_service.prepare_context(
+                company_short_name=company_short_name,
+                user_identifier=user_identifier
+            )
+
+            self.query_service.finalize_context_rebuild(
+                company_short_name=company_short_name,
+                user_identifier=user_identifier
+            )
+
+            logging.info(f"Context for {company_short_name}/{user_identifier} rebuilt successfully.")
+
+            # 3. Respond with JSON, as this is an API endpoint.
+            return jsonify({'status': 'OK', 'message': 'Context has been reloaded successfully.'}), 200
+
+        except Exception as e:
+            logging.exception(f"Error forcing context rebuild for {user_identifier}: {e}")
+            return jsonify({"error_message": str(e)}), 500

iatoolkit/views/llmquery_api_view.py

@@ -0,0 +1,50 @@
+from flask.views import MethodView
+from flask import request, jsonify
+from injector import inject
+from iatoolkit.services.query_service import QueryService
+from iatoolkit.services.auth_service import AuthService
+from iatoolkit.services.profile_service import ProfileService
+import logging
+
+class LLMQueryApiView(MethodView):
+    """
+    API-only endpoint for submitting queries. Authenticates via API Key.
+    """
+
+    @inject
+    def __init__(self, auth_service: AuthService, query_service: QueryService, profile_service: ProfileService):
+        self.auth_service = auth_service
+        self.query_service = query_service
+        self.profile_service = profile_service
+
+    def post(self, company_short_name: str):
+        # 1. Authenticate the API request.
+        auth_result = self.auth_service.verify()
+        if not auth_result.get("success"):
+            return jsonify({"error": auth_result.get("error_message")}), auth_result.get("status_code", 401)
+
+        # 2. Get the user identifier from the payload.
+        user_identifier = auth_result.get('user_identifier')
+        if not user_identifier:
+            return jsonify({"error": "Payload must include 'user_identifier'"}), 400
+
+        data = request.get_json()
+        if not data:
+            return jsonify({"error": "Invalid JSON body"}), 400
+
+        # 3. Ensure session state exists for this API user (lazy creation).
+        profile = self.profile_service.get_profile_by_identifier(company_short_name, user_identifier)
+        if not profile:
+            company = self.profile_service.get_company_by_short_name(company_short_name)
+            self.profile_service.create_external_user_session(company, user_identifier)
+
+        # 4. Call the unified query service method.
+        result = self.query_service.llm_query(
+            company_short_name=company_short_name,
+            user_identifier=user_identifier,
+            question=data.get('question', ''),
+            prompt_name=data.get('prompt_name'),
+            client_data=data.get('client_data', {}),
+            files=data.get('files', [])
+        )
+        return jsonify(result)

iatoolkit/views/llmquery_web_view.py

@@ -0,0 +1,38 @@
+from flask.views import MethodView
+from flask import request, jsonify
+from injector import inject
+from iatoolkit.services.query_service import QueryService
+from iatoolkit.services.auth_service import AuthService  # Use AuthService for session check
+
+
+class LLMQueryWebView(MethodView):  # Renamed for clarity
+    """
+    Web-only endpoint for submitting queries from the chat UI.
+    Authenticates via Flask session cookie.
+    """
+
+    @inject
+    def __init__(self, auth_service: AuthService, query_service: QueryService):
+        self.auth_service = auth_service
+        self.query_service = query_service
+
+    def post(self, company_short_name: str):
+        # 1. Authenticate the web session request.
+        auth_result = self.auth_service.verify()
+        if not auth_result.get("success"):
+            return jsonify({"error": auth_result.get("error_message")}), auth_result.get("status_code", 401)
+
+        # 2. Get the guaranteed user_identifier from the auth result.
+        user_identifier = auth_result['user_identifier']
+        data = request.get_json() or {}
+
+        # 3. Call the unified query service method.
+        result = self.query_service.llm_query(
+            company_short_name=company_short_name,
+            user_identifier=user_identifier,
+            question=data.get('question', ''),
+            prompt_name=data.get('prompt_name'),
+            client_data=data.get('client_data', {}),
+            files=data.get('files', [])
+        )
+        return jsonify(result)

iatoolkit/views/{home_view.py → login_test_view.py}

@@ -10,24 +10,21 @@ from iatoolkit.services.profile_service import ProfileService
 import os
 
 
-class HomeView(MethodView):
+class LoginTest(MethodView):
     @inject
     def __init__(self,
                  profile_service: ProfileService):
         self.profile_service = profile_service
 
     def get(self):
-        user_agent = request.user_agent
-        is_mobile = user_agent.platform in ["android", "iphone", "ipad"] or "mobile" in user_agent.string.lower()
         alert_message = request.args.get('alert_message', None)
         companies = self.profile_service.get_companies()
 
         # Esta API_KEY para el login
         api_key_for_login = os.getenv("IATOOLKIT_API_KEY", "tu_api_key_por_defecto_o_error")
 
-        return render_template('home.html',
+        return render_template('login_test.html',
                                companies=companies,
-                               is_mobile=is_mobile,
                                alert_message=alert_message,
                                alert_icon='success' if alert_message else None,
                                api_key=api_key_for_login