[ { "path": ".cursor/rules/general.mdc", "content": "---\ndescription:\nglobs:\nalwaysApply: false\n---\n---\ndescription: General TypeScript coding guidelines\nglobs:\n---\n\n## General\n\n- Write elegant, concise, and readable code\n- Prefer `const` over `let` (never use `var`)\n- Use kebab-case for file and directory names\n- Use clear, descriptive names for variables, functions, and components\n\n## Modules\n\n### Imports & Exports\n\n- Always use ESM `import` and `export` (never use CJS `require`)\n - File imports should never use an extension (NOT `.js`, `.ts` or `.tsx`).\n - GOOD examples:\n - `import { Foo } from './foo'`\n - `import { type Route } from './types/root'`\n - `import zod from 'zod'`\n - `import { logger } from '~/types'`\n - BAD examples:\n - `import { Foo } from './foo.js'`\n - `import { type Route } from './types/root.js'`\n - `import { Foo } from './foo.ts'`\n- Always prefer named exports over default exports\n\n### Packages\n\nAll packages must follow these `package.json` rules:\n\n- `type` must be set to `module`\n\n## TypeScript\n\n- Avoid semicolons at the end of lines\n- Use TypeScript's utility types (e.g., `Partial`, `Pick`, `Omit`) to manipulate existing types\n- Create custom types for complex data structures used throughout the application\n- If possible, avoid using `any`/`unknown` or casting values like `(value as any)` in TypeScript outside of test files e.g. `*.test.ts` or test fixtures e.g. `**/test-data.ts`.\n- Don't rely on `typeof`, `ReturnType<>`, `Awaited<>`, etc for complex type inference (it's ok for simple types)\n- You can use `as const` as needed for better type inference\n- Functions should accept an object parameter instead of multiple parameters\n - Good examples:\n ```ts\n function myFunction({ foo, bar }: { foo: boolean; bar: string }) {}\n function VideoPlayer({ sid }: { sid: string }) {}\n ```\n - Bad examples:\n ```ts\n function myFunction(foo: boolean, bar: string, baz: number) {}\n ```\n- Arguments should generally be destructured in the function definition, not the function body.\n - Good example:\n ```ts\n function myFunction({ foo, bar }: { foo: boolean; bar: string }) {}\n ```\n - Bad example:\n ```ts\n function myFunction(args: { foo: boolean; bar: string }) {\n const { foo, bar } = args\n }\n ```\n- Zod should be used to parse untrusted data, but not for data that is trusted like function arguments\n- Prefer Zod unions over Zod enums\n - For example, this union `z.union([ z.literal('youtube'), z.literal('spotify') ])` is better than this enum `z.enum([ 'youtube', 'spotify' ])`\n- Promises (and `async` functions which implicitly create Promises) must always be properly handled, either via:\n - Using `await` to wait for the Promise to resolve successfully\n - Using `.then` or `.catch` to handle Promise resolution\n - Returning a Promise to a calling function which itself has to handle the Promise.\n\n## Node.js\n\n- Utilize the `node:` protocol when importing Node.js modules (e.g., `import fs from 'node:fs/promises'`)\n- Prefer promise-based APIs over Node's legacy callback APIs\n- Use environment variables for secrets (avoid hardcoding sensitive information)\n\n### Web Standard APIs\n\nAlways prefer using standard web APIs like `fetch`, `WebSocket`, and `ReadableStream` when possible. Avoid redundant libraries (like `node-fetch`).\n\n- Prefer the `fetch` API for making HTTP requests instead of Node.js modules like `http` or `https`\n - Use the native `fetch` API instead of `node-fetch` or polyfilled `cross-fetch`\n - Use the `ky` library for HTTP requests instead of `axios` or `superagent`\n- Use the WHATWG `URL` and `URLSearchParams` classes instead of the Node.js `url` module\n- Use `Request` and `Response` objects from the Fetch API instead of Node.js-specific request and response objects\n\n## Error Handling\n\n- Prefer `async`/`await` over `.then()` and `.catch()`\n- Always handle errors correctly (eg: `try`/`catch` or `.catch()`)\n- Avoid swallowing errors silently; always log or handle caught errors appropriately\n\n## Comments\n\nComments should be used to document and explain code. They should complement the use of descriptive variable and function names and type declarations.\n\n- Add comments to explain complex sections of code\n- Add comments that will improve the autocompletion preview in IDEs (eg: functions and types)\n- Don't add comments that just reword symbol names or repeat type declarations\n- Use **JSDoc** formatting for comments (not TSDoc or inline comments)\n\n## Logging\n\n- Just use `console` for logging.\n\n## Testing\n\n### Unit Testing\n\n- **All unit tests should use Vitest**\n - DO NOT attempt to install or use other testing libraries like Jest\n- Test files should be named `[target].test.ts` and placed in the same directory as the code they are testing (NOT a separate directory)\n - Good example: `src/my-file.ts` and `src/my-file.test.ts`\n - Bad example: `src/my-file.ts` and `src/test/my-file.test.ts` or `test/my-file.test.ts` or `src/__tests__/my-file.test.ts`\n- Tests should be run with `pnpm test:unit`\n- It's acceptable to use `any`/`unknown` in test files (such as `*.test.ts`) or test fixtures (like `**/test-data.ts`) to facilitate mocking or stubbing external modules or partial function arguments, referencing the usage guidelines in the TypeScript section.\n- Frontend react code does not need unit tests\n\n### Test Coverage\n\n- Test critical business logic and edge cases\n- Don't add tests for trivial code or just to increase test coverage\n- Don't make tests too brittle or flaky by relying on implementation details\n\n## Git\n\n- When possible, combine the `git add` and `git commit` commands into a single `git commit -am` command, to speed things up\n" }, { "path": ".editorconfig", "content": "root = true\n\n[*]\nindent_style = space\nindent_size = 2\ntab_width = 2\nend_of_line = lf\ncharset = utf-8\ntrim_trailing_whitespace = true\ninsert_final_newline = true\n" }, { "path": ".github/funding.yml", "content": "github: [transitive-bullshit]\n" }, { "path": ".github/workflows/main.yml", "content": "name: CI\n\non: [push]\n\njobs:\n test:\n name: Test Node.js ${{ matrix.node-version }}\n runs-on: ubuntu-latest\n\n strategy:\n fail-fast: true\n matrix:\n node-version:\n - 22\n\n env:\n TURBO_TOKEN: ${{ secrets.TURBO_TOKEN }}\n TURBO_TEAM: ${{ vars.TURBO_TEAM }}\n NODE_OPTIONS: --max-old-space-size=8192\n\n steps:\n - uses: actions/checkout@v4\n - uses: pnpm/action-setup@v4\n - uses: actions/setup-node@v4\n with:\n node-version: ${{ matrix.node-version }}\n cache: 'pnpm'\n\n - run: pnpm install --frozen-lockfile --strict-peer-dependencies\n\n - name: Cache turbo build setup\n uses: actions/cache@v4\n with:\n path: .turbo\n key: ${{ runner.os }}-node-${{ matrix.node-version }}-turbo-${{ github.sha }}\n restore-keys: |\n ${{ runner.os }}-node-${{ matrix.node-version }}-turbo-\n\n - run: pnpm build\n - run: pnpm test\n" }, { "path": ".github/workflows/release.yml", "content": "name: Release\n\non:\n push:\n tags:\n - 'v*'\n workflow_dispatch:\n\njobs:\n release:\n runs-on: ubuntu-latest\n permissions:\n contents: write\n steps:\n - uses: actions/checkout@v4\n with:\n fetch-depth: 0\n - uses: pnpm/action-setup@v4\n - uses: actions/setup-node@v4\n with:\n node-version: lts/*\n cache: pnpm\n - run: pnpm dlx changelogithub\n env:\n GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}\n" }, { "path": ".gitignore", "content": "# See https://help.github.com/articles/ignoring-files/ for more about ignoring files.\n\n# dependencies\nnode_modules\n/.pnp\n.pnp.js\n\n# testing\n/coverage\n\n# next.js\n.next/\n\n# production\nbuild/\ndist/\n\n# misc\n.DS_Store\n*.pem\n\n# debug\nnpm-debug.log*\nyarn-debug.log*\nyarn-error.log*\n.pnpm-debug.log*\n\n# dotenv files\n.env\n.env.production\n.env.staging\n.env.test\n.env*.local\n\n# cloudflare env vars\n.dev.vars\n.dev.vars.production\n.dev.vars.staging\n.dev.vars.test\n\n# turbo\n.turbo\n\n# vercel\n.vercel\n\n# typescript\n*.tsbuildinfo\nnext-env.d.ts\n\nold/\nout/\n\n.wrangler\n.sentryclirc\n.eslintcache\n.nitro\n.tanstack\n\n.xmcp\n" }, { "path": ".npmrc", "content": "enable-pre-post-scripts=true\npackage-manager-strict=false\n" }, { "path": ".prettierignore", "content": "# autogenerated files\npackages/types/src/openapi.d.ts\napps/web/src/routeTree.gen.ts\nlegacy/packages/openapi-to-ts/fixtures/generated\nexamples/mcp-servers/xmcp/xmcp-env.d.ts\n" }, { "path": ".vscode/launch.json", "content": "{\n \"version\": \"0.2.0\",\n \"configurations\": [\n {\n \"name\": \"Debug API\",\n \"type\": \"node\",\n \"request\": \"launch\",\n\n // Debug server in VSCode\n \"cwd\": \"${workspaceFolder}/apps/api\",\n \"program\": \"src/server.ts\",\n // \"program\": \"${file}\",\n\n /*\n * Path to tsx binary\n * Assuming locally installed\n */\n \"runtimeExecutable\": \"tsx\",\n\n /*\n * Open terminal when debugging starts (Optional)\n * Useful to see console.logs\n */\n \"console\": \"integratedTerminal\",\n \"internalConsoleOptions\": \"neverOpen\",\n\n // Files to exclude from debugger (e.g. call stack)\n \"skipFiles\": [\n // Node.js internal core modules\n \"/**\"\n\n // Ignore all dependencies (optional)\n // \"${workspaceFolder}/node_modules/**\"\n ]\n }\n // Wrangler's vscode support seems to be extremely buggy. It sometimes works\n // 1/10th of the time, but nothing I tried could improve that consistency.\n // Will use browser debugger instead for now.\n // {\n // \"name\": \"gateway\",\n // \"type\": \"node\",\n // \"request\": \"attach\",\n // \"port\": 9229,\n // \"cwd\": \"${workspaceFolder}/apps/gateway\",\n // // \"cwd\": \"${workspaceFolder}\",\n // // \"cwd\": \"/\",\n // \"attachExistingChildren\": false,\n // \"autoAttachChildProcesses\": false,\n // \"sourceMaps\": true,\n // \"outFiles\": [\"${workspaceFolder}/apps/gateway/.wrangler/tmp/**/*\"],\n // \"resolveSourceMapLocations\": null,\n // // \"resolveSourceMapLocations\": [\"**\", \"!**/node_modules/**\"],\n // \"skipFiles\": [\"/**\"],\n // \"internalConsoleOptions\": \"neverOpen\",\n // \"restart\": true\n // },\n // {\n // \"name\": \"Wrangler\",\n // \"type\": \"node\",\n // \"request\": \"attach\",\n // \"port\": 9229,\n // \"cwd\": \"/\",\n // \"resolveSourceMapLocations\": null,\n // \"attachExistingChildren\": false,\n // \"autoAttachChildProcesses\": false,\n // \"sourceMaps\": true // works with or without this line (supposedly)\n // }\n ]\n // \"compounds\": [\n // {\n // \"name\": \"Debug Workers\",\n // \"configurations\": [\"gateway\"],\n // \"stopAll\": true\n // }\n // ]\n}\n" }, { "path": "CLAUDE.md", "content": "# CLAUDE.md\n\nThis file provides guidance to Claude Code (claude.ai/code) when working with code in this repository.\n\n## Project Overview\n\nThis is a monorepo for Agentic - a platform that provides API gateway services for MCP (Model Context Protocol) and OpenAPI integrations.\n\n### Core Architecture\n\nThe platform consists of:\n\n- **API Service** (`apps/api/`) - Platform backend API with authentication, billing, and resource management\n- **Gateway Service** (`apps/gateway/`) - Cloudflare Worker that proxies requests to origin MCP/OpenAPI services\n- **Website** (`apps/web/`) - Next.js site for both the marketing site and authenticated webapp\n- **E2E Tests** (`apps/e2e/`) - End-to-end test suite for HTTP and MCP gateway requests\n- **Shared Packages** (`packages/`) - Common utilities, types, validators, and config\n- **StdLib Packages** (`stdlib/`) - TS AI SDK adapters\n\nThe gateway accepts HTTP requests at `https://gateway.agentic.so/deploymentIdentifier/tool-name` or `https://gateway.agentic.so/deploymentIdentifier/mcp` for MCP.\n\n### Development Commands\n\n**Main development workflow:**\n\n- `pnpm dev` - Start all services in development mode\n- `pnpm build` - Build all packages and apps (except for the website)\n- `pnpm test` - Run all tests (format, lint, typecheck, unit, but not e2e tests)\n- `pnpm clean` - Clean all build artifacts\n\n**Individual test commands:**\n\n- `pnpm test:format` - Check code formatting with Prettier\n- `pnpm test:lint` - Run ESLint across all packages\n- `pnpm test:typecheck` - Run TypeScript type checking\n- `pnpm test:unit` - Run unit tests with Vitest\n\n**Code quality:**\n\n- `pnpm fix` - Auto-fix formatting and linting issues\n- `pnpm knip` - Check for unused dependencies\n\n**E2E testing:**\n\n- (from the `apps/e2e` directory)\n- `pnpm e2e` - Run all E2E tests\n- `pnpm e2e-http` - Run HTTP edge E2E tests\n- `pnpm e2e-mcp` - Run MCP edge E2E tests\n\n### Key Database Models\n\nThe system uses Drizzle ORM with PostgreSQL. Core entities:\n\n- **User** - Platform users\n- **Team** - Organizations with members and billing\n- **Project** - Namespace API products comprised of immutable Deployments\n- **Deployment** - Immutable instances of MCP/OpenAPI services, including gateway and pricing config\n- **Consumer** - Customer subscription tracking usage and billing\n\n### Agentic Configuration\n\nAgentic projects use `agentic.config.{ts,js,json}` files to define:\n\n- Project name and metadata\n- Origin adapter (MCP server or OpenAPI spec)\n- Tool configurations and permissions\n- Pricing plans and rate limits\n- Authentication requirements\n\nThe platform supports both MCP servers and OpenAPI specifications as origin adapters.\n\n### Gateway Request Flow\n\n1. Request hits gateway with deployment identifier\n2. Gateway validates consumer authentication/rate limits/caching\n3. Request is transformed and forwarded to origin service\n4. Response is processed and returned with appropriate headers\n5. Usage is tracked for billing and analytics\n\n### Environment Setup\n\nAll apps require environment variables for:\n\n- Database connections (`DATABASE_URL`)\n- External services (Stripe, GitHub, Resend, Sentry)\n- Internal services (API, gateway, etc)\n- Authentication secrets\n- Stripe secrets\n- Admin API keys\n- Sentry DSN\n- etc\n\n## Coding Conventions\n\n### General\n\n- Write elegant, concise, and readable code\n- Prefer `const` over `let` (never use `var`)\n- Use kebab-case for file and directory names\n- Use clear, descriptive names for variables, functions, and components\n\n### Modules\n\n- Always use ESM `import` and `export` (never use CJS `require`)\n - File imports should never use an extension (NOT `.js`, `.ts` or `.tsx`).\n - GOOD examples:\n - `import { Foo } from './foo'`\n - `import { type Route } from './types/root'`\n - `import zod from 'zod'`\n - `import { logger } from '~/types'`\n - BAD examples:\n - `import { Foo } from './foo.js'`\n - `import { type Route } from './types/root.js'`\n - `import { Foo } from './foo.ts'`\n- Always prefer named exports over default exports except for when default exports are required (like in Next.js `page.tsx` components)\n\n### Packages\n\nAll packages must follow these `package.json` rules:\n\n- `type` must be set to `module`\n\n### TypeScript\n\n- Avoid semicolons at the end of lines\n- Use TypeScript's utility types (e.g., `Partial`, `Pick`, `Omit`) to manipulate existing types\n- Create custom types for complex data structures used throughout the application\n- If possible, avoid using `any`/`unknown` or casting values like `(value as any)` in TypeScript outside of test files e.g. `*.test.ts` or test fixtures e.g. `**/test-data.ts`.\n- Try not to rely on `typeof`, `ReturnType<>`, `Awaited<>`, etc for complex type inference (it's ok for simple types)\n- You can use `as const` as needed for better type inference\n- Functions should accept an object parameter instead of multiple parameters\n - GOOD examples:\n ```ts\n function myFunction({ foo, bar }: { foo: boolean; bar: string }) {}\n function VideoPlayer({ sid }: { sid: string }) {}\n ```\n - BAD examples:\n ```ts\n function myFunction(foo: boolean, bar: string, baz: number) {}\n ```\n- Arguments should generally be destructured in the function definition, not the function body.\n - GOOD example:\n ```ts\n function myFunction({ foo, bar }: { foo: boolean; bar: string }) {}\n function exampleWithOptionalParams({\n foo = 'example'\n }: { foo?: string } = {}) {}\n ```\n - BAD example:\n ```ts\n function myFunction(opts: { foo: boolean; bar: string }) {\n const { foo, bar } = opts\n }\n ```\n- Zod should be used to parse untrusted data, but not for data that is trusted like function arguments\n- Prefer Zod unions over Zod enums\n - For example, this union `z.union([ z.literal('youtube'), z.literal('spotify') ])` is better than this enum `z.enum([ 'youtube', 'spotify' ])`\n- Promises (and `async` functions which implicitly create Promises) must always be properly handled, either via:\n - Using `await` to wait for the Promise to resolve successfully\n - Using `.then` or `.catch` to handle Promise resolution\n - Returning a Promise to a calling function which itself has to handle the Promise.\n\n## Node.js\n\n- Utilize the `node:` protocol when importing Node.js modules (e.g., `import fs from 'node:fs/promises'`)\n- Prefer promise-based APIs over Node's legacy callback APIs\n- Use environment variables for secrets (avoid hardcoding sensitive information)\n\n### Web Standard APIs\n\nAlways prefer using standard web APIs like `fetch`, `WebSocket`, and `ReadableStream` when possible. Avoid redundant libraries (like `node-fetch`).\n\n- Prefer the `fetch` API for making HTTP requests instead of Node.js modules like `http` or `https`\n - Prefer using the `ky` `fetch` wrapper for HTTP requests instead of `axios`, `superagent`, `node-fetch` or any other HTTP request library\n - Never use `node-fetch`; prefer `ky` or native `fetch` directly\n- Use the WHATWG `URL` and `URLSearchParams` classes instead of the Node.js `url` module\n- Use `Request` and `Response` objects from the Fetch API instead of Node.js-specific request and response objects\n\n### Error Handling\n\n- Prefer `async`/`await` over `.then()` and `.catch()`\n- Always handle errors correctly (eg: `try`/`catch` or `.catch()`)\n- Avoid swallowing errors silently; always log or handle caught errors appropriately\n\n### Comments\n\nComments should be used to document and explain code. They should complement the use of descriptive variable and function names and type declarations.\n\n- Add comments to explain complex sections of code\n- Add comments that will improve the autocompletion preview in IDEs (eg: functions and types)\n- Don't add comments that just reword symbol names or repeat type declarations\n- Use **JSDoc** formatting for comments (not TSDoc or inline comments)\n\n### Logging\n\n- Just use `console` for logging.\n\n### Testing\n\n#### Unit Testing\n\n- **All unit tests should use Vitest**\n - DO NOT attempt to install or use other testing libraries like Jest\n- Test files should be named `[target].test.ts` and placed in the same directory as the code they are testing (NOT a separate directory)\n - GOOD example: `src/my-file.ts` and `src/my-file.test.ts`\n - BAD example: `src/my-file.ts` and `src/test/my-file.test.ts` or `test/my-file.test.ts` or `src/__tests__/my-file.test.ts`\n- Tests should be run with `pnpm test:unit`\n- You may use `any`/`unknown` in test files (such as `*.test.ts`) or test fixtures (like `**/test-data.ts`) to facilitate mocking or stubbing external modules or partial function arguments, referencing the usage guidelines in the TypeScript section.\n- Frontend react code does not need unit tests\n\n#### Test Coverage\n\n- Test critical business logic and edge cases\n- Don't add tests for trivial code or just to increase test coverage\n- Don't make tests too brittle or flaky by relying on implementation details\n\n### Git\n\n- When possible, combine the `git add` and `git commit` commands into a single `git commit -am` command, to speed things up\n" }, { "path": "Tiltfile", "content": "# 🌊 run `tilt up` to start\n# then open http://localhost:10350/r/(all)/overview\n\nload('ext://uibutton', 'cmd_button', 'bool_input', 'location')\n# Find docs on Tilt at https://docs.tilt.dev/api.html#api.local_resource\n# Find icons at https://fonts.google.com/icons\n \nlocal_resource(\n '🍍 API',\n serve_dir='apps/api',\n serve_cmd='pnpm dev:server',\n links=[ link('http://localhost:3001/v1/health', 'API'), ],\n labels=['Agentic']\n)\n\nlocal_resource(\n '🌢️ Web',\n serve_dir='apps/web',\n serve_cmd='pnpm dev',\n links=[ link('http://localhost:3000', 'Web'), ],\n labels=['Agentic']\n)\n\nlocal_resource(\n 'πŸ‰ Gateway',\n serve_dir='apps/gateway',\n serve_cmd='pnpm dev',\n labels=['Agentic']\n)\n\nlocal_resource(\n 'πŸ§ͺ E2E Tests',\n cmd='echo 0',\n labels=['Testing'],\n auto_init=False\n)\n\nlocal_resource(\n 'πŸ” Drizzle Studio',\n serve_dir='apps/api',\n serve_cmd='pnpm drizzle-kit studio',\n links=[ link('https://local.drizzle.studio', 'Drizzle Studio'), ],\n labels=['Services'],\n)\n\nlocal_resource(\n 'πŸ’Έ Stripe Webhooks',\n serve_dir='apps/api',\n serve_cmd='pnpm dev:stripe',\n # links=[ link('http://localhost:4983', 'Stripe Webhooks'), ],\n labels=['Services'],\n)\n\ncmd_button(\n 'Seed Database',\n argv=['sh', '-c', 'cd apps/e2e && pnpm run seed-db'],\n location=location.NAV,\n icon_name='nature',\n text='Seed Database',\n)\n" }, { "path": "apps/api/drizzle.config.ts", "content": "import { defineConfig } from 'drizzle-kit'\n\nexport default defineConfig({\n out: './drizzle',\n schema: './src/db/schema/index.ts',\n dialect: 'postgresql',\n dbCredentials: {\n // eslint-disable-next-line no-process-env\n url: process.env.DATABASE_URL!\n }\n})\n" }, { "path": "apps/api/package.json", "content": "{\n \"name\": \"api\",\n \"private\": true,\n \"version\": \"8.4.4\",\n \"description\": \"Internal Agentic platform API service.\",\n \"author\": \"Travis Fischer \",\n \"license\": \"AGPL-3.0\",\n \"repository\": {\n \"type\": \"git\",\n \"url\": \"git+https://github.com/transitive-bullshit/agentic.git\",\n \"directory\": \"apps/api\"\n },\n \"type\": \"module\",\n \"source\": \"./src/server.ts\",\n \"scripts\": {\n \"build\": \"tsup\",\n \"dev\": \"run-p dev:*\",\n \"dev:server\": \"dotenvx run -- tsx src/server.ts\",\n \"dev:stripe\": \"dotenvx run -- stripe listen --forward-to http://localhost:3001/v1/webhooks/stripe\",\n \"prod\": \"run-p prod:*\",\n \"prod:server\": \"dotenvx run -o -f .env.production -- tsx src/server.ts\",\n \"prod:stripe\": \"dotenvx run -o -f .env.production -- stripe listen --forward-to http://localhost:3001/v1/webhooks/stripe\",\n \"start\": \"tsx src/server.ts\",\n \"drizzle-kit\": \"dotenvx run -- drizzle-kit\",\n \"drizzle-kit:prod\": \"dotenvx run -o -f .env.production -- drizzle-kit\",\n \"clean\": \"del dist\",\n \"test\": \"run-s test:*\",\n \"test:typecheck\": \"tsc --noEmit\",\n \"test:unit\": \"[ -n \\\"$CI\\\" ] || dotenvx run -- vitest run\"\n },\n \"dependencies\": {\n \"@agentic/platform\": \"workspace:*\",\n \"@agentic/platform-core\": \"workspace:*\",\n \"@agentic/platform-emails\": \"workspace:*\",\n \"@agentic/platform-hono\": \"workspace:*\",\n \"@agentic/platform-types\": \"workspace:*\",\n \"@agentic/platform-validators\": \"workspace:*\",\n \"@aws-sdk/client-s3\": \"^3.726.1\",\n \"@aws-sdk/s3-request-presigner\": \"^3.726.1\",\n \"@dicebear/collection\": \"catalog:\",\n \"@dicebear/core\": \"catalog:\",\n \"@fisch0920/drizzle-orm\": \"catalog:\",\n \"@fisch0920/drizzle-zod\": \"catalog:\",\n \"@hono/node-server\": \"catalog:\",\n \"@hono/zod-openapi\": \"catalog:\",\n \"@paralleldrive/cuid2\": \"catalog:\",\n \"@sentry/node\": \"catalog:\",\n \"bcryptjs\": \"catalog:\",\n \"exit-hook\": \"catalog:\",\n \"file-type\": \"^21.0.0\",\n \"hono\": \"catalog:\",\n \"ky\": \"catalog:\",\n \"mrmime\": \"^2.0.1\",\n \"octokit\": \"catalog:\",\n \"p-all\": \"catalog:\",\n \"postgres\": \"catalog:\",\n \"restore-cursor\": \"catalog:\",\n \"semver\": \"catalog:\",\n \"stripe\": \"catalog:\",\n \"type-fest\": \"catalog:\",\n \"zod-validation-error\": \"catalog:\"\n },\n \"devDependencies\": {\n \"@types/semver\": \"catalog:\",\n \"drizzle-kit\": \"catalog:\",\n \"drizzle-orm\": \"catalog:\"\n }\n}\n" }, { "path": "apps/api/readme.md", "content": "

\n \n \"Agentic\"\n \n

\n\n

\n \"Build\n \"Prettier\n

\n\n# Agentic API \n\n> Backend API for the Agentic platform.\n\n- [Website](https://agentic.so)\n- [Docs](https://docs.agentic.so)\n\n## Dependencies\n\n- **Postgres**\n - `DATABASE_URL` - Postgres connection string\n - [On macOS](https://wiki.postgresql.org/wiki/Homebrew): `brew install postgresql && brew services start postgresql`\n - You'll need to run `pnpm drizzle-kit push` to set up your database schema\n- **S3** - Required to use file attachments\n - Any S3-compatible provider is supported, such as [Cloudflare R2](https://developers.cloudflare.com/r2/)\n - Alterantively, you can use a local S3 server like [MinIO](https://github.com/minio/minio#homebrew-recommended) or [LocalStack](https://github.com/localstack/localstack)\n - To run LocalStack on macOS: `brew install localstack/tap/localstack-cli && localstack start -d`\n - To run MinIO macOS: `brew install minio/stable/minio && minio server /data`\n - I recommend using Cloudflare R2, though – it's amazing and should be free for most use cases!\n - `S3_BUCKET` - Required\n - `S3_REGION` - Optional; defaults to `auto`\n - `S3_ENDPOINT` - Required; example: `https://.r2.cloudflarestorage.com`\n - `ACCESS_KEY_ID` - Required ([cloudflare R2 docs](https://developers.cloudflare.com/r2/api/s3/tokens/))\n - `SECRET_ACCESS_KEY` - Required ([cloudflare R2 docs](https://developers.cloudflare.com/r2/api/s3/tokens/))\n\n## License\n\n[GNU AGPL 3.0](https://choosealicense.com/licenses/agpl-3.0/)\n" }, { "path": "apps/api/src/api-v1/auth/github-callback.ts", "content": "import type { DefaultHonoEnv } from '@agentic/platform-hono'\nimport type { OpenAPIHono } from '@hono/zod-openapi'\nimport { assert } from '@agentic/platform-core'\n\nimport { authStorage } from './utils'\n\nexport function registerV1GitHubOAuthCallback(\n app: OpenAPIHono\n) {\n return app.get('auth/github/callback', async (c) => {\n const logger = c.get('logger')\n const query = c.req.query()\n\n assert(query.state, 400, 'State is required')\n\n const entry = await authStorage.get(['github', query.state, 'redirectUri'])\n assert(entry, 400, 'Redirect URI not found')\n const redirectUri = entry.redirectUri\n assert(entry.redirectUri, 400, 'Redirect URI not found')\n\n const url = new URL(redirectUri)\n for (const [key, value] of Object.entries(query)) {\n url.searchParams.set(key, value)\n }\n\n logger.info('GitHub auth callback', query, '=>', url.toString(), {\n rawUrl: redirectUri,\n query\n })\n return c.redirect(url.toString())\n })\n}\n" }, { "path": "apps/api/src/api-v1/auth/github-exchange.ts", "content": "import type { DefaultHonoEnv } from '@agentic/platform-hono'\nimport { assert, parseZodSchema } from '@agentic/platform-core'\nimport { createRoute, type OpenAPIHono, z } from '@hono/zod-openapi'\n\nimport { createAuthToken } from '@/lib/auth/create-auth-token'\nimport { upsertOrLinkUserAccount } from '@/lib/auth/upsert-or-link-user-account'\nimport {\n exchangeGitHubOAuthCodeForAccessToken,\n getGitHubClient\n} from '@/lib/external/github'\nimport {\n openapiAuthenticatedSecuritySchemas,\n openapiErrorResponse404,\n openapiErrorResponses\n} from '@/lib/openapi-utils'\n\nimport { authSessionResponseSchema } from './schemas'\n\nconst route = createRoute({\n description: 'Exchanges a GitHub OAuth code for an Agentic auth session.',\n tags: ['auth'],\n operationId: 'exchangeOAuthCodeWithGitHub',\n method: 'post',\n path: 'auth/github/exchange',\n security: openapiAuthenticatedSecuritySchemas,\n request: {\n body: {\n required: true,\n content: {\n 'application/json': {\n schema: z\n .object({\n code: z.string()\n })\n .passthrough()\n }\n }\n }\n },\n responses: {\n 200: {\n description: 'An auth session',\n content: {\n 'application/json': {\n schema: authSessionResponseSchema\n }\n }\n },\n ...openapiErrorResponses,\n ...openapiErrorResponse404\n }\n})\n\nexport function registerV1GitHubOAuthExchange(\n app: OpenAPIHono\n) {\n return app.openapi(route, async (c) => {\n const logger = c.get('logger')\n const body = c.req.valid('json')\n\n const result = await exchangeGitHubOAuthCodeForAccessToken(body)\n logger.info('github oauth', result)\n\n const client = getGitHubClient({ accessToken: result.access_token! })\n const { data: ghUser } = await client.rest.users.getAuthenticated()\n\n logger.info('github user', ghUser)\n\n if (!ghUser.email) {\n const { data: emails } = await client.request('GET /user/emails')\n const primary = emails.find((e) => e.primary)\n const verified = emails.find((e) => e.verified)\n const fallback = emails.find((e) => e.email)\n const email = primary?.email || verified?.email || fallback?.email\n ghUser.email = email!\n }\n\n assert(\n ghUser.email,\n 'Error authenticating with GitHub: user email is required.'\n )\n\n const now = Date.now()\n const user = await upsertOrLinkUserAccount({\n partialAccount: {\n provider: 'github',\n accountId: `${ghUser.id}`,\n accountUsername: ghUser.login.toLowerCase(),\n accessToken: result.access_token,\n refreshToken: result.refresh_token,\n // `expires_in` and `refresh_token_expires_in` are given in seconds\n accessTokenExpiresAt: result.expires_in\n ? new Date(now + result.expires_in * 1000)\n : undefined,\n refreshTokenExpiresAt: result.refresh_token_expires_in\n ? new Date(now + result.refresh_token_expires_in * 1000)\n : undefined,\n scope: result.scope || undefined\n },\n partialUser: {\n email: ghUser.email,\n isEmailVerified: true,\n name: ghUser.name || undefined,\n username: ghUser.login.toLowerCase(),\n image: ghUser.avatar_url\n }\n })\n\n logger.info('github user result', user)\n\n const token = await createAuthToken(user)\n return c.json(parseZodSchema(authSessionResponseSchema, { token, user }))\n })\n}\n" }, { "path": "apps/api/src/api-v1/auth/github-init.ts", "content": "import type { DefaultHonoEnv } from '@agentic/platform-hono'\nimport { createRoute, type OpenAPIHono, z } from '@hono/zod-openapi'\n\nimport { env } from '@/lib/env'\nimport {\n openapiAuthenticatedSecuritySchemas,\n openapiErrorResponse404,\n openapiErrorResponses\n} from '@/lib/openapi-utils'\n\nimport { authStorage } from './utils'\n\nconst route = createRoute({\n description: 'Starts a GitHub OAuth flow.',\n tags: ['auth'],\n operationId: 'initGitHubOAuthFlow',\n method: 'get',\n path: 'auth/github/init',\n security: openapiAuthenticatedSecuritySchemas,\n request: {\n query: z\n .object({\n redirect_uri: z.string(),\n client_id: z.string().optional(),\n scope: z.string().optional()\n })\n .passthrough()\n },\n responses: {\n 302: {\n description: 'Redirected to GitHub'\n },\n ...openapiErrorResponses,\n ...openapiErrorResponse404\n }\n})\n\nexport function registerV1GitHubOAuthInitFlow(\n app: OpenAPIHono\n) {\n return app.openapi(route, async (c) => {\n const logger = c.get('logger')\n const {\n client_id: clientId = env.GITHUB_CLIENT_ID,\n scope = 'user:email',\n redirect_uri: redirectUri\n } = c.req.query()\n\n const state = crypto.randomUUID()\n\n // TODO: unique identifier!\n // TODO: THIS IS IMPORTANT!! if multiple users are authenticating with github concurrently, this will currently really mess things up...\n await authStorage.set(['github', state, 'redirectUri'], { redirectUri })\n\n const publicRedirectUri = `${env.apiBaseUrl}/v1/auth/github/callback`\n\n const url = new URL('https://github.com/login/oauth/authorize')\n url.searchParams.append('client_id', clientId)\n url.searchParams.append('scope', scope)\n url.searchParams.append('state', state)\n url.searchParams.append('redirect_uri', publicRedirectUri)\n\n logger.info('Redirecting to GitHub', {\n url: url.toString(),\n clientId,\n scope,\n publicRedirectUri\n })\n\n return c.redirect(url.toString())\n })\n}\n" }, { "path": "apps/api/src/api-v1/auth/schemas.ts", "content": "import { z } from '@hono/zod-openapi'\n\nimport { schema } from '@/db'\n\nexport const authSessionResponseSchema = z\n .object({\n token: z.string().nonempty(),\n user: schema.userSelectSchema\n })\n .openapi('AuthSession')\n" }, { "path": "apps/api/src/api-v1/auth/sign-in-with-password.ts", "content": "import type { DefaultHonoEnv } from '@agentic/platform-hono'\nimport type { Context } from 'hono'\nimport { assert, parseZodSchema } from '@agentic/platform-core'\nimport { isValidPassword } from '@agentic/platform-validators'\nimport { createRoute, type OpenAPIHono, z } from '@hono/zod-openapi'\nimport { compare } from 'bcryptjs'\n\nimport { and, db, eq, schema } from '@/db'\nimport { createAuthToken } from '@/lib/auth/create-auth-token'\nimport {\n openapiAuthenticatedSecuritySchemas,\n openapiErrorResponse404,\n openapiErrorResponses\n} from '@/lib/openapi-utils'\n\nimport { authSessionResponseSchema } from './schemas'\n\nconst route = createRoute({\n description: 'Signs in with email and password.',\n tags: ['auth'],\n operationId: 'signInWithPassword',\n method: 'post',\n path: 'auth/password/signin',\n security: openapiAuthenticatedSecuritySchemas,\n request: {\n body: {\n required: true,\n content: {\n 'application/json': {\n schema: z.object({\n email: z.string().email(),\n password: z.string().refine((password) => isValidPassword(password))\n })\n }\n }\n }\n },\n responses: {\n 200: {\n description: 'An auth session',\n content: {\n 'application/json': {\n schema: authSessionResponseSchema\n }\n }\n },\n ...openapiErrorResponses,\n ...openapiErrorResponse404\n }\n})\n\nexport function registerV1SignInWithPassword(app: OpenAPIHono) {\n return app.openapi(route, trySignIn)\n}\n\nexport async function trySignIn(\n c: Context<\n DefaultHonoEnv,\n 'auth/password/signin',\n {\n in: {\n json: {\n password: string\n email: string\n }\n }\n out: {\n json: {\n password: string\n email: string\n }\n }\n }\n >\n) {\n const { email, password } = c.req.valid('json')\n\n const user = await db.query.users.findFirst({\n where: eq(schema.users.email, email)\n })\n assert(user, 404, `User not found \"${email}\"`)\n\n const account = await db.query.accounts.findFirst({\n where: and(\n eq(schema.accounts.userId, user.id),\n eq(schema.accounts.provider, 'password')\n )\n })\n assert(account?.password, 404, `User \"${email}\" does not have a password set`)\n assert(compare(password, account.password), 403, 'Authentication error')\n\n const token = await createAuthToken(user)\n return c.json(parseZodSchema(authSessionResponseSchema, { token, user }))\n}\n" }, { "path": "apps/api/src/api-v1/auth/sign-up-with-password.ts", "content": "import type { DefaultHonoEnv } from '@agentic/platform-hono'\nimport { parseZodSchema } from '@agentic/platform-core'\nimport { isValidPassword } from '@agentic/platform-validators'\nimport { createRoute, type OpenAPIHono, z } from '@hono/zod-openapi'\nimport { genSalt, hash } from 'bcryptjs'\n\nimport { usernameSchema } from '@/db'\nimport { createAuthToken } from '@/lib/auth/create-auth-token'\nimport { upsertOrLinkUserAccount } from '@/lib/auth/upsert-or-link-user-account'\nimport { ensureUniqueNamespace } from '@/lib/ensure-unique-namespace'\nimport {\n openapiAuthenticatedSecuritySchemas,\n openapiErrorResponse404,\n openapiErrorResponses\n} from '@/lib/openapi-utils'\n\nimport { authSessionResponseSchema } from './schemas'\nimport { trySignIn } from './sign-in-with-password'\n\nconst route = createRoute({\n description: 'Signs up for a new account with email and password.',\n tags: ['auth'],\n operationId: 'signUpWithPassword',\n method: 'post',\n path: 'auth/password/signup',\n security: openapiAuthenticatedSecuritySchemas,\n request: {\n body: {\n required: true,\n content: {\n 'application/json': {\n schema: z.object({\n username: usernameSchema,\n email: z.string().email(),\n password: z.string().refine((password) => isValidPassword(password))\n })\n }\n }\n }\n },\n responses: {\n 200: {\n description: 'An auth session',\n content: {\n 'application/json': {\n schema: authSessionResponseSchema\n }\n }\n },\n ...openapiErrorResponses,\n ...openapiErrorResponse404\n }\n})\n\nexport function registerV1SignUpWithPassword(app: OpenAPIHono) {\n return app.openapi(route, async (c) => {\n try {\n // try signing in to see if the user already exists\n return await trySignIn(c)\n } catch {\n // Ignore errors\n }\n\n const { username, email, password } = c.req.valid('json')\n await ensureUniqueNamespace(username, { label: 'username' })\n\n const salt = await genSalt()\n const hashedPassword = await hash(password, salt)\n\n // TODO: fail if username is taken\n const user = await upsertOrLinkUserAccount({\n partialAccount: {\n provider: 'password',\n accountId: email,\n password: hashedPassword\n },\n partialUser: {\n username,\n email\n }\n })\n\n const token = await createAuthToken(user)\n return c.json(parseZodSchema(authSessionResponseSchema, { token, user }))\n })\n}\n" }, { "path": "apps/api/src/api-v1/auth/utils.ts", "content": "import { DrizzleAuthStorage } from '@/lib/auth/drizzle-auth-storage'\n\nexport const authStorage = DrizzleAuthStorage()\n" }, { "path": "apps/api/src/api-v1/consumers/admin-activate-consumer.ts", "content": "import { assert, parseZodSchema } from '@agentic/platform-core'\nimport { createRoute, type OpenAPIHono } from '@hono/zod-openapi'\n\nimport type { AuthenticatedHonoEnv } from '@/lib/types'\nimport { db, eq, schema } from '@/db'\nimport { aclAdmin } from '@/lib/acl-admin'\nimport {\n openapiAuthenticatedSecuritySchemas,\n openapiErrorResponse404,\n openapiErrorResponse409,\n openapiErrorResponse410,\n openapiErrorResponses\n} from '@/lib/openapi-utils'\n\nimport { consumerIdParamsSchema } from './schemas'\nimport { setAdminCacheControlForConsumer } from './utils'\n\nconst route = createRoute({\n description:\n \"Activates a consumer signifying that at least one API call has been made using the consumer's API token. This method is idempotent and admin-only.\",\n tags: ['admin', 'consumers'],\n operationId: 'adminActivateConsumer',\n method: 'put',\n path: 'admin/consumers/{consumerId}/activate',\n security: openapiAuthenticatedSecuritySchemas,\n request: {\n params: consumerIdParamsSchema\n },\n responses: {\n 200: {\n description: 'An admin consumer object',\n content: {\n 'application/json': {\n schema: schema.consumerAdminSelectSchema\n }\n }\n },\n ...openapiErrorResponses,\n ...openapiErrorResponse404,\n ...openapiErrorResponse409,\n ...openapiErrorResponse410\n }\n})\n\nexport function registerV1AdminActivateConsumer(\n app: OpenAPIHono\n) {\n return app.openapi(route, async (c) => {\n const { consumerId } = c.req.valid('param')\n await aclAdmin(c)\n\n const [consumer] = await db\n .update(schema.consumers)\n .set({ activated: true })\n .where(eq(schema.consumers.id, consumerId))\n .returning()\n assert(consumer, 404, `Consumer not found \"${consumerId}\"`)\n\n setAdminCacheControlForConsumer(c, consumer)\n return c.json(parseZodSchema(schema.consumerAdminSelectSchema, consumer))\n })\n}\n" }, { "path": "apps/api/src/api-v1/consumers/admin-get-consumer-by-api-key.ts", "content": "import { assert, parseZodSchema } from '@agentic/platform-core'\nimport { createRoute, type OpenAPIHono } from '@hono/zod-openapi'\n\nimport type { AuthenticatedHonoEnv } from '@/lib/types'\nimport { db, eq, schema } from '@/db'\nimport { aclAdmin } from '@/lib/acl-admin'\nimport {\n openapiAuthenticatedSecuritySchemas,\n openapiErrorResponse404,\n openapiErrorResponses\n} from '@/lib/openapi-utils'\n\nimport { consumerApiKeyParamsSchema, populateConsumerSchema } from './schemas'\nimport { setAdminCacheControlForConsumer } from './utils'\n\nconst route = createRoute({\n description: 'Gets a consumer by API key. This route is admin-only.',\n tags: ['admin', 'consumers'],\n operationId: 'adminGetConsumerByApiKey',\n method: 'get',\n // TODO: is it wise to use a path param for the API key? especially wehn it'll\n // be cached in cloudflare's shared cache?\n path: 'admin/consumers/api-keys/{apiKey}',\n security: openapiAuthenticatedSecuritySchemas,\n request: {\n params: consumerApiKeyParamsSchema,\n query: populateConsumerSchema\n },\n responses: {\n 200: {\n description: 'An admin consumer object',\n content: {\n 'application/json': {\n schema: schema.consumerAdminSelectSchema\n }\n }\n },\n ...openapiErrorResponses,\n ...openapiErrorResponse404\n }\n})\n\nexport function registerV1AdminGetConsumerByApiKey(\n app: OpenAPIHono\n) {\n return app.openapi(route, async (c) => {\n const { apiKey } = c.req.valid('param')\n const { populate = [] } = c.req.valid('query')\n await aclAdmin(c)\n\n const consumer = await db.query.consumers.findFirst({\n where: eq(schema.consumers.token, apiKey),\n with: {\n ...Object.fromEntries(populate.map((field) => [field, true]))\n }\n })\n assert(consumer, 404, `API key not found \"${apiKey}\"`)\n\n setAdminCacheControlForConsumer(c, consumer)\n return c.json(parseZodSchema(schema.consumerAdminSelectSchema, consumer))\n })\n}\n" }, { "path": "apps/api/src/api-v1/consumers/create-billing-portal-session.ts", "content": "import { createRoute, type OpenAPIHono, z } from '@hono/zod-openapi'\n\nimport type { AuthenticatedHonoEnv } from '@/lib/types'\nimport { upsertStripeCustomer } from '@/lib/billing/upsert-stripe-customer'\nimport { env } from '@/lib/env'\nimport { stripe } from '@/lib/external/stripe'\nimport {\n openapiAuthenticatedSecuritySchemas,\n openapiErrorResponse404,\n openapiErrorResponse409,\n openapiErrorResponse410,\n openapiErrorResponses\n} from '@/lib/openapi-utils'\n\nconst route = createRoute({\n description:\n 'Creates a Stripe billing portal session for the authenticated user.',\n tags: ['consumers'],\n operationId: 'createBillingPortalSession',\n method: 'post',\n path: 'consumers/billing-portal',\n security: openapiAuthenticatedSecuritySchemas,\n responses: {\n 200: {\n description: 'A billing portal session URL',\n content: {\n 'application/json': {\n schema: z.object({\n url: z.string().url()\n })\n }\n }\n },\n ...openapiErrorResponses,\n ...openapiErrorResponse404,\n ...openapiErrorResponse409,\n ...openapiErrorResponse410\n }\n})\n\nexport function registerV1CreateBillingPortalSession(\n app: OpenAPIHono\n) {\n return app.openapi(route, async (c) => {\n const { stripeCustomer } = await upsertStripeCustomer(c)\n\n const portalSession = await stripe.billingPortal.sessions.create({\n customer: stripeCustomer.id,\n return_url: `${env.AGENTIC_WEB_BASE_URL}/app/consumers`\n })\n\n return c.json({ url: portalSession.url })\n })\n}\n" }, { "path": "apps/api/src/api-v1/consumers/create-consumer-billing-portal-session.ts", "content": "import { assert } from '@agentic/platform-core'\nimport { createRoute, type OpenAPIHono, z } from '@hono/zod-openapi'\n\nimport type { AuthenticatedHonoEnv } from '@/lib/types'\nimport { db, eq, schema } from '@/db'\nimport { acl } from '@/lib/acl'\nimport { env } from '@/lib/env'\nimport { stripe } from '@/lib/external/stripe'\nimport {\n openapiAuthenticatedSecuritySchemas,\n openapiErrorResponse404,\n openapiErrorResponse409,\n openapiErrorResponse410,\n openapiErrorResponses\n} from '@/lib/openapi-utils'\n\nimport { consumerIdParamsSchema } from './schemas'\n\nconst route = createRoute({\n description: 'Creates a Stripe billing portal session for a customer.',\n tags: ['consumers'],\n operationId: 'createConsumerBillingPortalSession',\n method: 'post',\n path: 'consumers/{consumerId}/billing-portal',\n security: openapiAuthenticatedSecuritySchemas,\n request: {\n params: consumerIdParamsSchema\n },\n responses: {\n 200: {\n description: 'A billing portal session URL',\n content: {\n 'application/json': {\n schema: z.object({\n url: z.string().url()\n })\n }\n }\n },\n ...openapiErrorResponses,\n ...openapiErrorResponse404,\n ...openapiErrorResponse409,\n ...openapiErrorResponse410\n }\n})\n\nexport function registerV1CreateConsumerBillingPortalSession(\n app: OpenAPIHono\n) {\n return app.openapi(route, async (c) => {\n const { consumerId } = c.req.valid('param')\n const consumer = await db.query.consumers.findFirst({\n where: eq(schema.consumers.id, consumerId)\n })\n assert(consumer, 404, `Consumer not found \"${consumerId}\"`)\n await acl(c, consumer, { label: 'Consumer' })\n\n const portalSession = await stripe.billingPortal.sessions.create({\n customer: consumer._stripeCustomerId,\n return_url: `${env.AGENTIC_WEB_BASE_URL}/app/consumers/${consumerId}`\n })\n\n return c.json({ url: portalSession.url })\n })\n}\n" }, { "path": "apps/api/src/api-v1/consumers/create-consumer-checkout-session.ts", "content": "import { parseZodSchema, pick } from '@agentic/platform-core'\nimport { createRoute, type OpenAPIHono, z } from '@hono/zod-openapi'\n\nimport type { AuthenticatedHonoEnv } from '@/lib/types'\nimport { schema } from '@/db'\nimport { upsertConsumerStripeCheckout } from '@/lib/consumers/upsert-consumer-stripe-checkout'\nimport {\n openapiAuthenticatedSecuritySchemas,\n openapiErrorResponse404,\n openapiErrorResponse409,\n openapiErrorResponse410,\n openapiErrorResponses\n} from '@/lib/openapi-utils'\n\nconst route = createRoute({\n description:\n 'Creates a Stripe checkout session for a consumer to modify their subscription to a project.',\n tags: ['consumers'],\n operationId: 'createConsumerCheckoutSession',\n method: 'post',\n path: 'consumers/checkout',\n security: openapiAuthenticatedSecuritySchemas,\n request: {\n body: {\n required: true,\n content: {\n 'application/json': {\n schema: schema.consumerInsertSchema\n }\n }\n }\n },\n responses: {\n 200: {\n description: 'A consumer object',\n content: {\n 'application/json': {\n schema: z.object({\n checkoutSession: z.object({\n id: z.string(),\n url: z.string().url()\n }),\n consumer: schema.consumerSelectSchema\n })\n }\n }\n },\n ...openapiErrorResponses,\n ...openapiErrorResponse404,\n ...openapiErrorResponse409,\n ...openapiErrorResponse410\n }\n})\n\nexport function registerV1CreateConsumerCheckoutSession(\n app: OpenAPIHono\n) {\n return app.openapi(route, async (c) => {\n const body = c.req.valid('json')\n const { checkoutSession, consumer } = await upsertConsumerStripeCheckout(\n c,\n body\n )\n\n return c.json({\n checkoutSession: pick(checkoutSession, 'id', 'url'),\n consumer: parseZodSchema(schema.consumerSelectSchema, consumer)\n })\n })\n}\n" }, { "path": "apps/api/src/api-v1/consumers/create-consumer.ts", "content": "import { parseZodSchema } from '@agentic/platform-core'\nimport { createRoute, type OpenAPIHono } from '@hono/zod-openapi'\n\nimport type { AuthenticatedHonoEnv } from '@/lib/types'\nimport { schema } from '@/db'\nimport { upsertConsumer } from '@/lib/consumers/upsert-consumer'\nimport {\n openapiAuthenticatedSecuritySchemas,\n openapiErrorResponse404,\n openapiErrorResponse409,\n openapiErrorResponse410,\n openapiErrorResponses\n} from '@/lib/openapi-utils'\n\nconst route = createRoute({\n description:\n \"Upserts a consumer by modifying a customer's subscription to a project.\",\n tags: ['consumers'],\n operationId: 'createConsumer',\n method: 'post',\n path: 'consumers',\n security: openapiAuthenticatedSecuritySchemas,\n request: {\n body: {\n required: true,\n content: {\n 'application/json': {\n schema: schema.consumerInsertSchema\n }\n }\n }\n },\n responses: {\n 200: {\n description: 'A consumer object',\n content: {\n 'application/json': {\n schema: schema.consumerSelectSchema\n }\n }\n },\n ...openapiErrorResponses,\n ...openapiErrorResponse404,\n ...openapiErrorResponse409,\n ...openapiErrorResponse410\n }\n})\n\nexport function registerV1CreateConsumer(\n app: OpenAPIHono\n) {\n return app.openapi(route, async (c) => {\n const body = c.req.valid('json')\n const consumer = await upsertConsumer(c, body)\n\n return c.json(parseZodSchema(schema.consumerSelectSchema, consumer))\n })\n}\n" }, { "path": "apps/api/src/api-v1/consumers/get-consumer-by-project-identifier.ts", "content": "import { assert, parseZodSchema } from '@agentic/platform-core'\nimport { createRoute, type OpenAPIHono } from '@hono/zod-openapi'\n\nimport type { AuthenticatedHonoEnv } from '@/lib/types'\nimport { and, db, eq, schema } from '@/db'\nimport { acl } from '@/lib/acl'\nimport { aclPublicProject } from '@/lib/acl-public-project'\nimport {\n openapiAuthenticatedSecuritySchemas,\n openapiErrorResponse404,\n openapiErrorResponses\n} from '@/lib/openapi-utils'\n\nimport { projectIdentifierAndPopulateConsumerSchema } from './schemas'\n\nconst route = createRoute({\n description:\n 'Gets a consumer for the authenticated user and the given project identifier.',\n tags: ['consumers'],\n operationId: 'getConsumerByProjectIdentifier',\n method: 'get',\n path: 'consumers/by-project-identifier',\n security: openapiAuthenticatedSecuritySchemas,\n request: {\n query: projectIdentifierAndPopulateConsumerSchema\n },\n responses: {\n 200: {\n description: 'A consumer object',\n content: {\n 'application/json': {\n schema: schema.consumerSelectSchema\n }\n }\n },\n ...openapiErrorResponses,\n ...openapiErrorResponse404\n }\n})\n\nexport function registerV1GetConsumerByProjectIdentifier(\n app: OpenAPIHono\n) {\n return app.openapi(route, async (c) => {\n const { projectIdentifier, populate = [] } = c.req.valid('query')\n const userId = c.get('userId')\n\n const project = await db.query.projects.findFirst({\n where: eq(schema.projects.identifier, projectIdentifier)\n })\n assert(project, 404, `Project not found \"${projectIdentifier}\"`)\n aclPublicProject(project)\n\n const consumer = await db.query.consumers.findFirst({\n where: and(\n eq(schema.consumers.userId, userId),\n eq(schema.consumers.projectId, project.id)\n ),\n with: {\n ...Object.fromEntries(populate.map((field) => [field, true]))\n }\n })\n assert(\n consumer,\n 404,\n `Consumer not found for user \"${userId}\" and project \"${projectIdentifier}\"`\n )\n await acl(c, consumer, { label: 'Consumer' })\n\n return c.json(parseZodSchema(schema.consumerSelectSchema, consumer))\n })\n}\n" }, { "path": "apps/api/src/api-v1/consumers/get-consumer.ts", "content": "import { assert, parseZodSchema } from '@agentic/platform-core'\nimport { createRoute, type OpenAPIHono } from '@hono/zod-openapi'\n\nimport type { AuthenticatedHonoEnv } from '@/lib/types'\nimport { db, eq, schema } from '@/db'\nimport { acl } from '@/lib/acl'\nimport {\n openapiAuthenticatedSecuritySchemas,\n openapiErrorResponse404,\n openapiErrorResponses\n} from '@/lib/openapi-utils'\n\nimport { consumerIdParamsSchema, populateConsumerSchema } from './schemas'\n\nconst route = createRoute({\n description: 'Gets a consumer by ID.',\n tags: ['consumers'],\n operationId: 'getConsumer',\n method: 'get',\n path: 'consumers/{consumerId}',\n security: openapiAuthenticatedSecuritySchemas,\n request: {\n params: consumerIdParamsSchema,\n query: populateConsumerSchema\n },\n responses: {\n 200: {\n description: 'A consumer object',\n content: {\n 'application/json': {\n schema: schema.consumerSelectSchema\n }\n }\n },\n ...openapiErrorResponses,\n ...openapiErrorResponse404\n }\n})\n\nexport function registerV1GetConsumer(app: OpenAPIHono) {\n return app.openapi(route, async (c) => {\n const { consumerId } = c.req.valid('param')\n const { populate = [] } = c.req.valid('query')\n\n const consumer = await db.query.consumers.findFirst({\n where: eq(schema.consumers.id, consumerId),\n with: {\n ...Object.fromEntries(populate.map((field) => [field, true]))\n }\n })\n assert(consumer, 404, `Consumer not found \"${consumerId}\"`)\n await acl(c, consumer, { label: 'Consumer' })\n\n return c.json(parseZodSchema(schema.consumerSelectSchema, consumer))\n })\n}\n" }, { "path": "apps/api/src/api-v1/consumers/list-consumers.ts", "content": "import { parseZodSchema } from '@agentic/platform-core'\nimport { createRoute, type OpenAPIHono, z } from '@hono/zod-openapi'\n\nimport type { AuthenticatedHonoEnv } from '@/lib/types'\nimport { db, eq, schema } from '@/db'\nimport { ensureAuthUser } from '@/lib/ensure-auth-user'\nimport {\n openapiAuthenticatedSecuritySchemas,\n openapiErrorResponse404,\n openapiErrorResponses\n} from '@/lib/openapi-utils'\n\nimport { paginationAndPopulateConsumerSchema } from './schemas'\n\nconst route = createRoute({\n description: 'Lists all of the customer subscriptions for the current user.',\n tags: ['consumers'],\n operationId: 'listConsumers',\n method: 'get',\n path: 'consumers',\n security: openapiAuthenticatedSecuritySchemas,\n request: {\n query: paginationAndPopulateConsumerSchema\n },\n responses: {\n 200: {\n description: 'A list of consumers',\n content: {\n 'application/json': {\n schema: z.array(schema.consumerSelectSchema)\n }\n }\n },\n ...openapiErrorResponses,\n ...openapiErrorResponse404\n }\n})\n\nexport function registerV1ListConsumers(\n app: OpenAPIHono\n) {\n return app.openapi(route, async (c) => {\n const {\n offset = 0,\n limit = 10,\n sort = 'desc',\n sortBy = 'createdAt',\n populate = []\n } = c.req.valid('query')\n\n const user = await ensureAuthUser(c)\n\n const consumers = await db.query.consumers.findMany({\n where: eq(schema.consumers.userId, user.id),\n with: {\n ...Object.fromEntries(populate.map((field) => [field, true]))\n },\n orderBy: (consumers, { asc, desc }) => [\n sort === 'desc' ? desc(consumers[sortBy]) : asc(consumers[sortBy])\n ],\n offset,\n limit\n })\n\n return c.json(\n parseZodSchema(z.array(schema.consumerSelectSchema), consumers)\n )\n })\n}\n" }, { "path": "apps/api/src/api-v1/consumers/list-project-consumers.ts", "content": "import { assert, parseZodSchema } from '@agentic/platform-core'\nimport { createRoute, type OpenAPIHono, z } from '@hono/zod-openapi'\n\nimport type { AuthenticatedHonoEnv } from '@/lib/types'\nimport { db, eq, schema } from '@/db'\nimport { acl } from '@/lib/acl'\nimport {\n openapiAuthenticatedSecuritySchemas,\n openapiErrorResponse404,\n openapiErrorResponses\n} from '@/lib/openapi-utils'\n\nimport { projectIdParamsSchema } from '../projects/schemas'\nimport { paginationAndPopulateConsumerSchema } from './schemas'\n\nconst route = createRoute({\n description: 'Lists all of the customers for a project.',\n tags: ['consumers'],\n operationId: 'listConsumersForProject',\n method: 'get',\n path: 'projects/{projectId}/consumers',\n security: openapiAuthenticatedSecuritySchemas,\n request: {\n params: projectIdParamsSchema,\n query: paginationAndPopulateConsumerSchema\n },\n responses: {\n 200: {\n description: 'A list of consumers subscribed to the given project',\n content: {\n 'application/json': {\n schema: z.array(schema.consumerSelectSchema)\n }\n }\n },\n ...openapiErrorResponses,\n ...openapiErrorResponse404\n }\n})\n\nexport function registerV1ListConsumersForProject(\n app: OpenAPIHono\n) {\n return app.openapi(route, async (c) => {\n const {\n offset = 0,\n limit = 10,\n sort = 'desc',\n sortBy = 'createdAt',\n populate = []\n } = c.req.valid('query')\n\n const { projectId } = c.req.valid('param')\n assert(projectId, 400, 'Project ID is required')\n\n const project = await db.query.projects.findFirst({\n where: eq(schema.projects.id, projectId)\n })\n assert(project, 404, `Project not found \"${projectId}\"`)\n await acl(c, project, { label: 'Project' })\n\n const consumers = await db.query.consumers.findMany({\n where: eq(schema.consumers.projectId, projectId),\n with: {\n ...Object.fromEntries(populate.map((field) => [field, true]))\n },\n orderBy: (consumers, { asc, desc }) => [\n sort === 'desc' ? desc(consumers[sortBy]) : asc(consumers[sortBy])\n ],\n offset,\n limit\n })\n\n return c.json(\n parseZodSchema(z.array(schema.consumerSelectSchema), consumers)\n )\n })\n}\n" }, { "path": "apps/api/src/api-v1/consumers/refresh-consumer-api-key.ts", "content": "import { assert, parseZodSchema } from '@agentic/platform-core'\nimport { createRoute, type OpenAPIHono } from '@hono/zod-openapi'\n\nimport type { AuthenticatedHonoEnv } from '@/lib/types'\nimport { db, eq, schema } from '@/db'\nimport { acl } from '@/lib/acl'\nimport { createConsumerApiKey } from '@/lib/create-consumer-api-key'\nimport {\n openapiAuthenticatedSecuritySchemas,\n openapiErrorResponse404,\n openapiErrorResponses\n} from '@/lib/openapi-utils'\n\nimport { consumerIdParamsSchema } from './schemas'\n\nconst route = createRoute({\n description: \"Refreshes a consumer's API key.\",\n tags: ['consumers'],\n operationId: 'refreshConsumerApiKey',\n method: 'post',\n path: 'consumers/{consumerId}/refresh-api-key',\n security: openapiAuthenticatedSecuritySchemas,\n request: {\n params: consumerIdParamsSchema\n },\n responses: {\n 200: {\n description: 'A consumer object',\n content: {\n 'application/json': {\n schema: schema.consumerSelectSchema\n }\n }\n },\n ...openapiErrorResponses,\n ...openapiErrorResponse404\n }\n})\n\nexport function registerV1RefreshConsumerApiKey(\n app: OpenAPIHono\n) {\n return app.openapi(route, async (c) => {\n const { consumerId } = c.req.valid('param')\n\n let consumer = await db.query.consumers.findFirst({\n where: eq(schema.consumers.id, consumerId)\n })\n assert(consumer, 404, 'Consumer not found')\n await acl(c, consumer, { label: 'Consumer' })\n\n // Update the consumer's API token\n ;[consumer] = await db\n .update(schema.consumers)\n .set({\n token: await createConsumerApiKey()\n })\n .where(eq(schema.consumers.id, consumer.id))\n .returning()\n assert(consumer, 500, 'Error updating consumer')\n\n return c.json(parseZodSchema(schema.consumerSelectSchema, consumer))\n })\n}\n" }, { "path": "apps/api/src/api-v1/consumers/schemas.ts", "content": "import { z } from '@hono/zod-openapi'\n\nimport {\n consumerIdSchema,\n consumerRelationsSchema,\n paginationSchema,\n projectIdentifierSchema\n} from '@/db'\n\nexport const consumerIdParamsSchema = z.object({\n consumerId: consumerIdSchema.openapi({\n param: {\n description: 'Consumer ID',\n name: 'consumerId',\n in: 'path'\n }\n })\n})\n\nexport const consumerApiKeyParamsSchema = z.object({\n apiKey: z\n .string()\n .nonempty()\n .openapi({\n param: {\n description: 'Consumer API key',\n name: 'apiKey',\n in: 'path'\n }\n })\n})\n\nexport const projectIdentifierQuerySchema = z.object({\n projectIdentifier: projectIdentifierSchema\n})\n\nexport const populateConsumerSchema = z.object({\n populate: z\n .union([consumerRelationsSchema, z.array(consumerRelationsSchema)])\n .default([])\n .transform((p) => (Array.isArray(p) ? p : [p]))\n .optional()\n})\n\nexport const paginationAndPopulateConsumerSchema = z.object({\n ...paginationSchema.shape,\n ...populateConsumerSchema.shape\n})\n\nexport const projectIdentifierAndPopulateConsumerSchema = z.object({\n ...projectIdentifierQuerySchema.shape,\n ...populateConsumerSchema.shape\n})\n" }, { "path": "apps/api/src/api-v1/consumers/update-consumer.ts", "content": "import { parseZodSchema } from '@agentic/platform-core'\nimport { createRoute, type OpenAPIHono } from '@hono/zod-openapi'\n\nimport type { AuthenticatedHonoEnv } from '@/lib/types'\nimport { schema } from '@/db'\nimport { upsertConsumer } from '@/lib/consumers/upsert-consumer'\nimport {\n openapiAuthenticatedSecuritySchemas,\n openapiErrorResponse404,\n openapiErrorResponse409,\n openapiErrorResponse410,\n openapiErrorResponses\n} from '@/lib/openapi-utils'\n\nimport { consumerIdParamsSchema } from './schemas'\n\nconst route = createRoute({\n description:\n \"Updates a consumer's subscription to a different deployment or pricing plan. Set `plan` to undefined to cancel the subscription.\",\n tags: ['consumers'],\n operationId: 'updateConsumer',\n method: 'post',\n path: 'consumers/{consumerId}',\n security: openapiAuthenticatedSecuritySchemas,\n request: {\n params: consumerIdParamsSchema,\n body: {\n required: true,\n content: {\n 'application/json': {\n schema: schema.consumerUpdateSchema\n }\n }\n }\n },\n responses: {\n 200: {\n description: 'A consumer object',\n content: {\n 'application/json': {\n schema: schema.consumerSelectSchema\n }\n }\n },\n ...openapiErrorResponses,\n ...openapiErrorResponse404,\n ...openapiErrorResponse409,\n ...openapiErrorResponse410\n }\n})\n\nexport function registerV1UpdateConsumer(\n app: OpenAPIHono\n) {\n return app.openapi(route, async (c) => {\n const { consumerId } = c.req.valid('param')\n const body = c.req.valid('json')\n\n const consumer = await upsertConsumer(c, {\n ...body,\n consumerId\n })\n\n return c.json(parseZodSchema(schema.consumerSelectSchema, consumer))\n })\n}\n" }, { "path": "apps/api/src/api-v1/consumers/utils.ts", "content": "import type { RawConsumer } from '@/db'\nimport type { AuthenticatedHonoContext } from '@/lib/types'\nimport { setPublicCacheControl } from '@/lib/cache-control'\nimport { env } from '@/lib/env'\n\nexport function setAdminCacheControlForConsumer(\n c: AuthenticatedHonoContext,\n consumer: RawConsumer\n) {\n if (\n consumer.plan === 'free' ||\n !consumer.activated ||\n !consumer.isStripeSubscriptionActive\n ) {\n // TODO: should we cache free-tier consumers for longer on prod?\n // We really don't want free tier customers to cause our backend API so\n // much traffic, but we'd also like for customers upgrading to a paid tier\n // to have a snappy, smooth experience – without having to wait for their\n // free tier subscription to expire from the cache.\n setPublicCacheControl(c.res, env.isProd ? '30s' : '10s')\n } else {\n // We don't want the gateway hitting our API too often, so cache active\n // customer subscriptions for longer in production\n setPublicCacheControl(c.res, env.isProd ? '30m' : '1m')\n }\n}\n" }, { "path": "apps/api/src/api-v1/deployments/admin-get-deployment-by-identifier.ts", "content": "import { assert, parseZodSchema } from '@agentic/platform-core'\nimport { createRoute, type OpenAPIHono } from '@hono/zod-openapi'\n\nimport type { AuthenticatedHonoEnv } from '@/lib/types'\nimport { schema } from '@/db'\nimport { acl } from '@/lib/acl'\nimport { aclAdmin } from '@/lib/acl-admin'\nimport { setPublicCacheControl } from '@/lib/cache-control'\nimport { tryGetDeploymentByIdentifier } from '@/lib/deployments/try-get-deployment-by-identifier'\nimport { env } from '@/lib/env'\nimport {\n openapiAuthenticatedSecuritySchemas,\n openapiErrorResponse404,\n openapiErrorResponses\n} from '@/lib/openapi-utils'\n\nimport { deploymentIdentifierAndPopulateSchema } from './schemas'\n\nconst route = createRoute({\n description:\n 'Gets a deployment by its public identifier. This route is admin-only.',\n tags: ['admin', 'deployments'],\n operationId: 'adminGetDeploymentByIdentifier',\n method: 'get',\n path: 'admin/deployments/by-identifier',\n security: openapiAuthenticatedSecuritySchemas,\n request: {\n query: deploymentIdentifierAndPopulateSchema\n },\n responses: {\n 200: {\n description: 'An admin deployment object',\n content: {\n 'application/json': {\n schema: schema.deploymentAdminSelectSchema\n }\n }\n },\n ...openapiErrorResponses,\n ...openapiErrorResponse404\n }\n})\n\nexport function registerV1AdminGetDeploymentByIdentifier(\n app: OpenAPIHono\n) {\n return app.openapi(route, async (c) => {\n const { deploymentIdentifier, populate = [] } = c.req.valid('query')\n await aclAdmin(c)\n\n const { project, ...deployment } = await tryGetDeploymentByIdentifier(c, {\n deploymentIdentifier,\n with: {\n ...Object.fromEntries(populate.map((field) => [field, true])),\n project: true\n }\n })\n assert(deployment, 404, `Deployment not found \"${deploymentIdentifier}\"`)\n assert(\n project,\n 404,\n `Project not found for deployment \"${deploymentIdentifier}\"`\n )\n await acl(c, deployment, { label: 'Deployment' })\n\n // TODO: ensure that the deployment's project is either public OR the\n // consumer has access to it?\n\n const hasPopulateProject = populate.includes('project')\n\n if (env.isProd) {\n // Published deployments are immutable, so cache them for longer in production\n setPublicCacheControl(c.res, deployment.published ? '1h' : '5m')\n } else {\n setPublicCacheControl(c.res, '10s')\n }\n\n return c.json(\n parseZodSchema(schema.deploymentAdminSelectSchema, {\n ...deployment,\n ...(hasPopulateProject ? { project } : {}),\n _secret: project._secret\n })\n )\n })\n}\n" }, { "path": "apps/api/src/api-v1/deployments/create-deployment.ts", "content": "import { resolveAgenticProjectConfig } from '@agentic/platform'\nimport { assert, parseZodSchema, sha256, slugify } from '@agentic/platform-core'\nimport {\n isValidDeploymentIdentifier,\n parseProjectIdentifier\n} from '@agentic/platform-validators'\nimport { createRoute, type OpenAPIHono } from '@hono/zod-openapi'\n\nimport type { AuthenticatedHonoEnv } from '@/lib/types'\nimport { db, eq, schema } from '@/db'\nimport { acl } from '@/lib/acl'\nimport { normalizeDeploymentVersion } from '@/lib/deployments/normalize-deployment-version'\nimport { publishDeployment } from '@/lib/deployments/publish-deployment'\nimport { ensureAuthUser } from '@/lib/ensure-auth-user'\nimport { env } from '@/lib/env'\nimport {\n openapiAuthenticatedSecuritySchemas,\n openapiErrorResponse404,\n openapiErrorResponse409,\n openapiErrorResponses\n} from '@/lib/openapi-utils'\nimport { uploadFileUrlToStorage } from '@/lib/storage'\n\nimport { createDeploymentQuerySchema } from './schemas'\n\nconst route = createRoute({\n description: 'Creates a new deployment within a project.',\n tags: ['deployments'],\n operationId: 'createDeployment',\n method: 'post',\n path: 'deployments',\n security: openapiAuthenticatedSecuritySchemas,\n request: {\n query: createDeploymentQuerySchema,\n body: {\n required: true,\n content: {\n 'application/json': {\n schema: schema.deploymentInsertSchema\n }\n }\n }\n },\n responses: {\n 200: {\n description: 'A deployment object',\n content: {\n 'application/json': {\n schema: schema.deploymentSelectSchema\n }\n }\n },\n ...openapiErrorResponses,\n ...openapiErrorResponse404,\n ...openapiErrorResponse409\n }\n})\n\nexport function registerV1CreateDeployment(\n app: OpenAPIHono\n) {\n return app.openapi(route, async (c) => {\n const user = await ensureAuthUser(c)\n const { publish } = c.req.valid('query')\n const body = c.req.valid('json')\n const teamMember = c.get('teamMember')\n const logger = c.get('logger')\n\n const inputNamespace = teamMember ? teamMember.teamSlug : user.username\n const slug = body.slug ?? slugify(body.name) // TODO: don't duplicate this logic here\n const inputProjectIdentifier = `@${inputNamespace}/${slug}`\n const { projectIdentifier, projectNamespace, projectSlug } =\n parseProjectIdentifier(inputProjectIdentifier)\n\n let project = await db.query.projects.findFirst({\n where: eq(schema.projects.identifier, projectIdentifier),\n with: {\n lastPublishedDeployment: true\n }\n })\n\n if (!project) {\n // Used for testing e2e fixtures in the development marketplace\n const isPrivate = !(\n (user.username === 'dev' && env.isDev) ||\n user.username === 'agentic'\n )\n\n // Used to simplify recreating the demo `@agentic/search` project during\n // development while we're frequently resetting the database\n const secret =\n projectIdentifier === '@dev/search' ||\n projectIdentifier === '@agentic/search'\n ? env.AGENTIC_SEARCH_PROXY_SECRET\n : await sha256()\n\n // Upsert the project if it doesn't already exist\n // The typecast is necessary here because we're not populating the\n // lastPublishedDeployment, but that's fine because it's a new project\n // so it will be empty anyway.\n project = (\n await db\n .insert(schema.projects)\n .values({\n name: body.name,\n identifier: projectIdentifier,\n namespace: projectNamespace,\n slug: projectSlug,\n userId: user.id,\n teamId: teamMember?.teamId,\n private: isPrivate,\n _secret: secret\n })\n .returning()\n )[0] as typeof project\n }\n\n assert(project, 404, `Project not found \"${projectIdentifier}\"`)\n await acl(c, project, { label: 'Project' })\n const projectId = project.id\n\n // TODO: investigate better short hash generation\n const hash = (await sha256()).slice(0, 8)\n const deploymentIdentifier = `${project.identifier}@${hash}`\n assert(\n isValidDeploymentIdentifier(deploymentIdentifier),\n 400,\n `Invalid deployment identifier \"${deploymentIdentifier}\"`\n )\n\n let { version } = body\n if (publish) {\n assert(\n version,\n 400,\n `Deployment \"version\" field is required to publish deployment \"${deploymentIdentifier}\"`\n )\n }\n\n if (version) {\n version = normalizeDeploymentVersion({\n deploymentIdentifier,\n project,\n version\n })\n }\n\n // Validate project config, including:\n // - pricing plans\n // - origin adapter config\n // - origin API base URL\n // - origin adapter OpenAPI or MCP specs\n // - tool definitions\n const agenticProjectConfig = await resolveAgenticProjectConfig(body, {\n label: `deployment \"${deploymentIdentifier}\"`,\n logger,\n uploadFileUrlToStorage: async (source) => {\n return uploadFileUrlToStorage(source, {\n prefix: projectIdentifier\n })\n }\n })\n\n // Create the deployment\n let [deployment] = await db\n .insert(schema.deployments)\n .values({\n iconUrl: user.image,\n ...agenticProjectConfig,\n identifier: deploymentIdentifier,\n hash,\n userId: user.id,\n teamId: teamMember?.teamId,\n projectId,\n version\n })\n .returning()\n assert(\n deployment,\n 500,\n `Failed to create deployment \"${deploymentIdentifier}\"`\n )\n\n // Update the project\n await db\n .update(schema.projects)\n .set({\n lastDeploymentId: deployment.id\n })\n .where(eq(schema.projects.id, projectId))\n\n if (publish) {\n deployment = await publishDeployment(c, {\n deployment,\n version: deployment.version!\n })\n }\n\n return c.json(parseZodSchema(schema.deploymentSelectSchema, deployment))\n })\n}\n" }, { "path": "apps/api/src/api-v1/deployments/get-deployment-by-identifier.ts", "content": "import { assert, parseZodSchema } from '@agentic/platform-core'\nimport { createRoute, type OpenAPIHono } from '@hono/zod-openapi'\n\nimport type { AuthenticatedHonoEnv } from '@/lib/types'\nimport { schema } from '@/db'\nimport { acl } from '@/lib/acl'\nimport { tryGetDeploymentByIdentifier } from '@/lib/deployments/try-get-deployment-by-identifier'\nimport {\n openapiAuthenticatedSecuritySchemas,\n openapiErrorResponse404,\n openapiErrorResponses\n} from '@/lib/openapi-utils'\n\nimport { deploymentIdentifierAndPopulateSchema } from './schemas'\n\nconst route = createRoute({\n description:\n 'Gets a deployment by its identifier (eg, \"@username/project-slug@latest\").',\n tags: ['deployments'],\n operationId: 'getDeploymentByIdentifier',\n method: 'get',\n path: 'deployments/by-identifier',\n security: openapiAuthenticatedSecuritySchemas,\n request: {\n query: deploymentIdentifierAndPopulateSchema\n },\n responses: {\n 200: {\n description: 'A deployment object',\n content: {\n 'application/json': {\n schema: schema.deploymentSelectSchema\n }\n }\n },\n ...openapiErrorResponses,\n ...openapiErrorResponse404\n }\n})\n\nexport function registerV1GetDeploymentByIdentifier(\n app: OpenAPIHono\n) {\n return app.openapi(route, async (c) => {\n const { deploymentIdentifier, populate = [] } = c.req.valid('query')\n\n const deployment = await tryGetDeploymentByIdentifier(c, {\n deploymentIdentifier,\n with: {\n ...Object.fromEntries(populate.map((field) => [field, true]))\n }\n })\n assert(deployment, 404, `Deployment not found \"${deploymentIdentifier}\"`)\n await acl(c, deployment, { label: 'Deployment' })\n\n return c.json(parseZodSchema(schema.deploymentSelectSchema, deployment))\n })\n}\n" }, { "path": "apps/api/src/api-v1/deployments/get-deployment.ts", "content": "import { assert, parseZodSchema } from '@agentic/platform-core'\nimport { createRoute, type OpenAPIHono } from '@hono/zod-openapi'\n\nimport type { AuthenticatedHonoEnv } from '@/lib/types'\nimport { schema } from '@/db'\nimport { acl } from '@/lib/acl'\nimport { getDeploymentById } from '@/lib/deployments/get-deployment-by-id'\nimport {\n openapiAuthenticatedSecuritySchemas,\n openapiErrorResponse404,\n openapiErrorResponses\n} from '@/lib/openapi-utils'\n\nimport { deploymentIdParamsSchema, populateDeploymentSchema } from './schemas'\n\nconst route = createRoute({\n description: 'Gets a deployment by its ID',\n tags: ['deployments'],\n operationId: 'getDeployment',\n method: 'get',\n path: 'deployments/{deploymentId}',\n security: openapiAuthenticatedSecuritySchemas,\n request: {\n params: deploymentIdParamsSchema,\n query: populateDeploymentSchema\n },\n responses: {\n 200: {\n description: 'A deployment object',\n content: {\n 'application/json': {\n schema: schema.deploymentSelectSchema\n }\n }\n },\n ...openapiErrorResponses,\n ...openapiErrorResponse404\n }\n})\n\nexport function registerV1GetDeployment(\n app: OpenAPIHono\n) {\n return app.openapi(route, async (c) => {\n const { deploymentId } = c.req.valid('param')\n const { populate = [] } = c.req.valid('query')\n\n const deployment = await getDeploymentById({\n deploymentId,\n with: {\n ...Object.fromEntries(populate.map((field) => [field, true]))\n }\n })\n assert(deployment, 404, `Deployment not found \"${deploymentId}\"`)\n await acl(c, deployment, { label: 'Deployment' })\n\n return c.json(parseZodSchema(schema.deploymentSelectSchema, deployment))\n })\n}\n" }, { "path": "apps/api/src/api-v1/deployments/get-public-deployment-by-identifier.ts", "content": "import type { DefaultHonoEnv } from '@agentic/platform-hono'\nimport { assert, parseZodSchema } from '@agentic/platform-core'\nimport { createRoute, type OpenAPIHono } from '@hono/zod-openapi'\n\nimport { schema } from '@/db'\nimport { aclPublicProject } from '@/lib/acl-public-project'\nimport { setPublicCacheControl } from '@/lib/cache-control'\nimport { tryGetDeploymentByIdentifier } from '@/lib/deployments/try-get-deployment-by-identifier'\nimport {\n openapiAuthenticatedSecuritySchemas,\n openapiErrorResponse404,\n openapiErrorResponses\n} from '@/lib/openapi-utils'\n\nimport { deploymentIdentifierAndPopulateSchema } from './schemas'\n\nconst route = createRoute({\n description:\n 'Gets a public deployment by its identifier (eg, \"@username/project-slug@latest\").',\n tags: ['deployments'],\n operationId: 'getPublicDeploymentByIdentifier',\n method: 'get',\n path: 'deployments/public/by-identifier',\n security: openapiAuthenticatedSecuritySchemas,\n request: {\n query: deploymentIdentifierAndPopulateSchema\n },\n responses: {\n 200: {\n description: 'A deployment object',\n content: {\n 'application/json': {\n schema: schema.deploymentSelectSchema\n }\n }\n },\n ...openapiErrorResponses,\n ...openapiErrorResponse404\n }\n})\n\nexport function registerV1GetPublicDeploymentByIdentifier(\n app: OpenAPIHono\n) {\n return app.openapi(route, async (c) => {\n const { deploymentIdentifier, populate = [] } = c.req.valid('query')\n\n const deployment = await tryGetDeploymentByIdentifier(c, {\n deploymentIdentifier,\n with: {\n project: true,\n ...Object.fromEntries(populate.map((field) => [field, true]))\n }\n })\n assert(deployment, 404, `Deployment not found \"${deploymentIdentifier}\"`)\n assert(\n deployment.project,\n 404,\n `Project not found for deployment \"${deploymentIdentifier}\"`\n )\n aclPublicProject(deployment.project!)\n\n if (deployment.published) {\n // Note that published deployments should be immutable\n setPublicCacheControl(c.res, '1m')\n } else {\n setPublicCacheControl(c.res, '10s')\n }\n\n return c.json(parseZodSchema(schema.deploymentSelectSchema, deployment))\n })\n}\n" }, { "path": "apps/api/src/api-v1/deployments/list-deployments.ts", "content": "import { parseZodSchema } from '@agentic/platform-core'\nimport { createRoute, type OpenAPIHono, z } from '@hono/zod-openapi'\n\nimport type { AuthenticatedHonoEnv } from '@/lib/types'\nimport { and, db, eq, schema } from '@/db'\nimport { acl } from '@/lib/acl'\nimport { ensureAuthUser } from '@/lib/ensure-auth-user'\nimport {\n openapiAuthenticatedSecuritySchemas,\n openapiErrorResponses\n} from '@/lib/openapi-utils'\nimport { tryGetProjectByIdentifier } from '@/lib/projects/try-get-project-by-identifier'\n\nimport { paginationAndPopulateAndFilterDeploymentSchema } from './schemas'\n\nconst route = createRoute({\n description:\n 'Lists deployments the user or team has access to, optionally filtering by project.',\n tags: ['deployments'],\n operationId: 'listDeployments',\n method: 'get',\n path: 'deployments',\n security: openapiAuthenticatedSecuritySchemas,\n request: {\n query: paginationAndPopulateAndFilterDeploymentSchema\n },\n responses: {\n 200: {\n description: 'A list of deployments',\n content: {\n 'application/json': {\n schema: z.array(schema.deploymentSelectSchema)\n }\n }\n },\n ...openapiErrorResponses\n }\n})\n\nexport function registerV1ListDeployments(\n app: OpenAPIHono\n) {\n return app.openapi(route, async (c) => {\n const {\n offset = 0,\n limit = 10,\n sort = 'desc',\n sortBy = 'createdAt',\n populate = [],\n projectIdentifier,\n deploymentIdentifier\n } = c.req.valid('query')\n\n const userId = c.get('userId')\n const teamMember = c.get('teamMember')\n const user = await ensureAuthUser(c)\n const isAdmin = user.role === 'admin'\n\n let projectId: string | undefined\n\n if (projectIdentifier) {\n const project = await tryGetProjectByIdentifier(c, {\n projectIdentifier\n })\n await acl(c, project, { label: 'Project' })\n projectId = project.id\n }\n\n const deployments = await db.query.deployments.findMany({\n where: and(\n isAdmin\n ? undefined\n : teamMember\n ? eq(schema.deployments.teamId, teamMember.teamId)\n : eq(schema.deployments.userId, userId),\n projectId ? eq(schema.deployments.projectId, projectId) : undefined,\n deploymentIdentifier\n ? eq(schema.deployments.identifier, deploymentIdentifier)\n : undefined\n ),\n with: {\n ...Object.fromEntries(populate.map((field) => [field, true]))\n },\n orderBy: (deployments, { asc, desc }) => [\n sort === 'desc' ? desc(deployments[sortBy]) : asc(deployments[sortBy])\n ],\n offset,\n limit\n })\n\n return c.json(\n parseZodSchema(z.array(schema.deploymentSelectSchema), deployments)\n )\n })\n}\n" }, { "path": "apps/api/src/api-v1/deployments/publish-deployment.ts", "content": "import { assert, parseZodSchema } from '@agentic/platform-core'\nimport { createRoute, type OpenAPIHono } from '@hono/zod-openapi'\n\nimport type { AuthenticatedHonoEnv } from '@/lib/types'\nimport { schema } from '@/db'\nimport { acl } from '@/lib/acl'\nimport { getDeploymentById } from '@/lib/deployments/get-deployment-by-id'\nimport { publishDeployment } from '@/lib/deployments/publish-deployment'\nimport {\n openapiAuthenticatedSecuritySchemas,\n openapiErrorResponse404,\n openapiErrorResponses\n} from '@/lib/openapi-utils'\n\nimport { deploymentIdParamsSchema } from './schemas'\n\nconst route = createRoute({\n description: 'Publishes a deployment.',\n tags: ['deployments'],\n operationId: 'publishDeployment',\n method: 'post',\n path: 'deployments/{deploymentId}/publish',\n security: openapiAuthenticatedSecuritySchemas,\n request: {\n params: deploymentIdParamsSchema,\n body: {\n required: true,\n content: {\n 'application/json': {\n schema: schema.deploymentPublishSchema\n }\n }\n }\n },\n responses: {\n 200: {\n description: 'A deployment object',\n content: {\n 'application/json': {\n schema: schema.deploymentSelectSchema\n }\n }\n },\n ...openapiErrorResponses,\n ...openapiErrorResponse404\n }\n})\n\nexport function registerV1PublishDeployment(\n app: OpenAPIHono\n) {\n return app.openapi(route, async (c) => {\n const { deploymentId } = c.req.valid('param')\n const { version } = c.req.valid('json')\n\n // First ensure the deployment exists and the user has access to it\n const deployment = await getDeploymentById({ deploymentId })\n assert(deployment, 404, `Deployment not found \"${deploymentId}\"`)\n await acl(c, deployment, { label: 'Deployment' })\n\n const publishedDeployment = await publishDeployment(c, {\n deployment,\n version\n })\n\n return c.json(\n parseZodSchema(schema.deploymentSelectSchema, publishedDeployment)\n )\n })\n}\n" }, { "path": "apps/api/src/api-v1/deployments/schemas.ts", "content": "import { z } from '@hono/zod-openapi'\n\nimport {\n deploymentIdentifierSchema,\n deploymentIdSchema,\n deploymentRelationsSchema,\n paginationSchema,\n projectIdentifierSchema\n} from '@/db'\n\nexport const deploymentIdParamsSchema = z.object({\n deploymentId: deploymentIdSchema.openapi({\n param: {\n description: 'deployment ID',\n name: 'deploymentId',\n in: 'path'\n }\n })\n})\n\nexport const createDeploymentQuerySchema = z.object({\n publish: z\n .union([z.literal('true'), z.literal('false')])\n .default('false')\n .transform((p) => p === 'true')\n})\n\nexport const filterDeploymentSchema = z.object({\n projectIdentifier: projectIdentifierSchema.optional(),\n deploymentIdentifier: deploymentIdentifierSchema.optional()\n})\n\nexport const populateDeploymentSchema = z.object({\n populate: z\n .union([deploymentRelationsSchema, z.array(deploymentRelationsSchema)])\n .default([])\n .transform((p) => (Array.isArray(p) ? p : [p]))\n .optional()\n})\n\nexport const deploymentIdentifierQuerySchema = z.object({\n deploymentIdentifier: deploymentIdentifierSchema\n})\n\nexport const deploymentIdentifierAndPopulateSchema = z.object({\n ...populateDeploymentSchema.shape,\n ...deploymentIdentifierQuerySchema.shape\n})\n\nexport const paginationAndPopulateAndFilterDeploymentSchema = z.object({\n ...paginationSchema.shape,\n ...populateDeploymentSchema.shape,\n ...filterDeploymentSchema.shape\n})\n" }, { "path": "apps/api/src/api-v1/deployments/update-deployment.ts", "content": "import { assert, parseZodSchema } from '@agentic/platform-core'\nimport { createRoute, type OpenAPIHono } from '@hono/zod-openapi'\n\nimport type { AuthenticatedHonoEnv } from '@/lib/types'\nimport { db, eq, schema } from '@/db'\nimport { acl } from '@/lib/acl'\nimport { getDeploymentById } from '@/lib/deployments/get-deployment-by-id'\nimport {\n openapiAuthenticatedSecuritySchemas,\n openapiErrorResponse404,\n openapiErrorResponses\n} from '@/lib/openapi-utils'\n\nimport { deploymentIdParamsSchema } from './schemas'\n\nconst route = createRoute({\n description: 'Updates a deployment.',\n tags: ['deployments'],\n operationId: 'updateDeployment',\n method: 'post',\n path: 'deployments/{deploymentId}',\n security: openapiAuthenticatedSecuritySchemas,\n request: {\n params: deploymentIdParamsSchema,\n body: {\n required: true,\n content: {\n 'application/json': {\n schema: schema.deploymentUpdateSchema\n }\n }\n }\n },\n responses: {\n 200: {\n description: 'A deployment object',\n content: {\n 'application/json': {\n schema: schema.deploymentSelectSchema\n }\n }\n },\n ...openapiErrorResponses,\n ...openapiErrorResponse404\n }\n})\n\nexport function registerV1UpdateDeployment(\n app: OpenAPIHono\n) {\n return app.openapi(route, async (c) => {\n const { deploymentId } = c.req.valid('param')\n const body = c.req.valid('json')\n\n // First ensure the deployment exists and the user has access to it\n let deployment = await getDeploymentById({ deploymentId })\n assert(deployment, 404, `Deployment not found \"${deploymentId}\"`)\n await acl(c, deployment, { label: 'Deployment' })\n\n // Update the deployment\n ;[deployment] = await db\n .update(schema.deployments)\n .set(body)\n .where(eq(schema.deployments.id, deploymentId))\n .returning()\n assert(deployment, 500, `Failed to update deployment \"${deploymentId}\"`)\n\n return c.json(parseZodSchema(schema.deploymentSelectSchema, deployment))\n })\n}\n" }, { "path": "apps/api/src/api-v1/health-check.ts", "content": "import { createRoute, z } from '@hono/zod-openapi'\n\nimport type { HonoApp } from '@/lib/types'\n\nconst route = createRoute({\n description: 'Health check endpoint.',\n operationId: 'healthCheck',\n method: 'get',\n path: 'health',\n responses: {\n 200: {\n description: 'OK',\n content: {\n 'application/json': {\n schema: z.object({\n status: z.string()\n })\n }\n }\n }\n }\n})\n\nexport function registerHealthCheck(app: HonoApp) {\n return app.openapi(route, async (c) => {\n return c.json({ status: 'ok' })\n })\n}\n" }, { "path": "apps/api/src/api-v1/index.ts", "content": "import type { DefaultHonoEnv } from '@agentic/platform-hono'\nimport { OpenAPIHono } from '@hono/zod-openapi'\n\nimport type { AuthenticatedHonoEnv } from '@/lib/types'\nimport * as middleware from '@/lib/middleware'\nimport { defaultHook, registerOpenAPIErrorResponses } from '@/lib/openapi-utils'\n\nimport { registerV1GitHubOAuthCallback } from './auth/github-callback'\nimport { registerV1GitHubOAuthExchange } from './auth/github-exchange'\nimport { registerV1GitHubOAuthInitFlow } from './auth/github-init'\nimport { registerV1SignInWithPassword } from './auth/sign-in-with-password'\nimport { registerV1SignUpWithPassword } from './auth/sign-up-with-password'\nimport { registerV1AdminActivateConsumer } from './consumers/admin-activate-consumer'\nimport { registerV1AdminGetConsumerByApiKey } from './consumers/admin-get-consumer-by-api-key'\nimport { registerV1CreateBillingPortalSession } from './consumers/create-billing-portal-session'\nimport { registerV1CreateConsumer } from './consumers/create-consumer'\nimport { registerV1CreateConsumerBillingPortalSession } from './consumers/create-consumer-billing-portal-session'\nimport { registerV1CreateConsumerCheckoutSession } from './consumers/create-consumer-checkout-session'\nimport { registerV1GetConsumer } from './consumers/get-consumer'\nimport { registerV1GetConsumerByProjectIdentifier } from './consumers/get-consumer-by-project-identifier'\nimport { registerV1ListConsumers } from './consumers/list-consumers'\nimport { registerV1ListConsumersForProject } from './consumers/list-project-consumers'\nimport { registerV1RefreshConsumerApiKey } from './consumers/refresh-consumer-api-key'\nimport { registerV1UpdateConsumer } from './consumers/update-consumer'\nimport { registerV1AdminGetDeploymentByIdentifier } from './deployments/admin-get-deployment-by-identifier'\nimport { registerV1CreateDeployment } from './deployments/create-deployment'\nimport { registerV1GetDeployment } from './deployments/get-deployment'\nimport { registerV1GetDeploymentByIdentifier } from './deployments/get-deployment-by-identifier'\nimport { registerV1GetPublicDeploymentByIdentifier } from './deployments/get-public-deployment-by-identifier'\nimport { registerV1ListDeployments } from './deployments/list-deployments'\nimport { registerV1PublishDeployment } from './deployments/publish-deployment'\nimport { registerV1UpdateDeployment } from './deployments/update-deployment'\nimport { registerHealthCheck } from './health-check'\nimport { registerV1CreateProject } from './projects/create-project'\nimport { registerV1GetProject } from './projects/get-project'\nimport { registerV1GetProjectByIdentifier } from './projects/get-project-by-identifier'\nimport { registerV1GetPublicProject } from './projects/get-public-project'\nimport { registerV1GetPublicProjectByIdentifier } from './projects/get-public-project-by-identifier'\nimport { registerV1ListProjects } from './projects/list-projects'\nimport { registerV1ListPublicProjects } from './projects/list-public-projects'\nimport { registerV1UpdateProject } from './projects/update-project'\nimport { registerV1GetSignedStorageUploadUrl } from './storage/get-signed-storage-upload-url'\nimport { registerV1CreateTeam } from './teams/create-team'\nimport { registerV1DeleteTeam } from './teams/delete-team'\nimport { registerV1GetTeam } from './teams/get-team'\nimport { registerV1ListTeams } from './teams/list-teams'\nimport { registerV1CreateTeamMember } from './teams/members/create-team-member'\nimport { registerV1DeleteTeamMember } from './teams/members/delete-team-member'\nimport { registerV1UpdateTeamMember } from './teams/members/update-team-member'\nimport { registerV1UpdateTeam } from './teams/update-team'\nimport { registerV1GetUser } from './users/get-user'\nimport { registerV1UpdateUser } from './users/update-user'\nimport { registerV1StripeWebhook } from './webhooks/stripe-webhook'\n\n// Note that the order of some of these routes is important because of\n// wildcards, so be careful when updating them or adding new routes.\n\nexport const apiV1 = new OpenAPIHono({ defaultHook })\n\napiV1.openAPIRegistry.registerComponent('securitySchemes', 'Bearer', {\n type: 'http',\n scheme: 'bearer',\n bearerFormat: 'JWT'\n})\n\nregisterOpenAPIErrorResponses(apiV1)\n\n// Public routes\nconst publicRouter = new OpenAPIHono({ defaultHook })\n\n// Private, authenticated routes\nconst privateRouter = new OpenAPIHono({ defaultHook })\n\nregisterHealthCheck(publicRouter)\n\n// Auth\nregisterV1SignInWithPassword(publicRouter)\nregisterV1SignUpWithPassword(publicRouter)\nregisterV1GitHubOAuthExchange(publicRouter)\nregisterV1GitHubOAuthInitFlow(publicRouter)\nregisterV1GitHubOAuthCallback(publicRouter)\n\n// Users\nregisterV1GetUser(privateRouter)\nregisterV1UpdateUser(privateRouter)\n\n// Teams\nregisterV1CreateTeam(privateRouter)\nregisterV1ListTeams(privateRouter)\nregisterV1GetTeam(privateRouter)\nregisterV1DeleteTeam(privateRouter)\nregisterV1UpdateTeam(privateRouter)\n\n// Team members\nregisterV1CreateTeamMember(privateRouter)\nregisterV1UpdateTeamMember(privateRouter)\nregisterV1DeleteTeamMember(privateRouter)\n\n// Storage\nregisterV1GetSignedStorageUploadUrl(privateRouter)\n\n// Public projects\nregisterV1ListPublicProjects(publicRouter)\nregisterV1GetPublicProjectByIdentifier(publicRouter) // must be before `registerV1GetPublicProject`\nregisterV1GetPublicProject(publicRouter)\n\n// Private projects\nregisterV1CreateProject(privateRouter)\nregisterV1ListProjects(privateRouter)\nregisterV1GetProjectByIdentifier(privateRouter) // must be before `registerV1GetProject`\nregisterV1GetProject(privateRouter)\nregisterV1UpdateProject(privateRouter)\n\n// Consumers\nregisterV1GetConsumerByProjectIdentifier(privateRouter) // must be before `registerV1GetConsumer`\nregisterV1CreateBillingPortalSession(privateRouter)\nregisterV1GetConsumer(privateRouter)\nregisterV1CreateConsumer(privateRouter)\nregisterV1CreateConsumerCheckoutSession(privateRouter)\nregisterV1CreateConsumerBillingPortalSession(privateRouter)\nregisterV1UpdateConsumer(privateRouter)\nregisterV1RefreshConsumerApiKey(privateRouter)\nregisterV1ListConsumers(privateRouter)\nregisterV1ListConsumersForProject(privateRouter)\n\n// Deployments\nregisterV1GetPublicDeploymentByIdentifier(publicRouter)\nregisterV1GetDeploymentByIdentifier(privateRouter) // must be before `registerV1GetDeployment`\nregisterV1GetDeployment(privateRouter)\nregisterV1CreateDeployment(privateRouter)\nregisterV1UpdateDeployment(privateRouter)\nregisterV1ListDeployments(privateRouter)\nregisterV1PublishDeployment(privateRouter)\n\n// Internal admin routes\nregisterV1AdminGetConsumerByApiKey(privateRouter)\nregisterV1AdminActivateConsumer(privateRouter)\nregisterV1AdminGetDeploymentByIdentifier(privateRouter)\n\n// Webhook event handlers\nregisterV1StripeWebhook(publicRouter)\n\n// Setup routes and middleware\napiV1.route('/', publicRouter)\napiV1.use(middleware.authenticate)\napiV1.use(middleware.team)\napiV1.use(middleware.me)\napiV1.route('/', privateRouter)\n\n// API route types to be used by Hono's RPC client.\n// Should include all routes except for internal and admin routes.\n// NOTE: Removing for now because Hono's RPC client / types are clunky and slow.\n// export type ApiRoutes =\n// | ReturnType\n" }, { "path": "apps/api/src/api-v1/projects/create-project.ts", "content": "import { assert, parseZodSchema, sha256 } from '@agentic/platform-core'\nimport { parseProjectIdentifier } from '@agentic/platform-validators'\nimport { createRoute, type OpenAPIHono } from '@hono/zod-openapi'\n\nimport type { AuthenticatedHonoEnv } from '@/lib/types'\nimport { db, schema } from '@/db'\nimport { ensureAuthUser } from '@/lib/ensure-auth-user'\nimport { env } from '@/lib/env'\nimport {\n openapiAuthenticatedSecuritySchemas,\n openapiErrorResponses\n} from '@/lib/openapi-utils'\n\nconst route = createRoute({\n description: 'Creates a new project.',\n tags: ['projects'],\n operationId: 'createProject',\n method: 'post',\n path: 'projects',\n security: openapiAuthenticatedSecuritySchemas,\n request: {\n body: {\n required: true,\n content: {\n 'application/json': {\n schema: schema.projectInsertSchema\n }\n }\n }\n },\n responses: {\n 200: {\n description: 'The created project',\n content: {\n 'application/json': {\n schema: schema.projectSelectSchema\n }\n }\n },\n ...openapiErrorResponses\n }\n})\n\nexport function registerV1CreateProject(\n app: OpenAPIHono\n) {\n return app.openapi(route, async (c) => {\n const body = c.req.valid('json')\n const user = await ensureAuthUser(c)\n\n // if (body.teamId) {\n // await aclTeamMember(c, { teamId: body.teamId })\n // }\n\n const teamMember = c.get('teamMember')\n const namespace = teamMember ? teamMember.teamSlug : user.username\n const identifier = `@${namespace}/${body.slug}`\n const { projectIdentifier, projectNamespace, projectSlug } =\n parseProjectIdentifier(identifier)\n\n // Used for testing e2e fixtures in the development marketplace\n const isPrivate = !(\n (user.username === 'dev' && env.isDev) ||\n user.username === 'agentic'\n )\n\n // Used to simplify recreating the demo `@agentic/search` project during\n // development while we're frequently resetting the database\n const secret =\n projectIdentifier === '@dev/search' ||\n projectIdentifier === '@agentic/search'\n ? env.AGENTIC_SEARCH_PROXY_SECRET\n : await sha256()\n\n const [project] = await db\n .insert(schema.projects)\n .values({\n ...body,\n identifier: projectIdentifier,\n namespace: projectNamespace,\n slug: projectSlug,\n teamId: teamMember?.teamId,\n userId: user.id,\n private: isPrivate,\n _secret: secret\n })\n .returning()\n assert(project, 500, `Failed to create project \"${body.name}\"`)\n\n return c.json(parseZodSchema(schema.projectSelectSchema, project))\n })\n}\n" }, { "path": "apps/api/src/api-v1/projects/get-project-by-identifier.ts", "content": "import { assert, parseZodSchema } from '@agentic/platform-core'\nimport { createRoute, type OpenAPIHono } from '@hono/zod-openapi'\n\nimport type { AuthenticatedHonoEnv } from '@/lib/types'\nimport { db, eq, schema } from '@/db'\nimport { acl } from '@/lib/acl'\nimport {\n openapiAuthenticatedSecuritySchemas,\n openapiErrorResponse404,\n openapiErrorResponses\n} from '@/lib/openapi-utils'\n\nimport { projectIdentifierAndPopulateSchema } from './schemas'\n\nconst route = createRoute({\n description:\n 'Gets a project by its public identifier (eg, \"@username/project-slug\").',\n tags: ['projects'],\n operationId: 'getProjectByIdentifier',\n method: 'get',\n path: 'projects/by-identifier',\n security: openapiAuthenticatedSecuritySchemas,\n request: {\n query: projectIdentifierAndPopulateSchema\n },\n responses: {\n 200: {\n description: 'A project',\n content: {\n 'application/json': {\n schema: schema.projectSelectSchema\n }\n }\n },\n ...openapiErrorResponses,\n ...openapiErrorResponse404\n }\n})\n\nexport function registerV1GetProjectByIdentifier(\n app: OpenAPIHono\n) {\n return app.openapi(route, async (c) => {\n const { projectIdentifier, populate = [] } = c.req.valid('query')\n\n const project = await db.query.projects.findFirst({\n where: eq(schema.projects.identifier, projectIdentifier),\n with: {\n lastPublishedDeployment: true,\n ...Object.fromEntries(populate.map((field) => [field, true]))\n }\n })\n assert(project, 404, `Project not found \"${projectIdentifier}\"`)\n await acl(c, project, { label: 'Project' })\n\n return c.json(parseZodSchema(schema.projectSelectSchema, project))\n })\n}\n" }, { "path": "apps/api/src/api-v1/projects/get-project.ts", "content": "import { assert, parseZodSchema } from '@agentic/platform-core'\nimport { createRoute, type OpenAPIHono } from '@hono/zod-openapi'\n\nimport type { AuthenticatedHonoEnv } from '@/lib/types'\nimport { db, eq, schema } from '@/db'\nimport { acl } from '@/lib/acl'\nimport {\n openapiAuthenticatedSecuritySchemas,\n openapiErrorResponse404,\n openapiErrorResponses\n} from '@/lib/openapi-utils'\n\nimport { populateProjectSchema, projectIdParamsSchema } from './schemas'\n\nconst route = createRoute({\n description: 'Gets a project by ID.',\n tags: ['projects'],\n operationId: 'getProject',\n method: 'get',\n path: 'projects/{projectId}',\n security: openapiAuthenticatedSecuritySchemas,\n request: {\n params: projectIdParamsSchema,\n query: populateProjectSchema\n },\n responses: {\n 200: {\n description: 'A project',\n content: {\n 'application/json': {\n schema: schema.projectSelectSchema\n }\n }\n },\n ...openapiErrorResponses,\n ...openapiErrorResponse404\n }\n})\n\nexport function registerV1GetProject(app: OpenAPIHono) {\n return app.openapi(route, async (c) => {\n const { projectId } = c.req.valid('param')\n const { populate = [] } = c.req.valid('query')\n\n const project = await db.query.projects.findFirst({\n where: eq(schema.projects.id, projectId),\n with: {\n lastPublishedDeployment: true,\n ...Object.fromEntries(populate.map((field) => [field, true]))\n }\n })\n assert(project, 404, `Project not found \"${projectId}\"`)\n await acl(c, project, { label: 'Project' })\n\n return c.json(parseZodSchema(schema.projectSelectSchema, project))\n })\n}\n" }, { "path": "apps/api/src/api-v1/projects/get-public-project-by-identifier.ts", "content": "import type { DefaultHonoEnv } from '@agentic/platform-hono'\nimport { parseZodSchema } from '@agentic/platform-core'\nimport { createRoute, type OpenAPIHono } from '@hono/zod-openapi'\n\nimport { db, eq, schema } from '@/db'\nimport { aclPublicProject } from '@/lib/acl-public-project'\nimport { setPublicCacheControl } from '@/lib/cache-control'\nimport { env } from '@/lib/env'\nimport {\n openapiAuthenticatedSecuritySchemas,\n openapiErrorResponse404,\n openapiErrorResponses\n} from '@/lib/openapi-utils'\n\nimport { projectIdentifierAndPopulateSchema } from './schemas'\n\nconst route = createRoute({\n description:\n 'Gets a public project by its public identifier (eg, \"@username/project-slug\").',\n tags: ['projects'],\n operationId: 'getPublicProjectByIdentifier',\n method: 'get',\n path: 'projects/public/by-identifier',\n security: openapiAuthenticatedSecuritySchemas,\n request: {\n query: projectIdentifierAndPopulateSchema\n },\n responses: {\n 200: {\n description: 'A project',\n content: {\n 'application/json': {\n schema: schema.projectSelectSchema\n }\n }\n },\n ...openapiErrorResponses,\n ...openapiErrorResponse404\n }\n})\n\nexport function registerV1GetPublicProjectByIdentifier(\n app: OpenAPIHono\n) {\n return app.openapi(route, async (c) => {\n const { projectIdentifier, populate = [] } = c.req.valid('query')\n\n const project = await db.query.projects.findFirst({\n where: eq(schema.projects.identifier, projectIdentifier),\n with: {\n lastPublishedDeployment: true,\n ...Object.fromEntries(populate.map((field) => [field, true]))\n }\n })\n aclPublicProject(project, projectIdentifier)\n setPublicCacheControl(c.res, env.isProd ? '1m' : '10s')\n\n return c.json(parseZodSchema(schema.projectSelectSchema, project))\n })\n}\n" }, { "path": "apps/api/src/api-v1/projects/get-public-project.ts", "content": "import type { DefaultHonoEnv } from '@agentic/platform-hono'\nimport { parseZodSchema } from '@agentic/platform-core'\nimport { createRoute, type OpenAPIHono } from '@hono/zod-openapi'\n\nimport { db, eq, schema } from '@/db'\nimport { aclPublicProject } from '@/lib/acl-public-project'\nimport { setPublicCacheControl } from '@/lib/cache-control'\nimport { env } from '@/lib/env'\nimport {\n openapiAuthenticatedSecuritySchemas,\n openapiErrorResponse404,\n openapiErrorResponses\n} from '@/lib/openapi-utils'\n\nimport { populateProjectSchema, projectIdParamsSchema } from './schemas'\n\nconst route = createRoute({\n description: 'Gets a public project by ID.',\n tags: ['projects'],\n operationId: 'getPublicProject',\n method: 'get',\n path: 'projects/public/{projectId}',\n security: openapiAuthenticatedSecuritySchemas,\n request: {\n params: projectIdParamsSchema,\n query: populateProjectSchema\n },\n responses: {\n 200: {\n description: 'A project',\n content: {\n 'application/json': {\n schema: schema.projectSelectSchema\n }\n }\n },\n ...openapiErrorResponses,\n ...openapiErrorResponse404\n }\n})\n\nexport function registerV1GetPublicProject(app: OpenAPIHono) {\n return app.openapi(route, async (c) => {\n const { projectId } = c.req.valid('param')\n const { populate = [] } = c.req.valid('query')\n\n const project = await db.query.projects.findFirst({\n where: eq(schema.projects.id, projectId),\n with: {\n lastPublishedDeployment: true,\n ...Object.fromEntries(populate.map((field) => [field, true]))\n }\n })\n aclPublicProject(project, projectId)\n setPublicCacheControl(c.res, env.isProd ? '1m' : '10s')\n\n return c.json(parseZodSchema(schema.projectSelectSchema, project))\n })\n}\n" }, { "path": "apps/api/src/api-v1/projects/list-projects.ts", "content": "import { parseZodSchema } from '@agentic/platform-core'\nimport { createRoute, type OpenAPIHono, z } from '@hono/zod-openapi'\n\nimport type { AuthenticatedHonoEnv } from '@/lib/types'\nimport { db, eq, schema } from '@/db'\nimport { ensureAuthUser } from '@/lib/ensure-auth-user'\nimport {\n openapiAuthenticatedSecuritySchemas,\n openapiErrorResponses\n} from '@/lib/openapi-utils'\n\nimport { paginationAndPopulateProjectSchema } from './schemas'\n\nconst route = createRoute({\n description: 'Lists projects owned by the authenticated user or team.',\n tags: ['projects'],\n operationId: 'listProjects',\n method: 'get',\n path: 'projects',\n security: openapiAuthenticatedSecuritySchemas,\n request: {\n query: paginationAndPopulateProjectSchema\n },\n responses: {\n 200: {\n description: 'A list of projects',\n content: {\n 'application/json': {\n schema: z.array(schema.projectSelectSchema)\n }\n }\n },\n ...openapiErrorResponses\n }\n})\n\nexport function registerV1ListProjects(app: OpenAPIHono) {\n return app.openapi(route, async (c) => {\n const {\n offset = 0,\n limit = 10,\n sort = 'desc',\n sortBy = 'createdAt',\n populate = []\n } = c.req.valid('query')\n\n const user = await ensureAuthUser(c)\n const teamMember = c.get('teamMember')\n const isAdmin = user.role === 'admin'\n\n const projects = await db.query.projects.findMany({\n where: isAdmin\n ? undefined\n : teamMember\n ? eq(schema.projects.teamId, teamMember.teamId)\n : eq(schema.projects.userId, user.id),\n with: {\n lastPublishedDeployment: true,\n ...Object.fromEntries(populate.map((field) => [field, true]))\n },\n orderBy: (projects, { asc, desc }) => [\n sort === 'desc' ? desc(projects[sortBy]) : asc(projects[sortBy])\n ],\n offset,\n limit\n })\n\n return c.json(parseZodSchema(z.array(schema.projectSelectSchema), projects))\n })\n}\n" }, { "path": "apps/api/src/api-v1/projects/list-public-projects.ts", "content": "import { env } from 'node:process'\n\nimport type { DefaultHonoEnv } from '@agentic/platform-hono'\nimport { parseZodSchema } from '@agentic/platform-core'\nimport { createRoute, type OpenAPIHono, z } from '@hono/zod-openapi'\n\nimport {\n and,\n arrayContains,\n db,\n eq,\n isNotNull,\n isNull,\n not,\n or,\n schema\n} from '@/db'\nimport { setPublicCacheControl } from '@/lib/cache-control'\nimport {\n openapiAuthenticatedSecuritySchemas,\n openapiErrorResponses\n} from '@/lib/openapi-utils'\n\nimport { listPublicProjectsQuerySchema } from './schemas'\n\nconst route = createRoute({\n description:\n 'Lists projects that have been published publicly to the marketplace.',\n tags: ['projects'],\n operationId: 'listPublicProjects',\n method: 'get',\n path: 'projects/public',\n security: openapiAuthenticatedSecuritySchemas,\n request: {\n query: listPublicProjectsQuerySchema\n },\n responses: {\n 200: {\n description: 'A list of projects',\n content: {\n 'application/json': {\n schema: z.array(schema.projectSelectSchema)\n }\n }\n },\n ...openapiErrorResponses\n }\n})\n\nexport function registerV1ListPublicProjects(app: OpenAPIHono) {\n return app.openapi(route, async (c) => {\n const {\n offset = 0,\n limit = 10,\n sort = 'desc',\n sortBy = 'createdAt',\n populate = [],\n tag,\n notTag\n } = c.req.valid('query')\n\n const projects = await db.query.projects.findMany({\n // List projects that are not private and have at least one published deployment\n // And optionally match a given tag\n where: and(\n eq(schema.projects.private, false),\n isNotNull(schema.projects.lastPublishedDeploymentId),\n tag ? arrayContains(schema.projects.tags, [tag]) : undefined,\n notTag\n ? or(\n not(arrayContains(schema.projects.tags, [notTag])),\n isNull(schema.projects.tags)\n )\n : undefined\n ),\n with: {\n lastPublishedDeployment: true,\n ...Object.fromEntries(populate.map((field) => [field, true]))\n },\n orderBy: (projects, { asc, desc }) => [\n sort === 'desc' ? desc(projects[sortBy]) : asc(projects[sortBy])\n ],\n offset,\n limit\n })\n setPublicCacheControl(c.res, env.isProd ? '1m' : '10s')\n\n return c.json(parseZodSchema(z.array(schema.projectSelectSchema), projects))\n })\n}\n" }, { "path": "apps/api/src/api-v1/projects/schemas.ts", "content": "// import { isValidNamespace } from '@agentic/platform-validators'\nimport { z } from '@hono/zod-openapi'\n\nimport {\n paginationSchema,\n projectIdentifierSchema,\n projectIdSchema,\n projectRelationsSchema\n} from '@/db'\n\nexport const projectIdParamsSchema = z.object({\n projectId: projectIdSchema.openapi({\n param: {\n description: 'Project ID',\n name: 'projectId',\n in: 'path'\n }\n })\n})\n\n// export const namespaceParamsSchema = z.object({\n// namespace: z\n// .string()\n// .refine((namespace) => isValidNamespace(namespace), {\n// message: 'Invalid namespace'\n// })\n// .openapi({\n// param: {\n// description: 'Namespace',\n// name: 'namespace',\n// in: 'path'\n// }\n// })\n// })\n\nexport const projectIdentifierQuerySchema = z.object({\n projectIdentifier: projectIdentifierSchema\n})\n\nexport const filterPublicProjectSchema = z.object({\n tag: z.string().optional(),\n notTag: z.string().optional()\n})\n\nexport const populateProjectSchema = z.object({\n populate: z\n .union([projectRelationsSchema, z.array(projectRelationsSchema)])\n .default([])\n .transform((p) => (Array.isArray(p) ? p : [p]))\n .optional()\n})\n\nexport const projectIdentifierAndPopulateSchema = z.object({\n ...populateProjectSchema.shape,\n ...projectIdentifierQuerySchema.shape\n})\n\nexport const paginationAndPopulateProjectSchema = z.object({\n ...paginationSchema.shape,\n ...populateProjectSchema.shape\n})\n\nexport const listPublicProjectsQuerySchema = z.object({\n ...paginationSchema.shape,\n ...populateProjectSchema.shape,\n ...filterPublicProjectSchema.shape\n})\n" }, { "path": "apps/api/src/api-v1/projects/update-project.ts", "content": "import { assert, parseZodSchema } from '@agentic/platform-core'\nimport { createRoute, type OpenAPIHono } from '@hono/zod-openapi'\n\nimport type { AuthenticatedHonoEnv } from '@/lib/types'\nimport { db, eq, schema } from '@/db'\nimport { acl } from '@/lib/acl'\nimport {\n openapiAuthenticatedSecuritySchemas,\n openapiErrorResponse404,\n openapiErrorResponses\n} from '@/lib/openapi-utils'\n\nimport { projectIdParamsSchema } from './schemas'\n\nconst route = createRoute({\n description: 'Updates a project.',\n tags: ['projects'],\n operationId: 'updateProject',\n method: 'post',\n path: 'projects/{projectId}',\n security: openapiAuthenticatedSecuritySchemas,\n request: {\n params: projectIdParamsSchema,\n body: {\n required: true,\n content: {\n 'application/json': {\n schema: schema.projectUpdateSchema\n }\n }\n }\n },\n responses: {\n 200: {\n description: 'The updated project',\n content: {\n 'application/json': {\n schema: schema.projectSelectSchema\n }\n }\n },\n ...openapiErrorResponses,\n ...openapiErrorResponse404\n }\n})\n\nexport function registerV1UpdateProject(\n app: OpenAPIHono\n) {\n return app.openapi(route, async (c) => {\n const { projectId } = c.req.valid('param')\n const body = c.req.valid('json')\n\n // First ensure the project exists and the user has access to it\n let project = await db.query.projects.findFirst({\n where: eq(schema.projects.id, projectId)\n })\n assert(project, 404, `Project not found \"${projectId}\"`)\n await acl(c, project, { label: 'Project' })\n\n // Update the project\n ;[project] = await db\n .update(schema.projects)\n .set(body)\n .where(eq(schema.projects.id, projectId))\n .returning()\n assert(project, 500, `Failed to update project \"${projectId}\"`)\n\n return c.json(parseZodSchema(schema.projectSelectSchema, project))\n })\n}\n" }, { "path": "apps/api/src/api-v1/storage/get-signed-storage-upload-url.ts", "content": "import { assert } from '@agentic/platform-core'\nimport { createRoute, type OpenAPIHono, z } from '@hono/zod-openapi'\n\nimport type { AuthenticatedHonoEnv } from '@/lib/types'\nimport { db, eq, projectIdentifierSchema, schema } from '@/db'\nimport { acl } from '@/lib/acl'\nimport {\n openapiAuthenticatedSecuritySchemas,\n openapiErrorResponse404,\n openapiErrorResponses\n} from '@/lib/openapi-utils'\nimport {\n getStorageObjectPublicUrl,\n getStorageSignedUploadUrl\n} from '@/lib/storage'\n\nexport const getSignedUploadUrlQuerySchema = z.object({\n projectIdentifier: projectIdentifierSchema,\n\n /**\n * Should be a hash of the contents of the file to upload with the correct\n * file extension.\n *\n * @example `9f86d081884c7d659a2feaa0c55ad015a.png`\n */\n key: z\n .string()\n .nonempty()\n .describe(\n 'Should be a hash of the contents of the file to upload with the correct file extension (eg, \"9f86d081884c7d659a2feaa0c55ad015a.png\").'\n )\n})\n\nconst route = createRoute({\n description:\n \"Gets a signed URL for uploading a file to Agentic's blob storage. Files are namespaced to a given project and are identified by a key that should be a hash of the file's contents, with the correct file extension.\",\n tags: ['storage'],\n operationId: 'getSignedStorageUploadUrl',\n method: 'get',\n path: 'storage/signed-upload-url',\n security: openapiAuthenticatedSecuritySchemas,\n request: {\n query: getSignedUploadUrlQuerySchema\n },\n responses: {\n 200: {\n description: 'A signed upload URL',\n content: {\n 'application/json': {\n schema: z.object({\n signedUploadUrl: z\n .string()\n .url()\n .describe('The signed upload URL.'),\n publicObjectUrl: z\n .string()\n .url()\n .describe('The public URL the object will have once uploaded.')\n })\n }\n }\n },\n ...openapiErrorResponses,\n ...openapiErrorResponse404\n }\n})\n\nexport function registerV1GetSignedStorageUploadUrl(\n app: OpenAPIHono\n) {\n return app.openapi(route, async (c) => {\n const { projectIdentifier, key } = c.req.valid('query')\n\n const project = await db.query.projects.findFirst({\n where: eq(schema.projects.identifier, projectIdentifier)\n })\n assert(project, 404, `Project not found \"${projectIdentifier}\"`)\n await acl(c, project, { label: 'Project' })\n\n const compoundKey = `${project.identifier}/${key}`\n const signedUploadUrl = await getStorageSignedUploadUrl(compoundKey)\n const publicObjectUrl = getStorageObjectPublicUrl(compoundKey)\n\n return c.json({ signedUploadUrl, publicObjectUrl })\n })\n}\n" }, { "path": "apps/api/src/api-v1/teams/create-team.ts", "content": "import { assert, parseZodSchema } from '@agentic/platform-core'\nimport { createRoute, type OpenAPIHono } from '@hono/zod-openapi'\n\nimport type { AuthenticatedHonoEnv } from '@/lib/types'\nimport { db, schema } from '@/db'\nimport { ensureAuthUser } from '@/lib/ensure-auth-user'\nimport { ensureUniqueNamespace } from '@/lib/ensure-unique-namespace'\nimport {\n openapiAuthenticatedSecuritySchemas,\n openapiErrorResponses\n} from '@/lib/openapi-utils'\n\nconst route = createRoute({\n description: 'Creates a new team.',\n tags: ['teams'],\n operationId: 'createTeam',\n method: 'post',\n path: 'teams',\n security: openapiAuthenticatedSecuritySchemas,\n request: {\n body: {\n required: true,\n content: {\n 'application/json': {\n schema: schema.teamInsertSchema\n }\n }\n }\n },\n responses: {\n 200: {\n description: 'The created team',\n content: {\n 'application/json': {\n schema: schema.teamSelectSchema\n }\n }\n },\n ...openapiErrorResponses\n }\n})\n\nexport function registerV1CreateTeam(app: OpenAPIHono) {\n return app.openapi(route, async (c) => {\n const user = await ensureAuthUser(c)\n const body = c.req.valid('json')\n\n await ensureUniqueNamespace(body.slug, { label: 'Team slug' })\n\n return db.transaction(async (tx) => {\n const [team] = await tx\n .insert(schema.teams)\n .values({\n ...body,\n ownerId: user.id\n })\n .returning()\n assert(team, 500, `Failed to create team \"${body.slug}\"`)\n\n const [teamMember] = await tx\n .insert(schema.teamMembers)\n .values({\n userId: user.id,\n teamId: team.id,\n teamSlug: team.slug,\n role: 'admin',\n confirmed: true\n })\n .returning()\n assert(\n teamMember,\n 500,\n `Failed to create team member owner for team \"${body.slug}\"`\n )\n\n return c.json(parseZodSchema(schema.teamSelectSchema, team))\n })\n })\n}\n" }, { "path": "apps/api/src/api-v1/teams/delete-team.ts", "content": "import { assert, parseZodSchema } from '@agentic/platform-core'\nimport { createRoute, type OpenAPIHono } from '@hono/zod-openapi'\n\nimport type { AuthenticatedHonoEnv } from '@/lib/types'\nimport { db, eq, schema } from '@/db'\nimport { aclTeamAdmin } from '@/lib/acl-team-admin'\nimport {\n openapiAuthenticatedSecuritySchemas,\n openapiErrorResponse404,\n openapiErrorResponses\n} from '@/lib/openapi-utils'\n\nimport { teamIdParamsSchema } from './schemas'\n\nconst route = createRoute({\n description: 'Deletes a team by ID.',\n tags: ['teams'],\n operationId: 'deleteTeam',\n method: 'delete',\n path: 'teams/{teamId}',\n security: openapiAuthenticatedSecuritySchemas,\n request: {\n params: teamIdParamsSchema\n },\n responses: {\n 200: {\n description: 'The team that was deleted',\n content: {\n 'application/json': {\n schema: schema.teamSelectSchema\n }\n }\n },\n ...openapiErrorResponses,\n ...openapiErrorResponse404\n }\n})\n\nexport function registerV1DeleteTeam(app: OpenAPIHono) {\n return app.openapi(route, async (c) => {\n const { teamId } = c.req.valid('param')\n await aclTeamAdmin(c, { teamId })\n\n const [team] = await db\n .delete(schema.teams)\n .where(eq(schema.teams.id, teamId))\n .returning()\n assert(team, 404, `Team not found \"${teamId}\"`)\n\n return c.json(parseZodSchema(schema.teamSelectSchema, team))\n })\n}\n" }, { "path": "apps/api/src/api-v1/teams/get-team.ts", "content": "import { assert, parseZodSchema } from '@agentic/platform-core'\nimport { createRoute, type OpenAPIHono } from '@hono/zod-openapi'\n\nimport type { AuthenticatedHonoEnv } from '@/lib/types'\nimport { db, eq, schema } from '@/db'\nimport { aclTeamMember } from '@/lib/acl-team-member'\nimport {\n openapiAuthenticatedSecuritySchemas,\n openapiErrorResponse404,\n openapiErrorResponses\n} from '@/lib/openapi-utils'\n\nimport { teamIdParamsSchema } from './schemas'\n\nconst route = createRoute({\n description: 'Gets a team by ID.',\n tags: ['teams'],\n operationId: 'getTeam',\n method: 'get',\n path: 'teams/{teamId}',\n security: openapiAuthenticatedSecuritySchemas,\n request: {\n params: teamIdParamsSchema\n },\n responses: {\n 200: {\n description: 'A team object',\n content: {\n 'application/json': {\n schema: schema.teamSelectSchema\n }\n }\n },\n ...openapiErrorResponses,\n ...openapiErrorResponse404\n }\n})\n\nexport function registerV1GetTeam(app: OpenAPIHono) {\n return app.openapi(route, async (c) => {\n const { teamId } = c.req.valid('param')\n await aclTeamMember(c, { teamId })\n\n const team = await db.query.teams.findFirst({\n where: eq(schema.teams.id, teamId)\n })\n assert(team, 404, `Team not found \"${teamId}\"`)\n\n return c.json(parseZodSchema(schema.teamSelectSchema, team))\n })\n}\n" }, { "path": "apps/api/src/api-v1/teams/list-teams.ts", "content": "import { parseZodSchema } from '@agentic/platform-core'\nimport { createRoute, type OpenAPIHono, z } from '@hono/zod-openapi'\n\nimport type { AuthenticatedHonoEnv } from '@/lib/types'\nimport { db, eq, paginationSchema, schema } from '@/db'\nimport {\n openapiAuthenticatedSecuritySchemas,\n openapiErrorResponses\n} from '@/lib/openapi-utils'\n\nconst route = createRoute({\n description: 'Lists all teams the authenticated user belongs to.',\n tags: ['teams'],\n operationId: 'listTeams',\n method: 'get',\n path: 'teams',\n security: openapiAuthenticatedSecuritySchemas,\n request: {\n query: paginationSchema\n },\n responses: {\n 200: {\n description: 'A list of teams',\n content: {\n 'application/json': {\n schema: z.array(schema.teamSelectSchema)\n }\n }\n },\n ...openapiErrorResponses\n }\n})\n\nexport function registerV1ListTeams(app: OpenAPIHono) {\n return app.openapi(route, async (c) => {\n const {\n offset = 0,\n limit = 10,\n sort = 'desc',\n sortBy = 'createdAt'\n } = c.req.valid('query')\n const userId = c.get('userId')\n\n // schema.teamMembers._.columns\n\n const teamMembers = await db.query.teamMembers.findMany({\n where: eq(schema.teamMembers.userId, userId),\n with: {\n team: true\n },\n orderBy: (teamMembers, { asc, desc }) => [\n sort === 'desc' ? desc(teamMembers[sortBy]) : asc(teamMembers[sortBy])\n ],\n offset,\n limit\n })\n\n return c.json(parseZodSchema(z.array(schema.teamSelectSchema), teamMembers))\n })\n}\n" }, { "path": "apps/api/src/api-v1/teams/members/create-team-member.ts", "content": "import { assert, parseZodSchema } from '@agentic/platform-core'\nimport { createRoute, type OpenAPIHono } from '@hono/zod-openapi'\n\nimport type { AuthenticatedHonoEnv } from '@/lib/types'\nimport { and, db, eq, schema } from '@/db'\nimport { aclTeamAdmin } from '@/lib/acl-team-admin'\nimport {\n openapiAuthenticatedSecuritySchemas,\n openapiErrorResponse404,\n openapiErrorResponse409,\n openapiErrorResponses\n} from '@/lib/openapi-utils'\n\nimport { teamIdParamsSchema } from '../schemas'\n\nconst route = createRoute({\n description: 'Creates a new team member.',\n tags: ['teams'],\n operationId: 'createTeamMember',\n method: 'post',\n path: 'teams/{teamId}/members',\n security: openapiAuthenticatedSecuritySchemas,\n request: {\n params: teamIdParamsSchema,\n body: {\n required: true,\n content: {\n 'application/json': {\n schema: schema.teamMemberInsertSchema\n }\n }\n }\n },\n responses: {\n 200: {\n description: 'The created team member',\n content: {\n 'application/json': {\n schema: schema.teamMemberSelectSchema\n }\n }\n },\n ...openapiErrorResponses,\n ...openapiErrorResponse404,\n ...openapiErrorResponse409\n }\n})\n\nexport function registerV1CreateTeamMember(\n app: OpenAPIHono\n) {\n return app.openapi(route, async (c) => {\n const { teamId } = c.req.valid('param')\n const body = c.req.valid('json')\n await aclTeamAdmin(c, { teamId })\n\n const team = await db.query.teams.findFirst({\n where: eq(schema.teams.id, teamId)\n })\n assert(team, 404, `Team not found \"${teamId}\"`)\n\n const existingTeamMember = await db.query.teamMembers.findFirst({\n where: and(\n eq(schema.teamMembers.teamId, teamId),\n eq(schema.teamMembers.userId, body.userId)\n )\n })\n assert(\n existingTeamMember,\n 409,\n `User \"${body.userId}\" is already a member of team \"${teamId}\"`\n )\n\n const [teamMember] = await db\n .insert(schema.teamMembers)\n .values({\n ...body,\n teamId,\n teamSlug: team.slug\n })\n .returning()\n assert(\n teamMember,\n 500,\n `Failed to create team member \"${body.userId}\"for team \"${teamId}\"`\n )\n\n // TODO: send team invite email\n\n return c.json(parseZodSchema(schema.teamMemberSelectSchema, teamMember))\n })\n}\n" }, { "path": "apps/api/src/api-v1/teams/members/delete-team-member.ts", "content": "import { assert, parseZodSchema } from '@agentic/platform-core'\nimport { createRoute, type OpenAPIHono } from '@hono/zod-openapi'\n\nimport type { AuthenticatedHonoEnv } from '@/lib/types'\nimport { and, db, eq, schema } from '@/db'\nimport { aclTeamAdmin } from '@/lib/acl-team-admin'\nimport { aclTeamMember } from '@/lib/acl-team-member'\nimport {\n openapiAuthenticatedSecuritySchemas,\n openapiErrorResponse404,\n openapiErrorResponses\n} from '@/lib/openapi-utils'\n\nimport { teamIdTeamMemberUserIdParamsSchema } from './schemas'\n\nconst route = createRoute({\n description: 'Deletes a team member.',\n tags: ['teams'],\n operationId: 'deleteTeamMember',\n method: 'delete',\n path: 'teams/{teamId}/members/{userId}',\n security: openapiAuthenticatedSecuritySchemas,\n request: {\n params: teamIdTeamMemberUserIdParamsSchema\n },\n responses: {\n 200: {\n description: 'The deleted team member',\n content: {\n 'application/json': {\n schema: schema.teamMemberSelectSchema\n }\n }\n },\n ...openapiErrorResponses,\n ...openapiErrorResponse404\n }\n})\n\nexport function registerV1DeleteTeamMember(\n app: OpenAPIHono\n) {\n return app.openapi(route, async (c) => {\n const { teamId, userId } = c.req.valid('param')\n\n await aclTeamAdmin(c, { teamId })\n await aclTeamMember(c, { teamId, userId })\n\n const [teamMember] = await db\n .delete(schema.teamMembers)\n .where(\n and(\n eq(schema.teamMembers.teamId, teamId),\n eq(schema.teamMembers.userId, userId)\n )\n )\n .returning()\n assert(\n teamMember,\n 400,\n `Failed to update team member \"${userId}\" for team \"${teamId}\"`\n )\n\n return c.json(parseZodSchema(schema.teamMemberSelectSchema, teamMember))\n })\n}\n" }, { "path": "apps/api/src/api-v1/teams/members/schemas.ts", "content": "import { z } from '@hono/zod-openapi'\n\nimport { userIdSchema } from '@/db'\n\nimport { teamIdParamsSchema } from '../schemas'\n\nexport const teamIdTeamMemberUserIdParamsSchema = z.object({\n ...teamIdParamsSchema.shape,\n\n userId: userIdSchema.openapi({\n param: {\n description: 'Team member user ID',\n name: 'userId',\n in: 'path'\n }\n })\n})\n" }, { "path": "apps/api/src/api-v1/teams/members/update-team-member.ts", "content": "import { assert, parseZodSchema } from '@agentic/platform-core'\nimport { createRoute, type OpenAPIHono } from '@hono/zod-openapi'\n\nimport type { AuthenticatedHonoEnv } from '@/lib/types'\nimport { and, db, eq, schema } from '@/db'\nimport { aclTeamAdmin } from '@/lib/acl-team-admin'\nimport { aclTeamMember } from '@/lib/acl-team-member'\nimport {\n openapiAuthenticatedSecuritySchemas,\n openapiErrorResponse404,\n openapiErrorResponses\n} from '@/lib/openapi-utils'\n\nimport { teamIdTeamMemberUserIdParamsSchema } from './schemas'\n\nconst route = createRoute({\n description: 'Updates a team member.',\n tags: ['teams'],\n operationId: 'updateTeamMember',\n method: 'post',\n path: 'teams/{teamId}/members/{userId}',\n security: openapiAuthenticatedSecuritySchemas,\n request: {\n params: teamIdTeamMemberUserIdParamsSchema,\n body: {\n required: true,\n content: {\n 'application/json': {\n schema: schema.teamMemberUpdateSchema\n }\n }\n }\n },\n responses: {\n 200: {\n description: 'The updated team member',\n content: {\n 'application/json': {\n schema: schema.teamMemberSelectSchema\n }\n }\n },\n ...openapiErrorResponses,\n ...openapiErrorResponse404\n }\n})\n\nexport function registerV1UpdateTeamMember(\n app: OpenAPIHono\n) {\n return app.openapi(route, async (c) => {\n const { teamId, userId } = c.req.valid('param')\n const body = c.req.valid('json')\n\n await aclTeamAdmin(c, { teamId })\n await aclTeamMember(c, { teamId, userId })\n\n const [teamMember] = await db\n .update(schema.teamMembers)\n .set(body)\n .where(\n and(\n eq(schema.teamMembers.teamId, teamId),\n eq(schema.teamMembers.userId, userId)\n )\n )\n .returning()\n assert(\n teamMember,\n 400,\n `Failed to update team member \"${userId}\" for team \"${teamId}\"`\n )\n\n return c.json(parseZodSchema(schema.teamMemberSelectSchema, teamMember))\n })\n}\n" }, { "path": "apps/api/src/api-v1/teams/schemas.ts", "content": "import { z } from '@hono/zod-openapi'\n\nimport { teamIdSchema } from '@/db'\n\nexport const teamIdParamsSchema = z.object({\n teamId: teamIdSchema.openapi({\n param: {\n description: 'Team ID',\n name: 'teamId',\n in: 'path'\n }\n })\n})\n" }, { "path": "apps/api/src/api-v1/teams/update-team.ts", "content": "import { assert, parseZodSchema } from '@agentic/platform-core'\nimport { createRoute, type OpenAPIHono } from '@hono/zod-openapi'\n\nimport type { AuthenticatedHonoEnv } from '@/lib/types'\nimport { db, eq, schema } from '@/db'\nimport { aclTeamAdmin } from '@/lib/acl-team-admin'\nimport {\n openapiAuthenticatedSecuritySchemas,\n openapiErrorResponse404,\n openapiErrorResponses\n} from '@/lib/openapi-utils'\n\nimport { teamIdParamsSchema } from './schemas'\n\nconst route = createRoute({\n description: 'Updates a team.',\n tags: ['teams'],\n operationId: 'updateTeam',\n method: 'post',\n path: 'teams/{teamId}',\n security: openapiAuthenticatedSecuritySchemas,\n request: {\n params: teamIdParamsSchema,\n body: {\n required: true,\n content: {\n 'application/json': {\n schema: schema.teamUpdateSchema\n }\n }\n }\n },\n responses: {\n 200: {\n description: 'The updated team',\n content: {\n 'application/json': {\n schema: schema.teamSelectSchema\n }\n }\n },\n ...openapiErrorResponses,\n ...openapiErrorResponse404\n }\n})\n\nexport function registerV1UpdateTeam(app: OpenAPIHono) {\n return app.openapi(route, async (c) => {\n const { teamId } = c.req.valid('param')\n const body = c.req.valid('json')\n await aclTeamAdmin(c, { teamId })\n\n const [team] = await db\n .update(schema.teams)\n .set(body)\n .where(eq(schema.teams.id, teamId))\n .returning()\n assert(team, 404, `Team not found \"${teamId}\"`)\n\n return c.json(parseZodSchema(schema.teamSelectSchema, team))\n })\n}\n" }, { "path": "apps/api/src/api-v1/users/get-user.ts", "content": "import { assert, parseZodSchema } from '@agentic/platform-core'\nimport { createRoute, type OpenAPIHono } from '@hono/zod-openapi'\n\nimport type { AuthenticatedHonoEnv } from '@/lib/types'\nimport { db, eq, schema } from '@/db'\nimport { acl } from '@/lib/acl'\nimport { setPublicCacheControl } from '@/lib/cache-control'\nimport { env } from '@/lib/env'\nimport {\n openapiAuthenticatedSecuritySchemas,\n openapiErrorResponse404,\n openapiErrorResponses\n} from '@/lib/openapi-utils'\n\nimport { userIdParamsSchema } from './schemas'\n\nconst route = createRoute({\n description: 'Gets a user by ID.',\n tags: ['users'],\n operationId: 'getUser',\n method: 'get',\n path: 'users/{userId}',\n security: openapiAuthenticatedSecuritySchemas,\n request: {\n params: userIdParamsSchema\n },\n responses: {\n 200: {\n description: 'A user object',\n content: {\n 'application/json': {\n schema: schema.userSelectSchema\n }\n }\n },\n ...openapiErrorResponses,\n ...openapiErrorResponse404\n }\n})\n\nexport function registerV1GetUser(app: OpenAPIHono) {\n return app.openapi(route, async (c) => {\n const { userId } = c.req.valid('param')\n await acl(c, { userId }, { label: 'User' })\n\n const user = await db.query.users.findFirst({\n where: eq(schema.users.id, userId)\n })\n assert(user, 404, `User not found \"${userId}\"`)\n setPublicCacheControl(c.res, env.isProd ? '30s' : '10s')\n\n return c.json(parseZodSchema(schema.userSelectSchema, user))\n })\n}\n" }, { "path": "apps/api/src/api-v1/users/schemas.ts", "content": "import { z } from '@hono/zod-openapi'\n\nimport { userIdSchema } from '@/db'\n\nexport const userIdParamsSchema = z.object({\n userId: userIdSchema.openapi({\n param: {\n description: 'User ID',\n name: 'userId',\n in: 'path'\n }\n })\n})\n" }, { "path": "apps/api/src/api-v1/users/update-user.ts", "content": "import { assert, parseZodSchema } from '@agentic/platform-core'\nimport { createRoute, type OpenAPIHono } from '@hono/zod-openapi'\n\nimport type { AuthenticatedHonoEnv } from '@/lib/types'\nimport { db, eq, schema } from '@/db'\nimport { acl } from '@/lib/acl'\nimport {\n openapiAuthenticatedSecuritySchemas,\n openapiErrorResponse404,\n openapiErrorResponses\n} from '@/lib/openapi-utils'\n\nimport { userIdParamsSchema } from './schemas'\n\nconst route = createRoute({\n description: 'Updates a user by ID.',\n tags: ['users'],\n operationId: 'updateUser',\n method: 'post',\n path: 'users/{userId}',\n security: openapiAuthenticatedSecuritySchemas,\n request: {\n params: userIdParamsSchema,\n body: {\n required: true,\n content: {\n 'application/json': {\n schema: schema.userUpdateSchema\n }\n }\n }\n },\n responses: {\n 200: {\n description: 'A user object',\n content: {\n 'application/json': {\n schema: schema.userSelectSchema\n }\n }\n },\n ...openapiErrorResponses,\n ...openapiErrorResponse404\n }\n})\n\nexport function registerV1UpdateUser(app: OpenAPIHono) {\n return app.openapi(route, async (c) => {\n const { userId } = c.req.valid('param')\n await acl(c, { userId }, { label: 'User' })\n const body = c.req.valid('json')\n\n const [user] = await db\n .update(schema.users)\n .set(body)\n .where(eq(schema.users.id, userId))\n .returning()\n assert(user, 404, `User not found \"${userId}\"`)\n\n return c.json(parseZodSchema(schema.userSelectSchema, user))\n })\n}\n" }, { "path": "apps/api/src/api-v1/webhooks/stripe-webhook.ts", "content": "import type Stripe from 'stripe'\nimport { assert, HttpError } from '@agentic/platform-core'\n\nimport type { HonoApp } from '@/lib/types'\nimport {\n and,\n db,\n eq,\n getStripePriceIdForPricingPlanLineItem,\n type RawConsumer,\n type RawDeployment,\n type RawProject,\n schema\n} from '@/db'\nimport { setConsumerStripeSubscriptionStatus } from '@/lib/consumers/utils'\nimport { env } from '@/lib/env'\nimport { stripe } from '@/lib/external/stripe'\n\nconst relevantStripeEvents = new Set([\n // Stripe Checkout Sessions\n 'checkout.session.completed',\n\n // TODO: Handle these events\n // 'checkout.session.expired',\n // 'checkout.session.async_payment_failed',\n // 'checkout.session.async_payment_succeeded',\n\n // Stripe Subscriptions\n 'customer.subscription.created',\n\n // TODO: Test these events which should be able to all use the same code path\n 'customer.subscription.updated',\n 'customer.subscription.paused',\n 'customer.subscription.resumed',\n 'customer.subscription.deleted'\n\n // TODO: Handle these events\n // 'customer.subscription.pending_update_applied',\n // 'customer.subscription.pending_update_expired',\n // 'customer.subscription.trial_will_end'\n])\n\nexport function registerV1StripeWebhook(app: HonoApp) {\n return app.post('webhooks/stripe', async (ctx) => {\n const logger = ctx.get('logger')\n const body = await ctx.req.text()\n const signature = ctx.req.header('Stripe-Signature')\n assert(\n signature,\n 400,\n 'error invalid stripe webhook event: missing signature'\n )\n\n let event: Stripe.Event\n\n try {\n event = stripe.webhooks.constructEvent(\n body,\n signature,\n env.STRIPE_WEBHOOK_SECRET\n )\n } catch (err) {\n throw new HttpError({\n message: 'error invalid stripe webhook event: signature mismatch',\n cause: err,\n statusCode: 400\n })\n }\n\n // Shouldn't ever happen because the signatures _should_ be different, but\n // it's a useful sanity check just in case.\n assert(\n event.livemode === env.isStripeLive,\n 400,\n 'error invalid stripe webhook event: livemode mismatch'\n )\n\n if (!relevantStripeEvents.has(event.type)) {\n return ctx.json({ status: 'ok' })\n }\n\n logger.info('stripe webhook', event.type, event.data?.object)\n\n try {\n switch (event.type) {\n case 'checkout.session.completed': {\n const checkoutSession = event.data.object\n const { subscription: subscriptionOrId } = checkoutSession\n assert(subscriptionOrId, 400, 'missing subscription')\n const { consumerId, plan, userId, projectId, deploymentId } =\n checkoutSession.metadata ?? {}\n assert(consumerId, 400, 'missing metadata.consumerId')\n assert(plan !== undefined, 400, 'missing metadata.plan')\n\n const subscriptionId =\n typeof subscriptionOrId === 'string'\n ? subscriptionOrId\n : subscriptionOrId.id\n\n const [subscription, consumer, deployment] = await Promise.all([\n // Make sure we have the full subscription instead of just the id\n typeof subscriptionOrId === 'string'\n ? stripe.subscriptions.retrieve(subscriptionId)\n : subscriptionOrId,\n\n db.query.consumers.findFirst({\n where: and(eq(schema.consumers.id, consumerId)),\n with: { project: true }\n }),\n\n deploymentId\n ? db.query.deployments.findFirst({\n where: and(eq(schema.deployments.id, deploymentId))\n })\n : undefined\n ])\n assert(\n subscription,\n 404,\n `stripe subscription \"${subscriptionId}\" not found`\n )\n assert(consumer, 404, `consumer \"${consumerId}\" not found`)\n if (deploymentId) {\n assert(deployment, 404, `deployment \"${deploymentId}\" not found`)\n }\n const { project } = consumer\n assert(project, 404, `project \"${projectId}\" not found`)\n\n // TODO: Treat this as a transaction...\n await Promise.all([\n // Ensure the underlying Stripe Subscription has all the necessary\n // metadata\n stripe.subscriptions.update(subscription.id, {\n metadata: {\n ...subscription.metadata,\n ...checkoutSession.metadata\n }\n }),\n\n // Sync our Consumer's state with the Stripe Subscription's state\n syncConsumerWithStripeSubscription({\n consumer,\n deployment,\n project,\n subscription,\n plan,\n userId,\n projectId,\n deploymentId\n })\n ])\n break\n }\n\n case 'customer.subscription.created': {\n // Stripe Checkout-created subscriptions won't have the metadata\n // necessary to identify the consumer, so ignore this event for now.\n const subscription = event.data.object\n const { consumerId, userId, projectId, deploymentId, plan } =\n subscription.metadata\n\n // TODO: This should be coming from Stripe Checkout, and a subsequent\n // webhook event should record the subscription and initialize the\n // consumer, but it feels wrong to me to just be logging and ignore\n // this event. In the future, if we support both Stripe Checkout and\n // non-Stripe Checkout-based subscription flows, then this codepath\n // should act very similarly to `customer.subscription.updated`.\n if (\n !consumerId ||\n !userId ||\n !projectId ||\n !deploymentId ||\n plan === undefined\n ) {\n break\n }\n\n // Intentional fallthrough\n }\n\n case 'customer.subscription.paused':\n case 'customer.subscription.resumed':\n case 'customer.subscription.deleted':\n case 'customer.subscription.updated': {\n // https://docs.stripe.com/billing/subscriptions/overview#subscription-statuses\n const subscription = event.data.object\n const { consumerId, userId, projectId, deploymentId, plan } =\n subscription.metadata\n assert(consumerId, 'missing metadata.consumerId')\n assert(plan !== undefined, 400, 'missing metadata.plan')\n\n logger.info('stripe webhook', event.type, {\n consumerId,\n userId,\n projectId,\n deploymentId,\n plan,\n status: subscription.status\n })\n\n const [consumer, deployment] = await Promise.all([\n db.query.consumers.findFirst({\n where: eq(schema.consumers.id, consumerId),\n with: { project: true }\n }),\n\n deploymentId\n ? db.query.deployments.findFirst({\n where: and(eq(schema.deployments.id, deploymentId))\n })\n : undefined\n ])\n assert(consumer, 404, `consumer \"${consumerId}\" not found`)\n if (deploymentId) {\n assert(deployment, 404, `deployment \"${deploymentId}\" not found`)\n }\n const { project } = consumer\n\n // Sync our Consumer's state with the Stripe Subscription's state\n await syncConsumerWithStripeSubscription({\n consumer,\n deployment,\n project,\n subscription,\n plan,\n userId,\n projectId,\n deploymentId\n })\n break\n }\n\n default:\n logger.warn(\n `unexpected unhandled event \"${event.id}\" type \"${event.type}\"`,\n event.data?.object\n )\n }\n } catch (err: any) {\n throw new HttpError({\n message: `error processing stripe webhook event \"${event.id}\" type \"${event.type}\": ${err.message}`,\n cause: err.cause ?? err,\n statusCode: err.statusCode ?? err\n })\n }\n\n return ctx.json({ status: 'ok' })\n })\n}\n\n/**\n * Sync our database Consumer's state with the Stripe Subscription's state.\n *\n * For anything billing-related, Stripe's resources is always considered the\n * single source of truth. Our database's `Consumer` state should always be\n * derived from the corresponding Stripe subscription.\n */\nexport async function syncConsumerWithStripeSubscription({\n consumer,\n project,\n deployment,\n subscription,\n plan,\n userId,\n projectId,\n deploymentId\n}: {\n consumer: RawConsumer\n project: RawProject\n deployment?: RawDeployment\n subscription: Stripe.Subscription\n plan: string | null | undefined\n userId?: string\n projectId?: string\n deploymentId?: string\n}): Promise {\n // These extra checks aren't really necessary, but they're nice sanity checks\n // to ensure metadata consistency with our consumer\n assert(\n consumer.userId === userId,\n 400,\n `consumer \"${consumer.id}\" user \"${consumer.userId}\" does not match stripe checkout metadata user \"${userId}\"`\n )\n assert(\n consumer.projectId === projectId,\n 400,\n `consumer \"${consumer.id}\" project \"${consumer.projectId}\" does not match stripe checkout metadata project \"${projectId}\"`\n )\n\n consumer._stripeSubscriptionId = subscription.id\n consumer.stripeStatus = subscription.status\n consumer.plan = plan as any // TODO: types\n setConsumerStripeSubscriptionStatus(consumer)\n\n if (deploymentId) {\n consumer.deploymentId = deploymentId\n }\n\n const pricingPlan = plan\n ? deployment?.pricingPlans.find((p) => p.slug === plan)\n : undefined\n\n if (pricingPlan) {\n for (const lineItem of pricingPlan.lineItems) {\n const stripeSubscriptionItemId =\n consumer._stripeSubscriptionItemIdMap[lineItem.slug]\n\n const stripePriceId: string | undefined = stripeSubscriptionItemId\n ? undefined\n : await getStripePriceIdForPricingPlanLineItem({\n pricingPlan,\n pricingPlanLineItem: lineItem,\n project\n })\n\n const stripeSubscriptionItem: Stripe.SubscriptionItem | undefined =\n subscription.items.data.find((item) =>\n stripeSubscriptionItemId\n ? item.id === stripeSubscriptionItemId\n : item.price.id === stripePriceId\n )\n\n assert(\n stripeSubscriptionItem,\n 500,\n `Error post-processing stripe subscription \"${subscription.id}\" for line-item \"${lineItem.slug}\" on plan \"${pricingPlan.slug}\"`\n )\n\n consumer._stripeSubscriptionItemIdMap[lineItem.slug] =\n stripeSubscriptionItem.id\n assert(\n consumer._stripeSubscriptionItemIdMap[lineItem.slug],\n 500,\n `Error post-processing stripe subscription \"${subscription.id}\" for line-item \"${lineItem.slug}\" on plan \"${pricingPlan.slug}\"`\n )\n }\n }\n\n const [updatedConsumer] = await db\n .update(schema.consumers)\n .set(consumer)\n .where(eq(schema.consumers.id, consumer.id))\n .returning()\n assert(updatedConsumer, 500, `consumer \"${consumer.id}\" not found`)\n\n // TODO: invoke provider webhooks\n // event.data.customer = consumer.getPublicDocument()\n // await invokeWebhooks(consumer.project, event)\n\n return updatedConsumer\n}\n" }, { "path": "apps/api/src/db/index.ts", "content": "import { drizzle } from '@fisch0920/drizzle-orm/postgres-js'\nimport postgres from 'postgres'\n\nimport { env } from '@/lib/env'\n\nimport * as schema from './schema'\n\ntype PostgresClient = ReturnType\n\nlet _postgresClient: PostgresClient | undefined\nconst postgresClient =\n _postgresClient ?? (_postgresClient = postgres(env.DATABASE_URL))\n\nexport const db = drizzle({ client: postgresClient, schema })\n\nexport * as schema from './schema'\nexport {\n createIdForModel,\n idMaxLength,\n idPrefixMap,\n type ModelType\n} from './schema/common'\nexport * from './schemas'\nexport type * from './types'\nexport * from './utils'\nexport {\n and,\n arrayContained,\n arrayContains,\n arrayOverlaps,\n asc,\n between,\n desc,\n eq,\n exists,\n gt,\n gte,\n ilike,\n inArray,\n isNotNull,\n isNull,\n like,\n lt,\n lte,\n ne,\n not,\n notBetween,\n notExists,\n notIlike,\n notInArray,\n notLike,\n or\n} from '@fisch0920/drizzle-orm'\n" }, { "path": "apps/api/src/db/schema/account.ts", "content": "import { relations } from '@fisch0920/drizzle-orm'\nimport { index, pgTable, text, timestamp } from '@fisch0920/drizzle-orm/pg-core'\n\nimport { userIdSchema } from '../schemas'\nimport {\n accountPrimaryId,\n authProviderTypeEnum,\n createSelectSchema,\n timestamps,\n userId\n} from './common'\nimport { users } from './user'\n\nexport const accounts = pgTable(\n 'accounts',\n {\n ...accountPrimaryId,\n ...timestamps,\n\n userId: userId()\n .notNull()\n .references(() => users.id, { onDelete: 'cascade' }),\n provider: authProviderTypeEnum().notNull(),\n\n /** Provider-specific account ID (or email in the case of `password` provider) */\n accountId: text().notNull(),\n\n password: text(),\n\n /** Provider-specific username */\n accountUsername: text(),\n\n /** Standard OAuth2 access token */\n accessToken: text(),\n\n /** Standard OAuth2 refresh token */\n refreshToken: text(),\n\n /** Standard OAuth2 access token expires at */\n accessTokenExpiresAt: timestamp(),\n\n /** Standard OAuth2 refresh token expires at */\n refreshTokenExpiresAt: timestamp(),\n\n /** OAuth scope(s) */\n scope: text()\n },\n (table) => [\n index('account_provider_idx').on(table.provider),\n index('account_userId_idx').on(table.userId),\n index('account_createdAt_idx').on(table.createdAt),\n index('account_updatedAt_idx').on(table.updatedAt),\n index('account_deletedAt_idx').on(table.deletedAt)\n ]\n)\n\nexport const accountsRelations = relations(accounts, ({ one }) => ({\n user: one(users, {\n fields: [accounts.userId],\n references: [users.id]\n })\n}))\n\nexport const accountSelectSchema = createSelectSchema(accounts, {\n userId: userIdSchema\n})\n .omit({\n password: true,\n accessToken: true,\n refreshToken: true,\n accessTokenExpiresAt: true,\n refreshTokenExpiresAt: true\n })\n .strip()\n .openapi('Account')\n" }, { "path": "apps/api/src/db/schema/auth-data.ts", "content": "import { jsonb, pgTable, text, timestamp } from '@fisch0920/drizzle-orm/pg-core'\n\nimport { timestamps } from './common'\n\n// Simple key-value store of JSON data for OpenAuth-related state.\n// TODO: remove this and/or replace this with non-openauth version\nexport const authData = pgTable('auth_data', {\n // Example ID keys:\n // \"oauth:refresh\\u001fuser:f99d3004946f9abb\\u001f2cae301e-3fdc-40c4-8cda-83b25a616d06\"\n // \"signing:key\\u001ff001a516-838d-4c88-aa9e-719d8fc9d5a3\"\n // \"email\\u001ft@t.com\\u001fpassword\"\n // \"encryption:key\\u001f14d3c324-f9c7-4867-81a9-b0b77b0db0be\"\n id: text().primaryKey(),\n ...timestamps,\n\n value: jsonb().$type>().notNull(),\n expiry: timestamp()\n})\n" }, { "path": "apps/api/src/db/schema/common.test.ts", "content": "import { expect, test } from 'vitest'\n\nimport { getIdSchemaForModelType } from '../schemas'\nimport {\n createIdForModel,\n idMaxLength,\n idPrefixMap,\n type ModelType\n} from './common'\n\nfor (const modelType of Object.keys(idPrefixMap)) {\n test(`${modelType} id`, () => {\n for (let i = 0; i < 100; ++i) {\n const id = createIdForModel(modelType as ModelType)\n expect(id.startsWith(idPrefixMap[modelType as ModelType])).toBe(true)\n expect(id.length).toBeLessThanOrEqual(idMaxLength)\n expect(getIdSchemaForModelType(modelType as ModelType).parse(id)).toBe(id)\n }\n })\n}\n" }, { "path": "apps/api/src/db/schema/common.ts", "content": "import { assert } from '@agentic/platform-core'\nimport { type Equal, sql, type Writable } from '@fisch0920/drizzle-orm'\nimport {\n pgEnum,\n type PgTimestampBuilderInitial,\n type PgTimestampConfig,\n type PgTimestampStringBuilderInitial,\n type PgVarcharBuilderInitial,\n type PgVarcharConfig,\n timestamp as timestampImpl,\n varchar\n} from '@fisch0920/drizzle-orm/pg-core'\nimport { createSchemaFactory } from '@fisch0920/drizzle-zod'\nimport { z } from '@hono/zod-openapi'\nimport { createId as createCuid2 } from '@paralleldrive/cuid2'\n\nexport const namespaceMaxLength = 256 as const\nexport const projectSlugMaxLength = 256 as const\nexport const projectNameMaxLength = 1024 as const\n\n// prefix is max 5 characters\n// separator is 1 character\n// cuid2 is max 24 characters\n// so use 32 characters to be safe for storing ids\nexport const idMaxLength = 32 as const\n\nexport const idPrefixMap = {\n team: 'team',\n project: 'proj',\n deployment: 'depl',\n consumer: 'csmr',\n logEntry: 'log',\n\n // auth\n user: 'user',\n account: 'acct'\n} as const\n\nexport type ModelType = keyof typeof idPrefixMap\n\nexport function createIdForModel(modelType: ModelType): string {\n const prefix = idPrefixMap[modelType]\n assert(prefix, 500, `Invalid model type: ${modelType}`)\n\n return `${prefix}_${createCuid2()}`\n}\n\n/**\n * Returns the primary `id` key to use for a given model type.\n */\nfunction getPrimaryId(modelType: ModelType) {\n return {\n id: id()\n .primaryKey()\n .$defaultFn(() => createIdForModel(modelType))\n }\n}\n\nexport const projectPrimaryId = getPrimaryId('project')\nexport const deploymentPrimaryId = getPrimaryId('deployment')\nexport const consumerPrimaryId = getPrimaryId('consumer')\nexport const logEntryPrimaryId = getPrimaryId('logEntry')\nexport const teamPrimaryId = getPrimaryId('team')\nexport const userPrimaryId = getPrimaryId('user')\nexport const accountPrimaryId = getPrimaryId('account')\n\n/**\n * All of our model primary ids have the following format:\n *\n * `${modelPrefix}_${cuid2}`\n */\nexport function id>(\n config?: PgVarcharConfig, never>\n): PgVarcharBuilderInitial<'', Writable, typeof idMaxLength> {\n return varchar({ length: idMaxLength, ...config })\n}\n\nexport const projectId = id\nexport const deploymentId = id\nexport const consumerId = id\nexport const logEntryId = id\nexport const teamId = id\nexport const userId = id\n\nexport function stripeId>(\n config?: PgVarcharConfig, never>\n): PgVarcharBuilderInitial<'', Writable, 255> {\n return varchar({ length: 255, ...config })\n}\n\n/**\n * `namespace/project-slug`\n */\nexport function projectIdentifier<\n U extends string,\n T extends Readonly<[U, ...U[]]>\n>(\n config?: PgVarcharConfig, never>\n): PgVarcharBuilderInitial<'', Writable, 514> {\n return varchar({ length: 514, ...config })\n}\n\n/**\n * `namespace/project-slug@hash`\n */\nexport function deploymentIdentifier<\n U extends string,\n T extends Readonly<[U, ...U[]]>\n>(\n config?: PgVarcharConfig, never>\n): PgVarcharBuilderInitial<'', Writable, 530> {\n return varchar({ length: 530, ...config })\n}\n\nexport function username>(\n config?: PgVarcharConfig, never>\n): PgVarcharBuilderInitial<'', Writable, typeof namespaceMaxLength> {\n return varchar({ length: namespaceMaxLength, ...config })\n}\n\nexport function teamSlug>(\n config?: PgVarcharConfig, never>\n): PgVarcharBuilderInitial<'', Writable, typeof namespaceMaxLength> {\n return varchar({ length: namespaceMaxLength, ...config })\n}\n\nexport function projectNamespace<\n U extends string,\n T extends Readonly<[U, ...U[]]>\n>(\n config?: PgVarcharConfig, never>\n): PgVarcharBuilderInitial<'', Writable, typeof namespaceMaxLength> {\n return varchar({ length: namespaceMaxLength, ...config })\n}\n\nexport function projectSlug>(\n config?: PgVarcharConfig, never>\n): PgVarcharBuilderInitial<'', Writable, typeof projectSlugMaxLength> {\n return varchar({ length: projectSlugMaxLength, ...config })\n}\n\nexport function projectName>(\n config?: PgVarcharConfig, never>\n): PgVarcharBuilderInitial<'', Writable, typeof projectNameMaxLength> {\n return varchar({ length: projectNameMaxLength, ...config })\n}\n\n/**\n * Timestamp with mode `string`\n */\nexport function timestamp<\n TMode extends PgTimestampConfig['mode'] & {} = 'string'\n>(\n config?: PgTimestampConfig\n): Equal extends true\n ? PgTimestampStringBuilderInitial<''>\n : PgTimestampBuilderInitial<''> {\n return timestampImpl({\n mode: 'string' as unknown as TMode,\n withTimezone: true,\n ...config\n })\n}\n\nexport const timestamps = {\n createdAt: timestamp().notNull().defaultNow(),\n updatedAt: timestamp()\n .notNull()\n .default(sql`now()`),\n deletedAt: timestamp()\n}\n\nexport const userRoleEnum = pgEnum('UserRole', ['user', 'admin'])\nexport const teamMemberRoleEnum = pgEnum('TeamMemberRole', ['user', 'admin'])\nexport const logEntryTypeEnum = pgEnum('LogEntryType', ['log'])\nexport const logEntryLevelEnum = pgEnum('LogEntryLevel', [\n 'trace',\n 'debug',\n 'info',\n 'warn',\n 'error'\n])\nexport const pricingIntervalEnum = pgEnum('PricingInterval', [\n 'day',\n 'week',\n 'month',\n 'year'\n])\nexport const pricingCurrencyEnum = pgEnum('PricingCurrency', ['usd'])\nexport const authProviderTypeEnum = pgEnum('AuthProviderType', [\n 'github',\n 'password'\n])\n\nexport const { createInsertSchema, createSelectSchema, createUpdateSchema } =\n createSchemaFactory({\n zodInstance: z,\n coerce: {\n // Coerce dates / strings to timetamps\n date: true\n }\n })\n" }, { "path": "apps/api/src/db/schema/consumer.ts", "content": "import {\n type StripeSubscriptionItemIdMap,\n stripeSubscriptionItemIdMapSchema\n} from '@agentic/platform-types'\nimport { relations } from '@fisch0920/drizzle-orm'\nimport {\n boolean,\n index,\n jsonb,\n pgTable,\n text\n} from '@fisch0920/drizzle-orm/pg-core'\nimport { z } from '@hono/zod-openapi'\n\nimport { env } from '@/lib/env'\n\nimport {\n consumerIdSchema,\n deploymentIdSchema,\n projectIdSchema,\n userIdSchema\n} from '../schemas'\nimport {\n consumerPrimaryId,\n createInsertSchema,\n createSelectSchema,\n createUpdateSchema,\n deploymentId,\n projectId,\n stripeId,\n timestamps,\n userId\n} from './common'\nimport { deployments, deploymentSelectSchema } from './deployment'\nimport { projects, projectSelectSchema } from './project'\nimport { users, userSelectSchema } from './user'\n\n// TODO: Consumers should be valid for any enabled project like in RapidAPI and GCP.\n// This may require a separate model to aggregate User Applications.\n// https://docs.rapidapi.com/docs/keys#section-different-api-keys-per-application\n\n/**\n * A `Consumer` represents a user who has subscribed to a `Project` and is used\n * to track usage and billing.\n *\n * Consumers are linked to a corresponding Stripe Customer and Subscription.\n * The Stripe customer will either be the user's default Stripe Customer if the\n * project uses the default Agentic platform account, or a customer on the project\n * owner's connected Stripe account if the project has Stripe Connect enabled.\n */\nexport const consumers = pgTable(\n 'consumers',\n {\n ...consumerPrimaryId,\n ...timestamps,\n\n // API key for this consumer\n // (called \"token\" for backwards compatibility)\n token: text().notNull(),\n\n // The slug of the PricingPlan in the target deployment that this consumer\n // is subscribed to.\n plan: text(),\n\n // Whether the consumer has made at least one successful API call after\n // initializing their subscription.\n activated: boolean().default(false).notNull(),\n\n // TODO: Re-add coupon support\n // coupon: text(),\n\n // only used during initial creation\n source: text(),\n\n userId: userId()\n .notNull()\n .references(() => users.id),\n\n // The project this user is subscribed to\n projectId: projectId()\n .notNull()\n .references(() => projects.id, {\n onDelete: 'cascade'\n }),\n\n // The specific deployment this user is subscribed to, since pricing can\n // change across deployment versions)\n deploymentId: deploymentId()\n .notNull()\n .references(() => deployments.id, {\n onDelete: 'cascade'\n }),\n\n // Stripe subscription status (synced via webhooks). Should move from\n // `incomplete` to `active` after the first successful payment.\n stripeStatus: text().default('incomplete').notNull(),\n\n // Whether the consumer's subscription is currently active, depending on\n // `stripeStatus`.\n isStripeSubscriptionActive: boolean().default(true).notNull(),\n\n // Main Stripe Subscription id\n _stripeSubscriptionId: stripeId(),\n\n // [pricingPlanLineItemSlug: string]: string\n _stripeSubscriptionItemIdMap: jsonb()\n .$type()\n .default({})\n .notNull(),\n\n // Denormalized from User or possibly separate for stripe connect\n // TODO: is this necessary?\n _stripeCustomerId: stripeId().notNull()\n },\n (table) => [\n index('consumer_token_idx').on(table.token),\n index('consumer_userId_idx').on(table.userId),\n index('consumer_projectId_idx').on(table.projectId),\n index('consumer_deploymentId_idx').on(table.deploymentId),\n index('consumer_isStripeSubscriptionActive_idx').on(\n table.isStripeSubscriptionActive\n ),\n index('consumer_createdAt_idx').on(table.createdAt),\n index('consumer_updatedAt_idx').on(table.updatedAt),\n index('consumer_deletedAt_idx').on(table.deletedAt)\n ]\n)\n\nexport const consumersRelations = relations(consumers, ({ one }) => ({\n user: one(users, {\n fields: [consumers.userId],\n references: [users.id]\n }),\n project: one(projects, {\n fields: [consumers.projectId],\n references: [projects.id]\n }),\n deployment: one(deployments, {\n fields: [consumers.deploymentId],\n references: [deployments.id]\n })\n}))\n\nexport const consumerSelectBaseSchema = createSelectSchema(consumers, {\n id: consumerIdSchema,\n userId: userIdSchema,\n projectId: projectIdSchema,\n deploymentId: deploymentIdSchema,\n\n _stripeSubscriptionItemIdMap: stripeSubscriptionItemIdMapSchema\n})\n .omit({\n _stripeSubscriptionId: true,\n _stripeSubscriptionItemIdMap: true,\n _stripeCustomerId: true\n })\n .extend({\n user: z\n .lazy(() => userSelectSchema)\n .optional()\n .openapi('User', { type: 'object' }),\n\n project: z\n .lazy(() => projectSelectSchema)\n .optional()\n .openapi('Project', { type: 'object' }),\n\n // deployment: z\n // .lazy(() => deploymentSelectSchema)\n // .optional()\n // .openapi('Deployment', { type: 'object' })\n\n // TODO: Improve the self-referential typing here that `@hono/zod-openapi`\n // trips up on.\n deployment: z\n .any()\n .refine(\n (deployment): boolean =>\n !deployment || deploymentSelectSchema.safeParse(deployment).success,\n {\n message: 'Invalid lastDeployment'\n }\n )\n .transform((deployment): any => {\n if (!deployment) return undefined\n return deploymentSelectSchema.parse(deployment)\n })\n .optional()\n })\n\n// These are all derived virtual URLs that are not stored in the database\nexport const derivedConsumerFields = {\n /**\n * A private admin URL for managing the customer's subscription. This URL\n * is only accessible by the customer.\n *\n * @example https://agentic.so/app/consumers/cons_123\n */\n adminUrl: z\n .string()\n .url()\n .describe(\n \"A private admin URL for managing the customer's subscription. This URL is only accessible by the customer.\"\n )\n} as const\n\nexport const consumerSelectSchema = consumerSelectBaseSchema\n .transform((consumer) => ({\n ...consumer,\n adminUrl: `${env.AGENTIC_WEB_BASE_URL}/app/consumers/${consumer.id}`\n }))\n .pipe(consumerSelectBaseSchema.extend(derivedConsumerFields).strip())\n .describe(\n `A Consumer represents a user who has subscribed to a Project and is used\nto track usage and billing.\n\nConsumers are linked to a corresponding Stripe Customer and Subscription.\nThe Stripe customer will either be the user's default Stripe Customer if the\nproject uses the default Agentic platform account, or a customer on the project\nowner's connected Stripe account if the project has Stripe Connect enabled.`\n )\n .openapi('Consumer')\n\nexport const consumerAdminSelectSchema = consumerSelectBaseSchema\n .extend({\n _stripeCustomerId: z.string().nonempty()\n })\n .transform((consumer) => ({\n ...consumer,\n adminUrl: `${env.AGENTIC_WEB_BASE_URL}/app/consumers/${consumer.id}`\n }))\n .openapi('AdminConsumer')\n\nexport const consumerInsertSchema = createInsertSchema(consumers, {\n deploymentId: deploymentIdSchema.optional(),\n\n plan: z.string().nonempty()\n})\n .pick({\n plan: true,\n source: true,\n deploymentId: true\n })\n .strict()\n\nexport const consumerUpdateSchema = createUpdateSchema(consumers, {\n deploymentId: deploymentIdSchema.optional()\n})\n .pick({\n plan: true,\n deploymentId: true\n })\n .strict()\n" }, { "path": "apps/api/src/db/schema/deployment.ts", "content": "import {\n agenticProjectConfigSchema,\n defaultRequestsRateLimit,\n type OriginAdapter,\n type PricingPlanList,\n type RateLimit,\n resolvedAgenticProjectConfigSchema,\n type Tool,\n type ToolConfig\n} from '@agentic/platform-types'\nimport {\n isValidDeploymentHash,\n parseDeploymentIdentifier\n} from '@agentic/platform-validators'\nimport { relations } from '@fisch0920/drizzle-orm'\nimport {\n boolean,\n index,\n jsonb,\n pgTable,\n text,\n uniqueIndex\n} from '@fisch0920/drizzle-orm/pg-core'\nimport { z } from '@hono/zod-openapi'\n\nimport { env } from '@/lib/env'\n\nimport {\n deploymentIdentifierSchema,\n deploymentIdSchema,\n projectIdSchema,\n teamIdSchema,\n userIdSchema\n} from '../schemas'\nimport {\n createSelectSchema,\n createUpdateSchema,\n deploymentIdentifier,\n deploymentPrimaryId,\n pricingIntervalEnum,\n projectId,\n projectName,\n teamId,\n timestamps,\n userId\n} from './common'\nimport { projects, projectSelectSchema } from './project'\nimport { teams } from './team'\nimport { users } from './user'\n\n/**\n * A Deployment is a single, immutable instance of a Project. Each deployment\n * contains pricing plans, origin server config (OpenAPI or MCP server), tool\n * definitions, and metadata.\n *\n * Deployments are private to a developer or team until they are published, at\n * which point they are accessible to any customers with access to the parent\n * Project.\n */\nexport const deployments = pgTable(\n 'deployments',\n {\n ...deploymentPrimaryId,\n ...timestamps,\n\n identifier: deploymentIdentifier().unique().notNull(),\n hash: text().notNull(),\n version: text(),\n\n published: boolean().default(false).notNull(),\n\n // display name\n name: projectName().notNull(),\n\n description: text().default('').notNull(),\n readme: text(), // URL to uploaded markdown document\n iconUrl: text(),\n sourceUrl: text(),\n homepageUrl: text(),\n\n userId: userId()\n .notNull()\n .references(() => users.id),\n teamId: teamId().references(() => teams.id),\n projectId: projectId()\n .notNull()\n .references(() => projects.id, {\n onDelete: 'cascade'\n }),\n\n // Tool definitions exposed by the origin server\n tools: jsonb().$type().notNull(),\n\n // Tool configs customize the behavior of tools for different pricing plans\n toolConfigs: jsonb().$type().default([]).notNull(),\n\n // Origin API adapter config (url, openapi/mcp/raw, internal/external hosting, etc)\n origin: jsonb().$type().notNull(),\n\n // Array\n pricingPlans: jsonb().$type().notNull(),\n\n // Which pricing intervals are supported for subscriptions to this project\n pricingIntervals: pricingIntervalEnum()\n .array()\n .default(['month'])\n .notNull(),\n\n // Default rate limit across all pricing plans\n defaultRateLimit: jsonb()\n .$type()\n .notNull()\n .default(defaultRequestsRateLimit)\n\n // TODO: metadata config (logo, keywords, examples, etc)\n // TODO: webhooks\n // TODO: coupons\n // TODO: third-party auth provider config\n // NOTE: will need consumer.authProviders as well as user.authProviders for\n // this because custom oauth credentials that are deployment-specific. will\n // prolly also need to hash the individual AuthProviders in\n // deployment.authProviders to compare across deployments.\n },\n (table) => [\n uniqueIndex('deployment_identifier_idx').on(table.identifier),\n index('deployment_userId_idx').on(table.userId),\n index('deployment_teamId_idx').on(table.teamId),\n index('deployment_projectId_idx').on(table.projectId),\n index('deployment_published_idx').on(table.published),\n index('deployment_version_idx').on(table.version),\n index('deployment_createdAt_idx').on(table.createdAt),\n index('deployment_updatedAt_idx').on(table.updatedAt),\n index('deployment_deletedAt_idx').on(table.deletedAt)\n ]\n)\n\nexport const deploymentsRelations = relations(deployments, ({ one }) => ({\n user: one(users, {\n fields: [deployments.userId],\n references: [users.id]\n }),\n team: one(teams, {\n fields: [deployments.teamId],\n references: [teams.id]\n }),\n project: one(projects, {\n fields: [deployments.projectId],\n references: [projects.id]\n })\n}))\n\n// TODO: virtual hasFreeTier\n// TODO: virtual url\n// TODO: virtual openApiUrl\n// TODO: virtual saasUrl\n// TODO: virtual authProviders?\n// TODO: virtual openapi spec? (hide openapi.servers)\n\nexport const deploymentSelectBaseSchema = createSelectSchema(deployments, {\n id: deploymentIdSchema,\n userId: userIdSchema,\n teamId: teamIdSchema.optional(),\n projectId: projectIdSchema,\n identifier: deploymentIdentifierSchema,\n\n hash: (schema) =>\n schema.refine((hash) => isValidDeploymentHash(hash), {\n message: 'Invalid deployment hash'\n }),\n\n name: resolvedAgenticProjectConfigSchema.shape.name,\n version: resolvedAgenticProjectConfigSchema.shape.version,\n description: resolvedAgenticProjectConfigSchema.shape.description,\n readme: resolvedAgenticProjectConfigSchema.shape.readme,\n iconUrl: resolvedAgenticProjectConfigSchema.shape.iconUrl,\n sourceUrl: resolvedAgenticProjectConfigSchema.shape.sourceUrl,\n homepageUrl: resolvedAgenticProjectConfigSchema.shape.homepageUrl,\n origin: resolvedAgenticProjectConfigSchema.shape.origin,\n pricingPlans: resolvedAgenticProjectConfigSchema.shape.pricingPlans,\n pricingIntervals: resolvedAgenticProjectConfigSchema.shape.pricingIntervals,\n tools: resolvedAgenticProjectConfigSchema.shape.tools,\n toolConfigs: resolvedAgenticProjectConfigSchema.shape.toolConfigs,\n defaultRateLimit: resolvedAgenticProjectConfigSchema.shape.defaultRateLimit\n})\n .omit({\n origin: true\n })\n .extend({\n // user: z\n // .lazy(() => userSelectSchema)\n // .optional()\n // .openapi('User', { type: 'object' }),\n // team: z\n // .lazy(() => teamSelectSchema)\n // .optional()\n // .openapi('Team', { type: 'object' }),\n // project: z\n // .lazy(() => projectSelectSchema)\n // .optional()\n // .openapi('Project', { type: 'object' })\n\n // TODO: Improve the self-referential typing here that `@hono/zod-openapi`\n // trips up on.\n project: z\n .any()\n .refine(\n (project): boolean =>\n !project || projectSelectSchema.safeParse(project).success,\n {\n message: 'Invalid lastDeployment'\n }\n )\n .transform((project): any => {\n if (!project) return undefined\n return projectSelectSchema.parse(project)\n })\n .optional()\n // .openapi('Project', { type: 'object' })\n\n // TODO: Circular references make this schema less than ideal\n // project: z.object({}).optional().openapi('Project', { type: 'object' })\n })\n\n// These are all derived virtual URLs that are not stored in the database\nexport const derivedDeploymentFields = {\n /**\n * The public base HTTP URL for the deployment supporting HTTP POST requests\n * for individual tools at `/tool-name` subpaths.\n *\n * @example https://gateway.agentic.so/@agentic/search@latest\n */\n gatewayBaseUrl: z\n .string()\n .url()\n .describe(\n 'The public base HTTP URL for the deployment supporting HTTP POST requests for individual tools at `/tool-name` subpaths.'\n ),\n\n /**\n * The public MCP URL for the deployment supporting the Streamable HTTP\n * transport.\n *\n * @example https://gateway.agentic.so/@agentic/search@latest/mcp\n */\n gatewayMcpUrl: z\n .string()\n .url()\n .describe(\n 'The public MCP URL for the deployment supporting the Streamable HTTP transport.'\n ),\n\n /**\n * The public marketplace URL for the deployment's project.\n *\n * Note that only published deployments are visible on the marketplace.\n *\n * @example https://agentic.so/marketplace/projects/@agentic/search\n */\n marketplaceUrl: z\n .string()\n .url()\n .describe(\"The public marketplace URL for the deployment's project.\"),\n\n /**\n * A private admin URL for managing the deployment. This URL is only accessible\n * by project owners.\n *\n * @example https://agentic.so/app/projects/@agentic/search/deployments/123\n */\n adminUrl: z\n .string()\n .url()\n .describe(\n 'A private admin URL for managing the deployment. This URL is only accessible by project owners.'\n )\n} as const\n\nexport const deploymentSelectSchema = deploymentSelectBaseSchema\n .transform((deployment) => {\n const { projectIdentifier, deploymentIdentifier } =\n parseDeploymentIdentifier(deployment.identifier)\n\n return {\n ...deployment,\n gatewayBaseUrl: `${env.AGENTIC_GATEWAY_BASE_URL}/${deploymentIdentifier}`,\n gatewayMcpUrl: `${env.AGENTIC_GATEWAY_BASE_URL}/${deploymentIdentifier}/mcp`,\n marketplaceUrl: `${env.AGENTIC_WEB_BASE_URL}/marketplace/projects/${projectIdentifier}`,\n adminUrl: `${env.AGENTIC_WEB_BASE_URL}/app/projects/${projectIdentifier}/deployments/${deployment.hash}`\n }\n })\n .pipe(deploymentSelectBaseSchema.extend(derivedDeploymentFields).strip())\n .describe(\n `A Deployment is a single, immutable instance of a Project. Each deployment contains pricing plans, origin server config (OpenAPI or MCP server), tool definitions, and metadata.\n\nDeployments are private to a developer or team until they are published, at which point they are accessible to any customers with access to the parent Project.`\n )\n .openapi('Deployment')\n\nexport const deploymentAdminSelectSchema = deploymentSelectBaseSchema\n .extend({\n origin: resolvedAgenticProjectConfigSchema.shape.origin,\n _secret: z.string().nonempty()\n })\n .transform((deployment) => {\n const { projectIdentifier, deploymentIdentifier } =\n parseDeploymentIdentifier(deployment.identifier)\n\n return {\n ...deployment,\n gatewayBaseUrl: `${env.AGENTIC_GATEWAY_BASE_URL}/${deploymentIdentifier}`,\n gatewayMcpUrl: `${env.AGENTIC_GATEWAY_BASE_URL}/${deploymentIdentifier}/mcp`,\n marketplaceUrl: `${env.AGENTIC_WEB_BASE_URL}/marketplace/projects/${projectIdentifier}`,\n adminUrl: `${env.AGENTIC_WEB_BASE_URL}/app/projects/${projectIdentifier}/deployments/${deployment.hash}`\n }\n })\n .openapi('AdminDeployment')\n\nexport const deploymentInsertSchema = agenticProjectConfigSchema.strict()\n\n// TODO: Deployments should be immutable, so we should not allow updates aside\n// from publishing. But editing a project's description should be possible from\n// the admin UI, so maybe we allow only updates to some properties? Or we\n// denormalize these fields in `project`?\nexport const deploymentUpdateSchema = createUpdateSchema(deployments)\n .pick({\n deletedAt: true,\n description: true\n })\n .strict()\n\nexport const deploymentPublishSchema = createUpdateSchema(deployments, {\n version: z.string().nonempty()\n})\n .pick({\n version: true\n })\n .strict()\n" }, { "path": "apps/api/src/db/schema/index.ts", "content": "export * from './account'\nexport * from './auth-data'\nexport * from './common'\nexport * from './consumer'\nexport * from './deployment'\nexport * from './log-entry'\nexport * from './project'\nexport * from './team'\nexport * from './team-member'\nexport * from './user'\n" }, { "path": "apps/api/src/db/schema/log-entry.ts", "content": "import { relations } from '@fisch0920/drizzle-orm'\nimport {\n index,\n jsonb,\n pgTable,\n text,\n varchar\n} from '@fisch0920/drizzle-orm/pg-core'\n\nimport {\n consumerIdSchema,\n deploymentIdSchema,\n projectIdSchema,\n userIdSchema\n} from '../schemas'\nimport {\n consumerId,\n createSelectSchema,\n deploymentId,\n logEntryLevelEnum,\n logEntryPrimaryId,\n logEntryTypeEnum,\n projectId,\n timestamps,\n userId\n} from './common'\nimport { consumers } from './consumer'\nimport { deployments } from './deployment'\nimport { projects } from './project'\nimport { users } from './user'\n\n/**\n * A `LogEntry` is an internal audit log entry.\n */\nexport const logEntries = pgTable(\n 'log_entries',\n {\n ...logEntryPrimaryId,\n ...timestamps,\n\n // core data (required)\n type: logEntryTypeEnum().notNull().default('log'),\n level: logEntryLevelEnum().notNull().default('info'),\n message: text().notNull(),\n\n // context info (required)\n environment: text(),\n service: text(),\n requestId: varchar({ length: 512 }),\n traceId: varchar({ length: 512 }),\n\n // relations (optional)\n userId: userId(),\n projectId: projectId(),\n deploymentId: deploymentId(),\n consumerId: consumerId(),\n\n // misc metadata (optional)\n metadata: jsonb().$type>().default({}).notNull()\n },\n (table) => [\n index('log_entry_type_idx').on(table.type),\n // TODO: Don't add these extra indices until we need them. They'll become\n // very large very fast.\n // index('log_entry_level_idx').on(table.level),\n // index('log_entry_environment_idx').on(table.environment),\n // index('log_entry_service_idx').on(table.service),\n // index('log_entry_requestId_idx').on(table.requestId),\n // index('log_entry_traceId_idx').on(table.traceId),\n index('log_entry_userId_idx').on(table.userId),\n index('log_entry_projectId_idx').on(table.projectId),\n index('log_entry_deploymentId_idx').on(table.deploymentId),\n // index('log_entry_consumerId_idx').on(table.consumerId),\n index('log_entry_createdAt_idx').on(table.createdAt),\n index('log_entry_updatedAt_idx').on(table.updatedAt),\n index('log_entry_deletedAt_idx').on(table.deletedAt)\n ]\n)\n\nexport const logEntriesRelations = relations(logEntries, ({ one }) => ({\n user: one(users, {\n fields: [logEntries.userId],\n references: [users.id]\n }),\n project: one(projects, {\n fields: [logEntries.projectId],\n references: [projects.id]\n }),\n deployment: one(deployments, {\n fields: [logEntries.deploymentId],\n references: [deployments.id]\n }),\n consumer: one(consumers, {\n fields: [logEntries.consumerId],\n references: [consumers.id]\n })\n}))\n\nexport const logEntrySelectSchema = createSelectSchema(logEntries, {\n userId: userIdSchema.optional(),\n projectId: projectIdSchema.optional(),\n deploymentId: deploymentIdSchema.optional(),\n consumerId: consumerIdSchema.optional()\n})\n // .extend({\n // user: z\n // .lazy(() => userSelectSchema)\n // .optional()\n // .openapi('User', { type: 'object' }),\n\n // project: z\n // .lazy(() => projectSelectSchema)\n // .optional()\n // .openapi('Project', { type: 'object' }),\n\n // deployment: z\n // .lazy(() => deploymentSelectSchema)\n // .optional()\n // .openapi('Deployment', { type: 'object' }),\n\n // consumer: z\n // .lazy(() => consumerSelectSchema)\n // .optional()\n // .openapi('Consumer', { type: 'object' })\n // })\n .strip()\n .openapi('LogEntry')\n" }, { "path": "apps/api/src/db/schema/project.ts", "content": "import {\n agenticProjectConfigSchema,\n pricingIntervalSchema,\n type StripeMeterIdMap,\n stripeMeterIdMapSchema,\n type StripePriceIdMap,\n stripePriceIdMapSchema,\n type StripeProductIdMap,\n stripeProductIdMapSchema\n} from '@agentic/platform-types'\nimport { relations } from '@fisch0920/drizzle-orm'\nimport {\n boolean,\n index,\n integer,\n jsonb,\n pgTable,\n text,\n uniqueIndex\n} from '@fisch0920/drizzle-orm/pg-core'\nimport { z } from '@hono/zod-openapi'\n\nimport { env } from '@/lib/env'\n\nimport {\n deploymentIdSchema,\n projectIdentifierSchema,\n projectIdSchema,\n teamIdSchema,\n userIdSchema\n} from '../schemas'\nimport {\n createInsertSchema,\n createSelectSchema,\n createUpdateSchema,\n deploymentId,\n pricingCurrencyEnum,\n pricingIntervalEnum,\n projectIdentifier,\n projectName,\n projectNamespace,\n projectPrimaryId,\n projectSlug,\n stripeId,\n teamId,\n timestamps,\n userId\n} from './common'\nimport { deployments, deploymentSelectSchema } from './deployment'\nimport { teams, teamSelectSchema } from './team'\nimport { users, userSelectSchema } from './user'\n\n/**\n * A Project represents a single Agentic API product. Is is comprised of a\n * series of immutable Deployments, each of which contains pricing data, origin\n * API config, OpenAPI or MCP specs, tool definitions, and various metadata.\n *\n * You can think of Agentic Projects as similar to Vercel projects. They both\n * hold some common configuration and are comprised of a series of immutable\n * Deployments.\n *\n * Internally, Projects manage all of the Stripe billing resources across\n * Deployments (Stripe Products, Prices, and Meters for usage-based billing).\n */\nexport const projects = pgTable(\n 'projects',\n {\n ...projectPrimaryId,\n ...timestamps,\n\n // display name\n name: projectName().notNull(),\n\n // identifier is `@namespace/slug`\n identifier: projectIdentifier().unique().notNull(),\n\n // namespace is either a username or team slug\n namespace: projectNamespace().notNull(),\n\n // slug is a unique identifier for the project within its namespace\n slug: projectSlug().notNull(),\n\n // Defaulting to `true` for now to hide all projects from the marketplace\n // by default. Will need to manually set to `true` to allow projects to be\n // visible on the marketplace.\n private: boolean().default(true).notNull(),\n\n // Admin-controlled tags for organizing and featuring on the marketplace\n tags: text().array(),\n\n // TODO: allow for multiple aliases like vercel\n // alias: text(),\n\n userId: userId()\n .notNull()\n .references(() => users.id),\n teamId: teamId(),\n\n // Most recently published Deployment if one exists\n lastPublishedDeploymentId: deploymentId(),\n\n // Most recent Deployment if one exists\n lastDeploymentId: deploymentId(),\n\n // Semver version of the most recently published Deployment (if one exists)\n // (denormalized for convenience)\n lastPublishedDeploymentVersion: text(),\n\n applicationFeePercent: integer().default(20).notNull(),\n\n // TODO: This is going to need to vary from dev to prod\n //isStripeConnectEnabled: boolean().default(false).notNull(),\n\n // Default pricing interval for subscriptions to this project\n // Note: This is essentially hard-coded and not configurable by users for now.\n defaultPricingInterval: pricingIntervalEnum().default('month').notNull(),\n\n // Pricing currency used across all prices and subscriptions to this project\n pricingCurrency: pricingCurrencyEnum().default('usd').notNull(),\n\n // All deployments share the same underlying proxy secret, which allows\n // origin servers to verify that requests are coming from Agentic's API\n // gateway.\n _secret: text().notNull(),\n\n // Auth token used to access the platform API on behalf of this project\n // _providerToken: text().notNull(),\n\n // TODO: Full-text search\n // _text: text().default('').notNull(),\n\n // Stripe coupons associated with this project, mapping from unique coupon\n // object hash to stripe coupon id.\n // `[hash: string]: string`\n // _stripeCouponsMap: jsonb()\n // .$type>()\n // .default({})\n // .notNull(),\n\n // Stripe billing Products associated with this project across deployments,\n // mapping from PricingPlanLineItem **slug** to Stripe Product id.\n // NOTE: This map uses slugs as keys, unlike `_stripePriceIdMap`, because\n // Stripe Products are agnostic to the PricingPlanLineItem config. This is\n // important for them to be shared across deployments even if the pricing\n // details change.\n _stripeProductIdMap: jsonb()\n .$type()\n .default({})\n .notNull(),\n\n // Stripe billing Prices associated with this project, mapping from unique\n // PricingPlanLineItem **hash** to Stripe Price id.\n // NOTE: This map uses hashes as keys, because Stripe Prices are dependent\n // on the PricingPlanLineItem config. This is important for them to be shared\n // across deployments even if the pricing details change.\n _stripePriceIdMap: jsonb().$type().default({}).notNull(),\n\n // Stripe billing LineItems associated with this project, mapping from unique\n // PricingPlanLineItem **slug** to Stripe Meter id.\n // NOTE: This map uses slugs as keys, unlike `_stripePriceIdMap`, because\n // Stripe Products are agnostic to the PricingPlanLineItem config. This is\n // important for them to be shared across deployments even if the pricing\n // details change.\n _stripeMeterIdMap: jsonb().$type().default({}).notNull(),\n\n // Connected Stripe account (standard or express).\n // If not defined, then subscriptions for this project route through our\n // main Stripe account.\n _stripeAccountId: stripeId()\n },\n (table) => [\n uniqueIndex('project_identifier_idx').on(table.identifier),\n index('project_namespace_idx').on(table.namespace),\n index('project_userId_idx').on(table.userId),\n index('project_teamId_idx').on(table.teamId),\n // index('project_alias_idx').on(table.alias),\n index('project_private_idx').on(table.private),\n index('project_tags_idx').on(table.tags),\n index('project_lastPublishedDeploymentId_idx').on(\n table.lastPublishedDeploymentId\n ),\n index('project_createdAt_idx').on(table.createdAt),\n index('project_updatedAt_idx').on(table.updatedAt),\n index('project_deletedAt_idx').on(table.deletedAt)\n ]\n)\n\nexport const projectsRelations = relations(projects, ({ one }) => ({\n user: one(users, {\n fields: [projects.userId],\n references: [users.id]\n }),\n team: one(teams, {\n fields: [projects.teamId],\n references: [teams.id]\n }),\n lastPublishedDeployment: one(deployments, {\n fields: [projects.lastPublishedDeploymentId],\n references: [deployments.id],\n relationName: 'lastPublishedDeployment'\n }),\n lastDeployment: one(deployments, {\n fields: [projects.lastDeploymentId],\n references: [deployments.id],\n relationName: 'lastDeployment'\n })\n // deployments: many(deployments, {\n // relationName: 'deployments'\n // }),\n // publishedDeployments: many(deployments, {\n // relationName: 'publishedDeployments'\n // })\n}))\n\nexport const projectSelectBaseSchema = createSelectSchema(projects, {\n id: projectIdSchema,\n userId: userIdSchema,\n teamId: teamIdSchema.optional(),\n identifier: projectIdentifierSchema,\n name: agenticProjectConfigSchema.shape.name,\n slug: agenticProjectConfigSchema.shape.slug,\n tags: z.array(z.string()).optional(),\n lastPublishedDeploymentId: deploymentIdSchema.optional(),\n lastDeploymentId: deploymentIdSchema.optional(),\n\n applicationFeePercent: (schema) => schema.nonnegative(),\n\n defaultPricingInterval: pricingIntervalSchema,\n\n _stripeProductIdMap: stripeProductIdMapSchema,\n _stripePriceIdMap: stripePriceIdMapSchema,\n _stripeMeterIdMap: stripeMeterIdMapSchema\n})\n .omit({\n applicationFeePercent: true,\n _secret: true,\n // _text: true,\n _stripeProductIdMap: true,\n _stripePriceIdMap: true,\n _stripeMeterIdMap: true,\n _stripeAccountId: true\n })\n .extend({\n user: z\n .lazy(() => userSelectSchema)\n .optional()\n .openapi('User', { type: 'object' }),\n\n team: z\n .lazy(() => teamSelectSchema)\n .optional()\n .openapi('Team', { type: 'object' }),\n\n // TODO: Improve the self-referential typing here that `@hono/zod-openapi`\n // trips up on.\n lastPublishedDeployment: z\n .any()\n .refine(\n (deployment): boolean =>\n !deployment || deploymentSelectSchema.safeParse(deployment).success,\n {\n message: 'Invalid lastPublishedDeployment'\n }\n )\n .transform((deployment): any => {\n if (!deployment) return undefined\n\n return deploymentSelectSchema.parse(deployment)\n })\n .optional(),\n\n lastDeployment: z\n .any()\n .refine(\n (deployment): boolean =>\n !deployment || deploymentSelectSchema.safeParse(deployment).success,\n {\n message: 'Invalid lastDeployment'\n }\n )\n .transform((deployment): any => {\n if (!deployment) return undefined\n return deploymentSelectSchema.parse(deployment)\n })\n .optional(),\n\n deployment: z\n .any()\n .refine(\n (deployment): boolean =>\n !deployment || deploymentSelectSchema.safeParse(deployment).success,\n {\n message: 'Invalid lastDeployment'\n }\n )\n .transform((deployment): any => {\n if (!deployment) return undefined\n return deploymentSelectSchema.parse(deployment)\n })\n .optional()\n })\n\n// These are all derived virtual URLs that are not stored in the database\nexport const derivedProjectFields = {\n /**\n * The public base HTTP URL for the project supporting HTTP POST requests for\n * individual tools at `/tool-name` subpaths.\n *\n * @example https://gateway.agentic.so/@agentic/search\n */\n gatewayBaseUrl: z\n .string()\n .url()\n .describe(\n 'The public base HTTP URL for the project supporting HTTP POST requests for individual tools at `/tool-name` subpaths.'\n ),\n\n /**\n * The public MCP URL for the project supporting the Streamable HTTP transport.\n *\n * @example https://gateway.agentic.so/@agentic/search/mcp\n */\n gatewayMcpUrl: z\n .string()\n .url()\n .describe(\n 'The public MCP URL for the project supporting the Streamable HTTP transport.'\n ),\n\n /**\n * The public marketplace URL for the project.\n *\n * @example https://agentic.so/marketplace/projects/@agentic/search\n */\n marketplaceUrl: z\n .string()\n .url()\n .describe('The public marketplace URL for the project.'),\n\n /**\n * A private admin URL for managing the project. This URL is only accessible\n * by project owners.\n *\n * @example https://agentic.so/app/projects/@agentic/search\n */\n adminUrl: z\n .string()\n .url()\n .describe(\n 'A private admin URL for managing the project. This URL is only accessible by project owners.'\n )\n} as const\n\nexport const projectSelectSchema = projectSelectBaseSchema\n .transform((project) => ({\n ...project,\n gatewayBaseUrl: `${env.AGENTIC_GATEWAY_BASE_URL}/${project.identifier}`,\n gatewayMcpUrl: `${env.AGENTIC_GATEWAY_BASE_URL}/${project.identifier}/mcp`,\n marketplaceUrl: `${env.AGENTIC_WEB_BASE_URL}/marketplace/projects/${project.identifier}`,\n adminUrl: `${env.AGENTIC_WEB_BASE_URL}/app/projects/${project.identifier}`\n }))\n .pipe(projectSelectBaseSchema.extend(derivedProjectFields).strip())\n .describe(\n `A Project represents a single Agentic API product. It is comprised of a series of immutable Deployments, each of which contains pricing data, origin API config, OpenAPI or MCP specs, tool definitions, and various metadata.\n\nYou can think of Agentic Projects as similar to Vercel projects. They both hold some common configuration and are comprised of a series of immutable Deployments.\n\nInternally, Projects manage all of the Stripe billing resources across Deployments (Stripe Products, Prices, and Meters for usage-based billing).`\n )\n .openapi('Project')\n\nexport const projectInsertSchema = createInsertSchema(projects, {\n identifier: projectIdentifierSchema,\n\n name: agenticProjectConfigSchema.shape.name,\n slug: agenticProjectConfigSchema.shape.slug\n})\n .pick({\n name: true,\n slug: true\n })\n .strict()\n\nexport const projectUpdateSchema = createUpdateSchema(projects)\n .pick({\n name: true\n // alias: true\n })\n .strict()\n\n// TODO: virtual saasUrl\n// TODO: virtual aliasUrl\n" }, { "path": "apps/api/src/db/schema/team-member.ts", "content": "import { relations } from '@fisch0920/drizzle-orm'\nimport {\n boolean,\n index,\n pgTable,\n primaryKey\n} from '@fisch0920/drizzle-orm/pg-core'\n\nimport { userIdSchema } from '../schemas'\nimport {\n createInsertSchema,\n createSelectSchema,\n createUpdateSchema,\n teamId,\n teamMemberRoleEnum,\n teamSlug,\n timestamp,\n timestamps,\n userId\n} from './common'\nimport { teams } from './team'\nimport { users } from './user'\n\nexport const teamMembers = pgTable(\n 'team_members',\n {\n ...timestamps,\n\n userId: userId()\n .notNull()\n .references(() => users.id, { onDelete: 'cascade' }),\n teamSlug: teamSlug()\n .notNull()\n .references(() => teams.slug, { onDelete: 'cascade' }),\n teamId: teamId()\n .notNull()\n .references(() => teams.id, { onDelete: 'cascade' }),\n role: teamMemberRoleEnum().default('user').notNull(),\n\n confirmed: boolean().default(false).notNull(),\n confirmedAt: timestamp()\n },\n (table) => [\n primaryKey({ columns: [table.userId, table.teamId] }),\n index('team_member_user_idx').on(table.userId),\n index('team_member_team_idx').on(table.teamId),\n index('team_member_slug_idx').on(table.teamSlug),\n index('team_member_createdAt_idx').on(table.createdAt),\n index('team_member_updatedAt_idx').on(table.updatedAt),\n index('team_member_deletedAt_idx').on(table.deletedAt)\n ]\n)\n\nexport const teamMembersRelations = relations(teamMembers, ({ one }) => ({\n user: one(users, {\n fields: [teamMembers.userId],\n references: [users.id]\n }),\n team: one(teams, {\n fields: [teamMembers.teamId],\n references: [teams.id]\n })\n}))\n\nexport const teamMemberSelectSchema = createSelectSchema(teamMembers)\n // .extend({\n // user: z\n // .lazy(() => userSelectSchema)\n // .optional()\n // .openapi('User', { type: 'object' }),\n\n // team: z\n // .lazy(() => teamSelectSchema)\n // .optional()\n // .openapi('Team', { type: 'object' })\n // })\n .strip()\n .openapi('TeamMember')\n\nexport const teamMemberInsertSchema = createInsertSchema(teamMembers, {\n userId: userIdSchema\n})\n .pick({\n userId: true,\n role: true\n })\n .strict()\n\nexport const teamMemberUpdateSchema = createUpdateSchema(teamMembers)\n .pick({\n role: true\n })\n .strict()\n" }, { "path": "apps/api/src/db/schema/team.ts", "content": "import { isValidTeamSlug } from '@agentic/platform-validators'\nimport { relations } from '@fisch0920/drizzle-orm'\nimport {\n index,\n pgTable,\n text,\n uniqueIndex\n} from '@fisch0920/drizzle-orm/pg-core'\n\nimport { userIdSchema } from '../schemas'\nimport {\n createInsertSchema,\n createSelectSchema,\n createUpdateSchema,\n teamPrimaryId,\n teamSlug,\n timestamps,\n userId\n} from './common'\nimport { teamMembers } from './team-member'\nimport { users } from './user'\n\nexport const teams = pgTable(\n 'teams',\n {\n ...teamPrimaryId,\n ...timestamps,\n\n slug: teamSlug().unique().notNull(),\n name: text().notNull(),\n\n ownerId: userId().notNull()\n },\n (table) => [\n uniqueIndex('team_slug_idx').on(table.slug),\n index('team_createdAt_idx').on(table.createdAt),\n index('team_updatedAt_idx').on(table.updatedAt),\n index('team_deletedAt_idx').on(table.deletedAt)\n ]\n)\n\nexport const teamsRelations = relations(teams, ({ one, many }) => ({\n owner: one(users, {\n fields: [teams.ownerId],\n references: [users.id]\n }),\n members: many(teamMembers)\n}))\n\nexport const teamSelectSchema = createSelectSchema(teams)\n // .extend({\n // owner: z\n // .lazy(() => userSelectSchema)\n // .optional()\n // .openapi('User', { type: 'object' })\n // })\n .strip()\n .openapi('Team')\n\nexport const teamInsertSchema = createInsertSchema(teams, {\n slug: (schema) =>\n schema.refine((slug) => isValidTeamSlug(slug), {\n message: 'Invalid team slug'\n })\n})\n .omit({ id: true, createdAt: true, updatedAt: true, ownerId: true })\n .strict()\n\nexport const teamUpdateSchema = createUpdateSchema(teams, {\n ownerId: userIdSchema\n})\n .pick({\n name: true,\n ownerId: true\n })\n .strict()\n" }, { "path": "apps/api/src/db/schema/user.ts", "content": "import { relations } from '@fisch0920/drizzle-orm'\nimport {\n boolean,\n index,\n pgTable,\n text,\n uniqueIndex\n} from '@fisch0920/drizzle-orm/pg-core'\n\nimport { accounts } from './account'\nimport {\n createSelectSchema,\n createUpdateSchema,\n stripeId,\n timestamps,\n username,\n // username,\n userPrimaryId,\n userRoleEnum\n} from './common'\n\nexport const users = pgTable(\n 'users',\n {\n ...userPrimaryId,\n ...timestamps,\n\n username: username().unique().notNull(),\n role: userRoleEnum().default('user').notNull(),\n\n email: text().notNull().unique(),\n isEmailVerified: boolean().default(false).notNull(),\n\n name: text(),\n bio: text(),\n image: text(),\n\n //isStripeConnectEnabledByDefault: boolean().default(true).notNull(),\n\n stripeCustomerId: stripeId()\n },\n (table) => [\n uniqueIndex('user_email_idx').on(table.email),\n uniqueIndex('user_username_idx').on(table.username),\n index('user_createdAt_idx').on(table.createdAt),\n index('user_updatedAt_idx').on(table.updatedAt)\n // index('user_deletedAt_idx').on(table.deletedAt)\n ]\n)\n\nexport const usersRelations = relations(users, ({ many }) => ({\n accounts: many(accounts)\n}))\n\nexport const userSelectSchema = createSelectSchema(users)\n .strip()\n .openapi('User')\n\nexport const userUpdateSchema = createUpdateSchema(users)\n .pick({\n name: true,\n bio: true,\n image: true\n //isStripeConnectEnabledByDefault: true\n })\n .strict()\n" }, { "path": "apps/api/src/db/schemas.ts", "content": "import { assert } from '@agentic/platform-core'\nimport {\n isNamespaceAllowed,\n isValidCuid,\n isValidDeploymentIdentifier,\n isValidProjectIdentifier,\n isValidTeamSlug,\n isValidUsername\n} from '@agentic/platform-validators'\nimport { z } from '@hono/zod-openapi'\n\nimport type { consumersRelations } from './schema/consumer'\nimport type { deploymentsRelations } from './schema/deployment'\nimport type { projectsRelations } from './schema/project'\nimport { idPrefixMap, type ModelType } from './schema/common'\n\nexport function getIdSchemaForModelType(modelType: ModelType) {\n const idPrefix = idPrefixMap[modelType]\n assert(idPrefix, 500, `Invalid model type: ${modelType}`)\n\n // Convert model type to PascalCase\n const modelDisplayName =\n modelType.charAt(0).toUpperCase() + modelType.slice(1)\n const example = `${idPrefix}_tz4a98xxat96iws9zmbrgj3a`\n\n return z\n .string()\n .refine(\n (id) => {\n const parts = id.split('_')\n if (parts.length !== 2) return false\n if (parts[0] !== idPrefix) return false\n if (!isValidCuid(parts[1])) return false\n\n return true\n },\n {\n message: `Invalid ${modelDisplayName} id`\n }\n )\n .describe(`${modelDisplayName} id (e.g. \"${example}\")`)\n // TODO: is this necessary?\n // .openapi(`${modelDisplayName}Id`, { example })\n}\n\nexport const userIdSchema = getIdSchemaForModelType('user')\nexport const teamIdSchema = getIdSchemaForModelType('team')\nexport const consumerIdSchema = getIdSchemaForModelType('consumer')\nexport const projectIdSchema = getIdSchemaForModelType('project')\nexport const deploymentIdSchema = getIdSchemaForModelType('deployment')\nexport const logEntryIdSchema = getIdSchemaForModelType('logEntry')\n\nexport const projectIdentifierSchema = z\n .string()\n .refine(\n (id) =>\n isValidProjectIdentifier(id, { strict: false }) ||\n projectIdSchema.safeParse(id).success,\n {\n message: 'Invalid project identifier'\n }\n )\n .describe('Public project identifier (e.g. \"@namespace/project-slug\")')\n .openapi('ProjectIdentifier')\n\nexport const deploymentIdentifierSchema = z\n .string()\n .refine(\n (id) =>\n isValidDeploymentIdentifier(id, { strict: false }) ||\n deploymentIdSchema.safeParse(id).success,\n {\n message: 'Invalid deployment identifier'\n }\n )\n .describe(\n 'Public deployment identifier (e.g. \"@namespace/project-slug@{hash|version|latest}\")'\n )\n .openapi('DeploymentIdentifier')\n\nexport const usernameSchema = z\n .string()\n .refine((username) => isValidUsername(username), {\n message: 'Invalid username'\n })\n .refine((username) => isNamespaceAllowed(username), {\n message:\n 'Username is not allowed (reserved, offensive, or otherwise confusing)'\n })\n\nexport const teamSlugSchema = z\n .string()\n .refine((slug) => isValidTeamSlug(slug), {\n message: 'Invalid team slug'\n })\n .refine((slug) => isNamespaceAllowed(slug), {\n message:\n 'Team slug is not allowed (reserved, offensive, or otherwise confusing)'\n })\n\nexport const paginationSchema = z.object({\n offset: z.coerce.number().int().nonnegative().default(0).optional(),\n limit: z.coerce.number().int().positive().max(100).default(10).optional(),\n sort: z.enum(['asc', 'desc']).default('desc').optional(),\n sortBy: z.enum(['createdAt', 'updatedAt']).default('createdAt').optional()\n})\n\nexport type ProjectRelationFields = keyof ReturnType<\n (typeof projectsRelations)['config']\n>\nexport const projectRelationsSchema: z.ZodType = z.enum([\n 'user',\n 'team',\n 'lastPublishedDeployment',\n 'lastDeployment'\n])\n\nexport type DeploymentRelationFields = keyof ReturnType<\n (typeof deploymentsRelations)['config']\n>\nexport const deploymentRelationsSchema: z.ZodType =\n z.enum(['user', 'team', 'project'])\n\nexport type ConsumerRelationFields = keyof ReturnType<\n (typeof consumersRelations)['config']\n>\nexport const consumerRelationsSchema: z.ZodType =\n z.enum(['user', 'project', 'deployment'])\n" }, { "path": "apps/api/src/db/types.test.ts", "content": "import type { Simplify } from 'type-fest'\nimport { expectTypeOf, test } from 'vitest'\n\nimport type {\n Consumer,\n LogEntry,\n RawConsumer,\n RawConsumerUpdate,\n RawDeployment,\n RawLogEntry,\n RawProject,\n RawUser,\n User\n} from './types'\n\ntype UserKeys = Exclude\ntype LogEntryKeys = keyof RawLogEntry & keyof LogEntry\ntype ConsumerKeys = keyof RawConsumer & keyof Consumer\n\ntype TODOFixedConsumer = Simplify<\n Omit<\n Consumer,\n | 'user'\n | 'project'\n | 'deployment'\n | 'gatewayBaseUrl'\n | 'gatewayMcpUrl'\n | 'marketplaceUrl'\n | 'adminUrl'\n > & {\n user?: RawUser | null\n project?: RawProject | null\n deployment?: RawDeployment | null\n }\n>\n\ntest('User types are compatible', () => {\n expectTypeOf().toExtend()\n\n expectTypeOf().toEqualTypeOf()\n})\n\ntest('LogEntry types are compatible', () => {\n expectTypeOf().toExtend()\n\n expectTypeOf().toEqualTypeOf<\n RawLogEntry[LogEntryKeys]\n >()\n})\n\ntest('Consumer types are compatible', () => {\n expectTypeOf().toExtend()\n\n expectTypeOf().toEqualTypeOf<\n RawConsumer[ConsumerKeys]\n >()\n\n // Ensure that we can pass any Consumer as a RawConsumerUpdate\n expectTypeOf().toExtend()\n\n // Ensure that we can pass any RawConsumer as a RawConsumerUpdate\n expectTypeOf().toExtend()\n})\n" }, { "path": "apps/api/src/db/types.ts", "content": "import type {\n BuildQueryResult,\n ExtractTablesWithRelations,\n InferInsertModel,\n InferSelectModel\n} from '@fisch0920/drizzle-orm'\nimport type { z } from '@hono/zod-openapi'\nimport type { Simplify } from 'type-fest'\n\nimport type * as schema from './schema'\n\nexport type Tables = ExtractTablesWithRelations\n\nexport type User = z.infer\nexport type RawUser = InferSelectModel\n\nexport type Team = z.infer\nexport type TeamWithMembers = BuildQueryResult<\n Tables,\n Tables['teams'],\n { with: { members: true } }\n>\nexport type RawTeam = InferSelectModel\n\nexport type TeamMember = z.infer\nexport type TeamMemberWithTeam = BuildQueryResult<\n Tables,\n Tables['teamMembers'],\n { with: { team: true } }\n>\nexport type RawTeamMember = InferSelectModel\n\nexport type Project = z.infer\nexport type ProjectWithLastPublishedDeployment = BuildQueryResult<\n Tables,\n Tables['projects'],\n { with: { lastPublishedDeployment: true } }\n>\nexport type RawProject = Simplify<\n InferSelectModel & {\n lastPublishedDeployment?: RawDeployment | null // TODO: remove null (requires drizzle-orm changes)\n lastDeployment?: RawDeployment | null // TODO: remove null (requires drizzle-orm changes)\n }\n>\n\nexport type Deployment = z.infer\nexport type DeploymentWithProject = BuildQueryResult<\n Tables,\n Tables['deployments'],\n { with: { project: true } }\n>\nexport type RawDeployment = Simplify<\n InferSelectModel & {\n project?: RawProject | null // TODO: remove null (requires drizzle-orm changes)\n }\n>\n\nexport type Consumer = z.infer\nexport type ConsumerWithProjectAndDeployment = BuildQueryResult<\n Tables,\n Tables['consumers'],\n { with: { project: true; deployment: true } }\n>\nexport type RawConsumer = Simplify<\n InferSelectModel & {\n user?: RawUser | undefined | null // TODO: remove null (requires drizzle-orm changes)\n project?: RawProject | undefined | null // TODO: remove null (requires drizzle-orm changes)\n deployment?: RawDeployment | undefined | null // TODO: remove null (requires drizzle-orm changes)\n }\n>\nexport type RawConsumerUpdate = Partial<\n Omit<\n InferInsertModel,\n 'id' | 'projectId' | 'userId' | 'deploymentId'\n >\n>\n\nexport type LogEntry = z.infer\nexport type RawLogEntry = InferSelectModel\n\nexport type Account = z.infer\nexport type RawAccount = InferSelectModel\n" }, { "path": "apps/api/src/db/utils.ts", "content": "import type { PricingPlan, PricingPlanLineItem } from '@agentic/platform-types'\nimport { hashObject } from '@agentic/platform-core'\n\nimport type { RawProject } from './types'\n\n/**\n * Gets the hash used to uniquely map a PricingPlanLineItem to its\n * corresponding Stripe Price in a stable way across deployments within a\n * project.\n *\n * This hash is used as the key for the `Project._stripePriceIdMap`.\n */\nexport async function getPricingPlanLineItemHashForStripePrice({\n pricingPlan,\n pricingPlanLineItem,\n project\n}: {\n pricingPlan: PricingPlan\n pricingPlanLineItem: PricingPlanLineItem\n project: RawProject\n}): Promise {\n // TODO: use pricingPlan.slug as well here?\n // TODO: not sure if this is needed or not...\n // With pricing plan slug:\n // - 'price:free:base:'\n // - 'price:basic-monthly:base:'\n // - 'price:basic-monthly:requests:'\n // Without pricing plan slug:\n // - 'price:base:'\n // - 'price:base:'\n // - 'price:requests:'\n\n const hash = await hashObject({\n ...pricingPlanLineItem,\n projectId: project.id,\n stripeAccountId: project._stripeAccountId,\n currency: project.pricingCurrency\n })\n\n return `price:${pricingPlan.slug}:${pricingPlanLineItem.slug}:${hash}`\n}\n\nexport async function getStripePriceIdForPricingPlanLineItem({\n pricingPlan,\n pricingPlanLineItem,\n project\n}: {\n pricingPlan: PricingPlan\n pricingPlanLineItem: PricingPlanLineItem\n project: RawProject\n}): Promise {\n const pricingPlanLineItemHash =\n await getPricingPlanLineItemHashForStripePrice({\n pricingPlan,\n pricingPlanLineItem,\n project\n })\n\n return project._stripePriceIdMap[pricingPlanLineItemHash]\n}\n" }, { "path": "apps/api/src/lib/__snapshots__/storage.test.ts.snap", "content": "// Vitest Snapshot v1, https://vitest.dev/guide/snapshot.html\n\nexports[`Storage > uploadFileUrlToStorage data-uri 1`] = `\"https://storage.agentic.so/@dev/test/ef4238fba78887e0974cd48809a66e284cdd78ce92d6b2d485c25a552fb39631.svg\"`;\n\nexports[`Storage > uploadFileUrlToStorage data-uri 2 1`] = `\"https://storage.agentic.so/@dev/test/efbc1f0409b730d93b01c918be9e024bf7777801cfd252221c39e36c08c1b4fb\"`;\n\nexports[`Storage > uploadFileUrlToStorage url 1`] = `\"https://storage.agentic.so/@dev/test/6da6ef895be2a42606b99e5e3b9c25687c92c81986a9718e07f32e574d41cf7a.svg\"`;\n" }, { "path": "apps/api/src/lib/acl-admin.ts", "content": "import { assert } from '@agentic/platform-core'\n\nimport type { AuthenticatedHonoContext } from './types'\nimport { ensureAuthUser } from './ensure-auth-user'\n\nexport async function aclAdmin(ctx: AuthenticatedHonoContext) {\n const user = await ensureAuthUser(ctx)\n assert(user, 401, 'Authentication required')\n assert(user.role === 'admin', 403, 'Access denied')\n}\n" }, { "path": "apps/api/src/lib/acl-public-project.ts", "content": "import { assert } from '@agentic/platform-core'\n\nimport type { RawProject } from '@/db'\n\nexport function aclPublicProject(\n project: RawProject | undefined,\n projectId?: string\n): asserts project {\n assert(\n project,\n 404,\n `Public project not found${projectId ? ` \"${projectId}\"` : ''}`\n )\n\n assert(\n !project.private && project.lastPublishedDeploymentId,\n 404,\n `Public project not found \"${project.id}\"`\n )\n\n assert(!project.deletedAt, 410, `Project has been deleted \"${project.id}\"`)\n}\n" }, { "path": "apps/api/src/lib/acl-team-admin.ts", "content": "import { assert } from '@agentic/platform-core'\n\nimport { and, db, eq, schema, type TeamMember } from '@/db'\n\nimport type { AuthenticatedHonoContext } from './types'\nimport { ensureAuthUser } from './ensure-auth-user'\n\nexport async function aclTeamAdmin(\n ctx: AuthenticatedHonoContext,\n {\n teamId,\n teamSlug,\n teamMember\n }: {\n teamId?: string\n teamSlug?: string\n teamMember?: TeamMember\n } & (\n | {\n teamId: string\n teamSlug?: never\n }\n | {\n teamId?: never\n teamSlug: string\n }\n )\n) {\n const teamLabel = teamId ?? teamSlug\n assert(teamLabel, 500, 'Either teamSlug or teamId must be provided')\n\n const user = await ensureAuthUser(ctx)\n\n if (user.role === 'admin') {\n // TODO: Allow admins to access all team resources\n return\n }\n\n if (!teamMember) {\n teamMember = await db.query.teamMembers.findFirst({\n where: and(\n teamId\n ? eq(schema.teamMembers.teamId, teamId)\n : eq(schema.teamMembers.teamSlug, teamSlug!),\n eq(schema.teamMembers.userId, user.id)\n )\n })\n }\n\n assert(teamMember, 403, `User does not have access to team \"${teamLabel}\"`)\n\n assert(\n teamMember.role === 'admin',\n 403,\n `User does not have \"admin\" role for team \"${teamLabel}\"`\n )\n\n assert(\n teamMember.userId === user.id,\n 403,\n `User does not have access to team \"${teamLabel}\"`\n )\n\n assert(\n teamMember.confirmed,\n 403,\n `User has not confirmed their invitation to team \"${teamLabel}\"`\n )\n}\n" }, { "path": "apps/api/src/lib/acl-team-member.ts", "content": "import { assert } from '@agentic/platform-core'\n\nimport { and, db, eq, type RawTeamMember, schema } from '@/db'\n\nimport type { AuthenticatedHonoContext } from './types'\nimport { ensureAuthUser } from './ensure-auth-user'\n\nexport async function aclTeamMember(\n ctx: AuthenticatedHonoContext,\n {\n teamId,\n teamSlug,\n teamMember,\n userId\n }: {\n teamId?: string\n teamSlug?: string\n teamMember?: RawTeamMember\n userId?: string\n } & (\n | { teamSlug: string }\n | { teamId: string }\n | { teamMember: RawTeamMember }\n )\n) {\n const teamLabel = teamId ?? teamSlug\n assert(teamLabel, 500, 'Either teamSlug or teamId must be provided')\n\n const user = await ensureAuthUser(ctx)\n\n if (user.role === 'admin') {\n // TODO: Allow admins to access all team resources\n return\n }\n\n userId ??= user.id\n\n if (!teamMember) {\n teamMember = await db.query.teamMembers.findFirst({\n where: and(\n teamId\n ? eq(schema.teamMembers.teamId, teamId)\n : eq(schema.teamMembers.teamSlug, teamSlug!),\n eq(schema.teamMembers.userId, userId)\n )\n })\n }\n\n assert(teamMember, 403, `User does not have access to team \"${teamLabel}\"`)\n if (!ctx.get('teamMember')) {\n ctx.set('teamMember', teamMember)\n }\n\n assert(\n teamMember.userId === userId,\n 403,\n `User does not have access to team \"${teamLabel}\"`\n )\n\n assert(\n teamMember.confirmed,\n 403,\n `User has not confirmed their invitation to team \"${teamLabel}\"`\n )\n}\n" }, { "path": "apps/api/src/lib/acl.ts", "content": "import { assert } from '@agentic/platform-core'\n\nimport type { AuthenticatedHonoContext } from './types'\nimport { ensureAuthUser } from './ensure-auth-user'\n\nexport async function acl<\n TModel extends Record,\n TUserField extends keyof TModel = 'userId',\n TTeamField extends keyof TModel = 'teamId'\n>(\n ctx: AuthenticatedHonoContext,\n model: TModel,\n {\n label,\n userField = 'userId' as TUserField,\n teamField = 'teamId' as TTeamField\n }: {\n label: string\n userField?: TUserField\n teamField?: TTeamField\n }\n) {\n const user = await ensureAuthUser(ctx)\n const teamMember = ctx.get('teamMember')\n\n const userFieldValue = model[userField]\n const teamFieldValue = model[teamField]\n\n const isAuthUserOwner = userFieldValue && userFieldValue === user.id\n const isAuthUserAdmin = user.role === 'admin'\n const hasTeamAccess =\n teamMember && teamFieldValue && teamFieldValue === teamMember.teamId\n\n assert(\n isAuthUserOwner || isAuthUserAdmin || hasTeamAccess,\n 403,\n `User does not have access to ${label} \"${model.id ?? userFieldValue}\"`\n )\n}\n" }, { "path": "apps/api/src/lib/auth/auth-storage.ts", "content": "export interface AuthStorageAdapter {\n get(key: string[]): Promise | undefined>\n remove(key: string[]): Promise\n set(key: string[], value: any, expiry?: Date): Promise\n scan(prefix: string[]): AsyncIterable<[string[], any]>\n}\n\nconst SEPERATOR = String.fromCodePoint(0x1f)\n\nexport function joinKey(key: string[]) {\n return key.join(SEPERATOR)\n}\n\nexport function splitKey(key: string) {\n return key.split(SEPERATOR)\n}\n\nexport namespace AuthStorage {\n function encode(key: string[]) {\n return key.map((k) => k.replaceAll(SEPERATOR, ''))\n }\n export function get(adapter: AuthStorageAdapter, key: string[]) {\n return adapter.get(encode(key)) as Promise\n }\n\n export function set(\n adapter: AuthStorageAdapter,\n key: string[],\n value: any,\n ttl?: number\n ) {\n const expiry = ttl ? new Date(Date.now() + ttl * 1000) : undefined\n return adapter.set(encode(key), value, expiry)\n }\n\n export function remove(adapter: AuthStorageAdapter, key: string[]) {\n return adapter.remove(encode(key))\n }\n\n export function scan(\n adapter: AuthStorageAdapter,\n key: string[]\n ): AsyncIterable<[string[], T]> {\n return adapter.scan(encode(key))\n }\n}\n" }, { "path": "apps/api/src/lib/auth/create-auth-token.ts", "content": "import { sign } from 'hono/jwt'\n\nimport type { RawUser } from '@/db'\nimport { env } from '@/lib/env'\n\nexport async function createAuthToken(user: RawUser): Promise {\n return sign(\n {\n type: 'user',\n id: user.id,\n username: user.username\n },\n env.JWT_SECRET\n )\n}\n" }, { "path": "apps/api/src/lib/auth/drizzle-auth-storage.ts", "content": "import { and, db, eq, gt, isNull, like, or, schema } from '@/db'\n\nimport { type AuthStorageAdapter, joinKey, splitKey } from './auth-storage'\n\nexport function DrizzleAuthStorage(): AuthStorageAdapter {\n return {\n async get(key: string[]) {\n const id = joinKey(key)\n const entry = await db.query.authData.findFirst({\n where: eq(schema.authData.id, id)\n })\n if (!entry) return undefined\n\n if (entry.expiry && Date.now() >= entry.expiry.getTime()) {\n await db.delete(schema.authData).where(eq(schema.authData.id, id))\n return undefined\n }\n\n return entry.value\n },\n\n async set(key: string[], value: Record, expiry?: Date) {\n const id = joinKey(key)\n\n await db\n .insert(schema.authData)\n .values({\n id,\n value,\n expiry\n })\n .onConflictDoUpdate({\n target: schema.authData.id,\n set: {\n value,\n expiry: expiry ?? null\n }\n })\n },\n\n async remove(key: string[]) {\n const id = joinKey(key)\n await db.delete(schema.authData).where(eq(schema.authData.id, id))\n },\n\n async *scan(prefix: string[]) {\n const now = new Date()\n const idPrefix = joinKey(prefix)\n\n const entries = await db.query.authData.findMany({\n where: and(\n like(schema.authData.id, `${idPrefix}%`),\n or(isNull(schema.authData.expiry), gt(schema.authData.expiry, now))\n )\n })\n\n for (const entry of entries) {\n yield [splitKey(entry.id), entry.value]\n }\n }\n }\n}\n" }, { "path": "apps/api/src/lib/auth/upsert-or-link-user-account.ts", "content": "import type { SetRequired, Simplify } from 'type-fest'\nimport { assert } from '@agentic/platform-core'\n\nimport { and, db, eq, type RawAccount, type RawUser, schema } from '@/db'\n\nimport { createAvatar } from '../create-avatar'\nimport { getUniqueNamespace } from '../ensure-unique-namespace'\nimport { uploadFileUrlToStorage } from '../storage'\n\n/**\n * After a user completes an authentication flow, we'll have partial account info\n * and partial suer info. This function takes these partial values and maps them\n * to a valid database Account and User.\n *\n * This will result in the Account being upserted, and may result in a new User\n * being created.\n */\nexport async function upsertOrLinkUserAccount({\n partialAccount,\n partialUser\n}: {\n partialAccount: Simplify<\n SetRequired<\n Partial<\n Pick<\n RawAccount,\n | 'provider'\n | 'accountId'\n | 'accountUsername'\n | 'accessToken'\n | 'refreshToken'\n | 'accessTokenExpiresAt'\n | 'refreshTokenExpiresAt'\n | 'scope'\n | 'password'\n >\n >,\n 'provider' | 'accountId'\n >\n >\n partialUser: Simplify<\n SetRequired<\n Partial<\n Pick<\n RawUser,\n 'email' | 'name' | 'username' | 'image' | 'isEmailVerified'\n >\n >,\n 'email'\n >\n >\n}): Promise {\n const { provider, accountId } = partialAccount\n\n const [existingAccount, existingUser] = await Promise.all([\n db.query.accounts.findFirst({\n where: and(\n eq(schema.accounts.provider, provider),\n eq(schema.accounts.accountId, accountId)\n ),\n with: {\n user: true\n }\n }),\n\n db.query.users.findFirst({\n where: eq(schema.users.email, partialUser.email)\n })\n ])\n\n async function resolveUserProfileImage({ prefix }: { prefix: string }) {\n // Set a default profile image if one isn't provided\n partialUser.image = await uploadFileUrlToStorage(\n partialUser.image ?? createAvatar(partialUser.email),\n {\n prefix\n }\n )\n }\n\n if (existingAccount && existingUser) {\n // Happy path case: the user is just logging in with an existing account\n // that's already linked to a user.\n assert(\n existingAccount.userId === existingUser.id,\n `Error authenticating with ${provider}: Account id \"${existingAccount.id}\" user id \"${existingAccount.userId}\" does not match expected user id \"${existingUser.id}\"`\n )\n assert(provider !== 'password', 500)\n\n // Update the account with the up-to-date provider data, including any OAuth\n // tokens.\n await db\n .update(schema.accounts)\n .set(partialAccount)\n .where(eq(schema.accounts.id, existingAccount.id))\n\n return existingUser\n } else if (existingUser && !existingAccount) {\n // Linking a new account to an existing user\n await db.insert(schema.accounts).values({\n ...partialAccount,\n userId: existingUser.id\n })\n\n // TODO: Same caveat as below: if the existing user has a different email than\n // the one in the account we're linking, we should throw an error unless it's\n // a \"trusted\" provider.\n if (provider === 'password' && existingUser.email !== partialUser.email) {\n await resolveUserProfileImage({ prefix: existingUser.username })\n\n const [user] = await db\n .update(schema.users)\n .set(partialUser)\n .where(eq(schema.users.id, existingUser.id))\n .returning()\n assert(\n user,\n 500,\n `Error updating existing user during ${provider} authentication`\n )\n return user\n }\n\n return existingUser\n } else if (existingAccount && !existingUser) {\n assert(\n existingAccount.user,\n 404,\n `Error authenticating with ${provider}: Account id \"${existingAccount.id}\" is linked to a user with a different email address than their ${provider} account, but the linked account user id \"${existingAccount.userId}\" is not found.`\n )\n\n // Existing account is linked to a user with a different email address than\n // this provider account. This should be fine since it's pretty common for\n // users to have multiple email addresses, but we may want to limit the\n // ability to automatically link accounts like this in the future to only\n // certain, trusted providers like `better-auth` does.\n return existingAccount.user\n } else {\n const username = await getUniqueNamespace(\n partialUser.username || partialUser.email.split('@')[0]!.toLowerCase(),\n { label: 'Username' }\n )\n\n await resolveUserProfileImage({ prefix: username })\n\n // This is a user's first time signing up with the platform, so create both\n // a new user and linked account.\n return db.transaction(async (tx) => {\n // Create a new user\n const [user] = await tx\n .insert(schema.users)\n .values({\n ...partialUser,\n username\n })\n .returning()\n assert(\n user,\n 500,\n `Error creating new user during ${provider} authentication`\n )\n\n // Create a new account linked to the new user\n await tx.insert(schema.accounts).values({\n ...partialAccount,\n userId: user.id\n })\n\n return user\n })\n }\n}\n" }, { "path": "apps/api/src/lib/billing/create-stripe-checkout-session.ts", "content": "import type Stripe from 'stripe'\nimport { assert } from '@agentic/platform-core'\n\nimport type { AuthenticatedHonoContext } from '@/lib/types'\nimport {\n getStripePriceIdForPricingPlanLineItem,\n type RawConsumer,\n type RawDeployment,\n type RawProject,\n type RawUser\n} from '@/db'\nimport { stripe } from '@/lib/external/stripe'\n\nimport { env } from '../env'\n\nexport async function createStripeCheckoutSession(\n ctx: AuthenticatedHonoContext,\n {\n consumer,\n user,\n deployment,\n project,\n plan\n }: {\n consumer: RawConsumer\n user: RawUser\n deployment: RawDeployment\n project: RawProject\n plan?: string\n }\n): Promise<{ id: string; url: string }> {\n const logger = ctx.get('logger')\n const stripeConnectParams = project._stripeAccountId\n ? [\n {\n stripeAccount: project._stripeAccountId\n }\n ]\n : []\n\n const stripeCustomerId = consumer._stripeCustomerId || user.stripeCustomerId\n assert(\n stripeCustomerId,\n 500,\n `Missing valid stripe customer. Please contact support for deployment \"${deployment.id}\" and consumer \"${consumer.id}\"`\n )\n\n const pricingPlan = plan\n ? deployment.pricingPlans.find((pricingPlan) => pricingPlan.slug === plan)\n : undefined\n\n const action: 'create' | 'update' | 'cancel' = consumer._stripeSubscriptionId\n ? plan\n ? 'update'\n : 'cancel'\n : 'create'\n\n // TODO: test cancel => resubscribe flow\n\n if (consumer._stripeSubscriptionId) {\n // customer has an existing subscription\n const existingStripeSubscription = await stripe.subscriptions.retrieve(\n consumer._stripeSubscriptionId,\n ...stripeConnectParams\n )\n const existingStripeSubscriptionItems =\n existingStripeSubscription.items.data\n logger.debug()\n logger.debug(\n 'existing stripe subscription',\n JSON.stringify(existingStripeSubscription, null, 2)\n )\n logger.debug()\n\n assert(\n existingStripeSubscription.metadata?.userId === consumer.userId,\n 500,\n `Error updating stripe subscription: invalid existing subscription \"${existingStripeSubscription.id}\" metadata.userId for consumer \"${consumer.id}\"`\n )\n assert(\n existingStripeSubscription.metadata?.consumerId === consumer.id,\n 500,\n `Error updating stripe subscription: invalid existing subscription \"${existingStripeSubscription.id}\" metadata.consumerId for consumer \"${consumer.id}\"`\n )\n assert(\n existingStripeSubscription.metadata?.projectId === project.id,\n 500,\n `Error updating stripe subscription: invalid existing subscription \"${existingStripeSubscription.id}\" metadata.projectId for consumer \"${consumer.id}\"`\n )\n\n if (!plan) {\n const billingPortalSession = await stripe.billingPortal.sessions.create(\n {\n customer: stripeCustomerId,\n return_url: `${env.AGENTIC_WEB_BASE_URL}/app/consumers`,\n flow_data: {\n type: 'subscription_cancel',\n subscription_cancel: {\n subscription: consumer._stripeSubscriptionId\n },\n after_completion: {\n type: 'redirect',\n redirect: {\n return_url: `${env.AGENTIC_WEB_BASE_URL}/app/consumers/${consumer.id}?checkout=canceled`\n }\n }\n }\n },\n ...stripeConnectParams\n )\n\n return {\n id: billingPortalSession.id,\n url: billingPortalSession.url\n }\n }\n\n assert(\n pricingPlan,\n 404,\n `Unable to update stripe subscription for invalid pricing plan \"${plan}\"`\n )\n\n const updateParams: Stripe.SubscriptionUpdateParams = {\n collection_method: 'charge_automatically',\n description:\n pricingPlan.description ??\n `Subscription to ${project.name} ${pricingPlan.name}`,\n metadata: {\n plan: plan ?? null,\n consumerId: consumer.id,\n userId: consumer.userId,\n projectId: project.id,\n deploymentId: deployment.id\n }\n }\n\n const items: Stripe.SubscriptionUpdateParams.Item[] = await Promise.all(\n pricingPlan.lineItems.map(async (lineItem) => {\n const priceId = await getStripePriceIdForPricingPlanLineItem({\n pricingPlan,\n pricingPlanLineItem: lineItem,\n project\n })\n assert(\n priceId,\n 500,\n `Error updating stripe subscription: missing expected Stripe Price for plan \"${pricingPlan.slug}\" line-item \"${lineItem.slug}\"`\n )\n\n // An existing Stripe Subscription Item may or may not exist for this\n // LineItem. It should exist if this is an update to an existing\n // LineItem. It won't exist if it's a new LineItem.\n const id = consumer._stripeSubscriptionItemIdMap[lineItem.slug]\n\n return {\n price: priceId,\n id,\n metadata: {\n lineItemSlug: lineItem.slug\n }\n }\n })\n )\n\n // Sanity check that LineItems we think should exist are all present in\n // the current subscription's items.\n for (const item of items) {\n if (item.id) {\n const existingItem = existingStripeSubscriptionItems.find(\n (existingItem) => item.id === existingItem.id\n )\n\n assert(\n existingItem,\n 500,\n `Error updating stripe subscription: invalid pricing plan \"${plan}\" missing existing Subscription Item for \"${item.id}\"`\n )\n }\n }\n\n for (const existingItem of existingStripeSubscriptionItems) {\n const updatedItem = items.find((item) => item.id === existingItem.id)\n\n if (!updatedItem) {\n const deletedItem: Stripe.SubscriptionUpdateParams.Item = {\n id: existingItem.id,\n deleted: true\n }\n\n items.push(deletedItem)\n }\n }\n\n assert(\n items.length || !plan,\n 500,\n `Error updating stripe subscription \"${consumer._stripeSubscriptionId}\"`\n )\n\n for (const item of items) {\n if (!item.id) {\n delete item.id\n }\n }\n\n updateParams.items = items\n\n if (pricingPlan.trialPeriodDays) {\n const trialEnd =\n Math.trunc(Date.now() / 1000) +\n 24 * 60 * 60 * pricingPlan.trialPeriodDays\n\n // Reuse the existing trial end date if one exists. Otherwise, set a new\n // one for the updated subscription.\n updateParams.trial_end = existingStripeSubscription.trial_end ?? trialEnd\n } else if (existingStripeSubscription.trial_end) {\n // If the existing subscription has a trial end date, but the updated\n // subscription doesn't, we should end the trial now.\n updateParams.trial_end = 'now'\n }\n\n logger.info('>>> subscription', action, { items })\n\n // TODO: Stripe Connect\n // if (project.isStripeConnectEnabled && project.applicationFeePercent > 0) {\n // updateParams.application_fee_percent = project.applicationFeePercent\n // }\n\n const subscription = await stripe.subscriptions.update(\n consumer._stripeSubscriptionId,\n updateParams,\n ...stripeConnectParams\n )\n\n logger.info('<<< subscription', action, subscription)\n\n const billingPortalSession = await stripe.billingPortal.sessions.create(\n {\n customer: stripeCustomerId,\n return_url: `${env.AGENTIC_WEB_BASE_URL}/app/consumers`\n },\n ...stripeConnectParams\n )\n\n return {\n id: billingPortalSession.id,\n url: billingPortalSession.url\n }\n } else {\n // Creating a new subscription for this consumer for the first time.\n assert(\n pricingPlan,\n 404,\n `Unable to update stripe subscription for invalid pricing plan \"${plan}\"`\n )\n\n const items: Stripe.Checkout.SessionCreateParams.LineItem[] =\n await Promise.all(\n pricingPlan.lineItems.map(async (lineItem) => {\n // An existing Stripe Subscription Item may or may not exist for this\n // LineItem. It should exist if this is an update to an existing\n // LineItem. It won't exist if it's a new LineItem.\n const id = consumer._stripeSubscriptionItemIdMap[lineItem.slug]\n assert(\n !id,\n 500,\n `Error creating stripe subscription: consumer contains a Stripe Subscription Item for LineItem \"${lineItem.slug}\" and pricing plan \"${pricingPlan.slug}\"`\n )\n\n const priceId = await getStripePriceIdForPricingPlanLineItem({\n pricingPlan,\n pricingPlanLineItem: lineItem,\n project\n })\n assert(\n priceId,\n 500,\n `Error creating stripe subscription: missing expected Stripe Price for plan \"${pricingPlan.slug}\" line item \"${lineItem.slug}\"`\n )\n\n return {\n price: priceId,\n // TODO: Make this customizable\n quantity: lineItem.usageType === 'licensed' ? 1 : undefined\n // metadata: {\n // lineItemSlug: lineItem.slug\n // }\n } satisfies Stripe.Checkout.SessionCreateParams.LineItem\n })\n )\n\n assert(\n items.length,\n 500,\n `Error creating stripe subscription: invalid plan \"${plan}\"`\n )\n\n const checkoutSessionParams: Stripe.Checkout.SessionCreateParams = {\n customer: stripeCustomerId,\n mode: 'subscription',\n line_items: items,\n success_url: `${env.AGENTIC_WEB_BASE_URL}/app/consumers/${consumer.id}?checkout=success&plan=${plan}`,\n cancel_url: `${env.AGENTIC_WEB_BASE_URL}/marketplace/projects/${project.identifier}?checkout=canceled`,\n submit_type: 'subscribe',\n saved_payment_method_options: {\n payment_method_save: 'enabled'\n },\n subscription_data: {\n description:\n pricingPlan.description ??\n `Subscription to ${project.name} ${pricingPlan.name}`,\n trial_period_days: pricingPlan.trialPeriodDays,\n metadata: {\n plan: plan ?? null,\n consumerId: consumer.id,\n userId: consumer.userId,\n projectId: project.id,\n deploymentId: deployment.id\n }\n // TODO: Stripe Connect\n // application_fee_percent: project.applicationFeePercent\n },\n // TODO: coupons\n // coupon: filterConsumerCoupon(ctx, consumer, deployment),\n // TODO: discounts\n // collection_method: 'charge_automatically',\n // TODO: consider custom_fields\n // TODO: consider custom_text\n // TODO: consider optional_items\n metadata: {\n plan: plan ?? null,\n consumerId: consumer.id,\n userId: consumer.userId,\n projectId: project.id,\n deploymentId: deployment.id\n }\n }\n\n // TODO: Stripe Connect\n // if (project.isStripeConnectEnabled && project.applicationFeePercent > 0) {\n // createParams.application_fee_percent = project.applicationFeePercent\n // }\n\n logger.debug('checkout session line_items', items)\n const checkoutSession = await stripe.checkout.sessions.create(\n checkoutSessionParams,\n ...stripeConnectParams\n )\n assert(checkoutSession.url, 500, 'Missing stripe checkout session URL')\n\n return {\n id: checkoutSession.id,\n url: checkoutSession.url\n }\n }\n}\n" }, { "path": "apps/api/src/lib/billing/upsert-stripe-connect-customer.ts", "content": "import type Stripe from 'stripe'\nimport { assert } from '@agentic/platform-core'\n\nimport { db, eq, type RawConsumer, type RawProject, schema } from '@/db'\nimport { stripe } from '@/lib/external/stripe'\n\n// TODO: Update this for the new / updated Stripe Connect API\n\nexport async function upsertStripeConnectCustomer({\n stripeCustomer,\n consumer,\n project\n}: {\n stripeCustomer: Stripe.Customer\n consumer: RawConsumer\n project: RawProject\n}): Promise {\n if (!project._stripeAccountId) {\n return stripeCustomer\n }\n\n const stripeConnectParams = project._stripeAccountId\n ? [\n {\n stripeAccount: project._stripeAccountId\n }\n ]\n : []\n\n const stripeConnectCustomer = consumer._stripeCustomerId\n ? await stripe.customers.retrieve(\n consumer._stripeCustomerId,\n ...stripeConnectParams\n )\n : await stripe.customers.create(\n {\n email: stripeCustomer.email!,\n metadata: stripeCustomer.metadata\n },\n ...stripeConnectParams\n )\n assert(\n stripeConnectCustomer,\n 500,\n `Failed to create stripe connect customer for user \"${consumer.userId}\"`\n )\n assert(\n !stripeConnectCustomer.deleted,\n 500,\n `Stripe connect customer \"${stripeConnectCustomer.id}\" has been deleted`\n )\n\n if (consumer._stripeCustomerId !== stripeConnectCustomer.id) {\n consumer._stripeCustomerId = stripeConnectCustomer.id\n\n await db\n .update(schema.consumers)\n .set({ _stripeCustomerId: stripeConnectCustomer.id })\n .where(eq(schema.consumers.id, consumer.id))\n }\n\n // TODO: Ensure stripe connect default \"source\" exists and is cloned from\n // platform stripe account.\n\n return stripeConnectCustomer\n}\n" }, { "path": "apps/api/src/lib/billing/upsert-stripe-customer.ts", "content": "import type Stripe from 'stripe'\nimport { assert } from '@agentic/platform-core'\n\nimport type { AuthenticatedHonoContext } from '@/lib/types'\nimport { db, eq, type RawUser, schema } from '@/db'\nimport { ensureAuthUser } from '@/lib/ensure-auth-user'\nimport { stripe } from '@/lib/external/stripe'\n\nexport async function upsertStripeCustomer(\n ctx: AuthenticatedHonoContext\n): Promise<{\n user: RawUser\n stripeCustomer: Stripe.Customer\n}> {\n const user = await ensureAuthUser(ctx)\n\n if (user.stripeCustomerId) {\n const stripeCustomer = await stripe.customers.retrieve(\n user.stripeCustomerId\n )\n assert(\n stripeCustomer,\n 404,\n `Stripe customer \"${user.stripeCustomerId}\" not found for user \"${user.id}\"`\n )\n\n // TODO: handle this edge case\n assert(\n !stripeCustomer.deleted,\n 404,\n `Stripe customer \"${user.stripeCustomerId}\" is deleted for user \"${user.id}\"`\n )\n\n return {\n user,\n stripeCustomer\n }\n }\n\n // TODO: add more metadata referencing signup LogEntry\n const metadata = {\n userId: user.id,\n email: user.email,\n username: user.username ?? null\n }\n\n const stripeCustomer = await stripe.customers.create({\n email: user.email,\n metadata\n })\n assert(\n stripeCustomer,\n 500,\n `Failed to create stripe customer for user \"${user.id}\"`\n )\n\n user.stripeCustomerId = stripeCustomer.id\n await db\n .update(schema.users)\n .set({ stripeCustomerId: stripeCustomer.id })\n .where(eq(schema.users.id, user.id))\n\n return {\n user,\n stripeCustomer\n }\n}\n" }, { "path": "apps/api/src/lib/billing/upsert-stripe-pricing-resources.ts", "content": "import type Stripe from 'stripe'\nimport { assert } from '@agentic/platform-core'\nimport {\n getLabelForPricingInterval,\n type PricingPlan,\n type PricingPlanLineItem\n} from '@agentic/platform-types'\nimport pAll from 'p-all'\n\nimport {\n db,\n eq,\n getPricingPlanLineItemHashForStripePrice,\n type RawDeployment,\n type RawProject,\n schema\n} from '@/db'\nimport { stripe } from '@/lib/external/stripe'\n\n/**\n * Upserts all the Stripe resources corresponding to a Deployment's pricing\n * plans.\n *\n * This includes Stripe `Product`, `Meter`, and `Price` objects.\n *\n * All Stripe resource IDs are stored in the `_stripeProductIdMap`,\n * `_stripeMeterIdMap`, and `_stripePriceIdMap` fields of the given `project`.\n *\n * The `project` will be updated in the DB with any changes.\n *\n * The `deployment` is readonly and will not be updated, since all Stripe\n * resources persist on its Project so they can be reused if possible across\n * deployments.\n *\n * @note This function assumes that the deployment's pricing config has already\n * been validated.\n */\nexport async function upsertStripePricingResources({\n deployment,\n project\n}: {\n deployment: Readonly\n project: RawProject\n}): Promise {\n assert(\n deployment.projectId === project.id,\n 'Deployment and project must match'\n )\n\n // Keep track of promises for Stripe resources that are created in parallel\n // to avoid race conditions.\n const stripeProductIdPromiseMap = new Map>()\n const stripeMeterIdPromiseMap = new Map>()\n const stripePriceIdPromiseMap = new Map>()\n\n const stripeConnectParams = project._stripeAccountId\n ? [\n {\n stripeAccount: project._stripeAccountId\n }\n ]\n : []\n let dirty = false\n\n async function upsertStripeResourcesForPricingPlanLineItem({\n pricingPlan,\n pricingPlanLineItem\n }: {\n pricingPlan: PricingPlan\n pricingPlanLineItem: PricingPlanLineItem\n }) {\n const { slug: pricingPlanSlug } = pricingPlan\n const { slug: pricingPlanLineItemSlug } = pricingPlanLineItem\n\n // Upsert the Stripe Product\n if (!project._stripeProductIdMap[pricingPlanLineItemSlug]) {\n if (stripeProductIdPromiseMap.has(pricingPlanLineItemSlug)) {\n const stripeProductId = await stripeProductIdPromiseMap.get(\n pricingPlanLineItemSlug\n )!\n\n project._stripeProductIdMap[pricingPlanLineItemSlug] = stripeProductId\n dirty = true\n } else {\n const productParams: Stripe.ProductCreateParams = {\n name: `${project.identifier} ${pricingPlanLineItemSlug}`,\n type: 'service',\n metadata: {\n projectId: project.id,\n pricingPlanLineItemSlug\n }\n }\n\n if (pricingPlanLineItem.usageType === 'licensed') {\n productParams.unit_label = pricingPlanLineItem.label\n } else {\n productParams.unit_label = pricingPlanLineItem.unitLabel\n }\n\n const productP = stripe.products.create(\n productParams,\n ...stripeConnectParams\n )\n stripeProductIdPromiseMap.set(\n pricingPlanLineItemSlug,\n productP.then((p) => p.id)\n )\n\n const product = await productP\n\n project._stripeProductIdMap[pricingPlanLineItemSlug] = product.id\n dirty = true\n }\n }\n\n assert(project._stripeProductIdMap[pricingPlanLineItemSlug])\n\n if (pricingPlanLineItem.usageType === 'metered') {\n // Upsert the Stripe Meter\n if (!project._stripeMeterIdMap[pricingPlanLineItemSlug]) {\n if (stripeMeterIdPromiseMap.has(pricingPlanLineItemSlug)) {\n const stripeMeterId = await stripeMeterIdPromiseMap.get(\n pricingPlanLineItemSlug\n )!\n\n project._stripeMeterIdMap[pricingPlanLineItemSlug] = stripeMeterId\n dirty = true\n } else {\n const meterP = stripe.billing.meters.create(\n {\n display_name: `${project.identifier} ${pricingPlanLineItem.label || pricingPlanLineItemSlug}`,\n event_name: `meter-${project.id}-${pricingPlanLineItemSlug}`,\n // TODO: This currently isn't taken into account for the slug, so if it\n // changes across deployments, the meter will not be updated.\n default_aggregation: {\n formula:\n pricingPlanLineItem.defaultAggregation?.formula ?? 'sum'\n },\n customer_mapping: {\n event_payload_key: 'stripe_customer_id',\n type: 'by_id'\n },\n value_settings: {\n event_payload_key: 'value'\n }\n },\n ...stripeConnectParams\n )\n\n stripeMeterIdPromiseMap.set(\n pricingPlanLineItemSlug,\n meterP.then((m) => m.id)\n )\n\n const stripeMeter = await meterP\n\n project._stripeMeterIdMap[pricingPlanLineItemSlug] = stripeMeter.id\n dirty = true\n }\n }\n\n assert(project._stripeMeterIdMap[pricingPlanLineItemSlug])\n } else {\n assert(pricingPlanLineItem.usageType === 'licensed', 400)\n\n assert(\n !project._stripeMeterIdMap[pricingPlanLineItemSlug],\n 400,\n `Invalid pricing plan metric \"${pricingPlanLineItemSlug}\" for pricing plan \"${pricingPlanSlug}\": licensed pricing plan metrics cannot replace a previous metered pricing plan metric. Use a different pricing plan metric slug for the new licensed plan.`\n )\n }\n\n const pricingPlanLineItemHashForStripePrice =\n await getPricingPlanLineItemHashForStripePrice({\n pricingPlan,\n pricingPlanLineItem,\n project\n })\n\n // Upsert the Stripe Price\n if (!project._stripePriceIdMap[pricingPlanLineItemHashForStripePrice]) {\n if (stripePriceIdPromiseMap.has(pricingPlanLineItemHashForStripePrice)) {\n const stripePriceId = await stripePriceIdPromiseMap.get(\n pricingPlanLineItemHashForStripePrice\n )!\n\n project._stripePriceIdMap[pricingPlanLineItemHashForStripePrice] =\n stripePriceId\n dirty = true\n } else {\n const interval = pricingPlan.interval ?? project.defaultPricingInterval\n\n // (nickname is hidden from customers)\n const nickname = [\n 'price',\n project.id,\n pricingPlanLineItemSlug,\n getLabelForPricingInterval(interval)\n ]\n .filter(Boolean)\n .join('-')\n\n const priceParams: Stripe.PriceCreateParams = {\n product: project._stripeProductIdMap[pricingPlanLineItemSlug],\n currency: project.pricingCurrency,\n nickname,\n recurring: {\n interval,\n\n // TODO: support this\n interval_count: 1,\n\n usage_type: pricingPlanLineItem.usageType,\n\n meter: project._stripeMeterIdMap[pricingPlanLineItemSlug]\n },\n metadata: {\n projectId: project.id,\n pricingPlanLineItemSlug\n }\n }\n\n if (pricingPlanLineItem.usageType === 'licensed') {\n priceParams.unit_amount_decimal =\n pricingPlanLineItem.amount.toFixed(12)\n } else {\n priceParams.billing_scheme = pricingPlanLineItem.billingScheme\n\n if (pricingPlanLineItem.billingScheme === 'tiered') {\n assert(\n pricingPlanLineItem.tiers?.length,\n 400,\n `Invalid pricing plan metric \"${pricingPlanLineItemSlug}\" for pricing plan \"${pricingPlanSlug}\": tiered billing schemes must have at least one tier.`\n )\n\n priceParams.tiers_mode = pricingPlanLineItem.tiersMode\n priceParams.tiers = pricingPlanLineItem.tiers.map((tierData) => {\n const tier: Stripe.PriceCreateParams.Tier = {\n up_to: tierData.upTo\n }\n\n if (tierData.unitAmount !== undefined) {\n tier.unit_amount_decimal = tierData.unitAmount.toFixed(12)\n }\n\n if (tierData.flatAmount !== undefined) {\n tier.flat_amount_decimal = tierData.flatAmount.toFixed(12)\n }\n\n return tier\n })\n } else {\n assert(\n pricingPlanLineItem.billingScheme === 'per_unit',\n 400,\n `Invalid pricing plan metric \"${pricingPlanLineItemSlug}\" for pricing plan \"${pricingPlanSlug}\": invalid billing scheme.`\n )\n assert(\n pricingPlanLineItem.unitAmount !== undefined,\n 400,\n `Invalid pricing plan metric \"${pricingPlanLineItemSlug}\" for pricing plan \"${pricingPlanSlug}\": unitAmount is required for per_unit billing schemes.`\n )\n\n priceParams.unit_amount_decimal =\n pricingPlanLineItem.unitAmount.toFixed(12)\n\n if (pricingPlanLineItem.transformQuantity) {\n priceParams.transform_quantity = {\n divide_by: pricingPlanLineItem.transformQuantity.divideBy,\n round: pricingPlanLineItem.transformQuantity.round\n }\n }\n }\n }\n\n const stripePriceP = stripe.prices.create(\n priceParams,\n ...stripeConnectParams\n )\n\n stripePriceIdPromiseMap.set(\n pricingPlanLineItemHashForStripePrice,\n stripePriceP.then((p) => p.id)\n )\n\n const stripePrice = await stripePriceP\n\n project._stripePriceIdMap[pricingPlanLineItemHashForStripePrice] =\n stripePrice.id\n dirty = true\n }\n }\n\n assert(project._stripePriceIdMap[pricingPlanLineItemHashForStripePrice])\n }\n\n const upserts: Array<() => Promise> = []\n for (const pricingPlan of deployment.pricingPlans) {\n for (const pricingPlanLineItem of pricingPlan.lineItems) {\n upserts.push(() =>\n upsertStripeResourcesForPricingPlanLineItem({\n pricingPlan,\n pricingPlanLineItem\n })\n )\n }\n }\n\n await pAll(upserts, { concurrency: 8 })\n\n if (dirty) {\n await db\n .update(schema.projects)\n .set(project)\n .where(eq(schema.projects.id, project.id))\n }\n}\n" }, { "path": "apps/api/src/lib/billing/upsert-stripe-subscription.ts", "content": "import type Stripe from 'stripe'\nimport { assert } from '@agentic/platform-core'\n\nimport type { AuthenticatedHonoContext } from '@/lib/types'\nimport {\n db,\n eq,\n getStripePriceIdForPricingPlanLineItem,\n type RawConsumer,\n type RawConsumerUpdate,\n type RawDeployment,\n type RawProject,\n type RawUser,\n schema\n} from '@/db'\nimport { stripe } from '@/lib/external/stripe'\n\nimport { setConsumerStripeSubscriptionStatus } from '../consumers/utils'\n\nexport async function upsertStripeSubscription(\n ctx: AuthenticatedHonoContext,\n {\n consumer,\n user,\n deployment,\n project\n }: {\n consumer: RawConsumer\n user: RawUser\n deployment: RawDeployment\n project: RawProject\n }\n): Promise<{\n subscription: Stripe.Subscription\n consumer: RawConsumer\n}> {\n const logger = ctx.get('logger')\n const stripeConnectParams = project._stripeAccountId\n ? [\n {\n stripeAccount: project._stripeAccountId\n }\n ]\n : []\n\n const stripeCustomerId = consumer._stripeCustomerId || user.stripeCustomerId\n assert(\n stripeCustomerId,\n 500,\n `Missing valid stripe customer. Please contact support for deployment \"${deployment.id}\" and consumer \"${consumer.id}\"`\n )\n\n const { plan } = consumer\n const pricingPlan = plan\n ? deployment.pricingPlans.find((pricingPlan) => pricingPlan.slug === plan)\n : undefined\n\n const action: 'create' | 'update' | 'cancel' = consumer._stripeSubscriptionId\n ? plan\n ? 'update'\n : 'cancel'\n : 'create'\n let subscription: Stripe.Subscription | undefined\n\n if (consumer._stripeSubscriptionId) {\n // customer has an existing subscription\n const existingStripeSubscription = await stripe.subscriptions.retrieve(\n consumer._stripeSubscriptionId,\n ...stripeConnectParams\n )\n const existingStripeSubscriptionItems =\n existingStripeSubscription.items.data\n logger.debug()\n logger.debug(\n 'existing stripe subscription',\n JSON.stringify(existingStripeSubscription, null, 2)\n )\n logger.debug()\n\n assert(\n existingStripeSubscription.metadata?.userId === consumer.userId,\n 500,\n `Error updating stripe subscription: invalid existing subscription \"${existingStripeSubscription.id}\" metadata.userId for consumer \"${consumer.id}\"`\n )\n assert(\n existingStripeSubscription.metadata?.consumerId === consumer.id,\n 500,\n `Error updating stripe subscription: invalid existing subscription \"${existingStripeSubscription.id}\" metadata.consumerId for consumer \"${consumer.id}\"`\n )\n assert(\n existingStripeSubscription.metadata?.projectId === project.id,\n 500,\n `Error updating stripe subscription: invalid existing subscription \"${existingStripeSubscription.id}\" metadata.projectId for consumer \"${consumer.id}\"`\n )\n\n const updateParams: Stripe.SubscriptionUpdateParams = {\n collection_method: 'charge_automatically',\n metadata: {\n plan: plan ?? null,\n userId: consumer.userId,\n consumerId: consumer.id,\n projectId: project.id,\n deploymentId: deployment.id\n }\n }\n\n if (plan) {\n assert(\n pricingPlan,\n 404,\n `Unable to update stripe subscription for invalid pricing plan \"${plan}\"`\n )\n\n const items: Stripe.SubscriptionUpdateParams.Item[] = await Promise.all(\n pricingPlan.lineItems.map(async (lineItem) => {\n const priceId = await getStripePriceIdForPricingPlanLineItem({\n pricingPlan,\n pricingPlanLineItem: lineItem,\n project\n })\n assert(\n priceId,\n 500,\n `Error updating stripe subscription: missing expected Stripe Price for plan \"${pricingPlan.slug}\" line-item \"${lineItem.slug}\"`\n )\n\n // An existing Stripe Subscription Item may or may not exist for this\n // LineItem. It should exist if this is an update to an existing\n // LineItem. It won't exist if it's a new LineItem.\n const id = consumer._stripeSubscriptionItemIdMap[lineItem.slug]\n\n return {\n price: priceId,\n id,\n metadata: {\n lineItemSlug: lineItem.slug\n }\n }\n })\n )\n\n // Sanity check that LineItems we think should exist are all present in\n // the current subscription's items.\n for (const item of items) {\n if (item.id) {\n const existingItem = existingStripeSubscriptionItems.find(\n (existingItem) => item.id === existingItem.id\n )\n\n assert(\n existingItem,\n 500,\n `Error updating stripe subscription: invalid pricing plan \"${plan}\" missing existing Subscription Item for \"${item.id}\"`\n )\n }\n }\n\n for (const existingItem of existingStripeSubscriptionItems) {\n const updatedItem = items.find((item) => item.id === existingItem.id)\n\n if (!updatedItem) {\n const deletedItem: Stripe.SubscriptionUpdateParams.Item = {\n id: existingItem.id,\n deleted: true\n }\n\n items.push(deletedItem)\n }\n }\n\n assert(\n items.length || !plan,\n 500,\n `Error updating stripe subscription \"${consumer._stripeSubscriptionId}\"`\n )\n\n for (const item of items) {\n if (!item.id) {\n delete item.id\n }\n }\n\n updateParams.items = items\n\n if (pricingPlan.trialPeriodDays) {\n const trialEnd =\n Math.trunc(Date.now() / 1000) +\n 24 * 60 * 60 * pricingPlan.trialPeriodDays\n\n // Reuse the existing trial end date if one exists. Otherwise, set a new\n // one for the updated subscription.\n updateParams.trial_end =\n existingStripeSubscription.trial_end ?? trialEnd\n } else if (existingStripeSubscription.trial_end) {\n // If the existing subscription has a trial end date, but the updated\n // subscription doesn't, we should end the trial now.\n updateParams.trial_end = 'now'\n }\n\n logger.debug('subscription', action, { items })\n } else {\n updateParams.cancel_at_period_end = true\n }\n\n // TODO: Stripe Connect\n // if (project.isStripeConnectEnabled && project.applicationFeePercent > 0) {\n // updateParams.application_fee_percent = project.applicationFeePercent\n // }\n\n subscription = await stripe.subscriptions.update(\n consumer._stripeSubscriptionId,\n updateParams,\n ...stripeConnectParams\n )\n\n // TODO: this will cancel the subscription without resolving current usage / invoices\n // await stripe.subscriptions.del(consumer.stripeSubscription)\n } else {\n // Creating a new subscription for this consumer for the first time.\n assert(\n pricingPlan,\n 404,\n `Unable to update stripe subscription for invalid pricing plan \"${plan}\"`\n )\n\n const items: Stripe.SubscriptionCreateParams.Item[] = await Promise.all(\n pricingPlan.lineItems.map(async (lineItem) => {\n const priceId = await getStripePriceIdForPricingPlanLineItem({\n pricingPlan,\n pricingPlanLineItem: lineItem,\n project\n })\n assert(\n priceId,\n 500,\n `Error creating stripe subscription: missing expected Stripe Price for plan \"${pricingPlan.slug}\" line item \"${lineItem.slug}\"`\n )\n\n // An existing Stripe Subscription Item may or may not exist for this\n // LineItem. It should exist if this is an update to an existing\n // LineItem. It won't exist if it's a new LineItem.\n const id = consumer._stripeSubscriptionItemIdMap[lineItem.slug]\n assert(\n !id,\n 500,\n `Error creating stripe subscription: consumer contains a Stripe Subscription Item for LineItem \"${lineItem.slug}\" and pricing plan \"${pricingPlan.slug}\"`\n )\n\n return {\n price: priceId,\n metadata: {\n lineItemSlug: lineItem.slug\n }\n }\n })\n )\n\n assert(\n items.length,\n 500,\n `Error creating stripe subscription: invalid plan \"${plan}\"`\n )\n\n const createParams: Stripe.SubscriptionCreateParams = {\n customer: stripeCustomerId,\n description: `Agentic subscription to project \"${project.identifier}\"`,\n // TODO: coupons\n // coupon: filterConsumerCoupon(ctx, consumer, deployment),\n items,\n // collection_method: 'charge_automatically',\n metadata: {\n plan: plan ?? null,\n consumerId: consumer.id,\n userId: consumer.userId,\n projectId: project.id,\n deploymentId: deployment.id\n }\n }\n\n if (pricingPlan.trialPeriodDays) {\n createParams.trial_period_days = pricingPlan.trialPeriodDays\n }\n\n // TODO: Stripe Connect\n // if (project.isStripeConnectEnabled && project.applicationFeePercent > 0) {\n // createParams.application_fee_percent = project.applicationFeePercent\n // }\n\n logger.debug('subscription', action, { items })\n subscription = await stripe.subscriptions.create(\n createParams,\n ...stripeConnectParams\n )\n\n consumer._stripeSubscriptionId = subscription.id\n }\n\n // ----------------------------------------------------\n // Same codepath for updating, creating, and cancelling\n // ----------------------------------------------------\n\n assert(subscription, 500, 'Missing stripe subscription')\n logger.debug('subscription', subscription)\n\n const consumerUpdate: RawConsumerUpdate = consumer\n consumerUpdate.stripeStatus = subscription.status\n setConsumerStripeSubscriptionStatus(consumerUpdate)\n\n // if (!plan) {\n // TODO: we cancel at the end of the billing interval, so we shouldn't\n // invalidate the stripe subscription just yet. That should happen via\n // webhook. And we should never set `_stripeSubscriptionId` to `null`.\n // consumerUpdate._stripeSubscriptionId = null\n // consumerUpdate.stripeStatus = 'cancelled'\n // }\n\n if (pricingPlan) {\n for (const lineItem of pricingPlan.lineItems) {\n const stripeSubscriptionItemId =\n consumer._stripeSubscriptionItemIdMap[lineItem.slug]\n\n const stripeSubscriptionItem: Stripe.SubscriptionItem | undefined =\n subscription.items.data.find((item) =>\n stripeSubscriptionItemId\n ? item.id === stripeSubscriptionItemId\n : item.metadata?.lineItemSlug === lineItem.slug\n )\n\n assert(\n stripeSubscriptionItem,\n 500,\n `Error post-processing stripe subscription for line-item \"${lineItem.slug}\" on plan \"${pricingPlan.slug}\"`\n )\n\n consumerUpdate._stripeSubscriptionItemIdMap![lineItem.slug] =\n stripeSubscriptionItem.id\n assert(\n consumerUpdate._stripeSubscriptionItemIdMap![lineItem.slug],\n 500,\n `Error post-processing stripe subscription for line-item \"${lineItem.slug}\" on plan \"${pricingPlan.slug}\"`\n )\n }\n }\n\n logger.debug()\n logger.debug('consumer update', consumerUpdate)\n\n const [updatedConsumer] = await db\n .update(schema.consumers)\n .set(consumerUpdate)\n .where(eq(schema.consumers.id, consumer.id))\n .returning()\n assert(updatedConsumer, 500, 'Error updating consumer')\n\n // await auditLog.createStripeSubscriptionLogEntry(ctx, {\n // consumer,\n // user,\n // plan: consumer.plan,\n // subtype: action\n // })\n\n return {\n subscription,\n consumer: updatedConsumer\n }\n}\n" }, { "path": "apps/api/src/lib/cache-control.ts", "content": "import { assert } from '@agentic/platform-core'\n\nexport type PublicCacheControlLevels =\n | '1s'\n | '10s'\n | '30s'\n | '1m'\n | '5m'\n | '10m'\n | '30m'\n | '1h'\n | '1d'\n\nconst publicCacheControlLevelsMap: Record = {\n '1s': 'public, max-age=1, s-maxage=1 stale-while-revalidate=0',\n '10s': 'public, max-age=10, s-maxage=10 stale-while-revalidate=1',\n '30s': 'public, max-age=30, s-maxage=30 stale-while-revalidate=5',\n '1m': 'public, max-age=60, s-maxage=60 stale-while-revalidate=10',\n '5m': 'public, max-age=300, s-maxage=300 stale-while-revalidate=60',\n '10m': 'public, max-age=600, s-maxage=600 stale-while-revalidate=120',\n '30m': 'public, max-age=1800, s-maxage=1800 stale-while-revalidate=300',\n '1h': 'public, max-age=3600, s-maxage=3600, stale-while-revalidate=500',\n '1d': 'public, max-age=86400, s-maxage=86400, stale-while-revalidate=3600'\n}\n\nexport function setPublicCacheControl(\n res: Response,\n level: PublicCacheControlLevels\n) {\n const cacheControl = publicCacheControlLevelsMap[level]\n assert(cacheControl, `Invalid cache control level \"${level}\"`)\n\n res.headers.set('cache-control', cacheControl)\n}\n" }, { "path": "apps/api/src/lib/consumers/upsert-consumer-stripe-checkout.ts", "content": "import { assert } from '@agentic/platform-core'\n\nimport type { AuthenticatedHonoContext } from '@/lib/types'\nimport {\n and,\n db,\n eq,\n type RawConsumer,\n type RawDeployment,\n type RawProject,\n schema\n} from '@/db'\nimport { acl } from '@/lib/acl'\nimport { upsertStripeConnectCustomer } from '@/lib/billing/upsert-stripe-connect-customer'\nimport { upsertStripeCustomer } from '@/lib/billing/upsert-stripe-customer'\nimport { upsertStripePricingResources } from '@/lib/billing/upsert-stripe-pricing-resources'\nimport { createConsumerApiKey } from '@/lib/create-consumer-api-key'\n\nimport { aclPublicProject } from '../acl-public-project'\nimport { createStripeCheckoutSession } from '../billing/create-stripe-checkout-session'\n\nexport async function upsertConsumerStripeCheckout(\n c: AuthenticatedHonoContext,\n {\n plan,\n deploymentId,\n consumerId\n }: {\n plan?: string\n deploymentId?: string\n consumerId?: string\n }\n): Promise<{\n checkoutSession: { id: string; url: string }\n consumer: RawConsumer\n}> {\n assert(\n consumerId || deploymentId,\n 400,\n 'Internal error: upsertConsumerStripeCheckout missing required \"deploymentId\" or \"consumerId\"'\n )\n const logger = c.get('logger')\n const userId = c.get('userId')\n let deployment: RawDeployment | undefined\n let project: RawProject | undefined\n let projectId: string | undefined\n\n logger.info('upsertConsumerStripeCheckout', {\n plan,\n deploymentId,\n consumerId\n })\n\n async function initDeploymentAndProject() {\n assert(deploymentId, 400, 'Missing required \"deploymentId\"')\n if (deployment && project) {\n // Already initialized\n return\n }\n\n deployment = await db.query.deployments.findFirst({\n where: eq(schema.deployments.id, deploymentId),\n with: {\n project: true\n }\n })\n assert(deployment, 404, `Deployment not found \"${deploymentId}\"`)\n\n project = deployment.project!\n assert(\n project,\n 404,\n `Project not found \"${projectId}\" for deployment \"${deploymentId}\"`\n )\n aclPublicProject(project)\n\n // Validate the deployment only after we're sure the project is publicly\n // accessible.\n assert(\n !deployment.deletedAt,\n 410,\n `Deployment has been deleted by its owner \"${deployment.id}\"`\n )\n\n projectId = project.id\n }\n\n if (deploymentId) {\n await initDeploymentAndProject()\n }\n\n if (!consumerId) {\n assert(projectId, 400, 'Missing required \"projectId\"')\n }\n\n const [{ user, stripeCustomer }, existingConsumer] = await Promise.all([\n upsertStripeCustomer(c),\n\n db.query.consumers.findFirst({\n where: consumerId\n ? eq(schema.consumers.id, consumerId)\n : and(\n eq(schema.consumers.userId, userId),\n eq(schema.consumers.projectId, projectId!)\n )\n })\n ])\n\n if (consumerId) {\n assert(existingConsumer, 404, `Consumer not found \"${consumerId}\"`)\n assert(existingConsumer.id === consumerId, 403)\n await acl(c, existingConsumer, { label: 'Consumer' })\n\n if (projectId) {\n assert(\n existingConsumer.projectId === projectId,\n 400,\n `Deployment \"${deploymentId}\" does not belong to project \"${existingConsumer.projectId}\" for consumer \"${consumerId}\"`\n )\n }\n\n deploymentId ??= existingConsumer.deploymentId\n projectId ??= existingConsumer.projectId\n }\n\n assert(deploymentId)\n assert(projectId)\n\n assert(\n !existingConsumer ||\n !existingConsumer.isStripeSubscriptionActive ||\n existingConsumer.plan !== plan ||\n existingConsumer.deploymentId !== deploymentId,\n 409,\n\n plan\n ? `User \"${user.email}\" already has an active subscription to plan \"${plan}\" for project \"${projectId}\"`\n : `User \"${user.email}\" already has cancelled their subscription for project \"${projectId}\"`\n )\n\n await initDeploymentAndProject()\n assert(deployment, 500, `Error getting deployment \"${deploymentId}\"`)\n assert(project, 500, `Error getting project \"${projectId}\"`)\n\n if (plan) {\n const pricingPlan = deployment.pricingPlans.find((p) => p.slug === plan)\n assert(\n pricingPlan,\n 400,\n `Pricing plan \"${plan}\" not found for deployment \"${deploymentId}\"`\n )\n }\n\n let consumer = existingConsumer\n\n if (consumer) {\n // Don't update the consumer until the checkout session is completed\n // successfully.\n // ;[consumer] = await db\n // .update(schema.consumers)\n // .set({\n // plan,\n // deploymentId\n // })\n // .where(eq(schema.consumers.id, consumer.id))\n // .returning()\n } else {\n // Create a new consumer, but don't set the plan yet until the checkout\n // session is completed successfully.\n ;[consumer] = await db\n .insert(schema.consumers)\n .values({\n // plan,\n userId,\n projectId,\n deploymentId,\n token: await createConsumerApiKey(),\n _stripeCustomerId: stripeCustomer.id\n })\n .returning()\n }\n\n assert(\n consumer,\n 500,\n 'Internal error: upsertConsumerStripeCheckout error creating consumer'\n )\n\n // Ensure that all Stripe pricing resources exist for this deployment\n await upsertStripePricingResources({ deployment, project })\n\n // Ensure that customer and default source are created on the stripe connect account\n // TODO: is this necessary?\n // consumer._stripeAccount = project._stripeAccount\n // TODO: this function may mutate `consumer`\n await upsertStripeConnectCustomer({ stripeCustomer, consumer, project })\n\n logger.info(\n 'CONSUMER STRIPE CHECKOUT',\n existingConsumer ? 'UPDATE' : 'CREATE',\n {\n project,\n deployment,\n consumer\n }\n )\n\n const checkoutSession = await createStripeCheckoutSession(c, {\n consumer,\n user,\n project,\n deployment,\n plan\n })\n logger.info('checkout session', checkoutSession)\n\n return {\n checkoutSession,\n consumer\n }\n}\n" }, { "path": "apps/api/src/lib/consumers/upsert-consumer.ts", "content": "import { assert } from '@agentic/platform-core'\n\nimport type { AuthenticatedHonoContext } from '@/lib/types'\nimport { and, db, eq, type RawDeployment, type RawProject, schema } from '@/db'\nimport { acl } from '@/lib/acl'\nimport { upsertStripeConnectCustomer } from '@/lib/billing/upsert-stripe-connect-customer'\nimport { upsertStripeCustomer } from '@/lib/billing/upsert-stripe-customer'\nimport { upsertStripePricingResources } from '@/lib/billing/upsert-stripe-pricing-resources'\nimport { upsertStripeSubscription } from '@/lib/billing/upsert-stripe-subscription'\nimport { createConsumerApiKey } from '@/lib/create-consumer-api-key'\n\nimport { aclPublicProject } from '../acl-public-project'\n\nexport async function upsertConsumer(\n c: AuthenticatedHonoContext,\n {\n plan,\n deploymentId,\n consumerId\n }: {\n plan?: string\n deploymentId?: string\n consumerId?: string\n }\n) {\n assert(\n consumerId || deploymentId,\n 400,\n 'Internal error: upsertConsumer missing required \"deploymentId\" or \"consumerId\"'\n )\n const logger = c.get('logger')\n const userId = c.get('userId')\n let deployment: RawDeployment | undefined\n let project: RawProject | undefined\n let projectId: string | undefined\n\n async function initDeploymentAndProject() {\n assert(deploymentId, 400, 'Missing required \"deploymentId\"')\n if (deployment && project) {\n // Already initialized\n return\n }\n\n deployment = await db.query.deployments.findFirst({\n where: eq(schema.deployments.id, deploymentId),\n with: {\n project: true\n }\n })\n assert(deployment, 404, `Deployment not found \"${deploymentId}\"`)\n assert(\n !deployment.deletedAt,\n 410,\n `Deployment has been deleted by its owner \"${deployment.id}\"`\n )\n\n project = deployment.project!\n assert(\n project,\n 404,\n `Project not found \"${projectId}\" for deployment \"${deploymentId}\"`\n )\n aclPublicProject(project)\n\n // Validate the deployment only after we're sure the project is publicly\n // accessible.\n assert(\n !deployment.deletedAt,\n 410,\n `Deployment has been deleted by its owner \"${deployment.id}\"`\n )\n\n projectId = project.id\n }\n\n if (deploymentId) {\n await initDeploymentAndProject()\n }\n\n if (!consumerId) {\n assert(projectId, 400, 'Missing required \"deploymentId\"')\n }\n\n const [{ user, stripeCustomer }, existingConsumer] = await Promise.all([\n upsertStripeCustomer(c),\n\n db.query.consumers.findFirst({\n where: consumerId\n ? eq(schema.consumers.id, consumerId)\n : and(\n eq(schema.consumers.userId, userId),\n eq(schema.consumers.projectId, projectId!)\n )\n })\n ])\n\n if (consumerId) {\n assert(existingConsumer, 404, `Consumer not found \"${consumerId}\"`)\n assert(existingConsumer.id === consumerId, 403)\n await acl(c, existingConsumer, { label: 'Consumer' })\n\n if (projectId) {\n assert(\n existingConsumer.projectId === projectId,\n 400,\n `Deployment \"${deploymentId}\" does not belong to project \"${existingConsumer.projectId}\" for consumer \"${consumerId}\"`\n )\n }\n\n deploymentId ??= existingConsumer.deploymentId\n projectId ??= existingConsumer.projectId\n } else {\n assert(\n !existingConsumer,\n 409,\n `User \"${user.email}\" already has a subscription for project \"${projectId ?? ''}\"`\n )\n }\n\n assert(deploymentId)\n assert(projectId)\n\n assert(\n !existingConsumer ||\n !existingConsumer.isStripeSubscriptionActive ||\n existingConsumer.plan !== plan ||\n existingConsumer.deploymentId !== deploymentId,\n 409,\n\n plan\n ? `User \"${user.email}\" already has an active subscription to plan \"${plan}\" for project \"${projectId}\"`\n : `User \"${user.email}\" already has cancelled their subscription for project \"${projectId}\"`\n )\n\n await initDeploymentAndProject()\n assert(deployment, 500, `Error getting deployment \"${deploymentId}\"`)\n assert(project, 500, `Error getting project \"${projectId}\"`)\n\n if (plan) {\n const pricingPlan = deployment.pricingPlans.find((p) => p.slug === plan)\n assert(\n pricingPlan,\n 400,\n `Pricing plan \"${plan}\" not found for deployment \"${deploymentId}\"`\n )\n }\n\n let consumer = existingConsumer\n\n if (consumer) {\n ;[consumer] = await db\n .update(schema.consumers)\n .set({\n plan,\n deploymentId\n })\n .where(eq(schema.consumers.id, consumer.id))\n .returning()\n } else {\n ;[consumer] = await db\n .insert(schema.consumers)\n .values({\n plan,\n userId,\n projectId,\n deploymentId,\n token: await createConsumerApiKey(),\n _stripeCustomerId: stripeCustomer.id\n })\n .returning()\n }\n\n assert(consumer, 500, 'Error creating consumer')\n\n // Ensure that all Stripe pricing resources exist for this deployment\n await upsertStripePricingResources({ deployment, project })\n\n // Ensure that customer and default source are created on the stripe connect account\n // TODO: is this necessary?\n // consumer._stripeAccount = project._stripeAccount\n await upsertStripeConnectCustomer({ stripeCustomer, consumer, project })\n\n logger.info('SUBSCRIPTION', existingConsumer ? 'UPDATE' : 'CREATE', {\n project,\n deployment,\n consumer\n })\n\n const { subscription, consumer: updatedConsumer } =\n await upsertStripeSubscription(c, {\n consumer,\n user,\n project,\n deployment\n })\n logger.info('subscription', subscription)\n\n return updatedConsumer\n}\n" }, { "path": "apps/api/src/lib/consumers/utils.ts", "content": "import type { RawConsumerUpdate } from '@/db'\n\n// https://docs.stripe.com/api/subscriptions/object#subscription_object-status\nconst stripeValidSubscriptionStatuses = new Set([\n 'active',\n 'trialing',\n 'incomplete',\n 'past_due'\n])\n\nexport function setConsumerStripeSubscriptionStatus(\n consumer: Pick<\n RawConsumerUpdate,\n 'plan' | 'stripeStatus' | 'isStripeSubscriptionActive'\n >\n) {\n consumer.isStripeSubscriptionActive =\n consumer.plan === 'free' ||\n (!!consumer.stripeStatus &&\n stripeValidSubscriptionStatuses.has(consumer.stripeStatus))\n}\n" }, { "path": "apps/api/src/lib/create-avatar.ts", "content": "import { identicon } from '@dicebear/collection'\nimport { createAvatar as createAvatarImpl } from '@dicebear/core'\n\nconst defaultAgenticAvatar =\n 'data:image/svg+xml;base64,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'\n\nconst defaultDevAgenticAvatar =\n 'data:image/svg+xml;base64,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'\n\nexport function createAvatar(seed: string): string {\n if (seed === 'info@agentic.so') {\n return defaultAgenticAvatar\n }\n\n if (seed === 'dev@agentic.so') {\n return defaultDevAgenticAvatar\n }\n\n return createAvatarImpl(identicon, { seed }).toDataUri()\n}\n" }, { "path": "apps/api/src/lib/create-consumer-api-key.ts", "content": "import { sha256 } from '@agentic/platform-core'\n\nexport async function createConsumerApiKey(): Promise {\n const hash = await sha256()\n\n return `sk-${hash}`\n}\n" }, { "path": "apps/api/src/lib/deployments/get-deployment-by-id.ts", "content": "import { assert } from '@agentic/platform-core'\n\nimport { db, eq, type RawDeployment, schema } from '@/db'\n\n/**\n * Finds the Deployment with the given id.\n *\n * Does not take care of ACLs.\n *\n * Returns `undefined` if not found.\n */\nexport async function getDeploymentById({\n deploymentId,\n ...dbQueryOpts\n}: {\n deploymentId: string\n with?: {\n user?: true\n team?: true\n project?: true\n }\n}): Promise {\n assert(deploymentId, 400, 'Missing required deployment id')\n\n const deployment = await db.query.deployments.findFirst({\n ...dbQueryOpts,\n where: eq(schema.deployments.id, deploymentId)\n })\n\n return deployment\n}\n" }, { "path": "apps/api/src/lib/deployments/normalize-deployment-version.ts", "content": "import { assert } from '@agentic/platform-core'\nimport semver from 'semver'\n\nimport type { RawProject } from '@/db'\n\nexport function normalizeDeploymentVersion({\n deploymentIdentifier,\n version: rawVersion,\n project\n}: {\n deploymentIdentifier: string\n version: string\n project: RawProject\n}): string | undefined {\n const version = semver.clean(rawVersion)\n assert(version, 400, `Invalid semver version \"${rawVersion}\"`)\n\n assert(\n semver.valid(version),\n 400,\n `Invalid semver version \"${version}\" for deployment \"${deploymentIdentifier}\"`\n )\n\n const lastPublishedVersion = project.lastPublishedDeployment?.version\n assert(\n !lastPublishedVersion || semver.gt(version, lastPublishedVersion),\n 400,\n `Semver version \"${version}\" must be greater than the current published version \"${lastPublishedVersion}\" for deployment \"${deploymentIdentifier}\"`\n )\n\n return version\n}\n" }, { "path": "apps/api/src/lib/deployments/publish-deployment.ts", "content": "import { assert } from '@agentic/platform-core'\n\nimport type { AuthenticatedHonoContext } from '@/lib/types'\nimport { db, eq, type RawDeployment, schema } from '@/db'\nimport { acl } from '@/lib/acl'\n\nimport { normalizeDeploymentVersion } from './normalize-deployment-version'\n\nexport async function publishDeployment(\n ctx: AuthenticatedHonoContext,\n {\n deployment,\n version: rawVersion\n }: {\n deployment: RawDeployment\n version: string\n }\n): Promise {\n const project = await db.query.projects.findFirst({\n where: eq(schema.projects.id, deployment.projectId),\n with: {\n lastPublishedDeployment: true\n }\n })\n assert(project, 404, `Project not found \"${deployment.projectId}\"`)\n await acl(ctx, project, { label: 'Project' })\n\n const version = normalizeDeploymentVersion({\n deploymentIdentifier: deployment.identifier,\n project,\n version: rawVersion\n })\n\n // TODO: enforce additional semver constraints\n // - pricing changes require major version update\n // - deployment shouldn't already be published?\n // - any others?\n\n // Update the deployment and project together in a transaction\n const [[updatedDeployment]] = await db.transaction(async (tx) => {\n return Promise.all([\n // Update the deployment\n tx\n .update(schema.deployments)\n .set({\n published: true,\n version\n })\n .where(eq(schema.deployments.id, deployment.id))\n .returning(),\n\n // Update the project\n tx\n .update(schema.projects)\n .set({\n name: deployment.name,\n lastPublishedDeploymentId: deployment.id,\n lastPublishedDeploymentVersion: version\n })\n .where(eq(schema.projects.id, project.id))\n\n // TODO: add publishDeploymentLogEntry\n ])\n })\n assert(\n updatedDeployment,\n 500,\n `Failed to update deployment \"${deployment.id}\"`\n )\n\n return updatedDeployment\n}\n" }, { "path": "apps/api/src/lib/deployments/try-get-deployment-by-identifier.ts", "content": "import type { DefaultHonoContext } from '@agentic/platform-hono'\nimport { assert } from '@agentic/platform-core'\nimport { parseDeploymentIdentifier } from '@agentic/platform-validators'\n\nimport {\n and,\n db,\n deploymentIdSchema,\n eq,\n type RawDeployment,\n schema\n} from '@/db'\nimport { setPublicCacheControl } from '@/lib/cache-control'\n\nimport type { AuthenticatedHonoContext } from '../types'\n\n/**\n * Attempts to find the Deployment matching the given deployment ID or\n * identifier.\n *\n * Throws a HTTP 404 error if not found.\n *\n * Does not take care of ACLs.\n */\nexport async function tryGetDeploymentByIdentifier(\n ctx: AuthenticatedHonoContext | DefaultHonoContext,\n {\n deploymentIdentifier,\n strict = false,\n ...dbQueryOpts\n }: {\n deploymentIdentifier: string\n strict?: boolean\n with?: {\n user?: true\n team?: true\n project?: true\n }\n }\n): Promise {\n assert(deploymentIdentifier, 400, 'Missing required deployment identifier')\n\n // First check if the identifier is a deployment ID\n if (deploymentIdSchema.safeParse(deploymentIdentifier).success) {\n const deployment = await db.query.deployments.findFirst({\n ...dbQueryOpts,\n where: eq(schema.deployments.id, deploymentIdentifier)\n })\n assert(deployment, 404, `Deployment not found \"${deploymentIdentifier}\"`)\n setPublicCacheControl(ctx.res, '1h')\n return deployment\n }\n\n const parsedDeploymentIdentifier = parseDeploymentIdentifier(\n deploymentIdentifier,\n { strict }\n )\n\n const { projectIdentifier, deploymentHash, deploymentVersion } =\n parsedDeploymentIdentifier\n deploymentIdentifier = parsedDeploymentIdentifier.deploymentIdentifier\n\n if (deploymentHash) {\n const deployment = await db.query.deployments.findFirst({\n ...dbQueryOpts,\n where: eq(schema.deployments.identifier, deploymentIdentifier)\n })\n assert(deployment, 404, `Deployment not found \"${deploymentIdentifier}\"`)\n setPublicCacheControl(ctx.res, '1h')\n\n return deployment\n } else if (deploymentVersion) {\n const project = await db.query.projects.findFirst({\n where: eq(schema.projects.identifier, projectIdentifier)\n })\n assert(project, 404, `Project not found \"${projectIdentifier}\"`)\n\n if (deploymentVersion === 'latest') {\n const deploymentId =\n project.lastPublishedDeploymentId || project.lastDeploymentId\n assert(\n deploymentId,\n 404,\n `Project has no published deployments (referenced by \"${deploymentIdentifier}\")`\n )\n\n const deployment = await db.query.deployments.findFirst({\n ...dbQueryOpts,\n where: eq(schema.deployments.id, deploymentId)\n })\n assert(\n deployment,\n 404,\n `Deployment not found \"${project.lastPublishedDeploymentId}\" (referenced by \"${deploymentIdentifier}\")`\n )\n setPublicCacheControl(ctx.res, '10s')\n\n return deployment\n } else if (deploymentVersion === 'dev') {\n assert(\n project.lastDeploymentId,\n 404,\n `Project has no published deployments (referenced by \"${deploymentIdentifier}\")`\n )\n\n const deployment = await db.query.deployments.findFirst({\n ...dbQueryOpts,\n where: eq(schema.deployments.id, project.lastDeploymentId)\n })\n assert(\n deployment,\n 404,\n `Deployment not found \"${project.lastDeploymentId}\" (referenced by \"${deploymentIdentifier}\")`\n )\n setPublicCacheControl(ctx.res, '10s')\n\n return deployment\n } else {\n const deployment = await db.query.deployments.findFirst({\n ...dbQueryOpts,\n where: and(\n eq(schema.deployments.projectId, project.id),\n eq(schema.deployments.version, deploymentVersion)\n )\n })\n assert(deployment, 404, `Deployment not found \"${deploymentIdentifier}\"`)\n setPublicCacheControl(ctx.res, '1h')\n\n return deployment\n }\n }\n\n assert(false, 400, `Invalid Deployment identifier \"${deploymentIdentifier}\"`)\n}\n" }, { "path": "apps/api/src/lib/ensure-auth-user.ts", "content": "import { assert } from '@agentic/platform-core'\n\nimport type { AuthenticatedHonoContext } from '@/lib/types'\nimport { db, eq, type RawUser, schema } from '@/db'\n\nexport async function ensureAuthUser(\n ctx: AuthenticatedHonoContext\n): Promise {\n let user = ctx.get('user')\n if (user) return user\n\n const userId = ctx.get('userId')\n assert(userId, 401, 'Unauthorized')\n\n user = await db.query.users.findFirst({\n where: eq(schema.users.id, userId)\n })\n assert(user, 401, 'Unauthorized')\n ctx.set('user', user)\n\n return user\n}\n" }, { "path": "apps/api/src/lib/ensure-unique-namespace.ts", "content": "import { assert, sha256 } from '@agentic/platform-core'\n\nimport { db, eq, schema } from '@/db'\n\nexport async function ensureUniqueNamespace(\n namespace: string,\n { label = 'Namespace' }: { label?: string } = {}\n) {\n namespace = namespace.toLocaleLowerCase()\n\n const [existingTeam, existingUser] = await Promise.all([\n db.query.teams.findFirst({\n where: eq(schema.teams.slug, namespace)\n }),\n\n db.query.users.findFirst({\n where: eq(schema.users.username, namespace)\n })\n ])\n\n assert(\n !existingUser && !existingTeam,\n 409,\n `${label} \"${namespace}\" is not available`\n )\n}\n\nexport async function getUniqueNamespace(\n namespace?: string,\n { label = 'Namespace' }: { label?: string } = {}\n) {\n namespace ??= `${label}_${(await sha256()).slice(0, 24)}`\n namespace = namespace\n .replaceAll(/[^a-zA-Z0-9_-]/g, '')\n .toLowerCase()\n .slice(0, schema.namespaceMaxLength - 1)\n\n let currentNamespace = namespace\n let attempts = 0\n\n do {\n try {\n await ensureUniqueNamespace(namespace, { label })\n\n return currentNamespace\n } catch (err) {\n if (++attempts > 10) {\n throw err\n }\n\n const suffix = (await sha256()).slice(0, 8)\n currentNamespace = `${namespace.slice(0, schema.namespaceMaxLength - 1 - suffix.length)}${suffix}`\n }\n } while (true)\n}\n" }, { "path": "apps/api/src/lib/env.ts", "content": "import type { Simplify } from 'type-fest'\nimport { parseZodSchema } from '@agentic/platform-core'\nimport {\n envSchema as baseEnvSchema,\n parseEnv as parseBaseEnv\n} from '@agentic/platform-hono'\nimport { z } from 'zod'\n\nexport const envSchema = baseEnvSchema\n .extend({\n DATABASE_URL: z.string().url(),\n\n AGENTIC_WEB_BASE_URL: z.string().url(),\n AGENTIC_GATEWAY_BASE_URL: z.string().url(),\n AGENTIC_STORAGE_BASE_URL: z\n .string()\n .url()\n .optional()\n .default('https://storage.agentic.so'),\n\n JWT_SECRET: z.string().nonempty(),\n\n PORT: z.coerce.number().default(3001),\n\n STRIPE_SECRET_KEY: z.string().nonempty(),\n STRIPE_WEBHOOK_SECRET: z.string().nonempty(),\n\n GITHUB_CLIENT_ID: z.string().nonempty(),\n GITHUB_CLIENT_SECRET: z.string().nonempty(),\n\n RESEND_API_KEY: z.string().nonempty(),\n\n // Used to make admin API calls from the API gateway\n AGENTIC_ADMIN_API_KEY: z.string().nonempty(),\n\n // Used to simplify recreating the demo `@agentic/search` project during\n // development while we're frequently resetting the database\n AGENTIC_SEARCH_PROXY_SECRET: z.string().nonempty(),\n\n S3_BUCKET: z.string().nonempty().optional().default('agentic'),\n S3_REGION: z.string().nonempty().optional().default('auto'),\n S3_ENDPOINT: z.string().nonempty().url(),\n S3_ACCESS_KEY_ID: z.string().nonempty(),\n S3_ACCESS_KEY_SECRET: z.string().nonempty()\n })\n .strip()\nexport type RawEnv = z.infer\n\nexport function parseEnv(inputEnv: Record) {\n const baseEnv = parseBaseEnv({\n SERVICE: 'api',\n ...inputEnv\n })\n\n const env = parseZodSchema(\n envSchema,\n { ...inputEnv, ...baseEnv },\n {\n error: 'Invalid environment variables'\n }\n )\n\n const isStripeLive = env.STRIPE_SECRET_KEY.startsWith('sk_live_')\n const apiBaseUrl = baseEnv.isProd\n ? 'https://api.agentic.so'\n : 'http://localhost:3001'\n\n return {\n ...baseEnv,\n ...env,\n isStripeLive,\n apiBaseUrl\n }\n}\n\nexport type Env = Simplify>\n\n// eslint-disable-next-line no-process-env\nexport const env = parseEnv(process.env)\n" }, { "path": "apps/api/src/lib/exit-hooks.ts", "content": "import { promisify } from 'node:util'\n\nimport type { ServerType } from '@hono/node-server'\nimport * as Sentry from '@sentry/node'\nimport { asyncExitHook } from 'exit-hook'\nimport restoreCursor from 'restore-cursor'\n\nimport { db } from '@/db'\n\nexport function initExitHooks({\n server,\n timeoutMs = 10_000\n}: {\n server: ServerType\n timeoutMs?: number\n}) {\n // Gracefully restore the cursor if run from a TTY\n restoreCursor()\n\n // Gracefully shutdown the HTTP server\n asyncExitHook(\n async function shutdownServerExitHook() {\n try {\n await promisify(server.close)()\n } catch {\n // TODO\n }\n },\n {\n wait: timeoutMs\n }\n )\n\n // Gracefully shutdown the postgres database connection\n asyncExitHook(\n async function shutdownDbExitHook() {\n try {\n if ('end' in db.$client) {\n await db.$client.end({ timeout: timeoutMs })\n }\n } catch {\n // TODO\n }\n },\n {\n wait: timeoutMs\n }\n )\n\n // Gracefully flush Sentry events\n asyncExitHook(\n async function flushSentryExitHook() {\n await Sentry.flush(timeoutMs)\n },\n {\n wait: timeoutMs\n }\n )\n\n // TODO: On Node.js, log unhandledRejection, uncaughtException, and warning events\n}\n" }, { "path": "apps/api/src/lib/external/github.ts", "content": "import ky from 'ky'\nimport { Octokit } from 'octokit'\n\nimport { env } from '@/lib/env'\n\nconst USER_AGENT = 'agentic-platform'\n\n/**\n * GitHub (user-level) OAuth token response.\n *\n * @see https://docs.github.com/apps/oauth\n */\nexport interface GitHubUserTokenResponse {\n /**\n * The user access token (always starts with `ghu_`).\n * Example: `ghu_xxx…`\n */\n access_token: string\n\n /**\n * Seconds until `access_token` expires.\n * Omitted (`undefined`) if you’ve disabled token expiration.\n * Constant `28800` (8 hours) when present.\n */\n expires_in?: number\n\n /**\n * Refresh token for renewing the user access token (starts with `ghr_`).\n * Omitted (`undefined`) if you’ve disabled token expiration.\n */\n refresh_token?: string\n\n /**\n * Seconds until `refresh_token` expires.\n * Omitted (`undefined`) if you’ve disabled token expiration.\n * Constant `15897600` (6 months) when present.\n */\n refresh_token_expires_in?: number\n\n /**\n * Scopes granted to the token.\n * Always an empty string because the token is limited to\n * the intersection of app-level and user-level permissions.\n */\n scope: ''\n\n /**\n * Token type – always `'bearer'`.\n */\n token_type: 'bearer'\n}\n\nexport function getGitHubClient({\n accessToken\n}: {\n accessToken: string\n}): Octokit {\n return new Octokit({ auth: accessToken })\n}\n\nexport async function exchangeGitHubOAuthCodeForAccessToken({\n code,\n clientId = env.GITHUB_CLIENT_ID,\n clientSecret = env.GITHUB_CLIENT_SECRET,\n redirectUri\n}: {\n code: string\n clientId?: string\n clientSecret?: string\n redirectUri?: string\n}): Promise {\n return ky\n .post('https://github.com/login/oauth/access_token', {\n json: {\n code,\n client_id: clientId,\n client_secret: clientSecret,\n redirect_uri: redirectUri\n },\n headers: {\n 'user-agent': USER_AGENT\n }\n })\n .json()\n}\n" }, { "path": "apps/api/src/lib/external/resend.ts", "content": "import { ResendEmailClient } from '@agentic/platform-emails'\n\nimport { env } from '@/lib/env'\n\nexport const resend = new ResendEmailClient({\n apiKey: env.RESEND_API_KEY\n})\n" }, { "path": "apps/api/src/lib/external/sentry.ts", "content": "import * as Sentry from '@sentry/node'\n\n// This MUST be run before anything else (imported first in the root file).\n// No other imports (like env) should be imported in this file.\nSentry.init({\n dsn: process.env.SENTRY_DSN, // eslint-disable-line no-process-env\n environment: process.env.ENVIRONMENT || 'development', // eslint-disable-line no-process-env\n integrations: [Sentry.extraErrorDataIntegration()],\n tracesSampleRate: 1.0,\n sendDefaultPii: true\n})\n" }, { "path": "apps/api/src/lib/external/stripe.ts", "content": "import Stripe from 'stripe'\n\nimport { env } from '@/lib/env'\n\nconst version = '2025-06-30.basil'\n\nexport const stripe = new Stripe(env.STRIPE_SECRET_KEY, {\n apiVersion: version,\n appInfo: {\n name: 'transitive-bullshit/agentic',\n version,\n url: 'https://agentic.so'\n }\n})\n" }, { "path": "apps/api/src/lib/middleware/authenticate.ts", "content": "import { assert } from '@agentic/platform-core'\nimport { authUserSchema } from '@agentic/platform-types'\nimport { createMiddleware } from 'hono/factory'\nimport { verify } from 'hono/jwt'\n\nimport type { RawUser } from '@/db'\nimport type { AuthenticatedHonoEnv } from '@/lib/types'\nimport { env } from '@/lib/env'\nimport { timingSafeCompare } from '@/lib/utils'\n\nexport const authenticate = createMiddleware(\n async function authenticateMiddleware(ctx, next) {\n const credentials = ctx.req.raw.headers.get('Authorization')\n assert(credentials, 401, 'Unauthorized')\n\n const parts = credentials.split(/\\s+/)\n assert(\n parts.length === 1 ||\n (parts.length === 2 && parts[0]?.toLowerCase() === 'bearer'),\n 401,\n 'Unauthorized'\n )\n const token = parts.at(-1)\n assert(token, 401, 'Unauthorized')\n\n // TODO: Use a more secure way to authenticate gateway admin requests.\n if (timingSafeCompare(token, env.AGENTIC_ADMIN_API_KEY)) {\n ctx.set('userId', 'admin')\n ctx.set('user', {\n id: 'admin',\n name: 'Admin',\n username: 'admin',\n role: 'admin',\n email: 'admin@agentic.so',\n isEmailVerified: true,\n image: undefined,\n stripeCustomerId: undefined,\n createdAt: new Date().toISOString(),\n updatedAt: new Date().toISOString(),\n deletedAt: undefined\n } as RawUser)\n } else {\n const payload = await verify(token, env.JWT_SECRET)\n assert(payload, 401, 'Unauthorized')\n\n const parsedAuthUser = authUserSchema.safeParse(payload)\n assert(parsedAuthUser.success, 401, 'Unauthorized')\n ctx.set('userId', parsedAuthUser.data.id)\n }\n\n await next()\n }\n)\n" }, { "path": "apps/api/src/lib/middleware/index.ts", "content": "export * from './authenticate'\nexport * from './me'\nexport * from './team'\nexport {\n accessLogger,\n compress,\n cors,\n init,\n responseTime,\n sentry,\n unless\n} from '@agentic/platform-hono'\n" }, { "path": "apps/api/src/lib/middleware/me.ts", "content": "import { createMiddleware } from 'hono/factory'\n\nimport type { AuthenticatedHonoEnv } from '@/lib/types'\n\nimport { ensureAuthUser } from '../ensure-auth-user'\n\nexport const me = createMiddleware(\n async function meMiddleware(ctx, next) {\n const regex = /^\\/(me)(\\/|$)/\n\n if (regex.test(ctx.req.path)) {\n const user = await ensureAuthUser(ctx)\n\n if (user) {\n // TODO: redirect instead?\n ctx.req.path = ctx.req.path.replace(regex, `/users/${user.id}$2`)\n }\n }\n\n await next()\n }\n)\n" }, { "path": "apps/api/src/lib/middleware/team.ts", "content": "import { assert } from '@agentic/platform-core'\nimport { createMiddleware } from 'hono/factory'\n\nimport type { AuthenticatedHonoEnv } from '@/lib/types'\nimport { and, db, eq, schema } from '@/db'\nimport { aclTeamMember } from '@/lib/acl-team-member'\n\n// TODO: Instead of accepting `teamId` query param, change the authenticate\n// middleware to accept a different JWT payload and then use that to\n// determine the intended user and/or team.\n\nexport const team = createMiddleware(\n async function teamMiddleware(ctx, next) {\n const teamId = ctx.req.query('teamId')\n const userId = ctx.get('userId')\n\n if (teamId && userId) {\n const teamMember = await db.query.teamMembers.findFirst({\n where: and(\n eq(schema.teamMembers.teamId, teamId),\n eq(schema.teamMembers.userId, userId)\n )\n })\n assert(teamMember, 403, 'Unauthorized')\n\n await aclTeamMember(ctx, { teamMember })\n\n ctx.set('teamMember', teamMember)\n }\n\n await next()\n }\n)\n" }, { "path": "apps/api/src/lib/openapi-utils.ts", "content": "import { fromError } from 'zod-validation-error'\n\nimport type { HonoApp } from './types'\n\nexport const openapiErrorResponses = {\n 400: {\n $ref: '#/components/responses/400'\n },\n 401: {\n $ref: '#/components/responses/401'\n },\n 403: {\n $ref: '#/components/responses/403'\n }\n} as const\n\nexport const openapiErrorResponse404 = {\n 404: {\n $ref: '#/components/responses/404'\n }\n} as const\n\nexport const openapiErrorResponse409 = {\n 409: {\n $ref: '#/components/responses/409'\n }\n} as const\n\nexport const openapiErrorResponse410 = {\n 410: {\n $ref: '#/components/responses/410'\n }\n} as const\n\n// No `as const` because zod openapi doesn't support readonly for `security`\nexport const openapiAuthenticatedSecuritySchemas = [\n {\n Bearer: []\n }\n]\n\nconst openapiErrorContent = {\n 'application/json': {\n schema: {\n type: 'object' as const,\n properties: {\n error: {\n type: 'string' as const\n },\n requestId: {\n type: 'string' as const\n }\n },\n required: ['error', 'requestId']\n }\n }\n}\n\nexport function registerOpenAPIErrorResponses(app: HonoApp) {\n app.openAPIRegistry.registerComponent('responses', '400', {\n description: 'Bad Request',\n content: openapiErrorContent\n })\n\n app.openAPIRegistry.registerComponent('responses', '401', {\n description: 'Unauthorized',\n content: openapiErrorContent\n })\n\n app.openAPIRegistry.registerComponent('responses', '403', {\n description: 'Forbidden',\n content: openapiErrorContent\n })\n\n app.openAPIRegistry.registerComponent('responses', '404', {\n description: 'Not Found',\n content: openapiErrorContent\n })\n\n app.openAPIRegistry.registerComponent('responses', '409', {\n description: 'Conflict',\n content: openapiErrorContent\n })\n\n app.openAPIRegistry.registerComponent('responses', '410', {\n description: 'Gone',\n content: openapiErrorContent\n })\n}\n\nexport function defaultHook(result: any, ctx: any) {\n if (!result.success) {\n const requestId = ctx.get('requestId')\n\n return ctx.json(\n {\n error: fromError(result.error).toString(),\n requestId\n },\n 400\n )\n }\n}\n" }, { "path": "apps/api/src/lib/projects/try-get-project-by-identifier.ts", "content": "import { assert } from '@agentic/platform-core'\nimport { parseProjectIdentifier } from '@agentic/platform-validators'\n\nimport type { AuthenticatedHonoContext } from '@/lib/types'\nimport { db, eq, projectIdSchema, type RawProject, schema } from '@/db'\n\n/**\n * Attempts to find the Project matching the given ID or identifier.\n *\n * Throws a HTTP 404 error if not found.\n *\n * Does not take care of ACLs.\n */\nexport async function tryGetProjectByIdentifier(\n ctx: AuthenticatedHonoContext,\n {\n projectIdentifier,\n strict = false,\n ...dbQueryOpts\n }: {\n projectIdentifier: string\n strict?: boolean\n with?: {\n user?: true\n team?: true\n lastPublishedproject?: true\n lastproject?: true\n }\n }\n): Promise {\n assert(projectIdentifier, 400, 'Missing required project identifier')\n\n // First check if the identifier is a project ID\n if (projectIdSchema.safeParse(projectIdentifier).success) {\n const project = await db.query.projects.findFirst({\n ...dbQueryOpts,\n where: eq(schema.projects.id, projectIdentifier)\n })\n assert(project, 404, `Project not found \"${projectIdentifier}\"`)\n return project\n }\n\n const parsedProjectIdentifier = parseProjectIdentifier(projectIdentifier, {\n strict\n })\n projectIdentifier = parsedProjectIdentifier.projectIdentifier\n\n const project = await db.query.projects.findFirst({\n ...dbQueryOpts,\n where: eq(schema.projects.identifier, projectIdentifier)\n })\n assert(project, 404, `Project not found \"${projectIdentifier}\"`)\n\n return project\n}\n" }, { "path": "apps/api/src/lib/storage.test.ts", "content": "import { describe, expect, test } from 'vitest'\n\nimport {\n deleteStorageObject,\n getStorageObject,\n putStorageObject,\n uploadFileUrlToStorage\n} from './storage'\n\ndescribe('Storage', () => {\n test('putObject, getObject, deleteObject', async () => {\n await putStorageObject('test.txt', 'hello world', {\n ContentType: 'text/plain'\n })\n\n const obj = await getStorageObject('test.txt')\n expect(obj.ContentType).toEqual('text/plain')\n\n const body = await obj.Body?.transformToString()\n expect(body).toEqual('hello world')\n\n const res = await deleteStorageObject('test.txt')\n expect(res.$metadata.httpStatusCode).toEqual(204)\n })\n\n test('uploadFileUrlToStorage url', async () => {\n const url = await uploadFileUrlToStorage(\n 'https://agentic.so/agentic-icon-circle-light.svg',\n {\n prefix: '@dev/test'\n }\n )\n\n expect(url).toBeTruthy()\n expect(new URL(url).origin).toEqual('https://storage.agentic.so')\n expect(url).toMatchSnapshot()\n })\n\n test('uploadFileUrlToStorage data-uri', async () => {\n const url = await uploadFileUrlToStorage(\n 'data:image/svg+xml,%3Csvg%20xmlns%3D%22http%3A%2F%2Fwww.w3.org%2F2000%2Fsvg%22%20width%3D%22400%22%20height%3D%22400%22%20viewBox%3D%220%200%20124%20124%22%20fill%3D%22none%22%3E%3Crect%20width%3D%22124%22%20height%3D%22124%22%20rx%3D%2224%22%20fill%3D%22%23F97316%22%2F%3E%3Cpath%20d%3D%22M19.375%2036.7818V100.625C19.375%20102.834%2021.1659%20104.625%2023.375%20104.625H87.2181C90.7818%20104.625%2092.5664%20100.316%2090.0466%2097.7966L26.2034%2033.9534C23.6836%2031.4336%2019.375%2033.2182%2019.375%2036.7818Z%22%20fill%3D%22white%22%2F%3E%3Ccircle%20cx%3D%2263.2109%22%20cy%3D%2237.5391%22%20r%3D%2218.1641%22%20fill%3D%22black%22%2F%3E%3Crect%20opacity%3D%220.4%22%20x%3D%2281.1328%22%20y%3D%2280.7198%22%20width%3D%2217.5687%22%20height%3D%2217.3876%22%20rx%3D%224%22%20transform%3D%22rotate(-45%2081.1328%2080.7198)%22%20fill%3D%22%23FDBA74%22%2F%3E%3C%2Fsvg%3E',\n {\n prefix: '@dev/test'\n }\n )\n\n expect(url).toBeTruthy()\n expect(new URL(url).origin).toEqual('https://storage.agentic.so')\n expect(url).toMatchSnapshot()\n })\n\n test('uploadFileUrlToStorage data-uri 2', async () => {\n const url = await uploadFileUrlToStorage(\n 'data:application/octet-stream;base64,IyBUZXN0IEV2ZXJ5dGhpbmcgT3BlbkFQSQoKVGhpcyBpcyB0ZXN0aW5nICoqcmVhZG1lIHJlbmRlcmluZyoqLgoKIyMgTWlzYwoKLSBbIF0gSXRlbSAxCi0gWyBdIEl0ZW0gMgotIFt4XSBJdGVtIDMKCi0tLQoKLSBfaXRhbGljXwotICoqYm9sZCoqCi0gW2xpbmtdKGh0dHBzOi8vd3d3Lmdvb2dsZS5jb20pCi0gYGNvZGVgCgojIyBDb2RlCgpgYGB0cwpjb25zdCBhID0gMQoKZXhwb3J0IGZ1bmN0aW9uIGZvbygpIHsKICBjb25zb2xlLmxvZygnaGVsbG8gd29ybGQnKQp9CmBgYAoKIyMgSW1hZ2VzCgohW0ltYWdlXShodHRwczovL3BsYWNlaG9sZC5jby82MDB4NDAwKQo=',\n {\n prefix: '@dev/test'\n }\n )\n\n expect(url).toBeTruthy()\n expect(new URL(url).origin).toEqual('https://storage.agentic.so')\n expect(url).toMatchSnapshot()\n })\n})\n" }, { "path": "apps/api/src/lib/storage.ts", "content": "import { sha256 } from '@agentic/platform-core'\nimport {\n DeleteObjectCommand,\n type DeleteObjectCommandInput,\n GetObjectCommand,\n type GetObjectCommandInput,\n PutObjectCommand,\n type PutObjectCommandInput,\n S3Client\n} from '@aws-sdk/client-s3'\nimport { getSignedUrl } from '@aws-sdk/s3-request-presigner'\nimport { fileTypeFromBuffer } from 'file-type'\nimport ky from 'ky'\nimport { lookup as lookupMimeType } from 'mrmime'\n\nimport { env } from './env'\n\n// This storage client is designed to work with any S3-compatible storage provider.\n// For Cloudflare R2, see https://developers.cloudflare.com/r2/examples/aws/aws-sdk-js-v3/\n\nconst STORAGE_DOMAIN = 'storage.agentic.so'\nconst Bucket = env.S3_BUCKET\n\nexport const storageClient = new S3Client({\n region: env.S3_REGION,\n endpoint: env.S3_ENDPOINT,\n credentials: {\n accessKeyId: env.S3_ACCESS_KEY_ID,\n secretAccessKey: env.S3_ACCESS_KEY_SECRET\n },\n requestChecksumCalculation: 'WHEN_REQUIRED',\n responseChecksumValidation: 'WHEN_REQUIRED'\n})\n\n// This ensures that buckets are created automatically if they don't exist on\n// Cloudflare R2. It won't affect other providers.\n// @see https://developers.cloudflare.com/r2/examples/aws/custom-header/\nstorageClient.middlewareStack.add(\n (next, _) => async (args) => {\n const r = args.request as RequestInit\n r.headers = {\n 'cf-create-bucket-if-missing': 'true',\n ...r.headers\n }\n\n return next(args)\n },\n { step: 'build', name: 'customHeaders' }\n)\n\nexport async function getStorageObject(\n key: string,\n opts?: Omit\n) {\n return storageClient.send(new GetObjectCommand({ Bucket, Key: key, ...opts }))\n}\n\nexport async function putStorageObject(\n key: string,\n value: PutObjectCommandInput['Body'],\n opts?: Omit\n) {\n return storageClient.send(\n new PutObjectCommand({ Bucket, Key: key, Body: value, ...opts })\n )\n}\n\nexport async function deleteStorageObject(\n key: string,\n opts?: Omit\n) {\n return storageClient.send(\n new DeleteObjectCommand({ Bucket, Key: key, ...opts })\n )\n}\n\nexport function getStorageObjectInternalUrl(key: string) {\n return `${env.S3_ENDPOINT}/${Bucket}/${key}`\n}\n\nexport function getStorageObjectPublicUrl(key: string) {\n return `${env.AGENTIC_STORAGE_BASE_URL}/${key}`\n}\n\n// TODO: Signed uploads don't seem to be working; getting a signature mismatch\n// error, and no idea why. Switched to using non-presigned URL uploads for now,\n// but this will be necessary in the future, for instance, for the web client\n// to upload files.\nexport async function getStorageSignedUploadUrl(\n key: string,\n {\n expiresIn = 5 * 60 * 1000 // 5 minutes\n }: {\n expiresIn?: number\n } = {}\n) {\n return getSignedUrl(\n storageClient,\n new PutObjectCommand({ Bucket, Key: key }),\n { expiresIn }\n )\n}\n\nexport async function uploadFileUrlToStorage(\n inputUrl: string,\n {\n prefix\n }: {\n prefix: string\n }\n): Promise {\n let source: URL\n\n try {\n source = new URL(inputUrl)\n } catch {\n // Not a URL\n throw new Error(`Invalid source file URL: ${inputUrl}`)\n }\n\n if (source.hostname === STORAGE_DOMAIN) {\n // The source is already a public URL hosted on Agentic's blob storage.\n return source.toString()\n }\n\n const sourceBuffer = await ky.get(source).arrayBuffer()\n\n const [hash, inferredFileType] = await Promise.all([\n sha256(sourceBuffer),\n fileTypeFromBuffer(sourceBuffer)\n ])\n\n const maybeSourceExt = source.pathname.split('.').at(-1)\n const maybeSourceExt2 = maybeSourceExt\n ? /^[a-z]+$/i.test(maybeSourceExt)\n ? maybeSourceExt\n : undefined\n : undefined\n const maybeSourceMime =\n source.protocol === 'data:'\n ? source.pathname.split(',')[0]?.split(';')[0]\n : undefined\n const sourceExt0 =\n maybeSourceExt2 ??\n (maybeSourceMime && maybeSourceMime !== 'application/octet-stream'\n ? maybeSourceMime.split('/')[1]?.split('+')[0]\n : undefined)\n const sourceExt = sourceExt0 === 'markdown' ? 'md' : sourceExt0\n\n const fileType =\n inferredFileType ??\n (sourceExt\n ? {\n ext: sourceExt,\n mime: lookupMimeType(sourceExt)\n }\n : undefined)\n\n const filename = fileType?.ext ? `${hash}.${fileType.ext}` : hash\n const key = `${prefix}/${filename}`\n\n const publicObjectUrl = getStorageObjectPublicUrl(key)\n\n // console.log('uploading to r2', {\n // key,\n // source,\n // sourceExt,\n // maybeSourceMime,\n // maybeSourceExt,\n // maybeSourceExt2,\n // inputUrl,\n // fileType,\n // publicObjectUrl\n // })\n\n try {\n // Check if the object already exists.\n await ky.head(publicObjectUrl)\n } catch {\n const body = Buffer.from(sourceBuffer)\n\n // Object doesn't exist yet, so upload it.\n try {\n await putStorageObject(key, body, {\n ContentType: fileType?.mime ?? 'application/octet-stream'\n })\n } catch (err: any) {\n const error = await err.response.text()\n // eslint-disable-next-line no-console\n console.error('error uploading to r2', err.message, error)\n throw err\n }\n }\n\n return publicObjectUrl\n}\n" }, { "path": "apps/api/src/lib/temp", "content": "import ky from 'ky'\n\nimport { env } from './env'\n\nconst USER_AGENT = 'agentic-platform'\n\n/**\n * GitHub (user-level) OAuth token response.\n *\n * @see https://docs.github.com/apps/oauth\n */\nexport interface GitHubUserTokenResponse {\n /**\n * The user access token (always starts with `ghu_`).\n * Example: `ghu_xxx…`\n */\n access_token: string\n\n /**\n * Seconds until `access_token` expires.\n * Omitted (`undefined`) if you’ve disabled token expiration.\n * Constant `28800` (8 hours) when present.\n */\n expires_in?: number\n\n /**\n * Refresh token for renewing the user access token (starts with `ghr_`).\n * Omitted (`undefined`) if you’ve disabled token expiration.\n */\n refresh_token?: string\n\n /**\n * Seconds until `refresh_token` expires.\n * Omitted (`undefined`) if you’ve disabled token expiration.\n * Constant `15897600` (6 months) when present.\n */\n refresh_token_expires_in?: number\n\n /**\n * Scopes granted to the token.\n * Always an empty string because the token is limited to\n * the intersection of app-level and user-level permissions.\n */\n scope: ''\n\n /**\n * Token type – always `'bearer'`.\n */\n token_type: 'bearer'\n}\n\nexport interface GitHubUser {\n login: string\n id: number\n user_view_type?: string\n node_id: string\n avatar_url: string\n gravatar_id: string | null\n url: string\n html_url: string\n followers_url: string\n following_url: string\n gists_url: string\n starred_url: string\n subscriptions_url: string\n organizations_url: string\n repos_url: string\n events_url: string\n received_events_url: string\n type: string\n site_admin: boolean\n name: string | null\n company: string | null\n blog: string | null\n location: string | null\n email: string | null\n notification_email?: string | null\n hireable: boolean | null\n bio: string | null\n twitter_username?: string | null\n public_repos: number\n public_gists: number\n followers: number\n following: number\n created_at: string\n updated_at: string\n plan?: {\n collaborators: number\n name: string\n space: number\n private_repos: number\n [k: string]: unknown\n }\n private_gists?: number\n total_private_repos?: number\n owned_private_repos?: number\n disk_usage?: number\n collaborators?: number\n}\n\nexport interface GitHubUserEmail {\n email: string\n primary: boolean\n verified: boolean\n visibility?: string | null\n}\n\nexport async function exchangeOAuthCodeForAccessToken({\n code,\n clientId = env.GITHUB_CLIENT_ID,\n clientSecret = env.GITHUB_CLIENT_SECRET,\n redirectUri\n}: {\n code: string\n clientId?: string\n clientSecret?: string\n redirectUri?: string\n}): Promise {\n return ky\n .post('https://github.com/login/oauth/access_token', {\n json: {\n code,\n client_id: clientId,\n client_secret: clientSecret,\n redirect_uri: redirectUri\n },\n headers: {\n 'user-agent': USER_AGENT\n }\n })\n .json()\n}\n\nexport async function getMe({ token }: { token: string }): Promise {\n return ky\n .get('https://api.github.com/user', {\n headers: {\n Authorization: `Bearer ${token}`,\n 'user-agent': USER_AGENT\n }\n })\n .json()\n}\n\nexport async function getUserEmails({\n token\n}: {\n token: string\n}): Promise {\n return ky\n .get('https://api.github.com/user/emails', {\n headers: {\n Authorization: `Bearer ${token}`,\n 'user-agent': USER_AGENT\n }\n })\n .json()\n}\n\n// TODO: currently unused\n// export type NullToUndefinedDeep = T extends null\n// ? undefined\n// : T extends Date\n// ? T\n// : T extends readonly (infer U)[]\n// ? NullToUndefinedDeep[]\n// : T extends object\n// ? { [K in keyof T]: NullToUndefinedDeep }\n// : T\n\n// // TODO: currently unused\n// export type UndefinedToNullDeep = T extends undefined\n// ? T | null\n// : T extends Date\n// ? T | null\n// : T extends readonly (infer U)[]\n// ? UndefinedToNullDeep[]\n// : T extends object\n// ? { [K in keyof T]: UndefinedToNullDeep }\n// : T | null\n\n// // TODO: currently unused\n// export type UndefinedValuesToNullableValues = T extends object\n// ? { [K in keyof T]: T[K] extends undefined ? T[K] | null : T[K] }\n// : T\n" }, { "path": "apps/api/src/lib/types.ts", "content": "import type {\n DefaultHonoBindings,\n DefaultHonoEnv,\n DefaultHonoVariables\n} from '@agentic/platform-hono'\nimport type { OpenAPIHono } from '@hono/zod-openapi'\nimport type { Context } from 'hono'\nimport type { Simplify } from 'type-fest'\n\nimport type { RawTeamMember, RawUser } from '@/db'\n\nimport type { Env } from './env'\n\nexport type AuthenticatedHonoVariables = Simplify<\n DefaultHonoVariables & {\n userId: string\n user?: RawUser\n teamMember?: RawTeamMember\n }\n>\n\nexport type AuthenticatedHonoBindings = Simplify\n\nexport type AuthenticatedHonoEnv = {\n Bindings: AuthenticatedHonoBindings\n Variables: AuthenticatedHonoVariables\n}\n\nexport type AuthenticatedHonoContext = Context\n\nexport type HonoApp = OpenAPIHono\nexport type AuthenticatedHonoApp = OpenAPIHono\n" }, { "path": "apps/api/src/lib/utils.ts", "content": "import { timingSafeEqual } from 'node:crypto'\n\nexport function timingSafeCompare(a: string, b: string): boolean {\n if (typeof a !== 'string' || typeof b !== 'string') {\n return false\n }\n\n if (a.length !== b.length) {\n return false\n }\n\n return timingSafeEqual(Buffer.from(a), Buffer.from(b))\n}\n" }, { "path": "apps/api/src/oauth-redirect.ts", "content": "import type { DefaultHonoEnv } from '@agentic/platform-hono'\nimport type { OpenAPIHono } from '@hono/zod-openapi'\nimport { assert } from '@agentic/platform-core'\n\nexport function registerOAuthRedirect(app: OpenAPIHono) {\n return app.all('/oauth/callback', async (ctx) => {\n const logger = ctx.get('logger')\n\n if (ctx.req.query('state')) {\n const { state: state64, ...query } = ctx.req.query()\n\n // google oauth + others\n const { uri, ...state } = JSON.parse(\n Buffer.from(state64!, 'base64').toString()\n ) as any\n\n assert(\n uri,\n 404,\n `Error oauth redirect not found \"${new URLSearchParams(ctx.req.query()).toString()}\"`\n )\n\n const searchParams = new URLSearchParams({\n ...state,\n ...query\n })\n const redirectUri = `${uri}?${searchParams.toString()}`\n\n logger.info(\n 'OAUTH CALLBACK',\n ctx.req.method,\n ctx.req.url,\n ctx.req.query(),\n '=>',\n redirectUri\n )\n return ctx.redirect(redirectUri)\n } else {\n // github oauth\n // https://developer.github.com/apps/building-oauth-apps/authorizing-oauth-apps/#redirect-urls\n const { uri, ...params } = ctx.req.query()\n\n assert(\n uri,\n 404,\n `Error oauth redirect not found \"${new URLSearchParams(ctx.req.query()).toString()}\"`\n )\n\n const searchParams = new URLSearchParams(params)\n const redirectUri = `${uri}?${searchParams.toString()}`\n logger.info(\n 'OAUTH CALLBACK',\n ctx.req.method,\n ctx.req.url,\n ctx.req.query(),\n '=>',\n redirectUri\n )\n\n return ctx.redirect(redirectUri)\n }\n })\n}\n" }, { "path": "apps/api/src/reset.d.ts", "content": "import '@fisch0920/config/ts-reset'\n" }, { "path": "apps/api/src/server.ts", "content": "import '@/lib/external/sentry'\n\nimport { type DefaultHonoEnv, errorHandler } from '@agentic/platform-hono'\nimport { serve } from '@hono/node-server'\nimport { OpenAPIHono } from '@hono/zod-openapi'\nimport * as Sentry from '@sentry/node'\n\nimport { apiV1 } from '@/api-v1'\nimport { env } from '@/lib/env'\nimport * as middleware from '@/lib/middleware'\n\nimport { initExitHooks } from './lib/exit-hooks'\n// import { registerOAuthRedirect } from './oauth-redirect'\n\nexport const app = new OpenAPIHono()\n\napp.onError(errorHandler)\napp.use(middleware.sentry())\napp.use(middleware.compress())\napp.use(\n middleware.cors({\n origin: '*',\n allowHeaders: ['Content-Type', 'Authorization'],\n allowMethods: ['POST', 'GET', 'OPTIONS'],\n exposeHeaders: ['Content-Length'],\n maxAge: 600,\n credentials: true\n })\n)\napp.use(middleware.init)\napp.use(middleware.accessLogger)\napp.use(middleware.responseTime)\n\n// TODO: top-level auth routes\n// registerOAuthRedirect(app)\n\n// Mount all v1 API routes\napp.route('/v1', apiV1)\n\napp.doc31('/docs', {\n openapi: '3.1.0',\n info: { title: 'Agentic', version: '0.1.0' }\n})\n\nconst server = serve({\n fetch: (req, bindings) =>\n app.fetch(req, { ...bindings, ...env, sentry: Sentry }),\n port: env.PORT\n})\n\ninitExitHooks({ server })\n\n// eslint-disable-next-line no-console\nconsole.log(`Server running on port ${env.PORT}`)\n" }, { "path": "apps/api/tsconfig.json", "content": "{\n \"extends\": \"@fisch0920/config/tsconfig-node\",\n \"compilerOptions\": {\n \"baseUrl\": \".\",\n \"paths\": {\n \"@/*\": [\"src/*\"]\n }\n },\n \"include\": [\"src\", \"*.config.ts\"],\n \"exclude\": [\"node_modules\", \"dist\"]\n}\n" }, { "path": "apps/api/tsup.config.ts", "content": "import { defineConfig } from 'tsup'\n\nexport default defineConfig([\n {\n entry: ['src/server.ts'],\n outDir: 'dist',\n target: 'node22',\n platform: 'node',\n format: ['esm'],\n splitting: false,\n sourcemap: true,\n minify: false,\n shims: true,\n dts: true\n }\n])\n" }, { "path": "apps/api/vitest.config.ts", "content": "import tsconfigPaths from 'vite-tsconfig-paths'\nimport { defineConfig } from 'vitest/config'\n\nexport default defineConfig({\n plugins: [tsconfigPaths()],\n test: {\n environment: 'node',\n globals: true,\n watch: false,\n restoreMocks: true\n }\n})\n" }, { "path": "apps/e2e/bin/deploy-fixtures.ts", "content": "import { deployProjects } from '../src/deploy-projects'\nimport { devClient } from '../src/dev-client'\nimport { fixtures } from '../src/dev-fixtures'\n\nasync function main() {\n console.log('\\n\\nDeploying dev fixtures...\\n\\n')\n\n const deployments = await deployProjects(fixtures, { client: devClient })\n console.log(JSON.stringify(deployments, null, 2))\n\n // eslint-disable-next-line unicorn/no-process-exit\n process.exit(0)\n}\n\nawait main()\n" }, { "path": "apps/e2e/bin/publish-fixtures.ts", "content": "import { deployProjects } from '../src/deploy-projects'\nimport { devClient } from '../src/dev-client'\nimport { fixtures } from '../src/dev-fixtures'\nimport { publishDeployments } from '../src/publish-deployments'\n\nasync function main() {\n console.log('\\n\\nDeploying dev fixtures...\\n\\n')\n\n const deployments = await deployProjects(fixtures, { client: devClient })\n console.log(JSON.stringify(deployments, null, 2))\n\n console.log('\\n\\nPublishing dev fixture deployments...\\n\\n')\n\n const publishedDeployments = await publishDeployments(deployments, {\n client: devClient\n })\n console.log(JSON.stringify(publishedDeployments, null, 2))\n\n // eslint-disable-next-line unicorn/no-process-exit\n process.exit(0)\n}\n\nawait main()\n" }, { "path": "apps/e2e/bin/seed-db.ts", "content": "import { AgenticApiClient } from '@agentic/platform-api-client'\n\nimport { examples } from '../src/agentic-examples'\nimport { deployProjects } from '../src/deploy-projects'\nimport { fixtures } from '../src/dev-fixtures'\nimport { env, isProd } from '../src/env'\nimport { publishDeployments } from '../src/publish-deployments'\n\nexport const client = new AgenticApiClient({\n apiBaseUrl: env.AGENTIC_API_BASE_URL\n})\n\nasync function main() {\n {\n console.log('\\n\\nCreating \"dev\" user...\\n\\n')\n\n const devAuthSession = await client.signUpWithPassword({\n username: 'dev',\n email: env.AGENTIC_DEV_EMAIL,\n password: env.AGENTIC_DEV_PASSWORD\n })\n console.log(JSON.stringify(devAuthSession, null, 2))\n\n console.warn(\n `\\n\\nREMEMBER TO UPDATE \"AGENTIC_DEV_ACCESS_TOKEN\" in e2e/.env${isProd ? '.production' : ''}\\n\\n`\n )\n\n console.log('\\n\\nDeploying dev fixtures...\\n\\n')\n\n const deployments = await deployProjects(fixtures, { client })\n console.log(JSON.stringify(deployments, null, 2))\n\n console.log('\\n\\nPublishing dev fixture deployments...\\n\\n')\n\n const publishedDeployments = await publishDeployments(deployments, {\n client\n })\n console.log(JSON.stringify(publishedDeployments, null, 2))\n }\n\n {\n console.log('\\n\\nCreating \"agentic\" user...\\n\\n')\n\n const agenticAuthSession = await client.signUpWithPassword({\n username: 'agentic',\n email: env.AGENTIC_AGENTIC_EMAIL,\n password: env.AGENTIC_AGENTIC_PASSWORD\n })\n console.log(JSON.stringify(agenticAuthSession, null, 2))\n\n console.log('\\n\\nDeploying example projects...\\n\\n')\n\n const deployments = await deployProjects(examples, { client })\n console.log(JSON.stringify(deployments, null, 2))\n\n console.log('\\n\\nPublishing example project deployments...\\n\\n')\n\n const publishedDeployments = await publishDeployments(deployments, {\n client\n })\n console.log(JSON.stringify(publishedDeployments, null, 2))\n }\n\n // eslint-disable-next-line unicorn/no-process-exit\n process.exit(0)\n}\n\nawait main()\n" }, { "path": "apps/e2e/package.json", "content": "{\n \"name\": \"@agentic/platform-e2e-tests\",\n \"private\": true,\n \"version\": \"8.4.4\",\n \"description\": \"Internal Agentic platform E2E tests.\",\n \"author\": \"Travis Fischer \",\n \"license\": \"AGPL-3.0\",\n \"repository\": {\n \"type\": \"git\",\n \"url\": \"git+https://github.com/transitive-bullshit/agentic.git\",\n \"directory\": \"apps/e2e\"\n },\n \"type\": \"module\",\n \"scripts\": {\n \"deploy-fixtures\": \"dotenvx run -- tsx bin/deploy-fixtures.ts\",\n \"deploy-fixtures:prod\": \"dotenvx run -o -f .env.production -- tsx bin/deploy-fixtures.ts\",\n \"publish-fixtures\": \"dotenvx run -- tsx bin/publish-fixtures.ts\",\n \"publish-fixtures:prod\": \"dotenvx run -o -f .env.production -- tsx bin/publish-fixtures.ts\",\n \"seed-db\": \"dotenvx run -- tsx bin/seed-db.ts\",\n \"seed-db:prod\": \"dotenvx run -o -f .env.production -- tsx bin/seed-db.ts\",\n \"test\": \"run-s test:*\",\n \"test:typecheck\": \"tsc --noEmit\",\n \"e2e\": \"dotenvx run -- vitest run\",\n \"e2e-http\": \"dotenvx run -- vitest run src/http-e2e.test.ts\",\n \"e2e-mcp\": \"dotenvx run -- vitest run src/mcp-e2e.test.ts\",\n \"e2e:prod\": \"dotenvx run -o -f .env.production -- vitest run\",\n \"e2e-http:prod\": \"dotenvx run -o -f .env.production -- vitest run src/http-e2e.test.ts\",\n \"e2e-mcp:prod\": \"dotenvx run -o -f .env.production -- vitest run src/mcp-e2e.test.ts\"\n },\n \"dependencies\": {\n \"dotenv\": \"catalog:\",\n \"ky\": \"catalog:\",\n \"p-map\": \"catalog:\",\n \"p-times\": \"catalog:\",\n \"semver\": \"catalog:\"\n },\n \"devDependencies\": {\n \"@agentic/platform\": \"workspace:*\",\n \"@agentic/platform-api-client\": \"workspace:*\",\n \"@agentic/platform-core\": \"workspace:*\",\n \"@agentic/platform-fixtures\": \"workspace:*\",\n \"@agentic/platform-types\": \"workspace:*\",\n \"@modelcontextprotocol/sdk\": \"catalog:\",\n \"@types/semver\": \"catalog:\",\n \"fast-content-type-parse\": \"catalog:\"\n }\n}\n" }, { "path": "apps/e2e/src/__snapshots__/http-e2e.test.ts.snap", "content": "// Vitest Snapshot v1, https://vitest.dev/guide/snapshot.html\n\nexports[`HTTP => MCP origin basic \"add\" tool > 6.0: POST @dev/test-basic-mcp/add 1`] = `\n[\n {\n \"text\": \"42\",\n \"type\": \"text\",\n },\n]\n`;\n\nexports[`HTTP => MCP origin basic \"add\" tool > 6.1: GET @dev/test-basic-mcp/add 1`] = `\n[\n {\n \"text\": \"42\",\n \"type\": \"text\",\n },\n]\n`;\n\nexports[`HTTP => OpenAPI origin basic GET caching > 4.0: GET @dev/test-basic-openapi/getPost 1`] = `\n{\n \"body\": \"aut dicta possimus sint mollitia voluptas commodi quo doloremque\niste corrupti reiciendis voluptatem eius rerum\nsit cumque quod eligendi laborum minima\nperferendis recusandae assumenda consectetur porro architecto ipsum ipsam\",\n \"id\": 13,\n \"title\": \"dolorum ut in voluptas mollitia et saepe quo animi\",\n \"userId\": 2,\n}\n`;\n\nexports[`HTTP => OpenAPI origin basic GET caching > 4.1: GET @dev/test-basic-openapi/getPost?postId=13 1`] = `\n{\n \"body\": \"aut dicta possimus sint mollitia voluptas commodi quo doloremque\niste corrupti reiciendis voluptatem eius rerum\nsit cumque quod eligendi laborum minima\nperferendis recusandae assumenda consectetur porro architecto ipsum ipsam\",\n \"id\": 13,\n \"title\": \"dolorum ut in voluptas mollitia et saepe quo animi\",\n \"userId\": 2,\n}\n`;\n\nexports[`HTTP => OpenAPI origin basic GET caching > 4.2: GET @dev/test-basic-openapi/get_post?postId=13 1`] = `\n{\n \"body\": \"aut dicta possimus sint mollitia voluptas commodi quo doloremque\niste corrupti reiciendis voluptatem eius rerum\nsit cumque quod eligendi laborum minima\nperferendis recusandae assumenda consectetur porro architecto ipsum ipsam\",\n \"id\": 13,\n \"title\": \"dolorum ut in voluptas mollitia et saepe quo animi\",\n \"userId\": 2,\n}\n`;\n\nexports[`HTTP => OpenAPI origin basic POST caching > 5.0: POST @dev/test-basic-openapi/get_post 1`] = `\n{\n \"body\": \"aut dicta possimus sint mollitia voluptas commodi quo doloremque\niste corrupti reiciendis voluptatem eius rerum\nsit cumque quod eligendi laborum minima\nperferendis recusandae assumenda consectetur porro architecto ipsum ipsam\",\n \"id\": 13,\n \"title\": \"dolorum ut in voluptas mollitia et saepe quo animi\",\n \"userId\": 2,\n}\n`;\n\nexports[`HTTP => OpenAPI origin basic POST caching > 5.1: POST @dev/test-basic-openapi/get_post 1`] = `\n{\n \"body\": \"aut dicta possimus sint mollitia voluptas commodi quo doloremque\niste corrupti reiciendis voluptatem eius rerum\nsit cumque quod eligendi laborum minima\nperferendis recusandae assumenda consectetur porro architecto ipsum ipsam\",\n \"id\": 13,\n \"title\": \"dolorum ut in voluptas mollitia et saepe quo animi\",\n \"userId\": 2,\n}\n`;\n\nexports[`HTTP => OpenAPI origin basic bypass caching > 3.0: GET @dev/test-basic-openapi/getPost 1`] = `\n{\n \"body\": \"consectetur animi nesciunt iure dolore\nenim quia ad\nveniam autem ut quam aut nobis\net est aut quod aut provident voluptas autem voluptas\",\n \"id\": 9,\n \"title\": \"nesciunt iure omnis dolorem tempora et accusantium\",\n \"userId\": 1,\n}\n`;\n\nexports[`HTTP => OpenAPI origin basic bypass caching > 3.1: GET @dev/test-basic-openapi/getPost?postId=9 1`] = `\n{\n \"body\": \"consectetur animi nesciunt iure dolore\nenim quia ad\nveniam autem ut quam aut nobis\net est aut quod aut provident voluptas autem voluptas\",\n \"id\": 9,\n \"title\": \"nesciunt iure omnis dolorem tempora et accusantium\",\n \"userId\": 1,\n}\n`;\n\nexports[`HTTP => OpenAPI origin basic bypass caching > 3.2: GET @dev/test-basic-openapi/get_post?postId=9 1`] = `\n{\n \"body\": \"consectetur animi nesciunt iure dolore\nenim quia ad\nveniam autem ut quam aut nobis\net est aut quod aut provident voluptas autem voluptas\",\n \"id\": 9,\n \"title\": \"nesciunt iure omnis dolorem tempora et accusantium\",\n \"userId\": 1,\n}\n`;\n\nexports[`HTTP => OpenAPI origin basic bypass caching > 3.3: GET @dev/test-basic-openapi/get_post?postId=9 1`] = `\n{\n \"body\": \"consectetur animi nesciunt iure dolore\nenim quia ad\nveniam autem ut quam aut nobis\net est aut quod aut provident voluptas autem voluptas\",\n \"id\": 9,\n \"title\": \"nesciunt iure omnis dolorem tempora et accusantium\",\n \"userId\": 1,\n}\n`;\n\nexports[`HTTP => OpenAPI origin basic bypass caching > 3.4: GET @dev/test-basic-openapi/get_post?postId=9 1`] = `\n{\n \"body\": \"consectetur animi nesciunt iure dolore\nenim quia ad\nveniam autem ut quam aut nobis\net est aut quod aut provident voluptas autem voluptas\",\n \"id\": 9,\n \"title\": \"nesciunt iure omnis dolorem tempora et accusantium\",\n \"userId\": 1,\n}\n`;\n\nexports[`HTTP => OpenAPI origin basic getPost errors > 1.8: POST @dev/test-basic-openapi/getPost 1`] = `\n{\n \"body\": \"quia et suscipit\nsuscipit recusandae consequuntur expedita et cum\nreprehenderit molestiae ut ut quas totam\nnostrum rerum est autem sunt rem eveniet architecto\",\n \"id\": 1,\n \"title\": \"sunt aut facere repellat provident occaecati excepturi optio reprehenderit\",\n \"userId\": 1,\n}\n`;\n\nexports[`HTTP => OpenAPI origin basic getPost errors > 1.9: GET @dev/test-basic-openapi/getPost 1`] = `\n{\n \"body\": \"quia et suscipit\nsuscipit recusandae consequuntur expedita et cum\nreprehenderit molestiae ut ut quas totam\nnostrum rerum est autem sunt rem eveniet architecto\",\n \"id\": 1,\n \"title\": \"sunt aut facere repellat provident occaecati excepturi optio reprehenderit\",\n \"userId\": 1,\n}\n`;\n\nexports[`HTTP => OpenAPI origin basic getPost success > 0.0: POST @dev/test-basic-openapi/getPost 1`] = `\n{\n \"body\": \"quia et suscipit\nsuscipit recusandae consequuntur expedita et cum\nreprehenderit molestiae ut ut quas totam\nnostrum rerum est autem sunt rem eveniet architecto\",\n \"id\": 1,\n \"title\": \"sunt aut facere repellat provident occaecati excepturi optio reprehenderit\",\n \"userId\": 1,\n}\n`;\n\nexports[`HTTP => OpenAPI origin basic getPost success > 0.1: POST @dev/test-basic-openapi@latest/getPost 1`] = `\n{\n \"body\": \"quia et suscipit\nsuscipit recusandae consequuntur expedita et cum\nreprehenderit molestiae ut ut quas totam\nnostrum rerum est autem sunt rem eveniet architecto\",\n \"id\": 1,\n \"title\": \"sunt aut facere repellat provident occaecati excepturi optio reprehenderit\",\n \"userId\": 1,\n}\n`;\n\nexports[`HTTP => OpenAPI origin basic getPost success > 0.2: GET @dev/test-basic-openapi/getPost 1`] = `\n{\n \"body\": \"quia et suscipit\nsuscipit recusandae consequuntur expedita et cum\nreprehenderit molestiae ut ut quas totam\nnostrum rerum est autem sunt rem eveniet architecto\",\n \"id\": 1,\n \"title\": \"sunt aut facere repellat provident occaecati excepturi optio reprehenderit\",\n \"userId\": 1,\n}\n`;\n\nexports[`HTTP => OpenAPI origin basic getPost success > 0.3: GET @dev/test-basic-openapi/getPost?postId=1 1`] = `\n{\n \"body\": \"quia et suscipit\nsuscipit recusandae consequuntur expedita et cum\nreprehenderit molestiae ut ut quas totam\nnostrum rerum est autem sunt rem eveniet architecto\",\n \"id\": 1,\n \"title\": \"sunt aut facere repellat provident occaecati excepturi optio reprehenderit\",\n \"userId\": 1,\n}\n`;\n\nexports[`HTTP => OpenAPI origin basic getPost success > 0.4: GET @dev/test-basic-openapi/get_post?postId=1 1`] = `\n{\n \"body\": \"quia et suscipit\nsuscipit recusandae consequuntur expedita et cum\nreprehenderit molestiae ut ut quas totam\nnostrum rerum est autem sunt rem eveniet architecto\",\n \"id\": 1,\n \"title\": \"sunt aut facere repellat provident occaecati excepturi optio reprehenderit\",\n \"userId\": 1,\n}\n`;\n\nexports[`HTTP => OpenAPI origin basic getPost success > 0.5: GET @dev/test-basic-openapi/getPost 1`] = `\n{\n \"body\": \"quia et suscipit\nsuscipit recusandae consequuntur expedita et cum\nreprehenderit molestiae ut ut quas totam\nnostrum rerum est autem sunt rem eveniet architecto\",\n \"id\": 1,\n \"title\": \"sunt aut facere repellat provident occaecati excepturi optio reprehenderit\",\n \"userId\": 1,\n}\n`;\n\nexports[`HTTP => OpenAPI origin default bypass caching > 2.0: GET @dev/test-everything-openapi/echo 1`] = `\n{\n \"postId\": \"9\",\n}\n`;\n\nexports[`HTTP => OpenAPI origin everything \"echo\" tool with empty body > 10.0: POST @dev/test-everything-openapi/echo 1`] = `{}`;\n\nexports[`HTTP => OpenAPI origin everything \"pure\" tool > 8.0: POST @dev/test-everything-openapi/pure 1`] = `\n{\n \"foo\": \"bar\",\n \"nala\": \"kitten\",\n}\n`;\n\nexports[`HTTP => OpenAPI origin everything \"pure\" tool > 8.1: POST @dev/test-everything-openapi/pure 1`] = `\n{\n \"foo\": \"bar\",\n \"nala\": \"kitten\",\n}\n`;\n" }, { "path": "apps/e2e/src/__snapshots__/mcp-e2e.test.ts.snap", "content": "// Vitest Snapshot v1, https://vitest.dev/guide/snapshot.html\n\nexports[`MCP => OpenAPI origin basic @ dev get_post success > 2.0: @dev/test-basic-openapi@dev/mcp get_post 1`] = `\n{\n \"content\": [],\n \"isError\": false,\n \"structuredContent\": {\n \"body\": \"dignissimos aperiam dolorem qui eum\nfacilis quibusdam animi sint suscipit qui sint possimus cum\nquaerat magni maiores excepturi\nipsam ut commodi dolor voluptatum modi aut vitae\",\n \"id\": 8,\n \"title\": \"dolorem dolore est ipsam\",\n \"userId\": 1,\n },\n}\n`;\n\nexports[`MCP => OpenAPI origin basic @ latest get_post success > 1.0: @dev/test-basic-openapi@latest/mcp get_post 1`] = `\n{\n \"content\": [],\n \"isError\": false,\n \"structuredContent\": {\n \"body\": \"et iusto sed quo iure\nvoluptatem occaecati omnis eligendi aut ad\nvoluptatem doloribus vel accusantium quis pariatur\nmolestiae porro eius odio et labore et velit aut\",\n \"id\": 3,\n \"title\": \"ea molestias quasi exercitationem repellat qui ipsa sit aut\",\n \"userId\": 1,\n },\n}\n`;\n\nexports[`MCP => OpenAPI origin basic bypass caching > 6.0: @dev/test-everything-openapi/mcp echo 1`] = `\n{\n \"content\": [],\n \"isError\": false,\n \"structuredContent\": {\n \"postId\": 1,\n },\n}\n`;\n\nexports[`MCP => OpenAPI origin basic caching > 7.0: @dev/test-basic-openapi/mcp get_post 1`] = `\n{\n \"content\": [],\n \"isError\": false,\n \"structuredContent\": {\n \"body\": \"quia et suscipit\nsuscipit recusandae consequuntur expedita et cum\nreprehenderit molestiae ut ut quas totam\nnostrum rerum est autem sunt rem eveniet architecto\",\n \"id\": 1,\n \"title\": \"sunt aut facere repellat provident occaecati excepturi optio reprehenderit\",\n \"userId\": 1,\n },\n}\n`;\n\nexports[`MCP => OpenAPI origin basic caching > 7.1: @dev/test-basic-openapi/mcp get_post 1`] = `\n{\n \"content\": [],\n \"isError\": false,\n \"structuredContent\": {\n \"body\": \"quia et suscipit\nsuscipit recusandae consequuntur expedita et cum\nreprehenderit molestiae ut ut quas totam\nnostrum rerum est autem sunt rem eveniet architecto\",\n \"id\": 1,\n \"title\": \"sunt aut facere repellat provident occaecati excepturi optio reprehenderit\",\n \"userId\": 1,\n },\n}\n`;\n\nexports[`MCP => OpenAPI origin basic caching > 7.2: @dev/test-basic-openapi/mcp get_post 1`] = `\n{\n \"content\": [],\n \"isError\": false,\n \"structuredContent\": {\n \"body\": \"quia et suscipit\nsuscipit recusandae consequuntur expedita et cum\nreprehenderit molestiae ut ut quas totam\nnostrum rerum est autem sunt rem eveniet architecto\",\n \"id\": 1,\n \"title\": \"sunt aut facere repellat provident occaecati excepturi optio reprehenderit\",\n \"userId\": 1,\n },\n}\n`;\n\nexports[`MCP => OpenAPI origin basic get_post errors > 4.3: @dev/test-basic-openapi/mcp get_post 1`] = `\n{\n \"content\": [],\n \"isError\": false,\n \"structuredContent\": {\n \"body\": \"dolore placeat quibusdam ea quo vitae\nmagni quis enim qui quis quo nemo aut saepe\nquidem repellat excepturi ut quia\nsunt ut sequi eos ea sed quas\",\n \"id\": 7,\n \"title\": \"magnam facilis autem\",\n \"userId\": 1,\n },\n}\n`;\n\nexports[`MCP => OpenAPI origin basic get_post success > 0.0: @dev/test-basic-openapi/mcp get_post 1`] = `\n{\n \"content\": [],\n \"isError\": false,\n \"structuredContent\": {\n \"body\": \"quia et suscipit\nsuscipit recusandae consequuntur expedita et cum\nreprehenderit molestiae ut ut quas totam\nnostrum rerum est autem sunt rem eveniet architecto\",\n \"id\": 1,\n \"title\": \"sunt aut facere repellat provident occaecati excepturi optio reprehenderit\",\n \"userId\": 1,\n },\n}\n`;\n\nexports[`MCP => OpenAPI origin basic normalized caching > 8.0: @dev/test-basic-openapi/mcp get_post 1`] = `\n{\n \"content\": [],\n \"isError\": false,\n \"structuredContent\": {\n \"body\": \"quia et suscipit\nsuscipit recusandae consequuntur expedita et cum\nreprehenderit molestiae ut ut quas totam\nnostrum rerum est autem sunt rem eveniet architecto\",\n \"id\": 1,\n \"title\": \"sunt aut facere repellat provident occaecati excepturi optio reprehenderit\",\n \"userId\": 1,\n },\n}\n`;\n\nexports[`MCP => OpenAPI origin basic normalized caching > 8.1: @dev/test-basic-openapi/mcp get_post 1`] = `\n{\n \"content\": [],\n \"isError\": false,\n \"structuredContent\": {\n \"body\": \"quia et suscipit\nsuscipit recusandae consequuntur expedita et cum\nreprehenderit molestiae ut ut quas totam\nnostrum rerum est autem sunt rem eveniet architecto\",\n \"id\": 1,\n \"title\": \"sunt aut facere repellat provident occaecati excepturi optio reprehenderit\",\n \"userId\": 1,\n },\n}\n`;\n\nexports[`MCP => OpenAPI origin everything \"echo\" tool with empty body > 13.0: @dev/test-everything-openapi/mcp echo 1`] = `\n{\n \"content\": [],\n \"isError\": false,\n \"structuredContent\": {},\n}\n`;\n\nexports[`MCP => OpenAPI origin everything \"pure\" tool > 11.0: @dev/test-everything-openapi/mcp echo 1`] = `\n{\n \"content\": [],\n \"isError\": false,\n \"structuredContent\": {\n \"foo\": \"bar\",\n \"nala\": \"kitten\",\n },\n}\n`;\n\nexports[`MCP => OpenAPI origin everything \"pure\" tool > 11.1: @dev/test-everything-openapi/mcp echo 1`] = `\n{\n \"content\": [],\n \"isError\": false,\n \"structuredContent\": {\n \"foo\": \"bar\",\n \"nala\": \"kitten\",\n },\n}\n`;\n\nexports[`MCP => OpenAPI origin everything errors > 5.0: @dev/test-everything-openapi/mcp strict_additional_properties 1`] = `\n{\n \"content\": [],\n \"isError\": false,\n \"structuredContent\": {\n \"foo\": \"bar\",\n },\n}\n`;\n" }, { "path": "apps/e2e/src/agentic-examples.ts", "content": "import path from 'node:path'\nimport { fileURLToPath } from 'node:url'\n\nconst exampleProjectNames = ['search']\n\nconst examplesDir = path.join(\n fileURLToPath(import.meta.url),\n '..',\n '..',\n '..',\n '..',\n 'examples',\n 'mcp-servers'\n)\n\nexport const examples = exampleProjectNames.map((name) =>\n path.join(examplesDir, name)\n)\n" }, { "path": "apps/e2e/src/deploy-projects.ts", "content": "import type { AgenticApiClient } from '@agentic/platform-api-client'\nimport { loadAgenticConfig } from '@agentic/platform'\nimport pMap from 'p-map'\n\nexport async function deployProjects(\n projects: string[],\n {\n client,\n concurrency = 1\n }: {\n client: AgenticApiClient\n concurrency?: number\n }\n) {\n const deployments = await pMap(\n projects,\n async (project) => {\n const config = await loadAgenticConfig({\n cwd: project\n })\n const deployment = await client.createDeployment(config)\n console.log(`Deployed ${project} => ${deployment.identifier}`)\n\n return deployment\n },\n {\n concurrency\n }\n )\n\n return deployments\n}\n" }, { "path": "apps/e2e/src/dev-client.ts", "content": "import { AgenticApiClient } from '@agentic/platform-api-client'\n\nimport { env } from './env'\n\nexport const devClient = new AgenticApiClient({\n apiBaseUrl: env.AGENTIC_API_BASE_URL,\n apiKey: env.AGENTIC_DEV_ACCESS_TOKEN\n})\n" }, { "path": "apps/e2e/src/dev-fixtures.ts", "content": "import path from 'node:path'\nimport { fileURLToPath } from 'node:url'\n\nconst fixtureNames = [\n // TODO: re-add these\n // 'basic-raw-free-ts',\n // 'basic-raw-free-json',\n // 'pricing-freemium',\n // 'pricing-pay-as-you-go',\n // 'pricing-3-plans',\n // 'pricing-monthly-annual',\n // 'pricing-custom-0',\n 'basic-openapi',\n 'basic-mcp',\n 'everything-openapi'\n]\n\nconst fixturesDir = path.join(\n fileURLToPath(import.meta.url),\n '..',\n '..',\n '..',\n '..',\n 'fixtures'\n)\nconst validFixturesDir = path.join(fixturesDir, 'valid')\n\nexport const fixtures = fixtureNames.map((name) =>\n path.join(validFixturesDir, name)\n)\n" }, { "path": "apps/e2e/src/env.ts", "content": "import 'dotenv/config'\n\nimport { parseZodSchema } from '@agentic/platform-core'\nimport { z } from 'zod'\n\n// TODO: derive AGENTIC_API_BASE_URL and AGENTIC_GATEWAY_BASE_URL based on\n// environment.\n// TODO: use `@agentic/platform-hono` base env like other services\n\nexport const envSchema = z.object({\n ENVIRONMENT: z\n .enum(['development', 'test', 'production'])\n .default('development'),\n\n AGENTIC_API_BASE_URL: z.string().url().optional(),\n\n AGENTIC_DEV_EMAIL: z.string().email(),\n AGENTIC_DEV_PASSWORD: z.string().nonempty(),\n AGENTIC_DEV_ACCESS_TOKEN: z.string().nonempty(),\n\n AGENTIC_AGENTIC_EMAIL: z.string().email(),\n AGENTIC_AGENTIC_PASSWORD: z.string().nonempty(),\n\n AGENTIC_GATEWAY_BASE_URL: z\n .string()\n .url()\n .optional()\n .default('http://localhost:8787')\n})\n\n// eslint-disable-next-line no-process-env\nexport const env = parseZodSchema(envSchema, process.env, {\n error: 'Invalid environment variables'\n})\n\nexport const isProd = env.ENVIRONMENT === 'production'\n" }, { "path": "apps/e2e/src/http-e2e.test.ts", "content": "import contentType from 'fast-content-type-parse'\nimport defaultKy from 'ky'\nimport pTimes from 'p-times'\nimport { describe, expect, test } from 'vitest'\n\nimport { env } from './env'\nimport { fixtureSuites } from './http-fixtures'\n\nconst ky = defaultKy.extend({\n prefixUrl: env.AGENTIC_GATEWAY_BASE_URL,\n\n // Disable automatic retries for testing.\n retry: 0,\n\n // Some tests expect HTTP errors, so handle them manually instead of throwing.\n throwHttpErrors: false\n})\n\nfor (const [i, fixtureSuite] of fixtureSuites.entries()) {\n const {\n title,\n fixtures,\n compareResponseBodies = false,\n repeat,\n repeatConcurrency = 1,\n repeatSuccessCriteria = 'all'\n } = fixtureSuite\n\n const describeFn = fixtureSuite.only ? describe.only : describe\n describeFn(title, () => {\n let fixtureResponseBody: any | undefined\n\n if (repeat) {\n expect(repeat).toBeGreaterThan(0)\n }\n\n for (const [j, fixture] of fixtures.entries()) {\n const method = fixture.request?.method ?? 'GET'\n const timeout = fixture.timeout ?? 30_000\n const {\n status = 200,\n contentType: expectedContentType = 'application/json',\n headers: expectedHeaders,\n body: expectedBody,\n validate\n } = fixture.response ?? {}\n const snapshot =\n fixture.response?.snapshot ??\n fixtureSuite.snapshot ??\n (status >= 200 && status < 300)\n const debugFixture = !!(\n fixture.debug ??\n fixtureSuite.debug ??\n fixture.only ??\n fixtureSuite.only\n )\n const fixtureName = `${i}.${j}: ${method} ${fixture.path}`\n\n let testFn = (fixture.only ?? fixture.debug) ? test.only : test\n if (fixtureSuite.sequential) {\n testFn = testFn.sequential\n }\n\n testFn(\n fixtureName,\n {\n timeout\n },\n // eslint-disable-next-line no-loop-func\n async () => {\n const numIterations = repeat ?? 1\n let numSuccessCases = 0\n\n await pTimes(\n numIterations,\n async (iteration: number) => {\n const repeatIterationPrefix = repeat\n ? `[${iteration}/${numIterations}] `\n : ''\n\n const res = await ky(fixture.path, {\n timeout,\n ...fixture.request\n })\n\n if (\n res.status !== status &&\n (res.status >= 500 || status === 200)\n ) {\n let body: any\n try {\n body = await res.json()\n } catch {}\n\n console.error(\n `${repeatIterationPrefix}${fixtureName} => UNEXPECTED ERROR ${res.status} (expected ${status}):`,\n JSON.stringify(body, null, 2)\n )\n }\n\n if (repeat) {\n if (res.status === status) {\n ++numSuccessCases\n } else {\n if (debugFixture) {\n console.log(\n `${repeatIterationPrefix}${fixtureName} => ${res.status} (invalid sample; expected ${status})`,\n {\n headers: Object.fromEntries(res.headers.entries())\n }\n )\n }\n\n return\n }\n } else {\n expect(res.status).toBe(status)\n }\n\n const { type } = contentType.safeParse(\n res.headers.get('content-type') ?? ''\n )\n expect(type).toBe(expectedContentType)\n\n let body: any\n\n if (type.includes('json')) {\n try {\n body = await res.json()\n } catch (err) {\n console.error('json error', err)\n throw err\n }\n } else if (type.includes('text')) {\n body = await res.text()\n } else {\n body = await res.arrayBuffer()\n }\n\n if (debugFixture) {\n console.log(\n `${repeatIterationPrefix}${fixtureName} => ${res.status}`,\n body,\n {\n headers: Object.fromEntries(res.headers.entries())\n }\n )\n }\n\n if (expectedBody) {\n expect(body).toEqual(expectedBody)\n }\n\n if (validate) {\n await Promise.resolve(validate(body))\n }\n\n if (snapshot) {\n expect(body).toMatchSnapshot()\n }\n\n if (expectedHeaders) {\n for (const [key, value] of Object.entries(expectedHeaders)) {\n expect(res.headers.get(key)).toBe(value)\n }\n }\n\n if (compareResponseBodies && status >= 200 && status < 300) {\n if (!fixtureResponseBody) {\n fixtureResponseBody = body\n } else {\n expect(body).toEqual(fixtureResponseBody)\n }\n }\n },\n { concurrency: repeatConcurrency, stopOnError: true }\n )\n\n if (repeat) {\n if (repeatSuccessCriteria === 'all') {\n expect(numSuccessCases).toBe(numIterations)\n } else if (repeatSuccessCriteria === 'some') {\n expect(numSuccessCases).toBeGreaterThan(0)\n } else if (typeof repeatSuccessCriteria === 'function') {\n await Promise.resolve(repeatSuccessCriteria(numSuccessCases))\n }\n }\n }\n )\n }\n })\n}\n" }, { "path": "apps/e2e/src/http-fixtures.ts", "content": "import { expect } from 'vitest'\n\nexport type E2ETestFixture = {\n path: string\n\n /** @default 60_000 milliseconds */\n timeout?: number\n\n /** @default false */\n only?: boolean\n\n /** @default false */\n debug?: boolean\n\n request?: {\n /** @default 'GET' */\n method?: 'GET' | 'POST' | 'PUT' | 'DELETE'\n searchParams?: Record\n headers?: Record\n json?: Record\n body?: any\n }\n\n response?: {\n /** @default 200 */\n status?: number\n /** @default 'application/json' */\n contentType?: string\n headers?: Record\n body?: any\n validate?: (body: any) => void | Promise\n /** @default true */\n snapshot?: boolean\n }\n}\n\nexport type E2ETestFixtureSuite = {\n title: string\n fixtures: E2ETestFixture[]\n\n /**\n * Development-only flag that runs exclusively this test suite, ignoring all others.\n * Uses Vitest's `describe.only()` to focus on a single test suite.\n *\n * ⚠️ WARNING: Never commit this as `true` - it will cause CI to skip all other tests.\n *\n * @default false\n */\n only?: boolean\n\n /** @default false */\n sequential?: boolean\n\n /** @default false */\n compareResponseBodies?: boolean\n\n /** @default false */\n debug?: boolean\n\n /** @default undefined */\n snapshot?: boolean\n\n /** @default undefined */\n repeat?: number\n\n /** @default 1 */\n repeatConcurrency?: number\n\n /** @default 'all' */\n repeatSuccessCriteria?:\n | 'all'\n | 'some'\n | ((numRepeatSuccesses: number) => void | Promise)\n}\n\nconst now = Date.now()\n\nexport const fixtureSuites: E2ETestFixtureSuite[] = [\n {\n title: 'HTTP => OpenAPI origin basic getPost success',\n compareResponseBodies: true,\n fixtures: [\n {\n path: '@dev/test-basic-openapi/getPost',\n request: {\n method: 'POST',\n json: {\n postId: 1\n }\n }\n },\n {\n path: '@dev/test-basic-openapi@latest/getPost',\n request: {\n method: 'POST',\n json: {\n postId: 1\n }\n }\n },\n {\n path: '@dev/test-basic-openapi/getPost',\n request: {\n searchParams: {\n // all of these GET requests implicitly test type coercion since\n // `postId` as a query param will be a string, but the tool expects\n // an integer.\n postId: 1\n }\n }\n },\n {\n path: '@dev/test-basic-openapi/getPost?postId=1'\n },\n {\n path: '@dev/test-basic-openapi/get_post?postId=1'\n },\n {\n path: '@dev/test-basic-openapi/getPost',\n request: {\n searchParams: {\n postId: 1\n }\n }\n }\n ]\n },\n {\n title: 'HTTP => OpenAPI origin basic getPost errors',\n fixtures: [\n {\n path: '@dev/test-basic-openapi/getPost',\n request: {\n method: 'GET'\n },\n response: {\n // Missing `postId` parameter.\n status: 400\n }\n },\n {\n path: '@dev/test-basic-openapi/getPost?postId=foo',\n response: {\n status: 400\n }\n },\n {\n path: '@dev/test-basic-openapi@00000000/getPost',\n response: {\n // deployment hash 00000000 doesn't exist\n status: 404\n }\n },\n {\n path: '@dev/test-basic-openapi/getPost',\n request: {\n method: 'PUT',\n json: {\n postId: 1\n }\n },\n response: {\n // PUT is not a valid method (must be POST)\n status: 405\n }\n },\n {\n path: '@dev/test-basic-openapi@latest/get_kittens?postId=1',\n response: {\n status: 404\n }\n },\n {\n path: '@dev/test-basic-openapi/getPost',\n request: {\n searchParams: {\n // invalid `postId` field type\n postId: 'not-a-number'\n }\n },\n response: {\n status: 400\n }\n },\n {\n path: '@dev/test-basic-openapi/getPost',\n request: {\n method: 'POST',\n json: {\n // invalid `postId` field type\n postId: 'not-a-number'\n }\n },\n response: {\n status: 400\n }\n },\n {\n path: '@dev/test-basic-openapi/getPost',\n request: {\n method: 'POST',\n json: {\n // missing required `postId` field\n }\n },\n response: {\n status: 400\n }\n },\n {\n path: '@dev/test-basic-openapi/getPost',\n request: {\n method: 'POST',\n json: {\n postId: 1,\n // additional json body params are allowed by default\n foo: 'bar'\n }\n },\n response: {\n status: 200\n }\n },\n {\n path: '@dev/test-basic-openapi/getPost',\n request: {\n searchParams: {\n postId: 1,\n // additional search params should allowed by default\n foo: 'bar'\n }\n },\n response: {\n status: 200\n }\n },\n {\n path: '@dev/test-everything-openapi/strict_additional_properties',\n request: {\n method: 'POST',\n json: {\n foo: 'bar',\n // additional json body params should throw an error if the tool\n // config has `additionalProperties: false`\n extra: 'nala'\n }\n },\n response: {\n status: 400\n }\n },\n {\n path: '@dev/test-everything-openapi/strict_additional_properties',\n request: {\n method: 'GET',\n searchParams: {\n foo: 'bar',\n // additional search params should throw an error if the tool\n // config has `additionalProperties: false`\n extra: 'nala'\n }\n },\n response: {\n status: 400\n }\n }\n ]\n },\n {\n title: 'HTTP => OpenAPI origin default bypass caching',\n compareResponseBodies: true,\n fixtures: [\n {\n // ensure we bypass the cache for requests for tools which do not have\n // a custom `pure` or `cacheControl` set in their tool config.\n path: '@dev/test-everything-openapi/echo',\n request: {\n searchParams: {\n postId: 9\n }\n },\n response: {\n headers: {\n 'cf-cache-status': 'BYPASS'\n }\n }\n }\n ]\n },\n {\n title: 'HTTP => OpenAPI origin basic bypass caching',\n compareResponseBodies: true,\n fixtures: [\n {\n // ensure we bypass the cache for requests with `pragma: no-cache`\n path: '@dev/test-basic-openapi/getPost',\n request: {\n headers: {\n pragma: 'no-cache'\n },\n searchParams: {\n postId: 9\n }\n },\n response: {\n headers: {\n 'cf-cache-status': 'BYPASS'\n }\n }\n },\n {\n // ensure we bypass the cache for requests with `cache-control: no-cache`\n path: '@dev/test-basic-openapi/getPost?postId=9',\n request: {\n headers: {\n 'cache-control': 'no-cache'\n }\n },\n response: {\n headers: {\n 'cf-cache-status': 'BYPASS'\n }\n }\n },\n {\n // ensure we bypass the cache for requests with `cache-control: no-store`\n path: '@dev/test-basic-openapi/get_post?postId=9',\n request: {\n headers: {\n 'cache-control': 'no-store'\n }\n },\n response: {\n headers: {\n 'cf-cache-status': 'BYPASS'\n }\n }\n },\n {\n path: '@dev/test-basic-openapi/get_post?postId=9',\n request: {\n headers: {\n 'cache-control': 'max-age=0, must-revalidate, no-cache'\n }\n },\n response: {\n headers: {\n 'cf-cache-status': 'BYPASS'\n }\n }\n },\n {\n path: '@dev/test-basic-openapi/get_post?postId=9',\n request: {\n headers: {\n 'cache-control': 'private, max-age=3600, must-revalidate'\n }\n },\n response: {\n headers: {\n 'cf-cache-status': 'BYPASS'\n }\n }\n }\n ]\n },\n {\n title: 'HTTP => OpenAPI origin basic GET caching',\n compareResponseBodies: true,\n sequential: true,\n fixtures: [\n {\n // first request to ensure the cache is populated\n path: '@dev/test-basic-openapi/getPost',\n request: {\n headers: {\n 'cache-control':\n 'public, max-age=3600, s-maxage=3600, stale-while-revalidate=3600'\n },\n searchParams: {\n postId: 13\n }\n }\n },\n {\n // second request should hit the cache\n path: '@dev/test-basic-openapi/getPost?postId=13',\n request: {\n headers: {\n 'cache-control':\n 'public, max-age=3600, s-maxage=3600, stale-while-revalidate=3600'\n }\n },\n response: {\n headers: {\n 'cf-cache-status': 'HIT'\n }\n }\n },\n {\n // normalized request with different path should also hit the cache\n path: '@dev/test-basic-openapi/get_post?postId=13',\n request: {\n headers: {\n 'cache-control':\n 'public, max-age=3600, s-maxage=3600, stale-while-revalidate=3600'\n }\n },\n response: {\n headers: {\n 'cf-cache-status': 'HIT'\n }\n }\n }\n ]\n },\n {\n title: 'HTTP => OpenAPI origin basic POST caching',\n compareResponseBodies: true,\n sequential: true,\n fixtures: [\n {\n // first request to ensure the cache is populated\n path: '@dev/test-basic-openapi/get_post',\n request: {\n method: 'POST',\n json: {\n postId: 13\n }\n }\n },\n {\n // second request should hit the cache\n path: '@dev/test-basic-openapi/get_post',\n request: {\n method: 'POST',\n json: {\n postId: 13\n }\n },\n response: {\n headers: {\n 'cf-cache-status': 'HIT'\n }\n }\n }\n ]\n },\n {\n title: 'HTTP => MCP origin basic \"add\" tool',\n compareResponseBodies: true,\n fixtures: [\n {\n path: '@dev/test-basic-mcp/add',\n request: {\n method: 'POST',\n json: {\n a: 22,\n b: 20\n }\n },\n response: {\n body: [{ type: 'text', text: '42' }]\n }\n },\n {\n path: '@dev/test-basic-mcp/add',\n request: {\n searchParams: {\n a: 22,\n b: 20\n }\n },\n response: {\n body: [{ type: 'text', text: '42' }]\n }\n }\n ]\n },\n {\n title: 'HTTP => MCP origin basic \"echo\" tool',\n snapshot: false,\n fixtures: [\n {\n path: '@dev/test-basic-mcp/echo',\n request: {\n method: 'POST',\n json: {\n nala: 'kitten',\n num: 123,\n now\n }\n },\n response: {\n body: [\n {\n type: 'text',\n text: JSON.stringify({ nala: 'kitten', num: 123, now })\n }\n ]\n }\n },\n {\n path: '@dev/test-basic-mcp/echo',\n request: {\n searchParams: {\n nala: 'kitten',\n num: 123,\n now\n }\n },\n response: {\n body: [\n {\n type: 'text',\n text: JSON.stringify({\n nala: 'kitten',\n num: '123',\n now: `${now}`\n })\n }\n ]\n }\n }\n ]\n },\n {\n title: 'HTTP => OpenAPI origin everything \"pure\" tool',\n sequential: true,\n compareResponseBodies: true,\n fixtures: [\n {\n path: '@dev/test-everything-openapi/pure',\n request: {\n method: 'POST',\n json: {\n nala: 'kitten',\n foo: 'bar'\n }\n },\n response: {\n headers: {\n 'cache-control':\n 'public, max-age=31560000, s-maxage=31560000, stale-while-revalidate=3600'\n },\n body: {\n nala: 'kitten',\n foo: 'bar'\n }\n }\n },\n {\n // second request should hit the cache\n path: '@dev/test-everything-openapi/pure',\n request: {\n method: 'POST',\n json: {\n nala: 'kitten',\n foo: 'bar'\n }\n },\n response: {\n headers: {\n 'cf-cache-status': 'HIT',\n 'cache-control':\n 'public, max-age=31560000, s-maxage=31560000, stale-while-revalidate=3600'\n },\n body: {\n nala: 'kitten',\n foo: 'bar'\n }\n }\n }\n ]\n },\n {\n title: 'HTTP => OpenAPI origin everything \"disabled_tool\" tool',\n fixtures: [\n {\n path: '@dev/test-everything-openapi/disabled_tool',\n request: {\n method: 'POST'\n },\n response: {\n // 400 because the request body is missing\n status: 400\n }\n },\n {\n path: '@dev/test-everything-openapi/disabled_tool',\n request: {\n method: 'POST',\n json: {}\n },\n response: {\n // 404 because the tool is disabled which means its hidden\n status: 404\n }\n }\n ]\n },\n {\n title: 'HTTP => OpenAPI origin everything \"echo\" tool with empty body',\n compareResponseBodies: true,\n fixtures: [\n {\n path: '@dev/test-everything-openapi/echo',\n request: {\n method: 'POST',\n json: {}\n },\n response: {\n body: {}\n }\n }\n ]\n },\n {\n title: 'HTTP => OpenAPI origin everything \"unpure_marked_pure\" tool',\n compareResponseBodies: true,\n snapshot: false,\n fixtures: [\n {\n path: '@dev/test-everything-openapi/unpure_marked_pure',\n request: {\n method: 'POST',\n json: {\n nala: 'cat'\n }\n },\n response: {\n validate: (body) => {\n expect(body?.nala).toEqual('cat')\n expect(typeof body.now).toBe('number')\n expect(body.now).toBeGreaterThan(0)\n }\n }\n },\n {\n // compareResponseBodies should result in the same cached response body,\n // even though the origin would return a different `now` value if it\n // weren't marked `pure`.\n path: '@dev/test-everything-openapi/unpure_marked_pure',\n request: {\n method: 'POST',\n json: {\n nala: 'cat'\n }\n },\n response: {\n headers: {\n 'cf-cache-status': 'HIT'\n }\n }\n }\n ]\n },\n {\n title: 'HTTP => OpenAPI origin everything \"echo_headers\" tool',\n snapshot: false,\n fixtures: [\n {\n path: '@dev/test-everything-openapi/echo_headers',\n response: {\n validate: (body) => {\n expect(body['x-agentic-proxy-secret']).toBeTruthy()\n expect(body['x-agentic-proxy-secret']?.length).toBe(64)\n expect(body['x-agentic-deployment-id']).toBeTruthy()\n expect(\n body['x-agentic-deployment-id']?.startsWith('depl_')\n ).toBeTruthy()\n expect(body['x-agentic-deployment-identifier']).toBeTruthy()\n expect(body['x-agentic-is-customer-subscription-active']).toEqual(\n 'false'\n )\n expect(body['x-agentic-user-id']).toBeUndefined()\n expect(body['x-agentic-customer-id']).toBeUndefined()\n }\n }\n }\n ]\n },\n {\n title:\n 'HTTP => OpenAPI origin everything \"custom_rate_limit_tool\" (strict mode)',\n repeat: 5,\n repeatSuccessCriteria: (numRepeatSuccesses) => {\n expect(\n numRepeatSuccesses,\n 'should have at least three 429 responses out of 5 requests with a strict rate limit of 2 requests per 30s'\n ).toBeGreaterThanOrEqual(3)\n },\n fixtures: [\n {\n path: '@dev/test-everything-openapi/custom_rate_limit_tool',\n response: {\n status: 429,\n headers: {\n 'ratelimit-policy': '2;w=30',\n 'ratelimit-limit': '2'\n }\n }\n }\n ]\n },\n {\n title:\n 'HTTP => OpenAPI origin everything \"custom_rate_limit_approximate_tool\" (approximate mode)',\n repeat: 16,\n repeatConcurrency: 8,\n repeatSuccessCriteria: (numRepeatSuccesses) => {\n expect(\n numRepeatSuccesses,\n 'should have at least one 429 response'\n ).toBeGreaterThan(0)\n },\n fixtures: [\n {\n path: '@dev/test-everything-openapi/custom_rate_limit_approximate_tool',\n response: {\n status: 429,\n headers: {\n 'ratelimit-policy': '2;w=30',\n 'ratelimit-limit': '2'\n }\n }\n }\n ]\n }\n // TODO\n // {\n // title: 'HTTP => Production MCP origin \"search\" tool',\n // // NOTE: this one actually hits a production service and costs a small\n // // amount of $ per request.\n // fixtures: [\n // {\n // path: '@agentic/search/search',\n // request: {\n // method: 'POST',\n // json: {\n // query: 'latest ai news'\n // }\n // },\n // response: {\n // snapshot: false\n // }\n // }\n // ]\n // }\n]\n" }, { "path": "apps/e2e/src/mcp-e2e.test.ts", "content": "import { pick } from '@agentic/platform-core'\nimport { Client as McpClient } from '@modelcontextprotocol/sdk/client/index.js'\nimport { StreamableHTTPClientTransport } from '@modelcontextprotocol/sdk/client/streamableHttp.js'\nimport pTimes from 'p-times'\nimport { afterAll, beforeAll, describe, expect, test } from 'vitest'\n\nimport { env } from './env'\nimport { fixtureSuites } from './mcp-fixtures'\n\nfor (const [i, fixtureSuite] of fixtureSuites.entries()) {\n const {\n title,\n fixtures,\n compareResponseBodies = false,\n repeat,\n repeatConcurrency = 1,\n repeatSuccessCriteria = 'all'\n } = fixtureSuite\n\n const describeFn = fixtureSuite.only ? describe.only : describe\n describeFn(title, () => {\n let fixtureResult: any | undefined\n let client: McpClient\n\n if (repeat) {\n expect(repeat).toBeGreaterThan(0)\n }\n\n beforeAll(async () => {\n client = new McpClient({\n name: fixtureSuite.path,\n version: '0.0.0'\n })\n\n // TODO: add origin requestInit headers\n const transport = new StreamableHTTPClientTransport(\n new URL(fixtureSuite.path, env.AGENTIC_GATEWAY_BASE_URL)\n )\n await client.connect(transport)\n\n const { tools } = await client.listTools()\n\n // Ensure all tools used by the test fixtures in this suite are available.\n // Ignore test fixtures which are expected to error.\n for (const [_, fixture] of fixtures.entries()) {\n const { isError } = fixture.response ?? {}\n if (!isError) {\n const toolName = fixture.request.name\n expect(tools.map((t) => t.name)).toContain(toolName)\n }\n }\n }, 120_000)\n\n afterAll(async () => {\n await client.close()\n })\n\n for (const [j, fixture] of fixtures.entries()) {\n const {\n isError,\n result: expectedResult,\n content: expectedContent,\n structuredContent: expectedStructuredContent,\n _meta: expectedMeta,\n _agenticMeta: expectedAgenticMeta,\n _agenticMetaHeaders: expectedAgenticMetaHeaders,\n validate\n } = fixture.response ?? {}\n const toolName = fixture.request.name\n const expectedSnapshot =\n fixture.response?.snapshot ?? fixtureSuite.snapshot ?? false\n const expectedStableSnapshot =\n fixture.response?.stableSnapshot ??\n fixture.response?.snapshot ??\n fixtureSuite.stableSnapshot ??\n fixtureSuite.snapshot ??\n !isError\n const debugFixture = !!(\n fixture.debug ??\n fixtureSuite.debug ??\n fixture.only ??\n fixtureSuite.only\n )\n const fixtureName = `${i}.${j}: ${fixtureSuite.path} ${toolName}`\n\n let testFn = (fixture.only ?? fixture.debug) ? test.only : test\n if (fixtureSuite.sequential) {\n testFn = testFn.sequential\n }\n\n testFn(\n fixtureName,\n {\n timeout: fixture.timeout ?? 60_000\n },\n // eslint-disable-next-line no-loop-func\n async () => {\n const numIterations = repeat ?? 1\n let numSuccessCases = 0\n\n await pTimes(\n numIterations,\n async (iteration: number) => {\n const repeatIterationPrefix = repeat\n ? `[${iteration}/${numIterations}] `\n : ''\n\n const result = await client.callTool({\n name: toolName,\n arguments: fixture.request.args,\n _meta: fixture.request._meta\n })\n\n if (repeat) {\n if (result.isError === isError) {\n ++numSuccessCases\n } else {\n if (debugFixture) {\n console.log(\n `${repeatIterationPrefix}${fixtureName} => (invalid sample; expected ${result.isError ? 'error' : 'no error'})`,\n JSON.stringify(result, null, 2)\n )\n }\n\n return\n }\n }\n\n if (debugFixture) {\n console.log(\n `${repeatIterationPrefix}${fixtureName} =>`,\n JSON.stringify(result, null, 2)\n )\n }\n\n if (isError) {\n expect(result.isError).toBeTruthy()\n } else {\n expect(result.isError).toBeFalsy()\n }\n\n if (expectedResult) {\n expect(result).toEqual(expectedResult)\n }\n\n if (expectedContent) {\n expect(result.content).toEqual(expectedContent)\n }\n\n if (expectedStructuredContent) {\n expect(result.structuredContent).toEqual(\n expectedStructuredContent\n )\n }\n\n if (expectedMeta) {\n expect(result._meta).toBeDefined()\n expect(typeof result._meta).toEqual('object')\n expect(!Array.isArray(result._meta)).toBeTruthy()\n for (const [key, value] of Object.entries(expectedMeta)) {\n expect(result._meta![key]).toEqual(value)\n }\n }\n if (expectedAgenticMeta) {\n expect(result._meta).toBeDefined()\n expect(result._meta?.agentic).toBeDefined()\n expect(typeof result._meta?.agentic).toEqual('object')\n expect(!Array.isArray(result._meta?.agentic)).toBeTruthy()\n for (const [key, value] of Object.entries(\n expectedAgenticMeta\n )) {\n expect((result._meta!.agentic as any)[key]).toEqual(value)\n }\n }\n\n if (expectedAgenticMetaHeaders) {\n expect(result._meta).toBeDefined()\n expect(result._meta?.agentic).toBeDefined()\n expect(typeof result._meta?.agentic).toEqual('object')\n expect(!Array.isArray(result._meta?.agentic)).toBeTruthy()\n expect(typeof (result._meta?.agentic as any)?.headers).toEqual(\n 'object'\n )\n expect(\n !Array.isArray((result._meta?.agentic as any)?.headers)\n ).toBeTruthy()\n for (const [key, value] of Object.entries(\n expectedAgenticMetaHeaders\n )) {\n expect((result._meta!.agentic as any).headers[key]).toEqual(\n value\n )\n }\n }\n\n if (expectedSnapshot) {\n expect(result).toMatchSnapshot()\n }\n\n const stableResult = pick(\n result,\n 'content',\n 'structuredContent',\n 'isError'\n )\n\n if (expectedStableSnapshot) {\n expect(stableResult).toMatchSnapshot()\n }\n\n if (validate) {\n await Promise.resolve(validate(result))\n }\n\n if (compareResponseBodies && !isError) {\n if (!fixtureResult) {\n fixtureResult = stableResult\n } else {\n expect(stableResult).toEqual(fixtureResult)\n }\n }\n },\n { concurrency: repeatConcurrency, stopOnError: true }\n )\n\n if (repeat) {\n if (repeatSuccessCriteria === 'all') {\n expect(numSuccessCases).toBe(numIterations)\n } else if (repeatSuccessCriteria === 'some') {\n expect(numSuccessCases).toBeGreaterThan(0)\n } else if (typeof repeatSuccessCriteria === 'function') {\n await Promise.resolve(repeatSuccessCriteria(numSuccessCases))\n }\n }\n }\n )\n }\n })\n}\n" }, { "path": "apps/e2e/src/mcp-fixtures.ts", "content": "import { expect } from 'vitest'\n\nexport type MCPE2ETestFixture = {\n /** @default 60_000 milliseconds */\n timeout?: number\n\n /** @default false */\n only?: boolean\n\n /** @default false */\n debug?: boolean\n\n request: {\n name: string\n args: Record\n _meta?: Record\n }\n\n response?: {\n result?: any\n /** @default false */\n isError?: boolean\n content?: Array>\n structuredContent?: any\n _meta?: Record\n _agenticMeta?: Record\n _agenticMetaHeaders?: Record\n validate?: (result: any) => void | Promise\n /** @default undefined */\n snapshot?: boolean\n /** @default true */\n stableSnapshot?: boolean\n }\n}\n\nexport type MCPE2ETestFixtureSuite = {\n title: string\n path: string\n fixtures: MCPE2ETestFixture[]\n\n /** @default false */\n only?: boolean\n\n /** @default false */\n sequential?: boolean\n\n /** @default false */\n compareResponseBodies?: boolean\n\n /** @default false */\n debug?: boolean\n\n /**\n * Not used by default because the result `_meta.agentic` contains some\n * metadata which may not be stable across test runs such as `cacheStatus`\n * and `headers`.\n *\n * @default false\n */\n snapshot?: boolean\n\n /** @default undefined */\n stableSnapshot?: boolean\n\n /** @default undefined */\n repeat?: number\n\n /** @default 1 */\n repeatConcurrency?: number\n\n /** @default 'all' */\n repeatSuccessCriteria?:\n | 'all'\n | 'some'\n | ((numRepeatSuccesses: number) => void | Promise)\n}\n\nconst now = Date.now()\n\nexport const fixtureSuites: MCPE2ETestFixtureSuite[] = [\n {\n title: 'MCP => OpenAPI origin basic get_post success',\n path: '@dev/test-basic-openapi/mcp',\n fixtures: [\n {\n request: {\n name: 'get_post',\n args: {\n postId: 1\n }\n }\n }\n ]\n },\n {\n title: 'MCP => OpenAPI origin basic @ latest get_post success ',\n path: '@dev/test-basic-openapi@latest/mcp',\n fixtures: [\n {\n request: {\n name: 'get_post',\n args: {\n postId: 3\n }\n }\n }\n ]\n },\n {\n title: 'MCP => OpenAPI origin basic @ dev get_post success ',\n path: '@dev/test-basic-openapi@dev/mcp',\n fixtures: [\n {\n request: {\n name: 'get_post',\n args: {\n postId: 8\n }\n }\n }\n ]\n },\n {\n title: 'MCP => MCP origin basic \"echo\" tool call success',\n path: '@dev/test-basic-mcp/mcp',\n stableSnapshot: false,\n fixtures: [\n {\n request: {\n name: 'echo',\n args: {\n nala: 'kitten',\n num: 123,\n now\n }\n },\n response: {\n content: [\n {\n type: 'text',\n text: JSON.stringify({ nala: 'kitten', num: 123, now })\n }\n ],\n _agenticMeta: {\n cacheStatus: 'DYNAMIC'\n }\n }\n },\n {\n request: {\n name: 'echo',\n args: {\n nala: 'kitten',\n num: 123,\n now: `${now}`\n }\n },\n response: {\n content: [\n {\n type: 'text',\n text: JSON.stringify({\n nala: 'kitten',\n num: 123,\n now: `${now}`\n })\n }\n ],\n _agenticMeta: {\n cacheStatus: 'DYNAMIC'\n }\n }\n }\n ]\n },\n {\n title: 'MCP => OpenAPI origin basic get_post errors',\n path: '@dev/test-basic-openapi/mcp',\n fixtures: [\n {\n request: {\n name: 'get_post',\n args: {\n // Missing required `postId` parameter\n nala: 'kitten',\n num: 123,\n now\n }\n },\n response: {\n isError: true,\n _agenticMeta: {\n status: 400\n }\n }\n },\n {\n request: {\n name: 'get_post',\n args: {\n // invalid `postId` parameter\n postId: 'not-a-number'\n }\n },\n response: {\n isError: true,\n _agenticMeta: {\n status: 400\n }\n }\n },\n {\n request: {\n name: 'get_kittens',\n args: {\n postId: 7\n }\n },\n response: {\n isError: true,\n _agenticMeta: {\n // 'get_kittens' tool doesn't exist\n status: 404,\n toolName: 'get_kittens'\n }\n }\n },\n {\n request: {\n name: 'get_post',\n args: {\n postId: 7,\n // additional json body params are allowed by default\n foo: 'bar'\n }\n },\n response: {\n isError: false\n }\n }\n ]\n },\n {\n title: 'MCP => OpenAPI origin everything errors',\n path: '@dev/test-everything-openapi/mcp',\n fixtures: [\n {\n request: {\n name: 'strict_additional_properties',\n args: {\n foo: 'bar'\n }\n },\n response: {\n isError: false\n }\n },\n {\n request: {\n name: 'strict_additional_properties',\n args: {\n foo: 'bar',\n // additional params should throw an error if the tool\n // config has `additionalProperties: false`\n extra: 'nala'\n }\n },\n response: {\n isError: true,\n _agenticMeta: {\n status: 400\n }\n }\n }\n ]\n },\n {\n title: 'MCP => OpenAPI origin basic bypass caching',\n path: '@dev/test-everything-openapi/mcp',\n fixtures: [\n {\n // ensure we bypass the cache for requests for tools which do not have\n // a custom `pure` or `cacheControl` set in their tool config.\n request: {\n name: 'echo',\n args: {\n postId: 1\n }\n },\n response: {\n isError: false,\n _agenticMeta: {\n cacheStatus: 'BYPASS'\n }\n }\n }\n ]\n },\n {\n title: 'MCP => OpenAPI origin basic caching',\n path: '@dev/test-basic-openapi/mcp',\n fixtures: [\n {\n request: {\n name: 'get_post',\n args: {\n postId: 1\n }\n },\n response: {\n isError: false\n }\n },\n {\n request: {\n name: 'get_post',\n args: {\n postId: 1\n }\n },\n response: {\n isError: false,\n _agenticMeta: {\n // second request should hit the cache\n cacheStatus: 'HIT'\n }\n }\n },\n {\n request: {\n name: 'get_post',\n args: {\n postId: 1\n },\n // disable caching via a custom metadata cache-control header\n _meta: {\n agentic: {\n headers: {\n 'cache-control': 'no-store'\n }\n }\n }\n },\n response: {\n isError: false,\n _agenticMeta: {\n cacheStatus: 'BYPASS'\n }\n }\n }\n ]\n },\n {\n title: 'MCP => OpenAPI origin basic normalized caching',\n path: '@dev/test-basic-openapi/mcp',\n fixtures: [\n {\n request: {\n name: 'get_post',\n args: {\n postId: 1,\n foo: true,\n nala: 'kitten'\n }\n },\n response: {\n isError: false\n }\n },\n {\n request: {\n name: 'get_post',\n args: {\n foo: true,\n postId: 1,\n nala: 'kitten'\n }\n },\n response: {\n isError: false,\n _agenticMeta: {\n // second request should hit the cache even though the args are in a\n // different order\n cacheStatus: 'HIT'\n }\n }\n }\n ]\n },\n {\n title: 'MCP => MCP origin basic \"add\" tool call success',\n path: '@dev/test-basic-mcp/mcp',\n stableSnapshot: false,\n fixtures: [\n {\n request: {\n name: 'add',\n args: {\n a: 13,\n b: 49\n }\n },\n response: {\n isError: false,\n content: [{ type: 'text', text: '62' }]\n }\n }\n ]\n },\n {\n title: 'MCP => MCP origin basic \"echo\" tool',\n path: '@dev/test-basic-mcp/mcp',\n stableSnapshot: false,\n fixtures: [\n {\n request: {\n name: 'echo',\n args: {\n nala: 'kitten',\n num: 123,\n now\n }\n },\n response: {\n isError: false,\n content: [\n {\n type: 'text',\n text: JSON.stringify({ nala: 'kitten', num: 123, now })\n }\n ]\n }\n }\n ]\n },\n {\n title: 'MCP => OpenAPI origin everything \"pure\" tool',\n path: '@dev/test-everything-openapi/mcp',\n compareResponseBodies: true,\n fixtures: [\n {\n request: {\n name: 'echo',\n args: {\n nala: 'kitten',\n foo: 'bar'\n },\n _meta: {\n agentic: {\n headers: {\n 'cache-control':\n 'public, max-age=31560000, s-maxage=31560000, stale-while-revalidate=3600'\n }\n }\n }\n },\n response: {\n isError: false,\n structuredContent: {\n nala: 'kitten',\n foo: 'bar'\n }\n }\n },\n {\n // second request should hit the cache\n request: {\n name: 'echo',\n args: {\n nala: 'kitten',\n foo: 'bar'\n },\n _meta: {\n agentic: {\n headers: {\n 'cache-control':\n 'public, max-age=31560000, s-maxage=31560000, stale-while-revalidate=3600'\n }\n }\n }\n },\n response: {\n isError: false,\n structuredContent: {\n nala: 'kitten',\n foo: 'bar'\n },\n _agenticMeta: {\n cacheStatus: 'HIT'\n }\n }\n }\n ]\n },\n {\n title: 'MCP => OpenAPI origin everything \"disabled_tool\" tool',\n path: '@dev/test-everything-openapi/mcp',\n fixtures: [\n {\n request: {\n name: 'disabled_tool',\n args: {\n foo: 'bar'\n }\n },\n response: {\n isError: true,\n _agenticMeta: {\n status: 404,\n toolName: 'disabled_tool'\n }\n }\n }\n ]\n },\n {\n title: 'MCP => OpenAPI origin everything \"echo\" tool with empty body',\n path: '@dev/test-everything-openapi/mcp',\n fixtures: [\n {\n request: {\n name: 'echo',\n args: {}\n },\n response: {\n isError: false,\n structuredContent: {}\n }\n }\n ]\n },\n {\n title: 'MCP => OpenAPI origin everything \"unpure_marked_pure\" tool',\n path: '@dev/test-everything-openapi/mcp',\n compareResponseBodies: true,\n stableSnapshot: false,\n fixtures: [\n {\n request: {\n name: 'unpure_marked_pure',\n args: {\n nala: 'cat'\n }\n },\n response: {\n isError: false,\n validate: (result) => {\n const body = result.structuredContent\n expect(body?.nala).toEqual('cat')\n expect(typeof body.now).toBe('number')\n expect(body.now).toBeGreaterThan(0)\n }\n }\n },\n {\n // compareResponseBodies should result in the same cached response body,\n // even though the origin would return a different `now` value if it\n // weren't marked `pure`.\n request: {\n name: 'unpure_marked_pure',\n args: {\n nala: 'cat'\n }\n },\n response: {\n isError: false,\n _agenticMeta: {\n cacheStatus: 'HIT'\n }\n }\n }\n ]\n },\n {\n title: 'MCP => OpenAPI origin everything \"echo_headers\" tool',\n path: '@dev/test-everything-openapi/mcp',\n stableSnapshot: false,\n fixtures: [\n {\n request: {\n name: 'echo_headers',\n args: {}\n },\n response: {\n validate: (result) => {\n expect(\n result.structuredContent['x-agentic-proxy-secret']\n ).toBeTruthy()\n expect(\n result.structuredContent['x-agentic-proxy-secret']?.length\n ).toBe(64)\n expect(\n result.structuredContent['x-agentic-deployment-id']\n ).toBeTruthy()\n expect(\n result.structuredContent['x-agentic-deployment-id']?.startsWith(\n 'depl_'\n )\n ).toBeTruthy()\n expect(\n result.structuredContent['x-agentic-deployment-identifier']\n ).toBeTruthy()\n expect(\n result.structuredContent[\n 'x-agentic-is-customer-subscription-active'\n ]\n ).toEqual('false')\n expect(\n result.structuredContent['x-agentic-user-id']\n ).toBeUndefined()\n expect(\n result.structuredContent['x-agentic-customer-id']\n ).toBeUndefined()\n }\n }\n }\n ]\n },\n {\n title:\n 'MCP => OpenAPI origin everything \"custom_rate_limit_tool\" (strict mode)',\n path: '@dev/test-everything-openapi/mcp',\n repeat: 5,\n repeatSuccessCriteria: (numRepeatSuccesses) => {\n expect(\n numRepeatSuccesses,\n 'should have at least three 429 responses out of 5 requests with a strict rate limit of 2 requests per 30s'\n ).toBeGreaterThanOrEqual(3)\n },\n fixtures: [\n {\n request: {\n name: 'custom_rate_limit_tool',\n args: {}\n },\n response: {\n isError: true,\n _agenticMeta: {\n status: 429\n },\n _agenticMetaHeaders: {\n 'ratelimit-policy': '2;w=30',\n 'ratelimit-limit': '2'\n }\n }\n }\n ]\n },\n {\n title:\n 'MCP => OpenAPI origin everything \"custom_rate_limit_approximate_tool\" (approximate mode)',\n path: '@dev/test-everything-openapi/mcp',\n repeat: 16,\n repeatConcurrency: 8,\n repeatSuccessCriteria: (numRepeatSuccesses) => {\n expect(\n numRepeatSuccesses,\n 'should have at least one 429 response'\n ).toBeGreaterThan(0)\n },\n fixtures: [\n {\n request: {\n name: 'custom_rate_limit_approximate_tool',\n args: {}\n },\n response: {\n isError: true,\n _agenticMeta: {\n status: 429\n },\n _agenticMetaHeaders: {\n 'ratelimit-policy': '2;w=30',\n 'ratelimit-limit': '2'\n }\n }\n }\n ]\n }\n]\n" }, { "path": "apps/e2e/src/publish-deployments.ts", "content": "import type { AgenticApiClient } from '@agentic/platform-api-client'\nimport type { Deployment } from '@agentic/platform-types'\nimport { assert } from '@agentic/platform-core'\nimport pMap from 'p-map'\nimport semver from 'semver'\n\nexport async function publishDeployments(\n deployments: Deployment[],\n {\n client,\n concurrency = 1\n }: {\n client: AgenticApiClient\n concurrency?: number\n }\n) {\n const publishedDeployments = await pMap(\n deployments,\n async (deployment) => {\n const project = await client.getProject({\n projectId: deployment.projectId,\n populate: ['lastDeployment']\n })\n\n const baseVersion = project.lastPublishedDeploymentVersion || '0.0.0'\n const version = semver.inc(baseVersion, 'patch')\n assert(version, `Failed to increment deployment version \"${baseVersion}\"`)\n\n const publishedDeployment = await client.publishDeployment(\n { version },\n {\n deploymentId: deployment.id\n }\n )\n console.log(`Published ${deployment.identifier} => ${version}`)\n\n return publishedDeployment\n },\n {\n concurrency\n }\n )\n\n return publishedDeployments\n}\n" }, { "path": "apps/e2e/tsconfig.json", "content": "{\n \"extends\": \"@fisch0920/config/tsconfig-node\",\n \"include\": [\"src\", \"bin\", \"*.config.ts\"],\n \"exclude\": [\"node_modules\", \"dist\"]\n}\n" }, { "path": "apps/e2e/vitest.config.ts", "content": "import { defineConfig } from 'vitest/config'\n\nexport default defineConfig({\n test: {\n environment: 'node',\n globals: true,\n watch: false,\n restoreMocks: true\n }\n})\n" }, { "path": "apps/gateway/.dev.vars.example", "content": "ENVIRONMENT=\nSENTRY_DSN=\n\nAGENTIC_API_BASE_URL=\nAGENTIC_API_KEY=\n\nSTRIPE_SECRET_KEY=\n" }, { "path": "apps/gateway/package.json", "content": "{\n \"name\": \"gateway\",\n \"private\": true,\n \"version\": \"8.4.4\",\n \"description\": \"Internal Agentic platform API gateway.\",\n \"author\": \"Travis Fischer \",\n \"license\": \"AGPL-3.0\",\n \"repository\": {\n \"type\": \"git\",\n \"url\": \"git+https://github.com/transitive-bullshit/agentic.git\",\n \"directory\": \"apps/gateway\"\n },\n \"type\": \"module\",\n \"source\": \"./src/worker.ts\",\n \"scripts\": {\n \"dev\": \"wrangler dev\",\n \"deploy\": \"wrangler deploy --env production --outdir dist --upload-source-maps --var SENTRY_RELEASE:$(sentry-cli releases propose-version)\",\n \"deploy:cf\": \"wrangler deploy --env production --outdir dist --upload-source-maps\",\n \"cf-clear-cache\": \"del .wrangler\",\n \"clean\": \"del dist\",\n \"test\": \"run-s test:*\",\n \"test:typecheck\": \"tsc --noEmit\",\n \"test:unit\": \"vitest run\",\n \"sentry:sourcemaps\": \"_SENTRY_RELEASE=$(sentry-cli releases propose-version) && sentry-cli releases new $_SENTRY_RELEASE --org=agentic-platform --project=gateway && sentry-cli sourcemaps upload --org=agentic-platform --project=gateway --release=$_SENTRY_RELEASE --strip-prefix 'dist/..' dist\",\n \"postdeploy\": \"pnpm sentry:sourcemaps\"\n },\n \"dependencies\": {\n \"@agentic/json-schema\": \"workspace:*\",\n \"@agentic/platform-api-client\": \"workspace:*\",\n \"@agentic/platform-core\": \"workspace:*\",\n \"@agentic/platform-hono\": \"workspace:*\",\n \"@agentic/platform-types\": \"workspace:*\",\n \"@agentic/platform-validators\": \"workspace:*\",\n \"@hono/zod-validator\": \"catalog:\",\n \"@modelcontextprotocol/sdk\": \"catalog:\",\n \"@sentry/cloudflare\": \"catalog:\",\n \"agents\": \"catalog:\",\n \"fast-content-type-parse\": \"catalog:\",\n \"hono\": \"catalog:\",\n \"ky\": \"catalog:\",\n \"plur\": \"catalog:\",\n \"sort-keys\": \"catalog:\",\n \"stripe\": \"catalog:\",\n \"type-fest\": \"catalog:\"\n },\n \"devDependencies\": {\n \"@cloudflare/workers-types\": \"catalog:\",\n \"@edge-runtime/vm\": \"catalog:\",\n \"@sentry/cli\": \"catalog:\",\n \"wrangler\": \"catalog:\"\n }\n}\n" }, { "path": "apps/gateway/src/app.ts", "content": "import { assert } from '@agentic/platform-core'\nimport {\n applyRateLimitHeaders,\n cors,\n errorHandler,\n init,\n responseTime,\n sentry\n} from '@agentic/platform-hono'\nimport { Hono } from 'hono'\n\nimport type {\n GatewayHonoEnv,\n ResolvedHttpEdgeRequest,\n ResolvedOriginToolCallResult\n} from './lib/types'\nimport { createAgenticClient } from './lib/agentic-client'\nimport { createHttpResponseFromMcpToolCallResponse } from './lib/create-http-response-from-mcp-tool-call-response'\nimport { recordToolCallUsage } from './lib/record-tool-call-usage'\nimport { resolveEdgeRequest } from './lib/resolve-edge-request'\nimport { resolveHttpEdgeRequest } from './lib/resolve-http-edge-request'\nimport { resolveMcpEdgeRequest } from './lib/resolve-mcp-edge-request'\nimport { resolveOriginToolCall } from './lib/resolve-origin-tool-call'\nimport { isRequestPubliclyCacheable } from './lib/utils'\nimport { DurableMcpServer } from './worker'\n\nexport const app = new Hono()\n\napp.onError(errorHandler)\napp.use(sentry())\n\n// TODO: Compression is causing a weird bug on dev even for simple responses.\n// I think it's because wrangler is changing the response to be streamed\n// with `transfer-encoding: chunked`, which is not compatible with\n// `hono/compress`.\n// app.use(compress())\n\napp.use(\n cors({\n origin: '*',\n allowHeaders: ['Content-Type', 'Authorization', 'mcp-session-id'],\n allowMethods: ['GET', 'POST', 'DELETE', 'OPTIONS'],\n exposeHeaders: ['Content-Length', 'mcp-session-id'],\n maxAge: 86_400,\n credentials: true\n })\n)\napp.use(init)\n\n// Wrangler does this for us. TODO: Does this happen on prod?\n// app.use(accessLogger)\n\napp.use(responseTime)\n\napp.all(async (ctx) => {\n const waitUntil = ctx.executionCtx.waitUntil.bind(ctx.executionCtx)\n const isCachingEnabled = isRequestPubliclyCacheable(ctx.req.raw)\n ctx.set('cache', caches.default)\n ctx.set(\n 'client',\n createAgenticClient({\n env: ctx.env,\n cache: caches.default,\n isCachingEnabled,\n waitUntil\n })\n )\n\n // Resolve the edge request to a specific deployment and mode (MCP or HTTP)\n const resolvedEdgeRequest = await resolveEdgeRequest(ctx)\n\n // Handle MCP requests\n if (resolvedEdgeRequest.edgeRequestMode === 'MCP') {\n ctx.set('isJsonRpcRequest', true)\n const executionCtx = ctx.executionCtx as any\n const mcpInfo = await resolveMcpEdgeRequest(ctx, resolvedEdgeRequest)\n executionCtx.props = mcpInfo\n\n return DurableMcpServer.serve('/*', {\n binding: 'DO_MCP_SERVER'\n }).fetch(ctx.req.raw, ctx.env, executionCtx)\n }\n\n // Handle HTTP requests\n let resolvedHttpEdgeRequest: ResolvedHttpEdgeRequest | undefined\n let resolvedOriginToolCallResult: ResolvedOriginToolCallResult | undefined\n let originResponse: Response | undefined\n let res: Response | undefined\n\n try {\n // Resolve the http edge request to a specific consumer and tool call\n resolvedHttpEdgeRequest = await resolveHttpEdgeRequest(\n ctx,\n resolvedEdgeRequest\n )\n\n // Invoke the origin tool call.\n resolvedOriginToolCallResult = await resolveOriginToolCall({\n ...resolvedHttpEdgeRequest,\n args: resolvedHttpEdgeRequest.toolCallArgs,\n sessionId: ctx.get('sessionId')!,\n env: ctx.env,\n waitUntil\n })\n\n // Transform the origin tool call response into an http response.\n if (resolvedOriginToolCallResult.originResponse) {\n originResponse = resolvedOriginToolCallResult.originResponse\n } else {\n originResponse = await createHttpResponseFromMcpToolCallResponse(ctx, {\n ...resolvedHttpEdgeRequest,\n toolCallResponse: resolvedOriginToolCallResult.toolCallResponse,\n toolConfig: resolvedOriginToolCallResult.toolConfig\n })\n }\n\n assert(originResponse, 500, 'Origin response is required')\n\n // Post-process the origin response.\n res = updateResponse(originResponse, resolvedOriginToolCallResult)\n return res\n } catch (err: any) {\n // Convert the error into an http response and post-process it.\n res = errorHandler(err, ctx)\n res = updateResponse(res, resolvedOriginToolCallResult)\n return res\n } finally {\n // Record the tool call usage.\n if (resolvedHttpEdgeRequest && res) {\n recordToolCallUsage({\n ...resolvedHttpEdgeRequest,\n httpResponse: res,\n resolvedOriginToolCallResult,\n sessionId: ctx.get('sessionId')!,\n env: ctx.env,\n waitUntil\n })\n }\n }\n})\n\nfunction updateResponse(\n response: Response,\n resolvedOriginToolCallResult?: ResolvedOriginToolCallResult\n) {\n const res = new Response(response.body, response)\n\n if (resolvedOriginToolCallResult) {\n if (resolvedOriginToolCallResult.rateLimitResult) {\n applyRateLimitHeaders({\n res,\n rateLimitResult: resolvedOriginToolCallResult.rateLimitResult\n })\n }\n\n // Record the time it took for the origin to respond.\n res.headers.set(\n 'x-origin-response-time',\n `${resolvedOriginToolCallResult.originTimespanMs}ms`\n )\n }\n\n // Reset server to Agentic because Cloudflare likes to override things\n res.headers.set('server', 'agentic')\n\n // Remove extra Cloudflare headers\n res.headers.delete('x-powered-by')\n res.headers.delete('via')\n res.headers.delete('nel')\n res.headers.delete('report-to')\n res.headers.delete('server-timing')\n res.headers.delete('reporting-endpoints')\n\n return res\n}\n" }, { "path": "apps/gateway/src/lib/__snapshots__/utils.test.ts.snap", "content": "// Vitest Snapshot v1, https://vitest.dev/guide/snapshot.html\n\nexports[`createAgenticMcpMetadata 1`] = `\"{\"agentic\":{\"deploymentId\":\"123\",\"consumerId\":\"456\",\"toolName\":\"test\",\"status\":200,\"cacheStatus\":\"HIT\"}}\"`;\n" }, { "path": "apps/gateway/src/lib/agentic-client.ts", "content": "import { AgenticApiClient } from '@agentic/platform-api-client'\nimport defaultKy from 'ky'\n\nimport type { RawEnv } from './env'\nimport type { WaitUntil } from './types'\nimport { isCacheControlPubliclyCacheable } from './utils'\n\nexport function createAgenticClient({\n env,\n cache,\n waitUntil,\n isCachingEnabled = true\n}: {\n env: RawEnv\n cache: Cache\n waitUntil: WaitUntil\n isCachingEnabled?: boolean\n}) {\n const client = new AgenticApiClient({\n apiBaseUrl: env.AGENTIC_API_BASE_URL,\n apiKey: env.AGENTIC_API_KEY,\n ky: isCachingEnabled\n ? defaultKy.extend({\n hooks: {\n // NOTE: The order of the `beforeRequest` hook matters, and it only\n // works alongside the one in AgenticApiClient because that one's body\n // should never be run. This only works because we're using `apiKey`\n // authentication, which is a lil hacky since it's actually a long-\n // lived access token.\n beforeRequest: [\n async (request) => {\n // Check the cache first before making a request to Agentic's\n // backend API.\n return cache.match(request)\n }\n ],\n\n afterResponse: [\n async (request, _options, response) => {\n if (\n !isCacheControlPubliclyCacheable(\n response.headers.get('cache-control')\n )\n ) {\n return\n }\n\n // Asynchronously update the cache with the response from\n // Agentic's backend API.\n waitUntil(\n cache.put(request, response.clone()).catch((err) => {\n // eslint-disable-next-line no-console\n console.warn('cache put error', request, err)\n })\n )\n }\n ]\n }\n })\n : defaultKy\n })\n\n return client\n}\n" }, { "path": "apps/gateway/src/lib/cf-validate-json-schema.ts", "content": "import { Validator } from '@agentic/json-schema'\nimport { assert, HttpError } from '@agentic/platform-core'\nimport plur from 'plur'\n\n/**\n * Validates `data` against the provided JSON schema.\n *\n * This method uses a fork of `@cfworker/json-schema`. It does not use `ajv`\n * because `ajv` is not supported on CF workers due to its dynamic code\n * generation and evaluation.\n *\n * If you want a stricter version of this method which uses `ajv` and you're\n * not running on CF workers, consider using `validateJsonSchemaObject` from\n * `@agentic/platform-openapi-utils`.\n */\nexport function cfValidateJsonSchema({\n schema,\n data,\n coerce = false,\n strictAdditionalProperties = false,\n errorPrefix,\n errorStatusCode = 400\n}: {\n schema: any\n data: unknown\n coerce?: boolean\n strictAdditionalProperties?: boolean\n errorPrefix?: string\n errorStatusCode?: number\n}): T {\n assert(schema, 400, '`schema` is required')\n const isSchemaObject =\n typeof schema === 'object' &&\n !Array.isArray(schema) &&\n schema.type === 'object'\n const isDataObject = typeof data === 'object' && !Array.isArray(data)\n if (isSchemaObject && !isDataObject) {\n throw new HttpError({\n statusCode: 400,\n message: `${errorPrefix ? errorPrefix + ': ' : ''}Data must be an object according to its schema.`\n })\n }\n\n // Special-case check for required fields to give better error messages\n if (isSchemaObject && Array.isArray(schema.required)) {\n const missingRequiredFields: string[] = schema.required.filter(\n (field: string) => (data as Record)[field] === undefined\n )\n\n if (missingRequiredFields.length > 0) {\n throw new HttpError({\n statusCode: errorStatusCode,\n message: `${errorPrefix ? errorPrefix + ': ' : ''}Missing required ${plur('parameter', missingRequiredFields.length)}: ${missingRequiredFields.map((field) => `\"${field}\"`).join(', ')}`\n })\n }\n }\n\n // Special-case check for additional top-level fields to give better error\n // messages.\n if (\n isSchemaObject &&\n schema.properties &&\n (schema.additionalProperties === false ||\n (schema.additionalProperties === undefined && strictAdditionalProperties))\n ) {\n const extraProperties = Object.keys(data as Record).filter(\n (key) => !schema.properties[key]\n )\n\n if (extraProperties.length > 0) {\n throw new HttpError({\n statusCode: errorStatusCode,\n message: `${errorPrefix ? errorPrefix + ': ' : ''}Unexpected additional ${plur('parameter', extraProperties.length)}: ${extraProperties.map((property) => `\"${property}\"`).join(', ')}`\n })\n }\n }\n\n const validator = new Validator({\n schema,\n coerce,\n strictAdditionalProperties\n })\n const result = validator.validate(data)\n if (result.valid) {\n // console.log('validate', {\n // schema,\n // data,\n // result: result.instance\n // })\n\n // Return the (possibly) coerced data\n return result.instance as T\n }\n\n const finalErrorMessage = `${\n errorPrefix ? errorPrefix + ': ' : ''\n }${result.errors\n .map(({ keyword, error }) => `keyword \"${keyword}\" error ${error}`)\n .join(' ')}`\n\n throw new HttpError({\n statusCode: errorStatusCode,\n message: finalErrorMessage\n })\n}\n" }, { "path": "apps/gateway/src/lib/create-http-request-for-openapi-operation.ts", "content": "import type {\n AdminDeployment,\n OpenAPIToolOperation,\n ToolConfig\n} from '@agentic/platform-types'\nimport { assert } from '@agentic/platform-core'\n\nimport type { ToolCallArgs } from './types'\n\nexport async function createHttpRequestForOpenAPIOperation({\n toolCallArgs,\n operation,\n deployment,\n request,\n toolConfig\n}: {\n toolCallArgs: ToolCallArgs\n operation: OpenAPIToolOperation\n deployment: AdminDeployment\n request?: Request\n toolConfig?: ToolConfig\n}): Promise {\n assert(toolCallArgs, 500, 'Tool args are required')\n assert(\n deployment.origin.type === 'openapi',\n 500,\n `Internal logic error for origin adapter type \"${deployment.origin.type}\"`\n )\n\n const { method } = operation\n const methodHasBody =\n method === 'post' || method === 'put' || method === 'patch'\n\n // TODO: Make this more efficient by changing the `parameterSources` data structure\n const params = Object.entries(operation.parameterSources)\n const bodyParams = params.filter(([_key, source]) => source === 'body')\n const formDataParams = params.filter(\n ([_key, source]) => source === 'formData'\n )\n const headerParams = params.filter(([_key, source]) => source === 'header')\n const pathParams = params.filter(([_key, source]) => source === 'path')\n const queryParams = params.filter(([_key, source]) => source === 'query')\n const cookieParams = params.filter(([_key, source]) => source === 'cookie')\n assert(\n !cookieParams.length,\n 500,\n 'Cookie parameters for OpenAPI operations are not yet supported. If you need cookie parameter support, please contact support@agentic.so.'\n )\n\n const extraArgs =\n toolConfig?.inputSchemaAdditionalProperties === false\n ? []\n : // TODO: Make this more efficient...\n Object.keys(toolCallArgs).filter((key) => {\n if (bodyParams.some(([paramKey]) => paramKey === key)) return false\n if (formDataParams.some(([paramKey]) => paramKey === key))\n return false\n if (headerParams.some(([paramKey]) => paramKey === key)) return false\n if (queryParams.some(([paramKey]) => paramKey === key)) return false\n if (pathParams.some(([paramKey]) => paramKey === key)) return false\n if (cookieParams.some(([paramKey]) => paramKey === key)) return false\n return true\n })\n const extraArgsEntries = extraArgs\n .map((key) => [key, toolCallArgs[key]])\n .filter(([, value]) => value !== undefined)\n\n const headers: Record = {}\n if (request) {\n // TODO: do we want to expose these? especially authorization?\n for (const [key, value] of request.headers.entries()) {\n headers[key] = value\n }\n }\n\n if (headerParams.length > 0) {\n for (const [key] of headerParams) {\n headers[key] = (request?.headers.get(key) as string) ?? toolCallArgs[key]\n }\n }\n\n for (const [key] of cookieParams) {\n headers[key] = String(toolCallArgs[key])\n }\n\n let body: string | undefined\n if (methodHasBody) {\n if (bodyParams.length > 0 || !formDataParams.length) {\n const bodyJson = Object.fromEntries(\n bodyParams\n .map(([key]) => [key, toolCallArgs[key]])\n .concat(extraArgsEntries)\n // Prune undefined values. We know these aren't required fields,\n // because the incoming request params have already been validated\n // against the tool's input schema.\n .filter(([, value]) => value !== undefined)\n )\n\n body = JSON.stringify(bodyJson)\n headers['content-type'] = 'application/json'\n headers['content-length'] = body.length.toString()\n } else if (formDataParams.length > 0) {\n // TODO: Double-check FormData usage.\n const bodyFormData = new FormData()\n\n for (const [key] of formDataParams) {\n const value = toolCallArgs[key]\n if (value !== undefined) {\n bodyFormData.append(key, value)\n }\n }\n\n for (const [key, value] of extraArgsEntries) {\n bodyFormData.append(key, value)\n }\n\n body = bodyFormData.toString()\n headers['content-type'] = 'application/x-www-form-urlencoded'\n headers['content-length'] = body.length.toString()\n }\n }\n\n let path = operation.path\n if (pathParams.length > 0) {\n for (const [key] of pathParams) {\n const value: string = toolCallArgs[key]\n assert(value, 400, `Missing required parameter \"${key}\"`)\n\n const pathParamPlaceholder = `{${key}}`\n assert(\n path.includes(pathParamPlaceholder),\n 500,\n `Misconfigured OpenAPI deployment \"${deployment.id}\": invalid path \"${operation.path}\" missing required path parameter \"${key}\"`\n )\n\n path = path.replaceAll(pathParamPlaceholder, value)\n }\n }\n assert(\n !/\\{\\w+\\}/.test(path),\n 500,\n `Misconfigured OpenAPI deployment \"${deployment.id}\": invalid path \"${operation.path}\"`\n )\n\n const query = new URLSearchParams()\n for (const [key] of queryParams) {\n query.set(key, toolCallArgs[key] as string)\n }\n\n if (!methodHasBody) {\n for (const [key, value] of extraArgsEntries) {\n query.set(key, value)\n }\n }\n\n const queryString = query.toString()\n const originRequestUrl = `${deployment.origin.url}${path}${\n queryString ? `?${queryString}` : ''\n }`\n\n return new Request(originRequestUrl, {\n method: method.toUpperCase(),\n body,\n headers\n })\n}\n" }, { "path": "apps/gateway/src/lib/create-http-response-from-mcp-tool-call-response.ts", "content": "import type { AdminDeployment, Tool, ToolConfig } from '@agentic/platform-types'\nimport { assert } from '@agentic/platform-core'\n\nimport type { GatewayHonoContext, McpToolCallResponse } from './types'\nimport { cfValidateJsonSchema } from './cf-validate-json-schema'\n\nexport async function createHttpResponseFromMcpToolCallResponse(\n _ctx: GatewayHonoContext,\n {\n tool,\n deployment,\n toolCallResponse,\n toolConfig\n }: {\n tool: Tool\n deployment: AdminDeployment\n toolCallResponse: McpToolCallResponse\n toolConfig?: ToolConfig\n }\n): Promise {\n assert(\n deployment.origin.type === 'mcp',\n 500,\n `Internal logic error for origin adapter type \"${deployment.origin.type}\"`\n )\n assert(\n !toolCallResponse.isError,\n 502,\n // TODO: add content or structuredContent to the error message\n `MCP tool \"${tool.name}\" returned an error.`\n )\n\n if (tool.outputSchema) {\n // eslint-disable-next-line no-console\n console.log(`tool call \"${tool.name}\" structured response:`, {\n outputSchema: tool.outputSchema,\n toolCallResponse\n })\n\n assert(\n toolCallResponse.structuredContent,\n 502,\n `Structured content is required for MCP origin requests to tool \"${tool.name}\" because it has an output schema.`\n )\n\n // Validate tool response against the tool's output schema.\n const toolCallResponseContent = cfValidateJsonSchema({\n schema: tool.outputSchema,\n data: toolCallResponse.structuredContent as Record,\n coerce: false,\n // TODO: double-check MCP schema on whether additional properties are allowed\n strictAdditionalProperties:\n toolConfig?.outputSchemaAdditionalProperties === false,\n errorPrefix: `Invalid tool response for tool \"${tool.name}\"`,\n errorStatusCode: 502\n })\n\n return new Response(JSON.stringify(toolCallResponseContent), {\n headers: {\n 'content-type': 'application/json'\n }\n })\n }\n\n return new Response(JSON.stringify(toolCallResponse.content), {\n headers: {\n 'content-type': 'application/json'\n }\n })\n}\n" }, { "path": "apps/gateway/src/lib/durable-mcp-client.ts", "content": "import type { AgenticMcpRequestMetadata } from '@agentic/platform-types'\nimport { assert } from '@agentic/platform-core'\nimport { Client as McpClient } from '@modelcontextprotocol/sdk/client/index.js'\nimport { StreamableHTTPClientTransport } from '@modelcontextprotocol/sdk/client/streamableHttp.js'\nimport * as Sentry from '@sentry/cloudflare'\nimport { DurableObject } from 'cloudflare:workers'\n\nimport type { RawEnv } from './env'\n\nexport type DurableMcpClientInfo = {\n url: string\n name: string\n version: string\n headers?: Record\n}\n\n// TODO: not sure if there's a better way to handle re-using client connections\n// across requests. Maybe we use one DurableObject per unique\n// customer<>DurableMcpClientInfo connection?\n// Currently using `sessionId`\n\nexport class DurableMcpClientBase extends DurableObject {\n protected client?: McpClient\n protected clientConnectionP?: Promise\n\n async init(mcpClientInfo: DurableMcpClientInfo) {\n const existingMcpClientInfo =\n await this.ctx.storage.get('mcp-client-info')\n\n await this.ctx.storage.put('mcp-client-info', mcpClientInfo)\n if (existingMcpClientInfo) {\n if (mcpClientInfo.url !== existingMcpClientInfo.url) {\n // eslint-disable-next-line no-console\n console.warn(\n `DurableMcpClientInfo url changed from \"${existingMcpClientInfo.url}\" to \"${mcpClientInfo.url}\"`\n )\n }\n\n await this.client?.close()\n this.clientConnectionP = undefined\n this.client = undefined\n }\n\n return this.ensureClientConnection(mcpClientInfo)\n }\n\n async isInitialized(): Promise {\n return !!(await this.ctx.storage.get('mcp-client-info'))\n }\n\n async ensureClientConnection(mcpClientInfo?: DurableMcpClientInfo) {\n if (this.clientConnectionP) return this.clientConnectionP\n\n mcpClientInfo ??=\n await this.ctx.storage.get('mcp-client-info')\n assert(mcpClientInfo, 500, 'DurableMcpClient has not been initialized')\n const { name, version, url } = mcpClientInfo\n\n this.client = new McpClient({\n name,\n version\n })\n\n // console.log('DurableMcpClient.ensureClientConnection', {\n // url,\n // headers: mcpClientInfo.headers\n // })\n const transport = new StreamableHTTPClientTransport(new URL(url), {\n requestInit: {\n headers: mcpClientInfo.headers\n }\n })\n this.clientConnectionP = this.client.connect(transport)\n await this.clientConnectionP\n }\n\n async callTool({\n name,\n args,\n metadata\n }: {\n name: string\n args: Record\n metadata: AgenticMcpRequestMetadata\n }): Promise {\n await this.ensureClientConnection()\n\n // console.log('DurableMcpClient.callTool', {\n // name,\n // args,\n // metadata\n // })\n\n const toolCallResponse = await this.client!.callTool({\n name,\n arguments: args,\n _meta: { agentic: metadata }\n })\n\n // TODO: The `McpToolCallResponse` type is seemingly too complex for the CF\n // serialization type inference to handle, so bypass it by serializing to\n // a string and parsing it on the other end.\n return JSON.stringify(toolCallResponse)\n }\n}\n\nexport const DurableMcpClient = Sentry.instrumentDurableObjectWithSentry(\n (env: RawEnv) => ({\n dsn: env.SENTRY_DSN,\n environment: env.ENVIRONMENT,\n integrations: [Sentry.extraErrorDataIntegration()]\n }),\n DurableMcpClientBase\n)\n" }, { "path": "apps/gateway/src/lib/durable-mcp-server.ts", "content": "import { assert, getRateLimitHeaders } from '@agentic/platform-core'\nimport { parseDeploymentIdentifier } from '@agentic/platform-validators'\nimport { Server } from '@modelcontextprotocol/sdk/server/index.js'\nimport {\n CallToolRequestSchema,\n ListToolsRequestSchema\n} from '@modelcontextprotocol/sdk/types.js'\nimport * as Sentry from '@sentry/cloudflare'\nimport { McpAgent } from 'agents/mcp'\n\nimport type { RawEnv } from './env'\nimport type {\n McpToolCallResponse,\n ResolvedMcpEdgeRequest,\n ResolvedOriginToolCallResult\n} from './types'\nimport { handleMcpToolCallError } from './handle-mcp-tool-call-error'\nimport { recordToolCallUsage } from './record-tool-call-usage'\nimport { resolveOriginToolCall } from './resolve-origin-tool-call'\nimport { transformHttpResponseToMcpToolCallResponse } from './transform-http-response-to-mcp-tool-call-response'\nimport { createAgenticMcpMetadata } from './utils'\n\nexport class DurableMcpServerBase extends McpAgent<\n RawEnv,\n never, // We aren't currently using local state, so set it to `never`.\n ResolvedMcpEdgeRequest\n> {\n protected _serverP = Promise.withResolvers()\n override server = this._serverP.promise\n\n // NOTE: This empty constructor is required for the Sentry wrapper to work.\n public constructor(state: DurableObjectState, env: RawEnv) {\n super(state, env)\n }\n\n override async init() {\n const { consumer, deployment, pricingPlan } = this.props\n const { projectIdentifier } = parseDeploymentIdentifier(\n deployment.identifier\n )\n\n const server = new Server(\n { name: projectIdentifier, version: deployment.version ?? '0.0.0' },\n {\n capabilities: {\n tools: {}\n }\n }\n )\n this._serverP.resolve(server)\n\n const tools = deployment.tools\n .map((tool) => {\n const toolConfig = deployment.toolConfigs.find(\n (toolConfig) => toolConfig.name === tool.name\n )\n\n if (toolConfig) {\n const pricingPlanToolOverride = pricingPlan\n ? toolConfig.pricingPlanOverridesMap?.[pricingPlan.slug]\n : undefined\n\n if (pricingPlanToolOverride?.enabled === true) {\n // Tool is explicitly enabled for the customer's pricing plan\n } else if (pricingPlanToolOverride?.enabled === false) {\n // Tool is disabled for the customer's pricing plan\n return undefined\n } else if (toolConfig.enabled === false) {\n // Tool is disabled for all pricing plans\n return undefined\n }\n }\n\n return tool\n })\n .filter(Boolean)\n\n server.setRequestHandler(ListToolsRequestSchema, async () => ({\n tools\n }))\n\n server.setRequestHandler(CallToolRequestSchema, async (request) => {\n const { name: toolName, arguments: args, _meta } = request.params\n const sessionId = this.ctx.id.toString()\n const tool = tools.find((tool) => tool.name === toolName)\n\n const cacheControl = (_meta?.agentic as any)?.headers?.['cache-control']\n let resolvedOriginToolCallResult: ResolvedOriginToolCallResult | undefined\n let toolCallResponse: McpToolCallResponse | undefined\n\n try {\n assert(tool, 404, `Unknown tool \"${toolName}\"`)\n\n resolvedOriginToolCallResult = await resolveOriginToolCall({\n ...this.props,\n tool,\n args,\n cacheControl,\n sessionId,\n env: this.env,\n waitUntil: this.ctx.waitUntil.bind(this.ctx)\n })\n\n if (resolvedOriginToolCallResult.originResponse) {\n toolCallResponse = await transformHttpResponseToMcpToolCallResponse({\n ...resolvedOriginToolCallResult,\n tool\n })\n } else {\n toolCallResponse = resolvedOriginToolCallResult.toolCallResponse\n assert(toolCallResponse, 500, 'Missing tool call response')\n }\n\n return toolCallResponse\n } catch (err: unknown) {\n // Gracefully handle tool call exceptions, whether they were thrown by\n // the origin server or internally by the gateway.\n toolCallResponse = handleMcpToolCallError(err, {\n toolName,\n env: this.env\n })\n\n return toolCallResponse\n } finally {\n assert(toolCallResponse, 500, 'Missing tool call response')\n\n // Augment the MCP tool call response with agentic metadata, which\n // makes it easier to debug tool calls and adds some much-needed HTTP\n // header-like functionality to tool call responses.\n toolCallResponse._meta = createAgenticMcpMetadata(\n {\n deploymentId: deployment.id,\n consumerId: consumer?.id,\n toolName,\n cacheStatus: resolvedOriginToolCallResult?.cacheStatus,\n headers: getRateLimitHeaders(\n resolvedOriginToolCallResult?.rateLimitResult\n )\n },\n toolCallResponse._meta\n )\n\n // Record tool call usage, whether the call was successful or not.\n recordToolCallUsage({\n ...this.props,\n tool,\n mcpToolCallResponse: toolCallResponse!,\n resolvedOriginToolCallResult,\n sessionId,\n env: this.env,\n waitUntil: this.ctx.waitUntil.bind(this.ctx)\n })\n }\n })\n }\n}\n\nexport const DurableMcpServer = Sentry.instrumentDurableObjectWithSentry(\n (env: RawEnv) => ({\n dsn: env.SENTRY_DSN,\n environment: env.ENVIRONMENT,\n integrations: [Sentry.extraErrorDataIntegration()]\n }),\n DurableMcpServerBase\n)\n" }, { "path": "apps/gateway/src/lib/env.ts", "content": "import type {\n AnalyticsEngineDataset,\n DurableObjectNamespace\n} from '@cloudflare/workers-types'\nimport type { Simplify } from 'type-fest'\nimport { parseZodSchema } from '@agentic/platform-core'\nimport {\n envSchema as baseEnvSchema,\n parseEnv as parseBaseEnv\n} from '@agentic/platform-hono'\nimport { z } from 'zod'\n\nexport const envSchema = baseEnvSchema\n .extend({\n AGENTIC_API_BASE_URL: z.string().url(),\n AGENTIC_API_KEY: z.string().nonempty(),\n\n STRIPE_SECRET_KEY: z.string().nonempty(),\n\n DO_RATE_LIMITER: z.custom((ns) =>\n isDurableObjectNamespace(ns)\n ),\n\n DO_MCP_SERVER: z.custom((ns) =>\n isDurableObjectNamespace(ns)\n ),\n\n DO_MCP_CLIENT: z.custom((ns) =>\n isDurableObjectNamespace(ns)\n ),\n\n AE_USAGE_DATASET: z.custom((ae) =>\n isAnalyticsEngineDataset(ae)\n )\n })\n .strip()\nexport type RawEnv = z.infer\n\nexport function isDurableObjectNamespace(\n namespace: unknown\n): namespace is DurableObjectNamespace {\n return (\n !!namespace &&\n typeof namespace === 'object' &&\n 'newUniqueId' in namespace &&\n typeof namespace.newUniqueId === 'function' &&\n 'idFromName' in namespace &&\n typeof namespace.idFromName === 'function'\n )\n}\n\nfunction isAnalyticsEngineDataset(ae: unknown): ae is AnalyticsEngineDataset {\n return !!ae && typeof ae === 'object' && 'writeDataPoint' in ae\n}\n\nexport function parseEnv(inputEnv: Record) {\n const baseEnv = parseBaseEnv({\n SERVICE: 'gateway',\n ...inputEnv\n })\n\n const env = parseZodSchema(\n envSchema,\n { ...inputEnv, ...baseEnv },\n {\n error: 'Invalid environment variables'\n }\n )\n\n const isStripeLive = env.STRIPE_SECRET_KEY.startsWith('sk_live_')\n\n return {\n ...baseEnv,\n ...env,\n isStripeLive\n }\n}\n\nexport type Env = Simplify>\n" }, { "path": "apps/gateway/src/lib/external/stripe.ts", "content": "import Stripe from 'stripe'\n\nimport type { RawEnv } from '../env'\n\nexport function createStripe(env: RawEnv): Stripe {\n return new Stripe(env.STRIPE_SECRET_KEY, {\n apiVersion: '2025-06-30.basil'\n })\n}\n" }, { "path": "apps/gateway/src/lib/fetch-cache.ts", "content": "import type { WaitUntil } from './types'\n\nexport async function fetchCache({\n cacheKey,\n fetchResponse,\n waitUntil\n}: {\n cacheKey?: Request\n fetchResponse: () => Promise\n waitUntil: WaitUntil\n}): Promise {\n const cache = caches.default\n let response: Response | undefined\n\n if (cacheKey) {\n response = await cache.match(cacheKey)\n }\n\n if (!response) {\n response = await fetchResponse()\n response = new Response(response.body, response)\n\n if (cacheKey) {\n if (response.headers.has('Cache-Control')) {\n // Note that cloudflare's `cache` should respect response headers.\n waitUntil(\n cache.put(cacheKey, response.clone()).catch((err) => {\n // eslint-disable-next-line no-console\n console.warn('cache put error', cacheKey, err)\n })\n )\n }\n\n response.headers.set('cf-cache-status', 'MISS')\n } else {\n response.headers.set('cf-cache-status', 'BYPASS')\n }\n }\n\n return response\n}\n" }, { "path": "apps/gateway/src/lib/get-admin-consumer.ts", "content": "import { assert, HttpError } from '@agentic/platform-core'\n\nimport type { AdminConsumer, GatewayHonoContext } from './types'\n\nexport async function getAdminConsumer(\n ctx: GatewayHonoContext,\n apiKey: string\n): Promise {\n const client = ctx.get('client')\n let consumer: AdminConsumer | undefined\n\n try {\n consumer = await client.adminGetConsumerByApiKey({\n apiKey,\n populate: ['user']\n })\n } catch (err: any) {\n if (err.response?.status === 404) {\n // Hide the underlying error message from the client\n throw new HttpError({\n statusCode: 404,\n message: `API key not found \"${apiKey}\"`,\n cause: err\n })\n }\n\n throw err\n }\n\n assert(consumer, 404, `API key not found \"${apiKey}\"`)\n return consumer\n}\n" }, { "path": "apps/gateway/src/lib/get-admin-deployment.ts", "content": "import type { AdminDeployment } from '@agentic/platform-types'\nimport { assert } from '@agentic/platform-core'\nimport { parseDeploymentIdentifier } from '@agentic/platform-validators'\n\nimport type { GatewayHonoContext } from './types'\n\nexport async function getAdminDeployment(\n ctx: GatewayHonoContext,\n identifier: string\n): Promise {\n const parsedDeploymentIdentifier = parseDeploymentIdentifier(identifier, {\n strict: true,\n errorStatusCode: 404\n })\n\n const client = ctx.get('client')\n const deployment = await client.adminGetDeploymentByIdentifier({\n deploymentIdentifier: parsedDeploymentIdentifier.deploymentIdentifier\n })\n assert(deployment, 404, `Deployment not found \"${identifier}\"`)\n\n return deployment\n}\n" }, { "path": "apps/gateway/src/lib/get-request-cache-key.ts", "content": "import { hashObject, sha256 } from '@agentic/platform-core'\nimport contentType from 'fast-content-type-parse'\n\nimport { normalizeUrl } from './normalize-url'\nimport { isRequestPubliclyCacheable } from './utils'\n\n// TODO: what is a reasonable upper bound for hashing the POST body size?\nconst MAX_POST_BODY_SIZE_BYTES = 10_000\n\nexport async function getRequestCacheKey(\n request: Request\n): Promise {\n try {\n if (!isRequestPubliclyCacheable(request)) {\n return\n }\n\n if (\n request.method === 'POST' ||\n request.method === 'PUT' ||\n request.method === 'PATCH'\n ) {\n const contentLength = Number.parseInt(\n request.headers.get('content-length') ?? '0'\n )\n\n if (contentLength < MAX_POST_BODY_SIZE_BYTES) {\n const { type } = contentType.safeParse(\n request.headers.get('content-type') || 'application/octet-stream'\n )\n let hash = '___AGENTIC_CACHE_KEY_EMPTY_BODY___'\n\n if (contentLength > 0) {\n if (type.includes('json')) {\n const bodyJson: any = await request.clone().json()\n hash = await hashObject(bodyJson)\n } else if (type.includes('text/')) {\n const bodyString = await request.clone().text()\n hash = await sha256(bodyString)\n } else {\n const bodyBuffer = await request.clone().arrayBuffer()\n hash = await sha256(bodyBuffer)\n }\n }\n\n const cacheUrl = new URL(request.url)\n cacheUrl.searchParams.set('x-agentic-cache-key', hash)\n const normalizedUrl = normalizeUrl(cacheUrl.toString())\n\n // Convert POST and PUT requests to GET with a query param containing\n // a hash of the request body. This enables us to cache these requests\n // more easily, since we want to move the the \"cacheability\" logic to a\n // higher-level, config-based approach. E.g., individual tools can\n // opt-in to aggressive caching by declaring themselves `pure` or\n // `immutable` regardless of the HTTP method used to call the tool.\n const newReq = normalizeRequestHeaders(\n new Request(normalizedUrl, {\n headers: request.headers,\n method: 'GET'\n })\n )\n\n return newReq\n }\n } else if (request.method === 'GET' || request.method === 'HEAD') {\n const url = request.url\n const normalizedUrl = normalizeUrl(url)\n\n if (url !== normalizedUrl) {\n return normalizeRequestHeaders(\n new Request(normalizedUrl, {\n method: request.method\n })\n )\n }\n }\n\n return normalizeRequestHeaders(new Request(request))\n } catch (err) {\n // eslint-disable-next-line no-console\n console.warn(\n 'warning: failed to compute cache key',\n request.method,\n request.url,\n err\n )\n }\n}\n\nconst requestHeaderWhitelist = new Set([\n 'cache-control',\n 'content-type',\n 'mcp-session-id'\n])\n\nfunction normalizeRequestHeaders(request: Request) {\n const headers = Object.fromEntries(request.headers.entries())\n const keys = Object.keys(headers)\n\n for (const key of keys) {\n if (!requestHeaderWhitelist.has(key)) {\n request.headers.delete(key)\n }\n }\n\n return request\n}\n" }, { "path": "apps/gateway/src/lib/get-tool-args-from-request.ts", "content": "import type { AdminDeployment, Tool } from '@agentic/platform-types'\nimport { assert, HttpError } from '@agentic/platform-core'\n\nimport type { GatewayHonoContext } from './types'\nimport { cfValidateJsonSchema } from './cf-validate-json-schema'\n\nexport async function getToolArgsFromRequest(\n ctx: GatewayHonoContext,\n {\n tool,\n deployment\n }: {\n tool: Tool\n deployment: AdminDeployment\n }\n): Promise> {\n const logger = ctx.get('logger')\n const request = ctx.req.raw\n assert(\n deployment.origin.type !== 'raw',\n 500,\n `Internal logic error for origin adapter type \"${deployment.origin.type}\"`\n )\n\n if (request.method === 'GET') {\n // Args will be coerced to match their expected types via\n // `cfValidateJsonSchemaObject` since all values will be strings.\n const incomingRequestArgsRaw = Object.fromEntries(\n new URL(request.url).searchParams.entries()\n )\n\n const toolConfig = deployment.toolConfigs.find(\n (toolConfig) => toolConfig.name === tool.name\n )\n\n // Validate incoming request params against the tool's input schema.\n const incomingRequestArgs = cfValidateJsonSchema>({\n schema: tool.inputSchema,\n data: incomingRequestArgsRaw,\n errorPrefix: `Invalid request parameters for tool \"${tool.name}\"`,\n coerce: true,\n strictAdditionalProperties:\n toolConfig?.inputSchemaAdditionalProperties === false\n })\n\n return incomingRequestArgs\n } else if (request.method === 'POST') {\n let incomingRequestArgsRaw: unknown = {}\n\n // TODO: verify content-type of request is application/json\n\n try {\n incomingRequestArgsRaw = (await request.json()) as Record\n } catch (err) {\n // Error if the request body is not JSON or is malformed.\n logger.error('Error parsing incoming request body', request, err)\n throw new HttpError({\n message: 'Invalid request body json',\n statusCode: 400,\n cause: err\n })\n }\n\n // console.log(\n // 'incomingRequestArgsRaw',\n // typeof incomingRequestArgsRaw,\n // request.headers,\n // incomingRequestArgsRaw\n // )\n\n // TODO: Proper support for empty params with POST requests\n assert(incomingRequestArgsRaw, 400, 'Invalid empty request body')\n assert(\n typeof incomingRequestArgsRaw === 'object',\n 400,\n `Invalid request body: expected type \"object\", received type \"${typeof incomingRequestArgsRaw}\"`\n )\n assert(!Array.isArray(incomingRequestArgsRaw), 400, 'Invalid request body')\n return incomingRequestArgsRaw\n } else {\n assert(false, 405, `HTTP method \"${request.method}\" not allowed`)\n }\n}\n" }, { "path": "apps/gateway/src/lib/get-tool.ts", "content": "import type { AdminDeployment, Tool } from '@agentic/platform-types'\nimport { assert } from '@agentic/platform-core'\n\nexport function getTool({\n toolName,\n deployment,\n method,\n strict = false\n}: {\n toolName: string\n deployment: AdminDeployment\n method?: string\n strict?: boolean\n}): Tool {\n assert(toolName, 404, `Invalid input empty tool name`)\n\n let tool = deployment.tools.find((tool) => tool.name === toolName)\n\n if (!tool && !strict) {\n if (deployment.origin.type === 'openapi') {\n // Check if the tool name is an operation ID since it's easy to forget\n // and mistake the two (`getPost` vs `get_post`).\n // TODO: In the future, we should be consistent about how we handle tool\n // names. Do we always allow camelCase and snake_case, or do we just allow\n // alternates for operationIds? We should also make sure alternates are\n // uniquely defined.\n const operationToolName = Object.entries(\n deployment.origin.toolToOperationMap\n ).find(([_, operation]) => {\n if (operation.operationId === toolName) {\n return true\n }\n\n return false\n })?.[0]\n\n if (operationToolName) {\n tool = deployment.tools.find((tool) => tool.name === operationToolName)\n\n assert(\n tool,\n 404,\n `Tool not found \"${toolName}\" for deployment \"${deployment.identifier}\": did you mean \"${operationToolName}\"?`\n )\n }\n }\n }\n\n assert(\n tool,\n 404,\n `Tool not found \"${toolName}\" for deployment \"${deployment.identifier}\"`\n )\n\n if (deployment.origin.type === 'openapi') {\n const operation = deployment.origin.toolToOperationMap[tool.name]\n assert(\n operation,\n 404,\n `OpenAPI operation not found for tool \"${tool.name}\"`\n )\n if (method) {\n assert(\n method === 'GET' || method === 'POST',\n 405,\n `Invalid HTTP method \"${method}\" for tool \"${tool.name}\"`\n )\n }\n }\n\n return tool\n}\n" }, { "path": "apps/gateway/src/lib/handle-mcp-tool-call-error.ts", "content": "import type { ContentfulStatusCode } from 'hono/utils/http-status'\nimport { HttpError } from '@agentic/platform-core'\nimport { suppressedHttpStatuses } from '@agentic/platform-hono'\nimport * as Sentry from '@sentry/cloudflare'\nimport { HTTPException } from 'hono/http-exception'\nimport { HTTPError } from 'ky'\n\nimport type { RawEnv } from './env'\nimport type { McpToolCallResponse } from './types'\n\n/**\n * Turns a thrown error into an MCP error tool call response, and attempts to\n * capture as much context as possible for potential debugging.\n *\n * @note This function is synchronous and should never throw.\n */\nexport function handleMcpToolCallError(\n err: any,\n {\n toolName,\n env\n }: {\n toolName: string\n env: RawEnv\n }\n): McpToolCallResponse {\n const isProd = env.ENVIRONMENT === 'production'\n let message = 'Internal Server Error'\n let status: ContentfulStatusCode = 500\n\n const res: McpToolCallResponse = {\n _meta: {\n agentic: {\n toolName,\n headers: {}\n }\n },\n isError: true,\n content: [\n {\n type: 'text',\n text: message\n }\n ]\n }\n\n if (err instanceof HttpError) {\n message = err.message\n status = err.statusCode as ContentfulStatusCode\n\n // This is where rate-limit headers will be set, since `RateLimitError`\n // is a subclass of `HttpError`.\n if (err.headers) {\n for (const [key, value] of Object.entries(err.headers)) {\n ;(res._meta!.agentic as any).headers[key] = value\n }\n }\n } else if (err instanceof HTTPException) {\n message = err.message\n status = err.status\n } else if (err instanceof HTTPError) {\n message = err.message\n status = err.response.status as ContentfulStatusCode\n } else if (!isProd && err.message) {\n message = err.message\n }\n\n if (!Number.isSafeInteger(status)) {\n status = 500\n }\n\n if (!suppressedHttpStatuses.has(status)) {\n if (status >= 500) {\n // eslint-disable-next-line no-console\n console.error(`mcp tool call \"${toolName}\" error`, status, err)\n\n if (isProd) {\n try {\n Sentry.captureException(err)\n } catch (err_) {\n // eslint-disable-next-line no-console\n console.error('Error Sentry.captureException failed', err, err_)\n }\n }\n } else {\n // eslint-disable-next-line no-console\n console.warn(`mcp tool call \"${toolName}\" warning`, status, err)\n }\n }\n\n ;(res._meta!.agentic as any).status = status\n res.content = [\n {\n type: 'text',\n text: message\n }\n ]\n\n return res\n}\n" }, { "path": "apps/gateway/src/lib/normalize-url.test.ts", "content": "import { expect, test } from 'vitest'\n\nimport { normalizeUrl } from './normalize-url'\n\ntest('main', () => {\n expect(normalizeUrl('http://sindresorhus.com')).toBe(\n 'https://sindresorhus.com'\n )\n expect(normalizeUrl('http://sindresorhus.com ')).toBe(\n 'https://sindresorhus.com'\n )\n expect(normalizeUrl('http://sindresorhus.com.')).toBe(\n 'https://sindresorhus.com'\n )\n expect(normalizeUrl('http://SindreSorhus.com')).toBe(\n 'https://sindresorhus.com'\n )\n expect(normalizeUrl('http://sindresorhus.com')).toBe(\n 'https://sindresorhus.com'\n )\n expect(normalizeUrl('HTTP://sindresorhus.com')).toBe(\n 'https://sindresorhus.com'\n )\n\n // TODO: why isn't this parsed correctly by Node.js URL?\n // t.is(normalizeUrl('//sindresorhus.com'), 'https://sindresorhus.com')\n\n expect(normalizeUrl('http://sindresorhus.com')).toBe(\n 'https://sindresorhus.com'\n )\n expect(normalizeUrl('http://sindresorhus.com:80')).toBe(\n 'https://sindresorhus.com'\n )\n expect(normalizeUrl('https://sindresorhus.com:443')).toBe(\n 'https://sindresorhus.com'\n )\n expect(normalizeUrl('ftp://sindresorhus.com:21')).toBe(\n 'ftp://sindresorhus.com'\n )\n expect(normalizeUrl('https://sindresorhus.com/foo/')).toBe(\n 'https://sindresorhus.com/foo'\n )\n expect(normalizeUrl('http://sindresorhus.com/?foo=bar baz')).toBe(\n 'https://sindresorhus.com/?foo=bar+baz'\n )\n expect(normalizeUrl('https://foo.com/https://bar.com')).toBe(\n 'https://foo.com/https://bar.com'\n )\n expect(normalizeUrl('https://foo.com/https://bar.com/foo//bar')).toBe(\n 'https://foo.com/https://bar.com/foo/bar'\n )\n expect(normalizeUrl('https://foo.com/http://bar.com')).toBe(\n 'https://foo.com/http://bar.com'\n )\n expect(normalizeUrl('https://foo.com/http://bar.com/foo//bar')).toBe(\n 'https://foo.com/http://bar.com/foo/bar'\n )\n expect(normalizeUrl('https://foo.com/http://bar.com/foo//bar')).toBe(\n 'https://foo.com/http://bar.com/foo/bar'\n )\n expect(normalizeUrl('https://sindresorhus.com/%7Efoo/')).toBe(\n 'https://sindresorhus.com/~foo'\n )\n expect(normalizeUrl('https://sindresorhus.com/?')).toBe(\n 'https://sindresorhus.com'\n )\n expect(normalizeUrl('https://Γͺxample.com')).toBe('https://xn--xample-hva.com')\n expect(\n normalizeUrl('https://sindresorhus.com/?b=bar&a=foo'),\n 'https://sindresorhus.com/?a=foo&b=bar'\n )\n expect(normalizeUrl('https://sindresorhus.com/?foo=bar*|<>:\"')).toBe(\n 'https://sindresorhus.com/?foo=bar*%7C%3C%3E%3A%22'\n )\n expect(normalizeUrl('https://sindresorhus.com:5000')).toBe(\n 'https://sindresorhus.com:5000'\n )\n expect(normalizeUrl('https://sindresorhus.com/foo#bar')).toBe(\n 'https://sindresorhus.com/foo#bar'\n )\n expect(normalizeUrl('https://sindresorhus.com/foo/bar/../baz')).toBe(\n 'https://sindresorhus.com/foo/baz'\n )\n expect(normalizeUrl('https://sindresorhus.com/foo/bar/./baz')).toBe(\n 'https://sindresorhus.com/foo/bar/baz'\n )\n expect(\n normalizeUrl(\n 'https://i.vimeocdn.com/filter/overlay?src0=https://i.vimeocdn.com/video/598160082_1280x720.jpg&src1=https://f.vimeocdn.com/images_v6/share/play_icon_overlay.png'\n )\n ).toBe(\n 'https://i.vimeocdn.com/filter/overlay?src0=https%3A%2F%2Fi.vimeocdn.com%2Fvideo%2F598160082_1280x720.jpg&src1=https%3A%2F%2Ff.vimeocdn.com%2Fimages_v6%2Fshare%2Fplay_icon_overlay.png'\n )\n})\n\ntest('removeTrailingSlash and removeDirectoryIndex options)', () => {\n expect(normalizeUrl('https://sindresorhus.com/path/')).toBe(\n 'https://sindresorhus.com/path'\n )\n expect(normalizeUrl('https://sindresorhus.com/#/path/')).toBe(\n 'https://sindresorhus.com/#/path/'\n )\n expect(normalizeUrl('https://sindresorhus.com/foo/#/bar/')).toBe(\n 'https://sindresorhus.com/foo#/bar/'\n )\n})\n\ntest('sortQueryParameters', () => {\n expect(normalizeUrl('https://sindresorhus.com/?a=Z&b=Y&c=X&d=W')).toBe(\n 'https://sindresorhus.com/?a=Z&b=Y&c=X&d=W'\n )\n expect(normalizeUrl('https://sindresorhus.com/?b=Y&c=X&a=Z&d=W')).toBe(\n 'https://sindresorhus.com/?a=Z&b=Y&c=X&d=W'\n )\n expect(normalizeUrl('https://sindresorhus.com/?a=Z&d=W&b=Y&c=X')).toBe(\n 'https://sindresorhus.com/?a=Z&b=Y&c=X&d=W'\n )\n expect(normalizeUrl('https://sindresorhus.com/')).toBe(\n 'https://sindresorhus.com'\n )\n})\n\ntest('invalid urls', () => {\n expect(() => {\n normalizeUrl('http://')\n }).toThrow('Invalid URL')\n\n expect(() => {\n normalizeUrl('/')\n }).toThrow('Invalid URL')\n\n expect(() => {\n normalizeUrl('/relative/path/')\n }).toThrow('Invalid URL')\n})\n\ntest('remove duplicate pathname slashes', () => {\n expect(normalizeUrl('https://sindresorhus.com////foo/bar')).toBe(\n 'https://sindresorhus.com/foo/bar'\n )\n expect(normalizeUrl('https://sindresorhus.com////foo////bar')).toBe(\n 'https://sindresorhus.com/foo/bar'\n )\n expect(normalizeUrl('ftp://sindresorhus.com//foo')).toBe(\n 'ftp://sindresorhus.com/foo'\n )\n expect(normalizeUrl('https://sindresorhus.com:5000///foo')).toBe(\n 'https://sindresorhus.com:5000/foo'\n )\n expect(normalizeUrl('https://sindresorhus.com///foo')).toBe(\n 'https://sindresorhus.com/foo'\n )\n expect(normalizeUrl('https://sindresorhus.com:5000//foo')).toBe(\n 'https://sindresorhus.com:5000/foo'\n )\n expect(normalizeUrl('https://sindresorhus.com//foo')).toBe(\n 'https://sindresorhus.com/foo'\n )\n})\n" }, { "path": "apps/gateway/src/lib/normalize-url.ts", "content": "/**\n * Stripped down version of [normalize-url](https://github.com/sindresorhus/normalize-url)\n * by sindresorhus\n *\n * - always converts http => https\n * - removed unused options\n * - removed dataURL support\n */\nexport function normalizeUrl(url: string): string {\n const urlObj = new URL(url)\n\n if (urlObj.protocol === 'http:') {\n urlObj.protocol = 'https:'\n }\n\n /*\n // Remove auth\n // TODO: Cloudflare Workers seems to have a subtle bug where if you set URL.username and\n // URL.password at all, it will include the @ authentication prefix in the resulting URL.\n // This does not repro in normal web or Node.js contexts.\n if (options.stripAuthentication) {\n urlObj.username = ''\n urlObj.password = ''\n }\n */\n\n // Remove duplicate slashes if not preceded by a protocol\n if (urlObj.pathname) {\n urlObj.pathname = urlObj.pathname.replaceAll(/(? = {\n current: 0\n}\n\nexport class DurableRateLimiterBase extends DurableObject {\n async update({\n intervalMs,\n cost = 1\n }: {\n intervalMs: number\n cost?: number\n }): Promise {\n const existingState = await this.ctx.storage.get('value')\n const currentAlarm = await this.ctx.storage.getAlarm()\n\n const now = Date.now()\n const updatedResetTimeMs = now + intervalMs\n\n // Update the payload\n const state =\n existingState && currentAlarm && currentAlarm > now\n ? existingState\n : {\n current: 0,\n resetTimeMs: updatedResetTimeMs\n }\n state.current += cost\n\n // Update the alarm\n if (!currentAlarm || currentAlarm <= now) {\n await this.ctx.storage.setAlarm(state.resetTimeMs)\n }\n\n await this.ctx.storage.put('value', state)\n\n // const updatedState = await this.ctx.storage.get('value')\n // console.log('DurableRateLimiter.update', this.ctx.id.toString(), {\n // existingState,\n // state,\n // updatedState,\n // now,\n // intervalMs,\n // updatedResetTimeMs,\n // currentAlarm\n // })\n\n return state\n }\n\n async reset() {\n // console.log('reset rate-limit', this.ctx.id)\n await this.ctx.storage.put('value', initialState)\n }\n\n override async alarm() {\n await this.reset()\n }\n}\n\nexport const DurableRateLimiter = Sentry.instrumentDurableObjectWithSentry(\n (env: RawEnv) => ({\n dsn: env.SENTRY_DSN,\n environment: env.ENVIRONMENT,\n integrations: [Sentry.extraErrorDataIntegration()]\n }),\n DurableRateLimiterBase\n)\n" }, { "path": "apps/gateway/src/lib/rate-limits/enforce-rate-limit.ts", "content": "import type { RateLimit } from '@agentic/platform-types'\nimport { assert } from '@agentic/platform-core'\n\nimport type { RawEnv } from '../env'\nimport type {\n RateLimitCache,\n RateLimitResult,\n RateLimitState,\n WaitUntil\n} from '../types'\nimport type { DurableRateLimiterBase } from './durable-rate-limiter'\n\n/**\n * This maps persists across worker executions and is used for caching active\n * rate limits. It's purely a performance optimization and is not used as a\n * source of truth.\n */\nconst globalRateLimitCache: RateLimitCache = new Map()\n\nexport async function enforceRateLimit({\n rateLimit,\n id,\n cost = 1,\n env,\n cache = globalRateLimitCache,\n waitUntil\n}: {\n /**\n * The rate limit to enforce.\n */\n rateLimit: RateLimit\n\n /**\n * The identifier used to uniquely track this rate limit.\n */\n id: string\n\n /**\n * The cost of the request.\n *\n * @default 1\n */\n cost?: number\n\n env: RawEnv\n cache?: RateLimitCache\n waitUntil: WaitUntil\n}): Promise {\n if (rateLimit.enabled === false) {\n return\n }\n\n assert(id, 400, 'Unauthenticated requests must have a valid IP address')\n\n const { interval, limit, mode } = rateLimit\n const intervalMs = interval * 1000\n const now = Date.now()\n\n const initialRateLimitState = cache.get(id) ?? {\n current: 0,\n resetTimeMs: now + intervalMs\n }\n let rateLimitState = initialRateLimitState\n\n function updateCache(info: RateLimitState) {\n cache.set(id, info)\n rateLimitState = info\n }\n\n /**\n * Short-circuit check for active rate limits that are currently exceeded.\n *\n * This might not happen too often, but in extreme cases the cache should hit\n * and we can skip the request to the durable object entirely, which speeds\n * everything up and is cheaper for us.\n */\n if (rateLimitState.current > limit && now <= rateLimitState.resetTimeMs) {\n return {\n id,\n passed: false,\n current: rateLimitState.current,\n limit,\n resetTimeMs: rateLimitState.resetTimeMs,\n intervalMs,\n remaining: Math.max(0, limit - rateLimitState.current)\n }\n }\n\n const durableRateLimiterId = env.DO_RATE_LIMITER.idFromName(id)\n const durableRateLimiter = env.DO_RATE_LIMITER.get(\n durableRateLimiterId\n ) as DurableObjectStub\n\n const updatedRateLimitStateP = durableRateLimiter.update({ cost, intervalMs })\n\n if (mode === 'strict') {\n const updatedRateLimitState = await updatedRateLimitStateP\n updateCache(updatedRateLimitState)\n } else {\n waitUntil(\n updatedRateLimitStateP\n .then((updatedRateLimitState: RateLimitState) => {\n updateCache(updatedRateLimitState)\n })\n .catch((err: Error) => {\n // eslint-disable-next-line no-console\n console.error(\n `error updating rate limit for id \"${id}\": ${err.message}`\n )\n })\n )\n\n rateLimitState.current += cost\n updateCache(rateLimitState)\n }\n\n // console.log('rateLimit', {\n // id,\n // initial: initialRateLimitState,\n // current: rateLimitState,\n // mode,\n // cost\n // })\n\n return {\n id,\n passed: rateLimitState.current <= limit,\n limit,\n current: rateLimitState.current,\n remaining: Math.max(0, limit - rateLimitState.current),\n resetTimeMs: rateLimitState.resetTimeMs,\n intervalMs\n }\n}\n" }, { "path": "apps/gateway/src/lib/record-tool-call-usage.ts", "content": "import type {\n AdminDeployment,\n PricingPlan,\n Tool\n} from '@agentic/platform-types'\n\nimport type { RawEnv } from './env'\nimport type {\n AdminConsumer,\n EdgeRequestMode,\n McpToolCallResponse,\n ResolvedOriginToolCallResult,\n WaitUntil\n} from './types'\nimport { createAgenticClient } from './agentic-client'\nimport { createStripe } from './external/stripe'\n\n/**\n * Records usage data to Cloudflare Analytics Engine.\n *\n * Also asynchronously activates the `consumer` if it's present and hasn't been\n * activated yet.\n *\n * Also asynchronously reports usage to Stripe if `consumer` is present and\n * `resolvedOriginToolCallResult.reportUsage` is `true`.\n *\n * @note This function should be **synchronous**. Any asynchronous operations\n * should use the `waitUntil` callback to not block the response from returning\n * to the end user promptly.\n *\n * @see https://developers.cloudflare.com/analytics/analytics-engine/limits/\n */\nexport function recordToolCallUsage({\n edgeRequestMode,\n deployment,\n consumer,\n tool,\n resolvedOriginToolCallResult,\n httpResponse,\n mcpToolCallResponse,\n ip,\n sessionId,\n requestId,\n env,\n waitUntil\n}: {\n edgeRequestMode: EdgeRequestMode\n deployment: AdminDeployment\n consumer?: AdminConsumer\n pricingPlan?: PricingPlan\n tool?: Tool\n resolvedOriginToolCallResult?: ResolvedOriginToolCallResult\n httpResponse?: Response\n mcpToolCallResponse?: McpToolCallResponse\n ip?: string\n sessionId: string\n requestId?: string\n env: RawEnv\n waitUntil: WaitUntil\n} & (\n | {\n // For http requests, an http response is required.\n edgeRequestMode: 'HTTP'\n httpResponse: Response\n mcpToolCallResponse?: never\n }\n | {\n // For mcp cool call requests, an mcp tool call response is required.\n edgeRequestMode: 'MCP'\n httpResponse?: never\n mcpToolCallResponse: McpToolCallResponse\n }\n)): void {\n const { projectId } = deployment\n const {\n rateLimitResult,\n cacheStatus,\n originTimespanMs,\n toolCallArgs,\n numRequestsCost,\n reportUsage\n } = resolvedOriginToolCallResult ?? {\n numRequestsCost: 0,\n reportUsage: false\n }\n mcpToolCallResponse ??= resolvedOriginToolCallResult?.toolCallResponse\n\n const requestSize = toolCallArgs ? JSON.stringify(toolCallArgs).length : 0\n const responseSize =\n Number.parseInt(httpResponse?.headers.get('content-length') ?? '0') ||\n (mcpToolCallResponse ? JSON.stringify(mcpToolCallResponse).length : 0)\n\n // The string dimensions used for grouping and filtering (sometimes called\n // labels in other metrics systems).\n // NOTE: The ordering of these fields is important and must remain consistent!\n // Max of 20 blobs with total size <= 5120 bytes.\n const blobs = [\n // Project ID of the request\n projectId,\n\n // Deployment ID of the request\n deployment.id,\n\n // Name of the tool that was called\n tool?.name ?? null,\n\n // Whether this request was made via MCP or HTTP\n edgeRequestMode,\n\n // IP address or session ID\n ip ?? sessionId,\n\n // Request customer ID\n consumer?.id ?? null,\n\n // Request customer subscription plan\n consumer?.plan ?? null,\n\n // Request customer subscription status\n consumer?.stripeStatus ?? null,\n\n // Whether the request was rate-limited\n rateLimitResult\n ? rateLimitResult.passed\n ? 'rl-passed'\n : 'rl-exceeded'\n : mcpToolCallResponse?._meta?.status === 429\n ? 'rl-exceeded'\n : null,\n\n // Whether the request hit the cache\n cacheStatus ?? null,\n\n // HTTP response status\n httpResponse?.status?.toString() ||\n (mcpToolCallResponse\n ? mcpToolCallResponse._meta?.status?.toString() ||\n (mcpToolCallResponse?.isError ? 'error' : '200')\n : 'error')\n ]\n\n // Numberic values to record in this data point.\n // NOTE: The ordering of these fields is important and must remain consistent!\n const doubles = [\n // Origin timespan in milliseconds\n originTimespanMs ?? 0,\n\n // Request bandwidth in bytes\n requestSize,\n\n // Response bandwidth in bytes\n responseSize,\n\n // Total bandwidth in bytes\n // TODO: Correctly calculate total bandwidth using `content-length`\n requestSize + responseSize,\n\n // Number of requests cost\n numRequestsCost ?? 0\n ]\n\n // Cloudflare Analytics Engine only supports writing a single index at a time,\n // so we associate this usage with the project.\n // TODO: Should we also index based on customer ID / IP? Or is being able to\n // filter by these fields in the project's `blobs` enough?\n env.AE_USAGE_DATASET.writeDataPoint({\n indexes: [projectId],\n blobs,\n doubles\n })\n\n if (consumer && !consumer.activated) {\n const client = createAgenticClient({\n env,\n cache: caches.default,\n waitUntil,\n isCachingEnabled: false\n })\n\n // If there's a consumer and it hasn't been activated yet, make sure it's\n // activated. This may be called multiple times if the consumer is cached,\n // but this method is intentionally idempotent, and we don't cache non-\n // activated consumers for long, so it shouldn't be a problem.\n waitUntil(client.adminActivateConsumer({ consumerId: consumer.id }))\n }\n\n if (consumer && reportUsage) {\n const stripe = createStripe(env)\n\n const pricingPlanLineItemSlug = 'requests'\n const eventName = `meter-${projectId}-${pricingPlanLineItemSlug}`\n const identifier = requestId\n ? `${requestId}:${consumer.id}:${tool?.name || 'unknown-tool'}`\n : undefined\n\n // Report usage to Stripe asynchronously.\n waitUntil(\n stripe.billing.meterEvents.create({\n event_name: eventName,\n identifier,\n payload: {\n value: numRequestsCost.toString(),\n stripe_customer_id: consumer._stripeCustomerId\n }\n })\n )\n }\n}\n" }, { "path": "apps/gateway/src/lib/reset.d.ts", "content": "import '@fisch0920/config/ts-reset'\n" }, { "path": "apps/gateway/src/lib/resolve-edge-request.ts", "content": "import type { AdminDeployment, PricingPlan } from '@agentic/platform-types'\nimport { assert } from '@agentic/platform-core'\nimport { parseToolIdentifier } from '@agentic/platform-validators'\n\nimport type {\n AdminConsumer,\n GatewayHonoContext,\n ResolvedEdgeRequest\n} from './types'\nimport { getAdminConsumer } from './get-admin-consumer'\nimport { getAdminDeployment } from './get-admin-deployment'\n\n/**\n * Resolves an input HTTP request to a specific deployment and edge request\n * mode (MCP or HTTP).\n */\nexport async function resolveEdgeRequest(\n ctx: GatewayHonoContext\n): Promise {\n const requestUrl = new URL(ctx.req.url)\n const { pathname } = requestUrl\n const requestedToolIdentifier = pathname.replace(/^\\//, '').replace(/\\/$/, '')\n const parsedToolIdentifier = parseToolIdentifier(requestedToolIdentifier)\n\n const deployment = await getAdminDeployment(\n ctx,\n parsedToolIdentifier.deploymentIdentifier\n )\n\n const edgeRequestMode =\n parsedToolIdentifier.toolName === 'mcp' ? 'MCP' : 'HTTP'\n\n return {\n edgeRequestMode,\n parsedToolIdentifier,\n deployment,\n requestId: ctx.get('requestId'),\n ip: ctx.get('ip')\n }\n}\n\n/**\n * Resolves a consumer and pricing plan for an edge request.\n */\nexport async function resolveConsumerForEdgeRequest(\n ctx: GatewayHonoContext,\n {\n deployment,\n apiKey\n }: {\n deployment: AdminDeployment\n apiKey?: string\n }\n): Promise<{\n consumer?: AdminConsumer\n pricingPlan?: PricingPlan\n}> {\n let pricingPlan: PricingPlan | undefined\n let consumer: AdminConsumer | undefined\n\n if (apiKey) {\n consumer = await getAdminConsumer(ctx, apiKey)\n assert(consumer, 401, `Invalid API key \"${apiKey}\"`)\n assert(\n consumer.isStripeSubscriptionActive,\n 402,\n `API key \"${apiKey}\" does not have an active subscription`\n )\n assert(\n consumer.projectId === deployment.projectId,\n 403,\n `API key \"${apiKey}\" is not authorized for project \"${deployment.projectId}\"`\n )\n\n // TODO: Ensure that consumer.plan is compatible with the target deployment?\n // TODO: This could definitely cause issues when changing pricing plans.\n\n pricingPlan = deployment.pricingPlans.find(\n (pricingPlan) => consumer!.plan === pricingPlan.slug\n )\n\n // assert(\n // pricingPlan,\n // 403,\n // `Auth token \"${token}\" unable to find matching pricing plan for project \"${deployment.project}\"`\n // )\n } else {\n // For unauthenticated requests, default to a free pricing plan if available.\n pricingPlan = deployment.pricingPlans.find((plan) => plan.slug === 'free')\n }\n\n return {\n consumer,\n pricingPlan\n }\n}\n" }, { "path": "apps/gateway/src/lib/resolve-http-edge-request.ts", "content": "import { assert } from '@agentic/platform-core'\n\nimport type {\n GatewayHonoContext,\n ResolvedEdgeRequest,\n ResolvedHttpEdgeRequest\n} from './types'\nimport { getTool } from './get-tool'\nimport { getToolArgsFromRequest } from './get-tool-args-from-request'\nimport { resolveConsumerForEdgeRequest } from './resolve-edge-request'\nimport { isRequestPubliclyCacheable } from './utils'\n\n/**\n * Resolves an input HTTP request to a specific deployment, tool call, consumer,\n * and pricing plan.\n */\nexport async function resolveHttpEdgeRequest(\n ctx: GatewayHonoContext,\n resolvedEdgeRequest: ResolvedEdgeRequest\n): Promise {\n assert(\n resolvedEdgeRequest.edgeRequestMode === 'HTTP',\n 500,\n `Internal error: Invalid edge request mode \"${resolvedEdgeRequest.edgeRequestMode}\" (expected \"HTTP\")`\n )\n const logger = ctx.get('logger')\n const ip = ctx.get('ip')\n\n const cacheControl = isRequestPubliclyCacheable(ctx.req.raw)\n ? ctx.req.header('cache-control')\n : 'no-store'\n\n const { deployment, parsedToolIdentifier } = resolvedEdgeRequest\n const { toolName } = parsedToolIdentifier\n const { method } = ctx.req\n\n const tool = getTool({\n method,\n deployment,\n toolName\n })\n\n logger.debug('request', {\n method,\n deploymentIdentifier: deployment.identifier,\n toolName,\n tool\n })\n\n const apiKey = (ctx.req.header('authorization') || '')\n .replace(/^Bearer /i, '')\n .trim()\n\n const { consumer, pricingPlan } = await resolveConsumerForEdgeRequest(ctx, {\n deployment,\n apiKey\n })\n\n if (consumer) {\n if (!ctx.get('sessionId')) {\n ctx.set('sessionId', `${consumer.id}:${deployment.id}`)\n }\n } else {\n if (!ctx.get('sessionId')) {\n assert(ip, 500, 'IP address is required for unauthenticated requests')\n ctx.set('sessionId', `${ip}:${deployment.projectId}`)\n }\n }\n\n // Parse tool call arguments from the request body.\n const toolCallArgs = await getToolArgsFromRequest(ctx, { tool, deployment })\n\n return {\n ...resolvedEdgeRequest,\n edgeRequestMode: 'HTTP',\n consumer,\n pricingPlan,\n tool,\n toolCallArgs,\n cacheControl\n }\n}\n" }, { "path": "apps/gateway/src/lib/resolve-mcp-edge-request.ts", "content": "import { assert } from '@agentic/platform-core'\n\nimport type {\n GatewayHonoContext,\n ResolvedEdgeRequest,\n ResolvedMcpEdgeRequest\n} from './types'\nimport { resolveConsumerForEdgeRequest } from './resolve-edge-request'\n\nexport async function resolveMcpEdgeRequest(\n ctx: GatewayHonoContext,\n resolvedEdgeRequest: ResolvedEdgeRequest\n): Promise {\n assert(\n resolvedEdgeRequest.edgeRequestMode === 'MCP',\n 500,\n `Internal error: Invalid edge request mode \"${resolvedEdgeRequest.edgeRequestMode}\" (expected \"MCP\")`\n )\n\n const { deployment } = resolvedEdgeRequest\n\n // TODO: Should MCP edge requests also support Authorization header?\n const apiKey = ctx.req.query('apiKey')?.trim()\n\n const { consumer, pricingPlan } = await resolveConsumerForEdgeRequest(ctx, {\n deployment,\n apiKey\n })\n\n return {\n ...resolvedEdgeRequest,\n edgeRequestMode: 'MCP',\n consumer,\n pricingPlan\n }\n}\n" }, { "path": "apps/gateway/src/lib/resolve-origin-tool-call.ts", "content": "import type {\n AdminDeployment,\n AgenticMcpRequestMetadata,\n PricingPlan,\n Tool\n} from '@agentic/platform-types'\nimport type { DurableObjectStub } from '@cloudflare/workers-types'\nimport { assert, RateLimitError } from '@agentic/platform-core'\nimport { parseDeploymentIdentifier } from '@agentic/platform-validators'\n\nimport type { DurableMcpClientBase } from './durable-mcp-client'\nimport type { RawEnv } from './env'\nimport type {\n AdminConsumer,\n CacheStatus,\n McpToolCallResponse,\n RateLimitResult,\n ResolvedOriginToolCallResult,\n ToolCallArgs,\n WaitUntil\n} from './types'\nimport { cfValidateJsonSchema } from './cf-validate-json-schema'\nimport { createHttpRequestForOpenAPIOperation } from './create-http-request-for-openapi-operation'\nimport { fetchCache } from './fetch-cache'\nimport { getRequestCacheKey } from './get-request-cache-key'\nimport { enforceRateLimit } from './rate-limits/enforce-rate-limit'\nimport { updateOriginRequest } from './update-origin-request'\nimport {\n isCacheControlPubliclyCacheable,\n isResponsePubliclyCacheable\n} from './utils'\n\nexport async function resolveOriginToolCall({\n tool,\n args,\n deployment,\n consumer,\n pricingPlan,\n ip,\n sessionId,\n env,\n cacheControl,\n waitUntil\n}: {\n tool: Tool\n args?: ToolCallArgs\n deployment: AdminDeployment\n consumer?: AdminConsumer\n pricingPlan?: PricingPlan\n ip?: string\n sessionId: string\n env: RawEnv\n cacheControl?: string\n waitUntil: WaitUntil\n}): Promise {\n // TODO: consider moving all of this per-request logic to a diff method since\n // it's not specific to tool calls. eg, other MCP requests may still need to\n // be rate-limited / cached / tracked / etc.\n\n const { origin } = deployment\n // TODO: make this configurable via `ToolConfig.cost`\n const numRequestsCost = 1\n let rateLimit = deployment.defaultRateLimit\n let rateLimitResult: RateLimitResult | undefined\n let cacheStatus: CacheStatus | undefined\n let reportUsage = true\n\n // Resolve rate limit and whether to report `requests` usage based on the\n // customer's pricing plan and deployment config.\n if (pricingPlan) {\n if (pricingPlan.rateLimit) {\n rateLimit = pricingPlan.rateLimit\n }\n\n const requestsLineItem = pricingPlan.lineItems.find(\n (lineItem) => lineItem.slug === 'requests'\n )\n\n if (!requestsLineItem) {\n // No `requests` line-item, so we don't report usage for this tool.\n reportUsage = false\n }\n }\n\n const toolConfig = deployment.toolConfigs.find(\n (toolConfig) => toolConfig.name === tool.name\n )\n\n if (toolConfig) {\n if (toolConfig.reportUsage !== undefined) {\n reportUsage &&= !!toolConfig.reportUsage\n }\n\n if (toolConfig.rateLimit !== undefined) {\n rateLimit = toolConfig.rateLimit\n }\n\n if (cacheControl) {\n if (!isCacheControlPubliclyCacheable(cacheControl)) {\n // Incoming request explicitly requests to bypass the gateway's cache.\n cacheStatus = 'BYPASS'\n } else {\n // TODO: Should we allow incoming cache-control headers to override the\n // gateway's cache behavior?\n }\n } else {\n // If the incoming request doesn't specify a desired `cache-control`,\n // then use a default based on the tool's configured settings.\n if (toolConfig.cacheControl !== undefined) {\n cacheControl = toolConfig.cacheControl\n } else if (toolConfig.pure) {\n // If the tool is marked as `pure`, then we can cache responses in our\n // public, shared cache indefinitely.\n cacheControl =\n 'public, max-age=31560000, s-maxage=31560000, stale-while-revalidate=3600'\n } else {\n // Default to not caching any responses.\n cacheControl = 'no-store'\n cacheStatus = 'DYNAMIC'\n }\n }\n\n const pricingPlanToolOverride = pricingPlan\n ? toolConfig.pricingPlanOverridesMap?.[pricingPlan.slug]\n : undefined\n const isToolEnabled = toolConfig.enabled ?? true\n\n // Check if this tool is configured for pricing-plan-specific overrides\n // which take precedence over the tool's default behavior.\n if (pricingPlan && pricingPlanToolOverride) {\n if (pricingPlanToolOverride.enabled !== undefined) {\n assert(\n pricingPlanToolOverride.enabled,\n isToolEnabled ? 403 : 404,\n `Tool \"${tool.name}\" is disabled for pricing plan \"${pricingPlan.slug}\"`\n )\n } else {\n assert(isToolEnabled, 404, `Tool \"${tool.name}\" is disabled`)\n }\n\n if (pricingPlanToolOverride.reportUsage !== undefined) {\n reportUsage &&= !!pricingPlanToolOverride.reportUsage\n }\n\n if (pricingPlanToolOverride.rateLimit !== undefined) {\n rateLimit = pricingPlanToolOverride.rateLimit\n }\n } else {\n assert(isToolEnabled, 404, `Tool \"${tool.name}\" is disabled`)\n }\n } else {\n if (cacheControl) {\n if (!isCacheControlPubliclyCacheable(cacheControl)) {\n // Incoming request explicitly requests to bypass the gateway's cache.\n cacheStatus = 'BYPASS'\n } else {\n // TODO: Should we allow incoming cache-control headers to override the\n // gateway's cache behavior?\n }\n } else {\n // Default to not caching any responses.\n cacheControl = 'no-store'\n cacheStatus = 'DYNAMIC'\n }\n }\n\n if (rateLimit) {\n // TODO: Consider decrementing rate limit if the response is cached or\n // errors? this doesn't seem too important, so will leave as-is for now.\n rateLimitResult = await enforceRateLimit({\n rateLimit,\n id: consumer?.id ?? ip ?? sessionId,\n cost: numRequestsCost,\n env,\n waitUntil\n })\n\n if (rateLimitResult && !rateLimitResult.passed) {\n throw new RateLimitError({ rateLimitResult })\n }\n }\n\n if (origin.type === 'raw') {\n // TODO\n assert(false, 500, 'Raw origin adapter not implemented')\n } else {\n // Validate incoming request params against the tool's input schema.\n const toolCallArgs = cfValidateJsonSchema>({\n schema: tool.inputSchema,\n data: args,\n errorPrefix: `Invalid request parameters for tool \"${tool.name}\"`,\n strictAdditionalProperties:\n toolConfig?.inputSchemaAdditionalProperties === false\n })\n\n const originStartTimeMs = Date.now()\n\n if (origin.type === 'openapi') {\n const operation = origin.toolToOperationMap[tool.name]\n assert(operation, 404, `Tool \"${tool.name}\" not found in OpenAPI spec`)\n assert(toolCallArgs, 500)\n\n const originRequest = await createHttpRequestForOpenAPIOperation({\n toolCallArgs,\n operation,\n deployment\n })\n\n updateOriginRequest(originRequest, { consumer, deployment, cacheControl })\n\n const cacheKey = await getRequestCacheKey(originRequest)\n\n // TODO: transform origin 5XX errors to 502 errors...\n const originResponse = await fetchCache({\n cacheKey,\n fetchResponse: async () => {\n let response = await fetch(originRequest)\n\n if (cacheControl && isResponsePubliclyCacheable(response)) {\n response = new Response(response.body, response)\n response.headers.set('cache-control', cacheControl)\n }\n\n return response\n },\n waitUntil\n })\n\n // Fetch the origin response without caching (useful for debugging)\n // const originResponse = await fetch(originRequest)\n\n cacheStatus =\n (originResponse.headers.get('cf-cache-status') as CacheStatus) ??\n cacheStatus ??\n (cacheKey ? 'MISS' : 'BYPASS')\n\n return {\n cacheStatus,\n reportUsage,\n rateLimit,\n rateLimitResult,\n toolCallArgs,\n originRequest,\n originResponse,\n originTimespanMs: Date.now() - originStartTimeMs,\n numRequestsCost,\n toolConfig\n }\n } else if (origin.type === 'mcp') {\n const { projectIdentifier } = parseDeploymentIdentifier(\n deployment.identifier,\n { errorStatusCode: 500 }\n )\n\n const id = env.DO_MCP_CLIENT.idFromName(sessionId)\n const originMcpClient = env.DO_MCP_CLIENT.get(\n id\n ) as DurableObjectStub\n\n await originMcpClient.init({\n url: deployment.origin.url,\n name: origin.serverInfo.name,\n version: origin.serverInfo.version,\n headers: origin.headers\n })\n\n const originMcpRequestMetadata = {\n agenticProxySecret: deployment._secret,\n sessionId,\n ip,\n isCustomerSubscriptionActive: !!consumer?.isStripeSubscriptionActive,\n customerId: consumer?.id,\n customerSubscriptionPlan: consumer?.plan,\n customerSubscriptionStatus: consumer?.stripeStatus,\n userId: consumer?.user.id,\n userEmail: consumer?.user.email,\n userUsername: consumer?.user.username,\n userName: consumer?.user.name,\n userCreatedAt: consumer?.user.createdAt,\n userUpdatedAt: consumer?.user.updatedAt,\n deploymentId: deployment.id,\n deploymentIdentifier: deployment.identifier,\n projectId: deployment.projectId,\n projectIdentifier\n } as AgenticMcpRequestMetadata\n\n let cacheKey: Request | undefined\n\n if (cacheControl && isCacheControlPubliclyCacheable(cacheControl)) {\n const fakeOriginRequest = new Request(deployment.origin.url, {\n method: 'POST',\n headers: {\n 'content-type': 'application/json',\n 'cache-control': cacheControl\n },\n body: JSON.stringify({\n name: tool.name,\n args: toolCallArgs,\n metadata: originMcpRequestMetadata\n })\n })\n\n cacheKey = await getRequestCacheKey(fakeOriginRequest)\n if (cacheKey) {\n const response = await caches.default.match(cacheKey)\n if (response) {\n return {\n cacheStatus: 'HIT',\n reportUsage,\n rateLimit,\n rateLimitResult,\n toolCallArgs,\n toolCallResponse: (await response.json()) as McpToolCallResponse,\n originTimespanMs: Date.now() - originStartTimeMs,\n numRequestsCost,\n toolConfig\n }\n }\n }\n }\n\n // TODO: add timeout support to the origin tool call?\n const toolCallResponseString = await originMcpClient.callTool({\n name: tool.name,\n args: toolCallArgs,\n metadata: originMcpRequestMetadata\n })\n const toolCallResponse = JSON.parse(\n toolCallResponseString\n ) as McpToolCallResponse\n\n if (cacheControl && cacheKey) {\n const fakeHttpResponse = new Response(toolCallResponseString, {\n headers: {\n 'content-type': 'application/json',\n 'cache-control': cacheControl\n }\n })\n waitUntil(caches.default.put(cacheKey, fakeHttpResponse))\n }\n\n return {\n cacheStatus: cacheStatus ?? (cacheKey ? 'MISS' : 'BYPASS'),\n reportUsage,\n rateLimit,\n rateLimitResult,\n toolCallArgs,\n toolCallResponse,\n originTimespanMs: Date.now() - originStartTimeMs,\n numRequestsCost,\n toolConfig\n }\n } else {\n assert(\n false,\n 500,\n `Internal error: origin adapter type \"${(origin as any).type}\"`\n )\n }\n }\n}\n" }, { "path": "apps/gateway/src/lib/temp", "content": "// import type { AdminDeployment, PricingPlan } from '@agentic/platform-types'\n// import type { JSONRPCRequest } from '@modelcontextprotocol/sdk/types.js'\n// // import type { JSONRPCRequest } from '@modelcontextprotocol/sdk/types.js'\n// import { assert } from '@agentic/platform-core'\n// import { parseDeploymentIdentifier } from '@agentic/platform-validators'\n// import { McpServer } from '@modelcontextprotocol/sdk/server/mcp.js'\n// import { StreamableHTTPServerTransport } from '@modelcontextprotocol/sdk/server/streamableHttp.js'\n// import { DurableObject } from 'cloudflare:workers'\n\n// import type { AdminConsumer } from './types'\n\n// export type DurableMcpServerInfo = {\n// deployment: AdminDeployment\n// consumer?: AdminConsumer\n// pricingPlan?: PricingPlan\n// }\n\n// export class DurableMcpServer extends DurableObject {\n// protected server?: McpServer\n// protected serverTransport?: StreamableHTTPServerTransport\n// protected serverConnectionP?: Promise\n\n// async init(mcpServerInfo: DurableMcpServerInfo) {\n// const existingMcpServerInfo =\n// await this.ctx.storage.get('mcp-server-info')\n\n// if (!existingMcpServerInfo) {\n// await this.ctx.storage.put('mcp-server-info', mcpServerInfo)\n// } else {\n// assert(\n// mcpServerInfo.deployment.id === existingMcpServerInfo.deployment.id,\n// 500,\n// `DurableMcpServerInfo deployment id mismatch: \"${mcpServerInfo.deployment.id}\" vs \"${existingMcpServerInfo.deployment.id}\"`\n// )\n// }\n\n// return this.ensureServerConnection(mcpServerInfo)\n// }\n\n// async isInitialized(): Promise {\n// return !!(await this.ctx.storage.get('mcp-server-info'))\n// }\n\n// async ensureServerConnection(mcpServerInfo?: DurableMcpServerInfo) {\n// if (this.serverConnectionP) return this.serverConnectionP\n\n// mcpServerInfo ??=\n// await this.ctx.storage.get('mcp-server-info')\n// assert(mcpServerInfo, 500, 'DurableMcpServer has not been initialized')\n// const { deployment } = mcpServerInfo\n\n// const { projectIdentifier } = parseDeploymentIdentifier(\n// deployment.identifier\n// )\n\n// this.server = new McpServer({\n// name: projectIdentifier,\n// version: deployment.version ?? '0.0.0'\n// })\n\n// for (const tool of deployment.tools) {\n// this.server.registerTool(\n// tool.name,\n// {\n// description: tool.description,\n// inputSchema: tool.inputSchema as any, // TODO: investigate types\n// outputSchema: tool.outputSchema as any, // TODO: investigate types\n// annotations: tool.annotations\n// },\n// (_args: Record) => {\n// assert(false, 500, `Tool call not implemented: ${tool.name}`)\n\n// // TODO???\n// return {\n// content: [],\n// _meta: {\n// toolName: tool.name\n// }\n// }\n// }\n// )\n// }\n\n// const transport = new StreamableHTTPServerTransport({\n// sessionIdGenerator: () => {\n// // TODO: improve this\n// return crypto.randomUUID()\n// },\n// onsessioninitialized: (sessionId) => {\n// // TODO: improve this\n// // eslint-disable-next-line no-console\n// console.log(`Session initialized: ${sessionId}`)\n// }\n// })\n// this.serverConnectionP = this.server.connect(transport)\n\n// return this.serverConnectionP\n// }\n\n// // async fetch(request: Request) {\n// // await this.ensureServerConnection()\n// // const { readable, writable } = new TransformStream()\n// // const writer = writable.getWriter()\n// // const encoder = new TextEncoder()\n\n// // const response = new Response(readable, {\n// // headers: {\n// // 'Content-Type': 'text/event-stream',\n// // 'Cache-Control': 'no-cache',\n// // Connection: 'keep-alive'\n// // // 'mcp-session-id': sessionId\n// // }\n// // })\n\n// // await this.serverTransport!.handleRequest(request, response)\n// // }\n\n// async onRequest(message: JSONRPCRequest) {\n// await this.ensureServerConnection()\n\n// // We need to map every incoming message to the connection that it came in on\n// // so that we can send relevant responses and notifications back on the same connection\n// // if (isJSONRPCRequest(message)) {\n// // this._requestIdToConnectionId.set(message.id.toString(), connection.id);\n// // }\n\n// this.serverTransport!.onmessage?.(message)\n// }\n// }\n" }, { "path": "apps/gateway/src/lib/temp-mcp", "content": "// import { McpServer } from '@modelcontextprotocol/sdk/server/mcp.js'\n// import { StreamableHTTPClientTransport } from '@modelcontextprotocol/sdk/client/streamableHttp.js'\n// import type { Transport } from '@modelcontextprotocol/sdk/shared/transport.js'\nimport { assert, JsonRpcError } from '@agentic/platform-core'\nimport { StreamableHTTPServerTransport } from '@modelcontextprotocol/sdk/server/streamableHttp.js'\nimport {\n InitializeRequestSchema,\n isJSONRPCError,\n isJSONRPCNotification,\n isJSONRPCRequest,\n isJSONRPCResponse,\n type JSONRPCMessage,\n JSONRPCMessageSchema\n} from '@modelcontextprotocol/sdk/types.js'\n\nimport type { GatewayHonoContext } from './lib/types'\nimport { createConsumerMcpServer } from './lib/consumer-mcp-server'\nimport { resolveMcpEdgeRequest } from './lib/resolve-mcp-edge-request'\n// import { DurableMcpServer } from './lib/durable-mcp-server'\n\n// TODO: https://github.com/modelcontextprotocol/servers/blob/8fb7bbdab73eddb42aba72e8eab81102efe1d544/src/everything/sse.ts\n// TODO: https://github.com/cloudflare/agents\n\n// const transports: Map = new Map<\n// string,\n// StreamableHTTPClientTransport\n// >()\n// const server = new McpServer({\n// name: 'weather',\n// version: '1.0.0',\n// capabilities: {\n// resources: {},\n// tools: {}\n// }\n// })\n\n// class McpStreamableHttpTransport implements Transport {\n// onclose?: () => void\n// onerror?: (error: Error) => void\n// onmessage?: (message: JSONRPCMessage) => void\n// sessionId?: string\n\n// // TODO: If there is an open connection to send server-initiated messages\n// // back, we should use that connection\n// private _getWebSocketForGetRequest: () => WebSocket | null\n\n// // Get the appropriate websocket connection for a given message id\n// private _getWebSocketForMessageID: (id: string) => WebSocket | null\n\n// // Notify the server that a response has been sent for a given message id\n// // so that it may clean up it's mapping of message ids to connections\n// // once they are no longer needed\n// private _notifyResponseIdSent: (id: string) => void\n\n// private _started = false\n// constructor(\n// getWebSocketForMessageID: (id: string) => WebSocket | null,\n// notifyResponseIdSent: (id: string | number) => void\n// ) {\n// this._getWebSocketForMessageID = getWebSocketForMessageID\n// this._notifyResponseIdSent = notifyResponseIdSent\n// // TODO\n// this._getWebSocketForGetRequest = () => null\n// }\n\n// async start() {\n// // The transport does not manage the WebSocket connection since it's terminated\n// // by the Durable Object in order to allow hibernation. There's nothing to initialize.\n// if (this._started) {\n// throw new Error('Transport already started')\n// }\n// this._started = true\n// }\n\n// async send(message: JSONRPCMessage) {\n// if (!this._started) {\n// throw new Error('Transport not started')\n// }\n\n// let websocket: WebSocket | null = null\n\n// if (isJSONRPCResponse(message) || isJSONRPCError(message)) {\n// websocket = this._getWebSocketForMessageID(message.id.toString())\n// if (!websocket) {\n// throw new Error(\n// `Could not find WebSocket for message id: ${message.id}`\n// )\n// }\n// } else if (isJSONRPCRequest(message)) {\n// // requests originating from the server must be sent over the\n// // the connection created by a GET request\n// websocket = this._getWebSocketForGetRequest()\n// } else if (isJSONRPCNotification(message)) {\n// // notifications do not have an id\n// // but do have a relatedRequestId field\n// // so that they can be sent to the correct connection\n// websocket = null\n// }\n\n// try {\n// websocket?.send(JSON.stringify(message))\n// if (isJSONRPCResponse(message)) {\n// this._notifyResponseIdSent(message.id.toString())\n// }\n// } catch (err) {\n// this.onerror?.(err as Error)\n// throw err\n// }\n// }\n\n// async close() {\n// // Similar to start, the only thing to do is to pass the event on to the server\n// this.onclose?.()\n// }\n// }\n\nconst MAXIMUM_MESSAGE_SIZE_BYTES = 4 * 1024 * 1024 // 4MB\n\nexport async function handleMcpRequest(ctx: GatewayHonoContext) {\n const request = ctx.req.raw\n ctx.set('isJsonRpcRequest', true)\n\n if (request.method !== 'POST') {\n // We don't yet support GET or DELETE requests\n throw new JsonRpcError({\n message: 'Method not allowed',\n statusCode: 405,\n jsonRpcErrorCode: -32_000,\n jsonRpcId: null\n })\n }\n\n // validate the Accept header\n const acceptHeader = request.headers.get('accept')\n\n // The client MUST include an Accept header, listing both application/json and text/event-stream as supported content types.\n if (\n !acceptHeader?.includes('application/json') ||\n !acceptHeader.includes('text/event-stream')\n ) {\n throw new JsonRpcError({\n message:\n 'Not Acceptable: Client must accept both \"application/json\" and \"text/event-stream\"',\n statusCode: 406,\n jsonRpcErrorCode: -32_000,\n jsonRpcId: null\n })\n }\n\n const ct = request.headers.get('content-type')\n if (!ct?.includes('application/json')) {\n throw new JsonRpcError({\n message:\n 'Unsupported Media Type: Content-Type must be \"application/json\"',\n statusCode: 415,\n jsonRpcErrorCode: -32_000,\n jsonRpcId: null\n })\n }\n\n // Check content length against maximum allowed size\n const contentLength = Number.parseInt(\n request.headers.get('content-length') ?? '0',\n 10\n )\n if (contentLength > MAXIMUM_MESSAGE_SIZE_BYTES) {\n throw new JsonRpcError({\n message: `Request body too large. Maximum size is ${MAXIMUM_MESSAGE_SIZE_BYTES} bytes`,\n statusCode: 413,\n jsonRpcErrorCode: -32_000,\n jsonRpcId: null\n })\n }\n\n let sessionId = request.headers.get('mcp-session-id')\n let rawMessage: unknown\n\n try {\n rawMessage = await request.json()\n } catch {\n throw new JsonRpcError({\n message: 'Parse error: Invalid JSON',\n statusCode: 400,\n jsonRpcErrorCode: -32_700,\n jsonRpcId: null\n })\n }\n\n // Make sure the message is an array to simplify logic\n const rawMessages = Array.isArray(rawMessage) ? rawMessage : [rawMessage]\n\n // Try to parse each message as JSON RPC. Fail if any message is invalid\n const messages: JSONRPCMessage[] = rawMessages.map((msg) => {\n const parsed = JSONRPCMessageSchema.safeParse(msg)\n if (!parsed.success) {\n throw new JsonRpcError({\n message: 'Parse error: Invalid JSON-RPC message',\n statusCode: 400,\n jsonRpcErrorCode: -32_700,\n jsonRpcId: null\n })\n }\n return parsed.data\n })\n\n // Before we pass the messages to the agent, there's another error condition\n // we need to enforce. Check if this is an initialization request\n // https://spec.modelcontextprotocol.io/specification/2025-03-26/basic/lifecycle/\n const isInitializationRequest = messages.some(\n (msg) => InitializeRequestSchema.safeParse(msg).success\n )\n\n if (isInitializationRequest && sessionId) {\n throw new JsonRpcError({\n message:\n 'Invalid Request: Initialization requests must not include a sessionId',\n statusCode: 400,\n jsonRpcErrorCode: -32_600,\n jsonRpcId: null\n })\n }\n\n // The initialization request must be the only request in the batch\n if (isInitializationRequest && messages.length > 1) {\n throw new JsonRpcError({\n message: 'Invalid Request: Only one initialization request is allowed',\n statusCode: 400,\n jsonRpcErrorCode: -32_600,\n jsonRpcId: null\n })\n }\n\n // If an Mcp-Session-Id is returned by the server during initialization,\n // clients using the Streamable HTTP transport MUST include it\n // in the Mcp-Session-Id header on all of their subsequent HTTP requests.\n if (!isInitializationRequest && !sessionId) {\n throw new JsonRpcError({\n message: 'Bad Request: Mcp-Session-Id header is required',\n statusCode: 400,\n jsonRpcErrorCode: -32_000,\n jsonRpcId: null\n })\n }\n\n // If we don't have a sessionId, we are serving an initialization request\n // and need to generate a new sessionId\n sessionId = sessionId ?? ctx.env.DO_MCP_SERVER.newUniqueId().toString()\n assert(\n !ctx.get('sessionId'),\n 500,\n 'Session ID should be set by MCP handler for MCP edge requests'\n )\n ctx.set('sessionId', sessionId)\n\n // TODO: first version using the McpServer locally instead of a DurableMcpServer\n // Fetch the durable mcp server for this session\n // const id = ctx.env.DO_MCP_SERVER.idFromName(`streamable-http:${sessionId}`)\n // const durableMcpServer = ctx.env.DO_MCP_SERVER.get(id)\n // const isInitialized = await durableMcpServer.isInitialized()\n\n // if (!isInitializationRequest && !isInitialized) {\n // // A session id that was never initialized was provided\n // throw new JsonRpcError({\n // message: 'Session not found',\n // statusCode: 404,\n // jsonRpcErrorCode: -32_001,\n // jsonRpcId: null\n // })\n // }\n\n const { deployment, consumer, pricingPlan } = await resolveMcpEdgeRequest(ctx)\n const server = createConsumerMcpServer(ctx, {\n sessionId,\n deployment,\n consumer,\n pricingPlan\n })\n\n const transport = new StreamableHTTPServerTransport({\n sessionIdGenerator: () => {\n return ctx.env.DO_MCP_SERVER.newUniqueId().toString()\n },\n onsessioninitialized: (sessionId) => {\n // TODO: improve this\n // eslint-disable-next-line no-console\n console.log(`Session initialized: ${sessionId}`)\n }\n })\n await server.connect(transport)\n\n // if (isInitializationRequest) {\n // await durableMcpServer.init({\n // deployment,\n // consumer,\n // pricingPlan\n // })\n // }\n\n // We've validated and initialized the request! Now it's time to actually\n // handle the JSON RPC messages in the request and respond with an SSE\n // stream.\n\n // Create a Transform Stream for SSE\n const { readable, writable } = new TransformStream()\n const writer = writable.getWriter()\n const encoder = new TextEncoder()\n\n // Keep track of the request ids that we have sent to the server\n // so that we can close the connection once we have received\n // all the responses\n const requestIds = new Set()\n\n // eslint-disable-next-line unicorn/prefer-add-event-listener\n transport.onmessage = async (message) => {\n // eslint-disable-next-line no-console\n console.log('onmessage', message)\n\n // validate that the message is a valid JSONRPC message\n const result = JSONRPCMessageSchema.safeParse(message)\n if (!result.success) {\n // TODO: add a warning here\n return\n }\n\n // If the message is a response or an error, remove the id from the set of\n // request ids\n if (isJSONRPCResponse(result.data) || isJSONRPCError(result.data)) {\n requestIds.delete(result.data.id)\n }\n\n // Send the message as an SSE event\n const messageText = `event: message\\ndata: ${JSON.stringify(result.data)}\\n\\n`\n await writer.write(encoder.encode(messageText))\n\n // If we have received all the responses, close the connection\n if (!requestIds.size) {\n ctx.executionCtx.waitUntil(transport.close())\n await writer.close()\n }\n }\n\n // If there are no requests, we send the messages downstream and\n // acknowledge the request with a 202 since we don't expect any responses\n // back through this connection.\n const hasOnlyNotificationsOrResponses = messages.every(\n (msg) => isJSONRPCNotification(msg) || isJSONRPCResponse(msg)\n )\n if (hasOnlyNotificationsOrResponses) {\n await Promise.all(messages.map((message) => transport.send(message)))\n\n return new Response(null, {\n status: 202\n })\n }\n\n for (const message of messages) {\n if (isJSONRPCRequest(message)) {\n // Add each request id that we send off to a set so that we can keep\n // track of which requests we still need a response for.\n requestIds.add(message.id)\n }\n\n await transport.send(message)\n }\n\n // console.log('>>> waiting...')\n // await new Promise((resolve) => setTimeout(resolve, 2000))\n // console.log('<<< waiting...')\n\n // Return the streamable http response.\n return new Response(readable, {\n headers: {\n 'Content-Type': 'text/event-stream',\n 'Cache-Control': 'no-cache',\n Connection: 'keep-alive',\n 'mcp-session-id': sessionId\n },\n status: 200\n })\n}\n" }, { "path": "apps/gateway/src/lib/transform-http-response-to-mcp-tool-call-response.ts", "content": "import type { Tool, ToolConfig } from '@agentic/platform-types'\nimport { assert, HttpError } from '@agentic/platform-core'\nimport contentType from 'fast-content-type-parse'\n\nimport type { McpToolCallResponse, ToolCallArgs } from './types'\nimport { cfValidateJsonSchema } from './cf-validate-json-schema'\n\nexport async function transformHttpResponseToMcpToolCallResponse({\n originRequest,\n originResponse,\n tool,\n toolCallArgs,\n toolConfig\n}: {\n originRequest: Request\n originResponse: Response\n tool: Tool\n toolCallArgs: ToolCallArgs\n toolConfig?: ToolConfig\n}) {\n const { type: mimeType } = contentType.safeParse(\n originResponse.headers.get('content-type') || 'application/octet-stream'\n )\n\n // TODO: move these logs should be higher up\n // eslint-disable-next-line no-console\n console.log('httpOriginResponse', {\n tool: tool.name,\n toolCallArgs,\n url: originRequest.url,\n method: originRequest.method,\n originResponse: {\n mimeType,\n status: originResponse.status\n // headers: Object.fromEntries(originResponse.headers.entries())\n }\n })\n\n if (originResponse.status >= 400) {\n let message = originResponse.statusText\n try {\n message = await originResponse.text()\n } catch {}\n\n // eslint-disable-next-line no-console\n console.error('httpOriginResponse ERROR', {\n tool: tool.name,\n toolCallArgs,\n url: originRequest.url,\n method: originRequest.method,\n originResponse: {\n mimeType,\n status: originResponse.status,\n // headers: Object.fromEntries(originResponse.headers.entries()),\n message\n }\n })\n\n throw new HttpError({\n statusCode: originResponse.status,\n message,\n cause: originResponse\n })\n }\n\n const result: McpToolCallResponse = {\n isError: originResponse.status >= 400\n }\n\n if (tool.outputSchema) {\n assert(\n mimeType.includes('json'),\n 502,\n `Tool \"${tool.name}\" requires a JSON response, but the origin returned content type \"${mimeType}\"`\n )\n const data = (await originResponse.json()) as Record\n\n const toolCallResponseContent = cfValidateJsonSchema({\n data,\n schema: tool.outputSchema,\n coerce: false,\n strictAdditionalProperties:\n toolConfig?.outputSchemaAdditionalProperties === false,\n errorPrefix: `Invalid tool response for tool \"${tool.name}\"`,\n errorStatusCode: 502\n })\n\n result.structuredContent = toolCallResponseContent\n } else {\n if (mimeType.includes('json')) {\n result.structuredContent = await originResponse.json()\n } else if (mimeType.includes('text')) {\n result.content = [\n {\n type: 'text',\n text: await originResponse.text()\n }\n ]\n } else {\n const resBody = await originResponse.arrayBuffer()\n const resBodyBase64 = Buffer.from(resBody).toString('base64')\n const type = mimeType.includes('image')\n ? 'image'\n : mimeType.includes('audio')\n ? 'audio'\n : 'resource'\n\n // TODO: this needs work\n result.content = [\n {\n type,\n mimeType,\n ...(type === 'resource'\n ? {\n blob: resBodyBase64\n }\n : {\n data: resBodyBase64\n })\n }\n ]\n }\n }\n\n return result\n}\n" }, { "path": "apps/gateway/src/lib/types.ts", "content": "import type { AgenticApiClient } from '@agentic/platform-api-client'\nimport type { RateLimitResult } from '@agentic/platform-core'\nimport type {\n DefaultHonoBindings,\n DefaultHonoVariables\n} from '@agentic/platform-hono'\nimport type {\n AdminConsumer as AdminConsumerImpl,\n AdminDeployment,\n PricingPlan,\n RateLimit,\n Tool,\n ToolConfig,\n User\n} from '@agentic/platform-types'\nimport type { ParsedToolIdentifier } from '@agentic/platform-validators'\nimport type { Client as McpClient } from '@modelcontextprotocol/sdk/client/index.js'\nimport type { Context } from 'hono'\nimport type { Simplify } from 'type-fest'\n\nimport type { Env } from './env'\n\nexport type { RateLimitResult } from '@agentic/platform-core'\n\nexport type McpToolCallResponse = Simplify<\n Awaited>\n>\n\nexport type AdminConsumer = Simplify<\n AdminConsumerImpl & {\n user: User\n }\n>\n\nexport type GatewayHonoVariables = Simplify<\n DefaultHonoVariables & {\n client: AgenticApiClient\n cache: Cache\n sessionId?: string\n reportUsage?: boolean\n }\n>\n\nexport type GatewayHonoBindings = Simplify\n\nexport type GatewayHonoEnv = {\n Bindings: GatewayHonoBindings\n Variables: GatewayHonoVariables\n}\n\nexport type GatewayHonoContext = Context\n\n// TODO: better type here\nexport type ToolCallArgs = Record\n\nexport type RateLimitState = {\n current: number\n resetTimeMs: number\n}\n\nexport type RateLimitCache = Map\n\nexport type CacheStatus = 'HIT' | 'MISS' | 'BYPASS' | 'DYNAMIC'\nexport type EdgeRequestMode = 'MCP' | 'HTTP'\n\nexport type WaitUntil = (promise: Promise) => void\n\nexport interface ResolvedEdgeRequest extends Record {\n edgeRequestMode: EdgeRequestMode\n parsedToolIdentifier: ParsedToolIdentifier\n deployment: AdminDeployment\n requestId: string\n ip?: string\n}\n\nexport interface ResolvedMcpEdgeRequest extends ResolvedEdgeRequest {\n edgeRequestMode: 'MCP'\n consumer?: AdminConsumer\n pricingPlan?: PricingPlan\n}\n\nexport interface ResolvedHttpEdgeRequest extends ResolvedEdgeRequest {\n edgeRequestMode: 'HTTP'\n consumer?: AdminConsumer\n pricingPlan?: PricingPlan\n tool: Tool\n toolCallArgs: ToolCallArgs\n cacheControl?: string\n}\n\nexport type ResolvedOriginToolCallResult = {\n toolCallArgs: ToolCallArgs\n originRequest?: Request\n originResponse?: Response\n toolCallResponse?: McpToolCallResponse\n rateLimit?: RateLimit\n rateLimitResult?: RateLimitResult\n cacheStatus: CacheStatus\n reportUsage: boolean\n toolConfig?: ToolConfig\n originTimespanMs: number\n numRequestsCost: number\n} & (\n | {\n originRequest: Request\n originResponse: Response\n toolCallResponse?: never\n }\n | {\n originRequest?: never\n originResponse?: never\n toolCallResponse: McpToolCallResponse\n }\n)\n" }, { "path": "apps/gateway/src/lib/update-origin-request.ts", "content": "import type { AdminDeployment } from '@agentic/platform-types'\n\nimport type { AdminConsumer } from './types'\n\n// TODO: support custom auth providers\n// const authProviders = ['github', 'google', 'spotify', 'linkedin', 'twitter']\n\nexport function updateOriginRequest(\n originRequest: Request,\n {\n deployment,\n consumer,\n cacheControl\n }: {\n deployment: AdminDeployment\n consumer?: AdminConsumer\n cacheControl?: string\n }\n) {\n // originRequest.headers.delete('authorization')\n\n // for (const provider of authProviders) {\n // const headerAccessToken = `x-${provider}-access-token`\n // const headerRefreshToken = `x-${provider}-refresh-token`\n // const headerAccessTokenSecret = `x-${provider}-access-token-secret`\n // const headerId = `x-${provider}-id`\n // const headerUsername = `x-${provider}-username`\n\n // originRequest.headers.delete(headerAccessToken)\n // originRequest.headers.delete(headerRefreshToken)\n // originRequest.headers.delete(headerAccessTokenSecret)\n // originRequest.headers.delete(headerId)\n // originRequest.headers.delete(headerUsername)\n // }\n\n // Delete all Cloudflare headers since we want origin requests to be agnostic\n // to Agentic's choice of hosting provider.\n for (const headerKey of Object.keys(\n Object.fromEntries(originRequest.headers.entries())\n )) {\n if (headerKey.startsWith('cf-')) {\n originRequest.headers.delete(headerKey)\n }\n }\n\n originRequest.headers.delete('x-agentic-consumer')\n originRequest.headers.delete('x-agentic-user')\n originRequest.headers.delete('x-agentic-plan')\n originRequest.headers.delete('x-agentic-is-subscription-active')\n originRequest.headers.delete('x-agentic-subscription-status')\n originRequest.headers.delete('x-agentic-user-email')\n originRequest.headers.delete('x-agentic-user-username')\n originRequest.headers.delete('x-agentic-user-name')\n originRequest.headers.delete('x-agentic-user-created-at')\n originRequest.headers.delete('x-forwarded-for')\n\n if (consumer) {\n originRequest.headers.set('x-agentic-customer-id', consumer.id)\n\n originRequest.headers.set(\n 'x-agentic-is-customer-subscription-active',\n consumer.isStripeSubscriptionActive.toString()\n )\n originRequest.headers.set(\n 'x-agentic-customer-subscription-status',\n consumer.stripeStatus\n )\n\n originRequest.headers.set('x-agentic-user-id', consumer.user.id)\n originRequest.headers.set('x-agentic-user-email', consumer.user.email)\n originRequest.headers.set('x-agentic-user-username', consumer.user.username)\n originRequest.headers.set(\n 'x-agentic-user-created-at',\n consumer.user.createdAt\n )\n originRequest.headers.set(\n 'x-agentic-user-updated-at',\n consumer.user.updatedAt\n )\n\n if (consumer.plan) {\n originRequest.headers.set(\n 'x-agentic-customer-subscription-plan',\n consumer.plan\n )\n }\n\n if (consumer.user.name) {\n originRequest.headers.set('x-agentic-user-name', consumer.user.name)\n }\n } else {\n originRequest.headers.set(\n 'x-agentic-is-customer-subscription-active',\n 'false'\n )\n }\n\n // TODO: this header is causing some random upstream cloudflare errors\n // https://support.cloudflare.com/hc/en-us/articles/360029779472-Troubleshooting-Cloudflare-1XXX-errors#error1000\n // originRequest.headers.set('x-forwarded-for', ip)\n\n if (cacheControl) {\n originRequest.headers.set('cache-control', cacheControl)\n }\n\n originRequest.headers.set('x-agentic-deployment-id', deployment.id)\n originRequest.headers.set(\n 'x-agentic-deployment-identifier',\n deployment.identifier\n )\n originRequest.headers.set('x-agentic-proxy-secret', deployment._secret)\n}\n" }, { "path": "apps/gateway/src/lib/utils.test.ts", "content": "import { expect, test } from 'vitest'\n\nimport {\n createAgenticMcpMetadata,\n isCacheControlPubliclyCacheable,\n isRequestPubliclyCacheable\n} from './utils'\n\ntest('isRequestPubliclyCacheable true', () => {\n expect(isRequestPubliclyCacheable(new Request('https://example.com'))).toBe(\n true\n )\n expect(\n isRequestPubliclyCacheable(\n new Request('https://example.com', {\n headers: {\n 'cache-control': 'public, max-age=3600'\n }\n })\n )\n ).toBe(true)\n})\n\ntest('isRequestPubliclyCacheable false', () => {\n expect(\n isRequestPubliclyCacheable(\n new Request('https://example.com', {\n headers: {\n pragma: 'no-cache'\n }\n })\n )\n ).toBe(false)\n expect(\n isRequestPubliclyCacheable(\n new Request('https://example.com', {\n headers: {\n 'cache-control': 'no-store'\n }\n })\n )\n ).toBe(false)\n})\n\ntest('isCacheControlPubliclyCacheable true', () => {\n expect(isCacheControlPubliclyCacheable('public')).toBe(true)\n expect(isCacheControlPubliclyCacheable('public, max-age=3600')).toBe(true)\n expect(isCacheControlPubliclyCacheable('public, s-maxage=3600')).toBe(true)\n expect(\n isCacheControlPubliclyCacheable('public, max-age=3600, s-maxage=3600')\n ).toBe(true)\n expect(isCacheControlPubliclyCacheable('max-age=3600')).toBe(true)\n expect(isCacheControlPubliclyCacheable('s-maxage=3600')).toBe(true)\n expect(\n isCacheControlPubliclyCacheable(\n 'public, max-age=86400, s-maxage=86400, stale-while-revalidate=3600'\n )\n ).toBe(true)\n expect(isCacheControlPubliclyCacheable('stale-while-revalidate=180')).toBe(\n true\n )\n})\n\ntest('isCacheControlPubliclyCacheable false', () => {\n expect(isCacheControlPubliclyCacheable('no-store')).toBe(false)\n expect(isCacheControlPubliclyCacheable('no-cache')).toBe(false)\n expect(isCacheControlPubliclyCacheable('private')).toBe(false)\n expect(isCacheControlPubliclyCacheable('max-age=0')).toBe(false)\n expect(isCacheControlPubliclyCacheable('private, max-age=3600')).toBe(false)\n expect(isCacheControlPubliclyCacheable('private, s-maxage=3600')).toBe(false)\n expect(\n isCacheControlPubliclyCacheable('private, max-age=3600, s-maxage=3600')\n ).toBe(false)\n expect(\n isCacheControlPubliclyCacheable('max-age=0, must-revalidate, no-cache')\n ).toBe(false)\n expect(\n isCacheControlPubliclyCacheable('private, max-age=3600, must-revalidate')\n ).toBe(false)\n})\n\ntest('createAgenticMcpMetadata', () => {\n expect(\n // Test the stringified version because we want to test the order of the\n // keys.\n JSON.stringify(\n createAgenticMcpMetadata({\n deploymentId: '123',\n consumerId: '456',\n toolName: 'test',\n cacheStatus: 'HIT'\n })\n )\n ).toMatchSnapshot()\n})\n" }, { "path": "apps/gateway/src/lib/utils.ts", "content": "import { pruneEmpty } from '@agentic/platform-core'\nimport sortKeys from 'sort-keys'\n\nexport function isRequestPubliclyCacheable(request: Request): boolean {\n const pragma = request.headers.get('pragma')\n if (pragma === 'no-cache') {\n return false\n }\n\n return isCacheControlPubliclyCacheable(request.headers.get('cache-control'))\n}\n\nexport function isResponsePubliclyCacheable(response: Response): boolean {\n const pragma = response.headers.get('pragma')\n if (pragma === 'no-cache') {\n return false\n }\n\n return isCacheControlPubliclyCacheable(response.headers.get('cache-control'))\n}\n\nexport function isCacheControlPubliclyCacheable(\n cacheControl?: string | null\n): boolean {\n if (!cacheControl) {\n // TODO: should we default to true or false?\n return true\n }\n\n const directives = new Set(cacheControl.split(',').map((s) => s.trim()))\n if (\n directives.has('no-store') ||\n directives.has('no-cache') ||\n directives.has('private') ||\n directives.has('max-age=0')\n ) {\n return false\n }\n\n return true\n}\n\nconst agenticMcpMetadataFieldOrder: string[] = [\n 'deploymentId',\n 'consumerId',\n 'toolName',\n 'status',\n 'cacheStatus',\n 'headers'\n]\n\nconst agenticMcpMetadataFieldsOrderMap = Object.fromEntries(\n agenticMcpMetadataFieldOrder.map((f, i) => [f, i])\n)\n\nfunction agenticMcpMetadataFieldComparator(a: string, b: string): number {\n const aIndex = agenticMcpMetadataFieldsOrderMap[a] ?? Infinity\n const bIndex = agenticMcpMetadataFieldsOrderMap[b] ?? Infinity\n\n return aIndex - bIndex\n}\n\n/**\n * Sanitizes agentic MCP metadata by sorting the keys and pruning empty values.\n */\nexport function createAgenticMcpMetadata(\n metadata: {\n deploymentId: string\n consumerId?: string\n toolName?: string\n status?: number\n cacheStatus?: string\n headers?: Record\n },\n existingMetadata?: Record\n): Record {\n const rawAgenticMcpMetadata = pruneEmpty({\n status: 200,\n ...existingMetadata?.agentic,\n ...metadata,\n headers: {\n ...existingMetadata?.agentic?.headers,\n ...metadata.headers\n }\n })\n\n const agentic = sortKeys(rawAgenticMcpMetadata, {\n compare: agenticMcpMetadataFieldComparator\n })\n\n return {\n ...existingMetadata,\n agentic\n }\n}\n" }, { "path": "apps/gateway/src/worker.ts", "content": "import * as Sentry from '@sentry/cloudflare'\n\nimport { app } from './app'\nimport { type Env, parseEnv, type RawEnv } from './lib/env'\n\n// Export Durable Objects for cloudflare\nexport { DurableMcpClient } from './lib/durable-mcp-client'\nexport { DurableMcpServer } from './lib/durable-mcp-server'\nexport { DurableRateLimiter } from './lib/rate-limits/durable-rate-limiter'\n\n// Main worker entrypoint\nexport default Sentry.withSentry(\n (env: RawEnv) => ({\n dsn: env.SENTRY_DSN,\n environment: env.ENVIRONMENT,\n integrations: [Sentry.extraErrorDataIntegration()],\n tracesSampleRate: 1.0,\n sendDefaultPii: true\n }),\n {\n async fetch(\n request: Request,\n env: Env,\n ctx: ExecutionContext\n ): Promise {\n let parsedEnv: Env\n\n // Validate the environment\n try {\n parsedEnv = parseEnv(env)\n } catch (err: any) {\n // eslint-disable-next-line no-console\n console.error('api gateway error invalid env:', err.message)\n\n return new Response(\n JSON.stringify({ error: 'Invalid api gateway environment' }),\n {\n status: 500,\n headers: {\n 'content-type': 'application/json'\n }\n }\n )\n }\n\n // Handle the request with `hono`\n return app.fetch(request, parsedEnv, ctx)\n }\n } satisfies ExportedHandler\n)\n" }, { "path": "apps/gateway/tsconfig.json", "content": "{\n \"extends\": \"@fisch0920/config/tsconfig-node\",\n \"compilerOptions\": {\n \"types\": [\"@cloudflare/workers-types\"]\n },\n \"include\": [\"src\", \"*.config.ts\"],\n \"exclude\": [\"node_modules\", \"dist\"]\n}\n" }, { "path": "apps/gateway/vitest.config.ts", "content": "import { defineConfig } from 'vitest/config'\n\nexport default defineConfig({\n test: {\n environment: 'edge-runtime',\n globals: true,\n watch: false,\n restoreMocks: true\n }\n})\n" }, { "path": "apps/gateway/wrangler.jsonc", "content": "/**\n * https://developers.cloudflare.com/workers/wrangler/configuration/\n */\n{\n \"$schema\": \"node_modules/wrangler/config-schema.json\",\n \"name\": \"agentic-gateway\",\n \"main\": \"src/worker.ts\",\n \"compatibility_date\": \"2025-05-25\",\n \"compatibility_flags\": [\"nodejs_compat\"],\n \"placement\": { \"mode\": \"smart\" },\n \"upload_source_maps\": true,\n \"observability\": {\n \"enabled\": true,\n \"head_sampling_rate\": 1\n },\n \"migrations\": [\n {\n \"tag\": \"v1\",\n \"new_sqlite_classes\": [\n \"DurableRateLimiter\",\n \"DurableMcpServer\",\n \"DurableMcpClient\"\n ]\n }\n ],\n \"vars\": {\n \"ENVIRONMENT\": \"development\",\n \"AGENTIC_API_BASE_URL\": \"http://localhost:3001\"\n },\n \"durable_objects\": {\n \"bindings\": [\n {\n \"class_name\": \"DurableRateLimiter\",\n \"name\": \"DO_RATE_LIMITER\"\n },\n {\n \"class_name\": \"DurableMcpServer\",\n \"name\": \"DO_MCP_SERVER\"\n },\n {\n \"class_name\": \"DurableMcpClient\",\n \"name\": \"DO_MCP_CLIENT\"\n }\n ]\n },\n \"analytics_engine_datasets\": [\n {\n \"binding\": \"AE_USAGE_DATASET\",\n \"dataset\": \"agentic_gateway_usage\"\n }\n ],\n \"env\": {\n \"production\": {\n \"routes\": [\n {\n \"pattern\": \"gateway.agentic.so\",\n \"custom_domain\": true\n }\n ],\n \"vars\": {\n \"ENVIRONMENT\": \"production\",\n \"AGENTIC_API_BASE_URL\": \"https://api.agentic.so\"\n },\n // TODO: double-check whether all of this needs to be duplicated for each environment\n \"durable_objects\": {\n \"bindings\": [\n {\n \"class_name\": \"DurableRateLimiter\",\n \"name\": \"DO_RATE_LIMITER\"\n },\n {\n \"class_name\": \"DurableMcpServer\",\n \"name\": \"DO_MCP_SERVER\"\n },\n {\n \"class_name\": \"DurableMcpClient\",\n \"name\": \"DO_MCP_CLIENT\"\n }\n ]\n },\n \"analytics_engine_datasets\": [\n {\n \"binding\": \"AE_USAGE_DATASET\",\n \"dataset\": \"agentic_gateway_usage\"\n }\n ]\n }\n }\n}\n" }, { "path": "apps/web/components.json", "content": "{\n \"$schema\": \"https://ui.shadcn.com/schema.json\",\n \"style\": \"new-york\",\n \"rsc\": true,\n \"tsx\": true,\n \"tailwind\": {\n \"config\": \"tailwind.config.ts\",\n \"css\": \"src/app/globals.css\",\n \"baseColor\": \"neutral\",\n \"cssVariables\": true,\n \"prefix\": \"\"\n },\n \"aliases\": {\n \"components\": \"@/components\",\n \"utils\": \"@/lib/utils\",\n \"ui\": \"@/components/ui\",\n \"lib\": \"@/lib\",\n \"hooks\": \"@/hooks\"\n },\n \"iconLibrary\": \"lucide\"\n}\n" }, { "path": "apps/web/next.config.ts", "content": "import type { NextConfig } from 'next'\n\nconst nextConfig: NextConfig = {\n // TODO: handle remote profile pictures or upload them properly on backend\n}\n\nexport default nextConfig\n" }, { "path": "apps/web/package.json", "content": "{\n \"name\": \"web\",\n \"private\": true,\n \"version\": \"8.4.4\",\n \"description\": \"Agentic platform webapp.\",\n \"author\": \"Travis Fischer \",\n \"license\": \"AGPL-3.0\",\n \"repository\": {\n \"type\": \"git\",\n \"url\": \"git+https://github.com/transitive-bullshit/agentic.git\",\n \"directory\": \"apps/web\"\n },\n \"type\": \"module\",\n \"scripts\": {\n \"dev\": \"next dev\",\n \"build\": \"next build\",\n \"start\": \"next start\",\n \"clean\": \"del .next\",\n \"test\": \"run-s test:*\",\n \"test:lint\": \"next lint\",\n \"test:unit\": \"vitest run\"\n },\n \"dependencies\": {\n \"@agentic/platform\": \"workspace:*\",\n \"@agentic/platform-api-client\": \"workspace:*\",\n \"@agentic/platform-core\": \"workspace:*\",\n \"@agentic/platform-types\": \"workspace:*\",\n \"@agentic/platform-validators\": \"workspace:*\",\n \"@date-fns/utc\": \"catalog:\",\n \"@fisch0920/markdown-to-html\": \"catalog:\",\n \"@number-flow/react\": \"catalog:\",\n \"@pmndrs/assets\": \"catalog:\",\n \"@radix-ui/react-avatar\": \"^1.1.10\",\n \"@radix-ui/react-collapsible\": \"catalog:\",\n \"@radix-ui/react-dropdown-menu\": \"catalog:\",\n \"@radix-ui/react-label\": \"catalog:\",\n \"@radix-ui/react-slot\": \"catalog:\",\n \"@radix-ui/react-tabs\": \"catalog:\",\n \"@radix-ui/react-tooltip\": \"catalog:\",\n \"@react-three/cannon\": \"catalog:\",\n \"@react-three/drei\": \"catalog:\",\n \"@react-three/fiber\": \"catalog:\",\n \"@react-three/postprocessing\": \"catalog:\",\n \"@react-three/rapier\": \"catalog:\",\n \"@tanstack/react-form\": \"catalog:\",\n \"@tanstack/react-query\": \"catalog:\",\n \"@tanstack/react-query-devtools\": \"catalog:\",\n \"@types/canvas-confetti\": \"catalog:\",\n \"canvas-confetti\": \"catalog:\",\n \"class-variance-authority\": \"catalog:\",\n \"clsx\": \"catalog:\",\n \"date-fns\": \"catalog:\",\n \"hast-util-to-jsx-runtime\": \"catalog:\",\n \"human-number\": \"^2.0.4\",\n \"ky\": \"catalog:\",\n \"lucide-react\": \"catalog:\",\n \"motion\": \"catalog:\",\n \"next\": \"catalog:\",\n \"next-themes\": \"catalog:\",\n \"plur\": \"catalog:\",\n \"posthog-js\": \"catalog:\",\n \"pretty-ms\": \"^9.2.0\",\n \"react\": \"catalog:\",\n \"react-dom\": \"catalog:\",\n \"react-infinite-scroll-hook\": \"catalog:\",\n \"react-lottie-player\": \"catalog:\",\n \"react-medium-image-zoom\": \"catalog:\",\n \"react-use\": \"catalog:\",\n \"server-only\": \"catalog:\",\n \"shiki\": \"catalog:\",\n \"sonner\": \"catalog:\",\n \"stripe\": \"catalog:\",\n \"suspend-react\": \"catalog:\",\n \"tailwind-merge\": \"catalog:\",\n \"three\": \"catalog:\",\n \"type-fest\": \"catalog:\"\n },\n \"devDependencies\": {\n \"@tailwindcss/postcss\": \"catalog:\",\n \"@tailwindcss/typography\": \"catalog:\",\n \"@types/human-number\": \"^1.0.2\",\n \"@types/react\": \"catalog:\",\n \"@types/react-dom\": \"catalog:\",\n \"@types/three\": \"catalog:\",\n \"autoprefixer\": \"catalog:\",\n \"postcss\": \"catalog:\",\n \"tailwindcss\": \"catalog:\",\n \"tw-animate-css\": \"catalog:\"\n }\n}\n" }, { "path": "apps/web/postcss.config.mjs", "content": "export default {\n plugins: {\n '@tailwindcss/postcss': {}\n }\n}\n" }, { "path": "apps/web/public/schema.json", "content": "{\n \"type\": \"object\",\n \"properties\": {\n \"name\": {\n \"type\": \"string\",\n \"maxLength\": 1024,\n \"minLength\": 1,\n \"description\": \"Display name for the project. Max length 1024 characters.\"\n },\n \"slug\": {\n \"type\": \"string\",\n \"minLength\": 1,\n \"description\": \"Unique project slug. Must be ascii-only, lower-case, and kebab-case with no spaces between 1 and 256 characters. If not provided, it will be derived by slugifying `name`.\"\n },\n \"version\": {\n \"type\": \"string\",\n \"minLength\": 1,\n \"description\": \"Optional semantic version of the project as a semver string. Ex: 1.0.0, 0.0.1, 5.0.1, etc.\"\n },\n \"description\": {\n \"type\": \"string\",\n \"description\": \"A short description of the project.\"\n },\n \"readme\": {\n \"type\": \"string\",\n \"description\": \"Optional markdown readme documenting the project (supports GitHub-flavored markdown).\"\n },\n \"icon\": {\n \"type\": \"string\",\n \"description\": \"Optional logo image to use for the project. Logos should have a square aspect ratio.\"\n },\n \"sourceUrl\": {\n \"type\": \"string\",\n \"format\": \"uri\",\n \"description\": \"Optional URL to the source code of the project (eg, GitHub repo).\"\n },\n \"homepageUrl\": {\n \"type\": \"string\",\n \"format\": \"uri\",\n \"description\": \"Optional URL to the product's homepage.\"\n },\n \"origin\": {\n \"anyOf\": [\n {\n \"type\": \"object\",\n \"properties\": {\n \"location\": {\n \"type\": \"string\",\n \"const\": \"external\",\n \"default\": \"external\"\n },\n \"url\": {\n \"type\": \"string\",\n \"format\": \"uri\",\n \"description\": \"Required base URL of the externally hosted origin API server. Must be a valid `https` URL.\\n\\nNOTE: Agentic currently only supports `external` API servers. If you'd like to host your API or MCP server on Agentic's infrastructure, please reach out to support@agentic.so.\"\n },\n \"type\": {\n \"type\": \"string\",\n \"const\": \"openapi\"\n },\n \"spec\": {\n \"type\": \"string\",\n \"description\": \"Local file path, URL, or JSON stringified OpenAPI spec describing the origin API server.\"\n }\n },\n \"required\": [\n \"url\",\n \"type\",\n \"spec\"\n ],\n \"additionalProperties\": false\n },\n {\n \"type\": \"object\",\n \"properties\": {\n \"location\": {\n \"$ref\": \"#/properties/origin/anyOf/0/properties/location\"\n },\n \"url\": {\n \"$ref\": \"#/properties/origin/anyOf/0/properties/url\"\n },\n \"type\": {\n \"type\": \"string\",\n \"const\": \"mcp\"\n },\n \"headers\": {\n \"type\": \"object\",\n \"additionalProperties\": {\n \"type\": \"string\"\n }\n }\n },\n \"required\": [\n \"url\",\n \"type\"\n ],\n \"additionalProperties\": false\n },\n {\n \"type\": \"object\",\n \"properties\": {\n \"location\": {\n \"$ref\": \"#/properties/origin/anyOf/0/properties/location\"\n },\n \"url\": {\n \"$ref\": \"#/properties/origin/anyOf/0/properties/url\"\n },\n \"type\": {\n \"type\": \"string\",\n \"const\": \"raw\"\n }\n },\n \"required\": [\n \"url\",\n \"type\"\n ],\n \"additionalProperties\": false\n }\n ],\n \"description\": \"Origin adapter is used to configure the origin API server downstream from Agentic's API gateway. It specifies whether the origin API server denoted by `url` is hosted externally or deployed internally to Agentic's infrastructure. It also specifies the format for how origin tools are defined: either an OpenAPI spec or an MCP server.\\n\\nNOTE: Agentic currently only supports `external` API servers. If you'd like to host your API or MCP server on Agentic's infrastructure, please reach out to support@agentic.so.\"\n },\n \"pricingPlans\": {\n \"type\": \"array\",\n \"items\": {\n \"type\": \"object\",\n \"properties\": {\n \"name\": {\n \"type\": \"string\",\n \"minLength\": 1,\n \"description\": \"Display name for the pricing plan (eg, \\\"Free\\\", \\\"Starter Monthly\\\", \\\"Pro Annual\\\", etc)\"\n },\n \"slug\": {\n \"type\": \"string\",\n \"minLength\": 1,\n \"description\": \"PricingPlan slug (eg, \\\"free\\\", \\\"starter-monthly\\\", \\\"pro-annual\\\", etc). Should be lower-cased and kebab-cased. Should be stable across deployments.\"\n },\n \"interval\": {\n \"type\": \"string\",\n \"enum\": [\n \"day\",\n \"week\",\n \"month\",\n \"year\"\n ],\n \"description\": \"The frequency at which a subscription is billed.\"\n },\n \"description\": {\n \"type\": \"string\"\n },\n \"features\": {\n \"type\": \"array\",\n \"items\": {\n \"type\": \"string\"\n }\n },\n \"trialPeriodDays\": {\n \"type\": \"number\",\n \"minimum\": 0\n },\n \"rateLimit\": {\n \"anyOf\": [\n {\n \"type\": \"object\",\n \"properties\": {\n \"enabled\": {\n \"type\": \"boolean\",\n \"const\": false\n }\n },\n \"required\": [\n \"enabled\"\n ],\n \"additionalProperties\": false\n },\n {\n \"type\": \"object\",\n \"properties\": {\n \"interval\": {\n \"anyOf\": [\n {\n \"type\": \"number\",\n \"exclusiveMinimum\": 0\n },\n {\n \"type\": \"string\",\n \"minLength\": 1\n }\n ],\n \"description\": \"The interval at which the rate limit is applied. Either a positive integer expressed in seconds or a valid positive [ms](https://github.com/vercel/ms) string (eg, \\\"10s\\\", \\\"1m\\\", \\\"8h\\\", \\\"2d\\\", \\\"1w\\\", \\\"1y\\\", etc).\"\n },\n \"limit\": {\n \"type\": \"number\",\n \"minimum\": 0,\n \"description\": \"Maximum number of operations per interval (unitless).\"\n },\n \"mode\": {\n \"type\": \"string\",\n \"enum\": [\n \"strict\",\n \"approximate\"\n ],\n \"default\": \"approximate\",\n \"description\": \"How to enforce the rate limit: \\\"strict\\\" (more precise but slower) or \\\"approximate\\\" (the default; faster and asynchronous but less precise).\"\n },\n \"enabled\": {\n \"type\": \"boolean\",\n \"default\": true\n }\n },\n \"required\": [\n \"interval\",\n \"limit\"\n ],\n \"additionalProperties\": false\n }\n ]\n },\n \"lineItems\": {\n \"type\": \"array\",\n \"items\": {\n \"anyOf\": [\n {\n \"type\": \"object\",\n \"properties\": {\n \"slug\": {\n \"type\": \"string\"\n },\n \"label\": {\n \"type\": \"string\"\n },\n \"usageType\": {\n \"type\": \"string\",\n \"const\": \"licensed\"\n },\n \"amount\": {\n \"type\": \"number\",\n \"minimum\": 0\n }\n },\n \"required\": [\n \"slug\",\n \"usageType\",\n \"amount\"\n ],\n \"additionalProperties\": false\n },\n {\n \"type\": \"object\",\n \"properties\": {\n \"slug\": {\n \"$ref\": \"#/properties/pricingPlans/items/properties/lineItems/items/anyOf/0/properties/slug\"\n },\n \"label\": {\n \"$ref\": \"#/properties/pricingPlans/items/properties/lineItems/items/anyOf/0/properties/label\"\n },\n \"usageType\": {\n \"type\": \"string\",\n \"const\": \"metered\"\n },\n \"unitLabel\": {\n \"type\": \"string\"\n },\n \"billingScheme\": {\n \"type\": \"string\",\n \"enum\": [\n \"per_unit\",\n \"tiered\"\n ]\n },\n \"unitAmount\": {\n \"type\": \"number\",\n \"minimum\": 0\n },\n \"tiersMode\": {\n \"type\": \"string\",\n \"enum\": [\n \"graduated\",\n \"volume\"\n ]\n },\n \"tiers\": {\n \"type\": \"array\",\n \"items\": {\n \"type\": \"object\",\n \"properties\": {\n \"unitAmount\": {\n \"type\": \"number\"\n },\n \"flatAmount\": {\n \"type\": \"number\"\n },\n \"upTo\": {\n \"anyOf\": [\n {\n \"type\": \"number\"\n },\n {\n \"type\": \"string\",\n \"const\": \"inf\"\n }\n ]\n }\n },\n \"required\": [\n \"upTo\"\n ],\n \"additionalProperties\": false\n },\n \"minItems\": 1\n },\n \"defaultAggregation\": {\n \"type\": \"object\",\n \"properties\": {\n \"formula\": {\n \"type\": \"string\",\n \"enum\": [\n \"sum\",\n \"count\"\n ],\n \"default\": \"sum\"\n }\n },\n \"additionalProperties\": false\n },\n \"transformQuantity\": {\n \"type\": \"object\",\n \"properties\": {\n \"divideBy\": {\n \"type\": \"number\",\n \"exclusiveMinimum\": 0\n },\n \"round\": {\n \"type\": \"string\",\n \"enum\": [\n \"down\",\n \"up\"\n ]\n }\n },\n \"required\": [\n \"divideBy\",\n \"round\"\n ],\n \"additionalProperties\": false\n }\n },\n \"required\": [\n \"slug\",\n \"usageType\",\n \"billingScheme\"\n ],\n \"additionalProperties\": false\n }\n ],\n \"description\": \"PricingPlanLineItems represent a single line-item in a Stripe Subscription. They map to a Stripe billing `Price` and possibly a corresponding Stripe `Meter` for usage-based line-items.\"\n },\n \"minItems\": 1,\n \"maxItems\": 20\n }\n },\n \"required\": [\n \"name\",\n \"slug\",\n \"lineItems\"\n ],\n \"additionalProperties\": false,\n \"description\": \"Represents the config for a Stripe subscription with one or more PricingPlanLineItems.\"\n },\n \"minItems\": 1,\n \"description\": \"List of PricingPlans configuring which Stripe subscriptions should be available for the project. Defaults to a single free plan which is useful for developing and testing your project.\",\n \"default\": [\n {\n \"name\": \"Free\",\n \"slug\": \"free\",\n \"lineItems\": [\n {\n \"slug\": \"base\",\n \"usageType\": \"licensed\",\n \"amount\": 0\n }\n ],\n \"rateLimit\": {\n \"enabled\": true,\n \"interval\": 60,\n \"limit\": 1000,\n \"mode\": \"approximate\"\n }\n }\n ]\n },\n \"pricingIntervals\": {\n \"type\": \"array\",\n \"items\": {\n \"$ref\": \"#/properties/pricingPlans/items/properties/interval\"\n },\n \"minItems\": 1,\n \"description\": \"Optional list of billing intervals to enable in the pricingPlans.\\n\\nDefaults to a single monthly interval `['month']`.\\n\\nTo add support for annual pricing plans, for example, you can use: `['month', 'year']`.\",\n \"default\": [\n \"month\"\n ]\n },\n \"defaultRateLimit\": {\n \"$ref\": \"#/properties/pricingPlans/items/properties/rateLimit\",\n \"default\": {\n \"enabled\": true,\n \"interval\": 60,\n \"limit\": 1000,\n \"mode\": \"approximate\"\n }\n },\n \"toolConfigs\": {\n \"type\": \"array\",\n \"items\": {\n \"type\": \"object\",\n \"properties\": {\n \"name\": {\n \"type\": \"string\",\n \"minLength\": 1,\n \"pattern\": \"^[a-zA-Z_][a-zA-Z0-9_-]{0,63}$\",\n \"description\": \"Agentic tool name\"\n },\n \"enabled\": {\n \"type\": \"boolean\"\n },\n \"pure\": {\n \"type\": \"boolean\"\n },\n \"cacheControl\": {\n \"type\": \"string\"\n },\n \"reportUsage\": {\n \"type\": \"boolean\"\n },\n \"rateLimit\": {\n \"$ref\": \"#/properties/pricingPlans/items/properties/rateLimit\"\n },\n \"inputSchemaAdditionalProperties\": {\n \"type\": \"boolean\"\n },\n \"outputSchemaAdditionalProperties\": {\n \"type\": \"boolean\"\n },\n \"pricingPlanOverridesMap\": {\n \"type\": \"object\",\n \"additionalProperties\": {\n \"type\": \"object\",\n \"properties\": {\n \"enabled\": {\n \"type\": \"boolean\"\n },\n \"reportUsage\": {\n \"type\": \"boolean\"\n },\n \"rateLimit\": {\n \"$ref\": \"#/properties/pricingPlans/items/properties/rateLimit\"\n }\n },\n \"additionalProperties\": false\n },\n \"propertyNames\": {\n \"minLength\": 1\n },\n \"description\": \"Allows you to override this tool's behavior or disable it entirely for different pricing plans. This is a map of PricingPlan slug to PricingPlanToolOverrides for that plan.\"\n },\n \"examples\": {\n \"type\": \"array\",\n \"items\": {\n \"type\": \"object\",\n \"properties\": {\n \"name\": {\n \"type\": \"string\",\n \"description\": \"The display name of the example. If not given, defaults to `Example 1`, `Example 2`, etc.\"\n },\n \"prompt\": {\n \"type\": \"string\",\n \"description\": \"The input prompt for agents to use when running this example.\"\n },\n \"systemPrompt\": {\n \"type\": \"string\",\n \"description\": \"An optional system prompt for agents to use when running this example. Defaults to `You are a helpful assistant. Be as concise as possible.`\"\n },\n \"args\": {\n \"type\": \"object\",\n \"additionalProperties\": {},\n \"description\": \"The arguments to pass to the tool for this example.\"\n },\n \"featured\": {\n \"type\": \"boolean\",\n \"description\": \"Whether this example should be featured in the docs for the project.\"\n },\n \"description\": {\n \"type\": \"string\",\n \"description\": \"A description of the example.\"\n }\n },\n \"required\": [\n \"prompt\",\n \"args\"\n ],\n \"additionalProperties\": false\n },\n \"description\": \"Examples of how to use this tool. Used to generate example usage in the tool's docs.\"\n }\n },\n \"required\": [\n \"name\"\n ],\n \"additionalProperties\": false\n },\n \"default\": []\n }\n },\n \"required\": [\n \"name\",\n \"origin\"\n ],\n \"additionalProperties\": false,\n \"$schema\": \"https://json-schema.org/draft-07/schema\",\n \"title\": \"Agentic Project Config Schema\",\n \"description\": \"JSON Schema used by `agentic.config.{ts,js,json}` files to configure Agentic projects.\"\n}\n" }, { "path": "apps/web/readme.md", "content": "## TODO\n\n- better auth error handling\n- display validation errors in auth forms\n- race condition on login; sometimes doesn't actually login\n" }, { "path": "apps/web/src/app/about/page.tsx", "content": "import Link from 'next/link'\n\nimport { DotsSection } from '@/components/dots-section'\nimport { Markdown } from '@/components/markdown'\nimport { PageContainer } from '@/components/page-container'\nimport { SupplySideCTA } from '@/components/supply-side-cta'\nimport { githubUrl, twitterUrl } from '@/lib/config'\n\nexport default function AboutPage() {\n return (\n \n

\n About\n

\n\n
\n \n

Setting the stage

\n\n

Building reliable agents is hard.

\n\n

But building them without the right tools is even harder.

\n\n

\n MCP is really promising, but it's still early and the ecosystem's a\n bit of a mess.\n

\n\n

\n Add to that the fact that most MCPs are just thin wrappers around\n REST APIs – which works, but is far from ideal in terms of context\n efficiency and instruction following.\n

\n\n

\n The best agents require their tools to be optimized for LLM usage\n with a fundamentally different UX than REST APIs.\n

\n\n

\n There's a lot that will change in AI over the next decade, but one\n thing I believe strongly is that no matter how much the underlying\n AI systems change,{' '}\n \n providing access to high quality tools that are specifically\n designed and optimized for agents will become increasingly\n important\n \n .\n

\n\n

\n We call this Agentic UX, and\n it's at the heart of Agentic's mission.\n

\n\n

Mission

\n

\n Agentic's mission is to provide the world's best library of tools\n for AI agents.\n

\n\n {/*

What is Agentic UX?

\n

\n Agentic User Experience measures how optimized a resource is for\n consumption by LLM-based apps and more autonomous AI agents.\n

\n\n

\n `llms.txt` is a great example of a readonly format optimized for\n Agentic UX.\n

\n\n

\n Anthropic's Model Context Protocol (MCP) and Google's Agent to Agent\n Protocol (A2A) are both examples of protocols purpose-built for\n Agentic UX. There are dozens of other aspirational protocols with\n similar aims. [xkcd standards]\n

*/}\n\n

Team

\n

\n Agentic was founded in 2023 by{' '}\n \n Travis Fischer\n {' '}\n (hey hey πŸ‘‹) . We're backed by{' '}\n \n HF0\n \n ,{' '}\n \n Backend Capital\n \n , and\n \n Transpose Capital\n \n .\n

\n\n

\n I'm currently running Agentic as a solo founder while traveling\n around the world, but i'm actively looking to hire a few remote\n engineers and would consider bringing on a co-founder if they're a\n really strong fit.\n

\n\n

\n If you're an expert TypeScript dev who vibes with our mission and\n loves open source – and if you have an interest in AI engineering,\n AI agents, API gateways, OpenAPI, MCP, AI codegen, etc, feel free to{' '}\n \n DM me on twitter\n \n , and please include a few links to your GitHub + related projects.\n

\n\n

\n (this page was written with love and an intentional lack of LLM\n assistance on a very long and sleepy international flight πŸ’•)\n

\n\n

Tech stack

\n
    \n
  • TypeScript
    • \n
  • Node.js
    • \n
  • Postgres
    • \n
  • Drizzle ORM
    • \n
  • Hono
    • \n
  • Next.js
    • \n
  • Stripe
    • \n
  • Cloudflare Workers
    • \n
  • Vercel
    • \n
  • Sentry
    • \n
  • Resend
    • \n
  • Cursor
    • \n
\n\n

\n \n Check out the source on GitHub for more details\n \n .\n

\n \n
\n\n {/* CTA section */}\n \n

\n Don't miss out on the AI wave\n

\n\n \n \n \n )\n}\n" }, { "path": "apps/web/src/app/app/app-dashboard.tsx", "content": "import { AppConsumersList } from '@/components/app-consumers-list'\nimport { AppProjectsList } from '@/components/app-projects-list'\nimport { PageContainer } from '@/components/page-container'\n\nexport function AppDashboard() {\n return (\n \n
\n \n Dashboard\n \n\n
\n \n\n \n
\n
\n \n )\n}\n" }, { "path": "apps/web/src/app/app/consumers/[consumerId]/app-consumer-index.tsx", "content": "'use client'\n\nimport { Loader2Icon } from 'lucide-react'\nimport { useSearchParams } from 'next/navigation'\nimport { useCallback, useEffect, useRef, useState } from 'react'\nimport { toast } from 'sonner'\n\nimport { useAuthenticatedAgentic } from '@/components/agentic-provider'\nimport { useConfettiFireworks } from '@/components/confetti'\nimport { LoadingIndicator } from '@/components/loading-indicator'\nimport { PageContainer } from '@/components/page-container'\nimport { Button } from '@/components/ui/button'\nimport { toastError } from '@/lib/notifications'\nimport { useQuery } from '@/lib/query-client'\n\nexport function AppConsumerIndex({ consumerId }: { consumerId: string }) {\n const ctx = useAuthenticatedAgentic()\n const searchParams = useSearchParams()\n const checkout = searchParams.get('checkout')\n const plan = searchParams.get('plan')\n const { fireConfetti } = useConfettiFireworks()\n const [isLoadingStripeBillingPortal, setIsLoadingStripeBillingPortal] =\n useState(false)\n\n const {\n data: consumer,\n isLoading,\n isError\n } = useQuery({\n queryKey: ['consumer', consumerId],\n queryFn: () =>\n ctx!.api.getConsumer({\n consumerId,\n populate: ['project']\n }),\n enabled: !!ctx\n })\n\n const firstLoadConsumer = useRef(true)\n\n useEffect(() => {\n if (!ctx || !consumer || !firstLoadConsumer.current) return\n\n if (checkout === 'canceled') {\n firstLoadConsumer.current = false\n toast('Subscription canceled')\n } else if (checkout === 'success') {\n if (plan) {\n firstLoadConsumer.current = false\n toast(\n `Congrats! You are now subscribed to the \"${plan}\" plan for project \"${consumer.project.name}\"`,\n {\n duration: 10_000\n }\n )\n\n // Return the confetti cleanup handler, so if this component is\n // unmounted, the confetti will stop as well.\n return fireConfetti()\n } else {\n firstLoadConsumer.current = false\n toast(\n `Your subscription has been cancelled for project \"${consumer.project.name}\"`,\n {\n duration: 10_000\n }\n )\n }\n }\n }, [checkout, ctx, plan, consumer, fireConfetti])\n\n const onManageSubscription = useCallback(async () => {\n if (!ctx || !consumer) {\n void toastError('Failed to create billing portal session')\n return\n }\n\n let url: string | undefined\n try {\n setIsLoadingStripeBillingPortal(true)\n const res = await ctx!.api.createConsumerBillingPortalSession({\n consumerId: consumer.id\n })\n url = res.url\n } catch (err) {\n void toastError(err, { label: 'Error creating billing portal session' })\n } finally {\n setIsLoadingStripeBillingPortal(false)\n }\n\n if (url) {\n globalThis.open(url, '_blank')\n }\n }, [ctx, consumer])\n\n return (\n \n
\n {!ctx || isLoading ? (\n \n ) : isError ? (\n

Error fetching customer subscription \"{consumerId}\"

\n ) : !consumer ? (\n

Customer subscription \"{consumerId}\" not found

\n ) : (\n <>\n \n Subscription to {consumer.project.name}\n \n\n
\n 
\n                {JSON.stringify(consumer, null, 2)}\n
\n
\n\n \n {isLoadingStripeBillingPortal && (\n \n )}\n\n Manage Subscription\n \n \n )}\n
\n \n )\n}\n" }, { "path": "apps/web/src/app/app/consumers/[consumerId]/page.tsx", "content": "import { AppConsumerIndex } from './app-consumer-index'\n\nexport default async function AppConsumerIndexPage({\n params\n}: {\n params: Promise<{\n consumerId: string\n }>\n}) {\n const { consumerId } = await params\n\n return \n}\n" }, { "path": "apps/web/src/app/app/consumers/app-consumers-index.tsx", "content": "'use client'\n\nimport { Loader2Icon } from 'lucide-react'\nimport { useCallback, useState } from 'react'\n\nimport { useAuthenticatedAgentic } from '@/components/agentic-provider'\nimport { AppConsumersList } from '@/components/app-consumers-list'\nimport { PageContainer } from '@/components/page-container'\nimport { Button } from '@/components/ui/button'\nimport { toastError } from '@/lib/notifications'\n\nexport function AppConsumersIndex() {\n const ctx = useAuthenticatedAgentic()\n const [isLoadingStripeBillingPortal, setIsLoadingStripeBillingPortal] =\n useState(false)\n\n const onManageSubscriptions = useCallback(async () => {\n let url: string | undefined\n try {\n setIsLoadingStripeBillingPortal(true)\n const res = await ctx!.api.createBillingPortalSession()\n url = res.url\n } catch (err) {\n void toastError(err, { label: 'Error creating billing portal session' })\n } finally {\n setIsLoadingStripeBillingPortal(false)\n }\n\n if (url) {\n globalThis.open(url, '_blank')\n }\n }, [ctx])\n\n return (\n \n \n Subscriptions\n \n\n \n\n \n \n )\n}\n" }, { "path": "apps/web/src/app/app/consumers/page.tsx", "content": "import { AppConsumersIndex } from './app-consumers-index'\n\nexport default function AppConsumersIndexPage() {\n return \n}\n" }, { "path": "apps/web/src/app/app/page.tsx", "content": "import { AppDashboard } from './app-dashboard'\n\nexport default function AppIndexPage() {\n return \n}\n" }, { "path": "apps/web/src/app/app/projects/[namespace]/[project-slug]/app-project-index.tsx", "content": "'use client'\n\nimport { useAuthenticatedAgentic } from '@/components/agentic-provider'\nimport { LoadingIndicator } from '@/components/loading-indicator'\nimport { PageContainer } from '@/components/page-container'\nimport { useQuery } from '@/lib/query-client'\n\nexport function AppProjectIndex({\n projectIdentifier\n}: {\n projectIdentifier: string\n}) {\n const ctx = useAuthenticatedAgentic()\n const {\n data: project,\n isLoading,\n isError\n } = useQuery({\n queryKey: ['project', projectIdentifier],\n queryFn: () =>\n ctx!.api.getProjectByIdentifier({\n projectIdentifier,\n populate: ['lastPublishedDeployment']\n }),\n enabled: !!ctx\n })\n\n // TODO: show deployments\n\n return (\n \n
\n {!ctx || isLoading ? (\n \n ) : isError ? (\n

Error fetching project

\n ) : !project ? (\n

Project \"{projectIdentifier}\" not found

\n ) : (\n <>\n \n {project.name}\n \n\n
\n 
{JSON.stringify(project, null, 2)}
\n
\n \n )}\n
\n \n )\n}\n" }, { "path": "apps/web/src/app/app/projects/[namespace]/[project-slug]/page.tsx", "content": "import { parseProjectIdentifier } from '@agentic/platform-validators'\nimport { notFound } from 'next/navigation'\n\nimport { toastError } from '@/lib/notifications'\n\nimport { AppProjectIndex } from './app-project-index'\n\nexport default async function AppProjectIndexPage({\n params\n}: {\n params: Promise<{\n namespace: string\n 'project-slug': string\n }>\n}) {\n const { namespace: rawNamespace, 'project-slug': rawProjectSlug } =\n await params\n\n try {\n const namespace = decodeURIComponent(rawNamespace)\n const projectSlug = decodeURIComponent(rawProjectSlug)\n\n const { projectIdentifier } = parseProjectIdentifier(\n `${namespace}/${projectSlug}`,\n { strict: true }\n )\n\n return \n } catch (err: any) {\n void toastError(err, { label: 'Invalid project identifier' })\n\n return notFound()\n }\n}\n" }, { "path": "apps/web/src/app/app/projects/app-projects-index.tsx", "content": "import { AppProjectsList } from '@/components/app-projects-list'\nimport { PageContainer } from '@/components/page-container'\n\nexport function AppProjectsIndex() {\n return (\n \n
\n
\n \n
\n
\n \n )\n}\n" }, { "path": "apps/web/src/app/app/projects/page.tsx", "content": "import { AppProjectsIndex } from './app-projects-index'\n\nexport default function AppProjectsIndexPage() {\n return \n}\n" }, { "path": "apps/web/src/app/app/temp-testing", "content": " await new Promise((resolve) => setTimeout(resolve, 2000))\n console.log(projects)\n const p = [\n {\n id: 'proj_pk4ui2lpcepx1aaf21zlf0lj' + pageParam,\n createdAt: '2025-06-16 01:50:23.948105',\n updatedAt: '2025-06-16 01:50:23.948105',\n identifier: '@dev/test-everything-openapi',\n name: 'test-everything-openapi',\n userId: 'user_x7awoo6vxk7acinkjx1fc6kf',\n lastDeploymentId: 'depl_ub815xwoj8bzj1gqdlfzim91',\n applicationFeePercent: 20,\n defaultPricingInterval: 'month',\n pricingCurrency: 'usd'\n },\n {\n id: 'proj_j5lvlamp2fax4n7kx09eypjx' + pageParam,\n createdAt: '2025-06-16 01:50:20.288698',\n updatedAt: '2025-06-16 01:50:20.288698',\n identifier: '@dev/test-basic-mcp',\n name: 'test-basic-mcp',\n userId: 'user_x7awoo6vxk7acinkjx1fc6kf',\n lastDeploymentId: 'depl_krkn9nedwes1s662kky7a991',\n applicationFeePercent: 20,\n defaultPricingInterval: 'month',\n pricingCurrency: 'usd'\n },\n {\n id: 'proj_xrt1zzegoa3sun3kynh7itss' + pageParam,\n createdAt: '2025-06-16 01:50:17.138037',\n updatedAt: '2025-06-16 01:50:17.138037',\n identifier: '@dev/test-basic-openapi',\n name: 'test-basic-openapi',\n userId: 'user_x7awoo6vxk7acinkjx1fc6kf',\n lastDeploymentId: 'depl_frbnya7wukdto64y93osfp8a',\n applicationFeePercent: 20,\n defaultPricingInterval: 'month',\n pricingCurrency: 'usd'\n },\n {\n id: 'proj_pk4ui2lpcepx1aaf21zlf0lj' + 'foo' + pageParam,\n createdAt: '2025-06-16 01:50:23.948105',\n updatedAt: '2025-06-16 01:50:23.948105',\n identifier: '@dev/test-everything-openapi',\n name: 'test-everything-openapi',\n userId: 'user_x7awoo6vxk7acinkjx1fc6kf',\n lastDeploymentId: 'depl_ub815xwoj8bzj1gqdlfzim91',\n applicationFeePercent: 20,\n defaultPricingInterval: 'month',\n pricingCurrency: 'usd'\n },\n {\n id: 'proj_j5lvlamp2fax4n7kx09eypjx' + 'foo' + pageParam,\n createdAt: '2025-06-16 01:50:20.288698',\n updatedAt: '2025-06-16 01:50:20.288698',\n identifier: '@dev/test-basic-mcp',\n name: 'test-basic-mcp',\n userId: 'user_x7awoo6vxk7acinkjx1fc6kf',\n lastDeploymentId: 'depl_krkn9nedwes1s662kky7a991',\n applicationFeePercent: 20,\n defaultPricingInterval: 'month',\n pricingCurrency: 'usd'\n },\n {\n id: 'proj_xrt1zzegoa3sun3kynh7itss' + 'foo' + pageParam,\n createdAt: '2025-06-16 01:50:17.138037',\n updatedAt: '2025-06-16 01:50:17.138037',\n identifier: '@dev/test-basic-openapi',\n name: 'test-basic-openapi',\n userId: 'user_x7awoo6vxk7acinkjx1fc6kf',\n lastDeploymentId: 'depl_frbnya7wukdto64y93osfp8a',\n applicationFeePercent: 20,\n defaultPricingInterval: 'month',\n pricingCurrency: 'usd'\n },\n {\n id: 'proj_pk4ui2lpcepx1aaf21zlf0lj' + 'bar' + pageParam,\n createdAt: '2025-06-16 01:50:23.948105',\n updatedAt: '2025-06-16 01:50:23.948105',\n identifier: '@dev/test-everything-openapi',\n name: 'test-everything-openapi',\n userId: 'user_x7awoo6vxk7acinkjx1fc6kf',\n lastDeploymentId: 'depl_ub815xwoj8bzj1gqdlfzim91',\n applicationFeePercent: 20,\n defaultPricingInterval: 'month',\n pricingCurrency: 'usd'\n },\n {\n id: 'proj_j5lvlamp2fax4n7kx09eypjx' + 'bar' + pageParam,\n createdAt: '2025-06-16 01:50:20.288698',\n updatedAt: '2025-06-16 01:50:20.288698',\n identifier: '@dev/test-basic-mcp',\n name: 'test-basic-mcp',\n userId: 'user_x7awoo6vxk7acinkjx1fc6kf',\n lastDeploymentId: 'depl_krkn9nedwes1s662kky7a991',\n applicationFeePercent: 20,\n defaultPricingInterval: 'month',\n pricingCurrency: 'usd'\n },\n {\n id: 'proj_xrt1zzegoa3sun3kynh7itss' + 'bar' + pageParam,\n createdAt: '2025-06-16 01:50:17.138037',\n updatedAt: '2025-06-16 01:50:17.138037',\n identifier: '@dev/test-basic-openapi',\n name: 'test-basic-openapi',\n userId: 'user_x7awoo6vxk7acinkjx1fc6kf',\n lastDeploymentId: 'depl_frbnya7wukdto64y93osfp8a',\n applicationFeePercent: 20,\n defaultPricingInterval: 'month',\n pricingCurrency: 'usd'\n },\n {\n id: 'proj_pk4ui2lpcepx1aaf21zlf0lj' + 'baz' + pageParam,\n createdAt: '2025-06-16 01:50:23.948105',\n updatedAt: '2025-06-16 01:50:23.948105',\n identifier: '@dev/test-everything-openapi',\n name: 'test-everything-openapi',\n userId: 'user_x7awoo6vxk7acinkjx1fc6kf',\n lastDeploymentId: 'depl_ub815xwoj8bzj1gqdlfzim91',\n applicationFeePercent: 20,\n defaultPricingInterval: 'month',\n pricingCurrency: 'usd'\n }\n ]\n if (pageParam < 200) {\n projects = p as any\n }\n" }, { "path": "apps/web/src/app/auth/[provider]/success/oauth-success-callback.tsx", "content": "'use client'\n\nimport { sanitizeSearchParams } from '@agentic/platform-core'\nimport { useRouter, useSearchParams } from 'next/navigation'\nimport { useEffect } from 'react'\n\nimport {\n useNextUrl,\n useUnauthenticatedAgentic\n} from '@/components/agentic-provider'\nimport { LoadingIndicator } from '@/components/loading-indicator'\nimport { toastError } from '@/lib/notifications'\n\nexport function OAuthSuccessCallback({\n provider:\n // TODO: make generic using this provider instead of hard-coding github\n _provider\n}: {\n provider: string\n}) {\n const searchParams = useSearchParams()\n const code = searchParams.get('code')\n const ctx = useUnauthenticatedAgentic()\n const nextUrl = useNextUrl()\n const router = useRouter()\n\n useEffect(() => {\n ;(async function () {\n if (!ctx) {\n return\n }\n\n if (!code) {\n // TODO\n throw new Error('Missing code or challenge')\n }\n\n // TODO: make generic using `provider`\n try {\n await ctx.api.exchangeOAuthCodeWithGitHub({ code })\n } catch (err) {\n await toastError(err, { label: 'Auth error' })\n\n return router.replace(\n `/login?${sanitizeSearchParams({ next: nextUrl }).toString()}`\n )\n }\n\n return router.replace(nextUrl || '/app')\n })()\n }, [code, ctx, nextUrl, router])\n\n return \n}\n" }, { "path": "apps/web/src/app/auth/[provider]/success/page.tsx", "content": "import { assert } from '@agentic/platform-core'\nimport { Suspense } from 'react'\n\nimport { OAuthSuccessCallback } from './oauth-success-callback'\n\nexport default async function Page({\n params\n}: {\n params: Promise<{ provider: string }>\n}) {\n const { provider } = await params\n assert(provider, 'Missing provider')\n\n return (\n \n \n \n )\n}\n" }, { "path": "apps/web/src/app/contact/page.tsx", "content": "import Link from 'next/link'\n\nimport { DotsSection } from '@/components/dots-section'\nimport { GitHubStarCounter } from '@/components/github-star-counter'\nimport { HeroButton } from '@/components/hero-button'\nimport { PageContainer } from '@/components/page-container'\nimport { Button } from '@/components/ui/button'\nimport { calendarBookingUrl, emailUrl, twitterUrl } from '@/lib/config'\n\nexport default function AboutPage() {\n return (\n \n

\n Contact\n

\n\n
\n

\n Agentic is currently a solo effort by{' '}\n \n Travis Fischer\n \n . πŸ‘‹\n

\n\n

\n As with MCP itself, Agentic is an active work in progress, so please\n reach out if you have any questions, feedback, or feature requests.\n

\n
\n\n {/* CTA section */}\n \n
\n \n \n DM me on Twitter / X\n \n \n\n \n\n \n\n \n
\n \n \n )\n}\n" }, { "path": "apps/web/src/app/globals.css", "content": "@import 'tailwindcss';\n@plugin '@tailwindcss/typography';\n\n@custom-variant dark (&:is(.dark *));\n\n@theme {\n --font-heading: var(--font-geist);\n --font-body: var(--font-geist);\n}\n\n:root {\n --radius: 0.625rem;\n --background: oklch(1 0 0);\n --foreground: oklch(0.145 0 0);\n --card: oklch(1 0 0);\n --card-foreground: oklch(0.145 0 0);\n --popover: oklch(1 0 0);\n --popover-foreground: oklch(0.145 0 0);\n --primary: oklch(0.205 0 0);\n --primary-foreground: oklch(0.985 0 0);\n --secondary: oklch(0.97 0 0);\n --secondary-foreground: oklch(0.205 0 0);\n --muted: oklch(0.97 0 0);\n --muted-foreground: oklch(0.556 0 0);\n --accent: oklch(0.97 0 0);\n --accent-foreground: oklch(0.205 0 0);\n --destructive: oklch(0.577 0.245 27.325);\n --border: oklch(0.922 0 0);\n --input: oklch(0.922 0 0);\n --ring: oklch(0.708 0 0);\n --chart-1: oklch(0.646 0.222 41.116);\n --chart-2: oklch(0.6 0.118 184.704);\n --chart-3: oklch(0.398 0.07 227.392);\n --chart-4: oklch(0.828 0.189 84.429);\n --chart-5: oklch(0.769 0.188 70.08);\n --sidebar: oklch(0.985 0 0);\n --sidebar-foreground: oklch(0.145 0 0);\n --sidebar-primary: oklch(0.205 0 0);\n --sidebar-primary-foreground: oklch(0.985 0 0);\n --sidebar-accent: oklch(0.97 0 0);\n --sidebar-accent-foreground: oklch(0.205 0 0);\n --sidebar-border: oklch(0.922 0 0);\n --sidebar-ring: oklch(0.708 0 0);\n}\n\n.dark {\n --background: oklch(0.145 0 0);\n --foreground: oklch(0.985 0 0);\n --card: oklch(0.205 0 0);\n --card-foreground: oklch(0.985 0 0);\n --popover: oklch(0.205 0 0);\n --popover-foreground: oklch(0.985 0 0);\n --primary: oklch(0.922 0 0);\n --primary-foreground: oklch(0.205 0 0);\n --secondary: oklch(0.269 0 0);\n --secondary-foreground: oklch(0.985 0 0);\n --muted: oklch(0.269 0 0);\n --muted-foreground: oklch(0.708 0 0);\n --accent: oklch(0.269 0 0);\n --accent-foreground: oklch(0.985 0 0);\n --destructive: oklch(0.704 0.191 22.216);\n --border: oklch(1 0 0 / 10%);\n --input: oklch(1 0 0 / 15%);\n --ring: oklch(0.556 0 0);\n --chart-1: oklch(0.488 0.243 264.376);\n --chart-2: oklch(0.696 0.17 162.48);\n --chart-3: oklch(0.769 0.188 70.08);\n --chart-4: oklch(0.627 0.265 303.9);\n --chart-5: oklch(0.645 0.246 16.439);\n --sidebar: oklch(0.205 0 0);\n --sidebar-foreground: oklch(0.985 0 0);\n --sidebar-primary: oklch(0.488 0.243 264.376);\n --sidebar-primary-foreground: oklch(0.985 0 0);\n --sidebar-accent: oklch(0.269 0 0);\n --sidebar-accent-foreground: oklch(0.985 0 0);\n --sidebar-border: oklch(1 0 0 / 10%);\n --sidebar-ring: oklch(0.556 0 0);\n}\n\n@theme inline {\n --radius-sm: calc(var(--radius) - 4px);\n --radius-md: calc(var(--radius) - 2px);\n --radius-lg: var(--radius);\n --radius-xl: calc(var(--radius) + 4px);\n --color-background: var(--background);\n --color-foreground: var(--foreground);\n --color-card: var(--card);\n --color-card-foreground: var(--card-foreground);\n --color-popover: var(--popover);\n --color-popover-foreground: var(--popover-foreground);\n --color-primary: var(--primary);\n --color-primary-foreground: var(--primary-foreground);\n --color-secondary: var(--secondary);\n --color-secondary-foreground: var(--secondary-foreground);\n --color-muted: var(--muted);\n --color-muted-foreground: var(--muted-foreground);\n --color-accent: var(--accent);\n --color-accent-foreground: var(--accent-foreground);\n --color-destructive: var(--destructive);\n --color-border: var(--border);\n --color-input: var(--input);\n --color-ring: var(--ring);\n --color-chart-1: var(--chart-1);\n --color-chart-2: var(--chart-2);\n --color-chart-3: var(--chart-3);\n --color-chart-4: var(--chart-4);\n --color-chart-5: var(--chart-5);\n --color-sidebar: var(--sidebar);\n --color-sidebar-foreground: var(--sidebar-foreground);\n --color-sidebar-primary: var(--sidebar-primary);\n --color-sidebar-primary-foreground: var(--sidebar-primary-foreground);\n --color-sidebar-accent: var(--sidebar-accent);\n --color-sidebar-accent-foreground: var(--sidebar-accent-foreground);\n --color-sidebar-border: var(--sidebar-border);\n --color-sidebar-ring: var(--sidebar-ring);\n}\n\n@layer base {\n * {\n @apply border-border outline-ring/50;\n }\n body {\n @apply bg-background text-foreground;\n }\n}\n\nbody {\n font-family: var(--font-body), Arial, Helvetica, sans-serif;\n}\n\n* {\n box-sizing: border-box;\n}\n\nhtml,\nbody {\n max-width: 100vw;\n height: 100%;\n}\n\na {\n text-decoration: none;\n}\n\na:hover {\n text-decoration: none;\n}\n\na.link,\na .link {\n position: relative;\n transition: unset;\n opacity: 1;\n padding-bottom: 0.1rem;\n border-bottom-width: 0.1rem;\n border-bottom-color: transparent;\n background: transparent;\n background-origin: border-box;\n background-repeat: no-repeat;\n background-position: 50% 100%;\n background-size: 0 0.1rem;\n}\n\na.link:focus,\na.link:hover,\na:focus .link,\na:hover .link {\n border-bottom-color: transparent;\n\n background-image: linear-gradient(90.68deg, #b439df 0.26%, #e5337e 102.37%);\n background-repeat: no-repeat;\n background-position: 0 100%;\n background-size: 100% 0.1rem;\n\n transition-property: background-position, background-size;\n transition-duration: 300ms;\n}\n\nmain section {\n width: 100%;\n display: flex;\n flex-direction: column;\n align-items: center;\n}\n\nmain section:last-of-type {\n margin-bottom: 0;\n}\n" }, { "path": "apps/web/src/app/layout.tsx", "content": "import './globals.css'\n\nimport type { Metadata } from 'next'\nimport { Geist } from 'next/font/google'\nimport { Toaster } from 'sonner'\n\nimport { Bootstrap } from '@/components/bootstrap'\nimport { Footer } from '@/components/footer'\nimport { Header } from '@/components/header'\nimport * as config from '@/lib/config'\n\nimport Providers from './providers'\n\nconst geist = Geist({\n variable: '--font-geist',\n subsets: ['latin']\n})\n\nexport const metadata: Metadata = {\n title: config.title,\n description: config.description,\n authors: [{ name: config.author, url: config.twitterUrl }],\n metadataBase: new URL(config.prodUrl),\n keywords: config.keywords,\n openGraph: {\n title: config.title,\n description: config.description,\n siteName: config.title,\n locale: 'en_US',\n type: 'website',\n url: config.prodUrl\n },\n twitter: {\n card: 'summary_large_image',\n creator: `@${config.authorTwitterUsername}`,\n title: config.title,\n description: config.description\n }\n}\n\nexport default function RootLayout({\n children\n}: Readonly<{\n children: React.ReactNode\n}>) {\n return (\n \n \n \n
\n
\n\n
\n {children}\n
\n\n \n
\n
\n\n \n \n \n \n )\n}\n" }, { "path": "apps/web/src/app/login/login-form.tsx", "content": "'use client'\n\nimport { sanitizeSearchParams } from '@agentic/platform-core'\nimport { isValidEmail, isValidPassword } from '@agentic/platform-validators'\nimport { useForm } from '@tanstack/react-form'\nimport { Loader2Icon } from 'lucide-react'\nimport { useRouter } from 'next/navigation'\nimport { useCallback, useState } from 'react'\nimport { z } from 'zod'\n\nimport {\n useNextUrl,\n useUnauthenticatedAgentic\n} from '@/components/agentic-provider'\nimport { Button } from '@/components/ui/button'\nimport { Input } from '@/components/ui/input'\nimport { Label } from '@/components/ui/label'\nimport { GitHubIcon } from '@/icons/github'\nimport { toastError } from '@/lib/notifications'\nimport { cn } from '@/lib/utils'\n\nexport function LoginForm() {\n const ctx = useUnauthenticatedAgentic()\n const nextUrl = useNextUrl()\n const router = useRouter()\n const [isGitHubLoading, setIsGitHubLoading] = useState(false)\n\n const onAuthWithGitHub = useCallback(async () => {\n setIsGitHubLoading(true)\n try {\n const redirectUri = `${globalThis.location.origin}/auth/github/success?${sanitizeSearchParams({ next: nextUrl }).toString()}`\n\n const url = await ctx!.api.initAuthFlowWithGitHub({ redirectUri })\n\n void router.push(url)\n } catch (err: any) {\n setIsGitHubLoading(false)\n void toastError(err, { label: 'GitHub auth error' })\n }\n }, [ctx, nextUrl, router])\n\n const form = useForm({\n defaultValues: {\n email: '',\n password: ''\n },\n validators: {\n onChange: z.object({\n email: z\n .string()\n .email()\n .refine((email) => isValidEmail(email)),\n password: z.string().refine((password) => isValidPassword(password))\n })\n },\n onSubmit: async ({ value }) => {\n try {\n const res = await ctx!.api.signInWithPassword({\n email: value.email,\n password: value.password\n })\n\n console.log('login success', res)\n } catch (err: any) {\n void toastError(err, { label: 'Login error' })\n return\n }\n\n return router.push(nextUrl || '/app')\n }\n })\n\n return (\n
\n
\n {\n e.preventDefault()\n void form.handleSubmit()\n }}\n >\n
\n

Login to your account

\n
\n\n
\n (\n
\n \n\n field.handleChange(e.target.value)}\n />\n
\n )}\n />\n\n (\n
\n
\n \n\n {/* \n Forgot your password?\n */}\n
\n\n field.handleChange(e.target.value)}\n />\n
\n )}\n />\n\n [\n state.canSubmit,\n state.isSubmitting,\n state.isTouched\n ]}\n children={([canSubmit, isSubmitting, isTouched]) => (\n \n {isSubmitting && }\n\n Login\n \n )}\n />\n
\n \n\n
\n
\n
Or continue with
\n
\n
\n\n {\n e.preventDefault()\n void onAuthWithGitHub()\n }}\n >\n \n {isGitHubLoading && }\n \n\n Login with GitHub\n \n \n\n
\n Don't have an account?{' '}\n \n Sign up\n \n
\n
\n
\n )\n}\n" }, { "path": "apps/web/src/app/login/page.tsx", "content": "import { Suspense } from 'react'\n\nimport { PageContainer } from '@/components/page-container'\n\nimport { LoginForm } from './login-form'\n\nexport default function Page() {\n return (\n \n \n \n \n \n )\n}\n" }, { "path": "apps/web/src/app/logout/page.tsx", "content": "'use client'\n\nimport { useEffect } from 'react'\n\nimport { useAuthenticatedAgentic } from '@/components/agentic-provider'\n\nexport default function LogoutPage() {\n const ctx = useAuthenticatedAgentic()\n\n useEffect(() => {\n ;(async () => {\n if (ctx) {\n ctx.logout()\n }\n })()\n }, [ctx])\n\n return null\n}\n" }, { "path": "apps/web/src/app/marketplace/marketplace-index.tsx", "content": "'use client'\n\nimport useInfiniteScroll from 'react-infinite-scroll-hook'\n\nimport { DotsSection } from '@/components/dots-section'\nimport { LoadingIndicator } from '@/components/loading-indicator'\nimport { PageContainer } from '@/components/page-container'\nimport { PublicProject } from '@/components/public-project'\nimport { SupplySideCTA } from '@/components/supply-side-cta'\nimport { defaultAgenticApiClient } from '@/lib/default-agentic-api-client'\nimport { useInfiniteQuery, useQuery } from '@/lib/query-client'\n\nexport function MarketplaceIndex({ limit }: { limit: number }) {\n const {\n data: featuredProjects,\n isLoading: isFeaturedProjectsLoading,\n isError: isFeaturedProjectsError\n } = useQuery({\n queryKey: ['featured-public-projects'],\n queryFn: () =>\n defaultAgenticApiClient.listPublicProjects({\n populate: ['lastPublishedDeployment'],\n limit: 3,\n tag: 'featured',\n sortBy: 'createdAt',\n sort: 'asc'\n })\n })\n\n const {\n data,\n isLoading,\n isError,\n hasNextPage,\n fetchNextPage,\n isFetchingNextPage\n } = useInfiniteQuery({\n queryKey: ['public-projects'],\n queryFn: ({ pageParam = 0 }) =>\n defaultAgenticApiClient\n .listPublicProjects({\n populate: ['lastPublishedDeployment'],\n offset: pageParam,\n limit,\n notTag: 'featured'\n })\n .then(async (projects) => {\n return {\n projects,\n offset: pageParam,\n limit,\n nextOffset:\n projects.length >= limit ? pageParam + projects.length : undefined\n }\n }),\n getNextPageParam: (lastGroup) => lastGroup?.nextOffset,\n initialPageParam: 0\n })\n\n const [sentryRef] = useInfiniteScroll({\n loading: isLoading || isFetchingNextPage,\n hasNextPage,\n onLoadMore: fetchNextPage,\n disabled: isError,\n rootMargin: '0px 0px 200px 0px'\n })\n\n const projects = data ? data.pages.flatMap((p) => p.projects) : []\n\n return (\n \n
\n \n Marketplace\n \n\n
\n
\n

Featured

\n\n {isFeaturedProjectsError ? (\n

Error fetching featured projects

\n ) : isFeaturedProjectsLoading ? (\n \n ) : !featuredProjects?.length ? (\n

\n No projects found. This is likely an issue on Agentic's side.\n Please refresh or contact support.\n

\n ) : (\n
\n {featuredProjects.map((project) => (\n \n ))}\n
\n )}\n
\n\n
\n

General

\n\n {isError ? (\n

Error fetching projects

\n ) : isLoading ? (\n \n ) : !projects.length ? (\n

\n No projects found. This is likely an issue on Agentic's side.\n Please refresh or contact support.\n

\n ) : (\n
\n {projects.map((project) => (\n \n ))}\n\n {hasNextPage && (\n
\n {isLoading || (isFetchingNextPage && )}\n
\n )}\n
\n )}\n
\n
\n
\n\n {/* CTA section */}\n \n

\n Your API β†’ Paid MCP, Instantly\n

\n\n
\n Run one command to turn any MCP server or OpenAPI service into a paid\n MCP product. With built-in support for every major LLM SDK and MCP\n client.\n
\n\n \n \n \n )\n}\n" }, { "path": "apps/web/src/app/marketplace/page.tsx", "content": "import {\n dehydrate,\n HydrationBoundary,\n QueryClient\n} from '@tanstack/react-query'\n\nimport { defaultAgenticApiClient } from '@/lib/default-agentic-api-client'\n\nimport { MarketplaceIndex } from './marketplace-index'\n\nexport default async function MarketplaceIndexPage() {\n const queryClient = new QueryClient()\n const limit = 10\n\n await Promise.all([\n queryClient.prefetchQuery({\n queryKey: ['featured-public-projects'],\n queryFn: () =>\n defaultAgenticApiClient.listPublicProjects({\n populate: ['lastPublishedDeployment'],\n limit: 3,\n tag: 'featured',\n sortBy: 'createdAt',\n sort: 'asc'\n })\n }),\n\n queryClient.prefetchInfiniteQuery({\n queryKey: ['public-projects'],\n queryFn: ({ pageParam = 0 }) =>\n defaultAgenticApiClient\n .listPublicProjects({\n populate: ['lastPublishedDeployment'],\n offset: pageParam,\n limit,\n notTag: 'featured'\n })\n .then(async (projects) => {\n return {\n projects,\n offset: pageParam,\n limit,\n nextOffset:\n projects.length >= limit\n ? pageParam + projects.length\n : undefined\n }\n }),\n initialPageParam: 0\n })\n ])\n\n return (\n \n \n \n )\n}\n" }, { "path": "apps/web/src/app/marketplace/projects/[namespace]/[project-slug]/marketplace-nav.tsx", "content": "import {\n Breadcrumb,\n BreadcrumbItem,\n BreadcrumbLink,\n BreadcrumbList,\n BreadcrumbPage,\n BreadcrumbSeparator\n} from '@/components/ui/breadcrumb'\n\nexport function MarketplacePublicProjectDetailNav({\n projectIdentifier\n}: {\n projectIdentifier: string\n}) {\n return (\n \n \n \n Marketplace\n \n\n \n\n \n {projectIdentifier}\n \n \n \n )\n}\n" }, { "path": "apps/web/src/app/marketplace/projects/[namespace]/[project-slug]/marketplace-public-project-detail.tsx", "content": "'use client'\n\nimport type { Project } from '@agentic/platform-types'\nimport { assert, omit, sanitizeSearchParams } from '@agentic/platform-core'\nimport ky from 'ky'\nimport { ChevronsUpDownIcon, ExternalLinkIcon } from 'lucide-react'\nimport Link from 'next/link'\nimport { useRouter, useSearchParams } from 'next/navigation'\nimport plur from 'plur'\nimport { useCallback, useEffect, useMemo, useRef, useState } from 'react'\nimport { useAsync } from 'react-use'\n\nimport { useAgentic } from '@/components/agentic-provider'\nimport { CodeBlock } from '@/components/code-block'\nimport { ExampleUsage } from '@/components/example-usage'\nimport { HeroButton } from '@/components/hero-button'\nimport { LoadingIndicator } from '@/components/loading-indicator'\nimport { SSRMarkdown } from '@/components/markdown/ssr-markdown'\nimport { PageContainer } from '@/components/page-container'\nimport { ProjectPricingPlans } from '@/components/project-pricing-plans'\nimport { Button } from '@/components/ui/button'\nimport {\n Collapsible,\n CollapsibleContent,\n CollapsibleTrigger\n} from '@/components/ui/collapsible'\nimport { Tabs, TabsContent, TabsList, TabsTrigger } from '@/components/ui/tabs'\nimport { GitHubIcon } from '@/icons/github'\nimport { defaultAgenticApiClient } from '@/lib/default-agentic-api-client'\nimport { toast, toastError } from '@/lib/notifications'\nimport { useQuery } from '@/lib/query-client'\n\nimport {\n type MarketplacePublicProjectDetailTab,\n marketplacePublicProjectDetailTabsSet,\n MAX_TOOLS_TO_SHOW\n} from './utils'\n\nexport function MarketplacePublicProjectDetail({\n projectIdentifier\n}: {\n projectIdentifier: string\n}) {\n const ctx = useAgentic()\n const searchParams = useSearchParams()\n const checkout = searchParams.get('checkout')\n const plan = searchParams.get('plan')\n const [isLoadingStripeCheckoutForPlan, setIsLoadingStripeCheckoutForPlan] =\n useState(null)\n const router = useRouter()\n\n // Load the public project\n const {\n data: project,\n isLoading,\n isError\n } = useQuery({\n queryKey: ['public-project', projectIdentifier],\n queryFn: () =>\n defaultAgenticApiClient.getPublicProjectByIdentifier({\n projectIdentifier,\n populate: ['lastPublishedDeployment']\n })\n })\n\n // If the user is authenticated, check if they have an active subscription to\n // this project\n const {\n data: consumer,\n isLoading: isConsumerLoading\n // isError: isConsumerError\n } = useQuery({\n queryKey: [\n 'project',\n projectIdentifier,\n 'user',\n ctx?.api.authSession?.user.id\n ],\n queryFn: () =>\n ctx!.api.getConsumerByProjectIdentifier({\n projectIdentifier\n }),\n enabled: !!ctx?.isAuthenticated\n })\n\n const onSubscribe = useCallback(\n async (pricingPlanSlug: string) => {\n assert(ctx, 500, 'Agentic context is required')\n assert(project, 500, 'Project is required')\n const { lastPublishedDeploymentId } = project\n assert(\n lastPublishedDeploymentId,\n 500,\n `Public project \"${projectIdentifier}\" expected to have a last published deployment, but none found.`\n )\n\n if (!ctx.isAuthenticated) {\n return router.push(\n `/signup?${sanitizeSearchParams({\n next: `/marketplace/projects/${projectIdentifier}?tab=pricing&checkout=true&plan=${pricingPlanSlug}`\n }).toString()}`\n )\n }\n\n let checkoutSession: { url: string; id: string } | undefined\n\n try {\n setIsLoadingStripeCheckoutForPlan(pricingPlanSlug)\n const res = await ctx!.api.createConsumerCheckoutSession({\n deploymentId: lastPublishedDeploymentId!,\n plan: pricingPlanSlug\n })\n\n console.log('checkout', res)\n checkoutSession = res.checkoutSession\n } catch (err) {\n return toastError(err, { label: 'Error creating checkout session' })\n } finally {\n setIsLoadingStripeCheckoutForPlan(null)\n }\n\n return router.push(checkoutSession.url)\n },\n [ctx, projectIdentifier, project, router]\n )\n\n const hasInitializedCheckoutFromSearchParams = useRef(false)\n\n useEffect(() => {\n if (!ctx) return\n\n if (checkout === 'canceled') {\n toast('Checkout canceled')\n } else if (\n checkout === 'true' &&\n plan &&\n project &&\n !isConsumerLoading &&\n !hasInitializedCheckoutFromSearchParams.current\n ) {\n hasInitializedCheckoutFromSearchParams.current = true\n\n if (consumer?.plan !== plan) {\n // Start checkout flow if search params have `?checkout=true&plan={plan}`\n // This is to allow unauthenticated users to subscribe to a plan by first\n // visiting `/login` or `/signup` and then being redirected to this page\n // with the target checkout search params already pre-filled.\n // Another use case for this functionality is providing a single link to\n // subscribe to a specific project and pricing plan – with the checkout\n // details pre-filled.\n void onSubscribe(checkout)\n }\n }\n }, [\n checkout,\n plan,\n ctx,\n project,\n isConsumerLoading,\n consumer,\n onSubscribe,\n hasInitializedCheckoutFromSearchParams\n ])\n\n const deployment = useMemo(() => project?.lastPublishedDeployment, [project])\n const featuredToolName = useMemo(() => {\n const toolConfigs = deployment?.toolConfigs?.filter(\n (toolConfig) => toolConfig?.enabled !== false\n )\n\n return (\n toolConfigs?.find((toolConfig) =>\n toolConfig.examples?.find((example) => example.featured)\n )?.name ??\n toolConfigs?.find((toolConfig) => toolConfig.examples?.length)?.name ??\n toolConfigs?.[0]?.name ??\n deployment?.tools[0]?.name\n )\n }, [deployment])\n\n const tab = useMemo(() => {\n const tab = searchParams.get('tab')?.toLowerCase()\n if (!tab || !marketplacePublicProjectDetailTabsSet.has(tab)) {\n return 'overview'\n }\n\n if (tab === 'readme' && !deployment?.readme?.trim()) {\n return 'overview'\n }\n\n return tab as MarketplacePublicProjectDetailTab\n }, [searchParams, deployment])\n\n const { value: readme, loading: isReadmeLoading } = useAsync(async () => {\n if (deployment?.readme?.trim()) {\n return ky.get(deployment.readme).text()\n }\n\n return undefined\n }, [deployment])\n\n const tools = useMemo(() => {\n if (!deployment) return []\n const toolConfigsMap = new Map(\n deployment.toolConfigs.map((toolConfig) => [toolConfig.name, toolConfig])\n )\n\n return deployment.tools\n .map((tool) => {\n const toolConfig = toolConfigsMap.get(tool.name)\n if (toolConfig?.enabled === false) return null\n\n // TODO: add to tool if disabled on current pricing plan\n return tool\n })\n .filter(Boolean)\n }, [deployment])\n\n return (\n \n
\n {isLoading ? (\n \n ) : isError ? (\n

Error fetching project

\n ) : !project ? (\n

Project \"{projectIdentifier}\" not found

\n ) : (\n
\n \n\n {\n if (value === 'overview') {\n router.push(`/marketplace/projects/${projectIdentifier}`)\n } else {\n router.push(\n `/marketplace/projects/${projectIdentifier}?tab=${value}`\n )\n }\n }}\n >\n \n \n Overview\n \n\n {deployment?.readme?.trim() && (\n \n Readme\n \n )}\n\n \n Tools\n \n\n \n Pricing\n \n\n \n Debug\n \n \n\n
\n {tab === 'overview' && (\n \n

\n Overview\n

\n\n
\n
\n {deployment ? (\n <>\n

\n {deployment.description ||\n 'No description available'}\n

\n\n
\n

\n Tools\n

\n\n
    \n {deployment.tools\n .slice(0, MAX_TOOLS_TO_SHOW)\n .map((tool) => (\n \n

    \n {tool.name}\n

    \n\n

    \n {tool.description}\n

    \n \n ))}\n\n {tools.length > MAX_TOOLS_TO_SHOW && (\n
  • \n \n \n View{' '}\n {deployment.tools.length -\n MAX_TOOLS_TO_SHOW}{' '}\n more{' '}\n {plur(\n 'tool',\n deployment.tools.length -\n MAX_TOOLS_TO_SHOW\n )}\n \n \n
    • \n )}\n
\n
\n \n ) : (\n

\n This project doesn't have any published deployments.\n

\n )}\n
\n\n
\n \n
\n
\n \n )}\n\n {tab === 'readme' && (\n \n {isReadmeLoading ? (\n \n ) : readme ? (\n \n ) : (\n

Readme not found

\n )}\n \n )}\n\n {tab === 'tools' && (\n \n

\n Tools\n

\n\n {deployment && (\n
    \n {tools.map((tool) => (\n \n

    \n {tool.name}\n

    \n\n

    \n {tool.description}\n

    \n\n \n \n \n Input schema\n \n \n \n\n \n \n \n \n\n {tool.outputSchema && (\n \n \n \n Output schema\n \n \n \n\n \n \n \n \n )}\n \n ))}\n
\n )}\n \n )}\n\n {tab === 'pricing' && (\n \n

\n Pricing\n

\n\n \n \n )}\n\n {tab === 'debug' && (\n \n

\n Debug\n

\n\n \n \n \n \n\n \n \n \n \n\n {deployment && (\n \n \n \n \n\n \n \n \n \n )}\n\n {consumer && (\n \n \n \n \n\n \n \n \n \n )}\n \n )}\n
\n \n
\n )}\n
\n \n )\n}\n\nfunction ProjectHeader({\n project,\n tab\n}: {\n project: Project\n tab?: MarketplacePublicProjectDetailTab\n}) {\n const ctx = useAgentic()\n\n const pricingTabHref = `/marketplace/projects/${project.identifier}?tab=pricing`\n\n return (\n <>\n {/* */}\n\n
\n
\n \n\n

\n {project.name}\n

\n\n \n \n Subscribe to {project.identifier}\n \n \n
\n\n
\n
\n {project.identifier}\n\n {/* TODO: */}\n
\n\n {project.lastPublishedDeployment?.homepageUrl && (\n \n )}\n\n {project.lastPublishedDeployment?.sourceUrl && (\n \n )}\n
\n
\n \n )\n}\n" }, { "path": "apps/web/src/app/marketplace/projects/[namespace]/[project-slug]/page.tsx", "content": "import { parseProjectIdentifier } from '@agentic/platform-validators'\nimport {\n dehydrate,\n HydrationBoundary,\n QueryClient\n} from '@tanstack/react-query'\nimport { notFound } from 'next/navigation'\n\nimport { defaultAgenticApiClient } from '@/lib/default-agentic-api-client'\nimport { toastError } from '@/lib/notifications'\n\nimport { MarketplacePublicProjectDetail } from './marketplace-public-project-detail'\n\nexport default async function MarketplacePublicProjectDetailPage({\n params\n}: {\n params: Promise<{\n namespace: string\n 'project-slug': string\n }>\n}) {\n const { namespace: rawNamespace, 'project-slug': rawProjectSlug } =\n await params\n\n let projectIdentifier: string\n try {\n const namespace = decodeURIComponent(rawNamespace)\n const projectSlug = decodeURIComponent(rawProjectSlug)\n\n const parsedProjectIdentifier = parseProjectIdentifier(\n `${namespace}/${projectSlug}`,\n { strict: true }\n )\n projectIdentifier = parsedProjectIdentifier.projectIdentifier\n } catch (err: any) {\n void toastError(err, { label: 'Invalid project identifier' })\n\n return notFound()\n }\n\n const queryClient = new QueryClient()\n\n await queryClient.prefetchQuery({\n queryKey: ['public-project', projectIdentifier],\n queryFn: () =>\n defaultAgenticApiClient.getPublicProjectByIdentifier({\n projectIdentifier,\n populate: ['lastPublishedDeployment']\n })\n })\n\n return (\n \n \n \n )\n}\n" }, { "path": "apps/web/src/app/marketplace/projects/[namespace]/[project-slug]/utils.ts", "content": "export const MAX_TOOLS_TO_SHOW = 5\nexport const marketplacePublicProjectDetailTabs = [\n 'overview',\n 'readme',\n 'tools',\n 'pricing',\n 'debug'\n] as const\nexport const marketplacePublicProjectDetailTabsSet = new Set(\n marketplacePublicProjectDetailTabs\n)\nexport type MarketplacePublicProjectDetailTab =\n (typeof marketplacePublicProjectDetailTabs)[number]\n" }, { "path": "apps/web/src/app/not-found.tsx", "content": "import { ArrowLeft } from 'lucide-react'\nimport Image from 'next/image'\nimport Link from 'next/link'\n\nimport { Button } from '@/components/ui/button'\n// https://images.unsplash.com/photo-1545972154-9bb223aac798?ixid=MnwxMjA3fDB8MHxwaG90by1wYWdlfHx8fGVufDB8fHx8&ixlib=rb-1.2.1&fm=jpg&fit=crop&w=2048&q=80&exp=8&con=-15&sat=-75\nimport NotFoundImage from '@/public/not-found.jpg'\n\nexport default function NotFound() {\n return (\n <>\n
\n \n\n
\n

404

\n\n

\n Page not found\n

\n\n

\n Sorry, we couldn’t find the page you’re looking for.\n

\n
\n
\n\n \n \n )\n}\n" }, { "path": "apps/web/src/app/page.tsx", "content": "import Link from 'next/link'\n\nimport { DemandSideCTA } from '@/components/demand-side-cta'\nimport { DotsSection } from '@/components/dots-section'\nimport { ExampleUsageSection } from '@/components/example-usage-section'\nimport { GitHubStarCounter } from '@/components/github-star-counter'\nimport { HeroSimulation2 } from '@/components/hero-simulation-2'\nimport { MCPMarketplaceFeatures } from '@/components/mcp-marketplace-features'\nimport { PageContainer } from '@/components/page-container'\nimport { SupplySideCTA } from '@/components/supply-side-cta'\nimport { githubUrl, twitterUrl } from '@/lib/config'\n\nexport default async function TheBestDamnLandingPageEver() {\n return (\n \n {/* Hero section */}\n
\n

\n The App Store for LLM Tools\n

\n\n
\n Agentic is a curated marketplace of LLM tools that work with every\n major LLM SDK and MCP client.\n
\n\n \n
\n\n {/* Example usage section */}\n \n\n {/* Features section */}\n
\n

\n Agentic tools are{' '}\n optimized for LLMs\n

\n\n \n
\n\n {/* MCP section */}\n
\n

\n Agentic makes MCP fun!\n

\n\n
\n \n
\n\n

\n Agentic's mission is to provide the world's best library of tools for\n AI agents.\n

\n\n

\n \n And of course, MCP is an\n integral part of that mission. We're working on a bunch of features\n designed to simplify advanced MCP use cases like bundling multiple\n tools, shared auth profiles, Vercel-like preview deployments, and a\n lot more...\n \n

\n
\n\n {/* CTA section */}\n \n

\n Publish your own MCP products with Agentic\n

\n\n
\n Run one command to turn any MCP server or OpenAPI service into a paid\n MCP product. With built-in support for every major LLM SDK and MCP\n client.\n
\n\n \n \n\n {/* Open source section */}\n
\n

\n Agentic is 100% Open Source\n

\n\n

\n Agentic is a fully OSS{' '}\n TypeScript project with a small\n but vibrant developer community.{' '}\n \n Check out the source on GitHub\n {' '}\n or{' '}\n \n ping me on Twitter with questions / feedback\n \n .\n

\n\n \n
\n\n {/* Social proof section (TODO) */}\n {/*
\n

\n TODO: social proof\n

\n\n

TODO

\n
*/}\n\n {/* Demand-side CTA section */}\n \n

\n Level up your AI Agents with the best tools\n

\n\n \n \n \n )\n}\n" }, { "path": "apps/web/src/app/pricing/page.tsx", "content": "import Link from 'next/link'\n\nimport { DotsSection } from '@/components/dots-section'\nimport { GitHubStarCounter } from '@/components/github-star-counter'\nimport { HeroButton } from '@/components/hero-button'\nimport { PageContainer } from '@/components/page-container'\nimport { Button } from '@/components/ui/button'\nimport { calendarBookingUrl, emailUrl, twitterUrl } from '@/lib/config'\n\nexport default function AboutPage() {\n return (\n \n

\n Pricing\n

\n\n
\n
\n
\n

\n Pricing for devs publishing products on Agentic is a work in\n progress. We're looking for early adopters to work with us to\n figure out the best pricing structure.\n

\n\n

\n If you're interested in publishing a product on Agentic, please\n get in touch.\n

\n
\n
\n
\n\n {/* CTA section */}\n \n
\n \n \n DM me on Twitter / X\n \n \n\n \n\n \n\n \n
\n \n \n )\n}\n" }, { "path": "apps/web/src/app/privacy/page.tsx", "content": "import Link from 'next/link'\n\nimport { Markdown } from '@/components/markdown'\nimport { PageContainer } from '@/components/page-container'\n\nconst lastUpdatedDate = 'June 30, 2025'\n\nexport default function AboutPage() {\n return (\n \n

\n Privacy Policy\n

\n\n
\n \n

\n Last updated: {lastUpdatedDate}\n

\n\n

1. Overview

\n

\n Agentic Systems, Inc. (\"Agentic\",{' '}\n \"we\",\"us\", or{' '}\n \"our\") provides a modern AI platform comprised of:\n

\n\n
    \n
  • \n Marketplace – a curated directory of LLM-powered\n tool products that can be called via the Model Context Protocol\n (\"MCP\") or standard HTTP APIs.\n
    • \n\n
  • \n Gateway – a fully-managed MCP gateway that allows\n developers to deploy, monetize, and optionally publish their own\n MCP or OpenAPI products.\n
    • \n\n
  • \n Open-Source Project – the Agentic\n source-available codebase released under the GNU AGPL-3.0\n license.\n
    • \n
\n\n

\n This Privacy Policy explains how we collect, use, disclose, and\n safeguard information in connection with the Agentic website,\n console, Marketplace, Gateway, and any related services\n (collectively, the \"Service\").\n

\n\n

2. Information We Collect

\n

\n We collect the following categories of information when you use the\n Service:\n

\n\n
    \n
  • \n Account Information: name, email, billing\n address, and authentication credentials that you provide when you\n create an Agentic account.\n
    • \n\n
  • \n Payment Information: payment method details\n (e.g. card type and last four digits) processed by Stripe on\n our behalf. Stripe's privacy practices are described in its own\n policy.\n
    • \n\n
  • \n Usage Data: log files, API request metadata, IP\n address, browser type, referring pages, and other diagnostic\n information automatically collected when you interact with the\n Service.\n
    • \n\n
  • \n Developer Content: API specifications,\n configuration, and other content that you upload to the Gateway or\n Marketplace.\n
    • \n\n
  • \n Cookies & Similar Technologies: small data\n files placed on your device to enable site functionality,\n analytics, and preference storage. You can disable cookies in your\n browser settings, but parts of the Service may not function\n properly.\n
    • \n
\n\n

3. How We Use Information

\n

We use the information we collect to:

\n\n
    \n
  • Provide, maintain, and improve the Service;
    • \n\n
  • \n Facilitate Marketplace and Gateway transactions, including billing\n through Stripe;\n
    • \n\n
  • Authenticate users and secure the Service;
    • \n\n
  • \n Monitor usage and detect, prevent, or address technical issues or\n fraudulent activity;\n
    • \n\n
  • \n Respond to inquiries, provide customer support, and send\n administrative messages;\n
    • \n\n
  • \n Send product updates, promotional communications, or other\n information that may be of interest to you (you may opt out at any\n time);\n
    • \n\n
  • Carry out research, analytics, and product development;
    • \n\n
  • \n Comply with legal obligations and enforce our Terms of Service.\n
    • \n
\n\n

4. Sharing & Disclosure

\n

We may share information as follows:

\n\n
    \n
  • \n Service Providers: with vendors who perform\n services on our behalf, such as hosting, analytics, and payment\n processing.\n
    • \n\n
  • \n API Providers & Consumers: Marketplace\n product owners may receive usage metrics related to their own\n products; conversely, when you list a product we may display your\n developer profile to potential consumers.\n
    • \n\n
  • \n Business Transfers: as part of a merger,\n acquisition, financing, or sale of assets.\n
    • \n\n
  • \n Affiliates: with our corporate affiliates who are\n bound to honor this policy.\n
    • \n\n
  • \n Legal Requirements: when required to comply with\n law or protect the rights, property, or safety of Agentic, our\n users, or the public.\n
    • \n\n
  • \n With Your Consent: in any other situation where\n you direct us to share the information.\n
    • \n
\n\n

5. Payments via Stripe

\n

\n All Marketplace purchases and Gateway subscription fees are\n processed by Stripe. Agentic does not store full payment-card\n numbers or CVC codes. Stripe acts as a separate controller of your\n payment information – please review the{' '}\n \n Stripe Privacy Policy\n {' '}\n for details.\n

\n\n

6. Data Retention

\n

\n We retain information for as long as necessary to fulfill the\n purposes described in this Policy, comply with our legal\n obligations, resolve disputes, and enforce our agreements. Log data\n is typically retained for no more than 18 months unless we are\n legally required to keep it longer.\n

\n\n

7. International Transfers

\n

\n We are a U.S.-based company and may process information in the\n United States and other countries where we or our service providers\n operate. We rely on appropriate safeguards, such as Standard\n Contractual Clauses, for the transfer of personal data from the\n EU/EEA, UK, and Switzerland.\n

\n\n

8. Security

\n

\n We employ technical and organizational measures designed to protect\n information against loss, misuse, and unauthorized access or\n disclosure. However, no system can be guaranteed to be 100% secure.\n

\n\n

9. Your Rights

\n

\n Depending on your jurisdiction, you may have rights to access,\n rectify, delete, restrict, or object to our processing of your\n personal information, as well as the right to data portability and\n to withdraw consent. To exercise these rights, please contact us as\n set forth below. We respond to all requests consistent with\n applicable law.\n

\n\n

10. Children's Privacy

\n

\n The Service is not directed to children under 13, and we do not\n knowingly collect personal information from children. If you believe\n a child has provided us with personal information, please contact us\n and we will take steps to delete such information.\n

\n\n

11. Third-Party Links

\n

\n The Service may contain links to third-party websites. We are not\n responsible for the privacy practices of those sites. We encourage\n you to review the privacy policies of every site you visit.\n

\n\n

12. Changes to This Policy

\n

\n We may update this Privacy Policy from time to time. We will post\n the revised version on this page and indicate the date of the latest\n revision at the top. If changes are material, we will provide\n additional notice (e.g., email or in-app alert) at least 7 days\n before they take effect.\n

\n\n

13. Contact Us

\n

\n If you have any questions or concerns about this Privacy Policy or\n our privacy practices, please{' '}\n contact us or email us at{' '}\n support@agentic.so.\n

\n \n
\n \n )\n}\n" }, { "path": "apps/web/src/app/providers.tsx", "content": "'use client'\n\nimport { QueryClient, QueryClientProvider } from '@tanstack/react-query'\nimport { ReactQueryDevtools } from '@tanstack/react-query-devtools'\n\nimport { AgenticProvider } from '@/components/agentic-provider'\nimport { PostHogProvider } from '@/components/posthog-provider'\nimport { ThemeProvider } from '@/components/theme-provider'\nimport { TooltipProvider } from '@/components/ui/tooltip'\nimport { isServer } from '@/lib/config'\n\nfunction createQueryClient() {\n return new QueryClient({\n defaultOptions: {\n queries: {\n staleTime: 60 * 1000\n }\n }\n })\n}\n\nlet browserQueryClient: QueryClient | undefined\n\nfunction getQueryClient(): QueryClient {\n if (isServer) {\n // Server: always make a new query client\n return createQueryClient()\n } else {\n // Browser: make a new query client if we don't already have one\n // This is very important, so we don't re-make a new client if React\n // suspends during the initial render. This may not be needed if we\n // have a suspense boundary BELOW the creation of the query client\n if (!browserQueryClient) {\n browserQueryClient = createQueryClient()\n }\n\n return browserQueryClient\n }\n}\n\nexport default function Providers({ children }: { children: React.ReactNode }) {\n const queryClient = getQueryClient()\n\n return (\n \n \n \n \n {children}\n\n \n \n \n \n \n )\n}\n" }, { "path": "apps/web/src/app/publishing/page.tsx", "content": "import Image from 'next/image'\nimport Link from 'next/link'\nimport Zoom from 'react-medium-image-zoom'\n\nimport { DotsSection } from '@/components/dots-section'\nimport { ExampleUsageSection } from '@/components/example-usage-section'\nimport { GitHubStarCounter } from '@/components/github-star-counter'\nimport { MCPGatewayFeatures } from '@/components/mcp-gateway-features'\nimport { PageContainer } from '@/components/page-container'\nimport { SupplySideCTA } from '@/components/supply-side-cta'\nimport { githubUrl, twitterUrl } from '@/lib/config'\nimport mcpGatewayDemo from '@/public/agentic-mcp-gateway-mvp-diagram-light.png'\n\nexport default function PublishingMCPsPage() {\n return (\n \n {/* Hero section */}\n
\n

\n Your API β†’ Paid MCP, Instantly\n

\n\n
\n Run one command to turn any MCP server or OpenAPI service into a paid\n MCP product. With built-in support for every major LLM SDK and MCP\n client.\n
\n\n \n
\n\n {/* How it works section */}\n
\n

\n How It Works\n

\n\n
\n \n \n \n
\n\n

\n \n Deploy any MCP server or OpenAPI service to Agentic's MCP Gateway,\n which handles auth, billing, rate-limiting, caching, etc. And\n instantly turn your API into a paid MCP product that supports every\n major LLM SDK and MCP client.\n \n

\n
\n\n {/* Example usage section */}\n \n\n {/* Features section */}\n
\n

\n Production-Ready MCP Gateway\n

\n\n \n
\n\n {/* Open source section */}\n
\n

\n Agentic is 100% Open Source\n

\n\n

\n Agentic is a fully OSS{' '}\n TypeScript project with a small\n but vibrant developer community.{' '}\n \n Check out the source on GitHub\n {' '}\n or{' '}\n \n ping me on Twitter with questions / feedback\n \n .\n

\n\n \n
\n\n {/* CTA section */}\n \n

\n Deploy Your MCP Today\n

\n\n \n \n \n )\n}\n" }, { "path": "apps/web/src/app/signup/page.tsx", "content": "import { Suspense } from 'react'\n\nimport { PageContainer } from '@/components/page-container'\n\nimport { SignupForm } from './signup-form'\n\nexport default function Page() {\n return (\n \n \n \n \n \n )\n}\n" }, { "path": "apps/web/src/app/signup/signup-form.tsx", "content": "'use client'\n\nimport { sanitizeSearchParams } from '@agentic/platform-core'\nimport {\n isValidEmail,\n isValidPassword,\n isValidUsername\n} from '@agentic/platform-validators'\nimport { useForm } from '@tanstack/react-form'\nimport { Loader2Icon } from 'lucide-react'\nimport { useRouter } from 'next/navigation'\nimport { useCallback, useState } from 'react'\nimport { z } from 'zod'\n\nimport {\n useNextUrl,\n useUnauthenticatedAgentic\n} from '@/components/agentic-provider'\nimport { Button } from '@/components/ui/button'\nimport { Input } from '@/components/ui/input'\nimport { Label } from '@/components/ui/label'\nimport { GitHubIcon } from '@/icons/github'\nimport { toastError } from '@/lib/notifications'\nimport { cn } from '@/lib/utils'\n\nexport function SignupForm() {\n const ctx = useUnauthenticatedAgentic()\n const nextUrl = useNextUrl()\n const router = useRouter()\n const [isGitHubLoading, setIsGitHubLoading] = useState(false)\n\n const onAuthWithGitHub = useCallback(async () => {\n setIsGitHubLoading(true)\n try {\n const redirectUri = `${globalThis.location.origin}/auth/github/success?${sanitizeSearchParams({ next: nextUrl }).toString()}`\n const url = await ctx!.api.initAuthFlowWithGitHub({ redirectUri })\n\n return router.push(url)\n } catch (err: any) {\n setIsGitHubLoading(false)\n void toastError(err, { label: 'GitHub auth error' })\n }\n }, [ctx, nextUrl, router])\n\n const form = useForm({\n defaultValues: {\n email: '',\n username: '',\n password: '',\n repeat: ''\n },\n validators: {\n onChange: z.object({\n email: z\n .string()\n .email()\n .refine((email) => isValidEmail(email)),\n username: z.string().refine((username) => isValidUsername(username)),\n password: z.string().refine((password) => isValidPassword(password)),\n repeat: z.string().refine((password) => isValidPassword(password))\n })\n },\n onSubmit: async ({ value }) => {\n try {\n if (value.password !== value.repeat) {\n void toastError('Passwords do not match', { label: 'signup error' })\n return\n }\n\n const res = await ctx!.api.signUpWithPassword({\n email: value.email,\n username: value.username,\n password: value.password\n })\n\n console.log('signup success', res)\n } catch (err: any) {\n void toastError(err, { label: 'signup error' })\n return\n }\n\n return router.push(nextUrl || '/app')\n }\n })\n\n return (\n
\n
\n {\n e.preventDefault()\n void form.handleSubmit()\n }}\n >\n
\n

Create an account

\n
\n\n
\n (\n
\n \n\n field.handleChange(e.target.value)}\n />\n
\n )}\n />\n\n (\n
\n \n\n field.handleChange(e.target.value)}\n />\n
\n )}\n />\n\n (\n
\n \n\n field.handleChange(e.target.value)}\n />\n
\n )}\n />\n\n (\n
\n \n\n field.handleChange(e.target.value)}\n />\n
\n )}\n />\n\n [\n state.canSubmit,\n state.isSubmitting,\n state.isTouched\n ]}\n children={([canSubmit, isSubmitting, isTouched]) => (\n \n {isSubmitting && }\n Sign up\n \n )}\n />\n
\n \n\n
\n
\n
Or continue with
\n
\n
\n\n {\n e.preventDefault()\n void onAuthWithGitHub()\n }}\n >\n \n {isGitHubLoading && }\n \n\n Sign up with GitHub\n \n \n\n
\n Already have an account?{' '}\n \n Login\n \n
\n
\n
\n )\n}\n" }, { "path": "apps/web/src/app/terms/page.tsx", "content": "import Link from 'next/link'\n\nimport { Markdown } from '@/components/markdown'\nimport { PageContainer } from '@/components/page-container'\n\nconst lastUpdatedDate = 'June 30, 2025'\n\nexport default function AboutPage() {\n return (\n \n

\n Terms of Service\n

\n\n
\n \n

\n Last updated: {lastUpdatedDate}\n

\n\n

1. Introduction

\n

\n These Terms of Service (\"Terms\") govern your access\n to and use of Agentic Systems, Inc.'s websites, software, and\n related services (collectively, the \"Service\").\n Agentic (\"Agentic,\" \"we,\" \"us,\" or{' '}\n \"our\") provides three distinct but connected\n offerings:\n

\n\n

\n (a) Agentic Marketplace – A curated app store of\n LLM tool products exposed via both Model Context Protocol (MCP) and\n standard HTTP APIs.\n

\n\n

\n (b) Agentic Gateway – A fully managed MCP gateway\n that enables developers to deploy and monetize their own MCP or\n OpenAPI products, whether privately or publicly.\n

\n\n

\n (c) Agentic Open-Source Project – The\n source-available software released under the GNU AGPL-3.0\n license.\n

\n\n

\n By creating an account, clicking \"I agree,\" or otherwise using\n any part of the Service, you acknowledge that you have read,\n understood, and agree to be legally bound by these Terms. If you do\n not agree, you must not access or use the Service.\n

\n\n

2. Eligibility & Account Registration

\n

\n You must be at least 18 years old and legally capable of\n entering into contracts to use the Service. When you register an\n Agentic account you agree to (i) provide accurate, current, and\n complete information; (ii) maintain the security of your\n credentials; and (iii) promptly update your information as\n necessary. You are responsible for all activity occurring under your\n account.\n

\n\n

3. Plans, Subscriptions & Fees

\n

\n Pricing for Marketplace purchases and Gateway subscriptions is\n described on the applicable order page or pricing dashboard. All\n charges are processed by Stripe and are due within the payment\n period stated at checkout. Except as required by law, payments are\n non-refundable. We may modify our pricing with at least 30\n days' notice, which will take effect in your next billing cycle.\n Developers publishing products to the Agentic Marketplace must also\n agree to the{' '}\n \n Stripe Connect Account Agreement\n \n .\n

\n\n

4. Marketplace-Specific Terms

\n

\n (a) API Consumers. When you purchase access to a\n product in the Marketplace you receive a non-exclusive,\n non-transferable, revocable license to call that API subject to any\n usage limits and other terms displayed on the product page.\n

\n\n

\n (b) API Providers. If you list a product in the\n Marketplace you (i) represent that you have all rights necessary to\n offer the product; (ii) grant each purchaser the license described\n above; and (iii) authorize Agentic to collect payments on your\n behalf and remit amounts owed to you, less any platform fees.\n

\n\n

5. Gateway-Specific Terms

\n

\n You may deploy private or public APIs through the Gateway. You are\n solely responsible for the security, legality, and performance of\n the APIs you deploy. If you enable billing, you appoint Agentic as\n your limited payments collection agent for the purpose of accepting\n payments from end users via Stripe.\n

\n\n

6. Open-Source Project

\n

\n The Agentic open-source codebase is licensed under the{' '}\n \n GNU AGPL-3.0 license\n \n . Your use of the open-source project is governed solely by that\n license. Nothing in these Terms will be interpreted to limit your\n rights granted under the AGPL-3.0, nor to grant additional rights\n beyond it.\n

\n\n

7. User Content

\n

\n \"User Content\" means any code, text, data, or other\n materials you upload to the Service, including APIs, metadata, and\n documentation. You retain all ownership rights in your User Content.\n You hereby grant Agentic a worldwide, non-exclusive, royalty-free\n license to host, cache, reproduce, display, perform, modify (solely\n for technical purposes, e.g. formatting), and distribute your\n User Content as necessary to operate and improve the Service. You\n are solely responsible for your User Content and represent that you\n have all rights necessary to grant this license and that your User\n Content does not violate any law or third-party rights.\n

\n\n

8. Acceptable Use Policy

\n

\n You agree not to (i) violate applicable laws; (ii) infringe the\n intellectual-property or privacy rights of others; (iii) transmit\n malicious code; (iv) attempt to gain unauthorized access to the\n Service; (v) interfere with the integrity or performance of the\n Service; or (vi) send spam or engage in fraudulent or deceptive\n practices. We may suspend or terminate accounts that violate this\n policy.\n

\n\n

9. Privacy & Security

\n

\n Our collection and use of personal information is described in our\n Privacy Policy. We implement\n appropriate technical and organizational measures to safeguard your\n data; however, no security measure is perfect and we cannot\n guarantee absolute security.\n

\n\n

10. Intellectual Property

\n

\n The Service, including all associated software, content, and\n trademarks, is owned by Agentic or its licensors and is protected by\n intellectual-property laws. Except for the rights expressly granted\n to you in these Terms, we reserve all rights, title, and interest in\n the Service.\n

\n\n

11. Suspension & Termination

\n

\n We may suspend or terminate your access to the Service at any time\n if we believe you have violated these Terms or if necessary to\n protect the Service or its users. Upon termination, your right to\n use the Service will cease immediately, but Sections 6–16 will\n survive.\n

\n\n

12. Disclaimers

\n

\n THE SERVICE IS PROVIDED \"AS IS\" AND\n \"AS AVAILABLE\" WITHOUT WARRANTY OF ANY KIND.\n TO THE MAXIMUM EXTENT PERMITTED BY LAW, AGENTIC DISCLAIMS ALL\n WARRANTIES, WHETHER EXPRESS, IMPLIED, STATUTORY, OR OTHERWISE,\n INCLUDING MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, AND\n NON-INFRINGEMENT. WE DO NOT WARRANT THAT THE SERVICE WILL BE\n UNINTERRUPTED, ERROR-FREE, OR SECURE.\n

\n\n

13. Limitation of Liability

\n

\n TO THE FULLEST EXTENT PERMITTED BY LAW, IN NO EVENT WILL AGENTIC BE\n LIABLE FOR ANY INDIRECT, INCIDENTAL, SPECIAL, CONSEQUENTIAL, OR\n EXEMPLARY DAMAGES (INCLUDING LOSS OF PROFITS, GOODWILL, OR DATA)\n ARISING OUT OF OR IN CONNECTION WITH THE SERVICE, EVEN IF ADVISED OF\n THE POSSIBILITY OF SUCH DAMAGES. AGENTIC'S TOTAL LIABILITY UNDER\n THESE TERMS WILL NOT EXCEED THE GREATER OF (A) FEES YOU PAID TO\n AGENTIC IN THE 12 MONTHS PRECEDING THE EVENT GIVING RISE TO THE\n CLAIM OR (B) USD 100.\n

\n\n

14. Indemnification

\n

\n You will indemnify and hold harmless Agentic and its officers,\n directors, employees, and agents from and against any third-party\n claims, damages, and expenses (including reasonable attorneys' fees)\n arising out of or related to your (i) breach of these Terms, (ii)\n User Content, or (iii) violation of any law or third-party rights.\n

\n\n

15. Governing Law & Venue

\n

\n These Terms are governed by the laws of the State of Delaware,\n excluding its conflict-of-laws rules. The state and federal courts\n located in Wilmington, Delaware will have exclusive jurisdiction to\n adjudicate any dispute arising out of or relating to these Terms or\n the Service, and you consent to personal jurisdiction and venue in\n those courts.\n

\n\n

16. Changes to These Terms

\n

\n We may update these Terms by posting a revised version on our\n website and providing notice via email or in-app notification at\n least 7 days before the effective date. Continued use of the\n Service after the effective date constitutes acceptance of the\n revised Terms.\n

\n\n

17. Contact

\n

\n Questions or notices required under these Terms should be sent to\n support@agentic.so. You may\n also\n contact us through our website.\n

\n \n
\n \n )\n}\n" }, { "path": "apps/web/src/components/active-link.tsx", "content": "'use client'\n\nimport cs from 'clsx'\nimport Link, { type LinkProps } from 'next/link'\nimport { usePathname } from 'next/navigation'\nimport * as React from 'react'\n\ntype ActiveLinkProps = LinkProps & {\n children?: React.ReactNode\n className?: string\n activeClassName?: string\n style?: React.CSSProperties\n\n // optional comparison function to normalize URLs before comparing\n compare?: (a?: any, b?: any) => boolean\n}\n\n/**\n * Link that will be disabled if the target `href` is the same as the current\n * route's pathname.\n */\nexport const ActiveLink = React.forwardRef(function ActiveLink(\n {\n children,\n href,\n style,\n className,\n activeClassName,\n onClick,\n prefetch,\n compare = (a, b) => a === b,\n ...props\n }: ActiveLinkProps,\n ref\n) {\n const pathname = usePathname()\n const [disabled, setDisabled] = React.useState(false)\n\n React.useEffect(() => {\n const currentUrl = new URL(location.href)\n const url = new URL(href as string, currentUrl)\n const linkPathname = url.pathname\n const linkOrigin = url.origin\n\n setDisabled(\n compare(linkPathname, pathname) && compare(linkOrigin, currentUrl.origin)\n )\n }, [pathname, href, compare])\n\n const styleOverride = React.useMemo(\n () =>\n disabled\n ? {\n ...style,\n pointerEvents: 'none'\n }\n : (style ?? {}),\n [disabled, style]\n )\n\n const onClickOverride = React.useCallback(\n (event: any): void => {\n if (disabled) {\n event.preventDefault()\n return\n }\n\n if (onClick) {\n onClick(event)\n return\n }\n },\n [disabled, onClick]\n )\n\n return (\n \n {children}\n \n )\n})\n" }, { "path": "apps/web/src/components/agentic-provider.tsx", "content": "'use client'\n\nimport {\n AgenticApiClient,\n type AuthSession\n} from '@agentic/platform-api-client'\nimport { sanitizeSearchParams } from '@agentic/platform-core'\nimport { usePathname, useRouter, useSearchParams } from 'next/navigation'\nimport {\n createContext,\n type ReactNode,\n useCallback,\n useContext,\n useEffect,\n useState\n} from 'react'\nimport { useLocalStorage } from 'react-use'\n\nimport * as config from '@/lib/config'\n\nexport type AgenticContextType = {\n api: AgenticApiClient\n isAuthenticated: boolean\n logout: () => void\n}\n\nconst AgenticContext = createContext(undefined)\n\nexport function AgenticProvider({ children }: { children: ReactNode }) {\n const [authSession, setAuthSession] = useLocalStorage(\n 'agentic-auth-session'\n )\n\n const logout = useCallback(() => {\n setAuthSession(null)\n }, [setAuthSession])\n\n const onUpdateAuth = useCallback(\n (updatedAuthSession?: AuthSession | null) => {\n // console.log('onUpdateAuth', {\n // authSession: structuredClone(authSession),\n // updatedAuthSession: structuredClone(updatedAuthSession),\n // isCurrentlyAuthenticated: agenticContext.isAuthenticated\n // })\n\n if (\n !!authSession !== !!updatedAuthSession ||\n authSession?.token !== updatedAuthSession?.token ||\n agenticContext.isAuthenticated !== !!updatedAuthSession\n ) {\n setAuthSession(updatedAuthSession)\n }\n },\n // eslint-disable-next-line react-hooks/exhaustive-deps\n [authSession, setAuthSession]\n )\n\n const [agenticContext, setAgenticContext] = useState({\n api: new AgenticApiClient({\n apiBaseUrl: config.apiBaseUrl,\n onUpdateAuth\n }),\n isAuthenticated: !!authSession,\n logout\n })\n\n useEffect(() => {\n // console.log('updating session from localStorage', authSession?.token)\n if (authSession) {\n // console.log('setting auth session to truthy', {\n // authSession: structuredClone(authSession),\n // isAuthenticated: agenticContext.isAuthenticated,\n // setAgenticContext: !agenticContext.isAuthenticated\n // })\n\n agenticContext.api.authSession = authSession\n if (!agenticContext.isAuthenticated) {\n setAgenticContext({\n ...agenticContext,\n isAuthenticated: true\n })\n }\n } else {\n // console.log('setting auth session to falsy', {\n // authSession: structuredClone(authSession),\n // isAuthenticated: agenticContext.isAuthenticated,\n // setAgenticContext: !!agenticContext.isAuthenticated\n // })\n\n agenticContext.api.authSession = undefined\n\n if (agenticContext.isAuthenticated) {\n setAgenticContext({\n ...agenticContext,\n isAuthenticated: false\n })\n }\n }\n }, [agenticContext, authSession])\n\n return (\n \n {children}\n \n )\n}\n\nexport function useAgentic(): AgenticContextType | undefined {\n const ctx = useContext(AgenticContext)\n const [isMounted, setIsMounted] = useState(false)\n\n useEffect(() => {\n if (!isMounted) {\n setIsMounted(true)\n return\n }\n }, [isMounted, setIsMounted])\n\n if (!ctx) {\n throw new Error('useAgentic must be used within an AgenticProvider')\n }\n\n return isMounted ? ctx : undefined\n}\n\nexport function useUnauthenticatedAgentic(): AgenticContextType | undefined {\n const ctx = useAgentic()\n const nextUrl = useNextUrl() || '/app'\n const router = useRouter()\n\n if (ctx && ctx.isAuthenticated) {\n console.log('REQUIRES NO AUTHENTICATION: redirecting to', nextUrl)\n void router.replace(nextUrl)\n return\n }\n\n return ctx\n}\n\nexport function useAuthenticatedAgentic(): AgenticContextType | undefined {\n const ctx = useAgentic()\n const pathname = usePathname()\n const router = useRouter()\n\n if (ctx && !ctx.isAuthenticated) {\n if (pathname === '/logout') {\n console.log('LOGOUT SUCCESS: redirecting to /')\n void router.replace('/')\n return\n }\n\n console.log('REQUIRES AUTHENTICATION: redirecting to /login', {\n next: pathname\n })\n\n void router.replace(\n `/login?${sanitizeSearchParams({ next: pathname }).toString()}`\n )\n return\n }\n\n return ctx\n}\n\nexport function useNextUrl(): string | undefined {\n const searchParams = useSearchParams()\n const [isMounted, setIsMounted] = useState(false)\n\n useEffect(() => {\n if (!isMounted) {\n setIsMounted(true)\n return\n }\n }, [isMounted, setIsMounted])\n\n return isMounted ? (searchParams.get('next') ?? undefined) : undefined\n}\n" }, { "path": "apps/web/src/components/app-consumers-list.tsx", "content": "'use client'\n\nimport Link from 'next/link'\nimport useInfiniteScroll from 'react-infinite-scroll-hook'\n\nimport { useAuthenticatedAgentic } from '@/components/agentic-provider'\nimport { LoadingIndicator } from '@/components/loading-indicator'\nimport { useInfiniteQuery } from '@/lib/query-client'\n\nexport function AppConsumersList() {\n const ctx = useAuthenticatedAgentic()\n const limit = 10\n const {\n data,\n isLoading,\n isError,\n hasNextPage,\n fetchNextPage,\n isFetchingNextPage\n } = useInfiniteQuery({\n queryKey: ['consumers', ctx?.api.authSession?.user?.id],\n queryFn: ({ pageParam = 0 }) =>\n ctx!.api\n .listConsumers({\n populate: ['project'],\n offset: pageParam,\n limit\n })\n .then(async (consumers) => {\n return {\n consumers,\n offset: pageParam,\n limit,\n nextOffset:\n consumers.length >= limit\n ? pageParam + consumers.length\n : undefined\n }\n }),\n getNextPageParam: (lastGroup) => lastGroup?.nextOffset,\n enabled: !!ctx,\n initialPageParam: 0\n })\n\n const [sentryRef] = useInfiniteScroll({\n loading: isLoading || isFetchingNextPage,\n hasNextPage,\n onLoadMore: fetchNextPage,\n disabled: !ctx || isError,\n rootMargin: '0px 0px 200px 0px'\n })\n\n const consumers = data ? data.pages.flatMap((p) => p.consumers) : []\n const numConsumers = consumers.length\n\n return (\n <>\n {!ctx || isLoading ? (\n \n ) : (\n
\n

Your Subscriptions

\n\n {isError ? (\n

Error fetching customer subscriptions

\n ) : !consumers.length ? (\n

\n No subscriptions found.{' '}\n \n Subscribe to your first project to get started.\n \n

\n ) : (\n \n {consumers.map((consumer) => (\n \n

{consumer.project.name}

\n\n

\n {consumer.project.identifier}\n

\n\n 
\n                    {JSON.stringify(consumer, null, 2)}\n
\n \n ))}\n\n {hasNextPage && (\n
\n {isLoading || (isFetchingNextPage && )}\n
\n )}\n
\n )}\n \n )}\n \n )\n}\n" }, { "path": "apps/web/src/components/app-projects-list.tsx", "content": "'use client'\n\nimport Link from 'next/link'\nimport useInfiniteScroll from 'react-infinite-scroll-hook'\n\nimport { useAuthenticatedAgentic } from '@/components/agentic-provider'\nimport { LoadingIndicator } from '@/components/loading-indicator'\nimport { useInfiniteQuery } from '@/lib/query-client'\n\nexport function AppProjectsList() {\n const ctx = useAuthenticatedAgentic()\n const limit = 10\n const {\n data,\n isLoading,\n isError,\n hasNextPage,\n fetchNextPage,\n isFetchingNextPage\n } = useInfiniteQuery({\n queryKey: ['projects', ctx?.api.authSession?.user?.id],\n queryFn: ({ pageParam = 0 }) =>\n ctx!.api\n .listProjects({\n populate: ['lastPublishedDeployment'],\n offset: pageParam,\n limit\n })\n .then(async (projects) => {\n return {\n projects,\n offset: pageParam,\n limit,\n nextOffset:\n projects.length >= limit ? pageParam + projects.length : undefined\n }\n }),\n getNextPageParam: (lastGroup) => lastGroup?.nextOffset,\n enabled: !!ctx,\n initialPageParam: 0\n })\n\n const [sentryRef] = useInfiniteScroll({\n loading: isLoading || isFetchingNextPage,\n hasNextPage,\n onLoadMore: fetchNextPage,\n disabled: !ctx || isError,\n rootMargin: '0px 0px 200px 0px'\n })\n\n const projects = data ? data.pages.flatMap((p) => p.projects) : []\n\n return (\n <>\n {!ctx || isLoading ? (\n \n ) : (\n
\n

Your Projects

\n\n {isError ? (\n

Error fetching projects

\n ) : !projects.length ? (\n

\n No projects found.{' '}\n \n Create your first project to get started.\n \n

\n ) : (\n
\n {projects.map((project) => (\n \n

{project.name}

\n\n

{project.identifier}

\n\n {project.lastPublishedDeployment && (\n

\n Last published:{' '}\n {project.lastPublishedDeployment.version ||\n project.lastPublishedDeployment.hash}\n

\n )}\n \n ))}\n\n {hasNextPage && (\n
\n {isLoading || (isFetchingNextPage && )}\n
\n )}\n
\n )}\n
\n )}\n \n )\n}\n" }, { "path": "apps/web/src/components/bootstrap.tsx", "content": "'use client'\n\nimport { useFirstMountState } from 'react-use'\n\nimport { bootstrap } from '@/lib/bootstrap'\n\nexport function Bootstrap() {\n const isFirstMount = useFirstMountState()\n\n if (isFirstMount) {\n bootstrap()\n }\n\n // Return `null` so we can use this as a react component\n return null\n}\n" }, { "path": "apps/web/src/components/code-block/highlight.ts", "content": "import { toJsxRuntime } from 'hast-util-to-jsx-runtime'\nimport { Fragment, type JSX } from 'react'\nimport { jsx, jsxs } from 'react/jsx-runtime'\nimport { type BundledLanguage, codeToHast } from 'shiki/bundle/web'\n\nimport { cn } from '@/lib/utils'\n\n// TODO: consider adding [twoslash](https://shiki.style/packages/twoslash)\n\nexport async function highlight({\n code,\n lang = 'ts',\n theme = 'github-dark',\n className\n}: {\n code: string\n lang?: BundledLanguage\n theme?: string\n className?: string\n}): Promise {\n className = cn(\n 'w-full text-wrap p-2 md:p-4 text-sm rounded-sm overflow-x-auto',\n className\n )\n\n const hast = await codeToHast(code, {\n lang,\n theme,\n // TODO: use a custom `pre` element down below instead of this\n transformers: [\n {\n pre(node) {\n if (className) {\n this.addClassToHast(node, className)\n }\n }\n }\n ]\n })\n\n return toJsxRuntime(hast, {\n Fragment,\n jsx,\n jsxs\n })\n}\n" }, { "path": "apps/web/src/components/code-block/index.tsx", "content": "'use client'\n\nimport { CheckIcon, CopyIcon } from 'lucide-react'\nimport { type JSX, useCallback, useEffect, useRef, useState } from 'react'\nimport { type BundledLanguage } from 'shiki/bundle/web'\n\nimport { LoadingIndicator } from '@/components/loading-indicator'\nimport { Button } from '@/components/ui/button'\nimport {\n Tooltip,\n TooltipContent,\n TooltipTrigger\n} from '@/components/ui/tooltip'\nimport { toastError } from '@/lib/notifications'\nimport { cn } from '@/lib/utils'\n\nimport { highlight } from './highlight'\n\nexport function CodeBlock({\n initial,\n code,\n lang,\n theme,\n className\n}: {\n initial?: JSX.Element\n code: string\n lang?: BundledLanguage\n theme?: string\n className?: string\n}) {\n const [nodes, setNodes] = useState(initial)\n const [isCopied, setIsCopied] = useState(false)\n const timeoutRef = useRef | null>(null)\n\n useEffect(() => {\n void highlight({\n code,\n lang,\n theme\n }).then(setNodes)\n }, [code, lang, theme])\n\n const onCopy = useCallback(() => {\n ;(async () => {\n try {\n await navigator.clipboard.writeText(code)\n setIsCopied(true)\n\n if (timeoutRef.current) {\n clearTimeout(timeoutRef.current)\n timeoutRef.current = null\n }\n\n timeoutRef.current = setTimeout(() => {\n timeoutRef.current = null\n setIsCopied(false)\n }, 2000)\n } catch {\n setIsCopied(true)\n\n if (timeoutRef.current) {\n clearTimeout(timeoutRef.current)\n timeoutRef.current = null\n }\n void toastError('Error copying code to clipboard')\n }\n })()\n }, [code, timeoutRef])\n\n const numNewLines = code.split('\\n').length\n\n return (\n \n {nodes ? (\n <>\n {nodes}\n\n \n \n \n {isCopied ? : }\n \n \n\n \n {isCopied ? Copied : Copy to clipboard}\n \n \n \n ) : (\n \n )}\n \n )\n}\n" }, { "path": "apps/web/src/components/confetti.tsx", "content": "'use client'\n\nimport type { Simplify } from 'type-fest'\nimport confetti, { type Options as ConfettiBaseOptions } from 'canvas-confetti'\nimport { useCallback } from 'react'\n\nimport { randomInRange } from '@/lib/utils'\n\nexport type ConfettiOptions = Simplify<\n ConfettiBaseOptions & {\n duration?: number\n intervalMs?: number\n }\n>\n\n// TODO: make shoot in from the sides\nexport function useConfettiFireworks() {\n const fireConfetti = useCallback((options: ConfettiOptions = {}) => {\n const duration = options.duration ?? 4 * 1000\n const intervalMs = options.intervalMs ?? 250\n const animationEnd = Date.now() + duration\n const defaults: ConfettiOptions = {\n startVelocity: 30,\n spread: 360,\n ticks: 60,\n zIndex: 100,\n ...options\n }\n\n const interval = globalThis.window.setInterval(() => {\n const timeLeft = animationEnd - Date.now()\n\n if (timeLeft <= 0) {\n return globalThis.clearInterval(interval)\n }\n\n const particleCount = 50 * (timeLeft / duration)\n void confetti({\n particleCount,\n origin: { x: randomInRange(0.1, 0.3), y: Math.random() - 0.2 },\n ...defaults\n })\n\n void confetti({\n particleCount,\n origin: { x: randomInRange(0.7, 0.9), y: Math.random() - 0.2 },\n ...defaults\n })\n }, intervalMs)\n\n return () => {\n globalThis.clearInterval(interval)\n }\n }, [])\n\n return {\n fireConfetti\n }\n}\n" }, { "path": "apps/web/src/components/dark-mode-toggle.tsx", "content": "'use client'\n\nimport { Moon, Sun } from 'lucide-react'\nimport { useTheme } from 'next-themes'\nimport * as React from 'react'\n\nimport { Button } from '@/components/ui/button'\nimport {\n Tooltip,\n TooltipContent,\n TooltipTrigger\n} from '@/components/ui/tooltip'\nimport { cn } from '@/lib/utils'\n\nexport function DarkModeToggle({ className }: { className?: string }) {\n const { setTheme, resolvedTheme } = useTheme()\n\n return (\n \n \n setTheme(resolvedTheme === 'dark' ? 'light' : 'dark')}\n >\n \n \n Toggle theme\n \n \n\n \n Toggle dark mode\n \n \n )\n}\n" }, { "path": "apps/web/src/components/demand-side-cta.tsx", "content": "import Link from 'next/link'\n\nimport { HeroButton } from '@/components/hero-button'\nimport { Button } from '@/components/ui/button'\n\nexport function DemandSideCTA() {\n return (\n
\n \n \n gotoTools();\n \n \n\n \n
\n )\n}\n" }, { "path": "apps/web/src/components/dots-section.tsx", "content": "import { cn } from '@/lib/utils'\n\nexport function DotsSection({\n children,\n className\n}: {\n children: React.ReactNode\n className?: string\n}) {\n return (\n
\n
\n\n {children}\n
\n )\n}\n" }, { "path": "apps/web/src/components/example-agentic-configs.tsx", "content": "'use client'\n\nimport type { BundledLanguage } from 'shiki/bundle/web'\nimport { useLocalStorage } from 'react-use'\n\nimport { CodeBlock } from '@/components/code-block'\nimport { Tabs, TabsContent, TabsList, TabsTrigger } from '@/components/ui/tabs'\n\nimport { LoadingIndicator } from './loading-indicator'\n\nconst formatLabels = {\n typescript: 'TypeScript',\n json: 'JSON'\n} as const\nconst formats = Object.keys(formatLabels) as (keyof typeof formatLabels)[]\ntype Format = (typeof formats)[number]\n\nconst originAdaptorLabels = {\n mcp: 'MCP',\n openapi: 'OpenAPI'\n} as const\nconst originAdaptors = Object.keys(\n originAdaptorLabels\n) as (keyof typeof originAdaptorLabels)[]\ntype OriginAdaptor = (typeof originAdaptors)[number]\n\ntype ExampleAgenticConfig = {\n format: Format\n originAdaptor: OriginAdaptor\n}\n\nconst defaultExampleAgenticConfig: ExampleAgenticConfig = {\n format: 'typescript',\n originAdaptor: 'mcp'\n}\n\ntype CodeSnippet = {\n code: string\n lang: BundledLanguage\n}\n\nexport function ExampleAgenticConfigs() {\n const [config, setConfig] = useLocalStorage(\n 'example-agentic-config',\n defaultExampleAgenticConfig\n )\n\n if (!config) {\n return \n }\n\n return (\n
\n \n
\n )\n}\n\nfunction ExampleAgenticConfigsContent({\n config,\n setConfig\n}: {\n config: ExampleAgenticConfig\n setConfig: (config: ExampleAgenticConfig) => void\n}) {\n const codeSnippet = getCodeSnippetForExampleAgenticConfig(config)\n\n return (\n \n setConfig({\n ...defaultExampleAgenticConfig,\n ...config,\n format: value as Format\n })\n }\n className='w-full max-w-3xl'\n >\n \n {formats.map((format) => (\n \n {formatLabels[format]}\n \n ))}\n \n\n \n \n setConfig({\n ...defaultExampleAgenticConfig,\n ...config,\n originAdaptor: value as OriginAdaptor\n })\n }\n className='w-full'\n >\n \n {originAdaptors.map((originAdaptor) => (\n \n {originAdaptorLabels[originAdaptor]}\n \n ))}\n \n\n {originAdaptors.map((originAdaptor) => (\n \n
\n {config.format === 'typescript'\n ? 'agentic.config.ts'\n : 'agentic.config.json'}\n
\n\n \n \n ))}\n \n \n \n )\n}\n\nfunction getCodeSnippetForExampleAgenticConfig(\n config: ExampleAgenticConfig\n): CodeSnippet {\n if (config.format === 'typescript') {\n if (config.originAdaptor === 'mcp') {\n return {\n code: `\nimport { defineConfig } from '@agentic/platform'\n\nexport default defineConfig({\n name: 'mcp-example',\n origin: {\n type: 'mcp',\n // Your origin MCP server URL supporting the streamable HTTP transport\n url: ''\n }\n})`.trim(),\n lang: 'typescript'\n }\n } else {\n return {\n code: `\nimport { defineConfig } from '@agentic/platform'\n\nexport default defineConfig({\n name: 'openapi-example',\n origin: {\n type: 'openapi',\n // Your origin OpenAPI server base URL\n url: '',\n // Your origin OpenAPI spec path or URL\n spec: ''\n }\n})`.trim(),\n lang: 'typescript'\n }\n }\n } else if (config.format === 'json') {\n if (config.originAdaptor === 'mcp') {\n return {\n code: `\n{\n \"$schema\": \"https://agentic.so/schema.json\",\n \"name\": \"mcp-example\",\n \"origin\": {\n \"type\": \"mcp\",\n \"url\": \"\"\n }\n}`.trim(),\n lang: 'json'\n }\n } else {\n return {\n code: `\n{\n \"$schema\": \"https://agentic.so/schema.json\",\n \"name\": \"openapi-example\",\n \"origin\": {\n \"type\": \"openapi\",\n \"url\": \"\",\n \"spec\": \"\"\n }\n}`.trim(),\n lang: 'json'\n }\n }\n }\n\n return {\n code: '',\n lang: 'json'\n }\n}\n" }, { "path": "apps/web/src/components/example-usage-section.tsx", "content": "import Link from 'next/link'\n\nimport { highlight } from '@/components/code-block/highlight'\nimport { ExampleUsage } from '@/components/example-usage'\nimport {\n defaultConfig,\n getCodeForDeveloperConfig\n} from '@/lib/developer-config'\nimport { globalAgenticApiClient } from '@/lib/global-api'\n\nexport async function ExampleUsageSection() {\n const projectIdentifier = '@agentic/search'\n const tool = 'search'\n\n // TODO: use prefetching here\n const initialProject =\n await globalAgenticApiClient.getPublicProjectByIdentifier({\n projectIdentifier,\n populate: ['lastPublishedDeployment']\n })\n\n // TODO: this should be loaded in `ExampleUsage`\n const initialCodeSnippet = getCodeForDeveloperConfig({\n config: defaultConfig,\n project: initialProject,\n deployment: initialProject.lastPublishedDeployment!,\n identifier: projectIdentifier,\n tool\n })\n const initialCodeBlock = await highlight(initialCodeSnippet)\n\n return (\n
\n

\n Agentic tools that{' '}\n work everywhere\n

\n\n \n\n
\n

\n This example uses the{' '}\n \n {projectIdentifier}\n {' '}\n tool to provide an LLM access to the web.\n

\n\n

\n All Agentic tools are exposed as both{' '}\n MCP servers as well as simple{' '}\n HTTP APIs. MCP is important for\n interop and future-proofing, whereas simple HTTP POST requests make\n tool use easy to debug and simplifies usage with LLM tool calling.\n

\n
\n
\n )\n}\n" }, { "path": "apps/web/src/components/example-usage.tsx", "content": "'use client'\n\nimport type { Project } from '@agentic/platform-types'\nimport Link from 'next/link'\nimport { type JSX, useEffect, useMemo, useState } from 'react'\nimport { useLocalStorage } from 'react-use'\n\nimport { useAgentic } from '@/components/agentic-provider'\nimport { CodeBlock } from '@/components/code-block'\nimport { Tabs, TabsContent, TabsList, TabsTrigger } from '@/components/ui/tabs'\nimport {\n type CodeSnippet,\n defaultConfig,\n type DeveloperConfig,\n getCodeForDeveloperConfig,\n type HTTPTarget,\n httpTargetLabels,\n httpTargets,\n type MCPClientTarget,\n mcpClientTargetLabels,\n mcpClientTargets,\n type PyFrameworkTarget,\n pyFrameworkTargetLabels,\n pyFrameworkTargets,\n type Target,\n targetLabels,\n targets,\n type TsFrameworkTarget,\n tsFrameworkTargetLabels,\n tsFrameworkTargets\n} from '@/lib/developer-config'\nimport { useQuery } from '@/lib/query-client'\n\nimport { LoadingIndicator } from './loading-indicator'\nimport { Button } from './ui/button'\n\nexport function ExampleUsage({\n projectIdentifier,\n project: initialProject,\n tool,\n apiKey,\n initialCodeBlock\n}: {\n projectIdentifier: string\n project?: Project\n tool?: string\n apiKey?: string\n initialCodeBlock?: JSX.Element\n}) {\n const ctx = useAgentic()\n const [isMounted, setIsMounted] = useState(false)\n\n useEffect(() => {\n setIsMounted(true)\n }, [])\n\n const [rawConfig, setConfig] = useLocalStorage(\n 'developer-config',\n defaultConfig\n )\n\n const config = useMemo(\n () => (isMounted && rawConfig ? rawConfig : defaultConfig),\n [rawConfig, isMounted]\n )\n\n // TODO: make this configurable\n // TODO: allow to take the project and/or consumer in as props\n // TODO: need a way of fetching a project and target deployment; same as in `AgenticToolClient.fromIdentifier` (currently only supports latest)\n\n // Load the public project\n const {\n data: project,\n isLoading,\n isError\n } = useQuery({\n queryKey: ['public-project', projectIdentifier],\n queryFn: () =>\n ctx!.api.getPublicProjectByIdentifier({\n projectIdentifier,\n populate: ['lastPublishedDeployment']\n }),\n enabled: !!ctx,\n initialData: initialProject\n })\n\n // If the user is authenticated, check if they have an active subscription to\n // this project\n // TODO: use consumer for apiKey\n // const {\n // data: consumer,\n // isLoading: isConsumerLoading\n // // isError: isConsumerError\n // } = useQuery({\n // queryKey: [\n // 'project',\n // projectIdentifier,\n // 'user',\n // ctx?.api.authSession?.user.id\n // ],\n // queryFn: () =>\n // ctx!.api.getConsumerByProjectIdentifier({\n // projectIdentifier\n // }),\n // enabled: !!ctx?.isAuthenticated\n // })\n\n return (\n
\n \n
\n )\n}\n\nfunction ExampleUsageContent({\n projectIdentifier,\n tool,\n apiKey,\n initialCodeBlock,\n isLoading,\n isError,\n project,\n config,\n setConfig\n}: {\n projectIdentifier: string\n tool?: string\n apiKey?: string\n initialCodeBlock?: JSX.Element\n isLoading: boolean\n isError: boolean\n project?: Project\n config?: DeveloperConfig\n setConfig: (config: DeveloperConfig) => void\n}) {\n if (isLoading || !config) {\n return \n }\n\n // TODO: allow to target a specific deployment\n const deployment = project?.lastPublishedDeployment\n\n if (isError || !project || !deployment) {\n return (\n
\n Error loading project. Please refresh the page or contact{' '}\n support@agentic.so.\n
\n )\n }\n\n const codeSnippet = getCodeForDeveloperConfig({\n config,\n project,\n deployment,\n identifier: projectIdentifier,\n tool,\n apiKey\n })\n\n return (\n \n setConfig({\n ...defaultConfig,\n ...config,\n target: value as Target\n })\n }\n className='w-full'\n >\n \n {targets.map((target) => (\n \n {targetLabels[target]}\n \n ))}\n \n\n \n \n setConfig({\n ...defaultConfig,\n ...config,\n mcpClientTarget: value as MCPClientTarget\n })\n }\n className='w-full'\n >\n \n {mcpClientTargets.map((mcpClientTarget) => (\n \n {mcpClientTargetLabels[mcpClientTarget]}\n \n ))}\n \n\n {mcpClientTargets.map((mcpClientTarget) => (\n \n \n \n ))}\n \n \n\n \n \n setConfig({\n ...defaultConfig,\n ...config,\n tsFrameworkTarget: value as TsFrameworkTarget\n })\n }\n className='w-full'\n >\n \n {tsFrameworkTargets.map((framework) => (\n \n {tsFrameworkTargetLabels[framework]}\n \n ))}\n \n\n {tsFrameworkTargets.map((framework) => (\n \n \n \n ))}\n \n \n\n \n \n setConfig({\n ...defaultConfig,\n ...config,\n pyFrameworkTarget: value as PyFrameworkTarget\n })\n }\n className='w-full'\n >\n \n {pyFrameworkTargets.map((framework) => (\n \n {pyFrameworkTargetLabels[framework]}\n \n ))}\n \n\n {pyFrameworkTargets.map((framework) => (\n \n \n \n ))}\n \n \n\n \n \n setConfig({\n ...defaultConfig,\n ...config,\n httpTarget: value as HTTPTarget\n })\n }\n className='w-full'\n >\n \n {httpTargets.map((httpTarget) => (\n \n {httpTargetLabels[httpTarget]}\n \n ))}\n \n\n {httpTargets.map((httpTarget) => (\n \n \n \n ))}\n \n \n \n )\n}\n\nfunction CodeSnippetBlock({\n codeSnippet,\n initialCodeBlock\n}: {\n codeSnippet: CodeSnippet\n initialCodeBlock?: JSX.Element\n}) {\n return (\n <>\n \n\n {codeSnippet.action && (\n \n \n {codeSnippet.action.logoImageUrl ? (\n <>\n \n \n ) : (\n <>\n \n \n \n )}\n\n {codeSnippet.action.label}\n \n \n )}\n \n )\n}\n" }, { "path": "apps/web/src/components/feature.tsx", "content": "'use client'\n\nimport type { ComponentType, ReactNode } from 'react'\nimport {\n motion,\n type MotionValue,\n useMotionTemplate,\n useMotionValue\n} from 'motion/react'\nimport Link from 'next/link'\n\nimport { GridPattern } from './grid-pattern'\n\nexport type FeatureData = {\n name: string\n description: ReactNode\n icon: ComponentType<{ className?: string }>\n pattern: Omit\n href?: string\n}\n\nexport function Feature({\n name,\n description,\n icon,\n pattern,\n href\n}: FeatureData) {\n const mouseX = useMotionValue(0)\n const mouseY = useMotionValue(0)\n\n function onMouseMove({\n currentTarget,\n clientX,\n clientY\n }: React.MouseEvent) {\n const { left, top } = currentTarget.getBoundingClientRect()\n mouseX.set(clientX - left)\n mouseY.set(clientY - top)\n }\n\n const content = (\n <>\n \n\n
\n\n
\n \n\n

\n {/* */}\n {name}\n

\n\n

\n {description}\n

\n
\n \n )\n\n const className =\n 'dark:bg-white/2.5 bg-gray-50 hover:shadow-gray-900/5 group relative flex rounded-2xl transition-shadow hover:shadow-md dark:hover:shadow-black/5'\n\n if (href) {\n return (\n \n {content}\n \n )\n } else {\n return (\n
\n {content}\n
\n )\n }\n}\n\n// eslint-disable-next-line @typescript-eslint/naming-convention\nfunction FeatureIcon({ icon: Icon }: { icon: FeatureData['icon'] }) {\n return (\n
\n \n
\n )\n}\n\nfunction FeaturePattern({\n mouseX,\n mouseY,\n ...gridProps\n}: FeatureData['pattern'] & {\n mouseX: MotionValue\n mouseY: MotionValue\n}) {\n const maskImage = useMotionTemplate`radial-gradient(180px at ${mouseX}px ${mouseY}px, white, transparent)`\n const style = { maskImage, WebkitMaskImage: maskImage }\n\n return (\n
\n
\n \n
\n\n \n\n \n \n \n
\n )\n}\n" }, { "path": "apps/web/src/components/footer/dynamic.tsx", "content": "'use client'\n\nimport { ActiveLink } from '@/components/active-link'\nimport { useAgentic } from '@/components/agentic-provider'\n\nexport function DynamicFooter() {\n const ctx = useAgentic()\n\n return (\n <>\n {ctx?.isAuthenticated ? (\n <>\n
\n \n Dashboard\n \n
\n\n
\n \n Logout\n \n
\n \n ) : (\n <>\n
\n \n Log in\n \n
\n\n
\n \n Sign up\n \n
\n \n )}\n \n )\n}\n" }, { "path": "apps/web/src/components/footer/index.tsx", "content": "import Link from 'next/link'\n\nimport { ActiveLink } from '@/components/active-link'\nimport { GitHubIcon } from '@/icons/github'\nimport { TwitterIcon } from '@/icons/twitter'\nimport { copyright, githubUrl, twitterUrl } from '@/lib/config'\n\nimport { DynamicFooter } from './dynamic'\n\nexport function Footer() {\n return (\n
\n
\n
\n
\n
\n

Platform

\n\n \n
\n
\n\n
\n
\n

Resources

\n\n \n
\n
\n\n
\n
\n

Company

\n\n \n
\n
\n\n
\n
\n

Social

\n\n \n
\n
\n
\n\n
\n {copyright}\n
\n
\n
\n )\n}\n" }, { "path": "apps/web/src/components/github-star-counter.tsx", "content": "'use client'\n\nimport NumberFlow from '@number-flow/react'\nimport Link from 'next/link'\nimport { type ReactNode, useEffect, useState } from 'react'\n\nimport { GitHubIcon } from '@/icons/github'\nimport { githubUrl } from '@/lib/config'\nimport { cn } from '@/lib/utils'\n\nimport { Button } from './ui/button'\n\n// TODO: fetch this dynamically\nconst numGitHubStars = 17_600\n\nexport function GitHubStarCounter({\n className,\n children\n}: {\n className?: string\n children?: ReactNode\n}) {\n const [numStars, setNumStars] = useState(0)\n\n useEffect(() => {\n setNumStars(numGitHubStars)\n }, [])\n\n return (\n \n \n \n\n \n\n {children}\n \n \n )\n}\n" }, { "path": "apps/web/src/components/grid-pattern.tsx", "content": "import { type SVGProps, useId } from 'react'\n\nexport type GridPattern = Omit<\n SVGProps,\n 'width' | 'height' | 'x' | 'y'\n> & {\n width: number\n height: number\n x: string | number\n y: string | number\n squares: Array<[x: number, y: number]>\n}\n\nexport function GridPattern({\n width,\n height,\n x,\n y,\n squares,\n ...props\n}: GridPattern) {\n const patternId = useId()\n\n return (\n \n )\n}\n" }, { "path": "apps/web/src/components/header/authenticated-header.tsx", "content": "'use client'\n\nimport { useState } from 'react'\n\nimport { ActiveLink } from '@/components/active-link'\nimport { useAgentic } from '@/components/agentic-provider'\nimport { Avatar, AvatarFallback, AvatarImage } from '@/components/ui/avatar'\nimport {\n DropdownMenu,\n DropdownMenuContent,\n DropdownMenuItem,\n DropdownMenuSeparator,\n DropdownMenuTrigger\n} from '@/components/ui/dropdown-menu'\n\nexport function AuthenticatedHeader() {\n const ctx = useAgentic()\n const [isDropdownMenuOpen, setIsDropdownMenuOpen] = useState(false)\n\n if (!ctx?.isAuthenticated) {\n return null\n }\n\n return (\n \n \n \n \n \n {ctx.api.authSession!.user.username?.slice(0, 2).toUpperCase()}\n \n \n \n\n \n \n setIsDropdownMenuOpen(false)}>\n Dashboard\n \n \n\n \n setIsDropdownMenuOpen(false)}\n >\n My Projects\n \n \n\n \n setIsDropdownMenuOpen(false)}\n >\n My Subscriptions\n \n \n\n \n\n \n setIsDropdownMenuOpen(false)}\n >\n Logout\n \n \n \n \n )\n}\n" }, { "path": "apps/web/src/components/header/index.tsx", "content": "import Link from 'next/link'\n\nimport { ActiveLink } from '@/components/active-link'\nimport { DarkModeToggle } from '@/components/dark-mode-toggle'\nimport { Button } from '@/components/ui/button'\nimport { GitHubIcon } from '@/icons/github'\nimport { githubUrl } from '@/lib/config'\nimport { cn } from '@/lib/utils'\n\nimport { AuthenticatedHeader } from './authenticated-header'\nimport styles from './styles.module.css'\nimport { UnauthenticatedHeader } from './unauthenticated-header'\n\nexport function Header() {\n return (\n
\n
\n \n \n \n \n\n
\n \n MCP Marketplace\n \n\n \n MCP Publishing\n \n\n \n Docs\n \n\n
\n \n\n \n\n \n\n \n
\n
\n
\n
\n )\n}\n" }, { "path": "apps/web/src/components/header/styles.module.css", "content": ".header {\n position: sticky;\n top: 0;\n left: 0;\n z-index: 49;\n\n width: 100%;\n max-width: 100vw;\n overflow: hidden;\n height: 55px;\n min-height: 55px;\n\n background: hsla(0, 0%, 100%, 0.8);\n backdrop-filter: saturate(180%) blur(16px);\n\n display: flex;\n flex-direction: column;\n align-items: center;\n padding: 12px 12px 0;\n line-height: 1;\n}\n\n:global(.dark) .header {\n background: transparent;\n box-shadow: inset 0 -1px 0 0 rgba(0, 0, 0, 0.1);\n backdrop-filter: saturate(180%) blur(20px);\n}\n\n.headerContent {\n align-self: center;\n width: 100%;\n max-width: 1200px;\n display: flex;\n flex-direction: row;\n justify-content: space-between;\n align-items: center;\n gap: 1em;\n min-height: 32px;\n}\n\n.navHeader {\n display: flex;\n flex-direction: row;\n justify-content: space-between;\n align-items: center;\n gap: var(--gap-w-1);\n\n max-width: var(--max-width);\n height: 100%;\n margin: 0 auto;\n}\n" }, { "path": "apps/web/src/components/header/unauthenticated-header.tsx", "content": "'use client'\n\nimport { ActiveLink } from '@/components/active-link'\nimport { useAgentic } from '@/components/agentic-provider'\nimport { Button } from '@/components/ui/button'\n\nexport function UnauthenticatedHeader() {\n const ctx = useAgentic()\n\n if (ctx?.isAuthenticated) {\n return null\n }\n\n return (\n <>\n \n\n \n \n )\n}\n" }, { "path": "apps/web/src/components/hero-button/index.tsx", "content": "import type * as React from 'react'\nimport type { Simplify } from 'type-fest'\n\nimport { Button, type ButtonProps } from '@/components/ui/button'\nimport { cn } from '@/lib/utils'\n\nimport styles from './styles.module.css'\n\nexport type HeroButtonVariant = 'orange' | 'blue' | 'purple'\n\nexport type HeroButtonProps = Simplify<\n {\n heroVariant?: HeroButtonVariant\n className?: string\n buttonClassName?: string\n } & ButtonProps\n>\n\nexport function HeroButton({\n heroVariant = 'purple',\n className,\n buttonClassName,\n ...buttonProps\n}: HeroButtonProps) {\n return (\n
\n {heroVariant === 'blue' && (\n \n )}\n\n {heroVariant === 'purple' && (\n \n )}\n\n {heroVariant === 'orange' && (\n \n )}\n\n \n
\n )\n}\n" }, { "path": "apps/web/src/components/hero-button/styles.module.css", "content": ".heroButtonWrapper {\n position: relative;\n max-width: 100%;\n z-index: 99;\n}\n\n.heroButtonBg1 {\n --start-color: #00dfd8;\n --end-color: #007cf0;\n /* animation: heroBgAnimation1 8s infinite; */\n}\n\n.heroButtonBg2 {\n --start-color: #ff0080;\n --end-color: #7928ca;\n /* animation: heroBgAnimation2 8s infinite; */\n}\n\n.heroButtonBg3 {\n --start-color: #ff4d4d;\n --end-color: #f9cb28;\n /* animation: heroBgAnimation3 8s infinite; */\n}\n\n.heroButtonBg {\n position: absolute;\n top: 0;\n left: 0;\n width: 100%;\n height: 100%;\n background-image: linear-gradient(\n 165deg,\n var(--start-color),\n var(--end-color)\n );\n border-radius: 5px;\n z-index: -2;\n}\n\n.heroButtonBg::before {\n position: absolute;\n content: '';\n top: 0;\n left: 0;\n right: 0;\n bottom: 0;\n z-index: -1;\n border: 12px solid transparent;\n filter: blur(24px);\n /* animation: pulse 2s ease-in-out infinite alternate; */\n background-image: linear-gradient(\n 165deg,\n var(--start-color),\n var(--end-color)\n );\n}\n\n.heroButton {\n cursor: pointer;\n\n background-color: var(--background);\n background-clip: padding-box;\n border: 1px solid transparent;\n box-shadow: 0 4px 4px 0 #00000010;\n color: var(--foreground);\n transition-property: color, background-color, box-shadow;\n transition-duration: 0.15s;\n transition-timing-function: ease;\n padding: 20px 24px;\n border-radius: 5px;\n max-width: 100%;\n display: flex;\n justify-content: center;\n align-items: center;\n user-select: none;\n outline: none;\n white-space: nowrap;\n\n --lighten-color: hsla(0, 0%, 100%, 0.8);\n background-image: linear-gradient(\n to right,\n var(--lighten-color),\n var(--lighten-color)\n );\n}\n\n:global(.dark) .heroButton {\n --lighten-color: rgba(0, 0, 0, 0.75);\n}\n\n.heroButton:hover {\n --lighten-color: transparent;\n background-color: transparent;\n color: var(--background);\n}\n\n.heroButton:focus:not(:active):not(:hover) {\n border-color: var(--foreground);\n}\n\n.heroButton:active {\n --lighten-color: hsla(0, 0%, 100%, 0.5);\n}\n\n.heroButtonWrapper:has(.heroButton:disabled) {\n opacity: 0.3;\n cursor: not-allowed;\n}\n\n.heroButtonWrapper:has(.heroButton:disabled) * {\n pointer-events: none;\n}\n\n/* @keyframes heroBgAnimation1 {\n 0%,\n 16.667%,\n to {\n opacity: 1;\n }\n 33%,\n 83.333% {\n opacity: 0;\n }\n}\n\n@keyframes heroBgAnimation2 {\n 0%,\n 16.667%,\n 66.667%,\n to {\n opacity: 0;\n }\n 33.333%,\n 50% {\n opacity: 1;\n }\n}\n\n@keyframes heroBgAnimation3 {\n 0%,\n 50%,\n to {\n opacity: 0;\n }\n 66.667%,\n 83.333% {\n opacity: 1;\n }\n} */\n\n/* @keyframes pulse {\n from {\n filter: blur(8px);\n }\n\n to {\n filter: blur(32px);\n }\n} */\n" }, { "path": "apps/web/src/components/hero-simulation-2.tsx", "content": "'use client'\n\nimport { Physics, useSphere } from '@react-three/cannon'\nimport { Environment, useTexture } from '@react-three/drei'\nimport { Canvas, useFrame, useThree } from '@react-three/fiber'\nimport {\n Bloom,\n EffectComposer,\n // N8AO,\n SMAA,\n SSAO\n} from '@react-three/postprocessing'\nimport { useEffect, useState } from 'react'\nimport * as THREE from 'three'\n\nconst rfs = THREE.MathUtils.randFloatSpread\nconst sphereGeometry = new THREE.SphereGeometry(1, 32, 32)\nconst baubleMaterial = new THREE.MeshStandardMaterial({\n color: 'white',\n roughness: 0,\n envMapIntensity: 1\n})\n\nexport function HeroSimulation2({ className }: { className?: string }) {\n const [hovered, setHovered] = useState(false)\n\n // Change cursor on hovered state\n useEffect(() => {\n if (hovered) {\n document.body.style.cursor = 'none'\n } else {\n document.body.style.cursor = 'auto'\n }\n // document.body.style.cursor = hovered\n // ? 'none'\n // : `url('data:image/svg+xml;base64,${btoa(\n // ''\n // )}'), auto`\n }, [hovered])\n\n return (\n setHovered(true)}\n onPointerOut={() => setHovered(false)}\n >\n \n\n \n\n \n\n \n \n \n \n\n \n\n \n \n {/* */}\n\n \n\n \n \n \n )\n}\n\nfunction Clump({\n mat = new THREE.Matrix4(),\n vec = new THREE.Vector3(),\n numBalls = 64\n}) {\n const texture = useTexture('/mcp.png')\n const [ref, api] = useSphere(() => ({\n args: [1],\n mass: 1,\n angularDamping: 0.1,\n linearDamping: 0.65,\n position: [rfs(20), rfs(20), rfs(20)]\n }))\n\n useFrame((_state, _delta) => {\n for (let i = 0; i < numBalls; i++) {\n // Get current whereabouts of the instanced sphere\n ;(ref.current as any).getMatrixAt(i, mat)\n // ref.current.children[i]!.getM(i, mat)\n\n // Normalize the position and multiply by a negative force.\n // This is enough to drive it towards the center-point.\n api\n .at(i)\n ?.applyForce(\n vec\n .setFromMatrixPosition(mat)\n .normalize()\n .multiplyScalar(-40)\n .toArray(),\n [0, 0, 0]\n )\n }\n })\n\n return (\n \n )\n}\n\nfunction Pointer() {\n const viewport = useThree((state) => state.viewport)\n const [ref, api] = useSphere(() => ({\n type: 'Kinematic',\n args: [3],\n position: [0, 0, 0]\n }))\n\n useFrame((state) =>\n api.position.set(\n (state.pointer.x * viewport.width) / 2,\n (state.pointer.y * viewport.height) / 2,\n 0\n )\n )\n\n return (\n \n \n \n \n \n )\n}\n" }, { "path": "apps/web/src/components/hero-simulation.tsx", "content": "'use client'\n\nimport {\n MarchingCube,\n MarchingCubes,\n MeshTransmissionMaterial,\n RenderTexture,\n Text\n} from '@react-three/drei'\nimport { Canvas, useFrame } from '@react-three/fiber'\nimport { BallCollider, Physics, RigidBody } from '@react-three/rapier'\nimport { useRef } from 'react'\nimport { suspend } from 'suspend-react'\nimport * as THREE from 'three'\n\nconst inter = import('@pmndrs/assets/fonts/inter_regular.woff')\n\n// https://codesandbox.io/p/sandbox/metaballs-forked-g7xjjq?file=%2Fsrc%2FApp.js\n\nfunction MetaBall({\n float = false,\n strength = 0.5,\n color,\n vec = new THREE.Vector3(),\n ...props\n}: {\n float?: boolean\n strength?: number\n color?: string\n vec?: THREE.Vector3\n} & Parameters[0]) {\n const api = useRef(null)\n\n useFrame((_state, delta) => {\n if (float) {\n delta = Math.min(delta, 0.1)\n api.current?.applyImpulse(\n vec\n //.set(-state.pointer.x, -state.pointer.y, 0)\n .copy(api.current.translation())\n .normalize()\n .multiplyScalar(delta * -0.2)\n )\n }\n })\n\n return (\n \n \n\n \n \n )\n}\n\nfunction Pointer({ vec = new THREE.Vector3() }) {\n const ref = useRef(null)\n\n useFrame(({ pointer, viewport }) => {\n const { width, height } = viewport.getCurrentViewport()\n vec.set((pointer.x * width) / 2, (pointer.y * height) / 2, 0)\n ref.current?.setNextKinematicTranslation(vec)\n })\n\n return (\n \n \n \n )\n}\n\nexport function HeroSimulation({ className }: { className?: string }) {\n return (\n \n \n\n \n\n \n \n \n \n \n\n \n MCP\n \n \n \n\n {Array.from({ length: 10 }, (_, index) => (\n \n ))}\n\n \n \n \n\n {/* */}\n \n )\n}\n" }, { "path": "apps/web/src/components/loading-indicator/index.tsx", "content": "'use client'\n\n// import { AnimatePresence, motion } from 'motion/react'\nimport dynamic from 'next/dynamic'\nimport { useTheme } from 'next-themes'\n\nimport { cn } from '@/lib/utils'\n\nimport loadingDark from './loading-dark.json'\nimport loadingLight from './loading-light.json'\nimport styles from './styles.module.css'\n\nconst Lottie = dynamic(() => import('react-lottie-player'), {\n ssr: false\n})\n\nexport function LoadingIndicator({ className }: { className?: string }) {\n const { resolvedTheme } = useTheme()\n\n return (\n \n\n // \n // {isLoading ? (\n // \n // \n // \n // ) : null}\n // \n )\n}\n" }, { "path": "apps/web/src/components/loading-indicator/loading-dark.json", "content": "{\n \"assets\": [\n {\n \"id\": \"comp_1\",\n \"layers\": [\n {\n \"ddd\": 0,\n \"ind\": 0,\n \"ty\": 4,\n \"nm\": \"Shape Layer 3\",\n \"ks\": {\n \"o\": {\n \"k\": [\n {\n \"i\": { \"x\": [0.833], \"y\": [0.833] },\n \"o\": { \"x\": [0.167], \"y\": [0.167] },\n \"n\": [\"0p833_0p833_0p167_0p167\"],\n \"t\": 10.4,\n \"s\": [100],\n \"e\": [0]\n },\n { \"t\": 25.6 }\n ]\n },\n \"r\": { \"k\": 0 },\n \"p\": { \"k\": [700, 400, 0] },\n \"a\": { \"k\": [0, 0, 0] },\n \"s\": { \"k\": [100, 100, 100] }\n },\n \"ao\": 0,\n \"hasMask\": true,\n \"masksProperties\": [\n {\n \"inv\": true,\n \"mode\": \"a\",\n \"pt\": {\n \"k\": [\n {\n \"i\": { \"x\": 0.833, \"y\": 0.833 },\n \"o\": { \"x\": 0.167, \"y\": 0.167 },\n \"n\": \"0p833_0p833_0p167_0p167\",\n \"t\": 12,\n \"s\": [\n {\n \"i\": [\n [134.688, 0],\n [0, -134.688],\n [-134.688, 0],\n [0, 134.688]\n ],\n \"o\": [\n [-134.688, 0],\n [0, 134.688],\n [134.688, 0],\n [0, -134.688]\n ],\n \"v\": [\n [0, -244.875],\n [-243.875, -1],\n [0, 242.875],\n [243.875, -1]\n ],\n \"c\": true\n }\n ],\n \"e\": [\n {\n \"i\": [\n [176.731, 0],\n [0, -176.731],\n [-176.731, 0],\n [0, 176.731]\n ],\n \"o\": [\n [-176.731, 0],\n [0, 176.731],\n [176.731, 0],\n [0, -176.731]\n ],\n \"v\": [\n [0, -321],\n [-320, -1],\n [0, 319],\n [320, -1]\n ],\n \"c\": true\n }\n ]\n },\n { \"t\": 22.4 }\n ]\n },\n \"o\": { \"k\": 100 },\n \"x\": { \"k\": 0 },\n \"nm\": \"Mask 1\"\n }\n ],\n \"shapes\": [\n {\n \"ty\": \"gr\",\n \"it\": [\n {\n \"ind\": 0,\n \"ty\": \"sh\",\n \"ks\": {\n \"k\": {\n \"i\": [\n [0, 0],\n [-24.109, -23.866],\n [-58.097, 2.286],\n [-4.307, 101.702],\n [108.95, -0.605],\n [0, 0],\n [36.992, -44.122],\n [100.991, -5.514],\n [22.177, 25.867],\n [6.132, 116.1],\n [-41.842, 62.08],\n [-30.638, 10.829],\n [-51.58, -26.549],\n [0, 0]\n ],\n \"o\": [\n [0, 0],\n [24.109, 23.866],\n [74.937, -2.949],\n [5.422, -128.032],\n [-88.536, 0.492],\n [0, 0],\n [-17.89, 21.338],\n [-138.946, 7.586],\n [-22.174, -25.864],\n [-2.384, -45.141],\n [41.572, -61.679],\n [77.499, -27.393],\n [92.496, 47.608],\n [0, 0]\n ],\n \"v\": [\n [116, 52],\n [197.891, 144.134],\n [328.097, 197.714],\n [497.578, 23.032],\n [311.536, -190.492],\n [139.357, -79.71],\n [-73.007, 190.878],\n [-281.054, 311.414],\n [-531.052, 222.093],\n [-620.132, 10.9],\n [-568.112, -177.098],\n [-425.186, -291.697],\n [-199.496, -289.608],\n [-46, -153]\n ],\n \"c\": false\n }\n },\n \"nm\": \"Path 1\",\n \"mn\": \"ADBE Vector Shape - Group\"\n },\n {\n \"ind\": 1,\n \"ty\": \"sh\",\n \"ks\": {\n \"k\": {\n \"i\": [\n [-44, -50],\n [-152, 2],\n [-63.813, 80.106],\n [89, 81],\n [84, 0],\n [52, -59],\n [38, -40],\n [81, 0],\n [-1.027, 116.034],\n [-81, 0],\n [-31, -36],\n [0, 0]\n ],\n \"o\": [\n [44, 50],\n [105.034, -1.382],\n [94, -118],\n [-79.495, -72.35],\n [-84, 0],\n [-52, 59],\n [-36.789, 38.725],\n [-61.033, 0],\n [1, -113],\n [81, 0],\n [31, 36],\n [0, 0]\n ],\n \"v\": [\n [41, 152],\n [302, 310],\n [554, 190],\n [536, -217],\n [307, -309],\n [84, -198],\n [-176, 130],\n [-327, 196],\n [-500, -3],\n [-330, -192],\n [-183, -127],\n [-120, -57]\n ],\n \"c\": false\n }\n },\n \"nm\": \"Path 2\",\n \"mn\": \"ADBE Vector Shape - Group\"\n },\n {\n \"ty\": \"tm\",\n \"s\": {\n \"k\": [\n {\n \"i\": { \"x\": [0.833], \"y\": [0.833] },\n \"o\": { \"x\": [0.167], \"y\": [0.167] },\n \"n\": [\"0p833_0p833_0p167_0p167\"],\n \"t\": 8.8,\n \"s\": [30],\n \"e\": [0]\n },\n { \"t\": 22.4 }\n ],\n \"ix\": 1\n },\n \"e\": {\n \"k\": [\n {\n \"i\": { \"x\": [0.833], \"y\": [0.833] },\n \"o\": { \"x\": [0.167], \"y\": [0.167] },\n \"n\": [\"0p833_0p833_0p167_0p167\"],\n \"t\": 8.8,\n \"s\": [30],\n \"e\": [60]\n },\n { \"t\": 22.4 }\n ],\n \"ix\": 2\n },\n \"o\": { \"k\": -110, \"ix\": 3 },\n \"m\": 1,\n \"ix\": 3,\n \"nm\": \"Trim Paths 1\",\n \"mn\": \"ADBE Vector Filter - Trim\"\n },\n {\n \"ty\": \"st\",\n \"fillEnabled\": true,\n \"c\": { \"k\": [1, 1, 1, 1] },\n \"o\": { \"k\": 100 },\n \"w\": { \"k\": 11 },\n \"lc\": 2,\n \"lj\": 2,\n \"nm\": \"Stroke 1\",\n \"mn\": \"ADBE Vector Graphic - Stroke\"\n },\n {\n \"ty\": \"tr\",\n \"p\": { \"k\": [0, 0], \"ix\": 2 },\n \"a\": { \"k\": [0, 0], \"ix\": 1 },\n \"s\": { \"k\": [100, 100], \"ix\": 3 },\n \"r\": { \"k\": 0, \"ix\": 6 },\n \"o\": { \"k\": 100, \"ix\": 7 },\n \"sk\": { \"k\": 0, \"ix\": 4 },\n \"sa\": { \"k\": 0, \"ix\": 5 },\n \"nm\": \"Transform\"\n }\n ],\n \"nm\": \"Shape 1\",\n \"np\": 4,\n \"mn\": \"ADBE Vector Group\"\n }\n ],\n \"ip\": 0,\n \"op\": 100,\n \"st\": 0,\n \"bm\": 0,\n \"sr\": 1\n },\n {\n \"ddd\": 0,\n \"ind\": 1,\n \"ty\": 4,\n \"nm\": \"Shape Layer 2\",\n \"ks\": {\n \"o\": { \"k\": 100 },\n \"r\": { \"k\": 0 },\n \"p\": { \"k\": [700, 400, 0] },\n \"a\": { \"k\": [0, 0, 0] },\n \"s\": { \"k\": [100, 100, 100] }\n },\n \"ao\": 0,\n \"shapes\": [\n {\n \"ty\": \"gr\",\n \"it\": [\n {\n \"ind\": 0,\n \"ty\": \"sh\",\n \"ks\": {\n \"k\": {\n \"i\": [\n [0, 0],\n [-24.109, -23.866],\n [-58.097, 2.286],\n [-4.307, 101.702],\n [108.95, -0.605],\n [0, 0],\n [36.992, -44.122],\n [100.991, -5.514],\n [22.177, 25.867],\n [6.132, 116.1],\n [-41.842, 62.08],\n [-30.638, 10.829],\n [-51.58, -26.549],\n [0, 0]\n ],\n \"o\": [\n [0, 0],\n [24.109, 23.866],\n [74.937, -2.949],\n [5.422, -128.032],\n [-88.536, 0.492],\n [0, 0],\n [-17.89, 21.338],\n [-138.946, 7.586],\n [-22.174, -25.864],\n [-2.384, -45.141],\n [41.572, -61.679],\n [77.499, -27.393],\n [92.496, 47.608],\n [0, 0]\n ],\n \"v\": [\n [116, 52],\n [197.891, 144.134],\n [328.097, 197.714],\n [497.578, 23.032],\n [311.536, -190.492],\n [139.357, -79.71],\n [-73.007, 190.878],\n [-281.054, 311.414],\n [-531.052, 222.093],\n [-620.132, 10.9],\n [-568.112, -177.098],\n [-425.186, -291.697],\n [-199.496, -289.608],\n [-46, -153]\n ],\n \"c\": false\n }\n },\n \"nm\": \"Path 1\",\n \"mn\": \"ADBE Vector Shape - Group\"\n },\n {\n \"ind\": 1,\n \"ty\": \"sh\",\n \"ks\": {\n \"k\": {\n \"i\": [\n [-44, -50],\n [-152, 2],\n [-63.813, 80.106],\n [89, 81],\n [84, 0],\n [52, -59],\n [38, -40],\n [81, 0],\n [-1.027, 116.034],\n [-81, 0],\n [-31, -36],\n [0, 0]\n ],\n \"o\": [\n [44, 50],\n [105.034, -1.382],\n [94, -118],\n [-79.495, -72.35],\n [-84, 0],\n [-52, 59],\n [-36.789, 38.725],\n [-61.033, 0],\n [1, -113],\n [81, 0],\n [31, 36],\n [0, 0]\n ],\n \"v\": [\n [41, 152],\n [302, 310],\n [554, 190],\n [536, -217],\n [307, -309],\n [84, -198],\n [-176, 130],\n [-327, 196],\n [-500, -3],\n [-330, -192],\n [-183, -127],\n [-120, -57]\n ],\n \"c\": false\n }\n },\n \"nm\": \"Path 2\",\n \"mn\": \"ADBE Vector Shape - Group\"\n },\n {\n \"ty\": \"tm\",\n \"s\": { \"k\": 0, \"ix\": 1 },\n \"e\": { \"k\": 26, \"ix\": 2 },\n \"o\": {\n \"k\": [\n {\n \"i\": { \"x\": [0.833], \"y\": [0.833] },\n \"o\": { \"x\": [0.167], \"y\": [0.167] },\n \"n\": [\"0p833_0p833_0p167_0p167\"],\n \"t\": 0,\n \"s\": [0],\n \"e\": [360]\n },\n {\n \"i\": { \"x\": [0.833], \"y\": [0.833] },\n \"o\": { \"x\": [0.167], \"y\": [0.167] },\n \"n\": [\"0p833_0p833_0p167_0p167\"],\n \"t\": 40,\n \"s\": [360],\n \"e\": [720]\n },\n { \"t\": 80 }\n ],\n \"ix\": 3\n },\n \"m\": 1,\n \"ix\": 3,\n \"nm\": \"Trim Paths 1\",\n \"mn\": \"ADBE Vector Filter - Trim\"\n },\n {\n \"ty\": \"st\",\n \"fillEnabled\": true,\n \"c\": { \"k\": [1, 1, 1, 1] },\n \"o\": { \"k\": 100 },\n \"w\": { \"k\": 11 },\n \"lc\": 2,\n \"lj\": 2,\n \"nm\": \"Stroke 1\",\n \"mn\": \"ADBE Vector Graphic - Stroke\"\n },\n {\n \"ty\": \"tr\",\n \"p\": { \"k\": [0, 0], \"ix\": 2 },\n \"a\": { \"k\": [0, 0], \"ix\": 1 },\n \"s\": { \"k\": [100, 100], \"ix\": 3 },\n \"r\": { \"k\": 0, \"ix\": 6 },\n \"o\": { \"k\": 100, \"ix\": 7 },\n \"sk\": { \"k\": 0, \"ix\": 4 },\n \"sa\": { \"k\": 0, \"ix\": 5 },\n \"nm\": \"Transform\"\n }\n ],\n \"nm\": \"Shape 1\",\n \"np\": 4,\n \"mn\": \"ADBE Vector Group\"\n }\n ],\n \"ip\": 0,\n \"op\": 100,\n \"st\": 0,\n \"bm\": 0,\n \"sr\": 1\n },\n {\n \"ddd\": 0,\n \"ind\": 2,\n \"ty\": 4,\n \"nm\": \"Shape Layer 1\",\n \"ks\": {\n \"o\": { \"k\": 100 },\n \"r\": { \"k\": 0 },\n \"p\": { \"k\": [700, 400, 0] },\n \"a\": { \"k\": [0, 0, 0] },\n \"s\": { \"k\": [102, 102, 100] }\n },\n \"ao\": 0,\n \"shapes\": [\n {\n \"ty\": \"gr\",\n \"it\": [\n {\n \"ind\": 0,\n \"ty\": \"sh\",\n \"ks\": {\n \"k\": {\n \"i\": [\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0]\n ],\n \"o\": [\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0]\n ],\n \"v\": [\n [41.593, 144.622],\n [169.506, 119.927],\n [189.109, 279.448],\n [324.733, 198.952],\n [451.572, 261.435],\n [464.308, 109.882],\n [591.263, 63.386],\n [489.394, -41.116],\n [545.422, -183.975],\n [401.99, -165.308],\n [315.929, -299.146],\n [228.713, -166.646],\n [75.238, -178.354],\n [75.296, -7.911],\n [-76.402, 13.881],\n [-74.277, 186.236],\n [-211.124, 169.355],\n [-300.932, 303.028],\n [-390.031, 173.297],\n [-533.818, 195.069],\n [-486.799, 51.51],\n [-603.444, -31.631],\n [-472.297, -92.031],\n [-477.325, -249.524],\n [-333.828, -192.011],\n [-212.105, -287.275],\n [-181.109, -134.238],\n [-48.486, -147.583]\n ],\n \"c\": false\n }\n },\n \"nm\": \"Path 2\",\n \"mn\": \"ADBE Vector Shape - Group\"\n },\n {\n \"ty\": \"tm\",\n \"s\": { \"k\": 0, \"ix\": 1 },\n \"e\": { \"k\": 22, \"ix\": 2 },\n \"o\": {\n \"k\": [\n {\n \"i\": { \"x\": [0.833], \"y\": [0.833] },\n \"o\": { \"x\": [0.167], \"y\": [0.167] },\n \"n\": [\"0p833_0p833_0p167_0p167\"],\n \"t\": 0,\n \"s\": [0],\n \"e\": [360]\n },\n {\n \"i\": { \"x\": [0.833], \"y\": [0.833] },\n \"o\": { \"x\": [0.167], \"y\": [0.167] },\n \"n\": [\"0p833_0p833_0p167_0p167\"],\n \"t\": 40,\n \"s\": [360],\n \"e\": [720]\n },\n { \"t\": 80 }\n ],\n \"ix\": 3\n },\n \"m\": 1,\n \"ix\": 3,\n \"nm\": \"Trim Paths 1\",\n \"mn\": \"ADBE Vector Filter - Trim\"\n },\n {\n \"ty\": \"st\",\n \"fillEnabled\": true,\n \"c\": { \"k\": [1, 1, 1, 1] },\n \"o\": { \"k\": 100 },\n \"w\": { \"k\": 10 },\n \"lc\": 2,\n \"lj\": 2,\n \"nm\": \"Stroke 1\",\n \"mn\": \"ADBE Vector Graphic - Stroke\"\n },\n {\n \"ty\": \"tr\",\n \"p\": { \"k\": [0, 0], \"ix\": 2 },\n \"a\": { \"k\": [0, 0], \"ix\": 1 },\n \"s\": { \"k\": [100, 100], \"ix\": 3 },\n \"r\": { \"k\": 0, \"ix\": 6 },\n \"o\": { \"k\": 100, \"ix\": 7 },\n \"sk\": { \"k\": 0, \"ix\": 4 },\n \"sa\": { \"k\": 0, \"ix\": 5 },\n \"nm\": \"Transform\"\n }\n ],\n \"nm\": \"Shape 1\",\n \"np\": 4,\n \"mn\": \"ADBE Vector Group\"\n }\n ],\n \"ip\": 0,\n \"op\": 100,\n \"st\": 0,\n \"bm\": 0,\n \"sr\": 1\n },\n {\n \"ddd\": 0,\n \"ind\": 3,\n \"ty\": 4,\n \"nm\": \"Shape Layer 5\",\n \"ks\": {\n \"o\": { \"k\": 18 },\n \"r\": { \"k\": 0 },\n \"p\": { \"k\": [700, 400, 0] },\n \"a\": { \"k\": [0, 0, 0] },\n \"s\": { \"k\": [100, 100, 100] }\n },\n \"ao\": 0,\n \"shapes\": [\n {\n \"ty\": \"gr\",\n \"it\": [\n {\n \"ind\": 0,\n \"ty\": \"sh\",\n \"ks\": {\n \"k\": {\n \"i\": [\n [0, 0],\n [-24.109, -23.866],\n [-58.097, 2.286],\n [-4.307, 101.702],\n [108.95, -0.605],\n [0, 0],\n [36.992, -44.122],\n [100.991, -5.514],\n [22.177, 25.867],\n [6.132, 116.1],\n [-41.842, 62.08],\n [-30.638, 10.829],\n [-51.58, -26.549],\n [0, 0]\n ],\n \"o\": [\n [0, 0],\n [24.109, 23.866],\n [74.937, -2.949],\n [5.422, -128.032],\n [-88.536, 0.492],\n [0, 0],\n [-17.89, 21.338],\n [-138.946, 7.586],\n [-22.174, -25.864],\n [-2.384, -45.141],\n [41.572, -61.679],\n [77.499, -27.393],\n [92.496, 47.608],\n [0, 0]\n ],\n \"v\": [\n [116, 52],\n [197.891, 144.134],\n [328.097, 197.714],\n [497.578, 23.032],\n [311.536, -190.492],\n [139.357, -79.71],\n [-73.007, 190.878],\n [-281.054, 311.414],\n [-531.052, 222.093],\n [-620.132, 10.9],\n [-568.112, -177.098],\n [-425.186, -291.697],\n [-199.496, -289.608],\n [-46, -153]\n ],\n \"c\": false\n }\n },\n \"nm\": \"Path 1\",\n \"mn\": \"ADBE Vector Shape - Group\"\n },\n {\n \"ind\": 1,\n \"ty\": \"sh\",\n \"ks\": {\n \"k\": {\n \"i\": [\n [-44, -50],\n [-152, 2],\n [-63.813, 80.106],\n [89, 81],\n [84, 0],\n [52, -59],\n [38, -40],\n [81, 0],\n [-1.027, 116.034],\n [-81, 0],\n [-31, -36],\n [0, 0]\n ],\n \"o\": [\n [44, 50],\n [105.034, -1.382],\n [94, -118],\n [-79.495, -72.35],\n [-84, 0],\n [-52, 59],\n [-36.789, 38.725],\n [-61.033, 0],\n [1, -113],\n [81, 0],\n [31, 36],\n [0, 0]\n ],\n \"v\": [\n [41, 152],\n [302, 310],\n [554, 190],\n [536, -217],\n [307, -309],\n [84, -198],\n [-176, 130],\n [-327, 196],\n [-500, -3],\n [-330, -192],\n [-183, -127],\n [-120, -57]\n ],\n \"c\": false\n }\n },\n \"nm\": \"Path 2\",\n \"mn\": \"ADBE Vector Shape - Group\"\n },\n {\n \"ty\": \"tm\",\n \"s\": { \"k\": 0, \"ix\": 1 },\n \"e\": { \"k\": 26, \"ix\": 2 },\n \"o\": {\n \"k\": [\n {\n \"i\": { \"x\": [0.833], \"y\": [0.833] },\n \"o\": { \"x\": [0.167], \"y\": [0.167] },\n \"n\": [\"0p833_0p833_0p167_0p167\"],\n \"t\": -33.6,\n \"s\": [0],\n \"e\": [360]\n },\n {\n \"i\": { \"x\": [0.833], \"y\": [0.833] },\n \"o\": { \"x\": [0.167], \"y\": [0.167] },\n \"n\": [\"0p833_0p833_0p167_0p167\"],\n \"t\": 6.4,\n \"s\": [360],\n \"e\": [720]\n },\n {\n \"i\": { \"x\": [0.833], \"y\": [0.833] },\n \"o\": { \"x\": [0.167], \"y\": [0.167] },\n \"n\": [\"0p833_0p833_0p167_0p167\"],\n \"t\": 46.4,\n \"s\": [720],\n \"e\": [1080]\n },\n { \"t\": 86.4 }\n ],\n \"ix\": 3\n },\n \"m\": 1,\n \"ix\": 3,\n \"nm\": \"Trim Paths 1\",\n \"mn\": \"ADBE Vector Filter - Trim\"\n },\n {\n \"ty\": \"st\",\n \"fillEnabled\": true,\n \"c\": { \"k\": [1, 1, 1, 1] },\n \"o\": { \"k\": 100 },\n \"w\": { \"k\": 11 },\n \"lc\": 2,\n \"lj\": 2,\n \"nm\": \"Stroke 1\",\n \"mn\": \"ADBE Vector Graphic - Stroke\"\n },\n {\n \"ty\": \"tr\",\n \"p\": { \"k\": [0, 0], \"ix\": 2 },\n \"a\": { \"k\": [0, 0], \"ix\": 1 },\n \"s\": { \"k\": [100, 100], \"ix\": 3 },\n \"r\": { \"k\": 0, \"ix\": 6 },\n \"o\": { \"k\": 100, \"ix\": 7 },\n \"sk\": { \"k\": 0, \"ix\": 4 },\n \"sa\": { \"k\": 0, \"ix\": 5 },\n \"nm\": \"Transform\"\n }\n ],\n \"nm\": \"Shape 1\",\n \"np\": 4,\n \"mn\": \"ADBE Vector Group\"\n }\n ],\n \"ip\": -33.6,\n \"op\": 90.4,\n \"st\": -33.6,\n \"bm\": 0,\n \"sr\": 1\n },\n {\n \"ddd\": 0,\n \"ind\": 4,\n \"ty\": 4,\n \"nm\": \"Shape Layer 4\",\n \"ks\": {\n \"o\": { \"k\": 18 },\n \"r\": { \"k\": 0 },\n \"p\": { \"k\": [700, 400, 0] },\n \"a\": { \"k\": [0, 0, 0] },\n \"s\": { \"k\": [102, 102, 100] }\n },\n \"ao\": 0,\n \"shapes\": [\n {\n \"ty\": \"gr\",\n \"it\": [\n {\n \"ind\": 0,\n \"ty\": \"sh\",\n \"ks\": {\n \"k\": {\n \"i\": [\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0]\n ],\n \"o\": [\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0]\n ],\n \"v\": [\n [41.593, 144.622],\n [169.506, 119.927],\n [189.109, 279.448],\n [324.733, 198.952],\n [451.572, 261.435],\n [464.308, 109.882],\n [591.263, 63.386],\n [489.394, -41.116],\n [545.422, -183.975],\n [401.99, -165.308],\n [315.929, -299.146],\n [228.713, -166.646],\n [75.238, -178.354],\n [75.296, -7.911],\n [-76.402, 13.881],\n [-74.277, 186.236],\n [-211.124, 169.355],\n [-300.932, 303.028],\n [-390.031, 173.297],\n [-533.818, 195.069],\n [-486.799, 51.51],\n [-603.444, -31.631],\n [-472.297, -92.031],\n [-477.325, -249.524],\n [-333.828, -192.011],\n [-212.105, -287.275],\n [-181.109, -134.238],\n [-48.486, -147.583]\n ],\n \"c\": false\n }\n },\n \"nm\": \"Path 2\",\n \"mn\": \"ADBE Vector Shape - Group\"\n },\n {\n \"ty\": \"tm\",\n \"s\": { \"k\": 0, \"ix\": 1 },\n \"e\": { \"k\": 22, \"ix\": 2 },\n \"o\": {\n \"k\": [\n {\n \"i\": { \"x\": [0.833], \"y\": [0.833] },\n \"o\": { \"x\": [0.167], \"y\": [0.167] },\n \"n\": [\"0p833_0p833_0p167_0p167\"],\n \"t\": -33.6,\n \"s\": [0],\n \"e\": [360]\n },\n {\n \"i\": { \"x\": [0.833], \"y\": [0.833] },\n \"o\": { \"x\": [0.167], \"y\": [0.167] },\n \"n\": [\"0p833_0p833_0p167_0p167\"],\n \"t\": 6.4,\n \"s\": [360],\n \"e\": [720]\n },\n {\n \"i\": { \"x\": [0.833], \"y\": [0.833] },\n \"o\": { \"x\": [0.167], \"y\": [0.167] },\n \"n\": [\"0p833_0p833_0p167_0p167\"],\n \"t\": 46.4,\n \"s\": [720],\n \"e\": [1080]\n },\n { \"t\": 86.4 }\n ],\n \"ix\": 3\n },\n \"m\": 1,\n \"ix\": 3,\n \"nm\": \"Trim Paths 1\",\n \"mn\": \"ADBE Vector Filter - Trim\"\n },\n {\n \"ty\": \"st\",\n \"fillEnabled\": true,\n \"c\": { \"k\": [1, 1, 1, 1] },\n \"o\": { \"k\": 100 },\n \"w\": { \"k\": 10 },\n \"lc\": 2,\n \"lj\": 2,\n \"nm\": \"Stroke 1\",\n \"mn\": \"ADBE Vector Graphic - Stroke\"\n },\n {\n \"ty\": \"tr\",\n \"p\": { \"k\": [0, 0], \"ix\": 2 },\n \"a\": { \"k\": [0, 0], \"ix\": 1 },\n \"s\": { \"k\": [100, 100], \"ix\": 3 },\n \"r\": { \"k\": 0, \"ix\": 6 },\n \"o\": { \"k\": 100, \"ix\": 7 },\n \"sk\": { \"k\": 0, \"ix\": 4 },\n \"sa\": { \"k\": 0, \"ix\": 5 },\n \"nm\": \"Transform\"\n }\n ],\n \"nm\": \"Shape 1\",\n \"np\": 4,\n \"mn\": \"ADBE Vector Group\"\n }\n ],\n \"ip\": -33.6,\n \"op\": 90.4,\n \"st\": -33.6,\n \"bm\": 0,\n \"sr\": 1\n }\n ]\n }\n ],\n \"layers\": [\n {\n \"ddd\": 0,\n \"ind\": 0,\n \"ty\": 0,\n \"nm\": \"logo\",\n \"td\": 1,\n \"refId\": \"comp_1\",\n \"ks\": {\n \"o\": { \"k\": 100 },\n \"r\": { \"k\": 0 },\n \"p\": { \"k\": [80, 80, 0] },\n \"a\": { \"k\": [700, 400, 0] },\n \"s\": { \"k\": [10.286, 10.286, 100] }\n },\n \"ao\": 0,\n \"w\": 1400,\n \"h\": 800,\n \"ip\": 0,\n \"op\": 100,\n \"st\": 0,\n \"bm\": 0,\n \"sr\": 1\n },\n {\n \"ddd\": 0,\n \"ind\": 1,\n \"ty\": 1,\n \"nm\": \"Dark Gray Solid 1\",\n \"tt\": 3,\n \"ks\": {\n \"o\": { \"k\": 100 },\n \"r\": { \"k\": 0 },\n \"p\": { \"k\": [80, 80, 0] },\n \"a\": { \"k\": [700, 400, 0] },\n \"s\": { \"k\": [100, 100, 100] }\n },\n \"ao\": 0,\n \"sw\": 1400,\n \"sh\": 800,\n \"sc\": \"#eeeeee\",\n \"ip\": 0,\n \"op\": 100,\n \"st\": 0,\n \"bm\": 0,\n \"sr\": 1\n }\n ],\n \"v\": \"4.5.3\",\n \"ddd\": 0,\n \"ip\": 0,\n \"op\": 40,\n \"fr\": 20,\n \"w\": 160,\n \"h\": 160\n}\n" }, { "path": "apps/web/src/components/loading-indicator/loading-light.json", "content": "{\n \"assets\": [\n {\n \"id\": \"comp_1\",\n \"layers\": [\n {\n \"ddd\": 0,\n \"ind\": 0,\n \"ty\": 4,\n \"nm\": \"Shape Layer 3\",\n \"ks\": {\n \"o\": {\n \"k\": [\n {\n \"i\": { \"x\": [0.833], \"y\": [0.833] },\n \"o\": { \"x\": [0.167], \"y\": [0.167] },\n \"n\": [\"0p833_0p833_0p167_0p167\"],\n \"t\": 10.4,\n \"s\": [100],\n \"e\": [0]\n },\n { \"t\": 25.6 }\n ]\n },\n \"r\": { \"k\": 0 },\n \"p\": { \"k\": [700, 400, 0] },\n \"a\": { \"k\": [0, 0, 0] },\n \"s\": { \"k\": [100, 100, 100] }\n },\n \"ao\": 0,\n \"hasMask\": true,\n \"masksProperties\": [\n {\n \"inv\": true,\n \"mode\": \"a\",\n \"pt\": {\n \"k\": [\n {\n \"i\": { \"x\": 0.833, \"y\": 0.833 },\n \"o\": { \"x\": 0.167, \"y\": 0.167 },\n \"n\": \"0p833_0p833_0p167_0p167\",\n \"t\": 12,\n \"s\": [\n {\n \"i\": [\n [134.688, 0],\n [0, -134.688],\n [-134.688, 0],\n [0, 134.688]\n ],\n \"o\": [\n [-134.688, 0],\n [0, 134.688],\n [134.688, 0],\n [0, -134.688]\n ],\n \"v\": [\n [0, -244.875],\n [-243.875, -1],\n [0, 242.875],\n [243.875, -1]\n ],\n \"c\": true\n }\n ],\n \"e\": [\n {\n \"i\": [\n [176.731, 0],\n [0, -176.731],\n [-176.731, 0],\n [0, 176.731]\n ],\n \"o\": [\n [-176.731, 0],\n [0, 176.731],\n [176.731, 0],\n [0, -176.731]\n ],\n \"v\": [\n [0, -321],\n [-320, -1],\n [0, 319],\n [320, -1]\n ],\n \"c\": true\n }\n ]\n },\n { \"t\": 22.4 }\n ]\n },\n \"o\": { \"k\": 100 },\n \"x\": { \"k\": 0 },\n \"nm\": \"Mask 1\"\n }\n ],\n \"shapes\": [\n {\n \"ty\": \"gr\",\n \"it\": [\n {\n \"ind\": 0,\n \"ty\": \"sh\",\n \"ks\": {\n \"k\": {\n \"i\": [\n [0, 0],\n [-24.109, -23.866],\n [-58.097, 2.286],\n [-4.307, 101.702],\n [108.95, -0.605],\n [0, 0],\n [36.992, -44.122],\n [100.991, -5.514],\n [22.177, 25.867],\n [6.132, 116.1],\n [-41.842, 62.08],\n [-30.638, 10.829],\n [-51.58, -26.549],\n [0, 0]\n ],\n \"o\": [\n [0, 0],\n [24.109, 23.866],\n [74.937, -2.949],\n [5.422, -128.032],\n [-88.536, 0.492],\n [0, 0],\n [-17.89, 21.338],\n [-138.946, 7.586],\n [-22.174, -25.864],\n [-2.384, -45.141],\n [41.572, -61.679],\n [77.499, -27.393],\n [92.496, 47.608],\n [0, 0]\n ],\n \"v\": [\n [116, 52],\n [197.891, 144.134],\n [328.097, 197.714],\n [497.578, 23.032],\n [311.536, -190.492],\n [139.357, -79.71],\n [-73.007, 190.878],\n [-281.054, 311.414],\n [-531.052, 222.093],\n [-620.132, 10.9],\n [-568.112, -177.098],\n [-425.186, -291.697],\n [-199.496, -289.608],\n [-46, -153]\n ],\n \"c\": false\n }\n },\n \"nm\": \"Path 1\",\n \"mn\": \"ADBE Vector Shape - Group\"\n },\n {\n \"ind\": 1,\n \"ty\": \"sh\",\n \"ks\": {\n \"k\": {\n \"i\": [\n [-44, -50],\n [-152, 2],\n [-63.813, 80.106],\n [89, 81],\n [84, 0],\n [52, -59],\n [38, -40],\n [81, 0],\n [-1.027, 116.034],\n [-81, 0],\n [-31, -36],\n [0, 0]\n ],\n \"o\": [\n [44, 50],\n [105.034, -1.382],\n [94, -118],\n [-79.495, -72.35],\n [-84, 0],\n [-52, 59],\n [-36.789, 38.725],\n [-61.033, 0],\n [1, -113],\n [81, 0],\n [31, 36],\n [0, 0]\n ],\n \"v\": [\n [41, 152],\n [302, 310],\n [554, 190],\n [536, -217],\n [307, -309],\n [84, -198],\n [-176, 130],\n [-327, 196],\n [-500, -3],\n [-330, -192],\n [-183, -127],\n [-120, -57]\n ],\n \"c\": false\n }\n },\n \"nm\": \"Path 2\",\n \"mn\": \"ADBE Vector Shape - Group\"\n },\n {\n \"ty\": \"tm\",\n \"s\": {\n \"k\": [\n {\n \"i\": { \"x\": [0.833], \"y\": [0.833] },\n \"o\": { \"x\": [0.167], \"y\": [0.167] },\n \"n\": [\"0p833_0p833_0p167_0p167\"],\n \"t\": 8.8,\n \"s\": [30],\n \"e\": [0]\n },\n { \"t\": 22.4 }\n ],\n \"ix\": 1\n },\n \"e\": {\n \"k\": [\n {\n \"i\": { \"x\": [0.833], \"y\": [0.833] },\n \"o\": { \"x\": [0.167], \"y\": [0.167] },\n \"n\": [\"0p833_0p833_0p167_0p167\"],\n \"t\": 8.8,\n \"s\": [30],\n \"e\": [60]\n },\n { \"t\": 22.4 }\n ],\n \"ix\": 2\n },\n \"o\": { \"k\": -110, \"ix\": 3 },\n \"m\": 1,\n \"ix\": 3,\n \"nm\": \"Trim Paths 1\",\n \"mn\": \"ADBE Vector Filter - Trim\"\n },\n {\n \"ty\": \"st\",\n \"fillEnabled\": true,\n \"c\": { \"k\": [1, 1, 1, 1] },\n \"o\": { \"k\": 100 },\n \"w\": { \"k\": 11 },\n \"lc\": 2,\n \"lj\": 2,\n \"nm\": \"Stroke 1\",\n \"mn\": \"ADBE Vector Graphic - Stroke\"\n },\n {\n \"ty\": \"tr\",\n \"p\": { \"k\": [0, 0], \"ix\": 2 },\n \"a\": { \"k\": [0, 0], \"ix\": 1 },\n \"s\": { \"k\": [100, 100], \"ix\": 3 },\n \"r\": { \"k\": 0, \"ix\": 6 },\n \"o\": { \"k\": 100, \"ix\": 7 },\n \"sk\": { \"k\": 0, \"ix\": 4 },\n \"sa\": { \"k\": 0, \"ix\": 5 },\n \"nm\": \"Transform\"\n }\n ],\n \"nm\": \"Shape 1\",\n \"np\": 4,\n \"mn\": \"ADBE Vector Group\"\n }\n ],\n \"ip\": 0,\n \"op\": 100,\n \"st\": 0,\n \"bm\": 0,\n \"sr\": 1\n },\n {\n \"ddd\": 0,\n \"ind\": 1,\n \"ty\": 4,\n \"nm\": \"Shape Layer 2\",\n \"ks\": {\n \"o\": { \"k\": 100 },\n \"r\": { \"k\": 0 },\n \"p\": { \"k\": [700, 400, 0] },\n \"a\": { \"k\": [0, 0, 0] },\n \"s\": { \"k\": [100, 100, 100] }\n },\n \"ao\": 0,\n \"shapes\": [\n {\n \"ty\": \"gr\",\n \"it\": [\n {\n \"ind\": 0,\n \"ty\": \"sh\",\n \"ks\": {\n \"k\": {\n \"i\": [\n [0, 0],\n [-24.109, -23.866],\n [-58.097, 2.286],\n [-4.307, 101.702],\n [108.95, -0.605],\n [0, 0],\n [36.992, -44.122],\n [100.991, -5.514],\n [22.177, 25.867],\n [6.132, 116.1],\n [-41.842, 62.08],\n [-30.638, 10.829],\n [-51.58, -26.549],\n [0, 0]\n ],\n \"o\": [\n [0, 0],\n [24.109, 23.866],\n [74.937, -2.949],\n [5.422, -128.032],\n [-88.536, 0.492],\n [0, 0],\n [-17.89, 21.338],\n [-138.946, 7.586],\n [-22.174, -25.864],\n [-2.384, -45.141],\n [41.572, -61.679],\n [77.499, -27.393],\n [92.496, 47.608],\n [0, 0]\n ],\n \"v\": [\n [116, 52],\n [197.891, 144.134],\n [328.097, 197.714],\n [497.578, 23.032],\n [311.536, -190.492],\n [139.357, -79.71],\n [-73.007, 190.878],\n [-281.054, 311.414],\n [-531.052, 222.093],\n [-620.132, 10.9],\n [-568.112, -177.098],\n [-425.186, -291.697],\n [-199.496, -289.608],\n [-46, -153]\n ],\n \"c\": false\n }\n },\n \"nm\": \"Path 1\",\n \"mn\": \"ADBE Vector Shape - Group\"\n },\n {\n \"ind\": 1,\n \"ty\": \"sh\",\n \"ks\": {\n \"k\": {\n \"i\": [\n [-44, -50],\n [-152, 2],\n [-63.813, 80.106],\n [89, 81],\n [84, 0],\n [52, -59],\n [38, -40],\n [81, 0],\n [-1.027, 116.034],\n [-81, 0],\n [-31, -36],\n [0, 0]\n ],\n \"o\": [\n [44, 50],\n [105.034, -1.382],\n [94, -118],\n [-79.495, -72.35],\n [-84, 0],\n [-52, 59],\n [-36.789, 38.725],\n [-61.033, 0],\n [1, -113],\n [81, 0],\n [31, 36],\n [0, 0]\n ],\n \"v\": [\n [41, 152],\n [302, 310],\n [554, 190],\n [536, -217],\n [307, -309],\n [84, -198],\n [-176, 130],\n [-327, 196],\n [-500, -3],\n [-330, -192],\n [-183, -127],\n [-120, -57]\n ],\n \"c\": false\n }\n },\n \"nm\": \"Path 2\",\n \"mn\": \"ADBE Vector Shape - Group\"\n },\n {\n \"ty\": \"tm\",\n \"s\": { \"k\": 0, \"ix\": 1 },\n \"e\": { \"k\": 26, \"ix\": 2 },\n \"o\": {\n \"k\": [\n {\n \"i\": { \"x\": [0.833], \"y\": [0.833] },\n \"o\": { \"x\": [0.167], \"y\": [0.167] },\n \"n\": [\"0p833_0p833_0p167_0p167\"],\n \"t\": 0,\n \"s\": [0],\n \"e\": [360]\n },\n {\n \"i\": { \"x\": [0.833], \"y\": [0.833] },\n \"o\": { \"x\": [0.167], \"y\": [0.167] },\n \"n\": [\"0p833_0p833_0p167_0p167\"],\n \"t\": 40,\n \"s\": [360],\n \"e\": [720]\n },\n { \"t\": 80 }\n ],\n \"ix\": 3\n },\n \"m\": 1,\n \"ix\": 3,\n \"nm\": \"Trim Paths 1\",\n \"mn\": \"ADBE Vector Filter - Trim\"\n },\n {\n \"ty\": \"st\",\n \"fillEnabled\": true,\n \"c\": { \"k\": [1, 1, 1, 1] },\n \"o\": { \"k\": 100 },\n \"w\": { \"k\": 11 },\n \"lc\": 2,\n \"lj\": 2,\n \"nm\": \"Stroke 1\",\n \"mn\": \"ADBE Vector Graphic - Stroke\"\n },\n {\n \"ty\": \"tr\",\n \"p\": { \"k\": [0, 0], \"ix\": 2 },\n \"a\": { \"k\": [0, 0], \"ix\": 1 },\n \"s\": { \"k\": [100, 100], \"ix\": 3 },\n \"r\": { \"k\": 0, \"ix\": 6 },\n \"o\": { \"k\": 100, \"ix\": 7 },\n \"sk\": { \"k\": 0, \"ix\": 4 },\n \"sa\": { \"k\": 0, \"ix\": 5 },\n \"nm\": \"Transform\"\n }\n ],\n \"nm\": \"Shape 1\",\n \"np\": 4,\n \"mn\": \"ADBE Vector Group\"\n }\n ],\n \"ip\": 0,\n \"op\": 100,\n \"st\": 0,\n \"bm\": 0,\n \"sr\": 1\n },\n {\n \"ddd\": 0,\n \"ind\": 2,\n \"ty\": 4,\n \"nm\": \"Shape Layer 1\",\n \"ks\": {\n \"o\": { \"k\": 100 },\n \"r\": { \"k\": 0 },\n \"p\": { \"k\": [700, 400, 0] },\n \"a\": { \"k\": [0, 0, 0] },\n \"s\": { \"k\": [102, 102, 100] }\n },\n \"ao\": 0,\n \"shapes\": [\n {\n \"ty\": \"gr\",\n \"it\": [\n {\n \"ind\": 0,\n \"ty\": \"sh\",\n \"ks\": {\n \"k\": {\n \"i\": [\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0]\n ],\n \"o\": [\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0]\n ],\n \"v\": [\n [41.593, 144.622],\n [169.506, 119.927],\n [189.109, 279.448],\n [324.733, 198.952],\n [451.572, 261.435],\n [464.308, 109.882],\n [591.263, 63.386],\n [489.394, -41.116],\n [545.422, -183.975],\n [401.99, -165.308],\n [315.929, -299.146],\n [228.713, -166.646],\n [75.238, -178.354],\n [75.296, -7.911],\n [-76.402, 13.881],\n [-74.277, 186.236],\n [-211.124, 169.355],\n [-300.932, 303.028],\n [-390.031, 173.297],\n [-533.818, 195.069],\n [-486.799, 51.51],\n [-603.444, -31.631],\n [-472.297, -92.031],\n [-477.325, -249.524],\n [-333.828, -192.011],\n [-212.105, -287.275],\n [-181.109, -134.238],\n [-48.486, -147.583]\n ],\n \"c\": false\n }\n },\n \"nm\": \"Path 2\",\n \"mn\": \"ADBE Vector Shape - Group\"\n },\n {\n \"ty\": \"tm\",\n \"s\": { \"k\": 0, \"ix\": 1 },\n \"e\": { \"k\": 22, \"ix\": 2 },\n \"o\": {\n \"k\": [\n {\n \"i\": { \"x\": [0.833], \"y\": [0.833] },\n \"o\": { \"x\": [0.167], \"y\": [0.167] },\n \"n\": [\"0p833_0p833_0p167_0p167\"],\n \"t\": 0,\n \"s\": [0],\n \"e\": [360]\n },\n {\n \"i\": { \"x\": [0.833], \"y\": [0.833] },\n \"o\": { \"x\": [0.167], \"y\": [0.167] },\n \"n\": [\"0p833_0p833_0p167_0p167\"],\n \"t\": 40,\n \"s\": [360],\n \"e\": [720]\n },\n { \"t\": 80 }\n ],\n \"ix\": 3\n },\n \"m\": 1,\n \"ix\": 3,\n \"nm\": \"Trim Paths 1\",\n \"mn\": \"ADBE Vector Filter - Trim\"\n },\n {\n \"ty\": \"st\",\n \"fillEnabled\": true,\n \"c\": { \"k\": [1, 1, 1, 1] },\n \"o\": { \"k\": 100 },\n \"w\": { \"k\": 10 },\n \"lc\": 2,\n \"lj\": 2,\n \"nm\": \"Stroke 1\",\n \"mn\": \"ADBE Vector Graphic - Stroke\"\n },\n {\n \"ty\": \"tr\",\n \"p\": { \"k\": [0, 0], \"ix\": 2 },\n \"a\": { \"k\": [0, 0], \"ix\": 1 },\n \"s\": { \"k\": [100, 100], \"ix\": 3 },\n \"r\": { \"k\": 0, \"ix\": 6 },\n \"o\": { \"k\": 100, \"ix\": 7 },\n \"sk\": { \"k\": 0, \"ix\": 4 },\n \"sa\": { \"k\": 0, \"ix\": 5 },\n \"nm\": \"Transform\"\n }\n ],\n \"nm\": \"Shape 1\",\n \"np\": 4,\n \"mn\": \"ADBE Vector Group\"\n }\n ],\n \"ip\": 0,\n \"op\": 100,\n \"st\": 0,\n \"bm\": 0,\n \"sr\": 1\n },\n {\n \"ddd\": 0,\n \"ind\": 3,\n \"ty\": 4,\n \"nm\": \"Shape Layer 5\",\n \"ks\": {\n \"o\": { \"k\": 18 },\n \"r\": { \"k\": 0 },\n \"p\": { \"k\": [700, 400, 0] },\n \"a\": { \"k\": [0, 0, 0] },\n \"s\": { \"k\": [100, 100, 100] }\n },\n \"ao\": 0,\n \"shapes\": [\n {\n \"ty\": \"gr\",\n \"it\": [\n {\n \"ind\": 0,\n \"ty\": \"sh\",\n \"ks\": {\n \"k\": {\n \"i\": [\n [0, 0],\n [-24.109, -23.866],\n [-58.097, 2.286],\n [-4.307, 101.702],\n [108.95, -0.605],\n [0, 0],\n [36.992, -44.122],\n [100.991, -5.514],\n [22.177, 25.867],\n [6.132, 116.1],\n [-41.842, 62.08],\n [-30.638, 10.829],\n [-51.58, -26.549],\n [0, 0]\n ],\n \"o\": [\n [0, 0],\n [24.109, 23.866],\n [74.937, -2.949],\n [5.422, -128.032],\n [-88.536, 0.492],\n [0, 0],\n [-17.89, 21.338],\n [-138.946, 7.586],\n [-22.174, -25.864],\n [-2.384, -45.141],\n [41.572, -61.679],\n [77.499, -27.393],\n [92.496, 47.608],\n [0, 0]\n ],\n \"v\": [\n [116, 52],\n [197.891, 144.134],\n [328.097, 197.714],\n [497.578, 23.032],\n [311.536, -190.492],\n [139.357, -79.71],\n [-73.007, 190.878],\n [-281.054, 311.414],\n [-531.052, 222.093],\n [-620.132, 10.9],\n [-568.112, -177.098],\n [-425.186, -291.697],\n [-199.496, -289.608],\n [-46, -153]\n ],\n \"c\": false\n }\n },\n \"nm\": \"Path 1\",\n \"mn\": \"ADBE Vector Shape - Group\"\n },\n {\n \"ind\": 1,\n \"ty\": \"sh\",\n \"ks\": {\n \"k\": {\n \"i\": [\n [-44, -50],\n [-152, 2],\n [-63.813, 80.106],\n [89, 81],\n [84, 0],\n [52, -59],\n [38, -40],\n [81, 0],\n [-1.027, 116.034],\n [-81, 0],\n [-31, -36],\n [0, 0]\n ],\n \"o\": [\n [44, 50],\n [105.034, -1.382],\n [94, -118],\n [-79.495, -72.35],\n [-84, 0],\n [-52, 59],\n [-36.789, 38.725],\n [-61.033, 0],\n [1, -113],\n [81, 0],\n [31, 36],\n [0, 0]\n ],\n \"v\": [\n [41, 152],\n [302, 310],\n [554, 190],\n [536, -217],\n [307, -309],\n [84, -198],\n [-176, 130],\n [-327, 196],\n [-500, -3],\n [-330, -192],\n [-183, -127],\n [-120, -57]\n ],\n \"c\": false\n }\n },\n \"nm\": \"Path 2\",\n \"mn\": \"ADBE Vector Shape - Group\"\n },\n {\n \"ty\": \"tm\",\n \"s\": { \"k\": 0, \"ix\": 1 },\n \"e\": { \"k\": 26, \"ix\": 2 },\n \"o\": {\n \"k\": [\n {\n \"i\": { \"x\": [0.833], \"y\": [0.833] },\n \"o\": { \"x\": [0.167], \"y\": [0.167] },\n \"n\": [\"0p833_0p833_0p167_0p167\"],\n \"t\": -33.6,\n \"s\": [0],\n \"e\": [360]\n },\n {\n \"i\": { \"x\": [0.833], \"y\": [0.833] },\n \"o\": { \"x\": [0.167], \"y\": [0.167] },\n \"n\": [\"0p833_0p833_0p167_0p167\"],\n \"t\": 6.4,\n \"s\": [360],\n \"e\": [720]\n },\n {\n \"i\": { \"x\": [0.833], \"y\": [0.833] },\n \"o\": { \"x\": [0.167], \"y\": [0.167] },\n \"n\": [\"0p833_0p833_0p167_0p167\"],\n \"t\": 46.4,\n \"s\": [720],\n \"e\": [1080]\n },\n { \"t\": 86.4 }\n ],\n \"ix\": 3\n },\n \"m\": 1,\n \"ix\": 3,\n \"nm\": \"Trim Paths 1\",\n \"mn\": \"ADBE Vector Filter - Trim\"\n },\n {\n \"ty\": \"st\",\n \"fillEnabled\": true,\n \"c\": { \"k\": [1, 1, 1, 1] },\n \"o\": { \"k\": 100 },\n \"w\": { \"k\": 11 },\n \"lc\": 2,\n \"lj\": 2,\n \"nm\": \"Stroke 1\",\n \"mn\": \"ADBE Vector Graphic - Stroke\"\n },\n {\n \"ty\": \"tr\",\n \"p\": { \"k\": [0, 0], \"ix\": 2 },\n \"a\": { \"k\": [0, 0], \"ix\": 1 },\n \"s\": { \"k\": [100, 100], \"ix\": 3 },\n \"r\": { \"k\": 0, \"ix\": 6 },\n \"o\": { \"k\": 100, \"ix\": 7 },\n \"sk\": { \"k\": 0, \"ix\": 4 },\n \"sa\": { \"k\": 0, \"ix\": 5 },\n \"nm\": \"Transform\"\n }\n ],\n \"nm\": \"Shape 1\",\n \"np\": 4,\n \"mn\": \"ADBE Vector Group\"\n }\n ],\n \"ip\": -33.6,\n \"op\": 90.4,\n \"st\": -33.6,\n \"bm\": 0,\n \"sr\": 1\n },\n {\n \"ddd\": 0,\n \"ind\": 4,\n \"ty\": 4,\n \"nm\": \"Shape Layer 4\",\n \"ks\": {\n \"o\": { \"k\": 18 },\n \"r\": { \"k\": 0 },\n \"p\": { \"k\": [700, 400, 0] },\n \"a\": { \"k\": [0, 0, 0] },\n \"s\": { \"k\": [102, 102, 100] }\n },\n \"ao\": 0,\n \"shapes\": [\n {\n \"ty\": \"gr\",\n \"it\": [\n {\n \"ind\": 0,\n \"ty\": \"sh\",\n \"ks\": {\n \"k\": {\n \"i\": [\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0]\n ],\n \"o\": [\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0],\n [0, 0]\n ],\n \"v\": [\n [41.593, 144.622],\n [169.506, 119.927],\n [189.109, 279.448],\n [324.733, 198.952],\n [451.572, 261.435],\n [464.308, 109.882],\n [591.263, 63.386],\n [489.394, -41.116],\n [545.422, -183.975],\n [401.99, -165.308],\n [315.929, -299.146],\n [228.713, -166.646],\n [75.238, -178.354],\n [75.296, -7.911],\n [-76.402, 13.881],\n [-74.277, 186.236],\n [-211.124, 169.355],\n [-300.932, 303.028],\n [-390.031, 173.297],\n [-533.818, 195.069],\n [-486.799, 51.51],\n [-603.444, -31.631],\n [-472.297, -92.031],\n [-477.325, -249.524],\n [-333.828, -192.011],\n [-212.105, -287.275],\n [-181.109, -134.238],\n [-48.486, -147.583]\n ],\n \"c\": false\n }\n },\n \"nm\": \"Path 2\",\n \"mn\": \"ADBE Vector Shape - Group\"\n },\n {\n \"ty\": \"tm\",\n \"s\": { \"k\": 0, \"ix\": 1 },\n \"e\": { \"k\": 22, \"ix\": 2 },\n \"o\": {\n \"k\": [\n {\n \"i\": { \"x\": [0.833], \"y\": [0.833] },\n \"o\": { \"x\": [0.167], \"y\": [0.167] },\n \"n\": [\"0p833_0p833_0p167_0p167\"],\n \"t\": -33.6,\n \"s\": [0],\n \"e\": [360]\n },\n {\n \"i\": { \"x\": [0.833], \"y\": [0.833] },\n \"o\": { \"x\": [0.167], \"y\": [0.167] },\n \"n\": [\"0p833_0p833_0p167_0p167\"],\n \"t\": 6.4,\n \"s\": [360],\n \"e\": [720]\n },\n {\n \"i\": { \"x\": [0.833], \"y\": [0.833] },\n \"o\": { \"x\": [0.167], \"y\": [0.167] },\n \"n\": [\"0p833_0p833_0p167_0p167\"],\n \"t\": 46.4,\n \"s\": [720],\n \"e\": [1080]\n },\n { \"t\": 86.4 }\n ],\n \"ix\": 3\n },\n \"m\": 1,\n \"ix\": 3,\n \"nm\": \"Trim Paths 1\",\n \"mn\": \"ADBE Vector Filter - Trim\"\n },\n {\n \"ty\": \"st\",\n \"fillEnabled\": true,\n \"c\": { \"k\": [1, 1, 1, 1] },\n \"o\": { \"k\": 100 },\n \"w\": { \"k\": 10 },\n \"lc\": 2,\n \"lj\": 2,\n \"nm\": \"Stroke 1\",\n \"mn\": \"ADBE Vector Graphic - Stroke\"\n },\n {\n \"ty\": \"tr\",\n \"p\": { \"k\": [0, 0], \"ix\": 2 },\n \"a\": { \"k\": [0, 0], \"ix\": 1 },\n \"s\": { \"k\": [100, 100], \"ix\": 3 },\n \"r\": { \"k\": 0, \"ix\": 6 },\n \"o\": { \"k\": 100, \"ix\": 7 },\n \"sk\": { \"k\": 0, \"ix\": 4 },\n \"sa\": { \"k\": 0, \"ix\": 5 },\n \"nm\": \"Transform\"\n }\n ],\n \"nm\": \"Shape 1\",\n \"np\": 4,\n \"mn\": \"ADBE Vector Group\"\n }\n ],\n \"ip\": -33.6,\n \"op\": 90.4,\n \"st\": -33.6,\n \"bm\": 0,\n \"sr\": 1\n }\n ]\n }\n ],\n \"layers\": [\n {\n \"ddd\": 0,\n \"ind\": 0,\n \"ty\": 0,\n \"nm\": \"logo\",\n \"td\": 1,\n \"refId\": \"comp_1\",\n \"ks\": {\n \"o\": { \"k\": 100 },\n \"r\": { \"k\": 0 },\n \"p\": { \"k\": [80, 80, 0] },\n \"a\": { \"k\": [700, 400, 0] },\n \"s\": { \"k\": [10.286, 10.286, 100] }\n },\n \"ao\": 0,\n \"w\": 1400,\n \"h\": 800,\n \"ip\": 0,\n \"op\": 100,\n \"st\": 0,\n \"bm\": 0,\n \"sr\": 1\n },\n {\n \"ddd\": 0,\n \"ind\": 1,\n \"ty\": 1,\n \"nm\": \"Dark Gray Solid 1\",\n \"tt\": 3,\n \"ks\": {\n \"o\": { \"k\": 100 },\n \"r\": { \"k\": 0 },\n \"p\": { \"k\": [80, 80, 0] },\n \"a\": { \"k\": [700, 400, 0] },\n \"s\": { \"k\": [100, 100, 100] }\n },\n \"ao\": 0,\n \"sw\": 1400,\n \"sh\": 800,\n \"sc\": \"#232323\",\n \"ip\": 0,\n \"op\": 100,\n \"st\": 0,\n \"bm\": 0,\n \"sr\": 1\n }\n ],\n \"v\": \"4.5.3\",\n \"ddd\": 0,\n \"ip\": 0,\n \"op\": 40,\n \"fr\": 20,\n \"w\": 160,\n \"h\": 160\n}\n" }, { "path": "apps/web/src/components/loading-indicator/styles.module.css", "content": ".loading {\n position: relative;\n pointer-events: none;\n display: flex;\n flex-direction: column;\n justify-content: center;\n align-items: center;\n margin: 0 auto;\n}\n\n.fill {\n top: 0;\n left: 0;\n right: 0;\n bottom: 0;\n}\n\n.loadingAnimation {\n pointer-events: none;\n width: 200px;\n height: 200px;\n max-width: 50vw;\n max-height: 50vh;\n}\n" }, { "path": "apps/web/src/components/markdown/index.tsx", "content": "import { cn } from '@/lib/utils'\n\nimport styles from './styles.module.css'\n\nexport function Markdown({\n children,\n className\n}: {\n className?: string\n children: React.ReactNode\n}) {\n return (\n
\n {children}\n
\n )\n}\n" }, { "path": "apps/web/src/components/markdown/ssr-markdown.tsx", "content": "'use client'\n\nimport { markdownToHtml } from '@fisch0920/markdown-to-html'\nimport { useAsync } from 'react-use'\n\nimport { cn } from '@/lib/utils'\n\nimport { LoadingIndicator } from '../loading-indicator'\nimport styles from './styles.module.css'\n\n// TODO: figure out how to make this server-only to not bloat the client-side bundle\nexport function SSRMarkdown({\n className,\n markdown\n}: {\n className?: string\n markdown: string\n}) {\n const { value: html, loading } = useAsync(\n async () => markdownToHtml(markdown),\n [markdown]\n )\n\n if (loading) {\n return (\n
\n \n
\n )\n }\n\n return (\n \n )\n}\n" }, { "path": "apps/web/src/components/markdown/styles.module.css", "content": ".markdown {\n width: 100%;\n max-width: 100%;\n line-height: 1.6;\n display: flex;\n flex-direction: column;\n align-items: center;\n}\n\n.markdown > * {\n margin-bottom: 1em;\n width: 100%;\n max-width: 830px;\n}\n\n.markdown > :last-child {\n margin-bottom: 0;\n}\n\n.markdown > *:first-child {\n margin-top: 0 !important;\n}\n\n.markdown img {\n display: inline-block;\n max-width: 100%;\n margin: 0;\n}\n\n.markdown a:not(:has(img)) {\n display: inline-block;\n text-decoration: none;\n font-weight: inherit;\n line-height: 1.3;\n position: relative;\n transition: unset;\n opacity: 1;\n color: unset;\n padding-bottom: 0.1rem;\n border-color: var(--border);\n border-bottom-width: 0.135rem;\n background: transparent;\n background-origin: border-box;\n background-repeat: no-repeat;\n background-position: 50% 100%;\n background-size: 0 0.135rem;\n}\n\n.markdown a:hover:not(:has(img)),\n.markdown a:focus:not(:has(img)) {\n color: var(--tw-prose-links);\n text-decoration: none;\n border-bottom-color: transparent;\n\n background-image: linear-gradient(90.68deg, #b439df 0.26%, #e5337e 102.37%);\n background-repeat: no-repeat;\n background-position: 0 100%;\n background-size: 100% 0.135rem;\n\n transition-property: background-position, background-size;\n transition-duration: 300ms;\n}\n\n.markdown :where(ul):not(:where([class~='not-prose'], [class~='not-prose'] *)) {\n margin-top: 1em;\n}\n\n.markdown p + ul,\n.markdown p + ol,\n.markdown h1 + ul,\n.markdown h2 + ul,\n.markdown h3 + ul,\n.markdown h4 + ul,\n.markdown h5 + ul,\n.markdown h6 + ul,\n.markdown h1 + ol,\n.markdown h2 + ol,\n.markdown h3 + ol,\n.markdown h4 + ol,\n.markdown h5 + ol,\n.markdown h6 + ol {\n margin-top: 0;\n}\n\n.markdown p {\n margin-top: 0;\n margin-bottom: 1em;\n}\n\n.markdown li a {\n margin: 0;\n}\n\n.markdown li:first-child {\n margin-top: 0;\n}\n\n.markdown li:last-child {\n margin-bottom: 0;\n}\n\n.markdown h1,\n.markdown h2,\n.markdown h3,\n.markdown h4,\n.markdown h5,\n.markdown h6 {\n margin-top: 1.5em;\n margin-bottom: 0.5em;\n font-weight: 600;\n line-height: 1.25;\n}\n\n.markdown h1 {\n font-size: 2em;\n}\n\n.markdown h2 {\n font-size: 1.5em;\n}\n\n.markdown h3 {\n font-size: 1.25em;\n}\n\n.markdown h4 {\n font-size: 1em;\n}\n\n.markdown h5 {\n font-size: 1em;\n font-weight: 700;\n}\n\n.markdown h6 {\n font-size: 1em;\n font-weight: 500;\n}\n\n@media (max-width: 800px) {\n .markdown img {\n display: block;\n text-align: center;\n margin: 0 auto;\n }\n}\n" }, { "path": "apps/web/src/components/mcp-gateway-features.tsx", "content": "'use client'\n\nimport {\n ChartNoAxesCombinedIcon,\n CheckCheckIcon,\n CreditCardIcon,\n DatabaseZapIcon,\n HistoryIcon,\n KeyRoundIcon,\n ShieldCheckIcon,\n TextSelectIcon,\n UserIcon\n} from 'lucide-react'\n\nimport { Feature, type FeatureData } from './feature'\n\nconst docsPublishingUrl = 'https://docs.agentic.so/publishing'\n\nconst mcpGatewayFeatures: FeatureData[] = [\n {\n name: 'Auth',\n description: (\n <>\n Ship to production fast with Agentic's free, hosted authentication.\n Email & password, OAuth, GitHub, Google, Twitter, etc – if your origin\n API requires OAuth credentials, Agentic likely already supports it, and\n if not, we'd be happy to add it.\n \n ),\n icon: UserIcon,\n href: `${docsPublishingUrl}/config/auth`,\n pattern: {\n y: 16,\n squares: [\n [0, 1],\n [1, 3]\n ]\n }\n },\n {\n name: 'Stripe Billing',\n description: (\n <>\n Charge for your MCP products with a flexible, declarative pricing model\n built on top of Stripe. Agentic supports almost any combination of fixed\n and usage-based billing models,\n both at the MCP level, at the tool-call level, and at the custom metric\n level (e.g., tokens, image transformations, etc).\n \n ),\n icon: CreditCardIcon,\n href: `${docsPublishingUrl}/config/pricing`,\n pattern: {\n y: -6,\n squares: [\n [-1, 2],\n [1, 3]\n ]\n }\n },\n {\n name: 'Support both MCP and HTTP',\n description: (\n <>\n All Agentic tools are exposed as both{' '}\n MCP servers as well as simple{' '}\n HTTP APIs. MCP is important for\n interop and future-proofing, whereas simple HTTP POST requests make\n tools easy to debug and simplifies usage with LLM tool calling.\n \n ),\n icon: CheckCheckIcon,\n pattern: {\n y: 32,\n squares: [\n [0, 2],\n [1, 4]\n ]\n }\n },\n {\n name: 'API Keys',\n description: (\n <>\n When a customer subscribes to your product, they're given a unique API\n key. MCP URLs are appended with this API key to correlate usage with\n their subscription. Customer HTTP tool calls use the same API key as a\n standard HTTP Authorization header.\n \n ),\n icon: KeyRoundIcon,\n pattern: {\n y: 22,\n squares: [[0, 1]]\n }\n },\n {\n name: 'Rate-Limiting',\n description: (\n <>\n Agentic durable rate-limiting is built on top of Cloudflare's global\n infrastructure. Customize the default rate-limits, change them based on\n a customer's pricing plan, or create custom tool-specific overrides.\n REST assured that your origin API will be safe behind Agentic's MCP\n gateway.\n \n ),\n icon: ShieldCheckIcon,\n href: `${docsPublishingUrl}/config/rate-limits`,\n pattern: {\n y: 2,\n squares: [\n [-2, 3],\n [1, 4]\n ]\n }\n },\n {\n name: 'Caching',\n description: (\n <>\n Opt-in to caching with familiar cache-control and{' '}\n stale-while-revalidate options. MCP tool calls include caching\n information in their _meta fields, providing parity with\n standard HTTP headers. Agentic uses Cloudflare's global edge cache for\n caching, which guarantees unmatched global performance.\n \n ),\n icon: DatabaseZapIcon,\n href: `${docsPublishingUrl}/config/caching`,\n pattern: {\n y: 8,\n squares: [\n [0, 2],\n [-1, 1]\n ]\n }\n },\n {\n name: 'Analytics',\n description: (\n <>\n Agentic tracks all tool calls for usage-based billing and analytics at a\n fine-grained level, so you can drill in and deeply understand how your\n customers are using your product.\n \n ),\n icon: ChartNoAxesCombinedIcon,\n pattern: {\n y: -2,\n squares: [[-2, 2]]\n }\n },\n {\n name: 'Versioning & Instant Rollbacks',\n description: (\n <>\n Agentic uses immutable deployments, so every time you make a change to\n your product, a unique preview deployment is created. This enables\n instant rollbacks if there are problems with a deployment. Publishing\n uses semver (semantic\n versioning), so your customers can choose how to handle breaking\n changes.\n \n ),\n icon: HistoryIcon,\n pattern: {\n y: 26,\n squares: [\n [2, 4],\n [-2, 3]\n ]\n }\n },\n {\n name: \"That's just the start\",\n description: (\n <>Check out our docs for more details on Agentic's MCP gateway.\n ),\n href: `${docsPublishingUrl}/quickstart`,\n icon: TextSelectIcon,\n pattern: {\n y: 13,\n squares: [\n [0, 2],\n [-1, 4]\n ]\n }\n }\n]\n\nexport function MCPGatewayFeatures() {\n return (\n
\n
\n {mcpGatewayFeatures.map((feature) => (\n \n ))}\n
\n
\n )\n}\n" }, { "path": "apps/web/src/components/mcp-marketplace-features.tsx", "content": "'use client'\n\nimport {\n CreditCardIcon,\n FileJsonIcon,\n HistoryIcon,\n ShieldCheckIcon,\n StarIcon,\n ZapIcon\n} from 'lucide-react'\n\nimport { Feature, type FeatureData } from './feature'\n\nconst mcpMarketplaceFeatures: FeatureData[] = [\n {\n name: 'Highly Curated',\n description: (\n <>\n \n All Agentic tools have been hand-crafted specifically for LLM tool\n use.\n {' '}\n We call this Agentic UX, and it's at the heart of why Agentic tools work\n better for LLM & MCP use cases than legacy APIs.\n \n ),\n icon: StarIcon,\n pattern: {\n y: 16,\n squares: [\n [0, 1],\n [1, 3]\n ]\n }\n },\n {\n name: 'Production-Ready MCP Support',\n description: (\n <>\n Forget random GitHub repos and gluing local MCP servers together.\n Agentic tools are all battle-tested in production and come with real\n SLAs.\n \n ),\n icon: ShieldCheckIcon,\n pattern: {\n y: 22,\n squares: [[0, 1]]\n }\n },\n {\n name: 'World-Class TypeScript DX',\n description: (\n <>\n Agentic is written in TypeScript and strives for a Vercel-like DX.\n One-line tool integrations for\n all of the popular TS LLM SDKs (\n Vercel AI SDK,{' '}\n OpenAI,{' '}\n LangChain, etc).\n \n ),\n icon: FileJsonIcon,\n pattern: {\n y: 8,\n squares: [\n [0, 2],\n [-1, 1]\n ]\n }\n },\n {\n name: 'Stripe Billing',\n description: (\n <>\n Agentic uses Stripe for billing, and most tools are{' '}\n usage-based, so you'll only pay\n for what you (and your agents) actually use.\n \n ),\n icon: CreditCardIcon,\n pattern: {\n y: -6,\n squares: [\n [-1, 2],\n [1, 3]\n ]\n }\n },\n {\n name: 'Blazing Fast MCP Gateway',\n description: (\n <>\n Agentic's MCP gateway is powered by{' '}\n Cloudflare's global edge network.\n Tools come with customizable caching and rate-limits, so you can REST\n assured that your agents will always have a fast and reliable\n experience.\n \n ),\n icon: ZapIcon,\n pattern: {\n y: 32,\n squares: [\n [0, 2],\n [1, 4]\n ]\n }\n },\n {\n name: 'Semantic Versioning',\n description: (\n <>\n All Agentic tools are versioned using{' '}\n semver, so you can choose how to\n handle breaking changes.\n \n ),\n icon: HistoryIcon,\n pattern: {\n y: 26,\n squares: [\n [2, 4],\n [-2, 3]\n ]\n }\n }\n]\n\nexport function MCPMarketplaceFeatures() {\n return (\n
\n
\n {mcpMarketplaceFeatures.map((feature) => (\n \n ))}\n
\n
\n )\n}\n" }, { "path": "apps/web/src/components/page-container.tsx", "content": "import { cn } from '@/lib/utils'\n\nexport function PageContainer({\n background = true,\n compact = false,\n className,\n children\n}: {\n background?: boolean\n compact?: boolean\n className?: string\n children: React.ReactNode\n}) {\n return (\n <>\n {background && (\n
\n )}\n\n \n {children}\n
\n \n )\n}\n" }, { "path": "apps/web/src/components/posthog-provider.tsx", "content": "'use client'\n\nimport { usePathname, useSearchParams } from 'next/navigation'\nimport { posthog } from 'posthog-js'\nimport { PostHogProvider as PHProvider, usePostHog } from 'posthog-js/react'\nimport { Suspense, useEffect, useState } from 'react'\n\nimport { posthogHost, posthogKey } from '@/lib/config'\n\nexport function PostHogProvider({ children }: { children: React.ReactNode }) {\n useEffect(() => {\n if (posthogKey) {\n posthog.init(posthogKey, {\n api_host: posthogHost,\n person_profiles: 'identified_only', // or 'always' to create profiles for anonymous users as well\n capture_pageview: false // Disable automatic pageview capture, as we capture manually\n })\n }\n }, [])\n\n if (!posthogKey) {\n return children\n }\n\n return (\n \n \n\n {children}\n \n )\n}\n\nfunction PostHogPageView() {\n const pathname = usePathname()\n const searchParams = useSearchParams()\n const posthog = usePostHog()\n const [prevPathname, setPrevPathname] = useState(null)\n\n // Track pageviews\n useEffect(() => {\n if (pathname && posthog) {\n let url = globalThis.window.origin + pathname\n if (searchParams.toString()) {\n url = url + '?' + searchParams.toString()\n }\n\n if (prevPathname && prevPathname !== pathname) {\n posthog.capture('$pageleave', { $pathname: prevPathname })\n }\n\n posthog.capture('$pageview', { $current_url: url })\n setPrevPathname(pathname)\n }\n }, [pathname, prevPathname, searchParams, posthog])\n\n return null\n}\n\n// Wrap PostHogPageView in Suspense to avoid the useSearchParams usage above\n// from de-opting the whole app into client-side rendering\n// See: https://nextjs.org/docs/messages/deopted-into-client-rendering\nfunction SuspendedPostHogPageView() {\n return (\n \n \n \n )\n}\n" }, { "path": "apps/web/src/components/project-pricing-plans/index.tsx", "content": "import {\n type Consumer,\n getPricingPlansByInterval,\n type PricingInterval,\n type Project\n} from '@agentic/platform-types'\nimport { useLocalStorage } from 'react-use'\n\nimport { ProjectPricingPlan } from './project-pricing-plan'\n\nexport function ProjectPricingPlans({\n project,\n consumer,\n isLoadingStripeCheckoutForPlan,\n onSubscribe\n}: {\n project: Project\n consumer?: Consumer\n isLoadingStripeCheckoutForPlan: string | null\n onSubscribe: (planSlug: string) => void\n className?: string\n}) {\n const { defaultPricingInterval } = project\n // TODO\n const [pricingInterval, _setPricingInterval] =\n useLocalStorage(\n `pricing-interval-${project.identifier}`,\n defaultPricingInterval\n )\n\n const deployment = project.lastPublishedDeployment\n if (!deployment || !pricingInterval) {\n return null\n }\n\n // const numPricingIntervals = deployment.pricingIntervals.length\n // const hasSinglePricingInterval = numPricingIntervals === 1\n const { pricingPlans } = deployment\n\n const pricingPlansByInterval = Object.fromEntries(\n deployment.pricingIntervals.map((pricingInterval) => [\n pricingInterval,\n getPricingPlansByInterval({ pricingInterval, pricingPlans })\n ])\n )\n\n const currentPricingIntervalPlans =\n pricingPlansByInterval[pricingInterval] ?? []\n\n // TODO: add support for different pricing intervals and switching between them\n const numPricingPlans = currentPricingIntervalPlans.length || 1\n\n return (\n
\n {/* {!hasSinglePricingInterval && ()} */}\n\n \n {deployment.pricingPlans.map((plan) => (\n \n ))}\n
\n
\n )\n}\n" }, { "path": "apps/web/src/components/project-pricing-plans/project-pricing-plan.tsx", "content": "import type {\n Consumer,\n // PricingInterval,\n PricingPlan,\n Project\n} from '@agentic/platform-types'\nimport humanNumber from 'human-number'\nimport {\n CornerDownRightIcon,\n Loader2Icon,\n PlusIcon,\n ShieldCheckIcon,\n ShieldMinusIcon\n} from 'lucide-react'\nimport Link from 'next/link'\nimport plur from 'plur'\n\nimport { Button } from '@/components/ui/button'\nimport {\n getRateLimitIntervalLabel,\n pricingAmountToFixedString\n} from '@/lib/utils'\n\n// const intervalToLabelMap: Record = {\n// day: 'daily',\n// week: 'weekly',\n// month: 'monthly',\n// year: 'yearly'\n// }\n\nexport function ProjectPricingPlan({\n project,\n plan,\n consumer,\n isLoadingStripeCheckoutForPlan,\n onSubscribe\n}: {\n project: Project\n plan: PricingPlan\n consumer?: Consumer\n isLoadingStripeCheckoutForPlan: string | null\n onSubscribe: (planSlug: string) => void\n className?: string\n}) {\n const { defaultPricingInterval } = project\n const { lineItems } = plan\n const interval = plan.interval ?? defaultPricingInterval\n // const intervalLabel = intervalToLabelMap[interval]\n const baseLineItem = lineItems.find((lineItem) => lineItem.slug === 'base')\n const requestsLineItem = lineItems.find(\n (lineItem) => lineItem.slug === 'requests'\n )\n const isFreePlan = plan.slug === 'free'\n\n const deployment = project.lastPublishedDeployment\n const requestsRateLimit = plan.rateLimit ?? deployment?.defaultRateLimit\n\n // TODO: support custom line-items\n // const customLineItems = lineItems.find(\n // (lineItem) => lineItem.slug !== 'base' && lineItem.slug !== 'requests'\n // )\n\n // TODO: support defaultAggregation\n // TODO: support trialPeriodDays\n // TODO: highlight if any tools are disabled on this pricing plan\n\n return (\n
\n
\n
\n
\n

\n {plan.name} Plan\n

\n\n {plan.description &&

{plan.description}

}\n\n
\n
\n $\n {baseLineItem\n ? pricingAmountToFixedString(baseLineItem.amount)\n : 0}\n
\n\n
/ {interval}
\n
\n\n {requestsLineItem && !isFreePlan && (\n
\n

Requests:

\n\n {requestsLineItem.billingScheme === 'per_unit' ? (\n
\n
\n ${pricingAmountToFixedString(requestsLineItem.unitAmount)}\n
\n\n
\n / per{' '}\n {requestsLineItem.transformQuantity\n ? `${requestsLineItem.transformQuantity.divideBy} ${plur('request', requestsLineItem.transformQuantity.divideBy)}`\n : 'request'}\n
\n
\n ) : requestsLineItem.billingScheme === 'tiered' ? (\n
\n {requestsLineItem.tiers?.map((tier, index) => {\n const isFirst = index === 0\n const hasUnitAmount = tier.unitAmount !== undefined\n const isFree = hasUnitAmount\n ? // TODO: are these two mutually exclusive? check in stripe\n tier.unitAmount === 0\n : tier.flatAmount === 0\n\n const isTierInfinite = tier.upTo === 'inf'\n const numLabel =\n tier.upTo === 'inf'\n ? 'infinite requests'\n : `${humanNumber(tier.upTo)} ${plur('request', tier.upTo)}`\n const price = `$${pricingAmountToFixedString(\n hasUnitAmount ? tier.unitAmount! : tier.flatAmount!\n )}${hasUnitAmount ? ' per request' : ''}`\n\n const numDesc = isFree\n ? isFirst\n ? isTierInfinite\n ? `FREE for all requests per ${interval}`\n : `FREE for the first ${numLabel} per ${interval}`\n : isTierInfinite\n ? `FREE for all requests after that per ${interval}`\n : `FREE for requests up to ${numLabel} per ${interval}`\n : isFirst\n ? isTierInfinite\n ? `${price} per ${interval}`\n : `${price} for the first ${numLabel} per ${interval}`\n : isTierInfinite\n ? `${price} after that per ${interval}`\n : `${price} up to ${numLabel} per ${interval}`\n\n return (\n \n \n\n {numDesc}\n
\n )\n })}\n
\n ) : (\n
Unsupported pricing config. Please contact support.
\n )}\n
\n )}\n\n {isFreePlan && (\n

\n Try before you buy. 100% free!\n

\n )}\n\n {requestsRateLimit?.enabled && (\n
\n {isFreePlan ? (\n \n ) : (\n \n )}\n\n \n {isFreePlan ? 'Limited' : 'Rate-limited'} to{' '}\n {requestsRateLimit.limit} requests per{' '}\n {getRateLimitIntervalLabel(requestsRateLimit.interval)}\n \n
\n )}\n\n {plan.features && (\n
\n

Features:

\n\n
    \n {plan.features.map((feature, index) => (\n \n \n\n {feature}\n \n ))}\n
\n
\n )}\n\n {requestsLineItem?.billingScheme === 'tiered' && (\n

\n {requestsLineItem.tiersMode === 'graduated' ? (\n <>\n Requests pricing tiers use{' '}\n \n graduated pricing\n \n .\n \n ) : (\n <>\n Requests pricing tiers use{' '}\n \n volume-based pricing\n \n .\n \n )}\n

\n )}\n
\n\n onSubscribe(plan.slug)}\n // TODO: handle free plans correctly\n disabled={\n consumer?.plan === plan.slug || !!isLoadingStripeCheckoutForPlan\n }\n >\n {isLoadingStripeCheckoutForPlan === plan.slug && (\n \n )}\n\n {consumer?.plan === plan.slug ? (\n Currently subscribed to \"{plan.name}\"\n ) : (\n Subscribe to \"{plan.name}\"\n )}\n \n
\n
\n \n )\n}\n" }, { "path": "apps/web/src/components/public-project.tsx", "content": "import type { Project } from '@agentic/platform-types'\nimport { UTCDate } from '@date-fns/utc'\nimport { formatDistanceToNow } from 'date-fns'\nimport Link from 'next/link'\n\nexport function PublicProject({ project }: { project: Project }) {\n const deployment = project.lastPublishedDeployment!\n if (!deployment) return null\n\n return (\n \n
\n \n\n
\n

\n {project.name}\n

\n\n

{project.identifier}

\n
\n
\n\n
\n

\n {deployment.description}\n

\n\n {project.lastPublishedDeployment && (\n
\n
{deployment.version}
\n\n
\n Last published{' '}\n {formatDistanceToNow(new UTCDate(deployment.createdAt), {\n addSuffix: true\n })}\n
\n
\n )}\n
\n \n )\n}\n" }, { "path": "apps/web/src/components/supply-side-cta.tsx", "content": "'use client'\n\nimport { sanitizeSearchParams } from '@agentic/platform-core'\nimport Link from 'next/link'\n\nimport { HeroButton, type HeroButtonVariant } from '@/components/hero-button'\nimport { Button } from '@/components/ui/button'\nimport { GitHubIcon } from '@/icons/github'\nimport { calendarBookingUrl, githubUrl } from '@/lib/config'\n\nimport { useAgentic } from './agentic-provider'\nimport { GitHubStarCounter } from './github-star-counter'\n\nconst docsPublishingQuickStartUrl =\n 'https://docs.agentic.so/publishing/quickstart'\n\nexport function SupplySideCTA({\n variant = 'github',\n heroVariant = 'orange'\n}: {\n variant?: 'book-call' | 'docs' | 'github' | 'github-2'\n heroVariant?: HeroButtonVariant\n}) {\n const ctx = useAgentic()\n\n return (\n
\n \n \n Quick Start\n \n \n\n {variant === 'github' ? (\n \n ) : variant === 'github-2' ? (\n \n ) : variant === 'docs' ? (\n \n ) : (\n \n )}\n
\n )\n}\n" }, { "path": "apps/web/src/components/theme-provider.tsx", "content": "'use client'\n\nimport type React from 'react'\nimport { ThemeProvider as NextThemesProvider } from 'next-themes'\n\nexport function ThemeProvider({\n children,\n ...props\n}: React.ComponentProps) {\n return {children}\n}\n" }, { "path": "apps/web/src/components/ui/avatar.tsx", "content": "'use client'\n\nimport * as AvatarPrimitive from '@radix-ui/react-avatar'\nimport * as React from 'react'\n\nimport { cn } from '@/lib/utils'\n\nfunction Avatar({\n className,\n ...props\n}: React.ComponentProps) {\n return (\n \n )\n}\n\nfunction AvatarImage({\n className,\n ...props\n}: React.ComponentProps) {\n return (\n \n )\n}\n\nfunction AvatarFallback({\n className,\n ...props\n}: React.ComponentProps) {\n return (\n \n )\n}\n\nexport { Avatar, AvatarFallback, AvatarImage }\n" }, { "path": "apps/web/src/components/ui/breadcrumb.tsx", "content": "import { Slot } from '@radix-ui/react-slot'\nimport { ChevronRight, MoreHorizontal } from 'lucide-react'\nimport * as React from 'react'\n\nimport { cn } from '@/lib/utils'\n\nfunction Breadcrumb({ ...props }: React.ComponentProps<'nav'>) {\n return