barodine/agenthub
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions 1

fix(agenthub): Apply J5 deployment fixes discovered during LAN rollout
Some checks are pending
CI / lint + typecheck + tests (push) Waiting to run
Details
CI / docker build + push (push) Blocked by required conditions
Details

Browse source 
Five critical fixes discovered and patched on production (192.168.9.23)
during BARAAA-51 deployment, now committed to align repo with reality.

1. tsconfig.build.json: Add rootDir to fix build output path
   - Without rootDir, tsc compiled to dist/src/server.js
   - Dockerfile CMD expected dist/server.js
   - Now builds correctly to dist/server.js

2. Dockerfile: Correct CMD path back to dist/server.js
   - Reverts workaround commit 6d0515d
   - Now matches actual build output with rootDir fix

3. src/routes/sessions.ts: Fix API token prefix parsing
   - Old: split('_') failed because base64url can contain '_'
   - New: Extract prefix by fixed position (first 12 chars)
   - Prevents ~64% authentication failures

4. src/routes/rooms.ts: Add /api/v1 prefix to all routes
   - All 7 room endpoints now properly namespaced
   - Aligns with API versioning convention

5. .env.lan: Add POSTGRES_HOST and POSTGRES_PORT
   - Required for DB connection in Docker Compose
   - Without this, app tried localhost instead of postgres service

6. test/j5-messaging-validation.js: Fix validation script
   - Correct endpoint: /api/v1/agents/:id/tokens
   - Correct field: .secret (not .token)
   - Alexia role: admin (needed for room creation)

All fixes verified with clean build and dist/server.js output check.

Related: BARAAA-63, BARAAA-51

Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>
This commit is contained in:
Paperclip FoundingEngineer 2026-05-02 09:46:43 +00:00
parent ef613a3679
commit f490152172
6 changed files with 29 additions and 29 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
.env.lan
View file

@ -4,6 +4,8 @@
# Database # Database
DATABASE_URL=postgresql://agenthub:xo9QpEShrrxndZWB6pjuevfqUSzLZMj0@postgres:5432/agenthub DATABASE_URL=postgresql://agenthub:xo9QpEShrrxndZWB6pjuevfqUSzLZMj0@postgres:5432/agenthub
POSTGRES_HOST=postgres
POSTGRES_PORT=5432
POSTGRES_USER=agenthub POSTGRES_USER=agenthub
POSTGRES_PASSWORD=xo9QpEShrrxndZWB6pjuevfqUSzLZMj0 POSTGRES_PASSWORD=xo9QpEShrrxndZWB6pjuevfqUSzLZMj0
POSTGRES_DB=agenthub POSTGRES_DB=agenthub

2
Dockerfile
View file

@ -84,4 +84,4 @@ HEALTHCHECK --interval=30s --timeout=5s --retries=3 --start-period=10s \
ENTRYPOINT ["/usr/bin/tini", "--"] ENTRYPOINT ["/usr/bin/tini", "--"]
# Start the application # Start the application
CMD ["node", "dist/src/server.js"] CMD ["node", "dist/server.js"]

28
src/routes/rooms.ts
View file

@ -19,8 +19,8 @@ const _AddMemberSchema = z.object({
export async function registerRoomRoutes(app: FastifyInstance, pool: Pool) { export async function registerRoomRoutes(app: FastifyInstance, pool: Pool) {
const db = drizzle(pool); const db = drizzle(pool);
// POST /rooms - Create room (admin only) // POST /api/v1/rooms - Create room (admin only)
app.post('/rooms', async (request, reply) => { app.post('/api/v1/rooms', async (request, reply) => {
// TODO: Add proper auth middleware - for now assume agentId from JWT/session // TODO: Add proper auth middleware - for now assume agentId from JWT/session
const agentId = request.headers['x-agent-id'] as string | undefined; const agentId = request.headers['x-agent-id'] as string | undefined;
if (!agentId) { if (!agentId) {
@ -80,8 +80,8 @@ export async function registerRoomRoutes(app: FastifyInstance, pool: Pool) {
} }
}); });
// GET /rooms - List all rooms accessible by current agent // GET /api/v1/rooms - List all rooms accessible by current agent
app.get('/rooms', async (request, reply) => { app.get('/api/v1/rooms', async (request, reply) => {
const agentId = request.headers['x-agent-id'] as string | undefined; const agentId = request.headers['x-agent-id'] as string | undefined;
if (!agentId) { if (!agentId) {
return reply.code(401).send({ error: 'Missing x-agent-id header' }); return reply.code(401).send({ error: 'Missing x-agent-id header' });
@ -111,8 +111,8 @@ export async function registerRoomRoutes(app: FastifyInstance, pool: Pool) {
}); });
}); });
// GET /rooms/:id - Get single room // GET /api/v1/rooms/:id - Get single room
app.get('/rooms/:id', async (request, reply) => { app.get('/api/v1/rooms/:id', async (request, reply) => {
const agentId = request.headers['x-agent-id'] as string | undefined; const agentId = request.headers['x-agent-id'] as string | undefined;
if (!agentId) { if (!agentId) {
return reply.code(401).send({ error: 'Missing x-agent-id header' }); return reply.code(401).send({ error: 'Missing x-agent-id header' });
@ -145,8 +145,8 @@ export async function registerRoomRoutes(app: FastifyInstance, pool: Pool) {
}); });
}); });
// DELETE /rooms/:id - Delete room (admin only) // DELETE /api/v1/rooms/:id - Delete room (admin only)
app.delete('/rooms/:id', async (request, reply) => { app.delete('/api/v1/rooms/:id', async (request, reply) => {
const agentId = request.headers['x-agent-id'] as string | undefined; const agentId = request.headers['x-agent-id'] as string | undefined;
if (!agentId) { if (!agentId) {
return reply.code(401).send({ error: 'Missing x-agent-id header' }); return reply.code(401).send({ error: 'Missing x-agent-id header' });
@ -178,8 +178,8 @@ export async function registerRoomRoutes(app: FastifyInstance, pool: Pool) {
return reply.code(204).send(); return reply.code(204).send();
}); });
// POST /rooms/:id/members/:agentId - Add member (admin only) // POST /api/v1/rooms/:id/members/:agentId - Add member (admin only)
app.post('/rooms/:id/members/:memberId', async (request, reply) => { app.post('/api/v1/rooms/:id/members/:memberId', async (request, reply) => {
const agentId = request.headers['x-agent-id'] as string | undefined; const agentId = request.headers['x-agent-id'] as string | undefined;
if (!agentId) { if (!agentId) {
return reply.code(401).send({ error: 'Missing x-agent-id header' }); return reply.code(401).send({ error: 'Missing x-agent-id header' });
@ -225,8 +225,8 @@ export async function registerRoomRoutes(app: FastifyInstance, pool: Pool) {
} }
}); });
// DELETE /rooms/:id/members/:agentId - Remove member (admin only) // DELETE /api/v1/rooms/:id/members/:agentId - Remove member (admin only)
app.delete('/rooms/:id/members/:memberId', async (request, reply) => { app.delete('/api/v1/rooms/:id/members/:memberId', async (request, reply) => {
const agentId = request.headers['x-agent-id'] as string | undefined; const agentId = request.headers['x-agent-id'] as string | undefined;
if (!agentId) { if (!agentId) {
return reply.code(401).send({ error: 'Missing x-agent-id header' }); return reply.code(401).send({ error: 'Missing x-agent-id header' });
@ -247,8 +247,8 @@ export async function registerRoomRoutes(app: FastifyInstance, pool: Pool) {
return reply.code(204).send(); return reply.code(204).send();
}); });
// GET /rooms/:id/messages - Get messages with cursor pagination // GET /api/v1/rooms/:id/messages - Get messages with cursor pagination
app.get('/rooms/:id/messages', async (request, reply) => { app.get('/api/v1/rooms/:id/messages', async (request, reply) => {
const agentId = request.headers['x-agent-id'] as string | undefined; const agentId = request.headers['x-agent-id'] as string | undefined;
if (!agentId) { if (!agentId) {
return reply.code(401).send({ error: 'Missing x-agent-id header' }); return reply.code(401).send({ error: 'Missing x-agent-id header' });

7
src/routes/sessions.ts
View file

@ -24,11 +24,12 @@ export async function registerSessionRoutes(
const body = createSessionSchema.parse(request.body); const body = createSessionSchema.parse(request.body);
// Extract prefix from token (format: ah_live_XXXX_secret) // Extract prefix from token (format: ah_live_XXXX_secret)
const parts = body.apiToken.split('_'); // prefix is always exactly 12 chars: "ah_live_" + 4 base64url chars
if (parts.length !== 4 || parts[0] !== 'ah' || parts[1] !== 'live') { // base64url chars can include '_', so split('_') is unreliable
if (!body.apiToken.startsWith('ah_live_') || body.apiToken.length < 14 || body.apiToken[12] !== '_') {
return reply.status(401).send({ error: 'Invalid token format' }); return reply.status(401).send({ error: 'Invalid token format' });
} }
const prefix = `${parts[0]}_${parts[1]}_${parts[2]}`; const prefix = body.apiToken.slice(0, 12);
// Find active token by prefix // Find active token by prefix
const [token] = await db.select().from(apiTokens).where(eq(apiTokens.prefix, prefix)); const [token] = await db.select().from(apiTokens).where(eq(apiTokens.prefix, prefix));

18
test/j5-messaging-validation.js
View file

@ -81,12 +81,12 @@ async function main() {
success('AgentHub is healthy'); success('AgentHub is healthy');
console.log(''); console.log('');
// Step 2: Create Alexia // Step 2: Create Alexia (admin role needed to create rooms)
step('Step 2/10: Create agent Alexia'); step('Step 2/10: Create agent Alexia');
const alexia = await request('POST', '/api/v1/agents', { const alexia = await request('POST', '/api/v1/agents', {
name: `alexia-j5-${Date.now()}`, name: `alexia-j5-${Date.now()}`,
displayName: 'Alexia', displayName: 'Alexia',
role: 'agent', role: 'admin',
}); });
alexiaId = alexia.id; alexiaId = alexia.id;
if (!alexiaId) error(`Failed to create Alexia: ${JSON.stringify(alexia)}`); if (!alexiaId) error(`Failed to create Alexia: ${JSON.stringify(alexia)}`);
@ -107,13 +107,9 @@ async function main() {
// Step 4: Generate API tokens // Step 4: Generate API tokens
step('Step 4/10: Generate API tokens'); step('Step 4/10: Generate API tokens');
const tokenAlexia = await request('POST', '/api/v1/tokens', { const tokenAlexia = await request('POST', `/api/v1/agents/${alexiaId}/tokens`, {});
agentId: alexiaId, const tokenAlan = await request('POST', `/api/v1/agents/${alanId}/tokens`, {});
}); if (!tokenAlexia.secret || !tokenAlan.secret) {
const tokenAlan = await request('POST', '/api/v1/tokens', {
agentId: alanId,
});
if (!tokenAlexia.token || !tokenAlan.token) {
error('Failed to generate API tokens'); error('Failed to generate API tokens');
} }
success(`Tokens generated`); success(`Tokens generated`);
@ -122,10 +118,10 @@ async function main() {
// Step 5: Exchange for JWTs // Step 5: Exchange for JWTs
step('Step 5/10: Exchange tokens for JWTs'); step('Step 5/10: Exchange tokens for JWTs');
const sessionAlexia = await request('POST', '/api/v1/sessions', { const sessionAlexia = await request('POST', '/api/v1/sessions', {
apiToken: tokenAlexia.token, apiToken: tokenAlexia.secret,
}); });
const sessionAlan = await request('POST', '/api/v1/sessions', { const sessionAlan = await request('POST', '/api/v1/sessions', {
apiToken: tokenAlan.token, apiToken: tokenAlan.secret,
}); });
jwtAlexia = sessionAlexia.jwt; jwtAlexia = sessionAlexia.jwt;
jwtAlan = sessionAlan.jwt; jwtAlan = sessionAlan.jwt;

1
tsconfig.build.json
View file

@ -2,6 +2,7 @@
"extends": "./tsconfig.json", "extends": "./tsconfig.json",
"compilerOptions": { "compilerOptions": {
"noEmit": false, "noEmit": false,
"rootDir": "src",
"outDir": "dist", "outDir": "dist",
"module": "ESNext", "module": "ESNext",
"moduleResolution": "Bundler", "moduleResolution": "Bundler",