agent-tools-interface 0.7.11

Agent Tools Interface — secure CLI for AI agent tool execution
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194

use std::path::Path;

use super::common;

/// Execute: ati init [--proxy [--es256]]
pub fn execute(proxy: bool, es256: bool) -> Result<(), Box<dyn std::error::Error>> {
    let ati_dir = common::ati_dir();
    init_directory(&ati_dir, proxy, es256)
}

fn init_directory(
    ati_dir: &Path,
    proxy: bool,
    es256: bool,
) -> Result<(), Box<dyn std::error::Error>> {
    // Create directory structure
    let dirs = ["manifests", "specs", "skills"];
    for dir in &dirs {
        std::fs::create_dir_all(ati_dir.join(dir))?;
    }

    // Write config.toml — always overwrite when --proxy is specified (explicit user action),
    // only create default if it doesn't exist yet.
    let config_path = ati_dir.join("config.toml");
    if proxy {
        let config_content = if es256 {
            generate_es256_config(ati_dir)?
        } else {
            generate_hs256_config()?
        };
        std::fs::write(&config_path, config_content)?;
    } else if !config_path.exists() {
        std::fs::write(&config_path, default_config())?;
    }

    tracing::info!(dir = %ati_dir.display(), "initialized ATI directory");
    tracing::info!("  manifests/");
    tracing::info!("  specs/");
    tracing::info!("  skills/");
    tracing::info!("  config.toml");

    tracing::info!("Next steps:");
    tracing::info!("  ati key set <name> <value>            Add an API key");
    tracing::info!("  ati provider import-openapi <url>     Import an API spec");

    Ok(())
}

fn default_config() -> String {
    r#"# ATI configuration
# See https://github.com/Parcha-ai/ati for documentation.

# [proxy]
# port = 8090
# bind = "127.0.0.1"
"#
    .to_string()
}

fn generate_hs256_config() -> Result<String, Box<dyn std::error::Error>> {
    // Generate a random 256-bit secret
    let mut secret = [0u8; 32];
    use ring::rand::SecureRandom;
    let rng = ring::rand::SystemRandom::new();
    rng.fill(&mut secret)
        .map_err(|e| format!("Random generation failed: {e}"))?;

    let hex_secret = hex::encode(secret);

    Ok(format!(
        r#"# ATI configuration — proxy mode (HS256)

[proxy]
port = 8090
bind = "127.0.0.1"

[proxy.jwt]
algorithm = "HS256"
secret = "{hex_secret}"

# Issue tokens with:
#   ati token issue --sub agent-1 --scope "tool:* help" --secret {hex_secret}
"#
    ))
}

fn generate_es256_config(ati_dir: &Path) -> Result<String, Box<dyn std::error::Error>> {
    use base64::Engine;
    use ring::signature::KeyPair;

    let rng = ring::rand::SystemRandom::new();
    let pkcs8_bytes = ring::signature::EcdsaKeyPair::generate_pkcs8(
        &ring::signature::ECDSA_P256_SHA256_ASN1_SIGNING,
        &rng,
    )
    .map_err(|e| format!("Key generation failed: {e}"))?;

    // Write private key PEM
    let priv_b64 = base64::engine::general_purpose::STANDARD.encode(pkcs8_bytes.as_ref());
    let private_pem = format_pem("PRIVATE KEY", &priv_b64);
    let priv_path = ati_dir.join("jwt-private.pem");
    std::fs::write(&priv_path, &private_pem)?;

    // Set 0600 on private key
    #[cfg(unix)]
    {
        use std::os::unix::fs::PermissionsExt;
        std::fs::set_permissions(&priv_path, std::fs::Permissions::from_mode(0o600))?;
    }

    // Extract public key
    let key_pair = ring::signature::EcdsaKeyPair::from_pkcs8(
        &ring::signature::ECDSA_P256_SHA256_ASN1_SIGNING,
        pkcs8_bytes.as_ref(),
        &rng,
    )
    .map_err(|e| format!("Failed to load generated key: {e}"))?;

    let public_key_bytes = key_pair.public_key().as_ref();
    let spki_der = wrap_ec_public_key_spki(public_key_bytes);
    let pub_b64 = base64::engine::general_purpose::STANDARD.encode(&spki_der);
    let public_pem = format_pem("PUBLIC KEY", &pub_b64);
    let pub_path = ati_dir.join("jwt-public.pem");
    std::fs::write(&pub_path, &public_pem)?;

    tracing::info!("  jwt-private.pem  (keep secret)");
    tracing::info!("  jwt-public.pem   (distribute for validation)");

    Ok(format!(
        r#"# ATI configuration — proxy mode (ES256)

[proxy]
port = 8090
bind = "127.0.0.1"

[proxy.jwt]
algorithm = "ES256"
private_key = "jwt-private.pem"
public_key = "jwt-public.pem"

# Issue tokens with:
#   ati token issue --sub agent-1 --scope "tool:* help" --key {}/jwt-private.pem
"#,
        ati_dir.display()
    ))
}

fn format_pem(label: &str, b64: &str) -> String {
    let mut pem = format!("-----BEGIN {label}-----\n");
    for chunk in b64.as_bytes().chunks(64) {
        pem.push_str(std::str::from_utf8(chunk).unwrap_or(""));
        pem.push('\n');
    }
    pem.push_str(&format!("-----END {label}-----\n"));
    pem
}

fn wrap_ec_public_key_spki(public_key_bytes: &[u8]) -> Vec<u8> {
    let ec_oid: &[u8] = &[0x06, 0x07, 0x2a, 0x86, 0x48, 0xce, 0x3d, 0x02, 0x01];
    let p256_oid: &[u8] = &[0x06, 0x08, 0x2a, 0x86, 0x48, 0xce, 0x3d, 0x03, 0x01, 0x07];

    let alg_id_content_len = ec_oid.len() + p256_oid.len();
    let mut alg_id = vec![0x30];
    push_der_length(&mut alg_id, alg_id_content_len);
    alg_id.extend_from_slice(ec_oid);
    alg_id.extend_from_slice(p256_oid);

    let bit_string_content_len = 1 + public_key_bytes.len();
    let mut bit_string = vec![0x03];
    push_der_length(&mut bit_string, bit_string_content_len);
    bit_string.push(0x00);
    bit_string.extend_from_slice(public_key_bytes);

    let total_content_len = alg_id.len() + bit_string.len();
    let mut spki = vec![0x30];
    push_der_length(&mut spki, total_content_len);
    spki.extend_from_slice(&alg_id);
    spki.extend_from_slice(&bit_string);

    spki
}

fn push_der_length(buf: &mut Vec<u8>, len: usize) {
    if len < 128 {
        buf.push(len as u8);
    } else if len < 256 {
        buf.push(0x81);
        buf.push(len as u8);
    } else {
        buf.push(0x82);
        buf.push((len >> 8) as u8);
        buf.push((len & 0xff) as u8);
    }
}