mod agents;
mod hooks;
mod skills;
use std::sync::Arc;
use axum::Json;
use axum::http::{HeaderMap, StatusCode};
use chrono::{Duration, Utc};
use serde::Serialize;
use systemprompt_config::ProfileBootstrap;
use systemprompt_identifiers::{JwtToken, TenantId, UserId};
use systemprompt_marketplace::MarketplaceCandidate;
use systemprompt_models::bridge::ids::ManifestSignature;
use systemprompt_models::bridge::manifest::{
AgentEntry, HookEntry, ManagedMcpServer, PluginEntry, SignedManifest, SkillEntry, UserInfo,
};
use systemprompt_models::bridge::manifest_version::ManifestVersion;
use systemprompt_runtime::AppContext;
use systemprompt_security::manifest_signing;
use self::agents::load_agents;
use self::hooks::load_hooks;
use self::skills::load_skills;
use super::bridge::KNOWN_HOSTS;
use super::bridge_data;
use super::messages::extract_credential;
use crate::services::middleware::JwtContextExtractor;
#[derive(Serialize)]
struct CanonicalView<'a> {
manifest_version: &'a ManifestVersion,
issued_at: &'a str,
not_before: &'a str,
user_id: &'a UserId,
tenant_id: Option<&'a TenantId>,
user: Option<&'a UserInfo>,
plugins: &'a [PluginEntry],
skills: &'a [SkillEntry],
agents: &'a [AgentEntry],
hooks: &'a [HookEntry],
managed_mcp_servers: &'a [ManagedMcpServer],
revocations: &'a [String],
enabled_hosts: &'a [String],
}
fn default_enabled_hosts() -> Vec<String> {
KNOWN_HOSTS.iter().map(|s| (*s).to_owned()).collect()
}
pub async fn manifest(
jwt_extractor: Arc<JwtContextExtractor>,
ctx: AppContext,
headers: HeaderMap,
) -> Result<Json<SignedManifest>, (StatusCode, String)> {
let claims = authenticate(&jwt_extractor, &headers).await?;
let profile = profile_bootstrap()?;
let tenant_id = profile
.cloud
.as_ref()
.and_then(|cloud| cloud.tenant_id.as_ref())
.filter(|t| !t.as_str().is_empty())
.cloned();
let (manifest_version, issued_at, not_before) = build_version()?;
let services = bridge_data::load_services_config().map_err(|e| {
tracing::warn!(error = %e, "manifest: services config load failed");
(StatusCode::INTERNAL_SERVER_ERROR, format!("services: {e}"))
})?;
let services_root = ctx.app_paths().system().services();
let skills = load_skills(services_root).map_err(|e| {
tracing::warn!(error = %e, "manifest: skill load failed");
(StatusCode::INTERNAL_SERVER_ERROR, format!("skills: {e}"))
})?;
let agents = load_agents(&services, &profile.server.api_external_url);
let hooks = load_hooks(services_root).map_err(|e| {
tracing::warn!(error = %e, "manifest: hook load failed");
(StatusCode::INTERNAL_SERVER_ERROR, format!("hooks: {e}"))
})?;
let plugins = bridge_data::load_plugins(&ctx, &services);
let managed_mcp_servers =
bridge_data::load_managed_mcp_servers(&services, &profile.server.api_external_url)
.map_err(|e| {
tracing::warn!(error = %e, "manifest: managed mcp load failed");
(
StatusCode::INTERNAL_SERVER_ERROR,
format!("managed mcp: {e}"),
)
})?;
let user = match bridge_data::load_user(&ctx, &claims.user_id).await {
Ok(u) => u,
Err(e) => {
tracing::warn!(error = %e, "manifest: user load failed; continuing without user");
None
},
};
let revocations = match bridge_data::load_revocations(&ctx, &claims.user_id).await {
Ok(r) => r,
Err(e) => {
tracing::warn!(error = %e, "manifest: revocation load failed; continuing empty");
Vec::new()
},
};
let enabled_hosts = match bridge_data::load_enabled_hosts(&ctx, &claims.user_id).await {
Ok(rows) if rows.is_empty() => default_enabled_hosts(),
Ok(rows) => rows,
Err(e) => {
tracing::warn!(
error = %e,
"manifest: enabled_hosts load failed; defaulting to all known hosts"
);
default_enabled_hosts()
},
};
let filtered = ctx
.marketplace_filter()
.filter(
&claims.user_id,
MarketplaceCandidate::new(plugins, skills, agents, hooks, managed_mcp_servers),
)
.await
.map_err(|e| {
tracing::warn!(error = %e, "manifest: marketplace filter rejected request");
(StatusCode::FORBIDDEN, format!("marketplace filter: {e}"))
})?;
let MarketplaceCandidate {
plugins,
skills,
agents,
hooks,
managed_mcp_servers,
} = filtered;
let canonical = CanonicalView {
manifest_version: &manifest_version,
issued_at: &issued_at,
not_before: ¬_before,
user_id: &claims.user_id,
tenant_id: tenant_id.as_ref(),
user: user.as_ref(),
plugins: &plugins,
skills: &skills,
agents: &agents,
hooks: &hooks,
managed_mcp_servers: &managed_mcp_servers,
revocations: &revocations,
enabled_hosts: &enabled_hosts,
};
let signature = manifest_signing::sign_value(&canonical).map_err(|e| {
tracing::error!(error = %e, "manifest signing failed");
(
StatusCode::INTERNAL_SERVER_ERROR,
format!("manifest signing failed: {e}"),
)
})?;
Ok(Json(SignedManifest {
manifest_version,
issued_at,
not_before,
user_id: claims.user_id,
tenant_id,
user,
plugins,
skills,
agents,
hooks,
managed_mcp_servers,
revocations,
enabled_hosts,
signature: ManifestSignature::new(signature),
}))
}
async fn authenticate(
jwt_extractor: &JwtContextExtractor,
headers: &HeaderMap,
) -> Result<crate::services::middleware::jwt::JwtUserContext, (StatusCode, String)> {
let credential = extract_credential(headers).ok_or_else(|| {
(
StatusCode::UNAUTHORIZED,
"Missing Authorization or x-api-key credential".to_owned(),
)
})?;
jwt_extractor
.decode_for_gateway(&JwtToken::new(credential))
.await
.map_err(|e| (StatusCode::UNAUTHORIZED, e.to_string()))
}
fn profile_bootstrap() -> Result<&'static systemprompt_models::Profile, (StatusCode, String)> {
ProfileBootstrap::get().map_err(|e| {
(
StatusCode::SERVICE_UNAVAILABLE,
format!("Profile not ready: {e}"),
)
})
}
fn build_version() -> Result<(ManifestVersion, String, String), (StatusCode, String)> {
let now = Utc::now();
let issued_at = now.to_rfc3339();
let not_before = (now - Duration::seconds(60)).to_rfc3339();
let ts_millis = u64::try_from(now.timestamp_millis()).map_err(|_e| {
(
StatusCode::INTERNAL_SERVER_ERROR,
"manifest version: timestamp overflow".to_owned(),
)
})?;
let raw = format!("{}-{:016x}", now.format("%Y-%m-%dT%H:%M:%SZ"), ts_millis);
let version = ManifestVersion::try_new(raw).map_err(|e| {
(
StatusCode::INTERNAL_SERVER_ERROR,
format!("manifest version: {e}"),
)
})?;
Ok((version, issued_at, not_before))
}