video-transcriber-mcp 0.7.0

High-performance video transcription MCP server using whisper.cpp for faster transcription
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334

//! Stripe Checkout + webhook handlers. Env-gated — if `STRIPE_SECRET_KEY` is
//! unset the endpoints return 503 so the engine can run standalone for
//! anyone forking it without payments.
//!
//! Pricing is per-device credit packs (one-time payments, not subscriptions):
//! every successful `checkout.session.completed` event adds the configured
//! credits to the device that initiated the session, identified by the
//! `client_reference_id` Stripe forwards from the original Checkout request.
//!
//! Webhook signature verification follows Stripe's documented HMAC-SHA256
//! scheme: `Stripe-Signature` is `t=<timestamp>,v1=<hex_hmac>,…`; we compute
//! HMAC of `<timestamp>.<raw_body>` with `STRIPE_WEBHOOK_SECRET` and
//! constant-time-compare against the supplied `v1`. The raw request body is
//! required (parsed JSON would re-serialize differently), so the handler
//! extracts `Bytes` rather than `Json<T>`.

use axum::{
    Json,
    body::Bytes,
    extract::State,
    http::{HeaderMap, StatusCode},
};
use hmac::{Hmac, Mac};
use serde::Deserialize;
use serde_json::{Value, json};
use sha2::Sha256;
use std::collections::HashMap;
use tracing::{error, info, warn};

use crate::api::handlers::AppState;
use crate::credits;

/// Pack options the client may request. Mapped to Stripe Price IDs via env
/// vars (e.g. `STRIPE_PRICE_25` → the price for the 25-credit pack).
const PACKS: &[(&str, i32)] = &[("25", 25), ("100", 100), ("500", 500)];

#[derive(Deserialize)]
pub struct CheckoutRequest {
    /// One of "25" / "100" / "500" (see `PACKS`).
    pub pack: String,
}

/// POST /api/checkout
/// Body: { "pack": "25" }
/// Headers: X-Device-Id
/// Returns: { "checkout_url": "https://checkout.stripe.com/..." }
pub async fn create_checkout(
    State(_state): State<AppState>,
    headers: HeaderMap,
    Json(req): Json<CheckoutRequest>,
) -> (StatusCode, Json<Value>) {
    let device_id = match super::handlers::require_device_id_pub(&headers) {
        Ok(id) => id,
        Err(e) => return e,
    };

    let pack_credits = match PACKS.iter().find(|(k, _)| *k == req.pack) {
        Some((_, c)) => *c,
        None => {
            return (
                StatusCode::BAD_REQUEST,
                Json(json!({
                    "error": "unsupported pack",
                    "valid_packs": PACKS.iter().map(|(k, _)| *k).collect::<Vec<_>>(),
                })),
            );
        }
    };

    let secret = match std::env::var("STRIPE_SECRET_KEY") {
        Ok(s) if !s.is_empty() => s,
        _ => {
            warn!("/api/checkout hit but STRIPE_SECRET_KEY is unset");
            return (
                StatusCode::SERVICE_UNAVAILABLE,
                Json(json!({ "error": "checkout not configured on this server" })),
            );
        }
    };

    let price_env = format!("STRIPE_PRICE_{}", req.pack);
    let price_id = match std::env::var(&price_env) {
        Ok(s) if s.starts_with("price_") => s,
        _ => {
            error!("checkout requested pack {} but {} is unset/invalid", req.pack, price_env);
            return (
                StatusCode::SERVICE_UNAVAILABLE,
                Json(json!({ "error": format!("pack {} not configured", req.pack) })),
            );
        }
    };

    let success_url = std::env::var("CHECKOUT_SUCCESS_URL")
        .unwrap_or_else(|_| "https://whisgram.nvnv.app/?checkout=success".to_string());
    let cancel_url = std::env::var("CHECKOUT_CANCEL_URL")
        .unwrap_or_else(|_| "https://whisgram.nvnv.app/?checkout=cancel".to_string());

    // Stripe API uses form-encoding, not JSON.
    let form_params: Vec<(&str, String)> = vec![
        ("mode", "payment".to_string()),
        ("success_url", success_url),
        ("cancel_url", cancel_url),
        ("client_reference_id", device_id.clone()),
        // Metadata is echoed back on the webhook — belt-and-braces in case
        // client_reference_id is ever stripped by a future Stripe change.
        ("metadata[device_id]", device_id),
        ("metadata[pack]", req.pack.clone()),
        ("metadata[credits]", pack_credits.to_string()),
        ("line_items[0][price]", price_id),
        ("line_items[0][quantity]", "1".to_string()),
    ];

    let client = reqwest::Client::new();
    let resp = client
        .post("https://api.stripe.com/v1/checkout/sessions")
        .bearer_auth(&secret)
        .form(&form_params)
        .send()
        .await;

    let resp = match resp {
        Ok(r) => r,
        Err(e) => {
            error!("Stripe checkout API call failed: {}", e);
            return (
                StatusCode::BAD_GATEWAY,
                Json(json!({ "error": "stripe API unreachable" })),
            );
        }
    };

    let status = resp.status();
    let body: Value = match resp.json().await {
        Ok(v) => v,
        Err(e) => {
            error!("Stripe checkout response malformed: {}", e);
            return (
                StatusCode::BAD_GATEWAY,
                Json(json!({ "error": "stripe API returned non-JSON" })),
            );
        }
    };

    if !status.is_success() {
        error!("Stripe checkout returned {}: {}", status, body);
        return (
            StatusCode::BAD_GATEWAY,
            Json(json!({
                "error": "stripe API rejected request",
                "stripe_error": body.get("error"),
            })),
        );
    }

    let url = match body.get("url").and_then(|v| v.as_str()) {
        Some(u) => u.to_string(),
        None => {
            error!("Stripe checkout response missing url: {}", body);
            return (
                StatusCode::BAD_GATEWAY,
                Json(json!({ "error": "stripe response missing url" })),
            );
        }
    };

    info!(
        "Created Stripe Checkout session for pack {} ({} credits)",
        req.pack, pack_credits
    );
    (StatusCode::OK, Json(json!({ "checkout_url": url })))
}

/// POST /api/webhook/stripe
/// Stripe forwards events here (configured at https://dashboard.stripe.com).
/// We listen for `checkout.session.completed` and credit the device.
pub async fn webhook(
    State(state): State<AppState>,
    headers: HeaderMap,
    body: Bytes,
) -> (StatusCode, Json<Value>) {
    let secret = match std::env::var("STRIPE_WEBHOOK_SECRET") {
        Ok(s) if !s.is_empty() => s,
        _ => {
            warn!("/api/webhook/stripe hit but STRIPE_WEBHOOK_SECRET is unset");
            return (
                StatusCode::SERVICE_UNAVAILABLE,
                Json(json!({ "error": "webhook not configured" })),
            );
        }
    };

    let sig_header = match headers.get("stripe-signature").and_then(|v| v.to_str().ok()) {
        Some(s) => s,
        None => {
            return (
                StatusCode::BAD_REQUEST,
                Json(json!({ "error": "missing stripe-signature header" })),
            );
        }
    };

    if !verify_signature(secret.as_bytes(), &body, sig_header) {
        warn!("Stripe webhook signature verification failed");
        return (
            StatusCode::UNAUTHORIZED,
            Json(json!({ "error": "invalid signature" })),
        );
    }

    // Parse the event payload now that we trust the signature.
    let event: Value = match serde_json::from_slice(&body) {
        Ok(v) => v,
        Err(e) => {
            error!("Stripe webhook body wasn't JSON: {}", e);
            return (StatusCode::BAD_REQUEST, Json(json!({ "error": "bad json" })));
        }
    };

    let event_type = event.get("type").and_then(|v| v.as_str()).unwrap_or("");

    // We only act on the one event type. Stripe will retry until we 2xx, so we
    // also 2xx other events to acknowledge receipt.
    if event_type != "checkout.session.completed" {
        return (StatusCode::OK, Json(json!({ "ignored": event_type })));
    }

    let session = event.pointer("/data/object");
    let metadata = session
        .and_then(|s| s.get("metadata"))
        .and_then(|m| m.as_object());

    let device_id = metadata
        .and_then(|m| m.get("device_id"))
        .and_then(|v| v.as_str())
        .map(str::to_string)
        .or_else(|| {
            session
                .and_then(|s| s.get("client_reference_id"))
                .and_then(|v| v.as_str())
                .map(str::to_string)
        });

    let credits_str = metadata
        .and_then(|m| m.get("credits"))
        .and_then(|v| v.as_str());

    let (device_id, credit_amount) = match (device_id, credits_str.and_then(|s| s.parse::<i32>().ok())) {
        (Some(d), Some(c)) if c > 0 => (d, c),
        _ => {
            error!(
                "checkout.session.completed missing device_id / credits in metadata: {}",
                event
            );
            // Acknowledge so Stripe stops retrying — we can't recover this one
            // automatically, but a 200 prevents the event from clogging the
            // retry queue.
            return (
                StatusCode::OK,
                Json(json!({ "warning": "session lacked metadata" })),
            );
        }
    };

    let new_balance = credits::add(&state.credits, &device_id, credit_amount).await;
    info!(
        "Stripe webhook credited device {} with {} credits (new balance: {})",
        device_id, credit_amount, new_balance
    );
    (StatusCode::OK, Json(json!({ "ok": true, "balance": new_balance })))
}

/// Verify a Stripe-Signature header against the raw request body and a
/// webhook signing secret. Header format: `t=<unix_ts>,v1=<hex_hmac>,…`.
/// We accept the request if any `v1` value matches our computed HMAC.
fn verify_signature(secret: &[u8], body: &[u8], header: &str) -> bool {
    let parts: HashMap<&str, &str> = header
        .split(',')
        .filter_map(|kv| {
            let mut it = kv.splitn(2, '=');
            Some((it.next()?, it.next()?))
        })
        .collect();

    let timestamp = match parts.get("t") {
        Some(t) => *t,
        None => return false,
    };

    let signed_payload = format!("{}.", timestamp);
    let mut mac = match Hmac::<Sha256>::new_from_slice(secret) {
        Ok(m) => m,
        Err(_) => return false,
    };
    mac.update(signed_payload.as_bytes());
    mac.update(body);
    let expected = mac.finalize().into_bytes();

    // Stripe sends the signatures as hex. We may have multiple `v1=`
    // entries (rotating secrets); accept if any match.
    for (k, v) in header.split(',').filter_map(|kv| {
        let mut it = kv.splitn(2, '=');
        Some((it.next()?, it.next()?))
    }) {
        if k != "v1" {
            continue;
        }
        let Ok(provided) = decode_hex(v) else { continue };
        if provided.len() == expected.len() && constant_time_eq(&provided, &expected) {
            return true;
        }
    }
    false
}

fn decode_hex(s: &str) -> Result<Vec<u8>, ()> {
    if !s.len().is_multiple_of(2) {
        return Err(());
    }
    (0..s.len())
        .step_by(2)
        .map(|i| u8::from_str_radix(&s[i..i + 2], 16).map_err(|_| ()))
        .collect()
}

fn constant_time_eq(a: &[u8], b: &[u8]) -> bool {
    if a.len() != b.len() {
        return false;
    }
    let mut diff = 0u8;
    for (x, y) in a.iter().zip(b.iter()) {
        diff |= x ^ y;
    }
    diff == 0
}