Compare commits

...

106 Commits

Author SHA1 Message Date
Sai-karthik
fcbb93ca6a fix: distinguish missing career display contract 2026-07-15 19:40:50 +00:00
Sai-karthik
461b893fdc fix: harden career report producer contracts 2026-07-15 19:37:44 +00:00
Sai-karthik
712a4e57f3 feat: expose live career report data 2026-07-15 19:27:02 +00:00
d857b60111 Merge pull request 'feat: integrate live Home Insight snapshots' (#19) from feat/home-insight-live-aggregate into staging 2026-07-15 17:57:08 +00:00
Sai-karthik
171495f1e1 fix: preserve insight producer outages 2026-07-15 17:30:47 +00:00
Sai-karthik
7caf05f4f5 feat: expose producer-owned audience reach 2026-07-15 17:23:56 +00:00
Sai-karthik
15eb7e033c feat: aggregate live home insight snapshots 2026-07-15 17:22:02 +00:00
-Puter
63c9c18494 fix(roleplay): forward curator orchestration 2026-07-15 16:30:39 +05:30
-Puter
d4332f9f8b fix(curator): preserve active sprint on reads 2026-07-15 16:07:46 +05:30
-Puter
e8c6665ca0 fix(curator): gate profile and day progression 2026-07-15 15:36:15 +05:30
-Puter
d6f583f238 fix(roleplay): hydrate qscore with canonical identity 2026-07-14 22:41:32 +05:30
-Puter
d2353273d5 fix(interview): dedupe streak sessions by session id 2026-07-14 21:20:57 +05:30
-Puter
13ca12588b fix(websocket): project session ownership before tickets 2026-07-14 20:47:44 +05:30
6d2379ce61 Merge pull request 'Publish raw GrowEvents to RQ Score without backend evaluation' (#18) from refactor/qscore-single-owner-volatility into staging 2026-07-14 14:13:46 +00:00
-Puter
27a65dd218 fix: canonicalize course start events 2026-07-14 19:14:27 +05:30
-Puter
29c3db33d4 fix: retain enriched event correlation for qscore 2026-07-14 18:43:46 +05:30
-Puter
4e7ed3c280 fix: use strict rq_score in roleplay contract 2026-07-14 18:15:16 +05:30
-Puter
453d9b5191 fix: preserve raw event correlation and merged migrations 2026-07-14 18:13:18 +05:30
-Puter
bbeaae5684 Merge commit 'd4090f560763af57875f8a37696ad2597a45c2d9' into review/pr18
# Conflicts:
#	drizzle/meta/_journal.json
2026-07-14 18:07:44 +05:30
-Puter
d4090f5607 fix(curator): stabilize two-day trial progression 2026-07-14 17:11:57 +05:30
sai karthik
1d37456084 docs: finish RQ Score agent rename 2026-07-14 15:32:42 +05:30
sai karthik
340557dd56 test: enforce RQ Score API contract 2026-07-14 15:31:59 +05:30
sai karthik
d8b11edcb6 feat: expose RQ Score contract 2026-07-14 15:30:29 +05:30
sai karthik
34920f6a09 Merge staging into QScore raw-event refactor 2026-07-14 14:20:00 +05:30
-Puter
7b35d1e0c5 fix(curator): enforce correlated task completion 2026-07-14 10:20:29 +05:30
-Puter
41f9f0dfec fix(events): correlate service completions to curator tasks 2026-07-14 09:55:52 +05:30
-Puter
8d43bea58e fix(resume): proxy empty success responses 2026-07-14 02:22:32 +05:30
Sai-karthik
c1d2acd96d refactor: deliver raw GrowEvents to QScore 2026-07-13 20:14:14 +00:00
-Puter
a2292dd155 fix(roleplay): register resumed sessions for tickets 2026-07-14 01:38:40 +05:30
-Puter
4985605638 fix(roleplay): expose saved draft controls 2026-07-14 01:25:25 +05:30
-Puter
626684ea7e fix: forward user identity to resume service 2026-07-13 22:49:59 +05:30
-Puter
5eaf4ae1ea fix backend service user identity forwarding 2026-07-13 21:19:55 +05:30
-Puter
a56172c7ac fix: enforce websocket ticket session ownership 2026-07-13 20:20:12 +05:30
-Puter
eafca3aafb feat: issue scoped websocket session tickets 2026-07-13 20:19:11 +05:30
-Puter
8c0f8e1d57 Make Course A2A gateway transport-only 2026-07-13 20:13:57 +05:30
-Puter
4c59151e37 Avoid duplicate Course scoring events 2026-07-13 20:13:53 +05:30
-Puter
a3c4a91cbe Project Course swipe gateway events 2026-07-13 20:13:53 +05:30
-Puter
4fa4a8bbd1 test: remove tautological service token assertion 2026-07-13 20:12:59 +05:30
-Puter
d71b7ede08 test: cover service token config resolution 2026-07-13 20:12:59 +05:30
-Puter
1f778fe3ea Prevent Course gateway score double counting 2026-07-13 20:12:59 +05:30
-Puter
fc06317832 fix(auth): remove compose service token fallback 2026-07-13 20:12:59 +05:30
-Puter
a1e05b0337 Add focused Course and Matchmaking route tests 2026-07-13 20:12:59 +05:30
-Puter
7a0c762fde Add Course A2A gateway and prevent matchmaking duplicates 2026-07-13 20:12:59 +05:30
-Puter
70c3634178 Remove backend dev A2A auth fallback 2026-07-13 20:12:59 +05:30
-Puter
26e0e54488 fix(staging): pin verified models and resume route 2026-07-13 18:04:49 +05:30
38939c2fd0 Merge curator task handoff fixes into staging 2026-07-13 10:11:42 +00:00
Sai-karthik
54b546bba3 Fix compressed resume proxy responses 2026-07-13 10:11:27 +00:00
Sai-karthik
3a7a6c46a8 Cover task-aware curator handoffs 2026-07-13 10:11:27 +00:00
Sai-karthik
25d92f67be Preserve task details on unavailable handoffs 2026-07-13 10:11:27 +00:00
Sai-karthik
51c9eb0167 Keep presentation handoffs task-focused 2026-07-13 10:11:27 +00:00
Sai-karthik
59482d4747 Expose profile asset state in Day 1 tasks 2026-07-13 10:11:27 +00:00
Sai-karthik
6b3c6d0b0c Remove invented interview role fallback 2026-07-13 10:11:27 +00:00
Sai-karthik
301dba8c50 Fix curator task handoffs and profile state 2026-07-13 10:11:27 +00:00
Sai-karthik
e444d1be15 Fix compressed resume proxy responses 2026-07-13 06:52:59 +00:00
Sai-karthik
fdf4f6468d Cover task-aware curator handoffs 2026-07-13 06:10:15 +00:00
Sai-karthik
8617be7e7c Preserve task details on unavailable handoffs 2026-07-13 01:07:43 +00:00
Sai-karthik
8cb5413766 Keep presentation handoffs task-focused 2026-07-13 00:21:57 +00:00
Sai-karthik
2410a4800b Expose profile asset state in Day 1 tasks 2026-07-13 00:10:38 +00:00
Sai-karthik
f848f45429 Remove invented interview role fallback 2026-07-12 23:51:44 +00:00
-Puter
9cb1027f4c fix(staging): make compose guard host-portable 2026-07-13 05:12:20 +05:30
-Puter
d2e3f49519 chore(staging): guard backend compose topology 2026-07-13 05:10:54 +05:30
-Puter
80884fc0b6 fix(staging): pin canonical service networks 2026-07-13 05:04:37 +05:30
Sai-karthik
5f5622b3a0 Fix curator task handoffs and profile state 2026-07-12 23:21:52 +00:00
-Puter
b93cc81d93 fix curator sprint to use canonical onboarding 2026-07-13 04:28:27 +05:30
-Puter
982942fa6e fix onboarding GET service auth seam 2026-07-13 04:15:01 +05:30
-Puter
fdc320b995 fix onboarding GET service network and rev10 serialization 2026-07-13 03:59:13 +05:30
-Puter
4b652358d3 fix curator sprint ICP reconciliation 2026-07-13 03:43:37 +05:30
-Puter
c7c6f1b8cc fix curator sprint ICP reconciliation 2026-07-13 03:31:02 +05:30
-Puter
e7546142b6 fix curator sprint access choice reconciliation 2026-07-13 02:39:29 +05:30
-Puter
78860ecf5e fix(staging): point Social service URL to AWS Social via gqr-staging tunnel (18015)
Live root cause: dashboard gateway reached old developer FastAPI at
social.sai-onchain.me and 404'd on the LinkedIn onboarding route.
The gqr-staging reverse SSH tunnel now exposes AWS Social on host
port 18015 (verified: healthz=200, POST route 422).

- SOCIAL_BRANDING_SERVICE_URL: http://host.docker.internal:18015 (internal tunnel)
- SOCIAL_BRANDING_PUBLIC_URL: https://social-staging.gqr.puter.wtf (public staging)
2026-07-12 21:59:31 +05:30
-Puter
e50be827ca fix(scripts): repair onboarding-bulk-reset with A2A user-service endpoint
Rewire Phase 1 to call the user-service POST /api/v1/users/onboarding-reset A2A
endpoint (targeting by clerk_id) instead of the per-user authenticated DELETE
route, which could not reach all users. A 404 from user-service means the user
has no profile (backend-only) — a clean skip that does not block Phase 2.

Phase 2 (backend ledger reset via resetOnboardingLedger) now runs ONLY after
Phase 1 succeeds or is skipped; a non-404 pref error blocks the ledger for that
user to avoid inconsistent state. Triple guard (NODE_ENV=staging,
ONBOARDING_BULK_RESET_ALLOWED=true, --confirm) and aggregate-only output are
preserved. Add source-structure assertions for the CLI contract.
2026-07-12 20:50:17 +05:30
-Puter
c54e12972c fix(onboarding): synthetic PATCH /me stale content-length socket close
patchPreferencesRequest forwarded inbound headers (including
content-length from the browser PATCH body) but set a DIFFERENT body
({ preferences }). The Request constructor does NOT recompute
content-length when an explicit body is provided alongside forwarded
headers, so user-service waited for bytes that never arrived and closed
the socket (~2.8s 'other side closed') → uncaught → 500.

Delete content-length and transfer-encoding before constructing the
synthetic request so undici recomputes them from the actual body. Apply
the same defensive deletes in fetchUserProfile.

Extract patchPreferencesRequest into the DB-free
src/services/user-profile.ts module (alongside fetchUserProfile) so the
regression test imports the REAL function and asserts content-length /
transfer-encoding / host / cookie are stripped and the body is the
synthetic { preferences } blob. tsc clean; existing onboarding tests
pass.
2026-07-12 20:29:40 +05:30
-Puter
ad1318424b fix(onboarding): PATCH /onboarding 500 — fetchUserProfile must GET /me
PATCH /onboarding read its JSON body via c.req.json() (consuming
c.req.raw), then passed c.req.raw to fetchUserProfile → fetchUserService,
which called req.arrayBuffer() on the already-consumed body:
TypeError: Body is unusable. The global onError caught it as a 500
{"error":"internal"}, so every access-choice save failed. GET
/onboarding worked only because it never reads a body.

fetchUserProfile is a read; it must never replay the inbound method or
body. Extract it (+ userServiceTarget) into a DB-free module that issues
an explicit GET /me with forwarded headers, sidestepping body reuse
entirely and fixing a latent wrong-method bug (PATCH /onboarding would
have issued a PATCH /me write for a read).

Verified against staging logs (TypeError stack at fetchUserService →
fetchUserProfile → PATCH handler). Focused regression test consumes the
body first and asserts GET + no body re-read + profile parse; tsc clean.
2026-07-12 20:14:22 +05:30
-Puter
62208d385f feat(onboarding): persist resettable user state 2026-07-12 19:23:29 +05:30
Sai-karthik
a1de355ea0 fix: propagate curator context to service routes 2026-07-11 23:47:00 +00:00
Sai-karthik
411ad591bf fix: route curator tasks to unified service pages 2026-07-11 23:02:29 +00:00
Sai-karthik
63619f5047 Implement canonical onboarding and static curator sprint 2026-07-11 21:27:21 +00:00
-Puter
b2283476d1 fix(staging): route social through edge tunnel 2026-07-11 16:49:59 +05:30
-Puter
09d3da0d7a fix(staging): route social service to dedicated host 2026-07-11 16:46:14 +05:30
-Puter
c715171aa2 fix(staging): use canonical matchmaking network 2026-07-11 14:59:00 +05:30
-Puter
f4964e5030 fix(events): keep actor state inside workflow steps 2026-07-11 14:57:10 +05:30
-Puter
5f5b08bfda fix(events): prevent userEventActor queue saturation from duplicate routing
Root cause: recordGrowEvent returned the existing row on dedupe hits, and
routeGrowEventToUserActor was called unconditionally — so every duplicate
ingest re-enqueued the same event to the actor queue, saturating it.

Fix at the persistence boundary:
- recordGrowEventWithResult returns {event, inserted} using atomic
  onConflictDoNothing().returning() (row present = fresh insert, no row =
  dedupe hit). No clock heuristics, no xmax probe.
- Conflict lookup tries dedupeKey first, then id PK fallback, covering both
  constraint types.
- shouldRouteGrowEvent(event, inserted) gates routing to only newly-inserted,
  user-resolved, pending events. Dedupe hits never re-enqueue.
- recordGrowEvent kept as thin .event wrapper — zero changes to ~10 callers.

Fix the actor run loop (mirrors workflow-run-actor.ts):
- tryStep with catch:['timeout','exhausted'] replaces step+rethrow. Per-event
  failure is marked terminal in a separate record-failure step, loop advances.
- isProcessableStatus guard allows pending/processing/processed — only skips
  failed/unresolved. This ensures mission reducers (actor-only) still run on
  events that got synchronous projections.
- Status guard + claim moved inside tryStep's run for atomic retry unit.
- onError handler added to workflow().

Ingress callers migrated (3 paths):
- redis-consumer recordAndRoute: shouldRouteGrowEvent gate + always mark
  processed after projections.
- routes/events.ts ingest: shouldRouteGrowEvent gate + always mark processed.
- v1/events/events-routes.ts /track: inserted flag for dedupe skip.

Tests: 3 new (event-dedupe-routing, user-event-actor-advance,
event-ingress-route-integration with injectable enqueue proving 5x duplicate
ingest enqueues exactly once). All existing touched-scope tests green.

Co-authored-by: independent review (2 rounds)
2026-07-11 06:19:38 +05:30
-Puter
3f2dabd23d fix(events): bound actor routing latency 2026-07-10 20:26:38 +05:30
-Puter
ac7bdca912 feat(backend): REST-authoritative qscore pipeline with Redis opt-in
- Gate both Redis ingestion paths (canonical + legacy) behind separate
  default-off flags (GROW_EVENTS_REDIS_ENABLED, LEGACY_SERVICE_REDIS_ENABLED).
  The redis module is never imported when both flags are off.
- Sever legacy URL cascade: interview/roleplay/resume/courses Redis URLs
  resolve ONLY from their own explicit env vars, never from REDIS_URL or
  GROW_EVENTS_REDIS_URL.
- Export resolveRedisConfig() pure resolver for testability.
- Fix onboarding signal ID from 'onboarding.completed_baseline' to
  'onboarding.completed' (registry-valid in all v2 formula JSONs).
- Ensure interview/roleplay completed events emit at least a single
  completion signal when session_count/scenario_count is absent (default 1).
- Extract computeStreakFromDays() into streak-utils.ts (pure, no DB dep)
  with defensive dedup so duplicate days never inflate streaks.
- Add focused tests: redis-gating, signal-registry membership, count
  fallback, streak policy (current/longest/duplicate/gap/recovery/7-day),
  service-ingest projector behavior.
- typecheck: 80 pre-existing errors unchanged, 0 new.
2026-07-10 20:12:13 +05:30
-Puter
d3a4e63e4a refactor: backend becomes pure signal feeder to qscore_service
- applyQscoreProjection forwards extracted signals to qscore_service via HTTP
- applyCuratorTaskDeltaProjection removed (no local additive scoring)
- forwardSignalsToQscoreService helper added to service-agents.ts
- New qscore-proxy.ts: getQscoreFromService proxies all reader sites
- 7 reader endpoints proxy to qscore_service (services, qscore-routes, analytics, home-feed, curator context, curator-store, curator-tools)
- Onboarding baseline forwards to qscore_service
- All existing response shapes preserved for dashboard compatibility
- tsc --noEmit passes clean
2026-07-10 00:28:19 +05:30
-Puter
722d5825bf fix(staging): use zen balance endpoint for minimax 2026-07-09 22:14:20 +05:30
-Puter
389a9fb014 fix(staging): attach backend to service networks 2026-07-09 22:12:41 +05:30
-Puter
689bfb6c52 fix(staging): bind backend compose ports locally 2026-07-09 22:09:59 +05:30
-Puter
c3e7b00250 fix(staging): pin backend runtime overrides 2026-07-09 21:58:30 +05:30
-Puter
7bcd664afb fix(events): keep mission metadata on service sessions 2026-07-09 19:07:30 +05:30
-Puter
64c245535f feat(events): project course and matchmaking activity 2026-07-09 18:55:00 +05:30
-Puter
237c65f328 fix(social): remove incorrect /api/v1/ prefix from social proxy
The social-branding service routes are at root level (/accounts/connect,
/profiles/fetch-by-url, etc.) — NOT under /api/v1/. The proxy was
prepending /api/v1/ to every forwarded path, causing 404 Not Found on
all social POST endpoints including LinkedIn account connect.
2026-07-09 14:52:40 +05:30
-Puter
ee964a5d13 feat(social): emit GrowQR events from social-branding proxy routes
The social-branding proxy was a raw passthrough that never called
recordGatewayEvent — so no grow_events rows were created for any social
action (account connect, profile polish, post publish, etc.), breaking
the curator/streak/QScore loop.

Follow the proxyResumeRequest pattern exactly:
- GET/HEAD pass through directly (no event)
- POST/PUT/PATCH/DELETE buffer response, record gateway event, return
- Add socialEventTypeForRest() mapping 10+ social routes to event types
- Add 'social' to canonicalSubjectServiceId mapping
- Event payload is strictly {path, method, status, action} — no raw
  cookies, tokens, passwords, or LinkedIn session data
- Extract account_id from path/response for correlation.externalId
2026-07-09 14:30:04 +05:30
Sai-karthik
f61742b38f Add two-day trial sprint recovery flags 2026-07-09 04:50:29 +00:00
Sai-karthik
da065d1077 Include curator task metadata in service handoffs 2026-07-08 09:04:54 +00:00
Sai-karthik
38c147b331 Point backend social branding URL to live service 2026-07-08 07:53:18 +00:00
Sai-karthik
8314ffbe75 Configure social branding service URL 2026-07-08 07:49:30 +00:00
Sai-karthik
ee304b0016 Enable social branding curator handoffs 2026-07-08 07:41:57 +00:00
Sai-karthik
0c9ddd3b25 Route social branding curator handoffs to Nova 2026-07-08 07:38:59 +00:00
Sai-karthik
098056458e Project streak task completions into QX score 2026-07-07 20:45:30 +00:00
Sai-karthik
6eeaf50423 Fix QX fallback dimension initialization 2026-07-07 20:12:10 +00:00
Sai-karthik
4b0bf4379f Fix QX task impact registry initialization 2026-07-07 20:10:16 +00:00
Sai-karthik
6d996882bf Apply deterministic QX values to streak tasks 2026-07-07 20:06:48 +00:00
Sai-karthik
82859d8d08 Wire CareerSprint context into talk conversations 2026-07-07 09:37:59 +00:00
Sai-karthik
7b4f6f7d94 Merge pull request #16 system notifications backend 2026-07-06 12:31:03 +00:00
Sai-karthik
7142c8f7e8 PRM-88 use full service registry for KPI signals 2026-07-05 19:12:25 +00:00
122 changed files with 15813 additions and 3544 deletions

View File

@@ -23,6 +23,7 @@ MAX_AGENT_TOKENS=4096
# Shared secret for actor → backend service calls (rotate in prod)
SERVICE_TOKEN=dev-service-token-REPLACE_ME
A2A_ALLOWED_KEY=***********
SESSION_TICKET_SECRET=
# ── Central Gitea (shared org-wide, changes.md §2A) ──
# Public URL is used for Git remotes and must be reachable by OpenCode containers.

View File

@@ -36,7 +36,7 @@ Use the interview-service when the user wants any of the following:
Do not use interview-service for:
- Resume writing, tailoring, ATS optimization, resume scoring, resume bullet generation → Resume Agent.
- Salary negotiation, offer negotiation, workplace conversations, stakeholder conversations, manager conversations, networking roleplay, conflict practice → Roleplay Agent.
- Overall market-readiness/Q-score computation → Q Score Agent.
- Overall market-readiness/RQ Score computation → RQ Score Agent.
- General career advice without a concrete interview-practice, interview-review, or assignment action → general assistant unless the user chooses practice.
## Service capabilities from a client perspective

View File

@@ -1,21 +1,21 @@
---
id: qscore
name: Q Score Agent
role: Q Score Agent
name: RQ Score Agent
role: RQ Score Agent
service: qscore-service
tools: ["compute_qscore"]
---
# Q Score Agent
# RQ Score Agent
The Q Score Agent is GrowQR's API client for the `qscore-service`. It computes, refreshes, stores, and explains career-readiness scores from platform signals such as resume readiness, ATS strength, engagement, interview activity, roleplay activity, goal clarity, and role fit.
The RQ Score Agent is GrowQR's API client for the `qscore-service`. It computes, refreshes, stores, and explains career-readiness scores from platform signals such as resume readiness, ATS strength, engagement, interview activity, roleplay activity, goal clarity, and role fit.
Write from a service-client perspective. Do not reveal backend implementation details, formula internals, database mechanics, model providers, or internal prompts. Explain scores as directional readiness indicators, not absolute judgments.
## Primary intents
Use the Q Score service when the user wants to:
- Compute, refresh, view, or explain their Q Score.
Use the RQ Score service when the user wants to:
- Compute, refresh, view, or explain their RQ Score.
- Measure readiness before or after a mission, resume update, interview, roleplay, or assignment.
- Understand which readiness dimensions to improve next.
- Compare before/after progress snapshots.
@@ -31,7 +31,7 @@ Use the Q Score service when the user wants to:
## Service capabilities
- `POST /v1/signals:batch` — ingest readiness signals for a user and organization.
- `POST /v1/qscore/compute` — compute/refresh the Q Score using available signals and formula configuration.
- `POST /v1/qscore/compute` — compute/refresh the RQ Score using available signals and formula configuration.
- `GET /v1/qscore/{user_id}?org_id=growqr` — retrieve the latest score/snapshot when supported by the service.
## Signal normalization
@@ -39,15 +39,15 @@ Use the Q Score service when the user wants to:
Default launch signals to ingest when detailed service results are not yet available:
- `resume.uploaded`
- `resume.ats_compatibility`
- `interview.completed`
- `roleplay.completed`
- `goal.clarity`
- `profile.role_fit`
- `interview.sessions_completed`
- `roleplay.scenarios_completed`
- `onboarding.goals_clarity`
- `onboarding.profile_completeness`
When richer product outputs are available, prefer real scores, completion states, assignment outcomes, review feedback, timestamps, and target-role context over generic defaults.
Typical signal fields:
- `user_id`: stable user identifier expected by the Q Score service.
- `user_id`: stable user identifier expected by the RQ Score service.
- `org_id`: default `growqr` unless a current organization is provided.
- `signal_id`: event/dimension identifier such as `resume.ats_compatibility`.
- `value`: numeric, boolean, or categorical readiness value.
@@ -59,7 +59,7 @@ Typical signal fields:
1. If no recent signals exist, ingest the best available signals first.
2. Then call `POST /v1/qscore/compute`.
3. If the service returns `404 No signals found for this user`, explain that readiness needs source activity first and suggest the quickest signal-producing action, such as resume analysis, interview practice, or roleplay practice.
4. If formula configuration is unavailable or compute fails, do not invent an official Q Score. You may summarize available signals as a non-official readiness estimate only if clearly labeled.
4. If formula configuration is unavailable or compute fails, do not invent an official RQ Score. You may summarize available signals as a non-official readiness estimate only if clearly labeled.
## Explanation strategy

View File

@@ -27,7 +27,7 @@ Use the resume service when the user wants to:
- Mock interviews, interview practice, interview assignments, or interview reviews → Interview Agent.
- Workplace/salary roleplay, recruiter calls, manager conversations, networking, sales/support practice → Roleplay Agent.
- Career readiness scoring, score deltas, or readiness dimensions → Q Score Agent.
- Career readiness scoring, score deltas, or readiness dimensions → RQ Score Agent.
- Job search/application execution; GrowQR production modules currently focus on readiness, practice, resume, and scoring.
## Service capabilities

View File

@@ -25,7 +25,7 @@ Use the roleplay service when the user wants to:
- Mock job interviews, interview rounds, interview question practice → Interview Agent.
- Resume creation, tailoring, ATS optimization, cover letters, resume exports → Resume Agent.
- Career readiness scoring or score deltas → Q Score Agent.
- Career readiness scoring or score deltas → RQ Score Agent.
- General career advice without a practice scenario → general Grow Agent unless the user asks to rehearse.
## Service capabilities
@@ -59,7 +59,7 @@ Required/typical fields:
- `roleplay_type`: one of `sales`, `customer_success`, `support`, `custom`.
- `brief`: concise scenario brief, including user's goal, counterpart, stakes, likely objections, and desired outcome.
- `metadata`: structured context such as `target_role`, `company`, `difficulty`, `conversation_type`, `source`, assignment IDs, or workflow IDs.
- `qscore`: include only when available; if supplied, it must contain numeric `q_score`.
- `qscore`: include only when available; if supplied, it must contain numeric `rq_score`.
Mapping rules:
- Salary negotiation, offer negotiation, recruiter calls, manager conversations, promotion talks, networking, and workplace conflict → `roleplay_type: custom`.

View File

@@ -5,5 +5,47 @@ services:
backend:
extra_hosts:
- "host.docker.internal:host-gateway"
networks:
default:
interview-service:
roleplay-service:
resume-builder-staging:
course-service:
qscore-service-staging:
matchmaking-v2-staging:
user-service-staging:
environment:
SOCIAL_BRANDING_SERVICE_URL: http://host.docker.internal:8015
DATABASE_URL: postgres://growqr:growqr@growqr-postgres:5432/growqr
RESUME_SERVICE_URL: http://growqr_resume_api:8000
SOCIAL_BRANDING_SERVICE_URL: http://host.docker.internal:18015
SOCIAL_BRANDING_PUBLIC_URL: https://social-staging.gqr.puter.wtf
PRODUCT_SERVICE_TIMEOUT_MS: 10000
PRODUCT_INTERACTIVE_SERVICE_TIMEOUT_MS: 240000
LLM_PROVIDER: opencode
LLM_BASE_URL: https://opencode.ai/zen/v1
LLM_MODEL: kimi-k2.6
GROW_AGENT_MODEL: kimi-k2.6
CONVERSATION_ACTOR_MODEL: kimi-k2.6
networks:
interview-service:
external: true
name: interview-service_default
roleplay-service:
external: true
name: roleplay-service_default
resume-builder-staging:
external: true
name: resume-builder-staging_default
course-service:
external: true
name: course-service_default
qscore-service-staging:
external: true
name: qscore-service-staging_default
matchmaking-v2-staging:
external: true
name: matchmaking-v2_default
user-service-staging:
external: true
name: user-service-staging_default

View File

@@ -9,7 +9,7 @@ services:
POSTGRES_PASSWORD: ${POSTGRES_PASSWORD:-growqr}
POSTGRES_DB: ${POSTGRES_DB:-growqr}
ports:
- "5432:5432"
- "127.0.0.1:15445:5432"
volumes:
- postgres-data:/var/lib/postgresql/data
healthcheck:
@@ -33,8 +33,8 @@ services:
GITEA__security__INSTALL_LOCK: "true"
GITEA__service__DISABLE_REGISTRATION: "true"
ports:
- "3001:3000" # HTTP (Gitea listens on 3000 internally)
- "2222:2222" # SSH
- "127.0.0.1:13001:3000" # HTTP (Gitea listens on 3000 internally)
- "127.0.0.1:12222:2222" # SSH
volumes:
- gitea-data:/data
healthcheck:
@@ -50,8 +50,8 @@ services:
image: rivetdev/engine:latest
container_name: growqr-rivet
ports:
- "6420:6420" # API
- "6421:6421" # Guard/edge
- "127.0.0.1:16420:6420" # API
- "127.0.0.1:16421:6421" # Guard/edge
environment:
RIVET__FILE_SYSTEM__PATH: /data
RIVET__AUTH__ADMIN_TOKEN: ${RIVET_ADMIN_TOKEN:-dev-admin-token}
@@ -74,7 +74,7 @@ services:
rivet-engine:
condition: service_started
ports:
- "4000:4000"
- "127.0.0.1:18012:4000"
environment:
PORT: 4000
NODE_ENV: ${NODE_ENV:-production}
@@ -97,8 +97,9 @@ services:
# Auth
CLERK_SECRET_KEY: ${CLERK_SECRET_KEY}
CLERK_PUBLISHABLE_KEY: ${CLERK_PUBLISHABLE_KEY}
SERVICE_TOKEN: ${SERVICE_TOKEN:-dev-service-token}
A2A_ALLOWED_KEY: ${A2A_ALLOWED_KEY:-dev-a2a-key}
SERVICE_TOKEN: ${SERVICE_TOKEN:-}
SESSION_TICKET_SECRET: ${SESSION_TICKET_SECRET:?SESSION_TICKET_SECRET must be set}
A2A_ALLOWED_KEY: ${A2A_ALLOWED_KEY:-}
# LLM
OPENCODE_API_KEY: ${OPENCODE_API_KEY}
LLM_PROVIDER: ${LLM_PROVIDER:-opencode}
@@ -122,6 +123,8 @@ services:
COURSES_SERVICE_URL: ${COURSES_SERVICE_URL:-http://host.docker.internal:8060}
ASSESSMENT_SERVICE_URL: ${ASSESSMENT_SERVICE_URL:-http://host.docker.internal:8070}
MATCHMAKING_SERVICE_URL: ${MATCHMAKING_SERVICE_URL:-http://host.docker.internal:8006}
SOCIAL_BRANDING_SERVICE_URL: ${SOCIAL_BRANDING_SERVICE_URL:-http://host.docker.internal:8011}
SOCIAL_BRANDING_PUBLIC_URL: ${SOCIAL_BRANDING_PUBLIC_URL:-http://host.docker.internal:8011}
PATHWAYS_SERVICE_URL: ${PATHWAYS_SERVICE_URL:-http://host.docker.internal:8009}
# Frontend
FRONTEND_ORIGIN: ${FRONTEND_ORIGIN:-http://localhost:3000}

View File

@@ -0,0 +1,13 @@
ALTER TABLE "users" ADD COLUMN IF NOT EXISTS "plan" text DEFAULT 'free' NOT NULL;
CREATE TABLE IF NOT EXISTS "onboarding" (
"id" text PRIMARY KEY DEFAULT gen_random_uuid()::text NOT NULL,
"user_id" text NOT NULL,
"data" jsonb DEFAULT '{}'::jsonb NOT NULL,
"payload" jsonb DEFAULT '{}'::jsonb NOT NULL,
"created_at" timestamp with time zone DEFAULT now() NOT NULL,
"updated_at" timestamp with time zone DEFAULT now() NOT NULL,
CONSTRAINT "onboarding_user_id_users_id_fk" FOREIGN KEY ("user_id") REFERENCES "users"("id") ON DELETE cascade ON UPDATE no action
);
CREATE UNIQUE INDEX IF NOT EXISTS "onboarding_user_idx" ON "onboarding" USING btree ("user_id");

View File

@@ -0,0 +1,4 @@
-- Session external ids are only unique within a user's service namespace.
DROP INDEX IF EXISTS mission_service_sessions_external_idx;
CREATE UNIQUE INDEX IF NOT EXISTS mission_service_sessions_external_idx
ON mission_service_sessions(user_id, service_id, external_id);

View File

@@ -0,0 +1,21 @@
CREATE TABLE IF NOT EXISTS "event_outbox" (
"id" text PRIMARY KEY DEFAULT gen_random_uuid()::text NOT NULL,
"topic" text NOT NULL,
"aggregate_id" text NOT NULL,
"destination" text NOT NULL,
"payload" jsonb NOT NULL,
"headers" jsonb DEFAULT '{}'::jsonb NOT NULL,
"status" text DEFAULT 'pending' NOT NULL,
"attempts" integer DEFAULT 0 NOT NULL,
"available_at" timestamp with time zone DEFAULT now() NOT NULL,
"locked_at" timestamp with time zone,
"published_at" timestamp with time zone,
"last_error" text,
"response" jsonb,
"created_at" timestamp with time zone DEFAULT now() NOT NULL,
"updated_at" timestamp with time zone DEFAULT now() NOT NULL,
CONSTRAINT "event_outbox_status_check" CHECK ("status" IN ('pending', 'processing', 'published'))
);
CREATE INDEX IF NOT EXISTS "event_outbox_delivery_idx" ON "event_outbox" USING btree ("status", "available_at");
CREATE UNIQUE INDEX IF NOT EXISTS "event_outbox_topic_aggregate_idx" ON "event_outbox" USING btree ("topic", "aggregate_id");

View File

@@ -0,0 +1,2 @@
ALTER TABLE "qscore_snapshots"
RENAME COLUMN "score" TO "rq_score";

View File

@@ -92,6 +92,34 @@
"when": 1780481700000,
"tag": "0012_system_notifications",
"breakpoints": true
},
{
"idx": 13,
"version": "7",
"when": 1783801800000,
"tag": "0013_onboarding",
"breakpoints": true
},
{
"idx": 14,
"version": "7",
"when": 1784024806000,
"tag": "0014_session_identity_user_scope",
"breakpoints": true
},
{
"idx": 15,
"version": "7",
"when": 1783987200000,
"tag": "0015_event_outbox",
"breakpoints": true
},
{
"idx": 16,
"version": "7",
"when": 1784010000000,
"tag": "0016_rq_score_snapshot",
"breakpoints": true
}
]
}

6394
package-lock.json generated Normal file

File diff suppressed because it is too large Load Diff

View File

@@ -10,6 +10,16 @@
"test:missions": "tsx scripts/mission-lifecycle.test.ts",
"test:passive-actions": "tsx scripts/passive-actions.test.ts",
"test:curator-static": "tsx scripts/curator-static-registry.test.ts",
"test:curator-reconcile": "tsx scripts/curator-persisted-reconcile.test.ts",
"test:qscore-raw-events": "tsx scripts/qscore-raw-event-contract.test.ts",
"test:rq-score-contract": "tsx scripts/rq-score-contract.test.ts",
"test:home-insight-snapshot": "tsx scripts/home-insight-snapshot.test.ts",
"test:career-report": "tsx scripts/career-report.test.ts",
"test:onboarding-read": "tsx scripts/onboarding-rev10-read.test.ts",
"test:interview-user-identity": "tsx scripts/interview-user-identity.test.ts",
"test:ws-ticket": "tsx scripts/ws-ticket.test.ts",
"test:roleplay-drafts": "tsx scripts/roleplay-drafts.test.ts",
"test:resume-gateway": "tsx scripts/resume-gateway.test.ts",
"start": "node dist/index.js",
"typecheck": "tsc -p tsconfig.json --noEmit",
"workflows:smoke": "tsx src/workflows/smoke-test.ts",
@@ -20,8 +30,10 @@
"db:generate": "drizzle-kit generate",
"db:migrate": "tsx src/db/migrate.ts",
"db:studio": "drizzle-kit studio",
"compose:up": "docker compose up -d",
"compose:down": "docker compose down",
"compose:up": "scripts/staging-compose.sh up",
"compose:down": "scripts/staging-compose.sh down",
"staging:preflight": "scripts/staging-compose.sh preflight",
"staging:verify": "scripts/staging-compose.sh verify",
"docker:opencode:build": "docker build --build-arg GROWQR_IMAGE_VERSION=${OPENCODE_IMAGE_VERSION:-dev} --build-arg GROWQR_PROMPT_VERSION=${PROMPT_VERSION:-4} --build-arg GROWQR_MIGRATION_VERSION=${MIGRATION_VERSION:-1} -f docker/opencode/Dockerfile -t growqr/opencode:dev ."
},
"dependencies": {

View File

@@ -1,24 +0,0 @@
# Curator V1 Conversation Prompt
You are currently speaking as the GrowQR V1 Curator through the Conversation Actor.
## Responsibilities
- Own 30 day direction, streak continuity, and service handoff decisions.
- Carry state from the conversation history and captured task memory.
- If the user gives a short answer like a role name, accept it and ask for the next missing slot.
## Guardrails
- Do not ask the same question twice.
- Do not output checklist items as separate baked chat messages.
- Never say: What should I capture next.
- Do not ask about another subtask, another mission, another service, or a later checklist item from this modal.
- When the user has answered the focused subtask enough, summarize what was captured and stop.
- If more detail is needed, ask exactly one follow-up question for the focused subtask only.
- Use captured task memory from previous subtasks as context. Do not ask the user to repeat details already captured there.
## Task Guidance
- For target-role tasks, collect target role, current background, constraints, then offer a resume or interview handoff.
- For service work, prepare preview-oriented handoffs once the focused subtask has enough context.
- Interview preview defaults: type behavioral, difficulty medium, duration 5.
- Roleplay preview should open the builder as the preview surface.
- Keep the tone concise, warm, and practical.

View File

@@ -1,28 +0,0 @@
# Curator Streak Chat Prompt
You are the GrowQR V1 Curator in a daily or weekly streak chat modal.
Your job is to move the user from a focused streak suggestion to a service preview CTA quickly. The dashboard renders the actual CTA card, so your chat text must never include internal URLs, route names, API paths, setup paths, JSON, or tool names.
## Conversation Rules
- Focus only on the clicked subtask.
- Ask at most one clarifying question before a handoff is ready.
- If the target role is known from onboarding, do not ask for it again.
- If no target role is known and the service is interview or roleplay, ask exactly: `What role are you targeting?`
- If the user gives a vague answer after one question, use your best guess and proceed.
- When enough context exists, summarize the captured intent in one short sentence and stop.
- Do not ask the next subtask question.
- Do not mention setup screens, preview URLs, backend services, actors, tools, or route paths.
- Use ASCII punctuation only.
## Service Defaults
- Interview defaults: `type=behavioral`, `difficulty=medium`, `duration=5`.
- Roleplay defaults: custom scenario, `difficulty=medium`, `duration=5`.
- Prefer onboarding-derived role when available.
- If no role is available after the single follow-up, use `Product Manager` as the MVP fallback.
## Tone
Be concise, calm, and action-oriented. The user should feel like the preview is prepared, not like they are filling out a form.

View File

@@ -43,7 +43,7 @@ You coordinate specialist capabilities (loaded as tools), maintain durable state
- After resume optimization: ask what type of interview to prepare.
- When they choose type → call start_interview_session.
- Then offer roleplay → call start_roleplay_session when they confirm.
- Then offer Q Score → call compute_qscore.
- Then offer RQ Score → call compute_qscore.
- Use [WORKFLOW: interview-to-offer] tag throughout.
## IMPORTANT: Tool Calling Anti-Patterns

View File

@@ -0,0 +1,264 @@
import assert from "node:assert/strict";
import {
buildCareerReportProjection,
parseCareerReportDisplay,
type CareerReportActivity,
} from "../src/v1/analytics/career-report.js";
import type { HomeInsightSnapshots, InsightSnapshot } from "../src/v1/analytics/home-insight-snapshot.js";
import type { QscoreProxyResult } from "../src/services/qscore-proxy.js";
const categorySpecs = [
["learning_credentials", "Learning & Credentials"],
["resume_presence", "Resume Presence"],
["linkedin_presence", "LinkedIn Presence"],
["matching_activity", "Matching Activity"],
["interview_performance", "Interview Performance"],
["pathway_progress", "Pathway Progress"],
["roleplay_performance", "Roleplay Performance"],
["engagement_consistency", "Engagement & Consistency"],
["goals_readiness", "Goals & Readiness"],
];
function displayFixture() {
let signalIndex = 0;
const categories = categorySpecs.map(([id, label], categoryIndex) => {
const count = categoryIndex === categorySpecs.length - 1 ? 3 : 8;
const signals = Array.from({ length: count }, () => {
const index = signalIndex++;
return { id: `signal.${index}`, label: `Signal ${index}`, present: index < 4, score: index < 4 ? 50 : 0 };
});
return {
id,
label,
input_ids: [`input_${categoryIndex}`],
weight_percent: 10,
score: signals.some((signal) => signal.present) ? 50 : 0,
active: signals.some((signal) => signal.present),
present_rules: signals.filter((signal) => signal.present).length,
total_rules: signals.length,
signals,
};
});
return {
version: "rq-score-display-v1",
registered_signal_count: 67,
active_signal_count: 4,
categories,
};
}
function metric(overrides: Partial<InsightSnapshot> = {}): InsightSnapshot {
return {
status: "empty",
source: "fixture",
value: 0,
unit: "count",
label: "Fixture",
updatedAt: null,
reason: "no_evidence",
detail: null,
...overrides,
};
}
const snapshots: HomeInsightSnapshots = {
rqScore: metric({ status: "ready", source: "qscore.current", value: 61, reason: null }),
interview: metric({ source: "interview.page-state" }),
resume: metric({ status: "ready", source: "resume.state", value: 72, reason: null }),
opportunity: metric({ source: "matchmaking.scout-stats" }),
pathway: metric({ status: "unsupported", source: "qscore.breakdown.display", value: null, reason: "pathway_signal_contract_missing" }),
socialBrand: metric({ source: "social.state" }),
roleplay: metric({ source: "roleplay.page-state" }),
learning: metric({ source: "courses.course-state" }),
skillGap: metric({ source: "assessment.list" }),
};
const qscore: QscoreProxyResult = {
org_id: "growqr",
user_id: "00000000-0000-4000-8000-000000000000",
rq_score: 61,
iq_score: null,
eq_score: null,
sq_score: null,
profession: "",
formula_version: "v2",
formula_id: "fixture",
calculated_at: "2026-07-16T00:00:00Z",
quotients: {},
breakdown: { display: displayFixture() },
ledger_seq_from: null,
ledger_seq_to: null,
};
const activity: CareerReportActivity = {
windowDays: 14,
totalEvents: 0,
completedEvents: 0,
openedEvents: 0,
services: [],
opportunityEvents: 0,
};
const producerStatuses = {
interview: { status: "ready" as const, reason: null },
roleplay: { status: "ready" as const, reason: null },
resume: { status: "ready" as const, reason: null },
linkedin: { status: "ready" as const, reason: null },
matchmaking: { status: "ready" as const, reason: null },
courses: { status: "ready" as const, reason: null },
assessment: { status: "ready" as const, reason: null },
};
const report = buildCareerReportProjection({
generatedAt: "2026-07-16T01:00:00Z",
profile: {
status: "ready",
data: {
first_name: "Ada",
last_name: "Lovelace",
avatar_url: "https://images.example/ada.png",
updated_at: "2026-07-15T22:00:00Z",
preferences: {
onboarding: {
progress: { updated_at: "2026-07-15T23:00:00Z" },
responses: {
target_role: "Platform Engineer",
target_field: "Technology",
experience_level: "3-5 years",
current_situation: "employed",
desired_outcomes: ["Move into platform engineering"],
career_barriers: [],
},
},
},
},
},
qscore: { status: "ready", data: qscore },
qscoreHistory: { status: "ready", data: [{ date: "2026-07-15", rq_score: 61 }] },
snapshots,
producerStatuses,
activity,
});
assert.equal(report.contractVersion, "career-report-v1");
assert.deepEqual(report.subject.displayName, {
status: "ready",
source: "user-service.profile",
value: "Ada Lovelace",
updatedAt: "2026-07-15T22:00:00Z",
reason: null,
});
assert.equal(report.subject.targetRole.value, "Platform Engineer");
assert.equal(report.subject.barriers.status, "empty");
assert.deepEqual(report.subject.barriers.value, []);
assert.equal(report.rqScore.score.value, 61);
assert.equal(report.rqScore.display.status, "ready");
assert.equal(report.rqScore.display.value?.registeredSignalCount, 67);
assert.equal(report.rqScore.display.value?.categories.length, 9);
assert.deepEqual(report.activity.value, activity);
assert.equal(report.sources.find((source) => source.id === "grow_events")?.status, "ready");
const malformed = structuredClone(displayFixture());
malformed.registered_signal_count = 66;
assert.equal(parseCareerReportDisplay(malformed), null, "mislabelled canonical display must be rejected");
const reportWithMalformedDisplay = buildCareerReportProjection({
profile: { status: "ready", data: {} },
qscore: { status: "ready", data: { ...qscore, breakdown: { display: malformed } } },
qscoreHistory: { status: "ready", data: [] },
snapshots,
producerStatuses,
activity,
});
assert.equal(reportWithMalformedDisplay.rqScore.display.status, "unavailable");
assert.equal(reportWithMalformedDisplay.rqScore.display.value, null);
assert.equal(reportWithMalformedDisplay.rqScore.display.reason, "display_contract_invalid");
const reportWithoutDisplay = buildCareerReportProjection({
profile: { status: "ready", data: {} },
qscore: { status: "ready", data: { ...qscore, breakdown: {} } },
qscoreHistory: { status: "ready", data: [] },
snapshots,
producerStatuses,
activity,
});
assert.equal(reportWithoutDisplay.rqScore.display.status, "unsupported");
assert.equal(reportWithoutDisplay.rqScore.display.value, null);
assert.equal(reportWithoutDisplay.rqScore.display.reason, "display_contract_missing");
const wrongCategoryId = structuredClone(displayFixture());
wrongCategoryId.categories[0].id = "not_a_canonical_category";
assert.equal(parseCareerReportDisplay(wrongCategoryId), null, "wrong category ids must be rejected");
const wrongCategoryOrder = structuredClone(displayFixture());
[wrongCategoryOrder.categories[0], wrongCategoryOrder.categories[1]] = [wrongCategoryOrder.categories[1], wrongCategoryOrder.categories[0]];
assert.equal(parseCareerReportDisplay(wrongCategoryOrder), null, "canonical categories out of order must be rejected");
const outOfRangeCategoryScore = structuredClone(displayFixture());
outOfRangeCategoryScore.categories[0].score = 101;
assert.equal(parseCareerReportDisplay(outOfRangeCategoryScore), null, "category scores above 100 must be rejected");
const outOfRangeSignalScore = structuredClone(displayFixture());
outOfRangeSignalScore.categories[0].signals[0].score = -1;
assert.equal(parseCareerReportDisplay(outOfRangeSignalScore), null, "signal scores below zero must be rejected");
const outOfRangeWeight = structuredClone(displayFixture());
outOfRangeWeight.categories[0].weight_percent = 101;
assert.equal(parseCareerReportDisplay(outOfRangeWeight), null, "category weights above 100 must be rejected");
const duplicatedSignal = structuredClone(displayFixture());
duplicatedSignal.categories[1].signals[0].id = duplicatedSignal.categories[0].signals[0].id;
assert.equal(parseCareerReportDisplay(duplicatedSignal), null, "signals assigned more than once must be rejected");
const categoryCountMismatch = structuredClone(displayFixture());
categoryCountMismatch.categories[0].present_rules += 1;
assert.equal(parseCareerReportDisplay(categoryCountMismatch), null, "category count mismatches must be rejected");
const malformedOnboarding = buildCareerReportProjection({
profile: {
status: "ready",
data: {
preferences: {
onboarding: {
responses: {
target_role: 42,
desired_outcomes: ["Real goal", 7],
},
},
},
},
},
qscore: { status: "ready", data: qscore },
qscoreHistory: { status: "ready", data: [] },
snapshots,
producerStatuses,
activity,
});
assert.equal(malformedOnboarding.subject.targetRole.status, "unavailable");
assert.equal(malformedOnboarding.subject.targetRole.value, null);
assert.equal(malformedOnboarding.subject.targetRole.reason, "producer_response_invalid");
assert.equal(malformedOnboarding.subject.goals.status, "unavailable");
assert.equal(malformedOnboarding.subject.goals.value, null);
assert.equal(malformedOnboarding.subject.barriers.status, "empty", "missing optional arrays remain confirmed empty");
assert.deepEqual(malformedOnboarding.subject.barriers.value, []);
const unavailable = buildCareerReportProjection({
profile: { status: "unavailable", reason: "profile_unavailable" },
qscore: { status: "unavailable", reason: "request_failed" },
qscoreHistory: { status: "unavailable", reason: "request_failed" },
snapshots: Object.fromEntries(
Object.keys(snapshots).map((key) => [key, metric({ status: "unavailable", value: null, reason: "producer_unavailable" })]),
) as HomeInsightSnapshots,
producerStatuses: Object.fromEntries(
Object.keys(producerStatuses).map((key) => [key, { status: "unavailable", reason: "producer_unavailable" }]),
) as typeof producerStatuses,
activity,
});
assert.equal(unavailable.subject.displayName.status, "unavailable");
assert.equal(unavailable.subject.displayName.value, null);
assert.equal(unavailable.rqScore.score.status, "unavailable");
assert.equal(unavailable.rqScore.score.value, null);
assert.equal(unavailable.rqScore.history.value, null);
assert.equal(unavailable.rqScore.display.value, null);
console.log("career report contract: ok");

View File

@@ -0,0 +1,24 @@
import assert from "node:assert/strict";
import { canonicalGrowEventEnvelope } from "../src/events/record-grow-event.js";
import { normalizeGrowEvent } from "../src/events/normalize.js";
/** Bare completions stay bare. QScore may aggregate them as real events, but
* the backend must never invent session_count/scenario_count or a score. */
for (const [source, type] of [
["interview-service", "interview.session.completed"],
["roleplay-service", "roleplay.scenario.completed"],
] as const) {
const event = canonicalGrowEventEnvelope(normalizeGrowEvent({
id: `event-${type}`,
source,
type,
category: "service",
occurredAt: "2026-07-14T00:00:00.000Z",
payload: {},
}), "real-user");
assert.deepEqual(event.payload, {});
assert.equal("score" in event.payload as object, false);
assert.equal("session_count" in event.payload as object, false);
assert.equal("scenario_count" in event.payload as object, false);
}
console.log("no count fallback tests passed");

View File

@@ -0,0 +1,30 @@
import assert from "node:assert/strict";
import { serviceRoutes } from "../src/routes/services.js";
const originalFetch = globalThis.fetch;
const calls: Array<{ url: string; body: Record<string, unknown> }> = [];
globalThis.fetch = (async (input, init) => {
const body = JSON.parse(String(init?.body ?? "{}")) as Record<string, unknown>;
calls.push({ url: String(input), body });
return new Response(JSON.stringify({ task_id: "a2a-task", status: "completed", messages: [] }), { status: 200, headers: { "content-type": "application/json" } });
}) as typeof fetch;
const app = serviceRoutes({ skipAuth: true });
try {
const courseResponse = await app.request("http://backend.test/courses/a2a?missionId=mission-1&missionInstanceId=instance-1&stageId=stage-1&curatorTaskId=task-1", { method: "POST", headers: { "content-type": "application/json" }, body: JSON.stringify({ action: "record_swipe", params: { video_id: "video-1", anchor_id: "anchor-1" } }) });
assert.equal(courseResponse.status, 200);
assert.ok(calls[0]?.url.endsWith("/a2a/tasks"));
assert.equal(calls[0]?.body.user_id, "user_test");
const params = calls[0]?.body.params as Record<string, unknown>;
assert.equal(params.missionId, "mission-1");
assert.equal(params.missionInstanceId, "instance-1");
assert.equal(params.stageId, "stage-1");
assert.equal(params.curatorTaskId, "task-1");
calls.length = 0;
const matchmakingResponse = await app.request("http://backend.test/matchmaking/a2a", { method: "POST", headers: { "content-type": "application/json" }, body: JSON.stringify({ action: "mark_applied", params: { opportunity_id: "job-1" } }) });
assert.equal(matchmakingResponse.status, 200);
assert.ok(calls[0]?.url.endsWith("/a2a/tasks"));
} finally {
globalThis.fetch = originalFetch;
}
console.log("course-matchmaking HTTP route tests passed");

View File

@@ -0,0 +1,58 @@
import assert from "node:assert/strict";
import { planSeedsForVariant, resolveCuratorSprintAccess } from "../src/v1/curator/curator-store.js";
import { templateSetFor, trialDaysFor } from "../src/v1/curator/task-registry.js";
const variant = "fresher_early_professional" as const;
const template = templateSetFor(variant);
const trial = trialDaysFor(variant);
// Persisted choice is authoritative within the user's entitlement: a paid user
// may choose trial, but a free user may not self-upgrade through "full".
assert.deepEqual(resolveCuratorSprintAccess({ accessChoice: "trial", plan: "pro" }), {
access: "trial",
durationDays: 2,
});
assert.deepEqual(resolveCuratorSprintAccess({ accessChoice: "full", plan: "pro" }), {
access: "full",
durationDays: 7,
});
assert.deepEqual(resolveCuratorSprintAccess({ accessChoice: "full", plan: "free" }), {
access: "trial",
durationDays: 2,
});
assert.deepEqual(resolveCuratorSprintAccess({ plan: "pro" }), {
access: "full",
durationDays: 7,
});
assert.deepEqual(resolveCuratorSprintAccess({ plan: "free" }), {
access: "trial",
durationDays: 2,
});
const trialDays = planSeedsForVariant(template, "2026-07-13", 2, "trial");
assert.deepEqual(
trialDays[0]?.plannedTasks.map((task) => task.title),
[trial[0]!.socialTitle, trial[0]!.measurementTitle, trial[0]!.proofTitle, trial[0]!.practiceTitle],
"trial Day 1 must use the ICP trial registry",
);
assert.deepEqual(
trialDays[1]?.plannedTasks.map((task) => task.title),
[trial[1]!.socialTitle, trial[1]!.measurementTitle, trial[1]!.proofTitle, trial[1]!.practiceTitle],
"trial Day 2 must use the ICP trial registry",
);
const fullDays = planSeedsForVariant(template, "2026-07-13", 7, "full");
assert.equal(fullDays.length, 7);
assert.deepEqual(
fullDays[0]?.plannedTasks.map((task) => task.title),
[
template.weeks[0]!.days[0]!.measurement.title,
template.weeks[0]!.days[0]!.proof.title,
template.weeks[0]!.days[0]!.practice.title,
template.weeks[0]!.days[0]!.roleplay!.title,
],
"authorized full Day 1 must use the normal 7-day registry",
);
assert.equal(fullDays[0]?.isTrialDay, false);
console.log("curator access-choice tests passed");

View File

@@ -0,0 +1,20 @@
import assert from "node:assert/strict";
import { allowsDirectServiceCompletion } from "../src/v1/curator/curator-actor.js";
import { v1CuratorRoutes } from "../src/v1/curator/curator-routes.js";
assert.equal(
allowsDirectServiceCompletion(undefined, "matchmaking_matches_reviewed"),
false,
"a recovered or arbitrary task ID must not bypass exact Curator task lookup",
);
assert.equal(allowsDirectServiceCompletion("matchmaking-service", "matchmaking_matches_reviewed"), true);
assert.equal(allowsDirectServiceCompletion("qscore-service", "qscore_review_opened"), true);
assert.equal(allowsDirectServiceCompletion("resume-service", "resume_uploaded"), false);
const serviceImpactRoute = v1CuratorRoutes().routes.find(
(route) => route.method === "POST" && route.path === "/events/service-impact",
);
assert.equal(serviceImpactRoute, undefined, "the false-positive service-impact compatibility route must not be exposed");
console.log("curator direct-completion policy tests passed");
process.exit(0);

View File

@@ -0,0 +1,98 @@
import assert from "node:assert/strict";
import { readFileSync } from "node:fs";
import {
curatorSprintPlanFingerprint,
curatorSprintTaskPlan,
decideCuratorSprintReconciliation,
resolveCuratorSprintAccess,
shouldReconcileCuratorSprint,
shouldRebaseCuratorSprintForOnboardingContext,
} from "../src/v1/curator/curator-store.js";
import { templateSetFor, trialDaysFor } from "../src/v1/curator/task-registry.js";
const usersRoute = readFileSync(new URL("../src/routes/users.ts", import.meta.url), "utf8");
const ledgerSource = readFileSync(new URL("../src/events/onboarding-ledger.ts", import.meta.url), "utf8");
const patchStart = usersRoute.indexOf('app.patch("/onboarding"');
const persistIndex = usersRoute.indexOf("const updateRes = await fetchUserService", patchStart);
const completionIndex = usersRoute.indexOf("recordAndProcessOnboardingCompletion", persistIndex);
assert.ok(persistIndex >= patchStart, "PATCH /onboarding must persist preferences");
assert.ok(completionIndex > persistIndex, "PATCH /onboarding must run completion reconciliation after persistence");
const completionCall = usersRoute.slice(completionIndex, completionIndex + 500);
assert.match(completionCall, /preferences: nextPreferences/,
"PATCH completion must pass freshly persisted preferences");
assert.match(completionCall, /onboarding: nextData/,
"PATCH completion must pass freshly persisted onboarding choice");
assert.match(ledgerSource, /ensureOnboardingSideEffectsForEvent\(event, context\)/,
"deduped completion processing must forward fresh context to curator loop");
// persisted chooser is changed to trial. The stale started event must not be
// treated as final; the next load must deterministically use trial/2.
const staleFull = { access: "full" as const, durationDays: 7 as const };
const desiredTrial = resolveCuratorSprintAccess({ plan: "pro", accessChoice: "trial" });
assert.deepEqual(desiredTrial, { access: "trial", durationDays: 2 });
assert.equal(shouldReconcileCuratorSprint(staleFull, desiredTrial), true);
// A matching trial event is idempotent and must not create a replacement
// started/ready lineage on repeated completion processing.
const existingTrial = { access: "trial" as const, durationDays: 2 as const };
assert.deepEqual(decideCuratorSprintReconciliation(staleFull, desiredTrial), {
action: "invalidateAndRebuild",
access: "trial",
durationDays: 2,
});
assert.equal(shouldReconcileCuratorSprint(existingTrial, desiredTrial), false);
assert.equal(shouldReconcileCuratorSprint(existingTrial, resolveCuratorSprintAccess({ plan: "pro", accessChoice: "trial" })), false);
// Full is entitlement-gated: a free user cannot escalate by choosing full.
const unauthorizedFull = resolveCuratorSprintAccess({ plan: "free", accessChoice: "full" });
assert.deepEqual(unauthorizedFull, { access: "trial", durationDays: 2 });
assert.equal(shouldReconcileCuratorSprint(existingTrial, unauthorizedFull), false);
const startDate = "2026-07-13";
const studentFingerprint = curatorSprintPlanFingerprint({ startDate, variantId: "student_recent_grad", durationDays: 2, access: "trial" });
const experiencedFingerprint = curatorSprintPlanFingerprint({ startDate, variantId: "experienced_professional", durationDays: 2, access: "trial" });
const experiencedPlan = curatorSprintTaskPlan({ startDate, variantId: "experienced_professional", durationDays: 2, access: "trial" });
assert.equal(
shouldRebaseCuratorSprintForOnboardingContext({
existingStartDate: "2026-07-14",
focusDate: "2026-07-15",
onboardingContextProvided: true,
existingCompatible: true,
}),
false,
"a normal sprint read with onboarding context must preserve the active sprint across days",
);
assert.equal(
shouldRebaseCuratorSprintForOnboardingContext({
existingStartDate: "2026-07-14",
focusDate: "2026-07-15",
onboardingContextProvided: true,
existingCompatible: false,
}),
true,
"changed onboarding compatibility may replace the existing sprint without resetting its calendar identity",
);
assert.notEqual(studentFingerprint, experiencedFingerprint, "ICP changes must change the compatibility fingerprint");
assert.equal(shouldReconcileCuratorSprint(
{ access: "trial", durationDays: 2, variantId: "student_recent_grad", planFingerprint: studentFingerprint },
{ access: "trial", durationDays: 2, variantId: "experienced_professional", planFingerprint: experiencedFingerprint },
), true, "student started/ready lineage must reconcile to experienced trial");
const experiencedTrial = trialDaysFor("experienced_professional");
assert.deepEqual(experiencedPlan[0]?.tasks.map((task) => task.title), [
experiencedTrial[0]!.socialTitle,
experiencedTrial[0]!.measurementTitle,
experiencedTrial[0]!.proofTitle,
experiencedTrial[0]!.practiceTitle,
]);
assert.deepEqual(experiencedPlan[1]?.tasks.map((task) => task.title), [
experiencedTrial[1]!.socialTitle,
experiencedTrial[1]!.measurementTitle,
experiencedTrial[1]!.proofTitle,
experiencedTrial[1]!.practiceTitle,
]);
assert.equal(experiencedPlan[0]?.tasks.length, 4);
assert.equal(experiencedPlan[1]?.tasks.length, 4);
assert.deepEqual(experiencedPlan[0]?.tasks.map((task) => task.id), experiencedPlan[0]?.tasks.map((task) => task.id));
assert.equal(templateSetFor("experienced_professional").id, "experienced_professional");
console.log("curator onboarding reconciliation tests passed");

View File

@@ -0,0 +1,148 @@
import assert from "node:assert/strict";
import { eq, sql } from "drizzle-orm";
import { db } from "../src/db/client.js";
import { growEvents, onboarding, users } from "../src/db/schema.js";
import { buildCuratorSprint, curatorSprintTaskPlan } from "../src/v1/curator/curator-store.js";
import { runCuratorOnboardingLoop } from "../src/v1/curator/curator-onboarding-loop.js";
import { CURATOR_TRIAL_TASK_REGISTRY } from "../src/v1/curator/task-registry.js";
let databaseAvailable = Boolean(process.env.DATABASE_URL);
if (databaseAvailable) {
try {
await db.execute(sql`select 1`);
} catch {
databaseAvailable = false;
}
}
if (!databaseAvailable) {
console.log("curator persisted reconciliation integration skipped: DATABASE_URL is not reachable");
} else {
const userId = `curator-reconcile-regression-${Date.now()}`;
const startDate = new Date().toISOString().slice(0, 10);
const sprintId = `curator-sprint:icp-v10-static:${startDate}`;
const staleFingerprint = JSON.stringify({ variantId: "student_recent_grad", taskIds: [] });
const staleReadyPayload = {
sprintId,
startDate,
durationDays: 2,
access: "trial",
variantId: "student_recent_grad",
planFingerprint: staleFingerprint,
};
try {
await db.insert(users).values({ id: userId, email: `${userId}@example.test`, plan: "pro" });
await db.insert(onboarding).values({
userId,
data: {
status: "completed",
access_choice: "trial",
profile: { icp: "experienced" },
},
payload: {
onboarding_icp: "experienced",
curator_registry_icp: "experienced_professional",
},
});
await db.insert(growEvents).values([
{
userId,
source: "curator-v1",
type: "curator.sprint.started",
category: "mission",
occurredAt: new Date(),
dedupeKey: `${userId}:curator.sprint.started:stale`,
payload: {
sprintId,
startDate,
durationDays: 2,
access: "trial",
version: "icp-v10-static",
variantId: "student_recent_grad",
},
},
{
userId,
source: "curator-v1",
type: "curator.onboarding_plan.ready",
category: "mission",
occurredAt: new Date(),
dedupeKey: `${userId}:curator.onboarding_plan.ready:stale`,
payload: staleReadyPayload,
},
]);
const context = {
onboarding: { status: "completed", access_choice: "trial", profile: { icp: "experienced" } },
preferences: { onboarding: { status: "completed", access_choice: "trial", profile: { icp: "experienced" } } },
};
const first = await runCuratorOnboardingLoop({ userId, completedAt: `${startDate}T09:00:00.000Z`, context });
assert.equal(first.status, "ready", "stale ready event must be replaced");
const day1 = await buildCuratorSprint(userId, startDate);
assert.deepEqual(day1.plan.days[0]?.tasks.map(({ id, title }) => ({ id, title })),
expectedTasks(startDate, 1), "Day 1 must expose experienced trial tasks");
assert.deepEqual(day1.plan.days[1]?.tasks, [], "Day 1 must hide future Day 2 tasks");
const noCompletionDay2 = await buildCuratorSprint(userId, addDays(startDate, 1));
const noCompletionTitles = noCompletionDay2.plan.days[1]?.tasks.map((task) => task.title) ?? [];
assert.ok(noCompletionTitles.includes("Executive Leadership Interview"), "zero-completion Day 2 keeps experienced recovery behavior");
assert.ok(!noCompletionTitles.some((title) => ["Complete GrowQR Profile", "Career Baseline", "First AI Resume", "Self-Introduction"].includes(title)), "recovery must not reintroduce student tasks");
await db.insert(growEvents).values((day1.plan.days[0]?.tasks ?? []).map((task, index) => ({
userId,
source: "curator-v1",
type: "curator.task.completed",
category: "mission" as const,
occurredAt: new Date(Date.now() + index),
dedupeKey: `${userId}:curator.task.completed:${task.id}`,
payload: { taskId: task.id },
})));
const day2 = await buildCuratorSprint(userId, addDays(startDate, 1));
assert.deepEqual(day2.plan.days[1]?.tasks.map(({ id, title }) => ({ id, title })),
expectedTasks(startDate, 2), "completed Day 1 must expose exact experienced Day 2 registry tasks");
const second = await runCuratorOnboardingLoop({ userId, completedAt: `${startDate}T09:00:00.000Z`, context });
assert.equal(second.status, "already_ready", "compatible replacement ready event must be reused");
const rows = await db.select({ type: growEvents.type, payload: growEvents.payload })
.from(growEvents).where(eq(growEvents.userId, userId));
assert.equal(rows.filter((row) => row.type === "curator.sprint.invalidated").length, 1);
assert.equal(rows.filter((row) => row.type === "curator.onboarding_plan.invalidated").length, 1);
const starts = rows.filter((row) => row.type === "curator.sprint.started");
const readies = rows.filter((row) => row.type === "curator.onboarding_plan.ready");
assert.equal(starts.length, 2, "one stale and one replacement started lineage");
assert.equal(readies.length, 2, "one stale and one replacement ready lineage");
const replacementStart = starts.find((row) => row.payload?.variantId === "experienced_professional");
const replacementReady = readies.find((row) => row.payload?.planFingerprint === day1.plan.planFingerprint);
assert.ok(replacementStart, "experienced replacement started event must be persisted");
assert.ok(replacementReady, "experienced replacement ready event must be persisted");
console.log("curator persisted reconciliation integration passed");
} finally {
await db.delete(users).where(eq(users.id, userId));
await db.execute(sql`select 1`);
}
}
function addDays(date: string, days: number) {
const value = new Date(`${date}T00:00:00.000Z`);
value.setUTCDate(value.getUTCDate() + days);
return value.toISOString().slice(0, 10);
}
function expectedTasks(startDate: string, dayIndex: 1 | 2) {
const plan = curatorSprintTaskPlan({
startDate,
variantId: "experienced_professional",
durationDays: 2,
access: "trial",
});
const registry = CURATOR_TRIAL_TASK_REGISTRY.experienced_professional[dayIndex - 1]!;
return plan[dayIndex - 1]!.tasks.map(({ id }, index) => ({
id,
title: [registry.socialTitle, registry.measurementTitle, registry.proofTitle, registry.practiceTitle][index]!,
}));
}

View File

@@ -0,0 +1,20 @@
import assert from "node:assert/strict";
import { resolveProfileTaskPolicy } from "../src/v1/curator/streak-utils.js";
assert.deepEqual(
resolveProfileTaskPolicy({ resumeAvailable: true, linkedinAvailable: false }),
{ complete: false, serviceId: "social-branding-service" },
"a resume upload must not complete or reroute the LinkedIn profile task",
);
assert.deepEqual(
resolveProfileTaskPolicy({ resumeAvailable: false, linkedinAvailable: true }),
{ complete: true, serviceId: "social-branding-service" },
"an existing LinkedIn connection completes the task on the next sprint read",
);
assert.deepEqual(
resolveProfileTaskPolicy({ resumeAvailable: true, linkedinAvailable: true }),
{ complete: true, serviceId: "social-branding-service" },
"LinkedIn remains the completion signal when both profile assets exist",
);
console.log("curator profile-task policy regression: ok");

View File

@@ -0,0 +1,134 @@
import assert from "node:assert/strict";
import { getCompletionEvents } from "../src/services/service-registry.js";
import { isStreakCompletionType, isTaskCompletionEvent, planSeedsForVariant, type CuratorCompletionEvent } from "../src/v1/curator/curator-store.js";
import { templateSetFor } from "../src/v1/curator/task-registry.js";
import type { CuratorIcpId } from "../src/v1/curator/icp-registry.js";
import { canonicalGrowEventType } from "../src/events/normalize.js";
const taskId = "curator-task-1";
const event = (type: string, correlatedTaskId = taskId): CuratorCompletionEvent => ({
type,
payload: {},
correlation: { task_id: correlatedTaskId },
});
const roleplayEvents = getCompletionEvents("roleplay-service");
assert.deepEqual(roleplayEvents, ["roleplay.scenario.completed", "roleplay.feedback.generated"]);
assert.equal(isTaskCompletionEvent(taskId, roleplayEvents, event("roleplay.scenario.configured")), false);
assert.equal(isTaskCompletionEvent(taskId, roleplayEvents, event("roleplay.scenario.completed")), true);
assert.equal(isTaskCompletionEvent(taskId, roleplayEvents, event("roleplay.feedback.generated")), true);
assert.equal(isTaskCompletionEvent(taskId, roleplayEvents, event("roleplay.scenario.completed", "other-task")), false);
const assertCompletionContract = (serviceId: string, accepted: string[], excluded: string[]) => {
const completionEvents = getCompletionEvents(serviceId);
assert.deepEqual(completionEvents, accepted);
for (const type of accepted) {
assert.equal(isTaskCompletionEvent(taskId, completionEvents, event(type)), true, `${serviceId} accepts ${type}`);
assert.equal(isTaskCompletionEvent(taskId, completionEvents, event(type, "other-task")), false, `${serviceId} requires task correlation for ${type}`);
}
for (const type of excluded) {
assert.equal(isTaskCompletionEvent(taskId, completionEvents, event(type)), false, `${serviceId} excludes ${type}`);
}
};
assertCompletionContract(
"courses-service",
["course.generated", "course.started", "course.progress.recorded", "course.completed"],
[],
);
assertCompletionContract(
"social-branding-service",
["brand.account.connected", "brand.post.drafted", "brand.profile.updated", "brand.post.exported", "brand.content.published"],
["social.account.connected", "social.profile.updated", "social.post.scheduled", "social.post.published"],
);
assertCompletionContract(
"resume-service",
["resume.uploaded", "resume.parsed", "resume.analysis.completed", "resume.updated", "resume.exported"],
["resume.configured"],
);
assertCompletionContract(
"matchmaking-service",
[
"matchmaking.feed.viewed",
"matchmaking.match.viewed",
"matchmaking.application.started",
"matchmaking.match.saved",
"matchmaking.matches.reviewed",
"matchmaking.match.applied",
"matchmaking.application.completed",
],
["matchmaking.matches.generated", "matchmaking.match.dismissed"],
);
assertCompletionContract(
"qscore-service",
["qscore.review.opened", "qscore.weak_driver.reviewed", "qscore.signal.projected", "qscore.updated"],
["qscore.baseline.created"],
);
for (const type of [
"resume.uploaded",
"resume.parsed",
"course.generated",
"course.started",
"course.progress.recorded",
"qscore.review.opened",
"brand.account.connected",
"brand.post.drafted",
"matchmaking.feed.viewed",
"matchmaking.match.viewed",
"matchmaking.application.started",
]) {
assert.equal(isStreakCompletionType(type), true, `${type} must qualify for the broad streak activity rule`);
}
for (const type of ["qscore.baseline.created", "assessment.started", "matchmaking.matches.generated"]) {
assert.equal(isStreakCompletionType(type), false, `${type} must remain non-completing`);
}
assert.equal(canonicalGrowEventType("interview.session_completed"), "interview.session.completed");
assert.equal(canonicalGrowEventType("roleplay.session_completed"), "roleplay.scenario.completed");
const icpIds: CuratorIcpId[] = [
"student_recent_grad",
"intern",
"fresher_early_professional",
"experienced_professional",
"freelancer",
"founder",
"enterprise",
];
for (const icpId of icpIds) {
const trialDays = planSeedsForVariant(templateSetFor(icpId), "2026-07-14", 2, "trial");
assert.equal(trialDays.length, 2, `${icpId} must expose exactly two trial days`);
for (const day of trialDays) {
assert.equal(day.plannedTasks.length, 4, `${icpId} day ${day.dayIndex} must expose four tasks`);
for (const [index, task] of day.plannedTasks.entries()) {
const completionEvents = getCompletionEvents(task.serviceId);
const syntheticTaskId = `${icpId}:day-${day.dayIndex}:task-${index + 1}`;
assert.ok(completionEvents.length > 0, `${syntheticTaskId} must have completion evidence`);
assert.equal(
isTaskCompletionEvent(syntheticTaskId, completionEvents, event(completionEvents[0]!, syntheticTaskId)),
true,
`${syntheticTaskId} must complete from its exact correlated service event`,
);
}
}
}
for (const serviceId of [
"resume-service",
"interview-service",
"roleplay-service",
"courses-service",
"social-branding-service",
"matchmaking-service",
"qscore-service",
]) {
assert.ok(getCompletionEvents(serviceId).length > 0, `${serviceId} must define completion evidence`);
}
console.log("curator service completion contract tests passed");

View File

@@ -13,10 +13,12 @@ const ICP_IDS: CuratorIcpId[] = [
const LIVE_ROUTE_PREFIX: Record<string, string> = {
"courses-service": "/agents/courses",
"qscore-service": "/agents/qscore",
"resume-service": "/agents/resume",
"interview-service": "/agents/interview/preview",
"roleplay-service": "/agents/roleplay/builder",
"interview-service": "/agents/interview",
"roleplay-service": "/agents/roleplay",
"matchmaking-service": "/agents/matchmaking",
"social-branding-service": "/agents/social-branding",
};
const EXPECTED_FOCUS: Record<CuratorIcpId, string[]> = {
@@ -60,14 +62,12 @@ async function main() {
});
try {
assert(preview.version === "icp-v7-static", `${icpId}: expected static plan version`);
assert(preview.idempotency.promptHash === "static-task-registry", `${icpId}: prompt hash should prove static registry mode`);
assert(preview.plan.days.length === 30, `${icpId}: expected 30 generated days`);
assert(preview.plan.calendarWeeks.length === 5, `${icpId}: expected 5 sprint-relative calendar weeks`);
assert(preview.version === "icp-v10-static", `${icpId}: expected static plan version`);
assert(preview.plan.days.length === 7, `${icpId}: expected 7 generated days`);
assert(preview.plan.calendarWeeks.length === 1, `${icpId}: expected one sprint-relative calendar week`);
const firstSevenFocus = preview.plan.days.slice(0, 7).map((day) => day.focus);
assert(JSON.stringify(firstSevenFocus) === JSON.stringify(EXPECTED_FOCUS[icpId]), `${icpId}: first 7 focus labels must match 7-day sprint doc`);
assert(JSON.stringify(firstSevenFocus) === JSON.stringify(preview.plan.days.slice(7, 14).map((day) => day.focus)), `${icpId}: 7-day sprint should repeat after day 7 for now`);
const dayOneTitles = preview.plan.days[0]?.tasks.map((task) => task.title);
assert(JSON.stringify(dayOneTitles) === JSON.stringify(EXPECTED_DAY_ONE_TITLES[icpId]), `${icpId}: day 1 task titles must match docs`);
@@ -84,7 +84,7 @@ async function main() {
for (const task of day.tasks) {
assert(task.missionId === "curator-sprint", `${icpId} ${task.id}: missionId mismatch`);
assert(task.missionInstanceId?.startsWith("curator-sprint:icp-v7-static:"), `${icpId} ${task.id}: missionInstanceId should use static version`);
assert(task.missionInstanceId?.startsWith("curator-sprint:icp-v10-static:"), `${icpId} ${task.id}: missionInstanceId should use static version`);
assert(task.stageId?.includes(`${task.serviceId?.replace("-service", "")}`), `${icpId} ${task.id}: stageId should include service segment`);
assert(task.id.includes(`${task.serviceId?.replace("-service", "")}`), `${icpId} ${task.id}: taskId should include service segment`);
assert(task.actorName !== "Vera" && task.actorName !== "Kai" && task.actorName !== "Mira" && task.actorName !== "Lyra", `${icpId} ${task.id}: agent persona leaked into actorName`);
@@ -102,8 +102,20 @@ async function main() {
assert(url.searchParams.get("missionId") === task.missionId, `${icpId} ${task.id}: route missionId mismatch`);
assert(url.searchParams.get("missionInstanceId") === task.missionInstanceId, `${icpId} ${task.id}: route missionInstanceId mismatch`);
assert(url.searchParams.get("stageId") === task.stageId, `${icpId} ${task.id}: route stageId mismatch`);
assert(url.searchParams.get("taskTitle") === task.title, `${icpId} ${task.id}: route taskTitle mismatch`);
assert(url.searchParams.get("taskSubtitle") === task.subtitle, `${icpId} ${task.id}: route taskSubtitle mismatch`);
assert(url.searchParams.get("taskType") === task.taskType, `${icpId} ${task.id}: route taskType mismatch`);
if (task.serviceId === "interview-service" || task.serviceId === "roleplay-service") {
if (task.serviceId === "interview-service") {
const taskText = `${task.title} ${task.subtitle}`.toLowerCase();
const isIntroductionTask = /(?:60|90)[ -]?second|\bintroduction\b|\bpitch\b|\bpresentation\b/.test(taskText);
assert(url.searchParams.get("type") === (isIntroductionTask ? "warm_up" : "behavioral"), `${icpId} ${task.id}: interview type must match task intent`);
assert(url.searchParams.get("role") === (isIntroductionTask ? null : "Product Manager"), `${icpId} ${task.id}: interview role must match task intent`);
assert(url.searchParams.get("difficulty") === (isIntroductionTask ? "easy" : "medium"), `${icpId} ${task.id}: interview difficulty must match task intent`);
assert(url.searchParams.get("duration") === "5", `${icpId} ${task.id}: interview route should carry duration`);
}
if (task.serviceId === "roleplay-service") {
assert(url.searchParams.get("role") === "Product Manager", `${icpId} ${task.id}: practice route should preserve target role`);
assert(url.searchParams.get("duration") === "5", `${icpId} ${task.id}: practice route should carry duration`);
}
@@ -119,7 +131,7 @@ async function main() {
process.exit(1);
}
console.log(`curator-static-registry tests passed for ${ICP_IDS.length} ICPs, 30 days each, 4 doc-backed tasks per day`);
console.log(`curator-static-registry tests passed for ${ICP_IDS.length} ICPs, 7 days each, 4 doc-backed tasks per day`);
}
main().catch((err) => {

View File

@@ -0,0 +1,55 @@
import assert from "node:assert/strict";
import {
composeTrialDay2,
curatorLogicalDate,
resolveAgedTrialReuse,
} from "../src/v1/curator/streak-utils.js";
assert.equal(
curatorLogicalDate(new Date("2026-07-15T03:29:59.999Z")),
"2026-07-14",
"the previous Curator day remains active until 09:00 Asia/Kolkata",
);
assert.equal(
curatorLogicalDate(new Date("2026-07-15T03:30:00.000Z")),
"2026-07-15",
"the next Curator day starts at 09:00 Asia/Kolkata",
);
assert.equal(
curatorLogicalDate(new Date("2026-07-15T02:30:00.000Z"), 8),
"2026-07-15",
"deployments may explicitly configure a different business-morning hour",
);
const reuse = resolveAgedTrialReuse({
existing: { startDate: "2026-07-14", version: "icp-v10-static", durationDays: 2, access: "trial" },
desired: { durationDays: 2, access: "trial" },
today: curatorLogicalDate(new Date("2026-07-18T00:00:00.000Z")),
planVersion: "icp-v10-static",
});
assert.equal(reuse.action, "reuse");
assert.equal(reuse.startDate, "2026-07-14");
assert.equal(reuse.activeDayIndex, 2);
const fullDay7 = resolveAgedTrialReuse({
existing: { startDate: "2026-07-14", version: "icp-v10-static", durationDays: 7, access: "full" },
desired: { durationDays: 7, access: "full" },
today: "2026-07-20",
planVersion: "icp-v10-static",
});
assert.equal(fullDay7.action, "reuse", "a full sprint must remain on its seventh day");
assert.equal(fullDay7.activeDayIndex, 7);
const fullDay8 = resolveAgedTrialReuse({
existing: { startDate: "2026-07-14", version: "icp-v10-static", durationDays: 7, access: "full" },
desired: { durationDays: 7, access: "full" },
today: "2026-07-21",
planVersion: "icp-v10-static",
});
assert.equal(fullDay8.action, "restart", "a full sprint may restart only after its seventh day");
const native = [{ id: "native-1" }, { id: "native-2" }, { id: "native-3" }, { id: "native-4" }];
const recovery = { id: "recovery" };
assert.deepEqual(composeTrialDay2("student_recent_grad", 0, native, recovery), [recovery, ...native.slice(0, 3)]);
assert.deepEqual(composeTrialDay2("student_recent_grad", 1, native, recovery), native);
console.log("curator trial progression regression: ok");

View File

@@ -0,0 +1,105 @@
import assert from "node:assert/strict";
import { shouldRouteGrowEvent } from "../src/events/record-grow-event.js";
import type { GrowEventRow } from "../src/db/schema.js";
/**
* Regression: duplicate/idempotent ingest must not enqueue the same event twice.
*
* Before the fix, recordGrowEvent returned the existing row on a dedupe hit,
* and routeGrowEventToUserActor was called unconditionally — so every duplicate
* ingest re-enqueued the event to the actor queue, causing saturation.
*
* After the fix, routing is gated by shouldRouteGrowEvent(event, inserted):
* only newly inserted, user-resolved, pending events are routed.
*/
// ── 1. Freshly inserted, user-resolved, pending → route ──────────────────────
{
const event = { userId: "user_a", processingStatus: "pending" } as Pick<GrowEventRow, "userId" | "processingStatus">;
assert.equal(
shouldRouteGrowEvent(event, true),
true,
"newly inserted pending event with a userId must route",
);
}
// ── 2. Dedupe hit (inserted=false) → DO NOT route ────────────────────────────
// This is the core regression: a duplicate ingest returns the existing row
// with inserted=false. The gate must refuse to re-enqueue.
{
const event = { userId: "user_a", processingStatus: "processed" } as Pick<GrowEventRow, "userId" | "processingStatus">;
assert.equal(
shouldRouteGrowEvent(event, false),
false,
"dedupe hit (inserted=false) must NOT route even if status looks processable",
);
}
// ── 3. Freshly inserted but already processed → DO NOT route ─────────────────
// Edge case: the row was just inserted but somehow already processed (e.g. the
// caller did in-process projection synchronously). No re-enqueue.
{
const event = { userId: "user_a", processingStatus: "processed" } as Pick<GrowEventRow, "userId" | "processingStatus">;
assert.equal(
shouldRouteGrowEvent(event, true),
false,
"inserted but already-processed event must NOT route",
);
}
// ── 4. Freshly inserted but unresolved (no userId) → DO NOT route ────────────
{
const event = { userId: null, processingStatus: "unresolved" } as Pick<GrowEventRow, "userId" | "processingStatus">;
assert.equal(
shouldRouteGrowEvent(event, true),
false,
"unresolved event (no userId) must NOT route",
);
}
// ── 5. Freshly inserted, user-resolved, but failed → DO NOT route ────────────
// A terminal-failed event should not be re-enqueued by a duplicate ingest.
{
const event = { userId: "user_a", processingStatus: "failed" } as Pick<GrowEventRow, "userId" | "processingStatus">;
assert.equal(
shouldRouteGrowEvent(event, true),
false,
"failed event must NOT route on replay",
);
}
// ── 6. Dedupe hit on a pending event → DO NOT route ──────────────────────────
// Critical: even if the existing row is still pending (not yet processed), a
// dedupe hit means another caller already inserted it and likely already routed
// it. Re-routing would create a duplicate queue message.
{
const event = { userId: "user_a", processingStatus: "pending" } as Pick<GrowEventRow, "userId" | "processingStatus">;
assert.equal(
shouldRouteGrowEvent(event, false),
false,
"dedupe hit on a pending event must NOT re-route (already enqueued by first caller)",
);
}
// ── 7. Idempotent double-ingest simulation ───────────────────────────────────
// Simulate two calls to recordGrowEventWithResult for the same event:
// first returns inserted=true, second returns inserted=false.
// The first routes, the second does not — proving no double-enqueue.
{
const event = { userId: "user_a", processingStatus: "pending" } as Pick<GrowEventRow, "userId" | "processingStatus">;
// First ingest: newly inserted
const firstRoute = shouldRouteGrowEvent(event, true);
// Second ingest: dedupe hit
const secondRoute = shouldRouteGrowEvent(event, false);
assert.equal(firstRoute, true, "first ingest must route");
assert.equal(secondRoute, false, "second (dedupe) ingest must NOT route");
assert.ok(
firstRoute && !secondRoute,
"duplicate ingest must not enqueue twice",
);
}
console.log("event-dedupe-routing tests passed");
process.exit(0);

View File

@@ -0,0 +1,145 @@
import { normalizeGrowEvent } from "../src/events/normalize.js";
// Mirrors /v1/events/track's accepted body shape without requiring Postgres.
{
const event = normalizeGrowEvent({
source: "interview-service",
type: "interview.session.completed",
correlation: { task_id: "task-nested", keep: "preserve", session_id: "session-1" },
payload: { status: "completed" },
});
if (event.correlation?.task_id !== "task-nested" || event.correlation.keep !== "preserve" || event.correlation.session_id !== "session-1") {
throw new Error("nested correlation fields were not preserved at ingress");
}
}
import assert from "node:assert/strict";
import { routeGrowEventToUserActor } from "../src/events/route-to-user-actor.js";
import { shouldRouteGrowEvent } from "../src/events/record-grow-event.js";
import type { GrowEventRow } from "../src/db/schema.js";
/**
* Cross-file integration test: exercises the full ingress → route → actor-enqueue
* side-effect chain for the duplicate-routing regression.
*
* The persistence layer (recordGrowEventWithResult) requires Postgres and cannot
* run in a tsx test. Instead we simulate its {event, inserted} output contract —
* the same contract the three ingress callers (redis-consumer recordAndRoute,
* routes/events.ts ingest, v1/events/events-routes.ts /track) consume — and prove
* that the routing layer enqueues exactly once across a duplicate ingest pair.
*
* routeGrowEventToUserActor accepts an injectable `enqueue`, so we can observe
* real side effects (the actor queue send) without a live Rivet cluster.
*/
type RouteDecision = { routed: true } | { routed: false; reason: string };
// Simulate the ingress caller's routing block (mirrors redis-consumer.recordAndRoute
// and routes/events.ts.ingest): gate on shouldRouteGrowEvent, then call route.
async function ingressRoute(
event: Pick<GrowEventRow, "id" | "userId" | "processingStatus">,
inserted: boolean,
enqueueCalls: Array<{ userId: string; eventId: string }>,
): Promise<RouteDecision> {
if (!shouldRouteGrowEvent(event, inserted)) {
return { routed: false, reason: "dedupe_or_unresolved" };
}
return routeGrowEventToUserActor(event, {
timeoutMs: 500,
enqueue: async (input) => {
enqueueCalls.push({ userId: input.userId, eventId: input.eventId });
return { queued: true };
},
});
}
function makeEvent(overrides: Partial<GrowEventRow> = {}): Pick<GrowEventRow, "id" | "userId" | "processingStatus"> {
return {
id: "evt-cross-file-test",
userId: "user-cross-file",
processingStatus: "pending",
...overrides,
};
}
// ── 1. First ingest routes, second (dedupe) does NOT — proving no double-enqueue ─
{
const enqueueCalls: Array<{ userId: string; eventId: string }> = [];
const event = makeEvent();
// First ingest: recordGrowEventWithResult returns inserted=true
const first = await ingressRoute(event, true, enqueueCalls);
// Second ingest: same event, dedupe hit → inserted=false
const second = await ingressRoute(event, false, enqueueCalls);
assert.equal(first.routed, true, "first ingest must route to actor");
assert.equal(second.routed, false, "dedupe ingest must NOT route");
assert.equal(enqueueCalls.length, 1, "exactly one enqueue call — duplicate must not double-enqueue");
assert.deepEqual(enqueueCalls[0], { userId: "user-cross-file", eventId: "evt-cross-file-test" });
}
// ── 2. Unresolved event (no userId) never enqueues ────────────────────────────
{
const enqueueCalls: Array<{ userId: string; eventId: string }> = [];
const event = makeEvent({ userId: null, processingStatus: "unresolved" });
const result = await ingressRoute(event, true, enqueueCalls);
assert.equal(result.routed, false, "unresolved event must not route");
assert.equal(enqueueCalls.length, 0, "unresolved event must not enqueue");
}
// ── 3. Three distinct events all route (no false-negative) ────────────────────
{
const enqueueCalls: Array<{ userId: string; eventId: string }> = [];
const events = [
makeEvent({ id: "evt-a", userId: "user-1" }),
makeEvent({ id: "evt-b", userId: "user-1" }),
makeEvent({ id: "evt-c", userId: "user-2" }),
];
for (const event of events) {
await ingressRoute(event, true, enqueueCalls);
}
assert.equal(enqueueCalls.length, 3, "three distinct inserted events must each enqueue once");
assert.deepEqual(
enqueueCalls.map((c) => c.eventId),
["evt-a", "evt-b", "evt-c"],
);
}
// ── 4. Same event ingested 5 times enqueues exactly once ──────────────────────
{
const enqueueCalls: Array<{ userId: string; eventId: string }> = [];
const event = makeEvent({ id: "evt-repeated" });
// First is inserted, remaining 4 are dedupe hits
await ingressRoute(event, true, enqueueCalls);
for (let i = 0; i < 4; i++) {
await ingressRoute(event, false, enqueueCalls);
}
assert.equal(enqueueCalls.length, 1, "5 duplicate ingests must enqueue exactly once");
}
// ── 5. Mixed: event A first-insert, event B dedupe, event C first-insert ──────
// Proves the gate doesn't carry state between decisions.
{
const enqueueCalls: Array<{ userId: string; eventId: string }> = [];
const eventA = makeEvent({ id: "evt-mixed-a" });
const eventB = makeEvent({ id: "evt-mixed-b" });
const eventC = makeEvent({ id: "evt-mixed-c" });
await ingressRoute(eventA, true, enqueueCalls);
await ingressRoute(eventB, false, enqueueCalls);
await ingressRoute(eventC, true, enqueueCalls);
assert.equal(enqueueCalls.length, 2, "only first-insert events A and C enqueue; B (dedupe) skipped");
assert.deepEqual(
enqueueCalls.map((c) => c.eventId),
["evt-mixed-a", "evt-mixed-c"],
);
}
console.log("event-ingress-route-integration tests passed");
process.exit(0);

View File

@@ -0,0 +1,17 @@
import assert from "node:assert/strict";
import { routeGrowEventToUserActor } from "../src/events/route-to-user-actor.js";
const startedAt = Date.now();
const result = await routeGrowEventToUserActor(
{ id: "event-timeout-test", userId: "user-timeout-test" },
{
timeoutMs: 25,
enqueue: () => new Promise<never>(() => undefined),
},
);
assert.equal(result.routed, false);
assert.equal(result.reason, "actor_route_timeout");
assert.ok(Date.now() - startedAt < 500, "actor routing must not block REST ingestion");
console.log("event-route-timeout tests passed");

View File

@@ -0,0 +1,47 @@
{
"onboarding": {
"import": {
"method": "manual",
"status": "not_started",
"resume_id": null,
"linkedin_url": null,
"resume_summary": null,
"resume_filename": null,
"linkedin_profile_id": null
},
"status": "completed",
"consent": {
"accepted_at": "2026-07-12T21:31:40.189Z",
"terms_version": "2026-07",
"privacy_accepted": true
},
"profile": {
"icp": "experienced",
"mode": "individual",
"intent": "grow",
"question_branch": "professional"
},
"progress": {
"stage": "reveal",
"updated_at": "2026-07-12T21:33:01.914Z",
"branch_index": 4
},
"revision": 10,
"responses": {
"target_role": "Senior Software Engineer",
"target_field": "technical",
"work_context": "clients",
"career_barriers": ["offers"],
"desired_outcomes": ["role"],
"experience_level": "5+",
"target_milestone": null,
"venture_industry": null,
"current_situation": "employed",
"weekly_time_commitment": "steady"
},
"qx_estimate": 100,
"completed_at": "2026-07-12T21:31:42.957Z",
"access_choice": "trial",
"schema_version": 3
}
}

View File

@@ -0,0 +1,239 @@
import assert from "node:assert/strict";
import { buildHomeInsightSnapshots } from "../src/v1/analytics/home-insight-snapshot.js";
import type { HomeInsightProducerStatuses } from "../src/v1/analytics/home-insight-snapshot.js";
import type { QscoreProxyResult, QscoreReadResult } from "../src/services/qscore-proxy.js";
function qscoreFixture(): QscoreProxyResult {
const category = (id: string, score: number, active = true, totalRules = 2) => ({
id,
label: id,
score,
active,
present_rules: active ? 1 : 0,
total_rules: totalRules,
weight_percent: 10,
signals: [],
});
return {
org_id: "growqr",
user_id: "00000000-0000-4000-8000-000000000000",
rq_score: 0,
iq_score: null,
eq_score: null,
sq_score: null,
profession: "",
formula_version: "v2",
formula_id: "fixture",
calculated_at: "2026-07-15T00:00:00Z",
quotients: {},
breakdown: {
display: {
version: "rq-score-display-v1",
registered_signal_count: 67,
active_signal_count: 7,
categories: [
category("learning_credentials", 45),
category("resume_presence", 55),
category("linkedin_presence", 65),
category("matching_activity", 75),
category("interview_performance", 85),
category("pathway_progress", 0, false, 0),
category("roleplay_performance", 70),
category("engagement_consistency", 40),
category("goals_readiness", 35),
],
},
},
ledger_seq_from: null,
ledger_seq_to: null,
};
}
function inactiveCategoryQscoreFixture(): QscoreProxyResult {
const fixture = qscoreFixture();
const display = fixture.breakdown.display as { categories: Array<Record<string, unknown>> };
for (const category of display.categories) {
if (category.id === "pathway_progress") continue;
category.score = 0;
category.active = false;
category.present_rules = 0;
}
return fixture;
}
const readyQscore: QscoreReadResult<QscoreProxyResult> = { status: "ready", data: qscoreFixture() };
const history = { status: "ready" as const, data: [{ rq_score: 0, date: "2026-07-15" }] };
const producers = {
interviewPageState: async () => ({ recent_sessions: [{ overall_score: 0, completed_at: "2026-07-15T01:00:00Z" }] }),
roleplayPageState: async () => ({ recent_sessions: [{ overall_score: 0, completed_at: "2026-07-15T02:00:00Z" }] }),
resumeState: async () => ({ resume_count: 1, resume_completeness: 0, resume_status: "draft" }),
socialState: async () => ({
linkedin_connected: true,
profile_analysis_score: 0,
followers_count: 0,
connections_count: 0,
skills_count: 0,
experience_count: 0,
improvements_count: 0,
section_scores: {},
}),
matchmakingStats: async () => ({
status: "completed",
messages: [{ action: "scout_stats", data: { matchesFound: 0, funnel: [], searches: 0, tailoredResumes: 0 } }],
}),
courseSummary: async () => ({
status: "completed",
messages: [{
action: "course_state_loaded",
data: { has_interest_profile: true, watch_count: 0, watch_stats: { watched: 0, total_s: 0, anchors: [] } },
}],
}),
assessments: async () => ({ items: [], total: 0 }),
};
const genuineZeros = await buildHomeInsightSnapshots({
userId: "user_fixture",
qscore: readyQscore,
qscoreHistory: history,
recentEvents: [{ payload: { result: { weakness_tags: ["SQL", "sql", "System design"] } } }],
}, producers);
assert.deepEqual(Object.keys(genuineZeros), [
"rqScore",
"interview",
"resume",
"opportunity",
"pathway",
"socialBrand",
"roleplay",
"learning",
"skillGap",
]);
for (const value of Object.values(genuineZeros)) {
assert.deepEqual(Object.keys(value), ["status", "source", "value", "unit", "label", "updatedAt", "reason", "detail"]);
}
assert.deepEqual(
{
rq: [genuineZeros.rqScore.status, genuineZeros.rqScore.value],
interview: [genuineZeros.interview.status, genuineZeros.interview.value],
resume: [genuineZeros.resume.status, genuineZeros.resume.value],
opportunity: [genuineZeros.opportunity.status, genuineZeros.opportunity.value],
social: [genuineZeros.socialBrand.status, genuineZeros.socialBrand.value],
roleplay: [genuineZeros.roleplay.status, genuineZeros.roleplay.value],
learning: [genuineZeros.learning.status, genuineZeros.learning.value],
skillGap: [genuineZeros.skillGap.status, genuineZeros.skillGap.value],
pathway: [genuineZeros.pathway.status, genuineZeros.pathway.value],
},
{
rq: ["ready", 0],
interview: ["ready", 0],
resume: ["ready", 0],
opportunity: ["empty", 0],
social: ["ready", 0],
roleplay: ["ready", 0],
learning: ["empty", 0],
skillGap: ["ready", 2],
pathway: ["unsupported", null],
},
"genuine zero, confirmed empty, and unsupported must remain distinct",
);
assert.deepEqual(genuineZeros.socialBrand.detail?.audienceReach, {
value: 0,
unit: "followers",
label: "Audience reach",
updatedAt: null,
}, "Audience Reach must be an explicit producer-owned display object and preserve genuine zero");
const failed = async () => { throw new Error("unreachable"); };
const unavailable = await buildHomeInsightSnapshots({
userId: "user_fixture",
qscore: { status: "unavailable", reason: "request_failed" },
qscoreHistory: { status: "unavailable", reason: "request_failed" },
recentEvents: [],
}, {
interviewPageState: failed,
roleplayPageState: failed,
resumeState: failed,
socialState: failed,
matchmakingStats: failed,
courseSummary: failed,
assessments: failed,
});
for (const [key, value] of Object.entries(unavailable)) {
assert.equal(value.status, "unavailable", `${key} outage must be unavailable`);
assert.equal(value.value, null, `${key} outage must not become zero`);
}
const inactiveQscore: QscoreReadResult<QscoreProxyResult> = {
status: "ready",
data: inactiveCategoryQscoreFixture(),
};
const primaryOutageWithNoQscoreEvidence = await buildHomeInsightSnapshots({
userId: "user_fixture",
qscore: inactiveQscore,
qscoreHistory: history,
recentEvents: [],
}, {
interviewPageState: failed,
roleplayPageState: failed,
resumeState: failed,
socialState: failed,
matchmakingStats: failed,
courseSummary: failed,
assessments: failed,
});
for (const key of ["interview", "resume", "opportunity", "socialBrand", "roleplay", "learning", "skillGap"] as const) {
assert.equal(primaryOutageWithNoQscoreEvidence[key].status, "unavailable", `${key} outage must not be masked by inactive qscore evidence`);
assert.equal(primaryOutageWithNoQscoreEvidence[key].value, null, `${key} outage with inactive qscore must not become zero`);
}
const malformedCourseA2a = await buildHomeInsightSnapshots({
userId: "user_fixture",
qscore: inactiveQscore,
qscoreHistory: history,
recentEvents: [],
}, {
...producers,
courseSummary: async () => ({ status: "completed", messages: [] }),
});
assert.equal(malformedCourseA2a.learning.status, "unavailable");
assert.equal(malformedCourseA2a.learning.value, null);
assert.equal(malformedCourseA2a.learning.reason, "producer_response_invalid");
assert.equal(malformedCourseA2a.learning.source, "courses.course-state");
const malformedA2a = await buildHomeInsightSnapshots({
userId: "user_fixture",
qscore: readyQscore,
qscoreHistory: history,
recentEvents: [],
}, {
...producers,
matchmakingStats: async () => ({ status: "completed", messages: [] }),
});
assert.equal(malformedA2a.opportunity.status, "ready", "valid qscore category is the honest fallback");
assert.equal(malformedA2a.opportunity.source, "qscore.breakdown.display");
assert.equal(malformedA2a.opportunity.value, 75);
let malformedDirectStatuses: HomeInsightProducerStatuses | null = null;
await buildHomeInsightSnapshots({
userId: "user_fixture",
qscore: readyQscore,
qscoreHistory: history,
recentEvents: [],
onProducerStatuses: (statuses) => { malformedDirectStatuses = statuses; },
}, {
...producers,
resumeState: async () => ({}),
assessments: async () => ({}),
});
assert.equal(malformedDirectStatuses?.resume.status, "unavailable", "malformed resume objects must not mark the direct source ready");
assert.equal(malformedDirectStatuses?.resume.reason, "producer_response_invalid");
assert.equal(malformedDirectStatuses?.assessment.status, "unavailable", "malformed assessment objects must not mark the direct source ready");
assert.equal(malformedDirectStatuses?.assessment.reason, "producer_response_invalid");
console.log("home insight snapshot contract: ok");

View File

@@ -0,0 +1,31 @@
import assert from "node:assert/strict";
import { interviewService } from "../src/services/product-service-clients.js";
const originalFetch = globalThis.fetch;
const requests: Array<{ url: string; headers: Headers; body: string }> = [];
globalThis.fetch = async (input, init) => {
const request = new Request(input, init);
requests.push({
url: request.url,
headers: request.headers,
body: await request.text(),
});
return new Response("{}", { status: 200, headers: { "content-type": "application/json" } });
};
try {
await interviewService.configure({ user_id: "user_from_payload" }, "user_canonical");
await interviewService.preview({ user_id: "user_from_payload" }, "user_canonical");
await interviewService.editQuestions({ session_id: "session-1", questions: ["q1"] }, "user_canonical");
await interviewService.approve("session-1", "user_canonical");
assert.equal(requests.length, 4);
for (const request of requests) {
assert.equal(request.headers.get("x-growqr-user"), "user_canonical");
assert.match(request.headers.get("authorization") ?? "", /^Bearer /);
}
console.log("interview user identity forwarding: all assertions passed");
} finally {
globalThis.fetch = originalFetch;
}

View File

@@ -0,0 +1,53 @@
import assert from "node:assert/strict";
import { buildMatchmakingGatewayEvent } from "../src/services/matchmaking-events.js";
const saved = buildMatchmakingGatewayEvent({
userId: "user_test",
action: "mark_saved",
body: {
action: "mark_saved",
params: {
opportunity_id: "job_123",
curatorTaskId: "task_123",
missionId: "curator-sprint",
missionInstanceId: "sprint_123",
stageId: "stage_123",
source: "curator-v1",
},
},
result: { task_id: "a2a_123", status: "completed", messages: [] },
});
assert.equal(saved.type, "matchmaking.match.saved");
assert.deepEqual(saved.mission, {
missionId: "curator-sprint",
instanceId: "sprint_123",
stageId: "stage_123",
source: "curator-v1",
});
assert.deepEqual(saved.subject, {
serviceId: "matchmaking",
kind: "opportunity",
id: "job_123",
externalId: "job_123",
});
assert.equal(saved.correlation?.taskId, "task_123");
assert.equal(saved.correlation?.curatorTaskId, "task_123");
assert.equal(saved.correlation?.opportunityId, "job_123");
assert.equal(saved.payload.curatorTaskId, "task_123");
assert.equal(saved.payload.opportunityId, "job_123");
assert.equal(saved.payload.action, "mark_saved");
const reviewed = buildMatchmakingGatewayEvent({
userId: "user_test",
action: "record_feedback",
body: {
action: "record_feedback",
params: { opportunity_id: "job_123", curatorTaskId: "task_123" },
},
result: { task_id: "a2a_456", status: "completed", messages: [] },
});
assert.equal(reviewed.type, "matchmaking.matches.reviewed");
console.log("matchmaking-events tests passed");
process.exit(0);

194
scripts/onboarding-bulk-reset.ts Executable file
View File

@@ -0,0 +1,194 @@
#!/usr/bin/env tsx
/**
* Staging-only bulk onboarding reset CLI.
*
* Resets onboarding for EVERY user in the backend `users` table (the
* Clerk-mirrored enrollment source) in two phases:
*
* Phase 1 — user-service preferences reset (A2A).
* Calls POST /api/v1/users/onboarding-reset on user-service with the A2A
* key. This resets preferences.onboarding to the default in-progress v3
* doc, preserving all unrelated preference keys. It targets users by
* clerk_id WITHOUT impersonating a Clerk session. A 404 means the user has
* no user-service profile (backend-only user) — a documented skip that
* never blocks Phase 2.
*
* Phase 2 — backend completion ledger reset (direct, idempotent).
* Calls resetOnboardingLedger(userId) for every backend user whose Phase 1
* succeeded OR was skipped (404 backend-only). A Phase 1 error (non-404
* failure) blocks Phase 2 for that user to avoid inconsistent state
* (preferences say "completed" but ledger says not). This deletes only
* completion-type ledger rows (dotted AND underscore aliases) plus
* completion-bearing snapshots, preserving intermediate snapshots,
* missions, curator context, and qscore baselines.
*
* GUARDS — all three must hold or the script aborts before any network call:
* 1. NODE_ENV=staging (refuses production/development)
* 2. ONBOARDING_BULK_RESET_ALLOWED=true (explicit opt-in flag)
* 3. --confirm on the CLI (typed acknowledgement)
*
* Usage:
* NODE_ENV=staging ONBOARDING_BULK_RESET_ALLOWED=true \
* npx tsx scripts/onboarding-bulk-reset.ts --confirm
*
* Output: aggregate-only audit counts (no per-user PII) and a summary.
*
* This script is INTENTIONALLY not wired to any HTTP surface. It is a
* staging-only operations tool; bulk reset must never be exposed as a public
* endpoint. Per-user reset is the authenticated DELETE /users/onboarding route.
*/
import { eq, asc } from "drizzle-orm";
import { db } from "../src/db/client.js";
import { users } from "../src/db/schema.js";
import { config } from "../src/config.js";
import { log } from "../src/log.js";
import { resetOnboardingLedger } from "../src/events/onboarding-ledger.js";
type PrefOutcome =
| { userId: string; ok: true }
| { userId: string; ok: false; skipped: true; reason: string; status: number }
| { userId: string; ok: false; skipped: false; error: string; status: number };
type LedgerOutcome =
| { userId: string; ok: true; ledgerRowsDeleted: number }
| { userId: string; ok: false; error: string };
function assertStagingGuard(argv: string[]): void {
const isStaging = config.nodeEnv === "staging";
const allowed = process.env.ONBOARDING_BULK_RESET_ALLOWED === "true";
const confirmed = argv.includes("--confirm");
const failures: string[] = [];
if (!isStaging) failures.push(`NODE_ENV must be "staging" (got "${config.nodeEnv}")`);
if (!allowed) failures.push("ONBOARDING_BULK_RESET_ALLOWED must be set to \"true\"");
if (!confirmed) failures.push("--confirm argument is required");
if (failures.length > 0) {
console.error("onboarding-bulk-reset: ABORTED — guard checks failed:");
for (const f of failures) console.error(` - ${f}`);
console.error("");
console.error("This script is staging-only and will reset onboarding for EVERY user.");
console.error("Re-run with all guards satisfied to proceed.");
process.exit(2);
}
}
function userServiceUrl(): string {
return config.userServiceUrl.replace(/\/$/, "");
}
/**
* Phase 1: reset preferences.onboarding via the user-service A2A endpoint.
* A 404 means the user has no user-service profile (backend-only) — a clean
* skip that does NOT block the backend ledger reset.
*/
async function resetPreferences(clerkId: string, a2aKey: string): Promise<PrefOutcome> {
const res = await fetch(`${userServiceUrl()}/api/v1/users/onboarding-reset`, {
method: "POST",
headers: {
authorization: `Bearer ${a2aKey}`,
"content-type": "application/json",
},
body: JSON.stringify({ clerk_id: clerkId }),
});
if (res.status === 404) {
return { userId: clerkId, ok: false, skipped: true, reason: "no user-service profile (backend-only)", status: 404 };
}
if (!res.ok) {
const text = await res.text().catch(() => "");
return { userId: clerkId, ok: false, skipped: false, error: text || res.statusText, status: res.status };
}
return { userId: clerkId, ok: true };
}
/**
* Phase 2: directly reset the backend completion ledger for a user.
* Always runs after Phase 1 (success or skip) — backend-only users still need
* their ledger cleared. Idempotent.
*/
async function resetLedger(userId: string): Promise<LedgerOutcome> {
try {
const ledgerRowsDeleted = await resetOnboardingLedger(userId);
return { userId, ok: true, ledgerRowsDeleted };
} catch (err) {
const message = err instanceof Error ? err.message : String(err);
return { userId, ok: false, error: message };
}
}
async function main() {
assertStagingGuard(process.argv.slice(2));
const a2aKey = config.a2aAllowedKey;
if (!a2aKey) {
console.error("onboarding-bulk-reset: ABORTED — A2A_ALLOWED_KEY is not configured");
process.exit(2);
}
const allUsers = await db.select({ id: users.id }).from(users).orderBy(asc(users.id));
const total = allUsers.length;
console.log(`onboarding-bulk-reset: targeting ${total} user(s)`);
console.log(`onboarding-bulk-reset: NODE_ENV=${config.nodeEnv}, guard=on`);
console.log(`onboarding-bulk-reset: user-service=${userServiceUrl()}`);
let prefOk = 0;
let prefSkipped = 0;
let prefErrors = 0;
let ledgerOk = 0;
let ledgerErrors = 0;
let ledgerTotal = 0;
let ledgerBlocked = 0;
for (const u of allUsers) {
// Phase 1: user-service preferences reset (A2A).
const pref = await resetPreferences(u.id, a2aKey);
if (pref.ok) {
prefOk += 1;
} else if (pref.skipped) {
prefSkipped += 1;
} else {
prefErrors += 1;
}
// Phase 2: backend ledger reset — ONLY after Phase 1 succeeds or is
// skipped (404 / backend-only). A pref error (non-404 failure) leaves
// preferences.onboarding untouched, so clearing the ledger here would
// create an inconsistent state (prefs say "completed", ledger says not).
// Skip the ledger for errored users so an operator can retry after fix.
if (!pref.ok && !pref.skipped) {
ledgerBlocked += 1;
continue;
}
const ledger = await resetLedger(u.id);
if (ledger.ok) {
ledgerOk += 1;
ledgerTotal += ledger.ledgerRowsDeleted;
} else {
ledgerErrors += 1;
}
}
console.log("");
console.log("onboarding-bulk-reset: summary (aggregate only — no per-user PII)");
console.log(` total users: ${total}`);
console.log(` preferences reset: ${prefOk} ok, ${prefSkipped} skipped (backend-only), ${prefErrors} error(s)`);
console.log(` ledger reset: ${ledgerOk} ok, ${ledgerErrors} error(s), ${ledgerBlocked} blocked by pref error, ${ledgerTotal} row(s) deleted`);
const hadErrors = prefErrors > 0 || ledgerErrors > 0;
log.info(
{ total, prefOk, prefSkipped, prefErrors, ledgerOk, ledgerErrors, ledgerBlocked, ledgerTotal },
"onboarding bulk reset complete",
);
process.exit(hadErrors ? 1 : 0);
}
main().catch((err) => {
console.error("onboarding-bulk-reset: fatal", err);
process.exit(1);
});

View File

@@ -70,5 +70,45 @@ assert.equal(
"invalid completion timestamps should normalize to a valid ISO timestamp",
);
// ── Regression: underscore completion aliases must be valid (reset deletes them) ──
// The reset only reopens the gate if EVERY alias form that isValidOnboardingLedgerEvent
// accepts is also in the reset delete scope. Pin both sides agree per alias.
for (const underscore of ["onboarding_completed", "user_onboarding_completed", "profile_onboarding_completed"]) {
const dotted = normalizeOnboardingEventType(underscore);
assert.equal(
isValidOnboardingLedgerEvent({ type: underscore, payload: {} }),
true,
`${underscore} should satisfy onboarding status (normalized to ${dotted})`,
);
}
// ── Regression: completedAtFromOnboardingPayload paths mirrored by reset SQL ──
// resetOnboardingLedger's jsonb predicate checks top-level completed_at/completedAt
// and onboarding.completed_at/completedAt. Pin that the JS helper (used for status
// validity) agrees a snapshot carrying any of these is a completion snapshot.
for (const [label, payload] of [
["top-level completed_at", { completed_at: now }],
["top-level completedAt", { completedAt: now }],
["onboarding.completed_at", { onboarding: { completed_at: now } }],
["onboarding.completedAt", { onboarding: { completedAt: now } }],
] as const) {
assert.equal(
completedAtFromOnboardingPayload(payload),
now,
`completion timestamp extracted from ${label}`,
);
assert.equal(
isValidOnboardingLedgerEvent({ type: "onboarding.snapshot.saved", payload }),
true,
`snapshot with ${label} is a completion snapshot`,
);
}
// ── Regression: intermediate snapshots (no completion marker) stay invalid ──
assert.equal(
completedAtFromOnboardingPayload({ onboarding: { current_step: 2 } }),
undefined,
"intermediate snapshot has no completion timestamp",
);
console.log("onboarding-ledger tests passed");
process.exit(0);

View File

@@ -0,0 +1,160 @@
import assert from "node:assert/strict";
import {
DEFAULT_ONBOARDING_DATA,
defaultOnboardingData,
extractOnboardingData,
assertOnboardingRevision,
deriveOnboardingPayload,
mergeOnboardingPatch,
OnboardingRevisionConflict,
} from "../src/events/onboarding-ledger.js";
/**
* Focused tests for the onboarding preference helpers (pure — no DB/network).
* Covers: default v3 shape, revision conflict, partial update merge,
* status/completed_at consistency + payload derivation, and unrelated
* preference preservation. Matches the scripts/X.test.ts convention
* (node:assert over pure functions).
*/
// ── 1. default v3 response ───────────────────────────────────────────────────
{
const def = defaultOnboardingData();
assert.equal(def.schema_version, 3, "default is v3");
assert.equal(def.revision, 0);
assert.equal(def.status, "in_progress");
assert.equal(def.access_choice, null);
assert.equal(def.qx_estimate, null);
assert.equal(def.completed_at, null);
assert.equal(def.consent.privacy_accepted, false);
assert.equal(def.progress.stage, "consent");
// DEFAULT constant must match the factory.
assert.deepEqual(def, DEFAULT_ONBOARDING_DATA);
// Factory returns a fresh clone, not the shared constant.
assert.notEqual(def, DEFAULT_ONBOARDING_DATA);
}
// extractOnboardingData returns the default when nothing is stored.
{
const empty = extractOnboardingData(undefined);
assert.equal(empty.schema_version, 3);
assert.equal(empty.revision, 0);
const fromNonObject = extractOnboardingData("nonsense");
assert.equal(fromNonObject.status, "in_progress");
}
// ── 2. revision conflict (optimistic concurrency) ───────────────────────────
{
const current = extractOnboardingData({ revision: 5 });
// Matching revision is accepted (no throw).
assert.doesNotThrow(() => assertOnboardingRevision(5, current));
// Mismatched revision throws the typed conflict.
assert.throws(
() => assertOnboardingRevision(4, current),
(err) => err instanceof OnboardingRevisionConflict && err.expected === 4 && err.actual === 5,
);
}
// ── 3. partial update merge (revision bump + progress stamp) ────────────────
{
const stored = extractOnboardingData({ revision: 2 });
const incoming = { ...stored, revision: 2, profile: { ...stored.profile, mode: "founder" } };
const merged = mergeOnboardingPatch({ onboarding: stored }, incoming);
const next = extractOnboardingData(merged.onboarding);
assert.equal(next.revision, 3, "revision bumps by one from the stored value");
assert.equal(next.profile.mode, "founder", "incoming profile change is applied");
assert.ok(next.progress.updated_at, "progress.updated_at is stamped on save");
}
// ── 4. status/completed_at consistency + payload derivation ─────────────────
{
const base = defaultOnboardingData();
const completed = {
...base,
revision: 0,
status: "completed" as const,
profile: { ...base.profile, intent: "land-a-role", mode: "student", icp: "intern", question_branch: "student" },
responses: {
...base.responses,
career_barriers: ["no-network"],
desired_outcomes: ["interviews", "offer"],
target_role: "Product Intern",
target_field: "technical",
weekly_time_commitment: "5-10",
experience_level: "0-2",
work_context: "audience",
},
// deliberately omit completed_at; merge must stamp it.
};
const merged = mergeOnboardingPatch({}, completed);
const next = extractOnboardingData(merged.onboarding);
assert.equal(next.status, "completed");
assert.ok(next.completed_at, "completed status without completed_at is stamped");
// Payload is a faithful projection — no invented completion math.
const payload = deriveOnboardingPayload(next);
assert.equal(payload.schema_version, 1);
assert.equal(payload.source_revision, next.revision);
assert.equal(payload.mode, "student");
assert.equal(payload.onboarding_icp, "intern");
assert.equal(payload.target_role, "Product Intern");
assert.equal(payload.target_field, "technical");
assert.deepEqual(payload.goals, ["interviews", "offer"]);
assert.deepEqual(payload.barriers, ["no-network"]);
assert.equal(payload.weekly_time_commitment, "5-10");
assert.equal(payload.experience_context, "0-2 · audience");
}
// completed_at is cleared when regressing to in_progress with an explicit null.
{
const completed = { ...defaultOnboardingData(), status: "completed" as const, completed_at: "2026-07-10T00:00:00.000Z" };
const regressed = { ...completed, status: "in_progress" as const, completed_at: null };
const merged = mergeOnboardingPatch({}, regressed);
const next = extractOnboardingData(merged.onboarding);
assert.equal(next.status, "in_progress");
assert.equal(next.completed_at, null, "stale completed_at is cleared on regression");
}
// ── 5. unrelated preference preservation ────────────────────────────────────
{
const preferences = {
onboarding: { revision: 1, status: "in_progress" },
interview_preferences: { focus_areas: ["behavioral"] },
resume_preferences: { target_title: "Data Scientist" },
mission_preferences: { active_goal: "land-offer" },
target_roles: ["Product Intern"],
target_companies: ["Acme"],
};
const incoming = { ...extractOnboardingData(preferences.onboarding), revision: 1, profile: { intent: "x", mode: "student", icp: "intern", question_branch: "student" } };
const merged = mergeOnboardingPatch(preferences, incoming);
// The onboarding blob is updated.
assert.equal(extractOnboardingData(merged.onboarding).revision, 2);
// Every unrelated preference key is preserved verbatim.
assert.deepEqual(merged.interview_preferences, { focus_areas: ["behavioral"] });
assert.deepEqual(merged.resume_preferences, { target_title: "Data Scientist" });
assert.deepEqual(merged.mission_preferences, { active_goal: "land-offer" });
assert.deepEqual(merged.target_roles, ["Product Intern"]);
assert.deepEqual(merged.target_companies, ["Acme"]);
}
// ── 6. access_choice persistence (trial | full | null) ───────────────────────
{
const base = defaultOnboardingData();
const trial = { ...base, revision: 0, access_choice: "trial" as const };
const mergedTrial = mergeOnboardingPatch({}, trial);
assert.equal(extractOnboardingData(mergedTrial.onboarding).access_choice, "trial");
const full = { ...base, revision: 0, access_choice: "full" as const };
const mergedFull = mergeOnboardingPatch({}, full);
assert.equal(extractOnboardingData(mergedFull.onboarding).access_choice, "full");
// Garbage access_choice is rejected back to null by extraction.
const garbage = extractOnboardingData({ access_choice: "pro" });
assert.equal(garbage.access_choice, null);
}
console.log("onboarding-preferences: all assertions passed");

View File

@@ -0,0 +1,176 @@
import assert from "node:assert/strict";
import { spawnSync } from "node:child_process";
import { readFileSync } from "node:fs";
import { fileURLToPath } from "node:url";
import { dirname, join } from "node:path";
import {
COMPLETION_EVENT_TYPES,
COMPLETION_EVENT_TYPE_ALIASES,
SNAPSHOT_EVENT_TYPE_ALIASES,
resetOnboardingPreferences,
defaultOnboardingData,
extractOnboardingData,
ONBOARDING_LEDGER_QUERY_TYPES,
} from "../src/events/onboarding-ledger.js";
/**
* Focused tests for onboarding reset helpers (pure — no DB/network).
* Covers: per-user reset state (preferences reset to default, unrelated keys
* preserved), ledger type scope (only completion types deleted, snapshots
* preserved), and bulk guard behavior (assertStagingGuard invariants).
*
* The async resetOnboardingLedger is exercised in integration; here we assert
* its type-scope contract via the exported COMPLETION_EVENT_TYPES set, which is
* exactly the WHERE clause it builds.
*/
// ── 1. resetOnboardingPreferences: resets onboarding to default v3 ──────────
{
const preferences = {
onboarding: {
schema_version: 3,
revision: 5,
status: "completed",
completed_at: "2026-07-10T00:00:00.000Z",
progress: { stage: "done", branch_index: 3, updated_at: "2026-07-10T00:00:00.000Z" },
consent: { privacy_accepted: true, accepted_at: "2026-07-09T00:00:00.000Z", terms_version: "2026-07" },
profile: { intent: "land-a-role", mode: "student", icp: "intern", question_branch: "student" },
responses: { career_barriers: ["x"], desired_outcomes: ["y"], current_situation: null, target_milestone: null, weekly_time_commitment: "5-10", target_role: "Intern", target_field: "tech", venture_industry: null, experience_level: "0-2", work_context: "audience" },
import: { method: "manual", status: "not_started", resume_id: null, resume_filename: null, resume_summary: null, linkedin_profile_id: null, linkedin_url: null },
access_choice: "trial",
qx_estimate: 42,
},
interview_preferences: { focus_areas: ["behavioral"] },
resume_preferences: { target_title: "Data Scientist" },
target_roles: ["Product Intern"],
};
const reset = resetOnboardingPreferences(preferences);
const next = extractOnboardingData(reset.onboarding);
// Onboarding blob is back to defaults.
assert.equal(next.schema_version, 3);
assert.equal(next.revision, 0, "revision resets to 0");
assert.equal(next.status, "in_progress", "status reverts to in_progress");
assert.equal(next.completed_at, null, "completed_at is cleared");
assert.equal(next.progress.stage, "consent", "progress stage resets to consent");
assert.equal(next.access_choice, null);
assert.equal(next.qx_estimate, null);
assert.deepEqual(next, defaultOnboardingData());
// Unrelated preference keys are preserved verbatim.
assert.deepEqual(reset.interview_preferences, { focus_areas: ["behavioral"] });
assert.deepEqual(reset.resume_preferences, { target_title: "Data Scientist" });
assert.deepEqual(reset.target_roles, ["Product Intern"]);
}
// ── 2. resetOnboardingPreferences: idempotent on already-default prefs ─────
{
const empty = {};
const reset = resetOnboardingPreferences(empty);
assert.deepEqual(reset.onboarding, defaultOnboardingData());
// Original object is not mutated.
assert.equal(Object.keys(empty).length, 0, "original preferences not mutated");
}
// ── 3. Ledger reset scope: completion aliases (both forms) + completion snapshots
// resetOnboardingLedger builds: DELETE FROM grow_events WHERE userId = ? AND (
// type IN (COMPLETION_EVENT_TYPE_ALIASES)
// OR (type IN (SNAPSHOT_EVENT_TYPE_ALIASES) AND payload-has-completion)
// ). This pins the contract: (a) all completion aliases — dotted AND underscore —
// are deleted so a legacy underscore completion row can't keep the gate shut;
// (b) snapshot types are NOT blanket completion types (only completion-bearing
// snapshots are deleted via the jsonb predicate); (c) intermediate snapshots are
// preserved because they never satisfy the completion predicate.
{
// (a) Completion aliases cover BOTH dotted and underscore forms — 6 total.
assert.equal(COMPLETION_EVENT_TYPE_ALIASES.length, 6, "3 dotted + 3 underscore completion aliases");
for (const dotted of Object.keys(COMPLETION_EVENT_TYPES)) {
const underscore = dotted.replaceAll(".", "_");
assert.ok(COMPLETION_EVENT_TYPE_ALIASES.includes(dotted), `${dotted} in reset scope`);
assert.ok(COMPLETION_EVENT_TYPE_ALIASES.includes(underscore), `${underscore} alias in reset scope`);
}
// (b) Snapshot types are handled in a SEPARATE phase, never as completion types.
assert.equal(COMPLETION_EVENT_TYPES["onboarding.snapshot.saved"], undefined,
"snapshot must never be a blanket completion type");
assert.equal(SNAPSHOT_EVENT_TYPE_ALIASES.includes("onboarding.snapshot.saved"), true,
"dotted snapshot alias is in the snapshot reset phase");
assert.equal(SNAPSHOT_EVENT_TYPE_ALIASES.includes("onboarding_snapshot_saved"), true,
"underscore snapshot alias is in the snapshot reset phase");
// (c) The reset completion set is a strict subset of the status-query list:
// status reads ALL aliases + snapshots; reset deletes only completions and
// completion-bearing snapshots, preserving intermediate saves.
for (const alias of COMPLETION_EVENT_TYPE_ALIASES) {
assert.ok((ONBOARDING_LEDGER_QUERY_TYPES as readonly string[]).includes(alias),
`${alias} is also queryable for status`);
}
}
// ── 4. Bulk guard behavior: real spawn of assertStagingGuard ───────────────
// Spawns the actual CLI with controlled env and asserts exit code 2 (abort)
// for each independent failure leg. We only assert abort cases — the
// all-flags-pass case would proceed past the guard and hit the network/DB.
{
const script = "scripts/onboarding-bulk-reset.ts";
// Leg 1: production env (even with all other flags) must abort.
const prod = spawnSync("npx", ["tsx", script, "--confirm"], {
env: { ...process.env, NODE_ENV: "production", ONBOARDING_BULK_RESET_ALLOWED: "true" },
encoding: "utf8",
});
assert.equal(prod.status, 2, "production must abort even with all flags");
assert.match(prod.stderr, /NODE_ENV must be "staging"/, "production abort names the env failure");
// Leg 2: staging + allowed but missing --confirm must abort.
const noConfirm = spawnSync("npx", ["tsx", script], {
env: { ...process.env, NODE_ENV: "staging", ONBOARDING_BULK_RESET_ALLOWED: "true" },
encoding: "utf8",
});
assert.equal(noConfirm.status, 2, "staging without --confirm must abort");
assert.match(noConfirm.stderr, /--confirm/, "missing-confirm abort names the confirm failure");
// Leg 3: staging + confirm but no opt-in flag must abort.
const noFlag = spawnSync("npx", ["tsx", script, "--confirm"], {
env: { ...process.env, NODE_ENV: "staging", ONBOARDING_BULK_RESET_ALLOWED: "false" },
encoding: "utf8",
});
assert.equal(noFlag.status, 2, "staging without opt-in flag must abort");
assert.match(noFlag.stderr, /ONBOARDING_BULK_RESET_ALLOWED/, "missing-flag abort names the flag failure");
}
// ── 5. Bulk CLI structure: A2A endpoint + Phase 2 gating (source read) ──────
// The CLI's network/DB behavior is exercised in integration. Here we assert
// the structural contract by reading the script source directly: (a) it calls
// the user-service A2A onboarding-reset endpoint (not the backend DELETE
// route), (b) it authenticates with a2aAllowedKey (not serviceToken), (c) it
// treats 404 as a skip, and (d) it gates the backend ledger reset on Phase 1
// success-or-skip so a pref error never leaves inconsistent state.
{
const here = dirname(fileURLToPath(import.meta.url));
const src = readFileSync(join(here, "onboarding-bulk-reset.ts"), "utf8");
// (a) Calls the user-service A2A onboarding-reset endpoint by path.
assert.match(src, /\/api\/v1\/users\/onboarding-reset/, "CLI must call the user-service A2A reset endpoint");
// Must NOT call the backend DELETE /users/onboarding route (old impersonation path).
assert.doesNotMatch(src, /method:\s*["']DELETE["']/, "CLI must not use the backend DELETE route");
// (b) Authenticates with the A2A key, not the per-user service token.
assert.match(src, /a2aAllowedKey/, "CLI must use config.a2aAllowedKey for A2A auth");
assert.doesNotMatch(src, /serviceToken/, "CLI must not reference serviceToken (per-user impersonation path)");
// (c) Treats a 404 from user-service as a documented skip (backend-only user).
assert.match(src, /status === 404/, "CLI must detect 404 from user-service");
assert.match(src, /backend-only/, "CLI must document 404 as backend-only skip");
// (d) Phase 2 ledger reset is gated on Phase 1 success-or-skip.
assert.match(src, /!pref\.ok && !pref\.skipped/, "CLI must skip ledger when pref errored (not ok, not skipped)");
assert.match(src, /ledgerBlocked/, "CLI must count pref-blocked ledger skips");
// (e) Calls resetOnboardingLedger directly (not via HTTP).
assert.match(src, /import \{[^}]*resetOnboardingLedger[^}]*\} from/, "CLI must import resetOnboardingLedger directly");
// (f) Aggregate-only output — no per-user email/PII in the loop.
assert.doesNotMatch(src, /u\.email/, "CLI must not emit per-user email (PII)");
}
console.log("onboarding-reset tests passed");
process.exit(0);

View File

@@ -0,0 +1,94 @@
import assert from "node:assert/strict";
import { readFileSync } from "node:fs";
import { fileURLToPath } from "node:url";
import { serializeOnboardingState } from "../src/services/onboarding-serialization.js";
type StoredFixture = { onboarding: Record<string, unknown> };
const fixturePath = fileURLToPath(new URL("./fixtures/onboarding-rev10.json", import.meta.url));
const fixture = JSON.parse(readFileSync(fixturePath, "utf8")) as StoredFixture;
const response = serializeOnboardingState("user_3EX1LG3gBk3KY6kfD9PiTkWubs4", fixture.onboarding);
assert.equal(response.id, "user_3EX1LG3gBk3KY6kfD9PiTkWubs4");
assert.equal(response.revision, 10);
assert.equal(response.data.revision, 10);
assert.equal(response.data.status, "completed");
assert.equal(response.data.profile.icp, "experienced");
assert.equal(response.data.access_choice, "trial");
assert.equal(response.data.completed_at, "2026-07-12T21:31:42.957Z");
assert.equal(response.updatedAt, "2026-07-12T21:33:01.914Z");
assert.deepEqual(response.payload, {
schema_version: 1,
source_revision: 10,
primary_intent: "grow",
mode: "individual",
question_branch: "professional",
onboarding_icp: "experienced",
curator_registry_icp: null,
target_role: "Senior Software Engineer",
target_field: "technical",
experience_context: "5+ · clients",
goals: ["role"],
barriers: ["offers"],
priority: "role",
weekly_time_commitment: "steady",
});
const serialized = JSON.parse(JSON.stringify(response));
assert.deepEqual(serialized, response, "GET response must be JSON serializable without losing rev10 state");
const compose = readFileSync(fileURLToPath(new URL("../docker-compose.override.yml", import.meta.url)), "utf8");
assert.match(
compose,
/user-service-staging:\s+external:\s+true\s+name:\s+user-service-staging_default/s,
"backend must join the canonical user-service staging network",
);
assert.doesNotMatch(compose, /name:\s+growqr-app_growqr-net/, "obsolete substitute user network must not be configured");
assert.match(compose, /RESUME_SERVICE_URL:\s+http:\/\/growqr_resume_api:8000/, "backend must route Resume through canonical Docker DNS");
for (const modelKey of ["LLM_MODEL", "GROW_AGENT_MODEL", "CONVERSATION_ACTOR_MODEL"]) {
assert.match(compose, new RegExp(`${modelKey}:\\s+kimi-k2\\.6`), `${modelKey} must stay on the verified staging model`);
}
assert.doesNotMatch(compose, /minimax-m3/, "staging compose must not restore the broken MiniMax model pin");
const canonicalServiceNetworks = [
["interview-service", "interview-service_default"],
["roleplay-service", "roleplay-service_default"],
["resume-builder-staging", "resume-builder-staging_default"],
["course-service", "course-service_default"],
["qscore-service-staging", "qscore-service-staging_default"],
["matchmaking-v2-staging", "matchmaking-v2_default"],
["user-service-staging", "user-service-staging_default"],
] as const;
for (const [key, name] of canonicalServiceNetworks) {
assert.match(
compose,
new RegExp(`${key}:\\s+external:\\s+true\\s+name:\\s+${name.replace(/[.*+?^${}()|[\\]\\]/g, "\\$&")}`, "s"),
`backend must join canonical network ${name}`,
);
}
for (const obsoleteName of [
"resume-builder_default",
"courses_service_default",
"qscore-service_default",
"matchmaking-service_default",
"growqr-app_growqr-net",
]) {
assert.doesNotMatch(compose, new RegExp(`name:\\s+${obsoleteName}`), `obsolete substitute network ${obsoleteName} must not be configured`);
}
const stagingCompose = readFileSync(fileURLToPath(new URL("./staging-compose.sh", import.meta.url)), "utf8");
assert.match(stagingCompose, /PROJECT=growqr-backend-staging/, "staging wrapper must pin the compose project name");
for (const [, name] of canonicalServiceNetworks) {
assert.match(stagingCompose, new RegExp(name.replace(/[.*+?^${}()|[\\]\\]/g, "\\$&")), `staging wrapper must verify ${name}`);
}
const packageJson = JSON.parse(readFileSync(fileURLToPath(new URL("../package.json", import.meta.url)), "utf8")) as {
scripts?: Record<string, string>;
};
assert.equal(packageJson.scripts?.["compose:up"], "scripts/staging-compose.sh up");
assert.equal(packageJson.scripts?.["compose:down"], "scripts/staging-compose.sh down");
assert.equal(packageJson.scripts?.["staging:preflight"], "scripts/staging-compose.sh preflight");
assert.equal(packageJson.scripts?.["staging:verify"], "scripts/staging-compose.sh verify");
console.log("onboarding-rev10-read: fixture serialization and staging network assertions passed");

View File

@@ -0,0 +1,95 @@
import assert from "node:assert/strict";
import { readFile } from "node:fs/promises";
import { canonicalGrowEventEnvelope, correlateEventWithServiceSession } from "../src/events/record-grow-event.js";
import { normalizeGrowEvent } from "../src/events/normalize.js";
import {
projectedSignalsFromQscoreResponse,
QSCORE_GROW_EVENT_DESTINATION,
QSCORE_GROW_EVENT_TOPIC,
} from "../src/events/qscore-event-outbox.js";
const input = {
id: "evt-real-1",
userId: "untrusted-body-user",
orgId: "growqr",
source: "interview-service",
type: "interview.review.completed",
category: "service" as const,
occurredAt: "2026-07-14T10:00:00.000Z",
mission: { instanceId: "mission-1", missionId: "interview-to-offer", stageId: "mock-interview" },
subject: { serviceId: "interview", externalId: "session-1" },
correlation: { sessionId: "session-1", taskId: "task-1" },
payload: {
review: {
overall_score: 78,
rubric_scores: { communication: 82, technical_accuracy: 70 },
},
},
dedupeKey: "interview:session-1:review",
};
const normalized = normalizeGrowEvent(input, { userId: "clerk-user-real" });
assert.equal(
normalized.type,
"interview.feedback.generated",
"backend-only consumers may retain staging's legacy event alias",
);
const canonical = canonicalGrowEventEnvelope(normalized, "clerk-user-real");
assert.deepEqual(canonical, {
...input,
userId: "clerk-user-real",
raw: input,
});
const sessionOnlyInput = { ...input, correlation: { sessionId: "session-1" } };
const sessionOnlyNormalized = normalizeGrowEvent(sessionOnlyInput, { userId: "clerk-user-real" });
const correlated = correlateEventWithServiceSession(sessionOnlyNormalized, "clerk-user-real", {
userId: "clerk-user-real",
missionInstanceId: "mission-1",
missionId: "interview-to-offer",
stageId: "mock-interview",
metadata: { task_id: "task-derived" },
});
const enrichedCanonical = canonicalGrowEventEnvelope(correlated, "clerk-user-real");
assert.deepEqual(enrichedCanonical.correlation, {
sessionId: "session-1",
task_id: "task-derived",
missionInstanceId: "mission-1",
missionId: "interview-to-offer",
stageId: "mock-interview",
});
assert.deepEqual(enrichedCanonical.raw, sessionOnlyInput, "raw producer correlation must remain unchanged");
assert.equal(QSCORE_GROW_EVENT_TOPIC, "qscore.grow_event.raw");
assert.equal(QSCORE_GROW_EVENT_DESTINATION, "/v1/events/ingest");
const projected = projectedSignalsFromQscoreResponse({
projected_signals: [
{ signal_id: "interview.overall_score", score: 45, present: true, evidence: { eventId: input.id } },
{ signal_id: "interview.sessions_completed", evidence: { eventId: input.id } },
],
});
assert.deepEqual(projected, [
{ signalId: "interview.overall_score", score: 45, present: true, raw: { eventId: input.id } },
{ signalId: "interview.sessions_completed", raw: { eventId: input.id } },
]);
const projectorSource = await readFile(new URL("../src/events/projectors/qscore-projector.ts", import.meta.url), "utf8");
for (const forbidden of ["clampScore", "BASELINE_SCORE", "extractResumeSignals", "forwardSignalsToQscoreService"]) {
assert.equal(projectorSource.includes(forbidden), false, `projector must not contain ${forbidden}`);
}
const serviceAgentSource = await readFile(new URL("../src/services/service-agents.ts", import.meta.url), "utf8");
assert.equal(/q_score\s*:\s*\d/.test(serviceAgentSource), false, "service agents must not inject numeric QScore data");
const homeSource = await readFile(new URL("../src/home/home-feed.ts", import.meta.url), "utf8");
for (const forbidden of ["|| 47", "score - 29", "Math.max(35", "ensureOnboardingBaselineQscore"]) {
assert.equal(homeSource.includes(forbidden), false, `Home must not contain synthetic QScore fallback ${forbidden}`);
}
const servicesSource = await readFile(new URL("../src/routes/services.ts", import.meta.url), "utf8");
assert.equal(
/app\.get\("\/qscore\/current"[\s\S]*?qscore\.review\.opened/.test(servicesSource),
false,
"polling the current QScore must remain a read and must not emit a synthetic review event",
);
console.log("qscore raw-event ownership contract: ok");

View File

@@ -0,0 +1,112 @@
import assert from "node:assert/strict";
import { resolveRedisConfig } from "../src/config.js";
/**
* Test: Redis ingestion consumers are default-off and do not load the Redis
* module unless an explicit opt-in flag is set. Legacy URLs must not inherit
* from the generic REDIS_URL.
*
* Uses the pure resolveRedisConfig resolver with synthetic env objects — no
* module-cache hacks needed.
*/
// ── 1. Default-off: no Redis flags set ──────────────────────────────────────
{
const rc = resolveRedisConfig({});
assert.equal(
rc.growEventsRedisEnabled,
false,
"GROW_EVENTS_REDIS_ENABLED must default to false",
);
assert.equal(
rc.legacyServiceRedisEnabled,
false,
"LEGACY_SERVICE_REDIS_ENABLED must default to false",
);
}
// ── 2. Legacy URLs must NOT inherit from generic REDIS_URL ──────────────────
{
// Set ONLY the generic REDIS_URL — legacy URLs must not pick it up.
const rc = resolveRedisConfig({ REDIS_URL: "redis://legacy-generic:6379" });
assert.equal(
rc.interviewRedisUrl,
"",
"interviewRedisUrl must NOT inherit from generic REDIS_URL",
);
assert.equal(
rc.roleplayRedisUrl,
"",
"roleplayRedisUrl must NOT inherit from generic REDIS_URL",
);
assert.equal(
rc.resumeRedisUrl,
"",
"resumeRedisUrl must NOT inherit from generic REDIS_URL",
);
assert.equal(
rc.coursesRedisUrl,
"",
"coursesRedisUrl must NOT inherit from generic REDIS_URL",
);
}
// ── 3. Legacy URLs must NOT inherit from GROW_EVENTS_REDIS_URL ───────────────
{
const rc = resolveRedisConfig({ GROW_EVENTS_REDIS_URL: "redis://canonical:6379" });
assert.equal(
rc.interviewRedisUrl,
"",
"interviewRedisUrl must NOT inherit from GROW_EVENTS_REDIS_URL",
);
assert.equal(rc.growEventsRedisUrl, "redis://canonical:6379", "canonical URL resolves from its own var");
}
// ── 4. Explicit opt-in flags are respected ──────────────────────────────────
{
const rc = resolveRedisConfig({ GROW_EVENTS_REDIS_ENABLED: "true" });
assert.equal(
rc.growEventsRedisEnabled,
true,
"GROW_EVENTS_REDIS_ENABLED=true must be respected",
);
assert.equal(
rc.legacyServiceRedisEnabled,
false,
"legacy must stay off when only canonical flag is set",
);
}
// ── 5. Legacy opt-in flag works independently ───────────────────────────────
{
const rc = resolveRedisConfig({
LEGACY_SERVICE_REDIS_ENABLED: "true",
INTERVIEW_REDIS_URL: "redis://interview:6379",
});
assert.equal(rc.legacyServiceRedisEnabled, true, "LEGACY_SERVICE_REDIS_ENABLED=true must be respected");
assert.equal(rc.growEventsRedisEnabled, false, "canonical must stay off when only legacy flag is set");
assert.equal(rc.interviewRedisUrl, "redis://interview:6379", "explicit interview URL resolves");
}
// ── 6. Explicit legacy URLs resolve from their own vars ──────────────────────
{
const rc = resolveRedisConfig({
INTERVIEW_REDIS_URL: "redis://i:6379",
ROLEPLAY_REDIS_URL: "redis://r:6379",
RESUME_REDIS_URL: "redis://re:6379",
COURSES_REDIS_URL: "redis://c:6379",
});
assert.equal(rc.interviewRedisUrl, "redis://i:6379");
assert.equal(rc.roleplayRedisUrl, "redis://r:6379");
assert.equal(rc.resumeRedisUrl, "redis://re:6379");
assert.equal(rc.coursesRedisUrl, "redis://c:6379");
}
console.log("redis-gating tests passed");
process.exit(0);

View File

@@ -0,0 +1,37 @@
import assert from "node:assert/strict";
import { serviceRoutes } from "../src/routes/services.js";
const originalFetch = globalThis.fetch;
const requests: Request[] = [];
globalThis.fetch = (async (input, init) => {
const request = new Request(input, init);
requests.push(request);
const path = new URL(request.url).pathname;
if (request.method === "DELETE" && path.endsWith("/api/v1/resumes/resume-1")) {
return new Response(null, { status: 204 });
}
return new Response("<html>preview</html>", {
status: 200,
headers: { "content-type": "text/html; charset=utf-8" },
});
}) as typeof fetch;
const app = serviceRoutes({ skipAuth: true });
try {
const preview = await app.request("http://backend.test/resume/export/resumes/resume-1/preview");
assert.equal(preview.status, 200);
assert.equal(await preview.text(), "<html>preview</html>");
assert.equal(new URL(requests[0]!.url).pathname, "/api/v1/export/resumes/resume-1/preview");
assert.equal(requests[0]!.headers.get("x-growqr-user"), "user_test");
assert.match(requests[0]!.headers.get("authorization") ?? "", /^Bearer /);
const deleted = await app.request("http://backend.test/resume/resumes/resume-1", { method: "DELETE" });
assert.equal(deleted.status, 204);
assert.equal(await deleted.text(), "");
assert.equal(new URL(requests[1]!.url).pathname, "/api/v1/resumes/resume-1");
} finally {
globalThis.fetch = originalFetch;
}
console.log("resume gateway proxy tests passed");

View File

@@ -0,0 +1,30 @@
import assert from "node:assert/strict";
import { resumeService } from "../src/services/product-service-clients.js";
const originalFetch = globalThis.fetch;
const requests: Array<{ url: string; headers: Headers; body: string }> = [];
globalThis.fetch = async (input, init) => {
const request = new Request(input, init);
requests.push({
url: request.url,
headers: request.headers,
body: await request.text(),
});
return new Response("{}", { status: 200, headers: { "content-type": "application/json" } });
};
try {
await resumeService.state("user_canonical");
await resumeService.listResumes("user_canonical");
await resumeService.createResume({ user_id: "user_from_payload" }, "user_canonical");
assert.equal(requests.length, 3);
for (const request of requests) {
assert.equal(request.headers.get("x-growqr-user"), "user_canonical");
assert.match(request.headers.get("authorization") ?? "", /^Bearer /);
}
console.log("resume user identity forwarding: all assertions passed");
} finally {
globalThis.fetch = originalFetch;
}

View File

@@ -0,0 +1,58 @@
import assert from "node:assert/strict";
import { serviceRoutes } from "../src/routes/services.js";
const originalFetch = globalThis.fetch;
const requests: Request[] = [];
globalThis.fetch = (async (input, init) => {
const request = new Request(input, init);
requests.push(request);
const url = new URL(request.url);
const body = url.pathname.endsWith("/drafts")
? { drafts: [{ session_id: "draft-1" }] }
: url.pathname.endsWith("/plan")
? { session_id: "draft-1", status: "draft" }
: url.pathname.endsWith("/configure/approve")
? { session_id: "draft-1", status: "configured", approved: true }
: { deleted: true, session_id: "draft-1" };
return new Response(JSON.stringify(body), {
status: 200,
headers: { "content-type": "application/json" },
});
}) as typeof fetch;
const app = serviceRoutes({ skipAuth: true });
try {
const drafts = await app.request("http://backend.test/roleplay/drafts?limit=25");
assert.equal(drafts.status, 200);
assert.deepEqual(await drafts.json(), { drafts: [{ session_id: "draft-1" }] });
const plan = await app.request("http://backend.test/roleplay/plan/draft-1");
assert.equal(plan.status, 200);
assert.deepEqual(await plan.json(), { session_id: "draft-1", status: "draft" });
const approved = await app.request("http://backend.test/roleplay/approve", {
method: "POST",
headers: { "content-type": "application/json" },
body: JSON.stringify({ session_id: "draft-1" }),
});
assert.equal(approved.status, 200);
assert.deepEqual(await approved.json(), { session_id: "draft-1", status: "configured", approved: true });
const deleted = await app.request("http://backend.test/roleplay/drafts/draft-1", { method: "DELETE" });
assert.equal(deleted.status, 200);
assert.deepEqual(await deleted.json(), { deleted: true, session_id: "draft-1" });
assert.equal(requests.length, 4);
assert.match(requests[0]!.url, /\/api\/v1\/roleplays\/drafts\?user_id=user_test&limit=25$/);
assert.match(requests[1]!.url, /\/api\/v1\/roleplays\/sessions\/draft-1\/plan$/);
assert.match(requests[2]!.url, /\/api\/v1\/roleplays\/configure\/approve$/);
assert.equal(requests[3]!.method, "DELETE");
assert.match(requests[3]!.url, /\/api\/v1\/roleplays\/drafts\/draft-1$/);
for (const request of requests) {
assert.equal(request.headers.get("x-growqr-user"), "user_test");
assert.match(request.headers.get("authorization") ?? "", /^Bearer /);
}
console.log("roleplay draft gateway: all assertions passed");
} finally {
globalThis.fetch = originalFetch;
}

View File

@@ -0,0 +1,101 @@
import assert from "node:assert/strict";
import { buildPersonalizedRoleplayConfigurePayload } from "../src/routes/services.js";
import { toQscoreUserId } from "../src/services/qscore-proxy.js";
const clerkUserId = "user_3GTcs6PBFcUrXUP6bH6U8dcwXBq";
const originalFetch = globalThis.fetch;
const requests: Request[] = [];
globalThis.fetch = (async (input, init) => {
const request = new Request(input, init);
requests.push(request);
return new Response(
JSON.stringify({
org_id: "growqr",
user_id: toQscoreUserId(clerkUserId),
rq_score: 61,
iq_score: 60,
eq_score: 62,
sq_score: 61,
profession: "General",
formula_version: "v1",
formula_id: "default",
calculated_at: "2026-07-14T00:00:00Z",
quotients: {},
breakdown: {},
ledger_seq_from: null,
ledger_seq_to: null,
}),
{ status: 200, headers: { "content-type": "application/json" } },
);
}) as typeof fetch;
try {
const payload = await buildPersonalizedRoleplayConfigurePayload(
new Request("http://backend.test/roleplay/preview"),
{
scenario_type: "salary-negotiation",
metadata: { difficulty: "medium" },
},
clerkUserId,
{
resolveUserContext: async () => ({ clerk_id: clerkUserId }),
},
);
assert.equal(requests.length, 1);
const qscoreUrl = new URL(requests[0]!.url);
assert.equal(qscoreUrl.pathname, `/v1/qscore/${toQscoreUserId(clerkUserId)}`);
assert.equal(qscoreUrl.searchParams.get("org_id"), "growqr");
assert.equal((payload.qscore as Record<string, unknown>).rq_score, 61);
assert.equal(payload.user_id, clerkUserId);
requests.length = 0;
const suppliedPayload = await buildPersonalizedRoleplayConfigurePayload(
new Request("http://backend.test/roleplay/preview"),
{
qscore: { rq_score: 74, source: "caller" },
metadata: {},
},
clerkUserId,
{
resolveUserContext: async () => ({
clerk_id: clerkUserId,
qscore: { rq_score: 68, source: "context" },
}),
},
);
assert.equal(requests.length, 0);
assert.deepEqual(suppliedPayload.qscore, { rq_score: 74, source: "caller" });
const curatorTaskId = "curator-sprint:icp-v10-static:2026-07-14:day-2:practice:roleplay";
const correlatedPayload = await buildPersonalizedRoleplayConfigurePayload(
new Request("http://backend.test/roleplay/preview"),
{
qscore: { rq_score: 74 },
metadata: {},
curatorTaskId,
taskId: curatorTaskId,
mission: {
source: "curator-v1",
missionId: "curator-sprint",
missionInstanceId: "curator-sprint:icp-v10-static:2026-07-14",
stageId: "wk-1:day-2:practice:roleplay",
},
},
clerkUserId,
{ resolveUserContext: async () => ({ clerk_id: clerkUserId }) },
);
assert.deepEqual(correlatedPayload.mission, {
source: "curator-v1",
missionId: "curator-sprint",
missionInstanceId: "curator-sprint:icp-v10-static:2026-07-14",
stageId: "wk-1:day-2:practice:roleplay",
});
assert.equal(correlatedPayload.curatorTaskId, curatorTaskId);
assert.equal(correlatedPayload.taskId, curatorTaskId);
console.log("roleplay QScore identity: all assertions passed");
} finally {
globalThis.fetch = originalFetch;
}

View File

@@ -0,0 +1,23 @@
import assert from "node:assert/strict";
import { readFile } from "node:fs/promises";
const [proxy, latestRoute, servicesRoute, schema, migration, homeTypes] = await Promise.all([
readFile(new URL("../src/services/qscore-proxy.ts", import.meta.url), "utf8"),
readFile(new URL("../src/v1/qscore/qscore-routes.ts", import.meta.url), "utf8"),
readFile(new URL("../src/routes/services.ts", import.meta.url), "utf8"),
readFile(new URL("../src/db/schema.ts", import.meta.url), "utf8"),
readFile(new URL("../drizzle/0016_rq_score_snapshot.sql", import.meta.url), "utf8"),
readFile(new URL("../src/home/types.ts", import.meta.url), "utf8"),
]);
assert.match(proxy, /const rqScore = body\.rq_score;/, "service proxy must require rq_score");
assert.doesNotMatch(proxy, /body\.q_score/, "service proxy must not accept the old q_score field");
assert.match(latestRoute, /rq_score: result\.rq_score/, "latest API must expose rq_score");
assert.doesNotMatch(latestRoute, /\bscore: result\.rq_score/, "latest API must not alias RQ Score as score");
assert.match(servicesRoute, /rq_score: rqScore/, "gateway API must expose rq_score");
assert.match(schema, /rqScore: integer\("rq_score"\)/, "snapshot schema must map rq_score");
assert.match(migration, /RENAME COLUMN "score" TO "rq_score"/, "migration must preserve snapshot data while renaming the column");
assert.match(homeTypes, /rqScore: \{ from:/, "home API must expose rqScore");
assert.doesNotMatch(homeTypes, /\bqx:/, "home API must not expose the old qx field");
console.log("rq score API and database contract: ok");

View File

@@ -0,0 +1,30 @@
import assert from "node:assert/strict";
import { canonicalGrowEventEnvelope } from "../src/events/record-grow-event.js";
import { normalizeGrowEvent } from "../src/events/normalize.js";
/** Every service family is forwarded as a canonical event with unchanged real
* payload. Extraction and signal validation now run only in QScore. */
const cases = [
["resume-builder", "resume.analysis.completed", { analysis: { score_breakdown: [{ category: "ATS Compatibility", score: 75 }] } }],
["qscore-service", "qscore.signal.projected", { score: 65 }],
["social-branding-service", "brand.profile.updated", { profile: { headline: "Real headline" } }],
["unknown-service", "service.completed", {}],
["matchmaking-v2", "matchmaking.match.applied", { applications_submitted: 3 }],
] as const;
for (const [source, type, payload] of cases) {
const canonical = canonicalGrowEventEnvelope(normalizeGrowEvent({
id: `event-${type}`,
userId: "real-user",
source,
type,
category: "service",
occurredAt: "2026-07-14T00:00:00.000Z",
payload,
}), "real-user");
assert.equal(canonical.source, source);
assert.equal(canonical.type, type);
assert.deepEqual(canonical.payload, payload);
}
console.log("service raw-ingest forwarding tests passed");

View File

@@ -0,0 +1,116 @@
import assert from "node:assert/strict";
import { correlateEventWithServiceSession, normalizeServiceId, resolveUniqueSessionUserId, serviceEventExternalIds } from "../src/events/record-grow-event.js";
import { canonicalGrowEventType, normalizeGrowEvent } from "../src/events/normalize.js";
import type { GrowEventEnvelope } from "../src/events/envelope.js";
{
const normalized = normalizeGrowEvent({
source: "interview-service",
type: "interview.session.completed",
correlation: { session_id: "session-1", taskId: "nested-task", keep: "yes" },
task_id: "top-level-task",
payload: { curator_task_id: "payload-task" },
});
assert.equal(normalized.correlation?.session_id, "session-1");
assert.equal(normalized.correlation?.keep, "yes");
assert.equal(normalized.correlation?.task_id, "nested-task");
assert.equal(normalized.correlation?.taskId, undefined);
assert.equal(normalized.correlation?.curatorTaskId, undefined);
}
{
const standalone = normalizeGrowEvent({ source: "social-service", type: "social.account.connected" });
assert.equal(standalone.correlation, undefined);
assert.equal(standalone.type, "brand.account.connected");
}
{
assert.equal(resolveUniqueSessionUserId([{ userId: "user-a" }]), "user-a");
assert.equal(resolveUniqueSessionUserId([{ userId: "user-a" }, { userId: "user-a" }]), "user-a");
assert.equal(resolveUniqueSessionUserId([{ userId: "user-a" }, { userId: "user-b" }]), undefined);
}
const event: GrowEventEnvelope = {
id: "event-1",
userId: "user-a",
source: "interview-service",
type: "interview.session.completed",
category: "service",
occurredAt: "2026-07-14T00:00:00.000Z",
correlation: { sessionId: "session-1" },
payload: { status: "completed" },
};
const link = {
userId: "user-a",
missionInstanceId: "sprint-1",
missionId: "curator-sprint",
stageId: "day-1:interview",
metadata: { task_id: "curator-task-1" },
};
{
const correlated = correlateEventWithServiceSession(event, "user-a", link);
assert.deepEqual(correlated.correlation, {
sessionId: "session-1",
task_id: "curator-task-1",
missionInstanceId: "sprint-1",
missionId: "curator-sprint",
stageId: "day-1:interview",
});
assert.deepEqual(correlated.mission, {
instanceId: "sprint-1",
missionId: "curator-sprint",
stageId: "day-1:interview",
});
}
{
const foreign = correlateEventWithServiceSession(event, "user-a", { ...link, userId: "user-b" });
assert.strictEqual(foreign, event, "a service session owned by another user must never enrich the event");
}
{
const sessionless = correlateEventWithServiceSession(event, "user-a", undefined);
assert.strictEqual(sessionless, event, "without an exact session link, historical events must not enrich correlation");
}
{
const unresolved = correlateEventWithServiceSession(event, undefined, link);
assert.strictEqual(unresolved, event, "an unresolved event must never inherit session context");
}
{
const explicit = correlateEventWithServiceSession({
...event,
mission: { missionId: "explicit-mission", stageId: "explicit-stage" },
correlation: { sessionId: "session-1", task_id: "explicit-task" },
}, "user-a", link);
assert.equal(explicit.correlation?.task_id, "explicit-task");
assert.deepEqual(explicit.mission, { missionId: "explicit-mission", stageId: "explicit-stage" });
}
{
assert.deepEqual(serviceEventExternalIds({
...event,
correlation: { courseId: "course-1", lesson_id: "lesson-1", externalId: "course-1" },
subject: { serviceId: "courses-service", externalId: "lesson-1" },
payload: { resume_id: "resume-1", assessmentId: "assessment-1" },
}), ["course-1", "lesson-1", "resume-1", "assessment-1"]);
}
{
assert.equal(normalizeServiceId("social-branding-service"), "brand");
assert.equal(normalizeServiceId("courses-service"), "course");
assert.equal(normalizeServiceId("cover-letter-service"), "cover_letter");
assert.equal(normalizeServiceId("matchmaking-v2"), "matchmaking");
}
{
assert.equal(canonicalGrowEventType("roleplay.session.completed"), "roleplay.scenario.completed");
assert.equal(canonicalGrowEventType("roleplay.review.completed"), "roleplay.feedback.generated");
assert.equal(canonicalGrowEventType("course.video.completed"), "course.completed");
assert.equal(canonicalGrowEventType("course.video.started"), "course.started");
assert.equal(canonicalGrowEventType("course.lesson.started"), "course.started");
assert.equal(canonicalGrowEventType("social.profile.synced"), "brand.profile.updated");
assert.equal(canonicalGrowEventType("resume.analysis.completed"), "resume.analysis.completed");
}
console.log("service session correlation tests passed");

View File

@@ -0,0 +1,122 @@
import assert from "node:assert/strict";
import type { GrowEventRow } from "../src/db/schema.js";
import { recordGatewayEvent } from "../src/routes/services.js";
for (const service of [
{
source: "interview-service",
type: "interview.session.configured",
serviceId: "interview",
},
{
source: "roleplay-service",
type: "roleplay.scenario.configured",
serviceId: "roleplay",
},
] as const) {
const event = {
id: `event-${service.serviceId}`,
userId: "user-1",
orgId: null,
source: service.source,
type: service.type,
category: "service",
occurredAt: new Date("2026-07-14T00:00:00.000Z"),
receivedAt: new Date("2026-07-14T00:00:00.000Z"),
mission: null,
subject: { serviceId: service.serviceId, externalId: "session-1" },
correlation: { sessionId: "session-1" },
payload: {},
raw: null,
dedupeKey: `dedupe-${service.serviceId}`,
processingStatus: "pending",
processingError: null,
processedAt: null,
} as GrowEventRow;
const order: string[] = [];
const returned = await recordGatewayEvent(
{
userId: "user-1",
source: service.source,
type: service.type,
payload: { session_id: "session-1" },
},
{
recordLegacyEvent: async () => {
order.push("legacy");
},
recordGrowEvent: async () => {
order.push("record");
return event;
},
applyServiceSessionProjection: async (projectedEvent) => {
assert.strictEqual(projectedEvent, event);
order.push("project");
return null;
},
routeGrowEventToUserActor: async (routedEvent) => {
assert.strictEqual(routedEvent, event);
order.push("route");
},
},
);
assert.strictEqual(returned, event);
assert.deepEqual(order, ["legacy", "record", "project", "route"], `${service.serviceId} must project ownership before actor routing`);
}
const configureDedupeKeys: string[] = [];
for (const sessionId of ["streak-session-1", "streak-session-2"]) {
await recordGatewayEvent(
{
userId: "user-1",
source: "interview-service",
type: "interview.session.configured",
payload: {
request: { curatorTaskId: "curator-task-1", taskId: "curator-task-1" },
result: { session_id: sessionId },
},
correlation: {
sessionId,
curatorTaskId: "curator-task-1",
taskId: "curator-task-1",
},
},
{
recordLegacyEvent: async () => undefined,
recordGrowEvent: async (input) => {
configureDedupeKeys.push(input.dedupeKey ?? "");
return {
id: `event-${sessionId}`,
userId: "user-1",
orgId: null,
source: "interview-service",
type: "interview.session.configured",
category: "service",
occurredAt: new Date("2026-07-14T00:00:00.000Z"),
receivedAt: new Date("2026-07-14T00:00:00.000Z"),
mission: null,
subject: { serviceId: "interview", externalId: sessionId },
correlation: { sessionId, curatorTaskId: "curator-task-1" },
payload: {},
raw: null,
dedupeKey: input.dedupeKey ?? null,
processingStatus: "pending",
processingError: null,
processedAt: null,
} as GrowEventRow;
},
applyServiceSessionProjection: async () => null,
routeGrowEventToUserActor: async () => undefined,
},
);
}
assert.notEqual(
configureDedupeKeys[0],
configureDedupeKeys[1],
"reconfiguring the same curator streak task must record ownership for each generated interview session",
);
console.log("interview and roleplay service session projection ordering tests passed");

View File

@@ -0,0 +1,11 @@
import assert from "node:assert/strict";
import { resolveServiceToken } from "../src/config.js";
assert.equal(resolveServiceToken({}), "", "missing SERVICE_TOKEN must resolve to an empty config value");
assert.equal(
resolveServiceToken({ SERVICE_TOKEN: "explicit" }),
"explicit",
"explicit SERVICE_TOKEN must be preserved",
);
console.log("service-token-config: all assertions passed");

View File

@@ -0,0 +1,30 @@
import assert from "node:assert/strict";
import { readFile } from "node:fs/promises";
import { canonicalGrowEventEnvelope } from "../src/events/record-grow-event.js";
import { normalizeGrowEvent } from "../src/events/normalize.js";
/**
* Signal registration and all 67 extraction policies belong to QScore. This
* backend contract test prevents the old local registry/projector from being
* reintroduced while proving the complete raw evidence reaches QScore.
*/
const raw = {
id: "evt-full-evidence",
source: "resume-builder",
type: "resume.analysis.completed",
category: "service" as const,
occurredAt: "2026-07-14T00:00:00.000Z",
payload: {
analysis: {
score_breakdown: [{ category: "ATS Compatibility", score: 70 }],
dimensional_scores: [{ dimension: "Keywords", score: 60 }],
},
},
};
const event = canonicalGrowEventEnvelope(normalizeGrowEvent(raw), "real-user");
assert.deepEqual(event.payload, raw.payload, "raw evidence must reach QScore without signal extraction");
const projector = await readFile(new URL("../src/events/projectors/qscore-projector.ts", import.meta.url), "utf8");
assert.equal(projector.includes("extractQscoreSignals"), false);
assert.equal(projector.includes("signalId"), false);
console.log("signal registry ownership test passed");

64
scripts/staging-compose.sh Executable file
View File

@@ -0,0 +1,64 @@
#!/bin/sh
set -eu
PROJECT=growqr-backend-staging
COMPOSE="docker compose -p $PROJECT -f docker-compose.yml -f docker-compose.override.yml"
REQUIRED_NETWORKS="growqr-backend-staging_default interview-service_default roleplay-service_default resume-builder-staging_default course-service_default qscore-service-staging_default matchmaking-v2_default user-service-staging_default"
EXTERNAL_NETWORKS="interview-service_default roleplay-service_default resume-builder-staging_default course-service_default qscore-service-staging_default matchmaking-v2_default user-service-staging_default"
preflight() {
for network in $EXTERNAL_NETWORKS; do
docker network inspect "$network" >/dev/null
done
$COMPOSE config --quiet
}
verify() {
actual=$(docker inspect growqr-backend --format '{{range $name, $_ := .NetworkSettings.Networks}}{{$name}} {{end}}')
for network in $REQUIRED_NETWORKS; do
case " $actual " in
*" $network "*) ;;
*) echo "missing backend network: $network" >&2; exit 1 ;;
esac
done
for network in $actual; do
case " $REQUIRED_NETWORKS " in
*" $network "*) ;;
*) echo "unexpected backend network: $network" >&2; exit 1 ;;
esac
done
docker exec growqr-backend node --input-type=module -e '
const checks = [
["user-service", "http://growqr_user_service:8003/health"],
["qscore", "http://qscore-service-staging-api-1:8000/health"],
["course", "http://growqr-course-service:8010/health"],
["resume", "http://growqr_resume_api:8000/health"],
["interview", "http://interview-service-api-1:8000/health"],
["roleplay", "http://roleplay-service-api-1:8000/health"],
];
let failed = false;
for (const [name, url] of checks) {
try {
const response = await fetch(url, { signal: AbortSignal.timeout(3000) });
console.log(name, response.status);
if (response.status !== 200) failed = true;
} catch (error) {
console.error(name, "ERROR", error.message);
failed = true;
}
}
if (failed) process.exit(1);
'
docker exec growqr-backend node --input-type=module -e "const response=await fetch('http://127.0.0.1:4000/healthz',{signal:AbortSignal.timeout(3000)});console.log('backend',response.status);if(response.status!==200)process.exit(1)"
}
action=${1:-}
[ "$#" -gt 0 ] && shift
case "$action" in
preflight) preflight ;;
verify) verify ;;
up) preflight; $COMPOSE up -d "$@"; verify ;;
down) $COMPOSE down "$@" ;;
*) echo "Usage: scripts/staging-compose.sh <preflight|verify|up|down> [compose args]" >&2; exit 2 ;;
esac

View File

@@ -0,0 +1,95 @@
import assert from "node:assert/strict";
import { computeStreakFromDays } from "../src/v1/curator/streak-utils.js";
/**
* Test: Streak policies — current/longest, same-day duplicate, gap reset,
* recovery (resume after gap), and seven-day eligibility.
*
* Uses the pure computeStreakFromDays function with a fixed "today" so tests
* are deterministic.
*/
const TODAY = "2026-07-10";
// ── 1. Current and longest from a contiguous run ending today ────────────────
{
const days = ["2026-07-10", "2026-07-09", "2026-07-08"];
const streak = computeStreakFromDays(days, TODAY);
assert.equal(streak.current_days, 3, "current streak should be 3 for 3 consecutive days ending today");
assert.equal(streak.longest_days, 3, "longest should match current when run is unbroken");
assert.equal(streak.last_completed_on, "2026-07-10");
}
// ── 2. Same-day duplicate must not inflate the streak ────────────────────────
// computeStreakFromDays requires deduplicated days (the SQL GROUP BY ensures
// this in production). Passing a duplicate should not double-count.
{
const days = ["2026-07-10", "2026-07-10", "2026-07-09"];
const streak = computeStreakFromDays(days, TODAY);
// With a duplicate, the descending list has two "today" entries. The while
// loop checks `days.includes(cursor)` which is set-based, so current stays 2.
// But the longest loop iterates ALL entries including the dup, which could
// inflate longest to 3. The correct behavior: duplicates must not inflate.
assert.equal(streak.current_days, 2, "duplicate day must not inflate current streak");
assert.equal(
streak.longest_days,
2,
"duplicate day must not inflate longest streak — duplicates should be deduped before counting",
);
}
// ── 3. Gap resets the current streak ─────────────────────────────────────────
{
// Completed today and 3 days ago — gap breaks current streak
const days = ["2026-07-10", "2026-07-07"];
const streak = computeStreakFromDays(days, TODAY);
assert.equal(streak.current_days, 1, "gap resets current streak to 1 (only today)");
assert.equal(streak.longest_days, 1, "longest should also be 1 with only isolated days");
}
// ── 4. Recovery: longest captures a past longer run even if current is broken ─
{
// 5-day run last week, then a gap, then completed today
const days = [
"2026-07-10", // today (current restart)
"2026-07-05", // past run: Jul 15
"2026-07-04",
"2026-07-03",
"2026-07-02",
"2026-07-01",
];
const streak = computeStreakFromDays(days, TODAY);
assert.equal(streak.current_days, 1, "current is 1 after a gap even if a longer past run exists");
assert.equal(streak.longest_days, 5, "longest should capture the 5-day past run");
}
// ── 5. Seven-day eligibility: a 7-day streak counts as eligible ──────────────
{
const days = [
"2026-07-10", "2026-07-09", "2026-07-08",
"2026-07-07", "2026-07-06", "2026-07-05", "2026-07-04",
];
const streak = computeStreakFromDays(days, TODAY);
assert.equal(streak.current_days, 7, "7 consecutive days should yield current=7");
assert.equal(streak.longest_days, 7, "7 consecutive days should yield longest=7");
assert.ok(streak.current_days >= 7, "7-day streak eligibility threshold met");
}
// ── 6. Empty days yields zero streak ─────────────────────────────────────────
{
const streak = computeStreakFromDays([], TODAY);
assert.equal(streak.current_days, 0);
assert.equal(streak.longest_days, 0);
assert.equal(streak.last_completed_on, null);
}
// ── 7. Yesterday keeps the current streak alive until today's IST day closes ─
{
const days = ["2026-07-09"];
const streak = computeStreakFromDays(days, TODAY);
assert.equal(streak.current_days, 1, "yesterday remains current during the one-day grace window");
assert.equal(streak.longest_days, 1, "longest should still count the 1-day run");
}
console.log("streak-policy tests passed");
process.exit(0);

View File

@@ -0,0 +1,97 @@
import assert from "node:assert/strict";
import { isProcessableStatus } from "../src/actors/events/user-event-actor.js";
/**
* Regression: one failed event must not block the next event in the queue.
*
* Before the fix, the actor's run loop used loopCtx.step + manual try/catch
* that rethrew on failure. The rethrow stalled the ctx.loop, preventing
* subsequent queued messages from being processed.
*
* After the fix, the loop uses tryStep (failures caught, event marked terminal)
* and a DB status guard (isProcessableStatus) that only skips truly inert rows.
*
* Dual-path rationale: the synchronous ingress paths (routes/events.ts,
* redis-consumer.ts, v1/events/events-routes.ts) run projections and mark the
* event "processed". The actor runs mission reducers (stage patches, artifacts,
* actions) that ONLY exist in the actor. So the actor must still process
* "processed" events to run mission reducers — projections are idempotent so
* re-running them is safe, and the in-memory processedEventIds guard prevents
* double-processing within one actor lifetime. The routing gate
* (shouldRouteGrowEvent) prevents saturation from duplicate ingests; this guard
* is defense-in-depth that only blocks "failed" and "unresolved".
*/
// ── 1. Pending → processable (first attempt) ─────────────────────────────────
assert.equal(isProcessableStatus("pending"), true, "pending events must be processable");
// ── 2. Processing → processable (crash recovery: retry idempotent work) ──────
// A prior attempt called markGrowEventProcessing then crashed before completing.
// The actor restarts, replays the queue message, and must retry.
assert.equal(isProcessableStatus("processing"), true, "processing events must be retryable after a crash");
// ── 3. Processed → processable (actor must run mission reducers) ─────────────
// The sync ingress path marks "processed" after projections. The actor still
// needs to run mission reducers — the only place they exist. Projections
// re-running is safe (idempotent). processedEventIds prevents in-memory dupes.
assert.equal(
isProcessableStatus("processed"),
true,
"processed events must be processable — actor must run mission reducers that only exist in the actor",
);
// ── 4. Failed → NOT processable (terminal, do not retry) ─────────────────────
// A per-event failure was already marked terminal by the record-failure step.
assert.equal(isProcessableStatus("failed"), false, "failed events must be skipped");
// ── 5. Unresolved → NOT processable (no userId, nothing to do) ───────────────
assert.equal(isProcessableStatus("unresolved"), false, "unresolved events must be skipped");
// ── 6. Null/undefined → NOT processable (defensive) ──────────────────────────
assert.equal(isProcessableStatus(null), false, "null status must be skipped");
assert.equal(isProcessableStatus(undefined), false, "undefined status must be skipped");
// ── 7. Unknown status → NOT processable (defensive) ──────────────────────────
assert.equal(isProcessableStatus("unknown"), false, "unknown status must be skipped");
// ── 8. Queue advancement simulation ──────────────────────────────────────────
// Queue: [pending, processed, pending]. Actor processes ALL three — the
// "processed" one still gets mission reducers. The key point: none of them
// block the next. This proves one event does not stall the queue.
{
const statuses = ["pending", "processed", "pending"] as const;
const processable = statuses.map((s) => isProcessableStatus(s));
assert.deepEqual(
processable,
[true, true, true],
"actor must process all three — processed event still runs mission reducers, none block the next",
);
}
// ── 9. Failed event does not block the next ──────────────────────────────────
// Queue: [failed, pending]. Actor skips the failed one and processes the next.
// This is the core regression: one failed event must not block subsequent events.
{
const statuses = ["failed", "pending"] as const;
const processable = statuses.map((s) => isProcessableStatus(s));
assert.deepEqual(
processable,
[false, true],
"actor must skip failed event and process the next pending event — failed does not block",
);
}
// ── 10. Crash-recovery queue simulation ──────────────────────────────────────
// Queue: [processing (crashed), pending]. Actor retries #1 and processes #2.
{
const statuses = ["processing", "pending"] as const;
const processable = statuses.map((s) => isProcessableStatus(s));
assert.deepEqual(
processable,
[true, true],
"actor must retry a crashed 'processing' event AND process the next pending event",
);
}
console.log("user-event-actor-advance tests passed");
process.exit(0);

View File

@@ -0,0 +1,315 @@
import assert from "node:assert/strict";
import { readFileSync } from "node:fs";
import { config } from "../src/config.js";
import { resolveTrustedServiceTokens } from "../src/auth/clerk.js";
import { fetchOnboardingReadProfile, fetchUserProfile, patchPreferencesRequest } from "../src/services/user-profile.js";
/**
* Regression test for the PATCH /onboarding 500.
*
* Root cause: the PATCH handler parsed its JSON body via `c.req.json()`
* (consuming `c.req.raw` / setting bodyUsed), then called fetchUserProfile
* with the same Request. fetchUserProfile replayed the inbound method+body to
* user-service /me, so fetchUserService did `await req.arrayBuffer()` on an
* already-consumed body → `TypeError: Body is unusable` → uncaught → global
* onError → {"error":"internal"}, 500. GET /onboarding worked only because it
* never reads a body, so fetchUserService skipped arrayBuffer.
*
* This test reproduces the exact precondition — consume the body first — and
* asserts the fix: fetchUserProfile issues an explicit GET that never touches
* the inbound Request's body. It would have thrown before the fix and passes
* after.
*/
// Capture the outgoing fetch call.
type FetchCall = { method: string; url: string; bodyTouched: boolean };
async function runFetchUserProfileAfterBodyConsumed(): Promise<{
profile: Record<string, unknown>;
call: FetchCall;
}> {
const originalFetch = globalThis.fetch;
let captured: FetchCall | null = null;
const req = new Request("https://backend.test/api/growqr/users/onboarding", {
method: "PATCH",
headers: { "content-type": "application/json", authorization: "Bearer test" },
body: JSON.stringify({ data: { access_choice: "trial" }, expectedRevision: 0 }),
});
// Simulate what the PATCH handler does: parse the JSON body. This marks
// req.bodyUsed = true — the precondition that triggered the 500.
await req.json();
globalThis.fetch = (async (input: URL | Request, init?: RequestInit) => {
const target = input instanceof URL ? input : new URL(input instanceof Request ? input.url : String(input));
// Detect if the caller tried to re-read the original (consumed) Request body.
let bodyTouched = false;
if (input instanceof Request) {
try {
await input.clone().arrayBuffer();
bodyTouched = input.bodyUsed;
} catch {
bodyTouched = true; // Body is unusable — the original bug.
}
}
captured = { method: init?.method ?? input.method ?? "GET", url: target.href, bodyTouched };
return new Response(JSON.stringify({ preferences: { onboarding: { access_choice: "trial" } } }), {
status: 200,
headers: { "content-type": "application/json" },
});
}) as typeof globalThis.fetch;
try {
const profile = await fetchUserProfile(req);
assert(captured, "fetch was never called");
return { profile, call: captured };
} finally {
globalThis.fetch = originalFetch;
}
}
// ── 1. no throw when inbound body was already consumed ──────────────────────
{
const { call } = await runFetchUserProfileAfterBodyConsumed();
assert.equal(call.bodyTouched, false, "fetchUserProfile must not re-read the inbound Request body");
}
// ── 2. outgoing method is GET (a read, never PATCH) ─────────────────────────
{
const { call } = await runFetchUserProfileAfterBodyConsumed();
assert.equal(call.method, "GET", "fetchUserProfile must issue GET /me regardless of inbound method");
}
// ── 3. target is /api/v1/users/me and profile parses ───────────────────────
{
const { profile, call } = await runFetchUserProfileAfterBodyConsumed();
assert.ok(call.url.endsWith("/api/v1/users/me"), `expected /me URL, got ${call.url}`);
assert.deepEqual(profile, { preferences: { onboarding: { access_choice: "trial" } } });
}
// ── 4. content-type header is stripped (GET has no body) ────────────────────
{
const originalFetch = globalThis.fetch;
let capturedHeaders: Headers | null = null;
globalThis.fetch = (async (input: URL | Request, init?: RequestInit) => {
capturedHeaders = new Headers(init?.headers ?? {});
return new Response("{}", { status: 200, headers: { "content-type": "application/json" } });
}) as typeof globalThis.fetch;
try {
const req = new Request("https://backend.test/api/growqr/users/onboarding", {
method: "PATCH",
headers: { "content-type": "application/json" },
body: JSON.stringify({}),
});
await req.json();
await fetchUserProfile(req);
assert.ok(capturedHeaders, "fetch was never called");
assert.equal(capturedHeaders!.get("content-type"), null, "content-type must be stripped from GET /me");
} finally {
globalThis.fetch = originalFetch;
}
}
// ── 5. non-2xx surfaces a thrown error (caller handles) ─────────────────────
{
const originalFetch = globalThis.fetch;
globalThis.fetch = (async () => new Response("nope", { status: 503 })) as typeof globalThis.fetch;
try {
const req = new Request("https://backend.test/api/growqr/users/onboarding", { method: "GET" });
await assert.rejects(
() => fetchUserProfile(req),
/user-service \/me fetch failed: 503/,
);
} finally {
globalThis.fetch = originalFetch;
}
}
// ── 6. synthetic PATCH /me must not carry a stale content-length ───────────
// Regression for the second PATCH 500: patchPreferencesRequest copied inbound
// headers including content-length, then set a DIFFERENT body — undici kept the
// stale length, user-service waited for bytes that never arrive, and closed
// the socket (~2.8s "other side closed"). The Request constructor does NOT
// recompute content-length when an explicit body is provided alongside
// forwarded headers, so the deletes inside patchPreferencesRequest are
// load-bearing. This tests the REAL exported function.
{
// Inbound request with a body whose length differs from the synthetic body.
const inboundBody = JSON.stringify({ data: { access_choice: "trial" }, expectedRevision: 0 });
const req = new Request("https://backend.test/api/growqr/users/onboarding", {
method: "PATCH",
headers: {
"content-type": "application/json",
"content-length": String(Buffer.byteLength(inboundBody)),
"transfer-encoding": "chunked",
},
body: inboundBody,
});
const preferences = { onboarding: { access_choice: "trial" } };
const synthetic = patchPreferencesRequest(req, preferences);
// The synthetic request must not carry the stale inbound length/transfer headers.
assert.equal(synthetic.headers.get("content-length"), null, "stale content-length must be stripped from synthetic PATCH /me");
assert.equal(synthetic.headers.get("transfer-encoding"), null, "transfer-encoding must be stripped from synthetic PATCH /me");
assert.equal(synthetic.headers.get("host"), null, "host must be stripped");
assert.equal(synthetic.headers.get("cookie"), null, "cookie must be stripped");
assert.equal(synthetic.headers.get("content-type"), "application/json", "content-type must be set");
assert.equal(synthetic.method, "PATCH", "method must be PATCH");
assert.ok(synthetic.url.endsWith("/api/v1/users/me"), `target must be /me, got ${synthetic.url}`);
// The body must be the synthetic preferences blob, not the inbound payload.
const sentBody = await synthetic.text();
assert.deepEqual(JSON.parse(sentBody), { preferences }, "synthetic body must carry only { preferences }");
assert.notEqual(sentBody.length, Buffer.byteLength(inboundBody), "synthetic body length must differ from inbound (else the test proves nothing)");
}
// ── 7. trusted service auth uses A2A state with scoped identity ─────────────
{
const originalFetch = globalThis.fetch;
const mutableConfig = config as unknown as { serviceToken: string; a2aAllowedKey: string; nodeEnv: string };
const savedConfig = { serviceToken: config.serviceToken, a2aAllowedKey: config.a2aAllowedKey, nodeEnv: config.nodeEnv };
Object.assign(mutableConfig, { serviceToken: "test-service-token", a2aAllowedKey: "test-a2a-key", nodeEnv: "production" });
const userId = "user_3EX1LG3gBk3KY6kfD9PiTkWubs4/scope";
let target = "";
let auth = "";
let forwardedScope: string | null = null;
globalThis.fetch = (async (input: URL | Request, init?: RequestInit) => {
target = String(input instanceof URL ? input : input.url);
const headers = new Headers(init?.headers ?? {});
auth = headers.get("authorization") ?? "";
forwardedScope = headers.get("x-growqr-user");
return new Response(JSON.stringify({ preferences: { onboarding: { revision: 10, status: "completed", access_choice: "trial", profile: { icp: "experienced" } } } }), { status: 200 });
}) as typeof globalThis.fetch;
try {
const req = new Request("https://backend.test/users/onboarding", {
headers: { authorization: "Bearer test-service-token", "x-growqr-user": userId },
});
const profile = await fetchOnboardingReadProfile(req, userId);
assert.ok(target.endsWith(`/api/state/${encodeURIComponent(userId)}`), `A2A target must be scoped to user: ${target}`);
assert.equal(auth, "Bearer test-a2a-key", "A2A key must be used downstream");
assert.equal(forwardedScope, null, "user scope must be encoded in URL, not forwarded as trust header");
assert.equal((profile.preferences as Record<string, any>).onboarding.revision, 10);
const onboarding = (profile.preferences as Record<string, any>).onboarding;
assert.equal(onboarding.status, "completed");
assert.equal(onboarding.profile.icp, "experienced");
assert.equal(onboarding.access_choice, "trial");
} finally {
Object.assign(mutableConfig, savedConfig);
globalThis.fetch = originalFetch;
}
}
// Trusted auth without a matching scope is rejected before any downstream call.
{
const originalFetch = globalThis.fetch;
let calls = 0;
const mutableConfig = config as unknown as { serviceToken: string; a2aAllowedKey: string; nodeEnv: string };
const savedConfig = { serviceToken: config.serviceToken, a2aAllowedKey: config.a2aAllowedKey, nodeEnv: config.nodeEnv };
Object.assign(mutableConfig, { serviceToken: "test-service-token", a2aAllowedKey: "test-a2a-key", nodeEnv: "production" });
globalThis.fetch = (async () => { calls += 1; return new Response("unexpected", { status: 200 }); }) as typeof globalThis.fetch;
try {
const req = new Request("https://backend.test/users/onboarding", { headers: { authorization: "Bearer test-service-token" } });
await assert.rejects(() => fetchOnboardingReadProfile(req, "user_spoof"), /matching x-growqr-user/);
assert.equal(calls, 0, "unscoped trusted auth must not call user-service");
} finally {
Object.assign(mutableConfig, savedConfig);
globalThis.fetch = originalFetch;
}
}
// Production never treats A2A_ALLOWED_KEY as an inbound backend token.
{
const originalFetch = globalThis.fetch;
const mutableConfig = config as unknown as { serviceToken: string; a2aAllowedKey: string; nodeEnv: string };
const savedConfig = { serviceToken: config.serviceToken, a2aAllowedKey: config.a2aAllowedKey, nodeEnv: config.nodeEnv };
Object.assign(mutableConfig, { serviceToken: "test-service-token", a2aAllowedKey: "test-a2a-key", nodeEnv: "production" });
let target = "";
let auth = "";
globalThis.fetch = (async (input: URL | Request, init?: RequestInit) => {
target = String(input instanceof URL ? input : input.url);
auth = new Headers(init?.headers ?? {}).get("authorization") ?? "";
return new Response(JSON.stringify({ preferences: { onboarding: { revision: 10 } } }), { status: 200 });
}) as typeof globalThis.fetch;
try {
const req = new Request("https://backend.test/users/onboarding", {
headers: { authorization: "Bearer test-a2a-key", "x-growqr-user": "user_spoof" },
});
await fetchOnboardingReadProfile(req, "user_real");
assert.ok(target.endsWith("/api/v1/users/me"), "production A2A key must use Clerk /me path");
assert.equal(auth, "Bearer test-a2a-key");
} finally {
Object.assign(mutableConfig, savedConfig);
globalThis.fetch = originalFetch;
}
}
// Clerk JWTs always use /me, even when a spoofed x-growqr-user is present.
{
const originalFetch = globalThis.fetch;
let target = "";
let auth = "";
let forwardedScope: string | null = null;
globalThis.fetch = (async (input: URL | Request, init?: RequestInit) => {
target = String(input instanceof URL ? input : input.url);
const headers = new Headers(init?.headers ?? {});
auth = headers.get("authorization") ?? "";
forwardedScope = headers.get("x-growqr-user");
return new Response(JSON.stringify({ preferences: { onboarding: { revision: 10 } } }), { status: 200 });
}) as typeof globalThis.fetch;
try {
const req = new Request("https://backend.test/users/onboarding", {
headers: { authorization: "Bearer eyJ.clerk.jwt", "x-growqr-user": "user_spoof" },
});
await fetchOnboardingReadProfile(req, "user_real");
assert.ok(target.endsWith("/api/v1/users/me"), `Clerk target must be /me: ${target}`);
assert.equal(auth, "Bearer eyJ.clerk.jwt", "Clerk JWT must be forwarded unchanged");
assert.equal(forwardedScope, null, "spoofable x-growqr-user must not be forwarded to /me");
} finally {
globalThis.fetch = originalFetch;
}
}
// An invalid Clerk JWT remains a /me error and never falls back to A2A.
{
const originalFetch = globalThis.fetch;
let calls = 0;
globalThis.fetch = (async () => { calls += 1; return new Response('{"detail":"invalid"}', { status: 401 }); }) as typeof globalThis.fetch;
try {
const req = new Request("https://backend.test/users/onboarding", { headers: { authorization: "Bearer invalid.jwt" } });
await assert.rejects(() => fetchOnboardingReadProfile(req, "user_real"), /user-service \/me fetch failed: 401/);
assert.equal(calls, 1, "invalid Clerk JWT must not trigger an A2A fallback");
} finally {
globalThis.fetch = originalFetch;
}
}
// ── 8. trusted token resolution excludes A2A in production ────────────────
{
assert.equal(config.a2aAllowedKey, process.env.A2A_ALLOWED_KEY ?? "", "A2A config must not have a dev fallback");
const production = resolveTrustedServiceTokens({
nodeEnv: "production",
serviceToken: "service-token",
a2aAllowedKey: "a2a-token",
});
assert.equal(production.has("service-token"), true);
assert.equal(production.has("a2a-token"), false, "production must exclude A2A token");
const development = resolveTrustedServiceTokens({
nodeEnv: "development",
serviceToken: "service-token",
a2aAllowedKey: "a2a-token",
});
assert.equal(development.has("service-token"), true);
assert.equal(development.has("a2a-token"), true, "development must include configured A2A token");
}
// Compose must never inject a development service token in production.
{
const compose = readFileSync(new URL("../docker-compose.yml", import.meta.url), "utf8");
assert.doesNotMatch(compose, /dev-service-token/, "compose must not contain a development service token fallback");
assert.match(compose, /SERVICE_TOKEN:\s*\$\{SERVICE_TOKEN:-\}/, "compose SERVICE_TOKEN default must be explicitly empty");
}
console.log("user-profile: all assertions passed");

15
scripts/ws-ticket.test.ts Normal file
View File

@@ -0,0 +1,15 @@
import assert from "node:assert/strict";
import { signWsTicket, verifyWsTicket } from "../src/services/ws-tickets.js";
const issued = signWsTicket({ secret: "ticket-secret", audience: "interview", subject: "user-1", sessionId: "session-1", nowSeconds: 1_000 });
assert.equal(verifyWsTicket({ secret: "ticket-secret", ticket: issued.ticket, audience: "interview", sessionId: "session-1", subject: "user-1", nowSeconds: 1_001 }).sid, "session-1");
for (const invalid of [
{ audience: "roleplay" as const, sessionId: "session-1", subject: "user-1", nowSeconds: 1_001 },
{ audience: "interview" as const, sessionId: "session-2", subject: "user-1", nowSeconds: 1_001 },
{ audience: "interview" as const, sessionId: "session-1", subject: "user-2", nowSeconds: 1_001 },
{ audience: "interview" as const, sessionId: "session-1", subject: "user-1", nowSeconds: 1_061 },
]) assert.throws(() => verifyWsTicket({ secret: "ticket-secret", ticket: issued.ticket, ...invalid }));
assert.throws(() => verifyWsTicket({ secret: "ticket-secret", ticket: "not-a-ticket", audience: "interview", sessionId: "session-1", nowSeconds: 1_001 }));
assert.throws(() => verifyWsTicket({ secret: "a2a-key", ticket: issued.ticket, audience: "interview", sessionId: "session-1", subject: "user-1", nowSeconds: 1_001 }));
assert.throws(() => signWsTicket({ secret: "", audience: "interview", subject: "user-1", sessionId: "session-1" }));
console.log("ws-ticket tests passed");

View File

@@ -4,13 +4,15 @@ import { db } from "../../db/client.js";
import {
growActiveMissions,
growEvents,
growQscoreLatest,
growQscoreProjectionState,
growQscoreSignals,
missionActions,
} from "../../db/schema.js";
import { listActiveMissionsPg } from "../../grow/persistence.js";
import { listMissionActions } from "../../missions/actions.js";
import { DEFAULT_QSCORE_ORG_ID, getQscoreFromService, getQscoreLatestSignalsFromService } from "../../services/qscore-proxy.js";
function isRecord(value: unknown): value is Record<string, unknown> {
return !!value && typeof value === "object" && !Array.isArray(value);
}
async function scalarCount(table: any, where?: any) {
const query = db.select({ value: count() }).from(table);
@@ -27,7 +29,6 @@ async function platformAnalytics() {
completedMissions,
totalActions,
doneActions,
qscoreSignalCount,
] = await Promise.all([
scalarCount(growEvents),
scalarCount(growEvents, eq(growEvents.category, "service")),
@@ -36,7 +37,6 @@ async function platformAnalytics() {
scalarCount(growActiveMissions, eq(growActiveMissions.status, "completed")),
scalarCount(missionActions),
scalarCount(missionActions, eq(missionActions.status, "done")),
scalarCount(growQscoreSignals),
]);
const serviceUsage = await db
@@ -62,44 +62,43 @@ async function platformAnalytics() {
completedMissions,
missionActions: totalActions,
completedActions: doneActions,
qscoreSignals: qscoreSignalCount,
},
serviceUsage,
};
}
async function userQscoreAnalytics(userId: string) {
const [projection] = await db
.select()
.from(growQscoreProjectionState)
.where(eq(growQscoreProjectionState.userId, userId))
.limit(1);
const [result, latestEvidence] = await Promise.all([
getQscoreFromService(userId, DEFAULT_QSCORE_ORG_ID),
getQscoreLatestSignalsFromService(userId, DEFAULT_QSCORE_ORG_ID),
]);
const latestSignals = await db
.select()
.from(growQscoreLatest)
.where(eq(growQscoreLatest.userId, userId))
.orderBy(desc(growQscoreLatest.updatedAt))
.limit(50);
const signalTimeline = await db
.select()
.from(growQscoreSignals)
.where(eq(growQscoreSignals.userId, userId))
.orderBy(desc(growQscoreSignals.occurredAt))
.limit(100);
const breakdown = result?.breakdown ?? {};
const latestSignals = latestEvidence ?? [];
const timelineRaw = latestSignals;
const signalTimeline = timelineRaw.map((signal) => ({
signalId: signal.signal_id,
score: signal.score,
present: signal.present,
source: signal.source,
occurredAt: signal.last_occurred_at,
updatedAt: signal.last_seen_at || null,
}));
return {
kind: "user-qscore",
userId,
generatedAt: new Date().toISOString(),
current: projection
current: result
? {
score: projection.score,
signalCount: projection.signalCount,
dimensions: projection.dimensions,
summary: projection.summary,
updatedAt: projection.updatedAt.toISOString(),
rq_score: result.rq_score,
iq_score: result.iq_score,
eq_score: result.eq_score,
sq_score: result.sq_score,
signalCount: signalTimeline.length,
dimensions: isRecord(breakdown.dimensions) ? breakdown.dimensions : result.quotients,
summary: null,
updatedAt: result.calculated_at || new Date().toISOString(),
}
: null,
latestSignals,

View File

@@ -75,7 +75,7 @@ function safeAgentRegistry() {
{ id: "interview", name: "Interview Agent", role: "Interview Coach", service: "interview-service", description: "Interview prep specialist.", toolNames: ["prepare_interview_handoff"] },
{ id: "roleplay", name: "Roleplay Agent", role: "Roleplay Coach", service: "roleplay-service", description: "Workplace conversation practice specialist.", toolNames: ["prepare_roleplay_handoff"] },
{ id: "resume", name: "Resume Agent", role: "Resume Agent", service: "resume-service", description: "Resume positioning and optimization specialist.", toolNames: ["prepare_resume_handoff"] },
{ id: "qscore", name: "Q Score Agent", role: "Q Score Analyst", service: "qscore-service", description: "Readiness score analyst.", toolNames: ["explain_qscore"] },
{ id: "qscore", name: "RQ Score Agent", role: "RQ Score Analyst", service: "qscore-service", description: "Readiness score analyst.", toolNames: ["explain_qscore"] },
];
}
}

View File

@@ -117,6 +117,24 @@ async function applyArtifactPatches(input: {
return created;
}
/**
* DB status guard for the actor run loop. A queued event is processable unless
* it is "failed" (terminal error) or "unresolved" (no userId). All other states
* — "pending" (first attempt), "processing" (crash recovery), and "processed"
* (synchronous projections already ran) — are allowed so the actor can run
* mission reducers that only exist in the actor. Projections are idempotent,
* and the in-memory processedEventIds guard prevents double-processing within
* one actor lifetime. The routing gate (shouldRouteGrowEvent) already prevents
* saturation from duplicate ingests; this guard is defense-in-depth.
*/
export function isProcessableStatus(
status: string | null | undefined,
): boolean {
return status === "pending" || status === "processing" || status === "processed";
}
export const userEventActor = actor({
options: { name: "User Event Parser", icon: "route", noSleep: true, actionTimeout: 300_000 },
state: { userId: "", processedCount: 0, processedEventIds: [] } as UserEventActorState,
@@ -143,17 +161,52 @@ export const userEventActor = actor({
const message = await loopCtx.queue.next("wait-event", { names: ["events"] });
const cmd = message.body as UserEventCommand;
await loopCtx.step(`process-event:${cmd.eventId}`, async () => {
if (loopCtx.state.processedEventIds.includes(cmd.eventId)) return;
await markGrowEventProcessing(cmd.eventId);
const [row] = await db
.select()
.from(growEvents)
.where(and(eq(growEvents.id, cmd.eventId), eq(growEvents.userId, cmd.userId)))
.limit(1);
if (!row) throw new Error(`grow event not found for user: ${cmd.eventId}`);
// Pre-flight skip: check the DB status without claiming. Terminal
// (processed/failed) or unresolved rows are advanced past immediately
// so one settled event does not block the rest of the queue. The actual
// claim (markGrowEventProcessing) happens INSIDE tryStep's run so the
// retry unit is atomic: each attempt re-checks status before claiming.
const [preflight] = await db
.select({ processingStatus: growEvents.processingStatus })
.from(growEvents)
.where(and(eq(growEvents.id, cmd.eventId), eq(growEvents.userId, cmd.userId)))
.limit(1);
if (!preflight || !isProcessableStatus(preflight.processingStatus)) {
await loopCtx.step(`skip-event:${cmd.eventId}`, async () => {
loopCtx.state.updatedAt = new Date().toISOString();
loopCtx.broadcast("updated", loopCtx.state);
});
return;
}
// Process with tryStep so a failure is caught (not rethrown) and the
// loop advances to the next message. Mirrors workflow-run-actor.ts.
const result = await loopCtx.tryStep({
name: `process-event:${cmd.eventId}`,
maxRetries: 3,
retryBackoffBase: 1_000,
retryBackoffMax: 30_000,
timeout: 300_000,
run: async () => {
if (loopCtx.state.processedEventIds.includes(cmd.eventId)) {
loopCtx.state.updatedAt = new Date().toISOString();
loopCtx.broadcast("updated", loopCtx.state);
return;
}
// Atomic guard+claim: re-check status then mark processing inside the
// retry unit. A prior attempt that crashed after claiming leaves the
// row "processing" — isProcessableStatus allows retry (projections
// are idempotent).
const [row] = await db
.select()
.from(growEvents)
.where(and(eq(growEvents.id, cmd.eventId), eq(growEvents.userId, cmd.userId)))
.limit(1);
if (!row) throw new Error(`grow event not found for user: ${cmd.eventId}`);
if (!isProcessableStatus(row.processingStatus)) return;
await markGrowEventProcessing(cmd.eventId);
try {
await applyServiceSessionProjection(row);
const qscoreResult = await applyQscoreProjection(row);
const activeRows = await listActiveMissionsPg(cmd.userId);
@@ -211,14 +264,26 @@ export const userEventActor = actor({
loopCtx.state.processedEventIds = [cmd.eventId, ...loopCtx.state.processedEventIds.filter((id) => id !== cmd.eventId)].slice(0, 500);
loopCtx.broadcast("eventProcessed", { eventId: cmd.eventId, userId: cmd.userId });
loopCtx.broadcast("updated", loopCtx.state);
} catch (err) {
await markGrowEventFailed(cmd.eventId, err);
loopCtx.state.lastError = err instanceof Error ? err.message : String(err);
},
catch: ["timeout", "exhausted"],
});
if (!result.ok) {
// Per-event failure: mark terminal and advance. The loop continues to
// the next queued message — one bad event does not block the rest.
await loopCtx.step(`record-failure:${cmd.eventId}`, async () => {
await markGrowEventFailed(cmd.eventId, result.failure.error);
loopCtx.state.lastError = result.failure.error instanceof Error
? result.failure.error.message
: String(result.failure.error);
loopCtx.state.updatedAt = new Date().toISOString();
loopCtx.broadcast("updated", loopCtx.state);
throw err;
}
});
});
}
});
}, {
onError: async (_ctx, event) => {
console.error("user-event-actor workflow error", event);
},
}),
});

View File

@@ -24,7 +24,7 @@ This mission is not an autonomous agent. The conversation layer (Grow) owns the
2. Interview prep plan
3. Mock interview session
4. Communication roleplay
5. Final readiness Q Score
5. Final readiness RQ Score
## Artifacts
- Interview prep plan

View File

@@ -213,7 +213,7 @@ function buildUnifiedTools(): Array<{
type: "function" as const,
function: {
name: "compute_qscore",
description: "Compute or refresh the user's Q Score via the qscore-service microservice.",
description: "Compute or refresh the user's RQ Score via the qscore-service microservice.",
parameters: {
type: "object",
properties: {},
@@ -253,7 +253,7 @@ function buildUnifiedTools(): Array<{
type: "function" as const,
function: {
name: "start_interview_to_offer",
description: "Start the Interview-to-Offer Accelerator workflow. This is a guided end-to-end pipeline: (1) Analyze and tailor the resume for the role, (2) Create mock interview practice, (3) Create mock roleplay practice, (4) Compute Q Score readiness. Use this when the user has a specific interview scheduled and wants comprehensive preparation.",
description: "Start the Interview-to-Offer Accelerator workflow. This is a guided end-to-end pipeline: (1) Analyze and tailor the resume for the role, (2) Create mock interview practice, (3) Create mock roleplay practice, (4) Compute RQ Score readiness. Use this when the user has a specific interview scheduled and wants comprehensive preparation.",
parameters: {
type: "object",
properties: {
@@ -810,7 +810,7 @@ async function dispatchUnifiedTool(
case "compute_qscore": {
const qscoreModule = getSubAgentModule("qscore");
if (!qscoreModule?.service) return { ok: false, error: "Q Score Agent module not available" };
if (!qscoreModule?.service) return { ok: false, error: "RQ Score Agent module not available" };
const result = await runServiceAgentProbe(
{ id: qscoreModule.id, name: qscoreModule.name, role: qscoreModule.role, kind: "score", description: qscoreModule.description, service: qscoreModule.service },
{ userId, goal: c.state.workflowGoal || "general assessment" },
@@ -929,12 +929,12 @@ async function dispatchUnifiedTool(
c.broadcast("workflow.updated", workflowSnapshot(c.state));
// Step 4: Q Score — compute readiness
// Step 4: RQ Score — compute readiness
const qscoreModule = getSubAgentModule("qscore");
const qscoreMod = c.state.modules.find(m => m.id === "qscore");
if (qscoreMod && qscoreModule?.service) {
qscoreMod.status = "running";
appendTimelineEvent(c.state, qscoreMod, "module", "Q Score is computing your readiness score...");
appendTimelineEvent(c.state, qscoreMod, "module", "RQ Score is computing your readiness score...");
c.broadcast("workflow.updated", workflowSnapshot(c.state));
try {
@@ -947,7 +947,7 @@ async function dispatchUnifiedTool(
appendTimelineEvent(c.state, qscoreMod, "module", qscoreResult.summary);
} catch (err) {
qscoreMod.status = "blocked";
appendTimelineEvent(c.state, qscoreMod, "module", `Q Score computation failed: ${err instanceof Error ? err.message : String(err)}`);
appendTimelineEvent(c.state, qscoreMod, "module", `RQ Score computation failed: ${err instanceof Error ? err.message : String(err)}`);
}
}

View File

@@ -113,7 +113,7 @@ function getInterviewActionRoute(task: DailyMissionTask) {
params.set("difficulty", source.searchParams.get("difficulty") ?? "medium");
params.set("media", "video");
params.set("source", "daily-mission");
return `/agents/interview/preview?${params.toString()}`;
return `/agents/interview?${params.toString()}`;
}
function compactAnswer(answer: string) {
@@ -181,7 +181,7 @@ function serviceStartReply(task: DailyMissionTask) {
return "This is a Roleplay service handoff. Tell me the scenario you want to practice and the outcome you want from the conversation.";
}
if (service.includes("q score") || service.includes("qscore") || routePath.includes("/agents/qscore")) {
return "This is a Q Score check. Tell me the signal you want to improve or the readiness question you want scored.";
return "This is an RQ Score check. Tell me the signal you want to improve or the readiness question you want scored.";
}
return undefined;
}

View File

@@ -14,6 +14,17 @@ export type AuthContext = {
};
};
/** Resolve inbound service tokens without allowing A2A in production. */
export function resolveTrustedServiceTokens(input: {
nodeEnv: string;
serviceToken: string;
a2aAllowedKey: string;
}): ReadonlySet<string> {
return new Set(
[input.serviceToken, input.nodeEnv !== "production" ? input.a2aAllowedKey : ""].filter(Boolean),
);
}
export const clerk = config.clerkSecretKey
? createClerkClient({ secretKey: config.clerkSecretKey })
: null;
@@ -28,12 +39,7 @@ export const requireUser = createMiddleware<AuthContext>(async (c, next) => {
// Service-to-service path (Grow stack calling backend).
// Header `x-growqr-user` is REQUIRED so we can scope the call.
const trustedServiceTokens = new Set(
[
config.serviceToken,
config.nodeEnv !== "production" ? config.a2aAllowedKey : "",
].filter(Boolean),
);
const trustedServiceTokens = resolveTrustedServiceTokens(config);
if (
token &&

View File

@@ -7,7 +7,45 @@ function required(name: string, fallback?: string): string {
}
return v;
}
function parseBool(value: string | undefined, fallback: boolean): boolean {
if (value === undefined || value === "") return fallback;
return value.toLowerCase() === "true" || value === "1";
}
/** Resolve the optional service-to-service token without implicit defaults. */
export function resolveServiceToken(env: Record<string, string | undefined>): string {
return env.SERVICE_TOKEN ?? "";
}
// ── Redis config resolver (pure, testable without module reload) ────────────
// Exported so tests can assert gating/URL-inheritance behavior with synthetic
// env objects, avoiding ESM module-cache hacks.
export type RedisConfig = {
growEventsRedisEnabled: boolean;
legacyServiceRedisEnabled: boolean;
growEventsRedisUrl: string;
interviewRedisUrl: string;
roleplayRedisUrl: string;
resumeRedisUrl: string;
coursesRedisUrl: string;
};
/**
* Resolve all Redis-related config from an env record. Both ingestion paths
* are default-off; legacy URLs resolve ONLY from their own explicit env var
* (never inherited from GROW_EVENTS_REDIS_URL or the generic REDIS_URL).
*/
export function resolveRedisConfig(env: Record<string, string | undefined>): RedisConfig {
return {
growEventsRedisEnabled: parseBool(env.GROW_EVENTS_REDIS_ENABLED, false),
legacyServiceRedisEnabled: parseBool(env.LEGACY_SERVICE_REDIS_ENABLED, false),
growEventsRedisUrl: env.GROW_EVENTS_REDIS_URL ?? "",
interviewRedisUrl: env.INTERVIEW_REDIS_URL ?? "",
roleplayRedisUrl: env.ROLEPLAY_REDIS_URL ?? "",
resumeRedisUrl: env.RESUME_REDIS_URL ?? "",
coursesRedisUrl: env.COURSES_REDIS_URL ?? env.COURSE_REDIS_URL ?? "",
};
}
export const config = {
port: Number(process.env.PORT ?? 4000),
logLevel: process.env.LOG_LEVEL ?? "info",
@@ -22,20 +60,31 @@ export const config = {
clerkSecretKey: process.env.CLERK_SECRET_KEY ?? "",
clerkPublishableKey: process.env.CLERK_PUBLISHABLE_KEY ?? "",
// Optional: lock service-to-service calls (actor → backend).
serviceToken: process.env.SERVICE_TOKEN ?? "",
a2aAllowedKey: process.env.A2A_ALLOWED_KEY ?? "dev-a2a-key",
serviceToken: resolveServiceToken(process.env),
// A2A is intentionally unset unless an operator configures it.
a2aAllowedKey: process.env.A2A_ALLOWED_KEY ?? "",
// Dedicated browser WebSocket ticket signing secret; never reuse A2A credentials.
sessionTicketSecret: process.env.SESSION_TICKET_SECRET ?? "",
// Service → backend event stream. Redis is optional; HTTP /events/ingest/service is always available.
growEventsRedisUrl: process.env.GROW_EVENTS_REDIS_URL ?? process.env.REDIS_URL ?? "",
// Explicit opt-in flags: both Redis ingestion paths are default-off. The REST
// production path never touches Redis. Each flag is independent so operators
// can enable canonical and/or legacy observers separately.
growEventsRedisEnabled: parseBool(process.env.GROW_EVENTS_REDIS_ENABLED, false),
legacyServiceRedisEnabled: parseBool(process.env.LEGACY_SERVICE_REDIS_ENABLED, false),
growEventsRedisUrl: process.env.GROW_EVENTS_REDIS_URL ?? "",
growEventsStream: process.env.GROW_EVENTS_STREAM ?? "grow.events.raw",
growEventsConsumerGroup: process.env.GROW_EVENTS_CONSUMER_GROUP ?? "growqr-backend",
growEventsConsumerName: process.env.GROW_EVENTS_CONSUMER_NAME ?? `backend-${process.pid}`,
// Legacy service Redis surfaces. These let backend observe existing service A2A traffic
// without changing the services. Defaults fall back to GROW_EVENTS_REDIS_URL/REDIS_URL.
interviewRedisUrl: process.env.INTERVIEW_REDIS_URL ?? process.env.GROW_EVENTS_REDIS_URL ?? process.env.REDIS_URL ?? "",
roleplayRedisUrl: process.env.ROLEPLAY_REDIS_URL ?? process.env.GROW_EVENTS_REDIS_URL ?? process.env.REDIS_URL ?? "",
resumeRedisUrl: process.env.RESUME_REDIS_URL ?? process.env.GROW_EVENTS_REDIS_URL ?? process.env.REDIS_URL ?? "",
// without changing the services. Legacy URLs resolve ONLY from their own explicit env
// var — they must not inherit from GROW_EVENTS_REDIS_URL or the generic REDIS_URL, so a
// stray REDIS_URL can never silently activate the legacy observer path.
interviewRedisUrl: process.env.INTERVIEW_REDIS_URL ?? "",
roleplayRedisUrl: process.env.ROLEPLAY_REDIS_URL ?? "",
resumeRedisUrl: process.env.RESUME_REDIS_URL ?? "",
coursesRedisUrl: process.env.COURSES_REDIS_URL ?? process.env.COURSE_REDIS_URL ?? "",
legacyServiceTaskObserverGroup: process.env.LEGACY_SERVICE_TASK_OBSERVER_GROUP ?? "growqr-backend-observer",
// LLM gateway for the unified user agent.
@@ -71,6 +120,7 @@ export const config = {
process.env.ROLEPLAY_PUBLIC_URL ?? process.env.ROLEPLAY_SERVICE_URL ?? "http://localhost:8008",
qscoreServiceUrl:
process.env.QSCORE_SERVICE_URL ?? "http://localhost:8000",
qscoreEventDeliveryTimeoutMs: Number(process.env.QSCORE_EVENT_DELIVERY_TIMEOUT_MS ?? 5_000),
resumeServiceUrl:
process.env.RESUME_SERVICE_URL ?? "http://localhost:8002",
userServiceUrl:

View File

@@ -8,6 +8,10 @@ async function ensureGrowConversationsMetadataColumn() {
`);
}
async function ensureUserPlanColumn() {
await db.execute(`ALTER TABLE users ADD COLUMN IF NOT EXISTS plan text NOT NULL DEFAULT 'free'`);
}
async function ensureSystemNotificationsTables() {
await db.execute(`
CREATE TABLE IF NOT EXISTS system_notifications (
@@ -41,8 +45,49 @@ async function ensureSystemNotificationsTables() {
await db.execute(`CREATE INDEX IF NOT EXISTS system_notification_preferences_user_idx ON system_notification_preferences (user_id)`);
}
async function ensureOnboardingTable() {
await db.execute(`
CREATE TABLE IF NOT EXISTS onboarding (
id text PRIMARY KEY DEFAULT gen_random_uuid()::text NOT NULL,
user_id text NOT NULL REFERENCES users(id) ON DELETE cascade,
data jsonb NOT NULL DEFAULT '{}'::jsonb,
payload jsonb NOT NULL DEFAULT '{}'::jsonb,
created_at timestamp with time zone NOT NULL DEFAULT now(),
updated_at timestamp with time zone NOT NULL DEFAULT now()
)
`);
await db.execute(`CREATE UNIQUE INDEX IF NOT EXISTS onboarding_user_idx ON onboarding (user_id)`);
}
async function ensureEventOutboxTable() {
await db.execute(`
CREATE TABLE IF NOT EXISTS event_outbox (
id text PRIMARY KEY DEFAULT gen_random_uuid()::text NOT NULL,
topic text NOT NULL,
aggregate_id text NOT NULL,
destination text NOT NULL,
payload jsonb NOT NULL,
headers jsonb NOT NULL DEFAULT '{}'::jsonb,
status text NOT NULL DEFAULT 'pending' CHECK (status IN ('pending', 'processing', 'published')),
attempts integer NOT NULL DEFAULT 0,
available_at timestamp with time zone NOT NULL DEFAULT now(),
locked_at timestamp with time zone,
published_at timestamp with time zone,
last_error text,
response jsonb,
created_at timestamp with time zone NOT NULL DEFAULT now(),
updated_at timestamp with time zone NOT NULL DEFAULT now()
)
`);
await db.execute(`CREATE INDEX IF NOT EXISTS event_outbox_delivery_idx ON event_outbox (status, available_at)`);
await db.execute(`CREATE UNIQUE INDEX IF NOT EXISTS event_outbox_topic_aggregate_idx ON event_outbox (topic, aggregate_id)`);
}
export async function ensureRuntimeSchema() {
await ensureUserPlanColumn();
await ensureGrowConversationsMetadataColumn();
await ensureSystemNotificationsTables();
await ensureOnboardingTable();
await ensureEventOutboxTable();
log.info("runtime schema ensured");
}

View File

@@ -20,6 +20,7 @@ export const users = pgTable(
id: text("id").primaryKey(),
email: text("email").notNull(),
displayName: text("display_name"),
plan: text("plan", { enum: ["free", "pro", "enterprise"] }).notNull().default("free"),
createdAt: timestamp("created_at", { withTimezone: true })
.defaultNow()
.notNull(),
@@ -32,6 +33,25 @@ export const users = pgTable(
}),
);
// Canonical onboarding state. `data` is the user-confirmed source of truth;
// `payload` is the server-owned projection consumed by Curator and Home.
export const onboarding = pgTable(
"onboarding",
{
id: text("id").primaryKey().default(sql`gen_random_uuid()::text`),
userId: text("user_id")
.notNull()
.references(() => users.id, { onDelete: "cascade" }),
data: jsonb("data").$type<Record<string, unknown>>().notNull().default(sql`'{}'::jsonb`),
payload: jsonb("payload").$type<Record<string, unknown>>().notNull().default(sql`'{}'::jsonb`),
createdAt: timestamp("created_at", { withTimezone: true }).defaultNow().notNull(),
updatedAt: timestamp("updated_at", { withTimezone: true }).defaultNow().notNull(),
},
(t) => ({
userIdx: uniqueIndex("onboarding_user_idx").on(t.userId),
}),
);
// One per user. Tracks the user's unified agent's container stack + Git repo.
// Per changes.md §2A: per-user Gitea containers removed; central Gitea shared.
// Per changes.md §5: ONE actor per user manages the full orchestration layer.
@@ -259,7 +279,7 @@ export const qscoreSnapshots = pgTable("qscore_snapshots", {
userId: text("user_id").notNull().references(() => users.id, { onDelete: "cascade" }),
runId: text("run_id").references(() => workflowRuns.id, { onDelete: "cascade" }),
snapshotType: text("snapshot_type", { enum: ["baseline", "module", "final"] }).notNull(),
score: integer("score"),
rqScore: integer("rq_score"),
payload: jsonb("payload").$type<Record<string, unknown>>(),
createdAt: timestamp("created_at", { withTimezone: true }).defaultNow().notNull(),
});
@@ -360,6 +380,36 @@ export const growEvents = pgTable(
}),
);
// Transactional delivery queue for canonical GrowEvents. The grow_events row
// and its QScore delivery intent are inserted in the same database transaction;
// delivery is retried independently and is idempotent on (topic, aggregateId).
export const eventOutbox = pgTable(
"event_outbox",
{
id: text("id").primaryKey().default(sql`gen_random_uuid()::text`),
topic: text("topic").notNull(),
aggregateId: text("aggregate_id").notNull(),
destination: text("destination").notNull(),
payload: jsonb("payload").$type<Record<string, unknown>>().notNull(),
headers: jsonb("headers").$type<Record<string, string>>().notNull().default(sql`'{}'::jsonb`),
status: text("status", {
enum: ["pending", "processing", "published"],
}).notNull().default("pending"),
attempts: integer("attempts").notNull().default(0),
availableAt: timestamp("available_at", { withTimezone: true }).defaultNow().notNull(),
lockedAt: timestamp("locked_at", { withTimezone: true }),
publishedAt: timestamp("published_at", { withTimezone: true }),
lastError: text("last_error"),
response: jsonb("response").$type<Record<string, unknown>>(),
createdAt: timestamp("created_at", { withTimezone: true }).defaultNow().notNull(),
updatedAt: timestamp("updated_at", { withTimezone: true }).defaultNow().notNull(),
},
(t) => ({
deliveryIdx: index("event_outbox_delivery_idx").on(t.status, t.availableAt),
aggregateIdx: uniqueIndex("event_outbox_topic_aggregate_idx").on(t.topic, t.aggregateId),
}),
);
export const missionServiceSessions = pgTable(
"mission_service_sessions",
{
@@ -379,7 +429,7 @@ export const missionServiceSessions = pgTable(
},
(t) => ({
userIdx: index("mission_service_sessions_user_idx").on(t.userId, t.updatedAt),
externalIdx: uniqueIndex("mission_service_sessions_external_idx").on(t.serviceId, t.externalId),
externalIdx: uniqueIndex("mission_service_sessions_external_idx").on(t.userId, t.serviceId, t.externalId),
missionIdx: index("mission_service_sessions_mission_idx").on(t.missionInstanceId, t.stageId),
}),
);

View File

@@ -53,8 +53,10 @@ export type StoredGrowEvent = GrowEventEnvelope & {
export type QscoreSignal = {
signalId: string;
score: number;
present: boolean;
// QScore owns normalization and scoring. Raw readiness evidence returned by
// its event-ingest API may identify a projected signal before a score run.
score?: number;
present?: boolean;
source?: string;
raw?: Record<string, unknown>;
};

View File

@@ -20,16 +20,25 @@ function normalizeSubject(value: unknown) {
function normalizeMission(value: unknown) {
const record = asRecord(value);
const instanceId = getString(record.instanceId ?? record.instance_id ?? record.mission_instance_id);
const instanceId = getString(record.instanceId ?? record.instance_id ?? record.missionInstanceId ?? record.mission_instance_id);
const missionId = getString(record.missionId ?? record.mission_id);
const stageId = getString(record.stageId ?? record.stage_id);
if (!instanceId && !missionId && !stageId) return undefined;
return { instanceId, missionId, stageId };
}
function normalizeCorrelation(value: unknown) {
function normalizeCorrelation(value: unknown, taskAliases: unknown[] = []) {
const record = asRecord(value);
const correlation: Record<string, unknown> = { ...record };
const correlation: Record<string, unknown> = Object.fromEntries(Object.entries(record).filter(([, value]) => value !== undefined));
delete correlation.taskId;
delete correlation.curatorTaskId;
delete correlation.curator_task_id;
delete correlation.task_id;
// Curator-launched and standalone service events share this ingress, so optional
// task identity is canonicalized once instead of forcing downstream precedence guesses.
const taskId = [...[record.task_id, record.taskId, record.curatorTaskId, record.curator_task_id], ...taskAliases]
.map(getString)
.find((item): item is string => Boolean(item));
const requestId = getString(record.requestId ?? record.request_id);
const sessionId = getString(record.sessionId ?? record.session_id);
const resumeId = getString(record.resumeId ?? record.resume_id);
@@ -38,9 +47,37 @@ function normalizeCorrelation(value: unknown) {
if (sessionId) correlation.sessionId = sessionId;
if (resumeId) correlation.resumeId = resumeId;
if (externalId) correlation.externalId = externalId;
if (taskId) correlation.task_id = taskId;
return Object.keys(correlation).length ? correlation : undefined;
}
function normalizeTaskAliases(raw: Record<string, unknown>, payload: Record<string, unknown>) {
return [raw.task_id, raw.taskId, raw.curatorTaskId, raw.curator_task_id, payload.task_id, payload.taskId, payload.curatorTaskId, payload.curator_task_id];
}
const CANONICAL_EVENT_TYPE: Record<string, string> = {
"interview.review.completed": "interview.feedback.generated",
"interview.session_completed": "interview.session.completed",
"roleplay.session.completed": "roleplay.scenario.completed",
"roleplay.session_completed": "roleplay.scenario.completed",
"roleplay.review.completed": "roleplay.feedback.generated",
"course.video.completed": "course.completed",
"course.lesson.completed": "course.completed",
"course.video.started": "course.started",
"course.lesson.started": "course.started",
"course.progress_recorded": "course.progress.recorded",
"social.profile.synced": "brand.profile.updated",
"social.profile.updated": "brand.profile.updated",
"social.post.scheduled": "brand.post.exported",
"social.post.published": "brand.content.published",
"social.content.generated": "brand.post.drafted",
"social.account.connected": "brand.account.connected",
};
export function canonicalGrowEventType(type: string): string {
return CANONICAL_EVENT_TYPE[type] ?? type;
}
export function normalizeGrowEvent(input: unknown, overrides: { userId?: string; source?: string } = {}): GrowEventEnvelope {
const raw = asRecord(input);
const payload = asRecord(raw.payload ?? raw.data ?? raw.event_payload);
@@ -49,7 +86,7 @@ export function normalizeGrowEvent(input: unknown, overrides: { userId?: string;
resume_id: raw.resume_id ?? payload.resume_id,
external_id: raw.external_id ?? payload.external_id,
request_id: raw.request_id ?? payload.request_id,
});
}, normalizeTaskAliases(raw, payload));
const subject = normalizeSubject(raw.subject) ?? (() => {
const serviceId = getString(raw.subject_service_id ?? payload.subject_service_id);
const externalId = getString(raw.subject_external_id ?? payload.subject_external_id);
@@ -60,7 +97,7 @@ export function normalizeGrowEvent(input: unknown, overrides: { userId?: string;
})();
const source = overrides.source ?? getString(raw.source) ?? "unknown-service";
const type = getString(raw.type ?? raw.event_type ?? raw.action) ?? "service.event";
const type = canonicalGrowEventType(getString(raw.type ?? raw.event_type ?? raw.action) ?? "service.event");
const categoryRaw = raw.category ?? payload.category;
const category = isGrowEventCategory(categoryRaw) ? categoryRaw : "service";
const userId = overrides.userId ?? getString(raw.userId ?? raw.user_id ?? payload.userId ?? payload.user_id);

View File

@@ -1,4 +1,4 @@
import { and, desc, eq, inArray } from "drizzle-orm";
import { and, desc, eq, inArray, or, sql } from "drizzle-orm";
import { db } from "../db/client.js";
import { growEvents, type GrowEventRow } from "../db/schema.js";
import { asRecord } from "./envelope.js";
@@ -8,7 +8,6 @@ import {
markGrowEventProcessing,
recordGrowEvent,
} from "./record-grow-event.js";
import { ensureOnboardingBaselineQscoreForCompletedAt } from "./onboarding-qscore.js";
import {
onboardingCompletedAtFromEvent,
runCuratorOnboardingLoopSafely,
@@ -38,11 +37,23 @@ export type OnboardingStatusEvent = {
processingStatus: string;
};
const COMPLETION_EVENT_TYPES = new Set<string>([
"onboarding.completed",
"user.onboarding.completed",
"profile.onboarding.completed",
]);
export const COMPLETION_EVENT_TYPES: Record<string, true> = {
"onboarding.completed": true,
"user.onboarding.completed": true,
"profile.onboarding.completed": true,
};
// Every ledger row whose type (dotted OR underscore alias) marks a completion.
// resetOnboardingLedger deletes all of these so the gate reopens regardless of
// which alias form a legacy emitter wrote.
export const COMPLETION_EVENT_TYPE_ALIASES: readonly string[] = [
...Object.keys(COMPLETION_EVENT_TYPES),
...Object.keys(COMPLETION_EVENT_TYPES).map((t) => t.replaceAll(".", "_")),
];
// Snapshot ledger types in both alias forms. Only completion-bearing snapshots
// are reset; intermediate step saves are preserved.
export const SNAPSHOT_EVENT_TYPE_ALIASES = ["onboarding.snapshot.saved", "onboarding_snapshot_saved"] as const;
export function normalizeOnboardingEventType(type: string) {
return type.toLowerCase().replaceAll("_", ".");
@@ -72,7 +83,7 @@ export function completedAtFromOnboardingPayload(payload: Record<string, unknown
export function isValidOnboardingLedgerEvent(event: Pick<GrowEventRow, "type" | "payload">) {
const normalizedType = normalizeOnboardingEventType(event.type);
if (COMPLETION_EVENT_TYPES.has(normalizedType)) return true;
if (COMPLETION_EVENT_TYPES[normalizedType]) return true;
// Snapshots are status-valid only when they are completion snapshots. Plain
// intermediate step saves must not let a new seeker bypass onboarding.
@@ -108,12 +119,6 @@ export async function getLatestValidOnboardingLedgerEvent(userId: string): Promi
return statusEvent;
}
export async function ensureOnboardingBaselineQscoreFromLedger(userId: string) {
const event = await getLatestValidOnboardingLedgerEvent(userId);
if (!event) return false;
return ensureOnboardingBaselineQscoreForCompletedAt(userId, event.occurredAt);
}
function onboardingContextFromInput(context?: Record<string, unknown>) {
const input = context ?? {};
const preferences = asRecord(input.preferences);
@@ -125,10 +130,9 @@ function onboardingContextFromInput(context?: Record<string, unknown>) {
};
}
export async function ensureOnboardingSideEffectsForEvent(event: GrowEventRow) {
export async function ensureOnboardingSideEffectsForEvent(event: GrowEventRow, contextOverride?: Record<string, unknown>) {
if (!event.userId || !isValidOnboardingLedgerEvent(event)) {
return {
qscoreBaselineSeeded: false,
curatorOnboarding: { status: "skipped" as const, reason: event.userId ? "not_onboarding_completion" : "missing_user_id" },
missions: { status: "skipped" as const, reason: event.userId ? "not_onboarding_completion" : "missing_user_id", started: [], existing: [] },
};
@@ -139,13 +143,12 @@ export async function ensureOnboardingSideEffectsForEvent(event: GrowEventRow) {
completedAtFromOnboardingPayload(event.payload) ??
event.occurredAt.toISOString();
const qscoreBaselineSeeded = await ensureOnboardingBaselineQscoreForCompletedAt(event.userId, completedAt);
const curatorOnboarding = await runCuratorOnboardingLoopSafely({
userId: event.userId,
completedAt,
sourceEventId: event.id,
source: event.source,
context: onboardingContextFromInput(event.payload),
context: contextOverride ?? onboardingContextFromInput(event.payload),
});
const missions = {
status: "skipped" as const,
@@ -154,7 +157,7 @@ export async function ensureOnboardingSideEffectsForEvent(event: GrowEventRow) {
existing: [],
};
return { qscoreBaselineSeeded, curatorOnboarding, missions };
return { curatorOnboarding, missions };
}
export async function recordAndProcessOnboardingCompletion(input: {
@@ -188,7 +191,7 @@ export async function recordAndProcessOnboardingCompletion(input: {
await markGrowEventProcessing(event.id);
}
const sideEffects = await ensureOnboardingSideEffectsForEvent(event);
const sideEffects = await ensureOnboardingSideEffectsForEvent(event, context);
if (sideEffects.curatorOnboarding.status === "skipped" && sideEffects.curatorOnboarding.reason === "loop_failed") {
await markGrowEventFailed(event.id, new Error("curator_onboarding_loop_failed"));
} else if (event.processingStatus !== "processed") {
@@ -197,3 +200,329 @@ export async function recordAndProcessOnboardingCompletion(input: {
return { event, ...sideEffects };
}
// ────────────────────────────────────────────────────────────────────────────
// Onboarding preferences helpers (pure — no DB, no network).
//
// The canonical onboarding store is `preferences.onboarding` on the user-service
// profile, shaped as the v3 OnboardingData object (schema_version: 3). These
// helpers read/validate/merge that blob and derive the faithful projection used
// by the curator. Completion percentages and QX estimates are OWNED by the
// dashboard (branch-aware); the backend persists the client-supplied values and
// never recomputes them.
// ────────────────────────────────────────────────────────────────────────────
export type OnboardingAccessChoice = "trial" | "full" | null;
export type OnboardingData = {
schema_version: 3;
revision: number;
status: "in_progress" | "completed";
progress: { stage: string; branch_index: number; updated_at: string | null };
consent: { privacy_accepted: boolean; accepted_at: string | null; terms_version: string };
profile: {
intent: string | null;
mode: string | null;
icp: string | null;
question_branch: string | null;
};
responses: {
current_situation: string | null;
career_barriers: string[];
desired_outcomes: string[];
target_milestone: string | null;
weekly_time_commitment: string | null;
target_role: string | null;
target_field: string | null;
venture_industry: string | null;
experience_level: string | null;
work_context: string | null;
};
import: {
method: string;
status: string;
resume_id: string | null;
resume_filename: string | null;
resume_summary: string | null;
linkedin_profile_id: string | null;
linkedin_url: string | null;
};
access_choice: OnboardingAccessChoice;
qx_estimate: number | null;
completed_at: string | null;
};
export type OnboardingPayload = {
schema_version: 1;
source_revision: number;
primary_intent: string | null;
mode: string | null;
question_branch: string | null;
onboarding_icp: string | null;
curator_registry_icp: string | null;
target_role: string | null;
target_field: string | null;
experience_context: string | null;
goals: string[];
barriers: string[];
priority: string | null;
weekly_time_commitment: string | null;
};
export const DEFAULT_ONBOARDING_DATA: OnboardingData = {
schema_version: 3,
revision: 0,
status: "in_progress",
progress: { stage: "consent", branch_index: 0, updated_at: null },
consent: { privacy_accepted: false, accepted_at: null, terms_version: "2026-07" },
profile: { intent: null, mode: null, icp: null, question_branch: null },
responses: {
current_situation: null,
career_barriers: [],
desired_outcomes: [],
target_milestone: null,
weekly_time_commitment: null,
target_role: null,
target_field: null,
venture_industry: null,
experience_level: null,
work_context: null,
},
import: {
method: "manual",
status: "not_started",
resume_id: null,
resume_filename: null,
resume_summary: null,
linkedin_profile_id: null,
linkedin_url: null,
},
access_choice: null,
qx_estimate: null,
completed_at: null,
};
export function defaultOnboardingData(): OnboardingData {
return structuredClone(DEFAULT_ONBOARDING_DATA);
}
function isObject(value: unknown): value is Record<string, unknown> {
return value !== null && typeof value === "object" && !Array.isArray(value);
}
/**
* Coerce an arbitrary stored value into a valid v3 OnboardingData, filling gaps
* from the defaults. Rejects non-object shapes and falls back to defaults so the
* route always returns a well-formed v3 response (never throws).
*/
export function extractOnboardingData(stored: unknown): OnboardingData {
const base = defaultOnboardingData();
if (!isObject(stored)) return base;
const progress = isObject(stored.progress) ? stored.progress : {};
const consent = isObject(stored.consent) ? stored.consent : {};
const profile = isObject(stored.profile) ? stored.profile : {};
const responses = isObject(stored.responses) ? stored.responses : {};
const imp = isObject(stored.import) ? stored.import : {};
const rev = typeof stored.revision === "number" && Number.isFinite(stored.revision) ? stored.revision : base.revision;
const status = stored.status === "completed" ? "completed" : "in_progress";
const access = stored.access_choice === "trial" || stored.access_choice === "full" ? stored.access_choice : null;
const qx = typeof stored.qx_estimate === "number" && Number.isFinite(stored.qx_estimate) ? stored.qx_estimate : null;
const completed = typeof stored.completed_at === "string" && stored.completed_at.trim() ? stored.completed_at : null;
return {
schema_version: 3,
revision: rev,
status,
progress: {
stage: typeof progress.stage === "string" ? progress.stage : base.progress.stage,
branch_index: typeof progress.branch_index === "number" && Number.isFinite(progress.branch_index) ? progress.branch_index : base.progress.branch_index,
updated_at: typeof progress.updated_at === "string" && progress.updated_at.trim() ? progress.updated_at : null,
},
consent: {
privacy_accepted: typeof consent.privacy_accepted === "boolean" ? consent.privacy_accepted : base.consent.privacy_accepted,
accepted_at: typeof consent.accepted_at === "string" && consent.accepted_at.trim() ? consent.accepted_at : null,
terms_version: typeof consent.terms_version === "string" && consent.terms_version.trim() ? consent.terms_version : base.consent.terms_version,
},
profile: {
intent: typeof profile.intent === "string" ? profile.intent : null,
mode: typeof profile.mode === "string" ? profile.mode : null,
icp: typeof profile.icp === "string" ? profile.icp : null,
question_branch: typeof profile.question_branch === "string" ? profile.question_branch : null,
},
responses: {
current_situation: typeof responses.current_situation === "string" ? responses.current_situation : null,
career_barriers: Array.isArray(responses.career_barriers) ? responses.career_barriers.filter((x) => typeof x === "string") : [],
desired_outcomes: Array.isArray(responses.desired_outcomes) ? responses.desired_outcomes.filter((x) => typeof x === "string") : [],
target_milestone: typeof responses.target_milestone === "string" ? responses.target_milestone : null,
weekly_time_commitment: typeof responses.weekly_time_commitment === "string" ? responses.weekly_time_commitment : null,
target_role: typeof responses.target_role === "string" ? responses.target_role : null,
target_field: typeof responses.target_field === "string" ? responses.target_field : null,
venture_industry: typeof responses.venture_industry === "string" ? responses.venture_industry : null,
experience_level: typeof responses.experience_level === "string" ? responses.experience_level : null,
work_context: typeof responses.work_context === "string" ? responses.work_context : null,
},
import: {
method: typeof imp.method === "string" ? imp.method : base.import.method,
status: typeof imp.status === "string" ? imp.status : base.import.status,
resume_id: typeof imp.resume_id === "string" ? imp.resume_id : null,
resume_filename: typeof imp.resume_filename === "string" ? imp.resume_filename : null,
resume_summary: typeof imp.resume_summary === "string" ? imp.resume_summary : null,
linkedin_profile_id: typeof imp.linkedin_profile_id === "string" ? imp.linkedin_profile_id : null,
linkedin_url: typeof imp.linkedin_url === "string" ? imp.linkedin_url : null,
},
access_choice: access,
qx_estimate: qx,
completed_at: completed,
};
}
export class OnboardingRevisionConflict extends Error {
readonly expected: number;
readonly actual: number;
constructor(expected: number, actual: number) {
super(`onboarding revision conflict: expected ${expected}, actual ${actual}`);
this.name = "OnboardingRevisionConflict";
this.expected = expected;
this.actual = actual;
}
}
/**
* Optimistic-concurrency guard. Throws OnboardingRevisionConflict when the
* client's expectedRevision does not match the currently stored revision.
* `expectedRevision` may be undefined only when there is no existing revision
* (initial create); any mismatch with an existing doc is a conflict.
*/
export function assertOnboardingRevision(expected: number | undefined, current: OnboardingData): void {
if (expected !== current.revision) {
throw new OnboardingRevisionConflict(expected ?? -1, current.revision);
}
}
function asStringArray(value: unknown): string[] {
return Array.isArray(value) ? value.filter((x): x is string => typeof x === "string") : [];
}
/**
* Derive the outbound OnboardingPayload (schema v1) from the stored v3
* OnboardingData. This is a faithful projection — no completion math, no
* invented fields. `curator_registry_icp` is left null (the curator resolves
* the canonical ICP from `onboarding_icp` at projection time).
*/
export function deriveOnboardingPayload(data: OnboardingData): OnboardingPayload {
const experienceContext = [data.responses.experience_level, data.responses.work_context]
.filter((x) => typeof x === "string" && x.trim())
.join(" · ") || null;
const goals = asStringArray(data.responses.desired_outcomes);
const barriers = asStringArray(data.responses.career_barriers);
const priority = goals[0] ?? barriers[0] ?? data.responses.target_milestone ?? null;
return {
schema_version: 1,
source_revision: data.revision,
primary_intent: data.profile.intent,
mode: data.profile.mode,
question_branch: data.profile.question_branch,
onboarding_icp: data.profile.icp,
curator_registry_icp: null,
target_role: data.responses.target_role,
target_field: data.responses.target_field,
experience_context: experienceContext,
goals,
barriers,
priority,
weekly_time_commitment: data.responses.weekly_time_commitment,
};
}
/**
* Deep-merge an incoming PATCH `data` (full OnboardingData) into the stored
* preferences object, returning a NEW preferences object. Preserves every
* unrelated preference key (interview_preferences, resume_preferences,
* mission_preferences, target_roles, etc.) untouched. Bumps revision by one
* and stamps updated_at.
*/
export function mergeOnboardingPatch(
currentPreferences: Record<string, unknown>,
incoming: OnboardingData,
): Record<string, unknown> {
const updatedAt = new Date().toISOString();
const stored = extractOnboardingData(currentPreferences.onboarding);
const prevRevision = stored.revision;
const nextData: OnboardingData = {
...incoming,
// The client sends the revision it based its edits on; the stored revision
// is authoritative. We bump from the previously stored revision.
revision: prevRevision + 1,
progress: { ...incoming.progress, updated_at: updatedAt },
};
// Status/completed_at consistency: completed ⇒ completed_at must be set.
if (nextData.status === "completed" && !nextData.completed_at) {
nextData.completed_at = updatedAt;
}
// If regressed to in_progress, clear a stale completed_at.
if (nextData.status === "in_progress" && nextData.completed_at && incoming.completed_at === null) {
nextData.completed_at = null;
}
return { ...currentPreferences, onboarding: nextData };
}
/**
* Build the next preferences object for a reset: replace `preferences.onboarding`
* with a fresh default v3 doc (revision 0) and preserve every unrelated
* preference key. Pure — no DB, no network. The revision resets to 0 so the
* next save starts a fresh optimistic-concurrency lineage.
*/
export function resetOnboardingPreferences(
currentPreferences: Record<string, unknown>,
): Record<string, unknown> {
return { ...currentPreferences, onboarding: defaultOnboardingData() };
}
// ────────────────────────────────────────────────────────────────────────────
// Onboarding reset
//
// The onboarding gate reopens when no valid completion ledger row exists for a
// user (getLatestValidOnboardingLedgerEvent returns null). The reset deletes:
// 1. Every completion-type row in EITHER alias form (dotted like
// "onboarding.completed" or underscore like "onboarding_completed") — these
// carry the `onboarding:completed:${userId}` dedupe key.
// 2. Snapshot rows ("onboarding.snapshot.saved" / "onboarding_snapshot_saved")
// ONLY when their payload carries a completion marker (completed_at /
// completedAt at the top level or under onboarding). Intermediate step
// saves — the vast majority of snapshots — are preserved.
// Missions, curator context, and qscore baselines are never touched. Returns
// the count of rows removed for audit output.
// ────────────────────────────────────────────────────────────────────────────
// jsonb predicate matching the same paths completedAtFromOnboardingPayload
// inspects for snapshot payloads. Mirrors the JS validity rule in SQL so the
// reset deletes exactly the snapshots that would otherwise keep the gate shut.
const SNAPSHOT_HAS_COMPLETION = sql<boolean>`${growEvents.payload}->>'completed_at' IS NOT NULL
OR ${growEvents.payload}->>'completedAt' IS NOT NULL
OR ${growEvents.payload}->'onboarding'->>'completed_at' IS NOT NULL
OR ${growEvents.payload}->'onboarding'->>'completedAt' IS NOT NULL`;
export async function resetOnboardingLedger(userId: string): Promise<number> {
const deleted = await db
.delete(growEvents)
.where(
and(
eq(growEvents.userId, userId),
or(
inArray(growEvents.type, [...COMPLETION_EVENT_TYPE_ALIASES]),
and(
inArray(growEvents.type, [...SNAPSHOT_EVENT_TYPE_ALIASES]),
SNAPSHOT_HAS_COMPLETION,
),
),
),
)
.returning({ id: growEvents.id });
return deleted.length;
}

View File

@@ -1,166 +0,0 @@
import { and, eq } from "drizzle-orm";
import { db } from "../db/client.js";
import { growQscoreLatest, growQscoreProjectionState, growQscoreSignals } from "../db/schema.js";
export const ONBOARDING_BASELINE_SIGNAL_ID = "onboarding.completed_baseline";
export const ONBOARDING_BASELINE_QSCORE = 35;
function asRecord(value: unknown): Record<string, unknown> {
return value && typeof value === "object" && !Array.isArray(value) ? (value as Record<string, unknown>) : {};
}
function parseCompletedAt(value: unknown): Date | null {
if (value instanceof Date) {
return Number.isNaN(value.getTime()) ? null : value;
}
if (typeof value !== "string" || !value.trim()) return null;
const parsed = new Date(value);
return Number.isNaN(parsed.getTime()) ? new Date() : parsed;
}
function onboardingCompletedAt(preferences: Record<string, unknown> | undefined): Date | null {
const onboarding = asRecord(preferences?.onboarding);
return parseCompletedAt(onboarding.completed_at ?? onboarding.completedAt);
}
/**
* Seed the first real Q Score projection when onboarding is completed.
*
* The onboarding UI tells users their QX baseline starts at 35. Previously that
* number was only cosmetic, while the header showed a separate home-feed
* fallback and the Q Score page stayed empty. This makes the onboarding
* baseline a persisted readiness signal, but only when the user has no Q Score
* signals/projection yet so we do not overwrite mature accounts.
*/
export async function ensureOnboardingBaselineQscore(
userId: string,
preferences: Record<string, unknown> | undefined,
): Promise<boolean> {
const completedAt = onboardingCompletedAt(preferences);
if (!completedAt) return false;
return ensureOnboardingBaselineQscoreForCompletedAt(userId, completedAt);
}
export async function ensureOnboardingBaselineQscoreForCompletedAt(
userId: string,
completedAtInput: string | Date,
): Promise<boolean> {
const completedAt = parseCompletedAt(completedAtInput);
if (!completedAt) return false;
const latestSignals = await db
.select({ signalId: growQscoreLatest.signalId, score: growQscoreLatest.score })
.from(growQscoreLatest)
.where(and(eq(growQscoreLatest.userId, userId), eq(growQscoreLatest.present, true)));
const [existingProjection] = await db
.select({ score: growQscoreProjectionState.score, signalCount: growQscoreProjectionState.signalCount })
.from(growQscoreProjectionState)
.where(eq(growQscoreProjectionState.userId, userId))
.limit(1);
const now = new Date();
// Repair users affected by the old resume-upload projector, which treated a
// plain upload as a perfect 100 score. Uploading a resume during onboarding is
// only baseline evidence; parsed resume/interview/roleplay results should be
// what moves the score upward.
if (
latestSignals.length === 1 &&
latestSignals[0]?.signalId === "resume.uploaded" &&
latestSignals[0].score > ONBOARDING_BASELINE_QSCORE
) {
await db
.update(growQscoreLatest)
.set({
score: ONBOARDING_BASELINE_QSCORE,
raw: {
reason: "resume upload baseline correction",
correctedFrom: latestSignals[0].score,
correctedAt: now.toISOString(),
},
updatedAt: now,
})
.where(and(eq(growQscoreLatest.userId, userId), eq(growQscoreLatest.signalId, "resume.uploaded")));
await db
.insert(growQscoreProjectionState)
.values({
userId,
score: ONBOARDING_BASELINE_QSCORE,
signalCount: 1,
dimensions: { baseline: true, latestSignalIds: ["resume.uploaded"], corrected: true },
summary: "Baseline Q Score from onboarding resume upload.",
updatedAt: now,
})
.onConflictDoUpdate({
target: growQscoreProjectionState.userId,
set: {
score: ONBOARDING_BASELINE_QSCORE,
signalCount: 1,
dimensions: { baseline: true, latestSignalIds: ["resume.uploaded"], corrected: true },
summary: "Baseline Q Score from onboarding resume upload.",
updatedAt: now,
},
});
return true;
}
if (latestSignals.length > 0 || (existingProjection?.score ?? 0) > 0) {
return false;
}
const raw = {
reason: "completed onboarding baseline",
completedAt: completedAt.toISOString(),
};
const inserted = await db
.insert(growQscoreLatest)
.values({
userId,
signalId: ONBOARDING_BASELINE_SIGNAL_ID,
score: ONBOARDING_BASELINE_QSCORE,
present: true,
source: "onboarding",
raw,
occurredAt: completedAt,
updatedAt: now,
})
.onConflictDoNothing()
.returning({ signalId: growQscoreLatest.signalId });
if (!inserted.length) return false;
await db.insert(growQscoreSignals).values({
userId,
signalId: ONBOARDING_BASELINE_SIGNAL_ID,
score: ONBOARDING_BASELINE_QSCORE,
present: true,
source: "onboarding",
raw,
occurredAt: completedAt,
});
await db
.insert(growQscoreProjectionState)
.values({
userId,
score: ONBOARDING_BASELINE_QSCORE,
signalCount: 1,
dimensions: { baseline: true, latestSignalIds: [ONBOARDING_BASELINE_SIGNAL_ID] },
summary: "Baseline Q Score from completed onboarding.",
updatedAt: now,
})
.onConflictDoUpdate({
target: growQscoreProjectionState.userId,
set: {
score: ONBOARDING_BASELINE_QSCORE,
signalCount: 1,
dimensions: { baseline: true, latestSignalIds: [ONBOARDING_BASELINE_SIGNAL_ID] },
summary: "Baseline Q Score from completed onboarding.",
updatedAt: now,
},
});
return true;
}

View File

@@ -1,241 +1,21 @@
import { and, eq, sql } from "drizzle-orm";
import { db } from "../../db/client.js";
import { growQscoreLatest, growQscoreProjectionState, growQscoreSignals, type GrowEventRow } from "../../db/schema.js";
import { asRecord, clampScore, getNumber, type QscoreSignal } from "../envelope.js";
import type { GrowEventRow } from "../../db/schema.js";
import { publishQscoreOutboxForEvent } from "../qscore-event-outbox.js";
function signal(signalId: string, score: number, raw?: Record<string, unknown>, present = true): QscoreSignal {
return { signalId, score: clampScore(score), present, raw };
}
function nestedNumber(record: Record<string, unknown>, keys: string[]): number | undefined {
for (const key of keys) {
const direct = getNumber(record[key]);
if (direct !== undefined) return direct;
}
return undefined;
}
const RESUME_UPLOAD_BASELINE_SCORE = 35;
function extractResumeSignals(event: GrowEventRow): QscoreSignal[] {
const payload = event.payload ?? {};
const analysis = asRecord(payload.analysis ?? payload.result ?? payload);
const scoreBreakdown = Array.isArray(analysis.score_breakdown) ? analysis.score_breakdown : [];
const dimensions = Array.isArray(analysis.dimensional_scores) ? analysis.dimensional_scores : [];
const byCategory = new Map<string, number>();
for (const item of scoreBreakdown) {
const row = asRecord(item);
const category = typeof row.category === "string" ? row.category : undefined;
const score = getNumber(row.score);
if (category && score !== undefined) byCategory.set(category, score);
}
const byDimension = new Map<string, number>();
for (const item of dimensions) {
const row = asRecord(item);
const dimension = typeof row.dimension === "string" ? row.dimension : undefined;
const score = getNumber(row.score);
if (dimension && score !== undefined) byDimension.set(dimension, score);
}
const signals: QscoreSignal[] = [];
if (event.type.includes("uploaded") || event.type.includes("created")) {
// Uploading a resume is only a baseline readiness signal. The actual Q Score
// should rise from parsed resume/interview/roleplay evidence, not jump to 100
// immediately after onboarding.
signals.push(signal("resume.uploaded", RESUME_UPLOAD_BASELINE_SCORE, { eventId: event.id }));
}
const ats = byCategory.get("ATS Compatibility") ?? nestedNumber(analysis, ["ats_score", "ats_compatibility", "atsCompatibility"]);
if (ats !== undefined) signals.push(signal("resume.ats_compatibility", ats, { eventId: event.id }));
const keywords = byDimension.get("Keywords") ?? nestedNumber(analysis, ["keyword_score", "keyword_relevance", "keywords"]);
if (keywords !== undefined) {
signals.push(signal("resume.keyword_relevance", keywords, { eventId: event.id }));
signals.push(signal("resume.technical_keywords", keywords, { eventId: event.id }));
}
const quantification = byDimension.get("Quantification") ?? nestedNumber(analysis, ["quantification_score"]);
if (quantification !== undefined) signals.push(signal("resume.quantified_achievements", quantification, { eventId: event.id }));
const contentQuality = byCategory.get("Content Quality") ?? nestedNumber(analysis, ["content_quality", "clarity_score"]);
if (contentQuality !== undefined) signals.push(signal("resume.grammar_clarity", contentQuality, { eventId: event.id }));
const formatting = byCategory.get("Formatting") ?? nestedNumber(analysis, ["formatting", "format_score"]);
if (formatting !== undefined) signals.push(signal("resume.format_structure", formatting, { eventId: event.id }));
const impact = byCategory.get("Impact Demonstration") ?? nestedNumber(analysis, ["impact_score"]);
if (impact !== undefined) {
signals.push(signal("resume.leadership_indicators", impact, { eventId: event.id }));
signals.push(signal("resume.impact_statements", impact, { eventId: event.id }));
}
return signals;
}
function extractInterviewSignals(event: GrowEventRow): QscoreSignal[] {
const payload = event.payload ?? {};
const review = asRecord(payload.review ?? payload.result ?? payload);
const status = String(review.status ?? payload.status ?? "");
if (!event.type.includes("review") && !event.type.includes("completed") && status !== "completed") return [];
const signals: QscoreSignal[] = [];
signals.push(signal("interview.completed", 100, { eventId: event.id }));
const overall = getNumber(review.overall_score ?? review.overallScore ?? payload.overall_score);
if (overall !== undefined) signals.push(signal("interview.overall_score", overall, { eventId: event.id }));
const rubric = asRecord(review.rubric_scores ?? review.rubricScores);
const content = getNumber(rubric.content_quality ?? rubric.content ?? rubric.communication ?? review.communication_score);
if (content !== undefined) signals.push(signal("interview.response_clarity", content, { eventId: event.id }));
const roleAlignment = getNumber(rubric.role_alignment ?? rubric.technical_accuracy ?? review.role_alignment_score);
if (roleAlignment !== undefined) signals.push(signal("interview.technical_accuracy", roleAlignment, { eventId: event.id }));
const language = getNumber(rubric.language ?? review.language_score);
if (language !== undefined) signals.push(signal("interview.behavioral_quality", language, { eventId: event.id }));
const historical = asRecord(review.historical_comparison ?? review.historicalComparison);
const delta = getNumber(historical.overall_delta ?? historical.overallDelta);
if (delta !== undefined) signals.push(signal("interview.improvement_over_time", 50 + delta * 2.5, { eventId: event.id, delta }));
return signals;
}
function extractRoleplaySignals(event: GrowEventRow): QscoreSignal[] {
const payload = event.payload ?? {};
const review = asRecord(payload.review ?? payload.result ?? payload);
const status = String(review.status ?? payload.status ?? "");
if (!event.type.includes("review") && !event.type.includes("completed") && status !== "completed") return [];
const signals: QscoreSignal[] = [];
signals.push(signal("roleplay.completed", 100, { eventId: event.id }));
const rubric = asRecord(review.rubric_scores ?? review.rubricScores);
const scenario = getNumber(rubric.scenario_adherence ?? review.scenario_adherence_score);
if (scenario !== undefined) signals.push(signal("roleplay.situational_judgment", scenario, { eventId: event.id }));
const empathy = getNumber(rubric.emotional_intelligence ?? review.emotional_intelligence_score);
if (empathy !== undefined) signals.push(signal("roleplay.empathy_demonstrated", empathy, { eventId: event.id }));
const adaptability = getNumber(rubric.adaptability ?? review.adaptability_score);
if (adaptability !== undefined) signals.push(signal("roleplay.problem_resolution", adaptability, { eventId: event.id }));
const communication = getNumber(rubric.content ?? rubric.communication ?? review.communication_score);
if (communication !== undefined) signals.push(signal("roleplay.communication_effectiveness", communication, { eventId: event.id }));
const historical = asRecord(review.historical_comparison ?? review.historicalComparison);
const delta = getNumber(historical.overall_delta ?? historical.overallDelta);
if (delta !== undefined) signals.push(signal("roleplay.improvement_over_time", 50 + delta * 2.5, { eventId: event.id, delta }));
return signals;
}
function sourceSignalPrefix(source: string) {
return source
.toLowerCase()
.replace(/-service$/, "")
.replace(/[^a-z0-9]+/g, "_")
.replace(/^_+|_+$/g, "") || "service";
}
function extractScoredServiceSignals(event: GrowEventRow): QscoreSignal[] {
const payload = event.payload ?? {};
const review = asRecord(payload.review ?? payload.result ?? payload);
const status = String(review.status ?? payload.status ?? "");
const isCompletion =
event.type.includes("completed") ||
event.type.includes("updated") ||
event.type.includes("signal_projected") ||
event.type.includes("signal.projected") ||
status === "completed";
if (!isCompletion) return [];
const score = getNumber(
payload.score ??
payload.qscore ??
payload.q_score ??
payload.readiness_score ??
payload.overall_score ??
review.score ??
review.qscore ??
review.q_score ??
review.readiness_score ??
review.overall_score,
);
if (score === undefined) return [];
const prefix = sourceSignalPrefix(event.source);
return [
signal(`${prefix}.service_completion_score`, score, {
eventId: event.id,
source: event.source,
type: event.type,
}),
];
}
export function extractQscoreSignals(event: GrowEventRow): QscoreSignal[] {
const source = event.source.toLowerCase();
if (source.includes("resume") || event.type.startsWith("resume.")) return extractResumeSignals(event);
if (source.includes("interview") || event.type.startsWith("interview.")) return extractInterviewSignals(event);
if (source.includes("roleplay") || event.type.startsWith("roleplay.")) return extractRoleplaySignals(event);
if (source.includes("qscore") || event.type.startsWith("qscore.")) return extractScoredServiceSignals(event);
const scoredServiceSignals = extractScoredServiceSignals(event);
if (scoredServiceSignals.length) return scoredServiceSignals;
if (event.type === "mission.interview_to_offer.started") {
return [signal("goals.goals_set", 100, { eventId: event.id })];
}
return [];
}
export async function applyQscoreProjection(event: GrowEventRow) {
if (!event.userId) return { signals: [], score: undefined };
const signals = extractQscoreSignals(event);
if (!signals.length) return { signals, score: undefined };
for (const item of signals) {
await db.insert(growQscoreSignals).values({
userId: event.userId,
sourceEventId: event.id,
signalId: item.signalId,
score: item.score,
present: item.present,
source: event.source,
raw: item.raw,
occurredAt: event.occurredAt,
});
await db.insert(growQscoreLatest).values({
userId: event.userId,
signalId: item.signalId,
score: item.score,
present: item.present,
source: event.source,
sourceEventId: event.id,
raw: item.raw,
occurredAt: event.occurredAt,
updatedAt: new Date(),
}).onConflictDoUpdate({
target: [growQscoreLatest.userId, growQscoreLatest.signalId],
set: {
score: item.score,
present: item.present,
source: event.source,
sourceEventId: event.id,
raw: item.raw,
occurredAt: event.occurredAt,
updatedAt: new Date(),
},
});
}
const [aggregate] = await db
.select({ score: sql<number>`round(avg(${growQscoreLatest.score}))::int`, count: sql<number>`count(*)::int` })
.from(growQscoreLatest)
.where(and(eq(growQscoreLatest.userId, event.userId), eq(growQscoreLatest.present, true)));
const score = aggregate?.score ?? 0;
const signalCount = aggregate?.count ?? 0;
await db.insert(growQscoreProjectionState).values({
userId: event.userId,
score,
signalCount,
dimensions: { latestSignalIds: signals.map((s) => s.signalId) },
summary: `Estimated readiness score from ${signalCount} current signal${signalCount === 1 ? "" : "s"}.`,
updatedAt: new Date(),
}).onConflictDoUpdate({
target: growQscoreProjectionState.userId,
set: {
score,
signalCount,
dimensions: { latestSignalIds: signals.map((s) => s.signalId) },
summary: `Estimated readiness score from ${signalCount} current signal${signalCount === 1 ? "" : "s"}.`,
updatedAt: new Date(),
},
});
return { signals, score };
/**
* Compatibility adapter for event/mission processing.
*
* The backend never extracts, normalizes, thresholds, or scores a signal. The
* canonical GrowEvent was queued transactionally when it was recorded. This
* method only attempts that delivery and passes QScore-owned projected evidence
* back to mission reducers when the QScore API returns it.
*/
export async function applyQscoreProjection(event: Pick<GrowEventRow, "id" | "userId">) {
if (!event.userId) return { signals: [], score: undefined, delivery: "skipped" as const };
const result = await publishQscoreOutboxForEvent(event.id);
return {
signals: result.signals,
score: undefined,
delivery: result.status,
response: result.response,
};
}

View File

@@ -1,6 +1,6 @@
import { eq } from "drizzle-orm";
import { and, eq } from "drizzle-orm";
import { db } from "../../db/client.js";
import { missionServiceSessions, type GrowEventRow } from "../../db/schema.js";
import { growActiveMissions, missionServiceSessions, type GrowEventRow } from "../../db/schema.js";
import { asRecord, getString } from "../envelope.js";
import { normalizeServiceId } from "../record-grow-event.js";
@@ -12,8 +12,16 @@ function extractExternalId(event: GrowEventRow): string | undefined {
correlation.session_id ??
correlation.externalId ??
correlation.external_id ??
correlation.lessonId ??
correlation.courseId ??
payload.session_id ??
payload.sessionId ??
payload.lessonId ??
payload.lesson_id ??
payload.courseId ??
payload.course_id ??
payload.videoId ??
payload.video_id ??
payload.id,
);
}
@@ -21,6 +29,7 @@ function extractExternalId(event: GrowEventRow): string | undefined {
function statusFor(event: GrowEventRow): string {
const payload = event.payload ?? {};
const explicit = getString(payload.status);
if (explicit === "configured" || explicit === "draft" || explicit === "ready") return "active";
if (explicit) return explicit;
if (event.type.includes("review_completed") || event.type.includes("feedback.generated") || event.type.includes("completed")) return "completed";
if (event.type.includes("failed")) return "failed";
@@ -33,22 +42,57 @@ export async function applyServiceSessionProjection(event: GrowEventRow) {
const externalId = extractExternalId(event);
if (!externalId) return null;
const serviceId = normalizeServiceId(event.source);
if (!["interview", "roleplay", "resume"].includes(serviceId)) return null;
if (!["interview", "roleplay", "resume", "course"].includes(serviceId)) return null;
const mission = asRecord(event.mission);
const correlation = asRecord(event.correlation);
const payload = event.payload ?? {};
const missionInstanceId = getString(mission.instanceId ?? mission.instance_id ?? payload.missionInstanceId ?? payload.mission_instance_id);
const missionId = getString(mission.missionId ?? mission.mission_id ?? payload.missionId ?? payload.mission_id);
const stageId = getString(mission.stageId ?? mission.stage_id ?? payload.stageId ?? payload.stage_id);
const [activeMission] = missionInstanceId
? await db
.select({
instanceId: growActiveMissions.instanceId,
missionId: growActiveMissions.missionId,
currentStageId: growActiveMissions.currentStageId,
})
.from(growActiveMissions)
.where(and(eq(growActiveMissions.userId, event.userId), eq(growActiveMissions.instanceId, missionInstanceId)))
.limit(1)
: [];
const linkedMissionInstanceId = activeMission?.instanceId;
const linkedMissionId = missionId ?? activeMission?.missionId;
const linkedStageId = stageId ?? activeMission?.currentStageId ?? undefined;
const metadata = {
lastType: event.type,
subject: event.subject,
payloadStatus: event.payload?.status,
missionInstanceId,
missionId,
stageId,
task_id: getString(correlation.task_id ?? payload.task_id ?? payload.taskId ?? payload.curatorTaskId ?? payload.curator_task_id),
courseId: getString(correlation.courseId ?? payload.courseId ?? payload.course_id),
lessonId: getString(correlation.lessonId ?? payload.lessonId ?? payload.lesson_id),
};
const updateValues = {
...(linkedMissionInstanceId ? { missionInstanceId: linkedMissionInstanceId } : {}),
...(linkedMissionId ? { missionId: linkedMissionId } : {}),
...(linkedStageId ? { stageId: linkedStageId } : {}),
status: statusFor(event),
metadata,
lastEventId: event.id,
lastCheckedAt: event.type.includes("review") ? new Date() : undefined,
updatedAt: new Date(),
};
const [row] = await db
.insert(missionServiceSessions)
.values({
userId: event.userId,
missionInstanceId: getString(mission.instanceId ?? mission.instance_id),
missionId: getString(mission.missionId ?? mission.mission_id),
stageId: getString(mission.stageId ?? mission.stage_id),
missionInstanceId: linkedMissionInstanceId,
missionId: linkedMissionId,
stageId: linkedStageId,
serviceId,
externalId,
status: statusFor(event),
@@ -57,20 +101,18 @@ export async function applyServiceSessionProjection(event: GrowEventRow) {
updatedAt: new Date(),
})
.onConflictDoUpdate({
target: [missionServiceSessions.serviceId, missionServiceSessions.externalId],
set: {
status: statusFor(event),
metadata,
lastEventId: event.id,
lastCheckedAt: event.type.includes("review") ? new Date() : undefined,
updatedAt: new Date(),
},
target: [missionServiceSessions.userId, missionServiceSessions.serviceId, missionServiceSessions.externalId],
set: updateValues,
})
.returning();
// Touch the row if Drizzle ever returns no row for an upsert variant.
if (!row) {
await db.update(missionServiceSessions).set({ updatedAt: new Date() }).where(eq(missionServiceSessions.externalId, externalId));
await db.update(missionServiceSessions).set({ updatedAt: new Date() }).where(and(
eq(missionServiceSessions.userId, event.userId),
eq(missionServiceSessions.serviceId, serviceId),
eq(missionServiceSessions.externalId, externalId),
));
}
return row ?? null;
}

View File

@@ -0,0 +1,197 @@
import { and, eq, lt, lte, or, sql } from "drizzle-orm";
import { config } from "../config.js";
import { db } from "../db/client.js";
import { eventOutbox } from "../db/schema.js";
import { log } from "../log.js";
import { asRecord, getNumber, getString, type QscoreSignal } from "./envelope.js";
export const QSCORE_GROW_EVENT_TOPIC = "qscore.grow_event.raw";
export const QSCORE_GROW_EVENT_DESTINATION = "/v1/events/ingest";
const LOCK_TIMEOUT_MS = 60_000;
const DEFAULT_POLL_MS = 2_000;
const DEFAULT_BATCH_SIZE = 25;
export type QscoreEventDeliveryResult = {
status: "queued" | "published";
signals: QscoreSignal[];
response?: Record<string, unknown>;
};
type Deliver = (input: {
destination: string;
payload: Record<string, unknown>;
headers: Record<string, string>;
}) => Promise<Record<string, unknown>>;
function signalFromUnknown(value: unknown): QscoreSignal | null {
const row = asRecord(value);
const signalId = getString(row.signalId ?? row.signal_id ?? row.id);
if (!signalId) return null;
const score = getNumber(row.score ?? row.normalizedScore ?? row.normalized_score);
const present = typeof row.present === "boolean" ? row.present : undefined;
const suppliedRaw = asRecord(row.raw ?? row.evidence);
const policyEvidence = compactRecord({
rawValue: row.rawValue ?? row.raw_value,
rawUnit: row.rawUnit ?? row.raw_unit,
band: row.band,
materialChange: row.materialChange ?? row.material_change,
});
return {
signalId,
...(score !== undefined ? { score } : {}),
...(present !== undefined ? { present } : {}),
...(getString(row.source) ? { source: getString(row.source) } : {}),
raw: Object.keys(suppliedRaw).length ? suppliedRaw : policyEvidence,
};
}
function compactRecord(value: Record<string, unknown>) {
return Object.fromEntries(Object.entries(value).filter(([, item]) => item !== undefined));
}
/** Read only QScore-owned projected evidence; never infer or score locally. */
export function projectedSignalsFromQscoreResponse(body: Record<string, unknown>): QscoreSignal[] {
const breakdown = asRecord(body.breakdown);
const candidates = Array.isArray(body.projectedSignals)
? body.projectedSignals
: Array.isArray(body.projected_signals)
? body.projected_signals
: Array.isArray(body.signals)
? body.signals
: Array.isArray(breakdown.signals)
? breakdown.signals
: [];
return candidates.map(signalFromUnknown).filter((signal): signal is QscoreSignal => signal !== null);
}
async function postToQscore(input: Parameters<Deliver>[0]): Promise<Record<string, unknown>> {
const response = await fetch(`${config.qscoreServiceUrl.replace(/\/$/, "")}${input.destination}`, {
method: "POST",
headers: {
...input.headers,
...(config.a2aAllowedKey ? { authorization: `Bearer ${config.a2aAllowedKey}` } : {}),
},
body: JSON.stringify(input.payload),
signal: AbortSignal.timeout(config.qscoreEventDeliveryTimeoutMs),
});
const text = await response.text();
let body: unknown = {};
if (text) {
try { body = JSON.parse(text); } catch { body = { detail: text }; }
}
if (!response.ok) {
throw new Error(`qscore raw-event ingest failed (${response.status}): ${text.slice(0, 500)}`);
}
return asRecord(body);
}
export async function publishQscoreOutboxItem(
outboxId: string,
deliver: Deliver = postToQscore,
): Promise<QscoreEventDeliveryResult> {
const now = new Date();
const staleBefore = new Date(now.getTime() - LOCK_TIMEOUT_MS);
const [claimed] = await db
.update(eventOutbox)
.set({
status: "processing",
attempts: sql`${eventOutbox.attempts} + 1`,
lockedAt: now,
updatedAt: now,
})
.where(and(
eq(eventOutbox.id, outboxId),
or(
and(eq(eventOutbox.status, "pending"), lte(eventOutbox.availableAt, now)),
and(eq(eventOutbox.status, "processing"), lt(eventOutbox.lockedAt, staleBefore)),
),
))
.returning();
if (!claimed) {
const [existing] = await db.select().from(eventOutbox).where(eq(eventOutbox.id, outboxId)).limit(1);
const response = existing?.response ?? undefined;
return {
status: existing?.status === "published" ? "published" : "queued",
signals: response ? projectedSignalsFromQscoreResponse(response) : [],
response,
};
}
try {
const response = await deliver({
destination: claimed.destination,
payload: claimed.payload,
headers: claimed.headers,
});
await db.update(eventOutbox).set({
status: "published",
response,
publishedAt: new Date(),
lockedAt: null,
lastError: null,
updatedAt: new Date(),
}).where(eq(eventOutbox.id, claimed.id));
return { status: "published", signals: projectedSignalsFromQscoreResponse(response), response };
} catch (error) {
const delaySeconds = Math.min(300, 2 ** Math.min(claimed.attempts, 8));
await db.update(eventOutbox).set({
status: "pending",
availableAt: new Date(Date.now() + delaySeconds * 1_000),
lockedAt: null,
lastError: error instanceof Error ? error.message : String(error),
updatedAt: new Date(),
}).where(eq(eventOutbox.id, claimed.id));
throw error;
}
}
export async function publishQscoreOutboxForEvent(eventId: string): Promise<QscoreEventDeliveryResult> {
const [row] = await db
.select({ id: eventOutbox.id, status: eventOutbox.status, response: eventOutbox.response })
.from(eventOutbox)
.where(and(eq(eventOutbox.topic, QSCORE_GROW_EVENT_TOPIC), eq(eventOutbox.aggregateId, eventId)))
.limit(1);
if (!row) return { status: "queued", signals: [] };
if (row.status === "published") {
return {
status: "published",
signals: row.response ? projectedSignalsFromQscoreResponse(row.response) : [],
response: row.response ?? undefined,
};
}
try {
return await publishQscoreOutboxItem(row.id);
} catch (error) {
log.warn({ error, eventId }, "QScore raw GrowEvent queued for retry");
return { status: "queued", signals: [] };
}
}
export async function flushQscoreEventOutbox(limit = DEFAULT_BATCH_SIZE): Promise<number> {
const now = new Date();
const staleBefore = new Date(now.getTime() - LOCK_TIMEOUT_MS);
const rows = await db
.select({ id: eventOutbox.id })
.from(eventOutbox)
.where(and(
eq(eventOutbox.topic, QSCORE_GROW_EVENT_TOPIC),
or(
and(eq(eventOutbox.status, "pending"), lte(eventOutbox.availableAt, now)),
and(eq(eventOutbox.status, "processing"), lt(eventOutbox.lockedAt, staleBefore)),
),
))
.limit(limit);
const settled = await Promise.allSettled(rows.map((row) => publishQscoreOutboxItem(row.id)));
return settled.filter((result) => result.status === "fulfilled").length;
}
export function startQscoreEventOutboxPublisher(pollMs = DEFAULT_POLL_MS) {
const timer = setInterval(() => {
flushQscoreEventOutbox().catch((error) => log.error({ error }, "QScore event outbox flush failed"));
}, pollMs);
timer.unref();
void flushQscoreEventOutbox().catch((error) => log.error({ error }, "initial QScore event outbox flush failed"));
return () => clearInterval(timer);
}

View File

@@ -1,8 +1,10 @@
import { and, eq } from "drizzle-orm";
import { and, eq, or } from "drizzle-orm";
import { db } from "../db/client.js";
import { growEvents, missionServiceSessions, users, type GrowEventRow } from "../db/schema.js";
import { eventOutbox, growEvents, missionServiceSessions, users, type GrowEventRow } from "../db/schema.js";
import { asRecord, getString, type GrowEventEnvelope } from "./envelope.js";
import { normalizeGrowEvent } from "./normalize.js";
import { QSCORE_GROW_EVENT_DESTINATION, QSCORE_GROW_EVENT_TOPIC } from "./qscore-event-outbox.js";
import { DEFAULT_QSCORE_ORG_ID } from "../services/qscore-proxy.js";
async function ensureUser(userId: string) {
await db
@@ -11,81 +13,285 @@ async function ensureUser(userId: string) {
.onConflictDoNothing();
}
type ServiceSessionLink = Pick<
typeof missionServiceSessions.$inferSelect,
"userId" | "missionInstanceId" | "missionId" | "stageId" | "metadata"
>;
export function correlateEventWithServiceSession(
event: GrowEventEnvelope,
resolvedUserId: string | undefined,
link: ServiceSessionLink | undefined,
): GrowEventEnvelope {
if (!resolvedUserId || !link || link.userId !== resolvedUserId) return event;
const metadata = asRecord(link.metadata);
const taskId = getString(metadata.task_id ?? metadata.taskId ?? metadata.curatorTaskId ?? metadata.curator_task_id);
const missionInstanceId = getString(link.missionInstanceId ?? metadata.missionInstanceId ?? metadata.mission_instance_id);
const missionId = getString(link.missionId ?? metadata.missionId ?? metadata.mission_id);
const stageId = getString(link.stageId ?? metadata.stageId ?? metadata.stage_id);
const eventCorrelation = event.correlation ?? {};
const explicitTaskId = getString(eventCorrelation.task_id ?? eventCorrelation.taskId ?? eventCorrelation.curatorTaskId ?? eventCorrelation.curator_task_id);
const correlation = {
...(taskId && !explicitTaskId ? { task_id: taskId } : {}),
...(missionInstanceId && !getString(eventCorrelation.missionInstanceId) ? { missionInstanceId } : {}),
...(missionId && !getString(eventCorrelation.missionId) ? { missionId } : {}),
...(stageId && !getString(eventCorrelation.stageId) ? { stageId } : {}),
...eventCorrelation,
};
const mission = event.mission ?? (
missionInstanceId || missionId || stageId
? { instanceId: missionInstanceId, missionId, stageId }
: undefined
);
return { ...event, correlation, mission };
}
export function serviceEventExternalIds(event: GrowEventEnvelope): string[] {
const correlation = event.correlation ?? {};
const payload = event.payload ?? {};
const subject = event.subject ?? {};
return [...new Set([
correlation.sessionId,
correlation.session_id,
correlation.externalId,
correlation.external_id,
correlation.resumeId,
correlation.resume_id,
correlation.courseId,
correlation.course_id,
correlation.lessonId,
correlation.lesson_id,
correlation.assessmentId,
correlation.assessment_id,
subject.externalId,
payload.sessionId,
payload.session_id,
payload.externalId,
payload.external_id,
payload.resumeId,
payload.resume_id,
payload.courseId,
payload.course_id,
payload.lessonId,
payload.lesson_id,
payload.assessmentId,
payload.assessment_id,
].map(getString).filter((value): value is string => Boolean(value)))];
}
async function resolveUserId(event: GrowEventEnvelope): Promise<string | undefined> {
if (event.userId) return event.userId;
const sessionId = getString(event.correlation?.sessionId ?? event.correlation?.session_id);
const externalIds = serviceEventExternalIds(event);
const serviceId = normalizeServiceId(event.source);
if (sessionId) {
const [row] = await db
.select({ userId: missionServiceSessions.userId })
.from(missionServiceSessions)
.where(and(eq(missionServiceSessions.serviceId, serviceId), eq(missionServiceSessions.externalId, sessionId)))
.limit(1);
if (row?.userId) return row.userId;
}
return undefined;
if (!externalIds.length) return undefined;
const rows = await db
.select({ userId: missionServiceSessions.userId })
.from(missionServiceSessions)
.where(and(
eq(missionServiceSessions.serviceId, serviceId),
inArrayValues(missionServiceSessions.externalId, externalIds),
));
return resolveUniqueSessionUserId(rows);
}
function inArrayValues(column: typeof missionServiceSessions.externalId, values: string[]) {
return or(...values.map((value) => eq(column, value)))!;
}
// External service IDs are not globally unique. Ambiguous ownership must remain
// unresolved rather than silently attaching another user's Curator task context.
export function resolveUniqueSessionUserId(rows: Array<{ userId: string }>): string | undefined {
const userIds = new Set(rows.map((row) => row.userId));
return userIds.size === 1 ? [...userIds][0] : undefined;
}
async function resolveServiceSessionLink(event: GrowEventEnvelope, userId: string | undefined): Promise<ServiceSessionLink | undefined> {
if (!userId) return undefined;
const externalIds = serviceEventExternalIds(event);
if (!externalIds.length) return undefined;
const serviceId = normalizeServiceId(event.source);
const [row] = await db
.select({
userId: missionServiceSessions.userId,
missionInstanceId: missionServiceSessions.missionInstanceId,
missionId: missionServiceSessions.missionId,
stageId: missionServiceSessions.stageId,
metadata: missionServiceSessions.metadata,
})
.from(missionServiceSessions)
.where(and(
eq(missionServiceSessions.userId, userId),
eq(missionServiceSessions.serviceId, serviceId),
inArrayValues(missionServiceSessions.externalId, externalIds),
))
.limit(1);
return row;
}
export function normalizeServiceId(source: string): string {
if (source.includes("interview")) return "interview";
if (source.includes("roleplay")) return "roleplay";
if (source.includes("resume")) return "resume";
if (source.includes("qscore")) return "qscore";
return source;
const normalized = source.toLowerCase();
if (normalized.includes("interview")) return "interview";
if (normalized.includes("roleplay")) return "roleplay";
if (normalized.includes("resume")) return "resume";
if (normalized.includes("cover-letter") || normalized.includes("cover_letter")) return "cover_letter";
if (normalized.includes("course")) return "course";
if (normalized.includes("qscore") || normalized.includes("q-score")) return "qscore";
if (normalized.includes("assessment")) return "assessment";
if (normalized.includes("matchmaking")) return "matchmaking";
if (normalized.includes("social") || normalized.includes("brand")) return "brand";
return normalized;
}
export async function recordGrowEvent(input: unknown, overrides: { userId?: string; source?: string } = {}): Promise<GrowEventRow> {
const result = await recordGrowEventWithResult(input, overrides);
return result.event;
}
export async function recordGrowEventWithResult(input: unknown, overrides: { userId?: string; source?: string } = {}): Promise<{ event: GrowEventRow; inserted: boolean }> {
const normalized = normalizeGrowEvent(input, overrides);
const resolvedUserId = await resolveUserId(normalized);
const sessionLink = await resolveServiceSessionLink(normalized, resolvedUserId);
const correlated = correlateEventWithServiceSession(normalized, resolvedUserId, sessionLink);
if (resolvedUserId) await ensureUser(resolvedUserId);
const processingStatus = resolvedUserId ? "pending" : "unresolved";
if (normalized.dedupeKey) {
const [existing] = await db.select().from(growEvents).where(eq(growEvents.dedupeKey, normalized.dedupeKey)).limit(1);
if (existing) return existing;
}
const values = {
id: normalized.id,
id: correlated.id,
userId: resolvedUserId,
orgId: normalized.orgId,
source: normalized.source,
type: normalized.type,
category: normalized.category,
occurredAt: new Date(normalized.occurredAt),
mission: normalized.mission as Record<string, unknown> | undefined,
subject: normalized.subject as Record<string, unknown> | undefined,
correlation: normalized.correlation as Record<string, unknown> | undefined,
payload: normalized.payload,
raw: normalized.raw ?? asRecord(input),
dedupeKey: normalized.dedupeKey,
orgId: correlated.orgId ?? DEFAULT_QSCORE_ORG_ID,
source: correlated.source,
type: correlated.type,
category: correlated.category,
occurredAt: new Date(correlated.occurredAt),
mission: correlated.mission as Record<string, unknown> | undefined,
subject: correlated.subject as Record<string, unknown> | undefined,
correlation: correlated.correlation as Record<string, unknown> | undefined,
payload: correlated.payload,
raw: correlated.raw ?? asRecord(input),
dedupeKey: correlated.dedupeKey,
processingStatus,
} satisfies typeof growEvents.$inferInsert;
const [inserted] = await db
.insert(growEvents)
.values(values)
.onConflictDoUpdate({
target: growEvents.id,
set: {
userId: values.userId,
orgId: values.orgId,
source: values.source,
type: values.type,
category: values.category,
occurredAt: values.occurredAt,
mission: values.mission,
subject: values.subject,
correlation: values.correlation,
payload: values.payload,
raw: values.raw,
processingStatus: values.processingStatus,
},
})
.returning();
// Atomic insert-or-dedupe.
//
// onConflictDoNothing() with no target catches BOTH the PK (grow_events.id)
// and the dedupe_key unique index violations atomically. .returning() yields
// a row only on a fresh INSERT — on a conflict the row is suppressed. This is
// the deterministic insert-vs-existing discriminator with no clock heuristics,
// no xmax probe, and no raw SQL.
//
// Critically, DO NOTHING (not DO UPDATE) means an existing row is left
// *untouched*: a terminal (processed/failed) row is never resurrected back to
// *pending by a duplicate ingest. We then SELECT the pre-existing row AS-IS.
//
// NULL dedupeKey never collides (Postgres treats NULLs as distinct under a
// unique index), so events with no dedupe key always insert fresh.
const canonicalEvent = canonicalGrowEventEnvelope(correlated, resolvedUserId);
if (!inserted) throw new Error("failed to record grow event");
return inserted;
const insertedRows = await db.transaction(async (tx) => {
const rows = await tx
.insert(growEvents)
.values(values)
.onConflictDoNothing()
.returning();
const inserted = rows[0];
if (inserted?.userId) {
await tx.insert(eventOutbox).values({
topic: QSCORE_GROW_EVENT_TOPIC,
aggregateId: inserted.id,
destination: QSCORE_GROW_EVENT_DESTINATION,
payload: canonicalEvent,
headers: {
"content-type": "application/json",
"idempotency-key": inserted.id,
},
}).onConflictDoNothing();
}
return rows;
});
const inserted = insertedRows[0];
if (inserted) {
return { event: inserted, inserted: true };
}
// Conflict: the row already existed. onConflictDoNothing() (no target)
// suppresses on EITHER the PK (id) or the dedupe_key unique index. We must
// find the conflicting row by whichever constraint fired — try dedupeKey
// first (the common case), then fall back to id (PK collision). Both can
// point to the same row when normalize.ts sets dedupeKey = id.
let existing: GrowEventRow | undefined;
if (normalized.dedupeKey) {
[existing] = await db
.select()
.from(growEvents)
.where(eq(growEvents.dedupeKey, normalized.dedupeKey))
.limit(1);
}
if (!existing && normalized.id) {
[existing] = await db
.select()
.from(growEvents)
.where(eq(growEvents.id, normalized.id))
.limit(1);
}
if (!existing) {
// Should not happen: onConflictDoNothing suppressed the insert yet we
// cannot find the conflicting row on either constraint. Treat as a hard
// failure rather than silently dropping the event.
throw new Error("failed to record grow event: conflict with unresolvable row");
}
return { event: existing, inserted: false };
}
export function canonicalGrowEventEnvelope(normalized: GrowEventEnvelope, resolvedUserId?: string) {
// `normalizeGrowEvent` may translate legacy producer aliases for backend-only
// consumers (for example curator completion matching). QScore owns signal
// interpretation, so its generic outbox must retain the producer's event type
// and unmodified payload instead of publishing that backend alias.
const producer = asRecord(normalized.raw);
const producerType = getString(producer.type ?? producer.event_type ?? producer.action);
const producerCorrelation = asRecord(producer.correlation);
const enrichedCorrelation = asRecord(normalized.correlation);
const hasProducerTaskAlias = ["task_id", "taskId", "curatorTaskId", "curator_task_id"]
.some((key) => producerCorrelation[key] !== undefined);
const correlation = { ...producerCorrelation, ...enrichedCorrelation };
// Avoid inventing a snake-case alias when the producer already supplied its
// own task key. Backend-derived task_id remains when no producer task exists.
if (hasProducerTaskAlias && producerCorrelation.task_id === undefined) delete correlation.task_id;
return compactRecord({
id: normalized.id,
userId: resolvedUserId,
orgId: normalized.orgId ?? DEFAULT_QSCORE_ORG_ID,
source: normalized.source,
type: producerType ?? normalized.type,
category: normalized.category,
occurredAt: normalized.occurredAt,
mission: normalized.mission,
subject: normalized.subject,
correlation,
payload: normalized.payload,
raw: normalized.raw,
dedupeKey: normalized.dedupeKey,
});
}
function compactRecord(value: Record<string, unknown>): Record<string, unknown> {
return Object.fromEntries(Object.entries(value).filter(([, item]) => item !== undefined));
}
/**
* Routing gate: only newly inserted, user-resolved, pending events should be
* enqueued to the user-event actor. Replays / dedupe hits / unresolved events
* must not enqueue (they would saturate the actor queue on duplicate ingest).
*/
export function shouldRouteGrowEvent(event: Pick<GrowEventRow, "userId" | "processingStatus">, inserted: boolean): boolean {
if (!inserted) return false;
if (!event.userId) return false;
return event.processingStatus === "pending";
}
export async function markGrowEventProcessing(eventId: string) {

View File

@@ -5,7 +5,8 @@ import {
markGrowEventFailed,
markGrowEventProcessed,
markGrowEventProcessing,
recordGrowEvent,
recordGrowEventWithResult,
shouldRouteGrowEvent,
} from "./record-grow-event.js";
import { routeGrowEventToUserActor } from "./route-to-user-actor.js";
import { applyQscoreProjection } from "./projectors/qscore-projector.js";
@@ -30,8 +31,8 @@ type RedisClientLike = {
};
type ServiceRedisSpec = {
serviceId: "interview" | "roleplay" | "resume";
agentName: "interview-service" | "roleplay-service" | "resume-builder";
serviceId: "interview" | "roleplay" | "resume" | "course";
agentName: "interview-service" | "roleplay-service" | "resume-builder" | "course-service";
redisUrl: string;
};
@@ -71,6 +72,15 @@ function getString(value: unknown): string | undefined {
return typeof value === "string" && value.trim() ? value.trim() : undefined;
}
function getNumber(value: unknown): number | undefined {
if (typeof value === "number" && Number.isFinite(value)) return value;
if (typeof value === "string" && value.trim()) {
const parsed = Number(value);
return Number.isFinite(parsed) ? parsed : undefined;
}
return undefined;
}
function fieldsToEvent(fields: Record<string, string>, stream: string) {
const payload = fields.payload ? parseFieldValue(fields.payload) : parseFieldValue(fields.data ?? "{}");
const correlation = fields.correlation ? parseFieldValue(fields.correlation) : undefined;
@@ -98,6 +108,7 @@ function serviceSpecs(): ServiceRedisSpec[] {
{ serviceId: "interview", agentName: "interview-service", redisUrl: config.interviewRedisUrl },
{ serviceId: "roleplay", agentName: "roleplay-service", redisUrl: config.roleplayRedisUrl },
{ serviceId: "resume", agentName: "resume-builder", redisUrl: config.resumeRedisUrl },
{ serviceId: "course", agentName: "course-service", redisUrl: config.coursesRedisUrl },
];
return specs.filter((spec) => Boolean(spec.redisUrl));
}
@@ -126,6 +137,14 @@ function actionToEventType(serviceId: ServiceRedisSpec["serviceId"], action: str
return `roleplay.${effective.replaceAll("_", ".")}`;
}
if (serviceId === "course") {
if (effective === "swipe_recorded" || action === "record_swipe") return "course.progress_recorded";
if (effective === "profile_created" || effective === "profile_recalibrated") return "course.started";
if (effective === "course_state_loaded") return "course.page_state_loaded";
if (effective === "feed_loaded") return "course.feed_loaded";
return `course.${effective.replaceAll("_", ".")}`;
}
if (effective === "ai_analysis_complete" || action === "ai_analyze") return "resume.analysis.completed";
if (effective === "resume_loaded") return "resume.loaded";
if (effective === "resume_parsed") return "resume.parsed";
@@ -152,12 +171,39 @@ function extractResumeId(message: Record<string, unknown>, ctx?: LegacyTaskConte
);
}
function extractCourseIds(ctx?: LegacyTaskContext) {
const params = ctx?.params ?? {};
const courseId = getString(params.courseId ?? params.course_id ?? params.anchor_id ?? params.anchorId);
const lessonId = getString(params.lessonId ?? params.lesson_id ?? params.video_id ?? params.videoId);
return { courseId, lessonId };
}
function meaningfulCourseProgress(data: Record<string, unknown>, ctx?: LegacyTaskContext) {
if (data.error) return false;
const params = ctx?.params ?? {};
const watchS = getNumber(params.watch_s ?? params.watchS) ?? 0;
const watchPct = getNumber(data.watch_pct ?? data.watchPct) ?? 0;
const label = getString(data.label);
return watchS >= 3 || watchPct >= 0.5 || label === "pos" || label === "strong_pos";
}
async function recordAndRoute(input: unknown) {
const event = await recordGrowEvent(input);
await routeGrowEventToUserActor(event).catch((err) => {
log.warn({ err, eventId: event.id, userId: event.userId }, "failed to route grow event to user actor");
});
if (!event.userId || event.processingStatus === "processed") return event;
const { event, inserted } = await recordGrowEventWithResult(input);
// Route only newly inserted, user-resolved, pending events to the actor.
// Dedupe hits (inserted=false) are skipped so duplicate ingests cannot
// saturate the actor queue.
const routed = shouldRouteGrowEvent(event, inserted);
if (routed) {
await routeGrowEventToUserActor(event).catch((err) => {
log.warn({ err, eventId: event.id, userId: event.userId }, "failed to route grow event to user actor");
});
}
// In-process projection/onboarding only for freshly inserted events;
// dedupe hits have already been processed (or are being processed elsewhere).
if (!inserted) return event;
if (!event.userId) return event;
await markGrowEventProcessing(event.id);
try {
@@ -169,6 +215,10 @@ async function recordAndRoute(input: unknown) {
) {
throw new Error("curator_onboarding_loop_failed");
}
// Always mark "processed" after successful synchronous projections, regardless
// of route outcome. The actor will still run mission reducers on "processed"
// events (isProcessableStatus allows "processed") — projections are idempotent
// and the in-memory processedEventIds guard prevents double-processing.
await markGrowEventProcessed(event.id);
} catch (err) {
await markGrowEventFailed(event.id, err);
@@ -189,6 +239,12 @@ async function handleLegacyResponseMessage(spec: ServiceRedisSpec, channel: stri
const eventType = actionToEventType(spec.serviceId, ctx?.action, message);
const sessionId = extractSessionId(message, ctx);
const resumeId = extractResumeId(message, ctx);
const { courseId, lessonId } = extractCourseIds(ctx);
if (eventType === "course.progress_recorded" && !meaningfulCourseProgress(data, ctx)) return;
const curatorTaskId = getString(ctx?.params?.curatorTaskId ?? ctx?.params?.curator_task_id ?? ctx?.params?.taskId);
const missionInstanceId = getString(ctx?.params?.missionInstanceId ?? ctx?.params?.mission_instance_id);
const missionId = getString(ctx?.params?.missionId ?? ctx?.params?.mission_id);
const stageId = getString(ctx?.params?.stageId ?? ctx?.params?.stage_id);
await recordAndRoute({
id: randomUUID(),
@@ -197,18 +253,36 @@ async function handleLegacyResponseMessage(spec: ServiceRedisSpec, channel: stri
category: type === "agent_error" ? "system" : "service",
userId: ctx?.userId,
occurredAt: new Date().toISOString(),
mission: {
instanceId: missionInstanceId,
missionId,
stageId,
},
correlation: {
taskId,
taskId: curatorTaskId ?? taskId,
curatorTaskId,
serviceTaskId: taskId,
action: ctx?.action,
sessionId,
resumeId,
externalId: sessionId ?? resumeId,
courseId,
lessonId,
externalId: sessionId ?? resumeId ?? lessonId ?? courseId,
},
payload: {
action: ctx?.action,
params: ctx?.params,
message,
data,
taskId: curatorTaskId,
curatorTaskId,
serviceId: spec.agentName,
sessionId,
courseId,
lessonId,
missionInstanceId,
missionId,
stageId,
},
raw: { channel, message },
dedupeKey: `legacy-a2a:${spec.agentName}:${taskId}:${eventType}:${JSON.stringify(message).slice(0, 512)}`,
@@ -335,14 +409,33 @@ async function startCanonicalGrowEventStream(createClient: (opts: { url: string
}
export async function startGrowEventsRedisConsumer() {
const createClient = await loadRedisCreateClient();
await startCanonicalGrowEventStream(createClient);
const specs = serviceSpecs();
if (!specs.length) {
log.info("legacy service Redis observers disabled (INTERVIEW_REDIS_URL/ROLEPLAY_REDIS_URL/RESUME_REDIS_URL not set)");
// Both Redis ingestion paths are default-off. When neither flag is set, we
// return immediately WITHOUT calling loadRedisCreateClient() — so the
// `redis` module is never imported and no client is constructed. The REST
// production path (POST /events/ingest/service) handles all event ingestion
// without Redis.
if (!config.growEventsRedisEnabled && !config.legacyServiceRedisEnabled) {
log.info("grow events Redis consumers disabled (GROW_EVENTS_REDIS_ENABLED and LEGACY_SERVICE_REDIS_ENABLED both off)");
return;
}
await Promise.all(specs.map((spec) => startLegacyServiceObserver(spec, createClient)));
// At least one path is opted in — now it is safe to load the Redis module.
const createClient = await loadRedisCreateClient();
if (config.growEventsRedisEnabled) {
if (!config.growEventsRedisUrl) {
log.warn("GROW_EVENTS_REDIS_ENABLED=true but GROW_EVENTS_REDIS_URL not set — canonical consumer skipped");
} else {
await startCanonicalGrowEventStream(createClient);
}
}
if (config.legacyServiceRedisEnabled) {
const specs = serviceSpecs();
if (!specs.length) {
log.info("legacy service Redis observers enabled but no service URLs configured (INTERVIEW_REDIS_URL/ROLEPLAY_REDIS_URL/RESUME_REDIS_URL not set)");
} else {
await Promise.all(specs.map((spec) => startLegacyServiceObserver(spec, createClient)));
}
}
}

View File

@@ -3,13 +3,46 @@ import { config } from "../config.js";
import type { Registry } from "../actors/registry.js";
import type { GrowEventRow } from "../db/schema.js";
export type GrowEventActorRouteResult =
| { routed: true }
| { routed: false; reason: "unresolved_user" | "actor_route_timeout" };
export interface GrowEventActorRouteOptions {
timeoutMs?: number;
enqueue?: (event: { userId: string; eventId: string }) => Promise<unknown>;
}
const DEFAULT_ACTOR_ROUTE_TIMEOUT_MS = 2_000;
const ACTOR_ROUTE_TIMEOUT = Symbol("actor_route_timeout");
let _client: Client<Registry> | null = null;
function getClient(): Client<Registry> {
return (_client ??= createClient<Registry>(config.rivetClientEndpoint));
}
export async function routeGrowEventToUserActor(event: Pick<GrowEventRow, "id" | "userId">) {
if (!event.userId) return { routed: false, reason: "unresolved_user" } as const;
await getClient().userEventActor.getOrCreate([event.userId]).enqueueEvent({ userId: event.userId, eventId: event.id });
return { routed: true } as const;
export async function routeGrowEventToUserActor(
event: Pick<GrowEventRow, "id" | "userId">,
options: GrowEventActorRouteOptions = {},
): Promise<GrowEventActorRouteResult> {
if (!event.userId) return { routed: false, reason: "unresolved_user" };
const actorEvent = { userId: event.userId, eventId: event.id };
const enqueue = options.enqueue ?? ((input) =>
getClient().userEventActor.getOrCreate([input.userId]).enqueueEvent(input));
const timeoutMs = options.timeoutMs ?? DEFAULT_ACTOR_ROUTE_TIMEOUT_MS;
let timer: NodeJS.Timeout | undefined;
try {
const result = await Promise.race([
enqueue(actorEvent),
new Promise<typeof ACTOR_ROUTE_TIMEOUT>((resolve) => {
timer = setTimeout(() => resolve(ACTOR_ROUTE_TIMEOUT), timeoutMs);
}),
]);
return result === ACTOR_ROUTE_TIMEOUT
? { routed: false, reason: "actor_route_timeout" }
: { routed: true };
} finally {
if (timer) clearTimeout(timer);
}
}

View File

@@ -1,231 +0,0 @@
import { generateText } from "ai";
import { z } from "zod";
import { getConversationModel } from "../actors/conversation/agent.js";
import { config } from "../config.js";
import { log } from "../log.js";
import { isAllowedNotificationHref, MODULE_IDS, type HomeModuleId, type HomeNotification, type HomeUrgency } from "./types.js";
const notificationSchema = z.object({
moduleId: z.enum(MODULE_IDS as [HomeModuleId, ...HomeModuleId[]]),
title: z.string().min(4).max(72),
subtitle: z.string().min(4).max(110),
tag: z.string().min(2).max(14),
urgency: z.enum(["now", "today", "soon", "calm"]),
href: z.string().min(1),
source: z.enum(["resume", "interview", "roleplay", "qscore", "mission", "social", "pathways", "rewards", "system"]),
reason: z.string().max(160).optional(),
});
const rawNotificationSchema = notificationSchema.extend({
moduleId: z.enum(MODULE_IDS as [HomeModuleId, ...HomeModuleId[]]).optional(),
tag: z.string().min(2).max(14).optional(),
href: z.string().min(1).optional(),
source: z.enum(["resume", "interview", "roleplay", "qscore", "mission", "social", "pathways", "rewards", "system"]).optional(),
});
const feedSchema = z.object({
notifications: z.array(notificationSchema).min(6).max(24),
});
const rawFeedSchema = z.object({
notifications: z.array(rawNotificationSchema).min(1).max(24),
});
const HOME_FEED_AGENT_ENABLED = process.env.HOME_FEED_AGENT_ENABLED === "true";
const HOME_FEED_AGENT_TIMEOUT_MS = Number(process.env.HOME_FEED_AGENT_TIMEOUT_MS ?? 5000);
const HOME_FEED_AGENT_ATTEMPTS = Math.max(1, Number(process.env.HOME_FEED_AGENT_ATTEMPTS ?? 1));
export type AgentHomeNotification = z.infer<typeof notificationSchema>;
export class HomeFeedAgentError extends Error {
constructor(message: string, readonly cause?: unknown) {
super(message);
this.name = "HomeFeedAgentError";
}
}
const SYSTEM = `You are GrowQR's Home Feed Agent.
Your job is to rank and rewrite dashboard notifications from real platform context.
Keep them coherent, specific, and action-oriented. Do not invent unavailable products, scores, sessions, deadlines, companies, artifacts, or rewards.
Every notification must point to one of these real dashboard routes:
- /agents/resume for resume building, resume analysis, ATS, resume suggestions
- /agents/interview for mock interview setup, interview session, interview review
- /agents/roleplay for recruiter/manager/salary/stakeholder roleplay
- /missions for mission progress, approvals, artifacts, next stages
- /agents/social-branding for LinkedIn/social branding
- /agents/matchmaking for Scout/opportunity matching
- /rewards for locked/coming-soon rewards
- /suggestions for broad onboarding/profile suggestions
Every notification object must include:
- moduleId: one of ${MODULE_IDS.join(", ")}
- source: one of resume, interview, roleplay, mission, social, pathways, rewards, system
Use minimal iPhone-notification copy: title <= 72 chars, subtitle <= 110 chars, short tag <= 14 chars.
Use urgency truthfully: now = needs immediate user action, today = useful today, soon = next few days, calm = informational.`;
function sanitizeHref(href: string, moduleId: HomeModuleId) {
if (isAllowedNotificationHref(href)) return href;
if (href.startsWith("/missions")) return "/missions/active";
if (href.startsWith("/agents/social-branding")) return "/agents/social-branding";
if (href.startsWith("/agents/matchmaking")) return "/agents/matchmaking";
if (href.startsWith("/rewards")) return "/rewards";
return moduleId === "productivity" ? "/agents" : `/${moduleId}`;
}
function stableId(prefix: string, index: number) {
return `${prefix}-${index + 1}`;
}
function sourceFromHref(href: string) {
if (href.startsWith("/agents/resume")) return "resume";
if (href.startsWith("/agents/interview")) return "interview";
if (href.startsWith("/agents/roleplay")) return "roleplay";
if (href.startsWith("/missions")) return "mission";
if (href.startsWith("/agents/social-branding")) return "social";
if (href.startsWith("/agents/matchmaking")) return "pathways";
if (href.startsWith("/rewards")) return "rewards";
return "system";
}
function moduleFromSource(source: NonNullable<AgentHomeNotification["source"]>): HomeModuleId {
if (source === "mission") return "missions";
if (source === "social") return "social";
if (source === "pathways") return "pathways";
if (source === "rewards") return "rewards";
if (source === "resume" || source === "interview" || source === "roleplay") return "productivity";
return "suggestions";
}
function tagFromSource(source: NonNullable<AgentHomeNotification["source"]>) {
if (source === "mission") return "Mission";
if (source === "roleplay") return "Roleplay";
if (source === "interview") return "Interview";
if (source === "resume") return "Resume";
if (source === "social") return "Social";
if (source === "pathways") return "Pathways";
if (source === "rewards") return "Rewards";
return "Update";
}
function defaultHrefForSource(source: NonNullable<AgentHomeNotification["source"]>, moduleId: HomeModuleId) {
if (source === "resume") return "/agents/resume";
if (source === "interview") return "/agents/interview";
if (source === "roleplay") return "/agents/roleplay";
if (source === "mission") return "/missions";
if (source === "social") return "/agents/social-branding";
if (source === "pathways") return "/agents/matchmaking";
if (source === "rewards") return "/rewards";
return moduleId === "productivity" ? "/agents" : `/${moduleId}`;
}
function normalizeAgentNotification(
raw: z.infer<typeof rawNotificationSchema>,
seeds: Array<Omit<HomeNotification, "id" | "createdAt"> & { moduleId: HomeModuleId }>,
): AgentHomeNotification {
const seed = (raw.href ? seeds.find((item) => item.href === raw.href) : undefined)
?? seeds.find((item) => item.title.toLowerCase() === raw.title.toLowerCase());
const inferredSource = raw.source ?? seed?.source;
const normalizedSource = inferredSource === "qscore" ? "pathways" : inferredSource;
const moduleId = raw.moduleId ?? seed?.moduleId ?? (normalizedSource ? moduleFromSource(normalizedSource) : "suggestions");
const rawHref = raw.href ?? seed?.href ?? (normalizedSource ? defaultHrefForSource(normalizedSource, moduleId) : `/${moduleId}`);
const href = sanitizeHref(rawHref, moduleId);
const seedSource = seed?.source === "qscore" ? "pathways" : seed?.source;
const source = raw.source ?? seedSource ?? sourceFromHref(href);
return notificationSchema.parse({
...raw,
tag: raw.tag ?? seed?.tag ?? tagFromSource(source),
href,
source,
moduleId,
});
}
function notificationKey(notification: AgentHomeNotification) {
return [
notification.moduleId,
notification.href,
notification.title.trim().toLowerCase(),
].join(":");
}
function completeNotificationsWithSeeds(
notifications: AgentHomeNotification[],
seeds: Array<Omit<HomeNotification, "id" | "createdAt"> & { moduleId: HomeModuleId }>,
) {
const completed = [...notifications];
const seen = new Set(completed.map(notificationKey));
for (const seed of seeds) {
if (completed.length >= 6) break;
const candidateSeed = seed.source === "qscore" ? { ...seed, source: "pathways" as const, href: seed.href?.startsWith("/agents/qscore") ? "/agents/matchmaking" : seed.href } : seed;
const candidate = normalizeAgentNotification(candidateSeed, seeds);
const key = notificationKey(candidate);
if (seen.has(key)) continue;
completed.push(candidate);
seen.add(key);
}
return feedSchema.parse({ notifications: completed }).notifications;
}
function parseJsonObject(text: string) {
const cleaned = text.trim().replace(/^```(?:json)?/i, "").replace(/```$/i, "").trim();
try {
return JSON.parse(cleaned);
} catch {
const start = cleaned.indexOf("{");
const end = cleaned.lastIndexOf("}");
if (start === -1 || end === -1 || end <= start) throw new Error("home_feed_agent_invalid_json");
return JSON.parse(cleaned.slice(start, end + 1));
}
}
export async function refineHomeNotificationsWithAgent(input: {
userId: string;
context: Record<string, unknown>;
seeds: Array<Omit<HomeNotification, "id" | "createdAt"> & { moduleId: HomeModuleId }>;
}): Promise<Array<AgentHomeNotification & { id: string; createdAt: string }>> {
if (!HOME_FEED_AGENT_ENABLED) return [];
if (!config.llmApiKey && config.nodeEnv === "production") {
throw new HomeFeedAgentError("home_feed_agent_missing_llm_api_key");
}
if (!config.llmApiKey) return [];
let lastError: unknown;
for (let attempt = 1; attempt <= HOME_FEED_AGENT_ATTEMPTS; attempt += 1) {
try {
const result = await generateText({
model: getConversationModel(),
system: [
SYSTEM,
"Return JSON only. Shape: {\"notifications\": [...]}. Do not use markdown.",
"Use ASCII punctuation only.",
].join("\n"),
timeout: HOME_FEED_AGENT_TIMEOUT_MS,
prompt: JSON.stringify({
task: "Create coherent GrowQR home dashboard notifications from the provided service context and deterministic candidates.",
userId: input.userId,
serviceContext: input.context,
deterministicCandidates: input.seeds,
}),
});
const parsed = rawFeedSchema.parse(parseJsonObject(result.text));
const notifications = completeNotificationsWithSeeds(
parsed.notifications.map((item) => normalizeAgentNotification(item, input.seeds)),
input.seeds,
);
const now = new Date().toISOString();
return notifications.map((n, index) => ({
...n,
urgency: n.urgency as HomeUrgency,
id: stableId("agent-home", index),
createdAt: now,
}));
} catch (err) {
lastError = err;
log.debug({ err, userId: input.userId, attempt, attempts: HOME_FEED_AGENT_ATTEMPTS }, "home feed agent attempt failed");
}
}
throw new HomeFeedAgentError("home_feed_agent_generation_failed", lastError);
}

View File

@@ -5,20 +5,16 @@ import {
growActiveMissions,
growEvents,
growHomeNotifications,
growQscoreLatest,
growQscoreProjectionState,
missionArtifacts,
missionServiceSessions,
missionSuggestions,
qscoreSnapshots,
users,
type GrowHomeNotificationRow,
type NewGrowHomeNotification,
} from "../db/schema.js";
import { interviewService, resumeService, roleplayService } from "../services/product-service-clients.js";
import { buildServiceLink } from "../services/service-registry.js";
import { ensureOnboardingBaselineQscoreFromLedger } from "../events/onboarding-ledger.js";
import { HomeFeedAgentError, refineHomeNotificationsWithAgent } from "./home-feed-agent.js";
import { DEFAULT_QSCORE_ORG_ID, getQscoreFromService, getQscoreLatestSignalsFromService } from "../services/qscore-proxy.js";
import { listAvailableMissionDefinitions } from "../missions/registry.js";
import { listServiceCapabilities } from "../workflows/service-capabilities.js";
import { buildCuratorSprint } from "../v1/curator/curator-store.js";
@@ -53,7 +49,7 @@ type SeedNotification = Omit<HomeNotification, "id" | "createdAt"> & { moduleId:
type HomeContext = {
user: { id: string; email: string; displayName: string | null } | undefined;
qscore: { score: number; signalCount: number; summary: string | null; dimensions: Record<string, unknown> | null } | undefined;
qscore: { rqScore: number; signalCount: number; summary: string | null; dimensions: Record<string, unknown> | null } | undefined;
qscoreSignals: Array<{ signalId: string; score: number; source: string | null; updatedAt: Date }>;
activeMissions: Array<{ instanceId: string; missionId: string; title: string; status: string; progressPercent: number; currentStageId: string | null; updatedAt: Date }>;
missionSuggestions: Array<{ id: string; missionInstanceId: string; missionId: string; stageId: string | null; role: string; type: string; title: string; body: string; reason: string | null; priority: number; urgency: string; ctaLabel: string; ctaHref: string; updatedAt: Date }>;
@@ -221,7 +217,7 @@ function buildDayOneSeeds(): SeedNotification[] {
function buildDynamicSeeds(ctx: HomeContext): SeedNotification[] {
const seeds = buildDayOneSeeds().filter((seed) => seed.moduleId === "pathways" || seed.moduleId === "rewards");
const profile = profileFromPreferences(ctx.preferences);
const qscore = ctx.qscore?.score ?? Math.round(ctx.qscoreSignals.reduce((sum, s) => sum + s.score, 0) / Math.max(ctx.qscoreSignals.length, 1));
const qscore = ctx.qscore?.rqScore;
const ats = latestScore(ctx.qscoreSignals, "resume.ats_compatibility");
const interviewOverall = latestScore(ctx.qscoreSignals, "interview.overall_score");
const roleplayComms = latestScore(ctx.qscoreSignals, "roleplay.communication_effectiveness");
@@ -280,7 +276,7 @@ function buildDynamicSeeds(ctx: HomeContext): SeedNotification[] {
});
}
if (ctx.qscore || ctx.qscoreSignals.length) {
if (qscore !== undefined) {
pushSeed(seeds, {
moduleId: "pathways",
title: qscore >= 80 ? "Review your best job matches" : "Find better-fit job matches",
@@ -384,13 +380,18 @@ function buildDynamicSeeds(ctx: HomeContext): SeedNotification[] {
async function collectContext(userId: string, input: { userProfile?: Record<string, unknown>; preferences?: Record<string, unknown> } = {}): Promise<HomeContext> {
const [user] = await db.select({ id: users.id, email: users.email, displayName: users.displayName }).from(users).where(eq(users.id, userId)).limit(1);
const [qscore] = await db.select().from(growQscoreProjectionState).where(eq(growQscoreProjectionState.userId, userId)).limit(1);
const qscoreSignals = await db
.select({ signalId: growQscoreLatest.signalId, score: growQscoreLatest.score, source: growQscoreLatest.source, updatedAt: growQscoreLatest.updatedAt })
.from(growQscoreLatest)
.where(eq(growQscoreLatest.userId, userId))
.orderBy(desc(growQscoreLatest.updatedAt))
.limit(30);
const [qscoreResult, latestQscoreSignals] = await Promise.all([
getQscoreFromService(userId, DEFAULT_QSCORE_ORG_ID),
getQscoreLatestSignalsFromService(userId, DEFAULT_QSCORE_ORG_ID),
]);
const qscoreSignals = (latestQscoreSignals ?? []).map((s) => {
return {
signalId: s.signal_id,
score: s.score,
source: s.source,
updatedAt: new Date(s.last_seen_at || s.last_occurred_at || qscoreResult?.calculated_at || 0),
};
});
const activeMissions = await db
.select({ instanceId: growActiveMissions.instanceId, missionId: growActiveMissions.missionId, title: growActiveMissions.title, status: growActiveMissions.status, progressPercent: growActiveMissions.progressPercent, currentStageId: growActiveMissions.currentStageId, updatedAt: growActiveMissions.updatedAt })
.from(growActiveMissions)
@@ -447,12 +448,12 @@ async function collectContext(userId: string, input: { userProfile?: Record<stri
return {
user,
qscore: qscore
qscore: qscoreResult
? {
score: qscore.score,
signalCount: qscore.signalCount,
summary: qscore.summary,
dimensions: isRecord(qscore.dimensions) ? qscore.dimensions : null,
rqScore: qscoreResult.rq_score,
signalCount: qscoreSignals.length,
summary: null,
dimensions: isRecord(qscoreResult.quotients) ? qscoreResult.quotients : null,
}
: undefined,
qscoreSignals,
@@ -542,14 +543,6 @@ function ensureCoverage(seeds: SeedNotification[], fallback: SeedNotification[])
}
function moduleCount(moduleId: HomeModuleId, notifications: HomeNotification[], ctx: HomeContext, mode: HomeFeedResponse["mode"]) {
if (mode === "demo") {
if (moduleId === "missions") return "1 active";
if (moduleId === "productivity") return "4 updates";
if (moduleId === "social") return "3 ready";
if (moduleId === "pathways") return "Soon";
if (moduleId === "rewards") return "Demo";
return String(notifications.length);
}
if (moduleId === "missions") {
return mode === "day1" && notifications.length === 0 ? "0" : String(Math.min(notifications.length, MISSION_MODULE_LIMIT));
}
@@ -583,15 +576,7 @@ function buildModules(rows: GrowHomeNotificationRow[], ctx: HomeContext, mode: H
}
async function buildIdentity(ctx: HomeContext) {
const score = ctx.qscore?.score && ctx.qscore.score > 0 ? ctx.qscore.score : Math.round(ctx.qscoreSignals.reduce((sum, s) => sum + s.score, 0) / Math.max(ctx.qscoreSignals.length, 1)) || 47;
const [baselineSnapshot] = await db
.select({ score: qscoreSnapshots.score })
.from(qscoreSnapshots)
.where(and(eq(qscoreSnapshots.userId, ctx.user?.id ?? ""), eq(qscoreSnapshots.snapshotType, "baseline")))
.orderBy(desc(qscoreSnapshots.createdAt))
.limit(1);
const baseline = baselineSnapshot?.score ?? Math.max(35, score - 29);
const from = Math.max(baseline, Math.min(score, score - Math.min(17, Math.max(5, score - baseline))));
const score = ctx.qscore?.rqScore ?? null;
const name = ctx.user?.displayName || ctx.user?.email?.split("@")[0] || "GrowQR User";
const completedArtifacts = ctx.artifacts.filter((a) => a.status === "ready" || a.status === "approved").length;
@@ -599,9 +584,8 @@ async function buildIdentity(ctx: HomeContext) {
name,
caption: "Your living QR · scan to view profile",
qrSrc: undefined,
qx: { from, to: score, baseline },
rqScore: { from: null, to: score, baseline: null },
glance: [
{ value: Math.max(0, score - baseline), label: "Growth" },
{ value: Math.max(0, ctx.qscore?.signalCount ?? ctx.qscoreSignals.length), label: "Signals" },
{ value: completedArtifacts || ctx.events.length, label: "Done" },
],
@@ -609,17 +593,15 @@ async function buildIdentity(ctx: HomeContext) {
}
export async function getHomeFeed(userId: string, opts: { refresh?: boolean; userProfile?: Record<string, unknown>; preferences?: Record<string, unknown> } = {}): Promise<HomeFeedResponse> {
await ensureOnboardingBaselineQscoreFromLedger(userId);
await buildCuratorSprint(userId);
const ctx = await collectContext(userId, { userProfile: opts.userProfile, preferences: opts.preferences });
const persisted = await readPersistedNotifications(userId);
const newest = persisted[0]?.createdAt?.getTime() ?? 0;
const hasDemo = persisted.some((row) => row.generatedBy === "demo");
const hasLegacyMock = hasLegacyMockSeed(persisted);
const fresh = newest > Date.now() - FRESH_MS;
if (persisted.length && !hasLegacyMock && (hasDemo || (!opts.refresh && fresh))) {
const mode = hasDemo ? "demo" : hasAnyRealActivity(ctx) ? "dynamic" : "day1";
if (persisted.length && !hasLegacyMock && !opts.refresh && fresh) {
const mode = hasAnyRealActivity(ctx) ? "dynamic" : "day1";
return {
generatedAt: new Date().toISOString(),
mode,
@@ -630,46 +612,7 @@ export async function getHomeFeed(userId: string, opts: { refresh?: boolean; use
const dayOneSeeds = buildDayOneSeeds();
const deterministic = hasAnyRealActivity(ctx) ? buildDynamicSeeds(ctx) : dayOneSeeds;
let agentNotifications: Awaited<ReturnType<typeof refineHomeNotificationsWithAgent>> = [];
try {
agentNotifications = await refineHomeNotificationsWithAgent({
userId,
context: {
qscore: ctx.qscore,
qscoreSignals: ctx.qscoreSignals,
activeMissions: ctx.activeMissions,
sessions: ctx.sessions,
artifacts: ctx.artifacts,
recentEvents: ctx.events,
serviceStates: ctx.serviceStates,
missionSuggestions: ctx.missionSuggestions,
userProfile: ctx.userProfile,
preferences: ctx.preferences,
routeRules: SERVICE_HREFS,
},
seeds: deterministic,
});
} catch (err) {
if (!(err instanceof HomeFeedAgentError)) throw err;
log.info({ userId }, "home feed agent unavailable, using deterministic notifications");
}
const generatedBy = agentNotifications.length ? "agent" : "deterministic";
const generatedSeeds: SeedNotification[] = agentNotifications.length
? agentNotifications.map((n, index) => ({
moduleId: n.moduleId,
title: n.title,
subtitle: n.subtitle,
tag: n.tag,
urgency: n.urgency,
href: n.href,
source: n.source,
reason: n.reason,
priority: 100 - index,
}))
: deterministic;
await replaceGeneratedNotifications(userId, ensureCoverage(generatedSeeds, dayOneSeeds), generatedBy);
await replaceGeneratedNotifications(userId, ensureCoverage(deterministic, dayOneSeeds), "deterministic");
const rows = await readPersistedNotifications(userId);
const mode = hasAnyRealActivity(ctx) ? "dynamic" : "day1";

View File

@@ -1,165 +0,0 @@
import "dotenv/config";
import { and, eq, inArray } from "drizzle-orm";
import { db } from "../db/client.js";
import { growActiveMissions, growHomeNotifications, growQscoreLatest, growQscoreProjectionState, missionArtifacts, missionServiceSessions, users, type NewGrowHomeNotification } from "../db/schema.js";
import type { HomeModuleId, HomeSource, HomeUrgency } from "./types.js";
type DemoNotification = {
moduleId: HomeModuleId;
title: string;
subtitle: string;
tag: string;
urgency: HomeUrgency;
href: string;
source: HomeSource;
priority: number;
reason?: string;
};
const demoNotifications: DemoNotification[] = [
{ moduleId: "suggestions", title: "Approve resume v6", subtitle: "ATS 78 → 86 · two PM bullets are ready to ship.", tag: "Urgent", urgency: "now", href: "/agents/resume", source: "resume", priority: 120 },
{ moduleId: "suggestions", title: "Mock follow-up at 6:30 PM", subtitle: "Behavioral drill based on yesterday's review gaps.", tag: "Today", urgency: "today", href: "/agents/interview", source: "interview", priority: 116 },
{ moduleId: "suggestions", title: "Practice recruiter pushback", subtitle: "Roleplay can tighten your compensation and notice-period answer.", tag: "Soon", urgency: "soon", href: "/agents/roleplay", source: "roleplay", priority: 110 },
{ moduleId: "missions", title: "Interview-to-Offer — 72%", subtitle: "Resume fit done · mock review ready · final report locked.", tag: "Active", urgency: "today", href: "/missions", source: "mission", priority: 115 },
{ moduleId: "missions", title: "2 approvals pending", subtitle: "Resume v6 and Mock #4 feedback need your confirmation.", tag: "Action", urgency: "now", href: "/missions", source: "mission", priority: 113 },
{ moduleId: "missions", title: "Final readiness unlock", subtitle: "Complete one roleplay recovery drill to generate the final checklist.", tag: "Next", urgency: "soon", href: "/missions", source: "mission", priority: 106 },
{ moduleId: "social", title: "LinkedIn headline v3 ready", subtitle: "Clearer target: Product Intern · FinTech · Growth Systems.", tag: "Ready", urgency: "today", href: "/agents/social-branding", source: "social", priority: 104 },
{ moduleId: "social", title: "Featured section has 3 proof pins", subtitle: "Use resume scan, mock review, and Q Score delta as credibility blocks.", tag: "Proof", urgency: "soon", href: "/agents/social-branding", source: "social", priority: 100 },
{ moduleId: "social", title: "Banner options queued", subtitle: "Three calm orange/blue layouts are waiting for review.", tag: "Brand", urgency: "soon", href: "/agents/social-branding", source: "social", priority: 96 },
{ moduleId: "pathways", title: "Pathways stay locked for demo", subtitle: "Resume + interview data is enough; pathway service is not enabled yet.", tag: "Soon", urgency: "calm", href: "/agents/matchmaking", source: "pathways", priority: 70 },
{ moduleId: "pathways", title: "PM SaaS route predicted", subtitle: "Directional only until the pathways service is connected.", tag: "Preview", urgency: "calm", href: "/agents/matchmaking", source: "pathways", priority: 68 },
{ moduleId: "productivity", title: "Resume ATS 86", subtitle: "Keyword relevance +9 after JD tailoring. Open Resume Builder.", tag: "Resume", urgency: "today", href: "/agents/resume", source: "resume", priority: 118 },
{ moduleId: "productivity", title: "Interview review is ready", subtitle: "Overall 82 · storytelling and concise examples need one more drill.", tag: "Mock", urgency: "now", href: "/agents/interview", source: "interview", priority: 117 },
{ moduleId: "productivity", title: "Roleplay recruiter screen", subtitle: "Scenario ready · handle salary range and start-date objections.", tag: "Roleplay", urgency: "soon", href: "/agents/roleplay", source: "roleplay", priority: 105 },
{ moduleId: "productivity", title: "Q Score now 86", subtitle: "Signals: resume ATS, mock review, and roleplay completion.", tag: "Q Score", urgency: "today", href: "/agents/qscore", source: "qscore", priority: 102 },
{ moduleId: "rewards", title: "Mentor pass preview", subtitle: "Demo reward only · would unlock after 3 completed readiness actions.", tag: "Demo", urgency: "calm", href: "/rewards", source: "rewards", priority: 60 },
{ moduleId: "rewards", title: "Resume Pro credit queued", subtitle: "Tabled for v1; shown as a consistent notification tile.", tag: "Soon", urgency: "calm", href: "/rewards", source: "rewards", priority: 58 },
];
export async function seedDemoHome(userId: string) {
await db.insert(users).values({ id: userId, email: `${userId}@demo.local`, displayName: "Demo User" }).onConflictDoNothing();
await db
.delete(growHomeNotifications)
.where(and(eq(growHomeNotifications.userId, userId), inArray(growHomeNotifications.generatedBy, ["demo", "agent", "deterministic"])));
const expiresAt = new Date(Date.now() + 14 * 24 * 60 * 60 * 1000);
const rows: NewGrowHomeNotification[] = demoNotifications.map((n) => ({
userId,
moduleId: n.moduleId,
title: n.title,
subtitle: n.subtitle,
tag: n.tag,
urgency: n.urgency,
href: n.href,
source: n.source,
priority: n.priority,
generatedBy: "demo",
reason: n.reason ?? "Seeded for multi-day dashboard demo.",
status: "active",
expiresAt,
updatedAt: new Date(),
}));
await db.insert(growHomeNotifications).values(rows);
await db.insert(growQscoreProjectionState).values({
userId,
score: 86,
signalCount: 14,
dimensions: { strengths: ["resume.ats_compatibility", "interview.overall_score"], growth: ["interview.response_clarity", "roleplay.problem_resolution"] },
summary: "Demo readiness score from resume, interview, and roleplay signals.",
updatedAt: new Date(),
}).onConflictDoUpdate({
target: growQscoreProjectionState.userId,
set: {
score: 86,
signalCount: 14,
dimensions: { strengths: ["resume.ats_compatibility", "interview.overall_score"], growth: ["interview.response_clarity", "roleplay.problem_resolution"] },
summary: "Demo readiness score from resume, interview, and roleplay signals.",
updatedAt: new Date(),
},
});
const signalRows = [
["resume.uploaded", 100, "resume-service"],
["resume.ats_compatibility", 86, "resume-service"],
["resume.keyword_relevance", 84, "resume-service"],
["interview.completed", 100, "interview-service"],
["interview.overall_score", 82, "interview-service"],
["interview.response_clarity", 74, "interview-service"],
["roleplay.completed", 100, "roleplay-service"],
["roleplay.communication_effectiveness", 79, "roleplay-service"],
] as const;
for (const [signalId, score, source] of signalRows) {
await db.insert(growQscoreLatest).values({
userId,
signalId,
score,
present: true,
source,
raw: { demo: true },
occurredAt: new Date(),
updatedAt: new Date(),
}).onConflictDoUpdate({
target: [growQscoreLatest.userId, growQscoreLatest.signalId],
set: { score, present: true, source, raw: { demo: true }, occurredAt: new Date(), updatedAt: new Date() },
});
}
await db.insert(growActiveMissions).values({
instanceId: `demo-interview-to-offer-${userId}`,
userId,
missionId: "interview-to-offer",
workflowId: "interview-to-offer",
actorType: "interviewToOfferMissionActor",
title: "Interview-to-Offer Accelerator",
shortTitle: "Interview-to-Offer",
status: "active",
progressPercent: 72,
currentStageId: "mock-interview-review",
goal: "Land a PM internship offer",
mission: { demo: true, missionId: "interview-to-offer" },
snapshot: { demo: true, progressPercent: 72 },
updatedAt: new Date(),
}).onConflictDoUpdate({
target: growActiveMissions.instanceId,
set: { status: "active", progressPercent: 72, currentStageId: "mock-interview-review", snapshot: { demo: true, progressPercent: 72 }, updatedAt: new Date() },
});
await db.insert(missionServiceSessions).values([
{ userId, missionInstanceId: `demo-interview-to-offer-${userId}`, missionId: "interview-to-offer", stageId: "resume-fit-scan", serviceId: "resume-service", externalId: `demo-resume-${userId}`, status: "completed", metadata: { demo: true, ats: 86 }, updatedAt: new Date() },
{ userId, missionInstanceId: `demo-interview-to-offer-${userId}`, missionId: "interview-to-offer", stageId: "mock-interview", serviceId: "interview-service", externalId: `demo-interview-${userId}`, status: "review_ready", metadata: { demo: true, overall: 82 }, updatedAt: new Date() },
{ userId, missionInstanceId: `demo-interview-to-offer-${userId}`, missionId: "interview-to-offer", stageId: "roleplay-recovery", serviceId: "roleplay-service", externalId: `demo-roleplay-${userId}`, status: "configured", metadata: { demo: true }, updatedAt: new Date() },
]).onConflictDoNothing();
await db.insert(missionArtifacts).values([
{ userId, missionInstanceId: `demo-interview-to-offer-${userId}`, missionId: "interview-to-offer", stageId: "resume-fit-scan", serviceId: "resume-service", externalId: `demo-resume-${userId}`, type: "resume_fit_scan", title: "Resume Fit Scan", status: "ready", summary: "ATS 86 with stronger PM keywords.", metadata: { demo: true }, updatedAt: new Date() },
{ userId, missionInstanceId: `demo-interview-to-offer-${userId}`, missionId: "interview-to-offer", stageId: "mock-interview", serviceId: "interview-service", externalId: `demo-interview-${userId}`, type: "mock_interview_review", title: "Mock Interview Review", status: "ready", summary: "Overall 82; improve story brevity and tradeoff framing.", metadata: { demo: true }, updatedAt: new Date() },
]).onConflictDoNothing();
return { inserted: rows.length, userId };
}
const entry = process.argv[1] ?? "";
if (entry.endsWith("seed-demo-home.ts") || entry.endsWith("seed-demo-home.js")) {
const userId = process.env.DEMO_USER_ID;
if (!userId) {
console.error("Set DEMO_USER_ID to seed demo home notifications.");
process.exit(1);
}
seedDemoHome(userId)
.then((result) => {
console.log(JSON.stringify(result, null, 2));
process.exit(0);
})
.catch((err) => {
console.error(err);
process.exit(1);
});
}

View File

@@ -28,13 +28,13 @@ export type HomeIdentity = {
name: string;
caption: string;
qrSrc?: string;
qx: { from: number; to: number; baseline: number };
rqScore: { from: number | null; to: number | null; baseline: number | null };
glance: { value: number; label: string }[];
};
export type HomeFeedResponse = {
generatedAt: string;
mode: "day1" | "dynamic" | "demo";
mode: "day1" | "dynamic";
identity: HomeIdentity;
modules: HomeModule[];
};
@@ -68,9 +68,9 @@ export const ALLOWED_NOTIFICATION_HREFS = new Set([
"/rewards",
"/agents/resume",
"/agents/interview",
"/agents/interview/setup",
"/agents/interview",
"/agents/roleplay",
"/agents/roleplay",
"/agents/roleplay/setup",
"/agents/qscore",
]);
@@ -80,9 +80,9 @@ export const ALLOWED_NOTIFICATION_HREF_PREFIXES = [
"/missions/available",
"/agents/resume",
"/agents/interview",
"/agents/interview/setup",
"/agents/interview",
"/agents/roleplay",
"/agents/roleplay",
"/agents/roleplay/setup",
"/agents/qscore",
] as const;

View File

@@ -23,6 +23,7 @@ import { analyticsRoutes } from "./routes/analytics.js";
import { logRoutes } from "./routes/logs.js";
import { v1Routes } from "./v1/index.js";
import { startGrowEventsRedisConsumer } from "./events/redis-consumer.js";
import { startQscoreEventOutboxPublisher } from "./events/qscore-event-outbox.js";
import { startPassiveMissionReviewLoop } from "./missions/passive-runner.js";
import { db } from "./db/client.js";
import { ensureRuntimeSchema } from "./db/ensure-runtime-schema.js";
@@ -48,6 +49,7 @@ async function main() {
await reconcileOnBoot();
startGrowEventsRedisConsumer().catch((err) => log.error({ err }, "failed to start grow events redis consumer"));
startQscoreEventOutboxPublisher();
startPassiveMissionReviewLoop();
const app = new Hono();

View File

@@ -36,7 +36,7 @@ function roleOf(stage: MissionStage) {
const role = stage.role.toLowerCase();
if (role.includes("resume")) return "Resume";
if (role.includes("roleplay") || role.includes("communication")) return "Roleplay";
if (role.includes("q") || role.includes("score") || role.includes("readiness")) return "Q Score";
if (role.includes("q") || role.includes("score") || role.includes("readiness")) return "RQ Score";
if (role.includes("interview")) return "Interview";
return stage.role || "Mission";
}
@@ -93,17 +93,17 @@ function ctaFor(stage: MissionStage, snapshot: MissionSnapshot, context?: Missio
if (role === "Interview") {
params.set("mode", "mission");
params.set("prompt", `${stage.title} for ${profile.targetRole}`);
return { label: stage.status === "in_progress" ? "Continue mock" : "Start mock", href: `/agents/interview/setup?${params.toString()}` };
return { label: stage.status === "in_progress" ? "Continue mock" : "Start mock", href: `/agents/interview?${params.toString()}` };
}
if (role === "Roleplay") {
params.set("scenario", `${stage.title} for ${profile.targetRole}`);
return { label: stage.status === "in_progress" ? "Continue roleplay" : "Start roleplay", href: `/agents/roleplay/setup?${params.toString()}` };
return { label: stage.status === "in_progress" ? "Continue roleplay" : "Start roleplay", href: `/agents/roleplay?${params.toString()}` };
}
if (role === "Resume") {
params.set("focus", `${stage.title}: ${profile.targetRole}`);
return { label: "Open resume", href: `/agents/resume?${params.toString()}` };
}
if (role === "Q Score") return { label: "View Q Score", href: `/agents/qscore?${params.toString()}` };
if (role === "RQ Score") return { label: "View RQ Score", href: `/agents/qscore?${params.toString()}` };
return { label: "Continue", href: `${missionDetailHref(snapshot.instanceId)}?${params.toString()}` };
}
@@ -129,7 +129,7 @@ export function buildDeterministicMissionSuggestions(snapshot: MissionSnapshot,
? `Tailor your resume toward ${profile.targetRole}${profile.targetCompany !== "target company" ? ` at ${profile.targetCompany}` : ""}, emphasizing measurable data-science impact.`
: role === "Roleplay"
? `Roleplay concise stakeholder communication for ${profile.targetRole} interviews, especially ${profile.weakSpots.slice(0, 2).join(" and ") || "tradeoff framing"}.`
: role === "Q Score"
: role === "RQ Score"
? `Review readiness signals against your ${profile.targetRole} goal and decide the next highest-leverage action.`
: undefined;

View File

@@ -94,7 +94,7 @@ function buildTools() {
type: "function" as const,
function: {
name: "compute_qscore",
description: "Compute the user's readiness Q Score via qscore-service.",
description: "Compute the user's readiness RQ Score via qscore-service.",
parameters: {
type: "object",
properties: {},
@@ -233,11 +233,11 @@ export function chatRoutes() {
}
case "compute_qscore": {
toolResult = await runServiceAgentProbe(
{ id: "qscore", name: "Q Score Agent", role: "Q Score Agent", kind: "score", description: "Readiness scoring", service: "qscore-service" },
{ id: "qscore", name: "RQ Score Agent", role: "RQ Score Agent", kind: "score", description: "Readiness scoring", service: "qscore-service" },
{ userId, goal: "general assessment" },
);
if (toolResult.status === "ok") {
sessions.push({ moduleId: "qscore", moduleName: "Q Score Agent", status: "done", summary: toolResult.summary });
sessions.push({ moduleId: "qscore", moduleName: "RQ Score Agent", status: "done", summary: toolResult.summary });
}
break;
}

View File

@@ -1,7 +1,7 @@
import { Hono } from "hono";
import { z } from "zod";
import { createClient, type Client } from "rivetkit/client";
import { convertToModelMessages, generateText, stepCountIs, streamText, tool, type UIMessage } from "ai";
import { convertToModelMessages, createUIMessageStream, createUIMessageStreamResponse, generateText, stepCountIs, streamText, tool, type UIMessage } from "ai";
import { config } from "../config.js";
import { requireUser, type AuthContext } from "../auth/clerk.js";
import type { Registry } from "../actors/registry.js";
@@ -111,6 +111,7 @@ const createMissionConversationSchema = z.object({
const streamSchema = z.object({
messages: z.array(z.custom<UIMessage>()),
conversationId: z.string().optional(),
growContext: z.any().optional(),
});
const createMissionInstanceId = (missionId: string) =>
@@ -154,15 +155,25 @@ function textFromMessage(message: UIMessage | undefined) {
.trim();
}
function forcedToolForPrompt(text: string) {
function forcedToolForPrompt(text: string, hasGrowContext = false) {
const lower = text.toLowerCase();
const asksForTodayTasks =
/\b(show|list|give|get|what|which|today|daily|streak|task|tasks|mission|missions|report|progress)\b/.test(lower) &&
/\b(today|daily|streak|task|tasks|mission|missions|day|report|progress)\b/.test(lower);
// Keep high-value dashboard UI predictable: when the user explicitly asks to
// see/discover/find workflows, always produce workflow cards instead of a
// text-only answer.
if (hasGrowContext && /\b(report|result|outcome|kpi|summary)\b/.test(lower)) {
return "showCareerSprintReport" as const;
}
if (hasGrowContext && asksForTodayTasks) {
return "showCareerSprintTasks" as const;
}
// The legacy workflow catalog should only show when the user explicitly asks
// for broader programs/workflows, not when they ask for streak missions.
if (
/\b(discover|find|show|list|recommend|suggest|compare)\b/.test(lower) &&
/\b(workflow|workflows|mission|missions|plan|plans|program|programs)\b/.test(lower)
/\b(workflow|workflows|program|programs)\b/.test(lower)
) {
return "discoverWorkflows" as const;
}
@@ -170,6 +181,27 @@ function forcedToolForPrompt(text: string) {
return undefined;
}
function buildGrowContextPrompt(growContext: any) {
if (!growContext || typeof growContext !== "object") return "";
const activeDay = growContext.activeDay;
const tasks = Array.isArray(activeDay?.tasks) ? activeDay.tasks : [];
const taskLines = tasks
.map((task: any, index: number) => ` ${index + 1}. ${task.title ?? "Task"}${task.serviceName ?? task.serviceId ?? "service"} — status: ${task.status ?? "pending"} — route: ${task.route ?? "none"}`)
.join("\n");
return `\n\nCurrent CareerSprint context from the dashboard/streak UI:
- localDate: ${growContext.localDate ?? "unknown"}
- activeDayIndex: ${growContext.activeDayIndex ?? "unknown"}
- streak: ${growContext.streak ?? 0} day(s)
- progress: ${growContext.completedCount ?? 0}/${growContext.totalCount ?? 0} tasks (${growContext.overallProgressPercent ?? 0}%)
- reportEligible: ${growContext.reportEligible ? "yes" : "no"}
- activeDayTitle: ${activeDay?.title ?? "today"}
- activeDayCompleted: ${activeDay?.completedCount ?? 0}/${activeDay?.totalCount ?? tasks.length}
- activeDayTasks:
${taskLines || " none"}
When the user asks for missions, tasks, today, streak status, missed work, or report readiness, use this CareerSprint context instead of the old workflow catalog. If reportEligible is true and the user asks about a report, ask whether they want to open the report. If activeDayIndex is 8 or higher, explain recovery/missed tasks only when there are incomplete tasks.`;
}
async function buildMissionContextPrompt(userId: string, conversationId: string) {
const metadata = await getConversationMetadataPg(userId, conversationId);
const missionInstanceId = typeof metadata.missionInstanceId === "string" ? metadata.missionInstanceId : undefined;
@@ -203,11 +235,12 @@ Personality & Tone:
How to help:
- Just talk. Answer questions, give advice, ask follow-ups. Don't follow a rigid script.
- Only use tools when the user clearly asks for something specific (e.g., "show me my missions", "start a mission", "what's my Q Score", "save this").
- Only use tools when the user clearly asks for something specific (e.g., "show me my missions", "start a mission", "what's my RQ Score", "save this").
- Don't call tools for general chitchat, emotional support, simple explanations, or when a normal text answer would do.
- If you don't know something, say so. If a tool fails, just say it failed and move on.
- When the user asks about interview prep, roleplay, resume, or Q Score — just answer normally. Only route to a specialist tool if they explicitly say something like "connect me to the interview specialist" or "let me talk to the roleplay agent".
- When the user asks to see missions or plans, call discoverWorkflows or showMissions. When they ask about memory, use the memory tools. Otherwise, just chat.
- When the user asks about interview prep, roleplay, resume, or RQ Score — just answer normally. Only route to a specialist tool if they explicitly say something like "connect me to the interview specialist" or "let me talk to the roleplay agent".
- When the user asks to see todays missions, streak tasks, daily tasks, missed tasks, task progress, or report readiness, call showCareerSprintTasks if CareerSprint context is available.
- Use discoverWorkflows only for broad workflow/program discovery. When they ask about memory, use the memory tools. Otherwise, just chat.
- Only start a mission if the user clearly says yes to starting one. Don't push.
- When you write memory, a quick "Saved." is enough. No need to over-confirm.${missionContext}`
}
@@ -219,7 +252,7 @@ function safeAgentRegistry() {
return [
{ id: "interview", name: "Interview Agent", role: "Interview Coach", service: "interview-service", description: "Warm, direct interview practice coach for behavioral and technical interview prep.", toolNames: ["start_interview_session"] },
{ id: "roleplay", name: "Roleplay Agent", role: "Roleplay Coach", service: "roleplay-service", description: "High-empathy roleplay partner for negotiation, recruiter, manager, and stakeholder conversations.", toolNames: ["start_roleplay_session"] },
{ id: "qscore", name: "Q Score Agent", role: "Q Score Analyst", service: "qscore-service", description: "Analytical readiness scorer that turns profile signals into concrete score-improvement moves.", toolNames: ["compute_qscore"] },
{ id: "qscore", name: "RQ Score Agent", role: "RQ Score Analyst", service: "qscore-service", description: "Analytical readiness scorer that turns profile signals into concrete score-improvement moves.", toolNames: ["compute_qscore"] },
{ id: "resume", name: "Resume Agent", role: "Resume Agent", service: "resume-service", description: "ATS-aware resume specialist for sharper bullets, positioning, and role fit.", toolNames: ["analyze_resume", "tailor_resume"] },
];
}
@@ -243,10 +276,10 @@ When helping:
- Keep it practical. No fake cheerleading.
Return compact, dialogue-heavy markdown.`,
qscore: `You are the Q Score Agent. You're an analytical readiness scorer. Explain the numbers plainly.
qscore: `You are the RQ Score Agent. You're an analytical readiness scorer. Explain the numbers plainly.
When helping:
- Explain what the Q Score measures and why it matters.
- Explain what the RQ Score measures and why it matters.
- Identify the 2-3 dimensions with the biggest improvement potential.
- Give specific, time-bound actions for each dimension.
- Use numbers when you have them. Don't sugarcoat or reframe weaknesses as "growth edges".
@@ -264,8 +297,107 @@ When helping:
Return compact, bullet-heavy markdown.`,
};
function buildConversationTools(userId: string) {
function careerSprintTasksPayload(growContext: any, dayIndex?: number) {
const days = Array.isArray(growContext?.days) ? growContext.days : [];
const requestedDay = typeof dayIndex === "number" ? dayIndex : Number(growContext?.activeDayIndex ?? 1);
const clampedDay = Math.max(1, Math.min(7, requestedDay || 1));
const activeDay = days.find((day: any) => Number(day?.dayIndex) === clampedDay) ?? growContext?.activeDay ?? days[0] ?? null;
const tasks = Array.isArray(activeDay?.tasks) ? activeDay.tasks : [];
const missedTasks = days.flatMap((day: any) => (Array.isArray(day?.tasks) ? day.tasks : []).filter((task: any) => task?.status !== "completed"));
return {
kind: "career-sprint-tasks",
localDate: growContext?.localDate,
activeDayIndex: growContext?.activeDayIndex,
requestedDayIndex: clampedDay,
streak: growContext?.streak ?? 0,
completedCount: growContext?.completedCount ?? 0,
totalCount: growContext?.totalCount ?? 0,
overallProgressPercent: growContext?.overallProgressPercent ?? 0,
reportEligible: Boolean(growContext?.reportEligible),
isRecoveryDay: Number(growContext?.activeDayIndex ?? 1) > 7,
missedCount: missedTasks.length,
missedTasks,
day: activeDay,
tasks,
};
}
function careerSprintReportPayload(growContext: any) {
const days = Array.isArray(growContext?.days) ? growContext.days : [];
const completedCount = Number(growContext?.completedCount ?? 0);
const totalCount = Number(growContext?.totalCount ?? 0);
const reportEligible = Boolean(growContext?.reportEligible);
const missedTasks = days.flatMap((day: any) => (Array.isArray(day?.tasks) ? day.tasks : []).filter((task: any) => task?.status !== "completed"));
const params = new URLSearchParams();
if (typeof growContext?.demoIcpId === "string" && growContext.demoIcpId) params.set("icpId", growContext.demoIcpId);
if (Number.isFinite(Number(growContext?.activeDayIndex))) params.set("dayIndex", String(growContext.activeDayIndex));
const href = `/agents/careersprint-report${params.size ? `?${params.toString()}` : ""}`;
return {
kind: "career-sprint-report-status",
localDate: growContext?.localDate,
activeDayIndex: growContext?.activeDayIndex,
streak: growContext?.streak ?? 0,
completedCount,
totalCount,
overallProgressPercent: growContext?.overallProgressPercent ?? 0,
reportEligible,
href,
missedCount: missedTasks.length,
missedTasks: missedTasks.slice(0, 8),
};
}
function deterministicCareerSprintResponse(options: {
originalMessages: UIMessage[];
toolName: "showCareerSprintTasks" | "showCareerSprintReport";
input: Record<string, unknown>;
output: unknown;
onFinish: (responseMessage: UIMessage) => Promise<void>;
}) {
const messageId = `assistant-${Date.now()}-${Math.random().toString(16).slice(2)}`;
const toolCallId = `call-${Date.now()}-${Math.random().toString(16).slice(2)}`;
const stream = createUIMessageStream<UIMessage>({
originalMessages: options.originalMessages,
execute: ({ writer }) => {
writer.write({ type: "start", messageId } as any);
writer.write({ type: "start-step" } as any);
writer.write({
type: "tool-input-available",
toolCallId,
toolName: options.toolName,
input: options.input,
} as any);
writer.write({
type: "tool-output-available",
toolCallId,
output: options.output,
} as any);
writer.write({ type: "finish-step" } as any);
writer.write({ type: "finish", finishReason: "stop" } as any);
},
onFinish: async ({ responseMessage }) => {
await options.onFinish(responseMessage as UIMessage);
},
});
return createUIMessageStreamResponse({ stream });
}
function buildConversationTools(userId: string, growContext?: any) {
return {
showCareerSprintTasks: tool({
description: "Return the current CareerSprint streak tasks from the dashboard context. Use for today missions, daily tasks, streak status, missed tasks, completed tasks, Day 8/recovery, and report readiness.",
inputSchema: z.object({
dayIndex: z.number().optional().describe("Optional requested CareerSprint day number. Defaults to active day."),
}),
execute: async ({ dayIndex }) => careerSprintTasksPayload(growContext, dayIndex),
}),
showCareerSprintReport: tool({
description: "Return CareerSprint report readiness, KPI completion status, and the report link. Use when the user asks for report, result, outcome, KPI, or 7-day summary.",
inputSchema: z.object({}),
execute: async () => careerSprintReportPayload(growContext),
}),
discoverWorkflows: tool({
description: "Return sellable GrowQR missions as rich UI-ready discovery cards. Use whenever the user asks to see, find, discover, compare, choose, recommend, or understand missions/workflows.",
inputSchema: z.object({
@@ -364,33 +496,36 @@ function buildConversationTools(userId: string) {
inputSchema: z.object({
focus: z.string().optional(),
}),
execute: async ({ focus }) => ({
kind: "missions",
focus,
missions: [
{
id: "mission-share-goal",
title: "Tell Grow what you are aiming for",
description: "Share target role, company, deadline, and biggest blocker so the agent can set up your first mission.",
status: "suggested",
rewardLabel: "+10 readiness",
},
{
id: "mission-pick-workflow",
title: "Pick a mission to activate",
description: "Start Interview-to-Offer if you have an interview coming up, or Career Transition if you are exploring a pivot.",
status: "suggested",
rewardLabel: "Unlock plan",
},
{
id: "mission-save-memory",
title: "Save one durable career fact",
description: "Let Grow remember a role target, resume link, deadline, or interview date.",
status: "suggested",
rewardLabel: "Better recommendations",
},
],
}),
execute: async ({ focus }) => {
if (growContext && typeof growContext === "object") return careerSprintTasksPayload(growContext);
return {
kind: "missions",
focus,
missions: [
{
id: "mission-share-goal",
title: "Tell Grow what you are aiming for",
description: "Share target role, company, deadline, and biggest blocker so the agent can set up your first mission.",
status: "suggested",
rewardLabel: "+10 readiness",
},
{
id: "mission-pick-workflow",
title: "Pick a mission to activate",
description: "Start Interview-to-Offer if you have an interview coming up, or Career Transition if you are exploring a pivot.",
status: "suggested",
rewardLabel: "Unlock plan",
},
{
id: "mission-save-memory",
title: "Save one durable career fact",
description: "Let Grow remember a role target, resume link, deadline, or interview date.",
status: "suggested",
rewardLabel: "Better recommendations",
},
],
};
},
}),
startWorkflow: tool({
@@ -657,13 +792,37 @@ export function conversationRoutes() {
withActorRecovery("conversationActor", () => conversation.addMessage({ role: "user", content: latestUserText, sender: "User" })).catch((err) => console.warn("conversationActor user-message mirror failed", err));
}
const visualTool = forcedToolForPrompt(latestUserText);
const missionContext = await buildMissionContextPrompt(userId, conversationId);
const visualTool = forcedToolForPrompt(latestUserText, Boolean(body.growContext));
if (visualTool === "showCareerSprintTasks" || visualTool === "showCareerSprintReport") {
const output = visualTool === "showCareerSprintTasks"
? careerSprintTasksPayload(body.growContext)
: careerSprintReportPayload(body.growContext);
return deterministicCareerSprintResponse({
originalMessages: body.messages,
toolName: visualTool,
input: {},
output,
onFinish: async (responseMessage) => {
const assistantText = textFromMessage(responseMessage);
await addMessagePg(userId, {
id: responseMessage.id,
conversationId,
role: "assistant",
content: assistantText || JSON.stringify(responseMessage.parts ?? []),
sender: "GrowQR",
});
await touchConversationPg(userId, conversationId, latestUserText.slice(0, 64) || undefined);
await growPromise;
},
});
}
const missionContext = `${await buildMissionContextPrompt(userId, conversationId)}${buildGrowContextPrompt(body.growContext)}`;
const result = streamText({
model: getConversationModel(),
system: buildSystemPrompt(missionContext),
messages: await convertToModelMessages(body.messages),
tools: buildConversationTools(userId),
tools: buildConversationTools(userId, body.growContext),
toolChoice: visualTool ? { type: "tool", toolName: visualTool } : "auto",
stopWhen: stepCountIs(5),
});
@@ -686,8 +845,7 @@ export function conversationRoutes() {
sender: "GrowQR",
})).catch((err) => console.warn("conversationActor assistant-message mirror failed", err));
await touchConversationPg(userId, conversationId, latestUserText.slice(0, 64) || undefined);
const grow = await growPromise;
if (grow) await grow.touchConversation({ conversationId, title: latestUserText.slice(0, 64) || undefined }).catch((err) => console.warn("growActor touch mirror failed", err));
await growPromise;
},
});
});

View File

@@ -8,10 +8,12 @@ import {
markGrowEventFailed,
markGrowEventProcessed,
markGrowEventProcessing,
recordGrowEvent,
recordGrowEventWithResult,
shouldRouteGrowEvent,
} from "../events/record-grow-event.js";
import { routeGrowEventToUserActor } from "../events/route-to-user-actor.js";
import { applyQscoreProjection } from "../events/projectors/qscore-projector.js";
import { applyServiceSessionProjection } from "../events/projectors/service-session-projector.js";
import { ensureOnboardingSideEffectsForEvent } from "../events/onboarding-ledger.js";
function serviceAuthorized(auth: string | undefined) {
@@ -22,18 +24,27 @@ function serviceAuthorized(auth: string | undefined) {
}
async function ingest(body: unknown, userId?: string, source?: string) {
const event = await recordGrowEvent(body, { userId, source });
const route = await routeGrowEventToUserActor(event).catch((err) => ({
routed: false as const,
reason: err instanceof Error ? err.message : String(err),
}));
if (event.processingStatus === "processed") {
const { event, inserted } = await recordGrowEventWithResult(body, { userId, source });
// Route only newly inserted, user-resolved, pending events to the actor.
// Dedupe hits (inserted=false) never re-enqueue, preventing actor saturation.
const routed = shouldRouteGrowEvent(event, inserted);
const route = routed
? await routeGrowEventToUserActor(event).catch((err) => ({
routed: false as const,
reason: err instanceof Error ? err.message : String(err),
}))
: { routed: false as const, reason: "dedupe_or_unresolved" as const };
// Dedupe hit: event was already processed (or is unresolved). Return early
// with idempotent semantics — no in-process re-projection.
if (!inserted) {
return {
event,
processingStatus: "processed" as const,
processingStatus: event.processingStatus,
route,
qscore: { signals: [], score: undefined, idempotent: true },
onboarding: { qscoreBaselineSeeded: false, curatorOnboarding: { status: "already_processed" } },
onboarding: { curatorOnboarding: { status: "already_processed" } },
};
}
if (!event.userId) {
@@ -42,12 +53,13 @@ async function ingest(body: unknown, userId?: string, source?: string) {
processingStatus: event.processingStatus,
route,
qscore: { signals: [], score: undefined, skipped: "missing_user_id" },
onboarding: { qscoreBaselineSeeded: false, curatorOnboarding: { status: "skipped", reason: "missing_user_id" } },
onboarding: { curatorOnboarding: { status: "skipped", reason: "missing_user_id" } },
};
}
await markGrowEventProcessing(event.id);
try {
await applyServiceSessionProjection(event);
const qscore = await applyQscoreProjection(event);
const onboarding = await ensureOnboardingSideEffectsForEvent(event);
if (
@@ -56,6 +68,11 @@ async function ingest(body: unknown, userId?: string, source?: string) {
) {
throw new Error("curator_onboarding_loop_failed");
}
// Always mark "processed" after successful synchronous projections, regardless
// of route outcome. The actor will still run mission reducers on "processed"
// events (isProcessableStatus allows "processed") — projections are idempotent
// and the in-memory processedEventIds guard prevents double-processing.
// This avoids orphaning the event if the route call failed.
await markGrowEventProcessed(event.id);
return { event, processingStatus: "processed" as const, route, qscore, onboarding };
} catch (err) {

View File

@@ -1,9 +1,6 @@
import { Hono } from "hono";
import { config } from "../config.js";
import { requireUser, type AuthContext } from "../auth/clerk.js";
import { dismissHomeNotification, getHomeFeed, getHomeFeedDebugCounts } from "../home/home-feed.js";
import { HomeFeedAgentError } from "../home/home-feed-agent.js";
import { seedDemoHome } from "../home/seed-demo-home.js";
import { getRequestUserProfile } from "../services/user-context.js";
import { log } from "../log.js";
import {
@@ -16,10 +13,6 @@ import {
type SystemNotificationPreference,
} from "../notifications/system-notifications.js";
function canSeedDemo(userId: string) {
return config.nodeEnv !== "production" || config.adminUserIds.includes(userId);
}
export function homeRoutes() {
const app = new Hono<AuthContext>();
app.use("*", requireUser);
@@ -31,21 +24,7 @@ export function homeRoutes() {
log.warn({ err, userId }, "home feed continuing without user-service profile");
return {};
});
try {
return c.json(await getHomeFeed(userId, { refresh, ...profile }));
} catch (err) {
if (err instanceof HomeFeedAgentError) {
log.warn({ err, userId }, "home feed generation unavailable");
return c.json(
{
error: "home_feed_generation_unavailable",
message: "Home feed generation is temporarily unavailable. Please retry.",
},
503,
);
}
throw err;
}
return c.json(await getHomeFeed(userId, { refresh, ...profile }));
});
app.post("/notifications/:id/dismiss", async (c) => {
@@ -81,11 +60,5 @@ export function homeRoutes() {
app.get("/debug/counts", async (c) => c.json(await getHomeFeedDebugCounts(c.get("userId"))));
app.post("/demo/seed", async (c) => {
const userId = c.get("userId");
if (!canSeedDemo(userId)) return c.json({ error: "forbidden" }, 403);
return c.json(await seedDemoHome(userId));
});
return app;
}

View File

@@ -1,18 +1,20 @@
import { Hono } from "hono";
import { HTTPException } from "hono/http-exception";
import { createHash } from "node:crypto";
import { desc, eq } from "drizzle-orm";
import { and, desc, eq } from "drizzle-orm";
import { requireUser, type AuthContext } from "../auth/clerk.js";
import { config } from "../config.js";
import { listServiceCapabilities } from "../workflows/service-capabilities.js";
import { interviewService, ProductServiceError, resumeService, roleplayService, type JsonObject } from "../services/product-service-clients.js";
import { interviewService, ProductServiceError, resumeService, roleplayService, courseService, type JsonObject } from "../services/product-service-clients.js";
import { signWsTicket } from "../services/ws-tickets.js";
import { db } from "../db/client.js";
import { events, growQscoreLatest, growQscoreProjectionState } from "../db/schema.js";
import { events, growEvents, missionServiceSessions } from "../db/schema.js";
import { recordGrowEvent } from "../events/record-grow-event.js";
import { applyServiceSessionProjection } from "../events/projectors/service-session-projector.js";
import { routeGrowEventToUserActor } from "../events/route-to-user-actor.js";
import { ensureOnboardingBaselineQscoreFromLedger } from "../events/onboarding-ledger.js";
import { getRequestUserPreferences, getRequestUserProfile } from "../services/user-context.js";
import { log } from "../log.js";
import { DEFAULT_QSCORE_ORG_ID, getQscoreFromService, getQscoreLatestSignalsFromService } from "../services/qscore-proxy.js";
const LANDING_AGENTS = [
{ id: "resume", title: "Resume", agent: "Resume Strategist", description: "Resume proof, versions, parsing, analysis, and mission artifacts.", route: "/agents/resume" },
@@ -20,19 +22,6 @@ const LANDING_AGENTS = [
{ id: "roleplay", title: "Roleplay", agent: "Roleplay Coach", description: "Negotiation, promotion, transition, and communication drills.", route: "/agents/roleplay" },
] as const;
const DEFAULT_QSCORE = {
q_score: 76,
profession: "Student",
quotients: {
SQ: 76,
XQ: 74,
CQm: 78,
VQ: 72,
DQ: 75,
GQ: 80,
},
};
function getString(value: unknown): string | undefined {
return typeof value === "string" && value.trim() ? value.trim() : undefined;
}
@@ -75,6 +64,89 @@ function curatorTaskIdFromRequest(req: Request, body?: JsonObject) {
return getString(url.searchParams.get("curatorTaskId"));
}
function orchestrationFromMission(mission?: Record<string, unknown>, taskId?: string) {
return {
...(taskId ? { taskId, curatorTaskId: taskId } : {}),
...(getString(mission?.missionId ?? mission?.mission_id) ? { missionId: getString(mission?.missionId ?? mission?.mission_id) } : {}),
...(getString(mission?.instanceId ?? mission?.instance_id ?? mission?.missionInstanceId ?? mission?.mission_instance_id)
? { missionInstanceId: getString(mission?.instanceId ?? mission?.instance_id ?? mission?.missionInstanceId ?? mission?.mission_instance_id) }
: {}),
...(getString(mission?.stageId ?? mission?.stage_id) ? { stageId: getString(mission?.stageId ?? mission?.stage_id) } : {}),
...(getString(mission?.source) ? { source: getString(mission?.source) } : {}),
};
}
type SessionMissionContext = {
mission?: Record<string, unknown>;
taskId?: string;
};
async function assertSessionOwnership(serviceId: "interview" | "roleplay", sessionId: string, userId: string): Promise<void> {
const [row] = await db
.select({ userId: missionServiceSessions.userId })
.from(missionServiceSessions)
.where(and(eq(missionServiceSessions.serviceId, serviceId), eq(missionServiceSessions.externalId, sessionId)))
.limit(1);
if (!row) throw new HTTPException(404, { message: "session not found" });
if (row.userId !== userId) throw new HTTPException(403, { message: "session ownership mismatch" });
}
async function sessionMissionContext(serviceId: "interview" | "roleplay", sessionId: string): Promise<SessionMissionContext> {
const [row] = await db
.select({
missionInstanceId: missionServiceSessions.missionInstanceId,
missionId: missionServiceSessions.missionId,
stageId: missionServiceSessions.stageId,
metadata: missionServiceSessions.metadata,
})
.from(missionServiceSessions)
.where(and(eq(missionServiceSessions.serviceId, serviceId), eq(missionServiceSessions.externalId, sessionId)))
.limit(1);
const metadata = row && isRecord(row.metadata) ? row.metadata : {};
const fromSession: SessionMissionContext = {
mission: row && (row.missionInstanceId || row.missionId || row.stageId)
? {
instanceId: row.missionInstanceId ?? undefined,
missionId: row.missionId ?? undefined,
stageId: row.stageId ?? undefined,
source: "curator-v1",
}
: undefined,
taskId: getString(metadata.taskId ?? metadata.curatorTaskId ?? metadata.curator_task_id),
};
if (fromSession.taskId || fromSession.mission) return fromSession;
const eventRows = await db
.select({
mission: growEvents.mission,
correlation: growEvents.correlation,
payload: growEvents.payload,
})
.from(growEvents)
.where(and(eq(growEvents.source, `${serviceId}-service`), eq(growEvents.type, serviceId === "roleplay" ? "roleplay.scenario.configured" : "interview.session.configured")))
.orderBy(desc(growEvents.occurredAt))
.limit(50);
const eventRow = eventRows.find((item) => {
const correlation = isRecord(item.correlation) ? item.correlation : {};
return getString(correlation.sessionId ?? correlation.session_id ?? correlation.externalId) === sessionId;
});
if (!eventRow) return fromSession;
const correlation = isRecord(eventRow.correlation) ? eventRow.correlation : {};
const payload = isRecord(eventRow.payload) ? eventRow.payload : {};
const request = isRecord(payload.request) ? payload.request : {};
return {
mission: isRecord(eventRow.mission) ? eventRow.mission : fromSession.mission,
taskId: getString(
correlation.taskId ??
correlation.curatorTaskId ??
correlation.curator_task_id ??
request.taskId ??
request.curatorTaskId ??
request.curator_task_id,
),
};
}
function stripMissionFromBody(body: JsonObject): JsonObject {
if (!("mission" in body)) return body;
const { mission: _mission, ...rest } = body;
@@ -85,6 +157,7 @@ function canonicalSubjectServiceId(source: string) {
if (source.includes("interview")) return "interview";
if (source.includes("roleplay")) return "roleplay";
if (source.includes("resume")) return "resume";
if (source.includes("social")) return "social";
if (source.includes("qscore")) return "qscore";
if (source.includes("matchmaking")) return "matchmaking";
if (source.includes("analytics")) return "analytics";
@@ -152,20 +225,21 @@ function gatewayDedupeKey(input: {
const subject = input.subject ?? {};
const externalId = externalIdFromPayload(input.payload, input.correlation);
const anchor =
dedupeSegment(input.correlation?.sessionId) ??
dedupeSegment(result.session_id ?? result.sessionId) ??
dedupeSegment(request.request_id ?? request.requestId) ??
dedupeSegment(input.correlation?.requestId) ??
dedupeSegment(input.correlation?.taskId) ??
dedupeSegment(input.correlation?.curatorTaskId) ??
dedupeSegment(input.correlation?.sessionId) ??
dedupeSegment(input.correlation?.resumeId) ??
dedupeSegment(input.correlation?.externalId) ??
dedupeSegment(subject.externalId) ??
dedupeSegment(externalId) ??
dedupeSegment(result.task_id ?? result.taskId ?? result.session_id ?? result.sessionId ?? result.id);
dedupeSegment(result.task_id ?? result.taskId ?? result.id);
return `${input.source}:${input.type}:${input.userId}:${anchor ?? stableDedupeFingerprint(input)}`;
}
async function recordGatewayEvent(input: {
export type GatewayEventInput = {
userId: string;
source: string;
type: string;
@@ -174,15 +248,34 @@ async function recordGatewayEvent(input: {
mission?: Record<string, unknown>;
subject?: Record<string, unknown>;
dedupeKey?: string;
}) {
await db.insert(events).values({
userId: input.userId,
actorId: "service-gateway",
type: input.type,
payload: input.payload,
}).catch((err) => log.warn({ err, type: input.type }, "failed to record legacy service event"));
};
const event = await recordGrowEvent({
export type GatewayEventDependencies = {
recordLegacyEvent: (input: GatewayEventInput) => Promise<void>;
recordGrowEvent: typeof recordGrowEvent;
applyServiceSessionProjection: typeof applyServiceSessionProjection;
routeGrowEventToUserActor: typeof routeGrowEventToUserActor;
};
export async function recordGatewayEvent(
input: GatewayEventInput,
dependencies: GatewayEventDependencies = {
recordLegacyEvent: async (gatewayInput) => {
await db.insert(events).values({
userId: gatewayInput.userId,
actorId: "service-gateway",
type: gatewayInput.type,
payload: gatewayInput.payload,
}).catch((err) => log.warn({ err, type: gatewayInput.type }, "failed to record legacy service event"));
},
recordGrowEvent,
applyServiceSessionProjection,
routeGrowEventToUserActor,
},
) {
await dependencies.recordLegacyEvent(input);
const event = await dependencies.recordGrowEvent({
source: input.source,
type: input.type,
category: "service",
@@ -197,7 +290,8 @@ async function recordGatewayEvent(input: {
correlation: input.correlation,
payload: input.payload,
});
await routeGrowEventToUserActor(event);
await dependencies.applyServiceSessionProjection(event);
await dependencies.routeGrowEventToUserActor(event);
return event;
}
@@ -218,6 +312,23 @@ function resumeEventTypeForRest(method: string, rest: string, ok: boolean) {
return "resume.loaded";
}
function socialEventTypeForRest(method: string, rest: string, ok: boolean) {
if (!ok) return "social.request_failed";
const m = method.toUpperCase();
const path = rest.replace(/^\/+/, "").split("?")[0] ?? rest;
if (m === "POST" && /^accounts\/connect/.test(path)) return "social.account.connected";
if (m === "POST" && /^accounts\/[^/]+\/profile\/polish/.test(path)) return "social.profile.polished";
if (m === "POST" && /^accounts\/[^/]+\/profile\/refresh/.test(path)) return "social.profile.refreshed";
if (m === "POST" && /^accounts\/[^/]+\/profile\/apply/.test(path)) return "social.profile.updated";
if (m === "POST" && /^accounts\/[^/]+\/profile\/refine-experience/.test(path)) return "social.experience.refined";
if (m === "POST" && /^profiles\/fetch-by-url/.test(path)) return "social.profile.fetched";
if (m === "POST" && /^accounts\/[^/]+\/(content|posts)/.test(path)) return "social.content.generated";
if (m !== "GET" && m !== "HEAD" && /^accounts\/[^/]+\/schedule/.test(path)) return "social.post.scheduled";
if (m !== "GET" && m !== "HEAD" && /^accounts\/[^/]+\/publish/.test(path)) return "social.post.published";
if (m === "POST" || m === "PUT" || m === "PATCH") return "social.updated";
return "social.updated";
}
function agentDataAction(result: Record<string, unknown>) {
const messages = Array.isArray(result.messages) ? result.messages : [];
for (const item of messages) {
@@ -270,18 +381,6 @@ function serviceErrorResponse(err: unknown): never {
throw err;
}
function matchmakingEventType(action: string, response: Record<string, unknown>) {
if (response.status === "error") return "matchmaking.request.failed";
if (action === "run_search" || action === "generate_matches") return "matchmaking.matches.generated";
if (action === "get_scout_feed" || action === "get_feed" || action === "session_start") return "matchmaking.feed.viewed";
if (action === "get_opportunity_detail" || action === "mark_viewed") return "matchmaking.match.viewed";
if (action === "mark_saved" || action === "record_feedback") return "matchmaking.match.saved";
if (action === "dismiss_opportunity") return "matchmaking.match.dismissed";
if (action === "tailor_resume") return "matchmaking.application.started";
if (action === "submit_application") return "matchmaking.application.completed";
return "matchmaking.workflow.completed";
}
async function callMatchmakingA2a(body: Record<string, unknown>, userId: string) {
const target = new URL("/a2a/tasks", config.matchmakingServiceUrl.replace(/\/$/, ""));
const action = getString(body.action) ?? (body.session_start ? "session_start" : "");
@@ -314,6 +413,17 @@ function parseJsonBody(body: ArrayBuffer | undefined, headers: Headers): JsonObj
}
}
function decodedProxyHeaders(headers: Headers) {
const forwarded = new Headers(headers);
// Node fetch transparently decodes gzip/br bodies but retains the upstream
// encoding and byte-length headers. Forwarding those stale headers makes the
// next proxy/browser decode an already-decoded body and fail.
forwarded.delete("content-encoding");
forwarded.delete("content-length");
forwarded.delete("transfer-encoding");
return forwarded;
}
async function proxyResumeRequest(req: Request, rest: string, userId: string) {
const incoming = new URL(req.url);
const normalizedRest = rest
@@ -337,6 +447,7 @@ async function proxyResumeRequest(req: Request, rest: string, userId: string) {
headers.delete("cookie");
headers.set("authorization", `Bearer ${config.a2aAllowedKey}`);
headers.set("x-growqr-user", userId);
headers.set("accept-encoding", "identity");
const method = req.method.toUpperCase();
const body = ["GET", "HEAD"].includes(method) ? undefined : await req.arrayBuffer();
@@ -354,7 +465,11 @@ async function proxyResumeRequest(req: Request, rest: string, userId: string) {
});
if (method === "GET" || method === "HEAD") {
return new Response(res.body, { status: res.status, statusText: res.statusText, headers: res.headers });
return new Response(res.body, {
status: res.status,
statusText: res.statusText,
headers: decodedProxyHeaders(res.headers),
});
}
const responseBuffer = await res.arrayBuffer();
@@ -376,10 +491,10 @@ async function proxyResumeRequest(req: Request, rest: string, userId: string) {
mission,
}).catch((err) => log.warn({ err, path: normalizedRest }, "failed to record resume gateway event"));
return new Response(responseBuffer, {
return new Response(res.status === 204 || res.status === 205 || res.status === 304 ? null : responseBuffer, {
status: res.status,
statusText: res.statusText,
headers: res.headers,
headers: decodedProxyHeaders(res.headers),
});
}
@@ -437,6 +552,9 @@ async function resolveGrowUserContext(req: Request, userId: string): Promise<Rec
if (resumeState.current_company && !userContext.current_company) userContext.current_company = resumeState.current_company;
if (Array.isArray(resumeState.experience_history)) userContext.experience_history = resumeState.experience_history;
if (Array.isArray(resumeState.education)) userContext.education = resumeState.education;
userContext.resume_available = Number(resumeState.resume_count ?? 0) > 0;
const resumeSummary = getString(resumeState.resume_summary ?? resumeState.resumeSummary);
if (resumeSummary) userContext.resume_summary = resumeSummary;
}
if (socialState) {
@@ -452,7 +570,9 @@ async function resolveGrowUserContext(req: Request, userId: string): Promise<Rec
function hasResumeContext(userContext: Record<string, unknown>): boolean {
return Boolean(
(Array.isArray(userContext.experience_history) && userContext.experience_history.length > 0) ||
userContext.resume_available ||
getString(userContext.resume_summary) ||
(Array.isArray(userContext.experience_history) && userContext.experience_history.length > 0) ||
(Array.isArray(userContext.skills) && userContext.skills.length > 0) ||
getString(userContext.current_role)
);
@@ -474,6 +594,9 @@ function composeCandidateProfile(userContext: Record<string, unknown>): string {
if (currentRole) lines.push(`Current role: ${currentRole}`);
if (headline && headline.toLowerCase() !== currentRole?.toLowerCase()) lines.push(`LinkedIn headline: ${headline}`);
const resumeSummary = getString(userContext.resume_summary);
if (resumeSummary) lines.push(`Primary resume summary: ${resumeSummary.length > 600 ? `${resumeSummary.slice(0, 600).trimEnd()}` : resumeSummary}`);
const skills = stringArray(userContext.skills);
if (skills.length) lines.push(`Key skills: ${skills.slice(0, 12).join(", ")}`);
@@ -509,7 +632,7 @@ function composeCandidateProfile(userContext: Record<string, unknown>): string {
if (education.length) lines.push(`Education: ${education.slice(0, 3).join("; ")}`);
const summary = getString(userContext.linkedin_summary);
if (summary) lines.push(`Profile summary: ${summary.length > 300 ? `${summary.slice(0, 300).trimEnd()}` : summary}`);
if (summary && summary !== resumeSummary) lines.push(`LinkedIn summary: ${summary.length > 300 ? `${summary.slice(0, 300).trimEnd()}` : summary}`);
const text = lines.join("\n");
return text.length > 1200 ? `${text.slice(0, 1200).trimEnd()}` : text;
@@ -531,7 +654,8 @@ async function buildPersonalizedConfigurePayload(req: Request, body: JsonObject,
difficulty: getString(incomingContext.difficulty) ?? "medium",
};
if (incomingContext.personalize) {
const curatorHandoff = getString(incomingContext.source) === "curator-v1" || Boolean(getString(incomingContext.curatorTaskId));
if (incomingContext.personalize || curatorHandoff) {
const candidateProfile = composeCandidateProfile(userContext);
if (candidateProfile) context.candidate_profile = candidateProfile;
}
@@ -544,9 +668,17 @@ async function buildPersonalizedConfigurePayload(req: Request, body: JsonObject,
};
}
async function buildPersonalizedRoleplayConfigurePayload(req: Request, body: JsonObject, userId: string): Promise<JsonObject> {
const { mission: _mission, ...rest } = body;
const userContext = await resolveGrowUserContext(req, userId).catch((err) => {
export async function buildPersonalizedRoleplayConfigurePayload(
req: Request,
body: JsonObject,
userId: string,
dependencies: {
resolveUserContext?: typeof resolveGrowUserContext;
loadQscore?: typeof getQscoreFromService;
} = {},
): Promise<JsonObject> {
const { mission, ...rest } = body;
const userContext = await (dependencies.resolveUserContext ?? resolveGrowUserContext)(req, userId).catch((err) => {
log.warn({ err, userId }, "failed to resolve Grow user context for roleplay configure");
return {} as Record<string, unknown>;
});
@@ -568,12 +700,20 @@ async function buildPersonalizedRoleplayConfigurePayload(req: Request, body: Jso
metadata.context_notes = getString(incomingMetadata.context_notes) ?? candidateProfile;
}
const orgId = String(rest.org_id ?? "growqr");
const suppliedQscore = isRecord(rest.qscore)
? rest.qscore
: isRecord(userContext.qscore)
? userContext.qscore
: undefined;
const qscore = suppliedQscore ?? await (dependencies.loadQscore ?? getQscoreFromService)(userId, orgId);
return {
...rest,
user_id: String(rest.user_id ?? userId),
org_id: String(rest.org_id ?? "growqr"),
metadata,
qscore: (rest.qscore as JsonObject | undefined) ?? (isRecord(userContext.qscore) ? userContext.qscore : DEFAULT_QSCORE),
org_id: orgId,
...(qscore ? { qscore } : {}),
...(isRecord(mission) ? { mission } : {}),
user_context: userContext,
};
}
@@ -581,8 +721,13 @@ async function buildPersonalizedRoleplayConfigurePayload(req: Request, body: Jso
async function proxySocialRequest(req: Request, rest: string, userId: string) {
const incoming = new URL(req.url);
const normalizedRest = rest.replace(/^\/+/, "");
const forwardedQuery = new URLSearchParams(incoming.searchParams);
forwardedQuery.delete("missionInstanceId");
forwardedQuery.delete("missionId");
forwardedQuery.delete("stageId");
forwardedQuery.delete("source");
const target = new URL(
`/api/v1/${normalizedRest}${incoming.search}`,
`/${normalizedRest}${forwardedQuery.toString() ? `?${forwardedQuery.toString()}` : ""}`,
config.socialBrandingServiceUrl.replace(/\/$/, ""),
);
@@ -593,18 +738,60 @@ async function proxySocialRequest(req: Request, rest: string, userId: string) {
const method = req.method.toUpperCase();
const body = ["GET", "HEAD"].includes(method) ? undefined : await req.arrayBuffer();
const res = await fetch(target, { method, headers, body });
const requestJson = parseJsonBody(body, headers);
const mission = missionFromRequest(req, requestJson);
// Strip mission fields from the forwarded body, mirroring the resume proxy,
// so orchestration metadata is not passed downstream.
const forwardBody =
body && headers.get("content-type")?.includes("application/json")
? Buffer.from(JSON.stringify(stripMissionFromBody(requestJson)))
: body;
if (forwardBody !== body) headers.delete("content-length");
const res = await fetch(target, { method, headers, body: forwardBody });
return new Response(res.body, {
if (method === "GET" || method === "HEAD") {
return new Response(res.body, { status: res.status, statusText: res.statusText, headers: res.headers });
}
// Security note: the social-branding service handles LinkedIn sessions, tokens,
// cookies, and credentials. The gateway event payload intentionally carries ONLY
// canonical metadata (path/method/status/action) — never raw request/response bodies.
const responseBuffer = await res.arrayBuffer();
const responseText = Buffer.from(responseBuffer).toString("utf8");
let responseJson: unknown;
try { responseJson = responseText ? JSON.parse(responseText) : undefined; } catch { responseJson = undefined; }
const responseObj = isRecord(responseJson) ? responseJson : {};
const eventType = socialEventTypeForRest(method, normalizedRest, res.ok);
const derivedAction = eventType.split(".").slice(1).join(".");
const accountMatch = normalizedRest.match(/^accounts\/(?!connect\/?$)[^/]+\/.+/);
const externalId =
(accountMatch ? accountMatch[0].split("/")[1] : undefined) ??
getString(responseObj.account_id ?? responseObj.accountId ?? responseObj.id);
await recordGatewayEvent({
userId,
source: "agent-social-branding",
type: eventType,
payload: { path: normalizedRest, method, status: res.status, action: derivedAction },
correlation: {
externalId: externalId ?? `${canonicalSubjectServiceId("agent-social-branding")}:${eventType}`,
taskId: curatorTaskIdFromRequest(req, requestJson),
},
mission,
}).catch((err) => log.warn({ err, path: normalizedRest }, "failed to record social gateway event"));
return new Response(responseBuffer, {
status: res.status,
statusText: res.statusText,
headers: res.headers,
});
}
export function serviceRoutes() {
export function serviceRoutes(options: { skipAuth?: boolean } = {}) {
const app = new Hono<AuthContext>();
app.use("*", requireUser);
if (!options.skipAuth) app.use("*", requireUser);
if (options.skipAuth) app.use("*", async (c, next) => { c.set("userId", "user_test"); c.set("userEmail", "user_test@example.com"); await next(); });
app.get("/catalog", (c) => c.json({ services: listServiceCapabilities({ public: true }) }));
@@ -654,77 +841,62 @@ export function serviceRoutes() {
app.get("/qscore/current", async (c) => {
const userId = c.get("userId");
try {
await ensureOnboardingBaselineQscoreFromLedger(userId);
} catch (err) {
log.warn({ err, userId }, "failed to seed onboarding Q Score baseline before current Q Score read");
}
const [qscoreResult, latestSignals] = await Promise.all([
getQscoreFromService(userId, DEFAULT_QSCORE_ORG_ID),
getQscoreLatestSignalsFromService(userId, DEFAULT_QSCORE_ORG_ID),
]);
const rqScore = qscoreResult?.rq_score ?? null;
const breakdown = qscoreResult?.breakdown ?? {};
const evidence = latestSignals ?? [];
const quotients = qscoreResult?.quotients ?? {};
const [projection] = await db
.select()
.from(growQscoreProjectionState)
.where(eq(growQscoreProjectionState.userId, userId))
.limit(1);
const signals = await db
.select()
.from(growQscoreLatest)
.where(eq(growQscoreLatest.userId, userId))
.orderBy(desc(growQscoreLatest.updatedAt));
const grouped = new Map<string, { label: string; score: number; count: number; sources: Set<string> }>();
for (const signal of signals) {
const groupId = signal.signalId.split(".")[0] || "readiness";
const current = grouped.get(groupId) ?? {
label: groupId.replace(/-/g, " ").replace(/^./, (char) => char.toUpperCase()),
score: 0,
count: 0,
sources: new Set<string>(),
};
current.score += signal.score;
current.count += 1;
if (signal.source) current.sources.add(signal.source);
grouped.set(groupId, current);
}
const dimensions = Array.from(grouped.entries()).map(([id, group]) => ({
id,
label: group.label,
score: Math.round(group.score / Math.max(group.count, 1)),
signalCount: group.count,
sources: Array.from(group.sources),
}));
const score = projection?.score && projection.score > 0
? projection.score
: signals.length
? Math.round(signals.reduce((sum, signal) => sum + signal.score, 0) / signals.length)
: null;
const dimensionFromKey = (id: string, value: unknown): {
id: string;
label: string;
score: number;
signalCount: number;
sources: string[];
} | null => {
const num = typeof value === "number" && Number.isFinite(value)
? value
: (isRecord(value) && typeof value.score === "number" ? value.score : null);
if (num === null) return null;
const label = id.replace(/-/g, " ").replace(/^./, (char) => char.toUpperCase());
const signalCount = isRecord(value) && typeof value.signalCount === "number" ? value.signalCount : 0;
const sources = isRecord(value) && Array.isArray(value.sources) ? value.sources.filter((s): s is string => typeof s === "string") : [];
return { id, label, score: Math.round(num), signalCount, sources };
};
const dimensions = Object.entries(quotients)
.map(([id, value]) => dimensionFromKey(id, value))
.filter((d): d is { id: string; label: string; score: number; signalCount: number; sources: string[] } => d !== null);
const response = {
qscore: score === null ? null : {
score,
signalCount: projection?.signalCount ?? signals.length,
summary: projection?.summary ?? `Readiness score computed from ${signals.length} current signal${signals.length === 1 ? "" : "s"}.`,
qscore: rqScore === null ? null : {
rq_score: rqScore,
iq_score: qscoreResult?.iq_score ?? null,
eq_score: qscoreResult?.eq_score ?? null,
sq_score: qscoreResult?.sq_score ?? null,
signalCount: evidence.length,
breakdown,
formulaVersion: qscoreResult?.formula_version ?? null,
formulaId: qscoreResult?.formula_id ?? null,
ledgerSeqFrom: qscoreResult?.ledger_seq_from ?? null,
ledgerSeqTo: qscoreResult?.ledger_seq_to ?? null,
dimensions,
updatedAt: projection?.updatedAt?.toISOString() ?? signals[0]?.updatedAt?.toISOString() ?? null,
updatedAt: qscoreResult?.calculated_at ?? null,
},
signals: signals.map((signal) => ({
signalId: signal.signalId,
score: Math.round(signal.score),
signals: evidence.map((signal) => ({
signalId: signal.signal_id,
score: signal.score,
present: signal.present,
source: signal.source,
occurredAt: signal.occurredAt.toISOString(),
updatedAt: signal.updatedAt.toISOString(),
raw: signal.raw,
occurredAt: signal.last_occurred_at,
updatedAt: signal.last_seen_at || null,
formulaVersion: signal.formula_version,
})),
};
await recordGatewayEvent({
userId,
source: "qscore-service",
type: "qscore.review.opened",
payload: { score, signalCount: signals.length, source: "services.qscore.current" },
correlation: { taskId: curatorTaskIdFromRequest(c.req.raw) },
}).catch((err) => log.warn({ err, userId }, "failed to record qscore review event"));
return c.json(response);
});
@@ -748,14 +920,16 @@ export function serviceRoutes() {
const body = await c.req.json<JsonObject>();
const mission = missionFromRequest(c.req.raw, body);
const payload = await buildPersonalizedConfigurePayload(c.req.raw, body, userId);
const result = await interviewService.configure(payload).catch(serviceErrorResponse);
const result = await interviewService.configure(payload, userId).catch(serviceErrorResponse);
const resultObj = result as Record<string, unknown>;
const taskId = curatorTaskIdFromRequest(c.req.raw, body);
const orchestration = orchestrationFromMission(mission, taskId);
await recordGatewayEvent({
userId,
source: "interview-service",
type: "interview.session.configured",
payload: { request: payload, result: resultObj },
correlation: { sessionId: getSessionId(resultObj), requestId: getString(body.request_id), taskId: curatorTaskIdFromRequest(c.req.raw, body) },
payload: { ...orchestration, request: payload, result: resultObj },
correlation: { sessionId: getSessionId(resultObj), requestId: getString(body.request_id), ...orchestration },
mission,
}).catch((err) => log.warn({ err }, "failed to record interview configured event"));
return c.json(result);
@@ -763,12 +937,15 @@ export function serviceRoutes() {
app.post("/interview/preview", async (c) => {
const body = await c.req.json<JsonObject>();
const payload = await buildPersonalizedConfigurePayload(c.req.raw, body, c.get("userId"));
return c.json(await interviewService.preview(payload));
return c.json(await interviewService.preview(payload, c.get("userId")));
});
app.post("/interview/questions", async (c) => {
const body = await c.req.json<{ session_id: string; questions: Array<JsonObject | string> }>();
return c.json(await interviewService.editQuestions(body, c.get("userId")));
});
app.post("/interview/questions", async (c) => c.json(await interviewService.editQuestions(await c.req.json())));
app.post("/interview/approve", async (c) => {
const body = await c.req.json<{ session_id: string }>();
return c.json(await interviewService.approve(body.session_id));
return c.json(await interviewService.approve(body.session_id, c.get("userId")));
});
app.post("/interview/assignments", async (c) => c.json(await interviewService.createAssignments(await c.req.json())));
app.get("/interview/assignments", async (c) => c.json(await interviewService.listAssignments(c.req.query("email") ?? "", c.req.query("status") ?? "pending", Number(c.req.query("limit") ?? 20))));
@@ -776,20 +953,32 @@ export function serviceRoutes() {
app.post("/interview/results:bulk", async (c) => c.json(await interviewService.resultsBulk(await c.req.json<JsonObject>())));
app.get("/interview/review/:sessionId", async (c) => {
const userId = c.get("userId");
const sessionId = c.req.param("sessionId");
const sessionId = c.req.param("sessionId");
const result = await interviewService.review(sessionId, userId).catch(serviceErrorResponse);
const resultObj = result as Record<string, unknown>;
const sessionContext = await sessionMissionContext("interview", sessionId).catch((): SessionMissionContext => ({}));
const taskId = curatorTaskIdFromRequest(c.req.raw) ?? sessionContext.taskId;
const orchestration = orchestrationFromMission(sessionContext.mission, taskId);
await recordGatewayEvent({
userId,
source: "interview-service",
type: eventTypeForReview("interview", resultObj),
payload: resultObj,
correlation: { sessionId, taskId: curatorTaskIdFromRequest(c.req.raw) },
payload: { ...orchestration, ...resultObj },
correlation: { sessionId, ...orchestration },
mission: sessionContext.mission,
}).catch((err) => log.warn({ err }, "failed to record interview review event"));
return c.json(result);
});
app.get("/interview/leaderboard", async (c) => c.json(await interviewService.leaderboard()));
app.get("/interview/artifacts/:sessionId/:artifactType", async (c) => c.json(await interviewService.artifact(c.req.param("sessionId"), c.req.param("artifactType"), c.get("userId"))));
app.post("/interview/sessions/:sessionId/ticket", async (c) => {
if (!config.sessionTicketSecret) throw new HTTPException(503, { message: "session ticket signing is not configured" });
const sessionId = c.req.param("sessionId");
const userId = c.get("userId");
await assertSessionOwnership("interview", sessionId, userId);
const issued = signWsTicket({ secret: config.sessionTicketSecret, audience: "interview", subject: userId, sessionId });
return c.json({ ticket: issued.ticket, expiresAt: issued.expiresAt });
});
app.post("/interview/sessions/:sessionId/video/upload-url", async (c) => c.json(await interviewService.createVideoUploadUrl(c.req.param("sessionId"), c.get("userId"))));
app.post("/interview/sessions/:sessionId/video/uploaded", async (c) => c.json(await interviewService.markVideoUploaded(c.req.param("sessionId"), c.get("userId"))));
@@ -813,14 +1002,16 @@ export function serviceRoutes() {
const body = await c.req.json<JsonObject>();
const mission = missionFromRequest(c.req.raw, body);
const payload = await buildPersonalizedRoleplayConfigurePayload(c.req.raw, body, userId);
const result = await roleplayService.configure(payload).catch(serviceErrorResponse);
const result = await roleplayService.configure(payload, userId).catch(serviceErrorResponse);
const resultObj = result as Record<string, unknown>;
const taskId = curatorTaskIdFromRequest(c.req.raw, body);
const orchestration = orchestrationFromMission(mission, taskId);
await recordGatewayEvent({
userId,
source: "roleplay-service",
type: "roleplay.scenario.configured",
payload: { request: payload, result: resultObj },
correlation: { sessionId: getSessionId(resultObj), requestId: getString(body.request_id), taskId: curatorTaskIdFromRequest(c.req.raw, body) },
payload: { ...orchestration, request: payload, result: resultObj },
correlation: { sessionId: getSessionId(resultObj), requestId: getString(body.request_id), ...orchestration },
mission,
}).catch((err) => log.warn({ err }, "failed to record roleplay configured event"));
return c.json(result);
@@ -828,13 +1019,34 @@ export function serviceRoutes() {
app.post("/roleplay/preview", async (c) => {
const body = await c.req.json<JsonObject>();
const payload = await buildPersonalizedRoleplayConfigurePayload(c.req.raw, body, c.get("userId"));
return c.json(await roleplayService.preview(payload));
return c.json(await roleplayService.preview(payload, c.get("userId")));
});
app.post("/roleplay/questions", async (c) => {
const body = await c.req.json<{ session_id: string; questions: Array<JsonObject | string> }>();
return c.json(await roleplayService.editQuestions(body, c.get("userId")));
});
app.post("/roleplay/questions", async (c) => c.json(await roleplayService.editQuestions(await c.req.json())));
app.post("/roleplay/approve", async (c) => {
const body = await c.req.json<{ session_id: string }>();
return c.json(await roleplayService.approve(body.session_id));
const userId = c.get("userId");
const result = await roleplayService.approve(body.session_id, userId).catch(serviceErrorResponse);
const resultObj = result as Record<string, unknown>;
await recordGatewayEvent({
userId,
source: "roleplay-service",
type: "roleplay.scenario.configured",
payload: { request: body, result: resultObj },
correlation: { sessionId: getSessionId(resultObj) ?? body.session_id },
}).catch((err) => log.warn({ err }, "failed to record resumed roleplay configured event"));
return c.json(result);
});
app.get("/roleplay/plan/:sessionId", async (c) =>
c.json(await roleplayService.plan(c.req.param("sessionId"), c.get("userId")).catch(serviceErrorResponse)));
app.get("/roleplay/drafts", async (c) => {
const limit = Math.min(200, Math.max(1, Number(c.req.query("limit") ?? 50) || 50));
return c.json(await roleplayService.drafts(c.get("userId"), limit).catch(serviceErrorResponse));
});
app.delete("/roleplay/drafts/:sessionId", async (c) =>
c.json(await roleplayService.deleteDraft(c.req.param("sessionId"), c.get("userId")).catch(serviceErrorResponse)));
app.post("/roleplay/assignments", async (c) => c.json(await roleplayService.createAssignments(await c.req.json())));
app.get("/roleplay/assignments", async (c) => c.json(await roleplayService.listAssignments(c.req.query("email") ?? "", c.req.query("status") ?? "pending", Number(c.req.query("limit") ?? 20))));
app.post("/roleplay/assignments/unassign", async (c) => c.json(await roleplayService.unassign(await c.req.json())));
@@ -844,17 +1056,29 @@ export function serviceRoutes() {
const sessionId = c.req.param("sessionId");
const result = await roleplayService.review(sessionId, userId).catch(serviceErrorResponse);
const resultObj = result as Record<string, unknown>;
const sessionContext = await sessionMissionContext("roleplay", sessionId).catch((): SessionMissionContext => ({}));
const taskId = curatorTaskIdFromRequest(c.req.raw) ?? sessionContext.taskId;
const orchestration = orchestrationFromMission(sessionContext.mission, taskId);
await recordGatewayEvent({
userId,
source: "roleplay-service",
type: eventTypeForReview("roleplay", resultObj),
payload: resultObj,
correlation: { sessionId, taskId: curatorTaskIdFromRequest(c.req.raw) },
payload: { ...orchestration, ...resultObj },
correlation: { sessionId, ...orchestration },
mission: sessionContext.mission,
}).catch((err) => log.warn({ err }, "failed to record roleplay review event"));
return c.json(result);
});
app.get("/roleplay/leaderboard", async (c) => c.json(await roleplayService.leaderboard()));
app.get("/roleplay/artifacts/:sessionId/:artifactType", async (c) => c.json(await roleplayService.artifact(c.req.param("sessionId"), c.req.param("artifactType"), c.get("userId"))));
app.post("/roleplay/sessions/:sessionId/ticket", async (c) => {
if (!config.sessionTicketSecret) throw new HTTPException(503, { message: "session ticket signing is not configured" });
const sessionId = c.req.param("sessionId");
const userId = c.get("userId");
await assertSessionOwnership("roleplay", sessionId, userId);
const issued = signWsTicket({ secret: config.sessionTicketSecret, audience: "roleplay", subject: userId, sessionId });
return c.json({ ticket: issued.ticket, expiresAt: issued.expiresAt });
});
app.post("/roleplay/sessions/:sessionId/video/upload-url", async (c) => c.json(await roleplayService.createVideoUploadUrl(c.req.param("sessionId"), c.get("userId"))));
app.post("/roleplay/sessions/:sessionId/video/uploaded", async (c) => c.json(await roleplayService.markVideoUploaded(c.req.param("sessionId"), c.get("userId"))));
@@ -895,22 +1119,34 @@ export function serviceRoutes() {
const rest = c.req.path.split("/social/")[1] ?? "";
return proxySocialRequest(c.req.raw, rest, c.get("userId"));
});
app.post("/courses/a2a", async (c) => {
const userId = c.get("userId");
const body = await c.req.json<JsonObject>().catch((): JsonObject => ({}));
const mission = missionFromRequest(c.req.raw, body);
const taskId = curatorTaskIdFromRequest(c.req.raw, body);
const missionParams = mission
? orchestrationFromMission(mission, taskId)
: taskId
? { taskId, curatorTaskId: taskId }
: {};
const params = isRecord(body.params) ? body.params : {};
const action = getString(body.action) ?? (body.session_start ? "session_start" : "");
const result = await courseService.task({
...body,
action,
user_id: userId,
params: { ...missionParams, ...params },
});
return c.json(result);
});
app.post("/matchmaking/a2a", async (c) => {
const userId = c.get("userId");
const body = await c.req.json<JsonObject>().catch(() => ({}));
const { action, result } = await callMatchmakingA2a(body, userId);
await recordGatewayEvent({
userId,
source: "matchmaking-v2",
type: matchmakingEventType(action, result),
payload: { request: body, result },
correlation: {
taskId: curatorTaskIdFromRequest(c.req.raw, body),
externalId: getString(result.task_id ?? result.taskId),
},
mission: missionFromRequest(c.req.raw, body),
}).catch((err) => log.warn({ err, userId, action }, "failed to record matchmaking workflow event"));
const body = await c.req.json<JsonObject>().catch((): JsonObject => ({}));
const { result } = await callMatchmakingA2a({ ...body, user_id: userId }, userId);
// matchmaking-service emits canonical GrowEvents itself. The gateway is a
// transport proxy only, avoiding a second event for the same action.
return c.json(result);
});

View File

@@ -1,17 +1,77 @@
import { Hono } from "hono";
import { requireUser, type AuthContext } from "../auth/clerk.js";
import { db } from "../db/client.js";
import { users, userStacks, type UserStack } from "../db/schema.js";
import { onboarding, users, userStacks, type UserStack } from "../db/schema.js";
import { eq } from "drizzle-orm";
import { log } from "../log.js";
import { config } from "../config.js";
import { fetchOnboardingReadProfile, fetchUserProfile, patchPreferencesRequest, userServiceTarget } from "../services/user-profile.js";
import { serializeOnboardingState } from "../services/onboarding-serialization.js";
import {
onboardingCompletedAtFromPreferences,
} from "../v1/curator/curator-onboarding-loop.js";
import {
getLatestValidOnboardingLedgerEvent,
recordAndProcessOnboardingCompletion,
extractOnboardingData,
assertOnboardingRevision,
mergeOnboardingPatch,
resetOnboardingLedger,
resetOnboardingPreferences,
defaultOnboardingData,
OnboardingRevisionConflict,
type OnboardingData,
} from "../events/onboarding-ledger.js";
import { z } from "zod";
const onboardingPatchSchema = z.object({
expectedRevision: z.number().int().nonnegative().optional(),
data: z.record(z.unknown()),
});
function asRecord(value: unknown): Record<string, unknown> {
return value && typeof value === "object" && !Array.isArray(value) ? value as Record<string, unknown> : {};
}
function strings(value: unknown): string[] {
return Array.isArray(value) ? value.filter((item): item is string => typeof item === "string") : [];
}
const curatorIcpByOnboardingIcp: Record<string, string> = {
student: "student_recent_grad",
intern: "intern",
fresher: "fresher_early_professional",
experienced: "experienced_professional",
freelancer: "freelancer",
founder: "founder",
};
function buildOnboardingPayload(data: Record<string, unknown>) {
const profile = asRecord(data.profile);
const responses = asRecord(data.responses);
const onboardingIcp = typeof profile.icp === "string" ? profile.icp : "fresher";
const targetField = typeof responses.target_field === "string"
? responses.target_field
: typeof responses.venture_industry === "string"
? responses.venture_industry
: null;
return {
schema_version: 1,
source_revision: typeof data.revision === "number" ? data.revision : 0,
primary_intent: typeof profile.intent === "string" ? profile.intent : null,
mode: typeof profile.mode === "string" ? profile.mode : null,
question_branch: typeof profile.question_branch === "string" ? profile.question_branch : null,
onboarding_icp: onboardingIcp,
curator_registry_icp: curatorIcpByOnboardingIcp[onboardingIcp] ?? "fresher_early_professional",
target_role: typeof responses.target_role === "string" ? responses.target_role : null,
target_field: targetField,
experience_context: typeof responses.experience_level === "string" ? responses.experience_level : null,
goals: strings(responses.desired_outcomes),
barriers: strings(responses.career_barriers),
priority: typeof responses.target_milestone === "string" ? responses.target_milestone : null,
weekly_time_commitment: typeof responses.weekly_time_commitment === "string" ? responses.weekly_time_commitment : null,
};
}
function publicStack(stack: UserStack | null | undefined) {
if (!stack) return stack;
@@ -19,9 +79,6 @@ function publicStack(stack: UserStack | null | undefined) {
return safe;
}
function userServiceTarget(path: string, search = "") {
return new URL(`/api/v1/users${path}${search}`, config.userServiceUrl.replace(/\/$/, ""));
}
async function fetchUserService(req: Request, path: string) {
const incoming = new URL(req.url);
@@ -57,6 +114,64 @@ async function ensureUserServiceUser(req: Request) {
return res.json() as Promise<Record<string, unknown>>;
}
function isPlainObject(value: unknown): value is Record<string, unknown> {
return value !== null && typeof value === "object" && !Array.isArray(value);
}
function recordPreferences(profile: Record<string, unknown>): Record<string, unknown> {
return isPlainObject(profile.preferences) ? profile.preferences : {};
}
type OnboardingResetResult =
| { error: null; body: Record<string, unknown>; status: 200 }
| { error: string; message: string; status: 502 };
/**
* Reusable per-user onboarding reset. Resets preferences.onboarding to the
* default v3 doc (preserving all unrelated preference keys, history, and
* curator data) and deletes ONLY the user's completion-type ledger rows so the
* onboarding gate reopens. Idempotent — a user with no onboarding state is a
* no-op success.
*
* Exported so the staging bulk-reset CLI can reuse the exact same logic
* (preferences reset + backend ledger deletion) end-to-end via the service
* token path, instead of re-implementing it.
*/
export async function resetUserOnboarding(req: Request, userId: string): Promise<OnboardingResetResult> {
const profile = await fetchUserProfile(req);
const preferences = recordPreferences(profile);
const nextPreferences = resetOnboardingPreferences(preferences);
const updateRes = await fetchUserService(patchPreferencesRequest(req, nextPreferences), "/me");
if (!updateRes.ok) {
const text = await updateRes.text().catch(() => "");
log.error({ err: text, userId, status: updateRes.status }, "failed to persist reset onboarding preferences");
return {
error: "user_service_persist_failed",
message: "Failed to reset onboarding preferences",
status: 502,
};
}
const ledgerDeleted = await resetOnboardingLedger(userId);
log.info({ userId, ledgerDeleted }, "onboarding reset complete");
const data = extractOnboardingData(nextPreferences.onboarding);
return {
error: null,
body: {
id: userId,
reset: true,
ledgerRowsDeleted: ledgerDeleted,
data,
},
status: 200,
};
}
export function userRoutes() {
const app = new Hono<AuthContext>();
app.use("*", requireUser);
@@ -77,6 +192,10 @@ export function userRoutes() {
);
}
const rawPlan = typeof userServiceUser.plan === "string" ? userServiceUser.plan.toLowerCase() : "free";
const plan = rawPlan === "pro" || rawPlan === "enterprise" ? rawPlan : "free";
await db.update(users).set({ plan, updatedAt: new Date() }).where(eq(users.id, userId));
const userRow = await db.query.users.findFirst({
where: eq(users.id, userId),
});
@@ -94,23 +213,187 @@ export function userRoutes() {
app.get("/onboarding-status", async (c) => {
const userId = c.get("userId");
const state = await db.query.onboarding.findFirst({ where: eq(onboarding.userId, userId) });
const event = await getLatestValidOnboardingLedgerEvent(userId);
if (event) {
return c.json({
userId,
hasOnboardingEvent: true,
onboardingEvent: {
id: event.id,
type: event.type,
occurredAt: event.occurredAt.toISOString(),
processingStatus: event.processingStatus,
},
needsOnboarding: false,
});
}
// Ledger missing but canonical preferences may still show completed (the
// completion row was lost/never written). Self-heal: re-run the existing
// idempotent completion recording, which re-creates the ledger row via the
// `onboarding:completed:<userId>` dedupe key. If the canonical state is NOT
// completed, the gate stays open honestly. A heal failure must surface as a
// service error — never as a false "needs onboarding" for an already-done
// user, which would force them through onboarding again.
let healed: { ok: true } | { ok: false; status: 502; error: string; message: string };
try {
const profile = await fetchUserProfile(c.req.raw);
const preferences = recordPreferences(profile);
const data = extractOnboardingData(preferences.onboarding);
if (data.status === "completed" && data.completed_at) {
await recordAndProcessOnboardingCompletion({
userId,
completedAt: data.completed_at,
source: "onboarding-status-heal",
context: { preferences, onboarding: data },
});
healed = { ok: true };
} else {
return c.json({
userId,
hasOnboardingEvent: false,
onboardingEvent: null,
needsOnboarding: true,
});
}
} catch (err) {
log.error({ err, userId }, "onboarding status heal failed");
healed = {
ok: false,
status: 502,
error: "onboarding_status_heal_failed",
message: "Onboarding status check failed; please retry",
};
}
if (!healed.ok) {
return c.json({ error: healed.error, message: healed.message }, healed.status);
}
// The heal re-ran the idempotent completion recording, so a fresh read
// should now find the ledger row. Re-fetch to return a consistent shape
// (onboardingEvent populated alongside hasOnboardingEvent: true) rather than
// a contradictory true+null that downstream consumers would misread.
const fresh = await getLatestValidOnboardingLedgerEvent(userId);
return c.json({
userId,
hasOnboardingEvent: Boolean(event),
onboardingEvent: event
hasOnboardingEvent: true,
onboardingEvent: fresh
? {
id: event.id,
type: event.type,
occurredAt: event.occurredAt.toISOString(),
processingStatus: event.processingStatus,
}
id: fresh.id,
type: fresh.type,
occurredAt: fresh.occurredAt.toISOString(),
processingStatus: fresh.processingStatus,
}
: null,
needsOnboarding: !event,
needsOnboarding: false,
healed: true,
});
});
// ── Onboarding preferences (canonical store: user-service preferences.onboarding) ─
// GET returns the v3 OnboardingData (or a default v3 doc when none exists yet)
// plus its faithful projection payload and the current revision.
// PATCH performs optimistic-concurrency merge (expectedRevision must match),
// preserves all unrelated preference keys, persists access_choice, validates
// status/completed_at consistency, and fires the existing completion ledger
// side effects when status is "completed".
app.get("/onboarding", async (c) => {
const userId = c.get("userId");
const profile = await fetchOnboardingReadProfile(c.req.raw, userId);
const preferences = recordPreferences(profile);
return c.json(serializeOnboardingState(userId, preferences.onboarding));
});
app.patch("/onboarding", async (c) => {
const userId = c.get("userId");
const body = await c.req.json().catch(() => null) as
| { data?: unknown; expectedRevision?: unknown }
| null;
if (!body || typeof body !== "object") {
return c.json({ error: "invalid_body", message: "Expected { data, expectedRevision }" }, 400);
}
const incoming = extractOnboardingData(body.data);
const expectedRevision = typeof body.expectedRevision === "number" ? body.expectedRevision : undefined;
// Read current profile to resolve the stored revision for the OCC check.
const profile = await fetchUserProfile(c.req.raw);
const preferences = recordPreferences(profile);
const current = extractOnboardingData(preferences.onboarding);
try {
assertOnboardingRevision(expectedRevision, current);
} catch (err) {
if (err instanceof OnboardingRevisionConflict) {
return c.json(
{
error: "revision_conflict",
message: "Onboarding was modified by another session. Reload and retry.",
expected: err.expected,
actual: err.actual,
revision: err.actual,
},
409,
);
}
throw err;
}
// Stamp the incoming revision with the authoritative stored revision so the
// merge helper bumps from it (the client sends the revision it read).
const incomingWithClientRev: OnboardingData = { ...incoming, revision: current.revision };
const nextPreferences = mergeOnboardingPatch(preferences, incomingWithClientRev);
const nextData = extractOnboardingData(nextPreferences.onboarding);
// Persist back to user-service via PATCH /me (only preferences is written).
const updateRes = await fetchUserService(patchPreferencesRequest(c.req.raw, nextPreferences), "/me");
if (!updateRes.ok) {
const text = await updateRes.text().catch(() => "");
log.error({ err: text, userId, status: updateRes.status }, "failed to persist onboarding preferences");
return c.json(
{ error: "user_service_persist_failed", message: "Failed to save onboarding preferences" },
502,
);
}
// Completion ledger side effects (idempotent via dedupeKey onboarding:completed:<userId>).
if (nextData.status === "completed" && nextData.completed_at) {
try {
await recordAndProcessOnboardingCompletion({
userId,
completedAt: nextData.completed_at,
source: "onboarding-api",
context: {
preferences: nextPreferences,
onboarding: nextData,
},
});
} catch (err) {
log.warn({ err, userId }, "failed to run onboarding completion side effects");
}
}
return c.json(serializeOnboardingState(userId, nextPreferences.onboarding));
});
// DELETE /onboarding — authenticated per-user reset. Reopens the onboarding
// gate by deleting ONLY the user's completion-type ledger rows (those carrying
// the onboarding:completed dedupe key) and resetting preferences.onboarding to
// the default v3 doc. Preserves unrelated preferences, snapshot history,
// missions, and curator data. Idempotent: deleting nothing is a success.
app.delete("/onboarding", async (c) => {
const userId = c.get("userId");
const result = await resetUserOnboarding(c.req.raw, userId);
if (result.error !== null) {
return c.json({ error: result.error, message: result.message }, result.status);
}
return c.json(result.body, result.status);
});
app.get("/me", async (c) => proxyUserService(c.req.raw, "/me"));
app.patch("/me", async (c) => {
const res = await fetchUserService(c.req.raw, "/me");

View File

@@ -67,10 +67,10 @@ export function workflowRoutes() {
await db.insert(workflowRunModules).values(def.modules.map((m) => ({ runId: run.id, moduleId: m.id, title: m.title, status: "idle", service: m.service })));
await db.insert(workflowEvents).values({ runId: run.id, userId, type: "workflow.started", payload: { workflowId: def.id, goal: body.goal } });
try {
const baseline = await runServiceAgentProbe({ id: "qscore", name: "Q Score Agent", role: "Q Score", kind: "score", description: "Baseline Q Score", service: "qscore-service" }, { userId, goal: body.goal ?? "workflow baseline" });
const baseline = await runServiceAgentProbe({ id: "qscore", name: "RQ Score Agent", role: "RQ Score", kind: "score", description: "Baseline RQ Score", service: "qscore-service" }, { userId, goal: body.goal ?? "workflow baseline" });
if (baseline.status === "ok" && baseline.detail) {
const payload = baseline.detail as Record<string, unknown>;
await db.insert(qscoreSnapshots).values({ userId, runId: run.id, snapshotType: "baseline", score: extractQScore(payload), payload });
await db.insert(qscoreSnapshots).values({ userId, runId: run.id, snapshotType: "baseline", rqScore: extractRqScore(payload), payload });
await db.update(workflowRuns).set({ qscoreBefore: payload, updatedAt: new Date() }).where(eq(workflowRuns.id, run.id));
}
} catch {
@@ -248,11 +248,11 @@ async function runModulesUntilGate(input: {
}
}
function extractQScore(output: Record<string, unknown>): number | undefined {
const direct = output.q_score;
function extractRqScore(output: Record<string, unknown>): number | undefined {
const direct = output.rq_score;
if (typeof direct === "number") return Math.round(direct);
const compute = output.compute as Record<string, unknown> | undefined;
if (typeof compute?.q_score === "number") return Math.round(compute.q_score);
if (typeof compute?.rq_score === "number") return Math.round(compute.rq_score);
return undefined;
}

View File

@@ -0,0 +1,139 @@
type JsonRecord = Record<string, unknown>;
function isRecord(value: unknown): value is JsonRecord {
return !!value && typeof value === "object" && !Array.isArray(value);
}
function getString(value: unknown): string | undefined {
return typeof value === "string" && value.trim() ? value.trim() : undefined;
}
function getNumber(value: unknown): number | undefined {
if (typeof value === "number" && Number.isFinite(value)) return value;
if (typeof value === "string" && value.trim()) {
const n = Number(value);
if (Number.isFinite(n)) return n;
}
return undefined;
}
function paramsFromBody(body: JsonRecord): JsonRecord {
return isRecord(body.params) ? body.params : {};
}
function agentData(result: JsonRecord, action: string): JsonRecord | undefined {
const messages = Array.isArray(result.messages) ? result.messages : [];
for (const item of messages) {
const message = isRecord(item) ? item : {};
if (message.type !== "agent_data") continue;
if (message.action !== action) continue;
const data = isRecord(message.data) ? message.data : {};
return data;
}
return undefined;
}
function firstAgentData(result: JsonRecord, actions: string[]): JsonRecord {
for (const action of actions) {
const data = agentData(result, action);
if (data) return data;
}
return {};
}
export function matchmakingEventType(action: string, response: JsonRecord) {
if (response.status === "error") return "matchmaking.request.failed";
if (action === "run_search" || action === "generate_matches") return "matchmaking.matches.generated";
if (action === "get_scout_feed" || action === "get_feed" || action === "session_start") return "matchmaking.feed.viewed";
if (action === "get_opportunity_detail" || action === "mark_viewed") return "matchmaking.match.viewed";
if (action === "mark_saved") return "matchmaking.match.saved";
if (action === "record_feedback") return "matchmaking.matches.reviewed";
if (action === "dismiss_opportunity") return "matchmaking.match.dismissed";
if (action === "tailor_resume") return "matchmaking.application.started";
if (action === "mark_applied") return "matchmaking.match.applied";
if (action === "submit_application") return "matchmaking.application.completed";
return "matchmaking.workflow.completed";
}
function opportunityIdFrom(input: { params: JsonRecord; body: JsonRecord; data: JsonRecord; result: JsonRecord }) {
return getString(
input.params.opportunity_id ??
input.params.opportunityId ??
input.params.matchId ??
input.params.jobId ??
input.body.opportunity_id ??
input.body.opportunityId ??
input.data.opportunity_id ??
input.data.opportunityId ??
input.data.id ??
input.result.opportunity_id ??
input.result.opportunityId,
);
}
function missionFromParams(params: JsonRecord) {
const instanceId = getString(params.missionInstanceId ?? params.instanceId);
const missionId = getString(params.missionId);
const stageId = getString(params.stageId);
const source = getString(params.source);
if (!instanceId && !missionId && !stageId) return undefined;
return {
missionId,
instanceId,
stageId,
source: source ?? "curator-v1",
};
}
function countFromData(data: JsonRecord) {
const opportunities = Array.isArray(data.opportunities) ? data.opportunities : undefined;
return getNumber(data.matchCount ?? data.matches ?? data.shortlisted) ?? opportunities?.length;
}
export function buildMatchmakingGatewayEvent(input: {
userId: string;
action: string;
body: JsonRecord;
result: JsonRecord;
}) {
const params = paramsFromBody(input.body);
const type = matchmakingEventType(input.action, input.result);
const data = firstAgentData(input.result, ["search_complete", "feed_loaded", "opportunity_state_saved", "opportunity_detail"]);
const opportunityId = opportunityIdFrom({ params, body: input.body, data, result: input.result });
const taskId = getString(params.curatorTaskId ?? params.taskId ?? input.body.curatorTaskId ?? input.body.taskId);
const resultTaskId = getString(input.result.task_id ?? input.result.taskId);
const matchCount = countFromData(data);
const scanned = getNumber(data.scanned);
const payload: JsonRecord = {
request: input.body,
result: input.result,
action: input.action,
status: getString(input.result.status),
...(taskId ? { taskId, curatorTaskId: taskId } : {}),
...(opportunityId ? { opportunityId, matchId: opportunityId, jobId: opportunityId } : {}),
...(matchCount !== undefined ? { matchCount } : {}),
...(scanned !== undefined ? { scanned } : {}),
...(getString(params.source) ? { source: getString(params.source) } : {}),
};
return {
userId: input.userId,
source: "matchmaking-v2",
type,
payload,
correlation: {
...(taskId ? { taskId, curatorTaskId: taskId } : {}),
...(opportunityId ? { opportunityId, matchId: opportunityId, jobId: opportunityId } : {}),
externalId: opportunityId ?? resultTaskId,
...(resultTaskId ? { a2aTaskId: resultTaskId } : {}),
},
mission: missionFromParams(params),
subject: {
serviceId: "matchmaking",
kind: opportunityId ? "opportunity" : "opportunity_feed",
id: opportunityId,
externalId: opportunityId ?? resultTaskId ?? `matchmaking:${type}`,
},
};
}

View File

@@ -0,0 +1,18 @@
import {
deriveOnboardingPayload,
extractOnboardingData,
} from "../events/onboarding-ledger.js";
/** Build the authenticated GET /users/onboarding response from persisted JSON. */
export function serializeOnboardingState(userId: string, stored: unknown) {
const data = extractOnboardingData(stored);
const payload = deriveOnboardingPayload(data);
const updatedAt = data.progress.updated_at ?? data.completed_at;
return {
id: userId,
data,
payload,
revision: data.revision,
updatedAt,
};
}

View File

@@ -34,7 +34,7 @@ function resolveUserPayload(userIdOrPayload?: string | JsonObject, payload?: Jso
: { userId: undefined, payload: userIdOrPayload };
}
async function serviceJson<T = JsonObject>(
export async function serviceJson<T = JsonObject>(
baseUrl: string,
path: string,
opts: ServiceCallOptions = {},
@@ -60,12 +60,14 @@ export const interviewService = {
serviceJson(config.interviewServiceUrl, `/api/v1/interviews/page-state?${new URLSearchParams({ user_id: userId })}`, {
headers: userHeader(userId),
}),
configure: (payload: JsonObject) => serviceJson(config.interviewServiceUrl, "/api/v1/configure", { body: payload, timeoutMs: INTERACTIVE_SERVICE_TIMEOUT_MS }),
preview: (payload: JsonObject) => serviceJson(config.interviewServiceUrl, "/api/v1/configure/preview", { body: payload, timeoutMs: INTERACTIVE_SERVICE_TIMEOUT_MS }),
editQuestions: (payload: { session_id: string; questions: Array<JsonObject | string> }) =>
serviceJson(config.interviewServiceUrl, "/api/v1/configure/questions", { body: payload, timeoutMs: INTERACTIVE_SERVICE_TIMEOUT_MS }),
approve: (sessionId: string) =>
serviceJson(config.interviewServiceUrl, "/api/v1/configure/approve", { body: { session_id: sessionId }, timeoutMs: INTERACTIVE_SERVICE_TIMEOUT_MS }),
configure: (payload: JsonObject, userId?: string) =>
serviceJson(config.interviewServiceUrl, "/api/v1/configure", { body: payload, headers: userHeader(userId), timeoutMs: INTERACTIVE_SERVICE_TIMEOUT_MS }),
preview: (payload: JsonObject, userId?: string) =>
serviceJson(config.interviewServiceUrl, "/api/v1/configure/preview", { body: payload, headers: userHeader(userId), timeoutMs: INTERACTIVE_SERVICE_TIMEOUT_MS }),
editQuestions: (payload: { session_id: string; questions: Array<JsonObject | string> }, userId?: string) =>
serviceJson(config.interviewServiceUrl, "/api/v1/configure/questions", { body: payload, headers: userHeader(userId), timeoutMs: INTERACTIVE_SERVICE_TIMEOUT_MS }),
approve: (sessionId: string, userId?: string) =>
serviceJson(config.interviewServiceUrl, "/api/v1/configure/approve", { body: { session_id: sessionId }, headers: userHeader(userId), timeoutMs: INTERACTIVE_SERVICE_TIMEOUT_MS }),
createAssignments: (payload: { organization_id: string; role: string; round: "warm_up" | "behavioral" | "technical"; assignee_emails: string[] }) =>
serviceJson(config.interviewServiceUrl, "/api/v1/interviews/assignments", { body: payload }),
listAssignments: (email: string, status = "pending", limit = 20) =>
@@ -107,12 +109,25 @@ export const roleplayService = {
serviceJson(config.roleplayServiceUrl, `/api/v1/roleplays/page-state?${new URLSearchParams({ user_id: userId })}`, {
headers: userHeader(userId),
}),
configure: (payload: JsonObject) => serviceJson(config.roleplayServiceUrl, "/api/v1/roleplays/configure", { body: payload, timeoutMs: INTERACTIVE_SERVICE_TIMEOUT_MS }),
preview: (payload: JsonObject) => serviceJson(config.roleplayServiceUrl, "/api/v1/roleplays/configure/preview", { body: payload, timeoutMs: INTERACTIVE_SERVICE_TIMEOUT_MS }),
editQuestions: (payload: { session_id: string; questions: Array<JsonObject | string> }) =>
serviceJson(config.roleplayServiceUrl, "/api/v1/roleplays/configure/questions", { body: payload, timeoutMs: INTERACTIVE_SERVICE_TIMEOUT_MS }),
approve: (sessionId: string) =>
serviceJson(config.roleplayServiceUrl, "/api/v1/roleplays/configure/approve", { body: { session_id: sessionId }, timeoutMs: INTERACTIVE_SERVICE_TIMEOUT_MS }),
configure: (payload: JsonObject, userId?: string) => serviceJson(config.roleplayServiceUrl, "/api/v1/roleplays/configure", { body: payload, headers: userHeader(userId), timeoutMs: INTERACTIVE_SERVICE_TIMEOUT_MS }),
preview: (payload: JsonObject, userId?: string) => serviceJson(config.roleplayServiceUrl, "/api/v1/roleplays/configure/preview", { body: payload, headers: userHeader(userId), timeoutMs: INTERACTIVE_SERVICE_TIMEOUT_MS }),
editQuestions: (payload: { session_id: string; questions: Array<JsonObject | string> }, userId?: string) =>
serviceJson(config.roleplayServiceUrl, "/api/v1/roleplays/configure/questions", { body: payload, headers: userHeader(userId), timeoutMs: INTERACTIVE_SERVICE_TIMEOUT_MS }),
approve: (sessionId: string, userId?: string) =>
serviceJson(config.roleplayServiceUrl, "/api/v1/roleplays/configure/approve", { body: { session_id: sessionId }, headers: userHeader(userId), timeoutMs: INTERACTIVE_SERVICE_TIMEOUT_MS }),
plan: (sessionId: string, userId?: string) =>
serviceJson(config.roleplayServiceUrl, `/api/v1/roleplays/sessions/${encodeURIComponent(sessionId)}/plan`, {
headers: userHeader(userId),
}),
drafts: (userId: string, limit = 50) =>
serviceJson(config.roleplayServiceUrl, `/api/v1/roleplays/drafts?${new URLSearchParams({ user_id: userId, limit: String(limit) })}`, {
headers: userHeader(userId),
}),
deleteDraft: (sessionId: string, userId?: string) =>
serviceJson(config.roleplayServiceUrl, `/api/v1/roleplays/drafts/${encodeURIComponent(sessionId)}`, {
method: "DELETE",
headers: userHeader(userId),
}),
createAssignments: (payload: { organization_id: string; name: string; scenario: string; assignee_emails: string[] }) =>
serviceJson(config.roleplayServiceUrl, "/api/v1/roleplays/assignments", { body: payload }),
listAssignments: (email: string, status = "pending", limit = 20) =>
@@ -148,24 +163,68 @@ export const roleplayService = {
},
};
export const courseService = {
health: () => serviceJson(config.coursesServiceUrl, "/health"),
task: (payload: { action?: string; params?: JsonObject; user_id: string; user_context?: JsonObject; session_start?: boolean; task_id?: string }) =>
serviceJson(config.coursesServiceUrl, "/a2a/tasks", { body: payload, timeoutMs: INTERACTIVE_SERVICE_TIMEOUT_MS }),
summaryState: (userId: string) =>
serviceJson(config.coursesServiceUrl, "/a2a/tasks", {
body: { user_id: userId, session_start: true, params: { page: "summary" } },
timeoutMs: DEFAULT_SERVICE_TIMEOUT_MS,
}),
};
export const assessmentService = {
health: () => serviceJson(config.assessmentServiceUrl, "/api/v1/health"),
listForUser: (userId: string, limit = 50) =>
serviceJson(config.assessmentServiceUrl, `/api/v1/assessments?${new URLSearchParams({
user_id: userId,
limit: String(limit),
})}`, {
headers: userHeader(userId),
}),
};
export const matchmakingService = {
health: () => serviceJson(config.matchmakingServiceUrl, "/api/v1/health"),
task: (payload: { action: string; params?: JsonObject; user_id: string; user_context?: JsonObject }) =>
serviceJson(config.matchmakingServiceUrl, "/a2a/tasks", {
body: payload,
timeoutMs: INTERACTIVE_SERVICE_TIMEOUT_MS,
}),
scoutStats: (userId: string, qscoreUserId: string) =>
serviceJson(config.matchmakingServiceUrl, "/a2a/tasks", {
body: { action: "get_scout_stats", user_id: userId, params: { user_uuid: qscoreUserId } },
timeoutMs: DEFAULT_SERVICE_TIMEOUT_MS,
}),
};
export const socialBrandingService = {
health: () => serviceJson(config.socialBrandingServiceUrl, "/healthz"),
state: (clerkId: string) =>
serviceJson(config.socialBrandingServiceUrl, `/api/state/${encodeURIComponent(clerkId)}`, {
headers: userHeader(clerkId),
}),
};
export const resumeService = {
health: () => serviceJson(config.resumeServiceUrl, "/health"),
state: (clerkId: string) => serviceJson(config.resumeServiceUrl, `/api/state/${encodeURIComponent(clerkId)}`),
state: (clerkId: string) => serviceJson(config.resumeServiceUrl, `/api/state/${encodeURIComponent(clerkId)}`, { headers: userHeader(clerkId) }),
templates: () => serviceJson(config.resumeServiceUrl, "/api/v1/templates"),
task: (payload: { action?: string; params?: JsonObject; user_id: string; user_context?: JsonObject; session_start?: boolean }) =>
serviceJson(config.resumeServiceUrl, "/a2a/tasks", { body: payload }),
listResumes: (clerkId: string) => serviceJson(config.resumeServiceUrl, `/api/v1/resumes?${new URLSearchParams({ clerk_id: clerkId })}`),
createResume: (payload: JsonObject) => serviceJson(config.resumeServiceUrl, "/api/v1/resumes", { body: payload }),
getResume: (resumeId: string) => serviceJson(config.resumeServiceUrl, `/api/v1/resumes/${encodeURIComponent(resumeId)}`),
updateResume: (resumeId: string, payload: JsonObject) => serviceJson(config.resumeServiceUrl, `/api/v1/resumes/${encodeURIComponent(resumeId)}`, { method: "PUT", body: payload }),
analyzeResume: (resumeId: string, payload: JsonObject = {}) => serviceJson(config.resumeServiceUrl, `/api/v1/ai/analyze/${encodeURIComponent(resumeId)}`, { body: payload }),
suggestions: (resumeId: string) => serviceJson(config.resumeServiceUrl, `/api/v1/ai/suggestions/${encodeURIComponent(resumeId)}`),
copilot: (payload: JsonObject) => serviceJson(config.resumeServiceUrl, "/api/v1/ai/copilot", { body: payload }),
optimizeSummary: (payload: JsonObject) => serviceJson(config.resumeServiceUrl, "/api/v1/ai/optimize-summary", { body: payload }),
optimizeExperience: (payload: JsonObject) => serviceJson(config.resumeServiceUrl, "/api/v1/ai/optimize-experience", { body: payload }),
suggestSkills: (payload: JsonObject) => serviceJson(config.resumeServiceUrl, "/api/v1/ai/suggest-skills", { body: payload }),
generateSummary: (payload: JsonObject) => serviceJson(config.resumeServiceUrl, "/api/v1/ai/generate-summary", { body: payload }),
listVersions: (resumeId: string) => serviceJson(config.resumeServiceUrl, `/api/v1/resumes/${encodeURIComponent(resumeId)}/versions`),
createVersion: (resumeId: string, payload: JsonObject) => serviceJson(config.resumeServiceUrl, `/api/v1/resumes/${encodeURIComponent(resumeId)}/versions`, { body: payload }),
preview: (resumeId: string) => serviceJson(config.resumeServiceUrl, `/api/v1/export/resumes/${encodeURIComponent(resumeId)}/preview`),
listResumes: (clerkId: string) => serviceJson(config.resumeServiceUrl, `/api/v1/resumes?${new URLSearchParams({ clerk_id: clerkId })}`, { headers: userHeader(clerkId) }),
createResume: (payload: JsonObject, userId?: string) => serviceJson(config.resumeServiceUrl, "/api/v1/resumes", { body: payload, headers: userHeader(userId ?? (typeof payload.user_id === "string" ? payload.user_id : undefined)) }),
getResume: (resumeId: string, userId?: string) => serviceJson(config.resumeServiceUrl, `/api/v1/resumes/${encodeURIComponent(resumeId)}`, { headers: userHeader(userId) }),
updateResume: (resumeId: string, payload: JsonObject, userId?: string) => serviceJson(config.resumeServiceUrl, `/api/v1/resumes/${encodeURIComponent(resumeId)}`, { method: "PUT", body: payload, headers: userHeader(userId) }),
analyzeResume: (resumeId: string, payload: JsonObject = {}, userId?: string) => serviceJson(config.resumeServiceUrl, `/api/v1/ai/analyze/${encodeURIComponent(resumeId)}`, { body: payload, headers: userHeader(userId) }),
suggestions: (resumeId: string, userId?: string) => serviceJson(config.resumeServiceUrl, `/api/v1/ai/suggestions/${encodeURIComponent(resumeId)}`, { headers: userHeader(userId) }),
copilot: (payload: JsonObject, userId?: string) => serviceJson(config.resumeServiceUrl, "/api/v1/ai/copilot", { body: payload, headers: userHeader(userId) }),
optimizeSummary: (payload: JsonObject, userId?: string) => serviceJson(config.resumeServiceUrl, "/api/v1/ai/optimize-summary", { body: payload, headers: userHeader(userId) }),
optimizeExperience: (payload: JsonObject, userId?: string) => serviceJson(config.resumeServiceUrl, "/api/v1/ai/optimize-experience", { body: payload, headers: userHeader(userId) }),
suggestSkills: (payload: JsonObject, userId?: string) => serviceJson(config.resumeServiceUrl, "/api/v1/ai/suggest-skills", { body: payload, headers: userHeader(userId) }),
generateSummary: (payload: JsonObject, userId?: string) => serviceJson(config.resumeServiceUrl, "/api/v1/ai/generate-summary", { body: payload, headers: userHeader(userId) }),
listVersions: (resumeId: string, userId?: string) => serviceJson(config.resumeServiceUrl, `/api/v1/resumes/${encodeURIComponent(resumeId)}/versions`, { headers: userHeader(userId) }),
createVersion: (resumeId: string, payload: JsonObject, userId?: string) => serviceJson(config.resumeServiceUrl, `/api/v1/resumes/${encodeURIComponent(resumeId)}/versions`, { body: payload, headers: userHeader(userId) }),
preview: (resumeId: string, userId?: string) => serviceJson(config.resumeServiceUrl, `/api/v1/export/resumes/${encodeURIComponent(resumeId)}/preview`, { headers: userHeader(userId) }),
};

View File

@@ -0,0 +1,254 @@
import { createHash } from "node:crypto";
import { config } from "../config.js";
import { log } from "../log.js";
// Current backend auth and actor contexts are single-org; keep the constraint
// explicit and shared until org membership is threaded through every caller.
export const DEFAULT_QSCORE_ORG_ID = "growqr";
/**
* Deterministic identity mapping from a raw growqr userId to the qscore_service
* stable UUID key. Both the signal feeder (write path) and the score readers
* (read path) MUST use this so producer and consumer agree on identity.
*
* This is the single source of truth for the mapping; the feeder imports it
* from here rather than maintaining a parallel copy.
*/
export function toQscoreUserId(userId: string): string {
const hex = createHash("sha256").update(userId).digest("hex").slice(0, 32);
return [
hex.slice(0, 8),
hex.slice(8, 12),
`4${hex.slice(13, 16)}`,
`8${hex.slice(17, 20)}`,
hex.slice(20, 32),
].join("-");
}
/**
* Raw response shape returned by qscore_service GET /v1/qscore/{user_id}.
* See qscore_service/app/api/schemas.py QScoreReadResponse.
*/
export type QscoreServiceResult = {
org_id: string;
user_id: string;
rq_score: number;
iq_score: number | null;
eq_score: number | null;
sq_score: number | null;
profession: string;
formula_version: string;
formula_id: string;
calculated_at: string;
quotients: Record<string, unknown>;
breakdown: Record<string, unknown>;
ledger_seq_from: number | null;
ledger_seq_to: number | null;
};
/**
* Public result type for the proxy helper. The assignment's contract names this
* `QscoreProxyResult`; it is the non-null service response (the function itself
* returns `QscoreProxyResult | null` for graceful degradation).
*/
export type QscoreProxyResult = QscoreServiceResult;
export type QscoreReadResult<T> =
| { status: "ready"; data: T }
| { status: "empty"; reason: "not_found" }
| { status: "unavailable"; reason: "request_failed" | "invalid_response" | `http_${number}` };
export type QscoreHistoryPoint = {
rq_score: number;
date: string;
};
export type QscoreLatestSignal = {
signal_id: string;
source: string | null;
present: boolean;
score: number;
raw: unknown;
last_occurred_at: string | null;
last_seen_at: string;
formula_version: string;
};
const QSCORE_PROXY_TIMEOUT_MS = Number(
process.env.QSCORE_PROXY_TIMEOUT_MS ?? 3500,
);
function isRecord(value: unknown): value is Record<string, unknown> {
return !!value && typeof value === "object" && !Array.isArray(value);
}
function parseResult(body: unknown): QscoreServiceResult {
if (!isRecord(body)) {
throw new Error("qscore_service returned non-object response");
}
const rqScore = body.rq_score;
if (typeof rqScore !== "number" || !Number.isFinite(rqScore)) {
throw new Error("qscore_service response missing numeric rq_score");
}
const numOrNull = (v: unknown): number | null =>
typeof v === "number" && Number.isFinite(v) ? v : null;
const str = (v: unknown): string => (typeof v === "string" ? v : "");
return {
org_id: str(body.org_id),
user_id: str(body.user_id),
rq_score: rqScore,
iq_score: numOrNull(body.iq_score),
eq_score: numOrNull(body.eq_score),
sq_score: numOrNull(body.sq_score),
profession: str(body.profession),
formula_version: str(body.formula_version),
formula_id: str(body.formula_id),
calculated_at: str(body.calculated_at),
quotients: isRecord(body.quotients) ? body.quotients : {},
breakdown: isRecord(body.breakdown) ? body.breakdown : {},
ledger_seq_from: numOrNull(body.ledger_seq_from),
ledger_seq_to: numOrNull(body.ledger_seq_to),
};
}
/**
* Fetch the latest computed RQ Score for a user from qscore_service.
*
* Takes a RAW growqr userId (matching the local-DB readers) and applies
* {@link toQscoreUserId} internally before calling the service, so all callers
* share one identity contract.
*
* Returns null when the service is unreachable, returns a non-success status,
* or reports no score has been computed yet (404). Never throws.
*/
export async function getQscoreFromService(
userId: string,
orgId: string = DEFAULT_QSCORE_ORG_ID,
timeoutMs: number = QSCORE_PROXY_TIMEOUT_MS,
): Promise<QscoreProxyResult | null> {
const result = await readQscoreFromService(userId, orgId, timeoutMs);
return result.status === "ready" ? result.data : null;
}
/** Status-bearing score read for callers that must not collapse absence and outage. */
export async function readQscoreFromService(
userId: string,
orgId: string = DEFAULT_QSCORE_ORG_ID,
timeoutMs: number = QSCORE_PROXY_TIMEOUT_MS,
): Promise<QscoreReadResult<QscoreProxyResult>> {
const qscoreUserId = toQscoreUserId(userId);
const path = `/v1/qscore/${encodeURIComponent(qscoreUserId)}?org_id=${encodeURIComponent(orgId)}`;
const url = `${config.qscoreServiceUrl.replace(/\/$/, "")}${path}`;
try {
const res = await fetch(url, {
headers: {
"content-type": "application/json",
...(config.a2aAllowedKey
? { authorization: `Bearer ${config.a2aAllowedKey}` }
: {}),
},
signal: AbortSignal.timeout(timeoutMs),
});
// A missing run is distinct from an unavailable service for status-aware callers.
if (res.status === 404) return { status: "empty", reason: "not_found" };
if (!res.ok) {
log.warn(
{ status: res.status, userId, orgId },
"qscore_service returned non-success status",
);
return { status: "unavailable", reason: `http_${res.status}` };
}
const body = await res.json();
try {
return { status: "ready", data: parseResult(body) };
} catch (err) {
log.warn({ err, userId, orgId }, "qscore_service returned invalid response");
return { status: "unavailable", reason: "invalid_response" };
}
} catch (err) {
log.warn({ err, userId, orgId }, "qscore_service proxy call failed");
return { status: "unavailable", reason: "request_failed" };
}
}
/** Fetch daily RQ Score history while preserving empty vs unavailable. */
export async function readQscoreHistoryFromService(
userId: string,
orgId: string = DEFAULT_QSCORE_ORG_ID,
points = 10,
timeoutMs: number = QSCORE_PROXY_TIMEOUT_MS,
): Promise<QscoreReadResult<QscoreHistoryPoint[]>> {
const qscoreUserId = toQscoreUserId(userId);
const query = new URLSearchParams({ org_id: orgId, points: String(points) });
const url = `${config.qscoreServiceUrl.replace(/\/$/, "")}/v1/qscore/${encodeURIComponent(qscoreUserId)}/history?${query}`;
try {
const res = await fetch(url, {
headers: {
"content-type": "application/json",
...(config.a2aAllowedKey ? { authorization: `Bearer ${config.a2aAllowedKey}` } : {}),
},
signal: AbortSignal.timeout(timeoutMs),
});
if (res.status === 404) return { status: "empty", reason: "not_found" };
if (!res.ok) {
log.warn({ status: res.status, userId, orgId }, "qscore_service history returned non-success status");
return { status: "unavailable", reason: `http_${res.status}` };
}
const body: unknown = await res.json();
if (!isRecord(body) || !Array.isArray(body.points)) {
return { status: "unavailable", reason: "invalid_response" };
}
const history = body.points.flatMap((value): QscoreHistoryPoint[] => {
if (!isRecord(value) || typeof value.rq_score !== "number" || !Number.isFinite(value.rq_score) || typeof value.date !== "string") return [];
return [{ rq_score: value.rq_score, date: value.date }];
});
if (history.length !== body.points.length) return { status: "unavailable", reason: "invalid_response" };
return { status: "ready", data: history };
} catch (err) {
log.warn({ err, userId, orgId }, "qscore_service history proxy call failed");
return { status: "unavailable", reason: "request_failed" };
}
}
/** Fetch QScore's real latest evidence ledger; an unavailable service is null. */
export async function getQscoreLatestSignalsFromService(
userId: string,
orgId: string = DEFAULT_QSCORE_ORG_ID,
timeoutMs: number = QSCORE_PROXY_TIMEOUT_MS,
): Promise<QscoreLatestSignal[] | null> {
const qscoreUserId = toQscoreUserId(userId);
const url = `${config.qscoreServiceUrl.replace(/\/$/, "")}/v1/signals/${encodeURIComponent(qscoreUserId)}?org_id=${encodeURIComponent(orgId)}`;
try {
const res = await fetch(url, {
headers: {
"content-type": "application/json",
...(config.a2aAllowedKey ? { authorization: `Bearer ${config.a2aAllowedKey}` } : {}),
},
signal: AbortSignal.timeout(timeoutMs),
});
if (res.status === 404) return [];
if (!res.ok) {
log.warn({ status: res.status, userId, orgId }, "qscore_service latest signals returned non-success status");
return null;
}
const body: unknown = await res.json();
if (!isRecord(body) || !Array.isArray(body.signals)) throw new Error("qscore_service latest signals response is invalid");
return body.signals.flatMap((value): QscoreLatestSignal[] => {
if (!isRecord(value) || typeof value.signal_id !== "string" || typeof value.score !== "number") return [];
return [{
signal_id: value.signal_id,
source: typeof value.source === "string" ? value.source : null,
present: typeof value.present === "boolean" ? value.present : true,
score: value.score,
raw: value.raw,
last_occurred_at: typeof value.last_occurred_at === "string" ? value.last_occurred_at : null,
last_seen_at: typeof value.last_seen_at === "string" ? value.last_seen_at : "",
formula_version: typeof value.formula_version === "string" ? value.formula_version : "",
}];
});
} catch (err) {
log.warn({ err, userId, orgId }, "qscore_service latest signals proxy call failed");
return null;
}
}

View File

@@ -1,6 +1,7 @@
import { config } from "../config.js";
import { createHash } from "node:crypto";
import { buildServiceSessionPath } from "./service-registry.js";
import { getQscoreFromService, toQscoreUserId } from "./qscore-proxy.js";
// Lightweight agent reference (works with both old AgentProfile and new SubAgentModule).
export type ServiceAgentRef = {
@@ -126,6 +127,7 @@ async function runInterviewService(ctx: ServiceAgentContext): Promise<ServiceAge
}
async function runRoleplayService(ctx: ServiceAgentContext): Promise<ServiceAgentResult> {
const currentQscore = await getQscoreFromService(ctx.userId, ctx.orgId ?? "growqr");
const payload = {
user_id: ctx.userId,
org_id: ctx.orgId ?? "growqr",
@@ -138,16 +140,7 @@ async function runRoleplayService(ctx: ServiceAgentContext): Promise<ServiceAgen
difficulty: "medium",
source: "growqr-workflow",
},
qscore: {
q_score: 78,
profession: "student",
formula_version: "workflow-demo",
quotients: {
CQm: { score: 72, active: true },
XQ: { score: 80, active: true },
VQ: { score: 76, active: true },
},
},
...(currentQscore ? { qscore: currentQscore } : {}),
};
const detail = await serviceJson<Record<string, unknown>>(
config.roleplayServiceUrl,
@@ -171,57 +164,9 @@ async function runRoleplayService(ctx: ServiceAgentContext): Promise<ServiceAgen
async function runQScoreService(ctx: ServiceAgentContext): Promise<ServiceAgentResult> {
const orgId = ctx.orgId ?? "growqr";
const qscoreUserId = stableUuid(ctx.userId);
const signals = [
{
signal_id: "resume.uploaded",
present: true,
score: 82,
raw: { source: "resume-agent", workflow_goal: ctx.goal },
},
{
signal_id: "resume.ats_compatibility",
present: true,
score: 76,
raw: { source: "resume-agent", workflow_goal: ctx.goal },
},
{
signal_id: "engagement.features_used",
present: true,
score: 88,
raw: { source: "grow-agent", workflow_goal: ctx.goal },
},
{
signal_id: "goals.goal_clarity",
present: true,
score: 90,
raw: { source: "grow-agent", workflow_goal: ctx.goal },
},
];
const qscoreUserId = toQscoreUserId(ctx.userId);
// Try to ingest signals (non-critical — may fail if QScore worker is down)
let ingest: Record<string, unknown> | undefined;
try {
ingest = await serviceJson<Record<string, unknown>>(
config.qscoreServiceUrl,
"/v1/signals/ingest",
{
method: "POST",
body: JSON.stringify({
org_id: orgId,
user_id: qscoreUserId,
profession: "student",
source: "growqr-workflow",
signals,
}),
},
);
} catch (err) {
// Signal ingestion is optional — compute may still work with cached signals
ingest = { status: "skipped", reason: err instanceof Error ? err.message : String(err) };
}
// Try to compute Q-Score
// Try to compute RQ Score
let compute: Record<string, unknown> | undefined;
try {
compute = await serviceJson<Record<string, unknown>>(
@@ -238,10 +183,8 @@ async function runQScoreService(ctx: ServiceAgentContext): Promise<ServiceAgentR
} catch (err) {
return {
status: "unavailable",
summary: `Q Score compute failed; no score was generated: ${err instanceof Error ? err.message : String(err)}`,
summary: `RQ Score compute failed; no score was generated: ${err instanceof Error ? err.message : String(err)}`,
detail: {
ingest,
signal_scores: signals.map(s => ({ id: s.signal_id, score: s.score })),
compute_error: err instanceof Error ? err.message : String(err),
},
};
@@ -249,8 +192,8 @@ async function runQScoreService(ctx: ServiceAgentContext): Promise<ServiceAgentR
return {
status: "ok",
summary: `Q Score computed Q Score ${compute.q_score ?? "(unknown)"} for ${ctx.goal}.`,
detail: { ingest, compute, qscore_user_id: qscoreUserId },
summary: `RQ Score computed ${compute.rq_score ?? "(unknown)"} for ${ctx.goal}.`,
detail: { compute, qscore_user_id: qscoreUserId },
};
}
@@ -370,7 +313,7 @@ export async function runServiceAgentProbe(
case "qscore-service":
return ctx
? await runQScoreService(ctx)
: healthCheck(config.qscoreServiceUrl, "Q Score Agent / qscore-service");
: healthCheck(config.qscoreServiceUrl, "RQ Score Agent / qscore-service");
case "resume-service":
return ctx
? await runResumeTailor(ctx)

View File

@@ -96,6 +96,9 @@ type CuratorRouteInput = {
missionId?: string;
stageId?: string;
taskId?: string;
taskTitle?: string;
taskSubtitle?: string;
taskType?: string;
targetRole?: string;
durationMinutes?: number;
difficulty?: string;
@@ -140,6 +143,7 @@ const allowedServiceIds = new Set<ServiceId>([
"courses-service",
"resume-service",
"qscore-service",
"social-branding-service",
]);
const serviceRegistry: ServiceRecord[] = [
@@ -177,37 +181,18 @@ const serviceRegistry: ServiceRecord[] = [
frontend: {
baseUrl: frontendBaseUrl,
pages: {
discovery: {
service: {
path: "/agents/interview",
queryParams: ["fresh"],
usage: "Entry screen for role selection and resume of in-progress interview work.",
},
setup: {
path: "/agents/interview/setup",
queryParams: ["role", "type", "from_assignment", "source", "missionInstanceId", "missionId", "stageId", "curatorTaskId"],
usage: "Collects interview role, type, duration, persona, media mode, and personalization consent.",
},
preview: {
path: "/agents/interview/preview",
queryParams: ["role", "type", "persona", "duration", "difficulty", "media", "vip", "from_assignment", "personalize", "source", "missionInstanceId", "missionId", "stageId", "curatorTaskId"],
usage: "Curator default handoff. The page configures the session and opens the launch overlay.",
},
feedback: {
path: "/agents/interview/feedback",
queryParams: ["sessionId", "source", "missionInstanceId", "missionId", "stageId", "curatorTaskId"],
usage: "Opens feedback/review for a completed or processing session.",
},
session: {
path: "/agents/interview/preview",
queryParams: ["session_id", "goal", "role", "type"],
usage: "Legacy service-session launcher used by service agent results.",
aliases: ["discovery", "setup", "preview", "feedback", "session"],
queryParams: ["view", "phase", "sessionId", "role", "type", "persona", "duration", "difficulty", "media", "vip", "personalize", "source", "missionInstanceId", "missionId", "stageId", "curatorTaskId", "taskTitle", "taskSubtitle", "taskType"],
usage: "Single nuqs-driven interview surface for configuration, live practice, plan review, and feedback.",
},
},
usage: "Prefer preview for curator links and setup for mission CTAs that still need user choices.",
usage: "All interview UI states use /agents/interview with typed query state; no child UI routes exist.",
},
curator: {
defaultPage: "preview",
defaultActionLabel: "Open interview preview",
defaultPage: "service",
defaultActionLabel: "Open interview",
actionLabels: {
start: "Start mock",
review: "Review interview",
@@ -220,12 +205,12 @@ const serviceRegistry: ServiceRecord[] = [
media: "video",
},
toolName: "prepare_interview_preview",
completionEvents: ["interview.session.configured", "interview.session.completed", "interview.feedback.generated"],
completionEvents: ["interview.session.completed", "interview.feedback.generated"],
qscoreSignals: ["communication.interview", "proof.story_bank", "readiness.practice"],
usage: "Include missionInstanceId, missionId, stageId, curatorTaskId, role, and media when building stateful handoffs.",
},
usageDocs: [
"Call buildServiceLink('interview-service', 'preview', state) for curator handoffs.",
"Call buildServiceLink('interview-service', 'service', state) for curator handoffs.",
"Call getServiceEndpoint('interview-service', 'configure') for backend contract metadata.",
],
eventContract: {
@@ -237,7 +222,7 @@ const serviceRegistry: ServiceRecord[] = [
abandonmentEvents: ["service.abandoned", "interview.session.abandoned"],
qscoreSignalIds: ["interview.communication_score", "interview.confidence_score", "readiness.practice"],
analyticsDimensions: ["interview_type", "target_role", "difficulty", "duration_minutes", "overall_score"],
requiredCorrelationFields: ["taskId"],
requiredCorrelationFields: ["task_id"],
handoffParams: ["curatorTaskId", "missionInstanceId", "missionId", "stageId"],
actionKind: "active_user_action",
},
@@ -276,37 +261,18 @@ const serviceRegistry: ServiceRecord[] = [
frontend: {
baseUrl: frontendBaseUrl,
pages: {
discovery: {
service: {
path: "/agents/roleplay",
queryParams: ["fresh"],
usage: "Entry screen for scenario discovery and resume of in-progress roleplay work.",
},
setup: {
path: "/agents/roleplay/setup",
queryParams: ["scenario", "scenario_text", "scenario_name", "from_assignment", "source", "missionInstanceId", "missionId", "stageId", "curatorTaskId"],
usage: "Collects roleplay scenario details and stores configure parameters for the builder.",
},
builder: {
path: "/agents/roleplay/builder",
queryParams: ["sessionId", "source", "missionInstanceId", "missionId", "stageId", "curatorTaskId", "role", "persona", "duration", "mode", "brief", "vip", "from_assignment_id"],
usage: "Curator default handoff for generating or resuming a roleplay plan.",
},
feedback: {
path: "/agents/roleplay/feedback",
queryParams: ["sessionId", "source", "missionInstanceId", "missionId", "stageId", "curatorTaskId"],
usage: "Opens feedback/review for a completed or processing session.",
},
session: {
path: "/agents/roleplay/builder",
queryParams: ["session_id", "goal", "role", "type"],
usage: "Legacy service-session launcher used by service agent results.",
aliases: ["discovery", "setup", "builder", "feedback", "session"],
queryParams: ["view", "phase", "sessionId", "scenario", "scenarioName", "brief", "role", "persona", "duration", "difficulty", "mode", "vip", "source", "missionInstanceId", "missionId", "stageId", "curatorTaskId", "taskTitle", "taskSubtitle", "taskType"],
usage: "Single nuqs-driven roleplay surface for configuration, scenario review, live practice, and feedback.",
},
},
usage: "Prefer builder for curator links and setup for mission CTAs that still need user choices.",
usage: "All roleplay UI states use /agents/roleplay with typed query state; no child UI routes exist.",
},
curator: {
defaultPage: "builder",
defaultActionLabel: "Open roleplay preview",
defaultPage: "service",
defaultActionLabel: "Open roleplay",
actionLabels: {
start: "Run drill",
review: "Review roleplay",
@@ -318,12 +284,12 @@ const serviceRegistry: ServiceRecord[] = [
mode: "video",
},
toolName: "prepare_roleplay_preview",
completionEvents: ["roleplay.scenario.configured", "roleplay.scenario.completed", "roleplay.feedback.generated"],
completionEvents: ["roleplay.scenario.completed", "roleplay.feedback.generated"],
qscoreSignals: ["communication.roleplay", "networking.conversation", "readiness.practice"],
usage: "Include role, brief, mission state, and curatorTaskId when building stateful handoffs.",
},
usageDocs: [
"Call buildServiceLink('roleplay-service', 'builder', state) for curator handoffs.",
"Call buildServiceLink('roleplay-service', 'service', state) for curator handoffs.",
"Call getServiceEndpoint('roleplay-service', 'configure') for backend contract metadata.",
],
eventContract: {
@@ -335,7 +301,7 @@ const serviceRegistry: ServiceRecord[] = [
abandonmentEvents: ["service.abandoned", "roleplay.scenario.abandoned"],
qscoreSignalIds: ["roleplay.negotiation_confidence", "communication.roleplay", "readiness.practice"],
analyticsDimensions: ["roleplay_type", "target_role", "difficulty", "duration_minutes", "overall_score"],
requiredCorrelationFields: ["taskId"],
requiredCorrelationFields: ["task_id"],
handoffParams: ["curatorTaskId", "missionInstanceId", "missionId", "stageId"],
actionKind: "active_user_action",
},
@@ -374,7 +340,7 @@ const serviceRegistry: ServiceRecord[] = [
pages: {
workspace: {
path: "/agents/resume",
queryParams: ["tab", "section", "source", "missionInstanceId", "missionId", "stageId", "curatorTaskId"],
queryParams: ["view", "phase", "tab", "section", "role", "source", "missionInstanceId", "missionId", "stageId", "curatorTaskId", "taskTitle", "taskSubtitle", "taskType"],
usage: "Resume hub. Use tab=resumes by default and section to deep-link editor panels.",
},
editor: {
@@ -406,7 +372,7 @@ const serviceRegistry: ServiceRecord[] = [
tab: "resumes",
},
toolName: "prepare_resume_upload",
completionEvents: ["resume.analysis.completed", "resume.parsed", "resume.updated", "resume.exported"],
completionEvents: ["resume.uploaded", "resume.parsed", "resume.analysis.completed", "resume.updated", "resume.exported"],
qscoreSignals: ["proof.resume", "readiness.ats", "profile.skills"],
usage: "Include mission state and optional section when linking into resume work.",
},
@@ -419,11 +385,11 @@ const serviceRegistry: ServiceRecord[] = [
openEvents: ["task.opened"],
startedEvents: ["service.started", "resume.uploaded"],
configuredEvents: ["service.configured", "resume.parsed"],
completionEvents: ["service.completed", "resume.analysis.completed", "resume.updated", "resume.exported"],
completionEvents: ["service.completed", "resume.uploaded", "resume.parsed", "resume.analysis.completed", "resume.updated", "resume.exported"],
abandonmentEvents: ["service.abandoned"],
qscoreSignalIds: ["resume.ats_score", "resume.profile_completeness", "proof.resume"],
analyticsDimensions: ["resume_id", "version_id", "ats_score", "role_fit_score", "updated_sections"],
requiredCorrelationFields: ["taskId"],
requiredCorrelationFields: ["task_id"],
handoffParams: ["curatorTaskId", "missionInstanceId", "missionId", "stageId"],
actionKind: "active_user_action",
},
@@ -504,7 +470,7 @@ const serviceRegistry: ServiceRecord[] = [
abandonmentEvents: ["service.abandoned"],
qscoreSignalIds: ["proof.cover_letter", "readiness.application"],
analyticsDimensions: ["cover_letter_id", "role_fit_score", "export_format"],
requiredCorrelationFields: ["taskId"],
requiredCorrelationFields: ["task_id"],
handoffParams: ["curatorTaskId", "missionInstanceId", "missionId", "stageId"],
actionKind: "active_user_action",
},
@@ -535,7 +501,7 @@ const serviceRegistry: ServiceRecord[] = [
pages: {
catalog: {
path: "/agents/courses",
queryParams: ["source", "missionInstanceId", "missionId", "stageId", "curatorTaskId"],
queryParams: ["view", "phase", "role", "source", "missionInstanceId", "missionId", "stageId", "curatorTaskId", "taskTitle", "taskSubtitle", "taskType"],
usage: "Course catalog and learning entry point.",
},
assigned: {
@@ -558,8 +524,8 @@ const serviceRegistry: ServiceRecord[] = [
start: "Start course",
},
toolName: "prepare_course_handoff",
completionEvents: ["course.generated", "course.started", "course.lesson.completed", "course.completed", "course.weakness.applied"],
qscoreSignals: ["skills.learning", "readiness.course_progress"],
completionEvents: ["course.generated", "course.started", "course.progress.recorded", "course.completed"],
qscoreSignals: ["courses.started", "courses.completed", "courses.completion_rate"],
usage: "Use for skill-gap tasks that should become learning work.",
},
usageDocs: ["Call buildServiceLink('courses-service', 'catalog', state) for course handoffs."],
@@ -568,11 +534,11 @@ const serviceRegistry: ServiceRecord[] = [
openEvents: ["task.opened"],
startedEvents: ["service.started", "course.started"],
configuredEvents: ["course.generated"],
completionEvents: ["service.completed", "course.lesson.completed", "course.completed", "course.weakness.applied"],
completionEvents: ["service.completed", "course.generated", "course.started", "course.progress.recorded", "course.completed"],
abandonmentEvents: ["service.abandoned"],
qscoreSignalIds: ["course.skill_gap_closed", "skills.learning", "readiness.course_progress"],
qscoreSignalIds: ["courses.started", "courses.completed", "courses.completion_rate", "courses.difficulty", "courses.pathway_relevance"],
analyticsDimensions: ["course_id", "lesson_id", "progress_percentage", "weakness_tags"],
requiredCorrelationFields: ["taskId"],
requiredCorrelationFields: ["task_id"],
handoffParams: ["curatorTaskId", "missionInstanceId", "missionId", "stageId"],
actionKind: "active_user_action",
},
@@ -617,7 +583,7 @@ const serviceRegistry: ServiceRecord[] = [
review: "Review assessment",
},
toolName: "prepare_assessment_handoff",
completionEvents: ["assessment.started", "assessment.completed"],
completionEvents: ["assessment.completed"],
qscoreSignals: ["skills.assessment", "readiness.measurement"],
usage: "Use when a task needs a scoreable assessment rather than practice.",
},
@@ -631,7 +597,7 @@ const serviceRegistry: ServiceRecord[] = [
abandonmentEvents: ["service.abandoned"],
qscoreSignalIds: ["skills.assessment", "readiness.measurement"],
analyticsDimensions: ["assessment_id", "skill_area", "score", "weakness_tags"],
requiredCorrelationFields: ["taskId"],
requiredCorrelationFields: ["task_id"],
handoffParams: ["curatorTaskId", "missionInstanceId", "missionId", "stageId"],
actionKind: "measurement_review",
},
@@ -680,15 +646,15 @@ const serviceRegistry: ServiceRecord[] = [
},
toolName: "prepare_matchmaking_handoff",
completionEvents: [
"matchmaking.matches.generated",
"matchmaking.feed.viewed",
"matchmaking.match.viewed",
"matchmaking.match.saved",
"matchmaking.match.dismissed",
"matchmaking.application.started",
"matchmaking.match.saved",
"matchmaking.matches.reviewed",
"matchmaking.match.applied",
"matchmaking.application.completed",
],
qscoreSignals: ["market.matches", "networking.opportunities"],
qscoreSignals: ["matching.jobs_viewed", "matching.applications_submitted", "matching.match_rate"],
usage: "Use for immediate opportunity matching or mentor/network suggestions.",
},
usageDocs: [
@@ -702,23 +668,25 @@ const serviceRegistry: ServiceRecord[] = [
configuredEvents: [],
completionEvents: [
"service.completed",
"matchmaking.matches.generated",
"matchmaking.feed.viewed",
"matchmaking.match.viewed",
"matchmaking.application.started",
"matchmaking.match.saved",
"matchmaking.match.dismissed",
"matchmaking.matches.reviewed",
"matchmaking.match.applied",
"matchmaking.application.completed",
],
abandonmentEvents: ["service.abandoned"],
qscoreSignalIds: ["matchmaking.role_fit", "market.matches", "networking.opportunities"],
qscoreSignalIds: ["matching.jobs_viewed", "matching.applications_submitted", "matching.application_quality", "matching.match_rate"],
analyticsDimensions: ["match_count", "role_ids", "role_fit", "saved_count", "dismissed_reason"],
requiredCorrelationFields: ["taskId"],
requiredCorrelationFields: ["task_id"],
handoffParams: ["curatorTaskId", "missionInstanceId", "missionId", "stageId"],
actionKind: "active_user_action",
},
},
{
id: "qscore-service",
label: "QScore",
label: "RQ Score",
description: "Analyze readiness signals and expose score projections.",
category: "measurement",
enabled: Boolean(config.qscoreServiceUrl),
@@ -731,11 +699,11 @@ const serviceRegistry: ServiceRecord[] = [
healthPath: "/health",
endpoints: {
health: endpoint("GET", "/health", "Readiness probe.", "Check service availability."),
currentGateway: endpoint("GET", "/services/qscore/current", "Backend-projected current score and latest signals.", "Dashboard QScore panel."),
currentGateway: endpoint("GET", "/services/qscore/current", "Backend-projected current score and latest signals.", "Dashboard RQ Score panel."),
ingest: endpoint("POST", "/api/v1/signals", "Ingests score signals when available.", "Service-to-service signal updates."),
compute: endpoint("POST", "/api/v1/score/compute", "Computes or refreshes score when available.", "Score recalculation."),
},
usage: "Use backend gateway /services/qscore/current for dashboard-safe reads; direct service APIs vary by QScore deployment.",
usage: "Use backend gateway /services/qscore/current for dashboard-safe reads; direct service APIs vary by RQ Score deployment.",
},
frontend: {
baseUrl: frontendBaseUrl,
@@ -743,29 +711,29 @@ const serviceRegistry: ServiceRecord[] = [
dashboard: {
path: "/agents/qscore",
queryParams: ["source", "missionInstanceId", "missionId", "stageId", "curatorTaskId"],
usage: "Dedicated Q Score service page with live readiness signals.",
usage: "Dedicated RQ Score service page with live readiness signals.",
},
},
usage: "Open the dedicated Q Score service page for score review.",
usage: "Open the dedicated RQ Score service page for score review.",
},
curator: {
defaultPage: "dashboard",
defaultActionLabel: "Review QScore",
defaultActionLabel: "Review RQ Score",
actionLabels: {
review: "Review QScore",
review: "Review RQ Score",
},
toolName: "prepare_qscore_review",
completionEvents: ["qscore.baseline.created", "qscore.review.opened", "qscore.weak_driver.reviewed", "qscore.signal.projected", "qscore.updated"],
completionEvents: ["qscore.review.opened", "qscore.weak_driver.reviewed", "qscore.signal.projected", "qscore.updated"],
qscoreSignals: ["qscore.updated", "qscore.signal.projected"],
usage: "Use for measurement and projected readiness review tasks.",
},
usageDocs: ["Call buildServiceLink('qscore-service', 'dashboard', state) for QScore handoffs."],
usageDocs: ["Call buildServiceLink('qscore-service', 'dashboard', state) for RQ Score handoffs."],
eventContract: {
canonicalServiceId: "qscore",
openEvents: ["qscore.review.opened"],
startedEvents: ["service.started"],
configuredEvents: ["qscore.baseline.created"],
completionEvents: ["qscore.signal.projected", "qscore.updated", "qscore.weak_driver.reviewed"],
completionEvents: ["qscore.review.opened", "qscore.weak_driver.reviewed", "qscore.signal.projected", "qscore.updated"],
abandonmentEvents: [],
qscoreSignalIds: ["qscore.updated", "qscore.signal.projected"],
analyticsDimensions: ["score_before", "score_after", "signal_id", "delta", "trend_label"],
@@ -786,9 +754,9 @@ const serviceRegistry: ServiceRecord[] = [
backend: {
baseUrl: config.socialBrandingServiceUrl,
publicUrl: config.socialBrandingPublicUrl,
healthPath: "/health",
healthPath: "/healthz",
endpoints: {
health: endpoint("GET", "/health", "Readiness probe.", "Check service availability."),
health: endpoint("GET", "/healthz", "Readiness probe.", "Check service availability."),
state: endpoint("GET", "/api/state/:clerkId", "Reads social/profile state.", "Hydrate personalization context."),
profile: endpoint("GET", "/api/v1/profile", "Reads profile data when available.", "Social profile page."),
linkedin: endpoint("POST", "/api/v1/linkedin", "Connects or imports LinkedIn data when available.", "LinkedIn onboarding."),
@@ -801,7 +769,7 @@ const serviceRegistry: ServiceRecord[] = [
pages: {
profile: {
path: "/agents/social-branding",
queryParams: ["source", "missionInstanceId", "missionId", "stageId", "curatorTaskId"],
queryParams: ["view", "phase", "role", "source", "missionInstanceId", "missionId", "stageId", "curatorTaskId", "taskTitle", "taskSubtitle", "taskType"],
usage: "Social/profile improvement page.",
},
},
@@ -815,7 +783,7 @@ const serviceRegistry: ServiceRecord[] = [
review: "Review profile",
},
toolName: "prepare_social_branding_handoff",
completionEvents: ["brand.post.drafted", "brand.post.edited", "brand.post.exported", "brand.profile.updated", "brand.content.published"],
completionEvents: ["brand.account.connected", "brand.post.drafted", "brand.profile.updated", "brand.post.exported", "brand.content.published"],
qscoreSignals: ["profile.linkedin", "proof.visibility", "networking.brand"],
usage: "Use for profile visibility, LinkedIn cleanup, and social proof tasks.",
},
@@ -825,11 +793,11 @@ const serviceRegistry: ServiceRecord[] = [
openEvents: ["task.opened"],
startedEvents: ["service.started"],
configuredEvents: ["brand.post.drafted"],
completionEvents: ["service.completed", "brand.post.edited", "brand.post.exported", "brand.profile.updated", "brand.content.published"],
completionEvents: ["service.completed", "brand.account.connected", "brand.post.drafted", "brand.profile.updated", "brand.post.exported", "brand.content.published"],
abandonmentEvents: ["service.abandoned"],
qscoreSignalIds: ["brand.visibility_signal", "profile.linkedin", "proof.visibility"],
analyticsDimensions: ["content_type", "channel", "draft_id", "topic", "profile_field_updated"],
requiredCorrelationFields: ["taskId"],
requiredCorrelationFields: ["task_id"],
handoffParams: ["curatorTaskId", "missionInstanceId", "missionId", "stageId"],
actionKind: "active_user_action",
},
@@ -851,6 +819,11 @@ export function listServices() {
return serviceRegistry.filter((service) => allowedServiceIds.has(service.id));
}
function getServiceRecord(serviceId?: string | null) {
const normalized = normalizeServiceId(serviceId);
return normalized ? serviceRegistry.find((service) => service.id === normalized) : undefined;
}
export function getService(serviceId?: string | null) {
const normalized = normalizeServiceId(serviceId);
return normalized ? listServices().find((service) => service.id === normalized) : undefined;
@@ -972,6 +945,9 @@ function unavailableServiceRoute(input: CuratorRouteInput) {
return appendQuery("/agents/service-unavailable", {
...curatorBaseParams(input),
serviceId: input.serviceId,
taskTitle: input.taskTitle,
taskSubtitle: input.taskSubtitle,
taskType: input.taskType,
});
}
@@ -982,13 +958,20 @@ export function buildCuratorServiceRoute(input: CuratorRouteInput) {
const state: QueryState = {
...curatorBaseParams(input),
};
if (input.taskTitle) state.taskTitle = input.taskTitle;
if (input.taskSubtitle) state.taskSubtitle = input.taskSubtitle;
if (input.taskType) state.taskType = input.taskType;
if (service.id === "interview-service") {
state.role = input.targetRole?.trim() || "Product Manager";
state.type = "behavioral";
const taskText = `${input.taskTitle ?? ""} ${input.taskSubtitle ?? ""}`.toLowerCase();
const isIntroductionTask = /(?:60|90)[ -]?second|\bintroduction\b|\bpitch\b|\bpresentation\b/.test(taskText);
// Curator already resolves this from onboarding/user context. Never invent a
// role here: the task title/subtitle carry the exercise intent separately.
state.role = isIntroductionTask ? undefined : input.targetRole?.trim();
state.type = isIntroductionTask ? "warm_up" : "behavioral";
state.persona = input.personaId ?? "payal";
state.duration = input.durationMinutes ?? 5;
state.difficulty = input.difficulty ?? "medium";
state.difficulty = input.difficulty ?? (isIntroductionTask ? "easy" : "medium");
state.media = input.requestedMode ?? "video";
}
@@ -1000,13 +983,25 @@ export function buildCuratorServiceRoute(input: CuratorRouteInput) {
state.brief = input.roleplayBrief;
}
if (service.id === "social-branding-service") {
state.agent = "nova";
}
if (
service.id === "resume-service" ||
service.id === "courses-service" ||
service.id === "social-branding-service"
) {
state.role = input.targetRole?.trim();
}
return buildServiceLink(service.id, service.curator.defaultPage, state)
?? appendQuery("/missions/active", { missionInstanceId: input.missionInstanceId });
}
const unavailableServiceLabels: Record<string, string> = {
"social-branding-service": "Social Branding",
"qscore-service": "Q Score",
"qscore-service": "RQ Score",
"assessment-service": "Assessment",
"expert-service": "Expert",
"events-service": "Events",
@@ -1021,7 +1016,7 @@ export function getServiceToolName(serviceId?: string) {
}
export function getCompletionEvents(serviceId?: string) {
return getService(serviceId)?.curator.completionEvents ?? ["curator.task.completed"];
return getServiceRecord(serviceId)?.curator.completionEvents ?? ["curator.task.completed"];
}
export const getServiceCompletionEvents = getCompletionEvents;

View File

@@ -63,18 +63,32 @@ async function backendMirrorProfile(userId: string): Promise<UserProfileContext>
};
}
async function fetchUserServiceJson(path: string, headers: Headers): Promise<Record<string, unknown> | null> {
async function fetchUserServiceJson(path: string, headers: Headers, strict = false): Promise<Record<string, unknown> | null> {
const target = new URL(path, config.userServiceUrl.replace(/\/$/, ""));
const res = await fetch(target, { method: "GET", headers });
if (!res.ok) return null;
if (!res.ok) {
if (strict) {
const text = await res.text().catch(() => "");
throw new Error(`user-service A2A state fetch failed: ${res.status} ${text}`);
}
return null;
}
const json = await res.json().catch(() => null);
return isRecord(json) ? json : null;
if (!isRecord(json)) {
if (strict) throw new Error("user-service A2A state fetch failed: invalid JSON");
return null;
}
return json;
}
async function a2aUserState(userId: string): Promise<Record<string, unknown> | null> {
export async function fetchA2AUserState(userId: string, options: { strict?: boolean } = {}): Promise<Record<string, unknown> | null> {
const headers = new Headers();
headers.set("authorization", `Bearer ${config.a2aAllowedKey}`);
return fetchUserServiceJson(`/api/state/${encodeURIComponent(userId)}`, headers);
return fetchUserServiceJson(`/api/state/${encodeURIComponent(userId)}`, headers, options.strict === true);
}
export async function fetchA2AUserStateStrict(userId: string): Promise<Record<string, unknown>> {
return (await fetchA2AUserState(userId, { strict: true }))!;
}
async function clerkUserProfile(req: Request): Promise<Record<string, unknown> | null> {
@@ -93,7 +107,7 @@ export async function getRequestUserProfile(req: Request, userId: string): Promi
if (profile) return mergeProfile(base, profile, userId);
}
const state = await a2aUserState(userId);
const state = await fetchA2AUserState(userId);
return mergeProfile(base, state, userId);
}

View File

@@ -0,0 +1,65 @@
import { config } from "../config.js";
import { fetchA2AUserStateStrict } from "./user-context.js";
/**
* Build the absolute user-service URL for a given sub-path.
* Pure — no IO. Exported so callers (and tests) can resolve targets without
* duplicating the base-URL/trim logic.
*/
export function userServiceTarget(path: string, search = ""): URL {
return new URL(`/api/v1/users${path}${search}`, config.userServiceUrl.replace(/\/$/, ""));
}
/** Fetch the canonical profile with an explicit GET /me using the inbound Clerk JWT. */
export async function fetchUserProfile(req: Request): Promise<Record<string, unknown>> {
const target = userServiceTarget("/me", new URL(req.url).search);
const headers = new Headers(req.headers);
headers.delete("host");
headers.delete("cookie");
headers.delete("content-type");
headers.delete("content-length");
headers.delete("transfer-encoding");
headers.delete("x-growqr-user");
const res = await fetch(target, { method: "GET", headers });
if (!res.ok) {
const text = await res.text().catch(() => "");
throw new Error(`user-service /me fetch failed: ${res.status} ${text}`);
}
return res.json() as Promise<Record<string, unknown>>;
}
/** Read onboarding through user-service A2A for backend service-auth calls. */
export async function fetchOnboardingReadProfile(req: Request, userId: string): Promise<Record<string, unknown>> {
const token = (req.headers.get("authorization") ?? "").replace(/^Bearer\s+/i, "").trim();
const trusted = token === config.serviceToken || (config.nodeEnv !== "production" && token === config.a2aAllowedKey);
if (!trusted) return fetchUserProfile(req);
if (req.headers.get("x-growqr-user") !== userId) {
throw new Error("trusted user-service read requires matching x-growqr-user");
}
return fetchA2AUserStateStrict(userId);
}
/**
* Build a synthetic PATCH /me request carrying only `{ preferences }` so the
* backend can persist the merged onboarding blob without disturbing other
* profile fields. Strips host/cookie like the other proxy helpers.
*
* The body differs from the inbound request, so hop-by-hop and length headers
* copied from the inbound request MUST be dropped: a stale `content-length`
* (or `transfer-encoding`) describes the ORIGINAL body, not the synthetic one,
* and undici closes the socket mid-write ("other side closed") when the
* declared length disagrees with the bytes sent. The Request constructor does
* NOT recompute content-length when an explicit body is provided alongside
* forwarded headers, so these deletes are load-bearing.
*/
export function patchPreferencesRequest(req: Request, preferences: Record<string, unknown>): Request {
const target = userServiceTarget("/me");
const headers = new Headers(req.headers);
headers.delete("host");
headers.delete("cookie");
headers.delete("content-length");
headers.delete("transfer-encoding");
headers.set("content-type", "application/json");
const body = JSON.stringify({ preferences });
return new Request(target, { method: "PATCH", headers, body });
}

View File

@@ -0,0 +1,68 @@
import { createHmac, randomBytes, timingSafeEqual } from "node:crypto";
export type WsTicketAudience = "interview" | "roleplay";
type TicketClaims = {
aud: WsTicketAudience;
sub: string;
sid: string;
iat: number;
exp: number;
nonce: string;
};
const MAX_TTL_SECONDS = 60;
function b64url(value: string | Uint8Array): string {
return Buffer.from(value).toString("base64url");
}
function decodePart(value: string): string {
return Buffer.from(value, "base64url").toString("utf8");
}
export function signWsTicket(input: {
secret: string;
audience: WsTicketAudience;
subject: string;
sessionId: string;
nowSeconds?: number;
ttlSeconds?: number;
}): { ticket: string; expiresAt: string; claims: TicketClaims } {
if (!input.secret) throw new Error("SESSION_TICKET_SECRET is not configured");
const now = input.nowSeconds ?? Math.floor(Date.now() / 1000);
const ttl = Math.min(Math.max(Math.floor(input.ttlSeconds ?? MAX_TTL_SECONDS), 1), MAX_TTL_SECONDS);
const claims: TicketClaims = {
aud: input.audience,
sub: input.subject,
sid: input.sessionId,
iat: now,
exp: now + ttl,
nonce: randomBytes(16).toString("hex"),
};
const encoded = b64url(JSON.stringify(claims));
const signature = b64url(createHmac("sha256", input.secret).update(encoded).digest());
return { ticket: `${encoded}.${signature}`, expiresAt: new Date(claims.exp * 1000).toISOString(), claims };
}
export function verifyWsTicket(input: {
secret: string;
ticket: string;
audience: WsTicketAudience;
sessionId: string;
subject?: string;
nowSeconds?: number;
}): TicketClaims {
if (!input.secret) throw new Error("SESSION_TICKET_SECRET is not configured");
const parts = input.ticket.split(".");
if (parts.length !== 2 || !parts[0] || !parts[1]) throw new Error("invalid ticket format");
const expected = createHmac("sha256", input.secret).update(parts[0]).digest();
const provided = Buffer.from(parts[1], "base64url");
if (provided.length !== expected.length || !timingSafeEqual(provided, expected)) throw new Error("invalid ticket signature");
let claims: TicketClaims;
try { claims = JSON.parse(decodePart(parts[0])) as TicketClaims; } catch { throw new Error("invalid ticket claims"); }
const now = input.nowSeconds ?? Math.floor(Date.now() / 1000);
if (claims.aud !== input.audience || claims.sid !== input.sessionId || (input.subject && claims.sub !== input.subject)) throw new Error("ticket scope mismatch");
if (!claims.sub || !claims.nonce || !Number.isInteger(claims.iat) || !Number.isInteger(claims.exp) || claims.exp <= now || claims.exp - claims.iat > MAX_TTL_SECONDS) throw new Error("ticket expired or invalid");
return claims;
}

View File

@@ -8,3 +8,111 @@ The added responsibility here is the nightly improvement loop:
2. Generate validated improvement signal objects with the Vercel AI SDK.
3. Apply those signals to the V1 Curator as events.
4. The Curator uses them on the next day when shaping tasks and nudges.
## Home insight snapshot contract
`GET /v1/analytics/insight-snapshot` keeps its legacy `roleFit`,
`readinessTrend`, `activity`, and `opportunities` fields and adds the
`home-insight-snapshot-v1` contract:
```json
{
"contractVersion": "home-insight-snapshot-v1",
"generatedAt": "ISO-8601 timestamp",
"snapshots": {
"rqScore": {},
"interview": {},
"resume": {},
"opportunity": {},
"pathway": {},
"socialBrand": {},
"roleplay": {},
"learning": {},
"skillGap": {}
}
}
```
Every snapshot has the same fields:
- `status`: `ready`, `empty`, `unavailable`, or `unsupported`.
- `source`: the backend-owned producer identifier.
- `value`, `unit`, and `label`: display-ready values from real producer data.
- `updatedAt`: producer timestamp when one exists.
- `reason`: a stable machine-readable reason for non-ready states.
- `detail`: real supporting evidence; consumers must not recalculate scores from it.
The status contract is strict. `ready` requires a real numeric value. `empty`
requires a successful producer read that confirms absence or a genuine zero
count. `unavailable` means the producer failed, timed out, or returned an
invalid response. `unsupported` means no viable producer contract exists.
Failures and nulls are never converted to zero.
The authenticated Clerk user id is passed unchanged to product services.
Qscore is the only exception: `toQscoreUserId` applies the shared deterministic
UUID mapping before current/history reads or matchmaking's optional qscore
cross-read.
### Producer ownership
- RQ Score: qscore current plus daily history.
- Interview and Roleplay: their page-state APIs, with canonical qscore display
categories as a read-only fallback.
- Resume: resume state, with canonical qscore display fallback.
- Opportunity: matchmaking `get_scout_stats` A2A data, with qscore matching
activity fallback.
- Pathway: canonical qscore display only. Formula versions with zero registered
pathway rules return `unsupported`, not zero progress.
- Social Brand: social state/profile-analysis score. Audience Reach is the
separate producer-owned `detail.audienceReach` display object
(`value`, `unit: "followers"`, `label`, and `updatedAt`) only when Social
confirms a connected profile and numeric follower count. It is never blended
into the brand score or inferred by the consumer.
- Learning: course A2A summary state and persisted substantial-watch count.
- Skill Gap: explicit producer-owned weakness/gap tags from GrowEvents. An
assessment result without an explicit gap metric is evidence detail, not a
fabricated gap count.
All product-service calls are concurrent, bounded, and failure-isolated. A
single unavailable producer does not fail the full snapshot response. A direct
producer failure may fall back only to an active, `ready` canonical qscore
category. An inactive category with `no_category_evidence` never masks an
outage as an empty numeric zero.
## Career report data contract
`GET /v1/analytics/career-report` is an authenticated, read-only aggregation
for the dashboard-owned fixed PDF template. It returns
`contractVersion: "career-report-v1"` with these additive top-level fields:
- `subject`: canonical user-service profile and onboarding values.
- `rqScore`: the current score, producer history, and a strictly validated
`rq-score-display-v1` projection.
- `snapshots`: the existing nine Home Insight producer projections.
- `activity`: real GrowEvents counts for the previous 14 days.
- `sources`: status and timestamp metadata for every queried producer.
Every field is status-bearing. `ready` carries a real producer value; `empty`
means a successful read confirmed no value or an empty array/count;
`unavailable` means the producer could not be read; and `unsupported` means the
expected producer contract is absent. Errors and missing integrations never
become numeric zeroes.
Wrongly typed onboarding values and malformed canonical RQ display payloads
are `unavailable`, never `empty` or `ready`. RQ display validation enforces the
exact nine categories in producer order, all 67 uniquely assigned signals,
and bounded scores, weights, and counts. Activity totals and service buckets
are aggregated across the complete 14-day database window; the bounded recent
event sample is used only as supporting snapshot evidence.
The endpoint deliberately does not calculate labels, rankings, strongest or
weakest categories, recommendations, timelines, peer/market benchmarks,
profile scores, percentages, or narrative prose. It creates no database rows,
jobs, or stored reports. PDF layout and fixed explanatory labels remain owned
by the dashboard.
Profile identity is read strictly from user-service `/api/v1/users/me` using
the authenticated request. The backend-mirror profile fallback is not used,
so internal user ids or synthetic service-local email addresses cannot leak
into the report. No email, token, link, secret, or internal credential is
included in the response.

Some files were not shown because too many files have changed in this diff Show More