Fix lineage display, add API endpoint to create generational agents, and integrate launch tracking (#99)

* Initial plan

* Fix lineage to show complete family tree (ancestors and descendants)

Co-authored-by: phrocker <[email protected]>

* Add API endpoint to create next generation agents

Co-authored-by: phrocker <[email protected]>

* Record agent launches in agent_launches table when contextId is provided

Co-authored-by: phrocker <[email protected]>

---------

Co-authored-by: copilot-swe-agent[bot] <[email protected]>
Co-authored-by: phrocker <[email protected]>

Author: Copilot

api/src/main/java/io/sentrius/sso/controllers/api/agents/AgentApiController.java

@@ -40,6 +40,7 @@
 import io.sentrius.sso.core.services.agents.AgentClientService;
 import io.sentrius.sso.core.services.agents.AgentContextService;
 import io.sentrius.sso.core.services.agents.AgentService;
+import io.sentrius.sso.core.services.agents.GenerationManager;
 import io.sentrius.sso.core.services.auditing.AuditService;
 import io.sentrius.sso.core.services.security.CryptoService;
 import io.sentrius.sso.core.services.security.KeycloakService;
@@ -55,6 +56,7 @@
 import lombok.extern.slf4j.Slf4j;
 import org.apache.http.HttpStatus;
 import org.jetbrains.annotations.NotNull;
+import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.data.domain.PageRequest;
 import org.springframework.data.domain.Pageable;
 import org.springframework.data.domain.Sort;
@@ -87,6 +89,7 @@ public class AgentApiController extends BaseController {
     final AgentContextService agentContextService;
     final AgentClientService agentClientService;
     final AppConfig appConfig;
+    final GenerationManager generationManager;
 
     public AgentApiController(
         UserService userService,
@@ -98,7 +101,8 @@ public AgentApiController(
         ZeroTrustAccessTokenService ztatService, ZeroTrustRequestService ztrService, AgentService agentService,
         ProvenanceKafkaProducer provenanceKafkaProducer, ZeroTrustRequestService ztatRequestService,
         AgentContextService agentContextService, AgentClientService agentClientService, 
-         AppConfig appConfig
+         AppConfig appConfig,
+        @Autowired(required = false) GenerationManager generationManager
     ) {
         super(userService, systemOptions, errorOutputService);
         this.auditService = auditService;
@@ -114,6 +118,7 @@ public AgentApiController(
         this.agentContextService = agentContextService;
         this.agentClientService = agentClientService;
         this.appConfig = appConfig;
+        this.generationManager = generationManager;
     }
 
     public SessionLog createSession(@RequestParam String username, @RequestParam String ipAddress) {
@@ -897,6 +902,66 @@ public ResponseEntity<AgentContextDTO> createContext(
         return ResponseEntity.ok(dto);
     }
 
+    @PostMapping("/context/{contextId}/generation")
+    @LimitAccess(applicationAccess = {ApplicationAccessEnum.CAN_MANAGE_APPLICATION})
+    public ResponseEntity<?> createNextGeneration(
+        HttpServletRequest request,
+        HttpServletResponse response,
+        @PathVariable("contextId") String contextId) {
+        
+        if (generationManager == null) {
+            log.error("GenerationManager not available");
+            return ResponseEntity.status(HttpStatus.SC_SERVICE_UNAVAILABLE)
+                .body(Map.of("error", "Generation management not available"));
+        }
+        
+        try {
+            var operatingUser = getOperatingUser(request, response);
+            if (operatingUser == null) {
+                log.warn("No operating user found");
+                return ResponseEntity.status(HttpStatus.SC_UNAUTHORIZED)
+                    .body(Map.of("error", "Unauthorized"));
+            }
+            
+            UUID parentId = UUID.fromString(contextId);
+            var childContext = generationManager.createNextGeneration(parentId, operatingUser.getUserId());
+            
+            long inheritedCount = agentContextService.getInheritedMemoryCount(childContext.getId());
+            
+            var dto = AgentContextDTO.builder()
+                .contextId(childContext.getId())
+                .name(childContext.getName())
+                .description(childContext.getDescription())
+                .context(childContext.getContext())
+                .createdAt(childContext.getCreatedAt())
+                .updatedAt(childContext.getUpdatedAt())
+                .generation(childContext.getGeneration())
+                .parentId(childContext.getParentId())
+                .memoryNamespace(childContext.getMemoryNamespace())
+                .trustScore(childContext.getTrustScore())
+                .policyId(childContext.getPolicyId())
+                .inheritedMemoryCount(inheritedCount)
+                .build();
+            
+            log.info("Created next generation agent: gen={}, parent={}, child={}", 
+                childContext.getGeneration(), parentId, childContext.getId());
+            return ResponseEntity.ok(dto);
+            
+        } catch (IllegalArgumentException e) {
+            log.error("Invalid parent context ID: {}", contextId, e);
+            return ResponseEntity.status(HttpStatus.SC_NOT_FOUND)
+                .body(Map.of("error", "Parent agent context not found: " + contextId));
+        } catch (IllegalStateException e) {
+            log.error("Failed to create next generation: {}", e.getMessage(), e);
+            return ResponseEntity.status(HttpStatus.SC_FORBIDDEN)
+                .body(Map.of("error", e.getMessage()));
+        } catch (Exception e) {
+            log.error("Unexpected error creating next generation", e);
+            return ResponseEntity.status(HttpStatus.SC_INTERNAL_SERVER_ERROR)
+                .body(Map.of("error", "Failed to create next generation: " + e.getMessage()));
+        }
+    }
+
     @GetMapping("/stats")
     @LimitAccess(applicationAccess = {ApplicationAccessEnum.CAN_LOG_IN})
     public ResponseEntity<?> getAgentStats(HttpServletRequest request, HttpServletResponse response) throws ZtatException {

api/src/main/java/io/sentrius/sso/controllers/api/agents/AgentBootstrapController.java

@@ -5,6 +5,7 @@
 import java.security.GeneralSecurityException;
 import java.util.List;
 import java.util.Optional;
+import java.util.UUID;
 import com.fasterxml.jackson.databind.ObjectMapper;
 import com.fasterxml.jackson.dataformat.yaml.YAMLFactory;
 import com.google.common.collect.Maps;
@@ -24,6 +25,7 @@
 import io.sentrius.sso.core.services.ErrorOutputService;
 import io.sentrius.sso.core.services.UserService;
 import io.sentrius.sso.core.services.agents.AgentClientService;
+import io.sentrius.sso.core.services.agents.AgentLaunchService;
 import io.sentrius.sso.core.services.agents.AgentService;
 import io.sentrius.sso.core.services.agents.ZeroTrustClientService;
 import io.sentrius.sso.core.services.auditing.AuditService;
@@ -61,6 +63,7 @@ public class AgentBootstrapController extends BaseController {
     private final ObjectMapper yamlMapper = new ObjectMapper(new YAMLFactory());
     final AppConfig appConfig;
     private final AgentClientService agentClientService;
+    private final AgentLaunchService agentLaunchService;
 
 
     public AgentBootstrapController(
@@ -72,7 +75,8 @@ public AgentBootstrapController(
         ATPLPolicyService atplPolicyService,
         ZeroTrustAccessTokenService ztatService, ZeroTrustRequestService ztrService, AgentService agentService,
         ZeroTrustClientService zeroTrustClientService, AppConfig appConfig,
-        AgentClientService agentClientService
+        AgentClientService agentClientService,
+        AgentLaunchService agentLaunchService
     ) {
         super(userService, systemOptions, errorOutputService);
         this.auditService = auditService;
@@ -86,6 +90,7 @@ public AgentBootstrapController(
         this.zeroTrustClientService = zeroTrustClientService;
         this.appConfig = appConfig;
         this.agentClientService = agentClientService;
+        this.agentLaunchService = agentLaunchService;
     }
 
 
@@ -219,6 +224,34 @@ public ResponseEntity<String> launchPod(
         var operatingUser = getOperatingUser(request, response );
         zeroTrustClientService.callAuthenticatedPostOnApi(appConfig.getSentriusLauncherService(),  "agent/launcher/create",
             registrationDTO);
+        
+        // Record the agent launch if agentContextId is provided
+        if (registrationDTO.getAgentContextId() != null && !registrationDTO.getAgentContextId().isEmpty()) {
+            try {
+                UUID contextId = UUID.fromString(registrationDTO.getAgentContextId());
+                String launchedBy = operatingUser != null ? operatingUser.getUserId() : "system";
+                String parameters = "agentType=" + registrationDTO.getAgentType() + 
+                                   ",policyId=" + registrationDTO.getAgentPolicyId();
+                
+                UUID launchId = agentLaunchService.recordLaunch(
+                    registrationDTO.getAgentName(), 
+                    contextId, 
+                    launchedBy, 
+                    parameters
+                );
+                
+                log.info("Recorded agent launch: launchId={}, contextId={}, agentName={}", 
+                    launchId, contextId, registrationDTO.getAgentName());
+            } catch (IllegalArgumentException e) {
+                log.error("Invalid agentContextId: {}", registrationDTO.getAgentContextId(), e);
+                // Don't fail the launch, just log the error
+            } catch (Exception e) {
+                log.error("Failed to record agent launch", e);
+                // Don't fail the launch, just log the error
+            }
+        } else {
+            log.info("No agentContextId provided, skipping launch record for {}", registrationDTO.getAgentName());
+        }
 
         // bootstrap with a default policy
         return ResponseEntity.ok("{\"status\": \"success\"}");

dataplane/src/main/java/io/sentrius/sso/core/repository/AgentContextRepository.java

@@ -2,10 +2,12 @@
 
 import io.sentrius.sso.core.model.agents.AgentContext;
 import org.springframework.data.jpa.repository.JpaRepository;
+import java.util.List;
 import java.util.Optional;
 import java.util.UUID;
 
 public interface AgentContextRepository extends JpaRepository<AgentContext, UUID> {
     Optional<AgentContext> findByName(String name);
+    List<AgentContext> findByParentId(UUID parentId);
 }
 

dataplane/src/main/java/io/sentrius/sso/core/services/agents/AgentContextService.java

@@ -45,17 +45,49 @@ public List<AgentContext> getLineage(UUID agentId) {
         List<AgentContext> lineage = new ArrayList<>();
         AgentContext current = contextRepo.findById(agentId).orElse(null);
 
-        while (current != null) {
-            lineage.add(0, current);
-            if (current.getParentId() != null) {
-                current = contextRepo.findById(current.getParentId()).orElse(null);
+        if (current == null) {
+            return lineage;
+        }
+        
+        // First, traverse up to find the root ancestor
+        AgentContext root = current;
+        List<AgentContext> ancestors = new ArrayList<>();
+        while (root.getParentId() != null) {
+            AgentContext parent = contextRepo.findById(root.getParentId()).orElse(null);
+            if (parent != null) {
+                ancestors.add(0, parent);
+                root = parent;
             } else {
-                current = null;
+                break;
             }
         }
 
+        // Add all ancestors to lineage
+        lineage.addAll(ancestors);
+        
+        // Add the current agent if not already in lineage
+        if (!lineage.contains(current)) {
+            lineage.add(current);
+        }
+        
+        // Now traverse down from current to find all descendants recursively
+        addDescendants(current, lineage);
+        
         return lineage;
     }
+    
+    /**
+     * Recursively adds all descendants of the given agent to the lineage list.
+     */
+    private void addDescendants(AgentContext parent, List<AgentContext> lineage) {
+        List<AgentContext> children = contextRepo.findByParentId(parent.getId());
+        for (AgentContext child : children) {
+            if (!lineage.contains(child)) {
+                lineage.add(child);
+                addDescendants(child, lineage);
+            }
+        }
+    }
 
     public List<AgentContext> getLineageByName(String agentName) {
         log.info("Getting lineage for agent by name: {}", agentName);