commit

Author: phrocker

.azure.env

@@ -1,13 +1,13 @@
-SENTRIUS_VERSION=1.1.140
+SENTRIUS_VERSION=1.1.149
 SENTRIUS_SSH_VERSION=1.1.12
 SENTRIUS_KEYCLOAK_VERSION=1.1.15
 SENTRIUS_AGENT_VERSION=1.1.24
-SENTRIUS_AI_AGENT_VERSION=1.1.5
+SENTRIUS_AI_AGENT_VERSION=1.1.8
 LLMPROXY_VERSION=1.1.5
 LAUNCHER_VERSION=1.1.6
-AGENTPROXY_VERSION=1.1.8
+AGENTPROXY_VERSION=1.1.9
 SSHPROXY_VERSION=1.1.5
-RDPPROXY_VERSION=1.1.5
+RDPPROXY_VERSION=1.1.7
 GITHUB_MCP_VERSION=1.1.5
 PROMPT_ADVISOR_VERSION=1.1.8
 MONITORING_AGENT_VERSION=1.1.23

agent-proxy/src/main/java/io/sentrius/sso/config/AgentWebSocketProxyHandler.java

@@ -48,6 +48,8 @@ public Mono<Void> handle(WebSocketSession clientSession) {
             chatGroupId = chatGroupId.replace(" ","+");
             String ztat = queryParams.get("ztat");
             String ztatForChat = queryParams.get("jwt");
+            String userId = queryParams.get("userId");
+            userId = userId.replace(" ","+");
 
 
             if (ztatForChat != null && !ztatForChat.isEmpty()) {
@@ -62,10 +64,11 @@ public Mono<Void> handle(WebSocketSession clientSession) {
                 log.info("Invalid ZTAT token for sessionId: {}", sessionId);
                 return Mono.error(new RuntimeException("Invalid ZTAT token") );
             }
-            log.info("Handling WebSocket connection for host: {}, sessionId: {}, chatGroupId: {}, ztat: {}",
-                agentHost, sessionId, chatGroupId, ztat);
+            log.info("Handling WebSocket connection for host: {}, sessionId: {}, chatGroupId: {}, ztat: {}, userId: {}",
+                agentHost, sessionId, chatGroupId, ztat, userId);
 
-            URI agentUri = agentLocator.resolveWebSocketUri(agentHost.toLowerCase(), sessionId, chatGroupId, ztat);
+            URI agentUri = agentLocator.resolveWebSocketUri(agentHost.toLowerCase(), sessionId, chatGroupId, ztat,
+                userId);
 
             log.info("Resolved agent URI: {}", agentUri);
 

agent-proxy/src/main/java/io/sentrius/sso/locator/KubernetesAgentLocator.java

@@ -10,11 +10,11 @@
 public class KubernetesAgentLocator {
 
 
-    public URI resolveWebSocketUri(String host, String sessionId, String chatGroupId, String ztat) {
+    public URI resolveWebSocketUri(String host, String sessionId, String chatGroupId, String ztat, String userId) {
         // DNS: sentrius-agent-[ID].[namespace].svc.cluster.local
         ///api/v1/chat/attach/subscribe?sessionId=${encodeURIComponent(this.sessionId)}&chatGroupId=${this.chatGroupId}&ztat=${encodeURIComponent(jwt)
-        String fqdn = String.format("%s/api/v1/chat/attach/subscribe?sessionId=%s&chatGroupId=%s&ztat=%s",
-            host,  sessionId, chatGroupId, ztat);
+        String fqdn = String.format("%s/api/v1/chat/attach/subscribe?sessionId=%s&chatGroupId=%s&ztat=%s&userId=%s",
+            host,  sessionId, chatGroupId, ztat, userId);
         return URI.create(fqdn);
     }
 }

api/src/main/java/io/sentrius/sso/controllers/api/TooltipController.java

@@ -133,7 +133,7 @@ public ResponseEntity<TooltipChatResponse> chat(
             }
 
             // Build token DTO for LLM service
-            TokenDTO tokenDTO = TokenDTO.builder().build();
+            TokenDTO tokenDTO = TokenDTO.builder().communicationId(UUID.randomUUID().toString()).build();
             // Token will be populated from security context by LLM service
 
             // Generate chat response
@@ -162,7 +162,7 @@ public ResponseEntity<TooltipChatResponse> chat(
      */
     @PostMapping("/admin/index")
     @Endpoint(description = "Trigger manual indexing of codebase and documentation")
-    @LimitAccess(applicationAccess = ApplicationAccessEnum.CAN_LOG_IN)
+    @LimitAccess(applicationAccess = ApplicationAccessEnum.CAN_MANAGE_APPLICATION)
     public ResponseEntity<Map<String, Object>> triggerIndexing(
             HttpServletRequest httpRequest,
             HttpServletResponse httpResponse) {

api/src/main/java/io/sentrius/sso/controllers/view/AgentController.java

@@ -16,6 +16,8 @@
 import io.sentrius.sso.core.services.auditing.AuditService;
 import io.sentrius.sso.core.services.security.CryptoService;
 import io.sentrius.sso.core.services.terminal.SessionTrackingService;
+import jakarta.servlet.http.HttpServletRequest;
+import jakarta.servlet.http.HttpServletResponse;
 import lombok.extern.slf4j.Slf4j;
 import org.springframework.http.ResponseEntity;
 import org.springframework.stereotype.Controller;
@@ -58,7 +60,8 @@ public String listAgents(Model m) {
 
     @GetMapping("/design/chat")
     @LimitAccess(applicationAccess = {ApplicationAccessEnum.CAN_MANAGE_APPLICATION})
-    public String designAgent(Model m) {
+    public String designAgent(HttpServletRequest request, HttpServletResponse response, Model m) {
+        m.addAttribute("userId", getOperatingUser(request,response).getUserId() );
         return "sso/agents/design_chat";
     }
 

api/src/main/java/io/sentrius/sso/websocket/ChatWSHandler.java

@@ -33,7 +33,7 @@ public class ChatWSHandler extends TextWebSocketHandler {
 
 
 
-    // Store active sessions, using session ID or a custom identifier
+    // Storec active sessions, using session ID or a custom identifier
     private final ConcurrentHashMap<String, WebSocketSession> sessions = new ConcurrentHashMap<>();
 
     @Override

api/src/main/resources/static/js/ai-helper.js

@@ -344,6 +344,8 @@
       const input = document.getElementById('ai-helper-chat-input');
       if (!input) return;
 
+      const token = document.querySelector('meta[name="_csrf"]')?.content;
+
       const message = input.value.trim();
       if (!message) return;
 
@@ -365,6 +367,7 @@
           method: 'POST',
           headers: {
             'Content-Type': 'application/json',
+            'X-CSRF-TOKEN': token
           },
           body: JSON.stringify({
             message: message,

api/src/main/resources/static/js/chat.js

@@ -23,11 +23,12 @@ const chatSessions = new Map(); // key: agentId, value: ChatSession
 // Section: ChatSession Class
 // =========================
 class ChatSession {
-    constructor(agentName, agentId, sessionId, agentHost, preloadMessages = []) {
+    constructor(agentName, agentId, sessionId, userId, agentHost, preloadMessages = []) {
         this.agentId = agentId;
         this.agentName = agentName;
         this.sessionId = sessionId;
         this.agentHost = agentHost;
+        this.userId = userId;
         this.chatGroupId = `${agentId}-${sessionId}`;
         this.messages = preloadMessages || [];
         this.connection = null;
@@ -79,7 +80,7 @@ class ChatSession {
         let ztatForChat = {};
         try {
             const response = await fetch(
-                "/api/v1/agent/connect?session_id=" + this.sessionId,
+                "/api/v1/agent/connect?session_id=" + this.sessionId + "&userId=" + this.userId,
                 {
                     method: "POST",
                     headers: {
@@ -115,7 +116,7 @@ class ChatSession {
         //const uri = `${phost}/api/v1/chat/attach/subscribe?sessionId=${encodeURIComponent(this.sessionId)}&chatGroupId=${this.chatGroupId}&ztat=${encodeURIComponent(jwt)}`;
         //const uri = `/api/v1/agents/ws/${encodeURIComponent(phost)}/${encodeURIComponent(this.sessionId)}/${encodeURIComponent(this.chatGroupId)}/${encodeURIComponent(jwt)}`;
 
-        const uri = config.agentProxyWsUrl + `/api/v1/agents/ws?phost=${encodeURIComponent(phost)}&sessionId=${encodeURIComponent(this.sessionId)}&chatGroupId=${encodeURIComponent(this.chatGroupId)}&ztat=${encodeURIComponent(jwt)}&jwt=${encodeURIComponent(ztatForChat.ztat_token)}`;
+        const uri = config.agentProxyWsUrl + `/api/v1/agents/ws?phost=${encodeURIComponent(phost)}&sessionId=${encodeURIComponent(this.sessionId)}&userId=${encodeURIComponent(this.userId)}&chatGroupId=${encodeURIComponent(this.chatGroupId)}&ztat=${encodeURIComponent(jwt)}&jwt=${encodeURIComponent(ztatForChat.ztat_token)}`;
 
         console.log("Connecting to chat server with ZTAT at:", uri);
         this.connection = new WebSocket(uri);

api/src/main/resources/templates/sso/agents/design_chat.html

@@ -341,9 +341,10 @@ <h2><i class="fas fa-robot"></i> Agent Designer</h2>
     </div>
 </div>
 
-    <script type="module">
+    <script type="module" th:inline="javascript">
         import * as Chat from '/js/chat.js';
         let sessionId = crypto.randomUUID();
+        let userId = [[${userId}]];
         let conversationHistory = [];
         let availableAgent = null;
         const csrfToken = document.getElementById("csrf-token").value;
@@ -426,7 +427,7 @@ <h2><i class="fas fa-robot"></i> Agent Designer</h2>
                         if (!session) {
                             console.log("New session creating:");
                             session = new ChatSession(availableAgent.agentName, availableAgent.agentId, sessionId,
-                                availableAgent.agentCallback);
+                                userId,availableAgent.agentCallback);
                             session.connect().then(() => {
                                 console.log("Connected to chat server");
                             });
@@ -458,7 +459,7 @@ <h2><i class="fas fa-robot"></i> Agent Designer</h2>
                 let session = chatSessions.get(availableAgent.agentId);
                 if (!session) {
                     console.log("New session creating:");
-                    session = new ChatSession(availableAgent.agentName, availableAgent.agentId, sessionId,
+                    session = new ChatSession(availableAgent.agentName, availableAgent.agentId, sessionId,userId,
                         availableAgent.agentCallback);
                     session.connect().then(() => {
                         console.log("Connected to chat server");

enterprise-agent/src/main/java/io/sentrius/agent/analysis/api/websocket/ChatWSHandler.java

@@ -136,19 +136,23 @@ protected void handleTextMessage(WebSocketSession session, TextMessage message)
             if (uri != null) {
                 Map<String, String> queryParams = parseQueryParams(uri.getQuery());
                 String sessionId = queryParams.get("sessionId");
+                String userId = queryParams.get("userId");
 
                 var websocky = userCommunicationService.getSession(sessionId);
 
+
                 if (sessionId != null && websocky.isPresent()) {
                     var websocketCommunication = websocky.get();
+                    websocketCommunication.setUserId(userId);
                     if (null == websocketCommunication.getAgentExecutionContextDTO().getAgentContext()){
                         log.info("Loading agent context for session ID: {} is null ? {}" , sessionId,
                             agentExecutionService.getExecutionContextDTO( chatAgent.getAgentExecution().getExecutionId() ).getAgentContext()==null);
                         websocketCommunication.getAgentExecutionContextDTO().setAgentContext(
                             agentExecutionService.getExecutionContextDTO( chatAgent.getAgentExecution().getExecutionId() ).getAgentContext()
                         );
                     }
-                    log.info("Received message from session ID: {}" , sessionId, websocketCommunication.getUniqueIdentifier());
+                    log.info("Received message from session ID: {}, userId {}" , sessionId,
+                        websocketCommunication.getUniqueIdentifier(), userId);
                     // Handle the message (e.g., process or respond)
 
 
@@ -521,9 +525,7 @@ protected void handleTextMessage(WebSocketSession session, TextMessage message)
                                                     memoryMeta.get("value") : memoryMeta;
 
                                                 // Add userId to markings for privacy scoping if userId is available
-                                                String userId = chatAgent.getAgentExecution().getUser() != null 
-                                                    ? chatAgent.getAgentExecution().getUser().getUserId() 
-                                                    : null;
+
                                                 String enhancedMarkings;
                                                 if (userId != null && !userId.isEmpty()) {
                                                     enhancedMarkings = markings != null
@@ -574,10 +576,7 @@ protected void handleTextMessage(WebSocketSession session, TextMessage message)
                                         JsonNode value = memoryMeta.has("value") ?
                                             memoryMeta.get("value") : memoryMeta;
 
-                                        // Add userId to markings for privacy scoping if userId is available
-                                        String userId = chatAgent.getAgentExecution().getUser() != null 
-                                            ? chatAgent.getAgentExecution().getUser().getUserId() 
-                                            : null;
+
                                         String enhancedMarkings;
                                         if (userId != null && !userId.isEmpty()) {
                                             enhancedMarkings = markings != null