UI tools

[torchiaf]

Related issue: rancher/rancher-ai-ui#190
Related issue: #179

UI Tools Feature

Overview

This PR introduces UI Tools, It enables the AI agent to dynamically select Ui tools declared by the UI. The agent can recommend appropriate UI tools based on the conversation context, and the LLM intelligently selects which tools to invoke with their respective parameters.

Key Features

1. Kubernetes-Native Configuration: UI tools are defined as UIToolsConfig Custom Resource Definitions (CRDs) in Kubernetes
2. Per-Config Tool Isolation: Tools are scoped to their configuration, preventing namespace collisions across multiple tool sets
3. Configurable Tool Limits: Each configuration can specify a maximum number of unique tools the LLM can select per response

---

Architecture

Components

1. Registry (app/services/ui_tools/registry.py)

Central registry for managing UI tools with config-scoped namespacing.

Key Classes:

• UITool: Represents a single UI tool with metadata and schema
• UIToolSchema: Defines input validation schema for tools
• UIToolCall: Represents a tool invocation by the agent
• UIToolsConfig: Configuration for a set of UI tools
• UIToolsRegistry: Manages tools in a config-scoped dictionary tools_by_config[config_name][tool_name]

2. Loader (app/services/ui_tools/loader.py)

Loads UI tool definitions from Kubernetes CRDs into the registry.

Key Functions:

• reload_ui_tools_config(): Reload the tools from watcher updates.

3. Selector (app/services/ui_tools/selector.py)

Uses LLM to intelligently select appropriate UI tools for a given context.

Key Classes:

• UIToolsSelector: Main selector class that invokes LLM for tool selection

Features:

• Works with the LLM provider
• Includes tool schema information in LLM prompt for accurate selection
• Deduplicates tool calls
• Enforces maxTools limit by unique tool name:
  • LLM can select up to maxTools different tools (by unique name)
  • Same tool can be called multiple times with different parameters
  • Example with maxTools=2: tool_A(params1), tool_A(params2), tool_B ✓ but tool_C ✗

---

Configuration

Kubernetes CRD: UIToolsConfig

apiVersion: ai.cattle.io/v1alpha1
kind: UIToolsConfig
metadata:
  name: my-tools
spec:
  config:
    enabled: true                    # Enable/disable this tool set
    revision: 1                      # For change detection/gating
    systemPrompt: "..."              # Custom instructions for tool selection
    maxTools: 2                       # Max unique tools per response (0 = unlimited)
  
  tools:
    - name: chart_tool
      category: visualization
      description: "Renders data charts"
      enabled: true
      schema:
        type: object
        properties:
          chart_type:
            type: string
            description: "Type of chart (bar, line, pie)"
          data:
            type: object
            description: "Chart data"
        required: [chart_type, data]
      metadata:
        icon: "chart"
      revision: 1
    
    - name: table_tool
      category: data-display
      description: "Renders data in table format"
      enabled: true
      schema:
        type: object
        properties:
          columns:
            type: array
            description: "Column definitions"
          rows:
            type: array
            description: "Row data"
        required: [columns, rows]
      metadata:
        icon: "table"
      revision: 1

Configuration Fields

Config-Level Settings

Field	Type	Default	Description
enabled	boolean	true	Whether this tool set is active
revision	integer	0	Revision number for change tracking
systemPrompt	string	null	Custom instructions for tool selection LLM
maxTools	integer	5	Maximum unique tools per response (0 = unlimited)

Tool-Level Settings

Field	Type	Required	Description
name	string	✓	Unique tool identifier
category	string	✓	Tool classification (e.g., "visualization", "data-display")
description	string	✓	What the tool does (UI usage)
prompt	string	✓	System Prompt for the llm to select the tool
schema	object	✓	JSON Schema for input validation
enabled	boolean	✓	Enable/disable specific tool
metadata	object		Custom metadata (e.g., icon, display hints)
revision	integer		Tool definition version

---

Usage

1. Define Tools in Kubernetes

kubectl apply -f - <<EOF
apiVersion: ai.cattle.io/v1alpha1
kind: UIToolsConfig
metadata:
  name: dashboard
spec:
  config:
    enabled: true
    revision: 1
    maxTools: 2
    systemPrompt: "Select tools to visualize data effectively"
  
  tools:
    - name: bar_chart
      category: chart
      description: "Visualize data with a bar chart"
      enabled: true
      schema:
        type: object
        properties:
          title: { type: string }
          values: { type: array, items: { type: number } }
        required: [title, values]
EOF

2. Agent Uses Tools

The agent automatically:

1. Loads available tools for the configuration
2. Calls the LLM with tool descriptions
3. LLM selects appropriate tools with parameters
4. Agent validates inputs against schemas
5. Sends tool calls to frontend for rendering

---

Implementation Details

Tool Selection Flow

┌─────────────────────┐
│  Agent Response     │
└──────────┬──────────┘
           │
           ▼
┌─────────────────────────────────────┐
│  Load Tools from Registry           │
│  (config-scoped retrieval)          │
└──────────┬──────────────────────────┘
           │
           ▼
┌─────────────────────────────────────┐
│  Format Tools for LLM Prompt        │
│  (include schemas and descriptions) │
└──────────┬──────────────────────────┘
           │
           ▼
┌──────────────────────────────────────┐
│  LLM Selection                       │
│  - Analyze context                   │
│  - Select at most maxTools unique    │
│    tools (same tool allowed with     │
│    different params)                 │
└──────────┬───────────────────────────┘
           │
           ▼
┌──────────────────────────────────────┐
│  Extract Selections       │
│  - Parse JSON tool calls from LLM    │
│  - Validate inputs vs schema         │
│  - Deduplicate identical calls       │
│  - Enforce maxTools limit by         │
│    unique tool name                  │
└──────────┬───────────────────────────┘
           │
           ▼
┌──────────────────────────────────────┐
│  Return to Frontend for Rendering    │
└──────────────────────────────────────┘

Config-Scoped Namespacing

Problem Solved: When multiple UIToolsConfig resources exist, tools with the same name could collide.

Solution: Nested dictionary structure

registry.tools_by_config = {
  "config_a": {
    "chart_tool": UITool(...),
    "table_tool": UITool(...),
  },
  "config_b": {
    "chart_tool": UITool(...),  # Different from config_a's chart_tool
    "custom_tool": UITool(...),
  }
}

Revision-Gated Updates

Prevents race conditions when multiple clients update configurations:

if provided_revision > current_revision:
    # Update all revision-gated fields
    resource['spec']['config']['systemPrompt'] = provided_system_prompt
    resource['spec']['config']['enabled'] = provided_enabled
    resource['spec']['config']['maxTools'] = provided_max_tools
else:
    # Preserve current values
    resource['spec']['config']['systemPrompt'] = current_system_prompt
    resource['spec']['config']['enabled'] = current_enabled
    resource['spec']['config']['maxTools'] = current_max_tools

resource['spec']['config']['revision'] = provided_revision

---

Integration Points

1. Agent State (base.py)

• Calls _dispatch_ui_tools_event() to select tools
• Passes context and available tools to selector
• Retrieves max_tools from registry config
• Saves tool calls to LangGraph state (TODO)

2. WebSocket Handler (websocket.py)

• Sends tool calls to connected clients in real-time
• Clients render tools based on tool_name and input parameters

3. Memory Service (memory.py)

• TODO

4. Webhook validation

• TODO

---

Testing

TODO

---

Future Enhancements

• Convert existing built-in tools events (mcp-response, confirmation, suggestions) into built-in UI tools for better integration.Those will not use LLM selection.
• Tool dependency management (tool A requires tool B)
• Dynamic tool plugin loading from external sources
• Tool execution feedback loop to LLM
• Tool invocation history and analytics

---

[raulcabello]

we should check the user have permissions to fetch UITools

[raulcabello]

maybe even consider modifying the CRD from the UI instead of adding this new endpoints? what do you think?

[torchiaf]

I moved the logic for the CRD updates to the UI and removed the endpoints. Let's postpone the Webhook validation to a dedicate PR.

[raulcabello]

same here. We should check user can update UITools

[raulcabello]

all these validation should be moved to a webhook. Otherwise, a user can create an invalid UITool with kubectl

[raulcabello]

summarize_conversation won't always be called as it depends on the number of messages. We should change this to make sure ui_tools is always called.

[torchiaf]

I fixed the workflow in parent and root nodes.
Now the ui-tools happens always before the summarize switch.

[raulcabello]

this will be called when human validation is rejected, so we should END

[torchiaf]

Fixed

[torchiaf]

Thanks for the review @raulcabello .

• I addressed reported issues, please take a look.
• We removed the API ui-tools API -> when updating the UI tools the registry is no more reloaded. I created a watcher for the ui-tools-config for this reason. The alternative is to fetch the ui-tools from the cluster on each user request, for this reason the watcher is more efficent.

I still keep this in draft as the tests are TODO.

[raulcabello]

was this generated with kubebuilder? Can you add the go code like we do for AIAgentConfig https://github.com/rancher/rancher-ai-agent/tree/main/crd-generation?

[torchiaf]

No it was generated manually. I just pushed the uitoolsconfig_types.go generator.

[raulcabello]

why do we want multiple configs?

[torchiaf]

This allow us to specify multiple ui-tools configs - not required now, but in the future we want to define different tools and dynamically select them when sending the requests from the UI, basically it's a flexible approach.
It's also possible to define multiple tools for different UIs...

[raulcabello]

what are the benefits of having a list instead of a single tool per UIToolConfig resource? Have you consider only having one tool per UIToolConfig resource? I beleive that would make it easier to manage all tools

[torchiaf]

Yes, my first approach was to have a list of UITools crd, this seems reasonable code-wise, but:

• The UI needs to check if the ui tools definition has changes before initiating a new chat. When the definition has changes compared with the values in the cluster (this can happen when you install a new UI version), they need to be updated in atomic way.
• Fetching only 1 resource it's more efficient.

[raulcabello]

not sure if all models would be able to create a valid JSON array. We've seen in the past that small models like gpt-oss:20b fails to create a valid json for creating k8s resources.
Have you consider using something like MCP UI to prevent this problem? https://mcpui.dev/guide/introduction

[raulcabello]

I would log an error if it is not a valid JSON. That would mean the UITools won't work

[torchiaf]

Done, thanks

[raulcabello]

why empty? can we remove it ?

[torchiaf]

Typo from previous implementation - removed

[raulcabello]

not used, can we remove it?

[torchiaf]

Typo from previous implementation - removed

[raulcabello]

why do we want to dispatch UI tools before confirming? We will dispatch UI tools at the end, so wouldn't this dispatch it twice?

[torchiaf]

The confirmation process generates 2 different messages in the UI:

• Confirmation ask: The agent sends a confirmation message - <confirmation-response> - to the UI; in this context we are dispatching the ui-tools -> the code you posted is executed.

  

• The user confirms/cancels the action: The agent performs the action and return a message in case of confirmation - There are no duplicates, the agent drops the ongoing LangGraph workflow after confirmation so the UI tools node is not executed. So we are not currently sending any ui-tools after confirmation/cancel, but we should. Notice that there are no ui tools elements in the second confirmation chunk: