Skip to content

Add admin-controlled agent card publishing from approved claims#306

Merged
GsCommand merged 1 commit into
mainfrom
codex/add-admin-controlled-agent-card-publishing
May 23, 2026
Merged

Add admin-controlled agent card publishing from approved claims#306
GsCommand merged 1 commit into
mainfrom
codex/add-admin-controlled-agent-card-publishing

Conversation

@GsCommand
Copy link
Copy Markdown
Contributor

@GsCommand GsCommand commented May 23, 2026

Motivation

  • Provide an admin-only flow to publish public agent card artifacts for claims that have been approved, enabling verified agent discovery without exposing admin actions to the public.
  • Keep this rollout narrowly focused: do not add Stripe, ERC-8004 registration, ENS provisioning, fake ENS writes, or alter claim validation or admin auth behavior.

Description

  • Add DB migration db/migrations/003_agent_cards.sql to extend claim_agents with card_url, card_status, card_published_at and to create a new agent_cards table with indexes for claim_id, ens, and card_url.
  • Add admin endpoint POST /api/admin/publish-agent-cards (api/admin/publish-agent-cards.js) that requires ADMIN_API_KEY, enforces claim approved status, is idempotent (returns existing cards if already published), inserts/updates agent_cards, updates claim_agents.card_url/card_status/card_published_at, updates claim_requests.status to cards_published, and inserts claim_events and claim_status_transitions entries.
  • Add public card-serving route GET /api/agent-cards/card (api/agent-cards/card.js) that looks up published cards by ens or path and returns card_json as application/json, returning 404 when not found.
  • Update admin UI public/admin/claims.html to show a Publish agent cards button when status is approved, and to show published card URLs plus Copy all card URLs / Open first card / payment placeholder when status is cards_published.
  • Add unit tests tests/api-admin-publish-agent-cards.test.js covering missing ADMIN_API_KEY, unauthorized requests, non-approved claims, successful publish behavior, idempotency, public card route JSON response, and missing-card 404.

Testing

  • Ran npm test; test suite completed successfully with all tests passing (including new publish and public route tests).
  • Ran cd examples/webhook-auto-verify && npm install and npm run check; both succeeded.
  • Top-level npm install in this environment failed due to registry policy (403 Forbidden fetching @neondatabase/serverless), but tests are structured to mock DB calls and passed locally in CI-style test runs.

Codex Task

@vercel
Copy link
Copy Markdown

vercel Bot commented May 23, 2026
edited
Loading

The latest updates on your projects. Learn more about Vercel for GitHub.

Project Deployment Actions Updated (UTC)
commandlayer-commandlayer-org Ready Ready Preview, Comment May 23, 2026 8:47pm
commandlayer-org Ready Ready Preview, Comment May 23, 2026 8:47pm
commandlayer-org111 Ready Ready Preview, Comment May 23, 2026 8:47pm

Request Review

@GsCommand GsCommand merged commit a60ed4e into main May 23, 2026
5 checks passed
@GsCommand GsCommand mentioned this pull request May 23, 2026
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

codex

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@GsCommand