dc/d2b/configure__tools_8php_source.html

<?php

/* Copyright (C) 2004-2017  Laurent Destailleur         <eldy@users.sourceforge.net>

 * Copyright (C) 2022   Alice Adminson        <aadminson@example.com>

 * Copyright (C) 2024   MDW             <mdeweerd@users.noreply.github.com>

 * Copyright (C) 2024       Frédéric France             <frederic.france@free.fr>

 * Coryright (C) 2024   Alexandre Spangaro      <alexandre@inovea-conseil.com>

 * Copyright (C) 2026   Nick Fragoulis

 *

 * This program is free software; you can redistribute it and/or modify

 * it under the terms of the GNU General Public License as published by

 * the Free Software Foundation; either version 3 of the License, or

 * (at your option) any later version.

 *

 * This program is distributed in the hope that it will be useful,

 * but WITHOUT ANY WARRANTY, without even the implied warranty of

 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the

 * GNU General Public License for more details.

 *

 * You should have received a copy of the GNU General Public License

 * along with this program. If not, see <https://www.gnu.org/licenses/>.

 */


require '../../main.inc.php';


require_once DOL_DOCUMENT_ROOT . '/core/lib/admin.lib.php';

require_once DOL_DOCUMENT_ROOT . '/core/class/html.form.class.php';

require_once DOL_DOCUMENT_ROOT . '/ai/lib/ai.lib.php';

require_once DOL_DOCUMENT_ROOT . '/ai/class/mcp.class.php';

require_once DOL_DOCUMENT_ROOT . '/core/lib/functions2.lib.php';


$langs->loadLangs(array('admin', 'other', 'main'));


// Access control

if (!$user->admin) {

  accessforbidden();

}

if (!isModEnabled('ai')) {

  accessforbidden('Module AI not activated.');

}


// Parameters

$action   = GETPOST('action', 'aZ09');

$toolcontext  = GETPOST('toolcontext', 'alpha');

$toolname = GETPOST('toolname', 'alpha');

$mode     = GETPOST('mode', 'alpha');

$backtopage = GETPOST('backtopage', 'alpha');


// Load unfiltered schema

$mcpHandler = new McpHandler($db, $user, $conf, McpHandler::CTX_ASSISTANT);

$unfilteredSchema = $mcpHandler->getToolsSchemaUnfiltered();


// Build grouped lists from the schema metadata set by getToolsSchemaUnfiltered()

$allDiscoveredTools = array();  // names of all non-system tools

$groupedNormalTools = array();  // non-system tools grouped by class_name

$groupedSystemTools = array();  // system tools grouped by class_name


if (!empty($unfilteredSchema) && is_array($unfilteredSchema)) {

  foreach ($unfilteredSchema as $def) {

    $name         = $def['name'];

    $isSystem     = !empty($def['is_system']);

    $classNameKey = !empty($def['class_name']) ? (string) $def['class_name'] : 'DefaultTools';


    if (!$isSystem) {

      $allDiscoveredTools[]                = $name;

      $groupedNormalTools[$classNameKey][] = $def;

    } else {

      $groupedSystemTools[$classNameKey][] = $def;

    }

  }

}


$rawAst     = getDolGlobalString('AI_ASSISTANT_ALLOWED_TOOLS');

$rawMcp     = getDolGlobalString('AI_MCP_SERVER_ALLOWED_TOOLS');

$astAllowed = McpHandler::resolveAllowList($rawAst, $allDiscoveredTools);

$mcpAllowed = McpHandler::resolveAllowList($rawMcp, $allDiscoveredTools);


if ($action == 'addrights' || $action == 'delrights') {

  if (GETPOST('token', 'alpha') !== $_SESSION['token']) {

    accessforbidden('Bad token');

  }


  if (!empty($toolcontext) && !empty($toolname)) {

    if ($toolcontext === 'ast') {

      if ($action == 'addrights') {

        if (!in_array($toolname, $astAllowed, true)) {

          $astAllowed[] = $toolname;

        }

      } else {

        $astAllowed = array_values(array_diff($astAllowed, array($toolname)));

      }

      $val = empty($astAllowed) ? 'NONE' : implode(',', $astAllowed);

      dolibarr_set_const($db, 'AI_ASSISTANT_ALLOWED_TOOLS', $val, 'chaine', 0, '', $conf->entity);

    }


    if ($toolcontext === 'mcp') {

      if ($action == 'addrights') {

        if (!in_array($toolname, $mcpAllowed, true)) {

          $mcpAllowed[] = $toolname;

        }

      } else {

        $mcpAllowed = array_values(array_diff($mcpAllowed, array($toolname)));

      }

      $val = empty($mcpAllowed) ? 'NONE' : implode(',', $mcpAllowed);

      dolibarr_set_const($db, 'AI_MCP_SERVER_ALLOWED_TOOLS', $val, 'chaine', 0, '', $conf->entity);

    }

  }


  header('Location: ' . $_SERVER['PHP_SELF']);

  exit;

}


if ($action == 'apply_preset' && !empty($toolcontext) && !empty($mode)) {

  if (GETPOST('token', 'alpha') !== $_SESSION['token']) {

    accessforbidden('Bad token');

  }


  $resultSet = array();


  if ($mode === 'all') {

    $resultSet = $allDiscoveredTools;

  } elseif ($mode === 'none') {

    $resultSet = array();

  } elseif ($mode === 'readonly') {

    foreach ($allDiscoveredTools as $tName) {

      // Tools starting with a mutating verb are write tools.

      // This heuristic matches the naming convention used throughout ai/tools/*.

      // External tool authors should follow the same convention.

      if (!preg_match('/^(create|update|delete|add|remove|change|write|edit|validate|pay|send)/i', $tName)) {

        $resultSet[] = $tName;

      }

    }

  }


  $val         = empty($resultSet) ? 'NONE' : implode(',', $resultSet);

  $constTarget = ($toolcontext === 'mcp') ? 'AI_MCP_SERVER_ALLOWED_TOOLS' : 'AI_ASSISTANT_ALLOWED_TOOLS';

  dolibarr_set_const($db, $constTarget, $val, 'chaine', 0, '', $conf->entity);


  header('Location: ' . $_SERVER['PHP_SELF']);

  exit;

}


/*

 * VIEW

 */


$help_url = '';

$title = 'AiSetup';

llxHeader('', $langs->trans($title), '', '', 0, 0, array(dol_buildpath('/ai/js/ai.js', 1)), array(dol_buildpath('/ai/css/ai.css', 1)), '', 'mod-ai page-admin');


$linkback = '<a href="' . ($backtopage ? $backtopage : DOL_URL_ROOT . '/admin/modules.php?restore_lastsearch_values=1') . '">' . img_picto($langs->trans("BackToModuleList"), 'back', 'class="pictofixedwidth"') . '<span class="hideonsmartphone">' . $langs->trans("BackToModuleList") . '</span></a>';


print load_fiche_titre($langs->trans($title), $linkback, 'title_setup');


$head = aiAdminPrepareHead();

print dol_get_fiche_head($head, 'tools', 'MCP Server', -1, 'ai');


print '<span class="opacitymedium">' . $langs->trans("ToolAccessControlHelp") . '</span><br><br>';


print '<div class="marginleftonly" style="display:flex; flex-wrap:wrap; gap:40px; margin-top:15px; padding-top:15px; border-top:1px solid #ddd;">';


// Presets For Chat Assistant

print '<div>';

print '<strong>' . $langs->trans('PresetsForChatAssistant') . ':</strong><br>';

print '<a class="button" href="' . dolBuildUrl($_SERVER['PHP_SELF'], array('action' => 'apply_preset', 'toolcontext' => 'ast', 'mode' => 'all'), true) . '" style="margin:4px 2px;">' . $langs->trans('AllTools') . '</a>';

print '<a class="button" href="' . dolBuildUrl($_SERVER['PHP_SELF'], array('action' => 'apply_preset', 'toolcontext' => 'ast', 'mode' => 'readonly'), true) . '" style="margin:4px 2px;">' . $langs->trans('ViewOnly') . '</a>';

print '<a class="button" href="' . dolBuildUrl($_SERVER['PHP_SELF'], array('action' => 'apply_preset', 'toolcontext' => 'ast', 'mode' => 'none'), true) . '" style="margin:4px 2px;">' . $langs->trans('None') . '</a>';

print '</div>';


// Presets For MCP Server

print '<div>';

print '<strong>' . $langs->trans('PresetsForMcpServer') . ':</strong><br>';

print '<a class="button" href="' . dolBuildUrl($_SERVER['PHP_SELF'], array('action' => 'apply_preset', 'toolcontext' => 'mcp', 'mode' => 'all'), true) . '" style="margin:4px 2px;">' . $langs->trans('AllTools') . '</a>';

print '<a class="button" href="' . dolBuildUrl($_SERVER['PHP_SELF'], array('action' => 'apply_preset', 'toolcontext' => 'mcp', 'mode' => 'readonly'), true) . '" style="margin:4px 2px;">' . $langs->trans('ViewOnly') . '</a>';

print '<a class="button" href="' . dolBuildUrl($_SERVER['PHP_SELF'], array('action' => 'apply_preset', 'toolcontext' => 'mcp', 'mode' => 'none'), true) . '" style="margin:4px 2px;">' . $langs->trans('None') . '</a>';

print '</div>';


print '</div>';


// Tools table

print '<div class="div-table-responsive-no-min">';

print '<table class="noborder centpercent" id="toolsTable">';

print '<tr class="liste_titre">';

print '<td class="tdoverflowmax200" style="min-width: 130px;">' . $langs->trans('Tool') . '</td>';

print '<td class="center" style="min-width: 60px;">' . $langs->trans('ToolActionType') . '</td>';

print '<td class="hideonsmartphone">' . $langs->trans('ToolDescription') . '</td>';

print '<td class="center nowraponall">' . $langs->trans('ChatAssistant') . '</td>';

print '<td class="center nowraponall">' . $langs->trans('McpServer') . '</td>';

print '</tr>';


if (empty($groupedNormalTools) && empty($groupedSystemTools)) {

  print '<tr class="oddeven"><td colspan="5" class="opacitymedium">' . $langs->trans('NoMcpToolsDiscovered') . '</td></tr>';

} else {

  $groupId = 0;

  $finalGroupsList = array_merge($groupedNormalTools, $groupedSystemTools);


  foreach ($finalGroupsList as $categoryName => $definitions) {

    $groupId++;


    print '<tr class="trgroup" data-group="group-' . $groupId . '">';

    print '<td colspan="5" class="mcp-trigger-collapse" style="cursor:pointer;">';

    print '<span class="toggle-icon">▼</span> ' . dol_escape_htmltag($categoryName);

    print '</td>';

    print '</tr>';


    foreach ($definitions as $def) {

      $name     = $def['name'];

      $desc     = !empty($def['description']) ? $def['description'] : '-';

      $isSystem = !empty($def['is_system']);


      $isAstOn = $isSystem ? true : in_array($name, $astAllowed, true);

      $isMcpOn = $isSystem ? true : in_array($name, $mcpAllowed, true);


      if (preg_match('/^(create|update|delete|add|remove|change|write|edit|validate|pay|send)/i', $name)) {

        $type      = 'write';

        $typeBadge = '<span class="badge badge-status2" style="display: inline-block;">' . $langs->trans('Modify') . '</span>';

      } else {

        $type      = 'read';

        $typeBadge = '<span class="badge badge-status4" style="display: inline-block;">' . $langs->trans('ViewOnly') . '</span>';

      }


      print '<tr class="oddeven group-' . $groupId . '" data-tool-name="' . dol_escape_htmltag($name) . '" data-tool-type="' . $type . '">';


      // Tool

      print '<td style="padding-left:20px; min-width: 130px; word-break: break-all;" class="tdoverflowmax200">';

      print '<strong>' . dol_escape_htmltag($name) . '</strong>';

      if ($isSystem) {

        print '<br><span class="badgeneutral">' . $langs->trans('System') . '</span>';

      }

      print '</td>';


      // Type Badge

      print '<td class="center">' . $typeBadge . '</td>';


      // Tool Description (hidden on mobile)

      print '<td class="small opacitymedium hideonsmartphone">' . dol_escape_htmltag($desc) . '</td>';


      $lockCssClass = $isSystem ? ' opacitymedium disabled' : '';


      // Chat Assistant Switch

      print '<td class="center nowraponall">';

      if ($isSystem) {

        print img_picto($langs->trans('Active'), 'switch_on', '', 0, 0, 0, '', 'opacitymedium');

      } else {

        $actAst   = $isAstOn ? 'delrights' : 'addrights';

        $pictoAst = $isAstOn ? 'switch_on'.($type == 'write' ? '_warning' : '') : 'switch_off';

        $urlAst   = dolBuildUrl($_SERVER["PHP_SELF"], [

          'action'      => $actAst,

          'toolcontext' => 'ast',

          'toolname'    => $name

        ], true);


        print '<a class="ctx-ast-link reposition' . $lockCssClass . '" href="' . $urlAst . '">';

        print img_picto($langs->trans($isAstOn ? 'Remove' : 'Add'), $pictoAst, '', 0, 0, 0, '', !$isAstOn ? 'font-status6' : ($type == 'write' ? 'font-status2' : 'font-status4'));

        print '</a>';

      }

      print '</td>';


      // MCP Server Switch

      print '<td class="center nowraponall">';

      if ($isSystem) {

        print img_picto($langs->trans('Active'), 'switch_on', '', 0, 0, 0, '', 'opacitymedium');

      } else {

        $actMcp   = $isMcpOn ? 'delrights' : 'addrights';

        $pictoMcp = $isMcpOn ? 'switch_on'.($type == 'write' ? '_warning' : '') : 'switch_off';

        $urlMcp   = dolBuildUrl($_SERVER["PHP_SELF"], [

          'action'      => $actMcp,

          'toolcontext' => 'mcp',

          'toolname'    => $name

        ], true);


        print '<a class="ctx-mcp-link reposition' . $lockCssClass . '" href="' . $urlMcp . '">';

        print img_picto($langs->trans($isMcpOn ? 'Remove' : 'Add'), $pictoMcp, '', 0, 0, 0, '', !$isMcpOn ? 'font-status6' : ($type == 'write' ? 'font-status2' : 'font-status4'));

        print '</a>';

      }

      print '</td>';


      print '</tr>' . "\n";

    }

  }

}


print '</table>';

print '</div>';


print dol_get_fiche_end();


llxFooter();

$db->close();

dolibarr_set_const
dolibarr_set_const($db, $name, $value, $type='chaine', $visible=0, $note='', $entity=1)
Insert a parameter (key,value) into database (delete old key then insert it again).
Definition admin.lib.php:672

aiAdminPrepareHead
aiAdminPrepareHead()
Prepare admin pages header.
Definition ai.lib.php:407

llxFooter
llxFooter($comment='', $zone='private', $disabledoutputofmessages=0)
Empty footer.
Definition wrapper.php:91

llxHeader
if(!defined('NOREQUIRESOC')) if(!defined( 'NOREQUIRETRAN')) if(!defined('NOTOKENRENEWAL')) if(!defined( 'NOREQUIREMENU')) if(!defined('NOREQUIREHTML')) if(!defined( 'NOREQUIREAJAX')) llxHeader($head='', $title='', $help_url='', $target='', $disablejs=0, $disablehead=0, $arrayofjs='', $arrayofcss='', $morequerystring='', $morecssonbody='', $replacemainareaby='', $disablenofollow=0, $disablenoindex=0)
Empty header.
Definition wrapper.php:73

McpHandler
Class to handle MCP (Model Context Protocol).
Definition mcp.class.php:39

McpHandler\resolveAllowList
static resolveAllowList($raw, $allDiscoveredTools)
Resolves a raw allow-list constant value into an explicit PHP array of tool names.
Definition mcp.class.php:154

$help_url
if( $action=='addrights'||$action=='delrights') if($action=='apply_preset' &&!empty($toolcontext) &&!empty($mode) $help_url)
ACTIONS.
Definition configure_tools.php:176

$conf
if(!isModEnabled('ai')||!getDolGlobalString('AI_ASSISTANT_ENABLED')) global $conf
The main.inc.php has been included so the following variable are now defined:
Definition execute_tool.php:50

$db
if(!isModEnabled('ai')||!getDolGlobalString('AI_ASSISTANT_ENABLED')) global $db
API class for accounts.
Definition execute_tool.php:46

img_picto
img_picto($titlealt, $picto, $moreatt='', $pictoisfullpath=0, $srconly=0, $notitle=0, $alt='', $morecss='', $marginleftonlyshort=2, $allowothertags=array())
Show picto whatever it's its name (generic function)
Definition functions.lib.php:5657

dol_get_fiche_head
dol_get_fiche_head($links=array(), $active='', $title='', $notab=0, $picto='', $pictoisfullpath=0, $morehtmlright='', $morecss='', $limittoshow=0, $moretabssuffix='', $dragdropfile=0, $morecssdiv='')
Show tabs of a record.
Definition functions.lib.php:3125

dolBuildUrl
dolBuildUrl($url, $params=[], $addtoken=false, $anchor='')
Return path of url.
Definition functions.lib.php:1738

dol_get_fiche_end
dol_get_fiche_end($notab=0)
Return tab footer of a card.
Definition functions.lib.php:3323

GETPOST
GETPOST($paramname, $check='alphanohtml', $method=0, $filter=null, $options=null, $noreplace=0)
Return value of a param into GET or POST supervariable.
Definition functions.lib.php:1082

dol_buildpath
dol_buildpath($path, $type=0, $returnemptyifnotfound=0)
Return path of url or filesystem.
Definition functions.lib.php:1640

load_fiche_titre
load_fiche_titre($title, $morehtmlright='', $picto='generic', $pictoisfullpath=0, $id='', $morecssontable='', $morehtmlcenter='', $morecssonpicto='widthpictotitle')
Load a title with picto.
Definition functions.lib.php:7292

getDolGlobalString
getDolGlobalString($key, $default='')
Return a Dolibarr global constant string value.
Definition functions.lib.php:286

isModEnabled
isModEnabled($module)
Is Dolibarr module enabled.
Definition functions.lib.php:489

dol_escape_htmltag
dol_escape_htmltag($stringtoescape, $keepb=0, $keepn=0, $noescapetags='', $escapeonlyhtmltags=0, $cleanalsojavascript=0)
Returns text escaped for inclusion in HTML alt or title or value tags, or into values of HTML input f...
Definition functions.lib.php:2510

string
print $langs trans("Show") . '< td style="' . $timeColor . '" align="center"> s</td > badge status0 badge status4 badge status3 Error badge status8< td align="center">< span class="badge ' . $badge . '"></span ></td >< td align="center">< a href="#" class="button button-small" onclick="openLogModal(this)" data-req="' . dol_escape_htmltag($reqSafe) . '" data-res="' . dol_escape_htmltag($resSafe) . '" data-err="' . dol_escape_htmltag($errSafe) . '">< span class="fa fa-search-plus"></span ></a ></td ></tr >< tr >< td colspan="' . $colspan . '" class="opacitymedium"></td ></tr ></table ></div ></form > logModal none logModal none s a JSON string
buildzip.php
Definition log_viewer.php:266

accessforbidden
accessforbidden($message='', $printheader=1, $printfooter=1, $showonlymessage=0, $params=null)
Show a message to say access is forbidden and stop program.
Definition security.lib.php:1097