## Application Setup and Launch

In [None]:
import os
import sys
import nest_asyncio
import asyncio
from fastapi import FastAPI
from fastapi.middleware.wsgi import WSGIMiddleware
import httpx
from functools import wraps
import datetime

# üß© Êú¨Âú∞ÂØºÂÖ•Ë∑ØÂæÑÔºåÊ†πÊçÆÊîæÁΩÆÁöÑÈ°πÁõÆÁªìÊûÑË∞ÉÊï¥
sys.path.insert(0, r"E:\Github\a2a-samples\samples\python")

from components.api_key_dialog import api_key_dialog
from components.page_scaffold import page_scaffold
from pages.agent_list import agent_list_page
from pages.conversation import conversation_page
from pages.event_list import event_list_page
from pages.home import home_page_content
from pages.settings import settings_page_content
from pages.task_list import task_list_page
from service.server.server import ConversationServer
from state import host_agent_service
from state.state import AppState
import mesop as me
from contextlib import asynccontextmanager
from dotenv import load_dotenv
import uvicorn
import threading

# ‚úÖ ÂÖÅËÆ∏Âú® Notebook ‰∏≠Â§öÊ¨°ËøêË°å asyncio
nest_asyncio.apply()

# ‚úÖ Âä†ËΩΩ .env ÁéØÂ¢ÉÂèòÈáè
load_dotenv()

# ===== 1. ÂÆâÂÖ®ÈÖçÁΩÆÂ∞ÅË£Ö‰∏éÂÆ°ËÆ°Ê®°Âùó =====
class SecurityManager:
    """
    ‰∏Ä‰∏™‰∏≠ÂøÉÂåñÁöÑÁ±ªÔºåÁî®‰∫éÂ∞ÅË£ÖÂÆâÂÖ®ÈÖçÁΩÆÂíåÂ§ÑÁêÜÂÆ°ËÆ°Êó•Âøó„ÄÇ
    """
    def __init__(self):
        # (Â∞ÅË£Ö) Â∞ÜÂÆâÂÖ®Á≠ñÁï•‰Ωú‰∏∫ÈÖçÁΩÆÂ∞ÅË£ÖÂú®Ê≠§Á±ª‰∏≠
        self.policy = me.SecurityPolicy(allowed_script_srcs=['https://cdn.jsdelivr.net'])
        # (ÂÆ°ËÆ°) ‰∏∫ÂÆ°ËÆ°Êó•ÂøóÂàõÂª∫‰∏Ä‰∏™ÁÆÄÂçïÁöÑÂàóË°®ÔºàÂú®Áîü‰∫ßÁéØÂ¢É‰∏≠ÔºåËøôÂ∫îËØ•ÊòØ‰∏Ä‰∏™ÁúüÊ≠£ÁöÑÊó•ÂøóÊñá‰ª∂ÊàñÊúçÂä°Ôºâ
        self.audit_log = []

    def log_event(self, event_type: str, details: str):
        """
        ËÆ∞ÂΩï‰∏Ä‰∏™Â∏¶ÊúâÊó∂Èó¥Êà≥ÁöÑÂÆâÂÖ®‰∫ã‰ª∂„ÄÇ
        """
        timestamp = datetime.datetime.now().strftime("%Y-%m-%d %H:%M:%S")
        log_entry = f"[{timestamp}] - {event_type}: {details}"
        self.audit_log.append(log_entry)
        # ‰∏∫‰∫ÜÂú® notebook ‰∏≠Á´ãÂç≥ÁúãÂà∞ÂèçÈ¶àÔºåÊàë‰ª¨‰πüÊâìÂç∞Âà∞ÊéßÂà∂Âè∞
        print(f"AUDIT LOG: {log_entry}")

# ÂàõÂª∫ SecurityManager ÁöÑÂÖ®Â±ÄÂçï‰æã
security_manager = SecurityManager()


# ===== 2. ÊùÉÈôêÁÆ°ÁêÜÊ®°Âùó (‰∏éÂÆ°ËÆ°Ê®°ÂùóÈõÜÊàê) =====
class AuthService:
    def __init__(self, security_manager_instance: SecurityManager):
        # ÊùÉÈôêÁé∞Âú®ÂåÖÂê´‰∏Ä‰∏™Êñ∞ÁöÑ 'audit' È°µÈù¢Ôºå‰ªÖÈôê admin
        self._user_permissions = {
            "guest": ["home", "conversation"],
            "admin": ["home", "conversation", "agents", "event_list", "task_list", "settings", "audit"]
        }
        self.current_user_role = "guest"
        self.security_manager = security_manager_instance

    def check_permission(self, page_key: str) -> bool:
        return page_key in self._user_permissions.get(self.current_user_role, [])

    def set_user_role(self, role: str):
        if role in self._user_permissions and role != self.current_user_role:
            old_role = self.current_user_role
            self.current_user_role = role
            # (ÂÆ°ËÆ°) ÂΩìËßíËâ≤ÂèëÁîüÂèòÂåñÊó∂ÔºåËÆ∞ÂΩï‰∫ã‰ª∂
            self.security_manager.log_event(
                "ROLE_CHANGE_SUCCESS",
                f"User role changed from '{old_role}' to '{self.current_user_role}'"
            )
            return True
        elif role not in self._user_permissions:
            self.security_manager.log_event(
                "ROLE_CHANGE_FAILURE",
                f"Attempted to change to an invalid role: '{role}'"
            )
        return False

# Â∞Ü security_manager ÂÆû‰æã‰º†ÂÖ• AuthService
auth_service = AuthService(security_manager)


# ‚öôÔ∏è ÂàùÂßãÂåñ FastAPI & ÂÆ¢Êà∑Á´ØÂ∞ÅË£Ö
class HTTPXClientWrapper:
    async_client: httpx.AsyncClient = None
    def start(self):
        self.async_client = httpx.AsyncClient(timeout=30)
    async def stop(self):
        await self.async_client.aclose()
        self.async_client = None
    def __call__(self):
        assert self.async_client is not None
        return self.async_client

httpx_client_wrapper = HTTPXClientWrapper()


# ===== 3. Âä®ÊÄÅÈ°µÈù¢Ê≥®ÂÜå (‰∏éÂÆ°ËÆ°Ê®°ÂùóÈõÜÊàê) =====
def register_page(path, title, page_key, on_load_fn):
    def decorator(func):
        # ‰ªé security_manager Ëé∑ÂèñÂ∞ÅË£ÖÁöÑÁ≠ñÁï•
        @me.page(path=path, title=title, on_load=on_load_fn, security_policy=security_manager.policy)
        @wraps(func)
        def wrapper():
            # (ÂÆ°ËÆ°) Âú®Ê£ÄÊü•ÊùÉÈôê‰πãÂâçÔºåÂÖàËÆ∞ÂΩïËÆøÈóÆÂ∞ùËØï
            has_permission = auth_service.check_permission(page_key)
            if not has_permission:
                security_manager.log_event(
                    "ACCESS_DENIED",
                    f"User '{auth_service.current_user_role}' was denied access to page '{page_key}' at path '{path}'"
                )
                me.text(f"ÊÇ®Ê≤°ÊúâÊùÉÈôêËÆøÈóÆ {title} È°µÈù¢„ÄÇ")
                return

            security_manager.log_event(
                "ACCESS_GRANTED",
                f"User '{auth_service.current_user_role}' was granted access to page '{page_key}' at path '{path}'"
            )
            func()
        return wrapper
    return decorator

def on_load(e: me.LoadEvent):
    state = me.state(AppState)
    me.set_theme_mode(state.theme_mode)
    # ... (ÂÖ∂‰Ωô on_load ‰ª£Á†Å‰øùÊåÅ‰∏çÂèò)
    if 'conversation_id' in me.query_params:
        state.current_conversation_id = me.query_params['conversation_id']
    else:
        state.current_conversation_id = ''
    uses_vertex_ai = os.getenv('GOOGLE_GENAI_USE_VERTEXAI', '').upper() == 'TRUE'
    api_key = os.getenv('GOOGLE_API_KEY', '')
    if uses_vertex_ai:
        state.uses_vertex_ai = True
    elif api_key:
        state.api_key = api_key
    else:
        state.api_key_dialog_open = True


# ===== 4. Conversation Retry & Loading ÂäüËÉΩ =====
async def handle_backend_call(user_input: str) -> str:
    """Ê®°Êãü‰∏éÂêéÁ´ØÊàñAIÊ®°ÂûãÁöÑÂºÇÊ≠•‰∫§‰∫í"""
    await asyncio.sleep(2)
    if "fail" in user_input.lower():
        raise ConnectionError("Ê®°ÊãüAPIË∞ÉÁî®Â§±Ë¥•")
    return f"ËøôÊòØÂØπ ‚Äú{user_input}‚Äù ÁöÑÂõûÂ§ç„ÄÇTimestamp: {datetime.datetime.now().isoformat()}"


async def on_submit_message(e: me.ClickEvent):
    """Â§ÑÁêÜÁî®Êà∑ÂèëÈÄÅÊñ∞Ê∂àÊÅØÁöÑ‰∫ã‰ª∂"""
    state = me.state(AppState)
    if not state.current_user_input.strip(): return
    if not state.current_conversation_id:
        state.current_conversation_id = str(uuid.uuid4())
        state.conversations[state.current_conversation_id] = []
    
    conv = state.conversations[state.current_conversation_id]
    user_msg = Message(id=str(uuid.uuid4()), content=state.current_user_input, role="user")
    conv.append(user_msg)
    
    placeholder_msg = Message(id=str(uuid.uuid4()), content="", role="model", status="loading")
    conv.append(placeholder_msg)

    user_input_for_backend = state.current_user_input
    state.current_user_input = ""
    yield

    try:
        response = await handle_backend_call(user_input_for_backend)
        placeholder_msg.content = response
        placeholder_msg.status = "sent"
    except Exception:
        user_msg.status = "error"
        conv.pop()
    yield


async def on_retry_click(e: me.ClickEvent):
    """Â§ÑÁêÜÁî®Êà∑ÁÇπÂáªÈáçËØïÊåâÈíÆÁöÑ‰∫ã‰ª∂"""
    state = me.state(AppState)
    message_id = e.key
    conv = state.conversations.get(state.current_conversation_id)
    if not conv: return
    failed_msg = next((msg for msg in conv if msg.id == message_id), None)
    if not failed_msg: return
    failed_msg.status = "sent"
    placeholder_msg = Message(id=str(uuid.uuid4()), content="", role="model", status="loading")
    conv.append(placeholder_msg)
    yield
    try:
        response = await handle_backend_call(failed_msg.content)
        placeholder_msg.content = response
        placeholder_msg.status = "sent"
    except Exception:
        failed_msg.status = "error"
        conv.pop()
    yield


# ===== 5. È°µÈù¢ÂÆö‰πâ =====
@register_page(path='/', title='Chat', page_key='home', on_load_fn=on_load)
def home_page():
    api_key_dialog()
    with page_scaffold():
        home_page_content(me.state(AppState))

@register_page(path='/agents', title='Agents', page_key='agents', on_load_fn=on_load)
def agents_page():
    agent_list_page(me.state(AppState))

@register_page(path='/conversation', title='Conversation', page_key='conversation', on_load_fn=on_load)
def conversation():
    conversation_page(me.state(AppState))

@register_page(path='/event_list', title='Event List', page_key='event_list', on_load_fn=on_load)
def events():
    event_list_page(me.state(AppState))

@register_page(path='/task_list', title='Task List', page_key='task_list', on_load_fn=on_load)
def tasks():
    task_list_page(me.state(AppState))

@register_page(path='/settings', title='Settings', page_key='settings', on_load_fn=on_load)
def settings():
    settings_page_content()

# (ÂÆ°ËÆ°) Êñ∞Â¢û‰∏Ä‰∏™ admin ‰∏ìÂ±ûÁöÑÂÆ°ËÆ°Êó•ÂøóÈ°µÈù¢
@register_page(path='/audit', title='Audit Log', page_key='audit', on_load_fn=on_load)
def audit_page():
    with page_scaffold():
        me.h1("Security Audit Log")
        me.text("ÊòæÁ§∫ÊúÄÊñ∞ÁöÑ‰∫ã‰ª∂Âú®ÊúÄ‰∏äÊñπ„ÄÇ")
        if not security_manager.audit_log:
            me.text("ËøòÊ≤°ÊúâÂÆ°ËÆ°‰∫ã‰ª∂Ë¢´ËÆ∞ÂΩï„ÄÇ")
        else:
            # ‰ª•Áõ∏ÂèçÁöÑÈ°∫Â∫èÊòæÁ§∫Êó•ÂøóÔºåÊúÄÊñ∞ÁöÑÂú®ÊúÄÂâçÈù¢
            for entry in reversed(security_manager.audit_log):
                me.text(entry, style=me.Style(font_family="monospace", white_space="pre-wrap"))


# ‚úÖ ÂÆö‰πâ lifespan ÁîüÂëΩÂë®ÊúüÔºàFastAPI ÂêØÂä®Èí©Â≠êÔºâ
@asynccontextmanager
async def lifespan(app: FastAPI):
    httpx_client_wrapper.start()
    ConversationServer(app, httpx_client_wrapper())
    app.openapi_schema = None
    app.mount("/", WSGIMiddleware(me.create_wsgi_app(debug_mode=False)))
    app.setup()
    yield
    await httpx_client_wrapper.stop()

# ===== 6. ÂêØÂä®ÊúçÂä° =====
# Âú®ËøôÈáåÂàáÊç¢ËßíËâ≤‰ª•ËøõË°åÊµãËØï
auth_service.set_user_role("admin")

app = FastAPI(lifespan=lifespan)
host = os.environ.get('A2A_UI_HOST', '127.0.0.1')
port = int(os.environ.get('A2A_UI_PORT', '12000'))
host_agent_service.server_url = f"http://{host}:{port}"

def run_uvicorn():
    uvicorn.run(app, host=host, port=port, log_level="info")

threading.Thread(target=run_uvicorn, daemon=True).start()
print(f"‚úÖ Uvicorn Â∑≤Âú®ÂêéÂè∞ÂêØÂä®Ôºö http://{host}:{port}  ÔºàÊµèËßàÂô®ÊâìÂºÄËøô‰∏™Âú∞ÂùÄËØïËØïÔºâ")


AUDIT LOG: [2025-07-21 01:32:30] - ROLE_CHANGE_SUCCESS: User role changed from 'guest' to 'admin'
‚úÖ Uvicorn Â∑≤Âú®ÂêéÂè∞ÂêØÂä®Ôºö http://127.0.0.1:12000  ÔºàÊµèËßàÂô®ÊâìÂºÄËøô‰∏™Âú∞ÂùÄËØïËØïÔºâ


INFO:     Started server process [20436]
INFO:     Waiting for application startup.
INFO:     Application startup complete.
INFO:     Uvicorn running on http://127.0.0.1:12000 (Press CTRL+C to quit)


INFO:     127.0.0.1:14330 - "GET / HTTP/1.1" 200 OK
INFO:     127.0.0.1:14330 - "GET /styles.css HTTP/1.1" 304 Not Modified
INFO:     127.0.0.1:14331 - "GET /zone.js/bundles/zone.umd.js HTTP/1.1" 304 Not Modified
INFO:     127.0.0.1:14333 - "GET /prod_bundle.js HTTP/1.1" 304 Not Modified
INFO:     127.0.0.1:14333 - "POST /__ui__ HTTP/1.1" 200 OK
INFO:     127.0.0.1:14333 - "GET /__web-components-module__/components/async_poller.js HTTP/1.1" 304 Not Modified
INFO:     127.0.0.1:14333 - "POST /__ui__ HTTP/1.1" 200 OK
INFO:     127.0.0.1:14350 - "POST /conversation/list HTTP/1.1" 200 OK
INFO:     127.0.0.1:14352 - "POST /task/list HTTP/1.1" 200 OK
INFO:     127.0.0.1:14354 - "POST /message/pending HTTP/1.1" 200 OK
INFO:     127.0.0.1:14333 - "POST /__ui__ HTTP/1.1" 200 OK
INFO:     127.0.0.1:14360 - "POST /conversation/list HTTP/1.1" 200 OK
INFO:     127.0.0.1:14362 - "POST /task/list HTTP/1.1" 200 OK
INFO:     127.0.0.1:14364 - "POST /message/pending HTTP/1.1" 200 OK
INFO:     127.0.0.1:

## Asynchronous Task Framework

In [2]:
import asyncio, uuid, threading
from IPython.display import display, clear_output

# 1. Â∑≤ÊúâÊº´ÈïøÁöÑÂêåÊ≠•ÂáΩÊï∞
def run_pipeline_sync(user_input: str):
    import time
    time.sleep(5)                      
    return f"‚úÖ Â∑≤Â§ÑÁêÜ: {user_input}"

# 2. ÊääÂêåÊ≠•ÂáΩÊï∞‰∏¢ËøõÁ∫øÁ®ãÊ±† -> ÂèòÂºÇÊ≠•
async def run_pipeline_async(user_input: str):
    return await asyncio.to_thread(run_pipeline_sync, user_input)

# 3. ===== ‰ª•‰∏ãÊòØÂºÇÊ≠•‰ªªÂä°Ê°ÜÊû∂ =====
TASK_STATUS, TASK_RESULT = {}, {}

async def _long_task(task_id: str, user_input: str):
    TASK_STATUS[task_id] = "Running"
    try:
        result = await run_pipeline_async(user_input)
        TASK_RESULT[task_id] = result
        TASK_STATUS[task_id] = "Success"
    except Exception as e:
        TASK_STATUS[task_id] = f"Failed: {e}"

def start_task(user_input: str):
    task_id = str(uuid.uuid4())
    TASK_STATUS[task_id] = "Pending"
    asyncio.create_task(_long_task(task_id, user_input))
    return task_id

def get_task_status(task_id: str):
    return TASK_STATUS.get(task_id, "Unknown Task")

async def run_and_display_task(user_input: str):
    task_id = start_task(user_input)
    while True:
        status = get_task_status(task_id)
        clear_output(wait=True)
        display(f"‰ªªÂä° {task_id[:8]}‚Ä¶ Áä∂ÊÄÅÔºö{status}")
        if status == "Success" or status.startswith("Failed"):
            break
        await asyncio.sleep(1)
    display("‰ªªÂä°ÁªìÊûúÔºö", TASK_RESULT.get(task_id, "ÔºàÊó†ÁªìÊûúÔºâ"))

## Demo

In [None]:
async def demo_multi():
    ids = [start_task(f"MSG {i}") for i in range(5)]
    while True:
        clear_output(wait=True)
        for tid in ids:
            print(f"{tid[:8]}  ‚Üí  {get_task_status(tid)}")
        if all(get_task_status(tid).startswith(("Success", "Failed")) for tid in ids):
            break
        await asyncio.sleep(1)
    print("\nÂÖ®ÈÉ®ÂÆåÊàêÔºÅÁªìÊûúÈ¢ÑËßàÔºö")
    for tid in ids:
        print(tid[:8], "=>", TASK_RESULT.get(tid))

await demo_multi()

89bda1d2  ‚Üí  Success
dfaac8ca  ‚Üí  Success
0979d7a8  ‚Üí  Success
eeefe7c1  ‚Üí  Success
dad75834  ‚Üí  Success

ÂÖ®ÈÉ®ÂÆåÊàêÔºÅÁªìÊûúÈ¢ÑËßàÔºö
89bda1d2 => ‚úÖ Â∑≤Â§ÑÁêÜ: MSG 0
dfaac8ca => ‚úÖ Â∑≤Â§ÑÁêÜ: MSG 1
0979d7a8 => ‚úÖ Â∑≤Â§ÑÁêÜ: MSG 2
eeefe7c1 => ‚úÖ Â∑≤Â§ÑÁêÜ: MSG 3
dad75834 => ‚úÖ Â∑≤Â§ÑÁêÜ: MSG 4


AUDIT LOG: [2025-07-21 01:32:54] - ACCESS_GRANTED: User 'admin' was granted access to page 'home' at path '/'
AUDIT LOG: [2025-07-21 01:32:55] - ACCESS_GRANTED: User 'admin' was granted access to page 'home' at path '/'
AUDIT LOG: [2025-07-21 01:32:56] - ACCESS_GRANTED: User 'admin' was granted access to page 'home' at path '/'
AUDIT LOG: [2025-07-21 01:32:56] - ACCESS_GRANTED: User 'admin' was granted access to page 'home' at path '/'
AUDIT LOG: [2025-07-21 01:32:56] - ACCESS_GRANTED: User 'admin' was granted access to page 'home' at path '/'
AUDIT LOG: [2025-07-21 01:32:56] - ACCESS_GRANTED: User 'admin' was granted access to page 'home' at path '/'
AUDIT LOG: [2025-07-21 01:32:56] - ACCESS_GRANTED: User 'admin' was granted access to page 'home' at path '/'
AUDIT LOG: [2025-07-21 01:32:57] - ACCESS_GRANTED: User 'admin' was granted access to page 'home' at path '/'
AUDIT LOG: [2025-07-21 01:32:57] - ACCESS_GRANTED: User 'admin' was granted access to page 'home' at path '/'
AUDIT LOG: