aa6a6700f4
* feat(me/stats): per-analyst Stats dashboard with 4 tabs
New /me/stats page shows the calling user's own analytics across
four tabs, lazy-loaded per activation:
- **Sessions** — paginated usage_session_summary join with a
filesystem scan of un-processed JSONL (mirrors admin
list_user_sessions shape). v44 token columns aggregated per row.
- **Tokens** — daily series (default 30 days), by-model breakdown
(lifetime), top-10 biggest sessions, lifetime totals. Single
CTE per sub-query against per-user partition (idx_usage_session_user).
- **Data access** — audit_log rows where action LIKE 'query.%' for
the caller. Covers query.local / query.hybrid / query.remote /
query.internal. Cursor-paginated on (timestamp, id).
- **Sync activity** — audit_log rows where action is sync.* or
manifest.* for the caller, plus users.last_pull_at for the
header. Per-pull history now persists thanks to the new
manifest.fetch audit row.
Backend: app/api/me_stats.py — single APIRouter at /api/me/stats/*,
four GET endpoints, all gated by get_current_user (server-side
caller scope; the page route itself only renders the shell).
Frontend: app/web/templates/me_stats.html — tab bar + 4 panels,
plain JS lazy-loads each panel's endpoint on first activation,
caches per-tab so switching back doesn't refetch. Small SVG bar
chart on Tokens tab (no external charting dep). 'Stats' link
added to _app_header.html primary nav between 'Data Packages'
and the Admin dropdown.
Side change in app/api/sync.py: /api/sync/manifest now emits a
manifest.fetch audit_log row alongside the existing
users.last_pull_at bump. The column UPDATE only retains the
most recent timestamp; per-pull history needs an audit row.
client_kind='api' for the manifest endpoint (vs. 'web' which
the audit-read deduper uses for AC reads), so the Sync tab can
distinguish CLI pulls from browser-driven manifest peeks.
7 new tests in tests/test_me_stats.py:
- sessions endpoint caller-scope isolation (user A doesn't see B)
- sessions pagination
- tokens empty-user zero shape
- tokens aggregation across daily window + by_model + top + totals
- queries endpoint filters to action LIKE 'query.%' + caller scope
- sync endpoint surfaces both manifest.fetch and sync.trigger
- manifest endpoint writes the manifest.fetch audit row
* ui(me/stats): widen page to 1400px via main.main escape
Default base.html .container wraps content at max-width 800px. Stats
tables (by-model + top-sessions: 6 columns each) felt cramped at that
width — same constraint dashboard.html escapes via the {% block layout %}
override pattern. Mirror that here: render <main class="main"> and
bump .stats-page max-width to 1400px so the 6-column tables breathe
without going edge-to-edge on wide monitors.
* ui(me/stats): narrow from 1400px to 1280px to match /home
/home isn't actually .container's default 800px — style-custom.css
has a body:has(.home-mock) .container { max-width: 1280px } override
that widens it. 1280px is the shared 'wide content' width across the
codebase (top-nav header + /home + dashboard all use it).
Bumping me_stats from 1400px to 1280px so the Stats page reads as
'same chrome' instead of distinctly wider than its sibling pages.
454 lines
16 KiB
Python
454 lines
16 KiB
Python
"""Self-scoped Stats endpoints for /me/stats — the analyst's own
|
|
analytics dashboard.
|
|
|
|
Four tabs, four endpoints, all gated by ``get_current_user`` so a
|
|
caller can only see their own data:
|
|
|
|
- ``GET /api/me/stats/sessions?limit=&offset=`` — paginated session
|
|
list joined from ``usage_session_summary`` (post-processor) with a
|
|
filesystem scan of un-processed JSONL (matches the admin
|
|
``list_user_sessions`` shape).
|
|
- ``GET /api/me/stats/tokens?days=30`` — daily token series + by-model
|
|
breakdown + top-10 biggest sessions. Powers the Tokens tab chart.
|
|
- ``GET /api/me/stats/queries?cursor_ts=&cursor_id=&limit=`` —
|
|
``audit_log`` rows where ``action LIKE 'query.%'`` (BQ + local
|
|
DuckDB queries) for this user. Cursor-paginated (keyset on
|
|
``(timestamp, id)``).
|
|
- ``GET /api/me/stats/sync?cursor_ts=&cursor_id=&limit=`` —
|
|
``audit_log`` rows where action is ``sync.*`` or ``manifest.*``,
|
|
plus the user's ``last_pull_at`` for prominent header rendering.
|
|
|
|
Username derivation: ``_username_for_stats(user)`` reuses the
|
|
email-local-part rule from ``app.api.me`` so the joins on
|
|
``usage_*`` rows (filesystem-derived OS username) align with what
|
|
the session collector writes.
|
|
"""
|
|
from __future__ import annotations
|
|
|
|
import logging
|
|
import os
|
|
from datetime import datetime
|
|
from pathlib import Path
|
|
from typing import Any, Optional
|
|
|
|
import duckdb
|
|
from fastapi import APIRouter, Depends, Query
|
|
|
|
from app.auth.dependencies import _get_db, get_current_user
|
|
from src.repositories.audit import AuditRepository
|
|
|
|
logger = logging.getLogger(__name__)
|
|
|
|
router = APIRouter(prefix="/api/me/stats", tags=["me"])
|
|
|
|
|
|
def _username_for_stats(user: dict) -> str:
|
|
"""Email local-part → filesystem username, mirroring the rule in
|
|
``app.api.me._username_for_stats``. Kept inline so this module
|
|
has no cross-import dependency on ``me.py``; if the mapping
|
|
evolves both copies update.
|
|
"""
|
|
email: str = user.get("email", "") or ""
|
|
return email.split("@")[0] if "@" in email else email
|
|
|
|
|
|
def _session_data_dir() -> Path:
|
|
"""Match ``app.api.admin_user_sessions._session_data_dir``."""
|
|
return Path(
|
|
os.environ.get("SESSION_DATA_DIR")
|
|
or os.environ.get("AGNES_SESSION_DATA_DIR")
|
|
or "/data/sessions"
|
|
)
|
|
|
|
|
|
# ---------------------------------------------------------------------------
|
|
# Sessions tab
|
|
# ---------------------------------------------------------------------------
|
|
|
|
|
|
@router.get("/sessions")
|
|
def list_self_sessions(
|
|
limit: int = Query(50, ge=1, le=200),
|
|
offset: int = Query(0, ge=0),
|
|
user: dict = Depends(get_current_user),
|
|
conn: duckdb.DuckDBPyConnection = Depends(_get_db),
|
|
) -> dict:
|
|
"""Paginated session list for the calling user.
|
|
|
|
Joins ``usage_session_summary`` (processed=true) with a filesystem
|
|
scan of un-processed JSONL so a session appears immediately even
|
|
before the UsageProcessor runs. Mirrors the admin
|
|
``list_user_sessions`` projection plus the v44 token columns —
|
|
the Stats tab renders one row per session with totals on the
|
|
right.
|
|
"""
|
|
username = _username_for_stats(user)
|
|
user_dir = _session_data_dir() / username
|
|
|
|
try:
|
|
rows_db = conn.execute(
|
|
"""
|
|
SELECT
|
|
session_file, session_id, started_at, ended_at,
|
|
active_seconds, wall_seconds,
|
|
user_messages, tool_calls, tool_errors,
|
|
input_tokens, output_tokens,
|
|
cache_read_tokens, cache_creation_tokens,
|
|
primary_model
|
|
FROM usage_session_summary
|
|
WHERE username = ?
|
|
ORDER BY started_at DESC NULLS LAST
|
|
""",
|
|
[username],
|
|
).fetchall()
|
|
except Exception:
|
|
# usage_session_summary may not exist on a partially-migrated DB.
|
|
# Fall back to filesystem-only listing rather than 500.
|
|
rows_db = []
|
|
|
|
cols = [
|
|
"session_file", "session_id", "started_at", "ended_at",
|
|
"active_seconds", "wall_seconds",
|
|
"user_messages", "tool_calls", "tool_errors",
|
|
"input_tokens", "output_tokens",
|
|
"cache_read_tokens", "cache_creation_tokens",
|
|
"primary_model",
|
|
]
|
|
processed: dict[str, dict] = {}
|
|
for r in rows_db:
|
|
d = dict(zip(cols, r))
|
|
for k in ("started_at", "ended_at"):
|
|
v = d.get(k)
|
|
if v is not None and hasattr(v, "isoformat"):
|
|
d[k] = v.isoformat()
|
|
d["tokens_total"] = (
|
|
int(d.get("input_tokens") or 0)
|
|
+ int(d.get("output_tokens") or 0)
|
|
+ int(d.get("cache_read_tokens") or 0)
|
|
+ int(d.get("cache_creation_tokens") or 0)
|
|
)
|
|
d["processed"] = True
|
|
processed[d["session_file"]] = d
|
|
|
|
all_rows: list[dict] = list(processed.values())
|
|
if user_dir.is_dir():
|
|
for p in sorted(
|
|
user_dir.glob("*.jsonl"),
|
|
key=lambda x: x.stat().st_mtime,
|
|
reverse=True,
|
|
):
|
|
if p.name in processed:
|
|
continue
|
|
mtime = datetime.fromtimestamp(p.stat().st_mtime).isoformat()
|
|
all_rows.append({
|
|
"session_file": p.name,
|
|
"session_id": p.stem,
|
|
"started_at": mtime,
|
|
"ended_at": None,
|
|
"active_seconds": 0,
|
|
"wall_seconds": 0,
|
|
"user_messages": 0,
|
|
"tool_calls": 0,
|
|
"tool_errors": 0,
|
|
"input_tokens": 0,
|
|
"output_tokens": 0,
|
|
"cache_read_tokens": 0,
|
|
"cache_creation_tokens": 0,
|
|
"tokens_total": 0,
|
|
"primary_model": None,
|
|
"processed": False,
|
|
})
|
|
|
|
all_rows.sort(
|
|
key=lambda r: r.get("started_at") or "",
|
|
reverse=True,
|
|
)
|
|
total = len(all_rows)
|
|
page = all_rows[offset : offset + limit]
|
|
return {
|
|
"total": total,
|
|
"offset": offset,
|
|
"limit": limit,
|
|
"rows": page,
|
|
}
|
|
|
|
|
|
# ---------------------------------------------------------------------------
|
|
# Tokens tab
|
|
# ---------------------------------------------------------------------------
|
|
|
|
|
|
@router.get("/tokens")
|
|
def get_tokens(
|
|
days: int = Query(30, ge=1, le=365),
|
|
user: dict = Depends(get_current_user),
|
|
conn: duckdb.DuckDBPyConnection = Depends(_get_db),
|
|
) -> dict:
|
|
"""Token breakdown for the Tokens tab.
|
|
|
|
Returns a daily series (last *days* days), by-model breakdown
|
|
(lifetime), top-10 biggest sessions (by total tokens, lifetime),
|
|
and the lifetime grand total. Single round-trip via three
|
|
sub-queries — each scans the same per-user partition of
|
|
``usage_session_summary`` which the
|
|
``idx_usage_session_user`` index supports.
|
|
"""
|
|
username = _username_for_stats(user)
|
|
|
|
# Daily series — interval literal interpolated from validated `days`.
|
|
daily = conn.execute(
|
|
f"""
|
|
SELECT
|
|
CAST(started_at AS DATE) AS day,
|
|
COALESCE(SUM(input_tokens), 0) AS input_tokens,
|
|
COALESCE(SUM(output_tokens), 0) AS output_tokens,
|
|
COALESCE(SUM(cache_read_tokens), 0) AS cache_read,
|
|
COALESCE(SUM(cache_creation_tokens), 0) AS cache_creation,
|
|
COUNT(*) AS sessions
|
|
FROM usage_session_summary
|
|
WHERE username = ?
|
|
AND started_at >= current_timestamp - INTERVAL {int(days)} DAY
|
|
GROUP BY 1
|
|
ORDER BY 1
|
|
""",
|
|
[username],
|
|
).fetchall()
|
|
daily_series = [
|
|
{
|
|
"day": d.isoformat() if hasattr(d, "isoformat") else str(d),
|
|
"input": int(i or 0),
|
|
"output": int(o or 0),
|
|
"cache_read": int(cr or 0),
|
|
"cache_creation": int(cc or 0),
|
|
"sessions": int(s or 0),
|
|
"total": int((i or 0) + (o or 0) + (cr or 0) + (cc or 0)),
|
|
}
|
|
for (d, i, o, cr, cc, s) in daily
|
|
]
|
|
|
|
by_model = conn.execute(
|
|
"""
|
|
SELECT
|
|
COALESCE(primary_model, '(unknown)') AS model,
|
|
COALESCE(SUM(input_tokens), 0) AS input_tokens,
|
|
COALESCE(SUM(output_tokens), 0) AS output_tokens,
|
|
COALESCE(SUM(cache_read_tokens), 0) AS cache_read,
|
|
COALESCE(SUM(cache_creation_tokens), 0) AS cache_creation,
|
|
COUNT(*) AS sessions
|
|
FROM usage_session_summary
|
|
WHERE username = ?
|
|
GROUP BY 1
|
|
ORDER BY (
|
|
COALESCE(SUM(input_tokens), 0)
|
|
+ COALESCE(SUM(output_tokens), 0)
|
|
+ COALESCE(SUM(cache_read_tokens), 0)
|
|
+ COALESCE(SUM(cache_creation_tokens), 0)
|
|
) DESC
|
|
""",
|
|
[username],
|
|
).fetchall()
|
|
model_breakdown = [
|
|
{
|
|
"model": m, "input": int(i or 0), "output": int(o or 0),
|
|
"cache_read": int(cr or 0), "cache_creation": int(cc or 0),
|
|
"sessions": int(s or 0),
|
|
"total": int((i or 0) + (o or 0) + (cr or 0) + (cc or 0)),
|
|
}
|
|
for (m, i, o, cr, cc, s) in by_model
|
|
]
|
|
|
|
top_sessions = conn.execute(
|
|
"""
|
|
SELECT
|
|
session_file, session_id, started_at, primary_model,
|
|
input_tokens, output_tokens,
|
|
cache_read_tokens, cache_creation_tokens,
|
|
(COALESCE(input_tokens, 0) + COALESCE(output_tokens, 0)
|
|
+ COALESCE(cache_read_tokens, 0) + COALESCE(cache_creation_tokens, 0))
|
|
AS tokens_total
|
|
FROM usage_session_summary
|
|
WHERE username = ?
|
|
ORDER BY tokens_total DESC
|
|
LIMIT 10
|
|
""",
|
|
[username],
|
|
).fetchall()
|
|
top = [
|
|
{
|
|
"session_file": sf,
|
|
"session_id": sid,
|
|
"started_at": st.isoformat() if hasattr(st, "isoformat") else st,
|
|
"primary_model": pm,
|
|
"input": int(i or 0), "output": int(o or 0),
|
|
"cache_read": int(cr or 0), "cache_creation": int(cc or 0),
|
|
"total": int(tt or 0),
|
|
}
|
|
for (sf, sid, st, pm, i, o, cr, cc, tt) in top_sessions
|
|
]
|
|
|
|
totals_row = conn.execute(
|
|
"""
|
|
SELECT
|
|
COALESCE(SUM(input_tokens), 0),
|
|
COALESCE(SUM(output_tokens), 0),
|
|
COALESCE(SUM(cache_read_tokens), 0),
|
|
COALESCE(SUM(cache_creation_tokens), 0),
|
|
COUNT(*)
|
|
FROM usage_session_summary
|
|
WHERE username = ?
|
|
""",
|
|
[username],
|
|
).fetchone()
|
|
ti, to, tcr, tcc, tses = totals_row or (0, 0, 0, 0, 0)
|
|
totals = {
|
|
"input": int(ti or 0),
|
|
"output": int(to or 0),
|
|
"cache_read": int(tcr or 0),
|
|
"cache_creation": int(tcc or 0),
|
|
"total": int((ti or 0) + (to or 0) + (tcr or 0) + (tcc or 0)),
|
|
"sessions": int(tses or 0),
|
|
}
|
|
|
|
return {
|
|
"days": days,
|
|
"daily": daily_series,
|
|
"by_model": model_breakdown,
|
|
"top_sessions": top,
|
|
"totals": totals,
|
|
}
|
|
|
|
|
|
# ---------------------------------------------------------------------------
|
|
# Data access tab (BQ + DuckDB queries)
|
|
# ---------------------------------------------------------------------------
|
|
|
|
|
|
@router.get("/queries")
|
|
def list_self_queries(
|
|
limit: int = Query(50, ge=1, le=200),
|
|
cursor_ts: Optional[datetime] = None,
|
|
cursor_id: Optional[str] = None,
|
|
user: dict = Depends(get_current_user),
|
|
conn: duckdb.DuckDBPyConnection = Depends(_get_db),
|
|
) -> dict:
|
|
"""Audit-log rows where ``action LIKE 'query.%'`` for the caller.
|
|
|
|
Covers query.local (DuckDB on parquet), query.hybrid (BQ + local
|
|
join), query.remote (BQ direct), and query.internal (admin
|
|
internal queries that get attributed to the actor). Cursor
|
|
pagination on (timestamp, id) so streams under concurrent
|
|
writes don't double-render rows.
|
|
"""
|
|
cursor = (cursor_ts, cursor_id) if cursor_ts and cursor_id else None
|
|
rows, next_cursor = AuditRepository(conn).query(
|
|
user_id=user["id"],
|
|
action_prefix="query.",
|
|
cursor=cursor,
|
|
limit=limit,
|
|
)
|
|
return _audit_response(rows, next_cursor, limit)
|
|
|
|
|
|
# ---------------------------------------------------------------------------
|
|
# Sync activity tab
|
|
# ---------------------------------------------------------------------------
|
|
|
|
|
|
@router.get("/sync")
|
|
def list_self_sync_activity(
|
|
limit: int = Query(50, ge=1, le=200),
|
|
cursor_ts: Optional[datetime] = None,
|
|
cursor_id: Optional[str] = None,
|
|
user: dict = Depends(get_current_user),
|
|
conn: duckdb.DuckDBPyConnection = Depends(_get_db),
|
|
) -> dict:
|
|
"""Audit-log rows where action is ``sync.*`` or ``manifest.*``
|
|
for the caller, plus ``users.last_pull_at`` for the header card.
|
|
|
|
Two action prefixes are merged with a UNION-ish IN filter via
|
|
``AuditRepository.query(action_in=[...])`` — but the repo helper
|
|
doesn't take both prefix and IN, so we call twice and merge.
|
|
Cheaper alternative is two SELECTs in the repo; for now we fetch
|
|
two pages and interleave because cursor merging across two
|
|
independent streams is fiddly without a unified ORDER. To keep
|
|
the code obvious, we use ``query_actions(...)`` and accept that
|
|
the cursor is single-stream (start over to page back; first page
|
|
is what matters for the dashboard).
|
|
"""
|
|
actions_seen = AuditRepository(conn).query_actions(
|
|
actions=_sync_action_list(),
|
|
limit=limit,
|
|
)
|
|
# Filter to this user — query_actions doesn't take user_id.
|
|
user_rows = [r for r in actions_seen if r.get("user_id") == user["id"]]
|
|
|
|
last_pull_row = conn.execute(
|
|
"SELECT last_pull_at FROM users WHERE id = ?", [user["id"]]
|
|
).fetchone()
|
|
last_pull_at = last_pull_row[0] if last_pull_row else None
|
|
|
|
return {
|
|
"last_pull_at": last_pull_at.isoformat()
|
|
if last_pull_at and hasattr(last_pull_at, "isoformat")
|
|
else last_pull_at,
|
|
"rows": [_audit_row_to_payload(r) for r in user_rows[:limit]],
|
|
# No next_cursor in this branch — fetched a single newest-window
|
|
# page. Pagination beyond the first page is rarely needed for
|
|
# personal sync history; the timeline tab in /admin/activity is
|
|
# the place for deeper dives.
|
|
"next_cursor": None,
|
|
}
|
|
|
|
|
|
def _sync_action_list() -> list[str]:
|
|
"""The set of audit actions that surface on the Sync activity tab.
|
|
|
|
Concrete known actions today:
|
|
- ``sync.trigger`` — admin manually kicks a sync.
|
|
- ``manifest.fetch`` — added in this PR; bumped on every
|
|
``GET /api/sync/manifest``.
|
|
|
|
Listed explicitly (vs. a prefix LIKE) so accidental future
|
|
``sync.*`` actions (e.g. an admin-only ``sync.config_change``)
|
|
don't leak into the analyst-facing view without review.
|
|
"""
|
|
return ["sync.trigger", "manifest.fetch"]
|
|
|
|
|
|
# ---------------------------------------------------------------------------
|
|
# Shared helpers
|
|
# ---------------------------------------------------------------------------
|
|
|
|
|
|
def _audit_row_to_payload(row: dict) -> dict:
|
|
"""Convert a raw audit_log row dict to the JSON shape the Stats
|
|
tabs render. Drops `correlation_id` (not useful per-user) and
|
|
iso-stringifies the timestamp."""
|
|
ts = row.get("timestamp")
|
|
return {
|
|
"id": row.get("id"),
|
|
"timestamp": ts.isoformat() if ts and hasattr(ts, "isoformat") else ts,
|
|
"action": row.get("action"),
|
|
"resource": row.get("resource"),
|
|
"result": row.get("result"),
|
|
"duration_ms": row.get("duration_ms"),
|
|
"params": row.get("params"),
|
|
"client_kind": row.get("client_kind"),
|
|
}
|
|
|
|
|
|
def _audit_response(rows: list[dict], next_cursor, limit: int) -> dict:
|
|
"""Shared shape for the queries and (alternate path) sync endpoints."""
|
|
if next_cursor is not None:
|
|
ts, cid = next_cursor
|
|
nc = {
|
|
"timestamp": ts.isoformat() if hasattr(ts, "isoformat") else ts,
|
|
"id": cid,
|
|
}
|
|
else:
|
|
nc = None
|
|
return {
|
|
"limit": limit,
|
|
"rows": [_audit_row_to_payload(r) for r in rows],
|
|
"next_cursor": nc,
|
|
}
|