feat: Add reasoning visualizer, tool timeline, tenant heatmap, and expand analytics access to all roles

app.py

@@ -32,8 +32,8 @@ def can_delete_documents(role: str) -> bool:
     return role in ["admin", "owner"]
 
 def can_view_analytics(role: str) -> bool:
-    """Check if role can view analytics (admin/owner only)."""
-    return role in ["admin", "owner"]
+    """Check if role can view analytics (all roles can view)."""
+    return role in VALID_ROLES  # All roles can view analytics
 
 
 def chat_with_agent(message, tenant_id, role, history):
@@ -169,6 +169,88 @@ def chat_with_agent(message, tenant_id, role, history):
         yield history
 
 
+def get_reasoning_trace(tenant_id: str, role: str, message: str):
+    """
+    Fetch reasoning trace and tool traces for a message using the debug endpoint.
+    Returns formatted markdown showing the reasoning path.
+    """
+    if not tenant_id or not tenant_id.strip():
+        return "❗ Tenant ID is required."
+    
+    try:
+        headers = {
+            "Content-Type": "application/json",
+            "x-tenant-id": tenant_id.strip(),
+            "x-user-role": role if role else DEFAULT_ROLE
+        }
+        response = requests.post(
+            f"{BACKEND_BASE_URL}/agent/debug",
+            json={
+                "tenant_id": tenant_id.strip(),
+                "message": message,
+                "conversation_history": [],
+                "temperature": 0.0
+            },
+            headers=headers,
+            timeout=60
+        )
+        
+        if response.status_code == 200:
+            data = response.json()
+            response_data = data.get("response", {})
+            reasoning_trace = response_data.get("reasoning_trace", [])
+            tool_traces = response_data.get("tool_traces", [])
+            decision = response_data.get("decision", {})
+            
+            # Format reasoning trace
+            trace_md = "## 🧠 Reasoning Path\n\n"
+            for idx, step in enumerate(reasoning_trace, 1):
+                step_name = step.get("step", "unknown")
+                trace_md += f"### {idx}. {step_name.replace('_', ' ').title()}\n"
+                
+                if step.get("intent"):
+                    trace_md += f"- **Intent:** {step['intent']}\n"
+                if step.get("match_count"):
+                    trace_md += f"- **Rule Matches:** {step['match_count']}\n"
+                if step.get("hit_count"):
+                    trace_md += f"- **RAG Hits:** {step['hit_count']}\n"
+                if step.get("latency_ms"):
+                    trace_md += f"- **Latency:** {step['latency_ms']}ms\n"
+                if step.get("decision"):
+                    dec = step['decision']
+                    trace_md += f"- **Tool:** {dec.get('tool', 'N/A')}\n"
+                    trace_md += f"- **Action:** {dec.get('action', 'N/A')}\n"
+                trace_md += "\n"
+            
+            # Format tool traces
+            if tool_traces:
+                trace_md += "## ⚙️ Tool Invocations\n\n"
+                for idx, tool in enumerate(tool_traces, 1):
+                    tool_name = tool.get("tool", tool.get("tool_name", "unknown"))
+                    latency = tool.get("latency_ms", tool.get("latency", 0))
+                    status = tool.get("status", "success")
+                    trace_md += f"### {idx}. {tool_name}\n"
+                    trace_md += f"- **Status:** {status}\n"
+                    trace_md += f"- **Latency:** {latency}ms\n"
+                    if tool.get("result_count"):
+                        trace_md += f"- **Results:** {tool['result_count']}\n"
+                    trace_md += "\n"
+            
+            # Format decision
+            if decision:
+                trace_md += "## 🎯 Final Decision\n\n"
+                trace_md += f"- **Tool:** {decision.get('tool', 'N/A')}\n"
+                trace_md += f"- **Action:** {decision.get('action', 'N/A')}\n"
+                if decision.get('reason'):
+                    trace_md += f"- **Reason:** {decision['reason']}\n"
+            
+            return trace_md
+        else:
+            return f"❌ Error {response.status_code}: {response.text}"
+    except Exception as e:
+        return f"❌ Error fetching reasoning trace: {str(e)}"
+
+
 def ingest_document(
     tenant_id: str,
     role: str,
@@ -565,9 +647,8 @@ def fetch_admin_analytics(tenant_id: str, role: str):
         error_msg = "❗ Tenant ID is required to view analytics."
         return error_msg, {}, None, None, None, None
     
-    if not can_view_analytics(role):
-        error_msg = "❌ Access Denied: You need Admin or Owner role to view analytics."
-        return error_msg, {}, None, None, None, None
+    # All roles can view analytics (matching backend permissions)
+    # No access check needed here
 
     tenant_id = tenant_id.strip()
     headers = {
@@ -1403,23 +1484,30 @@ with gr.Blocks(
                         )
                         send_button = gr.Button("Send", variant="primary", scale=1)
                 
-                with gr.Column(scale=1):
-                    gr.Markdown(
-                        """
-                        <div style="background: linear-gradient(135deg, rgba(6, 182, 212, 0.1) 0%, rgba(59, 130, 246, 0.1) 100%); padding: 20px; border-radius: 12px; border: 1px solid rgba(6, 182, 212, 0.2);">
-                        ### 📝 Chat Instructions
-                        1. Enter your **Tenant ID** and **Role** above
-                        2. Ask a question or give a task to the agent
-                        3. The MCP agent will automatically select tools (RAG, Web, etc.)
+                    with gr.Column(scale=1):
+                        gr.Markdown(
+                            """
+                            <div style="background: linear-gradient(135deg, rgba(6, 182, 212, 0.1) 0%, rgba(59, 130, 246, 0.1) 100%); padding: 20px; border-radius: 12px; border: 1px solid rgba(6, 182, 212, 0.2);">
+                            ### 📝 Chat Instructions
+                            1. Enter your **Tenant ID** and **Role** above
+                            2. Ask a question or give a task to the agent
+                            3. The MCP agent will automatically select tools (RAG, Web, etc.)
+                            
+                            ### ⚡ Features
+                            - ✨ Real-time streaming responses
+                            - 🧠 Multi-step planning & reasoning
+                            - 🔍 Automatic tool selection
+                            - 💾 Conversation memory
+                            - 📊 Reasoning visualization (see Debug tab)
+                            </div>
+                            """
+                        )
                         
-                        ### ⚡ Features
-                        - ✨ Real-time streaming responses
-                        - 🧠 Multi-step planning & reasoning
-                        - 🔍 Automatic tool selection
-                        - 💾 Conversation memory
-                        </div>
-                        """
-                    )
+                        # Reasoning trace viewer
+                        reasoning_trace_viewer = gr.Markdown(
+                            "💡 **Tip:** Use the Debug tab to view detailed reasoning traces for your messages.",
+                            visible=True
+                        )
             
             # Event handlers for chat tab with streaming
             def send_message(message, tenant_id, role, history):
@@ -1462,6 +1550,49 @@ with gr.Blocks(
                 outputs=[chat_access_denied, chat_content]
             )
         
+        with gr.Tab("🔍 Debug & Reasoning"):
+            gr.Markdown(
+                """
+                <div style="background: linear-gradient(135deg, rgba(139, 92, 246, 0.1) 0%, rgba(124, 58, 237, 0.1) 100%); padding: 20px; border-radius: 12px; border: 1px solid rgba(139, 92, 246, 0.2); margin-bottom: 20px;">
+                ### 🔍 Agent Reasoning Debugger
+                View the complete reasoning path, tool invocations, and decision-making process for any message.
+                
+                **Features:**
+                - 🧠 Step-by-step reasoning trace
+                - ⚙️ Tool invocation timeline
+                - 🎯 Final decision breakdown
+                - 📊 Performance metrics
+                </div>
+                """
+            )
+            
+            debug_message = gr.Textbox(
+                label="Message to Debug",
+                placeholder="Enter the same message you sent in Chat to see its reasoning path...",
+                lines=2
+            )
+            debug_button = gr.Button("🔍 Analyze Reasoning", variant="primary")
+            debug_output = gr.Markdown("👉 Enter a message and click 'Analyze Reasoning' to see the agent's reasoning path.")
+            
+            def analyze_reasoning(message, tenant_id, role):
+                if not message or not message.strip():
+                    return "❗ Please enter a message to analyze."
+                if not tenant_id or not tenant_id.strip():
+                    return "❗ Please enter a Tenant ID."
+                return get_reasoning_trace(tenant_id, role, message)
+            
+            debug_button.click(
+                fn=analyze_reasoning,
+                inputs=[debug_message, tenant_id_input, role_input],
+                outputs=[debug_output]
+            )
+            
+            debug_message.submit(
+                fn=analyze_reasoning,
+                inputs=[debug_message, tenant_id_input, role_input],
+                outputs=[debug_output]
+            )
+        
         with gr.Tab("📚 Document Ingestion"):
             gr.Markdown(
                 """
@@ -1830,10 +1961,10 @@ with gr.Blocks(
                 <div style="background: linear-gradient(135deg, rgba(239, 68, 68, 0.2) 0%, rgba(220, 38, 38, 0.2) 100%); padding: 40px; border-radius: 16px; border: 2px solid rgba(239, 68, 68, 0.4); text-align: center; margin: 20px 0;">
                 <h2 style="color: #fca5a5; margin-bottom: 16px;">🔒 Access Denied</h2>
                 <p style="color: #f1f5f9; font-size: 16px; margin-bottom: 12px;">
-                <strong>You need Admin or Owner role to access Analytics Dashboard.</strong>
+                <strong>Analytics is available to all roles.</strong>
                 </p>
                 <p style="color: #cbd5e1; font-size: 14px;">
-                Analytics features are restricted to administrative roles for data security and privacy.
+                If you're seeing this message, there may be a configuration issue.
                 </p>
                 </div>
                 """,
@@ -1987,13 +2118,12 @@ with gr.Blocks(
                     ]
                 )
             
-            # Function to update Analytics tab visibility based on role (Editor sees access denied)
+            # Function to update Analytics tab visibility based on role (all roles can view)
             def update_analytics_visibility(role):
-                is_editor = role == "editor"
-                has_access = can_view_analytics(role)
+                has_access = can_view_analytics(role)  # All roles can view now
                 return (
-                    gr.update(visible=is_editor or not has_access),  # Access denied for Editor or non-admin
-                    gr.update(visible=has_access and not is_editor), # Analytics content for Admin/Owner only
+                    gr.update(visible=False),  # No access denied message
+                    gr.update(visible=True),   # Analytics content visible for all
                 )
             
             # Update visibility when role changes