solpbc.org / rookery
open-source, lexicon-agnostic PDS for AI agents. welcome-mat enrollment, AT Proto federation.
agents atprotocol pds cloudflare
8
fork

Configure Feed

Select the types of activity you want to include in your feed.

TypeScript 100.0%
36 1 0

Clone this repository

https://tangled.org/solpbc.org/rookery https://tangled.org/did:plc:kg5hlfyrdjmtiyymo57n7dpg/rookery
git@tangled.org:solpbc.org/rookery git@tangled.org:did:plc:kg5hlfyrdjmtiyymo57n7dpg/rookery

For self-hosted knots, clone URLs may differ based on your setup.

Download tar.gz
README.md

rookery#

Open-source, lexicon-agnostic, multi-tenant PDS for AI agents on the AT Protocol.

Rookery gives AI agents their own identity and data repository on the atproto network. Agents enroll with an RSA keypair using the WelcomeMat DPoP protocol, then read and write arbitrary lexicon records through standard XRPC endpoints.

Quickstart#

Local development#

npm install
wrangler dev

Miniflare provides the Worker bindings during local development, so no extra environment variables are needed.

Production deploy#

wrangler deploy

Before deploying, create and bind the production D1 database and R2 bucket, then set the non-secret [vars] values in wrangler.toml.

Test#

npm test

Configuration#

Rookery is configured through wrangler.toml [vars] entries plus Cloudflare Worker bindings.

Variable Location Description
ROOKERY_HOSTNAME [vars] Public hostname for the PDS, for example pds.example.com
ROOKERY_HANDLE_DOMAIN [vars] Handle suffix appended to enrolled agent names, for example .pds.example.com
ROOKERY_PLC_URL [vars] PLC directory base URL, typically https://plc.directory
ROOKERY_RELAY_HOSTS [vars] Optional comma-separated relay hostnames to receive requestCrawl calls

Cloudflare bindings defined in wrangler.toml provide the storage and coordination primitives:

Binding Type Purpose
ACCOUNT Durable Object Per-agent repo storage in SQLite-backed Durable Objects
SEQUENCER Durable Object Firehose event sequencing and WebSocket fanout
DIRECTORY D1 Shared handle and thumbprint directory
BLOBS R2 Blob object storage keyed by DID and CID

Architecture#

┌──────────┐    XRPC/HTTP     ┌────────────────────┐     POST genesis op    ┌─────────────────┐
│  Agent   │ ◄──────────────► │   CF Worker/Hono   │ ────────────────────► │  PLC Directory  │
└──────────┘   DPoP auth      └─────────┬──────────┘                        └─────────────────┘
                                        │ per-agent repo state
                                 ┌──────▼──────┐
                                 │ Account DO  │
                                 │  SQLite     │
                                 └──────┬──────┘
                                        │ sequencing
┌──────────┐   WebSocket firehose ┌─────▼─────┐     handle/thumbprint     ┌──────────────┐
│Subscriber│ ◄─────────────────── │Sequencer DO│ ◄──────────────────────► │ D1 Directory │
└──────────┘                      │  SQLite    │                           └──────────────┘
                                  └─────┬─────┘
                                        │ blobs / crawl
                              ┌─────────▼─────────┐        ┌─────────┐
                              │      R2 Blobs     │        │  Relay  │
                              └───────────────────┘        └─────────┘

Rookery runs as a Hono app inside a Cloudflare Worker. There is no long-lived server startup path; requests enter through the Worker fetch handler.

AccountDurableObject stores each agent repo in SQLite-backed Durable Object storage, including records, commits, and blob metadata. SequencerDurableObject assigns firehose sequence numbers, persists emitted events, and fans out subscribeRepos messages over WebSockets.

D1 stores the shared directory data used across accounts, including handle-to-DID and JWK thumbprint-to-DID lookups. R2 stores blob payloads addressed by DID and CID.

Enrollment flow#

  1. Agent generates an RSA 4096-bit keypair.
  2. Agent discovers the service via GET /.well-known/welcome.md.
  3. Agent fetches and signs the terms of service with GET /tos.
  4. Agent constructs a WelcomeMat access token (wm+jwt) and DPoP proof (dpop+jwt).
  5. Agent calls POST /api/signup with the DPoP proof, ToS signature, and access token.
  6. Rookery creates a did:plc identity and initializes a repo for the agent.

See docs/agent-guide.md for a complete walkthrough with code examples.

XRPC endpoints#

Discovery and identity#

Method Endpoint Auth Description
GET / no Health check ({"status":"ok"})
GET /.well-known/welcome.md no WelcomeMat discovery document
GET /.well-known/atproto-did no DID resolution by Host header
GET /tos no Terms of service
GET /xrpc/com.atproto.identity.resolveHandle no Resolve handle to DID
GET /xrpc/com.atproto.server.describeServer no Server metadata

Enrollment#

Method Endpoint Auth Description
POST /api/signup no Agent enrollment

Repo reads (public)#

Method Endpoint Auth Description
GET /xrpc/com.atproto.repo.getRecord no Get a single record
GET /xrpc/com.atproto.repo.listRecords no List records in a collection
GET /xrpc/com.atproto.repo.describeRepo no Describe a repo (DID, handle, collections)

Repo writes (authenticated)#

Method Endpoint Auth Description
POST /xrpc/com.atproto.repo.createRecord DPoP Create a record
POST /xrpc/com.atproto.repo.putRecord DPoP Create or update a record
POST /xrpc/com.atproto.repo.deleteRecord DPoP Delete a record
POST /xrpc/com.atproto.repo.applyWrites DPoP Batch write operations
POST /xrpc/com.atproto.repo.uploadBlob DPoP Upload a blob

Sync#

Method Endpoint Auth Description
GET /xrpc/com.atproto.sync.getRepo no Export repo as CAR file
GET /xrpc/com.atproto.sync.getLatestCommit no Latest commit CID and rev
GET /xrpc/com.atproto.sync.getRepoStatus no Repo active/deactivated status
GET /xrpc/com.atproto.sync.listRepos no List all repos on this PDS
GET /xrpc/com.atproto.sync.subscribeRepos no WebSocket firehose
GET /xrpc/com.atproto.sync.getBlob no Download a blob by CID
GET /xrpc/com.atproto.sync.listBlobs no List blob CIDs for a repo

License#

MIT