AI Chatbots

Fluxbase provides WebSocket-based AI chatbot integration, allowing you to build natural language interfaces to your database with streaming responses and custom behavior.

Overview

AI chatbots in Fluxbase enable:

Natural Language Queries: Users can ask questions in plain English instead of writing SQL
Streaming Responses: Real-time streaming of AI responses via WebSocket
Custom Chatbots: Create domain-specific assistants with TypeScript
Provider Management: Support for OpenAI, Azure OpenAI, and Ollama
Built-in Security: Rate limiting, token budgets, and row-level security
Conversation History: Optional persistence of chat sessions
RAG Support: Connect knowledge bases for context-aware responses

Common use cases include SQL assistants, customer support bots, data exploration tools, and domain-specific query interfaces.

Architecture

graph LR
    A[Client App] -->|WebSocket| B[Fluxbase Server]
    B -->|HTTP| C[LLM Provider<br/>OpenAI/Azure/Ollama]
    B -->|SQL| D[(PostgreSQL)]
    C -->|Streaming Response| B
    B -->|Stream to Client| A
    D -->|Query Results| B

    style B fill:#3178c6,color:#fff
    style C fill:#10a37f,color:#fff
    style D fill:#336791,color:#fff

The chatbot system:

Client connects to Fluxbase via WebSocket
User sends a message to the chatbot
Fluxbase sends the prompt to the LLM provider
LLM may call tools (like execute_sql) to query the database
Fluxbase streams the response back to the client
Query results are sent directly to the client for display

Installation

npm install @fluxbase/sdk

Basic Usage

Connecting to a Chatbot

import { createClient } from "@fluxbase/sdk";

const client = createClient("http://localhost:8080", "your-anon-key");

// List available chatbots
const { data: chatbots, error } = await client.ai.listChatbots();
console.log("Available chatbots:", chatbots);

// Create a chat connection
const chat = client.ai.createChat({
  token: "your-jwt-token",
  onContent: (delta, conversationId) => {
    // Stream content as it arrives
    process.stdout.write(delta);
  },
  onProgress: (step, message, conversationId) => {
    // Progress updates (e.g., "Querying database...")
    console.log(`[${step}] ${message}`);
  },
  onQueryResult: (query, summary, rowCount, data, conversationId) => {
    // SQL query results
    console.log(`Query: ${query}`);
    console.log(`Summary: ${summary}`);
    console.log(`Rows: ${rowCount}`);
    console.log("Data:", data);
  },
  onDone: (usage, conversationId) => {
    // Completion with token usage stats
    console.log(`\nTokens used: ${usage?.total_tokens}`);
  },
  onError: (error, code, conversationId) => {
    console.error(`Error: ${error} (${code})`);
  },
});

// Connect and start chatting
await chat.connect();
const conversationId = await chat.startChat("sql-assistant");
chat.sendMessage(conversationId, "Show me the top 10 users by order count");

Event Callbacks

The chat client provides several event callbacks:

Callback	Description	Parameters
`onEvent`	All events (general handler)	`(event: AIChatEvent) => void`
`onContent`	Streaming content chunks	`(delta: string, conversationId: string) => void`
`onProgress`	Progress updates	`(step: string, message: string, conversationId: string) => void`
`onQueryResult`	SQL query results	`(query, summary, rowCount, data, conversationId) => void`
`onDone`	Message completion	`(usage: AIUsageStats \| undefined, conversationId) => void`
`onError`	Error events	`(error: string, code: string \| undefined, conversationId: string \| undefined) => void`

React Example

import { useState, useEffect, useRef } from 'react'
import { createClient } from '@fluxbase/sdk'

function ChatInterface() {
  const [messages, setMessages] = useState<string[]>([])
  const [input, setInput] = useState('')
  const [conversationId, setConversationId] = useState<string | null>(null)
  const chatRef = useRef<any>(null)

  const client = createClient('http://localhost:8080', process.env.ANON_KEY!)

  useEffect(() => {
    const chat = client.ai.createChat({
      token: localStorage.getItem('access_token'),
      onContent: (delta) => {
        setMessages(prev => {
          const newMessages = [...prev]
          const lastIdx = newMessages.length - 1
          if (lastIdx >= 0 && newMessages[lastIdx].startsWith('AI: ')) {
            newMessages[lastIdx] += delta
          } else {
            newMessages.push('AI: ' + delta)
          }
          return newMessages
        })
      },
      onQueryResult: (query, summary, rowCount, data) => {
        console.log('Query executed:', { query, summary, rowCount, data })
      },
      onError: (error) => {
        setMessages(prev => [...prev, `Error: ${error}`])
      },
    })

    chatRef.current = chat

    chat.connect().then(() => {
      return chat.startChat('sql-assistant')
    }).then((convId) => {
      setConversationId(convId)
    })

    return () => chat.disconnect()
  }, [])

  const sendMessage = () => {
    if (!input.trim() || !conversationId) return

    setMessages(prev => [...prev, `You: ${input}`])
    chatRef.current.sendMessage(conversationId, input)
    setInput('')
  }

  return (
    <div>
      <div className="messages">
        {messages.map((msg, i) => (
          <div key={i}>{msg}</div>
        ))}
      </div>
      <input
        value={input}
        onChange={(e) => setInput(e.target.value)}
        onKeyPress={(e) => e.key === 'Enter' && sendMessage()}
        placeholder="Ask a question..."
      />
      <button onClick={sendMessage}>Send</button>
    </div>
  )
}

Creating Custom Chatbots

Chatbots are defined in TypeScript files with metadata annotations and exported system prompts.

File Structure

Create a chatbot file (e.g., chatbots/my-assistant/index.ts):

/**
 * My Custom Assistant
 *
 * A helpful assistant for my specific domain.
 *
 * @fluxbase:description Custom assistant for domain-specific queries
 * @fluxbase:allowed-tables products,orders,customers
 * @fluxbase:allowed-operations SELECT
 * @fluxbase:allowed-schemas public
 * @fluxbase:max-tokens 4096
 * @fluxbase:temperature 0.7
 * @fluxbase:persist-conversations true
 * @fluxbase:conversation-ttl 24
 * @fluxbase:max-turns 50
 * @fluxbase:rate-limit 20
 * @fluxbase:daily-limit 500
 * @fluxbase:token-budget 100000
 * @fluxbase:allow-unauthenticated false
 * @fluxbase:public true
 */

export default `You are a helpful assistant that helps users query their data.

## Your Capabilities

1. You can execute SELECT queries against the database
2. You understand the database schema
3. You explain results clearly

## Guidelines

1. **Security First**: Only execute SELECT queries
2. **User Context**: Always filter by current user's ID when appropriate
3. **Pagination**: Use LIMIT clauses (max 100 rows)
4. **Explain First**: Describe what you're querying before executing
5. **Clear Answers**: Explain results in plain language

## Query Process

1. Understand the user's question
2. Examine the schema
3. Formulate a SQL query
4. Execute using execute_sql tool
5. Interpret and explain results

Current user ID: {{user_id}}
`;

export const tools = [
  {
    name: "execute_sql",
    description: "Execute a read-only SQL query against the database",
    parameters: {
      type: "object",
      properties: {
        sql: {
          type: "string",
          description: "The SQL SELECT query to execute",
        },
        description: {
          type: "string",
          description: "Brief description of what this query retrieves",
        },
      },
      required: ["sql", "description"],
    },
  },
];

Configuration Annotations

Available metadata annotations:

Annotation	Description	Default
`@fluxbase:description`	Short description of the chatbot	Required
`@fluxbase:allowed-tables`	Comma-separated table names or `*`	`*`
`@fluxbase:allowed-operations`	Allowed SQL operations (SELECT, INSERT, etc.)	`SELECT`
`@fluxbase:allowed-schemas`	Allowed database schemas	`public`
`@fluxbase:max-tokens`	Maximum tokens per response	`4096`
`@fluxbase:temperature`	LLM temperature (0.0-2.0)	`0.7`
`@fluxbase:response-language`	Response language: `auto` (match user), ISO code, or name	`auto`
`@fluxbase:persist-conversations`	Save conversation history	`false`
`@fluxbase:conversation-ttl`	Conversation TTL in hours	`24`
`@fluxbase:max-turns`	Max messages in conversation	`50`
`@fluxbase:rate-limit`	Requests per minute	`10`
`@fluxbase:daily-limit`	Requests per day	`100`
`@fluxbase:token-budget`	Max tokens per day	`50000`
`@fluxbase:allow-unauthenticated`	Allow anonymous access	`false`
`@fluxbase:public`	Show in public chatbot list	`true`
`@fluxbase:http-allowed-domains`	Domains chatbot can fetch (comma-separated)	`""` (disabled)
`@fluxbase:knowledge-base`	Name of knowledge base for RAG (can specify multiple)	-
`@fluxbase:rag-max-chunks`	Maximum chunks to retrieve for RAG context	`5`
`@fluxbase:rag-similarity-threshold`	Minimum similarity score for RAG (0.0-1.0)	`0.7`
`@fluxbase:required-settings`	Setting keys to load for template resolution	-
`@fluxbase:mcp-tools`	Comma-separated MCP tools to enable (see MCP Tools)	`""` (legacy execute_sql)
`@fluxbase:use-mcp-schema`	Fetch schema from MCP resources instead of direct DB introspection	`false`

HTTP Tool

Chatbots can make HTTP requests to external APIs using the HTTP tool. This is useful for fetching external data, calling webhooks, or integrating with third-party services.

Enable HTTP requests by specifying allowed domains:

/**
 * @fluxbase:http-allowed-domains api.example.com,data.weather.gov
 */

Security restrictions:

Only GET requests are supported
HTTPS is required for non-localhost domains
Maximum response size: 1MB
Request timeout: 10 seconds
URLs containing credentials (basic auth) are blocked
Only explicitly listed domains are allowed

Example chatbot with HTTP tool:

/**
 * Weather Assistant
 *
 * @fluxbase:description Answers questions about weather using external API
 * @fluxbase:http-allowed-domains api.openweathermap.org
 * @fluxbase:allowed-tables locations
 */

export default `You can query weather data from the OpenWeatherMap API.

Use the http_get tool to fetch weather data:
- Endpoint: https://api.openweathermap.org/data/2.5/weather
- Parameters: lat, lon, appid (API key is provided automatically)

Current user ID: {{user_id}}
`;

RAG & Knowledge Bases

Chatbots can use Retrieval-Augmented Generation (RAG) to provide context-aware responses based on your custom documentation, FAQs, or other content stored in knowledge bases.

Enable RAG by linking knowledge bases:

/**
 * Support Assistant
 *
 * @fluxbase:description Customer support with knowledge base
 * @fluxbase:knowledge-base product-docs
 * @fluxbase:knowledge-base faq
 * @fluxbase:rag-max-chunks 5
 * @fluxbase:rag-similarity-threshold 0.7
 */

export default `You are a helpful customer support assistant.

Use the provided context from the knowledge base to answer questions.
If you can't find relevant information in the context, say so honestly.

Current user ID: {{user_id}}
`;

How RAG works:

When a user sends a message, the query is embedded using the same model as documents
Similar chunks are retrieved from linked knowledge bases via vector similarity search
Retrieved context is injected into the system prompt before the LLM call
The LLM generates an informed response using the provided context

RAG configuration options:

Annotation	Description	Default
`@fluxbase:knowledge-base`	Knowledge base name (can specify multiple)	-
`@fluxbase:rag-max-chunks`	Maximum chunks to retrieve	`5`
`@fluxbase:rag-similarity-threshold`	Minimum similarity (0.0-1.0)	`0.7`

For detailed documentation on creating knowledge bases, adding documents, and configuring RAG, see the Knowledge Bases & RAG guide.

MCP Tools

By default, chatbots use the legacy execute_sql tool which allows raw SQL execution. For more structured and secure database access, you can enable MCP (Model Context Protocol) tools.

Enable MCP tools:

/**
 * Order Management Assistant
 *
 * @fluxbase:description Helps users manage orders
 * @fluxbase:allowed-tables orders,order_items,products,analytics.order_metrics
 * @fluxbase:mcp-tools query_table,insert_record,invoke_function
 * @fluxbase:use-mcp-schema
 */

export default `You are an order management assistant.
You can query orders, create new orders, and call functions.
Current user: {{user_id}}`;

Available MCP tools:

Tool	Description	Required Scope
Data Tools
`query_table`	Query a table with filters, ordering, pagination, and optional vector search	`read:tables`
`insert_record`	Insert a new record into a table	`write:tables`
`update_record`	Update records matching filters	`write:tables`
`delete_record`	Delete records matching filters	`write:tables`
Execution Tools
`invoke_function`	Call an edge function with body/headers	`execute:functions`
`invoke_rpc`	Execute an RPC procedure with parameters	`execute:rpc`
`submit_job`	Queue a background job for async execution	`execute:jobs`
`get_job_status`	Check the status of a submitted job	`execute:jobs`
Storage Tools
`list_objects`	List objects in a storage bucket	`read:storage`
`upload_object`	Upload a file to a storage bucket	`write:storage`
`download_object`	Download a file from a storage bucket	`read:storage`
`delete_object`	Delete a file from a storage bucket	`write:storage`
Vector Search
`search_vectors`	Semantic search over vector embeddings	`read:vectors`

Benefits of MCP tools over execute_sql:

Structured queries: Tools have typed parameters with validation
Better security: Scoped permissions per tool (read vs write)
Vector search: query_table supports semantic search on tables with embeddings
Cross-resource access: Call functions, manage storage, run jobs
Table filtering: Enforced allowed-tables restrictions

Vector search with query_table:

When a table has a vector/embedding column, the AI can perform semantic search:

// The AI might call query_table with:
{
  "table": "documents",
  "vector_search": {
    "query": "How do I reset my password?",
    "column": "embedding",
    "threshold": 0.7
  },
  "limit": 10
}

Qualified table names:

You can use schema.table format in @fluxbase:allowed-tables to allow access to tables in different schemas:

/**
 * @fluxbase:allowed-tables users,orders,analytics.metrics,billing.invoices
 */

users, orders → default to public schema
analytics.metrics → explicit analytics schema
billing.invoices → explicit billing schema

MCP schema fetching:

When @fluxbase:use-mcp-schema is enabled, the chatbot fetches schema information from MCP resources instead of querying the database directly. This provides cached schema data for better performance.

Settings & Secrets

Chatbots can access system and user settings at runtime using template variables. This allows you to inject API keys, endpoints, and configuration without hardcoding values in your chatbot code.

Template syntax:

Use {{setting.key}} in your system prompt to reference a setting. Add a scope prefix to control resolution:

Syntax	Resolution	Use Case
`{{key}}`	User → System fallback	Default behavior
`{{user:key}}`	User-only, no fallback	Per-user API keys
`{{system:key}}`	System-only, ignores user	Shared endpoints

Example:

/**
 * Location Assistant
 *
 * @fluxbase:required-settings pelias.endpoint,google.maps.api_key
 */

export default `You help users find locations.

System endpoint (shared): {{system:pelias.endpoint}}
User API key (per-user): {{user:google.maps.api_key}}
Theme preference (with fallback): {{theme.mode}}
Current user: {{user_id}}
`;

How it works:

When a chat starts, Fluxbase loads required settings from the app.settings table
Scope prefixes control which settings are checked (user-specific, system-wide, or both)
Template variables are resolved server-side before the prompt is sent to the LLM
Secrets are decrypted automatically (never exposed to clients)

Setting up values:

# System-wide setting (used by {{system:...}} or as fallback for {{key}})
fluxbase settings set pelias.endpoint "https://pelias.example.com"

# User-specific secret (used by {{user:...}})
fluxbase settings set google.maps.api_key "user-api-key" --secret --user abc123

Configuration annotations:

Annotation	Description	Example
`@fluxbase:required-settings`	Comma-separated setting keys	`pelias.endpoint,google.api_key`

Reserved template variables:

Variable	Description
`{{user_id}}`	Current user’s UUID

Response Language

Control the language of chatbot responses using the @fluxbase:response-language annotation. By default, chatbots will respond in the same language as the user’s message (auto-detect).

Auto-detect (default):

/**
 * Multilingual Assistant
 *
 * @fluxbase:response-language auto
 */

export default `You are a helpful assistant.`;

With auto, if a user asks a question in German, the chatbot responds in German. If they ask in Spanish, it responds in Spanish.

Fixed language:

/**
 * German Support Bot
 *
 * @fluxbase:response-language German
 */

export default `You are a customer support assistant.`;

You can use ISO language codes (en, de, fr, es) or language names (English, German, French, Spanish, Deutsch, Français).

Use cases:

Multilingual applications: Use auto to support users in their preferred language
Region-specific bots: Force a specific language for compliance or brand consistency
Internal tools: Ensure responses match your team’s working language

System Prompt Best Practices

Be Specific: Clearly define the chatbot’s purpose and capabilities
Security Rules: Emphasize security constraints (e.g., read-only operations)
User Context: Explain how to use {{user_id}} for user-specific queries
Examples: Include example queries users might ask
Formatting: Use clear sections with markdown headers

Variable Substitution

Available template variables:

{{user_id}}: Current authenticated user’s ID
{{namespace}}: Current namespace

Admin Management

Administrators can manage chatbots and AI providers through the admin API.

Listing Chatbots

// List all chatbots (admin view)
const { data, error } = await client.admin.ai.listChatbots();

// Filter by namespace
const { data, error } = await client.admin.ai.listChatbots("production");

Managing Chatbots

// Get chatbot details
const { data, error } = await client.admin.ai.getChatbot("chatbot-id");

// Enable/disable a chatbot
const { data, error } = await client.admin.ai.toggleChatbot("chatbot-id", true);

// Delete a chatbot
const { data, error } = await client.admin.ai.deleteChatbot("chatbot-id");

Syncing Chatbots

Sync chatbots from filesystem or API payload:

// Sync from filesystem (loads from configured chatbots directory)
const { data, error } = await client.admin.ai.sync();

// Sync with provided chatbot code
const { data, error } = await client.admin.ai.sync({
  namespace: "default",
  chatbots: [
    {
      name: "my-assistant",
      code: chatbotCodeString,
    },
  ],
  options: {
    delete_missing: false, // Don't remove chatbots not in this sync
    dry_run: false, // Preview changes without applying
  },
});

if (data) {
  console.log(`Created: ${data.summary.created}`);
  console.log(`Updated: ${data.summary.updated}`);
  console.log(`Deleted: ${data.summary.deleted}`);
}

Provider Management

Configure AI providers (OpenAI, Azure OpenAI, or Ollama):

// List providers
const { data: providers } = await client.admin.ai.listProviders();

// Create a provider
const { data, error } = await client.admin.ai.createProvider({
  name: "openai-main",
  display_name: "OpenAI (Main)",
  provider_type: "openai",
  is_default: true,
  config: {
    api_key: "sk-...",
    model: "gpt-4-turbo",
  },
});

// Set as default
await client.admin.ai.setDefaultProvider("provider-id");

// Delete provider
await client.admin.ai.deleteProvider("provider-id");

Security & Best Practices

Authentication

Chatbots require authentication by default. Configure with @fluxbase:allow-unauthenticated for public access.

// Authenticated usage (recommended)
const chat = client.ai.createChat({
  token: userJWT, // User's JWT token
  // ... event handlers
});

Row-Level Security

Chatbots respect PostgreSQL Row-Level Security (RLS) policies. Always use {{user_id}} in your system prompt to filter user-specific data:

export default `
When querying user-specific tables, ALWAYS filter by:
WHERE user_id = '{{user_id}}'

Current user: {{user_id}}
`;

Rate Limiting

Protect your API with rate limits and token budgets:

/**
 * @fluxbase:rate-limit 20        # 20 requests per minute
 * @fluxbase:daily-limit 500      # 500 requests per day
 * @fluxbase:token-budget 100000  # 100k tokens per day
 */

Allowed Operations

Restrict database operations to prevent data modification:

/**
 * @fluxbase:allowed-operations SELECT
 * @fluxbase:allowed-tables products,orders
 */

Best Practices

Start with SELECT Only: Only allow SELECT queries unless you have a specific need
Use RLS: Implement Row-Level Security policies for all user data
Set Token Budgets: Prevent runaway costs with daily token limits
Enable Conversation Persistence: Store chat history for better context
Monitor Usage: Track token consumption and query patterns
Validate Table Access: Limit allowed-tables to only what’s needed
Set Reasonable Limits: Configure appropriate rate limits for your use case

Troubleshooting

Connection Issues

WebSocket fails to connect:

Verify the WebSocket URL is correct
Check CORS settings if connecting from browser
Ensure JWT token is valid and not expired
Verify network allows WebSocket connections

Rate Limit Errors

“Rate limit exceeded” error:

User has exceeded @fluxbase:rate-limit (per minute)
Wait or increase the limit in chatbot configuration

“Daily limit exceeded” error:

User has exceeded @fluxbase:daily-limit (per day)
Reset occurs at midnight UTC or increase the limit

“Token budget exceeded” error:

Total tokens consumed exceeded @fluxbase:token-budget
Monitor usage via admin API and increase if needed

Provider Configuration

“No AI provider configured” error:

Create at least one AI provider via admin API
Set a default provider with setDefaultProvider()

“Provider authentication failed” error:

Verify API key is correct
Check provider is enabled
Ensure API key has sufficient credits/quota

Query Execution Errors

“Table not allowed” error:

Table not in @fluxbase:allowed-tables list
Update chatbot configuration to include the table

“Operation not allowed” error:

Query uses operation not in @fluxbase:allowed-operations
Typically means attempting INSERT/UPDATE/DELETE when only SELECT is allowed

“Permission denied” error:

User lacks PostgreSQL permissions on the table
Check Row-Level Security policies
Verify user authentication

Next Steps

Knowledge Bases & RAG - Create knowledge bases for RAG-powered chatbots
TypeScript SDK Reference - Full SDK API documentation
Row-Level Security - Secure your data access
Authentication - User authentication setup
Rate Limiting - Configure rate limits
Monitoring - Track chatbot usage