By name: weknora-shared
description: Use when driving a WeKnora RAG server through the weknora CLI as an agent — authenticating, managing knowledge bases / documents / sessions / agents, running search or chat, or interpreting the CLI's JSON envelopes and exit codes. Read this before any other weknora-* skill.
metadata:
tested_against: v0.9
WeKnora CLI — shared base
weknora is the agent-first CLI for a WeKnora RAG server. Every command prints
a JSON envelope and uses a typed exit code, so you branch on machine-readable
output, not prose. Read this skill before any task-specific weknora-* skill.
1. Authenticate (do this first — order matters)
Authentication is a two-step sequence. weknora auth login operates on the
active profile, so the profile must exist first:
# 1. register a connection target and make it active
weknora profile add prod --host https://kb.example.com --use
# 2a. API key (agent default — pipe the key on stdin, non-interactive):
echo "$WEKNORA_API_KEY" | weknora auth login --with-token
# 2b. OR email+password (interactive prompt only — no flags; not for agents)
weknora auth login
weknora auth status # verify: who am I, which tenant
- Target a non-active profile for one command with the global
--profile NAME(e.g.weknora --profile staging auth refresh). There is no per-command--name/--hoston auth commands. - Get the raw token for scripting with
WEKNORA_TOKEN=$(weknora auth token)(raw token by default;--format jsongives the{token, mode, profile}envelope). weknora doctorruns 4 health checks (reachability, credential, version, storage).
2. Selecting a knowledge base (--kb)
--kb accepts a name or a UUID (resolved server-side). Resolution order:
--kb flag → WEKNORA_KB_ID env → directory link (weknora link --kb X binds
the cwd) → error. Read/create commands that operate "inside a project" inherit
the link; search * and destructive --all operations always require an
explicit --kb (so an agent never silently hits the wrong corpus).
3. Output contract — every command
Default output is --format json: a single envelope.
| Field | Meaning |
|---|---|
ok |
true/false — branch on this first (see batch/wait caveat below) |
data |
success payload (object or array; absent on mutation-only success) |
meta |
count / has_more / dry_run / plan … |
error |
on failure: {type, message, hint?, retry_command?, risk?} |
profile |
active profile name |
error.typeis a stable typed code (e.g.local.kb_not_found,input.invalid_argument,input.confirmation_required,server.error). Branch on it;error.hintusually tells you the next action.--format text= human output. Streaming commands (chat,session ask,session continue-stream) emit NDJSON event lines by default — expect a stream, not one blob; use--format textfor a rendered transcript.--jq '<expr>'filters the envelope (e.g.weknora kb list --jq '.data[].id').- Exception:
weknora auth tokenemits the raw token by default (it's a scripting helper); pass--format jsonfor the{token, mode, profile}envelope. - Batch / wait caveat: for multi-item commands (
doc/chunk/session deletewith several ids,doc wait),ok:truemeans the command ran to completion, not that every item succeeded — per-item failures live indataand the exit code carries the aggregate verdict (e.g.doc waitexits 1 if any doc failed, 124 on timeout, while still printing the{completed,failed,timeout}partition withok:true). For these, branch on the exit code, then readdatafor which items failed.
4. Exit codes (branch on these)
| Code | Meaning (typed code class) | Agent action |
|---|---|---|
| 0 | success (incl. --dry-run) |
proceed |
| 1 | local.* / unclassified (incl. local.kb_not_found) |
read error, decide retry/abort |
| 2 | flag / argument validation (bad/unknown/missing-required flag) | re-check weknora <cmd> --help |
| 3 | auth.* (missing / expired / forbidden) |
re-auth, then retry |
| 4 | resource.not_found (a server resource id) |
verify the id |
| 5 | input.* (other than confirmation_required) |
adjust args, retry |
| 6 | server.rate_limited |
back off, retry |
| 7 | server.* / network.* |
transient — retry with backoff |
| 10 | input.confirmation_required (destructive) |
see §5 — never auto-bypass |
| 124 | operation.timeout |
raise --timeout or check the job |
| 130 | operation.cancelled (SIGINT/SIGTERM) |
stop, don't retry |
Note: a server resource id that doesn't exist → exit 4 (resource.not_found);
a --kb name that doesn't resolve client-side → exit 1 (local.kb_not_found).
input.invalid_argument spans two exit codes — a malformed invocation
(unknown/missing flag, wrong arg count) exits 2 (fix the command, re-check
--help), while a value rejected after parsing (e.g. a bad --jq expression)
exits 5 (adjust the value, retry). Branch on the exit code to tell them apart.
5. Destructive writes (exit 10) — hard rule
Destructive commands (kb/doc/chunk/session/agent delete, kb/agent edit,
auth logout, doc delete --all, …) without -y exit 10 with
error.type = input.confirmation_required and error.risk = {level, action}:
{"ok":false,"error":{"type":"input.confirmation_required",
"message":"delete knowledge base X requires explicit confirmation: re-run with -y",
"retry_command":"weknora kb delete X -y","risk":{"level":"destructive","action":"kb.delete"}}}
Surface this to the user and get explicit approval. Re-run with -y ONLY
after they approve. Never add -y on your own initiative.
6. Preview before acting — --dry-run
Any mutation accepts --dry-run: it resolves the request, prints
meta.plan = {action, args}, makes zero server/side-effect changes, exits 0.
Use it to confirm a command is well-formed (and what it would do) before running
it for real — especially before destructive or bulk operations.
7. Chaining (mutation → id)
Mutations return the new resource id in data.id. Chain with it:
KB=$(weknora kb create "Docs" --jq '.data.id' --format json | tr -d '"')
weknora doc upload ./manual.pdf --kb "$KB"
8. Resource model & command map
kb knowledge bases list/view/create/edit/delete/pin/unpin/status/check
doc documents in a KB list/view/create/upload/fetch/download/delete/wait
chunk retrieval units list/view/delete (RAG debug; not search)
session conversations list/view/delete/ask/stop/continue-stream
agent custom agents list/view/create/edit/delete/status/check
search retrieval chunks / docs / kb / sessions
chat one-shot KB RAG Q&A (streaming)
api raw HTTP passthrough to any server endpoint (escape hatch)
link/unlink bind cwd to a KB mcp serve expose weknora as MCP tools
chat vs session ask vs search — the most common confusion: see the
weknora-rag-search skill for the decision table. Briefly: chat = one-shot
KB Q&A with an LLM; session ask --agent <id> = invoke a custom agent;
search chunks = raw hybrid retrieval (no LLM).
9. CLI vs MCP
For your own scripted control, use the CLI (richer: dry-run, exit-10, all verbs).
For an IDE/host agent that speaks MCP, weknora mcp serve exposes a curated
read+chat tool set: kb_list, kb_view, doc_list, doc_view, doc_download,
search_chunks, chunk_list, agent_list, chat, session_ask. MCP tools
take raw ids (no name resolution); resolve names via kb_list first.
10. Agent self-help
Run weknora <command> --help. With WEKNORA_AGENT_HELP=1 set, --help emits a
JSON blob (used_for / required_flags / examples) instead of prose — parse
that to learn a command without scraping the human help table.
Common mistakes
| Mistake | Fix |
|---|---|
weknora auth login before any profile exists |
profile add <n> --host <url> --use first (§1) |
Expecting auth login --host/--name flags |
Gone — host comes from the profile; use global --profile |
Auto-adding -y to clear an exit-10 |
Never; get user approval first (§5) |
weknora chat "..." prints "garbled" stream |
NDJSON by default; use --format text for a transcript |
search chunks "q" → exit 1 local.kb_id_required |
Pass --kb <name-or-id>, set WEKNORA_KB_ID, or weknora link the dir |