Portal to Production API
Inspired by Zatanna β turn any login-gated portal into a fast, stable API for agents. Record the real network flow once, reconstruct auth and sequencing without UI bots, ship one endpoint, and loop until production-ready.
Inspired by Zatanna
by Trooper
/loop 30m Start the "Portal to Production API" loop. Inspired by Zatanna (https://www.zatanna.ai). Goal: blocked portal workflow is exposed as one stable production API with reliable auth, retries, and change monitoring Max iterations: 15 Between iterations run: Run endpoint smoke tests: report success rate, p95 latency, session refresh, and structured response validity Exit when: 10 consecutive successful calls with session refresh working and no unresolved portal drift alerts ## Before you start - Connect GitHub (required) β Store recorded flows and endpoint code as PRs - Attach Loop runner (required) β Self-pace iterations and run checks between passes. - Attach Code change + verification (required) β Edit code or configs and verify locally. - Attach Test repair (required) β Run tests and fix failures without weakening coverage. - Target portal (read via browser) β Login-gated workflow to record - Production API endpoint (write via api) β Stable agent-callable surface - MCP clients (read via mcp) β Cursor / Claude Code callers ## Steps 1. Record workflow: Walk through the portal task once while capturing underlying network requests β login, sessions, API calls, and sequencing. [tools: Browser, Target portal] 2. Reconstruct flow: Model the real call graph: auth behavior, headers, retries, and edge cases. No UI selectors in the production path. [tools: GitHub] 3. Ship stable endpoint: Publish one clean, parameterized API your agents can call. Document request schema, response shape, and error codes. [tools: Production API endpoint, MCP clients] 4. Harden reliability: Add session management, automatic re-auth, retry policy, and portal change detection. [tools: GitHub] Command: npm run test:portal-api-smoke 5. Monitor and repair: Run smoke tests, detect drift when portals update, repair broken steps, and verify agents get fast responses. [tools: Production API endpoint] Command: npm run test:portal-api-smoke Self-pace this loop. After each iteration, run the check command, read the output, and only continue if the exit condition is not met. Stop when the exit condition passes or max iterations is reached. Give a short status update each pass. Guardrails: - Prefer network-layer request replay over brittle browser automation for production paths - Never store portal credentials in chat, code, or commits β use approved secrets storage only - Keep a human in the loop for MFA and initial login during the record phase - Stop and escalate on CAPTCHA blocks, rate limits, or unclear portal ToS constraints - Return structured API data β do not scrape HTML when underlying JSON endpoints exist - Document the recorded workflow and get approval before routing production agent traffic
Paste the kickoff prompt into Cursor, Claude Code, or Codex. Deeplinks do not install hook files.
1. Record workflow
Walk through the portal task once while capturing underlying network requests β login, sessions, API calls, and sequencing.
Tools: Browser, Target portal
2. Reconstruct flow
Model the real call graph: auth behavior, headers, retries, and edge cases. No UI selectors in the production path.
Tools: GitHub
3. Ship stable endpoint
Publish one clean, parameterized API your agents can call. Document request schema, response shape, and error codes.
Tools: Production API endpoint, MCP clients
4. Harden reliability
Add session management, automatic re-auth, retry policy, and portal change detection.
Tools: GitHub
npm run test:portal-api-smoke5. Monitor and repair
Run smoke tests, detect drift when portals update, repair broken steps, and verify agents get fast responses.
Tools: Production API endpoint
npm run test:portal-api-smokeGuardrails
Rules the agent must follow so it cannot cheat the exit condition.
- Prefer network-layer request replay over brittle browser automation for production paths
- Never store portal credentials in chat, code, or commits β use approved secrets storage only
- Keep a human in the loop for MFA and initial login during the record phase
- Stop and escalate on CAPTCHA blocks, rate limits, or unclear portal ToS constraints
- Return structured API data β do not scrape HTML when underlying JSON endpoints exist
- Document the recorded workflow and get approval before routing production agent traffic
More Integrations loops
Signup Flow Until Smooth
Walk register-through-onboard in the browser, annotate friction points, fix UX blockers, and repeat until the flow is smooth.
Reconciliation on Autopilot
Inspired by End Close β continuous transaction reconciliation for high-volume payments. Deterministic matching rules handle the bulk volume, AI investigates exceptions with full context, and ops triages an inbox until close is audit-ready.
Customer Onboarding Watch
Interval loop that watches new signups, runs the onboarding checklist against each account, and nudges or escalates stuck users.