@agent-deck/backend 1.1.0

package/dist/routes/mcp.js

@@ -0,0 +1,170 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.default = mcpRoutes;
+const zod_1 = require("zod");
+const mcp_discovery_service_1 = require("../services/mcp-discovery-service");
+// OAuth discovery functions
+async function extractUrlsFromWWWAuthenticate(headerValue) {
+    if (!headerValue)
+        return [];
+    const urlRegex = /https?:\/\/[^\s,;\"]+/g;
+    return headerValue.match(urlRegex) || [];
+}
+async function getBaseOrigin(url) {
+    const parsed = new URL(url);
+    return `${parsed.protocol}//${parsed.host}`;
+}
+async function probeWWWAuthenticate(url) {
+    const headersCommon = {
+        'Accept': 'application/json, text/event-stream',
+        'Content-Type': 'application/json',
+    };
+    try {
+        // Try GET first
+        const getResp = await fetch(url, {
+            method: 'GET',
+            headers: { 'Accept': headersCommon.Accept }
+        });
+        const www = getResp.headers.get('www-authenticate');
+        if (www) {
+            return { wwwAuth: www, response: getResp };
+        }
+    }
+    catch (error) {
+        // Ignore GET errors
+    }
+    try {
+        // Try POST minimal JSON-RPC envelope
+        const payload = { jsonrpc: '2.0', id: 1, method: 'tools/list', params: {} };
+        const postResp = await fetch(url, {
+            method: 'POST',
+            headers: headersCommon,
+            body: JSON.stringify(payload)
+        });
+        const www = postResp.headers.get('www-authenticate');
+        if (www) {
+            return { wwwAuth: www, response: postResp };
+        }
+        return { wwwAuth: null, response: postResp };
+    }
+    catch (error) {
+        return { wwwAuth: null, response: null };
+    }
+}
+async function fetchProtectedResourceMetadata(baseOrigin) {
+    const prUrl = `${baseOrigin}/.well-known/oauth-protected-resource`;
+    try {
+        const response = await fetch(prUrl);
+        if (response.ok) {
+            const data = await response.json();
+            console.log(`✅ Fetched OAuth metadata from ${prUrl}:`, data);
+            return { protectedResourceConfigUrl: prUrl, raw: data };
+        }
+        else {
+            console.log(`⚠️ OAuth metadata not found at ${prUrl}: ${response.status}`);
+        }
+    }
+    catch (error) {
+        console.log(`❌ Error fetching OAuth metadata from ${prUrl}:`, error);
+    }
+    return { protectedResourceConfigUrl: prUrl };
+}
+async function fetchAuthorizationServerMetadata(issuerOrAsUrl) {
+    // If it's already a well-known URL, use as-is; otherwise append well-known path
+    let asUrl = issuerOrAsUrl;
+    if (!asUrl.includes('/.well-known/')) {
+        asUrl = asUrl.replace(/\/$/, '') + '/.well-known/oauth-authorization-server';
+    }
+    try {
+        const response = await fetch(asUrl);
+        if (response.ok) {
+            const data = await response.json();
+            return {
+                authorizationServerMetadataUrl: asUrl,
+                authorizationUrl: data.authorization_endpoint,
+                tokenUrl: data.token_endpoint,
+                issuer: data.issuer,
+                raw: data,
+            };
+        }
+    }
+    catch (error) {
+        // Ignore errors
+    }
+    return { authorizationServerMetadataUrl: asUrl };
+}
+async function discoverOAuthInfo(url) {
+    const { wwwAuth, response } = await probeWWWAuthenticate(url);
+    if (wwwAuth) {
+        const urls = await extractUrlsFromWWWAuthenticate(wwwAuth);
+        const oauthInfo = {
+            required: true,
+            wwwAuthenticate: wwwAuth,
+            discoveredUrls: urls,
+        };
+        // Heuristic: pick the first url as authorizationUrl
+        if (urls.length > 0) {
+            oauthInfo.authorizationUrl = urls[0];
+        }
+        // Prefer OAuth Protected Resource metadata (RFC 9449) to discover AS
+        const baseOrigin = await getBaseOrigin(url);
+        const prMeta = await fetchProtectedResourceMetadata(baseOrigin);
+        Object.assign(oauthInfo, prMeta);
+        // If protected resource metadata exposes authorization_servers, fetch AS metadata
+        const authServers = (prMeta.raw || {}).authorization_servers || [];
+        if (authServers.length > 0) {
+            // Use the first AS listed
+            const asMeta = await fetchAuthorizationServerMetadata(authServers[0]);
+            // If endpoints found, mark required
+            if (asMeta.authorizationUrl || asMeta.tokenUrl) {
+                oauthInfo.required = true;
+            }
+            Object.assign(oauthInfo, asMeta);
+        }
+        // Add OAuth configuration information for the frontend
+        if (prMeta.raw) {
+            oauthInfo.resourceName = prMeta.raw.resource_name;
+            oauthInfo.scopesSupported = prMeta.raw.scopes_supported || [];
+            oauthInfo.bearerMethodsSupported = prMeta.raw.bearer_methods_supported || [];
+            // For GitHub OAuth, provide standard endpoints
+            if (authServers.includes('https://github.com/login/oauth')) {
+                oauthInfo.authorizationUrl = 'https://github.com/login/oauth/authorize';
+                oauthInfo.tokenUrl = 'https://github.com/login/oauth/access_token';
+                oauthInfo.provider = 'github';
+            }
+        }
+        return oauthInfo;
+    }
+    return { required: false };
+}
+// Request schemas
+const DiscoverMCPRequest = zod_1.z.object({
+    url: zod_1.z.string().url(),
+});
+async function mcpRoutes(fastify) {
+    const discoveryService = new mcp_discovery_service_1.MCPDiscoveryService();
+    // Discover and analyze an MCP server
+    fastify.post('/discover', async (request, reply) => {
+        try {
+            const { url } = request.body;
+            fastify.log.info(`🔍 Discovering MCP server: ${url}`);
+            // Use the new discovery service
+            const discoveryResult = await discoveryService.discoverService(url);
+            fastify.log.info(`✅ MCP discovery completed for ${url}: ${discoveryResult.tools_count} tools found, OAuth required: ${discoveryResult.oauth.required}`);
+            const response = {
+                success: true,
+                data: discoveryResult,
+            };
+            return reply.send(response);
+        }
+        catch (error) {
+            fastify.log.error(`Error discovering MCP server: ${error}`);
+            const response = {
+                success: false,
+                error: error instanceof Error ? error.message : 'Unknown error',
+            };
+            return reply.status(500).send(response);
+        }
+    });
+}
+//# sourceMappingURL=mcp.js.map

package/dist/routes/mcp.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"mcp.js","sourceRoot":"","sources":["../../src/routes/mcp.ts"],"names":[],"mappings":";;AA8JA,4BAiCC;AA9LD,6BAAwB;AAExB,6EAAwE;AAGxE,4BAA4B;AAC5B,KAAK,UAAU,8BAA8B,CAAC,WAAmB;IAC/D,IAAI,CAAC,WAAW;QAAE,OAAO,EAAE,CAAC;IAC5B,MAAM,QAAQ,GAAG,wBAAwB,CAAC;IAC1C,OAAO,WAAW,CAAC,KAAK,CAAC,QAAQ,CAAC,IAAI,EAAE,CAAC;AAC3C,CAAC;AAED,KAAK,UAAU,aAAa,CAAC,GAAW;IACtC,MAAM,MAAM,GAAG,IAAI,GAAG,CAAC,GAAG,CAAC,CAAC;IAC5B,OAAO,GAAG,MAAM,CAAC,QAAQ,KAAK,MAAM,CAAC,IAAI,EAAE,CAAC;AAC9C,CAAC;AAED,KAAK,UAAU,oBAAoB,CAAC,GAAW;IAC7C,MAAM,aAAa,GAAG;QACpB,QAAQ,EAAE,qCAAqC;QAC/C,cAAc,EAAE,kBAAkB;KACnC,CAAC;IAEF,IAAI,CAAC;QACH,gBAAgB;QAChB,MAAM,OAAO,GAAG,MAAM,KAAK,CAAC,GAAG,EAAE;YAC/B,MAAM,EAAE,KAAK;YACb,OAAO,EAAE,EAAE,QAAQ,EAAE,aAAa,CAAC,MAAM,EAAE;SAC5C,CAAC,CAAC;QACH,MAAM,GAAG,GAAG,OAAO,CAAC,OAAO,CAAC,GAAG,CAAC,kBAAkB,CAAC,CAAC;QACpD,IAAI,GAAG,EAAE,CAAC;YACR,OAAO,EAAE,OAAO,EAAE,GAAG,EAAE,QAAQ,EAAE,OAAO,EAAE,CAAC;QAC7C,CAAC;IACH,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,oBAAoB;IACtB,CAAC;IAED,IAAI,CAAC;QACH,qCAAqC;QACrC,MAAM,OAAO,GAAG,EAAE,OAAO,EAAE,KAAK,EAAE,EAAE,EAAE,CAAC,EAAE,MAAM,EAAE,YAAY,EAAE,MAAM,EAAE,EAAE,EAAE,CAAC;QAC5E,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,EAAE;YAChC,MAAM,EAAE,MAAM;YACd,OAAO,EAAE,aAAa;YACtB,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC;SAC9B,CAAC,CAAC;QACH,MAAM,GAAG,GAAG,QAAQ,CAAC,OAAO,CAAC,GAAG,CAAC,kBAAkB,CAAC,CAAC;QACrD,IAAI,GAAG,EAAE,CAAC;YACR,OAAO,EAAE,OAAO,EAAE,GAAG,EAAE,QAAQ,EAAE,QAAQ,EAAE,CAAC;QAC9C,CAAC;QACD,OAAO,EAAE,OAAO,EAAE,IAAI,EAAE,QAAQ,EAAE,QAAQ,EAAE,CAAC;IAC/C,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,OAAO,EAAE,OAAO,EAAE,IAAI,EAAE,QAAQ,EAAE,IAAI,EAAE,CAAC;IAC3C,CAAC;AACH,CAAC;AAED,KAAK,UAAU,8BAA8B,CAAC,UAAkB;IAC9D,MAAM,KAAK,GAAG,GAAG,UAAU,uCAAuC,CAAC;IACnE,IAAI,CAAC;QACH,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,KAAK,CAAC,CAAC;QACpC,IAAI,QAAQ,CAAC,EAAE,EAAE,CAAC;YAChB,MAAM,IAAI,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;YACnC,OAAO,CAAC,GAAG,CAAC,iCAAiC,KAAK,GAAG,EAAE,IAAI,CAAC,CAAC;YAC7D,OAAO,EAAE,0BAA0B,EAAE,KAAK,EAAE,GAAG,EAAE,IAAI,EAAE,CAAC;QAC1D,CAAC;aAAM,CAAC;YACN,OAAO,CAAC,GAAG,CAAC,kCAAkC,KAAK,KAAK,QAAQ,CAAC,MAAM,EAAE,CAAC,CAAC;QAC7E,CAAC;IACH,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,OAAO,CAAC,GAAG,CAAC,wCAAwC,KAAK,GAAG,EAAE,KAAK,CAAC,CAAC;IACvE,CAAC;IACD,OAAO,EAAE,0BAA0B,EAAE,KAAK,EAAE,CAAC;AAC/C,CAAC;AAED,KAAK,UAAU,gCAAgC,CAAC,aAAqB;IACnE,gFAAgF;IAChF,IAAI,KAAK,GAAG,aAAa,CAAC;IAC1B,IAAI,CAAC,KAAK,CAAC,QAAQ,CAAC,eAAe,CAAC,EAAE,CAAC;QACrC,KAAK,GAAG,KAAK,CAAC,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC,GAAG,yCAAyC,CAAC;IAC/E,CAAC;IAED,IAAI,CAAC;QACH,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,KAAK,CAAC,CAAC;QACpC,IAAI,QAAQ,CAAC,EAAE,EAAE,CAAC;YAChB,MAAM,IAAI,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAS,CAAC;YAC1C,OAAO;gBACL,8BAA8B,EAAE,KAAK;gBACrC,gBAAgB,EAAE,IAAI,CAAC,sBAAsB;gBAC7C,QAAQ,EAAE,IAAI,CAAC,cAAc;gBAC7B,MAAM,EAAE,IAAI,CAAC,MAAM;gBACnB,GAAG,EAAE,IAAI;aACV,CAAC;QACJ,CAAC;IACH,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,gBAAgB;IAClB,CAAC;IACD,OAAO,EAAE,8BAA8B,EAAE,KAAK,EAAE,CAAC;AACnD,CAAC;AAED,KAAK,UAAU,iBAAiB,CAAC,GAAW;IAC1C,MAAM,EAAE,OAAO,EAAE,QAAQ,EAAE,GAAG,MAAM,oBAAoB,CAAC,GAAG,CAAC,CAAC;IAE9D,IAAI,OAAO,EAAE,CAAC;QACZ,MAAM,IAAI,GAAG,MAAM,8BAA8B,CAAC,OAAO,CAAC,CAAC;QAC3D,MAAM,SAAS,GAAQ;YACrB,QAAQ,EAAE,IAAI;YACd,eAAe,EAAE,OAAO;YACxB,cAAc,EAAE,IAAI;SACrB,CAAC;QAEF,oDAAoD;QACpD,IAAI,IAAI,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YACpB,SAAS,CAAC,gBAAgB,GAAG,IAAI,CAAC,CAAC,CAAC,CAAC;QACvC,CAAC;QAED,qEAAqE;QACrE,MAAM,UAAU,GAAG,MAAM,aAAa,CAAC,GAAG,CAAC,CAAC;QAC5C,MAAM,MAAM,GAAG,MAAM,8BAA8B,CAAC,UAAU,CAAC,CAAC;QAChE,MAAM,CAAC,MAAM,CAAC,SAAS,EAAE,MAAM,CAAC,CAAC;QAEjC,kFAAkF;QAClF,MAAM,WAAW,GAAG,CAAC,MAAM,CAAC,GAAG,IAAI,EAAE,CAAC,CAAC,qBAAqB,IAAI,EAAE,CAAC;QACnE,IAAI,WAAW,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAC3B,0BAA0B;YAC1B,MAAM,MAAM,GAAG,MAAM,gCAAgC,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC,CAAC;YACtE,oCAAoC;YACpC,IAAI,MAAM,CAAC,gBAAgB,IAAI,MAAM,CAAC,QAAQ,EAAE,CAAC;gBAC/C,SAAS,CAAC,QAAQ,GAAG,IAAI,CAAC;YAC5B,CAAC;YACD,MAAM,CAAC,MAAM,CAAC,SAAS,EAAE,MAAM,CAAC,CAAC;QACnC,CAAC;QAED,uDAAuD;QACvD,IAAI,MAAM,CAAC,GAAG,EAAE,CAAC;YACf,SAAS,CAAC,YAAY,GAAG,MAAM,CAAC,GAAG,CAAC,aAAa,CAAC;YAClD,SAAS,CAAC,eAAe,GAAG,MAAM,CAAC,GAAG,CAAC,gBAAgB,IAAI,EAAE,CAAC;YAC9D,SAAS,CAAC,sBAAsB,GAAG,MAAM,CAAC,GAAG,CAAC,wBAAwB,IAAI,EAAE,CAAC;YAE7E,+CAA+C;YAC/C,IAAI,WAAW,CAAC,QAAQ,CAAC,gCAAgC,CAAC,EAAE,CAAC;gBAC3D,SAAS,CAAC,gBAAgB,GAAG,0CAA0C,CAAC;gBACxE,SAAS,CAAC,QAAQ,GAAG,6CAA6C,CAAC;gBACnE,SAAS,CAAC,QAAQ,GAAG,QAAQ,CAAC;YAChC,CAAC;QACH,CAAC;QAED,OAAO,SAAS,CAAC;IACnB,CAAC;IAED,OAAO,EAAE,QAAQ,EAAE,KAAK,EAAE,CAAC;AAC7B,CAAC;AAED,kBAAkB;AAClB,MAAM,kBAAkB,GAAG,OAAC,CAAC,MAAM,CAAC;IAClC,GAAG,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE;CACtB,CAAC,CAAC;AAIY,KAAK,UAAU,SAAS,CAAC,OAAwB;IAC9D,MAAM,gBAAgB,GAAG,IAAI,2CAAmB,EAAE,CAAC;IAEnD,qCAAqC;IACrC,OAAO,CAAC,IAAI,CAAmC,WAAW,EAAE,KAAK,EAAE,OAAO,EAAE,KAAK,EAAE,EAAE;QACnF,IAAI,CAAC;YACH,MAAM,EAAE,GAAG,EAAE,GAAG,OAAO,CAAC,IAAI,CAAC;YAE7B,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,8BAA8B,GAAG,EAAE,CAAC,CAAC;YAEtD,gCAAgC;YAChC,MAAM,eAAe,GAAG,MAAM,gBAAgB,CAAC,eAAe,CAAC,GAAG,CAAC,CAAC;YAEpE,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,iCAAiC,GAAG,KAAK,eAAe,CAAC,WAAW,iCAAiC,eAAe,CAAC,KAAK,CAAC,QAAQ,EAAE,CAAC,CAAC;YAExJ,MAAM,QAAQ,GAAwC;gBACpD,OAAO,EAAE,IAAI;gBACb,IAAI,EAAE,eAAe;aACtB,CAAC;YAEF,OAAO,KAAK,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QAE9B,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,iCAAiC,KAAK,EAAE,CAAC,CAAC;YAE5D,MAAM,QAAQ,GAAgB;gBAC5B,OAAO,EAAE,KAAK;gBACd,KAAK,EAAE,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe;aAChE,CAAC;YAEF,OAAO,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QAC1C,CAAC;IACH,CAAC,CAAC,CAAC;AACL,CAAC"}

package/dist/routes/oauth.d.ts

@@ -0,0 +1,3 @@
+import { FastifyInstance } from 'fastify';
+export declare function registerOAuthRoutes(fastify: FastifyInstance): Promise<void>;
+//# sourceMappingURL=oauth.d.ts.map

package/dist/routes/oauth.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"oauth.d.ts","sourceRoot":"","sources":["../../src/routes/oauth.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,eAAe,EAAgC,MAAM,SAAS,CAAC;AA8BxE,wBAAsB,mBAAmB,CAAC,OAAO,EAAE,eAAe,iBAgRjE"}

package/dist/routes/oauth.js

@@ -0,0 +1,242 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.registerOAuthRoutes = registerOAuthRoutes;
+const mcp_discovery_service_1 = require("../services/mcp-discovery-service");
+async function registerOAuthRoutes(fastify) {
+    // Discover OAuth configuration for a service
+    fastify.get('/:serviceId/discover', async (request, reply) => {
+        try {
+            const service = await fastify.db.getService(request.params.serviceId);
+            if (!service) {
+                const response = {
+                    success: false,
+                    error: 'Service not found',
+                };
+                return reply.status(404).send(response);
+            }
+            const discovery = await fastify.oauthManager.discoverOAuth(service.url);
+            const response = {
+                success: true,
+                data: discovery,
+            };
+            return reply.send(response);
+        }
+        catch (error) {
+            const response = {
+                success: false,
+                error: error instanceof Error ? error.message : 'Unknown error',
+            };
+            return reply.status(500).send(response);
+        }
+    });
+    // Auto-register OAuth application and initiate flow
+    fastify.post('/:serviceId/auto-setup', async (request, reply) => {
+        try {
+            const service = await fastify.db.getService(request.params.serviceId);
+            if (!service) {
+                const response = {
+                    success: false,
+                    error: 'Service not found',
+                };
+                return reply.status(404).send(response);
+            }
+            // Use MCP discovery service to get OAuth configuration
+            const discoveryService = new mcp_discovery_service_1.MCPDiscoveryService();
+            const mcpDiscovery = await discoveryService.discoverService(service.url);
+            if (!mcpDiscovery.oauth.required) {
+                const response = {
+                    success: false,
+                    error: 'Service does not require OAuth authentication',
+                };
+                return reply.status(400).send(response);
+            }
+            // Convert MCP discovery to OAuth config format
+            const oauthConfig = {
+                clientId: '', // Will be provided by auto-registration
+                clientSecret: '', // Will be provided by auto-registration
+                authorizationUrl: mcpDiscovery.oauth.authorizationUrl || '',
+                tokenUrl: mcpDiscovery.oauth.tokenUrl || '',
+                redirectUri: `http://localhost:8000/api/oauth/callback`,
+                scope: mcpDiscovery.oauth.scopesSupported?.[0] || 'read write',
+            };
+            // Auto-register OAuth application
+            const registration = await fastify.oauthManager.autoRegisterOAuthApp(service.url, oauthConfig);
+            if (!registration.success) {
+                const response = {
+                    success: false,
+                    error: registration.error || 'Failed to auto-register OAuth application',
+                    data: registration.registrationUrl ? { registrationUrl: registration.registrationUrl } : undefined,
+                };
+                return reply.status(400).send(response);
+            }
+            // Update service with OAuth credentials
+            await fastify.db.updateService(request.params.serviceId, {
+                oauthClientId: registration.clientId,
+                oauthClientSecret: registration.clientSecret,
+                oauthAuthorizationUrl: oauthConfig.authorizationUrl,
+                oauthTokenUrl: oauthConfig.tokenUrl,
+                oauthRedirectUri: oauthConfig.redirectUri,
+                oauthScope: oauthConfig.scope,
+            });
+            // Initiate OAuth flow
+            const { authorizationUrl, state } = await fastify.oauthManager.initiateOAuthFlow({
+                serviceId: request.params.serviceId,
+                redirectUri: `http://localhost:8000/api/oauth/callback`,
+            });
+            const response = {
+                success: true,
+                data: {
+                    authorizationUrl,
+                    state,
+                    clientId: registration.clientId,
+                    message: 'OAuth application registered and authorization flow initiated',
+                },
+            };
+            return reply.send(response);
+        }
+        catch (error) {
+            const response = {
+                success: false,
+                error: error instanceof Error ? error.message : 'Unknown error',
+            };
+            return reply.status(400).send(response);
+        }
+    });
+    // Initiate OAuth flow (existing endpoint)
+    fastify.get('/:serviceId/authorize', async (request, reply) => {
+        try {
+            const { authorizationUrl, state } = await fastify.oauthManager.initiateOAuthFlow({
+                serviceId: request.params.serviceId,
+                redirectUri: request.query.redirectUri,
+            });
+            const response = {
+                success: true,
+                data: {
+                    authorizationUrl,
+                    state,
+                },
+            };
+            return reply.send(response);
+        }
+        catch (error) {
+            const response = {
+                success: false,
+                error: error instanceof Error ? error.message : 'Unknown error',
+            };
+            return reply.status(400).send(response);
+        }
+    });
+    // Handle OAuth callback (generic endpoint for all services)
+    fastify.get('/callback', async (request, reply) => {
+        try {
+            const { code, state } = request.query;
+            if (!code || !state) {
+                const response = {
+                    success: false,
+                    error: 'Missing authorization code or state parameter',
+                };
+                return reply.status(400).send(response);
+            }
+            // Extract service ID from state using OAuth manager's state mapping
+            const serviceId = fastify.oauthManager.getOAuthState(state);
+            if (!serviceId) {
+                const response = {
+                    success: false,
+                    error: 'Invalid or expired OAuth state',
+                };
+                return reply.status(400).send(response);
+            }
+            const token = await fastify.oauthManager.handleOAuthCallback({
+                serviceId,
+                code,
+                state,
+            });
+            fastify.collectionWarningService.clearCache(serviceId);
+            // Redirect to frontend with success status
+            return reply.redirect(`http://localhost:3000/oauth/callback?success=true&serviceId=${serviceId}`);
+        }
+        catch (error) {
+            // Redirect to frontend with error status
+            const errorMessage = error instanceof Error ? error.message : 'OAuth callback failed';
+            return reply.redirect(`http://localhost:3000/oauth/callback?success=false&error=${encodeURIComponent(errorMessage)}`);
+        }
+    });
+    // Handle OAuth callback (legacy endpoint with service ID)
+    fastify.get('/:serviceId/callback', async (request, reply) => {
+        try {
+            const token = await fastify.oauthManager.handleOAuthCallback({
+                serviceId: request.params.serviceId,
+                code: request.query.code,
+                state: request.query.state,
+            });
+            const response = {
+                success: true,
+                data: token,
+                message: 'OAuth authentication successful',
+            };
+            return reply.send(response);
+        }
+        catch (error) {
+            const response = {
+                success: false,
+                error: error instanceof Error ? error.message : 'Unknown error',
+            };
+            return reply.status(400).send(response);
+        }
+    });
+    // Refresh OAuth token
+    fastify.post('/:serviceId/refresh', async (request, reply) => {
+        try {
+            const token = await fastify.oauthManager.refreshOAuthToken({
+                serviceId: request.params.serviceId,
+                refreshToken: request.body.refreshToken,
+            });
+            const response = {
+                success: true,
+                data: token,
+                message: 'OAuth token refreshed successfully',
+            };
+            return reply.send(response);
+        }
+        catch (error) {
+            const response = {
+                success: false,
+                error: error instanceof Error ? error.message : 'Unknown error',
+            };
+            return reply.status(400).send(response);
+        }
+    });
+    // Get OAuth status for a service
+    fastify.get('/:serviceId/status', async (request, reply) => {
+        try {
+            const service = await fastify.db.getService(request.params.serviceId);
+            if (!service) {
+                const response = {
+                    success: false,
+                    error: 'Service not found',
+                };
+                return reply.status(404).send(response);
+            }
+            const isExpired = await fastify.oauthManager.isTokenExpired(request.params.serviceId);
+            const hasToken = !!service.oauthAccessToken;
+            const response = {
+                success: true,
+                data: {
+                    hasToken,
+                    isExpired,
+                    hasRefreshToken: !!service.oauthRefreshToken,
+                    expiresAt: service.oauthTokenExpiresAt,
+                },
+            };
+            return reply.send(response);
+        }
+        catch (error) {
+            const response = {
+                success: false,
+                error: error instanceof Error ? error.message : 'Unknown error',
+            };
+            return reply.status(500).send(response);
+        }
+    });
+}
+//# sourceMappingURL=oauth.js.map

package/dist/routes/oauth.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"oauth.js","sourceRoot":"","sources":["../../src/routes/oauth.ts"],"names":[],"mappings":";;AA8BA,kDAgRC;AArSD,6EAAwE;AAqBjE,KAAK,UAAU,mBAAmB,CAAC,OAAwB;IAChE,6CAA6C;IAC7C,OAAO,CAAC,GAAG,CAAmB,sBAAsB,EAAE,KAAK,EAAE,OAAO,EAAE,KAAK,EAAE,EAAE;QAC7E,IAAI,CAAC;YACH,MAAM,OAAO,GAAG,MAAM,OAAO,CAAC,EAAE,CAAC,UAAU,CAAC,OAAO,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC;YACtE,IAAI,CAAC,OAAO,EAAE,CAAC;gBACb,MAAM,QAAQ,GAAgB;oBAC5B,OAAO,EAAE,KAAK;oBACd,KAAK,EAAE,mBAAmB;iBAC3B,CAAC;gBAEF,OAAO,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;YAC1C,CAAC;YAED,MAAM,SAAS,GAAG,MAAM,OAAO,CAAC,YAAY,CAAC,aAAa,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC;YAExE,MAAM,QAAQ,GAAsC;gBAClD,OAAO,EAAE,IAAI;gBACb,IAAI,EAAE,SAAS;aAChB,CAAC;YAEF,OAAO,KAAK,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QAC9B,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,QAAQ,GAAgB;gBAC5B,OAAO,EAAE,KAAK;gBACd,KAAK,EAAE,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe;aAChE,CAAC;YAEF,OAAO,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QAC1C,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,oDAAoD;IACpD,OAAO,CAAC,IAAI,CAAmB,wBAAwB,EAAE,KAAK,EAAE,OAAO,EAAE,KAAK,EAAE,EAAE;QAChF,IAAI,CAAC;YACH,MAAM,OAAO,GAAG,MAAM,OAAO,CAAC,EAAE,CAAC,UAAU,CAAC,OAAO,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC;YACtE,IAAI,CAAC,OAAO,EAAE,CAAC;gBACb,MAAM,QAAQ,GAAgB;oBAC5B,OAAO,EAAE,KAAK;oBACd,KAAK,EAAE,mBAAmB;iBAC3B,CAAC;gBAEF,OAAO,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;YAC1C,CAAC;YAED,uDAAuD;YACvD,MAAM,gBAAgB,GAAG,IAAI,2CAAmB,EAAE,CAAC;YACnD,MAAM,YAAY,GAAG,MAAM,gBAAgB,CAAC,eAAe,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC;YAEzE,IAAI,CAAC,YAAY,CAAC,KAAK,CAAC,QAAQ,EAAE,CAAC;gBACjC,MAAM,QAAQ,GAAgB;oBAC5B,OAAO,EAAE,KAAK;oBACd,KAAK,EAAE,+CAA+C;iBACvD,CAAC;gBAEF,OAAO,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;YAC1C,CAAC;YAED,+CAA+C;YAC/C,MAAM,WAAW,GAAG;gBAClB,QAAQ,EAAE,EAAE,EAAE,wCAAwC;gBACtD,YAAY,EAAE,EAAE,EAAE,wCAAwC;gBAC1D,gBAAgB,EAAE,YAAY,CAAC,KAAK,CAAC,gBAAgB,IAAI,EAAE;gBAC3D,QAAQ,EAAE,YAAY,CAAC,KAAK,CAAC,QAAQ,IAAI,EAAE;gBAC3C,WAAW,EAAE,0CAA0C;gBACvD,KAAK,EAAE,YAAY,CAAC,KAAK,CAAC,eAAe,EAAE,CAAC,CAAC,CAAC,IAAI,YAAY;aAC/D,CAAC;YAEF,kCAAkC;YAClC,MAAM,YAAY,GAAG,MAAM,OAAO,CAAC,YAAY,CAAC,oBAAoB,CAAC,OAAO,CAAC,GAAG,EAAE,WAAW,CAAC,CAAC;YAC/F,IAAI,CAAC,YAAY,CAAC,OAAO,EAAE,CAAC;gBAC1B,MAAM,QAAQ,GAAgB;oBAC5B,OAAO,EAAE,KAAK;oBACd,KAAK,EAAE,YAAY,CAAC,KAAK,IAAI,2CAA2C;oBACxE,IAAI,EAAE,YAAY,CAAC,eAAe,CAAC,CAAC,CAAC,EAAE,eAAe,EAAE,YAAY,CAAC,eAAe,EAAE,CAAC,CAAC,CAAC,SAAS;iBACnG,CAAC;gBAEF,OAAO,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;YAC1C,CAAC;YAED,wCAAwC;YACxC,MAAM,OAAO,CAAC,EAAE,CAAC,aAAa,CAAC,OAAO,CAAC,MAAM,CAAC,SAAS,EAAE;gBACvD,aAAa,EAAE,YAAY,CAAC,QAAQ;gBACpC,iBAAiB,EAAE,YAAY,CAAC,YAAY;gBAC5C,qBAAqB,EAAE,WAAW,CAAC,gBAAgB;gBACnD,aAAa,EAAE,WAAW,CAAC,QAAQ;gBACnC,gBAAgB,EAAE,WAAW,CAAC,WAAW;gBACzC,UAAU,EAAE,WAAW,CAAC,KAAK;aAC9B,CAAC,CAAC;YAEH,sBAAsB;YACtB,MAAM,EAAE,gBAAgB,EAAE,KAAK,EAAE,GAAG,MAAM,OAAO,CAAC,YAAY,CAAC,iBAAiB,CAAC;gBAC/E,SAAS,EAAE,OAAO,CAAC,MAAM,CAAC,SAAS;gBACnC,WAAW,EAAE,0CAA0C;aACxD,CAAC,CAAC;YAEH,MAAM,QAAQ,GAAgB;gBAC5B,OAAO,EAAE,IAAI;gBACb,IAAI,EAAE;oBACJ,gBAAgB;oBAChB,KAAK;oBACL,QAAQ,EAAE,YAAY,CAAC,QAAQ;oBAC/B,OAAO,EAAE,+DAA+D;iBACzE;aACF,CAAC;YAEF,OAAO,KAAK,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QAC9B,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,QAAQ,GAAgB;gBAC5B,OAAO,EAAE,KAAK;gBACd,KAAK,EAAE,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe;aAChE,CAAC;YAEF,OAAO,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QAC1C,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,0CAA0C;IAC1C,OAAO,CAAC,GAAG,CAAmB,uBAAuB,EAAE,KAAK,EAAE,OAAO,EAAE,KAAK,EAAE,EAAE;QAC9E,IAAI,CAAC;YACH,MAAM,EAAE,gBAAgB,EAAE,KAAK,EAAE,GAAG,MAAM,OAAO,CAAC,YAAY,CAAC,iBAAiB,CAAC;gBAC/E,SAAS,EAAE,OAAO,CAAC,MAAM,CAAC,SAAS;gBACnC,WAAW,EAAE,OAAO,CAAC,KAAK,CAAC,WAAW;aACvC,CAAC,CAAC;YAEH,MAAM,QAAQ,GAAgB;gBAC5B,OAAO,EAAE,IAAI;gBACb,IAAI,EAAE;oBACJ,gBAAgB;oBAChB,KAAK;iBACN;aACF,CAAC;YAEF,OAAO,KAAK,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QAC9B,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,QAAQ,GAAgB;gBAC5B,OAAO,EAAE,KAAK;gBACd,KAAK,EAAE,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe;aAChE,CAAC;YAEF,OAAO,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QAC1C,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,4DAA4D;IAC5D,OAAO,CAAC,GAAG,CAAC,WAAW,EAAE,KAAK,EAAE,OAAO,EAAE,KAAK,EAAE,EAAE;QAChD,IAAI,CAAC;YACH,MAAM,EAAE,IAAI,EAAE,KAAK,EAAE,GAAG,OAAO,CAAC,KAAwC,CAAC;YAEzE,IAAI,CAAC,IAAI,IAAI,CAAC,KAAK,EAAE,CAAC;gBACpB,MAAM,QAAQ,GAAgB;oBAC5B,OAAO,EAAE,KAAK;oBACd,KAAK,EAAE,+CAA+C;iBACvD,CAAC;gBACF,OAAO,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;YAC1C,CAAC;YAED,oEAAoE;YACpE,MAAM,SAAS,GAAG,OAAO,CAAC,YAAY,CAAC,aAAa,CAAC,KAAK,CAAC,CAAC;YAE5D,IAAI,CAAC,SAAS,EAAE,CAAC;gBACf,MAAM,QAAQ,GAAgB;oBAC5B,OAAO,EAAE,KAAK;oBACd,KAAK,EAAE,gCAAgC;iBACxC,CAAC;gBACF,OAAO,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;YAC1C,CAAC;YAED,MAAM,KAAK,GAAG,MAAM,OAAO,CAAC,YAAY,CAAC,mBAAmB,CAAC;gBAC3D,SAAS;gBACT,IAAI;gBACJ,KAAK;aACN,CAAC,CAAC;YAEH,OAAO,CAAC,wBAAwB,CAAC,UAAU,CAAC,SAAS,CAAC,CAAC;YAEvD,2CAA2C;YAC3C,OAAO,KAAK,CAAC,QAAQ,CAAC,+DAA+D,SAAS,EAAE,CAAC,CAAC;QACpG,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,yCAAyC;YACzC,MAAM,YAAY,GAAG,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,uBAAuB,CAAC;YACtF,OAAO,KAAK,CAAC,QAAQ,CAAC,4DAA4D,kBAAkB,CAAC,YAAY,CAAC,EAAE,CAAC,CAAC;QACxH,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,0DAA0D;IAC1D,OAAO,CAAC,GAAG,CAAuB,sBAAsB,EAAE,KAAK,EAAE,OAAO,EAAE,KAAK,EAAE,EAAE;QACjF,IAAI,CAAC;YACH,MAAM,KAAK,GAAG,MAAM,OAAO,CAAC,YAAY,CAAC,mBAAmB,CAAC;gBAC3D,SAAS,EAAE,OAAO,CAAC,MAAM,CAAC,SAAS;gBACnC,IAAI,EAAE,OAAO,CAAC,KAAK,CAAC,IAAI;gBACxB,KAAK,EAAE,OAAO,CAAC,KAAK,CAAC,KAAK;aAC3B,CAAC,CAAC;YAEH,MAAM,QAAQ,GAA4B;gBACxC,OAAO,EAAE,IAAI;gBACb,IAAI,EAAE,KAAK;gBACX,OAAO,EAAE,iCAAiC;aAC3C,CAAC;YAEF,OAAO,KAAK,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QAC9B,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,QAAQ,GAAgB;gBAC5B,OAAO,EAAE,KAAK;gBACd,KAAK,EAAE,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe;aAChE,CAAC;YAEF,OAAO,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QAC1C,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,sBAAsB;IACtB,OAAO,CAAC,IAAI,CAAsB,qBAAqB,EAAE,KAAK,EAAE,OAAO,EAAE,KAAK,EAAE,EAAE;QAChF,IAAI,CAAC;YACH,MAAM,KAAK,GAAG,MAAM,OAAO,CAAC,YAAY,CAAC,iBAAiB,CAAC;gBACzD,SAAS,EAAE,OAAO,CAAC,MAAM,CAAC,SAAS;gBACnC,YAAY,EAAE,OAAO,CAAC,IAAI,CAAC,YAAY;aACxC,CAAC,CAAC;YAEH,MAAM,QAAQ,GAA4B;gBACxC,OAAO,EAAE,IAAI;gBACb,IAAI,EAAE,KAAK;gBACX,OAAO,EAAE,oCAAoC;aAC9C,CAAC;YAEF,OAAO,KAAK,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QAC9B,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,QAAQ,GAAgB;gBAC5B,OAAO,EAAE,KAAK;gBACd,KAAK,EAAE,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe;aAChE,CAAC;YAEF,OAAO,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QAC1C,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,iCAAiC;IACjC,OAAO,CAAC,GAAG,CAAmB,oBAAoB,EAAE,KAAK,EAAE,OAAO,EAAE,KAAK,EAAE,EAAE;QAC3E,IAAI,CAAC;YACH,MAAM,OAAO,GAAG,MAAM,OAAO,CAAC,EAAE,CAAC,UAAU,CAAC,OAAO,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC;YACtE,IAAI,CAAC,OAAO,EAAE,CAAC;gBACb,MAAM,QAAQ,GAAgB;oBAC5B,OAAO,EAAE,KAAK;oBACd,KAAK,EAAE,mBAAmB;iBAC3B,CAAC;gBAEF,OAAO,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;YAC1C,CAAC;YAED,MAAM,SAAS,GAAG,MAAM,OAAO,CAAC,YAAY,CAAC,cAAc,CAAC,OAAO,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC;YACtF,MAAM,QAAQ,GAAG,CAAC,CAAC,OAAO,CAAC,gBAAgB,CAAC;YAE5C,MAAM,QAAQ,GAAgB;gBAC5B,OAAO,EAAE,IAAI;gBACb,IAAI,EAAE;oBACJ,QAAQ;oBACR,SAAS;oBACT,eAAe,EAAE,CAAC,CAAC,OAAO,CAAC,iBAAiB;oBAC5C,SAAS,EAAE,OAAO,CAAC,mBAAmB;iBACvC;aACF,CAAC;YAEF,OAAO,KAAK,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QAC9B,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,QAAQ,GAAgB;gBAC5B,OAAO,EAAE,KAAK;gBACd,KAAK,EAAE,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe;aAChE,CAAC;YAEF,OAAO,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QAC1C,CAAC;IACH,CAAC,CAAC,CAAC;AACL,CAAC"}

package/dist/routes/playbooks.d.ts

@@ -0,0 +1,5 @@
+import { FastifyInstance } from 'fastify';
+import { PlaybookDependencyError } from '../playbooks/playbook-manager';
+export declare function registerPlaybookRoutes(fastify: FastifyInstance): Promise<void>;
+export { PlaybookDependencyError };
+//# sourceMappingURL=playbooks.d.ts.map

package/dist/routes/playbooks.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"playbooks.d.ts","sourceRoot":"","sources":["../../src/routes/playbooks.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,eAAe,EAAE,MAAM,SAAS,CAAC;AAqB1C,OAAO,EAAE,uBAAuB,EAAE,MAAM,+BAA+B,CAAC;AAoBxE,wBAAsB,sBAAsB,CAAC,OAAO,EAAE,eAAe,iBAqNpE;AAED,OAAO,EAAE,uBAAuB,EAAE,CAAC"}