@antonytm/mcp-sitecore-server 0.3.0 → 0.5.0

package/README.md

@@ -48,6 +48,20 @@
     - [x] `security-protect-item-by-path`: protects an item by path
     - [x] `security-unprotect-item-by-id`: unprotects an item by ID
     - [x] `security-unprotect-item-by-path`: unprotects an item by path
+    - [x] `security-test-acccount`: tests an account
+    - [x] `security-unlock-user`: unlocks a user
+      - [ ] test covergage requires logging user with wrong password
+    - [ ] `security-login-user`: logs in a user. Blocked by [SPE issue](https://github.com/SitecorePowerShell/Console/issues/1367#issue-3055272174).
+    - [ ] `security-logout-user`: logs out a user. Blocked by [SPE issue](https://github.com/SitecorePowerShell/Console/issues/1368)
+    - [ ] `security-export-user`: exports a user. Blocked by [SPE issue](https://github.com/SitecorePowerShell/Console/issues/1370)
+    - [ ] `security-import-user`: imports a user. Blocked by [SPE issue](https://github.com/SitecorePowerShell/Console/issues/1371)
+    - [ ] `security-export-role`: exports a role. Blocked by [SPE issue](https://github.com/SitecorePowerShell/Console/issues/1369)
+    - [ ] `security-import-role`: imports a role. Blocked by [SPE issue](https://github.com/SitecorePowerShell/Console/issues/1372)
+    - [x] `security-add-role-member`: adds a member to a role
+    - [x] `security-remove-role-member`: removes a member from a role
+    - [x] `security-test-item-acl-by-id`: tests an item ACL by ID
+    - [x] `security-test-item-acl-by-path`: tests an item ACL by path
+
 - [ ] Sitecore CLI
 
 ## Installation

package/dist/tools/powershell/client.js

@@ -25,6 +25,9 @@ class PowershellClient {
                 if (parameters[parameter] === "") {
                     scriptWithParameters += ` -${parameter}`;
                 }
+                else if (Array.isArray(parameters[parameter])) {
+                    scriptWithParameters += ` -${parameter} "${parameters[parameter].join('","')}"`;
+                }
                 else {
                     scriptWithParameters += ` -${parameter} "${parameters[parameter]}"`;
                 }

package/dist/tools/powershell/client.js.map

@@ -1 +1 @@
-{"version":3,"file":"client.js","sourceRoot":"","sources":["../../../src/tools/powershell/client.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,aAAa,EAAE,cAAc,EAAE,MAAM,yBAAyB,CAAC;AAExE,MAAM,gBAAgB;IACV,SAAS,CAAS;IAClB,QAAQ,CAAS;IACjB,QAAQ,CAAS;IACjB,MAAM,CAAS;IACf,WAAW,GAAkB,IAAI,CAAC;IAE1C,YAAY,SAAiB,EAAE,QAAgB,EAAE,QAAgB,EAAE,SAAiB,UAAU;QAC1F,IAAI,CAAC,SAAS,GAAG,SAAS,CAAC;QAC3B,IAAI,CAAC,QAAQ,GAAG,QAAQ,CAAC;QACzB,IAAI,CAAC,QAAQ,GAAG,QAAQ,CAAC;QACzB,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC;QACrB,IAAI,CAAC,WAAW,GAAG,QAAQ,GAAG,MAAM,CAAC,IAAI,CAAC,GAAG,QAAQ,IAAI,QAAQ,EAAE,CAAC,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAC;IAC5F,CAAC;IAED,KAAK,CAAC,aAAa,CAAC,MAAc,EAAE,aAAkC,EAAE;QACpE,MAAM,IAAI,GAAG,MAAM,CAAC,UAAU,EAAE,CAAC;QACjC,MAAM,GAAG,GAAG,GAAG,IAAI,CAAC,SAAS,+BAA+B,IAAI,2CAA2C,CAAC;QAC5G,MAAM,OAAO,GAAG;YACZ,eAAe,EAAE,IAAI,CAAC,WAAW,IAAI,EAAE;YACvC,cAAc,EAAE,kBAAkB;SACrC,CAAC;QAEF,IAAI,oBAAoB,GAAG,MAAM,CAAC;QAClC,IAAI,UAAU,EAAE,CAAC;YACb,KAAK,MAAM,SAAS,IAAI,UAAU,EAAE,CAAC;gBACjC,IAAI,UAAU,CAAC,SAAS,CAAC,KAAK,EAAE,EAAE,CAAC;oBAC/B,oBAAoB,IAAI,KAAK,SAAS,EAAE,CAAC;gBAC7C,CAAC;qBACI,CAAC;oBACF,oBAAoB,IAAI,KAAK,SAAS,KAAK,UAAU,CAAC,SAAS,CAAC,GAAG,CAAC;gBACxE,CAAC;YACL,CAAC;QACL,CAAC;QAED,MAAM,IAAI,GAAG,GAAG,oBAAoB,UAAU,IAAI,QAAQ,CAAC;QAE3D,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,EAAE;YAC9B,MAAM,EAAE,MAAM;YACd,OAAO,EAAE,OAAO;YAChB,IAAI,EAAE,IAAI;SAEb,CAAC,CAAC;QAEH,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;YACf,MAAM,IAAI,KAAK,CAAC,2BAA2B,QAAQ,CAAC,UAAU,EAAE,CAAC,CAAC;QACtE,CAAC;QACD,OAAO,QAAQ,CAAC,IAAI,EAAE,CAAC;IAC3B,CAAC;IAED,KAAK,CAAC,iBAAiB,CAAC,MAAc,EAAE,aAAkC,EAAE;QACxE,OAAO,IAAI,CAAC,aAAa,CAAC,MAAM,EAAE,UAAU,CAAC,CAAC,IAAI,CAAC,CAAC,IAAI,EAAE,EAAE;YACxD,MAAM,IAAI,GAAG,cAAc,CAAC,IAAI;iBAC3B,IAAI,CAAC,GAAG,CAAC;iBACT,IAAI,CAAC,GAAG,CAAC;iBACT,UAAU,CAAC,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC;YAC/B,OAAO,IAAI,CAAC,SAAS,CAAC,aAAa,CAAC,IAAI,CAAC,CAAC,CAAC;QAC/C,CAAC,CAAC,CAAC;IACP,CAAC;CACJ;AAED,OAAO,EAAE,gBAAgB,EAAE,CAAC"}
+{"version":3,"file":"client.js","sourceRoot":"","sources":["../../../src/tools/powershell/client.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,aAAa,EAAE,cAAc,EAAE,MAAM,yBAAyB,CAAC;AAExE,MAAM,gBAAgB;IACV,SAAS,CAAS;IAClB,QAAQ,CAAS;IACjB,QAAQ,CAAS;IACjB,MAAM,CAAS;IACf,WAAW,GAAkB,IAAI,CAAC;IAE1C,YAAY,SAAiB,EAAE,QAAgB,EAAE,QAAgB,EAAE,SAAiB,UAAU;QAC1F,IAAI,CAAC,SAAS,GAAG,SAAS,CAAC;QAC3B,IAAI,CAAC,QAAQ,GAAG,QAAQ,CAAC;QACzB,IAAI,CAAC,QAAQ,GAAG,QAAQ,CAAC;QACzB,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC;QACrB,IAAI,CAAC,WAAW,GAAG,QAAQ,GAAG,MAAM,CAAC,IAAI,CAAC,GAAG,QAAQ,IAAI,QAAQ,EAAE,CAAC,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAC;IAC5F,CAAC;IAED,KAAK,CAAC,aAAa,CAAC,MAAc,EAAE,aAAkC,EAAE;QACpE,MAAM,IAAI,GAAG,MAAM,CAAC,UAAU,EAAE,CAAC;QACjC,MAAM,GAAG,GAAG,GAAG,IAAI,CAAC,SAAS,+BAA+B,IAAI,2CAA2C,CAAC;QAC5G,MAAM,OAAO,GAAG;YACZ,eAAe,EAAE,IAAI,CAAC,WAAW,IAAI,EAAE;YACvC,cAAc,EAAE,kBAAkB;SACrC,CAAC;QAEF,IAAI,oBAAoB,GAAG,MAAM,CAAC;QAClC,IAAI,UAAU,EAAE,CAAC;YACb,KAAK,MAAM,SAAS,IAAI,UAAU,EAAE,CAAC;gBACjC,IAAI,UAAU,CAAC,SAAS,CAAC,KAAK,EAAE,EAAE,CAAC;oBAC/B,oBAAoB,IAAI,KAAK,SAAS,EAAE,CAAC;gBAC7C,CAAC;qBACI,IAAI,KAAK,CAAC,OAAO,CAAC,UAAU,CAAC,SAAS,CAAC,CAAC,EAAE,CAAC;oBAC5C,oBAAoB,IAAI,KAAK,SAAS,KAAK,UAAU,CAAC,SAAS,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC;gBACpF,CAAC;qBAAM,CAAC;oBACJ,oBAAoB,IAAI,KAAK,SAAS,KAAK,UAAU,CAAC,SAAS,CAAC,GAAG,CAAC;gBACxE,CAAC;YACL,CAAC;QACL,CAAC;QAED,MAAM,IAAI,GAAG,GAAG,oBAAoB,UAAU,IAAI,QAAQ,CAAC;QAE3D,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,EAAE;YAC9B,MAAM,EAAE,MAAM;YACd,OAAO,EAAE,OAAO;YAChB,IAAI,EAAE,IAAI;SAEb,CAAC,CAAC;QAEH,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;YACf,MAAM,IAAI,KAAK,CAAC,2BAA2B,QAAQ,CAAC,UAAU,EAAE,CAAC,CAAC;QACtE,CAAC;QACD,OAAO,QAAQ,CAAC,IAAI,EAAE,CAAC;IAC3B,CAAC;IAED,KAAK,CAAC,iBAAiB,CAAC,MAAc,EAAE,aAAkC,EAAE;QACxE,OAAO,IAAI,CAAC,aAAa,CAAC,MAAM,EAAE,UAAU,CAAC,CAAC,IAAI,CAAC,CAAC,IAAI,EAAE,EAAE;YACxD,MAAM,IAAI,GAAG,cAAc,CAAC,IAAI;iBAC3B,IAAI,CAAC,GAAG,CAAC;iBACT,IAAI,CAAC,GAAG,CAAC;iBACT,UAAU,CAAC,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC;YAC/B,OAAO,IAAI,CAAC,SAAS,CAAC,aAAa,CAAC,IAAI,CAAC,CAAC,CAAC;QAC/C,CAAC,CAAC,CAAC;IACP,CAAC;CACJ;AAED,OAAO,EAAE,gBAAgB,EAAE,CAAC"}

package/dist/tools/powershell/simple/security/access-rights.d.ts

@@ -0,0 +1,7 @@
+/**
+ * Simple array of access rights available in Sitecore security operations.
+ * Used in security-related PowerShell operations like Test-ItemAcl.
+ *
+ * @see https://doc.sitecorepowershell.com/appendix/security/test-itemacl
+ */
+export declare const AccessRights: string[];

package/dist/tools/powershell/simple/security/access-rights.js

@@ -0,0 +1,33 @@
+/**
+ * Simple array of access rights available in Sitecore security operations.
+ * Used in security-related PowerShell operations like Test-ItemAcl.
+ *
+ * @see https://doc.sitecorepowershell.com/appendix/security/test-itemacl
+ */
+export const AccessRights = [
+    // Item-level access rights
+    'item:read',
+    'item:write',
+    'item:create',
+    'item:delete',
+    'item:rename',
+    'item:admin',
+    // Field-level access rights
+    'field:read',
+    'field:write',
+    // Language-level access rights
+    'language:read',
+    'language:write',
+    // Workflow-related access rights
+    'workflowState:delete',
+    'workflowState:write',
+    'workflowCommand:execute',
+    // Additional access rights
+    'site:enter',
+    'remote:fieldread',
+    'insert:show',
+    'profile:customize',
+    'bucket:makebucket',
+    'bucket:unmake'
+];
+//# sourceMappingURL=access-rights.js.map

package/dist/tools/powershell/simple/security/access-rights.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"access-rights.js","sourceRoot":"","sources":["../../../../../src/tools/powershell/simple/security/access-rights.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AACH,MAAM,CAAC,MAAM,YAAY,GAAG;IAC1B,2BAA2B;IAC3B,WAAW;IACX,YAAY;IACZ,aAAa;IACb,aAAa;IACb,aAAa;IACb,YAAY;IAEZ,4BAA4B;IAC5B,YAAY;IACZ,aAAa;IAEb,+BAA+B;IAC/B,eAAe;IACf,gBAAgB;IAEhB,iCAAiC;IACjC,sBAAsB;IACtB,qBAAqB;IACrB,yBAAyB;IAEzB,2BAA2B;IAC3B,YAAY;IACZ,kBAAkB;IAClB,aAAa;IACb,mBAAmB;IACnB,mBAAmB;IACnB,eAAe;CAChB,CAAC"}

package/dist/tools/powershell/simple/security/register-add-role-member.d.ts

@@ -0,0 +1,3 @@
+import type { McpServer } from "@modelcontextprotocol/sdk/server/mcp";
+import type { Config } from "../../../../config.js";
+export declare function registerAddRoleMemberPowerShell(server: McpServer, config: Config): void;

package/dist/tools/powershell/simple/security/register-add-role-member.js

@@ -0,0 +1,19 @@
+import { z } from "zod";
+import { safeMcpResponse } from "../../../../helper.js";
+import { runGenericPowershellCommand } from "../generic.js";
+export function registerAddRoleMemberPowerShell(server, config) {
+    server.tool("security-add-role-member", "Adds a member to a Sitecore role.", {
+        identity: z.string()
+            .describe("The identity of the role to add members to (e.g. 'CustomRole' or full path 'sitecore\\CustomRole')"),
+        members: z.string()
+            .describe("The members to add to the role (comma-separated list of users or roles, e.g. 'sitecore\\user1,sitecore\\user2')"),
+    }, async (params) => {
+        const command = `Add-RoleMember`;
+        const options = {
+            "Identity": params.identity,
+            "Members": params.members.split(',').map(member => member.trim()).join('","'),
+        };
+        return safeMcpResponse(runGenericPowershellCommand(config, command, options));
+    });
+}
+//# sourceMappingURL=register-add-role-member.js.map

package/dist/tools/powershell/simple/security/register-add-role-member.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"register-add-role-member.js","sourceRoot":"","sources":["../../../../../src/tools/powershell/simple/security/register-add-role-member.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AACxB,OAAO,EAAE,eAAe,EAAE,MAAM,uBAAuB,CAAC;AACxD,OAAO,EAAE,2BAA2B,EAAE,MAAM,eAAe,CAAC;AAE5D,MAAM,UAAU,+BAA+B,CAAC,MAAiB,EAAE,MAAc;IAC7E,MAAM,CAAC,IAAI,CACP,0BAA0B,EAC1B,mCAAmC,EACnC;QACI,QAAQ,EAAE,CAAC,CAAC,MAAM,EAAE;aACf,QAAQ,CAAC,oGAAoG,CAAC;QACnH,OAAO,EAAE,CAAC,CAAC,MAAM,EAAE;aACd,QAAQ,CAAC,iHAAiH,CAAC;KACnI,EACD,KAAK,EAAE,MAAM,EAAE,EAAE;QACb,MAAM,OAAO,GAAG,gBAAgB,CAAC;QACjC,MAAM,OAAO,GAAwB;YACjC,UAAU,EAAE,MAAM,CAAC,QAAQ;YAC3B,SAAS,EAAE,MAAM,CAAC,OAAO,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,MAAM,CAAC,IAAI,EAAE,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC;SAChF,CAAC;QAEF,OAAO,eAAe,CAAC,2BAA2B,CAAC,MAAM,EAAE,OAAO,EAAE,OAAO,CAAC,CAAC,CAAC;IAClF,CAAC,CACJ,CAAC;AACN,CAAC"}

package/dist/tools/powershell/simple/security/register-get-item-acl.d.ts

@@ -0,0 +1,3 @@
+import type { McpServer } from "@modelcontextprotocol/sdk/server/mcp";
+import type { Config } from "../../../../config.js";
+export declare function registerGetItemAclPowerShell(server: McpServer, config: Config): void;

package/dist/tools/powershell/simple/security/register-get-item-acl.js

@@ -0,0 +1,56 @@
+import { z } from "zod";
+import { safeMcpResponse } from "../../../../helper.js";
+import { runGenericPowershellCommand } from "../generic.js";
+export function registerGetItemAclPowerShell(server, config) {
+    server.tool("security-get-item-acl-by-id", "Gets the access control list (ACL) of a Sitecore item by its ID.", {
+        id: z.string()
+            .describe("The ID of the item to get ACL for"),
+        includeInherited: z.boolean().optional()
+            .describe("If set to true, includes inherited ACL entries"),
+        includeSystem: z.boolean().optional()
+            .describe("If set to true, includes system ACL entries"),
+        database: z.string().optional()
+            .describe("The database containing the item (defaults to the context database)")
+    }, async (params) => {
+        const command = `Get-ItemAcl`;
+        const options = {
+            "ID": params.id,
+        };
+        if (params.includeInherited) {
+            options["IncludeInherited"] = "";
+        }
+        if (params.includeSystem) {
+            options["IncludeSystem"] = "";
+        }
+        if (params.database) {
+            options["Database"] = params.database;
+        }
+        return safeMcpResponse(runGenericPowershellCommand(config, command, options));
+    });
+    server.tool("security-get-item-acl-by-path", "Gets the access control list (ACL) of a Sitecore item by its path.", {
+        path: z.string()
+            .describe("The path of the item to get ACL for (e.g. /sitecore/content/Home)"),
+        includeInherited: z.boolean().optional()
+            .describe("If set to true, includes inherited ACL entries"),
+        includeSystem: z.boolean().optional()
+            .describe("If set to true, includes system ACL entries"),
+        database: z.string().optional()
+            .describe("The database containing the item (defaults to the context database)")
+    }, async (params) => {
+        const command = `Get-ItemAcl`;
+        const options = {
+            "Path": params.path,
+        };
+        if (params.includeInherited) {
+            options["IncludeInherited"] = "";
+        }
+        if (params.includeSystem) {
+            options["IncludeSystem"] = "";
+        }
+        if (params.database) {
+            options["Database"] = params.database;
+        }
+        return safeMcpResponse(runGenericPowershellCommand(config, command, options));
+    });
+}
+//# sourceMappingURL=register-get-item-acl.js.map

package/dist/tools/powershell/simple/security/register-get-item-acl.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"register-get-item-acl.js","sourceRoot":"","sources":["../../../../../src/tools/powershell/simple/security/register-get-item-acl.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AACxB,OAAO,EAAE,eAAe,EAAE,MAAM,uBAAuB,CAAC;AACxD,OAAO,EAAE,2BAA2B,EAAE,MAAM,eAAe,CAAC;AAE5D,MAAM,UAAU,4BAA4B,CAAC,MAAiB,EAAE,MAAc;IAC1E,MAAM,CAAC,IAAI,CACP,6BAA6B,EAC7B,kEAAkE,EAClE;QACI,EAAE,EAAE,CAAC,CAAC,MAAM,EAAE;aACT,QAAQ,CAAC,mCAAmC,CAAC;QAClD,gBAAgB,EAAE,CAAC,CAAC,OAAO,EAAE,CAAC,QAAQ,EAAE;aACnC,QAAQ,CAAC,gDAAgD,CAAC;QAC/D,aAAa,EAAE,CAAC,CAAC,OAAO,EAAE,CAAC,QAAQ,EAAE;aAChC,QAAQ,CAAC,6CAA6C,CAAC;QAC5D,QAAQ,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;aAC1B,QAAQ,CAAC,qEAAqE,CAAC;KACvF,EACD,KAAK,EAAE,MAAM,EAAE,EAAE;QACb,MAAM,OAAO,GAAG,aAAa,CAAC;QAC9B,MAAM,OAAO,GAAwB;YACjC,IAAI,EAAE,MAAM,CAAC,EAAE;SAClB,CAAC;QAEF,IAAI,MAAM,CAAC,gBAAgB,EAAE,CAAC;YAC1B,OAAO,CAAC,kBAAkB,CAAC,GAAG,EAAE,CAAC;QACrC,CAAC;QAED,IAAI,MAAM,CAAC,aAAa,EAAE,CAAC;YACvB,OAAO,CAAC,eAAe,CAAC,GAAG,EAAE,CAAC;QAClC,CAAC;QAED,IAAI,MAAM,CAAC,QAAQ,EAAE,CAAC;YAClB,OAAO,CAAC,UAAU,CAAC,GAAG,MAAM,CAAC,QAAQ,CAAC;QAC1C,CAAC;QAED,OAAO,eAAe,CAAC,2BAA2B,CAAC,MAAM,EAAE,OAAO,EAAE,OAAO,CAAC,CAAC,CAAC;IAClF,CAAC,CACJ,CAAC;IAEF,MAAM,CAAC,IAAI,CACP,+BAA+B,EAC/B,oEAAoE,EACpE;QACI,IAAI,EAAE,CAAC,CAAC,MAAM,EAAE;aACX,QAAQ,CAAC,mEAAmE,CAAC;QAClF,gBAAgB,EAAE,CAAC,CAAC,OAAO,EAAE,CAAC,QAAQ,EAAE;aACnC,QAAQ,CAAC,gDAAgD,CAAC;QAC/D,aAAa,EAAE,CAAC,CAAC,OAAO,EAAE,CAAC,QAAQ,EAAE;aAChC,QAAQ,CAAC,6CAA6C,CAAC;QAC5D,QAAQ,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;aAC1B,QAAQ,CAAC,qEAAqE,CAAC;KACvF,EACD,KAAK,EAAE,MAAM,EAAE,EAAE;QACb,MAAM,OAAO,GAAG,aAAa,CAAC;QAC9B,MAAM,OAAO,GAAwB;YACjC,MAAM,EAAE,MAAM,CAAC,IAAI;SACtB,CAAC;QAEF,IAAI,MAAM,CAAC,gBAAgB,EAAE,CAAC;YAC1B,OAAO,CAAC,kBAAkB,CAAC,GAAG,EAAE,CAAC;QACrC,CAAC;QAED,IAAI,MAAM,CAAC,aAAa,EAAE,CAAC;YACvB,OAAO,CAAC,eAAe,CAAC,GAAG,EAAE,CAAC;QAClC,CAAC;QAED,IAAI,MAAM,CAAC,QAAQ,EAAE,CAAC;YAClB,OAAO,CAAC,UAAU,CAAC,GAAG,MAAM,CAAC,QAAQ,CAAC;QAC1C,CAAC;QAED,OAAO,eAAe,CAAC,2BAA2B,CAAC,MAAM,EAAE,OAAO,EAAE,OAAO,CAAC,CAAC,CAAC;IAClF,CAAC,CACJ,CAAC;AACN,CAAC"}

package/dist/tools/powershell/simple/security/register-remove-rolemember.d.ts

@@ -0,0 +1,3 @@
+import type { McpServer } from "@modelcontextprotocol/sdk/server/mcp";
+import type { Config } from "../../../../config.js";
+export declare function registerRemoveRoleMemberPowerShell(server: McpServer, config: Config): void;

package/dist/tools/powershell/simple/security/register-remove-rolemember.js

@@ -0,0 +1,19 @@
+import { z } from "zod";
+import { safeMcpResponse } from "../../../../helper.js";
+import { runGenericPowershellCommand } from "../generic.js";
+export function registerRemoveRoleMemberPowerShell(server, config) {
+    server.tool("security-remove-role-member", "Removes members from a Sitecore role.", {
+        identity: z.string()
+            .describe("The identity of the role to remove members from (e.g. 'CustomRole' or full path 'sitecore\\CustomRole')"),
+        members: z.string()
+            .describe("The members to remove from the role (comma-separated list of users or roles, e.g. 'sitecore\\user1,sitecore\\user2')"),
+    }, async (params) => {
+        const command = `Remove-RoleMember`;
+        const options = {
+            "Identity": params.identity,
+            "Members": params.members.split(',').map(member => member.trim()).join('","'),
+        };
+        return safeMcpResponse(runGenericPowershellCommand(config, command, options));
+    });
+}
+//# sourceMappingURL=register-remove-rolemember.js.map

package/dist/tools/powershell/simple/security/register-remove-rolemember.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"register-remove-rolemember.js","sourceRoot":"","sources":["../../../../../src/tools/powershell/simple/security/register-remove-rolemember.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AACxB,OAAO,EAAE,eAAe,EAAE,MAAM,uBAAuB,CAAC;AACxD,OAAO,EAAE,2BAA2B,EAAE,MAAM,eAAe,CAAC;AAE5D,MAAM,UAAU,kCAAkC,CAAC,MAAiB,EAAE,MAAc;IAChF,MAAM,CAAC,IAAI,CACP,6BAA6B,EAC7B,uCAAuC,EACvC;QACI,QAAQ,EAAE,CAAC,CAAC,MAAM,EAAE;aACf,QAAQ,CAAC,yGAAyG,CAAC;QACxH,OAAO,EAAE,CAAC,CAAC,MAAM,EAAE;aACd,QAAQ,CAAC,sHAAsH,CAAC;KACxI,EACD,KAAK,EAAE,MAAM,EAAE,EAAE;QACb,MAAM,OAAO,GAAG,mBAAmB,CAAC;QACpC,MAAM,OAAO,GAAwB;YACjC,UAAU,EAAE,MAAM,CAAC,QAAQ;YAC3B,SAAS,EAAE,MAAM,CAAC,OAAO,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,MAAM,CAAC,IAAI,EAAE,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC;SAChF,CAAC;QAEF,OAAO,eAAe,CAAC,2BAA2B,CAAC,MAAM,EAAE,OAAO,EAAE,OAAO,CAAC,CAAC,CAAC;IAClF,CAAC,CACJ,CAAC;AACN,CAAC"}

package/dist/tools/powershell/simple/security/register-security-powershell.js

@@ -3,9 +3,13 @@ import { registerNewUserPowerShell } from "./register-new-user.js";
 import { registerRemoveUserPowerShell } from "./register-remove-user.js";
 import { registerDisableUserPowerShell } from "./register-disable-user.js";
 import { registerEnableUserPowerShell } from "./register-enable-user.js";
+import { registerUnlockUserPowerShell } from "./register-unlock-user.js";
+import { registerSetUserPowerShell } from "./register-set-user.js";
 import { registerGetDomainPowerShell } from "./register-get-domain.js";
 import { registerGetRolePowerShell } from "./register-get-role.js";
 import { registerGetRoleMemberPowerShell } from "./register-get-role-member.js";
+import { registerAddRoleMemberPowerShell } from "./register-add-role-member.js";
+import { registerRemoveRoleMemberPowerShell } from "./register-remove-rolemember.js";
 import { registerLockItemPowerShell } from "./register-lock-item.js";
 import { registerUnlockItemPowerShell } from "./register-unlock-item.js";
 import { registerProtectItemPowerShell } from "./register-protect-item.js";
@@ -14,15 +18,22 @@ import { registerNewRolePowerShell } from "./register-new-role.js";
 import { registerRemoveRolePowerShell } from "./register-remove-role.js";
 import { registerNewDomainPowerShell } from "./register-new-domain.js";
 import { registerRemoveDomainPowerShell } from "./register-remove-domain.js";
+import { registerTestAccountPowerShell } from "./register-test-account.js";
+import { registerGetItemAclPowerShell } from "./register-get-item-acl.js";
+import { registerTestItemAclPowerShell } from "./register-test-item-acl.js";
 export function registerSecurityPowerShell(server, config) {
     registerGetUserPowerShell(server, config);
     registerNewUserPowerShell(server, config);
     registerRemoveUserPowerShell(server, config);
     registerDisableUserPowerShell(server, config);
     registerEnableUserPowerShell(server, config);
+    registerUnlockUserPowerShell(server, config);
+    registerSetUserPowerShell(server, config);
     registerGetDomainPowerShell(server, config);
     registerGetRolePowerShell(server, config);
     registerGetRoleMemberPowerShell(server, config);
+    registerAddRoleMemberPowerShell(server, config);
+    registerRemoveRoleMemberPowerShell(server, config);
     registerLockItemPowerShell(server, config);
     registerUnlockItemPowerShell(server, config);
     registerProtectItemPowerShell(server, config);
@@ -31,5 +42,8 @@ export function registerSecurityPowerShell(server, config) {
     registerRemoveRolePowerShell(server, config);
     registerNewDomainPowerShell(server, config);
     registerRemoveDomainPowerShell(server, config);
+    registerTestAccountPowerShell(server, config);
+    registerGetItemAclPowerShell(server, config);
+    registerTestItemAclPowerShell(server, config);
 }
 //# sourceMappingURL=register-security-powershell.js.map

package/dist/tools/powershell/simple/security/register-security-powershell.js.map

@@ -1 +1 @@
-{"version":3,"file":"register-security-powershell.js","sourceRoot":"","sources":["../../../../../src/tools/powershell/simple/security/register-security-powershell.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,yBAAyB,EAAE,MAAM,wBAAwB,CAAC;AACnE,OAAO,EAAE,yBAAyB,EAAE,MAAM,wBAAwB,CAAC;AACnE,OAAO,EAAE,4BAA4B,EAAE,MAAM,2BAA2B,CAAC;AACzE,OAAO,EAAE,6BAA6B,EAAE,MAAM,4BAA4B,CAAC;AAC3E,OAAO,EAAE,4BAA4B,EAAE,MAAM,2BAA2B,CAAC;AACzE,OAAO,EAAE,2BAA2B,EAAE,MAAM,0BAA0B,CAAC;AACvE,OAAO,EAAE,yBAAyB,EAAE,MAAM,wBAAwB,CAAC;AACnE,OAAO,EAAE,+BAA+B,EAAE,MAAM,+BAA+B,CAAC;AAChF,OAAO,EAAE,0BAA0B,EAAE,MAAM,yBAAyB,CAAC;AACrE,OAAO,EAAE,4BAA4B,EAAE,MAAM,2BAA2B,CAAC;AACzE,OAAO,EAAE,6BAA6B,EAAE,MAAM,4BAA4B,CAAC;AAC3E,OAAO,EAAE,+BAA+B,EAAE,MAAM,8BAA8B,CAAC;AAC/E,OAAO,EAAE,yBAAyB,EAAE,MAAM,wBAAwB,CAAC;AACnE,OAAO,EAAE,4BAA4B,EAAE,MAAM,2BAA2B,CAAC;AACzE,OAAO,EAAE,2BAA2B,EAAE,MAAM,0BAA0B,CAAC;AACvE,OAAO,EAAE,8BAA8B,EAAE,MAAM,6BAA6B,CAAC;AAE7E,MAAM,UAAU,0BAA0B,CAAC,MAAiB,EAAE,MAAc;IACxE,yBAAyB,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAC1C,yBAAyB,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAC1C,4BAA4B,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAC7C,6BAA6B,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAC9C,4BAA4B,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAC7C,2BAA2B,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAC5C,yBAAyB,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAC1C,+BAA+B,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAChD,0BAA0B,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAC3C,4BAA4B,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAC7C,6BAA6B,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAC9C,+BAA+B,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAChD,yBAAyB,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAC1C,4BAA4B,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAC7C,2BAA2B,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAC5C,8BAA8B,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;AACnD,CAAC"}
+{"version":3,"file":"register-security-powershell.js","sourceRoot":"","sources":["../../../../../src/tools/powershell/simple/security/register-security-powershell.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,yBAAyB,EAAE,MAAM,wBAAwB,CAAC;AACnE,OAAO,EAAE,yBAAyB,EAAE,MAAM,wBAAwB,CAAC;AACnE,OAAO,EAAE,4BAA4B,EAAE,MAAM,2BAA2B,CAAC;AACzE,OAAO,EAAE,6BAA6B,EAAE,MAAM,4BAA4B,CAAC;AAC3E,OAAO,EAAE,4BAA4B,EAAE,MAAM,2BAA2B,CAAC;AACzE,OAAO,EAAE,4BAA4B,EAAE,MAAM,2BAA2B,CAAC;AACzE,OAAO,EAAE,yBAAyB,EAAE,MAAM,wBAAwB,CAAC;AACnE,OAAO,EAAE,2BAA2B,EAAE,MAAM,0BAA0B,CAAC;AACvE,OAAO,EAAE,yBAAyB,EAAE,MAAM,wBAAwB,CAAC;AACnE,OAAO,EAAE,+BAA+B,EAAE,MAAM,+BAA+B,CAAC;AAChF,OAAO,EAAE,+BAA+B,EAAE,MAAM,+BAA+B,CAAC;AAChF,OAAO,EAAE,kCAAkC,EAAE,MAAM,iCAAiC,CAAC;AACrF,OAAO,EAAE,0BAA0B,EAAE,MAAM,yBAAyB,CAAC;AACrE,OAAO,EAAE,4BAA4B,EAAE,MAAM,2BAA2B,CAAC;AACzE,OAAO,EAAE,6BAA6B,EAAE,MAAM,4BAA4B,CAAC;AAC3E,OAAO,EAAE,+BAA+B,EAAE,MAAM,8BAA8B,CAAC;AAC/E,OAAO,EAAE,yBAAyB,EAAE,MAAM,wBAAwB,CAAC;AACnE,OAAO,EAAE,4BAA4B,EAAE,MAAM,2BAA2B,CAAC;AACzE,OAAO,EAAE,2BAA2B,EAAE,MAAM,0BAA0B,CAAC;AACvE,OAAO,EAAE,8BAA8B,EAAE,MAAM,6BAA6B,CAAC;AAC7E,OAAO,EAAE,6BAA6B,EAAE,MAAM,4BAA4B,CAAC;AAC3E,OAAO,EAAE,4BAA4B,EAAE,MAAM,4BAA4B,CAAC;AAC1E,OAAO,EAAE,6BAA6B,EAAE,MAAM,6BAA6B,CAAC;AAE5E,MAAM,UAAU,0BAA0B,CAAC,MAAiB,EAAE,MAAc;IACxE,yBAAyB,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAC1C,yBAAyB,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAC1C,4BAA4B,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAC7C,6BAA6B,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAC9C,4BAA4B,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAC7C,4BAA4B,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAC7C,yBAAyB,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAC1C,2BAA2B,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAC5C,yBAAyB,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAC1C,+BAA+B,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAChD,+BAA+B,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAChD,kCAAkC,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IACnD,0BAA0B,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAC3C,4BAA4B,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAC7C,6BAA6B,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAC9C,+BAA+B,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAChD,yBAAyB,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAC1C,4BAA4B,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAC7C,2BAA2B,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAC5C,8BAA8B,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAC/C,6BAA6B,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAC9C,4BAA4B,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAC7C,6BAA6B,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;AAClD,CAAC"}

package/dist/tools/powershell/simple/security/register-set-user.d.ts

@@ -0,0 +1,3 @@
+import type { McpServer } from "@modelcontextprotocol/sdk/server/mcp";
+import type { Config } from "../../../../config.js";
+export declare function registerSetUserPowerShell(server: McpServer, config: Config): void;

package/dist/tools/powershell/simple/security/register-set-user.js

@@ -0,0 +1,66 @@
+import { z } from "zod";
+import { safeMcpResponse } from "../../../../helper.js";
+import { runGenericPowershellCommand } from "../generic.js";
+export function registerSetUserPowerShell(server, config) {
+    server.tool("security-set-user", "Updates properties of a Sitecore user account.", {
+        identity: z.string()
+            .describe("The identity of the user to update (e.g. 'admin' or full path 'sitecore\\admin')"),
+        isAdministrator: z.boolean().optional()
+            .describe("Set the user as an administrator"),
+        password: z.string().optional()
+            .describe("The new password for the user"),
+        comment: z.string().optional()
+            .describe("Comment for the user"),
+        email: z.string().optional()
+            .describe("Email for the user"),
+        fullName: z.string().optional()
+            .describe("Full name of the user"),
+        portrait: z.string().optional()
+            .describe("Portrait for the user"),
+        profileItemId: z.string().optional()
+            .describe("Profile item ID for the user"),
+        startUrl: z.string().optional()
+            .describe("Start URL for the user"),
+        clientLanguage: z.string().optional()
+            .describe("Client language for the user"),
+        enabled: z.boolean().optional()
+            .describe("Enable or disable the user"),
+    }, async (params) => {
+        const command = `Set-User`;
+        const options = {
+            "Identity": params.identity,
+        };
+        if (params.password) {
+            options["Password"] = params.password;
+        }
+        if (params.comment) {
+            options["Comment"] = params.comment;
+        }
+        if (params.email) {
+            options["Email"] = params.email;
+        }
+        if (params.fullName) {
+            options["FullName"] = params.fullName;
+        }
+        if (params.portrait) {
+            options["Portrait"] = params.portrait;
+        }
+        if (params.startUrl) {
+            options["StartUrl"] = params.startUrl;
+        }
+        if (params.clientLanguage) {
+            options["ClientLanguage"] = params.clientLanguage;
+        }
+        if (params.profileItemId) {
+            options["ProfileItemId"] = params.profileItemId;
+        }
+        if (params.isAdministrator) {
+            options["IsAdministrator"] = params.isAdministrator;
+        }
+        if (params.enabled) {
+            options["Enabled"] = params.enabled;
+        }
+        return safeMcpResponse(runGenericPowershellCommand(config, command, options));
+    });
+}
+//# sourceMappingURL=register-set-user.js.map

package/dist/tools/powershell/simple/security/register-set-user.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"register-set-user.js","sourceRoot":"","sources":["../../../../../src/tools/powershell/simple/security/register-set-user.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AACxB,OAAO,EAAE,eAAe,EAAE,MAAM,uBAAuB,CAAC;AACxD,OAAO,EAAE,2BAA2B,EAAE,MAAM,eAAe,CAAC;AAE5D,MAAM,UAAU,yBAAyB,CAAC,MAAiB,EAAE,MAAc;IACvE,MAAM,CAAC,IAAI,CACP,mBAAmB,EACnB,gDAAgD,EAChD;QACI,QAAQ,EAAE,CAAC,CAAC,MAAM,EAAE;aACf,QAAQ,CAAC,kFAAkF,CAAC;QACjG,eAAe,EAAE,CAAC,CAAC,OAAO,EAAE,CAAC,QAAQ,EAAE;aAClC,QAAQ,CAAC,kCAAkC,CAAC;QACjD,QAAQ,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;aAC1B,QAAQ,CAAC,+BAA+B,CAAC;QAC9C,OAAO,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;aACzB,QAAQ,CAAC,sBAAsB,CAAC;QACrC,KAAK,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;aACvB,QAAQ,CAAC,oBAAoB,CAAC;QACnC,QAAQ,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;aAC1B,QAAQ,CAAC,uBAAuB,CAAC;QACtC,QAAQ,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;aAC1B,QAAQ,CAAC,uBAAuB,CAAC;QACtC,aAAa,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;aAC/B,QAAQ,CAAC,8BAA8B,CAAC;QAC7C,QAAQ,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;aAC1B,QAAQ,CAAC,wBAAwB,CAAC;QACvC,cAAc,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;aAChC,QAAQ,CAAC,8BAA8B,CAAC;QAC7C,OAAO,EAAE,CAAC,CAAC,OAAO,EAAE,CAAC,QAAQ,EAAE;aAC1B,QAAQ,CAAC,4BAA4B,CAAC;KAC9C,EACD,KAAK,EAAE,MAAM,EAAE,EAAE;QACb,MAAM,OAAO,GAAG,UAAU,CAAC;QAC3B,MAAM,OAAO,GAAwB;YACjC,UAAU,EAAE,MAAM,CAAC,QAAQ;SAC9B,CAAC;QAEF,IAAI,MAAM,CAAC,QAAQ,EAAE,CAAC;YAClB,OAAO,CAAC,UAAU,CAAC,GAAG,MAAM,CAAC,QAAQ,CAAC;QAC1C,CAAC;QAED,IAAI,MAAM,CAAC,OAAO,EAAE,CAAC;YACjB,OAAO,CAAC,SAAS,CAAC,GAAG,MAAM,CAAC,OAAO,CAAC;QACxC,CAAC;QAED,IAAI,MAAM,CAAC,KAAK,EAAE,CAAC;YACf,OAAO,CAAC,OAAO,CAAC,GAAG,MAAM,CAAC,KAAK,CAAC;QACpC,CAAC;QAED,IAAI,MAAM,CAAC,QAAQ,EAAE,CAAC;YAClB,OAAO,CAAC,UAAU,CAAC,GAAG,MAAM,CAAC,QAAQ,CAAC;QAC1C,CAAC;QAED,IAAI,MAAM,CAAC,QAAQ,EAAE,CAAC;YAClB,OAAO,CAAC,UAAU,CAAC,GAAG,MAAM,CAAC,QAAQ,CAAC;QAC1C,CAAC;QAED,IAAI,MAAM,CAAC,QAAQ,EAAE,CAAC;YAClB,OAAO,CAAC,UAAU,CAAC,GAAG,MAAM,CAAC,QAAQ,CAAC;QAC1C,CAAC;QAED,IAAI,MAAM,CAAC,cAAc,EAAE,CAAC;YACxB,OAAO,CAAC,gBAAgB,CAAC,GAAG,MAAM,CAAC,cAAc,CAAC;QACtD,CAAC;QAED,IAAI,MAAM,CAAC,aAAa,EAAE,CAAC;YACvB,OAAO,CAAC,eAAe,CAAC,GAAG,MAAM,CAAC,aAAa,CAAC;QACpD,CAAC;QAED,IAAI,MAAM,CAAC,eAAe,EAAE,CAAC;YACzB,OAAO,CAAC,iBAAiB,CAAC,GAAG,MAAM,CAAC,eAAe,CAAC;QACxD,CAAC;QAED,IAAI,MAAM,CAAC,OAAO,EAAE,CAAC;YACjB,OAAO,CAAC,SAAS,CAAC,GAAG,MAAM,CAAC,OAAO,CAAC;QACxC,CAAC;QAGD,OAAO,eAAe,CAAC,2BAA2B,CAAC,MAAM,EAAE,OAAO,EAAE,OAAO,CAAC,CAAC,CAAC;IAClF,CAAC,CACJ,CAAC;AACN,CAAC"}

package/dist/tools/powershell/simple/security/register-test-account.d.ts

@@ -0,0 +1,3 @@
+import type { McpServer } from "@modelcontextprotocol/sdk/server/mcp";
+import type { Config } from "../../../../config.js";
+export declare function registerTestAccountPowerShell(server: McpServer, config: Config): void;

package/dist/tools/powershell/simple/security/register-test-account.js

@@ -0,0 +1,21 @@
+import { z } from "zod";
+import { safeMcpResponse } from "../../../../helper.js";
+import { runGenericPowershellCommand } from "../generic.js";
+export function registerTestAccountPowerShell(server, config) {
+    server.tool("security-test-account", "Tests if a Sitecore user exists and has specific properties.", {
+        identity: z.string()
+            .describe("The identity of the user to test (e.g. 'admin' or full path 'sitecore\\admin')"),
+        accountType: z.enum(["All", "User", "Role"]).optional()
+            .describe("The type of account to test (defaults to 'All')"),
+    }, async (params) => {
+        const command = `Test-Account`;
+        const options = {
+            "Identity": params.identity
+        };
+        if (params.accountType) {
+            options["AccountType"] = params.accountType;
+        }
+        return safeMcpResponse(runGenericPowershellCommand(config, command, options));
+    });
+}
+//# sourceMappingURL=register-test-account.js.map

package/dist/tools/powershell/simple/security/register-test-account.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"register-test-account.js","sourceRoot":"","sources":["../../../../../src/tools/powershell/simple/security/register-test-account.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AACxB,OAAO,EAAE,eAAe,EAAE,MAAM,uBAAuB,CAAC;AACxD,OAAO,EAAE,2BAA2B,EAAE,MAAM,eAAe,CAAC;AAE5D,MAAM,UAAU,6BAA6B,CAAC,MAAiB,EAAE,MAAc;IAC3E,MAAM,CAAC,IAAI,CACP,uBAAuB,EACvB,8DAA8D,EAC9D;QACI,QAAQ,EAAE,CAAC,CAAC,MAAM,EAAE;aACf,QAAQ,CAAC,gFAAgF,CAAC;QAC/F,WAAW,EAAE,CAAC,CAAC,IAAI,CAAC,CAAC,KAAK,EAAE,MAAM,EAAE,MAAM,CAAC,CAAC,CAAC,QAAQ,EAAE;aAClD,QAAQ,CAAC,iDAAiD,CAAC;KACnE,EACD,KAAK,EAAE,MAAM,EAAE,EAAE;QACb,MAAM,OAAO,GAAG,cAAc,CAAC;QAC/B,MAAM,OAAO,GAAwB;YACjC,UAAU,EAAE,MAAM,CAAC,QAAQ;SAC9B,CAAC;QAEF,IAAI,MAAM,CAAC,WAAW,EAAE,CAAC;YACrB,OAAO,CAAC,aAAa,CAAC,GAAG,MAAM,CAAC,WAAW,CAAC;QAChD,CAAC;QAEF,OAAO,eAAe,CAAC,2BAA2B,CAAC,MAAM,EAAE,OAAO,EAAE,OAAO,CAAC,CAAC,CAAC;IACjF,CAAC,CACJ,CAAC;AACN,CAAC"}

package/dist/tools/powershell/simple/security/register-test-item-acl.d.ts

@@ -0,0 +1,3 @@
+import type { McpServer } from "@modelcontextprotocol/sdk/server/mcp";
+import type { Config } from "../../../../config.js";
+export declare function registerTestItemAclPowerShell(server: McpServer, config: Config): void;

package/dist/tools/powershell/simple/security/register-test-item-acl.js

@@ -0,0 +1,59 @@
+import { z } from "zod";
+import { safeMcpResponse } from "../../../../helper.js";
+import { runGenericPowershellCommand } from "../generic.js";
+import { AccessRights } from "./access-rights.js";
+export function registerTestItemAclPowerShell(server, config) {
+    server.tool("security-test-item-acl-by-id", "Tests whether a user or role has specific access rights to a Sitecore item by its ID.", {
+        id: z.string()
+            .describe("The ID of the item to test access rights on"),
+        identity: z.string()
+            .describe("The identity of the user or role to test (e.g. 'sitecore\\admin')"),
+        accessRight: z.enum(AccessRights)
+            .describe("The access right to test (e.g. 'item:read', 'item:write')"),
+        propType: z.enum(["Descendants", "Children", "Entity"]).optional()
+            .describe("The propagation type for the access right"),
+        database: z.string().optional()
+            .describe("The database containing the item (defaults to the context database)")
+    }, async (params) => {
+        const command = `Test-ItemAcl`;
+        const options = {
+            "ID": params.id,
+            "Identity": params.identity,
+            "AccessRight": params.accessRight,
+        };
+        if (params.propType) {
+            options["PropType"] = params.propType;
+        }
+        if (params.database) {
+            options["Database"] = params.database;
+        }
+        return safeMcpResponse(runGenericPowershellCommand(config, command, options));
+    });
+    server.tool("security-test-item-acl-by-path", "Tests whether a user or role has specific access rights to a Sitecore item by its path.", {
+        path: z.string()
+            .describe("The path of the item to test access rights on (e.g. /sitecore/content/Home)"),
+        identity: z.string()
+            .describe("The identity of the user or role to test (e.g. 'sitecore\\admin')"),
+        accessRight: z.string()
+            .describe("The access right to test (e.g. 'item:read', 'item:write')"),
+        propType: z.enum(["Descendants", "Children", "Entity"]).optional()
+            .describe("The propagation type for the access right"),
+        database: z.string().optional()
+            .describe("The database containing the item (defaults to the context database)")
+    }, async (params) => {
+        const command = `Test-ItemAcl`;
+        const options = {
+            "Path": params.path,
+            "Identity": params.identity,
+            "AccessRight": params.accessRight,
+        };
+        if (params.propType) {
+            options["PropType"] = params.propType;
+        }
+        if (params.database) {
+            options["Database"] = params.database;
+        }
+        return safeMcpResponse(runGenericPowershellCommand(config, command, options));
+    });
+}
+//# sourceMappingURL=register-test-item-acl.js.map

package/dist/tools/powershell/simple/security/register-test-item-acl.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"register-test-item-acl.js","sourceRoot":"","sources":["../../../../../src/tools/powershell/simple/security/register-test-item-acl.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AACxB,OAAO,EAAE,eAAe,EAAE,MAAM,uBAAuB,CAAC;AACxD,OAAO,EAAE,2BAA2B,EAAE,MAAM,eAAe,CAAC;AAC5D,OAAO,EAAE,YAAY,EAAE,MAAM,oBAAoB,CAAC;AAElD,MAAM,UAAU,6BAA6B,CAAC,MAAiB,EAAE,MAAc;IAC3E,MAAM,CAAC,IAAI,CACP,8BAA8B,EAC9B,uFAAuF,EACvF;QACI,EAAE,EAAE,CAAC,CAAC,MAAM,EAAE;aACT,QAAQ,CAAC,6CAA6C,CAAC;QAC5D,QAAQ,EAAE,CAAC,CAAC,MAAM,EAAE;aACf,QAAQ,CAAC,mEAAmE,CAAC;QAClF,WAAW,EAAE,CAAC,CAAC,IAAI,CAAC,YAAqC,CAAC;aACrD,QAAQ,CAAC,2DAA2D,CAAC;QAC1E,QAAQ,EAAE,CAAC,CAAC,IAAI,CAAC,CAAC,aAAa,EAAE,UAAU,EAAE,QAAQ,CAAC,CAAC,CAAC,QAAQ,EAAE;aAC7D,QAAQ,CAAC,2CAA2C,CAAC;QAC1D,QAAQ,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;aAC1B,QAAQ,CAAC,qEAAqE,CAAC;KACvF,EACD,KAAK,EAAE,MAAM,EAAE,EAAE;QACb,MAAM,OAAO,GAAG,cAAc,CAAC;QAC/B,MAAM,OAAO,GAAwB;YACjC,IAAI,EAAE,MAAM,CAAC,EAAE;YACf,UAAU,EAAE,MAAM,CAAC,QAAQ;YAC3B,aAAa,EAAE,MAAM,CAAC,WAAW;SACpC,CAAC;QAEF,IAAI,MAAM,CAAC,QAAQ,EAAE,CAAC;YAClB,OAAO,CAAC,UAAU,CAAC,GAAG,MAAM,CAAC,QAAQ,CAAC;QAC1C,CAAC;QAED,IAAI,MAAM,CAAC,QAAQ,EAAE,CAAC;YAClB,OAAO,CAAC,UAAU,CAAC,GAAG,MAAM,CAAC,QAAQ,CAAC;QAC1C,CAAC;QAED,OAAO,eAAe,CAAC,2BAA2B,CAAC,MAAM,EAAE,OAAO,EAAE,OAAO,CAAC,CAAC,CAAC;IAClF,CAAC,CACJ,CAAC;IAEF,MAAM,CAAC,IAAI,CACP,gCAAgC,EAChC,yFAAyF,EACzF;QACI,IAAI,EAAE,CAAC,CAAC,MAAM,EAAE;aACX,QAAQ,CAAC,6EAA6E,CAAC;QAC5F,QAAQ,EAAE,CAAC,CAAC,MAAM,EAAE;aACf,QAAQ,CAAC,mEAAmE,CAAC;QAClF,WAAW,EAAE,CAAC,CAAC,MAAM,EAAE;aAClB,QAAQ,CAAC,2DAA2D,CAAC;QAC1E,QAAQ,EAAE,CAAC,CAAC,IAAI,CAAC,CAAC,aAAa,EAAE,UAAU,EAAE,QAAQ,CAAC,CAAC,CAAC,QAAQ,EAAE;aAC7D,QAAQ,CAAC,2CAA2C,CAAC;QAC1D,QAAQ,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;aAC1B,QAAQ,CAAC,qEAAqE,CAAC;KACvF,EACD,KAAK,EAAE,MAAM,EAAE,EAAE;QACb,MAAM,OAAO,GAAG,cAAc,CAAC;QAC/B,MAAM,OAAO,GAAwB;YACjC,MAAM,EAAE,MAAM,CAAC,IAAI;YACnB,UAAU,EAAE,MAAM,CAAC,QAAQ;YAC3B,aAAa,EAAE,MAAM,CAAC,WAAW;SACpC,CAAC;QAEF,IAAI,MAAM,CAAC,QAAQ,EAAE,CAAC;YAClB,OAAO,CAAC,UAAU,CAAC,GAAG,MAAM,CAAC,QAAQ,CAAC;QAC1C,CAAC;QAED,IAAI,MAAM,CAAC,QAAQ,EAAE,CAAC;YAClB,OAAO,CAAC,UAAU,CAAC,GAAG,MAAM,CAAC,QAAQ,CAAC;QAC1C,CAAC;QAED,OAAO,eAAe,CAAC,2BAA2B,CAAC,MAAM,EAAE,OAAO,EAAE,OAAO,CAAC,CAAC,CAAC;IAClF,CAAC,CACJ,CAAC;AACN,CAAC"}

package/dist/tools/powershell/simple/security/register-unlock-user.d.ts

@@ -0,0 +1,3 @@
+import type { McpServer } from "@modelcontextprotocol/sdk/server/mcp";
+import type { Config } from "../../../../config.js";
+export declare function registerUnlockUserPowerShell(server: McpServer, config: Config): void;

package/dist/tools/powershell/simple/security/register-unlock-user.js

@@ -0,0 +1,16 @@
+import { z } from "zod";
+import { safeMcpResponse } from "../../../../helper.js";
+import { runGenericPowershellCommand } from "../generic.js";
+export function registerUnlockUserPowerShell(server, config) {
+    server.tool("security-unlock-user", "Unlocks a Sitecore user account that has been locked out due to failed login attempts.", {
+        identity: z.string()
+            .describe("The identity of the user to unlock (e.g. 'admin' or full path 'sitecore\\admin')"),
+    }, async (params) => {
+        const command = `Unlock-User`;
+        const options = {
+            "Identity": params.identity,
+        };
+        return safeMcpResponse(runGenericPowershellCommand(config, command, options));
+    });
+}
+//# sourceMappingURL=register-unlock-user.js.map

package/dist/tools/powershell/simple/security/register-unlock-user.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"register-unlock-user.js","sourceRoot":"","sources":["../../../../../src/tools/powershell/simple/security/register-unlock-user.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AACxB,OAAO,EAAE,eAAe,EAAE,MAAM,uBAAuB,CAAC;AACxD,OAAO,EAAE,2BAA2B,EAAE,MAAM,eAAe,CAAC;AAE5D,MAAM,UAAU,4BAA4B,CAAC,MAAiB,EAAE,MAAc;IAC1E,MAAM,CAAC,IAAI,CACP,sBAAsB,EACtB,wFAAwF,EACxF;QACI,QAAQ,EAAE,CAAC,CAAC,MAAM,EAAE;aACf,QAAQ,CAAC,kFAAkF,CAAC;KACpG,EACD,KAAK,EAAE,MAAM,EAAE,EAAE;QACb,MAAM,OAAO,GAAG,aAAa,CAAC;QAC9B,MAAM,OAAO,GAAwB;YACjC,UAAU,EAAE,MAAM,CAAC,QAAQ;SAC9B,CAAC;QAEF,OAAO,eAAe,CAAC,2BAA2B,CAAC,MAAM,EAAE,OAAO,EAAE,OAAO,CAAC,CAAC,CAAC;IAClF,CAAC,CACJ,CAAC;AACN,CAAC"}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@antonytm/mcp-sitecore-server",
-  "version": "0.3.0",
+  "version": "0.5.0",
   "description": "A Model Context Protocol server for Sitecore",
   "files": [
     "dist",