npm - @brainfish-ai/devdoc - Versions diffs - 0.1.21 - Mend

@brainfish-ai/devdoc 0.1.21

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (268) hide show

package/LICENSE +33 -0
package/README.md +415 -0
package/bin/devdoc.js +13 -0
package/dist/cli/commands/build.d.ts +5 -0
package/dist/cli/commands/build.js +87 -0
package/dist/cli/commands/check.d.ts +1 -0
package/dist/cli/commands/check.js +143 -0
package/dist/cli/commands/create.d.ts +24 -0
package/dist/cli/commands/create.js +387 -0
package/dist/cli/commands/deploy.d.ts +9 -0
package/dist/cli/commands/deploy.js +433 -0
package/dist/cli/commands/dev.d.ts +6 -0
package/dist/cli/commands/dev.js +139 -0
package/dist/cli/commands/init.d.ts +11 -0
package/dist/cli/commands/init.js +238 -0
package/dist/cli/commands/keys.d.ts +12 -0
package/dist/cli/commands/keys.js +165 -0
package/dist/cli/commands/start.d.ts +5 -0
package/dist/cli/commands/start.js +56 -0
package/dist/cli/commands/upload.d.ts +13 -0
package/dist/cli/commands/upload.js +238 -0
package/dist/cli/commands/whoami.d.ts +8 -0
package/dist/cli/commands/whoami.js +91 -0
package/dist/cli/index.d.ts +1 -0
package/dist/cli/index.js +106 -0
package/dist/config/index.d.ts +80 -0
package/dist/config/index.js +133 -0
package/dist/constants.d.ts +9 -0
package/dist/constants.js +13 -0
package/dist/index.d.ts +7 -0
package/dist/index.js +12 -0
package/dist/utils/logger.d.ts +16 -0
package/dist/utils/logger.js +61 -0
package/dist/utils/paths.d.ts +16 -0
package/dist/utils/paths.js +50 -0
package/package.json +51 -0
package/renderer/app/api/assets/[...path]/route.ts +123 -0
package/renderer/app/api/assets/route.ts +124 -0
package/renderer/app/api/assets/upload/route.ts +177 -0
package/renderer/app/api/auth-schemes/route.ts +77 -0
package/renderer/app/api/chat/route.ts +858 -0
package/renderer/app/api/codegen/route.ts +72 -0
package/renderer/app/api/collections/route.ts +1016 -0
package/renderer/app/api/debug/route.ts +53 -0
package/renderer/app/api/deploy/route.ts +234 -0
package/renderer/app/api/device/route.ts +42 -0
package/renderer/app/api/docs/route.ts +187 -0
package/renderer/app/api/keys/regenerate/route.ts +80 -0
package/renderer/app/api/openapi-spec/route.ts +151 -0
package/renderer/app/api/projects/[slug]/route.ts +153 -0
package/renderer/app/api/projects/[slug]/stats/route.ts +96 -0
package/renderer/app/api/projects/register/route.ts +152 -0
package/renderer/app/api/proxy/route.ts +149 -0
package/renderer/app/api/proxy-stream/route.ts +168 -0
package/renderer/app/api/redirects/route.ts +47 -0
package/renderer/app/api/schema/route.ts +65 -0
package/renderer/app/api/subdomains/check/route.ts +172 -0
package/renderer/app/api/suggestions/route.ts +144 -0
package/renderer/app/favicon.ico +0 -0
package/renderer/app/globals.css +1103 -0
package/renderer/app/layout.tsx +47 -0
package/renderer/app/llms-full.txt/route.ts +346 -0
package/renderer/app/llms.txt/route.ts +279 -0
package/renderer/app/page.tsx +14 -0
package/renderer/app/robots.txt/route.ts +84 -0
package/renderer/app/sitemap.xml/route.ts +199 -0
package/renderer/components/docs/index.ts +12 -0
package/renderer/components/docs/mdx/accordion.tsx +169 -0
package/renderer/components/docs/mdx/badge.tsx +132 -0
package/renderer/components/docs/mdx/callouts.tsx +154 -0
package/renderer/components/docs/mdx/cards.tsx +213 -0
package/renderer/components/docs/mdx/changelog.tsx +120 -0
package/renderer/components/docs/mdx/code-block.tsx +186 -0
package/renderer/components/docs/mdx/code-group.tsx +421 -0
package/renderer/components/docs/mdx/file-embeds.tsx +105 -0
package/renderer/components/docs/mdx/frame.tsx +112 -0
package/renderer/components/docs/mdx/highlight.tsx +151 -0
package/renderer/components/docs/mdx/iframe.tsx +134 -0
package/renderer/components/docs/mdx/image.tsx +235 -0
package/renderer/components/docs/mdx/index.ts +204 -0
package/renderer/components/docs/mdx/mermaid.tsx +240 -0
package/renderer/components/docs/mdx/param-field.tsx +200 -0
package/renderer/components/docs/mdx/steps.tsx +113 -0
package/renderer/components/docs/mdx/tabs.tsx +86 -0
package/renderer/components/docs/mdx-renderer.tsx +100 -0
package/renderer/components/docs/navigation/breadcrumbs.tsx +76 -0
package/renderer/components/docs/navigation/index.ts +8 -0
package/renderer/components/docs/navigation/page-nav.tsx +64 -0
package/renderer/components/docs/navigation/sidebar.tsx +515 -0
package/renderer/components/docs/navigation/toc.tsx +113 -0
package/renderer/components/docs/notice.tsx +105 -0
package/renderer/components/docs-header.tsx +274 -0
package/renderer/components/docs-viewer/agent/agent-chat.tsx +2076 -0
package/renderer/components/docs-viewer/agent/cards/debug-context-card.tsx +90 -0
package/renderer/components/docs-viewer/agent/cards/endpoint-context-card.tsx +49 -0
package/renderer/components/docs-viewer/agent/cards/index.tsx +50 -0
package/renderer/components/docs-viewer/agent/cards/response-options-card.tsx +212 -0
package/renderer/components/docs-viewer/agent/cards/types.ts +84 -0
package/renderer/components/docs-viewer/agent/chat-message.tsx +17 -0
package/renderer/components/docs-viewer/agent/index.tsx +6 -0
package/renderer/components/docs-viewer/agent/messages/assistant-message.tsx +119 -0
package/renderer/components/docs-viewer/agent/messages/chat-message.tsx +46 -0
package/renderer/components/docs-viewer/agent/messages/index.ts +17 -0
package/renderer/components/docs-viewer/agent/messages/tool-call-display.tsx +721 -0
package/renderer/components/docs-viewer/agent/messages/types.ts +61 -0
package/renderer/components/docs-viewer/agent/messages/typing-indicator.tsx +24 -0
package/renderer/components/docs-viewer/agent/messages/user-message.tsx +51 -0
package/renderer/components/docs-viewer/code-editor/index.tsx +2 -0
package/renderer/components/docs-viewer/code-editor/notes-mode.tsx +1283 -0
package/renderer/components/docs-viewer/content/changelog-page.tsx +331 -0
package/renderer/components/docs-viewer/content/doc-page.tsx +285 -0
package/renderer/components/docs-viewer/content/documentation-viewer.tsx +17 -0
package/renderer/components/docs-viewer/content/index.tsx +29 -0
package/renderer/components/docs-viewer/content/introduction.tsx +21 -0
package/renderer/components/docs-viewer/content/request-details.tsx +330 -0
package/renderer/components/docs-viewer/content/sections/auth.tsx +69 -0
package/renderer/components/docs-viewer/content/sections/body.tsx +66 -0
package/renderer/components/docs-viewer/content/sections/headers.tsx +43 -0
package/renderer/components/docs-viewer/content/sections/overview.tsx +40 -0
package/renderer/components/docs-viewer/content/sections/parameters.tsx +43 -0
package/renderer/components/docs-viewer/content/sections/responses.tsx +87 -0
package/renderer/components/docs-viewer/global-auth-modal.tsx +352 -0
package/renderer/components/docs-viewer/index.tsx +1466 -0
package/renderer/components/docs-viewer/playground/auth-editor.tsx +280 -0
package/renderer/components/docs-viewer/playground/body-editor.tsx +221 -0
package/renderer/components/docs-viewer/playground/code-editor.tsx +224 -0
package/renderer/components/docs-viewer/playground/code-snippet.tsx +387 -0
package/renderer/components/docs-viewer/playground/graphql-playground.tsx +745 -0
package/renderer/components/docs-viewer/playground/index.tsx +671 -0
package/renderer/components/docs-viewer/playground/key-value-editor.tsx +261 -0
package/renderer/components/docs-viewer/playground/method-selector.tsx +60 -0
package/renderer/components/docs-viewer/playground/request-builder.tsx +179 -0
package/renderer/components/docs-viewer/playground/request-tabs.tsx +237 -0
package/renderer/components/docs-viewer/playground/response-cards/idle-card.tsx +21 -0
package/renderer/components/docs-viewer/playground/response-cards/index.tsx +93 -0
package/renderer/components/docs-viewer/playground/response-cards/loading-card.tsx +16 -0
package/renderer/components/docs-viewer/playground/response-cards/network-error-card.tsx +23 -0
package/renderer/components/docs-viewer/playground/response-cards/response-body-card.tsx +268 -0
package/renderer/components/docs-viewer/playground/response-cards/types.ts +82 -0
package/renderer/components/docs-viewer/playground/response-viewer.tsx +43 -0
package/renderer/components/docs-viewer/search/index.ts +2 -0
package/renderer/components/docs-viewer/search/search-dialog.tsx +331 -0
package/renderer/components/docs-viewer/search/use-search.ts +117 -0
package/renderer/components/docs-viewer/shared/markdown-renderer.tsx +431 -0
package/renderer/components/docs-viewer/shared/method-badge.tsx +41 -0
package/renderer/components/docs-viewer/shared/schema-viewer.tsx +349 -0
package/renderer/components/docs-viewer/sidebar/collection-tree.tsx +239 -0
package/renderer/components/docs-viewer/sidebar/endpoint-options.tsx +316 -0
package/renderer/components/docs-viewer/sidebar/index.tsx +343 -0
package/renderer/components/docs-viewer/sidebar/right-sidebar.tsx +202 -0
package/renderer/components/docs-viewer/sidebar/sidebar-group.tsx +118 -0
package/renderer/components/docs-viewer/sidebar/sidebar-item.tsx +226 -0
package/renderer/components/docs-viewer/sidebar/sidebar-section.tsx +52 -0
package/renderer/components/theme-provider.tsx +11 -0
package/renderer/components/theme-toggle.tsx +76 -0
package/renderer/components/ui/badge.tsx +46 -0
package/renderer/components/ui/button.tsx +59 -0
package/renderer/components/ui/dialog.tsx +118 -0
package/renderer/components/ui/dropdown-menu.tsx +257 -0
package/renderer/components/ui/input.tsx +21 -0
package/renderer/components/ui/label.tsx +24 -0
package/renderer/components/ui/navigation-menu.tsx +168 -0
package/renderer/components/ui/select.tsx +190 -0
package/renderer/components/ui/spinner.tsx +114 -0
package/renderer/components/ui/tabs.tsx +66 -0
package/renderer/components/ui/tooltip.tsx +61 -0
package/renderer/hooks/use-code-copy.ts +88 -0
package/renderer/hooks/use-openapi-title.ts +44 -0
package/renderer/lib/api-docs/agent/index.ts +6 -0
package/renderer/lib/api-docs/agent/indexer.ts +323 -0
package/renderer/lib/api-docs/agent/spec-summary.ts +335 -0
package/renderer/lib/api-docs/agent/types.ts +116 -0
package/renderer/lib/api-docs/auth/auth-context.tsx +225 -0
package/renderer/lib/api-docs/auth/auth-storage.ts +87 -0
package/renderer/lib/api-docs/auth/crypto.ts +89 -0
package/renderer/lib/api-docs/auth/index.ts +4 -0
package/renderer/lib/api-docs/code-editor/db.ts +164 -0
package/renderer/lib/api-docs/code-editor/hooks.ts +266 -0
package/renderer/lib/api-docs/code-editor/index.ts +6 -0
package/renderer/lib/api-docs/code-editor/mode-context.tsx +207 -0
package/renderer/lib/api-docs/code-editor/types.ts +105 -0
package/renderer/lib/api-docs/codegen/definitions.ts +297 -0
package/renderer/lib/api-docs/codegen/har.ts +251 -0
package/renderer/lib/api-docs/codegen/index.ts +159 -0
package/renderer/lib/api-docs/factories.ts +151 -0
package/renderer/lib/api-docs/index.ts +17 -0
package/renderer/lib/api-docs/mobile-context.tsx +112 -0
package/renderer/lib/api-docs/navigation-context.tsx +88 -0
package/renderer/lib/api-docs/parsers/graphql/README.md +129 -0
package/renderer/lib/api-docs/parsers/graphql/index.ts +91 -0
package/renderer/lib/api-docs/parsers/graphql/parser.ts +491 -0
package/renderer/lib/api-docs/parsers/graphql/transformer.ts +246 -0
package/renderer/lib/api-docs/parsers/graphql/types.ts +283 -0
package/renderer/lib/api-docs/parsers/openapi/README.md +32 -0
package/renderer/lib/api-docs/parsers/openapi/dereferencer.ts +60 -0
package/renderer/lib/api-docs/parsers/openapi/extractors/auth.ts +574 -0
package/renderer/lib/api-docs/parsers/openapi/extractors/body.ts +403 -0
package/renderer/lib/api-docs/parsers/openapi/extractors/index.ts +232 -0
package/renderer/lib/api-docs/parsers/openapi/index.ts +171 -0
package/renderer/lib/api-docs/parsers/openapi/transformer.ts +277 -0
package/renderer/lib/api-docs/parsers/openapi/validator.ts +31 -0
package/renderer/lib/api-docs/playground/context.tsx +107 -0
package/renderer/lib/api-docs/playground/navigation-context.tsx +124 -0
package/renderer/lib/api-docs/playground/request-builder.ts +223 -0
package/renderer/lib/api-docs/playground/request-runner.ts +282 -0
package/renderer/lib/api-docs/playground/types.ts +35 -0
package/renderer/lib/api-docs/types.ts +269 -0
package/renderer/lib/api-docs/utils.ts +311 -0
package/renderer/lib/cache.ts +193 -0
package/renderer/lib/docs/config/index.ts +29 -0
package/renderer/lib/docs/config/loader.ts +142 -0
package/renderer/lib/docs/config/schema.ts +298 -0
package/renderer/lib/docs/index.ts +12 -0
package/renderer/lib/docs/mdx/compiler.ts +176 -0
package/renderer/lib/docs/mdx/frontmatter.ts +80 -0
package/renderer/lib/docs/mdx/index.ts +26 -0
package/renderer/lib/docs/navigation/generator.ts +348 -0
package/renderer/lib/docs/navigation/index.ts +12 -0
package/renderer/lib/docs/navigation/types.ts +123 -0
package/renderer/lib/docs-navigation-context.tsx +80 -0
package/renderer/lib/multi-tenant/context.ts +105 -0
package/renderer/lib/storage/blob.ts +845 -0
package/renderer/lib/utils.ts +6 -0
package/renderer/next.config.ts +76 -0
package/renderer/package.json +66 -0
package/renderer/postcss.config.mjs +5 -0
package/renderer/public/assets/images/screenshot.png +0 -0
package/renderer/public/assets/logo/dark.svg +9 -0
package/renderer/public/assets/logo/light.svg +9 -0
package/renderer/public/assets/logo.svg +9 -0
package/renderer/public/file.svg +1 -0
package/renderer/public/globe.svg +1 -0
package/renderer/public/icon.png +0 -0
package/renderer/public/logo.svg +9 -0
package/renderer/public/window.svg +1 -0
package/renderer/tsconfig.json +28 -0
package/templates/basic/README.md +139 -0
package/templates/basic/assets/favicon.svg +4 -0
package/templates/basic/assets/logo.svg +9 -0
package/templates/basic/docs.json +47 -0
package/templates/basic/guides/configuration.mdx +149 -0
package/templates/basic/guides/overview.mdx +96 -0
package/templates/basic/index.mdx +39 -0
package/templates/basic/package.json +14 -0
package/templates/basic/quickstart.mdx +92 -0
package/templates/basic/vercel.json +6 -0
package/templates/graphql/README.md +139 -0
package/templates/graphql/api-reference/schema.graphql +305 -0
package/templates/graphql/assets/favicon.svg +4 -0
package/templates/graphql/assets/logo.svg +9 -0
package/templates/graphql/docs.json +54 -0
package/templates/graphql/guides/configuration.mdx +149 -0
package/templates/graphql/guides/overview.mdx +96 -0
package/templates/graphql/index.mdx +39 -0
package/templates/graphql/package.json +14 -0
package/templates/graphql/quickstart.mdx +92 -0
package/templates/graphql/vercel.json +6 -0
package/templates/openapi/README.md +139 -0
package/templates/openapi/api-reference/openapi.json +419 -0
package/templates/openapi/assets/favicon.svg +4 -0
package/templates/openapi/assets/logo.svg +9 -0
package/templates/openapi/docs.json +61 -0
package/templates/openapi/guides/configuration.mdx +149 -0
package/templates/openapi/guides/overview.mdx +96 -0
package/templates/openapi/index.mdx +39 -0
package/templates/openapi/package.json +14 -0
package/templates/openapi/quickstart.mdx +92 -0
package/templates/openapi/vercel.json +6 -0

package/renderer/lib/api-docs/parsers/openapi/extractors/auth.ts ADDED Viewed

@@ -0,0 +1,574 @@
+/**
+ * OpenAPI Auth Extractors
+ *
+ * Ported from Hoppscotch's openapi/index.ts
+ * Handles authentication scheme parsing for v2 and v3
+ */
+/* eslint-disable @typescript-eslint/no-explicit-any */
+import type {
+  OpenAPI,
+  OpenAPIV2,
+  OpenAPIV3,
+  OpenAPIV3_1 as OpenAPIV31,
+} from 'openapi-types'
+import type { BrainfishRESTAuth } from '../../../types'
+import { isOpenAPIV3Operation } from './index'
+/**
+ * Resolves OpenAPI v3 security scheme object to Brainfish auth
+ */
+function resolveOpenAPIV3SecurityObj(
+  scheme: OpenAPIV3.SecuritySchemeObject | OpenAPIV31.SecuritySchemeObject,
+  _schemeData: string[] // Used for OAuth to pass params
+): BrainfishRESTAuth {
+  if (scheme.type === 'http') {
+    if (scheme.scheme === 'basic') {
+      return { authType: 'basic', authActive: true, username: '', password: '' }
+    } else if (scheme.scheme === 'bearer') {
+      return { authType: 'bearer', authActive: true, token: '' }
+    }
+    return { authType: 'none', authActive: true }
+  } else if (scheme.type === 'apiKey') {
+    if (scheme.in === 'header') {
+      return {
+        authType: 'api-key',
+        authActive: true,
+        addTo: 'HEADERS',
+        key: scheme.name,
+        value: '',
+      }
+    } else if (scheme.in === 'query') {
+      return {
+        authType: 'api-key',
+        authActive: true,
+        addTo: 'QUERY_PARAMS',
+        key: scheme.name,
+        value: '',
+      }
+    }
+  } else if (scheme.type === 'oauth2') {
+    // Select flow on first come basis: authorizationCode > implicit > password > clientCredentials
+    if (scheme.flows?.authorizationCode) {
+      return {
+        authType: 'oauth-2',
+        authActive: true,
+        grantTypeInfo: {
+          grantType: 'AUTHORIZATION_CODE',
+          authEndpoint: scheme.flows.authorizationCode.authorizationUrl ?? '',
+          clientID: '',
+          scopes: _schemeData.join(' '),
+          token: '',
+          isPKCE: false,
+          tokenEndpoint: scheme.flows.authorizationCode.tokenUrl ?? '',
+          clientSecret: '',
+          authRequestParams: [],
+          refreshRequestParams: [],
+          tokenRequestParams: [],
+        },
+        addTo: 'HEADERS',
+      }
+    } else if (scheme.flows?.implicit) {
+      return {
+        authType: 'oauth-2',
+        authActive: true,
+        grantTypeInfo: {
+          grantType: 'IMPLICIT',
+          authEndpoint: scheme.flows.implicit.authorizationUrl ?? '',
+          clientID: '',
+          token: '',
+          scopes: _schemeData.join(' '),
+          authRequestParams: [],
+          refreshRequestParams: [],
+        },
+        addTo: 'HEADERS',
+      }
+    } else if (scheme.flows?.password) {
+      return {
+        authType: 'oauth-2',
+        authActive: true,
+        grantTypeInfo: {
+          grantType: 'PASSWORD',
+          clientID: '',
+          authEndpoint: scheme.flows.password.tokenUrl ?? '',
+          clientSecret: '',
+          password: '',
+          username: '',
+          token: '',
+          scopes: _schemeData.join(' '),
+          refreshRequestParams: [],
+          tokenRequestParams: [],
+        },
+        addTo: 'HEADERS',
+      }
+    } else if (scheme.flows?.clientCredentials) {
+      return {
+        authType: 'oauth-2',
+        authActive: true,
+        grantTypeInfo: {
+          grantType: 'CLIENT_CREDENTIALS',
+          authEndpoint: scheme.flows.clientCredentials.tokenUrl ?? '',
+          clientID: '',
+          clientSecret: '',
+          scopes: _schemeData.join(' '),
+          token: '',
+          clientAuthentication: 'IN_BODY',
+          refreshRequestParams: [],
+          tokenRequestParams: [],
+        },
+        addTo: 'HEADERS',
+      }
+    }
+    // Default OAuth2
+    return {
+      authType: 'oauth-2',
+      authActive: true,
+      grantTypeInfo: {
+        grantType: 'AUTHORIZATION_CODE',
+        authEndpoint: '',
+        clientID: '',
+        scopes: _schemeData.join(' '),
+        token: '',
+        isPKCE: false,
+        tokenEndpoint: '',
+        clientSecret: '',
+        authRequestParams: [],
+        refreshRequestParams: [],
+        tokenRequestParams: [],
+      },
+      addTo: 'HEADERS',
+    }
+  } else if (scheme.type === 'openIdConnect') {
+    return {
+      authType: 'oauth-2',
+      authActive: true,
+      grantTypeInfo: {
+        grantType: 'AUTHORIZATION_CODE',
+        authEndpoint: '',
+        clientID: '',
+        scopes: _schemeData.join(' '),
+        token: '',
+        isPKCE: false,
+        tokenEndpoint: '',
+        clientSecret: '',
+        authRequestParams: [],
+        refreshRequestParams: [],
+        tokenRequestParams: [],
+      },
+      addTo: 'HEADERS',
+    }
+  }
+  return { authType: 'none', authActive: true }
+}
+/**
+ * Resolves OpenAPI v3 security scheme
+ */
+function resolveOpenAPIV3SecurityScheme(
+  doc: OpenAPIV3.Document | OpenAPIV31.Document,
+  schemeName: string,
+  schemeData: string[]
+): BrainfishRESTAuth {
+  const scheme = doc.components?.securitySchemes?.[schemeName] as
+    | OpenAPIV3.SecuritySchemeObject
+    | undefined
+  if (!scheme) return { authType: 'none', authActive: true }
+  return resolveOpenAPIV3SecurityObj(scheme, schemeData)
+}
+/**
+ * Resolves OpenAPI v3 security requirements
+ */
+function resolveOpenAPIV3Security(
+  doc: OpenAPIV3.Document | OpenAPIV31.Document,
+  security:
+    | OpenAPIV3.SecurityRequirementObject[]
+    | OpenAPIV31.SecurityRequirementObject[]
+): BrainfishRESTAuth {
+  // Only consider the first security requirement
+  const sec = security[0] as OpenAPIV3.SecurityRequirementObject | undefined
+  if (!sec) return { authType: 'none', authActive: true }
+  // Only consider the first security condition within the first condition
+  const [schemeName, schemeData] = (Object.entries(sec)[0] ?? [
+    undefined,
+    undefined,
+  ]) as [string | undefined, string[] | undefined]
+  if (!schemeName || !schemeData) return { authType: 'none', authActive: true }
+  return resolveOpenAPIV3SecurityScheme(doc, schemeName, schemeData)
+}
+/**
+ * Parses OpenAPI v3 authentication
+ */
+export function parseOpenAPIV3Auth(
+  doc: OpenAPIV3.Document | OpenAPIV31.Document,
+  op: OpenAPIV3.OperationObject | OpenAPIV31.OperationObject
+): BrainfishRESTAuth {
+  const rootAuth = doc.security
+    ? resolveOpenAPIV3Security(doc, doc.security)
+    : undefined
+  const opAuth = op.security
+    ? resolveOpenAPIV3Security(doc, op.security)
+    : undefined
+  return opAuth ?? rootAuth ?? { authType: 'none', authActive: true }
+}
+/**
+ * Resolves OpenAPI v2 security scheme
+ */
+function resolveOpenAPIV2SecurityScheme(
+  scheme: OpenAPIV2.SecuritySchemeObject,
+  _schemeData: string[]
+): BrainfishRESTAuth {
+  if (scheme.type === 'basic') {
+    return { authType: 'basic', authActive: true, username: '', password: '' }
+  } else if (scheme.type === 'apiKey') {
+    // V2 only supports in: header and in: query
+    return {
+      authType: 'api-key',
+      addTo: scheme.in === 'header' ? 'HEADERS' : 'QUERY_PARAMS',
+      authActive: true,
+      key: scheme.name,
+      value: '',
+    }
+  } else if (scheme.type === 'oauth2') {
+    // Select flow: accessCode > implicit > password > application
+    if (scheme.flow === 'accessCode') {
+      return {
+        authType: 'oauth-2',
+        authActive: true,
+        grantTypeInfo: {
+          authEndpoint: scheme.authorizationUrl ?? '',
+          clientID: '',
+          clientSecret: '',
+          grantType: 'AUTHORIZATION_CODE',
+          scopes: _schemeData.join(' '),
+          token: '',
+          isPKCE: false,
+          tokenEndpoint: scheme.tokenUrl ?? '',
+          authRequestParams: [],
+          refreshRequestParams: [],
+          tokenRequestParams: [],
+        },
+        addTo: 'HEADERS',
+      }
+    } else if (scheme.flow === 'implicit') {
+      return {
+        authType: 'oauth-2',
+        authActive: true,
+        grantTypeInfo: {
+          authEndpoint: scheme.authorizationUrl ?? '',
+          clientID: '',
+          grantType: 'IMPLICIT',
+          scopes: _schemeData.join(' '),
+          token: '',
+          authRequestParams: [],
+          refreshRequestParams: [],
+        },
+        addTo: 'HEADERS',
+      }
+    } else if (scheme.flow === 'application') {
+      return {
+        authType: 'oauth-2',
+        authActive: true,
+        grantTypeInfo: {
+          authEndpoint: scheme.tokenUrl ?? '',
+          clientID: '',
+          clientSecret: '',
+          grantType: 'CLIENT_CREDENTIALS',
+          scopes: _schemeData.join(' '),
+          token: '',
+          clientAuthentication: 'IN_BODY',
+          refreshRequestParams: [],
+          tokenRequestParams: [],
+        },
+        addTo: 'HEADERS',
+      }
+    } else if (scheme.flow === 'password') {
+      return {
+        authType: 'oauth-2',
+        authActive: true,
+        grantTypeInfo: {
+          grantType: 'PASSWORD',
+          authEndpoint: scheme.tokenUrl ?? '',
+          clientID: '',
+          clientSecret: '',
+          password: '',
+          scopes: _schemeData.join(' '),
+          token: '',
+          username: '',
+          refreshRequestParams: [],
+          tokenRequestParams: [],
+        },
+        addTo: 'HEADERS',
+      }
+    }
+    // Default OAuth2
+    return {
+      authType: 'oauth-2',
+      authActive: true,
+      grantTypeInfo: {
+        authEndpoint: '',
+        clientID: '',
+        clientSecret: '',
+        grantType: 'AUTHORIZATION_CODE',
+        scopes: _schemeData.join(' '),
+        token: '',
+        isPKCE: false,
+        tokenEndpoint: '',
+        authRequestParams: [],
+        refreshRequestParams: [],
+        tokenRequestParams: [],
+      },
+      addTo: 'HEADERS',
+    }
+  }
+  return { authType: 'none', authActive: true }
+}
+/**
+ * Resolves OpenAPI v2 security definition
+ */
+function resolveOpenAPIV2SecurityDef(
+  doc: OpenAPIV2.Document,
+  schemeName: string,
+  schemeData: string[]
+): BrainfishRESTAuth {
+  const scheme = Object.entries(doc.securityDefinitions ?? {}).find(
+    ([name]) => schemeName === name
+  )
+  if (!scheme) return { authType: 'none', authActive: true }
+  const schemeObj = scheme[1]
+  return resolveOpenAPIV2SecurityScheme(schemeObj, schemeData)
+}
+/**
+ * Resolves OpenAPI v2 security requirements
+ */
+function resolveOpenAPIV2Security(
+  doc: OpenAPIV2.Document,
+  security: OpenAPIV2.SecurityRequirementObject[]
+): BrainfishRESTAuth {
+  // Only consider the first security requirement
+  const sec = security[0] as OpenAPIV2.SecurityRequirementObject | undefined
+  if (!sec) return { authType: 'none', authActive: true }
+  // Only consider the first security condition within the first condition
+  const [schemeName, schemeData] = (Object.entries(sec)[0] ?? [
+    undefined,
+    undefined,
+  ]) as [string | undefined, string[] | undefined]
+  if (!schemeName || !schemeData) return { authType: 'none', authActive: true }
+  return resolveOpenAPIV2SecurityDef(doc, schemeName, schemeData)
+}
+/**
+ * Parses OpenAPI v2 authentication
+ */
+export function parseOpenAPIV2Auth(
+  doc: OpenAPIV2.Document,
+  op: OpenAPIV2.OperationObject
+): BrainfishRESTAuth {
+  const rootAuth = doc.security
+    ? resolveOpenAPIV2Security(doc, doc.security)
+    : undefined
+  const opAuth = op.security
+    ? resolveOpenAPIV2Security(doc, op.security)
+    : undefined
+  return opAuth ?? rootAuth ?? { authType: 'none', authActive: true }
+}
+/**
+ * Parses OpenAPI authentication (v2 or v3)
+ */
+export function parseOpenAPIAuth(
+  doc: OpenAPI.Document,
+  op: any // OpenAPIOperationType
+): BrainfishRESTAuth {
+  return isOpenAPIV3Operation(doc, op)
+    ? parseOpenAPIV3Auth(
+        doc as OpenAPIV3.Document | OpenAPIV31.Document,
+        op
+      )
+    : parseOpenAPIV2Auth(doc as OpenAPIV2.Document, op)
+}
+/**
+ * Extract all security schemes from an OpenAPI document
+ * Returns them in a format suitable for the auth modal
+ */
+export interface SecuritySchemeInfo {
+  name: string
+  type: 'basic' | 'bearer' | 'api-key' | 'oauth2' | 'none'
+  auth: BrainfishRESTAuth
+  description?: string
+}
+export function extractSecuritySchemes(doc: OpenAPI.Document): SecuritySchemeInfo[] {
+  const schemes: SecuritySchemeInfo[] = []
+  // Check if it's v3
+  const v3Doc = doc as OpenAPIV3.Document | OpenAPIV31.Document
+  if (v3Doc.components?.securitySchemes) {
+    for (const [name, schemeRef] of Object.entries(v3Doc.components.securitySchemes)) {
+      // Skip references for now
+      if ('$ref' in schemeRef) continue
+      const scheme = schemeRef as OpenAPIV3.SecuritySchemeObject
+      const auth = resolveOpenAPIV3SecurityObj(scheme, [])
+      let type: SecuritySchemeInfo['type'] = 'none'
+      let description = scheme.description
+      if (scheme.type === 'http') {
+        if (scheme.scheme === 'basic') type = 'basic'
+        else if (scheme.scheme === 'bearer') type = 'bearer'
+      } else if (scheme.type === 'apiKey') {
+        type = 'api-key'
+        description = description || `API Key in ${scheme.in}: ${scheme.name}`
+      } else if (scheme.type === 'oauth2') {
+        type = 'oauth2'
+      }
+      if (type !== 'none') {
+        schemes.push({ name, type, auth, description })
+      }
+    }
+  }
+  // Check if it's v2
+  const v2Doc = doc as OpenAPIV2.Document
+  if (v2Doc.securityDefinitions) {
+    for (const [name, scheme] of Object.entries(v2Doc.securityDefinitions)) {
+      const auth = resolveOpenAPIV2SecurityScheme(scheme, [])
+      let type: SecuritySchemeInfo['type'] = 'none'
+      let description = scheme.description
+      if (scheme.type === 'basic') {
+        type = 'basic'
+      } else if (scheme.type === 'apiKey') {
+        type = 'api-key'
+        description = description || `API Key in ${scheme.in}: ${scheme.name}`
+      } else if (scheme.type === 'oauth2') {
+        type = 'oauth2'
+      }
+      if (type !== 'none') {
+        schemes.push({ name, type, auth, description })
+      }
+    }
+  }
+  return schemes
+}
+/**
+ * Get the default/recommended auth from the spec
+ * Based on the global security requirement
+ */
+export function getDefaultAuth(doc: OpenAPI.Document): BrainfishRESTAuth | null {
+  // Check v3 global security
+  const v3Doc = doc as OpenAPIV3.Document | OpenAPIV31.Document
+  if (v3Doc.security && v3Doc.security.length > 0) {
+    return resolveOpenAPIV3Security(v3Doc, v3Doc.security)
+  }
+  // Check v2 global security
+  const v2Doc = doc as OpenAPIV2.Document
+  if (v2Doc.security && v2Doc.security.length > 0) {
+    return resolveOpenAPIV2Security(v2Doc, v2Doc.security)
+  }
+  // If no global security, return the first scheme found
+  const schemes = extractSecuritySchemes(doc)
+  if (schemes.length > 0) {
+    return schemes[0].auth
+  }
+  return null
+}
+/**
+ * Header info extracted from security schemes
+ */
+export interface SecurityHeader {
+  key: string
+  value: string
+  description: string
+  active: boolean
+  required: boolean
+}
+/**
+ * Extract additional security headers required by an endpoint
+ * These are API key headers that are NOT the primary auth (handled by global auth)
+ *
+ * For example, if an endpoint requires both `access-token` and `agent-key`,
+ * the primary auth handles `access-token`, and this returns `agent-key` as additional header
+ */
+export function extractSecurityHeaders(
+  doc: OpenAPI.Document,
+  op: any, // OpenAPIOperationType
+  primaryAuthKey?: string // The key handled by global auth (e.g., 'access-token')
+): SecurityHeader[] {
+  const headers: SecurityHeader[] = []
+  try {
+    const v3Doc = doc as OpenAPIV3.Document | OpenAPIV31.Document
+    const v3Op = op as OpenAPIV3.OperationObject | OpenAPIV31.OperationObject
+    // Get security requirements (operation-level or global)
+    const security = v3Op.security ?? v3Doc.security ?? []
+    if (security.length === 0) return []
+    // Process the first security requirement (they are OR'd, we use first)
+    const secReq = security[0]
+    if (!secReq) return []
+    // Get all required scheme names
+    const schemeNames = Object.keys(secReq)
+    for (const schemeName of schemeNames) {
+      const scheme = v3Doc.components?.securitySchemes?.[schemeName] as
+        | OpenAPIV3.SecuritySchemeObject
+        | undefined
+      if (!scheme) continue
+      // Only handle API keys in headers
+      if (scheme.type === 'apiKey' && scheme.in === 'header') {
+        // Skip if this is the primary auth key
+        if (primaryAuthKey && scheme.name === primaryAuthKey) continue
+        headers.push({
+          key: scheme.name,
+          value: '',
+          description: scheme.description || `Required: ${schemeName}`,
+          active: true,
+          required: true,
+        })
+      }
+    }
+  } catch {
+    // Return empty on error
+  }
+  return headers
+}