@crush-protocol/mcp-client 0.3.3 → 0.4.0

package/README.md

@@ -19,31 +19,25 @@ To target a single host: `npx -y @crush-protocol/mcp-client setup --cursor`
 
 **[All Client Configurations →](#client-configuration)**
 
-## Connection Modes
+## How It Works
 
-| Mode | Transport | Auth | Best For |
-|------|-----------|------|----------|
-| **Local** | stdio (npx) | OAuth — browser opens automatically | Most MCP clients |
-| **Remote** | Streamable HTTP | OAuth — browser opens automatically | Clients with native HTTP support |
+The CLI acts as a **stdio ↔ HTTP proxy**: it reads cached OAuth tokens from `~/.crush-mcp/`, connects to the Crush MCP server, and bridges all requests over stdio. No extra arguments needed.
 
-**Remote Server URL:** `https://crush-mcp-ats.dev.xexlab.com/mcp`
-
-Authentication is automatic (OAuth 2.1 Authorization Code + PKCE). On first use, a browser window opens for login; tokens are cached locally for reuse.
-
-For hosts that support URL-only MCP (Remote mode), the full flow is:
-
-1. Host connects to the MCP URL
-2. Server returns `401` with `WWW-Authenticate` header
-3. Host performs OAuth discovery and dynamic client registration
-4. Completes Authorization Code + PKCE via browser
-5. Persists tokens locally and reconnects
+```
+AI Tool ──stdio──▶ @crush-protocol/mcp-client ──HTTP+Bearer──▶ MCP Server
+                         ▲
+                   reads ~/.crush-mcp/
+                   (cached OAuth tokens)
+```
 
-If a host cannot complete OAuth automatically, pre-authorize with:
+**First-time setup (one-time):**
 
 ```sh
 npx -y @crush-protocol/mcp-client login
 ```
 
+This opens a browser for OAuth login. Tokens are cached in `~/.crush-mcp/` and shared across all AI tools. Token refresh is automatic.
+
 ## Available Tools
 
 **Market Data** — `list_tables` · `list_tokens` · `list_indicators` · `list_timeframes` · `get_data_range` · `check_query_size` · `fetch_ohlcv` · `fetch_indicator` · `fetch_news` · `get_connection_config` · `save_custom_indicator` · `list_custom_indicators` · `get_custom_indicator` · `delete_custom_indicator`
@@ -67,7 +61,6 @@ Detailed tool guidance is in [INSTRUCTIONS.md](./INSTRUCTIONS.md).
 
 [Cursor MCP docs](https://docs.cursor.com/context/model-context-protocol) · Go to: `Settings` → `Cursor Settings` → `MCP` → `Add new global MCP server`
 
-**Local:**
 
 ```json
 {
@@ -80,17 +73,6 @@ Detailed tool guidance is in [INSTRUCTIONS.md](./INSTRUCTIONS.md).
 }
 ```
 
-**Remote:**
-
-```json
-{
-  "mcpServers": {
-    "crush-protocol": {
-      "url": "https://crush-mcp-ats.dev.xexlab.com/mcp"
-    }
-  }
-}
-```
 
 </details>
 
@@ -99,17 +81,11 @@ Detailed tool guidance is in [INSTRUCTIONS.md](./INSTRUCTIONS.md).
 
 [Claude Code MCP docs](https://docs.anthropic.com/en/docs/claude-code/mcp)
 
-**Local:**
 
 ```sh
 claude mcp add --scope user crush-protocol -- npx -y @crush-protocol/mcp-client
 ```
 
-**Remote:**
-
-```sh
-claude mcp add --scope user --transport http crush-protocol https://crush-mcp-ats.dev.xexlab.com/mcp
-```
 
 </details>
 
@@ -118,7 +94,6 @@ claude mcp add --scope user --transport http crush-protocol https://crush-mcp-at
 
 [OpenCode MCP docs](https://opencode.ai/docs/mcp-servers) · Add to `~/.config/opencode/opencode.json`
 
-**Local:**
 
 ```json
 {
@@ -133,20 +108,6 @@ claude mcp add --scope user --transport http crush-protocol https://crush-mcp-at
 }
 ```
 
-**Remote:**
-
-```json
-{
-  "$schema": "https://opencode.ai/config.json",
-  "mcp": {
-    "crush-protocol": {
-      "type": "remote",
-      "url": "https://crush-mcp-ats.dev.xexlab.com/mcp",
-      "enabled": true
-    }
-  }
-}
-```
 
 </details>
 
@@ -166,12 +127,6 @@ args = ["-y", "@crush-protocol/mcp-client"]
 startup_timeout_ms = 20000
 ```
 
-**Remote:**
-
-```toml
-[mcp_servers.crush-protocol]
-url = "https://crush-mcp-ats.dev.xexlab.com/mcp"
-```
 
 </details>
 
@@ -180,19 +135,6 @@ url = "https://crush-mcp-ats.dev.xexlab.com/mcp"
 
 [Gemini CLI Configuration](https://google-gemini.github.io/gemini-cli/docs/tools/mcp-server.html) · Add to `~/.gemini/settings.json`
 
-**Remote:**
-
-```json
-{
-  "mcpServers": {
-    "crush-protocol": {
-      "httpUrl": "https://crush-mcp-ats.dev.xexlab.com/mcp"
-    }
-  }
-}
-```
-
-**Local:**
 
 ```json
 {
@@ -212,20 +154,6 @@ url = "https://crush-mcp-ats.dev.xexlab.com/mcp"
 
 [VS Code MCP docs](https://code.visualstudio.com/docs/copilot/chat/mcp-servers) · Add to `.vscode/mcp.json`
 
-**Remote:**
-
-```json
-{
-  "servers": {
-    "crush-protocol": {
-      "type": "http",
-      "url": "https://crush-mcp-ats.dev.xexlab.com/mcp"
-    }
-  }
-}
-```
-
-**Local:**
 
 ```json
 {
@@ -246,19 +174,6 @@ url = "https://crush-mcp-ats.dev.xexlab.com/mcp"
 
 [Windsurf MCP docs](https://docs.windsurf.com/windsurf/cascade/mcp)
 
-**Remote:**
-
-```json
-{
-  "mcpServers": {
-    "crush-protocol": {
-      "serverUrl": "https://crush-mcp-ats.dev.xexlab.com/mcp"
-    }
-  }
-}
-```
-
-**Local:**
 
 ```json
 {
@@ -278,7 +193,6 @@ url = "https://crush-mcp-ats.dev.xexlab.com/mcp"
 
 [Claude Desktop MCP docs](https://modelcontextprotocol.io/quickstart/user) · Edit `claude_desktop_config.json`
 
-**Local:**
 
 ```json
 {
@@ -298,19 +212,6 @@ url = "https://crush-mcp-ats.dev.xexlab.com/mcp"
 
 [Kiro MCP docs](https://kiro.dev/docs/mcp/configuration/) · Navigate `Kiro` → `MCP Servers` → `+ Add`
 
-**Remote:**
-
-```json
-{
-  "mcpServers": {
-    "crush-protocol": {
-      "url": "https://crush-mcp-ats.dev.xexlab.com/mcp"
-    }
-  }
-}
-```
-
-**Local:**
 
 ```json
 {
@@ -330,20 +231,6 @@ url = "https://crush-mcp-ats.dev.xexlab.com/mcp"
 
 [Roo Code MCP docs](https://docs.roocode.com/features/mcp/using-mcp-in-roo)
 
-**Remote:**
-
-```json
-{
-  "mcpServers": {
-    "crush-protocol": {
-      "type": "streamable-http",
-      "url": "https://crush-mcp-ats.dev.xexlab.com/mcp"
-    }
-  }
-}
-```
-
-**Local:**
 
 ```json
 {
@@ -363,20 +250,6 @@ url = "https://crush-mcp-ats.dev.xexlab.com/mcp"
 
 [Cline MCP Marketplace](https://cline.bot/mcp-marketplace)
 
-**Remote:**
-
-```json
-{
-  "mcpServers": {
-    "crush-protocol": {
-      "url": "https://crush-mcp-ats.dev.xexlab.com/mcp",
-      "type": "streamableHttp"
-    }
-  }
-}
-```
-
-**Local:**
 
 ```json
 {
@@ -396,19 +269,6 @@ url = "https://crush-mcp-ats.dev.xexlab.com/mcp"
 
 [Trae MCP docs](https://docs.trae.ai/ide/model-context-protocol?_lang=en)
 
-**Remote:**
-
-```json
-{
-  "mcpServers": {
-    "crush-protocol": {
-      "url": "https://crush-mcp-ats.dev.xexlab.com/mcp"
-    }
-  }
-}
-```
-
-**Local:**
 
 ```json
 {
@@ -451,20 +311,6 @@ Manual config in VS Code settings:
 
 [GitHub Copilot MCP docs](https://docs.github.com/en/enterprise-cloud@latest/copilot/how-tos/agents/copilot-coding-agent/extending-copilot-coding-agent-with-mcp)
 
-**Remote:**
-
-```json
-{
-  "mcpServers": {
-    "crush-protocol": {
-      "type": "http",
-      "url": "https://crush-mcp-ats.dev.xexlab.com/mcp"
-    }
-  }
-}
-```
-
-**Local:**
 
 ```json
 {
@@ -485,20 +331,6 @@ Manual config in VS Code settings:
 
 Add to `~/.copilot/mcp-config.json`:
 
-**Remote:**
-
-```json
-{
-  "mcpServers": {
-    "crush-protocol": {
-      "type": "http",
-      "url": "https://crush-mcp-ats.dev.xexlab.com/mcp"
-    }
-  }
-}
-```
-
-**Local:**
 
 ```json
 {
@@ -557,7 +389,7 @@ Add to `~/.copilot/mcp-config.json`:
 [Amp MCP docs](https://ampcode.com/manual#mcp)
 
 ```sh
-amp mcp add crush-protocol https://crush-mcp-ats.dev.xexlab.com/mcp
+amp mcp add crush-protocol -- npx -y @crush-protocol/mcp-client
 ```
 
 </details>
@@ -586,19 +418,6 @@ amp mcp add crush-protocol https://crush-mcp-ats.dev.xexlab.com/mcp
 
 [JetBrains AI Assistant docs](https://www.jetbrains.com/help/ai-assistant/configure-an-mcp-server.html) · Go to `Settings` → `Tools` → `AI Assistant` → `Model Context Protocol (MCP)` → `+ Add`
 
-**Remote:**
-
-```json
-{
-  "mcpServers": {
-    "crush-protocol": {
-      "url": "https://crush-mcp-ats.dev.xexlab.com/mcp"
-    }
-  }
-}
-```
-
-**Local:**
 
 ```json
 {
@@ -620,20 +439,6 @@ amp mcp add crush-protocol https://crush-mcp-ats.dev.xexlab.com/mcp
 
 **CLI:** `qwen mcp add crush-protocol npx -y @crush-protocol/mcp-client`
 
-**Remote** (add to `~/.qwen/settings.json`):
-
-```json
-{
-  "mcpServers": {
-    "crush-protocol": {
-      "httpUrl": "https://crush-mcp-ats.dev.xexlab.com/mcp"
-    }
-  }
-}
-```
-
-**Local:**
-
 ```json
 {
   "mcpServers": {
@@ -670,21 +475,6 @@ amp mcp add crush-protocol https://crush-mcp-ats.dev.xexlab.com/mcp
 
 [Visual Studio MCP docs](https://learn.microsoft.com/visualstudio/ide/mcp-servers?view=vs-2022)
 
-**Remote:**
-
-```json
-{
-  "inputs": [],
-  "servers": {
-    "crush-protocol": {
-      "type": "http",
-      "url": "https://crush-mcp-ats.dev.xexlab.com/mcp"
-    }
-  }
-}
-```
-
-**Local:**
 
 ```json
 {
@@ -740,20 +530,6 @@ amp mcp add crush-protocol https://crush-mcp-ats.dev.xexlab.com/mcp
 
 [Kilo Code docs](https://kilocode.ai)
 
-**Remote:**
-
-```json
-{
-  "mcpServers": {
-    "crush-protocol": {
-      "type": "streamable-http",
-      "url": "https://crush-mcp-ats.dev.xexlab.com/mcp"
-    }
-  }
-}
-```
-
-**Local:**
 
 ```json
 {
@@ -787,19 +563,6 @@ Go to Zencoder menu → Agent tools → Add custom MCP, paste:
 
 [Qodo Gen docs](https://docs.qodo.ai/qodo-documentation/qodo-gen/qodo-gen-chat/agentic-mode/agentic-tools-mcps) · Open Qodo Gen chat → Connect more tools → `+ Add new MCP`
 
-**Remote:**
-
-```json
-{
-  "mcpServers": {
-    "crush-protocol": {
-      "url": "https://crush-mcp-ats.dev.xexlab.com/mcp"
-    }
-  }
-}
-```
-
-**Local:**
 
 ```json
 {
@@ -873,14 +636,26 @@ Use `cmd` as the command wrapper:
 ## CLI Usage
 
 ```sh
-npx -y @crush-protocol/mcp-client login              # 预授权 OAuth（浏览器登录）
-npx -y @crush-protocol/mcp-client setup --all         # 写入所有客户端配置
-npx -y @crush-protocol/mcp-client tools:list          # 列出可用工具
-npx -y @crush-protocol/mcp-client ping                # 测试连通性
-npx -y @crush-protocol/mcp-client backtest:schema     # 获取回测配置 schema
+# Auth
+npx -y @crush-protocol/mcp-client login              # OAuth login (browser)
+npx -y @crush-protocol/mcp-client setup --all         # Auto-write config for all supported hosts
+
+# Tools
+npx -y @crush-protocol/mcp-client tools:list          # List available tools
+npx -y @crush-protocol/mcp-client ping                # Test connectivity
+
+# Backtest
+npx -y @crush-protocol/mcp-client backtest:schema     # Backtest config schema
 npx -y @crush-protocol/mcp-client backtest:list --limit 10
 ```
 
+### Environment Variables
+
+| Variable | Description | Default |
+|----------|-------------|---------|
+| `CRUSH_MCP_SERVER_URL` | Override the MCP server URL | `https://crush-mcp-ats.dev.xexlab.com/mcp` |
+| `CRUSH_OAUTH_ACCESS_TOKEN` | Skip OAuth, use a pre-existing token | — |
+
 ## License
 
 MIT

package/dist/cli.js

@@ -3,11 +3,12 @@ import "dotenv/config";
 import { BacktestClient } from "./backtest/backtestClient.js";
 import { ClickHouseDirectClient } from "./clickhouse/directClient.js";
 import { OAuthRemoteMcpClient } from "./mcp/oauthRemoteClient.js";
+import { runProxy } from "./mcp/proxy.js";
 import { RemoteMcpClient } from "./mcp/remoteClient.js";
 import { ALL_TARGETS, installClientConfig } from "./setup/setupClients.js";
-const MCP_SERVER_URL = "https://crush-mcp-ats.dev.xexlab.com/mcp";
+const MCP_SERVER_URL = process.env.CRUSH_MCP_SERVER_URL || "https://crush-mcp-ats.dev.xexlab.com/mcp";
 const printUsage = () => {
-    console.log(`\ncrush-mcp-client\n\nGeneral:\n  login\n  setup [--cursor] [--claude] [--codex] [--gemini] [--opencode] [--all] [--scope user|project]\n  tools:list [--token TOKEN]\n  tool:call --name TOOL_NAME [--args JSON] [--token TOKEN]\n  ping [--token TOKEN]\n\nBacktest:\n  backtest:schema [--token TOKEN]\n  backtest:tokens [--platform PLATFORM] [--token TOKEN]\n  backtest:validate --expression JSON [--data-source kline|factors] [--token TOKEN]\n  backtest:create --config JSON [--backtest-id ID] [--token TOKEN]\n  backtest:list [--status STATUS] [--limit N] [--offset N] [--token TOKEN]\n\nClickHouse:\n  clickhouse:list-tables [--ch-host HOST --ch-port PORT --ch-user USER --ch-password PASS --ch-database DB]\n  clickhouse:query --sql SQL [--ch-host HOST --ch-port PORT --ch-user USER --ch-password PASS --ch-database DB --ch-row-cap N]\n\nAuth:\n  --token TOKEN uses a provided OAuth access token.\n  Without --token, OAuth runs automatically in the browser when needed.\n\nEnv:\n  CRUSH_OAUTH_ACCESS_TOKEN\n  CH_HOST, CH_PORT, CH_USER, CH_PASSWORD, CH_DATABASE, CH_ROW_CAP\n`);
+    console.log(`\ncrush-mcp-client\n\nGeneral:\n  login [SERVER_URL]\n  proxy [SERVER_URL]            — stdio proxy (login once, use everywhere)\n  setup [--cursor] [--claude] [--codex] [--gemini] [--opencode] [--all] [--scope user|project]\n  tools:list [--token TOKEN]\n  tool:call --name TOOL_NAME [--args JSON] [--token TOKEN]\n  ping [--token TOKEN]\n\nBacktest:\n  backtest:schema [--token TOKEN]\n  backtest:tokens [--platform PLATFORM] [--token TOKEN]\n  backtest:validate --expression JSON [--data-source kline|factors] [--token TOKEN]\n  backtest:create --config JSON [--backtest-id ID] [--token TOKEN]\n  backtest:list [--status STATUS] [--limit N] [--offset N] [--token TOKEN]\n\nClickHouse:\n  clickhouse:list-tables [--ch-host HOST --ch-port PORT --ch-user USER --ch-password PASS --ch-database DB]\n  clickhouse:query --sql SQL [--ch-host HOST --ch-port PORT --ch-user USER --ch-password PASS --ch-database DB --ch-row-cap N]\n\nAuth:\n  --token TOKEN uses a provided OAuth access token.\n  Without --token, OAuth runs automatically in the browser when needed.\n\nProxy Mode (recommended for AI tools):\n  1. Login once:  npx @crush-protocol/mcp-client login SERVER_URL\n  2. Configure:   { "command": "npx", "args": ["-y", "@crush-protocol/mcp-client", "proxy", "SERVER_URL"] }\n\nEnv:\n  CRUSH_MCP_SERVER_URL\n  CRUSH_OAUTH_ACCESS_TOKEN\n  CH_HOST, CH_PORT, CH_USER, CH_PASSWORD, CH_DATABASE, CH_ROW_CAP\n`);
 };
 const parseFlags = (args) => {
     const flags = {};
@@ -32,7 +33,7 @@ const requireString = (value, message) => {
     }
     return value;
 };
-const getServerUrl = () => MCP_SERVER_URL;
+const getServerUrl = (override) => override || MCP_SERVER_URL;
 const getSetupTargets = (flags) => {
     if (flags.all === true) {
         return [...ALL_TARGETS];
@@ -51,7 +52,7 @@ const getSetupTargets = (flags) => {
  *    - 无 token → 自动拉起浏览器登录
  */
 const createSmartClient = (flags) => {
-    const serverUrl = getServerUrl();
+    const serverUrl = getServerUrl(typeof flags.server === "string" ? flags.server : undefined);
     // 显式传了 token → 用简单客户端
     const explicitToken = typeof flags.token === "string" ? flags.token : process.env.CRUSH_OAUTH_ACCESS_TOKEN || "";
     if (explicitToken) {
@@ -106,14 +107,39 @@ const createClickHouseClient = (flags) => {
 };
 const run = async () => {
     const [, , command, ...rest] = process.argv;
+    // 自动 proxy 检测：当 stdin 不是 TTY（被 AI 工具通过 stdio 调用）时，
+    // 如果没有已知子命令，自动进入 proxy 模式
+    const isStdioPipe = !process.stdin.isTTY;
+    const knownCommands = new Set([
+        "proxy", "login", "setup", "tools:list", "tool:call", "ping",
+        "backtest:schema", "backtest:tokens", "backtest:validate", "backtest:create", "backtest:list",
+        "clickhouse:list-tables", "clickhouse:query",
+        "help", "--help", "-h",
+    ]);
+    if (isStdioPipe && (!command || !knownCommands.has(command))) {
+        // 无命令或第一个参数是 URL → 自动进入 proxy 模式
+        const serverUrl = getServerUrl(command?.startsWith("http") ? command : undefined);
+        await runProxy(serverUrl);
+        return;
+    }
     if (!command || command === "help" || command === "--help" || command === "-h") {
         printUsage();
         return;
     }
     const flags = parseFlags(rest);
     switch (command) {
+        case "proxy": {
+            // proxy [SERVER_URL] — stdio ↔ HTTP 代理模式
+            const proxyUrl = rest.find((a) => !a.startsWith("--"));
+            const serverUrl = getServerUrl(proxyUrl);
+            await runProxy(serverUrl);
+            return;
+        }
         case "login": {
-            const serverUrl = getServerUrl();
+            // login [SERVER_URL] — 第一个非 flag 参数作为 server URL
+            const loginUrl = rest.find((a) => !a.startsWith("--"));
+            const serverUrl = getServerUrl(loginUrl);
+            console.log(`Connecting to ${serverUrl} ...`);
             const client = new OAuthRemoteMcpClient({ serverUrl });
             try {
                 await client.ensureAuthorized();

package/dist/mcp/proxy.d.ts

@@ -0,0 +1 @@
+export declare function runProxy(serverUrl: string): Promise<void>;

package/dist/mcp/proxy.js

@@ -0,0 +1,188 @@
+/**
+ * MCP Proxy — stdio ↔ Streamable HTTP 桥接
+ *
+ * 原理：
+ *   AI 工具（Cursor/Claude/Antigravity）通过 stdio 连接本 proxy，
+ *   proxy 读取 ~/.crush-mcp/ 中缓存的 OAuth token，
+ *   将请求转发到远程 MCP Server（Streamable HTTP）。
+ *
+ * 使用：
+ *   npx @crush-protocol/mcp-client proxy [SERVER_URL]
+ *
+ * 用户只需执行一次 `login` 获取 token，所有 AI 工具共享同一份凭证。
+ */
+import { createHash } from "node:crypto";
+import { readFile, writeFile, mkdir } from "node:fs/promises";
+import os from "node:os";
+import path from "node:path";
+import { Client } from "@modelcontextprotocol/sdk/client/index.js";
+import { Server } from "@modelcontextprotocol/sdk/server/index.js";
+import { StdioServerTransport } from "@modelcontextprotocol/sdk/server/stdio.js";
+import { StreamableHTTPClientTransport } from "@modelcontextprotocol/sdk/client/streamableHttp.js";
+import { ListToolsRequestSchema, CallToolRequestSchema, PingRequestSchema, } from "@modelcontextprotocol/sdk/types.js";
+import { CLIENT_NAME, CLIENT_VERSION } from "./version.js";
+const STORAGE_DIR = path.join(os.homedir(), ".crush-mcp");
+const hashServerUrl = (serverUrl) => createHash("sha256").update(serverUrl).digest("hex").slice(0, 16);
+const loadTokens = async (serverUrl) => {
+    // 尝试多个可能的 URL 变体（login 用 base URL，proxy 用 /mcp URL）
+    const candidates = [serverUrl];
+    if (serverUrl.endsWith("/mcp")) {
+        candidates.push(serverUrl.replace(/\/mcp$/, ""));
+    }
+    else {
+        candidates.push(`${serverUrl}/mcp`);
+    }
+    for (const url of candidates) {
+        const storageFile = path.join(STORAGE_DIR, `oauth-${hashServerUrl(url)}.json`);
+        try {
+            const raw = await readFile(storageFile, "utf8");
+            const state = JSON.parse(raw);
+            if (state.tokens?.access_token) {
+                return state.tokens;
+            }
+        }
+        catch {
+            // 继续尝试下一个
+        }
+    }
+    return undefined;
+};
+const saveTokens = async (serverUrl, tokens) => {
+    const storageFile = path.join(STORAGE_DIR, `oauth-${hashServerUrl(serverUrl)}.json`);
+    let state = {};
+    try {
+        const raw = await readFile(storageFile, "utf8");
+        state = JSON.parse(raw);
+    }
+    catch {
+        // ignore
+    }
+    state.tokens = tokens;
+    await mkdir(path.dirname(storageFile), { recursive: true });
+    await writeFile(storageFile, JSON.stringify(state, null, 2), { encoding: "utf8", mode: 0o600 });
+};
+/**
+ * 尝试用 refresh_token 刷新 access_token
+ */
+const refreshAccessToken = async (serverUrl, tokens) => {
+    if (!tokens.refresh_token)
+        return null;
+    try {
+        // 先获取 token_endpoint
+        const metadataUrl = new URL("/.well-known/oauth-authorization-server", serverUrl);
+        const metaRes = await fetch(metadataUrl.toString());
+        if (!metaRes.ok)
+            return null;
+        const meta = (await metaRes.json());
+        // 获取 client_id
+        const storageFile = path.join(STORAGE_DIR, `oauth-${hashServerUrl(serverUrl)}.json`);
+        const raw = await readFile(storageFile, "utf8");
+        const state = JSON.parse(raw);
+        const clientInfo = state.clientInformation;
+        if (!clientInfo?.client_id)
+            return null;
+        const body = new URLSearchParams({
+            grant_type: "refresh_token",
+            refresh_token: tokens.refresh_token,
+            client_id: clientInfo.client_id,
+        });
+        const res = await fetch(meta.token_endpoint, {
+            method: "POST",
+            headers: { "Content-Type": "application/x-www-form-urlencoded" },
+            body: body.toString(),
+        });
+        if (!res.ok)
+            return null;
+        const newTokens = (await res.json());
+        await saveTokens(serverUrl, newTokens);
+        return newTokens;
+    }
+    catch {
+        return null;
+    }
+};
+export async function runProxy(serverUrl) {
+    // 1. 加载缓存的 token
+    let tokens = await loadTokens(serverUrl);
+    if (!tokens?.access_token) {
+        process.stderr.write(`[crush-mcp-proxy] No cached token found for ${serverUrl}\n` +
+            `  Run: npx @crush-protocol/mcp-client login ${serverUrl}\n`);
+        process.exit(1);
+    }
+    // 2. 创建到远程 MCP Server 的 HTTP 客户端
+    const createTransport = (token) => new StreamableHTTPClientTransport(new URL(serverUrl), {
+        requestInit: {
+            headers: {
+                Authorization: `Bearer ${token}`,
+            },
+        },
+    });
+    const remoteClient = new Client({ name: `${CLIENT_NAME}-proxy`, version: CLIENT_VERSION }, { capabilities: {} });
+    // 尝试连接，如果 401 则刷新 token
+    let transport = createTransport(tokens.access_token);
+    try {
+        await remoteClient.connect(transport);
+    }
+    catch (error) {
+        const msg = String(error);
+        if (msg.includes("401") || msg.includes("Unauthorized")) {
+            process.stderr.write("[crush-mcp-proxy] Token expired, refreshing...\n");
+            const refreshed = await refreshAccessToken(serverUrl, tokens);
+            if (!refreshed) {
+                process.stderr.write("[crush-mcp-proxy] Token refresh failed. Please re-login:\n" +
+                    `  npx @crush-protocol/mcp-client login ${serverUrl}\n`);
+                process.exit(1);
+            }
+            tokens = refreshed;
+            transport = createTransport(tokens.access_token);
+            await remoteClient.connect(transport);
+        }
+        else {
+            throw error;
+        }
+    }
+    // 3. 获取远程 server 的能力
+    const serverInfo = remoteClient.getServerVersion();
+    const remoteTools = await remoteClient.listTools();
+    // 4. 创建本地 stdio server，代理所有请求
+    const localServer = new Server({
+        name: serverInfo?.name ?? "crush-mcp-proxy",
+        version: serverInfo?.version ?? "1.0.0",
+    }, {
+        capabilities: {
+            tools: { listChanged: false },
+        },
+    });
+    // 代理 tools/list
+    localServer.setRequestHandler(ListToolsRequestSchema, async () => {
+        try {
+            const result = await remoteClient.listTools();
+            return result;
+        }
+        catch {
+            return { tools: remoteTools.tools };
+        }
+    });
+    // 代理 tools/call
+    localServer.setRequestHandler(CallToolRequestSchema, async (request) => {
+        const { name, arguments: args } = request.params;
+        return remoteClient.callTool({ name, arguments: args ?? {} });
+    });
+    // 代理 ping
+    localServer.setRequestHandler(PingRequestSchema, async () => {
+        await remoteClient.ping();
+        return {};
+    });
+    // 5. 启动 stdio transport
+    const stdioTransport = new StdioServerTransport();
+    await localServer.connect(stdioTransport);
+    process.stderr.write(`[crush-mcp-proxy] Connected to ${serverUrl} | stdio proxy ready\n`);
+    // 优雅关闭
+    const cleanup = async () => {
+        await localServer.close();
+        await remoteClient.close();
+        process.exit(0);
+    };
+    process.on("SIGINT", cleanup);
+    process.on("SIGTERM", cleanup);
+}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@crush-protocol/mcp-client",
-  "version": "0.3.3",
+  "version": "0.4.0",
   "description": "Crush MCP npm client package (remote Streamable HTTP + optional ClickHouse direct)",
   "type": "module",
   "license": "MIT",