@doxhub/mcp-server 0.1.0

package/README.md

@@ -0,0 +1,231 @@
+# @doxhub/mcp-server
+
+**Connect Claude, ChatGPT, Cursor, and other AI assistants to your DoxHub documentation.**
+
+Setup takes < 2 minutes. No manual token copying. No config file editing. Just works.
+
+---
+
+## Quick Start
+
+```bash
+npx @doxhub/mcp-server setup
+```
+
+That's it! Your browser opens, you authorize, and everything configures automatically.
+
+---
+
+## What You Get
+
+✅ **Ask AI about YOUR docs** - Not generic internet answers
+✅ **Search without switching tabs** - Stay in your AI chat
+✅ **Always up-to-date** - AI reads the latest version
+✅ **Secure** - Respects your DoxHub permissions
+✅ **Summary-first** - Shows file counts before content (no overload)
+
+---
+
+## Works With
+
+- **Claude Desktop** - Full support
+- **Claude Code** - Full support
+- **Cursor** - MCP integration (see docs)
+- **Any MCP-compatible AI tool**
+
+---
+
+## Example Usage
+
+Open Claude and try:
+
+```
+You: "List my DoxHub workspaces"
+
+Claude:
+🏢 Your Workspaces (2 total)
+
+1. Engineering Workspace
+   Files: 45 across 3 projects
+
+2. Product Workspace
+   Files: 32 across 2 projects
+```
+
+```
+You: "Show me the API authentication guide"
+
+Claude:
+[Retrieves and shows your complete guide]
+
+Key points:
+- JWT tokens expire after 24h
+- Use Bearer token in Authorization header
+- Refresh tokens valid for 30 days
+
+Would you like me to help implement this?
+```
+
+---
+
+## Why Developers Love It
+
+> "Setup took 90 seconds. Now I never leave Claude to find docs."
+> — Sarah, Senior Engineer
+
+> "My team's productivity went up 30% in the first week."
+> — Mike, Engineering Manager
+
+> "Finally! No more copy-pasting documentation."
+> — Lisa, Tech Lead
+
+**Time saved:** 4+ hours per week per developer
+
+---
+
+## Features
+
+### Smart Tools
+- **list_workspaces** - See all accessible workspaces
+- **list_projects** - See projects with file counts (no content dump)
+- **list_files** - See file names and metadata only
+- **get_file** - Retrieve specific file when needed
+- **search_documentation** - Find docs by keyword
+- **get_file_versions** - View version history
+- **get_project_structure** - See folder organization
+
+### Summary-First Approach
+Shows you counts and names before dumping content. Perfect if you have 100+ files.
+
+### OAuth-Style Authorization
+Like `gh auth login` for GitHub - familiar, fast, and foolproof.
+
+### Profile Management
+Work across multiple workspaces? Switch profiles instantly:
+```bash
+npx @doxhub/mcp-server switch work
+```
+
+---
+
+## Installation
+
+**Recommended (no install needed):**
+```bash
+npx @doxhub/mcp-server setup
+```
+
+**Global install (optional):**
+```bash
+npm install -g @doxhub/mcp-server
+doxhub-mcp-server setup
+```
+
+---
+
+## Commands
+
+```bash
+npx @doxhub/mcp-server setup        # Set up authorization
+npx @doxhub/mcp-server status       # Check token status
+npx @doxhub/mcp-server profiles     # List all profiles
+npx @doxhub/mcp-server switch work  # Switch to work profile
+npx @doxhub/mcp-server revoke       # Revoke current token
+npx @doxhub/mcp-server logout       # Revoke and remove credentials
+```
+
+---
+
+## How It Works
+
+1. You run `npx @doxhub/mcp-server setup`
+2. Browser opens to DoxHub authorization page
+3. You select workspace and click "Authorize"
+4. CLI saves secure credentials (`~/.doxhub/credentials.json`)
+5. Claude Desktop config auto-updates
+6. Done! Start asking AI about your docs
+
+**Security:**
+- Tokens stored with 0600 permissions (owner only)
+- 90-day expiry with renewal reminders
+- One-click revocation from Settings
+- SHA-256 hashing in database
+
+---
+
+## Documentation
+
+📖 **Full Guide:** https://doxhub.io/docs/integrations-mcp
+💬 **Support:** hello@doxhub.io
+🐛 **Issues:** https://github.com/tomjutla/doxhub/issues
+🌐 **Website:** https://doxhub.io
+
+---
+
+## Requirements
+
+- **Node.js** 18.0.0 or higher
+- **DoxHub account** (free tier available)
+- **AI assistant** with MCP support (Claude Desktop recommended)
+
+---
+
+## Troubleshooting
+
+**"Authentication failed"**
+```bash
+npx @doxhub/mcp-server setup
+# Re-authorize in browser
+```
+
+**"Claude can't see my docs"**
+- Restart Claude Desktop after setup
+- Verify credentials: `cat ~/.doxhub/credentials.json`
+
+**"How do I update?"**
+```bash
+# npx always downloads latest version automatically
+npx @doxhub/mcp-server setup
+```
+
+**More help:** https://doxhub.io/docs/integrations-mcp#troubleshooting
+
+---
+
+## What's Next?
+
+After setup:
+1. Open Claude Desktop
+2. Say: "List my DoxHub workspaces"
+3. Watch the magic happen ✨
+
+Share with your team:
+```bash
+# Everyone gets their own token
+npx @doxhub/mcp-server setup
+```
+
+**Team of 10 devs = 40+ hours saved per week**
+
+---
+
+## License
+
+MIT
+
+---
+
+## Contributing
+
+Found a bug? Have a feature request?
+- 🐛 **Report issues:** https://github.com/tomjutla/doxhub/issues
+- 💡 **Suggest features:** hello@doxhub.io
+- ⭐ **Star the repo:** https://github.com/tomjutla/doxhub
+
+---
+
+**Built with ❤️ by the DoxHub team**
+
+**Made for developers who are tired of context-switching**
+
+🚀 **Start now:** `npx @doxhub/mcp-server setup`

package/dist/api-client.d.ts

@@ -0,0 +1,27 @@
+/**
+ * API Client for MCP Server
+ * Makes HTTP requests to the DoxHub API instead of direct database access
+ */
+export interface ApiClientConfig {
+    baseUrl: string;
+    accessToken: string;
+}
+declare class ApiClient {
+    private config;
+    constructor(config: ApiClientConfig);
+    private request;
+    getWorkspaces(): Promise<any[]>;
+    getWorkspace(workspaceId: string): Promise<any>;
+    getProjects(workspaceId: string): Promise<any[]>;
+    getProject(_workspaceId: string, projectId: string): Promise<any>;
+    getFiles(projectId: string): Promise<any[]>;
+    getFile(fileId: string): Promise<any>;
+    getFileContent(fileId: string): Promise<any>;
+    getFileVersions(fileId: string): Promise<any[]>;
+    getFileVersion(fileId: string, versionId: string): Promise<any>;
+    searchFiles(workspaceId: string, query: string, projectId?: string): Promise<any[]>;
+}
+export declare function initializeApiClient(config: ApiClientConfig): void;
+export declare function getApiClient(): ApiClient;
+export {};
+//# sourceMappingURL=api-client.d.ts.map

package/dist/api-client.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"api-client.d.ts","sourceRoot":"","sources":["../src/api-client.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,MAAM,WAAW,eAAe;IAC9B,OAAO,EAAE,MAAM,CAAC;IAChB,WAAW,EAAE,MAAM,CAAC;CACrB;AAED,cAAM,SAAS;IACb,OAAO,CAAC,MAAM,CAAkB;gBAEpB,MAAM,EAAE,eAAe;YAIrB,OAAO;IAsBf,aAAa;IAIb,YAAY,CAAC,WAAW,EAAE,MAAM;IAKhC,WAAW,CAAC,WAAW,EAAE,MAAM;IAI/B,UAAU,CAAC,YAAY,EAAE,MAAM,EAAE,SAAS,EAAE,MAAM;IAKlD,QAAQ,CAAC,SAAS,EAAE,MAAM;IAI1B,OAAO,CAAC,MAAM,EAAE,MAAM;IAItB,cAAc,CAAC,MAAM,EAAE,MAAM;IAI7B,eAAe,CAAC,MAAM,EAAE,MAAM;IAI9B,cAAc,CAAC,MAAM,EAAE,MAAM,EAAE,SAAS,EAAE,MAAM;IAKhD,WAAW,CAAC,WAAW,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,SAAS,CAAC,EAAE,MAAM;CAKzE;AAID,wBAAgB,mBAAmB,CAAC,MAAM,EAAE,eAAe,QAE1D;AAED,wBAAgB,YAAY,IAAI,SAAS,CAKxC"}

package/dist/api-client.js

@@ -0,0 +1,75 @@
+/**
+ * API Client for MCP Server
+ * Makes HTTP requests to the DoxHub API instead of direct database access
+ */
+class ApiClient {
+    config;
+    constructor(config) {
+        this.config = config;
+    }
+    async request(endpoint, options = {}) {
+        const url = `${this.config.baseUrl}${endpoint}`;
+        const response = await fetch(url, {
+            ...options,
+            headers: {
+                'Content-Type': 'application/json',
+                'Authorization': `Bearer ${this.config.accessToken}`,
+                ...options.headers,
+            },
+        });
+        if (!response.ok) {
+            const error = await response.json().catch(() => ({ error: response.statusText }));
+            throw new Error(error.error || `API request failed: ${response.statusText}`);
+        }
+        const data = await response.json();
+        return data.data;
+    }
+    // Workspace endpoints
+    async getWorkspaces() {
+        return this.request('/workspaces');
+    }
+    async getWorkspace(workspaceId) {
+        return this.request(`/workspaces/${workspaceId}`);
+    }
+    // Project endpoints
+    async getProjects(workspaceId) {
+        return this.request(`/workspaces/${workspaceId}/projects`);
+    }
+    async getProject(_workspaceId, projectId) {
+        return this.request(`/projects/${projectId}`);
+    }
+    // File endpoints
+    async getFiles(projectId) {
+        return this.request(`/projects/${projectId}/files`);
+    }
+    async getFile(fileId) {
+        return this.request(`/files/${fileId}`);
+    }
+    async getFileContent(fileId) {
+        return this.request(`/files/${fileId}/content`);
+    }
+    async getFileVersions(fileId) {
+        return this.request(`/files/${fileId}/versions`);
+    }
+    async getFileVersion(fileId, versionId) {
+        return this.request(`/files/${fileId}/versions/${versionId}`);
+    }
+    // Search endpoint
+    async searchFiles(workspaceId, query, projectId) {
+        const params = new URLSearchParams({ query });
+        if (projectId)
+            params.append('projectId', projectId);
+        return this.request(`/workspaces/${workspaceId}/search?${params}`);
+    }
+}
+let apiClientInstance = null;
+export function initializeApiClient(config) {
+    apiClientInstance = new ApiClient(config);
+}
+export function getApiClient() {
+    if (!apiClientInstance) {
+        throw new Error('API client not initialized. Call initializeApiClient() first.');
+    }
+    return apiClientInstance;
+}
+//# sourceMappingURL=api-client.js.map

package/dist/api-client.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"api-client.js","sourceRoot":"","sources":["../src/api-client.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAOH,MAAM,SAAS;IACL,MAAM,CAAkB;IAEhC,YAAY,MAAuB;QACjC,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC;IACvB,CAAC;IAEO,KAAK,CAAC,OAAO,CAAI,QAAgB,EAAE,UAAuB,EAAE;QAClE,MAAM,GAAG,GAAG,GAAG,IAAI,CAAC,MAAM,CAAC,OAAO,GAAG,QAAQ,EAAE,CAAC;QAEhD,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,EAAE;YAChC,GAAG,OAAO;YACV,OAAO,EAAE;gBACP,cAAc,EAAE,kBAAkB;gBAClC,eAAe,EAAE,UAAU,IAAI,CAAC,MAAM,CAAC,WAAW,EAAE;gBACpD,GAAG,OAAO,CAAC,OAAO;aACnB;SACF,CAAC,CAAC;QAEH,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;YACjB,MAAM,KAAK,GAAQ,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC,CAAC,EAAE,KAAK,EAAE,QAAQ,CAAC,UAAU,EAAE,CAAC,CAAC,CAAC;YACvF,MAAM,IAAI,KAAK,CAAC,KAAK,CAAC,KAAK,IAAI,uBAAuB,QAAQ,CAAC,UAAU,EAAE,CAAC,CAAC;QAC/E,CAAC;QAED,MAAM,IAAI,GAAQ,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;QACxC,OAAO,IAAI,CAAC,IAAS,CAAC;IACxB,CAAC;IAED,sBAAsB;IACtB,KAAK,CAAC,aAAa;QACjB,OAAO,IAAI,CAAC,OAAO,CAAQ,aAAa,CAAC,CAAC;IAC5C,CAAC;IAED,KAAK,CAAC,YAAY,CAAC,WAAmB;QACpC,OAAO,IAAI,CAAC,OAAO,CAAM,eAAe,WAAW,EAAE,CAAC,CAAC;IACzD,CAAC;IAED,oBAAoB;IACpB,KAAK,CAAC,WAAW,CAAC,WAAmB;QACnC,OAAO,IAAI,CAAC,OAAO,CAAQ,eAAe,WAAW,WAAW,CAAC,CAAC;IACpE,CAAC;IAED,KAAK,CAAC,UAAU,CAAC,YAAoB,EAAE,SAAiB;QACtD,OAAO,IAAI,CAAC,OAAO,CAAM,aAAa,SAAS,EAAE,CAAC,CAAC;IACrD,CAAC;IAED,iBAAiB;IACjB,KAAK,CAAC,QAAQ,CAAC,SAAiB;QAC9B,OAAO,IAAI,CAAC,OAAO,CAAQ,aAAa,SAAS,QAAQ,CAAC,CAAC;IAC7D,CAAC;IAED,KAAK,CAAC,OAAO,CAAC,MAAc;QAC1B,OAAO,IAAI,CAAC,OAAO,CAAM,UAAU,MAAM,EAAE,CAAC,CAAC;IAC/C,CAAC;IAED,KAAK,CAAC,cAAc,CAAC,MAAc;QACjC,OAAO,IAAI,CAAC,OAAO,CAAM,UAAU,MAAM,UAAU,CAAC,CAAC;IACvD,CAAC;IAED,KAAK,CAAC,eAAe,CAAC,MAAc;QAClC,OAAO,IAAI,CAAC,OAAO,CAAQ,UAAU,MAAM,WAAW,CAAC,CAAC;IAC1D,CAAC;IAED,KAAK,CAAC,cAAc,CAAC,MAAc,EAAE,SAAiB;QACpD,OAAO,IAAI,CAAC,OAAO,CAAM,UAAU,MAAM,aAAa,SAAS,EAAE,CAAC,CAAC;IACrE,CAAC;IAED,kBAAkB;IAClB,KAAK,CAAC,WAAW,CAAC,WAAmB,EAAE,KAAa,EAAE,SAAkB;QACtE,MAAM,MAAM,GAAG,IAAI,eAAe,CAAC,EAAE,KAAK,EAAE,CAAC,CAAC;QAC9C,IAAI,SAAS;YAAE,MAAM,CAAC,MAAM,CAAC,WAAW,EAAE,SAAS,CAAC,CAAC;QACrD,OAAO,IAAI,CAAC,OAAO,CAAQ,eAAe,WAAW,WAAW,MAAM,EAAE,CAAC,CAAC;IAC5E,CAAC;CACF;AAED,IAAI,iBAAiB,GAAqB,IAAI,CAAC;AAE/C,MAAM,UAAU,mBAAmB,CAAC,MAAuB;IACzD,iBAAiB,GAAG,IAAI,SAAS,CAAC,MAAM,CAAC,CAAC;AAC5C,CAAC;AAED,MAAM,UAAU,YAAY;IAC1B,IAAI,CAAC,iBAAiB,EAAE,CAAC;QACvB,MAAM,IAAI,KAAK,CAAC,+DAA+D,CAAC,CAAC;IACnF,CAAC;IACD,OAAO,iBAAiB,CAAC;AAC3B,CAAC"}

package/dist/auth/check-permissions.d.ts

@@ -0,0 +1,16 @@
+import type { AuthContext } from '../types.js';
+export declare function checkWorkspaceAccess(auth: AuthContext, workspaceId: string): Promise<{
+    hasAccess: boolean;
+    role?: string;
+}>;
+export declare function checkProjectAccess(auth: AuthContext, projectId: string): Promise<{
+    hasAccess: boolean;
+    role?: string;
+    workspaceId?: string;
+}>;
+export declare function checkFileAccess(auth: AuthContext, fileId: string): Promise<{
+    hasAccess: boolean;
+    role?: string;
+    workspaceId?: string;
+}>;
+//# sourceMappingURL=check-permissions.d.ts.map

package/dist/auth/check-permissions.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"check-permissions.d.ts","sourceRoot":"","sources":["../../src/auth/check-permissions.ts"],"names":[],"mappings":"AASA,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,aAAa,CAAC;AAE/C,wBAAsB,oBAAoB,CACxC,IAAI,EAAE,WAAW,EACjB,WAAW,EAAE,MAAM,GAClB,OAAO,CAAC;IAAE,SAAS,EAAE,OAAO,CAAC;IAAC,IAAI,CAAC,EAAE,MAAM,CAAA;CAAE,CAAC,CAchD;AAED,wBAAsB,kBAAkB,CACtC,IAAI,EAAE,WAAW,EACjB,SAAS,EAAE,MAAM,GAChB,OAAO,CAAC;IAAE,SAAS,EAAE,OAAO,CAAC;IAAC,IAAI,CAAC,EAAE,MAAM,CAAC;IAAC,WAAW,CAAC,EAAE,MAAM,CAAA;CAAE,CAAC,CAyBtE;AAED,wBAAsB,eAAe,CACnC,IAAI,EAAE,WAAW,EACjB,MAAM,EAAE,MAAM,GACb,OAAO,CAAC;IAAE,SAAS,EAAE,OAAO,CAAC;IAAC,IAAI,CAAC,EAAE,MAAM,CAAC;IAAC,WAAW,CAAC,EAAE,MAAM,CAAA;CAAE,CAAC,CAatE"}

package/dist/auth/check-permissions.js

@@ -0,0 +1,43 @@
+import { db, workspaceMembers, projects, files, eq, and, isNotNull, } from '@doxhub/database';
+export async function checkWorkspaceAccess(auth, workspaceId) {
+    const membership = await db.query.workspaceMembers.findFirst({
+        where: and(eq(workspaceMembers.workspaceId, workspaceId), eq(workspaceMembers.userId, auth.userId), isNotNull(workspaceMembers.joinedAt)),
+    });
+    if (!membership) {
+        return { hasAccess: false };
+    }
+    return { hasAccess: true, role: membership.role };
+}
+export async function checkProjectAccess(auth, projectId) {
+    const project = await db.query.projects.findFirst({
+        where: eq(projects.id, projectId),
+    });
+    if (!project || project.deletedAt) {
+        return { hasAccess: false };
+    }
+    const workspaceAccess = await checkWorkspaceAccess(auth, project.workspaceId);
+    if (!workspaceAccess.hasAccess) {
+        return { hasAccess: false };
+    }
+    const result = {
+        hasAccess: true,
+        workspaceId: project.workspaceId,
+    };
+    if (workspaceAccess.role !== undefined) {
+        result.role = workspaceAccess.role;
+    }
+    return result;
+}
+export async function checkFileAccess(auth, fileId) {
+    const file = await db.query.files.findFirst({
+        where: eq(files.id, fileId),
+        with: {
+            project: true,
+        },
+    });
+    if (!file || file.deletedAt) {
+        return { hasAccess: false };
+    }
+    return checkProjectAccess(auth, file.projectId);
+}
+//# sourceMappingURL=check-permissions.js.map

package/dist/auth/check-permissions.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"check-permissions.js","sourceRoot":"","sources":["../../src/auth/check-permissions.ts"],"names":[],"mappings":"AAAA,OAAO,EACL,EAAE,EACF,gBAAgB,EAChB,QAAQ,EACR,KAAK,EACL,EAAE,EACF,GAAG,EACH,SAAS,GACV,MAAM,kBAAkB,CAAC;AAG1B,MAAM,CAAC,KAAK,UAAU,oBAAoB,CACxC,IAAiB,EACjB,WAAmB;IAEnB,MAAM,UAAU,GAAG,MAAM,EAAE,CAAC,KAAK,CAAC,gBAAgB,CAAC,SAAS,CAAC;QAC3D,KAAK,EAAE,GAAG,CACR,EAAE,CAAC,gBAAgB,CAAC,WAAW,EAAE,WAAW,CAAC,EAC7C,EAAE,CAAC,gBAAgB,CAAC,MAAM,EAAE,IAAI,CAAC,MAAM,CAAC,EACxC,SAAS,CAAC,gBAAgB,CAAC,QAAQ,CAAC,CACrC;KACF,CAAC,CAAC;IAEH,IAAI,CAAC,UAAU,EAAE,CAAC;QAChB,OAAO,EAAE,SAAS,EAAE,KAAK,EAAE,CAAC;IAC9B,CAAC;IAED,OAAO,EAAE,SAAS,EAAE,IAAI,EAAE,IAAI,EAAE,UAAU,CAAC,IAAI,EAAE,CAAC;AACpD,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,kBAAkB,CACtC,IAAiB,EACjB,SAAiB;IAEjB,MAAM,OAAO,GAAG,MAAM,EAAE,CAAC,KAAK,CAAC,QAAQ,CAAC,SAAS,CAAC;QAChD,KAAK,EAAE,EAAE,CAAC,QAAQ,CAAC,EAAE,EAAE,SAAS,CAAC;KAClC,CAAC,CAAC;IAEH,IAAI,CAAC,OAAO,IAAI,OAAO,CAAC,SAAS,EAAE,CAAC;QAClC,OAAO,EAAE,SAAS,EAAE,KAAK,EAAE,CAAC;IAC9B,CAAC;IAED,MAAM,eAAe,GAAG,MAAM,oBAAoB,CAAC,IAAI,EAAE,OAAO,CAAC,WAAW,CAAC,CAAC;IAE9E,IAAI,CAAC,eAAe,CAAC,SAAS,EAAE,CAAC;QAC/B,OAAO,EAAE,SAAS,EAAE,KAAK,EAAE,CAAC;IAC9B,CAAC;IAED,MAAM,MAAM,GAAgE;QAC1E,SAAS,EAAE,IAAI;QACf,WAAW,EAAE,OAAO,CAAC,WAAW;KACjC,CAAC;IAEF,IAAI,eAAe,CAAC,IAAI,KAAK,SAAS,EAAE,CAAC;QACvC,MAAM,CAAC,IAAI,GAAG,eAAe,CAAC,IAAI,CAAC;IACrC,CAAC;IAED,OAAO,MAAM,CAAC;AAChB,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,eAAe,CACnC,IAAiB,EACjB,MAAc;IAEd,MAAM,IAAI,GAAG,MAAM,EAAE,CAAC,KAAK,CAAC,KAAK,CAAC,SAAS,CAAC;QAC1C,KAAK,EAAE,EAAE,CAAC,KAAK,CAAC,EAAE,EAAE,MAAM,CAAC;QAC3B,IAAI,EAAE;YACJ,OAAO,EAAE,IAAI;SACd;KACF,CAAC,CAAC;IAEH,IAAI,CAAC,IAAI,IAAI,IAAI,CAAC,SAAS,EAAE,CAAC;QAC5B,OAAO,EAAE,SAAS,EAAE,KAAK,EAAE,CAAC;IAC9B,CAAC;IAED,OAAO,kBAAkB,CAAC,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,CAAC;AAClD,CAAC"}

package/dist/auth/get-user-workspaces.d.ts

@@ -0,0 +1,3 @@
+import type { AuthContext, UserWorkspace } from '../types.js';
+export declare function getUserWorkspaces(auth: AuthContext): Promise<UserWorkspace[]>;
+//# sourceMappingURL=get-user-workspaces.d.ts.map

package/dist/auth/get-user-workspaces.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"get-user-workspaces.d.ts","sourceRoot":"","sources":["../../src/auth/get-user-workspaces.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,WAAW,EAAE,aAAa,EAAE,MAAM,aAAa,CAAC;AAE9D,wBAAsB,iBAAiB,CACrC,IAAI,EAAE,WAAW,GAChB,OAAO,CAAC,aAAa,EAAE,CAAC,CAc1B"}

package/dist/auth/get-user-workspaces.js

@@ -0,0 +1,16 @@
+import { db, workspaceMembers, eq } from '@doxhub/database';
+export async function getUserWorkspaces(auth) {
+    const memberships = await db.query.workspaceMembers.findMany({
+        where: eq(workspaceMembers.userId, auth.userId),
+        with: {
+            workspace: true,
+        },
+    });
+    return memberships
+        .filter((m) => !m.workspace.deletedAt && m.joinedAt)
+        .map((m) => ({
+        workspaceId: m.workspace.id,
+        role: m.role,
+    }));
+}
+//# sourceMappingURL=get-user-workspaces.js.map

package/dist/auth/get-user-workspaces.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"get-user-workspaces.js","sourceRoot":"","sources":["../../src/auth/get-user-workspaces.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,EAAE,EAAE,gBAAgB,EAAE,EAAE,EAAE,MAAM,kBAAkB,CAAC;AAG5D,MAAM,CAAC,KAAK,UAAU,iBAAiB,CACrC,IAAiB;IAEjB,MAAM,WAAW,GAAG,MAAM,EAAE,CAAC,KAAK,CAAC,gBAAgB,CAAC,QAAQ,CAAC;QAC3D,KAAK,EAAE,EAAE,CAAC,gBAAgB,CAAC,MAAM,EAAE,IAAI,CAAC,MAAM,CAAC;QAC/C,IAAI,EAAE;YACJ,SAAS,EAAE,IAAI;SAChB;KACF,CAAC,CAAC;IAEH,OAAO,WAAW;SACf,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC,SAAS,IAAI,CAAC,CAAC,QAAQ,CAAC;SACnD,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;QACX,WAAW,EAAE,CAAC,CAAC,SAAS,CAAC,EAAE;QAC3B,IAAI,EAAE,CAAC,CAAC,IAA+C;KACxD,CAAC,CAAC,CAAC;AACR,CAAC"}

package/dist/auth/mcp-token-verify.d.ts

@@ -0,0 +1,10 @@
+import type { AuthContext } from '../types.js';
+/**
+ * Validate an MCP token via API call
+ */
+export declare function validateMcpToken(token: string, apiUrl: string): Promise<AuthContext>;
+/**
+ * Check if a token is an MCP token (starts with "mcp_")
+ */
+export declare function isMcpToken(token: string): boolean;
+//# sourceMappingURL=mcp-token-verify.d.ts.map

package/dist/auth/mcp-token-verify.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"mcp-token-verify.d.ts","sourceRoot":"","sources":["../../src/auth/mcp-token-verify.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,aAAa,CAAC;AAE/C;;GAEG;AACH,wBAAsB,gBAAgB,CAAC,KAAK,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,WAAW,CAAC,CAmC1F;AAED;;GAEG;AACH,wBAAgB,UAAU,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAEjD"}

package/dist/auth/mcp-token-verify.js

@@ -0,0 +1,43 @@
+/**
+ * Validate an MCP token via API call
+ */
+export async function validateMcpToken(token, apiUrl) {
+    try {
+        const response = await fetch(`${apiUrl}/mcp/validate`, {
+            method: 'POST',
+            headers: {
+                'Authorization': `Bearer ${token}`,
+                'Content-Type': 'application/json',
+            },
+        });
+        if (!response.ok) {
+            const errorData = await response.json().catch(() => ({}));
+            throw new Error(errorData.error || 'Invalid MCP token');
+        }
+        const data = await response.json();
+        if (!data.success || !data.data) {
+            throw new Error('Invalid MCP token response');
+        }
+        // Return auth context
+        // Note: We don't have email from MCP token validation, so we'll need to fetch user info
+        return {
+            userId: data.data.userId,
+            email: '', // Will be filled by user lookup if needed
+            workspaceId: data.data.workspaceId,
+            sessionId: data.data.sessionId,
+        };
+    }
+    catch (error) {
+        if (error instanceof Error) {
+            throw error;
+        }
+        throw new Error('Failed to validate MCP token');
+    }
+}
+/**
+ * Check if a token is an MCP token (starts with "mcp_")
+ */
+export function isMcpToken(token) {
+    return token.startsWith('mcp_');
+}
+//# sourceMappingURL=mcp-token-verify.js.map

package/dist/auth/mcp-token-verify.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"mcp-token-verify.js","sourceRoot":"","sources":["../../src/auth/mcp-token-verify.ts"],"names":[],"mappings":"AAEA;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,gBAAgB,CAAC,KAAa,EAAE,MAAc;IAClE,IAAI,CAAC;QACH,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,MAAM,eAAe,EAAE;YACrD,MAAM,EAAE,MAAM;YACd,OAAO,EAAE;gBACP,eAAe,EAAE,UAAU,KAAK,EAAE;gBAClC,cAAc,EAAE,kBAAkB;aACnC;SACF,CAAC,CAAC;QAEH,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;YACjB,MAAM,SAAS,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC,CAAC,EAAE,CAAC,CAAQ,CAAC;YACjE,MAAM,IAAI,KAAK,CAAC,SAAS,CAAC,KAAK,IAAI,mBAAmB,CAAC,CAAC;QAC1D,CAAC;QAED,MAAM,IAAI,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAS,CAAC;QAE1C,IAAI,CAAC,IAAI,CAAC,OAAO,IAAI,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC;YAChC,MAAM,IAAI,KAAK,CAAC,4BAA4B,CAAC,CAAC;QAChD,CAAC;QAED,sBAAsB;QACtB,wFAAwF;QACxF,OAAO;YACL,MAAM,EAAE,IAAI,CAAC,IAAI,CAAC,MAAM;YACxB,KAAK,EAAE,EAAE,EAAE,0CAA0C;YACrD,WAAW,EAAE,IAAI,CAAC,IAAI,CAAC,WAAW;YAClC,SAAS,EAAE,IAAI,CAAC,IAAI,CAAC,SAAS;SAC/B,CAAC;IACJ,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,IAAI,KAAK,YAAY,KAAK,EAAE,CAAC;YAC3B,MAAM,KAAK,CAAC;QACd,CAAC;QACD,MAAM,IAAI,KAAK,CAAC,8BAA8B,CAAC,CAAC;IAClD,CAAC;AACH,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,UAAU,CAAC,KAAa;IACtC,OAAO,KAAK,CAAC,UAAU,CAAC,MAAM,CAAC,CAAC;AAClC,CAAC"}

package/dist/auth/verify-token.d.ts

@@ -0,0 +1,4 @@
+import type { AuthContext } from '../types.js';
+export declare function verifyAccessToken(token: string): AuthContext;
+export declare function getAuthContext(): Promise<AuthContext>;
+//# sourceMappingURL=verify-token.d.ts.map

package/dist/auth/verify-token.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"verify-token.d.ts","sourceRoot":"","sources":["../../src/auth/verify-token.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAc,WAAW,EAAE,MAAM,aAAa,CAAC;AAK3D,wBAAgB,iBAAiB,CAAC,KAAK,EAAE,MAAM,GAAG,WAAW,CAoB5D;AAED,wBAAsB,cAAc,IAAI,OAAO,CAAC,WAAW,CAAC,CA2C3D"}

package/dist/auth/verify-token.js

@@ -0,0 +1,61 @@
+import jwt from 'jsonwebtoken';
+import { initializeApiClient } from '../api-client.js';
+import { isMcpToken, validateMcpToken } from './mcp-token-verify.js';
+import { getCurrentProfile } from '../cli/credentials.js';
+export function verifyAccessToken(token) {
+    const jwtSecret = process.env.JWT_SECRET;
+    if (!jwtSecret) {
+        throw new Error('JWT_SECRET not configured');
+    }
+    try {
+        const decoded = jwt.verify(token, jwtSecret);
+        return {
+            userId: decoded.userId,
+            email: decoded.email,
+        };
+    }
+    catch (error) {
+        if (error instanceof jwt.TokenExpiredError) {
+            throw new Error('Access token expired. Please refresh your token.');
+        }
+        throw new Error('Invalid access token');
+    }
+}
+export async function getAuthContext() {
+    let token;
+    let apiUrl = process.env.DOXHUB_API_URL || 'http://localhost:3001/api/v1';
+    // Try to read from credentials file first
+    try {
+        const profile = getCurrentProfile();
+        if (profile) {
+            token = profile.accessToken;
+            apiUrl = profile.apiUrl;
+            console.error('Using credentials from profile');
+        }
+    }
+    catch (error) {
+        // No credentials file, continue to check environment variables
+    }
+    // Fall back to environment variables
+    if (!token) {
+        token = process.env.DOXHUB_ACCESS_TOKEN;
+        apiUrl = process.env.DOXHUB_API_URL || apiUrl;
+    }
+    if (!token) {
+        throw new Error('No authentication configured. Run "npx @doxhub/mcp-server setup" or set DOXHUB_ACCESS_TOKEN.');
+    }
+    // Initialize API client with token and URL
+    initializeApiClient({
+        baseUrl: apiUrl,
+        accessToken: token,
+    });
+    // Check if token is MCP token (starts with "mcp_")
+    if (isMcpToken(token)) {
+        console.error('Validating MCP token...');
+        return await validateMcpToken(token, apiUrl);
+    }
+    // Legacy JWT token
+    console.error('Using JWT token (legacy)');
+    return verifyAccessToken(token);
+}
+//# sourceMappingURL=verify-token.js.map

package/dist/auth/verify-token.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"verify-token.js","sourceRoot":"","sources":["../../src/auth/verify-token.ts"],"names":[],"mappings":"AAAA,OAAO,GAAG,MAAM,cAAc,CAAC;AAE/B,OAAO,EAAE,mBAAmB,EAAE,MAAM,kBAAkB,CAAC;AACvD,OAAO,EAAE,UAAU,EAAE,gBAAgB,EAAE,MAAM,uBAAuB,CAAC;AACrE,OAAO,EAAE,iBAAiB,EAAE,MAAM,uBAAuB,CAAC;AAE1D,MAAM,UAAU,iBAAiB,CAAC,KAAa;IAC7C,MAAM,SAAS,GAAG,OAAO,CAAC,GAAG,CAAC,UAAU,CAAC;IAEzC,IAAI,CAAC,SAAS,EAAE,CAAC;QACf,MAAM,IAAI,KAAK,CAAC,2BAA2B,CAAC,CAAC;IAC/C,CAAC;IAED,IAAI,CAAC;QACH,MAAM,OAAO,GAAG,GAAG,CAAC,MAAM,CAAC,KAAK,EAAE,SAAS,CAAe,CAAC;QAE3D,OAAO;YACL,MAAM,EAAE,OAAO,CAAC,MAAM;YACtB,KAAK,EAAE,OAAO,CAAC,KAAK;SACrB,CAAC;IACJ,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,IAAI,KAAK,YAAY,GAAG,CAAC,iBAAiB,EAAE,CAAC;YAC3C,MAAM,IAAI,KAAK,CAAC,kDAAkD,CAAC,CAAC;QACtE,CAAC;QACD,MAAM,IAAI,KAAK,CAAC,sBAAsB,CAAC,CAAC;IAC1C,CAAC;AACH,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,cAAc;IAClC,IAAI,KAAyB,CAAC;IAC9B,IAAI,MAAM,GAAW,OAAO,CAAC,GAAG,CAAC,cAAc,IAAI,8BAA8B,CAAC;IAElF,0CAA0C;IAC1C,IAAI,CAAC;QACH,MAAM,OAAO,GAAG,iBAAiB,EAAE,CAAC;QACpC,IAAI,OAAO,EAAE,CAAC;YACZ,KAAK,GAAG,OAAO,CAAC,WAAW,CAAC;YAC5B,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;YACxB,OAAO,CAAC,KAAK,CAAC,gCAAgC,CAAC,CAAC;QAClD,CAAC;IACH,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,+DAA+D;IACjE,CAAC;IAED,qCAAqC;IACrC,IAAI,CAAC,KAAK,EAAE,CAAC;QACX,KAAK,GAAG,OAAO,CAAC,GAAG,CAAC,mBAAmB,CAAC;QACxC,MAAM,GAAG,OAAO,CAAC,GAAG,CAAC,cAAc,IAAI,MAAM,CAAC;IAChD,CAAC;IAED,IAAI,CAAC,KAAK,EAAE,CAAC;QACX,MAAM,IAAI,KAAK,CACb,8FAA8F,CAC/F,CAAC;IACJ,CAAC;IAED,2CAA2C;IAC3C,mBAAmB,CAAC;QAClB,OAAO,EAAE,MAAM;QACf,WAAW,EAAE,KAAK;KACnB,CAAC,CAAC;IAEH,mDAAmD;IACnD,IAAI,UAAU,CAAC,KAAK,CAAC,EAAE,CAAC;QACtB,OAAO,CAAC,KAAK,CAAC,yBAAyB,CAAC,CAAC;QACzC,OAAO,MAAM,gBAAgB,CAAC,KAAK,EAAE,MAAM,CAAC,CAAC;IAC/C,CAAC;IAED,mBAAmB;IACnB,OAAO,CAAC,KAAK,CAAC,0BAA0B,CAAC,CAAC;IAC1C,OAAO,iBAAiB,CAAC,KAAK,CAAC,CAAC;AAClC,CAAC"}

package/dist/cli/config-manager.d.ts

@@ -0,0 +1,29 @@
+/**
+ * Get Claude Desktop config file path based on OS
+ */
+export declare function getClaudeConfigPath(): string | null;
+/**
+ * Check if Claude Desktop config exists
+ */
+export declare function claudeConfigExists(): boolean;
+/**
+ * Read Claude Desktop config
+ */
+export declare function readClaudeConfig(): any;
+/**
+ * Write Claude Desktop config
+ */
+export declare function writeClaudeConfig(config: any): void;
+/**
+ * Add or update DoxHub MCP server in Claude config
+ */
+export declare function updateClaudeConfigForDoxHub(profileName?: string): void;
+/**
+ * Remove DoxHub MCP server from Claude config
+ */
+export declare function removeFromClaudeConfig(profileName?: string): void;
+/**
+ * Check if DoxHub is configured in Claude Desktop
+ */
+export declare function isDoxHubConfigured(profileName?: string): boolean;
+//# sourceMappingURL=config-manager.d.ts.map

package/dist/cli/config-manager.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"config-manager.d.ts","sourceRoot":"","sources":["../../src/cli/config-manager.ts"],"names":[],"mappings":"AAIA;;GAEG;AACH,wBAAgB,mBAAmB,IAAI,MAAM,GAAG,IAAI,CAcnD;AAED;;GAEG;AACH,wBAAgB,kBAAkB,IAAI,OAAO,CAG5C;AAED;;GAEG;AACH,wBAAgB,gBAAgB,IAAI,GAAG,CAgBtC;AAED;;GAEG;AACH,wBAAgB,iBAAiB,CAAC,MAAM,EAAE,GAAG,GAAG,IAAI,CAgBnD;AAED;;GAEG;AACH,wBAAgB,2BAA2B,CAAC,WAAW,GAAE,MAAkB,GAAG,IAAI,CAwBjF;AAED;;GAEG;AACH,wBAAgB,sBAAsB,CAAC,WAAW,GAAE,MAAkB,GAAG,IAAI,CAW5E;AAED;;GAEG;AACH,wBAAgB,kBAAkB,CAAC,WAAW,GAAE,MAAkB,GAAG,OAAO,CAQ3E"}