@efficy/tribecrm-mcp-server 0.4.2 → 0.5.0

package/README.md

@@ -42,12 +42,45 @@ The server uses **OAuth2 Client Credentials flow** for service account authentic
 TRIBECRM_AUTH=app  # Default - can be omitted
 ```
 
-### User Authentication (Coming Soon)
-**OAuth2 Authorization Code flow** for user-specific authentication is planned for future implementation. This will allow the MCP server to act on behalf of a specific user rather than a service account.
+### User Authentication ✨ NEW
+**OAuth2 Authorization Code flow** for user-specific authentication. This allows the MCP server to act on behalf of a specific user rather than a service account.
 
 **Use case**: Personal AI assistants, user-specific operations
 
-**Status**: Placeholder only - not yet implemented. If configured, the server will return an error message.
+**✨ Recommended: Authenticate directly from Claude**
+
+The easiest way to authenticate is directly from your conversation with Claude:
+
+1. Configure your MCP client with `TRIBECRM_AUTH=user` (see Configuration section)
+2. Restart Claude Desktop
+3. Ask Claude: **"Can you authenticate with TribeCRM?"**
+4. Claude will use the `tribecrm_authenticate` tool to generate an authentication link
+5. Click the link, log in to TribeCRM, and accept the consent
+6. Tokens are saved automatically - no restart needed!
+
+**Alternative: CLI Authentication**
+
+For testing, debugging, or pre-authentication, you can use the CLI command:
+
+```bash
+npx @efficy/tribecrm-mcp-server authenticate
+# or if installed locally:
+npm run authenticate
+```
+
+Your browser will open for TribeCRM login, and tokens will be saved to `~/.tribecrm/tokens.json`
+
+**Features**:
+- ✨ **No terminal needed** - authenticate directly from Claude
+- 🔄 Automatic token refresh (tokens valid for 24 hours)
+- 💾 Secure local token storage (`~/.tribecrm/tokens.json`)
+- ⚡ No restart required after authentication
+- ✅ Standard OAuth2 Authorization Code flow
+- 🔐 User-specific access rights respected
+
+**Requirements**:
+- Both `TRIBECRM_CLIENT_ID` and `TRIBECRM_CLIENT_SECRET` are required for the authentication flow
+- Redirect URI must be pre-registered in your OAuth client configuration (default: `http://localhost:3001/callback`)
 
 ## 📋 Prerequisites
 
@@ -91,7 +124,6 @@ Add to your Claude Desktop config file:
         "TRIBECRM_AUTH_URL": "https://auth.tribecrm.nl",
         "TRIBECRM_CLIENT_ID": "your_client_id",
         "TRIBECRM_CLIENT_SECRET": "your_client_secret",
-        "TRIBECRM_ORGANIZATION_ID": "your_org_id",
         "TRIBECRM_MODE": "read-only",
         "TRIBECRM_AUTH": "app"
       }
@@ -100,7 +132,9 @@ Add to your Claude Desktop config file:
 }
 ```
 
-**Note**: Set `TRIBECRM_MODE` to `read-write` if you need to create, update, or delete entities.
+**Note**:
+- Set `TRIBECRM_MODE` to `read-write` if you need to create, update, or delete entities.
+- For user authentication, set `TRIBECRM_AUTH` to `user` and optionally add `TRIBECRM_REDIRECT_URI` (defaults to `http://localhost:3000/callback`).
 
 #### Using Local Installation
 
@@ -115,7 +149,6 @@ Add to your Claude Desktop config file:
         "TRIBECRM_AUTH_URL": "https://auth.tribecrm.nl",
         "TRIBECRM_CLIENT_ID": "your_client_id",
         "TRIBECRM_CLIENT_SECRET": "your_client_secret",
-        "TRIBECRM_ORGANIZATION_ID": "your_org_id",
         "TRIBECRM_MODE": "read-only",
         "TRIBECRM_AUTH": "app"
       }
@@ -137,17 +170,61 @@ Add to your Claude Desktop config file:
 - `TRIBECRM_API_URL` (required): Your TribeCRM API URL (e.g., https://api.tribecrm.nl or https://api-staging.tribecrm.nl)
 - `TRIBECRM_AUTH_URL` (required): Your TribeCRM OAuth2 authentication URL (e.g., https://auth.tribecrm.nl or https://auth-staging.tribecrm.nl)
 - `TRIBECRM_CLIENT_ID` (required): OAuth2 Client ID
-- `TRIBECRM_CLIENT_SECRET` (required): OAuth2 Client Secret
-- `TRIBECRM_ORGANIZATION_ID` (optional): Organization UUID for multi-tenant setups
+- `TRIBECRM_CLIENT_SECRET` (required for both auth methods): OAuth2 Client Secret
+  - Required when using `TRIBECRM_AUTH=app` (default) - for Client Credentials flow
+  - Required when using `TRIBECRM_AUTH=user` - for Authorization Code token exchange
 - `TRIBECRM_MODE` (optional): Server operation mode - `read-only` (default) or `read-write`
   - `read-only`: Only allows queries and data retrieval (get, query operations). Write tools are hidden.
   - `read-write`: Allows full access including create, update, and delete operations.
 - `TRIBECRM_AUTH` (optional): Authentication method - `app` (default) or `user`
   - `app`: OAuth2 Client Credentials flow for service account authentication
-  - `user`: OAuth2 Authorization Code flow (not yet implemented - reserved for future use)
+  - `user`: OAuth2 Authorization Code flow for user-specific authentication
+- `TRIBECRM_REDIRECT_URI` (optional): Redirect URI for user authentication (only needed when `TRIBECRM_AUTH=user`)
+  - Default: `http://localhost:3001/callback`
+  - Must match the redirect URI configured in your TribeCRM OAuth application
 
 ## 📚 Available Tools
 
+### Authentication Operations
+
+#### `tribecrm_authenticate`
+Start user authentication flow (only available when `TRIBECRM_AUTH=user`)
+
+**Use case**: When user authentication is required but no valid tokens are found, this tool generates an authentication URL and starts a background callback server to handle the OAuth flow.
+
+**Parameters:** None
+
+**Returns**: Authentication URL and step-by-step instructions
+
+**Features**:
+- ✨ Authenticate directly from Claude without using the terminal
+- 🔄 Background callback server automatically handles OAuth redirects
+- 💾 Tokens saved automatically to `~/.tribecrm/tokens.json`
+- ⚡ No restart required - tokens work immediately after authentication
+
+**Example workflow**:
+1. User asks: "Can you authenticate with TribeCRM?"
+2. Claude calls `tribecrm_authenticate` tool
+3. User clicks the provided authentication link
+4. User logs in to TribeCRM and accepts consent
+5. Tokens are saved automatically
+6. User can immediately use TribeCRM tools
+
+**Error messages**: If authentication is needed, other TribeCRM tools will display a helpful error message suggesting to use this tool or run `npm run authenticate` manually.
+
+#### `tribecrm_get_current_employee`
+Get information about the currently authenticated employee
+
+**Parameters:**
+- `expand` (string, optional): OData $expand parameter (e.g., "Person")
+
+**Example:**
+```json
+{
+  "expand": "Person"
+}
+```
+
 ### Entity Operations
 
 #### `tribecrm_get_entity`

package/dist/auth/callback-server.d.ts

@@ -0,0 +1,41 @@
+export interface CallbackResult {
+    code: string;
+    state: string;
+    error?: string;
+}
+/**
+ * Temporary HTTP server to handle OAuth callback
+ */
+export declare class CallbackServer {
+    private server;
+    private port;
+    constructor(port?: number);
+    /**
+     * Start the callback server and wait for OAuth redirect
+     * @param expectedState Expected state parameter for CSRF validation
+     * @param timeout Timeout in milliseconds (default: 5 minutes)
+     * @returns Promise that resolves with authorization code
+     */
+    waitForCallback(expectedState: string, timeout?: number): Promise<CallbackResult>;
+    /**
+     * Stop the callback server
+     */
+    stop(): void;
+    /**
+     * Get port number
+     */
+    getPort(): number;
+    /**
+     * Generate success HTML page
+     */
+    private getSuccessPage;
+    /**
+     * Generate error HTML page
+     */
+    private getErrorPage;
+    /**
+     * Escape HTML to prevent XSS
+     */
+    private escapeHtml;
+}
+//# sourceMappingURL=callback-server.d.ts.map

package/dist/auth/callback-server.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"callback-server.d.ts","sourceRoot":"","sources":["../../src/auth/callback-server.ts"],"names":[],"mappings":"AAGA,MAAM,WAAW,cAAc;IAC7B,IAAI,EAAE,MAAM,CAAC;IACb,KAAK,EAAE,MAAM,CAAC;IACd,KAAK,CAAC,EAAE,MAAM,CAAC;CAChB;AAED;;GAEG;AACH,qBAAa,cAAc;IACzB,OAAO,CAAC,MAAM,CAA4B;IAC1C,OAAO,CAAC,IAAI,CAAS;gBAET,IAAI,GAAE,MAAa;IAI/B;;;;;OAKG;IACG,eAAe,CACnB,aAAa,EAAE,MAAM,EACrB,OAAO,GAAE,MAAe,GACvB,OAAO,CAAC,cAAc,CAAC;IA4F1B;;OAEG;IACH,IAAI,IAAI,IAAI;IAQZ;;OAEG;IACH,OAAO,IAAI,MAAM;IAIjB;;OAEG;IACH,OAAO,CAAC,cAAc;IAwDtB;;OAEG;IACH,OAAO,CAAC,YAAY;IAgEpB;;OAEG;IACH,OAAO,CAAC,UAAU;CAQnB"}

package/dist/auth/callback-server.js

@@ -0,0 +1,247 @@
+import http from 'http';
+import { URL } from 'url';
+/**
+ * Temporary HTTP server to handle OAuth callback
+ */
+export class CallbackServer {
+    server = null;
+    port;
+    constructor(port = 3000) {
+        this.port = port;
+    }
+    /**
+     * Start the callback server and wait for OAuth redirect
+     * @param expectedState Expected state parameter for CSRF validation
+     * @param timeout Timeout in milliseconds (default: 5 minutes)
+     * @returns Promise that resolves with authorization code
+     */
+    async waitForCallback(expectedState, timeout = 300000) {
+        return new Promise((resolve, reject) => {
+            const timeoutId = setTimeout(() => {
+                this.stop();
+                reject(new Error('OAuth callback timeout - user did not complete authentication'));
+            }, timeout);
+            this.server = http.createServer((req, res) => {
+                try {
+                    const url = new URL(req.url || '', `http://localhost:${this.port}`);
+                    // Only handle callback path
+                    if (url.pathname !== '/callback') {
+                        res.writeHead(404, { 'Content-Type': 'text/html' });
+                        res.end('<html><body><h1>404 Not Found</h1></body></html>');
+                        return;
+                    }
+                    const code = url.searchParams.get('code');
+                    const state = url.searchParams.get('state');
+                    const error = url.searchParams.get('error');
+                    const errorDescription = url.searchParams.get('error_description');
+                    // Handle OAuth errors
+                    if (error) {
+                        const errorMsg = errorDescription || error;
+                        res.writeHead(400, { 'Content-Type': 'text/html' });
+                        res.end(this.getErrorPage(errorMsg));
+                        clearTimeout(timeoutId);
+                        this.stop();
+                        reject(new Error(`OAuth error: ${errorMsg}`));
+                        return;
+                    }
+                    // Validate required parameters
+                    if (!code || !state) {
+                        res.writeHead(400, { 'Content-Type': 'text/html' });
+                        res.end(this.getErrorPage('Missing code or state parameter'));
+                        clearTimeout(timeoutId);
+                        this.stop();
+                        reject(new Error('Invalid callback: missing code or state'));
+                        return;
+                    }
+                    // Validate state (CSRF protection)
+                    if (state !== expectedState) {
+                        res.writeHead(400, { 'Content-Type': 'text/html' });
+                        res.end(this.getErrorPage('Invalid state parameter - possible CSRF attack'));
+                        clearTimeout(timeoutId);
+                        this.stop();
+                        reject(new Error('State validation failed - possible CSRF attack'));
+                        return;
+                    }
+                    // Success!
+                    res.writeHead(200, { 'Content-Type': 'text/html' });
+                    res.end(this.getSuccessPage());
+                    clearTimeout(timeoutId);
+                    this.stop();
+                    resolve({ code, state });
+                }
+                catch (error) {
+                    res.writeHead(500, { 'Content-Type': 'text/html' });
+                    res.end(this.getErrorPage('Internal server error'));
+                    clearTimeout(timeoutId);
+                    this.stop();
+                    reject(error);
+                }
+            });
+            this.server.listen(this.port, 'localhost', () => {
+                console.error(`Callback server listening on http://localhost:${this.port}/callback`);
+            });
+            this.server.on('error', (error) => {
+                clearTimeout(timeoutId);
+                this.stop();
+                if (error.code === 'EADDRINUSE') {
+                    reject(new Error(`Port ${this.port} is already in use. Please close other applications using this port.`));
+                }
+                else {
+                    reject(new Error(`Server error: ${error.message}`));
+                }
+            });
+        });
+    }
+    /**
+     * Stop the callback server
+     */
+    stop() {
+        if (this.server) {
+            this.server.close();
+            this.server = null;
+            console.error('Callback server stopped');
+        }
+    }
+    /**
+     * Get port number
+     */
+    getPort() {
+        return this.port;
+    }
+    /**
+     * Generate success HTML page
+     */
+    getSuccessPage() {
+        return `<!DOCTYPE html>
+<html lang="en">
+<head>
+  <meta charset="UTF-8">
+  <meta name="viewport" content="width=device-width, initial-scale=1.0">
+  <title>Authentication Successful</title>
+  <style>
+    body {
+      font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, Oxygen, Ubuntu, Cantarell, sans-serif;
+      display: flex;
+      justify-content: center;
+      align-items: center;
+      min-height: 100vh;
+      margin: 0;
+      background: linear-gradient(135deg, #667eea 0%, #764ba2 100%);
+    }
+    .container {
+      background: white;
+      padding: 3rem;
+      border-radius: 1rem;
+      box-shadow: 0 20px 60px rgba(0,0,0,0.3);
+      text-align: center;
+      max-width: 500px;
+    }
+    .icon {
+      font-size: 4rem;
+      margin-bottom: 1rem;
+    }
+    h1 {
+      color: #2d3748;
+      margin-bottom: 1rem;
+    }
+    p {
+      color: #4a5568;
+      line-height: 1.6;
+    }
+    .success {
+      color: #48bb78;
+    }
+  </style>
+</head>
+<body>
+  <div class="container">
+    <div class="icon success">✓</div>
+    <h1>Authentication Successful!</h1>
+    <p>You have successfully authenticated with TribeCRM.</p>
+    <p><strong>You can now close this window and return to your terminal.</strong></p>
+    <p style="font-size: 0.875rem; color: #718096; margin-top: 2rem;">
+      Your credentials have been securely stored locally.
+    </p>
+  </div>
+</body>
+</html>`;
+    }
+    /**
+     * Generate error HTML page
+     */
+    getErrorPage(errorMessage) {
+        return `<!DOCTYPE html>
+<html lang="en">
+<head>
+  <meta charset="UTF-8">
+  <meta name="viewport" content="width=device-width, initial-scale=1.0">
+  <title>Authentication Failed</title>
+  <style>
+    body {
+      font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, Oxygen, Ubuntu, Cantarell, sans-serif;
+      display: flex;
+      justify-content: center;
+      align-items: center;
+      min-height: 100vh;
+      margin: 0;
+      background: linear-gradient(135deg, #f093fb 0%, #f5576c 100%);
+    }
+    .container {
+      background: white;
+      padding: 3rem;
+      border-radius: 1rem;
+      box-shadow: 0 20px 60px rgba(0,0,0,0.3);
+      text-align: center;
+      max-width: 500px;
+    }
+    .icon {
+      font-size: 4rem;
+      margin-bottom: 1rem;
+    }
+    h1 {
+      color: #2d3748;
+      margin-bottom: 1rem;
+    }
+    p {
+      color: #4a5568;
+      line-height: 1.6;
+    }
+    .error {
+      color: #f56565;
+    }
+    .error-detail {
+      background: #fff5f5;
+      border: 1px solid #fc8181;
+      border-radius: 0.5rem;
+      padding: 1rem;
+      margin-top: 1rem;
+      font-family: monospace;
+      font-size: 0.875rem;
+      color: #c53030;
+    }
+  </style>
+</head>
+<body>
+  <div class="container">
+    <div class="icon error">✗</div>
+    <h1>Authentication Failed</h1>
+    <p>There was an error during authentication.</p>
+    <div class="error-detail">${this.escapeHtml(errorMessage)}</div>
+    <p style="margin-top: 2rem;">Please close this window and try again in your terminal.</p>
+  </div>
+</body>
+</html>`;
+    }
+    /**
+     * Escape HTML to prevent XSS
+     */
+    escapeHtml(unsafe) {
+        return unsafe
+            .replace(/&/g, '&amp;')
+            .replace(/</g, '&lt;')
+            .replace(/>/g, '&gt;')
+            .replace(/"/g, '&quot;')
+            .replace(/'/g, '&#039;');
+    }
+}
+//# sourceMappingURL=callback-server.js.map

package/dist/auth/callback-server.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"callback-server.js","sourceRoot":"","sources":["../../src/auth/callback-server.ts"],"names":[],"mappings":"AAAA,OAAO,IAAI,MAAM,MAAM,CAAC;AACxB,OAAO,EAAE,GAAG,EAAE,MAAM,KAAK,CAAC;AAQ1B;;GAEG;AACH,MAAM,OAAO,cAAc;IACjB,MAAM,GAAuB,IAAI,CAAC;IAClC,IAAI,CAAS;IAErB,YAAY,OAAe,IAAI;QAC7B,IAAI,CAAC,IAAI,GAAG,IAAI,CAAC;IACnB,CAAC;IAED;;;;;OAKG;IACH,KAAK,CAAC,eAAe,CACnB,aAAqB,EACrB,UAAkB,MAAM;QAExB,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;YACrC,MAAM,SAAS,GAAG,UAAU,CAAC,GAAG,EAAE;gBAChC,IAAI,CAAC,IAAI,EAAE,CAAC;gBACZ,MAAM,CAAC,IAAI,KAAK,CAAC,+DAA+D,CAAC,CAAC,CAAC;YACrF,CAAC,EAAE,OAAO,CAAC,CAAC;YAEZ,IAAI,CAAC,MAAM,GAAG,IAAI,CAAC,YAAY,CAAC,CAAC,GAAG,EAAE,GAAG,EAAE,EAAE;gBAC3C,IAAI,CAAC;oBACH,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,GAAG,CAAC,GAAG,IAAI,EAAE,EAAE,oBAAoB,IAAI,CAAC,IAAI,EAAE,CAAC,CAAC;oBAEpE,4BAA4B;oBAC5B,IAAI,GAAG,CAAC,QAAQ,KAAK,WAAW,EAAE,CAAC;wBACjC,GAAG,CAAC,SAAS,CAAC,GAAG,EAAE,EAAE,cAAc,EAAE,WAAW,EAAE,CAAC,CAAC;wBACpD,GAAG,CAAC,GAAG,CAAC,kDAAkD,CAAC,CAAC;wBAC5D,OAAO;oBACT,CAAC;oBAED,MAAM,IAAI,GAAG,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;oBAC1C,MAAM,KAAK,GAAG,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC;oBAC5C,MAAM,KAAK,GAAG,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC;oBAC5C,MAAM,gBAAgB,GAAG,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,mBAAmB,CAAC,CAAC;oBAEnE,sBAAsB;oBACtB,IAAI,KAAK,EAAE,CAAC;wBACV,MAAM,QAAQ,GAAG,gBAAgB,IAAI,KAAK,CAAC;wBAC3C,GAAG,CAAC,SAAS,CAAC,GAAG,EAAE,EAAE,cAAc,EAAE,WAAW,EAAE,CAAC,CAAC;wBACpD,GAAG,CAAC,GAAG,CAAC,IAAI,CAAC,YAAY,CAAC,QAAQ,CAAC,CAAC,CAAC;wBAErC,YAAY,CAAC,SAAS,CAAC,CAAC;wBACxB,IAAI,CAAC,IAAI,EAAE,CAAC;wBACZ,MAAM,CAAC,IAAI,KAAK,CAAC,gBAAgB,QAAQ,EAAE,CAAC,CAAC,CAAC;wBAC9C,OAAO;oBACT,CAAC;oBAED,+BAA+B;oBAC/B,IAAI,CAAC,IAAI,IAAI,CAAC,KAAK,EAAE,CAAC;wBACpB,GAAG,CAAC,SAAS,CAAC,GAAG,EAAE,EAAE,cAAc,EAAE,WAAW,EAAE,CAAC,CAAC;wBACpD,GAAG,CAAC,GAAG,CAAC,IAAI,CAAC,YAAY,CAAC,iCAAiC,CAAC,CAAC,CAAC;wBAE9D,YAAY,CAAC,SAAS,CAAC,CAAC;wBACxB,IAAI,CAAC,IAAI,EAAE,CAAC;wBACZ,MAAM,CAAC,IAAI,KAAK,CAAC,yCAAyC,CAAC,CAAC,CAAC;wBAC7D,OAAO;oBACT,CAAC;oBAED,mCAAmC;oBACnC,IAAI,KAAK,KAAK,aAAa,EAAE,CAAC;wBAC5B,GAAG,CAAC,SAAS,CAAC,GAAG,EAAE,EAAE,cAAc,EAAE,WAAW,EAAE,CAAC,CAAC;wBACpD,GAAG,CAAC,GAAG,CAAC,IAAI,CAAC,YAAY,CAAC,gDAAgD,CAAC,CAAC,CAAC;wBAE7E,YAAY,CAAC,SAAS,CAAC,CAAC;wBACxB,IAAI,CAAC,IAAI,EAAE,CAAC;wBACZ,MAAM,CAAC,IAAI,KAAK,CAAC,gDAAgD,CAAC,CAAC,CAAC;wBACpE,OAAO;oBACT,CAAC;oBAED,WAAW;oBACX,GAAG,CAAC,SAAS,CAAC,GAAG,EAAE,EAAE,cAAc,EAAE,WAAW,EAAE,CAAC,CAAC;oBACpD,GAAG,CAAC,GAAG,CAAC,IAAI,CAAC,cAAc,EAAE,CAAC,CAAC;oBAE/B,YAAY,CAAC,SAAS,CAAC,CAAC;oBACxB,IAAI,CAAC,IAAI,EAAE,CAAC;oBACZ,OAAO,CAAC,EAAE,IAAI,EAAE,KAAK,EAAE,CAAC,CAAC;gBAE3B,CAAC;gBAAC,OAAO,KAAU,EAAE,CAAC;oBACpB,GAAG,CAAC,SAAS,CAAC,GAAG,EAAE,EAAE,cAAc,EAAE,WAAW,EAAE,CAAC,CAAC;oBACpD,GAAG,CAAC,GAAG,CAAC,IAAI,CAAC,YAAY,CAAC,uBAAuB,CAAC,CAAC,CAAC;oBAEpD,YAAY,CAAC,SAAS,CAAC,CAAC;oBACxB,IAAI,CAAC,IAAI,EAAE,CAAC;oBACZ,MAAM,CAAC,KAAK,CAAC,CAAC;gBAChB,CAAC;YACH,CAAC,CAAC,CAAC;YAEH,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,IAAI,EAAE,WAAW,EAAE,GAAG,EAAE;gBAC9C,OAAO,CAAC,KAAK,CAAC,iDAAiD,IAAI,CAAC,IAAI,WAAW,CAAC,CAAC;YACvF,CAAC,CAAC,CAAC;YAEH,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC,OAAO,EAAE,CAAC,KAAU,EAAE,EAAE;gBACrC,YAAY,CAAC,SAAS,CAAC,CAAC;gBACxB,IAAI,CAAC,IAAI,EAAE,CAAC;gBAEZ,IAAI,KAAK,CAAC,IAAI,KAAK,YAAY,EAAE,CAAC;oBAChC,MAAM,CAAC,IAAI,KAAK,CAAC,QAAQ,IAAI,CAAC,IAAI,sEAAsE,CAAC,CAAC,CAAC;gBAC7G,CAAC;qBAAM,CAAC;oBACN,MAAM,CAAC,IAAI,KAAK,CAAC,iBAAiB,KAAK,CAAC,OAAO,EAAE,CAAC,CAAC,CAAC;gBACtD,CAAC;YACH,CAAC,CAAC,CAAC;QACL,CAAC,CAAC,CAAC;IACL,CAAC;IAED;;OAEG;IACH,IAAI;QACF,IAAI,IAAI,CAAC,MAAM,EAAE,CAAC;YAChB,IAAI,CAAC,MAAM,CAAC,KAAK,EAAE,CAAC;YACpB,IAAI,CAAC,MAAM,GAAG,IAAI,CAAC;YACnB,OAAO,CAAC,KAAK,CAAC,yBAAyB,CAAC,CAAC;QAC3C,CAAC;IACH,CAAC;IAED;;OAEG;IACH,OAAO;QACL,OAAO,IAAI,CAAC,IAAI,CAAC;IACnB,CAAC;IAED;;OAEG;IACK,cAAc;QACpB,OAAO;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;QAoDH,CAAC;IACP,CAAC;IAED;;OAEG;IACK,YAAY,CAAC,YAAoB;QACvC,OAAO;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;gCAwDqB,IAAI,CAAC,UAAU,CAAC,YAAY,CAAC;;;;QAIrD,CAAC;IACP,CAAC;IAED;;OAEG;IACK,UAAU,CAAC,MAAc;QAC/B,OAAO,MAAM;aACV,OAAO,CAAC,IAAI,EAAE,OAAO,CAAC;aACtB,OAAO,CAAC,IAAI,EAAE,MAAM,CAAC;aACrB,OAAO,CAAC,IAAI,EAAE,MAAM,CAAC;aACrB,OAAO,CAAC,IAAI,EAAE,QAAQ,CAAC;aACvB,OAAO,CAAC,IAAI,EAAE,QAAQ,CAAC,CAAC;IAC7B,CAAC;CACF"}

package/dist/auth/callback-server.test.d.ts

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=callback-server.test.d.ts.map

package/dist/auth/callback-server.test.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"callback-server.test.d.ts","sourceRoot":"","sources":["../../src/auth/callback-server.test.ts"],"names":[],"mappings":""}