@frontmcp/sdk 0.1.0

package/src/metadata/app.metadata.d.ts

@@ -0,0 +1,872 @@
+import { z } from 'zod';
+import { AuthOptions } from '../types';
+import { ProviderType, PromptType, ResourceType, ToolType, AuthProviderType, PluginType, AdapterType } from '../interfaces';
+/**
+ * Declarative metadata describing what a local mcp app contributes at app scope.
+ *
+ * Includes dependency providers, app-scoped plugins, adapters (that can
+ * generate tools/resources/prompts from external definitions), and any
+ * inline tools authored in the app. Adapter-generated items inherit the
+ * app’s plugins and policies and are tagged with provenance.
+ */
+export interface LocalAppMetadata {
+    /**
+     * Human-friendly name for this app as shown in UIs, logs, and describe reports.
+     * Keep it short, stable, and unique within a gateway (consider prefixes).
+     */
+    id?: string;
+    /**
+     * Human-friendly name for this app as shown in UIs, logs, and describe reports.
+     * Keep it short, stable, and unique within a gateway (consider prefixes).
+     */
+    name: string;
+    /**
+     * Optional longer explanation of what the app does and what it exposes.
+     * Used for documentation, describe reports, and UIs. Avoid secrets/PII.
+     */
+    description?: string;
+    /**
+     * Named singleton (or scoped-singleton) dependencies used by tools/plugins at runtime
+     * — e.g., config, database pools, Redis clients, queues, KMS.
+     *
+     * Resolution is hierarchical (tool → app → gateway). Providers may depend on
+     * other providers and are usually initialized lazily on first use.
+     */
+    providers?: ProviderType[];
+    /**
+     * Named singleton / session auth provider to be used by tools/plugins at runtime
+     * — e.g., GithubAuthProvider, GoogleAuthProvider, etc.
+     *
+     * Note: this is different from providers, which are used for calling fetch request
+     *     with specific auth context headers.
+     *
+     * Resolution is hierarchical (tool → app → gateway). Providers may depend on
+     * other providers and are usually initialized lazily on first use.
+     */
+    authProviders?: AuthProviderType[];
+    /**
+     * App-scoped plugins that participate in lifecycle events and can contribute
+     * additional capabilities (tools, resources, prompts, providers, adapters).
+     * Use plugins to enforce policy, auth, PII reduction, tracing, etc.
+     */
+    plugins?: PluginType[];
+    /**
+     * Adapters attached to this app that convert external definitions or sources
+     * (e.g., OpenAPI, Lambda, Custom) into generated tools/resources/prompts.
+     * Common options include include/exclude filters, name prefixes, base URLs,
+     * and authentication (often provided by plugins).
+     */
+    adapters?: AdapterType[];
+    /**
+     * Inline tools authored by this app (via builder or class). These are active
+     * actions with input/output schemas that the model can call. Tools generated
+     * by adapters do not need to be listed here.
+     */
+    tools?: ToolType[];
+    resources?: ResourceType[];
+    prompts?: PromptType[];
+    /**
+     * Configures the app's default authentication provider.
+     * If not provided, the app will use the gateway's default auth provider.
+     */
+    auth?: AuthOptions;
+    /**
+     * If true, the app will NOT be included and will act as a separated scope.
+     * If false, the app will be included in MultiApp frontmcp server.
+     * If 'includeInParent', the app will be included in the gateway's
+     *    standalone app list and will act as a separated scope under the appName prefix
+     */
+    standalone?: 'includeInParent' | boolean;
+}
+export declare const frontMcpLocalAppMetadataSchema: z.ZodObject<{
+    id: z.ZodOptional<z.ZodString>;
+    name: z.ZodString;
+    description: z.ZodOptional<z.ZodString>;
+    providers: z.ZodDefault<z.ZodOptional<z.ZodArray<z.ZodType<import("../interfaces").Type<unknown>, z.ZodTypeDef, import("../interfaces").Type<unknown>>, "many">>>;
+    authProviders: z.ZodDefault<z.ZodOptional<z.ZodArray<z.ZodType<import("../interfaces").Type<unknown>, z.ZodTypeDef, import("../interfaces").Type<unknown>>, "many">>>;
+    plugins: z.ZodOptional<z.ZodArray<z.ZodType<import("../interfaces").Type<unknown>, z.ZodTypeDef, import("../interfaces").Type<unknown>>, "many">>;
+    adapters: z.ZodOptional<z.ZodArray<z.ZodType<import("../interfaces").Type<unknown>, z.ZodTypeDef, import("../interfaces").Type<unknown>>, "many">>;
+    tools: z.ZodOptional<z.ZodArray<z.ZodType<import("../interfaces").Type<unknown>, z.ZodTypeDef, import("../interfaces").Type<unknown>>, "many">>;
+    resources: z.ZodOptional<z.ZodArray<z.ZodType<import("../interfaces").Type<unknown>, z.ZodTypeDef, import("../interfaces").Type<unknown>>, "many">>;
+    prompts: z.ZodOptional<z.ZodArray<z.ZodType<import("../interfaces").Type<unknown>, z.ZodTypeDef, import("../interfaces").Type<unknown>>, "many">>;
+    auth: z.ZodOptional<z.ZodDiscriminatedUnion<"type", [z.ZodObject<{
+        type: z.ZodLiteral<"remote">;
+        id: z.ZodOptional<z.ZodString>;
+        name: z.ZodString;
+        baseUrl: z.ZodString;
+        dcrEnabled: z.ZodOptional<z.ZodBoolean>;
+        clientId: z.ZodOptional<z.ZodUnion<[z.ZodString, z.ZodFunction<z.ZodTuple<[z.ZodObject<{
+            clientId: z.ZodString;
+        }, "strip", z.ZodTypeAny, {
+            clientId: string;
+        }, {
+            clientId: string;
+        }>], z.ZodUnknown>, z.ZodString>]>>;
+        mode: z.ZodOptional<z.ZodUnion<[z.ZodLiteral<"orchestrated">, z.ZodLiteral<"transparent">]>>;
+        allowAnonymous: z.ZodOptional<z.ZodBoolean>;
+        consent: z.ZodOptional<z.ZodBoolean>;
+        jwks: z.ZodOptional<z.ZodObject<{
+            keys: z.ZodArray<z.ZodType<import("../types").JWK, z.ZodTypeDef, import("../types").JWK>, "many">;
+        }, "strip", z.ZodTypeAny, {
+            keys: import("../types").JWK[];
+        }, {
+            keys: import("../types").JWK[];
+        }>>;
+        scopes: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
+        grantTypes: z.ZodOptional<z.ZodArray<z.ZodUnion<[z.ZodLiteral<"authorization_code">, z.ZodLiteral<"refresh_token">]>, "many">>;
+        authEndpoint: z.ZodOptional<z.ZodString>;
+        tokenEndpoint: z.ZodOptional<z.ZodString>;
+        registrationEndpoint: z.ZodOptional<z.ZodString>;
+        userInfoEndpoint: z.ZodOptional<z.ZodString>;
+        jwksUri: z.ZodOptional<z.ZodString>;
+    }, "strip", z.ZodTypeAny, {
+        name: string;
+        type: "remote";
+        baseUrl: string;
+        id?: string | undefined;
+        dcrEnabled?: boolean | undefined;
+        clientId?: string | ((args_0: {
+            clientId: string;
+        }, ...args: unknown[]) => string) | undefined;
+        mode?: "orchestrated" | "transparent" | undefined;
+        allowAnonymous?: boolean | undefined;
+        consent?: boolean | undefined;
+        scopes?: string[] | undefined;
+        grantTypes?: ("authorization_code" | "refresh_token")[] | undefined;
+        authEndpoint?: string | undefined;
+        tokenEndpoint?: string | undefined;
+        registrationEndpoint?: string | undefined;
+        userInfoEndpoint?: string | undefined;
+        jwks?: {
+            keys: import("../types").JWK[];
+        } | undefined;
+        jwksUri?: string | undefined;
+    }, {
+        name: string;
+        type: "remote";
+        baseUrl: string;
+        id?: string | undefined;
+        dcrEnabled?: boolean | undefined;
+        clientId?: string | ((args_0: {
+            clientId: string;
+        }, ...args: unknown[]) => string) | undefined;
+        mode?: "orchestrated" | "transparent" | undefined;
+        allowAnonymous?: boolean | undefined;
+        consent?: boolean | undefined;
+        scopes?: string[] | undefined;
+        grantTypes?: ("authorization_code" | "refresh_token")[] | undefined;
+        authEndpoint?: string | undefined;
+        tokenEndpoint?: string | undefined;
+        registrationEndpoint?: string | undefined;
+        userInfoEndpoint?: string | undefined;
+        jwks?: {
+            keys: import("../types").JWK[];
+        } | undefined;
+        jwksUri?: string | undefined;
+    }>, z.ZodObject<{
+        type: z.ZodLiteral<"local">;
+        id: z.ZodString;
+        name: z.ZodString;
+        scopes: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
+        grantTypes: z.ZodOptional<z.ZodArray<z.ZodUnion<[z.ZodLiteral<"authorization_code">, z.ZodLiteral<"refresh_token">]>, "many">>;
+        allowAnonymous: z.ZodOptional<z.ZodBoolean>;
+        consent: z.ZodOptional<z.ZodBoolean>;
+        jwks: z.ZodOptional<z.ZodObject<{
+            keys: z.ZodArray<z.ZodType<import("../types").JWK, z.ZodTypeDef, import("../types").JWK>, "many">;
+        }, "strip", z.ZodTypeAny, {
+            keys: import("../types").JWK[];
+        }, {
+            keys: import("../types").JWK[];
+        }>>;
+        signKey: z.ZodOptional<z.ZodUnion<[z.ZodType<import("../types").JWK, z.ZodTypeDef, import("../types").JWK>, z.ZodType<Uint8Array<ArrayBuffer>, z.ZodTypeDef, Uint8Array<ArrayBuffer>>]>>;
+    }, "strip", z.ZodTypeAny, {
+        name: string;
+        id: string;
+        type: "local";
+        allowAnonymous?: boolean | undefined;
+        consent?: boolean | undefined;
+        scopes?: string[] | undefined;
+        grantTypes?: ("authorization_code" | "refresh_token")[] | undefined;
+        jwks?: {
+            keys: import("../types").JWK[];
+        } | undefined;
+        signKey?: import("../types").JWK | Uint8Array<ArrayBuffer> | undefined;
+    }, {
+        name: string;
+        id: string;
+        type: "local";
+        allowAnonymous?: boolean | undefined;
+        consent?: boolean | undefined;
+        scopes?: string[] | undefined;
+        grantTypes?: ("authorization_code" | "refresh_token")[] | undefined;
+        jwks?: {
+            keys: import("../types").JWK[];
+        } | undefined;
+        signKey?: import("../types").JWK | Uint8Array<ArrayBuffer> | undefined;
+    }>]>>;
+    standalone: z.ZodDefault<z.ZodOptional<z.ZodUnion<[z.ZodLiteral<"includeInParent">, z.ZodBoolean]>>>;
+}, "passthrough", z.ZodTypeAny, z.objectOutputType<{
+    id: z.ZodOptional<z.ZodString>;
+    name: z.ZodString;
+    description: z.ZodOptional<z.ZodString>;
+    providers: z.ZodDefault<z.ZodOptional<z.ZodArray<z.ZodType<import("../interfaces").Type<unknown>, z.ZodTypeDef, import("../interfaces").Type<unknown>>, "many">>>;
+    authProviders: z.ZodDefault<z.ZodOptional<z.ZodArray<z.ZodType<import("../interfaces").Type<unknown>, z.ZodTypeDef, import("../interfaces").Type<unknown>>, "many">>>;
+    plugins: z.ZodOptional<z.ZodArray<z.ZodType<import("../interfaces").Type<unknown>, z.ZodTypeDef, import("../interfaces").Type<unknown>>, "many">>;
+    adapters: z.ZodOptional<z.ZodArray<z.ZodType<import("../interfaces").Type<unknown>, z.ZodTypeDef, import("../interfaces").Type<unknown>>, "many">>;
+    tools: z.ZodOptional<z.ZodArray<z.ZodType<import("../interfaces").Type<unknown>, z.ZodTypeDef, import("../interfaces").Type<unknown>>, "many">>;
+    resources: z.ZodOptional<z.ZodArray<z.ZodType<import("../interfaces").Type<unknown>, z.ZodTypeDef, import("../interfaces").Type<unknown>>, "many">>;
+    prompts: z.ZodOptional<z.ZodArray<z.ZodType<import("../interfaces").Type<unknown>, z.ZodTypeDef, import("../interfaces").Type<unknown>>, "many">>;
+    auth: z.ZodOptional<z.ZodDiscriminatedUnion<"type", [z.ZodObject<{
+        type: z.ZodLiteral<"remote">;
+        id: z.ZodOptional<z.ZodString>;
+        name: z.ZodString;
+        baseUrl: z.ZodString;
+        dcrEnabled: z.ZodOptional<z.ZodBoolean>;
+        clientId: z.ZodOptional<z.ZodUnion<[z.ZodString, z.ZodFunction<z.ZodTuple<[z.ZodObject<{
+            clientId: z.ZodString;
+        }, "strip", z.ZodTypeAny, {
+            clientId: string;
+        }, {
+            clientId: string;
+        }>], z.ZodUnknown>, z.ZodString>]>>;
+        mode: z.ZodOptional<z.ZodUnion<[z.ZodLiteral<"orchestrated">, z.ZodLiteral<"transparent">]>>;
+        allowAnonymous: z.ZodOptional<z.ZodBoolean>;
+        consent: z.ZodOptional<z.ZodBoolean>;
+        jwks: z.ZodOptional<z.ZodObject<{
+            keys: z.ZodArray<z.ZodType<import("../types").JWK, z.ZodTypeDef, import("../types").JWK>, "many">;
+        }, "strip", z.ZodTypeAny, {
+            keys: import("../types").JWK[];
+        }, {
+            keys: import("../types").JWK[];
+        }>>;
+        scopes: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
+        grantTypes: z.ZodOptional<z.ZodArray<z.ZodUnion<[z.ZodLiteral<"authorization_code">, z.ZodLiteral<"refresh_token">]>, "many">>;
+        authEndpoint: z.ZodOptional<z.ZodString>;
+        tokenEndpoint: z.ZodOptional<z.ZodString>;
+        registrationEndpoint: z.ZodOptional<z.ZodString>;
+        userInfoEndpoint: z.ZodOptional<z.ZodString>;
+        jwksUri: z.ZodOptional<z.ZodString>;
+    }, "strip", z.ZodTypeAny, {
+        name: string;
+        type: "remote";
+        baseUrl: string;
+        id?: string | undefined;
+        dcrEnabled?: boolean | undefined;
+        clientId?: string | ((args_0: {
+            clientId: string;
+        }, ...args: unknown[]) => string) | undefined;
+        mode?: "orchestrated" | "transparent" | undefined;
+        allowAnonymous?: boolean | undefined;
+        consent?: boolean | undefined;
+        scopes?: string[] | undefined;
+        grantTypes?: ("authorization_code" | "refresh_token")[] | undefined;
+        authEndpoint?: string | undefined;
+        tokenEndpoint?: string | undefined;
+        registrationEndpoint?: string | undefined;
+        userInfoEndpoint?: string | undefined;
+        jwks?: {
+            keys: import("../types").JWK[];
+        } | undefined;
+        jwksUri?: string | undefined;
+    }, {
+        name: string;
+        type: "remote";
+        baseUrl: string;
+        id?: string | undefined;
+        dcrEnabled?: boolean | undefined;
+        clientId?: string | ((args_0: {
+            clientId: string;
+        }, ...args: unknown[]) => string) | undefined;
+        mode?: "orchestrated" | "transparent" | undefined;
+        allowAnonymous?: boolean | undefined;
+        consent?: boolean | undefined;
+        scopes?: string[] | undefined;
+        grantTypes?: ("authorization_code" | "refresh_token")[] | undefined;
+        authEndpoint?: string | undefined;
+        tokenEndpoint?: string | undefined;
+        registrationEndpoint?: string | undefined;
+        userInfoEndpoint?: string | undefined;
+        jwks?: {
+            keys: import("../types").JWK[];
+        } | undefined;
+        jwksUri?: string | undefined;
+    }>, z.ZodObject<{
+        type: z.ZodLiteral<"local">;
+        id: z.ZodString;
+        name: z.ZodString;
+        scopes: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
+        grantTypes: z.ZodOptional<z.ZodArray<z.ZodUnion<[z.ZodLiteral<"authorization_code">, z.ZodLiteral<"refresh_token">]>, "many">>;
+        allowAnonymous: z.ZodOptional<z.ZodBoolean>;
+        consent: z.ZodOptional<z.ZodBoolean>;
+        jwks: z.ZodOptional<z.ZodObject<{
+            keys: z.ZodArray<z.ZodType<import("../types").JWK, z.ZodTypeDef, import("../types").JWK>, "many">;
+        }, "strip", z.ZodTypeAny, {
+            keys: import("../types").JWK[];
+        }, {
+            keys: import("../types").JWK[];
+        }>>;
+        signKey: z.ZodOptional<z.ZodUnion<[z.ZodType<import("../types").JWK, z.ZodTypeDef, import("../types").JWK>, z.ZodType<Uint8Array<ArrayBuffer>, z.ZodTypeDef, Uint8Array<ArrayBuffer>>]>>;
+    }, "strip", z.ZodTypeAny, {
+        name: string;
+        id: string;
+        type: "local";
+        allowAnonymous?: boolean | undefined;
+        consent?: boolean | undefined;
+        scopes?: string[] | undefined;
+        grantTypes?: ("authorization_code" | "refresh_token")[] | undefined;
+        jwks?: {
+            keys: import("../types").JWK[];
+        } | undefined;
+        signKey?: import("../types").JWK | Uint8Array<ArrayBuffer> | undefined;
+    }, {
+        name: string;
+        id: string;
+        type: "local";
+        allowAnonymous?: boolean | undefined;
+        consent?: boolean | undefined;
+        scopes?: string[] | undefined;
+        grantTypes?: ("authorization_code" | "refresh_token")[] | undefined;
+        jwks?: {
+            keys: import("../types").JWK[];
+        } | undefined;
+        signKey?: import("../types").JWK | Uint8Array<ArrayBuffer> | undefined;
+    }>]>>;
+    standalone: z.ZodDefault<z.ZodOptional<z.ZodUnion<[z.ZodLiteral<"includeInParent">, z.ZodBoolean]>>>;
+}, z.ZodTypeAny, "passthrough">, z.objectInputType<{
+    id: z.ZodOptional<z.ZodString>;
+    name: z.ZodString;
+    description: z.ZodOptional<z.ZodString>;
+    providers: z.ZodDefault<z.ZodOptional<z.ZodArray<z.ZodType<import("../interfaces").Type<unknown>, z.ZodTypeDef, import("../interfaces").Type<unknown>>, "many">>>;
+    authProviders: z.ZodDefault<z.ZodOptional<z.ZodArray<z.ZodType<import("../interfaces").Type<unknown>, z.ZodTypeDef, import("../interfaces").Type<unknown>>, "many">>>;
+    plugins: z.ZodOptional<z.ZodArray<z.ZodType<import("../interfaces").Type<unknown>, z.ZodTypeDef, import("../interfaces").Type<unknown>>, "many">>;
+    adapters: z.ZodOptional<z.ZodArray<z.ZodType<import("../interfaces").Type<unknown>, z.ZodTypeDef, import("../interfaces").Type<unknown>>, "many">>;
+    tools: z.ZodOptional<z.ZodArray<z.ZodType<import("../interfaces").Type<unknown>, z.ZodTypeDef, import("../interfaces").Type<unknown>>, "many">>;
+    resources: z.ZodOptional<z.ZodArray<z.ZodType<import("../interfaces").Type<unknown>, z.ZodTypeDef, import("../interfaces").Type<unknown>>, "many">>;
+    prompts: z.ZodOptional<z.ZodArray<z.ZodType<import("../interfaces").Type<unknown>, z.ZodTypeDef, import("../interfaces").Type<unknown>>, "many">>;
+    auth: z.ZodOptional<z.ZodDiscriminatedUnion<"type", [z.ZodObject<{
+        type: z.ZodLiteral<"remote">;
+        id: z.ZodOptional<z.ZodString>;
+        name: z.ZodString;
+        baseUrl: z.ZodString;
+        dcrEnabled: z.ZodOptional<z.ZodBoolean>;
+        clientId: z.ZodOptional<z.ZodUnion<[z.ZodString, z.ZodFunction<z.ZodTuple<[z.ZodObject<{
+            clientId: z.ZodString;
+        }, "strip", z.ZodTypeAny, {
+            clientId: string;
+        }, {
+            clientId: string;
+        }>], z.ZodUnknown>, z.ZodString>]>>;
+        mode: z.ZodOptional<z.ZodUnion<[z.ZodLiteral<"orchestrated">, z.ZodLiteral<"transparent">]>>;
+        allowAnonymous: z.ZodOptional<z.ZodBoolean>;
+        consent: z.ZodOptional<z.ZodBoolean>;
+        jwks: z.ZodOptional<z.ZodObject<{
+            keys: z.ZodArray<z.ZodType<import("../types").JWK, z.ZodTypeDef, import("../types").JWK>, "many">;
+        }, "strip", z.ZodTypeAny, {
+            keys: import("../types").JWK[];
+        }, {
+            keys: import("../types").JWK[];
+        }>>;
+        scopes: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
+        grantTypes: z.ZodOptional<z.ZodArray<z.ZodUnion<[z.ZodLiteral<"authorization_code">, z.ZodLiteral<"refresh_token">]>, "many">>;
+        authEndpoint: z.ZodOptional<z.ZodString>;
+        tokenEndpoint: z.ZodOptional<z.ZodString>;
+        registrationEndpoint: z.ZodOptional<z.ZodString>;
+        userInfoEndpoint: z.ZodOptional<z.ZodString>;
+        jwksUri: z.ZodOptional<z.ZodString>;
+    }, "strip", z.ZodTypeAny, {
+        name: string;
+        type: "remote";
+        baseUrl: string;
+        id?: string | undefined;
+        dcrEnabled?: boolean | undefined;
+        clientId?: string | ((args_0: {
+            clientId: string;
+        }, ...args: unknown[]) => string) | undefined;
+        mode?: "orchestrated" | "transparent" | undefined;
+        allowAnonymous?: boolean | undefined;
+        consent?: boolean | undefined;
+        scopes?: string[] | undefined;
+        grantTypes?: ("authorization_code" | "refresh_token")[] | undefined;
+        authEndpoint?: string | undefined;
+        tokenEndpoint?: string | undefined;
+        registrationEndpoint?: string | undefined;
+        userInfoEndpoint?: string | undefined;
+        jwks?: {
+            keys: import("../types").JWK[];
+        } | undefined;
+        jwksUri?: string | undefined;
+    }, {
+        name: string;
+        type: "remote";
+        baseUrl: string;
+        id?: string | undefined;
+        dcrEnabled?: boolean | undefined;
+        clientId?: string | ((args_0: {
+            clientId: string;
+        }, ...args: unknown[]) => string) | undefined;
+        mode?: "orchestrated" | "transparent" | undefined;
+        allowAnonymous?: boolean | undefined;
+        consent?: boolean | undefined;
+        scopes?: string[] | undefined;
+        grantTypes?: ("authorization_code" | "refresh_token")[] | undefined;
+        authEndpoint?: string | undefined;
+        tokenEndpoint?: string | undefined;
+        registrationEndpoint?: string | undefined;
+        userInfoEndpoint?: string | undefined;
+        jwks?: {
+            keys: import("../types").JWK[];
+        } | undefined;
+        jwksUri?: string | undefined;
+    }>, z.ZodObject<{
+        type: z.ZodLiteral<"local">;
+        id: z.ZodString;
+        name: z.ZodString;
+        scopes: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
+        grantTypes: z.ZodOptional<z.ZodArray<z.ZodUnion<[z.ZodLiteral<"authorization_code">, z.ZodLiteral<"refresh_token">]>, "many">>;
+        allowAnonymous: z.ZodOptional<z.ZodBoolean>;
+        consent: z.ZodOptional<z.ZodBoolean>;
+        jwks: z.ZodOptional<z.ZodObject<{
+            keys: z.ZodArray<z.ZodType<import("../types").JWK, z.ZodTypeDef, import("../types").JWK>, "many">;
+        }, "strip", z.ZodTypeAny, {
+            keys: import("../types").JWK[];
+        }, {
+            keys: import("../types").JWK[];
+        }>>;
+        signKey: z.ZodOptional<z.ZodUnion<[z.ZodType<import("../types").JWK, z.ZodTypeDef, import("../types").JWK>, z.ZodType<Uint8Array<ArrayBuffer>, z.ZodTypeDef, Uint8Array<ArrayBuffer>>]>>;
+    }, "strip", z.ZodTypeAny, {
+        name: string;
+        id: string;
+        type: "local";
+        allowAnonymous?: boolean | undefined;
+        consent?: boolean | undefined;
+        scopes?: string[] | undefined;
+        grantTypes?: ("authorization_code" | "refresh_token")[] | undefined;
+        jwks?: {
+            keys: import("../types").JWK[];
+        } | undefined;
+        signKey?: import("../types").JWK | Uint8Array<ArrayBuffer> | undefined;
+    }, {
+        name: string;
+        id: string;
+        type: "local";
+        allowAnonymous?: boolean | undefined;
+        consent?: boolean | undefined;
+        scopes?: string[] | undefined;
+        grantTypes?: ("authorization_code" | "refresh_token")[] | undefined;
+        jwks?: {
+            keys: import("../types").JWK[];
+        } | undefined;
+        signKey?: import("../types").JWK | Uint8Array<ArrayBuffer> | undefined;
+    }>]>>;
+    standalone: z.ZodDefault<z.ZodOptional<z.ZodUnion<[z.ZodLiteral<"includeInParent">, z.ZodBoolean]>>>;
+}, z.ZodTypeAny, "passthrough">>;
+/**
+ * Declarative metadata describing what a remote encapsulated mcp app.
+ */
+export interface RemoteAppMetadata {
+    /**
+     * Human-friendly name for this app as shown in UIs, logs, and describe reports.
+     * Keep it short, stable, and unique within a gateway (consider prefixes).
+     */
+    id?: string;
+    /**
+     * Human-friendly name for this app as shown in UIs, logs, and describe reports.
+     * Keep it short, stable, and unique within a gateway (consider prefixes).
+     */
+    name: string;
+    /**
+     * Optional longer explanation of what the app does and what it exposes.
+     * Used for documentation, describe reports, and UIs. Avoid secrets/PII.
+     */
+    description?: string;
+    /**
+     * The type of the remote app.
+     * - 'worker': The remote app is a worker file.
+     * - 'url': The remote app is a remote URL.
+     */
+    urlType: 'worker' | 'url';
+    /**
+     * The URL of the remote app. This can be a local worker file or a remote URL.
+     */
+    url: string;
+    /**
+     * Configures the app's default authentication provider.
+     * If not provided, the app will use the gateway's default auth provider.
+     */
+    auth?: AuthOptions;
+    /**
+     * If true, the app will NOT be included and will act as a separated scope.
+     * If false, the app will be included in MultiApp frontmcp server.
+     * If 'includeInParent', the app will be included in the gateway's
+     *    standalone app list and will act as a separated scope under the appName prefix
+     */
+    standalone: 'includeInParent' | boolean;
+}
+export declare const frontMcpRemoteAppMetadataSchema: z.ZodObject<{
+    id: z.ZodOptional<z.ZodString>;
+    name: z.ZodString;
+    description: z.ZodOptional<z.ZodString>;
+    urlType: z.ZodEnum<["worker", "url"]>;
+    url: z.ZodString;
+    auth: z.ZodOptional<z.ZodDiscriminatedUnion<"type", [z.ZodObject<{
+        type: z.ZodLiteral<"remote">;
+        id: z.ZodOptional<z.ZodString>;
+        name: z.ZodString;
+        baseUrl: z.ZodString;
+        dcrEnabled: z.ZodOptional<z.ZodBoolean>;
+        clientId: z.ZodOptional<z.ZodUnion<[z.ZodString, z.ZodFunction<z.ZodTuple<[z.ZodObject<{
+            clientId: z.ZodString;
+        }, "strip", z.ZodTypeAny, {
+            clientId: string;
+        }, {
+            clientId: string;
+        }>], z.ZodUnknown>, z.ZodString>]>>;
+        mode: z.ZodOptional<z.ZodUnion<[z.ZodLiteral<"orchestrated">, z.ZodLiteral<"transparent">]>>;
+        allowAnonymous: z.ZodOptional<z.ZodBoolean>;
+        consent: z.ZodOptional<z.ZodBoolean>;
+        jwks: z.ZodOptional<z.ZodObject<{
+            keys: z.ZodArray<z.ZodType<import("../types").JWK, z.ZodTypeDef, import("../types").JWK>, "many">;
+        }, "strip", z.ZodTypeAny, {
+            keys: import("../types").JWK[];
+        }, {
+            keys: import("../types").JWK[];
+        }>>;
+        scopes: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
+        grantTypes: z.ZodOptional<z.ZodArray<z.ZodUnion<[z.ZodLiteral<"authorization_code">, z.ZodLiteral<"refresh_token">]>, "many">>;
+        authEndpoint: z.ZodOptional<z.ZodString>;
+        tokenEndpoint: z.ZodOptional<z.ZodString>;
+        registrationEndpoint: z.ZodOptional<z.ZodString>;
+        userInfoEndpoint: z.ZodOptional<z.ZodString>;
+        jwksUri: z.ZodOptional<z.ZodString>;
+    }, "strip", z.ZodTypeAny, {
+        name: string;
+        type: "remote";
+        baseUrl: string;
+        id?: string | undefined;
+        dcrEnabled?: boolean | undefined;
+        clientId?: string | ((args_0: {
+            clientId: string;
+        }, ...args: unknown[]) => string) | undefined;
+        mode?: "orchestrated" | "transparent" | undefined;
+        allowAnonymous?: boolean | undefined;
+        consent?: boolean | undefined;
+        scopes?: string[] | undefined;
+        grantTypes?: ("authorization_code" | "refresh_token")[] | undefined;
+        authEndpoint?: string | undefined;
+        tokenEndpoint?: string | undefined;
+        registrationEndpoint?: string | undefined;
+        userInfoEndpoint?: string | undefined;
+        jwks?: {
+            keys: import("../types").JWK[];
+        } | undefined;
+        jwksUri?: string | undefined;
+    }, {
+        name: string;
+        type: "remote";
+        baseUrl: string;
+        id?: string | undefined;
+        dcrEnabled?: boolean | undefined;
+        clientId?: string | ((args_0: {
+            clientId: string;
+        }, ...args: unknown[]) => string) | undefined;
+        mode?: "orchestrated" | "transparent" | undefined;
+        allowAnonymous?: boolean | undefined;
+        consent?: boolean | undefined;
+        scopes?: string[] | undefined;
+        grantTypes?: ("authorization_code" | "refresh_token")[] | undefined;
+        authEndpoint?: string | undefined;
+        tokenEndpoint?: string | undefined;
+        registrationEndpoint?: string | undefined;
+        userInfoEndpoint?: string | undefined;
+        jwks?: {
+            keys: import("../types").JWK[];
+        } | undefined;
+        jwksUri?: string | undefined;
+    }>, z.ZodObject<{
+        type: z.ZodLiteral<"local">;
+        id: z.ZodString;
+        name: z.ZodString;
+        scopes: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
+        grantTypes: z.ZodOptional<z.ZodArray<z.ZodUnion<[z.ZodLiteral<"authorization_code">, z.ZodLiteral<"refresh_token">]>, "many">>;
+        allowAnonymous: z.ZodOptional<z.ZodBoolean>;
+        consent: z.ZodOptional<z.ZodBoolean>;
+        jwks: z.ZodOptional<z.ZodObject<{
+            keys: z.ZodArray<z.ZodType<import("../types").JWK, z.ZodTypeDef, import("../types").JWK>, "many">;
+        }, "strip", z.ZodTypeAny, {
+            keys: import("../types").JWK[];
+        }, {
+            keys: import("../types").JWK[];
+        }>>;
+        signKey: z.ZodOptional<z.ZodUnion<[z.ZodType<import("../types").JWK, z.ZodTypeDef, import("../types").JWK>, z.ZodType<Uint8Array<ArrayBuffer>, z.ZodTypeDef, Uint8Array<ArrayBuffer>>]>>;
+    }, "strip", z.ZodTypeAny, {
+        name: string;
+        id: string;
+        type: "local";
+        allowAnonymous?: boolean | undefined;
+        consent?: boolean | undefined;
+        scopes?: string[] | undefined;
+        grantTypes?: ("authorization_code" | "refresh_token")[] | undefined;
+        jwks?: {
+            keys: import("../types").JWK[];
+        } | undefined;
+        signKey?: import("../types").JWK | Uint8Array<ArrayBuffer> | undefined;
+    }, {
+        name: string;
+        id: string;
+        type: "local";
+        allowAnonymous?: boolean | undefined;
+        consent?: boolean | undefined;
+        scopes?: string[] | undefined;
+        grantTypes?: ("authorization_code" | "refresh_token")[] | undefined;
+        jwks?: {
+            keys: import("../types").JWK[];
+        } | undefined;
+        signKey?: import("../types").JWK | Uint8Array<ArrayBuffer> | undefined;
+    }>]>>;
+    standalone: z.ZodDefault<z.ZodOptional<z.ZodUnion<[z.ZodLiteral<"includeInParent">, z.ZodBoolean]>>>;
+}, "passthrough", z.ZodTypeAny, z.objectOutputType<{
+    id: z.ZodOptional<z.ZodString>;
+    name: z.ZodString;
+    description: z.ZodOptional<z.ZodString>;
+    urlType: z.ZodEnum<["worker", "url"]>;
+    url: z.ZodString;
+    auth: z.ZodOptional<z.ZodDiscriminatedUnion<"type", [z.ZodObject<{
+        type: z.ZodLiteral<"remote">;
+        id: z.ZodOptional<z.ZodString>;
+        name: z.ZodString;
+        baseUrl: z.ZodString;
+        dcrEnabled: z.ZodOptional<z.ZodBoolean>;
+        clientId: z.ZodOptional<z.ZodUnion<[z.ZodString, z.ZodFunction<z.ZodTuple<[z.ZodObject<{
+            clientId: z.ZodString;
+        }, "strip", z.ZodTypeAny, {
+            clientId: string;
+        }, {
+            clientId: string;
+        }>], z.ZodUnknown>, z.ZodString>]>>;
+        mode: z.ZodOptional<z.ZodUnion<[z.ZodLiteral<"orchestrated">, z.ZodLiteral<"transparent">]>>;
+        allowAnonymous: z.ZodOptional<z.ZodBoolean>;
+        consent: z.ZodOptional<z.ZodBoolean>;
+        jwks: z.ZodOptional<z.ZodObject<{
+            keys: z.ZodArray<z.ZodType<import("../types").JWK, z.ZodTypeDef, import("../types").JWK>, "many">;
+        }, "strip", z.ZodTypeAny, {
+            keys: import("../types").JWK[];
+        }, {
+            keys: import("../types").JWK[];
+        }>>;
+        scopes: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
+        grantTypes: z.ZodOptional<z.ZodArray<z.ZodUnion<[z.ZodLiteral<"authorization_code">, z.ZodLiteral<"refresh_token">]>, "many">>;
+        authEndpoint: z.ZodOptional<z.ZodString>;
+        tokenEndpoint: z.ZodOptional<z.ZodString>;
+        registrationEndpoint: z.ZodOptional<z.ZodString>;
+        userInfoEndpoint: z.ZodOptional<z.ZodString>;
+        jwksUri: z.ZodOptional<z.ZodString>;
+    }, "strip", z.ZodTypeAny, {
+        name: string;
+        type: "remote";
+        baseUrl: string;
+        id?: string | undefined;
+        dcrEnabled?: boolean | undefined;
+        clientId?: string | ((args_0: {
+            clientId: string;
+        }, ...args: unknown[]) => string) | undefined;
+        mode?: "orchestrated" | "transparent" | undefined;
+        allowAnonymous?: boolean | undefined;
+        consent?: boolean | undefined;
+        scopes?: string[] | undefined;
+        grantTypes?: ("authorization_code" | "refresh_token")[] | undefined;
+        authEndpoint?: string | undefined;
+        tokenEndpoint?: string | undefined;
+        registrationEndpoint?: string | undefined;
+        userInfoEndpoint?: string | undefined;
+        jwks?: {
+            keys: import("../types").JWK[];
+        } | undefined;
+        jwksUri?: string | undefined;
+    }, {
+        name: string;
+        type: "remote";
+        baseUrl: string;
+        id?: string | undefined;
+        dcrEnabled?: boolean | undefined;
+        clientId?: string | ((args_0: {
+            clientId: string;
+        }, ...args: unknown[]) => string) | undefined;
+        mode?: "orchestrated" | "transparent" | undefined;
+        allowAnonymous?: boolean | undefined;
+        consent?: boolean | undefined;
+        scopes?: string[] | undefined;
+        grantTypes?: ("authorization_code" | "refresh_token")[] | undefined;
+        authEndpoint?: string | undefined;
+        tokenEndpoint?: string | undefined;
+        registrationEndpoint?: string | undefined;
+        userInfoEndpoint?: string | undefined;
+        jwks?: {
+            keys: import("../types").JWK[];
+        } | undefined;
+        jwksUri?: string | undefined;
+    }>, z.ZodObject<{
+        type: z.ZodLiteral<"local">;
+        id: z.ZodString;
+        name: z.ZodString;
+        scopes: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
+        grantTypes: z.ZodOptional<z.ZodArray<z.ZodUnion<[z.ZodLiteral<"authorization_code">, z.ZodLiteral<"refresh_token">]>, "many">>;
+        allowAnonymous: z.ZodOptional<z.ZodBoolean>;
+        consent: z.ZodOptional<z.ZodBoolean>;
+        jwks: z.ZodOptional<z.ZodObject<{
+            keys: z.ZodArray<z.ZodType<import("../types").JWK, z.ZodTypeDef, import("../types").JWK>, "many">;
+        }, "strip", z.ZodTypeAny, {
+            keys: import("../types").JWK[];
+        }, {
+            keys: import("../types").JWK[];
+        }>>;
+        signKey: z.ZodOptional<z.ZodUnion<[z.ZodType<import("../types").JWK, z.ZodTypeDef, import("../types").JWK>, z.ZodType<Uint8Array<ArrayBuffer>, z.ZodTypeDef, Uint8Array<ArrayBuffer>>]>>;
+    }, "strip", z.ZodTypeAny, {
+        name: string;
+        id: string;
+        type: "local";
+        allowAnonymous?: boolean | undefined;
+        consent?: boolean | undefined;
+        scopes?: string[] | undefined;
+        grantTypes?: ("authorization_code" | "refresh_token")[] | undefined;
+        jwks?: {
+            keys: import("../types").JWK[];
+        } | undefined;
+        signKey?: import("../types").JWK | Uint8Array<ArrayBuffer> | undefined;
+    }, {
+        name: string;
+        id: string;
+        type: "local";
+        allowAnonymous?: boolean | undefined;
+        consent?: boolean | undefined;
+        scopes?: string[] | undefined;
+        grantTypes?: ("authorization_code" | "refresh_token")[] | undefined;
+        jwks?: {
+            keys: import("../types").JWK[];
+        } | undefined;
+        signKey?: import("../types").JWK | Uint8Array<ArrayBuffer> | undefined;
+    }>]>>;
+    standalone: z.ZodDefault<z.ZodOptional<z.ZodUnion<[z.ZodLiteral<"includeInParent">, z.ZodBoolean]>>>;
+}, z.ZodTypeAny, "passthrough">, z.objectInputType<{
+    id: z.ZodOptional<z.ZodString>;
+    name: z.ZodString;
+    description: z.ZodOptional<z.ZodString>;
+    urlType: z.ZodEnum<["worker", "url"]>;
+    url: z.ZodString;
+    auth: z.ZodOptional<z.ZodDiscriminatedUnion<"type", [z.ZodObject<{
+        type: z.ZodLiteral<"remote">;
+        id: z.ZodOptional<z.ZodString>;
+        name: z.ZodString;
+        baseUrl: z.ZodString;
+        dcrEnabled: z.ZodOptional<z.ZodBoolean>;
+        clientId: z.ZodOptional<z.ZodUnion<[z.ZodString, z.ZodFunction<z.ZodTuple<[z.ZodObject<{
+            clientId: z.ZodString;
+        }, "strip", z.ZodTypeAny, {
+            clientId: string;
+        }, {
+            clientId: string;
+        }>], z.ZodUnknown>, z.ZodString>]>>;
+        mode: z.ZodOptional<z.ZodUnion<[z.ZodLiteral<"orchestrated">, z.ZodLiteral<"transparent">]>>;
+        allowAnonymous: z.ZodOptional<z.ZodBoolean>;
+        consent: z.ZodOptional<z.ZodBoolean>;
+        jwks: z.ZodOptional<z.ZodObject<{
+            keys: z.ZodArray<z.ZodType<import("../types").JWK, z.ZodTypeDef, import("../types").JWK>, "many">;
+        }, "strip", z.ZodTypeAny, {
+            keys: import("../types").JWK[];
+        }, {
+            keys: import("../types").JWK[];
+        }>>;
+        scopes: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
+        grantTypes: z.ZodOptional<z.ZodArray<z.ZodUnion<[z.ZodLiteral<"authorization_code">, z.ZodLiteral<"refresh_token">]>, "many">>;
+        authEndpoint: z.ZodOptional<z.ZodString>;
+        tokenEndpoint: z.ZodOptional<z.ZodString>;
+        registrationEndpoint: z.ZodOptional<z.ZodString>;
+        userInfoEndpoint: z.ZodOptional<z.ZodString>;
+        jwksUri: z.ZodOptional<z.ZodString>;
+    }, "strip", z.ZodTypeAny, {
+        name: string;
+        type: "remote";
+        baseUrl: string;
+        id?: string | undefined;
+        dcrEnabled?: boolean | undefined;
+        clientId?: string | ((args_0: {
+            clientId: string;
+        }, ...args: unknown[]) => string) | undefined;
+        mode?: "orchestrated" | "transparent" | undefined;
+        allowAnonymous?: boolean | undefined;
+        consent?: boolean | undefined;
+        scopes?: string[] | undefined;
+        grantTypes?: ("authorization_code" | "refresh_token")[] | undefined;
+        authEndpoint?: string | undefined;
+        tokenEndpoint?: string | undefined;
+        registrationEndpoint?: string | undefined;
+        userInfoEndpoint?: string | undefined;
+        jwks?: {
+            keys: import("../types").JWK[];
+        } | undefined;
+        jwksUri?: string | undefined;
+    }, {
+        name: string;
+        type: "remote";
+        baseUrl: string;
+        id?: string | undefined;
+        dcrEnabled?: boolean | undefined;
+        clientId?: string | ((args_0: {
+            clientId: string;
+        }, ...args: unknown[]) => string) | undefined;
+        mode?: "orchestrated" | "transparent" | undefined;
+        allowAnonymous?: boolean | undefined;
+        consent?: boolean | undefined;
+        scopes?: string[] | undefined;
+        grantTypes?: ("authorization_code" | "refresh_token")[] | undefined;
+        authEndpoint?: string | undefined;
+        tokenEndpoint?: string | undefined;
+        registrationEndpoint?: string | undefined;
+        userInfoEndpoint?: string | undefined;
+        jwks?: {
+            keys: import("../types").JWK[];
+        } | undefined;
+        jwksUri?: string | undefined;
+    }>, z.ZodObject<{
+        type: z.ZodLiteral<"local">;
+        id: z.ZodString;
+        name: z.ZodString;
+        scopes: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
+        grantTypes: z.ZodOptional<z.ZodArray<z.ZodUnion<[z.ZodLiteral<"authorization_code">, z.ZodLiteral<"refresh_token">]>, "many">>;
+        allowAnonymous: z.ZodOptional<z.ZodBoolean>;
+        consent: z.ZodOptional<z.ZodBoolean>;
+        jwks: z.ZodOptional<z.ZodObject<{
+            keys: z.ZodArray<z.ZodType<import("../types").JWK, z.ZodTypeDef, import("../types").JWK>, "many">;
+        }, "strip", z.ZodTypeAny, {
+            keys: import("../types").JWK[];
+        }, {
+            keys: import("../types").JWK[];
+        }>>;
+        signKey: z.ZodOptional<z.ZodUnion<[z.ZodType<import("../types").JWK, z.ZodTypeDef, import("../types").JWK>, z.ZodType<Uint8Array<ArrayBuffer>, z.ZodTypeDef, Uint8Array<ArrayBuffer>>]>>;
+    }, "strip", z.ZodTypeAny, {
+        name: string;
+        id: string;
+        type: "local";
+        allowAnonymous?: boolean | undefined;
+        consent?: boolean | undefined;
+        scopes?: string[] | undefined;
+        grantTypes?: ("authorization_code" | "refresh_token")[] | undefined;
+        jwks?: {
+            keys: import("../types").JWK[];
+        } | undefined;
+        signKey?: import("../types").JWK | Uint8Array<ArrayBuffer> | undefined;
+    }, {
+        name: string;
+        id: string;
+        type: "local";
+        allowAnonymous?: boolean | undefined;
+        consent?: boolean | undefined;
+        scopes?: string[] | undefined;
+        grantTypes?: ("authorization_code" | "refresh_token")[] | undefined;
+        jwks?: {
+            keys: import("../types").JWK[];
+        } | undefined;
+        signKey?: import("../types").JWK | Uint8Array<ArrayBuffer> | undefined;
+    }>]>>;
+    standalone: z.ZodDefault<z.ZodOptional<z.ZodUnion<[z.ZodLiteral<"includeInParent">, z.ZodBoolean]>>>;
+}, z.ZodTypeAny, "passthrough">>;
+export type AppMetadata = LocalAppMetadata | RemoteAppMetadata;