@frontmcp/sdk 0.4.0 → 0.5.0

package/src/errors/authorization-required.error.d.ts

@@ -0,0 +1,189 @@
+/**
+ * Authorization Required Error
+ *
+ * Thrown when a tool requires app-level authorization that the user has not granted.
+ * Used for progressive/incremental authorization flow where users can skip apps
+ * during initial auth and authorize later when needed.
+ *
+ * Behavior depends on session mode:
+ * - Stateful: Returns auth_url link for incremental authorization
+ * - Stateless: Returns unauthorized error (no link, must re-auth from scratch)
+ *
+ * Supports MCP elicit flow for clients that support it.
+ */
+import { z } from 'zod';
+import { PublicMcpError } from './mcp.error';
+/**
+ * Session mode determines how authorization state is stored
+ */
+export type SessionMode = 'stateful' | 'stateless';
+/**
+ * Elicit response type for clients that support elicit flow
+ */
+export declare const elicitResponseSchema: z.ZodObject<{
+    elicitId: z.ZodString;
+    authUrl: z.ZodString;
+    message: z.ZodString;
+    appId: z.ZodString;
+    toolId: z.ZodString;
+}, z.core.$strip>;
+export type ElicitResponse = z.infer<typeof elicitResponseSchema>;
+/**
+ * Schema for authorization required response data (stateful mode with link)
+ */
+export declare const authorizationRequiredDataSchema: z.ZodObject<{
+    error: z.ZodLiteral<"authorization_required">;
+    app: z.ZodString;
+    tool: z.ZodString;
+    auth_url: z.ZodOptional<z.ZodString>;
+    message: z.ZodString;
+    required_scopes: z.ZodOptional<z.ZodArray<z.ZodString>>;
+    session_mode: z.ZodOptional<z.ZodEnum<{
+        stateful: "stateful";
+        stateless: "stateless";
+    }>>;
+    elicit_id: z.ZodOptional<z.ZodString>;
+    supports_incremental: z.ZodOptional<z.ZodBoolean>;
+}, z.core.$strip>;
+/**
+ * Schema for authorization required error constructor params
+ */
+export declare const authorizationRequiredParamsSchema: z.ZodObject<{
+    appId: z.ZodString;
+    toolId: z.ZodString;
+    authUrl: z.ZodOptional<z.ZodString>;
+    requiredScopes: z.ZodOptional<z.ZodArray<z.ZodString>>;
+    message: z.ZodOptional<z.ZodString>;
+    sessionMode: z.ZodOptional<z.ZodEnum<{
+        stateful: "stateful";
+        stateless: "stateless";
+    }>>;
+    elicitId: z.ZodOptional<z.ZodString>;
+    vaultId: z.ZodOptional<z.ZodString>;
+    pendingAuthId: z.ZodOptional<z.ZodString>;
+}, z.core.$strip>;
+/**
+ * Schema for the _meta field in MCP error response
+ */
+export declare const authorizationRequiredMetaSchema: z.ZodObject<{
+    errorId: z.ZodString;
+    code: z.ZodString;
+    timestamp: z.ZodString;
+    authorization_required: z.ZodLiteral<true>;
+    app: z.ZodString;
+    tool: z.ZodString;
+    auth_url: z.ZodOptional<z.ZodString>;
+    required_scopes: z.ZodOptional<z.ZodArray<z.ZodString>>;
+    session_mode: z.ZodEnum<{
+        stateful: "stateful";
+        stateless: "stateless";
+    }>;
+    supports_incremental: z.ZodBoolean;
+    elicit_id: z.ZodOptional<z.ZodString>;
+    pending_auth_id: z.ZodOptional<z.ZodString>;
+}, z.core.$strip>;
+/**
+ * Data structure for authorization required responses
+ */
+export type AuthorizationRequiredData = z.infer<typeof authorizationRequiredDataSchema>;
+/**
+ * Constructor params for AuthorizationRequiredError
+ */
+export type AuthorizationRequiredParams = z.infer<typeof authorizationRequiredParamsSchema>;
+/**
+ * Meta field type for MCP error response
+ */
+export type AuthorizationRequiredMeta = z.infer<typeof authorizationRequiredMetaSchema>;
+/**
+ * Error thrown when a tool's parent app requires authorization.
+ * This enables progressive authorization where users can authorize apps
+ * incrementally as needed rather than all at once.
+ *
+ * Behavior depends on session mode:
+ * - **Stateful**: Returns auth_url link for incremental authorization
+ *   - User can click link to authorize without full re-authentication
+ *   - Supports elicit flow for interactive authorization
+ * - **Stateless**: Returns unauthorized error only
+ *   - No link provided (all state in JWT, cannot extend)
+ *   - User must re-authenticate from scratch
+ *
+ * @example
+ * ```typescript
+ * // Stateful mode - can provide auth link
+ * throw new AuthorizationRequiredError({
+ *   appId: 'slack',
+ *   toolId: 'slack:send_message',
+ *   authUrl: '/oauth/authorize?app=slack',
+ *   sessionMode: 'stateful',
+ *   message: 'Please authorize Slack to use this tool.',
+ * });
+ *
+ * // Stateless mode - no link, must re-auth
+ * throw new AuthorizationRequiredError({
+ *   appId: 'slack',
+ *   toolId: 'slack:send_message',
+ *   sessionMode: 'stateless',
+ *   message: 'You are not authorized to use this tool.',
+ * });
+ * ```
+ */
+export declare class AuthorizationRequiredError extends PublicMcpError {
+    /** App ID that requires authorization */
+    readonly appId: string;
+    /** Tool ID that triggered the authorization requirement */
+    readonly toolId: string;
+    /** URL to authorize the app (only available in stateful mode) */
+    readonly authUrl?: string;
+    /** Scopes required by the tool (optional) */
+    readonly requiredScopes?: string[];
+    /** Session mode determines if incremental auth is supported */
+    readonly sessionMode: SessionMode;
+    /** Elicit ID if using elicit flow */
+    readonly elicitId?: string;
+    /** Vault ID for stateful sessions */
+    readonly vaultId?: string;
+    /** Pending auth ID for tracking */
+    readonly pendingAuthId?: string;
+    /** Whether incremental authorization is supported */
+    readonly supportsIncremental: boolean;
+    constructor(params: AuthorizationRequiredParams);
+    /**
+     * Convert to MCP error response format with authorization metadata.
+     * The _meta field includes structured data that AI agents can use
+     * to prompt users for authorization.
+     *
+     * In stateful mode: includes auth_url for AI to display
+     * In stateless mode: no auth_url, AI should inform user to re-authenticate
+     */
+    toMcpError(isDevelopment?: boolean): {
+        content: Array<{
+            type: 'text';
+            text: string;
+        }>;
+        isError: true;
+        _meta: AuthorizationRequiredMeta;
+    };
+    /**
+     * Convert to structured authorization required data
+     */
+    toAuthorizationRequiredData(): AuthorizationRequiredData;
+    /**
+     * Create an elicit response for clients that support it
+     * Only available in stateful mode
+     */
+    toElicitResponse(): ElicitResponse | null;
+    /**
+     * Check if this error can be resolved via incremental auth link
+     */
+    canUseIncrementalAuth(): boolean;
+    /**
+     * Get user-facing message based on mode
+     * - Stateful: includes link text
+     * - Stateless: tells user to re-authenticate
+     */
+    getUserFacingMessage(): string;
+    /**
+     * Get message for cancelled authorization
+     */
+    static getCancelledMessage(appId: string, toolId: string, authUrl?: string): string;
+}

package/src/errors/authorization-required.error.js

@@ -0,0 +1,274 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.AuthorizationRequiredError = exports.authorizationRequiredMetaSchema = exports.authorizationRequiredParamsSchema = exports.authorizationRequiredDataSchema = exports.elicitResponseSchema = void 0;
+/**
+ * Authorization Required Error
+ *
+ * Thrown when a tool requires app-level authorization that the user has not granted.
+ * Used for progressive/incremental authorization flow where users can skip apps
+ * during initial auth and authorize later when needed.
+ *
+ * Behavior depends on session mode:
+ * - Stateful: Returns auth_url link for incremental authorization
+ * - Stateless: Returns unauthorized error (no link, must re-auth from scratch)
+ *
+ * Supports MCP elicit flow for clients that support it.
+ */
+const zod_1 = require("zod");
+const mcp_error_1 = require("./mcp.error");
+/**
+ * Elicit response type for clients that support elicit flow
+ */
+exports.elicitResponseSchema = zod_1.z.object({
+    /** Elicit request ID for tracking */
+    elicitId: zod_1.z.string(),
+    /** Authorization URL to display */
+    authUrl: zod_1.z.string().url(),
+    /** Message to display to user */
+    message: zod_1.z.string(),
+    /** App being authorized */
+    appId: zod_1.z.string(),
+    /** Tool that triggered auth */
+    toolId: zod_1.z.string(),
+});
+// ============================================
+// Schemas
+// ============================================
+/**
+ * Schema for authorization required response data (stateful mode with link)
+ */
+exports.authorizationRequiredDataSchema = zod_1.z.object({
+    /** Error type identifier */
+    error: zod_1.z.literal('authorization_required'),
+    /** App ID that requires authorization */
+    app: zod_1.z.string().min(1),
+    /** Tool ID that triggered the authorization requirement */
+    tool: zod_1.z.string().min(1),
+    /** URL to authorize the app (only in stateful mode) */
+    auth_url: zod_1.z.string().url().optional(),
+    /** Human-readable message */
+    message: zod_1.z.string(),
+    /** Scopes required by the tool (optional) */
+    required_scopes: zod_1.z.array(zod_1.z.string()).optional(),
+    /** Session mode that determines behavior */
+    session_mode: zod_1.z.enum(['stateful', 'stateless']).optional(),
+    /** Whether elicit flow is being used */
+    elicit_id: zod_1.z.string().optional(),
+    /** Whether client can use incremental auth link */
+    supports_incremental: zod_1.z.boolean().optional(),
+});
+/**
+ * Schema for authorization required error constructor params
+ */
+exports.authorizationRequiredParamsSchema = zod_1.z.object({
+    appId: zod_1.z.string().min(1),
+    toolId: zod_1.z.string().min(1),
+    authUrl: zod_1.z.string().optional(),
+    requiredScopes: zod_1.z.array(zod_1.z.string()).optional(),
+    message: zod_1.z.string().optional(),
+    /** Session mode - determines if auth link is included */
+    sessionMode: zod_1.z.enum(['stateful', 'stateless']).optional(),
+    /** Elicit ID if using elicit flow */
+    elicitId: zod_1.z.string().optional(),
+    /** Vault ID for stateful sessions */
+    vaultId: zod_1.z.string().optional(),
+    /** Pending auth ID for tracking */
+    pendingAuthId: zod_1.z.string().optional(),
+});
+/**
+ * Schema for the _meta field in MCP error response
+ */
+exports.authorizationRequiredMetaSchema = zod_1.z.object({
+    errorId: zod_1.z.string(),
+    code: zod_1.z.string(),
+    timestamp: zod_1.z.string(),
+    authorization_required: zod_1.z.literal(true),
+    app: zod_1.z.string(),
+    tool: zod_1.z.string(),
+    auth_url: zod_1.z.string().optional(),
+    required_scopes: zod_1.z.array(zod_1.z.string()).optional(),
+    session_mode: zod_1.z.enum(['stateful', 'stateless']),
+    supports_incremental: zod_1.z.boolean(),
+    elicit_id: zod_1.z.string().optional(),
+    pending_auth_id: zod_1.z.string().optional(),
+});
+// ============================================
+// Error Class
+// ============================================
+/**
+ * Error thrown when a tool's parent app requires authorization.
+ * This enables progressive authorization where users can authorize apps
+ * incrementally as needed rather than all at once.
+ *
+ * Behavior depends on session mode:
+ * - **Stateful**: Returns auth_url link for incremental authorization
+ *   - User can click link to authorize without full re-authentication
+ *   - Supports elicit flow for interactive authorization
+ * - **Stateless**: Returns unauthorized error only
+ *   - No link provided (all state in JWT, cannot extend)
+ *   - User must re-authenticate from scratch
+ *
+ * @example
+ * ```typescript
+ * // Stateful mode - can provide auth link
+ * throw new AuthorizationRequiredError({
+ *   appId: 'slack',
+ *   toolId: 'slack:send_message',
+ *   authUrl: '/oauth/authorize?app=slack',
+ *   sessionMode: 'stateful',
+ *   message: 'Please authorize Slack to use this tool.',
+ * });
+ *
+ * // Stateless mode - no link, must re-auth
+ * throw new AuthorizationRequiredError({
+ *   appId: 'slack',
+ *   toolId: 'slack:send_message',
+ *   sessionMode: 'stateless',
+ *   message: 'You are not authorized to use this tool.',
+ * });
+ * ```
+ */
+class AuthorizationRequiredError extends mcp_error_1.PublicMcpError {
+    /** App ID that requires authorization */
+    appId;
+    /** Tool ID that triggered the authorization requirement */
+    toolId;
+    /** URL to authorize the app (only available in stateful mode) */
+    authUrl;
+    /** Scopes required by the tool (optional) */
+    requiredScopes;
+    /** Session mode determines if incremental auth is supported */
+    sessionMode;
+    /** Elicit ID if using elicit flow */
+    elicitId;
+    /** Vault ID for stateful sessions */
+    vaultId;
+    /** Pending auth ID for tracking */
+    pendingAuthId;
+    /** Whether incremental authorization is supported */
+    supportsIncremental;
+    constructor(params) {
+        const sessionMode = params.sessionMode ?? 'stateful';
+        const supportsIncremental = sessionMode === 'stateful';
+        // Message differs based on mode
+        const defaultMessage = supportsIncremental
+            ? `Authorization required for ${params.appId}. Please authorize to use ${params.toolId}.`
+            : `You are not authorized to use ${params.toolId}. Please re-authenticate to access this tool.`;
+        super(params.message || defaultMessage, 'AUTHORIZATION_REQUIRED', 403);
+        this.appId = params.appId;
+        this.toolId = params.toolId;
+        this.sessionMode = sessionMode;
+        this.supportsIncremental = supportsIncremental;
+        // Only set authUrl in stateful mode
+        if (supportsIncremental && params.authUrl) {
+            this.authUrl = params.authUrl;
+        }
+        this.requiredScopes = params.requiredScopes;
+        this.elicitId = params.elicitId;
+        this.vaultId = params.vaultId;
+        this.pendingAuthId = params.pendingAuthId;
+    }
+    /**
+     * Convert to MCP error response format with authorization metadata.
+     * The _meta field includes structured data that AI agents can use
+     * to prompt users for authorization.
+     *
+     * In stateful mode: includes auth_url for AI to display
+     * In stateless mode: no auth_url, AI should inform user to re-authenticate
+     */
+    toMcpError(isDevelopment) {
+        // Build content text based on mode
+        let contentText = this.getPublicMessage();
+        if (this.supportsIncremental && this.authUrl) {
+            contentText += `\n\nTo authorize, click: ${this.authUrl}`;
+        }
+        else if (!this.supportsIncremental) {
+            contentText += '\n\nPlease re-authenticate to access this tool.';
+        }
+        return {
+            content: [
+                {
+                    type: 'text',
+                    text: contentText,
+                },
+            ],
+            isError: true,
+            _meta: {
+                errorId: this.errorId,
+                code: this.code,
+                timestamp: new Date().toISOString(),
+                // Progressive auth specific fields for AI agents to use
+                authorization_required: true,
+                app: this.appId,
+                tool: this.toolId,
+                auth_url: this.authUrl,
+                required_scopes: this.requiredScopes,
+                session_mode: this.sessionMode,
+                supports_incremental: this.supportsIncremental,
+                elicit_id: this.elicitId,
+                pending_auth_id: this.pendingAuthId,
+            },
+        };
+    }
+    /**
+     * Convert to structured authorization required data
+     */
+    toAuthorizationRequiredData() {
+        return {
+            error: 'authorization_required',
+            app: this.appId,
+            tool: this.toolId,
+            auth_url: this.authUrl,
+            message: this.getPublicMessage(),
+            required_scopes: this.requiredScopes,
+            session_mode: this.sessionMode,
+            elicit_id: this.elicitId,
+            supports_incremental: this.supportsIncremental,
+        };
+    }
+    /**
+     * Create an elicit response for clients that support it
+     * Only available in stateful mode
+     */
+    toElicitResponse() {
+        if (!this.supportsIncremental || !this.authUrl || !this.elicitId) {
+            return null;
+        }
+        return {
+            elicitId: this.elicitId,
+            authUrl: this.authUrl,
+            message: this.getPublicMessage(),
+            appId: this.appId,
+            toolId: this.toolId,
+        };
+    }
+    /**
+     * Check if this error can be resolved via incremental auth link
+     */
+    canUseIncrementalAuth() {
+        return this.supportsIncremental && !!this.authUrl;
+    }
+    /**
+     * Get user-facing message based on mode
+     * - Stateful: includes link text
+     * - Stateless: tells user to re-authenticate
+     */
+    getUserFacingMessage() {
+        if (this.supportsIncremental && this.authUrl) {
+            return `${this.getPublicMessage()}\n\nClick here to authorize: ${this.authUrl}`;
+        }
+        return `${this.getPublicMessage()}\n\nYou are not authorized to use this tool. Please re-authenticate to access it.`;
+    }
+    /**
+     * Get message for cancelled authorization
+     */
+    static getCancelledMessage(appId, toolId, authUrl) {
+        const baseMsg = `Authorization was cancelled. You are not authorized to use ${toolId}.`;
+        if (authUrl) {
+            return `${baseMsg}\n\nIf you still want to use this tool, click this link to authorize: ${authUrl}\n\nThen re-prompt your request to try again.`;
+        }
+        return `${baseMsg}\n\nPlease re-authenticate and try again.`;
+    }
+}
+exports.AuthorizationRequiredError = AuthorizationRequiredError;
+//# sourceMappingURL=authorization-required.error.js.map

package/src/errors/authorization-required.error.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"authorization-required.error.js","sourceRoot":"","sources":["../../../src/errors/authorization-required.error.ts"],"names":[],"mappings":";;;AAAA;;;;;;;;;;;;GAYG;AACH,6BAAwB;AACxB,2CAA6C;AAW7C;;GAEG;AACU,QAAA,oBAAoB,GAAG,OAAC,CAAC,MAAM,CAAC;IAC3C,qCAAqC;IACrC,QAAQ,EAAE,OAAC,CAAC,MAAM,EAAE;IACpB,mCAAmC;IACnC,OAAO,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE;IACzB,iCAAiC;IACjC,OAAO,EAAE,OAAC,CAAC,MAAM,EAAE;IACnB,2BAA2B;IAC3B,KAAK,EAAE,OAAC,CAAC,MAAM,EAAE;IACjB,+BAA+B;IAC/B,MAAM,EAAE,OAAC,CAAC,MAAM,EAAE;CACnB,CAAC,CAAC;AAIH,+CAA+C;AAC/C,UAAU;AACV,+CAA+C;AAE/C;;GAEG;AACU,QAAA,+BAA+B,GAAG,OAAC,CAAC,MAAM,CAAC;IACtD,4BAA4B;IAC5B,KAAK,EAAE,OAAC,CAAC,OAAO,CAAC,wBAAwB,CAAC;IAC1C,yCAAyC;IACzC,GAAG,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;IACtB,2DAA2D;IAC3D,IAAI,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;IACvB,uDAAuD;IACvD,QAAQ,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE,CAAC,QAAQ,EAAE;IACrC,6BAA6B;IAC7B,OAAO,EAAE,OAAC,CAAC,MAAM,EAAE;IACnB,6CAA6C;IAC7C,eAAe,EAAE,OAAC,CAAC,KAAK,CAAC,OAAC,CAAC,MAAM,EAAE,CAAC,CAAC,QAAQ,EAAE;IAC/C,4CAA4C;IAC5C,YAAY,EAAE,OAAC,CAAC,IAAI,CAAC,CAAC,UAAU,EAAE,WAAW,CAAC,CAAC,CAAC,QAAQ,EAAE;IAC1D,wCAAwC;IACxC,SAAS,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAChC,mDAAmD;IACnD,oBAAoB,EAAE,OAAC,CAAC,OAAO,EAAE,CAAC,QAAQ,EAAE;CAC7C,CAAC,CAAC;AAEH;;GAEG;AACU,QAAA,iCAAiC,GAAG,OAAC,CAAC,MAAM,CAAC;IACxD,KAAK,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;IACxB,MAAM,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;IACzB,OAAO,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAC9B,cAAc,EAAE,OAAC,CAAC,KAAK,CAAC,OAAC,CAAC,MAAM,EAAE,CAAC,CAAC,QAAQ,EAAE;IAC9C,OAAO,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAC9B,yDAAyD;IACzD,WAAW,EAAE,OAAC,CAAC,IAAI,CAAC,CAAC,UAAU,EAAE,WAAW,CAAC,CAAC,CAAC,QAAQ,EAAE;IACzD,qCAAqC;IACrC,QAAQ,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAC/B,qCAAqC;IACrC,OAAO,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAC9B,mCAAmC;IACnC,aAAa,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;CACrC,CAAC,CAAC;AAEH;;GAEG;AACU,QAAA,+BAA+B,GAAG,OAAC,CAAC,MAAM,CAAC;IACtD,OAAO,EAAE,OAAC,CAAC,MAAM,EAAE;IACnB,IAAI,EAAE,OAAC,CAAC,MAAM,EAAE;IAChB,SAAS,EAAE,OAAC,CAAC,MAAM,EAAE;IACrB,sBAAsB,EAAE,OAAC,CAAC,OAAO,CAAC,IAAI,CAAC;IACvC,GAAG,EAAE,OAAC,CAAC,MAAM,EAAE;IACf,IAAI,EAAE,OAAC,CAAC,MAAM,EAAE;IAChB,QAAQ,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAC/B,eAAe,EAAE,OAAC,CAAC,KAAK,CAAC,OAAC,CAAC,MAAM,EAAE,CAAC,CAAC,QAAQ,EAAE;IAC/C,YAAY,EAAE,OAAC,CAAC,IAAI,CAAC,CAAC,UAAU,EAAE,WAAW,CAAC,CAAC;IAC/C,oBAAoB,EAAE,OAAC,CAAC,OAAO,EAAE;IACjC,SAAS,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAChC,eAAe,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;CACvC,CAAC,CAAC;AAqBH,+CAA+C;AAC/C,cAAc;AACd,+CAA+C;AAE/C;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAgCG;AACH,MAAa,0BAA2B,SAAQ,0BAAc;IAC5D,yCAAyC;IAChC,KAAK,CAAS;IAEvB,2DAA2D;IAClD,MAAM,CAAS;IAExB,iEAAiE;IACxD,OAAO,CAAU;IAE1B,6CAA6C;IACpC,cAAc,CAAY;IAEnC,+DAA+D;IACtD,WAAW,CAAc;IAElC,qCAAqC;IAC5B,QAAQ,CAAU;IAE3B,qCAAqC;IAC5B,OAAO,CAAU;IAE1B,mCAAmC;IAC1B,aAAa,CAAU;IAEhC,qDAAqD;IAC5C,mBAAmB,CAAU;IAEtC,YAAY,MAAmC;QAC7C,MAAM,WAAW,GAAG,MAAM,CAAC,WAAW,IAAI,UAAU,CAAC;QACrD,MAAM,mBAAmB,GAAG,WAAW,KAAK,UAAU,CAAC;QAEvD,gCAAgC;QAChC,MAAM,cAAc,GAAG,mBAAmB;YACxC,CAAC,CAAC,8BAA8B,MAAM,CAAC,KAAK,6BAA6B,MAAM,CAAC,MAAM,GAAG;YACzF,CAAC,CAAC,iCAAiC,MAAM,CAAC,MAAM,+CAA+C,CAAC;QAElG,KAAK,CAAC,MAAM,CAAC,OAAO,IAAI,cAAc,EAAE,wBAAwB,EAAE,GAAG,CAAC,CAAC;QACvE,IAAI,CAAC,KAAK,GAAG,MAAM,CAAC,KAAK,CAAC;QAC1B,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC,MAAM,CAAC;QAC5B,IAAI,CAAC,WAAW,GAAG,WAAW,CAAC;QAC/B,IAAI,CAAC,mBAAmB,GAAG,mBAAmB,CAAC;QAE/C,oCAAoC;QACpC,IAAI,mBAAmB,IAAI,MAAM,CAAC,OAAO,EAAE,CAAC;YAC1C,IAAI,CAAC,OAAO,GAAG,MAAM,CAAC,OAAO,CAAC;QAChC,CAAC;QAED,IAAI,CAAC,cAAc,GAAG,MAAM,CAAC,cAAc,CAAC;QAC5C,IAAI,CAAC,QAAQ,GAAG,MAAM,CAAC,QAAQ,CAAC;QAChC,IAAI,CAAC,OAAO,GAAG,MAAM,CAAC,OAAO,CAAC;QAC9B,IAAI,CAAC,aAAa,GAAG,MAAM,CAAC,aAAa,CAAC;IAC5C,CAAC;IAED;;;;;;;OAOG;IACM,UAAU,CAAC,aAAuB;QAKzC,mCAAmC;QACnC,IAAI,WAAW,GAAG,IAAI,CAAC,gBAAgB,EAAE,CAAC;QAC1C,IAAI,IAAI,CAAC,mBAAmB,IAAI,IAAI,CAAC,OAAO,EAAE,CAAC;YAC7C,WAAW,IAAI,4BAA4B,IAAI,CAAC,OAAO,EAAE,CAAC;QAC5D,CAAC;aAAM,IAAI,CAAC,IAAI,CAAC,mBAAmB,EAAE,CAAC;YACrC,WAAW,IAAI,iDAAiD,CAAC;QACnE,CAAC;QAED,OAAO;YACL,OAAO,EAAE;gBACP;oBACE,IAAI,EAAE,MAAe;oBACrB,IAAI,EAAE,WAAW;iBAClB;aACF;YACD,OAAO,EAAE,IAAa;YACtB,KAAK,EAAE;gBACL,OAAO,EAAE,IAAI,CAAC,OAAO;gBACrB,IAAI,EAAE,IAAI,CAAC,IAAI;gBACf,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;gBACnC,wDAAwD;gBACxD,sBAAsB,EAAE,IAAa;gBACrC,GAAG,EAAE,IAAI,CAAC,KAAK;gBACf,IAAI,EAAE,IAAI,CAAC,MAAM;gBACjB,QAAQ,EAAE,IAAI,CAAC,OAAO;gBACtB,eAAe,EAAE,IAAI,CAAC,cAAc;gBACpC,YAAY,EAAE,IAAI,CAAC,WAAW;gBAC9B,oBAAoB,EAAE,IAAI,CAAC,mBAAmB;gBAC9C,SAAS,EAAE,IAAI,CAAC,QAAQ;gBACxB,eAAe,EAAE,IAAI,CAAC,aAAa;aACpC;SACF,CAAC;IACJ,CAAC;IAED;;OAEG;IACH,2BAA2B;QACzB,OAAO;YACL,KAAK,EAAE,wBAAwB;YAC/B,GAAG,EAAE,IAAI,CAAC,KAAK;YACf,IAAI,EAAE,IAAI,CAAC,MAAM;YACjB,QAAQ,EAAE,IAAI,CAAC,OAAO;YACtB,OAAO,EAAE,IAAI,CAAC,gBAAgB,EAAE;YAChC,eAAe,EAAE,IAAI,CAAC,cAAc;YACpC,YAAY,EAAE,IAAI,CAAC,WAAW;YAC9B,SAAS,EAAE,IAAI,CAAC,QAAQ;YACxB,oBAAoB,EAAE,IAAI,CAAC,mBAAmB;SAC/C,CAAC;IACJ,CAAC;IAED;;;OAGG;IACH,gBAAgB;QACd,IAAI,CAAC,IAAI,CAAC,mBAAmB,IAAI,CAAC,IAAI,CAAC,OAAO,IAAI,CAAC,IAAI,CAAC,QAAQ,EAAE,CAAC;YACjE,OAAO,IAAI,CAAC;QACd,CAAC;QAED,OAAO;YACL,QAAQ,EAAE,IAAI,CAAC,QAAQ;YACvB,OAAO,EAAE,IAAI,CAAC,OAAO;YACrB,OAAO,EAAE,IAAI,CAAC,gBAAgB,EAAE;YAChC,KAAK,EAAE,IAAI,CAAC,KAAK;YACjB,MAAM,EAAE,IAAI,CAAC,MAAM;SACpB,CAAC;IACJ,CAAC;IAED;;OAEG;IACH,qBAAqB;QACnB,OAAO,IAAI,CAAC,mBAAmB,IAAI,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC;IACpD,CAAC;IAED;;;;OAIG;IACH,oBAAoB;QAClB,IAAI,IAAI,CAAC,mBAAmB,IAAI,IAAI,CAAC,OAAO,EAAE,CAAC;YAC7C,OAAO,GAAG,IAAI,CAAC,gBAAgB,EAAE,gCAAgC,IAAI,CAAC,OAAO,EAAE,CAAC;QAClF,CAAC;QACD,OAAO,GAAG,IAAI,CAAC,gBAAgB,EAAE,mFAAmF,CAAC;IACvH,CAAC;IAED;;OAEG;IACH,MAAM,CAAC,mBAAmB,CAAC,KAAa,EAAE,MAAc,EAAE,OAAgB;QACxE,MAAM,OAAO,GAAG,8DAA8D,MAAM,GAAG,CAAC;QACxF,IAAI,OAAO,EAAE,CAAC;YACZ,OAAO,GAAG,OAAO,yEAAyE,OAAO,+CAA+C,CAAC;QACnJ,CAAC;QACD,OAAO,GAAG,OAAO,2CAA2C,CAAC;IAC/D,CAAC;CACF;AArKD,gEAqKC","sourcesContent":["/**\n * Authorization Required Error\n *\n * Thrown when a tool requires app-level authorization that the user has not granted.\n * Used for progressive/incremental authorization flow where users can skip apps\n * during initial auth and authorize later when needed.\n *\n * Behavior depends on session mode:\n * - Stateful: Returns auth_url link for incremental authorization\n * - Stateless: Returns unauthorized error (no link, must re-auth from scratch)\n *\n * Supports MCP elicit flow for clients that support it.\n */\nimport { z } from 'zod';\nimport { PublicMcpError } from './mcp.error';\n\n// ============================================\n// Session Mode Types\n// ============================================\n\n/**\n * Session mode determines how authorization state is stored\n */\nexport type SessionMode = 'stateful' | 'stateless';\n\n/**\n * Elicit response type for clients that support elicit flow\n */\nexport const elicitResponseSchema = z.object({\n  /** Elicit request ID for tracking */\n  elicitId: z.string(),\n  /** Authorization URL to display */\n  authUrl: z.string().url(),\n  /** Message to display to user */\n  message: z.string(),\n  /** App being authorized */\n  appId: z.string(),\n  /** Tool that triggered auth */\n  toolId: z.string(),\n});\n\nexport type ElicitResponse = z.infer<typeof elicitResponseSchema>;\n\n// ============================================\n// Schemas\n// ============================================\n\n/**\n * Schema for authorization required response data (stateful mode with link)\n */\nexport const authorizationRequiredDataSchema = z.object({\n  /** Error type identifier */\n  error: z.literal('authorization_required'),\n  /** App ID that requires authorization */\n  app: z.string().min(1),\n  /** Tool ID that triggered the authorization requirement */\n  tool: z.string().min(1),\n  /** URL to authorize the app (only in stateful mode) */\n  auth_url: z.string().url().optional(),\n  /** Human-readable message */\n  message: z.string(),\n  /** Scopes required by the tool (optional) */\n  required_scopes: z.array(z.string()).optional(),\n  /** Session mode that determines behavior */\n  session_mode: z.enum(['stateful', 'stateless']).optional(),\n  /** Whether elicit flow is being used */\n  elicit_id: z.string().optional(),\n  /** Whether client can use incremental auth link */\n  supports_incremental: z.boolean().optional(),\n});\n\n/**\n * Schema for authorization required error constructor params\n */\nexport const authorizationRequiredParamsSchema = z.object({\n  appId: z.string().min(1),\n  toolId: z.string().min(1),\n  authUrl: z.string().optional(),\n  requiredScopes: z.array(z.string()).optional(),\n  message: z.string().optional(),\n  /** Session mode - determines if auth link is included */\n  sessionMode: z.enum(['stateful', 'stateless']).optional(),\n  /** Elicit ID if using elicit flow */\n  elicitId: z.string().optional(),\n  /** Vault ID for stateful sessions */\n  vaultId: z.string().optional(),\n  /** Pending auth ID for tracking */\n  pendingAuthId: z.string().optional(),\n});\n\n/**\n * Schema for the _meta field in MCP error response\n */\nexport const authorizationRequiredMetaSchema = z.object({\n  errorId: z.string(),\n  code: z.string(),\n  timestamp: z.string(),\n  authorization_required: z.literal(true),\n  app: z.string(),\n  tool: z.string(),\n  auth_url: z.string().optional(),\n  required_scopes: z.array(z.string()).optional(),\n  session_mode: z.enum(['stateful', 'stateless']),\n  supports_incremental: z.boolean(),\n  elicit_id: z.string().optional(),\n  pending_auth_id: z.string().optional(),\n});\n\n// ============================================\n// Types (inferred from schemas)\n// ============================================\n\n/**\n * Data structure for authorization required responses\n */\nexport type AuthorizationRequiredData = z.infer<typeof authorizationRequiredDataSchema>;\n\n/**\n * Constructor params for AuthorizationRequiredError\n */\nexport type AuthorizationRequiredParams = z.infer<typeof authorizationRequiredParamsSchema>;\n\n/**\n * Meta field type for MCP error response\n */\nexport type AuthorizationRequiredMeta = z.infer<typeof authorizationRequiredMetaSchema>;\n\n// ============================================\n// Error Class\n// ============================================\n\n/**\n * Error thrown when a tool's parent app requires authorization.\n * This enables progressive authorization where users can authorize apps\n * incrementally as needed rather than all at once.\n *\n * Behavior depends on session mode:\n * - **Stateful**: Returns auth_url link for incremental authorization\n *   - User can click link to authorize without full re-authentication\n *   - Supports elicit flow for interactive authorization\n * - **Stateless**: Returns unauthorized error only\n *   - No link provided (all state in JWT, cannot extend)\n *   - User must re-authenticate from scratch\n *\n * @example\n * ```typescript\n * // Stateful mode - can provide auth link\n * throw new AuthorizationRequiredError({\n *   appId: 'slack',\n *   toolId: 'slack:send_message',\n *   authUrl: '/oauth/authorize?app=slack',\n *   sessionMode: 'stateful',\n *   message: 'Please authorize Slack to use this tool.',\n * });\n *\n * // Stateless mode - no link, must re-auth\n * throw new AuthorizationRequiredError({\n *   appId: 'slack',\n *   toolId: 'slack:send_message',\n *   sessionMode: 'stateless',\n *   message: 'You are not authorized to use this tool.',\n * });\n * ```\n */\nexport class AuthorizationRequiredError extends PublicMcpError {\n  /** App ID that requires authorization */\n  readonly appId: string;\n\n  /** Tool ID that triggered the authorization requirement */\n  readonly toolId: string;\n\n  /** URL to authorize the app (only available in stateful mode) */\n  readonly authUrl?: string;\n\n  /** Scopes required by the tool (optional) */\n  readonly requiredScopes?: string[];\n\n  /** Session mode determines if incremental auth is supported */\n  readonly sessionMode: SessionMode;\n\n  /** Elicit ID if using elicit flow */\n  readonly elicitId?: string;\n\n  /** Vault ID for stateful sessions */\n  readonly vaultId?: string;\n\n  /** Pending auth ID for tracking */\n  readonly pendingAuthId?: string;\n\n  /** Whether incremental authorization is supported */\n  readonly supportsIncremental: boolean;\n\n  constructor(params: AuthorizationRequiredParams) {\n    const sessionMode = params.sessionMode ?? 'stateful';\n    const supportsIncremental = sessionMode === 'stateful';\n\n    // Message differs based on mode\n    const defaultMessage = supportsIncremental\n      ? `Authorization required for ${params.appId}. Please authorize to use ${params.toolId}.`\n      : `You are not authorized to use ${params.toolId}. Please re-authenticate to access this tool.`;\n\n    super(params.message || defaultMessage, 'AUTHORIZATION_REQUIRED', 403);\n    this.appId = params.appId;\n    this.toolId = params.toolId;\n    this.sessionMode = sessionMode;\n    this.supportsIncremental = supportsIncremental;\n\n    // Only set authUrl in stateful mode\n    if (supportsIncremental && params.authUrl) {\n      this.authUrl = params.authUrl;\n    }\n\n    this.requiredScopes = params.requiredScopes;\n    this.elicitId = params.elicitId;\n    this.vaultId = params.vaultId;\n    this.pendingAuthId = params.pendingAuthId;\n  }\n\n  /**\n   * Convert to MCP error response format with authorization metadata.\n   * The _meta field includes structured data that AI agents can use\n   * to prompt users for authorization.\n   *\n   * In stateful mode: includes auth_url for AI to display\n   * In stateless mode: no auth_url, AI should inform user to re-authenticate\n   */\n  override toMcpError(isDevelopment?: boolean): {\n    content: Array<{ type: 'text'; text: string }>;\n    isError: true;\n    _meta: AuthorizationRequiredMeta;\n  } {\n    // Build content text based on mode\n    let contentText = this.getPublicMessage();\n    if (this.supportsIncremental && this.authUrl) {\n      contentText += `\\n\\nTo authorize, click: ${this.authUrl}`;\n    } else if (!this.supportsIncremental) {\n      contentText += '\\n\\nPlease re-authenticate to access this tool.';\n    }\n\n    return {\n      content: [\n        {\n          type: 'text' as const,\n          text: contentText,\n        },\n      ],\n      isError: true as const,\n      _meta: {\n        errorId: this.errorId,\n        code: this.code,\n        timestamp: new Date().toISOString(),\n        // Progressive auth specific fields for AI agents to use\n        authorization_required: true as const,\n        app: this.appId,\n        tool: this.toolId,\n        auth_url: this.authUrl,\n        required_scopes: this.requiredScopes,\n        session_mode: this.sessionMode,\n        supports_incremental: this.supportsIncremental,\n        elicit_id: this.elicitId,\n        pending_auth_id: this.pendingAuthId,\n      },\n    };\n  }\n\n  /**\n   * Convert to structured authorization required data\n   */\n  toAuthorizationRequiredData(): AuthorizationRequiredData {\n    return {\n      error: 'authorization_required',\n      app: this.appId,\n      tool: this.toolId,\n      auth_url: this.authUrl,\n      message: this.getPublicMessage(),\n      required_scopes: this.requiredScopes,\n      session_mode: this.sessionMode,\n      elicit_id: this.elicitId,\n      supports_incremental: this.supportsIncremental,\n    };\n  }\n\n  /**\n   * Create an elicit response for clients that support it\n   * Only available in stateful mode\n   */\n  toElicitResponse(): ElicitResponse | null {\n    if (!this.supportsIncremental || !this.authUrl || !this.elicitId) {\n      return null;\n    }\n\n    return {\n      elicitId: this.elicitId,\n      authUrl: this.authUrl,\n      message: this.getPublicMessage(),\n      appId: this.appId,\n      toolId: this.toolId,\n    };\n  }\n\n  /**\n   * Check if this error can be resolved via incremental auth link\n   */\n  canUseIncrementalAuth(): boolean {\n    return this.supportsIncremental && !!this.authUrl;\n  }\n\n  /**\n   * Get user-facing message based on mode\n   * - Stateful: includes link text\n   * - Stateless: tells user to re-authenticate\n   */\n  getUserFacingMessage(): string {\n    if (this.supportsIncremental && this.authUrl) {\n      return `${this.getPublicMessage()}\\n\\nClick here to authorize: ${this.authUrl}`;\n    }\n    return `${this.getPublicMessage()}\\n\\nYou are not authorized to use this tool. Please re-authenticate to access it.`;\n  }\n\n  /**\n   * Get message for cancelled authorization\n   */\n  static getCancelledMessage(appId: string, toolId: string, authUrl?: string): string {\n    const baseMsg = `Authorization was cancelled. You are not authorized to use ${toolId}.`;\n    if (authUrl) {\n      return `${baseMsg}\\n\\nIf you still want to use this tool, click this link to authorize: ${authUrl}\\n\\nThen re-prompt your request to try again.`;\n    }\n    return `${baseMsg}\\n\\nPlease re-authenticate and try again.`;\n  }\n}\n"]}

package/src/errors/index.d.ts

@@ -1,2 +1,3 @@
-export { McpError, PublicMcpError, InternalMcpError, ToolNotFoundError, InvalidInputError, InvalidOutputError, InvalidMethodError, ToolExecutionError, RateLimitError, QuotaExceededError, UnauthorizedError, GenericServerError, isPublicError, toMcpError, formatMcpErrorResponse, } from './mcp.error';
+export { McpError, PublicMcpError, InternalMcpError, ToolNotFoundError, ResourceNotFoundError, ResourceReadError, InvalidResourceUriError, InvalidInputError, InvalidOutputError, InvalidMethodError, ToolExecutionError, RateLimitError, QuotaExceededError, UnauthorizedError, GenericServerError, DependencyNotFoundError, InvalidHookFlowError, AuthConfigurationError, PromptNotFoundError, PromptExecutionError, isPublicError, toMcpError, formatMcpErrorResponse, } from './mcp.error';
+export { authorizationRequiredDataSchema, authorizationRequiredParamsSchema, authorizationRequiredMetaSchema, AuthorizationRequiredData, AuthorizationRequiredParams, AuthorizationRequiredMeta, AuthorizationRequiredError, } from './authorization-required.error';
 export { ErrorHandler, ErrorHandlerOptions, createErrorHandler, shouldStopExecution } from './error-handler';

package/src/errors/index.js

@@ -1,12 +1,15 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.shouldStopExecution = exports.createErrorHandler = exports.ErrorHandler = exports.formatMcpErrorResponse = exports.toMcpError = exports.isPublicError = exports.GenericServerError = exports.UnauthorizedError = exports.QuotaExceededError = exports.RateLimitError = exports.ToolExecutionError = exports.InvalidMethodError = exports.InvalidOutputError = exports.InvalidInputError = exports.ToolNotFoundError = exports.InternalMcpError = exports.PublicMcpError = exports.McpError = void 0;
+exports.shouldStopExecution = exports.createErrorHandler = exports.ErrorHandler = exports.AuthorizationRequiredError = exports.authorizationRequiredMetaSchema = exports.authorizationRequiredParamsSchema = exports.authorizationRequiredDataSchema = exports.formatMcpErrorResponse = exports.toMcpError = exports.isPublicError = exports.PromptExecutionError = exports.PromptNotFoundError = exports.AuthConfigurationError = exports.InvalidHookFlowError = exports.DependencyNotFoundError = exports.GenericServerError = exports.UnauthorizedError = exports.QuotaExceededError = exports.RateLimitError = exports.ToolExecutionError = exports.InvalidMethodError = exports.InvalidOutputError = exports.InvalidInputError = exports.InvalidResourceUriError = exports.ResourceReadError = exports.ResourceNotFoundError = exports.ToolNotFoundError = exports.InternalMcpError = exports.PublicMcpError = exports.McpError = void 0;
 // Export all error classes
 var mcp_error_1 = require("./mcp.error");
 Object.defineProperty(exports, "McpError", { enumerable: true, get: function () { return mcp_error_1.McpError; } });
 Object.defineProperty(exports, "PublicMcpError", { enumerable: true, get: function () { return mcp_error_1.PublicMcpError; } });
 Object.defineProperty(exports, "InternalMcpError", { enumerable: true, get: function () { return mcp_error_1.InternalMcpError; } });
 Object.defineProperty(exports, "ToolNotFoundError", { enumerable: true, get: function () { return mcp_error_1.ToolNotFoundError; } });
+Object.defineProperty(exports, "ResourceNotFoundError", { enumerable: true, get: function () { return mcp_error_1.ResourceNotFoundError; } });
+Object.defineProperty(exports, "ResourceReadError", { enumerable: true, get: function () { return mcp_error_1.ResourceReadError; } });
+Object.defineProperty(exports, "InvalidResourceUriError", { enumerable: true, get: function () { return mcp_error_1.InvalidResourceUriError; } });
 Object.defineProperty(exports, "InvalidInputError", { enumerable: true, get: function () { return mcp_error_1.InvalidInputError; } });
 Object.defineProperty(exports, "InvalidOutputError", { enumerable: true, get: function () { return mcp_error_1.InvalidOutputError; } });
 Object.defineProperty(exports, "InvalidMethodError", { enumerable: true, get: function () { return mcp_error_1.InvalidMethodError; } });
@@ -15,9 +18,22 @@ Object.defineProperty(exports, "RateLimitError", { enumerable: true, get: functi
 Object.defineProperty(exports, "QuotaExceededError", { enumerable: true, get: function () { return mcp_error_1.QuotaExceededError; } });
 Object.defineProperty(exports, "UnauthorizedError", { enumerable: true, get: function () { return mcp_error_1.UnauthorizedError; } });
 Object.defineProperty(exports, "GenericServerError", { enumerable: true, get: function () { return mcp_error_1.GenericServerError; } });
+Object.defineProperty(exports, "DependencyNotFoundError", { enumerable: true, get: function () { return mcp_error_1.DependencyNotFoundError; } });
+Object.defineProperty(exports, "InvalidHookFlowError", { enumerable: true, get: function () { return mcp_error_1.InvalidHookFlowError; } });
+Object.defineProperty(exports, "AuthConfigurationError", { enumerable: true, get: function () { return mcp_error_1.AuthConfigurationError; } });
+Object.defineProperty(exports, "PromptNotFoundError", { enumerable: true, get: function () { return mcp_error_1.PromptNotFoundError; } });
+Object.defineProperty(exports, "PromptExecutionError", { enumerable: true, get: function () { return mcp_error_1.PromptExecutionError; } });
 Object.defineProperty(exports, "isPublicError", { enumerable: true, get: function () { return mcp_error_1.isPublicError; } });
 Object.defineProperty(exports, "toMcpError", { enumerable: true, get: function () { return mcp_error_1.toMcpError; } });
 Object.defineProperty(exports, "formatMcpErrorResponse", { enumerable: true, get: function () { return mcp_error_1.formatMcpErrorResponse; } });
+// Export authorization required error for progressive auth
+var authorization_required_error_1 = require("./authorization-required.error");
+// Schemas
+Object.defineProperty(exports, "authorizationRequiredDataSchema", { enumerable: true, get: function () { return authorization_required_error_1.authorizationRequiredDataSchema; } });
+Object.defineProperty(exports, "authorizationRequiredParamsSchema", { enumerable: true, get: function () { return authorization_required_error_1.authorizationRequiredParamsSchema; } });
+Object.defineProperty(exports, "authorizationRequiredMetaSchema", { enumerable: true, get: function () { return authorization_required_error_1.authorizationRequiredMetaSchema; } });
+// Error class
+Object.defineProperty(exports, "AuthorizationRequiredError", { enumerable: true, get: function () { return authorization_required_error_1.AuthorizationRequiredError; } });
 // Export error handler utilities
 var error_handler_1 = require("./error-handler");
 Object.defineProperty(exports, "ErrorHandler", { enumerable: true, get: function () { return error_handler_1.ErrorHandler; } });

package/src/errors/index.js.map

@@ -1 +1 @@
-{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/errors/index.ts"],"names":[],"mappings":";;;AAAA,2BAA2B;AAC3B,yCAgBqB;AAfnB,qGAAA,QAAQ,OAAA;AACR,2GAAA,cAAc,OAAA;AACd,6GAAA,gBAAgB,OAAA;AAChB,8GAAA,iBAAiB,OAAA;AACjB,8GAAA,iBAAiB,OAAA;AACjB,+GAAA,kBAAkB,OAAA;AAClB,+GAAA,kBAAkB,OAAA;AAClB,+GAAA,kBAAkB,OAAA;AAClB,2GAAA,cAAc,OAAA;AACd,+GAAA,kBAAkB,OAAA;AAClB,8GAAA,iBAAiB,OAAA;AACjB,+GAAA,kBAAkB,OAAA;AAClB,0GAAA,aAAa,OAAA;AACb,uGAAA,UAAU,OAAA;AACV,mHAAA,sBAAsB,OAAA;AAGxB,iCAAiC;AACjC,iDAA6G;AAApG,6GAAA,YAAY,OAAA;AAAuB,mHAAA,kBAAkB,OAAA;AAAE,oHAAA,mBAAmB,OAAA","sourcesContent":["// Export all error classes\nexport {\n  McpError,\n  PublicMcpError,\n  InternalMcpError,\n  ToolNotFoundError,\n  InvalidInputError,\n  InvalidOutputError,\n  InvalidMethodError,\n  ToolExecutionError,\n  RateLimitError,\n  QuotaExceededError,\n  UnauthorizedError,\n  GenericServerError,\n  isPublicError,\n  toMcpError,\n  formatMcpErrorResponse,\n} from './mcp.error';\n\n// Export error handler utilities\nexport { ErrorHandler, ErrorHandlerOptions, createErrorHandler, shouldStopExecution } from './error-handler';\n"]}
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/errors/index.ts"],"names":[],"mappings":";;;AAAA,2BAA2B;AAC3B,yCAwBqB;AAvBnB,qGAAA,QAAQ,OAAA;AACR,2GAAA,cAAc,OAAA;AACd,6GAAA,gBAAgB,OAAA;AAChB,8GAAA,iBAAiB,OAAA;AACjB,kHAAA,qBAAqB,OAAA;AACrB,8GAAA,iBAAiB,OAAA;AACjB,oHAAA,uBAAuB,OAAA;AACvB,8GAAA,iBAAiB,OAAA;AACjB,+GAAA,kBAAkB,OAAA;AAClB,+GAAA,kBAAkB,OAAA;AAClB,+GAAA,kBAAkB,OAAA;AAClB,2GAAA,cAAc,OAAA;AACd,+GAAA,kBAAkB,OAAA;AAClB,8GAAA,iBAAiB,OAAA;AACjB,+GAAA,kBAAkB,OAAA;AAClB,oHAAA,uBAAuB,OAAA;AACvB,iHAAA,oBAAoB,OAAA;AACpB,mHAAA,sBAAsB,OAAA;AACtB,gHAAA,mBAAmB,OAAA;AACnB,iHAAA,oBAAoB,OAAA;AACpB,0GAAA,aAAa,OAAA;AACb,uGAAA,UAAU,OAAA;AACV,mHAAA,sBAAsB,OAAA;AAGxB,2DAA2D;AAC3D,+EAWwC;AAVtC,UAAU;AACV,+IAAA,+BAA+B,OAAA;AAC/B,iJAAA,iCAAiC,OAAA;AACjC,+IAAA,+BAA+B,OAAA;AAK/B,cAAc;AACd,0IAAA,0BAA0B,OAAA;AAG5B,iCAAiC;AACjC,iDAA6G;AAApG,6GAAA,YAAY,OAAA;AAAuB,mHAAA,kBAAkB,OAAA;AAAE,oHAAA,mBAAmB,OAAA","sourcesContent":["// Export all error classes\nexport {\n  McpError,\n  PublicMcpError,\n  InternalMcpError,\n  ToolNotFoundError,\n  ResourceNotFoundError,\n  ResourceReadError,\n  InvalidResourceUriError,\n  InvalidInputError,\n  InvalidOutputError,\n  InvalidMethodError,\n  ToolExecutionError,\n  RateLimitError,\n  QuotaExceededError,\n  UnauthorizedError,\n  GenericServerError,\n  DependencyNotFoundError,\n  InvalidHookFlowError,\n  AuthConfigurationError,\n  PromptNotFoundError,\n  PromptExecutionError,\n  isPublicError,\n  toMcpError,\n  formatMcpErrorResponse,\n} from './mcp.error';\n\n// Export authorization required error for progressive auth\nexport {\n  // Schemas\n  authorizationRequiredDataSchema,\n  authorizationRequiredParamsSchema,\n  authorizationRequiredMetaSchema,\n  // Types (inferred from schemas)\n  AuthorizationRequiredData,\n  AuthorizationRequiredParams,\n  AuthorizationRequiredMeta,\n  // Error class\n  AuthorizationRequiredError,\n} from './authorization-required.error';\n\n// Export error handler utilities\nexport { ErrorHandler, ErrorHandlerOptions, createErrorHandler, shouldStopExecution } from './error-handler';\n"]}