@getpultdev/mcp-server 0.1.0

package/dist/http-server-FZEWVMOZ.js

@@ -0,0 +1,250 @@
+#!/usr/bin/env node
+import {
+  createServer
+} from "./chunk-SO33VXCT.js";
+import {
+  configure,
+  withToken
+} from "./chunk-2CFKYLYU.js";
+
+// src/http-server.ts
+import express from "express";
+import { randomUUID as randomUUID2 } from "crypto";
+import { StreamableHTTPServerTransport } from "@modelcontextprotocol/sdk/server/streamableHttp.js";
+import { mcpAuthRouter } from "@modelcontextprotocol/sdk/server/auth/router.js";
+import { requireBearerAuth } from "@modelcontextprotocol/sdk/server/auth/middleware/bearerAuth.js";
+
+// src/oauth-provider.ts
+import { randomUUID, randomBytes } from "crypto";
+var PultOAuthProvider = class {
+  clients = /* @__PURE__ */ new Map();
+  pendingAuths = /* @__PURE__ */ new Map();
+  authCodes = /* @__PURE__ */ new Map();
+  apiUrl;
+  port;
+  constructor(apiUrl, port) {
+    this.apiUrl = apiUrl;
+    this.port = port;
+  }
+  get clientsStore() {
+    return {
+      getClient: (id) => this.clients.get(id),
+      registerClient: (metadata) => {
+        const clientId = randomUUID();
+        const client = {
+          ...metadata,
+          client_id: clientId,
+          client_id_issued_at: Math.floor(Date.now() / 1e3)
+        };
+        this.clients.set(clientId, client);
+        return client;
+      }
+    };
+  }
+  async authorize(client, params, res) {
+    const sessionId = randomUUID();
+    this.pendingAuths.set(sessionId, {
+      codeChallenge: params.codeChallenge,
+      redirectUri: params.redirectUri,
+      state: params.state,
+      clientId: client.client_id
+    });
+    const html = this.renderLoginPage(sessionId);
+    res.setHeader("Content-Type", "text/html");
+    res.end(html);
+  }
+  async challengeForAuthorizationCode(_client, authorizationCode) {
+    const stored = this.authCodes.get(authorizationCode);
+    if (!stored) throw new Error("Invalid authorization code");
+    return stored.codeChallenge;
+  }
+  async exchangeAuthorizationCode(_client, authorizationCode) {
+    const stored = this.authCodes.get(authorizationCode);
+    if (!stored) throw new Error("Invalid authorization code");
+    if (Date.now() > stored.expiresAt) {
+      this.authCodes.delete(authorizationCode);
+      throw new Error("Authorization code expired");
+    }
+    this.authCodes.delete(authorizationCode);
+    return {
+      access_token: stored.accessToken,
+      token_type: "Bearer",
+      refresh_token: stored.refreshToken,
+      expires_in: 86400
+    };
+  }
+  async exchangeRefreshToken(_client, refreshToken) {
+    const response = await fetch(`${this.apiUrl}/auth/refresh`, {
+      method: "POST",
+      headers: { "Content-Type": "application/json" },
+      body: JSON.stringify({ refresh_token: refreshToken })
+    });
+    if (!response.ok) throw new Error("Token refresh failed");
+    const data = await response.json();
+    return {
+      access_token: data["access_token"],
+      token_type: "Bearer",
+      refresh_token: data["refresh_token"],
+      expires_in: data["expires_in"]
+    };
+  }
+  async verifyAccessToken(token) {
+    const response = await fetch(`${this.apiUrl}/auth/me`, {
+      headers: { Authorization: `Bearer ${token}` }
+    });
+    if (!response.ok) throw new Error("Invalid access token");
+    const user = await response.json();
+    return {
+      token,
+      clientId: "pult",
+      scopes: ["apps", "deploy", "db", "storage", "auth"],
+      extra: { userId: user["id"], email: user["email"] }
+    };
+  }
+  handleCallback(sessionId, accessToken, refreshToken) {
+    const pending = this.pendingAuths.get(sessionId);
+    if (!pending) return null;
+    this.pendingAuths.delete(sessionId);
+    const code = randomBytes(32).toString("hex");
+    this.authCodes.set(code, {
+      clientId: pending.clientId,
+      codeChallenge: pending.codeChallenge,
+      redirectUri: pending.redirectUri,
+      accessToken,
+      refreshToken,
+      expiresAt: Date.now() + 5 * 60 * 1e3
+    });
+    const url = new URL(pending.redirectUri);
+    url.searchParams.set("code", code);
+    if (pending.state) url.searchParams.set("state", pending.state);
+    return url.toString();
+  }
+  renderLoginPage(sessionId) {
+    const callbackUrl = `http://localhost:${this.port}/oauth/callback/${sessionId}`;
+    const githubUrl = `${this.apiUrl}/auth/github?redirect_uri=${encodeURIComponent(callbackUrl)}`;
+    const googleUrl = `${this.apiUrl}/auth/google?redirect_uri=${encodeURIComponent(callbackUrl)}`;
+    return `<!DOCTYPE html>
+<html lang="en"><head>
+<meta charset="utf-8"><meta name="viewport" content="width=device-width,initial-scale=1">
+<title>Sign in to Pult</title>
+<style>
+*{box-sizing:border-box;margin:0;padding:0}
+body{font-family:system-ui,-apple-system,sans-serif;display:flex;justify-content:center;align-items:center;min-height:100vh;background:#0a0a0a;color:#fff}
+.card{background:#141414;border:1px solid #262626;border-radius:16px;padding:40px;width:100%;max-width:380px}
+h1{font-size:22px;font-weight:600;margin-bottom:6px}
+.sub{color:#737373;font-size:14px;margin-bottom:32px}
+.btn{display:block;width:100%;padding:11px 16px;border-radius:8px;font-size:14px;font-weight:500;cursor:pointer;text-decoration:none;text-align:center;border:1px solid #262626;background:#1a1a1a;color:#e5e5e5;margin-bottom:10px;transition:background .15s}
+.btn:hover{background:#262626}
+.sep{display:flex;align-items:center;gap:12px;margin:24px 0;color:#525252;font-size:12px}
+.sep::before,.sep::after{content:'';flex:1;height:1px;background:#262626}
+input{width:100%;padding:10px 12px;border-radius:8px;border:1px solid #262626;background:#0a0a0a;color:#fff;font-size:14px;margin-bottom:10px;outline:none;transition:border-color .15s}
+input:focus{border-color:#525252}
+.btn-primary{background:#fff;color:#0a0a0a;border-color:#fff;font-weight:600}
+.btn-primary:hover{background:#d4d4d4}
+.err{color:#ef4444;font-size:13px;display:none;margin-bottom:10px}
+.logo{font-size:28px;font-weight:700;margin-bottom:24px;letter-spacing:-0.5px}
+</style></head>
+<body><div class="card">
+<div class="logo">Pult</div>
+<h1>Sign in</h1>
+<p class="sub">Connect your account to continue</p>
+<a href="${githubUrl}" class="btn">Continue with GitHub</a>
+<a href="${googleUrl}" class="btn">Continue with Google</a>
+<div class="sep">or</div>
+<form id="f">
+<input type="email" name="email" placeholder="Email" required autocomplete="email">
+<input type="password" name="password" placeholder="Password" required autocomplete="current-password">
+<div class="err" id="e"></div>
+<button type="submit" class="btn btn-primary">Sign in with email</button>
+</form>
+</div>
+<script>
+document.getElementById('f').addEventListener('submit',async e=>{
+e.preventDefault();
+const el=document.getElementById('e'),d=new FormData(e.target);
+el.style.display='none';
+try{
+const r=await fetch('${this.apiUrl}/auth/login',{method:'POST',headers:{'Content-Type':'application/json'},body:JSON.stringify({email:d.get('email'),password:d.get('password')})});
+const j=await r.json();
+if(!r.ok){el.textContent=j.error||'Login failed';el.style.display='block';return}
+window.location.href='${callbackUrl}?access_token='+encodeURIComponent(j.access_token)+'&refresh_token='+encodeURIComponent(j.refresh_token);
+}catch(_){el.textContent='Network error';el.style.display='block'}
+});
+</script>
+</body></html>`;
+  }
+};
+
+// src/http-server.ts
+var API_URL = process.env["PULT_API_URL"] ?? "https://api.pult.rest";
+var PORT = parseInt(process.env["PORT"] ?? "3456", 10);
+function startHttpServer() {
+  configure(API_URL, "");
+  const app = express();
+  const provider = new PultOAuthProvider(API_URL, PORT);
+  const sessions = /* @__PURE__ */ new Map();
+  app.use(mcpAuthRouter({
+    provider,
+    issuerUrl: new URL(`http://localhost:${PORT}`),
+    scopesSupported: ["apps", "deploy", "db", "storage", "auth"],
+    resourceName: "Pult MCP Server",
+    serviceDocumentationUrl: new URL("https://docs.pult.rest")
+  }));
+  app.get("/oauth/callback/:sessionId", (req, res) => {
+    const { sessionId } = req.params;
+    const accessToken = req.query["access_token"];
+    const refreshToken = req.query["refresh_token"] ?? "";
+    if (!sessionId || !accessToken) {
+      res.status(400).send("Missing parameters");
+      return;
+    }
+    const redirectUrl = provider.handleCallback(sessionId, accessToken, refreshToken);
+    if (!redirectUrl) {
+      res.status(400).send("Invalid or expired session");
+      return;
+    }
+    res.redirect(redirectUrl);
+  });
+  const bearerAuth = requireBearerAuth({ verifier: provider });
+  app.all("/mcp", bearerAuth, async (req, res) => {
+    const authInfo = req.auth;
+    const sessionId = req.headers["mcp-session-id"];
+    if (sessionId && sessions.has(sessionId)) {
+      const session = sessions.get(sessionId);
+      await withToken(session.token, () => session.transport.handleRequest(req, res));
+      return;
+    }
+    if (req.method === "POST") {
+      const transport = new StreamableHTTPServerTransport({
+        sessionIdGenerator: () => randomUUID2(),
+        onsessioninitialized: (id) => {
+          sessions.set(id, { transport, token: authInfo.token });
+        }
+      });
+      const mcpServer = createServer();
+      await mcpServer.connect(transport);
+      transport.onclose = () => {
+        const id = transport.sessionId;
+        if (id) sessions.delete(id);
+      };
+      await withToken(authInfo.token, () => transport.handleRequest(req, res));
+      return;
+    }
+    res.status(400).json({ error: "No active session. Send an initialize request first." });
+  });
+  app.get("/health", (_req, res) => {
+    res.json({ status: "ok", transport: "http", tools: 186 });
+  });
+  app.listen(PORT, () => {
+    process.stderr.write(`Pult MCP server listening on http://localhost:${PORT}
+`);
+    process.stderr.write(`MCP endpoint: http://localhost:${PORT}/mcp
+`);
+    process.stderr.write(`OAuth metadata: http://localhost:${PORT}/.well-known/oauth-protected-resource
+`);
+  });
+}
+export {
+  startHttpServer
+};
+//# sourceMappingURL=http-server-FZEWVMOZ.js.map

package/dist/http-server-FZEWVMOZ.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../src/http-server.ts","../src/oauth-provider.ts"],"sourcesContent":["import express from \"express\"\nimport { randomUUID } from \"node:crypto\"\nimport { StreamableHTTPServerTransport } from \"@modelcontextprotocol/sdk/server/streamableHttp.js\"\nimport { mcpAuthRouter } from \"@modelcontextprotocol/sdk/server/auth/router.js\"\nimport { requireBearerAuth } from \"@modelcontextprotocol/sdk/server/auth/middleware/bearerAuth.js\"\nimport { createServer } from \"./server.js\"\nimport { configure, withToken } from \"./http.js\"\nimport { PultOAuthProvider } from \"./oauth-provider.js\"\n\nconst API_URL = process.env[\"PULT_API_URL\"] ?? \"https://api.pult.rest\"\nconst PORT = parseInt(process.env[\"PORT\"] ?? \"3456\", 10)\n\ninterface Session {\n  transport: StreamableHTTPServerTransport\n  token: string\n}\n\nexport function startHttpServer(): void {\n  configure(API_URL, \"\")\n  const app = express()\n  const provider = new PultOAuthProvider(API_URL, PORT)\n  const sessions = new Map<string, Session>()\n\n  app.use(mcpAuthRouter({\n    provider,\n    issuerUrl: new URL(`http://localhost:${PORT}`),\n    scopesSupported: [\"apps\", \"deploy\", \"db\", \"storage\", \"auth\"],\n    resourceName: \"Pult MCP Server\",\n    serviceDocumentationUrl: new URL(\"https://docs.pult.rest\"),\n  }))\n\n  app.get(\"/oauth/callback/:sessionId\", (req, res) => {\n    const { sessionId } = req.params\n    const accessToken = req.query[\"access_token\"] as string | undefined\n    const refreshToken = (req.query[\"refresh_token\"] as string | undefined) ?? \"\"\n\n    if (!sessionId || !accessToken) {\n      res.status(400).send(\"Missing parameters\")\n      return\n    }\n\n    const redirectUrl = provider.handleCallback(sessionId, accessToken, refreshToken)\n    if (!redirectUrl) {\n      res.status(400).send(\"Invalid or expired session\")\n      return\n    }\n\n    res.redirect(redirectUrl)\n  })\n\n  const bearerAuth = requireBearerAuth({ verifier: provider })\n\n  app.all(\"/mcp\", bearerAuth, async (req, res) => {\n    const authInfo = req.auth!\n    const sessionId = req.headers[\"mcp-session-id\"] as string | undefined\n\n    if (sessionId && sessions.has(sessionId)) {\n      const session = sessions.get(sessionId)!\n      await withToken(session.token, () => session.transport.handleRequest(req, res))\n      return\n    }\n\n    if (req.method === \"POST\") {\n      const transport = new StreamableHTTPServerTransport({\n        sessionIdGenerator: () => randomUUID(),\n        onsessioninitialized: (id) => {\n          sessions.set(id, { transport, token: authInfo.token })\n        },\n      })\n\n      const mcpServer = createServer()\n      await mcpServer.connect(transport)\n\n      transport.onclose = () => {\n        const id = transport.sessionId\n        if (id) sessions.delete(id)\n      }\n\n      await withToken(authInfo.token, () => transport.handleRequest(req, res))\n      return\n    }\n\n    res.status(400).json({ error: \"No active session. Send an initialize request first.\" })\n  })\n\n  app.get(\"/health\", (_req, res) => {\n    res.json({ status: \"ok\", transport: \"http\", tools: 186 })\n  })\n\n  app.listen(PORT, () => {\n    process.stderr.write(`Pult MCP server listening on http://localhost:${PORT}\\n`)\n    process.stderr.write(`MCP endpoint: http://localhost:${PORT}/mcp\\n`)\n    process.stderr.write(`OAuth metadata: http://localhost:${PORT}/.well-known/oauth-protected-resource\\n`)\n  })\n}\n","import { randomUUID, randomBytes } from \"node:crypto\"\nimport type { Response } from \"express\"\nimport type {\n  OAuthServerProvider,\n  AuthorizationParams,\n} from \"@modelcontextprotocol/sdk/server/auth/provider.js\"\nimport type { OAuthRegisteredClientsStore } from \"@modelcontextprotocol/sdk/server/auth/clients.js\"\nimport type { OAuthClientInformationFull, OAuthTokens } from \"@modelcontextprotocol/sdk/shared/auth.js\"\nimport type { AuthInfo } from \"@modelcontextprotocol/sdk/server/auth/types.js\"\n\ninterface PendingAuth {\n  codeChallenge: string\n  redirectUri: string\n  state?: string\n  clientId: string\n}\n\ninterface StoredCode {\n  clientId: string\n  codeChallenge: string\n  redirectUri: string\n  accessToken: string\n  refreshToken: string\n  expiresAt: number\n}\n\nexport class PultOAuthProvider implements OAuthServerProvider {\n  private clients = new Map<string, OAuthClientInformationFull>()\n  private pendingAuths = new Map<string, PendingAuth>()\n  private authCodes = new Map<string, StoredCode>()\n  private apiUrl: string\n  private port: number\n\n  constructor(apiUrl: string, port: number) {\n    this.apiUrl = apiUrl\n    this.port = port\n  }\n\n  get clientsStore(): OAuthRegisteredClientsStore {\n    return {\n      getClient: (id: string) => this.clients.get(id),\n      registerClient: (metadata: Omit<OAuthClientInformationFull, \"client_id\" | \"client_id_issued_at\">) => {\n        const clientId = randomUUID()\n        const client = {\n          ...metadata,\n          client_id: clientId,\n          client_id_issued_at: Math.floor(Date.now() / 1000),\n        } as OAuthClientInformationFull\n        this.clients.set(clientId, client)\n        return client\n      },\n    }\n  }\n\n  async authorize(\n    client: OAuthClientInformationFull,\n    params: AuthorizationParams,\n    res: Response,\n  ): Promise<void> {\n    const sessionId = randomUUID()\n    this.pendingAuths.set(sessionId, {\n      codeChallenge: params.codeChallenge,\n      redirectUri: params.redirectUri,\n      state: params.state,\n      clientId: client.client_id,\n    })\n\n    const html = this.renderLoginPage(sessionId)\n    res.setHeader(\"Content-Type\", \"text/html\")\n    res.end(html)\n  }\n\n  async challengeForAuthorizationCode(\n    _client: OAuthClientInformationFull,\n    authorizationCode: string,\n  ): Promise<string> {\n    const stored = this.authCodes.get(authorizationCode)\n    if (!stored) throw new Error(\"Invalid authorization code\")\n    return stored.codeChallenge\n  }\n\n  async exchangeAuthorizationCode(\n    _client: OAuthClientInformationFull,\n    authorizationCode: string,\n  ): Promise<OAuthTokens> {\n    const stored = this.authCodes.get(authorizationCode)\n    if (!stored) throw new Error(\"Invalid authorization code\")\n    if (Date.now() > stored.expiresAt) {\n      this.authCodes.delete(authorizationCode)\n      throw new Error(\"Authorization code expired\")\n    }\n    this.authCodes.delete(authorizationCode)\n    return {\n      access_token: stored.accessToken,\n      token_type: \"Bearer\",\n      refresh_token: stored.refreshToken,\n      expires_in: 86400,\n    }\n  }\n\n  async exchangeRefreshToken(\n    _client: OAuthClientInformationFull,\n    refreshToken: string,\n  ): Promise<OAuthTokens> {\n    const response = await fetch(`${this.apiUrl}/auth/refresh`, {\n      method: \"POST\",\n      headers: { \"Content-Type\": \"application/json\" },\n      body: JSON.stringify({ refresh_token: refreshToken }),\n    })\n    if (!response.ok) throw new Error(\"Token refresh failed\")\n    const data = (await response.json()) as Record<string, unknown>\n    return {\n      access_token: data[\"access_token\"] as string,\n      token_type: \"Bearer\",\n      refresh_token: data[\"refresh_token\"] as string,\n      expires_in: data[\"expires_in\"] as number,\n    }\n  }\n\n  async verifyAccessToken(token: string): Promise<AuthInfo> {\n    const response = await fetch(`${this.apiUrl}/auth/me`, {\n      headers: { Authorization: `Bearer ${token}` },\n    })\n    if (!response.ok) throw new Error(\"Invalid access token\")\n    const user = (await response.json()) as Record<string, unknown>\n    return {\n      token,\n      clientId: \"pult\",\n      scopes: [\"apps\", \"deploy\", \"db\", \"storage\", \"auth\"],\n      extra: { userId: user[\"id\"], email: user[\"email\"] },\n    }\n  }\n\n  handleCallback(sessionId: string, accessToken: string, refreshToken: string): string | null {\n    const pending = this.pendingAuths.get(sessionId)\n    if (!pending) return null\n    this.pendingAuths.delete(sessionId)\n\n    const code = randomBytes(32).toString(\"hex\")\n    this.authCodes.set(code, {\n      clientId: pending.clientId,\n      codeChallenge: pending.codeChallenge,\n      redirectUri: pending.redirectUri,\n      accessToken,\n      refreshToken,\n      expiresAt: Date.now() + 5 * 60 * 1000,\n    })\n\n    const url = new URL(pending.redirectUri)\n    url.searchParams.set(\"code\", code)\n    if (pending.state) url.searchParams.set(\"state\", pending.state)\n    return url.toString()\n  }\n\n  private renderLoginPage(sessionId: string): string {\n    const callbackUrl = `http://localhost:${this.port}/oauth/callback/${sessionId}`\n    const githubUrl = `${this.apiUrl}/auth/github?redirect_uri=${encodeURIComponent(callbackUrl)}`\n    const googleUrl = `${this.apiUrl}/auth/google?redirect_uri=${encodeURIComponent(callbackUrl)}`\n\n    return `<!DOCTYPE html>\n<html lang=\"en\"><head>\n<meta charset=\"utf-8\"><meta name=\"viewport\" content=\"width=device-width,initial-scale=1\">\n<title>Sign in to Pult</title>\n<style>\n*{box-sizing:border-box;margin:0;padding:0}\nbody{font-family:system-ui,-apple-system,sans-serif;display:flex;justify-content:center;align-items:center;min-height:100vh;background:#0a0a0a;color:#fff}\n.card{background:#141414;border:1px solid #262626;border-radius:16px;padding:40px;width:100%;max-width:380px}\nh1{font-size:22px;font-weight:600;margin-bottom:6px}\n.sub{color:#737373;font-size:14px;margin-bottom:32px}\n.btn{display:block;width:100%;padding:11px 16px;border-radius:8px;font-size:14px;font-weight:500;cursor:pointer;text-decoration:none;text-align:center;border:1px solid #262626;background:#1a1a1a;color:#e5e5e5;margin-bottom:10px;transition:background .15s}\n.btn:hover{background:#262626}\n.sep{display:flex;align-items:center;gap:12px;margin:24px 0;color:#525252;font-size:12px}\n.sep::before,.sep::after{content:'';flex:1;height:1px;background:#262626}\ninput{width:100%;padding:10px 12px;border-radius:8px;border:1px solid #262626;background:#0a0a0a;color:#fff;font-size:14px;margin-bottom:10px;outline:none;transition:border-color .15s}\ninput:focus{border-color:#525252}\n.btn-primary{background:#fff;color:#0a0a0a;border-color:#fff;font-weight:600}\n.btn-primary:hover{background:#d4d4d4}\n.err{color:#ef4444;font-size:13px;display:none;margin-bottom:10px}\n.logo{font-size:28px;font-weight:700;margin-bottom:24px;letter-spacing:-0.5px}\n</style></head>\n<body><div class=\"card\">\n<div class=\"logo\">Pult</div>\n<h1>Sign in</h1>\n<p class=\"sub\">Connect your account to continue</p>\n<a href=\"${githubUrl}\" class=\"btn\">Continue with GitHub</a>\n<a href=\"${googleUrl}\" class=\"btn\">Continue with Google</a>\n<div class=\"sep\">or</div>\n<form id=\"f\">\n<input type=\"email\" name=\"email\" placeholder=\"Email\" required autocomplete=\"email\">\n<input type=\"password\" name=\"password\" placeholder=\"Password\" required autocomplete=\"current-password\">\n<div class=\"err\" id=\"e\"></div>\n<button type=\"submit\" class=\"btn btn-primary\">Sign in with email</button>\n</form>\n</div>\n<script>\ndocument.getElementById('f').addEventListener('submit',async e=>{\ne.preventDefault();\nconst el=document.getElementById('e'),d=new FormData(e.target);\nel.style.display='none';\ntry{\nconst r=await fetch('${this.apiUrl}/auth/login',{method:'POST',headers:{'Content-Type':'application/json'},body:JSON.stringify({email:d.get('email'),password:d.get('password')})});\nconst j=await r.json();\nif(!r.ok){el.textContent=j.error||'Login failed';el.style.display='block';return}\nwindow.location.href='${callbackUrl}?access_token='+encodeURIComponent(j.access_token)+'&refresh_token='+encodeURIComponent(j.refresh_token);\n}catch(_){el.textContent='Network error';el.style.display='block'}\n});\n</script>\n</body></html>`\n  }\n}\n"],"mappings":";;;;;;;;;;AAAA,OAAO,aAAa;AACpB,SAAS,cAAAA,mBAAkB;AAC3B,SAAS,qCAAqC;AAC9C,SAAS,qBAAqB;AAC9B,SAAS,yBAAyB;;;ACJlC,SAAS,YAAY,mBAAmB;AA0BjC,IAAM,oBAAN,MAAuD;AAAA,EACpD,UAAU,oBAAI,IAAwC;AAAA,EACtD,eAAe,oBAAI,IAAyB;AAAA,EAC5C,YAAY,oBAAI,IAAwB;AAAA,EACxC;AAAA,EACA;AAAA,EAER,YAAY,QAAgB,MAAc;AACxC,SAAK,SAAS;AACd,SAAK,OAAO;AAAA,EACd;AAAA,EAEA,IAAI,eAA4C;AAC9C,WAAO;AAAA,MACL,WAAW,CAAC,OAAe,KAAK,QAAQ,IAAI,EAAE;AAAA,MAC9C,gBAAgB,CAAC,aAAoF;AACnG,cAAM,WAAW,WAAW;AAC5B,cAAM,SAAS;AAAA,UACb,GAAG;AAAA,UACH,WAAW;AAAA,UACX,qBAAqB,KAAK,MAAM,KAAK,IAAI,IAAI,GAAI;AAAA,QACnD;AACA,aAAK,QAAQ,IAAI,UAAU,MAAM;AACjC,eAAO;AAAA,MACT;AAAA,IACF;AAAA,EACF;AAAA,EAEA,MAAM,UACJ,QACA,QACA,KACe;AACf,UAAM,YAAY,WAAW;AAC7B,SAAK,aAAa,IAAI,WAAW;AAAA,MAC/B,eAAe,OAAO;AAAA,MACtB,aAAa,OAAO;AAAA,MACpB,OAAO,OAAO;AAAA,MACd,UAAU,OAAO;AAAA,IACnB,CAAC;AAED,UAAM,OAAO,KAAK,gBAAgB,SAAS;AAC3C,QAAI,UAAU,gBAAgB,WAAW;AACzC,QAAI,IAAI,IAAI;AAAA,EACd;AAAA,EAEA,MAAM,8BACJ,SACA,mBACiB;AACjB,UAAM,SAAS,KAAK,UAAU,IAAI,iBAAiB;AACnD,QAAI,CAAC,OAAQ,OAAM,IAAI,MAAM,4BAA4B;AACzD,WAAO,OAAO;AAAA,EAChB;AAAA,EAEA,MAAM,0BACJ,SACA,mBACsB;AACtB,UAAM,SAAS,KAAK,UAAU,IAAI,iBAAiB;AACnD,QAAI,CAAC,OAAQ,OAAM,IAAI,MAAM,4BAA4B;AACzD,QAAI,KAAK,IAAI,IAAI,OAAO,WAAW;AACjC,WAAK,UAAU,OAAO,iBAAiB;AACvC,YAAM,IAAI,MAAM,4BAA4B;AAAA,IAC9C;AACA,SAAK,UAAU,OAAO,iBAAiB;AACvC,WAAO;AAAA,MACL,cAAc,OAAO;AAAA,MACrB,YAAY;AAAA,MACZ,eAAe,OAAO;AAAA,MACtB,YAAY;AAAA,IACd;AAAA,EACF;AAAA,EAEA,MAAM,qBACJ,SACA,cACsB;AACtB,UAAM,WAAW,MAAM,MAAM,GAAG,KAAK,MAAM,iBAAiB;AAAA,MAC1D,QAAQ;AAAA,MACR,SAAS,EAAE,gBAAgB,mBAAmB;AAAA,MAC9C,MAAM,KAAK,UAAU,EAAE,eAAe,aAAa,CAAC;AAAA,IACtD,CAAC;AACD,QAAI,CAAC,SAAS,GAAI,OAAM,IAAI,MAAM,sBAAsB;AACxD,UAAM,OAAQ,MAAM,SAAS,KAAK;AAClC,WAAO;AAAA,MACL,cAAc,KAAK,cAAc;AAAA,MACjC,YAAY;AAAA,MACZ,eAAe,KAAK,eAAe;AAAA,MACnC,YAAY,KAAK,YAAY;AAAA,IAC/B;AAAA,EACF;AAAA,EAEA,MAAM,kBAAkB,OAAkC;AACxD,UAAM,WAAW,MAAM,MAAM,GAAG,KAAK,MAAM,YAAY;AAAA,MACrD,SAAS,EAAE,eAAe,UAAU,KAAK,GAAG;AAAA,IAC9C,CAAC;AACD,QAAI,CAAC,SAAS,GAAI,OAAM,IAAI,MAAM,sBAAsB;AACxD,UAAM,OAAQ,MAAM,SAAS,KAAK;AAClC,WAAO;AAAA,MACL;AAAA,MACA,UAAU;AAAA,MACV,QAAQ,CAAC,QAAQ,UAAU,MAAM,WAAW,MAAM;AAAA,MAClD,OAAO,EAAE,QAAQ,KAAK,IAAI,GAAG,OAAO,KAAK,OAAO,EAAE;AAAA,IACpD;AAAA,EACF;AAAA,EAEA,eAAe,WAAmB,aAAqB,cAAqC;AAC1F,UAAM,UAAU,KAAK,aAAa,IAAI,SAAS;AAC/C,QAAI,CAAC,QAAS,QAAO;AACrB,SAAK,aAAa,OAAO,SAAS;AAElC,UAAM,OAAO,YAAY,EAAE,EAAE,SAAS,KAAK;AAC3C,SAAK,UAAU,IAAI,MAAM;AAAA,MACvB,UAAU,QAAQ;AAAA,MAClB,eAAe,QAAQ;AAAA,MACvB,aAAa,QAAQ;AAAA,MACrB;AAAA,MACA;AAAA,MACA,WAAW,KAAK,IAAI,IAAI,IAAI,KAAK;AAAA,IACnC,CAAC;AAED,UAAM,MAAM,IAAI,IAAI,QAAQ,WAAW;AACvC,QAAI,aAAa,IAAI,QAAQ,IAAI;AACjC,QAAI,QAAQ,MAAO,KAAI,aAAa,IAAI,SAAS,QAAQ,KAAK;AAC9D,WAAO,IAAI,SAAS;AAAA,EACtB;AAAA,EAEQ,gBAAgB,WAA2B;AACjD,UAAM,cAAc,oBAAoB,KAAK,IAAI,mBAAmB,SAAS;AAC7E,UAAM,YAAY,GAAG,KAAK,MAAM,6BAA6B,mBAAmB,WAAW,CAAC;AAC5F,UAAM,YAAY,GAAG,KAAK,MAAM,6BAA6B,mBAAmB,WAAW,CAAC;AAE5F,WAAO;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,WAyBA,SAAS;AAAA,WACT,SAAS;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,uBAeG,KAAK,MAAM;AAAA;AAAA;AAAA,wBAGV,WAAW;AAAA;AAAA;AAAA;AAAA;AAAA,EAKjC;AACF;;;ADxMA,IAAM,UAAU,QAAQ,IAAI,cAAc,KAAK;AAC/C,IAAM,OAAO,SAAS,QAAQ,IAAI,MAAM,KAAK,QAAQ,EAAE;AAOhD,SAAS,kBAAwB;AACtC,YAAU,SAAS,EAAE;AACrB,QAAM,MAAM,QAAQ;AACpB,QAAM,WAAW,IAAI,kBAAkB,SAAS,IAAI;AACpD,QAAM,WAAW,oBAAI,IAAqB;AAE1C,MAAI,IAAI,cAAc;AAAA,IACpB;AAAA,IACA,WAAW,IAAI,IAAI,oBAAoB,IAAI,EAAE;AAAA,IAC7C,iBAAiB,CAAC,QAAQ,UAAU,MAAM,WAAW,MAAM;AAAA,IAC3D,cAAc;AAAA,IACd,yBAAyB,IAAI,IAAI,wBAAwB;AAAA,EAC3D,CAAC,CAAC;AAEF,MAAI,IAAI,8BAA8B,CAAC,KAAK,QAAQ;AAClD,UAAM,EAAE,UAAU,IAAI,IAAI;AAC1B,UAAM,cAAc,IAAI,MAAM,cAAc;AAC5C,UAAM,eAAgB,IAAI,MAAM,eAAe,KAA4B;AAE3E,QAAI,CAAC,aAAa,CAAC,aAAa;AAC9B,UAAI,OAAO,GAAG,EAAE,KAAK,oBAAoB;AACzC;AAAA,IACF;AAEA,UAAM,cAAc,SAAS,eAAe,WAAW,aAAa,YAAY;AAChF,QAAI,CAAC,aAAa;AAChB,UAAI,OAAO,GAAG,EAAE,KAAK,4BAA4B;AACjD;AAAA,IACF;AAEA,QAAI,SAAS,WAAW;AAAA,EAC1B,CAAC;AAED,QAAM,aAAa,kBAAkB,EAAE,UAAU,SAAS,CAAC;AAE3D,MAAI,IAAI,QAAQ,YAAY,OAAO,KAAK,QAAQ;AAC9C,UAAM,WAAW,IAAI;AACrB,UAAM,YAAY,IAAI,QAAQ,gBAAgB;AAE9C,QAAI,aAAa,SAAS,IAAI,SAAS,GAAG;AACxC,YAAM,UAAU,SAAS,IAAI,SAAS;AACtC,YAAM,UAAU,QAAQ,OAAO,MAAM,QAAQ,UAAU,cAAc,KAAK,GAAG,CAAC;AAC9E;AAAA,IACF;AAEA,QAAI,IAAI,WAAW,QAAQ;AACzB,YAAM,YAAY,IAAI,8BAA8B;AAAA,QAClD,oBAAoB,MAAMC,YAAW;AAAA,QACrC,sBAAsB,CAAC,OAAO;AAC5B,mBAAS,IAAI,IAAI,EAAE,WAAW,OAAO,SAAS,MAAM,CAAC;AAAA,QACvD;AAAA,MACF,CAAC;AAED,YAAM,YAAY,aAAa;AAC/B,YAAM,UAAU,QAAQ,SAAS;AAEjC,gBAAU,UAAU,MAAM;AACxB,cAAM,KAAK,UAAU;AACrB,YAAI,GAAI,UAAS,OAAO,EAAE;AAAA,MAC5B;AAEA,YAAM,UAAU,SAAS,OAAO,MAAM,UAAU,cAAc,KAAK,GAAG,CAAC;AACvE;AAAA,IACF;AAEA,QAAI,OAAO,GAAG,EAAE,KAAK,EAAE,OAAO,uDAAuD,CAAC;AAAA,EACxF,CAAC;AAED,MAAI,IAAI,WAAW,CAAC,MAAM,QAAQ;AAChC,QAAI,KAAK,EAAE,QAAQ,MAAM,WAAW,QAAQ,OAAO,IAAI,CAAC;AAAA,EAC1D,CAAC;AAED,MAAI,OAAO,MAAM,MAAM;AACrB,YAAQ,OAAO,MAAM,iDAAiD,IAAI;AAAA,CAAI;AAC9E,YAAQ,OAAO,MAAM,kCAAkC,IAAI;AAAA,CAAQ;AACnE,YAAQ,OAAO,MAAM,oCAAoC,IAAI;AAAA,CAAyC;AAAA,EACxG,CAAC;AACH;","names":["randomUUID","randomUUID"]}

package/dist/index.d.ts

@@ -0,0 +1,2 @@
+
+export {  }

package/dist/index.js

@@ -0,0 +1,24 @@
+#!/usr/bin/env node
+import {
+  configure
+} from "./chunk-2CFKYLYU.js";
+
+// src/index.ts
+var transport = process.argv.includes("--http") || process.env["PULT_TRANSPORT"] === "http" ? "http" : "stdio";
+if (transport === "http") {
+  const { startHttpServer } = await import("./http-server-FZEWVMOZ.js");
+  startHttpServer();
+} else {
+  const { StdioServerTransport } = await import("@modelcontextprotocol/sdk/server/stdio.js");
+  const { createServer } = await import("./server-FWHF3FVO.js");
+  const apiUrl = process.env["PULT_API_URL"] || "https://api.pult.rest";
+  const apiKey = process.env["PULT_API_KEY"] || "";
+  if (!apiKey) {
+    process.stderr.write("Warning: PULT_API_KEY not set. API calls will fail.\n");
+  }
+  configure(apiUrl, apiKey);
+  const server = createServer();
+  const stdioTransport = new StdioServerTransport();
+  await server.connect(stdioTransport);
+}
+//# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../src/index.ts"],"sourcesContent":["import { configure } from \"./http.js\"\n\nconst transport = process.argv.includes(\"--http\") || process.env[\"PULT_TRANSPORT\"] === \"http\"\n  ? \"http\" : \"stdio\"\n\nif (transport === \"http\") {\n  const { startHttpServer } = await import(\"./http-server.js\")\n  startHttpServer()\n} else {\n  const { StdioServerTransport } = await import(\"@modelcontextprotocol/sdk/server/stdio.js\")\n  const { createServer } = await import(\"./server.js\")\n\n  const apiUrl = process.env[\"PULT_API_URL\"] || \"https://api.pult.rest\"\n  const apiKey = process.env[\"PULT_API_KEY\"] || \"\"\n\n  if (!apiKey) {\n    process.stderr.write(\"Warning: PULT_API_KEY not set. API calls will fail.\\n\")\n  }\n\n  configure(apiUrl, apiKey)\n\n  const server = createServer()\n  const stdioTransport = new StdioServerTransport()\n  await server.connect(stdioTransport)\n}\n"],"mappings":";;;;;;AAEA,IAAM,YAAY,QAAQ,KAAK,SAAS,QAAQ,KAAK,QAAQ,IAAI,gBAAgB,MAAM,SACnF,SAAS;AAEb,IAAI,cAAc,QAAQ;AACxB,QAAM,EAAE,gBAAgB,IAAI,MAAM,OAAO,2BAAkB;AAC3D,kBAAgB;AAClB,OAAO;AACL,QAAM,EAAE,qBAAqB,IAAI,MAAM,OAAO,2CAA2C;AACzF,QAAM,EAAE,aAAa,IAAI,MAAM,OAAO,sBAAa;AAEnD,QAAM,SAAS,QAAQ,IAAI,cAAc,KAAK;AAC9C,QAAM,SAAS,QAAQ,IAAI,cAAc,KAAK;AAE9C,MAAI,CAAC,QAAQ;AACX,YAAQ,OAAO,MAAM,uDAAuD;AAAA,EAC9E;AAEA,YAAU,QAAQ,MAAM;AAExB,QAAM,SAAS,aAAa;AAC5B,QAAM,iBAAiB,IAAI,qBAAqB;AAChD,QAAM,OAAO,QAAQ,cAAc;AACrC;","names":[]}

package/dist/server-FWHF3FVO.js

@@ -0,0 +1,9 @@
+#!/usr/bin/env node
+import {
+  createServer
+} from "./chunk-SO33VXCT.js";
+import "./chunk-2CFKYLYU.js";
+export {
+  createServer
+};
+//# sourceMappingURL=server-FWHF3FVO.js.map

package/dist/server-FWHF3FVO.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":[],"sourcesContent":[],"mappings":"","names":[]}

package/package.json

@@ -0,0 +1,53 @@
+{
+  "name": "@getpultdev/mcp-server",
+  "version": "0.1.0",
+  "description": "MCP server for Pult platform — manage apps, deployments, databases, and more from AI tools",
+  "type": "module",
+  "bin": {
+    "pult-mcp": "./dist/index.js"
+  },
+  "main": "./dist/index.js",
+  "types": "./dist/index.d.ts",
+  "files": [
+    "dist"
+  ],
+  "scripts": {
+    "build": "tsup",
+    "dev": "tsup --watch",
+    "test": "vitest run",
+    "test:watch": "vitest",
+    "lint": "tsc --noEmit",
+    "prepublishOnly": "npm run build"
+  },
+  "keywords": [
+    "pult",
+    "mcp",
+    "model-context-protocol",
+    "claude",
+    "cursor",
+    "ai-tools",
+    "paas",
+    "baas",
+    "deploy",
+    "database"
+  ],
+  "author": "Pult <hello@pult.rest>",
+  "license": "MIT",
+  "repository": {
+    "type": "git",
+    "url": "git+https://github.com/getPult/pult-mcp.git"
+  },
+  "homepage": "https://pult.rest",
+  "dependencies": {
+    "@modelcontextprotocol/sdk": "^1.12.1",
+    "cors": "^2.8.6",
+    "express": "^5.2.1"
+  },
+  "devDependencies": {
+    "@types/express": "^5.0.6",
+    "@types/node": "^25.3.5",
+    "tsup": "^8.0.0",
+    "typescript": "^5.4.0",
+    "vitest": "^2.0.0"
+  }
+}