npm - @hasna/connectors - Versions diffs - 0.5.0 → 0.5.2 - Mend

@hasna/connectors 0.5.0 → 0.5.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (223) hide show

package/bin/index.js +147 -6
package/bin/mcp.js +92 -1
package/bin/serve.js +91 -0
package/connectors/connect-ably/.env.example +11 -0
package/connectors/connect-ably/CLAUDE.md +111 -0
package/connectors/connect-ably/README.md +193 -0
package/connectors/connect-ably/package.json +54 -0
package/connectors/connect-ably/scripts/release.ts +179 -0
package/connectors/connect-ably/src/api/channels.ts +33 -0
package/connectors/connect-ably/src/api/client.ts +203 -0
package/connectors/connect-ably/src/api/index.ts +59 -0
package/connectors/connect-ably/src/api/messages.ts +48 -0
package/connectors/connect-ably/src/api/presence.ts +39 -0
package/connectors/connect-ably/src/api/stats.ts +29 -0
package/connectors/connect-ably/src/cli/index.ts +397 -0
package/connectors/connect-ably/src/index.ts +102 -0
package/connectors/connect-ably/src/types/index.ts +294 -0
package/connectors/connect-ably/src/utils/auth.ts +274 -0
package/connectors/connect-ably/src/utils/bulk.ts +212 -0
package/connectors/connect-ably/src/utils/config.ts +323 -0
package/connectors/connect-ably/src/utils/output.ts +175 -0
package/connectors/connect-ably/src/utils/settings.ts +114 -0
package/connectors/connect-ably/src/utils/storage.ts +198 -0
package/connectors/connect-ably/tsconfig.json +16 -0
package/connectors/connect-box/.env.example +11 -0
package/connectors/connect-box/CLAUDE.md +272 -0
package/connectors/connect-box/README.md +193 -0
package/connectors/connect-box/package.json +51 -0
package/connectors/connect-box/scripts/release.ts +179 -0
package/connectors/connect-box/src/api/client.ts +213 -0
package/connectors/connect-box/src/api/example.ts +48 -0
package/connectors/connect-box/src/api/index.ts +51 -0
package/connectors/connect-box/src/cli/index.ts +254 -0
package/connectors/connect-box/src/index.ts +103 -0
package/connectors/connect-box/src/types/index.ts +237 -0
package/connectors/connect-box/src/utils/auth.ts +274 -0
package/connectors/connect-box/src/utils/bulk.ts +212 -0
package/connectors/connect-box/src/utils/config.ts +326 -0
package/connectors/connect-box/src/utils/output.ts +175 -0
package/connectors/connect-box/src/utils/settings.ts +114 -0
package/connectors/connect-box/src/utils/storage.ts +198 -0
package/connectors/connect-box/tsconfig.json +16 -0
package/connectors/connect-clearbit/.env.example +11 -0
package/connectors/connect-clearbit/CLAUDE.md +272 -0
package/connectors/connect-clearbit/README.md +193 -0
package/connectors/connect-clearbit/package.json +51 -0
package/connectors/connect-clearbit/scripts/release.ts +179 -0
package/connectors/connect-clearbit/src/api/client.ts +213 -0
package/connectors/connect-clearbit/src/api/example.ts +48 -0
package/connectors/connect-clearbit/src/api/index.ts +51 -0
package/connectors/connect-clearbit/src/cli/index.ts +254 -0
package/connectors/connect-clearbit/src/index.ts +103 -0
package/connectors/connect-clearbit/src/types/index.ts +237 -0
package/connectors/connect-clearbit/src/utils/auth.ts +274 -0
package/connectors/connect-clearbit/src/utils/bulk.ts +212 -0
package/connectors/connect-clearbit/src/utils/config.ts +326 -0
package/connectors/connect-clearbit/src/utils/output.ts +175 -0
package/connectors/connect-clearbit/src/utils/settings.ts +114 -0
package/connectors/connect-clearbit/src/utils/storage.ts +198 -0
package/connectors/connect-clearbit/tsconfig.json +16 -0
package/connectors/connect-coda/.env.example +11 -0
package/connectors/connect-coda/CLAUDE.md +272 -0
package/connectors/connect-coda/README.md +193 -0
package/connectors/connect-coda/package.json +51 -0
package/connectors/connect-coda/scripts/release.ts +179 -0
package/connectors/connect-coda/src/api/client.ts +213 -0
package/connectors/connect-coda/src/api/example.ts +48 -0
package/connectors/connect-coda/src/api/index.ts +51 -0
package/connectors/connect-coda/src/cli/index.ts +254 -0
package/connectors/connect-coda/src/index.ts +103 -0
package/connectors/connect-coda/src/types/index.ts +237 -0
package/connectors/connect-coda/src/utils/auth.ts +274 -0
package/connectors/connect-coda/src/utils/bulk.ts +212 -0
package/connectors/connect-coda/src/utils/config.ts +326 -0
package/connectors/connect-coda/src/utils/output.ts +175 -0
package/connectors/connect-coda/src/utils/settings.ts +114 -0
package/connectors/connect-coda/src/utils/storage.ts +198 -0
package/connectors/connect-coda/tsconfig.json +16 -0
package/connectors/connect-dropbox/.env.example +11 -0
package/connectors/connect-dropbox/CLAUDE.md +119 -0
package/connectors/connect-dropbox/README.md +193 -0
package/connectors/connect-dropbox/package.json +51 -0
package/connectors/connect-dropbox/src/api/client.ts +222 -0
package/connectors/connect-dropbox/src/api/index.ts +395 -0
package/connectors/connect-dropbox/src/cli/index.ts +627 -0
package/connectors/connect-dropbox/src/index.ts +20 -0
package/connectors/connect-dropbox/src/types/index.ts +516 -0
package/connectors/connect-dropbox/src/utils/config.ts +197 -0
package/connectors/connect-dropbox/tsconfig.json +16 -0
package/connectors/connect-linode/.env.example +11 -0
package/connectors/connect-linode/CLAUDE.md +272 -0
package/connectors/connect-linode/README.md +193 -0
package/connectors/connect-linode/package.json +51 -0
package/connectors/connect-linode/scripts/release.ts +179 -0
package/connectors/connect-linode/src/api/client.ts +213 -0
package/connectors/connect-linode/src/api/example.ts +48 -0
package/connectors/connect-linode/src/api/index.ts +51 -0
package/connectors/connect-linode/src/cli/index.ts +254 -0
package/connectors/connect-linode/src/index.ts +103 -0
package/connectors/connect-linode/src/types/index.ts +237 -0
package/connectors/connect-linode/src/utils/auth.ts +274 -0
package/connectors/connect-linode/src/utils/bulk.ts +212 -0
package/connectors/connect-linode/src/utils/config.ts +326 -0
package/connectors/connect-linode/src/utils/output.ts +175 -0
package/connectors/connect-linode/src/utils/settings.ts +114 -0
package/connectors/connect-linode/src/utils/storage.ts +198 -0
package/connectors/connect-linode/tsconfig.json +16 -0
package/connectors/connect-mailgun/.env.example +11 -0
package/connectors/connect-mailgun/CLAUDE.md +272 -0
package/connectors/connect-mailgun/README.md +193 -0
package/connectors/connect-mailgun/package.json +51 -0
package/connectors/connect-mailgun/scripts/release.ts +179 -0
package/connectors/connect-mailgun/src/api/client.ts +213 -0
package/connectors/connect-mailgun/src/api/example.ts +48 -0
package/connectors/connect-mailgun/src/api/index.ts +51 -0
package/connectors/connect-mailgun/src/cli/index.ts +254 -0
package/connectors/connect-mailgun/src/index.ts +103 -0
package/connectors/connect-mailgun/src/types/index.ts +237 -0
package/connectors/connect-mailgun/src/utils/auth.ts +274 -0
package/connectors/connect-mailgun/src/utils/bulk.ts +212 -0
package/connectors/connect-mailgun/src/utils/config.ts +326 -0
package/connectors/connect-mailgun/src/utils/output.ts +175 -0
package/connectors/connect-mailgun/src/utils/settings.ts +114 -0
package/connectors/connect-mailgun/src/utils/storage.ts +198 -0
package/connectors/connect-mailgun/tsconfig.json +16 -0
package/connectors/connect-messagebird/.env.example +11 -0
package/connectors/connect-messagebird/CLAUDE.md +272 -0
package/connectors/connect-messagebird/README.md +193 -0
package/connectors/connect-messagebird/package.json +51 -0
package/connectors/connect-messagebird/scripts/release.ts +179 -0
package/connectors/connect-messagebird/src/api/client.ts +213 -0
package/connectors/connect-messagebird/src/api/example.ts +48 -0
package/connectors/connect-messagebird/src/api/index.ts +51 -0
package/connectors/connect-messagebird/src/cli/index.ts +254 -0
package/connectors/connect-messagebird/src/index.ts +103 -0
package/connectors/connect-messagebird/src/types/index.ts +237 -0
package/connectors/connect-messagebird/src/utils/auth.ts +274 -0
package/connectors/connect-messagebird/src/utils/bulk.ts +212 -0
package/connectors/connect-messagebird/src/utils/config.ts +326 -0
package/connectors/connect-messagebird/src/utils/output.ts +175 -0
package/connectors/connect-messagebird/src/utils/settings.ts +114 -0
package/connectors/connect-messagebird/src/utils/storage.ts +198 -0
package/connectors/connect-messagebird/tsconfig.json +16 -0
package/connectors/connect-miro/.env.example +11 -0
package/connectors/connect-miro/CLAUDE.md +272 -0
package/connectors/connect-miro/README.md +193 -0
package/connectors/connect-miro/package.json +51 -0
package/connectors/connect-miro/scripts/release.ts +179 -0
package/connectors/connect-miro/src/api/client.ts +213 -0
package/connectors/connect-miro/src/api/example.ts +48 -0
package/connectors/connect-miro/src/api/index.ts +51 -0
package/connectors/connect-miro/src/cli/index.ts +254 -0
package/connectors/connect-miro/src/index.ts +103 -0
package/connectors/connect-miro/src/types/index.ts +237 -0
package/connectors/connect-miro/src/utils/auth.ts +274 -0
package/connectors/connect-miro/src/utils/bulk.ts +212 -0
package/connectors/connect-miro/src/utils/config.ts +326 -0
package/connectors/connect-miro/src/utils/output.ts +175 -0
package/connectors/connect-miro/src/utils/settings.ts +114 -0
package/connectors/connect-miro/src/utils/storage.ts +198 -0
package/connectors/connect-miro/tsconfig.json +16 -0
package/connectors/connect-monday/.env.example +11 -0
package/connectors/connect-monday/CLAUDE.md +128 -0
package/connectors/connect-monday/README.md +193 -0
package/connectors/connect-monday/package.json +52 -0
package/connectors/connect-monday/src/api/client.ts +59 -0
package/connectors/connect-monday/src/api/index.ts +539 -0
package/connectors/connect-monday/src/cli/index.ts +479 -0
package/connectors/connect-monday/src/index.ts +19 -0
package/connectors/connect-monday/src/types/index.ts +274 -0
package/connectors/connect-monday/src/utils/config.ts +197 -0
package/connectors/connect-monday/src/utils/output.ts +119 -0
package/connectors/connect-monday/tsconfig.json +16 -0
package/connectors/connect-pipedrive/.env.example +11 -0
package/connectors/connect-pipedrive/CLAUDE.md +128 -0
package/connectors/connect-pipedrive/README.md +193 -0
package/connectors/connect-pipedrive/package.json +52 -0
package/connectors/connect-pipedrive/src/api/client.ts +121 -0
package/connectors/connect-pipedrive/src/api/index.ts +306 -0
package/connectors/connect-pipedrive/src/cli/index.ts +824 -0
package/connectors/connect-pipedrive/src/index.ts +19 -0
package/connectors/connect-pipedrive/src/types/index.ts +335 -0
package/connectors/connect-pipedrive/src/utils/config.ts +171 -0
package/connectors/connect-pipedrive/src/utils/output.ts +119 -0
package/connectors/connect-pipedrive/tsconfig.json +16 -0
package/connectors/connect-pusher/.env.example +11 -0
package/connectors/connect-pusher/CLAUDE.md +272 -0
package/connectors/connect-pusher/README.md +193 -0
package/connectors/connect-pusher/package.json +51 -0
package/connectors/connect-pusher/scripts/release.ts +179 -0
package/connectors/connect-pusher/src/api/client.ts +213 -0
package/connectors/connect-pusher/src/api/example.ts +48 -0
package/connectors/connect-pusher/src/api/index.ts +51 -0
package/connectors/connect-pusher/src/cli/index.ts +254 -0
package/connectors/connect-pusher/src/index.ts +103 -0
package/connectors/connect-pusher/src/types/index.ts +237 -0
package/connectors/connect-pusher/src/utils/auth.ts +274 -0
package/connectors/connect-pusher/src/utils/bulk.ts +212 -0
package/connectors/connect-pusher/src/utils/config.ts +326 -0
package/connectors/connect-pusher/src/utils/output.ts +175 -0
package/connectors/connect-pusher/src/utils/settings.ts +114 -0
package/connectors/connect-pusher/src/utils/storage.ts +198 -0
package/connectors/connect-pusher/tsconfig.json +16 -0
package/connectors/connect-vonage/.env.example +11 -0
package/connectors/connect-vonage/CLAUDE.md +272 -0
package/connectors/connect-vonage/README.md +193 -0
package/connectors/connect-vonage/package.json +51 -0
package/connectors/connect-vonage/scripts/release.ts +179 -0
package/connectors/connect-vonage/src/api/client.ts +213 -0
package/connectors/connect-vonage/src/api/example.ts +48 -0
package/connectors/connect-vonage/src/api/index.ts +51 -0
package/connectors/connect-vonage/src/cli/index.ts +254 -0
package/connectors/connect-vonage/src/index.ts +103 -0
package/connectors/connect-vonage/src/types/index.ts +237 -0
package/connectors/connect-vonage/src/utils/auth.ts +274 -0
package/connectors/connect-vonage/src/utils/bulk.ts +212 -0
package/connectors/connect-vonage/src/utils/config.ts +326 -0
package/connectors/connect-vonage/src/utils/output.ts +175 -0
package/connectors/connect-vonage/src/utils/settings.ts +114 -0
package/connectors/connect-vonage/src/utils/storage.ts +198 -0
package/connectors/connect-vonage/tsconfig.json +16 -0
package/dist/index.js +91 -0
package/package.json +1 -1

package/connectors/connect-ably/src/types/index.ts ADDED Viewed

@@ -0,0 +1,294 @@
+// Ably Connector Types
+// ============================================
+// Configuration
+// ============================================
+export interface ConnectorConfig {
+  apiKey?: string;      // Full Ably API key (appId.keyId:keySecret)
+  token?: string;       // Alias for apiKey
+  apiSecret?: string;
+  accessToken?: string;
+  baseUrl?: string;
+}
+// ============================================
+// OAuth2 Types
+// ============================================
+export interface OAuth2Config {
+  clientId: string;
+  clientSecret: string;
+  redirectUri?: string;
+}
+export interface OAuth2Tokens {
+  accessToken: string;
+  refreshToken?: string;
+  expiresAt: number;
+  tokenType?: string;
+  scope?: string;
+}
+// ============================================
+// Common Types
+// ============================================
+export type OutputFormat = 'json' | 'pretty';
+export interface PaginatedResponse<T> {
+  data: T[];
+  nextToken?: string;
+  hasMore: boolean;
+}
+// ============================================
+// Message Types
+// ============================================
+export interface Message {
+  id?: string;
+  name?: string;
+  data?: unknown;
+  clientId?: string;
+  timestamp?: number;
+  encoding?: string;
+  extras?: Record<string, unknown>;
+}
+export interface PublishMessageParams {
+  name?: string;
+  data?: unknown;
+  id?: string;
+  clientId?: string;
+  extras?: Record<string, unknown>;
+}
+export interface PublishMessageResult {
+  channel: string;
+  messageId: string;
+}
+export interface MessageHistoryParams {
+  start?: string;
+  end?: string;
+  limit?: number;
+  direction?: 'forwards' | 'backwards';
+}
+// ============================================
+// Channel Types
+// ============================================
+export interface ChannelDetails {
+  channelId: string;
+  status?: {
+    isActive: boolean;
+    occupancy?: {
+      metrics?: {
+        connections?: number;
+        publishers?: number;
+        subscribers?: number;
+        presenceConnections?: number;
+        presenceMembers?: number;
+        presenceSubscribers?: number;
+      };
+    };
+  };
+}
+export interface ListChannelsParams {
+  limit?: number;
+  prefix?: string;
+  by?: 'id' | 'value';
+}
+// ============================================
+// Presence Types
+// ============================================
+export interface PresenceMember {
+  id: string;
+  clientId: string;
+  connectionId: string;
+  timestamp: number;
+  action: string;
+  data?: unknown;
+  encoding?: string;
+}
+export interface PresenceParams {
+  clientId?: string;
+  connectionId?: string;
+  limit?: number;
+}
+export interface PresenceHistoryParams {
+  start?: string;
+  end?: string;
+  limit?: number;
+  direction?: 'forwards' | 'backwards';
+}
+// ============================================
+// Stats Types
+// ============================================
+export interface StatsParams {
+  start?: string;
+  end?: string;
+  limit?: number;
+  direction?: 'forwards' | 'backwards';
+  unit?: 'minute' | 'hour' | 'day' | 'month';
+}
+export interface Stats {
+  intervalId: string;
+  all?: Record<string, unknown>;
+  inbound?: Record<string, unknown>;
+  outbound?: Record<string, unknown>;
+  persisted?: Record<string, unknown>;
+  connections?: Record<string, unknown>;
+  channels?: Record<string, unknown>;
+  apiRequests?: Record<string, unknown>;
+  tokenRequests?: Record<string, unknown>;
+}
+// ============================================
+// API Error Types
+// ============================================
+export interface ApiErrorDetail {
+  code: string;
+  message: string;
+  field?: string;
+  resource?: string;
+}
+export class ConnectorApiError extends Error {
+  public readonly statusCode: number;
+  public readonly errors?: ApiErrorDetail[];
+  public readonly documentationUrl?: string;
+  public readonly requestId?: string;
+  constructor(
+    message: string,
+    statusCode: number,
+    options?: {
+      errors?: ApiErrorDetail[];
+      documentationUrl?: string;
+      requestId?: string;
+    }
+  ) {
+    super(message);
+    this.name = 'ConnectorApiError';
+    this.statusCode = statusCode;
+    this.errors = options?.errors;
+    this.documentationUrl = options?.documentationUrl;
+    this.requestId = options?.requestId;
+  }
+  isRateLimited(): boolean {
+    return this.statusCode === 429;
+  }
+  isServerError(): boolean {
+    return this.statusCode >= 500 && this.statusCode < 600;
+  }
+  isClientError(): boolean {
+    return this.statusCode >= 400 && this.statusCode < 500;
+  }
+  isAuthError(): boolean {
+    return this.statusCode === 401 || this.statusCode === 403;
+  }
+  isNotFound(): boolean {
+    return this.statusCode === 404;
+  }
+  getUserMessage(): string {
+    switch (this.statusCode) {
+      case 400:
+        return 'Bad request. Please check your input.';
+      case 401:
+        return 'Authentication failed. Please check your Ably API key.';
+      case 403:
+        return 'Access denied. Your API key may not have the required capabilities.';
+      case 404:
+        return 'Resource not found.';
+      case 429:
+        return 'Rate limit exceeded. Please wait and try again.';
+      case 500:
+        return 'Server error. Please try again later.';
+      case 502:
+      case 503:
+      case 504:
+        return 'Service temporarily unavailable. Please try again later.';
+      default:
+        return this.message;
+    }
+  }
+  toJSON(): Record<string, unknown> {
+    return {
+      name: this.name,
+      message: this.message,
+      statusCode: this.statusCode,
+      errors: this.errors,
+      documentationUrl: this.documentationUrl,
+      requestId: this.requestId,
+    };
+  }
+}
+export function parseApiError(
+  response: unknown,
+  statusCode: number
+): ConnectorApiError {
+  if (typeof response === 'string') {
+    return new ConnectorApiError(response, statusCode);
+  }
+  if (!response || typeof response !== 'object') {
+    return new ConnectorApiError(`HTTP ${statusCode} Error`, statusCode);
+  }
+  const data = response as Record<string, unknown>;
+  // Ably uses { error: { message, code, statusCode } } format
+  const errorObj = data.error as Record<string, unknown> | undefined;
+  const message =
+    (errorObj?.message as string) ||
+    (data.message as string) ||
+    (data.error as string) ||
+    (data.error_description as string) ||
+    `HTTP ${statusCode} Error`;
+  let errors: ApiErrorDetail[] | undefined;
+  if (Array.isArray(data.errors)) {
+    errors = data.errors.map((e: Record<string, unknown>) => ({
+      code: String(e.code || e.error || 'unknown'),
+      message: String(e.message || e.description || 'Unknown error'),
+      field: e.field as string,
+      resource: e.resource as string,
+    }));
+  }
+  const documentationUrl =
+    (data.documentation_url as string) ||
+    (data.docs_url as string) ||
+    (data.help_url as string);
+  const requestId =
+    (data.request_id as string) ||
+    (data.requestId as string) ||
+    (data.trace_id as string);
+  return new ConnectorApiError(message, statusCode, {
+    errors,
+    documentationUrl,
+    requestId,
+  });
+}

package/connectors/connect-ably/src/utils/auth.ts ADDED Viewed

@@ -0,0 +1,274 @@
+import { createServer } from 'http';
+import type { OAuth2Tokens, OAuth2Config } from '../types';
+import { saveOAuthTokens, loadOAuthTokens, getOAuthConfig } from './config';
+// ============================================
+// OAuth2 Authentication Utility
+// ============================================
+// TODO: Replace with your OAuth provider's endpoints
+const DEFAULT_AUTH_URL = 'https://accounts.example.com/oauth2/authorize';
+const DEFAULT_TOKEN_URL = 'https://accounts.example.com/oauth2/token';
+// TODO: Define your OAuth scopes
+const DEFAULT_SCOPES = ['read', 'write'].join(' ');
+const REDIRECT_PORT = 8089;
+const REDIRECT_URI = `http://localhost:${REDIRECT_PORT}/callback`;
+export interface AuthResult {
+  success: boolean;
+  tokens?: OAuth2Tokens;
+  error?: string;
+}
+export interface AuthUrlOptions {
+  authUrl?: string;
+  scopes?: string;
+  state?: string;
+  extraParams?: Record<string, string>;
+}
+/**
+ * Generate the OAuth2 authorization URL
+ */
+export function getAuthUrl(options: AuthUrlOptions = {}): string {
+  const config = getOAuthConfig();
+  if (!config?.clientId) {
+    throw new Error('OAuth client ID not configured. Run "config set-credentials" first.');
+  }
+  const authUrl = options.authUrl || DEFAULT_AUTH_URL;
+  const scopes = options.scopes || DEFAULT_SCOPES;
+  const params = new URLSearchParams({
+    client_id: config.clientId,
+    redirect_uri: REDIRECT_URI,
+    response_type: 'code',
+    scope: scopes,
+    access_type: 'offline',
+    prompt: 'consent', // Force consent to get refresh token
+    ...(options.state && { state: options.state }),
+    ...options.extraParams,
+  });
+  return `${authUrl}?${params.toString()}`;
+}
+/**
+ * Exchange authorization code for tokens
+ */
+export async function exchangeCodeForTokens(
+  code: string,
+  tokenUrl: string = DEFAULT_TOKEN_URL
+): Promise<OAuth2Tokens> {
+  const config = getOAuthConfig();
+  if (!config?.clientId || !config?.clientSecret) {
+    throw new Error('OAuth credentials not configured');
+  }
+  const response = await fetch(tokenUrl, {
+    method: 'POST',
+    headers: {
+      'Content-Type': 'application/x-www-form-urlencoded',
+    },
+    body: new URLSearchParams({
+      code,
+      client_id: config.clientId,
+      client_secret: config.clientSecret,
+      redirect_uri: REDIRECT_URI,
+      grant_type: 'authorization_code',
+    }),
+  });
+  if (!response.ok) {
+    const error = await response.json().catch(() => ({ error: response.statusText }));
+    throw new Error(`Token exchange failed: ${error.error_description || error.error}`);
+  }
+  const data = await response.json();
+  const tokens: OAuth2Tokens = {
+    accessToken: data.access_token,
+    refreshToken: data.refresh_token,
+    expiresAt: Date.now() + data.expires_in * 1000,
+    tokenType: data.token_type,
+    scope: data.scope,
+  };
+  return tokens;
+}
+/**
+ * Refresh the access token using the refresh token
+ */
+export async function refreshAccessToken(
+  tokenUrl: string = DEFAULT_TOKEN_URL
+): Promise<OAuth2Tokens> {
+  const config = getOAuthConfig();
+  const currentTokens = loadOAuthTokens();
+  if (!config?.clientId || !config?.clientSecret) {
+    throw new Error('OAuth credentials not configured');
+  }
+  if (!currentTokens?.refreshToken) {
+    throw new Error('No refresh token available. Please login again.');
+  }
+  const response = await fetch(tokenUrl, {
+    method: 'POST',
+    headers: {
+      'Content-Type': 'application/x-www-form-urlencoded',
+    },
+    body: new URLSearchParams({
+      client_id: config.clientId,
+      client_secret: config.clientSecret,
+      refresh_token: currentTokens.refreshToken,
+      grant_type: 'refresh_token',
+    }),
+  });
+  if (!response.ok) {
+    const error = await response.json().catch(() => ({ error: response.statusText }));
+    throw new Error(`Token refresh failed: ${error.error_description || error.error}`);
+  }
+  const data = await response.json();
+  const tokens: OAuth2Tokens = {
+    accessToken: data.access_token,
+    refreshToken: data.refresh_token || currentTokens.refreshToken, // Keep original if not returned
+    expiresAt: Date.now() + data.expires_in * 1000,
+    tokenType: data.token_type,
+    scope: data.scope || currentTokens.scope,
+  };
+  saveOAuthTokens(tokens);
+  return tokens;
+}
+/**
+ * Start a local HTTP server to receive the OAuth callback
+ */
+export function startCallbackServer(): Promise<AuthResult> {
+  return new Promise((resolve) => {
+    const server = createServer(async (req, res) => {
+      const url = new URL(req.url || '', `http://localhost:${REDIRECT_PORT}`);
+      if (url.pathname === '/callback') {
+        const code = url.searchParams.get('code');
+        const error = url.searchParams.get('error');
+        if (error) {
+          res.writeHead(200, { 'Content-Type': 'text/html' });
+          res.end(`
+            <html>
+              <body style="font-family: sans-serif; display: flex; justify-content: center; align-items: center; height: 100vh; margin: 0;">
+                <div style="text-align: center;">
+                  <h1 style="color: #dc3545;">Authentication Failed</h1>
+                  <p>Error: ${error}</p>
+                  <p>You can close this window.</p>
+                </div>
+              </body>
+            </html>
+          `);
+          server.close();
+          resolve({ success: false, error });
+          return;
+        }
+        if (code) {
+          try {
+            const tokens = await exchangeCodeForTokens(code);
+            res.writeHead(200, { 'Content-Type': 'text/html' });
+            res.end(`
+              <html>
+                <body style="font-family: sans-serif; display: flex; justify-content: center; align-items: center; height: 100vh; margin: 0;">
+                  <div style="text-align: center;">
+                    <h1 style="color: #28a745;">Authentication Successful!</h1>
+                    <p>You can close this window and return to the terminal.</p>
+                  </div>
+                </body>
+              </html>
+            `);
+            server.close();
+            resolve({ success: true, tokens });
+          } catch (err) {
+            res.writeHead(200, { 'Content-Type': 'text/html' });
+            res.end(`
+              <html>
+                <body style="font-family: sans-serif; display: flex; justify-content: center; align-items: center; height: 100vh; margin: 0;">
+                  <div style="text-align: center;">
+                    <h1 style="color: #dc3545;">Authentication Failed</h1>
+                    <p>Error: ${String(err)}</p>
+                    <p>You can close this window.</p>
+                  </div>
+                </body>
+              </html>
+            `);
+            server.close();
+            resolve({ success: false, error: String(err) });
+          }
+        }
+      }
+    });
+    server.listen(REDIRECT_PORT, () => {
+      // Server is ready
+    });
+    // Timeout after 5 minutes
+    setTimeout(() => {
+      server.close();
+      resolve({ success: false, error: 'Authentication timed out' });
+    }, 5 * 60 * 1000);
+  });
+}
+/**
+ * Get a valid access token, refreshing if necessary
+ * @param tokenUrl - Token endpoint URL for refresh
+ * @param bufferMs - Refresh buffer in ms (default: 5 minutes)
+ */
+export async function getValidAccessToken(
+  tokenUrl: string = DEFAULT_TOKEN_URL,
+  bufferMs: number = 5 * 60 * 1000
+): Promise<string> {
+  const tokens = loadOAuthTokens();
+  if (!tokens) {
+    throw new Error('Not authenticated. Run "auth login" first.');
+  }
+  // Check if token is expired or will expire within buffer time
+  if (Date.now() >= tokens.expiresAt - bufferMs) {
+    const newTokens = await refreshAccessToken(tokenUrl);
+    return newTokens.accessToken;
+  }
+  return tokens.accessToken;
+}
+/**
+ * Check if the user is authenticated
+ */
+export function isAuthenticated(): boolean {
+  const tokens = loadOAuthTokens();
+  return !!tokens?.accessToken;
+}
+/**
+ * Get the redirect URI for OAuth configuration
+ */
+export function getRedirectUri(): string {
+  return REDIRECT_URI;
+}
+/**
+ * Get the redirect port for OAuth callback
+ */
+export function getRedirectPort(): number {
+  return REDIRECT_PORT;
+}