@kwonye/mcpx 0.1.0

package/dist/core/server-auth.js

@@ -0,0 +1,112 @@
+function normalizeNamePart(value) {
+    return value
+        .trim()
+        .toLowerCase()
+        .replace(/[^a-z0-9._-]+/g, "_")
+        .replace(/^_+|_+$/g, "") || "value";
+}
+function requireNonEmpty(value, label) {
+    const normalized = value?.trim();
+    if (!normalized) {
+        throw new Error(`${label} must be non-empty.`);
+    }
+    return normalized;
+}
+export function toSecretRef(secretName) {
+    return `secret://${secretName}`;
+}
+export function secretRefName(ref) {
+    if (!ref.startsWith("secret://")) {
+        return null;
+    }
+    const name = ref.slice("secret://".length).trim();
+    return name.length > 0 ? name : null;
+}
+export function defaultAuthSecretName(serverName, target) {
+    return `auth_${normalizeNamePart(serverName)}_${target.kind}_${normalizeNamePart(target.key)}`;
+}
+export function resolveAuthTarget(spec, header, env) {
+    if (spec.transport === "http") {
+        if (env) {
+            throw new Error("--env is only valid for stdio upstreams.");
+        }
+        return {
+            kind: "header",
+            key: requireNonEmpty(header ?? "Authorization", "Header name")
+        };
+    }
+    if (header) {
+        throw new Error("--header is only valid for HTTP upstreams.");
+    }
+    return {
+        kind: "env",
+        key: requireNonEmpty(env, "Env var name")
+    };
+}
+export function applyAuthReference(spec, target, secretRef) {
+    if (target.kind === "header") {
+        if (spec.transport !== "http") {
+            throw new Error(`Cannot set header auth on ${spec.transport} upstream.`);
+        }
+        const headers = { ...(spec.headers ?? {}) };
+        headers[target.key] = secretRef;
+        spec.headers = headers;
+        return;
+    }
+    if (spec.transport !== "stdio") {
+        throw new Error(`Cannot set env auth on ${spec.transport} upstream.`);
+    }
+    const env = { ...(spec.env ?? {}) };
+    env[target.key] = secretRef;
+    spec.env = env;
+}
+export function removeAuthReference(spec, target) {
+    if (target.kind === "header") {
+        if (spec.transport !== "http") {
+            throw new Error(`Cannot remove header auth from ${spec.transport} upstream.`);
+        }
+        if (!spec.headers || !(target.key in spec.headers)) {
+            return null;
+        }
+        const previous = spec.headers[target.key] ?? null;
+        const next = { ...spec.headers };
+        delete next[target.key];
+        spec.headers = Object.keys(next).length > 0 ? next : undefined;
+        return previous;
+    }
+    if (spec.transport !== "stdio") {
+        throw new Error(`Cannot remove env auth from ${spec.transport} upstream.`);
+    }
+    if (!spec.env || !(target.key in spec.env)) {
+        return null;
+    }
+    const previous = spec.env[target.key] ?? null;
+    const next = { ...spec.env };
+    delete next[target.key];
+    spec.env = Object.keys(next).length > 0 ? next : undefined;
+    return previous;
+}
+export function listAuthBindings(spec) {
+    if (spec.transport === "http") {
+        return Object.entries(spec.headers ?? {}).map(([key, value]) => ({
+            kind: "header",
+            key,
+            value
+        }));
+    }
+    return Object.entries(spec.env ?? {}).map(([key, value]) => ({
+        kind: "env",
+        key,
+        value
+    }));
+}
+export function maybePrefixBearer(target, value, raw = false) {
+    if (raw || target.kind !== "header" || target.key.toLowerCase() !== "authorization") {
+        return value;
+    }
+    if (/^\S+\s+\S+/.test(value)) {
+        return value;
+    }
+    return `Bearer ${value}`;
+}
+//# sourceMappingURL=server-auth.js.map

package/dist/core/server-auth.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"server-auth.js","sourceRoot":"","sources":["../../src/core/server-auth.ts"],"names":[],"mappings":"AAeA,SAAS,iBAAiB,CAAC,KAAa;IACtC,OAAO,KAAK;SACT,IAAI,EAAE;SACN,WAAW,EAAE;SACb,OAAO,CAAC,gBAAgB,EAAE,GAAG,CAAC;SAC9B,OAAO,CAAC,UAAU,EAAE,EAAE,CAAC,IAAI,OAAO,CAAC;AACxC,CAAC;AAED,SAAS,eAAe,CAAC,KAAyB,EAAE,KAAa;IAC/D,MAAM,UAAU,GAAG,KAAK,EAAE,IAAI,EAAE,CAAC;IACjC,IAAI,CAAC,UAAU,EAAE,CAAC;QAChB,MAAM,IAAI,KAAK,CAAC,GAAG,KAAK,qBAAqB,CAAC,CAAC;IACjD,CAAC;IAED,OAAO,UAAU,CAAC;AACpB,CAAC;AAED,MAAM,UAAU,WAAW,CAAC,UAAkB;IAC5C,OAAO,YAAY,UAAU,EAAE,CAAC;AAClC,CAAC;AAED,MAAM,UAAU,aAAa,CAAC,GAAW;IACvC,IAAI,CAAC,GAAG,CAAC,UAAU,CAAC,WAAW,CAAC,EAAE,CAAC;QACjC,OAAO,IAAI,CAAC;IACd,CAAC;IAED,MAAM,IAAI,GAAG,GAAG,CAAC,KAAK,CAAC,WAAW,CAAC,MAAM,CAAC,CAAC,IAAI,EAAE,CAAC;IAClD,OAAO,IAAI,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC;AACvC,CAAC;AAED,MAAM,UAAU,qBAAqB,CAAC,UAAkB,EAAE,MAAkB;IAC1E,OAAO,QAAQ,iBAAiB,CAAC,UAAU,CAAC,IAAI,MAAM,CAAC,IAAI,IAAI,iBAAiB,CAAC,MAAM,CAAC,GAAG,CAAC,EAAE,CAAC;AACjG,CAAC;AAED,MAAM,UAAU,iBAAiB,CAAC,IAAwB,EAAE,MAAe,EAAE,GAAY;IACvF,IAAI,IAAI,CAAC,SAAS,KAAK,MAAM,EAAE,CAAC;QAC9B,IAAI,GAAG,EAAE,CAAC;YACR,MAAM,IAAI,KAAK,CAAC,0CAA0C,CAAC,CAAC;QAC9D,CAAC;QAED,OAAO;YACL,IAAI,EAAE,QAAQ;YACd,GAAG,EAAE,eAAe,CAAC,MAAM,IAAI,eAAe,EAAE,aAAa,CAAC;SAC/D,CAAC;IACJ,CAAC;IAED,IAAI,MAAM,EAAE,CAAC;QACX,MAAM,IAAI,KAAK,CAAC,4CAA4C,CAAC,CAAC;IAChE,CAAC;IAED,OAAO;QACL,IAAI,EAAE,KAAK;QACX,GAAG,EAAE,eAAe,CAAC,GAAG,EAAE,cAAc,CAAC;KAC1C,CAAC;AACJ,CAAC;AAED,MAAM,UAAU,kBAAkB,CAAC,IAAwB,EAAE,MAAkB,EAAE,SAAiB;IAChG,IAAI,MAAM,CAAC,IAAI,KAAK,QAAQ,EAAE,CAAC;QAC7B,IAAI,IAAI,CAAC,SAAS,KAAK,MAAM,EAAE,CAAC;YAC9B,MAAM,IAAI,KAAK,CAAC,6BAA6B,IAAI,CAAC,SAAS,YAAY,CAAC,CAAC;QAC3E,CAAC;QAED,MAAM,OAAO,GAAG,EAAE,GAAG,CAAC,IAAI,CAAC,OAAO,IAAI,EAAE,CAAC,EAAE,CAAC;QAC5C,OAAO,CAAC,MAAM,CAAC,GAAG,CAAC,GAAG,SAAS,CAAC;QAChC,IAAI,CAAC,OAAO,GAAG,OAAO,CAAC;QACvB,OAAO;IACT,CAAC;IAED,IAAI,IAAI,CAAC,SAAS,KAAK,OAAO,EAAE,CAAC;QAC/B,MAAM,IAAI,KAAK,CAAC,0BAA0B,IAAI,CAAC,SAAS,YAAY,CAAC,CAAC;IACxE,CAAC;IAED,MAAM,GAAG,GAAG,EAAE,GAAG,CAAC,IAAI,CAAC,GAAG,IAAI,EAAE,CAAC,EAAE,CAAC;IACpC,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,GAAG,SAAS,CAAC;IAC5B,IAAI,CAAC,GAAG,GAAG,GAAG,CAAC;AACjB,CAAC;AAED,MAAM,UAAU,mBAAmB,CAAC,IAAwB,EAAE,MAAkB;IAC9E,IAAI,MAAM,CAAC,IAAI,KAAK,QAAQ,EAAE,CAAC;QAC7B,IAAI,IAAI,CAAC,SAAS,KAAK,MAAM,EAAE,CAAC;YAC9B,MAAM,IAAI,KAAK,CAAC,kCAAkC,IAAI,CAAC,SAAS,YAAY,CAAC,CAAC;QAChF,CAAC;QAED,IAAI,CAAC,IAAI,CAAC,OAAO,IAAI,CAAC,CAAC,MAAM,CAAC,GAAG,IAAI,IAAI,CAAC,OAAO,CAAC,EAAE,CAAC;YACnD,OAAO,IAAI,CAAC;QACd,CAAC;QAED,MAAM,QAAQ,GAAG,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,GAAG,CAAC,IAAI,IAAI,CAAC;QAClD,MAAM,IAAI,GAAG,EAAE,GAAG,IAAI,CAAC,OAAO,EAAE,CAAC;QACjC,OAAO,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;QACxB,IAAI,CAAC,OAAO,GAAG,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC;QAC/D,OAAO,QAAQ,CAAC;IAClB,CAAC;IAED,IAAI,IAAI,CAAC,SAAS,KAAK,OAAO,EAAE,CAAC;QAC/B,MAAM,IAAI,KAAK,CAAC,+BAA+B,IAAI,CAAC,SAAS,YAAY,CAAC,CAAC;IAC7E,CAAC;IAED,IAAI,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC,CAAC,MAAM,CAAC,GAAG,IAAI,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC;QAC3C,OAAO,IAAI,CAAC;IACd,CAAC;IAED,MAAM,QAAQ,GAAG,IAAI,CAAC,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,IAAI,IAAI,CAAC;IAC9C,MAAM,IAAI,GAAG,EAAE,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;IAC7B,OAAO,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;IACxB,IAAI,CAAC,GAAG,GAAG,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC;IAC3D,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED,MAAM,UAAU,gBAAgB,CAAC,IAAwB;IACvD,IAAI,IAAI,CAAC,SAAS,KAAK,MAAM,EAAE,CAAC;QAC9B,OAAO,MAAM,CAAC,OAAO,CAAC,IAAI,CAAC,OAAO,IAAI,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,GAAG,EAAE,KAAK,CAAC,EAAE,EAAE,CAAC,CAAC;YAC/D,IAAI,EAAE,QAAQ;YACd,GAAG;YACH,KAAK;SACN,CAAC,CAAC,CAAC;IACN,CAAC;IAED,OAAO,MAAM,CAAC,OAAO,CAAE,IAAwB,CAAC,GAAG,IAAI,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,GAAG,EAAE,KAAK,CAAC,EAAE,EAAE,CAAC,CAAC;QAChF,IAAI,EAAE,KAAK;QACX,GAAG;QACH,KAAK;KACN,CAAC,CAAC,CAAC;AACN,CAAC;AAED,MAAM,UAAU,iBAAiB,CAAC,MAAkB,EAAE,KAAa,EAAE,GAAG,GAAG,KAAK;IAC9E,IAAI,GAAG,IAAI,MAAM,CAAC,IAAI,KAAK,QAAQ,IAAI,MAAM,CAAC,GAAG,CAAC,WAAW,EAAE,KAAK,eAAe,EAAE,CAAC;QACpF,OAAO,KAAK,CAAC;IACf,CAAC;IAED,IAAI,YAAY,CAAC,IAAI,CAAC,KAAK,CAAC,EAAE,CAAC;QAC7B,OAAO,KAAK,CAAC;IACf,CAAC;IAED,OAAO,UAAU,KAAK,EAAE,CAAC;AAC3B,CAAC"}

package/dist/core/sync.d.ts

@@ -0,0 +1,9 @@
+import type { ClientId, McpxConfig, SyncResult } from "../types.js";
+import { SecretsManager } from "./secrets.js";
+export interface SyncSummary {
+    gatewayUrl: string;
+    results: SyncResult[];
+    hasErrors: boolean;
+}
+export declare function getGatewayUrl(config: McpxConfig): string;
+export declare function syncAllClients(config: McpxConfig, secrets: SecretsManager, targetClients?: ClientId[]): SyncSummary;

package/dist/core/sync.js

@@ -0,0 +1,63 @@
+import { getAdapters } from "../adapters/index.js";
+import { loadManagedIndex, saveManagedIndex } from "./managed-index.js";
+import { getManagedIndexPath } from "./paths.js";
+import { ensureGatewayToken } from "./registry.js";
+import { saveConfig } from "./config.js";
+export function getGatewayUrl(config) {
+    return `http://127.0.0.1:${config.gateway.port}/mcp`;
+}
+function buildManagedEntries(config, gatewayUrl, localToken) {
+    const names = Object.keys(config.servers);
+    return names.map((name) => ({
+        name,
+        url: `${gatewayUrl}?upstream=${encodeURIComponent(name)}`,
+        headers: {
+            "x-mcpx-local-token": localToken
+        }
+    }));
+}
+export function syncAllClients(config, secrets, targetClients) {
+    const adapters = getAdapters();
+    const managedIndexPath = getManagedIndexPath();
+    const managedIndex = loadManagedIndex(managedIndexPath);
+    const localToken = ensureGatewayToken(config, secrets);
+    const gatewayUrl = getGatewayUrl(config);
+    const managedEntries = buildManagedEntries(config, gatewayUrl, localToken);
+    const filteredAdapters = targetClients && targetClients.length > 0
+        ? adapters.filter((adapter) => targetClients.includes(adapter.id))
+        : adapters;
+    const results = [];
+    for (const adapter of filteredAdapters) {
+        if (!adapter.supportsHttp()) {
+            results.push({
+                clientId: adapter.id,
+                status: "UNSUPPORTED_HTTP",
+                message: "Client adapter does not support MCP over HTTP."
+            });
+            continue;
+        }
+        const result = adapter.syncGateway(config, {
+            managedEntries,
+            managedIndex,
+            managedIndexPath
+        });
+        results.push(result);
+    }
+    for (const result of results) {
+        config.clients[result.clientId] = {
+            status: result.status,
+            configPath: result.configPath,
+            message: result.message,
+            lastSyncAt: new Date().toISOString()
+        };
+    }
+    saveManagedIndex(managedIndex, managedIndexPath);
+    saveConfig(config);
+    const hasErrors = results.some((result) => result.status === "ERROR");
+    return {
+        gatewayUrl,
+        results,
+        hasErrors
+    };
+}
+//# sourceMappingURL=sync.js.map

package/dist/core/sync.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"sync.js","sourceRoot":"","sources":["../../src/core/sync.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,WAAW,EAAE,MAAM,sBAAsB,CAAC;AACnD,OAAO,EAAE,gBAAgB,EAAE,gBAAgB,EAAE,MAAM,oBAAoB,CAAC;AACxE,OAAO,EAAE,mBAAmB,EAAE,MAAM,YAAY,CAAC;AACjD,OAAO,EAAE,kBAAkB,EAAE,MAAM,eAAe,CAAC;AACnD,OAAO,EAAE,UAAU,EAAE,MAAM,aAAa,CAAC;AASzC,MAAM,UAAU,aAAa,CAAC,MAAkB;IAC9C,OAAO,oBAAoB,MAAM,CAAC,OAAO,CAAC,IAAI,MAAM,CAAC;AACvD,CAAC;AAED,SAAS,mBAAmB,CAAC,MAAkB,EAAE,UAAkB,EAAE,UAAkB;IACrF,MAAM,KAAK,GAAG,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC;IAC1C,OAAO,KAAK,CAAC,GAAG,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,CAAC;QAC1B,IAAI;QACJ,GAAG,EAAE,GAAG,UAAU,aAAa,kBAAkB,CAAC,IAAI,CAAC,EAAE;QACzD,OAAO,EAAE;YACP,oBAAoB,EAAE,UAAU;SACjC;KACF,CAAC,CAAC,CAAC;AACN,CAAC;AAED,MAAM,UAAU,cAAc,CAAC,MAAkB,EAAE,OAAuB,EAAE,aAA0B;IACpG,MAAM,QAAQ,GAAG,WAAW,EAAE,CAAC;IAC/B,MAAM,gBAAgB,GAAG,mBAAmB,EAAE,CAAC;IAC/C,MAAM,YAAY,GAAG,gBAAgB,CAAC,gBAAgB,CAAC,CAAC;IACxD,MAAM,UAAU,GAAG,kBAAkB,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IACvD,MAAM,UAAU,GAAG,aAAa,CAAC,MAAM,CAAC,CAAC;IACzC,MAAM,cAAc,GAAG,mBAAmB,CAAC,MAAM,EAAE,UAAU,EAAE,UAAU,CAAC,CAAC;IAE3E,MAAM,gBAAgB,GAAG,aAAa,IAAI,aAAa,CAAC,MAAM,GAAG,CAAC;QAChE,CAAC,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,OAAO,EAAE,EAAE,CAAC,aAAa,CAAC,QAAQ,CAAC,OAAO,CAAC,EAAE,CAAC,CAAC;QAClE,CAAC,CAAC,QAAQ,CAAC;IAEb,MAAM,OAAO,GAAiB,EAAE,CAAC;IAEjC,KAAK,MAAM,OAAO,IAAI,gBAAgB,EAAE,CAAC;QACvC,IAAI,CAAC,OAAO,CAAC,YAAY,EAAE,EAAE,CAAC;YAC5B,OAAO,CAAC,IAAI,CAAC;gBACX,QAAQ,EAAE,OAAO,CAAC,EAAE;gBACpB,MAAM,EAAE,kBAAkB;gBAC1B,OAAO,EAAE,gDAAgD;aAC1D,CAAC,CAAC;YACH,SAAS;QACX,CAAC;QAED,MAAM,MAAM,GAAG,OAAO,CAAC,WAAW,CAAC,MAAM,EAAE;YACzC,cAAc;YACd,YAAY;YACZ,gBAAgB;SACjB,CAAC,CAAC;QAEH,OAAO,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IACvB,CAAC;IAED,KAAK,MAAM,MAAM,IAAI,OAAO,EAAE,CAAC;QAC7B,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAC,GAAG;YAChC,MAAM,EAAE,MAAM,CAAC,MAAM;YACrB,UAAU,EAAE,MAAM,CAAC,UAAU;YAC7B,OAAO,EAAE,MAAM,CAAC,OAAO;YACvB,UAAU,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;SACrC,CAAC;IACJ,CAAC;IAED,gBAAgB,CAAC,YAAY,EAAE,gBAAgB,CAAC,CAAC;IACjD,UAAU,CAAC,MAAM,CAAC,CAAC;IAEnB,MAAM,SAAS,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC,MAAM,EAAE,EAAE,CAAC,MAAM,CAAC,MAAM,KAAK,OAAO,CAAC,CAAC;IAEtE,OAAO;QACL,UAAU;QACV,OAAO;QACP,SAAS;KACV,CAAC;AACJ,CAAC"}

package/dist/gateway/server.d.ts

@@ -0,0 +1,9 @@
+import http from "node:http";
+import { SecretsManager } from "../core/secrets.js";
+interface GatewayServerOptions {
+    port: number;
+    expectedToken: string;
+    secrets: SecretsManager;
+}
+export declare function createGatewayServer(options: GatewayServerOptions): http.Server;
+export {};