@kya-os/mcp-i-cloudflare 1.6.44 → 1.6.45
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dist/adapter.js +32 -32
- package/dist/adapter.js.map +1 -1
- package/dist/agent.d.ts.map +1 -1
- package/dist/agent.js +65 -44
- package/dist/agent.js.map +1 -1
- package/dist/app.d.ts.map +1 -1
- package/dist/app.js +53 -42
- package/dist/app.js.map +1 -1
- package/dist/config.d.ts.map +1 -1
- package/dist/config.js +55 -47
- package/dist/config.js.map +1 -1
- package/dist/helpers/env-mapper.d.ts.map +1 -1
- package/dist/helpers/env-mapper.js +70 -34
- package/dist/helpers/env-mapper.js.map +1 -1
- package/dist/index.js +1 -1
- package/dist/index.js.map +1 -1
- package/dist/providers/storage.d.ts +1 -1
- package/dist/providers/storage.d.ts.map +1 -1
- package/dist/providers/storage.js +6 -4
- package/dist/providers/storage.js.map +1 -1
- package/dist/runtime/oauth-handler.d.ts.map +1 -1
- package/dist/runtime/oauth-handler.js +34 -29
- package/dist/runtime/oauth-handler.js.map +1 -1
- package/dist/runtime.d.ts +4 -2
- package/dist/runtime.d.ts.map +1 -1
- package/dist/runtime.js +12 -7
- package/dist/runtime.js.map +1 -1
- package/dist/server.js +8 -8
- package/dist/server.js.map +1 -1
- package/dist/services/admin.service.d.ts.map +1 -1
- package/dist/services/admin.service.js +21 -17
- package/dist/services/admin.service.js.map +1 -1
- package/dist/services/consent-config.service.d.ts.map +1 -1
- package/dist/services/consent-config.service.js +7 -5
- package/dist/services/consent-config.service.js.map +1 -1
- package/dist/services/consent.service.d.ts.map +1 -1
- package/dist/services/consent.service.js +86 -65
- package/dist/services/consent.service.js.map +1 -1
- package/dist/services/delegation.service.d.ts.map +1 -1
- package/dist/services/delegation.service.js +32 -32
- package/dist/services/delegation.service.js.map +1 -1
- package/dist/services/proof-batch-queue.d.ts +1 -1
- package/dist/services/proof-batch-queue.d.ts.map +1 -1
- package/dist/services/proof-batch-queue.js +15 -13
- package/dist/services/proof-batch-queue.js.map +1 -1
- package/dist/services/proof.service.d.ts +1 -0
- package/dist/services/proof.service.d.ts.map +1 -1
- package/dist/services/proof.service.js +21 -19
- package/dist/services/proof.service.js.map +1 -1
- package/dist/utils/consent-defaults.d.ts +100 -0
- package/dist/utils/consent-defaults.d.ts.map +1 -0
- package/dist/utils/consent-defaults.js +107 -0
- package/dist/utils/consent-defaults.js.map +1 -0
- package/package.json +3 -3
|
@@ -12,11 +12,11 @@
|
|
|
12
12
|
* Standard KV binding names that may be prefixed
|
|
13
13
|
*/
|
|
14
14
|
const KV_BINDING_NAMES = [
|
|
15
|
-
|
|
16
|
-
|
|
17
|
-
|
|
18
|
-
|
|
19
|
-
|
|
15
|
+
"NONCE_CACHE",
|
|
16
|
+
"PROOF_ARCHIVE",
|
|
17
|
+
"IDENTITY_STORAGE",
|
|
18
|
+
"DELEGATION_STORAGE",
|
|
19
|
+
"TOOL_PROTECTION_KV",
|
|
20
20
|
];
|
|
21
21
|
/**
|
|
22
22
|
* Detect environment prefix by checking for prefixed KV bindings
|
|
@@ -34,14 +34,14 @@ const KV_BINDING_NAMES = [
|
|
|
34
34
|
* ```
|
|
35
35
|
*/
|
|
36
36
|
export function detectEnvPrefix(env) {
|
|
37
|
-
if (!env || typeof env !==
|
|
37
|
+
if (!env || typeof env !== "object") {
|
|
38
38
|
return undefined;
|
|
39
39
|
}
|
|
40
40
|
// Check each KV binding name
|
|
41
41
|
for (const bindingName of KV_BINDING_NAMES) {
|
|
42
42
|
// Check for prefixed versions (e.g., _17429_NONCE_CACHE, MYAPP_NONCE_CACHE)
|
|
43
43
|
for (const key in env) {
|
|
44
|
-
if (typeof key ===
|
|
44
|
+
if (typeof key === "string" && key.endsWith(`_${bindingName}`)) {
|
|
45
45
|
// Extract prefix (everything before _NONCE_CACHE, etc.)
|
|
46
46
|
const prefix = key.slice(0, -(bindingName.length + 1));
|
|
47
47
|
if (prefix.length > 0) {
|
|
@@ -79,29 +79,48 @@ export function mapPrefixedEnv(env, prefix) {
|
|
|
79
79
|
// Handle prefix with or without leading underscore
|
|
80
80
|
// Try both formats: _PREFIX_KEY and PREFIX_KEY
|
|
81
81
|
const prefixUpper = prefix.toUpperCase();
|
|
82
|
-
const prefixWithUnderscore = prefixUpper.startsWith(
|
|
83
|
-
|
|
82
|
+
const prefixWithUnderscore = prefixUpper.startsWith("_")
|
|
83
|
+
? prefixUpper
|
|
84
|
+
: `_${prefixUpper}`;
|
|
85
|
+
const prefixWithoutUnderscore = prefixUpper.replace(/^_+/, "");
|
|
84
86
|
// Helper to get KV binding, trying both prefix formats
|
|
85
87
|
const getKV = (bindingName) => {
|
|
86
88
|
return (env[`${prefixWithUnderscore}_${bindingName}`] ||
|
|
87
89
|
env[`${prefixWithoutUnderscore}_${bindingName}`]);
|
|
88
90
|
};
|
|
89
91
|
return {
|
|
90
|
-
NONCE_CACHE: getKV(
|
|
91
|
-
PROOF_ARCHIVE: getKV(
|
|
92
|
-
IDENTITY_STORAGE: getKV(
|
|
93
|
-
DELEGATION_STORAGE: getKV(
|
|
94
|
-
TOOL_PROTECTION_KV: getKV(
|
|
95
|
-
MCP_IDENTITY_PRIVATE_KEY: typeof env.MCP_IDENTITY_PRIVATE_KEY ===
|
|
96
|
-
|
|
97
|
-
|
|
98
|
-
|
|
99
|
-
|
|
100
|
-
|
|
101
|
-
|
|
102
|
-
|
|
103
|
-
|
|
104
|
-
|
|
92
|
+
NONCE_CACHE: getKV("NONCE_CACHE"),
|
|
93
|
+
PROOF_ARCHIVE: getKV("PROOF_ARCHIVE"),
|
|
94
|
+
IDENTITY_STORAGE: getKV("IDENTITY_STORAGE"),
|
|
95
|
+
DELEGATION_STORAGE: getKV("DELEGATION_STORAGE"),
|
|
96
|
+
TOOL_PROTECTION_KV: getKV("TOOL_PROTECTION_KV"),
|
|
97
|
+
MCP_IDENTITY_PRIVATE_KEY: typeof env.MCP_IDENTITY_PRIVATE_KEY === "string"
|
|
98
|
+
? env.MCP_IDENTITY_PRIVATE_KEY
|
|
99
|
+
: undefined,
|
|
100
|
+
MCP_IDENTITY_PUBLIC_KEY: typeof env.MCP_IDENTITY_PUBLIC_KEY === "string"
|
|
101
|
+
? env.MCP_IDENTITY_PUBLIC_KEY
|
|
102
|
+
: undefined,
|
|
103
|
+
MCP_IDENTITY_AGENT_DID: typeof env.MCP_IDENTITY_AGENT_DID === "string"
|
|
104
|
+
? env.MCP_IDENTITY_AGENT_DID
|
|
105
|
+
: undefined,
|
|
106
|
+
AGENTSHIELD_API_URL: typeof env.AGENTSHIELD_API_URL === "string"
|
|
107
|
+
? env.AGENTSHIELD_API_URL
|
|
108
|
+
: undefined,
|
|
109
|
+
AGENTSHIELD_API_KEY: typeof env.AGENTSHIELD_API_KEY === "string"
|
|
110
|
+
? env.AGENTSHIELD_API_KEY
|
|
111
|
+
: undefined,
|
|
112
|
+
AGENTSHIELD_PROJECT_ID: typeof env.AGENTSHIELD_PROJECT_ID === "string"
|
|
113
|
+
? env.AGENTSHIELD_PROJECT_ID
|
|
114
|
+
: undefined,
|
|
115
|
+
OAUTH_ENCRYPTION_SECRET: typeof env.OAUTH_ENCRYPTION_SECRET === "string"
|
|
116
|
+
? env.OAUTH_ENCRYPTION_SECRET
|
|
117
|
+
: undefined,
|
|
118
|
+
MCPI_ENV: typeof env.MCPI_ENV === "string" ? env.MCPI_ENV : undefined,
|
|
119
|
+
MCP_SERVER_URL: typeof env.MCP_SERVER_URL === "string" ? env.MCP_SERVER_URL : undefined,
|
|
120
|
+
MCP_SERVER_NAME: typeof env.MCP_SERVER_NAME === "string" ? env.MCP_SERVER_NAME : undefined,
|
|
121
|
+
KTA_API_URL: typeof env.KTA_API_URL === "string" ? env.KTA_API_URL : undefined,
|
|
122
|
+
ENVIRONMENT: typeof env.ENVIRONMENT === "string" ? env.ENVIRONMENT : undefined,
|
|
123
|
+
ADMIN_API_KEY: typeof env.ADMIN_API_KEY === "string" ? env.ADMIN_API_KEY : undefined,
|
|
105
124
|
_durableObjectState: env._durableObjectState,
|
|
106
125
|
};
|
|
107
126
|
}
|
|
@@ -153,16 +172,33 @@ export function normalizeCloudflareEnv(env, prefix) {
|
|
|
153
172
|
IDENTITY_STORAGE: env.IDENTITY_STORAGE,
|
|
154
173
|
DELEGATION_STORAGE: env.DELEGATION_STORAGE,
|
|
155
174
|
TOOL_PROTECTION_KV: env.TOOL_PROTECTION_KV,
|
|
156
|
-
MCP_IDENTITY_PRIVATE_KEY: typeof env.MCP_IDENTITY_PRIVATE_KEY ===
|
|
157
|
-
|
|
158
|
-
|
|
159
|
-
|
|
160
|
-
|
|
161
|
-
|
|
162
|
-
|
|
163
|
-
|
|
164
|
-
|
|
165
|
-
|
|
175
|
+
MCP_IDENTITY_PRIVATE_KEY: typeof env.MCP_IDENTITY_PRIVATE_KEY === "string"
|
|
176
|
+
? env.MCP_IDENTITY_PRIVATE_KEY
|
|
177
|
+
: undefined,
|
|
178
|
+
MCP_IDENTITY_PUBLIC_KEY: typeof env.MCP_IDENTITY_PUBLIC_KEY === "string"
|
|
179
|
+
? env.MCP_IDENTITY_PUBLIC_KEY
|
|
180
|
+
: undefined,
|
|
181
|
+
MCP_IDENTITY_AGENT_DID: typeof env.MCP_IDENTITY_AGENT_DID === "string"
|
|
182
|
+
? env.MCP_IDENTITY_AGENT_DID
|
|
183
|
+
: undefined,
|
|
184
|
+
AGENTSHIELD_API_URL: typeof env.AGENTSHIELD_API_URL === "string"
|
|
185
|
+
? env.AGENTSHIELD_API_URL
|
|
186
|
+
: undefined,
|
|
187
|
+
AGENTSHIELD_API_KEY: typeof env.AGENTSHIELD_API_KEY === "string"
|
|
188
|
+
? env.AGENTSHIELD_API_KEY
|
|
189
|
+
: undefined,
|
|
190
|
+
AGENTSHIELD_PROJECT_ID: typeof env.AGENTSHIELD_PROJECT_ID === "string"
|
|
191
|
+
? env.AGENTSHIELD_PROJECT_ID
|
|
192
|
+
: undefined,
|
|
193
|
+
OAUTH_ENCRYPTION_SECRET: typeof env.OAUTH_ENCRYPTION_SECRET === "string"
|
|
194
|
+
? env.OAUTH_ENCRYPTION_SECRET
|
|
195
|
+
: undefined,
|
|
196
|
+
MCPI_ENV: typeof env.MCPI_ENV === "string" ? env.MCPI_ENV : undefined,
|
|
197
|
+
MCP_SERVER_URL: typeof env.MCP_SERVER_URL === "string" ? env.MCP_SERVER_URL : undefined,
|
|
198
|
+
MCP_SERVER_NAME: typeof env.MCP_SERVER_NAME === "string" ? env.MCP_SERVER_NAME : undefined,
|
|
199
|
+
KTA_API_URL: typeof env.KTA_API_URL === "string" ? env.KTA_API_URL : undefined,
|
|
200
|
+
ENVIRONMENT: typeof env.ENVIRONMENT === "string" ? env.ENVIRONMENT : undefined,
|
|
201
|
+
ADMIN_API_KEY: typeof env.ADMIN_API_KEY === "string" ? env.ADMIN_API_KEY : undefined,
|
|
166
202
|
_durableObjectState: env._durableObjectState,
|
|
167
203
|
};
|
|
168
204
|
}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"env-mapper.js","sourceRoot":"","sources":["../../src/helpers/env-mapper.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;
|
|
1
|
+
{"version":3,"file":"env-mapper.js","sourceRoot":"","sources":["../../src/helpers/env-mapper.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AASH;;GAEG;AACH,MAAM,gBAAgB,GAAG;IACvB,aAAa;IACb,eAAe;IACf,kBAAkB;IAClB,oBAAoB;IACpB,oBAAoB;CACZ,CAAC;AAEX;;;;;;;;;;;;;;GAcG;AACH,MAAM,UAAU,eAAe,CAAC,GAAQ;IACtC,IAAI,CAAC,GAAG,IAAI,OAAO,GAAG,KAAK,QAAQ,EAAE,CAAC;QACpC,OAAO,SAAS,CAAC;IACnB,CAAC;IAED,6BAA6B;IAC7B,KAAK,MAAM,WAAW,IAAI,gBAAgB,EAAE,CAAC;QAC3C,4EAA4E;QAC5E,KAAK,MAAM,GAAG,IAAI,GAAG,EAAE,CAAC;YACtB,IAAI,OAAO,GAAG,KAAK,QAAQ,IAAI,GAAG,CAAC,QAAQ,CAAC,IAAI,WAAW,EAAE,CAAC,EAAE,CAAC;gBAC/D,wDAAwD;gBACxD,MAAM,MAAM,GAAG,GAAG,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,WAAW,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC;gBACvD,IAAI,MAAM,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;oBACtB,gEAAgE;oBAChE,oEAAoE;oBACpE,OAAO,MAAM,CAAC;gBAChB,CAAC;YACH,CAAC;QACH,CAAC;IACH,CAAC;IAED,OAAO,SAAS,CAAC;AACnB,CAAC;AAED;;;;;;;;;;;;;;;;;;;;GAoBG;AACH,MAAM,UAAU,cAAc,CAC5B,GAA0B,EAC1B,MAAc;IAEd,mDAAmD;IACnD,+CAA+C;IAC/C,MAAM,WAAW,GAAG,MAAM,CAAC,WAAW,EAAE,CAAC;IACzC,MAAM,oBAAoB,GAAG,WAAW,CAAC,UAAU,CAAC,GAAG,CAAC;QACtD,CAAC,CAAC,WAAW;QACb,CAAC,CAAC,IAAI,WAAW,EAAE,CAAC;IACtB,MAAM,uBAAuB,GAAG,WAAW,CAAC,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC;IAE/D,uDAAuD;IACvD,MAAM,KAAK,GAAG,CAAC,WAAmB,EAA2B,EAAE;QAC7D,OAAO,CAAC,GAAG,CAAC,GAAG,oBAAoB,IAAI,WAAW,EAAE,CAAC;YACnD,GAAG,CAAC,GAAG,uBAAuB,IAAI,WAAW,EAAE,CAAC,CAErC,CAAC;IAChB,CAAC,CAAC;IAEF,OAAO;QACL,WAAW,EAAE,KAAK,CAAC,aAAa,CAAgB;QAChD,aAAa,EAAE,KAAK,CAAC,eAAe,CAAC;QACrC,gBAAgB,EAAE,KAAK,CAAC,kBAAkB,CAAC;QAC3C,kBAAkB,EAAE,KAAK,CAAC,oBAAoB,CAAC;QAC/C,kBAAkB,EAAE,KAAK,CAAC,oBAAoB,CAAC;QAC/C,wBAAwB,EACtB,OAAO,GAAG,CAAC,wBAAwB,KAAK,QAAQ;YAC9C,CAAC,CAAC,GAAG,CAAC,wBAAwB;YAC9B,CAAC,CAAC,SAAS;QACf,uBAAuB,EACrB,OAAO,GAAG,CAAC,uBAAuB,KAAK,QAAQ;YAC7C,CAAC,CAAC,GAAG,CAAC,uBAAuB;YAC7B,CAAC,CAAC,SAAS;QACf,sBAAsB,EACpB,OAAO,GAAG,CAAC,sBAAsB,KAAK,QAAQ;YAC5C,CAAC,CAAC,GAAG,CAAC,sBAAsB;YAC5B,CAAC,CAAC,SAAS;QACf,mBAAmB,EACjB,OAAO,GAAG,CAAC,mBAAmB,KAAK,QAAQ;YACzC,CAAC,CAAC,GAAG,CAAC,mBAAmB;YACzB,CAAC,CAAC,SAAS;QACf,mBAAmB,EACjB,OAAO,GAAG,CAAC,mBAAmB,KAAK,QAAQ;YACzC,CAAC,CAAC,GAAG,CAAC,mBAAmB;YACzB,CAAC,CAAC,SAAS;QACf,sBAAsB,EACpB,OAAO,GAAG,CAAC,sBAAsB,KAAK,QAAQ;YAC5C,CAAC,CAAC,GAAG,CAAC,sBAAsB;YAC5B,CAAC,CAAC,SAAS;QACf,uBAAuB,EACrB,OAAO,GAAG,CAAC,uBAAuB,KAAK,QAAQ;YAC7C,CAAC,CAAC,GAAG,CAAC,uBAAuB;YAC7B,CAAC,CAAC,SAAS;QACf,QAAQ,EAAE,OAAO,GAAG,CAAC,QAAQ,KAAK,QAAQ,CAAC,CAAC,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS;QACrE,cAAc,EACZ,OAAO,GAAG,CAAC,cAAc,KAAK,QAAQ,CAAC,CAAC,CAAC,GAAG,CAAC,cAAc,CAAC,CAAC,CAAC,SAAS;QACzE,eAAe,EACb,OAAO,GAAG,CAAC,eAAe,KAAK,QAAQ,CAAC,CAAC,CAAC,GAAG,CAAC,eAAe,CAAC,CAAC,CAAC,SAAS;QAC3E,WAAW,EACT,OAAO,GAAG,CAAC,WAAW,KAAK,QAAQ,CAAC,CAAC,CAAC,GAAG,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS;QACnE,WAAW,EACT,OAAO,GAAG,CAAC,WAAW,KAAK,QAAQ,CAAC,CAAC,CAAC,GAAG,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS;QACnE,aAAa,EACX,OAAO,GAAG,CAAC,aAAa,KAAK,QAAQ,CAAC,CAAC,CAAC,GAAG,CAAC,aAAa,CAAC,CAAC,CAAC,SAAS;QACvE,mBAAmB,EAAE,GAAG,CAAC,mBAEZ;KACd,CAAC;AACJ,CAAC;AAED;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA6BG;AACH,MAAM,UAAU,sBAAsB,CACpC,GAAQ,EACR,MAAe;IAEf,sCAAsC;IACtC,IAAI,MAAM,EAAE,CAAC;QACX,OAAO,cAAc,CAAC,GAA4B,EAAE,MAAM,CAAC,CAAC;IAC9D,CAAC;IAED,qBAAqB;IACrB,MAAM,cAAc,GAAG,eAAe,CAAC,GAAG,CAAC,CAAC;IAC5C,IAAI,cAAc,EAAE,CAAC;QACnB,OAAO,cAAc,CAAC,GAA4B,EAAE,cAAc,CAAC,CAAC;IACtE,CAAC;IAED,uDAAuD;IACvD,yCAAyC;IACzC,OAAO;QACL,WAAW,EAAE,GAAG,CAAC,WAA0B;QAC3C,aAAa,EAAE,GAAG,CAAC,aAAwC;QAC3D,gBAAgB,EAAE,GAAG,CAAC,gBAA2C;QACjE,kBAAkB,EAAE,GAAG,CAAC,kBAA6C;QACrE,kBAAkB,EAAE,GAAG,CAAC,kBAA6C;QACrE,wBAAwB,EACtB,OAAO,GAAG,CAAC,wBAAwB,KAAK,QAAQ;YAC9C,CAAC,CAAC,GAAG,CAAC,wBAAwB;YAC9B,CAAC,CAAC,SAAS;QACf,uBAAuB,EACrB,OAAO,GAAG,CAAC,uBAAuB,KAAK,QAAQ;YAC7C,CAAC,CAAC,GAAG,CAAC,uBAAuB;YAC7B,CAAC,CAAC,SAAS;QACf,sBAAsB,EACpB,OAAO,GAAG,CAAC,sBAAsB,KAAK,QAAQ;YAC5C,CAAC,CAAC,GAAG,CAAC,sBAAsB;YAC5B,CAAC,CAAC,SAAS;QACf,mBAAmB,EACjB,OAAO,GAAG,CAAC,mBAAmB,KAAK,QAAQ;YACzC,CAAC,CAAC,GAAG,CAAC,mBAAmB;YACzB,CAAC,CAAC,SAAS;QACf,mBAAmB,EACjB,OAAO,GAAG,CAAC,mBAAmB,KAAK,QAAQ;YACzC,CAAC,CAAC,GAAG,CAAC,mBAAmB;YACzB,CAAC,CAAC,SAAS;QACf,sBAAsB,EACpB,OAAO,GAAG,CAAC,sBAAsB,KAAK,QAAQ;YAC5C,CAAC,CAAC,GAAG,CAAC,sBAAsB;YAC5B,CAAC,CAAC,SAAS;QACf,uBAAuB,EACrB,OAAO,GAAG,CAAC,uBAAuB,KAAK,QAAQ;YAC7C,CAAC,CAAC,GAAG,CAAC,uBAAuB;YAC7B,CAAC,CAAC,SAAS;QACf,QAAQ,EAAE,OAAO,GAAG,CAAC,QAAQ,KAAK,QAAQ,CAAC,CAAC,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS;QACrE,cAAc,EACZ,OAAO,GAAG,CAAC,cAAc,KAAK,QAAQ,CAAC,CAAC,CAAC,GAAG,CAAC,cAAc,CAAC,CAAC,CAAC,SAAS;QACzE,eAAe,EACb,OAAO,GAAG,CAAC,eAAe,KAAK,QAAQ,CAAC,CAAC,CAAC,GAAG,CAAC,eAAe,CAAC,CAAC,CAAC,SAAS;QAC3E,WAAW,EACT,OAAO,GAAG,CAAC,WAAW,KAAK,QAAQ,CAAC,CAAC,CAAC,GAAG,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS;QACnE,WAAW,EACT,OAAO,GAAG,CAAC,WAAW,KAAK,QAAQ,CAAC,CAAC,CAAC,GAAG,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS;QACnE,aAAa,EACX,OAAO,GAAG,CAAC,aAAa,KAAK,QAAQ,CAAC,CAAC,CAAC,GAAG,CAAC,aAAa,CAAC,CAAC,CAAC,SAAS;QACvE,mBAAmB,EAAE,GAAG,CAAC,mBAEZ;KACd,CAAC;AACJ,CAAC"}
|
package/dist/index.js
CHANGED
|
@@ -91,7 +91,7 @@ export function createCloudflareRuntime(config) {
|
|
|
91
91
|
msg.toLowerCase().includes("failed") ||
|
|
92
92
|
msg.toLowerCase().includes("validation");
|
|
93
93
|
if (isError || config.environment === "development") {
|
|
94
|
-
console.
|
|
94
|
+
console.error(`[AccessControl] ${msg}`, data);
|
|
95
95
|
}
|
|
96
96
|
},
|
|
97
97
|
});
|
package/dist/index.js.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,kFAAkF;AAClF,iGAAiG;AACjG,iGAAiG;AACjG,OAAO,EAAE,wBAAwB,EAAE,MAAM,gCAAgC,CAAC;AAE1E,iEAAiE;AACjE,8EAA8E;AAC9E,sEAAsE;AACtE,MAAM,yBAAyB,GAAG,wBAAwB,EAAE,CAAC;AAE7D,OAAO,EAGL,uBAAuB,EAEvB,uBAAuB,EACvB,aAAa,GACd,MAAM,oBAAoB,CAAC;AAC5B,OAAO,EAAE,iBAAiB,EAAE,MAAM,oBAAoB,CAAC;AACvD,OAAO,EACL,iBAAiB,EACjB,oBAAoB,EACpB,oBAAoB,EACpB,oBAAoB,EACpB,uBAAuB,GACxB,MAAM,qBAAqB,CAAC;AAC7B,OAAO,EAAE,kBAAkB,EAAE,MAAM,yBAAyB,CAAC;AAC7D,OAAO,EAAE,iBAAiB,EAAE,MAAM,WAAW,CAAC;AAI9C,sBAAsB;AACtB,OAAO,EACL,iBAAiB,EACjB,iBAAiB,EACjB,oBAAoB,EACpB,oBAAoB,EACpB,oBAAoB,EACpB,uBAAuB,EACvB,kBAAkB,GACnB,CAAC;AAEF,4BAA4B;AAC5B,OAAO,EACL,cAAc,GAKf,MAAM,4BAA4B,CAAC;AAEpC,qBAAqB;AACrB,OAAO,EAAE,cAAc,EAAE,MAAM,4BAA4B,CAAC;AAC5D,OAAO,EAAE,iBAAiB,EAAE,MAAM,+BAA+B,CAAC;AAClE,OAAO,EAAE,YAAY,EAAE,MAAM,0BAA0B,CAAC;AACxD,OAAO,EAAE,gBAAgB,EAAE,MAAM,+BAA+B,CAAC;AACjE,OAAO,EAAE,oBAAoB,EAAE,MAAM,mCAAmC,CAAC;AAEzE,oCAAoC;AACpC,OAAO,EAAE,YAAY,EAAE,MAAM,0BAA0B,CAAC;AACxD,OAAO,EACL,cAAc,EACd,sBAAsB,EACtB,4BAA4B,EAC5B,kBAAkB,GAEnB,MAAM,qBAAqB,CAAC;AAE7B,6BAA6B;AAC7B,OAAO,EACL,wBAAwB,GAMzB,MAAM,mBAAmB,CAAC;AAE3B,6DAA6D;AAC7D,OAAO,EAAE,iBAAiB,EAAwB,MAAM,WAAW,CAAC;AAEpE,kCAAkC;AAClC,OAAO,EACL,qBAAqB,GAEtB,MAAM,kCAAkC,CAAC;AAE1C,OAAO,EAAE,kBAAkB,EAAE,MAAM,+BAA+B,CAAC;AAGnE,oCAAoC;AACpC,OAAO,EACL,0BAA0B,EAC1B,sBAAsB,GAOvB,MAAM,yBAAyB,CAAC;AASjC,8CAA8C;AAC9C,OAAO,EACL,oBAAoB,GAErB,MAAM,UAAU,CAAC;AAClB,OAAO,EAAE,YAAY,EAAE,MAAM,0BAA0B,CAAC;AAExD,6CAA6C;AAC7C,OAAO,EAAE,mBAAmB,EAA8B,MAAM,SAAS,CAAC;AAC1E,OAAO,EAAE,aAAa,EAA6B,MAAM,OAAO,CAAC;AACjE,OAAO,EACL,cAAc,EACd,sBAAsB,EACtB,eAAe,GAChB,MAAM,sBAAsB,CAAC;AAE9B,sBAAsB;AACtB,cAAc,aAAa,CAAC;AAE5B,6BAA6B;AAC7B,OAAO,EAAE,YAAY,EAAE,MAAM,UAAU,CAAC;AAwBxC;;;;;GAKG;AACH,MAAM,UAAU,uBAAuB,CACrC,MAA4B;IAE5B,MAAM,cAAc,GAAG,IAAI,iBAAiB,EAAE,CAAC;IAC/C,MAAM,aAAa,GAAG,IAAI,oBAAoB,EAAE,CAAC;IACjD,MAAM,aAAa,GAAG,IAAI,oBAAoB,EAAE,CAAC;IACjD,MAAM,eAAe,GAAG,IAAI,iBAAiB,CAC3C,CAAC,MAAM,CAAC,GAAG,CAAC,gBAAgB,IAAI,MAAM,CAAC,GAAG,CAAC,WAAW,CAAQ,CAC/D,CAAC;IACF,MAAM,kBAAkB,GAAG,IAAI,oBAAoB,CACjD,MAAM,CAAC,GAAG,CAAC,WAAkB,CAC9B,CAAC;IAEF,uDAAuD;IACvD,MAAM,oBAAoB,GAAG,IAAI,uBAAuB,CACtD,MAAM,CAAC,GAAG,EACV,cAAc,EACd,MAAM,CAAC,GAAG,CAAC,mBAA0B,CAAC,yCAAyC;KAChF,CAAC;IAEF,uEAAuE;IACvE,uEAAuE;IACvE,MAAM,gBAAgB,GAAG,MAAM,CAAC,GAAG,CAAC,gBAAgB;QAClD,CAAC,CAAC,IAAI,kBAAkB,CACpB,MAAM,CAAC,GAAG,CAAC,gBAAuB,EAClC,oBAAoB,EACpB,cAAc,CACf;QACH,CAAC,CAAC,oBAAoB,CAAC;IAEzB,4BAA4B;IAC5B,MAAM,aAAa,GAAG,IAAI,aAAa,CAAC;QACtC,cAAc;QACd,aAAa;QACb,kBAAkB;QAClB,aAAa;QACb,oBAAoB,EAAE,MAAM,CAAC,oBAAoB,IAAI,GAAG;KACzD,CAAC,CAAC;IAEH,8DAA8D;IAC9D,IAAI,oBAAyD,CAAC;IAC9D,IAAI,MAAM,CAAC,GAAG,CAAC,mBAAmB,EAAE,CAAC;QACnC,oBAAoB,GAAG,IAAI,uBAAuB,CAAC;YACjD,OAAO,EAAE,MAAM,CAAC,GAAG,CAAC,mBAAmB,IAAI,wBAAwB;YACnE,MAAM,EAAE,MAAM,CAAC,GAAG,CAAC,mBAAmB;YACtC,aAAa,EAAE,aAAa;YAC5B,MAAM,EAAE,CAAC,GAAG,EAAE,IAAI,EAAE,EAAE;gBACpB,gEAAgE;gBAChE,MAAM,OAAO,GACX,GAAG,CAAC,WAAW,EAAE,CAAC,QAAQ,CAAC,OAAO,CAAC;oBACnC,GAAG,CAAC,WAAW,EAAE,CAAC,QAAQ,CAAC,QAAQ,CAAC;oBACpC,GAAG,CAAC,WAAW,EAAE,CAAC,QAAQ,CAAC,YAAY,CAAC,CAAC;gBAE3C,IAAI,OAAO,IAAI,MAAM,CAAC,WAAW,KAAK,aAAa,EAAE,CAAC;oBACpD,OAAO,CAAC,
|
|
1
|
+
{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,kFAAkF;AAClF,iGAAiG;AACjG,iGAAiG;AACjG,OAAO,EAAE,wBAAwB,EAAE,MAAM,gCAAgC,CAAC;AAE1E,iEAAiE;AACjE,8EAA8E;AAC9E,sEAAsE;AACtE,MAAM,yBAAyB,GAAG,wBAAwB,EAAE,CAAC;AAE7D,OAAO,EAGL,uBAAuB,EAEvB,uBAAuB,EACvB,aAAa,GACd,MAAM,oBAAoB,CAAC;AAC5B,OAAO,EAAE,iBAAiB,EAAE,MAAM,oBAAoB,CAAC;AACvD,OAAO,EACL,iBAAiB,EACjB,oBAAoB,EACpB,oBAAoB,EACpB,oBAAoB,EACpB,uBAAuB,GACxB,MAAM,qBAAqB,CAAC;AAC7B,OAAO,EAAE,kBAAkB,EAAE,MAAM,yBAAyB,CAAC;AAC7D,OAAO,EAAE,iBAAiB,EAAE,MAAM,WAAW,CAAC;AAI9C,sBAAsB;AACtB,OAAO,EACL,iBAAiB,EACjB,iBAAiB,EACjB,oBAAoB,EACpB,oBAAoB,EACpB,oBAAoB,EACpB,uBAAuB,EACvB,kBAAkB,GACnB,CAAC;AAEF,4BAA4B;AAC5B,OAAO,EACL,cAAc,GAKf,MAAM,4BAA4B,CAAC;AAEpC,qBAAqB;AACrB,OAAO,EAAE,cAAc,EAAE,MAAM,4BAA4B,CAAC;AAC5D,OAAO,EAAE,iBAAiB,EAAE,MAAM,+BAA+B,CAAC;AAClE,OAAO,EAAE,YAAY,EAAE,MAAM,0BAA0B,CAAC;AACxD,OAAO,EAAE,gBAAgB,EAAE,MAAM,+BAA+B,CAAC;AACjE,OAAO,EAAE,oBAAoB,EAAE,MAAM,mCAAmC,CAAC;AAEzE,oCAAoC;AACpC,OAAO,EAAE,YAAY,EAAE,MAAM,0BAA0B,CAAC;AACxD,OAAO,EACL,cAAc,EACd,sBAAsB,EACtB,4BAA4B,EAC5B,kBAAkB,GAEnB,MAAM,qBAAqB,CAAC;AAE7B,6BAA6B;AAC7B,OAAO,EACL,wBAAwB,GAMzB,MAAM,mBAAmB,CAAC;AAE3B,6DAA6D;AAC7D,OAAO,EAAE,iBAAiB,EAAwB,MAAM,WAAW,CAAC;AAEpE,kCAAkC;AAClC,OAAO,EACL,qBAAqB,GAEtB,MAAM,kCAAkC,CAAC;AAE1C,OAAO,EAAE,kBAAkB,EAAE,MAAM,+BAA+B,CAAC;AAGnE,oCAAoC;AACpC,OAAO,EACL,0BAA0B,EAC1B,sBAAsB,GAOvB,MAAM,yBAAyB,CAAC;AASjC,8CAA8C;AAC9C,OAAO,EACL,oBAAoB,GAErB,MAAM,UAAU,CAAC;AAClB,OAAO,EAAE,YAAY,EAAE,MAAM,0BAA0B,CAAC;AAExD,6CAA6C;AAC7C,OAAO,EAAE,mBAAmB,EAA8B,MAAM,SAAS,CAAC;AAC1E,OAAO,EAAE,aAAa,EAA6B,MAAM,OAAO,CAAC;AACjE,OAAO,EACL,cAAc,EACd,sBAAsB,EACtB,eAAe,GAChB,MAAM,sBAAsB,CAAC;AAE9B,sBAAsB;AACtB,cAAc,aAAa,CAAC;AAE5B,6BAA6B;AAC7B,OAAO,EAAE,YAAY,EAAE,MAAM,UAAU,CAAC;AAwBxC;;;;;GAKG;AACH,MAAM,UAAU,uBAAuB,CACrC,MAA4B;IAE5B,MAAM,cAAc,GAAG,IAAI,iBAAiB,EAAE,CAAC;IAC/C,MAAM,aAAa,GAAG,IAAI,oBAAoB,EAAE,CAAC;IACjD,MAAM,aAAa,GAAG,IAAI,oBAAoB,EAAE,CAAC;IACjD,MAAM,eAAe,GAAG,IAAI,iBAAiB,CAC3C,CAAC,MAAM,CAAC,GAAG,CAAC,gBAAgB,IAAI,MAAM,CAAC,GAAG,CAAC,WAAW,CAAQ,CAC/D,CAAC;IACF,MAAM,kBAAkB,GAAG,IAAI,oBAAoB,CACjD,MAAM,CAAC,GAAG,CAAC,WAAkB,CAC9B,CAAC;IAEF,uDAAuD;IACvD,MAAM,oBAAoB,GAAG,IAAI,uBAAuB,CACtD,MAAM,CAAC,GAAG,EACV,cAAc,EACd,MAAM,CAAC,GAAG,CAAC,mBAA0B,CAAC,yCAAyC;KAChF,CAAC;IAEF,uEAAuE;IACvE,uEAAuE;IACvE,MAAM,gBAAgB,GAAG,MAAM,CAAC,GAAG,CAAC,gBAAgB;QAClD,CAAC,CAAC,IAAI,kBAAkB,CACpB,MAAM,CAAC,GAAG,CAAC,gBAAuB,EAClC,oBAAoB,EACpB,cAAc,CACf;QACH,CAAC,CAAC,oBAAoB,CAAC;IAEzB,4BAA4B;IAC5B,MAAM,aAAa,GAAG,IAAI,aAAa,CAAC;QACtC,cAAc;QACd,aAAa;QACb,kBAAkB;QAClB,aAAa;QACb,oBAAoB,EAAE,MAAM,CAAC,oBAAoB,IAAI,GAAG;KACzD,CAAC,CAAC;IAEH,8DAA8D;IAC9D,IAAI,oBAAyD,CAAC;IAC9D,IAAI,MAAM,CAAC,GAAG,CAAC,mBAAmB,EAAE,CAAC;QACnC,oBAAoB,GAAG,IAAI,uBAAuB,CAAC;YACjD,OAAO,EAAE,MAAM,CAAC,GAAG,CAAC,mBAAmB,IAAI,wBAAwB;YACnE,MAAM,EAAE,MAAM,CAAC,GAAG,CAAC,mBAAmB;YACtC,aAAa,EAAE,aAAa;YAC5B,MAAM,EAAE,CAAC,GAAG,EAAE,IAAI,EAAE,EAAE;gBACpB,gEAAgE;gBAChE,MAAM,OAAO,GACX,GAAG,CAAC,WAAW,EAAE,CAAC,QAAQ,CAAC,OAAO,CAAC;oBACnC,GAAG,CAAC,WAAW,EAAE,CAAC,QAAQ,CAAC,QAAQ,CAAC;oBACpC,GAAG,CAAC,WAAW,EAAE,CAAC,QAAQ,CAAC,YAAY,CAAC,CAAC;gBAE3C,IAAI,OAAO,IAAI,MAAM,CAAC,WAAW,KAAK,aAAa,EAAE,CAAC;oBACpD,OAAO,CAAC,KAAK,CAAC,mBAAmB,GAAG,EAAE,EAAE,IAAI,CAAC,CAAC;gBAChD,CAAC;YACH,CAAC;SACF,CAAC,CAAC;IACL,CAAC;IAED,MAAM,aAAa,GAA0B;QAC3C,cAAc;QACd,aAAa;QACb,aAAa;QACb,eAAe;QACf,kBAAkB;QAClB,gBAAgB;QAChB,WAAW,EAAE,MAAM,CAAC,WAAW,IAAI,YAAY;QAC/C,OAAO,EAAE;YACP,oBAAoB,EAAE,MAAM,CAAC,oBAAoB,IAAI,GAAG;YACxD,UAAU,EAAE,MAAM,CAAC,iBAAiB,IAAI,EAAE;SAC3C;QACD,KAAK,EAAE,MAAM,CAAC,KAAK;QACnB,qBAAqB,EAAE,MAAM,CAAC,qBAAqB;KACpD,CAAC;IAEF,0DAA0D;IAC1D,MAAM,SAAS,GAAG,MAAM,CAAC,GAAG,CAAC,cAAc,CAAC;IAE5C,uEAAuE;IACvE,MAAM,gBAAgB,GAAG,MAAM,CAAC,aAAa,CAAC;IAE9C,MAAM,OAAO,GAAG,IAAI,iBAAiB,CACnC,aAAa,EACb,SAAS,EACT,gBAAgB,CACjB,CAAC;IAEF,+BAA+B;IAC/B,IAAI,oBAAoB,EAAE,CAAC;QACzB,OAAO,CAAC,uBAAuB,CAAC,oBAAoB,CAAC,CAAC;IACxD,CAAC;IACD,OAAO,CAAC,gBAAgB,CAAC,aAAa,CAAC,CAAC;IAExC,OAAO,OAAO,CAAC;AACjB,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,iBAAiB,CAAC,MAA4B;IAC5D,MAAM,OAAO,GAAG,uBAAuB,CAAC,MAAM,CAAC,CAAC;IAEhD,OAAO;QACL,KAAK,CAAC,KAAK,CAAC,OAAgB;YAC1B,sCAAsC;YACtC,IAAI,CAAC,OAAO,CAAC,WAAW,EAAE,CAAC;gBACzB,MAAM,OAAO,CAAC,UAAU,EAAE,CAAC;YAC7B,CAAC;YAED,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC;YAEjC,8BAA8B;YAC9B,IAAI,GAAG,CAAC,QAAQ,CAAC,UAAU,CAAC,eAAe,CAAC,EAAE,CAAC;gBAC7C,MAAM,OAAO,GAAG,OAAO,CAAC,sBAAsB,EAAE,CAAC;gBACjD,MAAM,MAAM,GAAG,MAAM,OAAO,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;gBAE3C,IAAI,MAAM,EAAE,CAAC;oBACX,gEAAgE;oBAChE,IAAI,QAAQ,IAAI,MAAM,IAAI,SAAS,IAAI,MAAM,IAAI,MAAM,IAAI,MAAM,EAAE,CAAC;wBAClE,OAAO,IAAI,QAAQ,CAAC,MAAM,CAAC,IAAI,EAAE;4BAC/B,MAAM,EAAE,MAAM,CAAC,MAAM;4BACrB,OAAO,EAAE;gCACP,GAAG,MAAM,CAAC,OAAO;gCACjB,GAAG,uBAAuB;6BAC3B;yBACF,CAAC,CAAC;oBACL,CAAC;oBACD,uDAAuD;oBACvD,OAAO,IAAI,QAAQ,CAAC,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC,EAAE;wBAC1C,MAAM,EAAE,GAAG;wBACX,OAAO,EAAE;4BACP,cAAc,EAAE,kBAAkB;4BAClC,GAAG,uBAAuB;yBAC3B;qBACF,CAAC,CAAC;gBACL,CAAC;YACH,CAAC;YAED,sBAAsB;YACtB,IAAI,OAAO,CAAC,MAAM,KAAK,MAAM,EAAE,CAAC;gBAC9B,IAAI,CAAC;oBACH,MAAM,IAAI,GAAG,CAAC,MAAM,OAAO,CAAC,IAAI,EAAE,CAAQ,CAAC;oBAE3C,mBAAmB;oBACnB,IAAI,IAAI,CAAC,MAAM,KAAK,WAAW,EAAE,CAAC;wBAChC,MAAM,MAAM,GAAG,MAAM,OAAO,CAAC,eAAe,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;wBAC1D,OAAO,IAAI,QAAQ,CAAC,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC,EAAE;4BAC1C,OAAO,EAAE,EAAE,cAAc,EAAE,kBAAkB,EAAE;yBAChD,CAAC,CAAC;oBACL,CAAC;oBAED,oBAAoB;oBACpB,IAAI,IAAI,CAAC,MAAM,KAAK,YAAY,EAAE,CAAC;wBACjC,2CAA2C;wBAC3C,OAAO,IAAI,QAAQ,CACjB,IAAI,CAAC,SAAS,CAAC;4BACb,MAAM,EAAE,mBAAmB;yBAC5B,CAAC,EACF;4BACE,OAAO,EAAE,EAAE,cAAc,EAAE,kBAAkB,EAAE;yBAChD,CACF,CAAC;oBACJ,CAAC;oBAED,OAAO,IAAI,QAAQ,CACjB,IAAI,CAAC,SAAS,CAAC;wBACb,KAAK,EAAE,gBAAgB;qBACxB,CAAC,EACF;wBACE,MAAM,EAAE,GAAG;wBACX,OAAO,EAAE,EAAE,cAAc,EAAE,kBAAkB,EAAE;qBAChD,CACF,CAAC;gBACJ,CAAC;gBAAC,OAAO,KAAU,EAAE,CAAC;oBACpB,OAAO,IAAI,QAAQ,CACjB,IAAI,CAAC,SAAS,CAAC;wBACb,KAAK,EAAE,KAAK,CAAC,OAAO,IAAI,gBAAgB;qBACzC,CAAC,EACF;wBACE,MAAM,EAAE,GAAG;wBACX,OAAO,EAAE,EAAE,cAAc,EAAE,kBAAkB,EAAE;qBAChD,CACF,CAAC;gBACJ,CAAC;YACH,CAAC;YAED,OAAO,IAAI,QAAQ,CAAC,oBAAoB,EAAE,EAAE,MAAM,EAAE,GAAG,EAAE,CAAC,CAAC;QAC7D,CAAC;KACF,CAAC;AACJ,CAAC;AAED,mDAAmD;AACnD,OAAO,EACL,2BAA2B,GAG5B,MAAM,WAAW,CAAC;AAEnB,2CAA2C;AAC3C,cAAc,UAAU,CAAC"}
|
|
@@ -4,6 +4,7 @@
|
|
|
4
4
|
* Implements StorageProvider and NonceCacheProvider using Cloudflare KV.
|
|
5
5
|
*/
|
|
6
6
|
import { StorageProvider, NonceCacheProvider, ClockProvider, FetchProvider, IdentityProvider, AgentIdentity } from '@kya-os/mcp-i-core';
|
|
7
|
+
export { WebCryptoProvider } from './crypto.js';
|
|
7
8
|
/**
|
|
8
9
|
* Minimal KV interface for compatibility across @cloudflare/workers-types versions
|
|
9
10
|
* Only includes the methods we actually use
|
|
@@ -101,5 +102,4 @@ export declare class WorkersIdentityProvider extends IdentityProvider {
|
|
|
101
102
|
*/
|
|
102
103
|
private base64ToBytes;
|
|
103
104
|
}
|
|
104
|
-
export {};
|
|
105
105
|
//# sourceMappingURL=storage.d.ts.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"storage.d.ts","sourceRoot":"","sources":["../../src/providers/storage.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,EAAE,eAAe,EAAE,kBAAkB,EAAE,aAAa,EAAE,aAAa,EAAE,gBAAgB,EAAE,aAAa,EAAE,MAAM,oBAAoB,CAAC;
|
|
1
|
+
{"version":3,"file":"storage.d.ts","sourceRoot":"","sources":["../../src/providers/storage.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,EAAE,eAAe,EAAE,kBAAkB,EAAE,aAAa,EAAE,aAAa,EAAE,gBAAgB,EAAE,aAAa,EAAE,MAAM,oBAAoB,CAAC;AAGxI,OAAO,EAAE,iBAAiB,EAAE,MAAM,aAAa,CAAC;AAMhD;;;GAGG;AACH,UAAU,eAAe;IACvB,GAAG,CAAC,GAAG,EAAE,MAAM,EAAE,OAAO,CAAC,EAAE;QAAE,IAAI,CAAC,EAAE,MAAM,GAAG,MAAM,GAAG,aAAa,GAAG,QAAQ,CAAA;KAAE,GAAG,OAAO,CAAC,MAAM,GAAG,IAAI,CAAC,CAAC;IAC1G,GAAG,CAAC,GAAG,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,OAAO,CAAC,EAAE;QAAE,aAAa,CAAC,EAAE,MAAM,CAAA;KAAE,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;IACrF,MAAM,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;IACnC,IAAI,CAAC,OAAO,CAAC,EAAE;QAAE,MAAM,CAAC,EAAE,MAAM,CAAA;KAAE,GAAG,OAAO,CAAC;QAAE,IAAI,EAAE,KAAK,CAAC;YAAE,IAAI,EAAE,MAAM,CAAA;SAAE,CAAC,CAAA;KAAE,CAAC,CAAC;CACjF;AAED;;GAEG;AACH,qBAAa,iBAAkB,SAAQ,eAAe;IACxC,OAAO,CAAC,EAAE;gBAAF,EAAE,EAAE,eAAe;IAIjC,GAAG,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,GAAG,IAAI,CAAC;IAIxC,GAAG,CAAC,GAAG,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAI9C,MAAM,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAIlC,MAAM,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC;IAKrC,IAAI,CAAC,MAAM,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,EAAE,CAAC;CAI/C;AAED;;GAEG;AACH,qBAAa,oBAAqB,SAAQ,kBAAkB;IAC9C,OAAO,CAAC,EAAE;gBAAF,EAAE,EAAE,eAAe;IAIjC,GAAG,CAAC,KAAK,EAAE,MAAM,EAAE,QAAQ,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC;IAMvD,GAAG,CAAC,KAAK,EAAE,MAAM,EAAE,UAAU,EAAE,MAAM,EAAE,QAAQ,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAQxE,OAAO,IAAI,OAAO,CAAC,IAAI,CAAC;IAIxB,OAAO,IAAI,OAAO,CAAC,IAAI,CAAC;CAG/B;AAED;;GAEG;AACH,qBAAa,oBAAqB,SAAQ,aAAa;IACrD,GAAG,IAAI,MAAM;IAIb,YAAY,CAAC,SAAS,EAAE,MAAM,EAAE,WAAW,EAAE,MAAM,GAAG,OAAO;IAO7D,UAAU,CAAC,SAAS,EAAE,MAAM,GAAG,OAAO;IAItC,eAAe,CAAC,UAAU,EAAE,MAAM,GAAG,MAAM;IAI3C,MAAM,CAAC,SAAS,EAAE,MAAM,GAAG,MAAM;CAGlC;AAED;;GAEG;AACH,qBAAa,oBAAqB,SAAQ,aAAa;IAC/C,UAAU,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC,GAAG,CAAC;IAiCrC,eAAe,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC,GAAG,CAAC;IAU1C,oBAAoB,CAAC,EAAE,EAAE,MAAM,GAAG,OAAO,CAAC,GAAG,EAAE,CAAC;IAKhD,KAAK,CAAC,GAAG,EAAE,MAAM,EAAE,OAAO,CAAC,EAAE,WAAW,GAAG,OAAO,CAAC,QAAQ,CAAC;CAGnE;AAED;;;;;;;GAOG;AACH,qBAAa,uBAAwB,SAAQ,gBAAgB;IAEzD,OAAO,CAAC,GAAG;IACX,OAAO,CAAC,cAAc,CAAC;IACvB,OAAO,CAAC,KAAK,CAAC;gBAFN,GAAG,EAAE,GAAG,EACR,cAAc,CAAC,EAAE,GAAG,YAAA,EACpB,KAAK,CAAC,EAAE,kBAAkB,YAAA;IAK9B,WAAW,IAAI,OAAO,CAAC,aAAa,CAAC;IA2DrC,YAAY,CAAC,QAAQ,EAAE,aAAa,GAAG,OAAO,CAAC,IAAI,CAAC;IAUpD,UAAU,IAAI,OAAO,CAAC,aAAa,CAAC;IAkBpC,cAAc,IAAI,OAAO,CAAC,IAAI,CAAC;IAIrC;;;;;;;OAOG;IACH,OAAO,CAAC,wBAAwB;IAiBhC;;OAEG;IACH,OAAO,CAAC,YAAY;IAIpB;;OAEG;IACH,OAAO,CAAC,aAAa;CAQtB"}
|
|
@@ -4,6 +4,8 @@
|
|
|
4
4
|
* Implements StorageProvider and NonceCacheProvider using Cloudflare KV.
|
|
5
5
|
*/
|
|
6
6
|
import { StorageProvider, NonceCacheProvider, ClockProvider, FetchProvider, IdentityProvider } from '@kya-os/mcp-i-core';
|
|
7
|
+
// Re-export WebCryptoProvider for convenience
|
|
8
|
+
export { WebCryptoProvider } from './crypto.js';
|
|
7
9
|
import baseX from 'base-x';
|
|
8
10
|
// Bitcoin base58 alphabet
|
|
9
11
|
const base58 = baseX('123456789ABCDEFGHJKLMNPQRSTUVWXYZabcdefghijkmnopqrstuvwxyz');
|
|
@@ -165,7 +167,7 @@ export class WorkersIdentityProvider extends IdentityProvider {
|
|
|
165
167
|
// Update DO state to match current env vars (overwrite any stale cached identity)
|
|
166
168
|
if (this.state) {
|
|
167
169
|
await this.state.storage.put('agent-identity', identity);
|
|
168
|
-
console.
|
|
170
|
+
console.error('[Identity] Loaded from env vars, updated DO state:', identity.did.slice(0, 30) + '...');
|
|
169
171
|
}
|
|
170
172
|
return identity;
|
|
171
173
|
}
|
|
@@ -173,7 +175,7 @@ export class WorkersIdentityProvider extends IdentityProvider {
|
|
|
173
175
|
if (this.state) {
|
|
174
176
|
const stored = await this.state.storage.get('agent-identity');
|
|
175
177
|
if (stored) {
|
|
176
|
-
console.
|
|
178
|
+
console.error('[Identity] Loaded from Durable Object state (no env vars):', stored.did.slice(0, 30) + '...');
|
|
177
179
|
return stored;
|
|
178
180
|
}
|
|
179
181
|
}
|
|
@@ -194,7 +196,7 @@ export class WorkersIdentityProvider extends IdentityProvider {
|
|
|
194
196
|
// Save to DO state for persistence
|
|
195
197
|
if (this.state) {
|
|
196
198
|
await this.state.storage.put('agent-identity', identity);
|
|
197
|
-
console.
|
|
199
|
+
console.error('[Identity] Generated new identity, saved to DO state:', identity.did.slice(0, 30) + '...');
|
|
198
200
|
}
|
|
199
201
|
else {
|
|
200
202
|
console.warn('[Identity] Generated ephemeral identity (no DO state available):', identity.did.slice(0, 30) + '...');
|
|
@@ -205,7 +207,7 @@ export class WorkersIdentityProvider extends IdentityProvider {
|
|
|
205
207
|
// Save to Durable Object state
|
|
206
208
|
if (this.state) {
|
|
207
209
|
await this.state.storage.put('agent-identity', identity);
|
|
208
|
-
console.
|
|
210
|
+
console.error('[Identity] Saved to Durable Object state:', identity.did.slice(0, 30) + '...');
|
|
209
211
|
}
|
|
210
212
|
else {
|
|
211
213
|
console.warn('[Identity] Cannot save - no Durable Object state available. Use wrangler secrets for production.');
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"storage.js","sourceRoot":"","sources":["../../src/providers/storage.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,EAAE,eAAe,EAAE,kBAAkB,EAAE,aAAa,EAAE,aAAa,EAAE,gBAAgB,EAAiB,MAAM,oBAAoB,CAAC;
|
|
1
|
+
{"version":3,"file":"storage.js","sourceRoot":"","sources":["../../src/providers/storage.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,EAAE,eAAe,EAAE,kBAAkB,EAAE,aAAa,EAAE,aAAa,EAAE,gBAAgB,EAAiB,MAAM,oBAAoB,CAAC;AAExI,8CAA8C;AAC9C,OAAO,EAAE,iBAAiB,EAAE,MAAM,aAAa,CAAC;AAChD,OAAO,KAAK,MAAM,QAAQ,CAAC;AAE3B,0BAA0B;AAC1B,MAAM,MAAM,GAAG,KAAK,CAAC,4DAA4D,CAAC,CAAC;AAanF;;GAEG;AACH,MAAM,OAAO,iBAAkB,SAAQ,eAAe;IAChC;IAApB,YAAoB,EAAmB;QACrC,KAAK,EAAE,CAAC;QADU,OAAE,GAAF,EAAE,CAAiB;IAEvC,CAAC;IAED,KAAK,CAAC,GAAG,CAAC,GAAW;QACnB,OAAO,MAAM,IAAI,CAAC,EAAE,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;IAChC,CAAC;IAED,KAAK,CAAC,GAAG,CAAC,GAAW,EAAE,KAAa;QAClC,MAAM,IAAI,CAAC,EAAE,CAAC,GAAG,CAAC,GAAG,EAAE,KAAK,CAAC,CAAC;IAChC,CAAC;IAED,KAAK,CAAC,MAAM,CAAC,GAAW;QACtB,MAAM,IAAI,CAAC,EAAE,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;IAC5B,CAAC;IAED,KAAK,CAAC,MAAM,CAAC,GAAW;QACtB,MAAM,KAAK,GAAG,MAAM,IAAI,CAAC,EAAE,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;QACrC,OAAO,KAAK,KAAK,IAAI,CAAC;IACxB,CAAC;IAED,KAAK,CAAC,IAAI,CAAC,MAAe;QACxB,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,EAAE,CAAC,IAAI,CAAC,EAAE,MAAM,EAAE,CAAC,CAAC;QAC9C,OAAO,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC;IACtC,CAAC;CACF;AAED;;GAEG;AACH,MAAM,OAAO,oBAAqB,SAAQ,kBAAkB;IACtC;IAApB,YAAoB,EAAmB;QACrC,KAAK,EAAE,CAAC;QADU,OAAE,GAAF,EAAE,CAAiB;IAEvC,CAAC;IAED,KAAK,CAAC,GAAG,CAAC,KAAa,EAAE,QAAiB;QACxC,MAAM,GAAG,GAAG,QAAQ,CAAC,CAAC,CAAC,SAAS,QAAQ,IAAI,KAAK,EAAE,CAAC,CAAC,CAAC,SAAS,KAAK,EAAE,CAAC;QACvE,MAAM,KAAK,GAAG,MAAM,IAAI,CAAC,EAAE,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;QACrC,OAAO,KAAK,KAAK,IAAI,CAAC;IACxB,CAAC;IAED,KAAK,CAAC,GAAG,CAAC,KAAa,EAAE,UAAkB,EAAE,QAAiB;QAC5D,MAAM,GAAG,GAAG,QAAQ,CAAC,CAAC,CAAC,SAAS,QAAQ,IAAI,KAAK,EAAE,CAAC,CAAC,CAAC,SAAS,KAAK,EAAE,CAAC;QACvE,6EAA6E;QAC7E,MAAM,IAAI,CAAC,EAAE,CAAC,GAAG,CAAC,GAAG,EAAE,GAAG,EAAE;YAC1B,aAAa,EAAE,UAAU;SAC1B,CAAC,CAAC;IACL,CAAC;IAED,KAAK,CAAC,OAAO;QACX,sCAAsC;IACxC,CAAC;IAED,KAAK,CAAC,OAAO;QACX,oBAAoB;IACtB,CAAC;CACF;AAED;;GAEG;AACH,MAAM,OAAO,oBAAqB,SAAQ,aAAa;IACrD,GAAG;QACD,OAAO,IAAI,CAAC,GAAG,EAAE,CAAC;IACpB,CAAC;IAED,YAAY,CAAC,SAAiB,EAAE,WAAmB;QACjD,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QACvB,MAAM,MAAM,GAAG,WAAW,GAAG,IAAI,CAAC;QAClC,MAAM,IAAI,GAAG,IAAI,CAAC,GAAG,CAAC,GAAG,GAAG,SAAS,CAAC,CAAC;QACvC,OAAO,IAAI,IAAI,MAAM,CAAC;IACxB,CAAC;IAED,UAAU,CAAC,SAAiB;QAC1B,OAAO,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,CAAC;IAChC,CAAC;IAED,eAAe,CAAC,UAAkB;QAChC,OAAO,IAAI,CAAC,GAAG,EAAE,GAAG,CAAC,UAAU,GAAG,IAAI,CAAC,CAAC;IAC1C,CAAC;IAED,MAAM,CAAC,SAAiB;QACtB,OAAO,IAAI,IAAI,CAAC,SAAS,CAAC,CAAC,WAAW,EAAE,CAAC;IAC3C,CAAC;CACF;AAED;;GAEG;AACH,MAAM,OAAO,oBAAqB,SAAQ,aAAa;IACrD,KAAK,CAAC,UAAU,CAAC,GAAW;QAC1B,IAAI,GAAG,CAAC,UAAU,CAAC,UAAU,CAAC,EAAE,CAAC;YAC/B,iCAAiC;YACjC,MAAM,kBAAkB,GAAG,GAAG,CAAC,KAAK,CAAC,UAAU,CAAC,MAAM,CAAC,CAAC;YACxD,OAAO;gBACL,UAAU,EAAE,CAAC,8BAA8B,CAAC;gBAC5C,EAAE,EAAE,GAAG;gBACP,kBAAkB,EAAE,CAAC;wBACnB,EAAE,EAAE,GAAG,GAAG,QAAQ;wBAClB,IAAI,EAAE,4BAA4B;wBAClC,UAAU,EAAE,GAAG;wBACf,kBAAkB;qBACnB,CAAC;gBACF,cAAc,EAAE,CAAC,GAAG,GAAG,QAAQ,CAAC;gBAChC,eAAe,EAAE,CAAC,GAAG,GAAG,QAAQ,CAAC;aAClC,CAAC;QACJ,CAAC;QAED,IAAI,GAAG,CAAC,UAAU,CAAC,UAAU,CAAC,EAAE,CAAC;YAC/B,MAAM,MAAM,GAAG,GAAG,CAAC,KAAK,CAAC,UAAU,CAAC,MAAM,CAAC,CAAC,OAAO,CAAC,IAAI,EAAE,GAAG,CAAC,CAAC;YAC/D,MAAM,GAAG,GAAG,WAAW,MAAM,uBAAuB,CAAC;YACrD,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,CAAC,CAAC;YAElC,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;gBACjB,MAAM,IAAI,KAAK,CAAC,qBAAqB,GAAG,KAAK,QAAQ,CAAC,UAAU,EAAE,CAAC,CAAC;YACtE,CAAC;YAED,OAAO,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;QAC/B,CAAC;QAED,MAAM,IAAI,KAAK,CAAC,2BAA2B,GAAG,EAAE,CAAC,CAAC;IACpD,CAAC;IAED,KAAK,CAAC,eAAe,CAAC,GAAW;QAC/B,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,CAAC,CAAC;QAElC,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;YACjB,MAAM,IAAI,KAAK,CAAC,gCAAgC,QAAQ,CAAC,UAAU,EAAE,CAAC,CAAC;QACzE,CAAC;QAED,OAAO,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;IAC/B,CAAC;IAED,KAAK,CAAC,oBAAoB,CAAC,EAAU;QACnC,yCAAyC;QACzC,OAAO,EAAE,CAAC;IACZ,CAAC;IAED,KAAK,CAAC,KAAK,CAAC,GAAW,EAAE,OAAqB;QAC5C,OAAO,MAAM,KAAK,CAAC,GAAG,EAAE,OAAO,CAAC,CAAC;IACnC,CAAC;CACF;AAED;;;;;;;GAOG;AACH,MAAM,OAAO,uBAAwB,SAAQ,gBAAgB;IAEjD;IACA;IACA;IAHV,YACU,GAAQ,EACR,cAAoB,EACpB,KAA0B;QAElC,KAAK,EAAE,CAAC;QAJA,QAAG,GAAH,GAAG,CAAK;QACR,mBAAc,GAAd,cAAc,CAAM;QACpB,UAAK,GAAL,KAAK,CAAqB;IAGpC,CAAC;IAED,KAAK,CAAC,WAAW;QACf,iEAAiE;QACjE,4FAA4F;QAC5F,IAAI,IAAI,CAAC,GAAG,CAAC,wBAAwB,IAAI,IAAI,CAAC,GAAG,CAAC,uBAAuB,IAAI,IAAI,CAAC,GAAG,CAAC,sBAAsB,EAAE,CAAC;YAC7G,MAAM,QAAQ,GAAG;gBACf,GAAG,EAAE,IAAI,CAAC,GAAG,CAAC,sBAAsB;gBACpC,GAAG,EAAE,GAAG,IAAI,CAAC,GAAG,CAAC,sBAAsB,QAAQ;gBAC/C,UAAU,EAAE,IAAI,CAAC,GAAG,CAAC,wBAAwB;gBAC7C,SAAS,EAAE,IAAI,CAAC,GAAG,CAAC,uBAAuB;gBAC3C,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;gBACnC,IAAI,EAAE,YAAqB;aAC5B,CAAC;YAEF,kFAAkF;YAClF,IAAI,IAAI,CAAC,KAAK,EAAE,CAAC;gBACf,MAAM,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,GAAG,CAAC,gBAAgB,EAAE,QAAQ,CAAC,CAAC;gBACzD,OAAO,CAAC,KAAK,CAAC,oDAAoD,EAAE,QAAQ,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,GAAG,KAAK,CAAC,CAAC;YACzG,CAAC;YAED,OAAO,QAAQ,CAAC;QAClB,CAAC;QAED,6EAA6E;QAC7E,IAAI,IAAI,CAAC,KAAK,EAAE,CAAC;YACf,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,GAAG,CAAgB,gBAAgB,CAAC,CAAC;YAC7E,IAAI,MAAM,EAAE,CAAC;gBACX,OAAO,CAAC,KAAK,CAAC,4DAA4D,EAAE,MAAM,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,GAAG,KAAK,CAAC,CAAC;gBAC7G,OAAO,MAAM,CAAC;YAChB,CAAC;QACH,CAAC;QAED,wCAAwC;QACxC,IAAI,CAAC,IAAI,CAAC,cAAc,EAAE,CAAC;YACzB,MAAM,IAAI,KAAK,CAAC,oEAAoE,CAAC,CAAC;QACxF,CAAC;QAED,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,cAAc,CAAC,eAAe,EAAE,CAAC;QAC5D,MAAM,GAAG,GAAG,IAAI,CAAC,wBAAwB,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC;QAE7D,MAAM,QAAQ,GAAG;YACf,GAAG;YACH,GAAG,EAAE,GAAG,GAAG,QAAQ;YACnB,UAAU,EAAE,OAAO,CAAC,UAAU;YAC9B,SAAS,EAAE,OAAO,CAAC,SAAS;YAC5B,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;YACnC,IAAI,EAAE,aAAsB;SAC7B,CAAC;QAEF,mCAAmC;QACnC,IAAI,IAAI,CAAC,KAAK,EAAE,CAAC;YACf,MAAM,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,GAAG,CAAC,gBAAgB,EAAE,QAAQ,CAAC,CAAC;YACzD,OAAO,CAAC,KAAK,CAAC,uDAAuD,EAAE,QAAQ,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,GAAG,KAAK,CAAC,CAAC;QAC5G,CAAC;aAAM,CAAC;YACN,OAAO,CAAC,IAAI,CAAC,kEAAkE,EAAE,QAAQ,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,GAAG,KAAK,CAAC,CAAC;QACtH,CAAC;QAED,OAAO,QAAQ,CAAC;IAClB,CAAC;IAED,KAAK,CAAC,YAAY,CAAC,QAAuB;QACxC,+BAA+B;QAC/B,IAAI,IAAI,CAAC,KAAK,EAAE,CAAC;YACf,MAAM,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,GAAG,CAAC,gBAAgB,EAAE,QAAQ,CAAC,CAAC;YACzD,OAAO,CAAC,KAAK,CAAC,2CAA2C,EAAE,QAAQ,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,GAAG,KAAK,CAAC,CAAC;QAChG,CAAC;aAAM,CAAC;YACN,OAAO,CAAC,IAAI,CAAC,kGAAkG,CAAC,CAAC;QACnH,CAAC;IACH,CAAC;IAED,KAAK,CAAC,UAAU;QACd,IAAI,CAAC,IAAI,CAAC,cAAc,EAAE,CAAC;YACzB,MAAM,IAAI,KAAK,CAAC,2CAA2C,CAAC,CAAC;QAC/D,CAAC;QAED,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,cAAc,CAAC,eAAe,EAAE,CAAC;QAC5D,MAAM,GAAG,GAAG,IAAI,CAAC,wBAAwB,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC;QAE7D,OAAO;YACL,GAAG;YACH,GAAG,EAAE,GAAG,GAAG,QAAQ;YACnB,UAAU,EAAE,OAAO,CAAC,UAAU;YAC9B,SAAS,EAAE,OAAO,CAAC,SAAS;YAC5B,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;YACnC,IAAI,EAAE,YAAY;SACnB,CAAC;IACJ,CAAC;IAED,KAAK,CAAC,cAAc;QAClB,OAAO,CAAC,IAAI,CAAC,oDAAoD,CAAC,CAAC;IACrE,CAAC;IAED;;;;;;;OAOG;IACK,wBAAwB,CAAC,SAAiB;QAChD,MAAM,cAAc,GAAG,IAAI,CAAC,aAAa,CAAC,SAAS,CAAC,CAAC;QAErD,qCAAqC;QACrC,MAAM,gBAAgB,GAAG,IAAI,UAAU,CAAC,CAAC,IAAI,EAAE,IAAI,CAAC,CAAC,CAAC;QAEtD,8BAA8B;QAC9B,MAAM,aAAa,GAAG,IAAI,UAAU,CAAC,gBAAgB,CAAC,MAAM,GAAG,cAAc,CAAC,MAAM,CAAC,CAAC;QACtF,aAAa,CAAC,GAAG,CAAC,gBAAgB,CAAC,CAAC;QACpC,aAAa,CAAC,GAAG,CAAC,cAAc,EAAE,gBAAgB,CAAC,MAAM,CAAC,CAAC;QAE3D,2CAA2C;QAC3C,MAAM,gBAAgB,GAAG,GAAG,GAAG,IAAI,CAAC,YAAY,CAAC,aAAa,CAAC,CAAC;QAEhE,OAAO,WAAW,gBAAgB,EAAE,CAAC;IACvC,CAAC;IAED;;OAEG;IACK,YAAY,CAAC,KAAiB;QACpC,OAAO,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;IAC9B,CAAC;IAED;;OAEG;IACK,aAAa,CAAC,MAAc;QAClC,MAAM,YAAY,GAAG,IAAI,CAAC,MAAM,CAAC,CAAC;QAClC,MAAM,KAAK,GAAG,IAAI,UAAU,CAAC,YAAY,CAAC,MAAM,CAAC,CAAC;QAClD,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,YAAY,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;YAC7C,KAAK,CAAC,CAAC,CAAC,GAAG,YAAY,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC;QACxC,CAAC;QACD,OAAO,KAAK,CAAC;IACf,CAAC;CACF"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"oauth-handler.d.ts","sourceRoot":"","sources":["../../src/runtime/oauth-handler.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAIH,MAAM,WAAW,WAAW;IAC1B,GAAG,EAAE,GAAG,CAAC;IACT,GAAG,EAAE;QACH,KAAK,EAAE,CAAC,GAAG,EAAE,MAAM,KAAK,MAAM,GAAG,SAAS,CAAC;QAC3C,MAAM,EAAE,CAAC,IAAI,EAAE,MAAM,KAAK,MAAM,GAAG,SAAS,CAAC;KAC9C,CAAC;IACF,IAAI,EAAE,CAAC,IAAI,EAAE,MAAM,EAAE,MAAM,CAAC,EAAE,MAAM,KAAK,QAAQ,CAAC;IAClD,IAAI,EAAE,CAAC,MAAM,EAAE,GAAG,EAAE,MAAM,CAAC,EAAE,MAAM,KAAK,QAAQ,CAAC;IACjD,MAAM,EAAE,CAAC,IAAI,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,KAAK,IAAI,CAAC;CAC/C;AAKD,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,6BAA6B,CAAC;AAElE,OAAO,KAAK,EAAE,oBAAoB,EAAE,MAAM,oCAAoC,CAAC;AAI/E,MAAM,WAAW,mBAAmB;IAClC;;OAEG;IACH,iBAAiB,CAAC,EAAE,MAAM,CAAC;IAE3B;;;OAGG;IACH,iBAAiB,CAAC,EAAE,MAAM,CAAC;IAE3B;;;OAGG;IACH,oBAAoB,CAAC,EAAE,MAAM,CAAC;IAE9B;;OAEG;IACH,iBAAiB,CAAC,EAAE,WAAW,CAAC;IAEhC;;OAEG;IACH,cAAc,CAAC,EAAE,cAAc,CAAC;IAEhC;;OAEG;IACH,oBAAoB,CAAC,EAAE,oBAAoB,CAAC;IAE5C;;OAEG;IACH,eAAe,CAAC,EAAE,CAAC,IAAI,EAAE,gBAAgB,KAAK,MAAM,CAAC;IAErD;;OAEG;IACH,aAAa,CAAC,EAAE,CAAC,KAAK,EAAE,cAAc,KAAK,MAAM,CAAC;IAElD;;OAEG;IACH,SAAS,CAAC,EAAE,OAAO,CAAC;IAEpB;;OAEG;IACH,cAAc,CAAC,EAAE,MAAM,CAAC;IAExB;;;;;;;;;;OAUG;IACH,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB;AAED,MAAM,WAAW,gBAAgB;IAC/B,YAAY,EAAE,MAAM,CAAC;IACrB,SAAS,EAAE,MAAM,CAAC;IAClB,MAAM,EAAE,MAAM,EAAE,CAAC;IACjB,SAAS,EAAE,MAAM,CAAC;CACnB;AAED,MAAM,WAAW,cAAc;IAC7B,KAAK,EAAE,MAAM,CAAC;IACd,WAAW,EAAE,MAAM,CAAC;CACrB;AAED,MAAM,WAAW,UAAU;IACzB,UAAU,EAAE,MAAM,CAAC;IACnB,SAAS,EAAE,MAAM,CAAC;IAClB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,aAAa,EAAE,MAAM,CAAC;CACvB;AAED,MAAM,WAAW,qBAAqB;IACpC,gBAAgB,EAAE,MAAM,CAAC;IACzB,UAAU,EAAE,MAAM,CAAC;IACnB,UAAU,EAAE,MAAM,CAAC;IACnB,aAAa,EAAE,MAAM,CAAC;IACtB,MAAM,EAAE,MAAM,EAAE,CAAC;IACjB,UAAU,CAAC,EAAE,MAAM,CAAC;CACrB;AA8KD;;;;;GAKG;AACH,wBAAgB,0BAA0B,CAAC,MAAM,GAAE,mBAAwB,IAC3D,GAAG,WAAW,
|
|
1
|
+
{"version":3,"file":"oauth-handler.d.ts","sourceRoot":"","sources":["../../src/runtime/oauth-handler.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAIH,MAAM,WAAW,WAAW;IAC1B,GAAG,EAAE,GAAG,CAAC;IACT,GAAG,EAAE;QACH,KAAK,EAAE,CAAC,GAAG,EAAE,MAAM,KAAK,MAAM,GAAG,SAAS,CAAC;QAC3C,MAAM,EAAE,CAAC,IAAI,EAAE,MAAM,KAAK,MAAM,GAAG,SAAS,CAAC;KAC9C,CAAC;IACF,IAAI,EAAE,CAAC,IAAI,EAAE,MAAM,EAAE,MAAM,CAAC,EAAE,MAAM,KAAK,QAAQ,CAAC;IAClD,IAAI,EAAE,CAAC,MAAM,EAAE,GAAG,EAAE,MAAM,CAAC,EAAE,MAAM,KAAK,QAAQ,CAAC;IACjD,MAAM,EAAE,CAAC,IAAI,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,KAAK,IAAI,CAAC;CAC/C;AAKD,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,6BAA6B,CAAC;AAElE,OAAO,KAAK,EAAE,oBAAoB,EAAE,MAAM,oCAAoC,CAAC;AAI/E,MAAM,WAAW,mBAAmB;IAClC;;OAEG;IACH,iBAAiB,CAAC,EAAE,MAAM,CAAC;IAE3B;;;OAGG;IACH,iBAAiB,CAAC,EAAE,MAAM,CAAC;IAE3B;;;OAGG;IACH,oBAAoB,CAAC,EAAE,MAAM,CAAC;IAE9B;;OAEG;IACH,iBAAiB,CAAC,EAAE,WAAW,CAAC;IAEhC;;OAEG;IACH,cAAc,CAAC,EAAE,cAAc,CAAC;IAEhC;;OAEG;IACH,oBAAoB,CAAC,EAAE,oBAAoB,CAAC;IAE5C;;OAEG;IACH,eAAe,CAAC,EAAE,CAAC,IAAI,EAAE,gBAAgB,KAAK,MAAM,CAAC;IAErD;;OAEG;IACH,aAAa,CAAC,EAAE,CAAC,KAAK,EAAE,cAAc,KAAK,MAAM,CAAC;IAElD;;OAEG;IACH,SAAS,CAAC,EAAE,OAAO,CAAC;IAEpB;;OAEG;IACH,cAAc,CAAC,EAAE,MAAM,CAAC;IAExB;;;;;;;;;;OAUG;IACH,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB;AAED,MAAM,WAAW,gBAAgB;IAC/B,YAAY,EAAE,MAAM,CAAC;IACrB,SAAS,EAAE,MAAM,CAAC;IAClB,MAAM,EAAE,MAAM,EAAE,CAAC;IACjB,SAAS,EAAE,MAAM,CAAC;CACnB;AAED,MAAM,WAAW,cAAc;IAC7B,KAAK,EAAE,MAAM,CAAC;IACd,WAAW,EAAE,MAAM,CAAC;CACrB;AAED,MAAM,WAAW,UAAU;IACzB,UAAU,EAAE,MAAM,CAAC;IACnB,SAAS,EAAE,MAAM,CAAC;IAClB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,aAAa,EAAE,MAAM,CAAC;CACvB;AAED,MAAM,WAAW,qBAAqB;IACpC,gBAAgB,EAAE,MAAM,CAAC;IACzB,UAAU,EAAE,MAAM,CAAC;IACnB,UAAU,EAAE,MAAM,CAAC;IACnB,aAAa,EAAE,MAAM,CAAC;IACtB,MAAM,EAAE,MAAM,EAAE,CAAC;IACjB,UAAU,CAAC,EAAE,MAAM,CAAC;CACrB;AA8KD;;;;;GAKG;AACH,wBAAgB,0BAA0B,CAAC,MAAM,GAAE,mBAAwB,IAC3D,GAAG,WAAW,uBAywC7B;AAED;;;;;;;;;;GAUG;AACH,wBAAgB,sBAAsB,CAAC,CAAC,EAAE,WAAW,GAAG,MAAM,GAAG,IAAI,CAoBpE"}
|
|
@@ -248,7 +248,7 @@ export function createOAuthCallbackHandler(config = {}) {
|
|
|
248
248
|
session_id: stateData.session_id,
|
|
249
249
|
delegation_id: stateData.delegation_id,
|
|
250
250
|
};
|
|
251
|
-
console.
|
|
251
|
+
console.error("[OAuth] 🔒 SECURITY EVENT: State validated successfully:", {
|
|
252
252
|
projectId: state.project_id,
|
|
253
253
|
agentDid: state.agent_did.substring(0, 20) + "...",
|
|
254
254
|
sessionId: state.session_id?.substring(0, 20) + "...",
|
|
@@ -311,7 +311,7 @@ export function createOAuthCallbackHandler(config = {}) {
|
|
|
311
311
|
const codeVerifier = stateData?.code_verifier;
|
|
312
312
|
const redirectUri = stateData?.redirect_uri;
|
|
313
313
|
const requestedScopes = stateData?.scopes || [];
|
|
314
|
-
console.
|
|
314
|
+
console.error("[OAuth] 🔒 SECURITY EVENT: Processing authorization code exchange:", {
|
|
315
315
|
projectId: project_id,
|
|
316
316
|
agentDid: agent_did.substring(0, 20) + "...",
|
|
317
317
|
sessionId: session_id?.substring(0, 20) + "...",
|
|
@@ -344,7 +344,7 @@ export function createOAuthCallbackHandler(config = {}) {
|
|
|
344
344
|
});
|
|
345
345
|
return c.html(html, 500);
|
|
346
346
|
}
|
|
347
|
-
console.
|
|
347
|
+
console.error("[OAuth] 🔐 Direct PKCE flow detected, exchanging with provider directly:", {
|
|
348
348
|
provider: stateProvider,
|
|
349
349
|
redirectUri,
|
|
350
350
|
projectId: project_id,
|
|
@@ -383,11 +383,11 @@ export function createOAuthCallbackHandler(config = {}) {
|
|
|
383
383
|
agentShieldApiUrl: env.AGENTSHIELD_API_URL || "https://kya.vouched.id",
|
|
384
384
|
agentShieldApiKey: apiKey,
|
|
385
385
|
projectId: project_id,
|
|
386
|
-
logger: (msg, data) => console.
|
|
386
|
+
logger: (msg, data) => console.error(`[OAuthService] ${msg}`, data),
|
|
387
387
|
});
|
|
388
388
|
// Step 1: Exchange authorization code with OAuth provider (GitHub) directly
|
|
389
389
|
const idpTokens = await oauthService.exchangeToken(stateProvider, code, codeVerifier, redirectUri);
|
|
390
|
-
console.
|
|
390
|
+
console.error("[OAuth] ✅ Direct PKCE token exchange successful:", {
|
|
391
391
|
provider: stateProvider,
|
|
392
392
|
hasAccessToken: !!idpTokens.access_token,
|
|
393
393
|
expiresAt: new Date(idpTokens.expires_at).toISOString(),
|
|
@@ -411,7 +411,7 @@ export function createOAuthCallbackHandler(config = {}) {
|
|
|
411
411
|
};
|
|
412
412
|
const userInfoUrl = providerConfig?.userInfoUrl || defaultUserInfoUrls[stateProvider];
|
|
413
413
|
if (userInfoUrl) {
|
|
414
|
-
console.
|
|
414
|
+
console.error("[OAuth] 🔍 Fetching user info:", {
|
|
415
415
|
provider: stateProvider,
|
|
416
416
|
userInfoUrl,
|
|
417
417
|
source: providerConfig?.userInfoUrl
|
|
@@ -431,7 +431,7 @@ export function createOAuthCallbackHandler(config = {}) {
|
|
|
431
431
|
});
|
|
432
432
|
if (userInfoResponse.ok) {
|
|
433
433
|
userInfo = await userInfoResponse.json();
|
|
434
|
-
console.
|
|
434
|
+
console.error("[OAuth] ✅ User info retrieved:", {
|
|
435
435
|
provider: stateProvider,
|
|
436
436
|
hasEmail: !!userInfo?.email,
|
|
437
437
|
hasName: !!userInfo?.name,
|
|
@@ -452,7 +452,7 @@ export function createOAuthCallbackHandler(config = {}) {
|
|
|
452
452
|
}
|
|
453
453
|
}
|
|
454
454
|
else {
|
|
455
|
-
console.
|
|
455
|
+
console.error("[OAuth] ⚠️ No userInfoUrl available for provider:", {
|
|
456
456
|
provider: stateProvider,
|
|
457
457
|
hasProviderConfig: !!providerConfig,
|
|
458
458
|
providerConfigKeys: providerConfig
|
|
@@ -469,7 +469,9 @@ export function createOAuthCallbackHandler(config = {}) {
|
|
|
469
469
|
let isNewAccount = false;
|
|
470
470
|
let autoLinked = false;
|
|
471
471
|
const agentShieldApiKey = config.agentShieldApiKey || env.AGENTSHIELD_API_KEY;
|
|
472
|
-
const agentShieldProjectId = config.agentShieldProjectId ||
|
|
472
|
+
const agentShieldProjectId = config.agentShieldProjectId ||
|
|
473
|
+
env.AGENTSHIELD_PROJECT_ID ||
|
|
474
|
+
project_id;
|
|
473
475
|
if (agentShieldApiUrl && agentShieldApiKey && userInfo) {
|
|
474
476
|
// Extract OAuth subject - different providers use different fields
|
|
475
477
|
const oauthSubject = userInfo.sub ||
|
|
@@ -477,7 +479,7 @@ export function createOAuthCallbackHandler(config = {}) {
|
|
|
477
479
|
userInfo.login;
|
|
478
480
|
if (oauthSubject) {
|
|
479
481
|
try {
|
|
480
|
-
console.
|
|
482
|
+
console.error("[OAuth] 🔑 Resolving identity via AgentShield:", {
|
|
481
483
|
provider: stateProvider,
|
|
482
484
|
hasEmail: !!userInfo.email,
|
|
483
485
|
projectId: agentShieldProjectId,
|
|
@@ -506,8 +508,9 @@ export function createOAuthCallbackHandler(config = {}) {
|
|
|
506
508
|
persistentUserDid = identityData.data.user_did;
|
|
507
509
|
isNewAccount = identityData.data.is_new_account ?? false;
|
|
508
510
|
autoLinked = identityData.data.auto_linked ?? false;
|
|
509
|
-
console.
|
|
510
|
-
userDid: identityData.data.user_did.substring(0, 30) +
|
|
511
|
+
console.error("[OAuth] ✅ Identity resolved:", {
|
|
512
|
+
userDid: identityData.data.user_did.substring(0, 30) +
|
|
513
|
+
"...",
|
|
511
514
|
isNewAccount,
|
|
512
515
|
autoLinked,
|
|
513
516
|
});
|
|
@@ -523,7 +526,7 @@ export function createOAuthCallbackHandler(config = {}) {
|
|
|
523
526
|
email: userInfo?.email,
|
|
524
527
|
}
|
|
525
528
|
: undefined);
|
|
526
|
-
console.
|
|
529
|
+
console.error("[OAuth] ✅ Session updated with persistent identity");
|
|
527
530
|
}
|
|
528
531
|
catch (error) {
|
|
529
532
|
console.warn("[OAuth] ⚠️ Session update failed (non-fatal):", error);
|
|
@@ -587,7 +590,7 @@ export function createOAuthCallbackHandler(config = {}) {
|
|
|
587
590
|
credentialJwt =
|
|
588
591
|
(await consentService.issueDelegationVC(delegation, session_id, oauthIdentity, keyPair)) ?? undefined;
|
|
589
592
|
if (credentialJwt) {
|
|
590
|
-
console.
|
|
593
|
+
console.error("[OAuth] VC-JWT issued for delegation:", {
|
|
591
594
|
delegationId,
|
|
592
595
|
issuerDid: keyPair.did.substring(0, 30) + "...",
|
|
593
596
|
jwtLength: credentialJwt.length,
|
|
@@ -685,7 +688,7 @@ export function createOAuthCallbackHandler(config = {}) {
|
|
|
685
688
|
tokenData.is_new_account = isNewAccount;
|
|
686
689
|
tokenData.auto_linked = autoLinked;
|
|
687
690
|
}
|
|
688
|
-
console.
|
|
691
|
+
console.error("[OAuth] ✅ Direct PKCE flow complete:", {
|
|
689
692
|
delegationId: tokenData.delegation_id,
|
|
690
693
|
provider: stateProvider,
|
|
691
694
|
hasIdpTokens: true,
|
|
@@ -696,7 +699,7 @@ export function createOAuthCallbackHandler(config = {}) {
|
|
|
696
699
|
else {
|
|
697
700
|
// Bouncer flow: Exchange via AgentShield's OAuth token endpoint
|
|
698
701
|
// This is the legacy flow for proxy mode or when PKCE is not available
|
|
699
|
-
console.
|
|
702
|
+
console.error("[OAuth] 📡 Using bouncer flow for token exchange");
|
|
700
703
|
const tokenEndpoint = `${agentShieldApiUrl}/api/v1/bouncer/oauth/token`;
|
|
701
704
|
const tokenResponse = await fetch(tokenEndpoint, {
|
|
702
705
|
method: "POST",
|
|
@@ -744,7 +747,7 @@ export function createOAuthCallbackHandler(config = {}) {
|
|
|
744
747
|
});
|
|
745
748
|
return c.html(html, 500);
|
|
746
749
|
}
|
|
747
|
-
console.
|
|
750
|
+
console.error("[OAuth] 🔒 SECURITY EVENT: Token exchange successful:", {
|
|
748
751
|
delegationId: tokenData.delegation_id,
|
|
749
752
|
sessionId: tokenData.session_id || session_id,
|
|
750
753
|
expiresIn: tokenData.expires_in,
|
|
@@ -759,7 +762,7 @@ export function createOAuthCallbackHandler(config = {}) {
|
|
|
759
762
|
const persistentUserDidFromToken = tokenData.user_did;
|
|
760
763
|
if (persistentUserDidFromToken) {
|
|
761
764
|
userDid = persistentUserDidFromToken;
|
|
762
|
-
console.
|
|
765
|
+
console.error("[OAuth] 🔑 Using persistent user_did from identity resolution:", {
|
|
763
766
|
userDid: persistentUserDidFromToken.substring(0, 30) + "...",
|
|
764
767
|
isNewAccount: tokenData.is_new_account ?? false,
|
|
765
768
|
autoLinked: tokenData.auto_linked ?? false,
|
|
@@ -804,7 +807,7 @@ export function createOAuthCallbackHandler(config = {}) {
|
|
|
804
807
|
// Set OAuth identity cookie for consent page
|
|
805
808
|
const cookieValue = encodeURIComponent(JSON.stringify(oauthIdentity));
|
|
806
809
|
c.header("Set-Cookie", `oauth_identity=${cookieValue}; HttpOnly; Secure; SameSite=Lax; Max-Age=604800; Path=/`);
|
|
807
|
-
console.
|
|
810
|
+
console.error("[OAuth] 🔒 SECURITY EVENT: OAuth identity linked and cookie set:", {
|
|
808
811
|
provider: oauthIdentity.provider,
|
|
809
812
|
subject: oauthIdentity.subject.substring(0, 20) + "...",
|
|
810
813
|
userDid: userDid.substring(0, 20) + "...",
|
|
@@ -821,7 +824,7 @@ export function createOAuthCallbackHandler(config = {}) {
|
|
|
821
824
|
// Set OAuth identity cookie for consent page
|
|
822
825
|
const cookieValue = encodeURIComponent(JSON.stringify(oauthIdentity));
|
|
823
826
|
c.header("Set-Cookie", `oauth_identity=${cookieValue}; HttpOnly; Secure; SameSite=Lax; Max-Age=604800; Path=/`);
|
|
824
|
-
console.
|
|
827
|
+
console.error("[OAuth] 🔒 SECURITY EVENT: OAuth identity cached and cookie set:", {
|
|
825
828
|
provider: oauthIdentity.provider,
|
|
826
829
|
subject: oauthIdentity.subject.substring(0, 20) + "...",
|
|
827
830
|
userDid: userDid.substring(0, 20) + "...",
|
|
@@ -919,7 +922,7 @@ export function createOAuthCallbackHandler(config = {}) {
|
|
|
919
922
|
if (existingIdpTokens) {
|
|
920
923
|
// Direct PKCE flow already exchanged the code - use those tokens
|
|
921
924
|
await idpTokenStorage.storeToken(effectiveUserDid, provider, requestedScopes, existingIdpTokens);
|
|
922
|
-
console.
|
|
925
|
+
console.error("[OAuth] ✅ IDP tokens stored (from direct PKCE flow):", {
|
|
923
926
|
userDid: effectiveUserDid.substring(0, 20) + "...",
|
|
924
927
|
provider,
|
|
925
928
|
scopes: requestedScopes,
|
|
@@ -940,7 +943,7 @@ export function createOAuthCallbackHandler(config = {}) {
|
|
|
940
943
|
});
|
|
941
944
|
const idpTokens = await oauthService.exchangeToken(provider, code, codeVerifier, redirectUri);
|
|
942
945
|
await idpTokenStorage.storeToken(effectiveUserDid, provider, requestedScopes, idpTokens);
|
|
943
|
-
console.
|
|
946
|
+
console.error("[OAuth] ✅ IDP tokens stored (PKCE flow):", {
|
|
944
947
|
userDid: effectiveUserDid.substring(0, 20) + "...",
|
|
945
948
|
provider,
|
|
946
949
|
scopes: requestedScopes,
|
|
@@ -954,13 +957,13 @@ export function createOAuthCallbackHandler(config = {}) {
|
|
|
954
957
|
baseUrl: agentShieldApiUrl,
|
|
955
958
|
fetchProvider: fetch,
|
|
956
959
|
logger: (message, data) => {
|
|
957
|
-
console.
|
|
960
|
+
console.error(`[OAuthTokenRetrieval] ${message}`, data);
|
|
958
961
|
},
|
|
959
962
|
});
|
|
960
963
|
const idpTokens = await tokenRetrievalService.retrieveTokens(tokenData.delegation_id, tokenData.delegation_token);
|
|
961
964
|
if (idpTokens) {
|
|
962
965
|
await idpTokenStorage.storeToken(effectiveUserDid, provider, requestedScopes, idpTokens);
|
|
963
|
-
console.
|
|
966
|
+
console.error("[OAuth] ✅ OAuth tokens retrieved and stored (proxy mode):", {
|
|
964
967
|
userDid: effectiveUserDid.substring(0, 20) + "...",
|
|
965
968
|
provider,
|
|
966
969
|
scopes: requestedScopes,
|
|
@@ -981,7 +984,7 @@ export function createOAuthCallbackHandler(config = {}) {
|
|
|
981
984
|
}
|
|
982
985
|
}
|
|
983
986
|
else {
|
|
984
|
-
console.
|
|
987
|
+
console.error("[OAuth] Skipping IDP token storage:", {
|
|
985
988
|
hasProvider: !!provider,
|
|
986
989
|
hasScopes: requestedScopes.length > 0,
|
|
987
990
|
hasEffectiveUserDid: !!effectiveUserDid,
|
|
@@ -1022,7 +1025,7 @@ export function createOAuthCallbackHandler(config = {}) {
|
|
|
1022
1025
|
await delegationStorage.put(userAgentKey, tokenData.delegation_token, {
|
|
1023
1026
|
expirationTtl: ttl,
|
|
1024
1027
|
});
|
|
1025
|
-
console.
|
|
1028
|
+
console.error("[OAuth] 🔒 SECURITY EVENT: Delegation token stored with user+agent DID:", {
|
|
1026
1029
|
key: userAgentKey.substring(0, 50) + "...",
|
|
1027
1030
|
ttl,
|
|
1028
1031
|
agentDid: agent_did.substring(0, 20) + "...",
|
|
@@ -1046,7 +1049,7 @@ export function createOAuthCallbackHandler(config = {}) {
|
|
|
1046
1049
|
}), {
|
|
1047
1050
|
expirationTtl: ttl, // Use full TTL since OAuth users have identity
|
|
1048
1051
|
});
|
|
1049
|
-
console.
|
|
1052
|
+
console.error("[OAuth] 🔒 SECURITY EVENT: Delegation token stored for session:", {
|
|
1050
1053
|
key: sessionKey.substring(0, 50) + "...",
|
|
1051
1054
|
ttl,
|
|
1052
1055
|
sessionId: session_id?.substring(0, 20) + "...",
|
|
@@ -1054,7 +1057,9 @@ export function createOAuthCallbackHandler(config = {}) {
|
|
|
1054
1057
|
delegationId: tokenData.delegation_id,
|
|
1055
1058
|
timestamp: new Date().toISOString(),
|
|
1056
1059
|
eventType: "delegation_token_stored",
|
|
1057
|
-
storageType: sessionUserDid
|
|
1060
|
+
storageType: sessionUserDid
|
|
1061
|
+
? "user_agent_scoped"
|
|
1062
|
+
: "session_scoped",
|
|
1058
1063
|
});
|
|
1059
1064
|
// Fire-and-forget notification to AgentShield for audit trail
|
|
1060
1065
|
// This enables dashboard visibility into delegations created via OAuth flow
|
|
@@ -1110,7 +1115,7 @@ export function createOAuthCallbackHandler(config = {}) {
|
|
|
1110
1115
|
})
|
|
1111
1116
|
.then((response) => {
|
|
1112
1117
|
if (response.ok) {
|
|
1113
|
-
console.
|
|
1118
|
+
console.error("[OAuth] Delegation notification sent to AgentShield:", {
|
|
1114
1119
|
delegation_id: tokenData.delegation_id,
|
|
1115
1120
|
project_id: project_id,
|
|
1116
1121
|
agent_name: agentName,
|