@liveauth-labs/mcp-server 0.1.0

package/AGENTS.md

@@ -0,0 +1,41 @@
+# For AI Agents
+
+This MCP server enables you to authenticate to LiveAuth-protected services.
+
+## Quick Start
+
+1. Your MCP client should already have this server configured
+2. Use `liveauth_get_challenge` to get a PoW challenge
+3. Solve the challenge (find nonce where SHA256(projectPublicKey:challengeHex:nonce) < target)
+4. Use `liveauth_verify_pow` to submit your solution and get a JWT token
+5. Use the JWT token in API requests: `Authorization: Bearer <token>`
+
+## When to Use Lightning Fallback
+
+If PoW solving takes too long or fails:
+- Use `liveauth_start_lightning` to get a payment invoice
+- Pay the invoice (typically 1-100 sats)
+- Poll `/api/public/auth/confirm` with sessionId
+- Receive JWT token once payment confirms
+
+## Example Flow
+
+```
+Agent: "I need to access https://example.com/api/data"
+Agent: *calls liveauth_get_challenge with example.com's public key*
+Agent: *solves PoW challenge*
+Agent: *calls liveauth_verify_pow*
+LiveAuth: "Token: eyJhbGciOi..."
+Agent: *makes API request with token in Authorization header*
+```
+
+## Cost Model
+
+- **PoW**: Free (you pay in compute time, typically 200-800ms)
+- **Lightning**: 1-100 sats depending on service ($0.0005-$0.05 at current rates)
+
+## Support
+
+Questions? The LiveAuth team responds to agents the same way they respond to humans.
+- Email: support@liveauth.app
+- Docs: https://liveauth.app/docs/mcp

package/LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2026 Scott
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

package/README.md

@@ -0,0 +1,150 @@
+# LiveAuth MCP Server
+
+Model Context Protocol (MCP) server for LiveAuth authentication. Enables AI agents to authenticate using proof-of-work or Lightning Network payments.
+
+## What is This?
+
+This MCP server allows AI agents (Claude, GPT, AutoGPT, etc.) to:
+- Request proof-of-work challenges
+- Solve challenges to prove computational work
+- Fallback to Lightning Network payments when needed
+- Receive JWT tokens for authenticated API access
+
+## Installation
+
+```bash
+npm install -g @liveauth/mcp-server
+```
+
+Or use directly with npx:
+
+```bash
+npx @liveauth/mcp-server
+```
+
+## Configuration
+
+### Claude Desktop
+
+Add to your `claude_desktop_config.json`:
+
+```json
+{
+  "mcpServers": {
+    "liveauth": {
+      "command": "npx",
+      "args": ["-y", "@liveauth/mcp-server"],
+      "env": {
+        "LIVEAUTH_API_BASE": "https://api.liveauth.app"
+      }
+    }
+  }
+}
+```
+
+### Other MCP Clients
+
+The server communicates over stdio. Start it with:
+
+```bash
+liveauth-mcp
+```
+
+## Available Tools
+
+### `liveauth_get_challenge`
+
+Get a proof-of-work challenge for authentication.
+
+**Parameters:**
+- `projectPublicKey` (string): Your LiveAuth project public key (starts with `la_pk_`)
+
+**Returns:** Challenge object with difficulty, target, expiration, and signature
+
+**Example:**
+```typescript
+{
+  projectPublicKey: "la_pk_abc123...",
+  challengeHex: "a1b2c3...",
+  targetHex: "0000ffff...",
+  difficultyBits: 18,
+  expiresAtUnix: 1234567890,
+  sig: "signature..."
+}
+```
+
+### `liveauth_verify_pow`
+
+Verify a solved proof-of-work challenge and receive JWT token.
+
+**Parameters:**
+- `projectPublicKey` (string): Your project public key
+- `challengeHex` (string): Challenge from get_challenge
+- `nonce` (number): Solution nonce
+- `hashHex` (string): Resulting hash
+- `expiresAtUnix` (number): Expiration from challenge
+- `difficultyBits` (number): Difficulty from challenge
+- `sig` (string): Signature from challenge
+
+**Returns:** JWT authentication token or fallback instruction
+
+### `liveauth_start_lightning`
+
+Start Lightning Network payment authentication as fallback.
+
+**Parameters:**
+- `projectPublicKey` (string): Your project public key
+
+**Returns:** Lightning invoice and session details
+
+## Usage Example
+
+An AI agent authenticating to a LiveAuth-protected API would:
+
+1. Call `liveauth_get_challenge` with the project's public key
+2. Solve the PoW challenge (compute nonce that produces hash below target)
+3. Call `liveauth_verify_pow` with the solution
+4. Receive JWT token
+5. Use token in `Authorization: Bearer <token>` header for API requests
+
+If PoW fails or isn't feasible, the agent can:
+
+1. Call `liveauth_start_lightning` to get a payment invoice
+2. Pay the Lightning invoice
+3. Poll for payment confirmation
+4. Receive JWT token
+
+## Why LiveAuth?
+
+**For API Providers:**
+- Protect endpoints from abuse without CAPTCHA
+- Monetize AI agent access with micropayments
+- No user friction (agents handle authentication)
+
+**For AI Agents:**
+- Permissionless access (no account signup)
+- Cryptographically proven authentication
+- Choose between compute (PoW) or payment (Lightning)
+
+## Development
+
+```bash
+# Install dependencies
+npm install
+
+# Build
+npm run build
+
+# Run locally
+node dist/index.js
+```
+
+## Resources
+
+- [LiveAuth Documentation](https://liveauth.app/docs)
+- [MCP Protocol Spec](https://modelcontextprotocol.io)
+- [Get LiveAuth API Key](https://liveauth.app/signup)
+
+## License
+
+MIT

package/dist/index.d.ts

@@ -0,0 +1,3 @@
+#!/usr/bin/env node
+export {};
+//# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":""}

package/dist/index.js

@@ -0,0 +1,209 @@
+#!/usr/bin/env node
+import { Server } from '@modelcontextprotocol/sdk/server/index.js';
+import { StdioServerTransport } from '@modelcontextprotocol/sdk/server/stdio.js';
+import { CallToolRequestSchema, ListToolsRequestSchema, } from '@modelcontextprotocol/sdk/types.js';
+import fetch from 'node-fetch';
+const LIVEAUTH_API_BASE = process.env.LIVEAUTH_API_BASE || 'https://api.liveauth.app';
+// Define our MCP tools
+const TOOLS = [
+    {
+        name: 'liveauth_get_challenge',
+        description: 'Get a proof-of-work challenge from LiveAuth for authentication. The agent must solve this challenge to prove computational work.',
+        inputSchema: {
+            type: 'object',
+            properties: {
+                projectPublicKey: {
+                    type: 'string',
+                    description: 'The LiveAuth project public key (starts with la_pk_)',
+                },
+            },
+            required: ['projectPublicKey'],
+        },
+    },
+    {
+        name: 'liveauth_verify_pow',
+        description: 'Verify a solved proof-of-work challenge and receive a JWT authentication token',
+        inputSchema: {
+            type: 'object',
+            properties: {
+                projectPublicKey: {
+                    type: 'string',
+                    description: 'The LiveAuth project public key',
+                },
+                challengeHex: {
+                    type: 'string',
+                    description: 'The challenge hex from get_challenge',
+                },
+                nonce: {
+                    type: 'number',
+                    description: 'The nonce that solves the challenge',
+                },
+                hashHex: {
+                    type: 'string',
+                    description: 'The resulting hash hex',
+                },
+                expiresAtUnix: {
+                    type: 'number',
+                    description: 'Expiration timestamp from challenge',
+                },
+                difficultyBits: {
+                    type: 'number',
+                    description: 'Difficulty bits from challenge',
+                },
+                sig: {
+                    type: 'string',
+                    description: 'Signature from challenge',
+                },
+            },
+            required: ['projectPublicKey', 'challengeHex', 'nonce', 'hashHex', 'expiresAtUnix', 'difficultyBits', 'sig'],
+        },
+    },
+    {
+        name: 'liveauth_start_lightning',
+        description: 'Start Lightning Network payment authentication as fallback when PoW is not feasible',
+        inputSchema: {
+            type: 'object',
+            properties: {
+                projectPublicKey: {
+                    type: 'string',
+                    description: 'The LiveAuth project public key',
+                },
+            },
+            required: ['projectPublicKey'],
+        },
+    },
+];
+// Create MCP server
+const server = new Server({
+    name: 'liveauth-mcp',
+    version: '0.1.0',
+}, {
+    capabilities: {
+        tools: {},
+    },
+});
+// Handle tool listing
+server.setRequestHandler(ListToolsRequestSchema, async () => {
+    return { tools: TOOLS };
+});
+// Handle tool calls
+server.setRequestHandler(CallToolRequestSchema, async (request) => {
+    const { name, arguments: args } = request.params;
+    try {
+        switch (name) {
+            case 'liveauth_get_challenge': {
+                const { projectPublicKey } = args;
+                const response = await fetch(`${LIVEAUTH_API_BASE}/api/public/pow/challenge`, {
+                    headers: {
+                        'X-LW-Public': projectPublicKey,
+                        'Content-Type': 'application/json',
+                    },
+                });
+                if (!response.ok) {
+                    throw new Error(`Challenge request failed: ${response.statusText}`);
+                }
+                const challenge = await response.json();
+                return {
+                    content: [
+                        {
+                            type: 'text',
+                            text: JSON.stringify(challenge, null, 2),
+                        },
+                    ],
+                };
+            }
+            case 'liveauth_verify_pow': {
+                const verifyArgs = args;
+                const response = await fetch(`${LIVEAUTH_API_BASE}/api/public/pow/verify`, {
+                    method: 'POST',
+                    headers: {
+                        'X-LW-Public': verifyArgs.projectPublicKey,
+                        'Content-Type': 'application/json',
+                    },
+                    body: JSON.stringify({
+                        challengeHex: verifyArgs.challengeHex,
+                        nonce: verifyArgs.nonce,
+                        hashHex: verifyArgs.hashHex,
+                        expiresAtUnix: verifyArgs.expiresAtUnix,
+                        difficultyBits: verifyArgs.difficultyBits,
+                        sig: verifyArgs.sig,
+                    }),
+                });
+                if (!response.ok) {
+                    throw new Error(`Verification failed: ${response.statusText}`);
+                }
+                const result = await response.json();
+                if (result.verified && result.token) {
+                    return {
+                        content: [
+                            {
+                                type: 'text',
+                                text: `Authentication successful! Token: ${result.token}`,
+                            },
+                        ],
+                    };
+                }
+                else if (result.fallback === 'lightning') {
+                    return {
+                        content: [
+                            {
+                                type: 'text',
+                                text: 'PoW verification failed. Please use liveauth_start_lightning for payment-based authentication.',
+                            },
+                        ],
+                    };
+                }
+                else {
+                    throw new Error('Verification failed');
+                }
+            }
+            case 'liveauth_start_lightning': {
+                const { projectPublicKey } = args;
+                const response = await fetch(`${LIVEAUTH_API_BASE}/api/public/auth/start`, {
+                    method: 'POST',
+                    headers: {
+                        'X-LW-Public': projectPublicKey,
+                        'Content-Type': 'application/json',
+                    },
+                    body: JSON.stringify({ userHint: 'agent' }),
+                });
+                if (!response.ok) {
+                    throw new Error(`Lightning start failed: ${response.statusText}`);
+                }
+                const lightning = await response.json();
+                return {
+                    content: [
+                        {
+                            type: 'text',
+                            text: `Lightning payment required:\nInvoice: ${lightning.invoice}\nAmount: ${lightning.amountSats} sats\nSession ID: ${lightning.sessionId}\n\nUse this sessionId to poll for payment confirmation.`,
+                        },
+                    ],
+                };
+            }
+            default:
+                throw new Error(`Unknown tool: ${name}`);
+        }
+    }
+    catch (error) {
+        return {
+            content: [
+                {
+                    type: 'text',
+                    text: `Error: ${error instanceof Error ? error.message : String(error)}`,
+                },
+            ],
+            isError: true,
+        };
+    }
+});
+// Start server
+async function main() {
+    const transport = new StdioServerTransport();
+    await server.connect(transport);
+    console.error('LiveAuth MCP server running on stdio');
+}
+main().catch((error) => {
+    console.error('Fatal error:', error);
+    process.exit(1);
+});
+//# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":";AAEA,OAAO,EAAE,MAAM,EAAE,MAAM,2CAA2C,CAAC;AACnE,OAAO,EAAE,oBAAoB,EAAE,MAAM,2CAA2C,CAAC;AACjF,OAAO,EACL,qBAAqB,EACrB,sBAAsB,GAEvB,MAAM,oCAAoC,CAAC;AAC5C,OAAO,KAAK,MAAM,YAAY,CAAC;AAE/B,MAAM,iBAAiB,GAAG,OAAO,CAAC,GAAG,CAAC,iBAAiB,IAAI,0BAA0B,CAAC;AAkCtF,uBAAuB;AACvB,MAAM,KAAK,GAAW;IACpB;QACE,IAAI,EAAE,wBAAwB;QAC9B,WAAW,EAAE,kIAAkI;QAC/I,WAAW,EAAE;YACX,IAAI,EAAE,QAAQ;YACd,UAAU,EAAE;gBACV,gBAAgB,EAAE;oBAChB,IAAI,EAAE,QAAQ;oBACd,WAAW,EAAE,sDAAsD;iBACpE;aACF;YACD,QAAQ,EAAE,CAAC,kBAAkB,CAAC;SAC/B;KACF;IACD;QACE,IAAI,EAAE,qBAAqB;QAC3B,WAAW,EAAE,gFAAgF;QAC7F,WAAW,EAAE;YACX,IAAI,EAAE,QAAQ;YACd,UAAU,EAAE;gBACV,gBAAgB,EAAE;oBAChB,IAAI,EAAE,QAAQ;oBACd,WAAW,EAAE,iCAAiC;iBAC/C;gBACD,YAAY,EAAE;oBACZ,IAAI,EAAE,QAAQ;oBACd,WAAW,EAAE,sCAAsC;iBACpD;gBACD,KAAK,EAAE;oBACL,IAAI,EAAE,QAAQ;oBACd,WAAW,EAAE,qCAAqC;iBACnD;gBACD,OAAO,EAAE;oBACP,IAAI,EAAE,QAAQ;oBACd,WAAW,EAAE,wBAAwB;iBACtC;gBACD,aAAa,EAAE;oBACb,IAAI,EAAE,QAAQ;oBACd,WAAW,EAAE,qCAAqC;iBACnD;gBACD,cAAc,EAAE;oBACd,IAAI,EAAE,QAAQ;oBACd,WAAW,EAAE,gCAAgC;iBAC9C;gBACD,GAAG,EAAE;oBACH,IAAI,EAAE,QAAQ;oBACd,WAAW,EAAE,0BAA0B;iBACxC;aACF;YACD,QAAQ,EAAE,CAAC,kBAAkB,EAAE,cAAc,EAAE,OAAO,EAAE,SAAS,EAAE,eAAe,EAAE,gBAAgB,EAAE,KAAK,CAAC;SAC7G;KACF;IACD;QACE,IAAI,EAAE,0BAA0B;QAChC,WAAW,EAAE,qFAAqF;QAClG,WAAW,EAAE;YACX,IAAI,EAAE,QAAQ;YACd,UAAU,EAAE;gBACV,gBAAgB,EAAE;oBAChB,IAAI,EAAE,QAAQ;oBACd,WAAW,EAAE,iCAAiC;iBAC/C;aACF;YACD,QAAQ,EAAE,CAAC,kBAAkB,CAAC;SAC/B;KACF;CACF,CAAC;AAEF,oBAAoB;AACpB,MAAM,MAAM,GAAG,IAAI,MAAM,CACvB;IACE,IAAI,EAAE,cAAc;IACpB,OAAO,EAAE,OAAO;CACjB,EACD;IACE,YAAY,EAAE;QACZ,KAAK,EAAE,EAAE;KACV;CACF,CACF,CAAC;AAEF,sBAAsB;AACtB,MAAM,CAAC,iBAAiB,CAAC,sBAAsB,EAAE,KAAK,IAAI,EAAE;IAC1D,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,CAAC;AAC1B,CAAC,CAAC,CAAC;AAEH,oBAAoB;AACpB,MAAM,CAAC,iBAAiB,CAAC,qBAAqB,EAAE,KAAK,EAAE,OAAO,EAAE,EAAE;IAChE,MAAM,EAAE,IAAI,EAAE,SAAS,EAAE,IAAI,EAAE,GAAG,OAAO,CAAC,MAAM,CAAC;IAEjD,IAAI,CAAC;QACH,QAAQ,IAAI,EAAE,CAAC;YACb,KAAK,wBAAwB,CAAC,CAAC,CAAC;gBAC9B,MAAM,EAAE,gBAAgB,EAAE,GAAG,IAA+C,CAAC;gBAE7E,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,iBAAiB,2BAA2B,EAAE;oBAC5E,OAAO,EAAE;wBACP,aAAa,EAAE,gBAAgB;wBAC/B,cAAc,EAAE,kBAAkB;qBACnC;iBACF,CAAC,CAAC;gBAEH,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;oBACjB,MAAM,IAAI,KAAK,CAAC,6BAA6B,QAAQ,CAAC,UAAU,EAAE,CAAC,CAAC;gBACtE,CAAC;gBAED,MAAM,SAAS,GAAyB,MAAM,QAAQ,CAAC,IAAI,EAA0B,CAAC;gBAEtF,OAAO;oBACL,OAAO,EAAE;wBACP;4BACE,IAAI,EAAE,MAAM;4BACZ,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;yBACzC;qBACF;iBACF,CAAC;YACJ,CAAC;YAED,KAAK,qBAAqB,CAAC,CAAC,CAAC;gBAC3B,MAAM,UAAU,GAAG,IAAkE,CAAC;gBAEtF,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,iBAAiB,wBAAwB,EAAE;oBACzE,MAAM,EAAE,MAAM;oBACd,OAAO,EAAE;wBACP,aAAa,EAAE,UAAU,CAAC,gBAAgB;wBAC1C,cAAc,EAAE,kBAAkB;qBACnC;oBACD,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC;wBACnB,YAAY,EAAE,UAAU,CAAC,YAAY;wBACrC,KAAK,EAAE,UAAU,CAAC,KAAK;wBACvB,OAAO,EAAE,UAAU,CAAC,OAAO;wBAC3B,aAAa,EAAE,UAAU,CAAC,aAAa;wBACvC,cAAc,EAAE,UAAU,CAAC,cAAc;wBACzC,GAAG,EAAE,UAAU,CAAC,GAAG;qBACpB,CAAC;iBACH,CAAC,CAAC;gBAEH,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;oBACjB,MAAM,IAAI,KAAK,CAAC,wBAAwB,QAAQ,CAAC,UAAU,EAAE,CAAC,CAAC;gBACjE,CAAC;gBAED,MAAM,MAAM,GAAsB,MAAM,QAAQ,CAAC,IAAI,EAAuB,CAAC;gBAE7E,IAAI,MAAM,CAAC,QAAQ,IAAI,MAAM,CAAC,KAAK,EAAE,CAAC;oBACpC,OAAO;wBACL,OAAO,EAAE;4BACP;gCACE,IAAI,EAAE,MAAM;gCACZ,IAAI,EAAE,qCAAqC,MAAM,CAAC,KAAK,EAAE;6BAC1D;yBACF;qBACF,CAAC;gBACJ,CAAC;qBAAM,IAAI,MAAM,CAAC,QAAQ,KAAK,WAAW,EAAE,CAAC;oBAC3C,OAAO;wBACL,OAAO,EAAE;4BACP;gCACE,IAAI,EAAE,MAAM;gCACZ,IAAI,EAAE,gGAAgG;6BACvG;yBACF;qBACF,CAAC;gBACJ,CAAC;qBAAM,CAAC;oBACN,MAAM,IAAI,KAAK,CAAC,qBAAqB,CAAC,CAAC;gBACzC,CAAC;YACH,CAAC;YAED,KAAK,0BAA0B,CAAC,CAAC,CAAC;gBAChC,MAAM,EAAE,gBAAgB,EAAE,GAAG,IAA+C,CAAC;gBAE7E,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,iBAAiB,wBAAwB,EAAE;oBACzE,MAAM,EAAE,MAAM;oBACd,OAAO,EAAE;wBACP,aAAa,EAAE,gBAAgB;wBAC/B,cAAc,EAAE,kBAAkB;qBACnC;oBACD,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,EAAE,QAAQ,EAAE,OAAO,EAAE,CAAC;iBAC5C,CAAC,CAAC;gBAEH,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;oBACjB,MAAM,IAAI,KAAK,CAAC,2BAA2B,QAAQ,CAAC,UAAU,EAAE,CAAC,CAAC;gBACpE,CAAC;gBAED,MAAM,SAAS,GAA2B,MAAM,QAAQ,CAAC,IAAI,EAA4B,CAAC;gBAE1F,OAAO;oBACL,OAAO,EAAE;wBACP;4BACE,IAAI,EAAE,MAAM;4BACZ,IAAI,EAAE,yCAAyC,SAAS,CAAC,OAAO,aAAa,SAAS,CAAC,UAAU,sBAAsB,SAAS,CAAC,SAAS,0DAA0D;yBACrM;qBACF;iBACF,CAAC;YACJ,CAAC;YAED;gBACE,MAAM,IAAI,KAAK,CAAC,iBAAiB,IAAI,EAAE,CAAC,CAAC;QAC7C,CAAC;IACH,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,OAAO;YACL,OAAO,EAAE;gBACP;oBACE,IAAI,EAAE,MAAM;oBACZ,IAAI,EAAE,UAAU,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,EAAE;iBACzE;aACF;YACD,OAAO,EAAE,IAAI;SACd,CAAC;IACJ,CAAC;AACH,CAAC,CAAC,CAAC;AAEH,eAAe;AACf,KAAK,UAAU,IAAI;IACjB,MAAM,SAAS,GAAG,IAAI,oBAAoB,EAAE,CAAC;IAC7C,MAAM,MAAM,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC;IAChC,OAAO,CAAC,KAAK,CAAC,sCAAsC,CAAC,CAAC;AACxD,CAAC;AAED,IAAI,EAAE,CAAC,KAAK,CAAC,CAAC,KAAK,EAAE,EAAE;IACrB,OAAO,CAAC,KAAK,CAAC,cAAc,EAAE,KAAK,CAAC,CAAC;IACrC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;AAClB,CAAC,CAAC,CAAC"}

package/package.json

@@ -0,0 +1,33 @@
+{
+  "name": "@liveauth-labs/mcp-server",
+  "version": "0.1.0",
+  "description": "MCP server for LiveAuth - PoW and Lightning authentication for AI agents",
+  "type": "module",
+  "main": "dist/index.js",
+  "bin": {
+    "liveauth-mcp": "dist/index.js"
+  },
+  "scripts": {
+    "build": "tsc",
+    "dev": "tsc --watch",
+    "prepare": "npm run build"
+  },
+  "keywords": [
+    "mcp",
+    "authentication",
+    "proof-of-work",
+    "lightning",
+    "bitcoin",
+    "ai-agents"
+  ],
+  "author": "LiveAuth",
+  "license": "MIT",
+  "dependencies": {
+    "@modelcontextprotocol/sdk": "^0.5.0",
+    "node-fetch": "^3.3.2"
+  },
+  "devDependencies": {
+    "@types/node": "^20.10.0",
+    "typescript": "^5.3.0"
+  }
+}

package/src/index.ts

@@ -0,0 +1,268 @@
+#!/usr/bin/env node
+
+import { Server } from '@modelcontextprotocol/sdk/server/index.js';
+import { StdioServerTransport } from '@modelcontextprotocol/sdk/server/stdio.js';
+import {
+  CallToolRequestSchema,
+  ListToolsRequestSchema,
+  Tool,
+} from '@modelcontextprotocol/sdk/types.js';
+import fetch from 'node-fetch';
+
+const LIVEAUTH_API_BASE = process.env.LIVEAUTH_API_BASE || 'https://api.liveauth.app';
+
+interface PowChallengeResponse {
+  projectPublicKey: string;
+  challengeHex: string;
+  targetHex: string;
+  difficultyBits: number;
+  expiresAtUnix: number;
+  sig: string;
+}
+
+interface PowVerifyRequest {
+  challengeHex: string;
+  nonce: number;
+  hashHex: string;
+  expiresAtUnix: number;
+  difficultyBits: number;
+  sig: string;
+}
+
+interface PowVerifyResponse {
+  verified: boolean;
+  token?: string;
+  fallback?: 'lightning';
+}
+
+interface LightningStartResponse {
+  sessionId: string;
+  invoice: string | null;
+  amountSats: number;
+  expiresAtUnix: number;
+  mode: 'TEST' | 'LIVE';
+}
+
+// Define our MCP tools
+const TOOLS: Tool[] = [
+  {
+    name: 'liveauth_get_challenge',
+    description: 'Get a proof-of-work challenge from LiveAuth for authentication. The agent must solve this challenge to prove computational work.',
+    inputSchema: {
+      type: 'object',
+      properties: {
+        projectPublicKey: {
+          type: 'string',
+          description: 'The LiveAuth project public key (starts with la_pk_)',
+        },
+      },
+      required: ['projectPublicKey'],
+    },
+  },
+  {
+    name: 'liveauth_verify_pow',
+    description: 'Verify a solved proof-of-work challenge and receive a JWT authentication token',
+    inputSchema: {
+      type: 'object',
+      properties: {
+        projectPublicKey: {
+          type: 'string',
+          description: 'The LiveAuth project public key',
+        },
+        challengeHex: {
+          type: 'string',
+          description: 'The challenge hex from get_challenge',
+        },
+        nonce: {
+          type: 'number',
+          description: 'The nonce that solves the challenge',
+        },
+        hashHex: {
+          type: 'string',
+          description: 'The resulting hash hex',
+        },
+        expiresAtUnix: {
+          type: 'number',
+          description: 'Expiration timestamp from challenge',
+        },
+        difficultyBits: {
+          type: 'number',
+          description: 'Difficulty bits from challenge',
+        },
+        sig: {
+          type: 'string',
+          description: 'Signature from challenge',
+        },
+      },
+      required: ['projectPublicKey', 'challengeHex', 'nonce', 'hashHex', 'expiresAtUnix', 'difficultyBits', 'sig'],
+    },
+  },
+  {
+    name: 'liveauth_start_lightning',
+    description: 'Start Lightning Network payment authentication as fallback when PoW is not feasible',
+    inputSchema: {
+      type: 'object',
+      properties: {
+        projectPublicKey: {
+          type: 'string',
+          description: 'The LiveAuth project public key',
+        },
+      },
+      required: ['projectPublicKey'],
+    },
+  },
+];
+
+// Create MCP server
+const server = new Server(
+  {
+    name: 'liveauth-mcp',
+    version: '0.1.0',
+  },
+  {
+    capabilities: {
+      tools: {},
+    },
+  }
+);
+
+// Handle tool listing
+server.setRequestHandler(ListToolsRequestSchema, async () => {
+  return { tools: TOOLS };
+});
+
+// Handle tool calls
+server.setRequestHandler(CallToolRequestSchema, async (request) => {
+  const { name, arguments: args } = request.params;
+
+  try {
+    switch (name) {
+      case 'liveauth_get_challenge': {
+        const { projectPublicKey } = args as unknown as { projectPublicKey: string };
+        
+        const response = await fetch(`${LIVEAUTH_API_BASE}/api/public/pow/challenge`, {
+          headers: {
+            'X-LW-Public': projectPublicKey,
+            'Content-Type': 'application/json',
+          },
+        });
+
+        if (!response.ok) {
+          throw new Error(`Challenge request failed: ${response.statusText}`);
+        }
+
+        const challenge: PowChallengeResponse = await response.json() as PowChallengeResponse;
+
+        return {
+          content: [
+            {
+              type: 'text',
+              text: JSON.stringify(challenge, null, 2),
+            },
+          ],
+        };
+      }
+
+      case 'liveauth_verify_pow': {
+        const verifyArgs = args as unknown as PowVerifyRequest & { projectPublicKey: string };
+        
+        const response = await fetch(`${LIVEAUTH_API_BASE}/api/public/pow/verify`, {
+          method: 'POST',
+          headers: {
+            'X-LW-Public': verifyArgs.projectPublicKey,
+            'Content-Type': 'application/json',
+          },
+          body: JSON.stringify({
+            challengeHex: verifyArgs.challengeHex,
+            nonce: verifyArgs.nonce,
+            hashHex: verifyArgs.hashHex,
+            expiresAtUnix: verifyArgs.expiresAtUnix,
+            difficultyBits: verifyArgs.difficultyBits,
+            sig: verifyArgs.sig,
+          }),
+        });
+
+        if (!response.ok) {
+          throw new Error(`Verification failed: ${response.statusText}`);
+        }
+
+        const result: PowVerifyResponse = await response.json() as PowVerifyResponse;
+
+        if (result.verified && result.token) {
+          return {
+            content: [
+              {
+                type: 'text',
+                text: `Authentication successful! Token: ${result.token}`,
+              },
+            ],
+          };
+        } else if (result.fallback === 'lightning') {
+          return {
+            content: [
+              {
+                type: 'text',
+                text: 'PoW verification failed. Please use liveauth_start_lightning for payment-based authentication.',
+              },
+            ],
+          };
+        } else {
+          throw new Error('Verification failed');
+        }
+      }
+
+      case 'liveauth_start_lightning': {
+        const { projectPublicKey } = args as unknown as { projectPublicKey: string };
+        
+        const response = await fetch(`${LIVEAUTH_API_BASE}/api/public/auth/start`, {
+          method: 'POST',
+          headers: {
+            'X-LW-Public': projectPublicKey,
+            'Content-Type': 'application/json',
+          },
+          body: JSON.stringify({ userHint: 'agent' }),
+        });
+
+        if (!response.ok) {
+          throw new Error(`Lightning start failed: ${response.statusText}`);
+        }
+
+        const lightning: LightningStartResponse = await response.json() as LightningStartResponse;
+
+        return {
+          content: [
+            {
+              type: 'text',
+              text: `Lightning payment required:\nInvoice: ${lightning.invoice}\nAmount: ${lightning.amountSats} sats\nSession ID: ${lightning.sessionId}\n\nUse this sessionId to poll for payment confirmation.`,
+            },
+          ],
+        };
+      }
+
+      default:
+        throw new Error(`Unknown tool: ${name}`);
+    }
+  } catch (error) {
+    return {
+      content: [
+        {
+          type: 'text',
+          text: `Error: ${error instanceof Error ? error.message : String(error)}`,
+        },
+      ],
+      isError: true,
+    };
+  }
+});
+
+// Start server
+async function main() {
+  const transport = new StdioServerTransport();
+  await server.connect(transport);
+  console.error('LiveAuth MCP server running on stdio');
+}
+
+main().catch((error) => {
+  console.error('Fatal error:', error);
+  process.exit(1);
+});

package/tsconfig.json

@@ -0,0 +1,19 @@
+{
+  "compilerOptions": {
+    "target": "ES2022",
+    "module": "ES2022",
+    "moduleResolution": "node",
+    "lib": ["ES2022"],
+    "outDir": "./dist",
+    "rootDir": "./src",
+    "strict": true,
+    "esModuleInterop": true,
+    "skipLibCheck": true,
+    "forceConsistentCasingInFileNames": true,
+    "declaration": true,
+    "declarationMap": true,
+    "sourceMap": true
+  },
+  "include": ["src/**/*"],
+  "exclude": ["node_modules", "dist"]
+}