@mcp-abap-adt/auth-broker 0.1.5 → 0.1.6

package/dist/providers/ITokenProvider.d.ts

@@ -0,0 +1,49 @@
+/**
+ * Token Provider interface
+ *
+ * Converts IAuthorizationConfig to IConnectionConfig by obtaining tokens.
+ * Different implementations handle different authentication flows:
+ * - XSUAA: client_credentials grant type (no browser)
+ * - BTP/ABAP: browser-based OAuth2 or refresh token
+ */
+import { IAuthorizationConfig, IConnectionConfig } from '../stores/interfaces';
+/**
+ * Result from token provider
+ */
+export interface TokenProviderResult {
+    /** Connection configuration with authorization token */
+    connectionConfig: IConnectionConfig;
+    /** Refresh token (optional, for BTP/ABAP) */
+    refreshToken?: string;
+}
+/**
+ * Interface for token providers
+ *
+ * Takes authorization configuration and returns connection configuration with token.
+ */
+export interface ITokenProvider {
+    /**
+     * Get connection configuration with token from authorization configuration
+     * @param authConfig Authorization configuration (UAA credentials, optional refresh token)
+     * @param options Optional provider-specific options (e.g., browser type for BTP)
+     * @returns Promise that resolves to connection configuration with authorization token and optional refresh token
+     */
+    getConnectionConfig(authConfig: IAuthorizationConfig, options?: TokenProviderOptions): Promise<TokenProviderResult>;
+    /**
+     * Validate JWT token by testing connection to service
+     * @param token JWT token to validate
+     * @param serviceUrl Service URL (optional, for services that require URL validation)
+     * @returns Promise that resolves to true if token is valid, false otherwise
+     */
+    validateToken?(token: string, serviceUrl?: string): Promise<boolean>;
+}
+/**
+ * Options for token providers
+ */
+export interface TokenProviderOptions {
+    /** Browser type for browser-based authentication (chrome, edge, firefox, system, none) */
+    browser?: string;
+    /** Logger instance for logging */
+    logger?: import('@mcp-abap-adt/logger').Logger;
+}
+//# sourceMappingURL=ITokenProvider.d.ts.map

package/dist/providers/ITokenProvider.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"ITokenProvider.d.ts","sourceRoot":"","sources":["../../src/providers/ITokenProvider.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAEH,OAAO,EAAE,oBAAoB,EAAE,iBAAiB,EAAE,MAAM,sBAAsB,CAAC;AAE/E;;GAEG;AACH,MAAM,WAAW,mBAAmB;IAClC,wDAAwD;IACxD,gBAAgB,EAAE,iBAAiB,CAAC;IACpC,6CAA6C;IAC7C,YAAY,CAAC,EAAE,MAAM,CAAC;CACvB;AAED;;;;GAIG;AACH,MAAM,WAAW,cAAc;IAC7B;;;;;OAKG;IACH,mBAAmB,CACjB,UAAU,EAAE,oBAAoB,EAChC,OAAO,CAAC,EAAE,oBAAoB,GAC7B,OAAO,CAAC,mBAAmB,CAAC,CAAC;IAEhC;;;;;OAKG;IACH,aAAa,CAAC,CAAC,KAAK,EAAE,MAAM,EAAE,UAAU,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC,CAAC;CACtE;AAED;;GAEG;AACH,MAAM,WAAW,oBAAoB;IACnC,0FAA0F;IAC1F,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,kCAAkC;IAClC,MAAM,CAAC,EAAE,OAAO,sBAAsB,EAAE,MAAM,CAAC;CAChD"}

package/dist/providers/ITokenProvider.js

@@ -0,0 +1,10 @@
+"use strict";
+/**
+ * Token Provider interface
+ *
+ * Converts IAuthorizationConfig to IConnectionConfig by obtaining tokens.
+ * Different implementations handle different authentication flows:
+ * - XSUAA: client_credentials grant type (no browser)
+ * - BTP/ABAP: browser-based OAuth2 or refresh token
+ */
+Object.defineProperty(exports, "__esModule", { value: true });

package/dist/providers/index.d.ts

@@ -0,0 +1,8 @@
+/**
+ * Token provider interface
+ *
+ * Provider implementations are in separate packages:
+ * - @mcp-abap-adt/auth-providers - XSUAA and BTP providers
+ */
+export type { ITokenProvider, TokenProviderOptions, TokenProviderResult } from './ITokenProvider';
+//# sourceMappingURL=index.d.ts.map

package/dist/providers/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/providers/index.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,YAAY,EAAE,cAAc,EAAE,oBAAoB,EAAE,mBAAmB,EAAE,MAAM,kBAAkB,CAAC"}

package/dist/providers/index.js

@@ -0,0 +1,8 @@
+"use strict";
+/**
+ * Token provider interface
+ *
+ * Provider implementations are in separate packages:
+ * - @mcp-abap-adt/auth-providers - XSUAA and BTP providers
+ */
+Object.defineProperty(exports, "__esModule", { value: true });

package/dist/stores/index.d.ts

@@ -1,8 +1,8 @@
 /**
- * Storage implementations for AuthBroker
+ * Storage interfaces for AuthBroker
+ *
+ * Store implementations are in separate packages:
+ * - @mcp-abap-adt/auth-stores-btp - BTP and ABAP stores
  */
-export { IServiceKeyStore, ISessionStore, ServiceKeyStore, SessionStore } from './interfaces';
-export { FileServiceKeyStore } from './FileServiceKeyStore';
-export { FileSessionStore } from './FileSessionStore';
-export { SafeSessionStore } from './SafeSessionStore';
+export type { IServiceKeyStore, ISessionStore, IAuthorizationConfig, IConnectionConfig } from './interfaces';
 //# sourceMappingURL=index.d.ts.map

package/dist/stores/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/stores/index.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,EAAE,gBAAgB,EAAE,aAAa,EAAE,eAAe,EAAE,YAAY,EAAE,MAAM,cAAc,CAAC;AAC9F,OAAO,EAAE,mBAAmB,EAAE,MAAM,uBAAuB,CAAC;AAC5D,OAAO,EAAE,gBAAgB,EAAE,MAAM,oBAAoB,CAAC;AACtD,OAAO,EAAE,gBAAgB,EAAE,MAAM,oBAAoB,CAAC"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/stores/index.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,YAAY,EAAE,gBAAgB,EAAE,aAAa,EAAE,oBAAoB,EAAE,iBAAiB,EAAE,MAAM,cAAc,CAAC"}

package/dist/stores/index.js

@@ -1,12 +1,8 @@
 "use strict";
 /**
- * Storage implementations for AuthBroker
+ * Storage interfaces for AuthBroker
+ *
+ * Store implementations are in separate packages:
+ * - @mcp-abap-adt/auth-stores-btp - BTP and ABAP stores
  */
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.SafeSessionStore = exports.FileSessionStore = exports.FileServiceKeyStore = void 0;
-var FileServiceKeyStore_1 = require("./FileServiceKeyStore");
-Object.defineProperty(exports, "FileServiceKeyStore", { enumerable: true, get: function () { return FileServiceKeyStore_1.FileServiceKeyStore; } });
-var FileSessionStore_1 = require("./FileSessionStore");
-Object.defineProperty(exports, "FileSessionStore", { enumerable: true, get: function () { return FileSessionStore_1.FileSessionStore; } });
-var SafeSessionStore_1 = require("./SafeSessionStore");
-Object.defineProperty(exports, "SafeSessionStore", { enumerable: true, get: function () { return SafeSessionStore_1.SafeSessionStore; } });

package/dist/stores/interfaces.d.ts

@@ -1,51 +1,117 @@
 /**
  * Storage interfaces for AuthBroker
  *
- * These interfaces allow consumers to provide custom storage implementations
- * for service keys and session data (tokens, configuration).
+ * All interfaces are defined here. Types (type aliases) are in types.ts.
  */
-import { ServiceKey, EnvConfig } from '../types';
+import type { IConfig } from '../types';
+/**
+ * Authorization configuration - values needed for obtaining and refreshing tokens
+ * Returned by stores with actual values (not file paths)
+ */
+export interface IAuthorizationConfig {
+    /** UAA URL for token refresh */
+    uaaUrl: string;
+    /** UAA client ID */
+    uaaClientId: string;
+    /** UAA client secret */
+    uaaClientSecret: string;
+    /** Refresh token for token renewal (optional) */
+    refreshToken?: string;
+}
+/**
+ * Connection configuration - values needed for connecting to services
+ * Returned by stores with actual values (not file paths)
+ */
+export interface IConnectionConfig {
+    /** Service URL (SAP/ABAP/MCP URL) - undefined for XSUAA if not provided */
+    serviceUrl?: string;
+    /** Authorization token (JWT token) */
+    authorizationToken: string;
+    /** SAP client number (optional, for ABAP/BTP) */
+    sapClient?: string;
+    /** Language (optional, for ABAP/BTP) */
+    language?: string;
+}
 /**
  * Interface for storing and retrieving service keys
  *
- * Service keys contain UAA credentials and SAP URL for a destination.
- * Default implementation: FileServiceKeyStore (reads from {destination}.json files)
+ * Service keys contain UAA credentials and connection URLs.
  */
 export interface IServiceKeyStore {
     /**
-     * Get service key for destination
+     * Get raw service key for destination
+     * @param destination Destination name (e.g., "TRIAL")
+     * @returns Service key object (implementation-specific) or null if not found
+     */
+    getServiceKey(destination: string): Promise<IConfig | null>;
+    /**
+     * Get authorization configuration from service key
+     * Returns values needed for obtaining and refreshing tokens
+     * @param destination Destination name (e.g., "TRIAL")
+     * @returns IAuthorizationConfig with actual values or null if not found
+     */
+    getAuthorizationConfig(destination: string): Promise<IAuthorizationConfig | null>;
+    /**
+     * Get connection configuration from service key
+     * Returns values needed for connecting to services
      * @param destination Destination name (e.g., "TRIAL")
-     * @returns ServiceKey object or null if not found
+     * @returns IConnectionConfig with actual values or null if not found
      */
-    getServiceKey(destination: string): Promise<ServiceKey | null>;
+    getConnectionConfig(destination: string): Promise<IConnectionConfig | null>;
 }
 /**
- * Interface for storing and retrieving session data (tokens, configuration)
+ * Interface for session stores - stores and retrieves session data
  *
- * Session data contains JWT tokens, refresh tokens, UAA config, and SAP URL.
- * Default implementation: FileSessionStore (reads/writes {destination}.env files)
+ * Session stores handle loading, saving, and managing session data (tokens, configuration).
  */
 export interface ISessionStore {
     /**
      * Load session configuration for destination
-     * @param destination Destination name (e.g., "TRIAL")
-     * @returns EnvConfig object or null if not found
+     * Returns optional composition of IAuthorizationConfig and IConnectionConfig
+     * Can contain either authorization config, or connection config, or both
+     * @param destination Destination name (e.g., "TRIAL" or "mcp")
+     * @returns IConfig with actual values or null if not found
      */
-    loadSession(destination: string): Promise<EnvConfig | null>;
+    loadSession(destination: string): Promise<IConfig | null>;
     /**
      * Save session configuration for destination
-     * @param destination Destination name (e.g., "TRIAL")
-     * @param config Session configuration to save
+     * Accepts IConfig (optional composition) or internal representation (for backward compatibility)
+     * @param destination Destination name (e.g., "TRIAL" or "mcp")
+     * @param config IConfig or internal session configuration to save
      */
-    saveSession(destination: string, config: EnvConfig): Promise<void>;
+    saveSession(destination: string, config: IConfig | unknown): Promise<void>;
     /**
      * Delete session for destination (optional)
-     * @param destination Destination name (e.g., "TRIAL")
+     * @param destination Destination name (e.g., "TRIAL" or "mcp")
      */
     deleteSession?(destination: string): Promise<void>;
+    /**
+     * Get authorization configuration with actual values (not file paths)
+     * Returns values needed for obtaining and refreshing tokens
+     * @param destination Destination name (e.g., "TRIAL" or "mcp")
+     * @returns IAuthorizationConfig with actual values or null if not found
+     */
+    getAuthorizationConfig(destination: string): Promise<IAuthorizationConfig | null>;
+    /**
+     * Get connection configuration with actual values (not file paths)
+     * Returns values needed for connecting to services
+     * @param destination Destination name (e.g., "TRIAL" or "mcp")
+     * @returns IConnectionConfig with actual values or null if not found
+     */
+    getConnectionConfig(destination: string): Promise<IConnectionConfig | null>;
+    /**
+     * Set authorization configuration
+     * Updates values needed for obtaining and refreshing tokens
+     * @param destination Destination name (e.g., "TRIAL" or "mcp")
+     * @param config IAuthorizationConfig with values to set
+     */
+    setAuthorizationConfig(destination: string, config: IAuthorizationConfig): Promise<void>;
+    /**
+     * Set connection configuration
+     * Updates values needed for connecting to services
+     * @param destination Destination name (e.g., "TRIAL" or "mcp")
+     * @param config IConnectionConfig with values to set
+     */
+    setConnectionConfig(destination: string, config: IConnectionConfig): Promise<void>;
 }
-/** @deprecated Use IServiceKeyStore instead */
-export type ServiceKeyStore = IServiceKeyStore;
-/** @deprecated Use ISessionStore instead */
-export type SessionStore = ISessionStore;
 //# sourceMappingURL=interfaces.d.ts.map

package/dist/stores/interfaces.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"interfaces.d.ts","sourceRoot":"","sources":["../../src/stores/interfaces.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,EAAE,UAAU,EAAE,SAAS,EAAE,MAAM,UAAU,CAAC;AAEjD;;;;;GAKG;AACH,MAAM,WAAW,gBAAgB;IAC/B;;;;OAIG;IACH,aAAa,CAAC,WAAW,EAAE,MAAM,GAAG,OAAO,CAAC,UAAU,GAAG,IAAI,CAAC,CAAC;CAChE;AAED;;;;;GAKG;AACH,MAAM,WAAW,aAAa;IAC5B;;;;OAIG;IACH,WAAW,CAAC,WAAW,EAAE,MAAM,GAAG,OAAO,CAAC,SAAS,GAAG,IAAI,CAAC,CAAC;IAE5D;;;;OAIG;IACH,WAAW,CAAC,WAAW,EAAE,MAAM,EAAE,MAAM,EAAE,SAAS,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;IAEnE;;;OAGG;IACH,aAAa,CAAC,CAAC,WAAW,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;CACpD;AAGD,+CAA+C;AAC/C,MAAM,MAAM,eAAe,GAAG,gBAAgB,CAAC;AAE/C,4CAA4C;AAC5C,MAAM,MAAM,YAAY,GAAG,aAAa,CAAC"}
+{"version":3,"file":"interfaces.d.ts","sourceRoot":"","sources":["../../src/stores/interfaces.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,UAAU,CAAC;AAExC;;;GAGG;AACH,MAAM,WAAW,oBAAoB;IACnC,gCAAgC;IAChC,MAAM,EAAE,MAAM,CAAC;IACf,oBAAoB;IACpB,WAAW,EAAE,MAAM,CAAC;IACpB,wBAAwB;IACxB,eAAe,EAAE,MAAM,CAAC;IACxB,iDAAiD;IACjD,YAAY,CAAC,EAAE,MAAM,CAAC;CACvB;AAED;;;GAGG;AACH,MAAM,WAAW,iBAAiB;IAChC,2EAA2E;IAC3E,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,sCAAsC;IACtC,kBAAkB,EAAE,MAAM,CAAC;IAC3B,iDAAiD;IACjD,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,wCAAwC;IACxC,QAAQ,CAAC,EAAE,MAAM,CAAC;CACnB;AAED;;;;GAIG;AACH,MAAM,WAAW,gBAAgB;IAC/B;;;;OAIG;IACH,aAAa,CAAC,WAAW,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,GAAG,IAAI,CAAC,CAAC;IAE5D;;;;;OAKG;IACH,sBAAsB,CAAC,WAAW,EAAE,MAAM,GAAG,OAAO,CAAC,oBAAoB,GAAG,IAAI,CAAC,CAAC;IAElF;;;;;OAKG;IACH,mBAAmB,CAAC,WAAW,EAAE,MAAM,GAAG,OAAO,CAAC,iBAAiB,GAAG,IAAI,CAAC,CAAC;CAC7E;AAED;;;;GAIG;AACH,MAAM,WAAW,aAAa;IAC5B;;;;;;OAMG;IACH,WAAW,CAAC,WAAW,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,GAAG,IAAI,CAAC,CAAC;IAE1D;;;;;OAKG;IACH,WAAW,CAAC,WAAW,EAAE,MAAM,EAAE,MAAM,EAAE,OAAO,GAAG,OAAO,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;IAE3E;;;OAGG;IACH,aAAa,CAAC,CAAC,WAAW,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;IAEnD;;;;;OAKG;IACH,sBAAsB,CAAC,WAAW,EAAE,MAAM,GAAG,OAAO,CAAC,oBAAoB,GAAG,IAAI,CAAC,CAAC;IAElF;;;;;OAKG;IACH,mBAAmB,CAAC,WAAW,EAAE,MAAM,GAAG,OAAO,CAAC,iBAAiB,GAAG,IAAI,CAAC,CAAC;IAE5E;;;;;OAKG;IACH,sBAAsB,CAAC,WAAW,EAAE,MAAM,EAAE,MAAM,EAAE,oBAAoB,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;IAEzF;;;;;OAKG;IACH,mBAAmB,CAAC,WAAW,EAAE,MAAM,EAAE,MAAM,EAAE,iBAAiB,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;CACpF"}

package/dist/stores/interfaces.js

@@ -2,7 +2,6 @@
 /**
  * Storage interfaces for AuthBroker
  *
- * These interfaces allow consumers to provide custom storage implementations
- * for service keys and session data (tokens, configuration).
+ * All interfaces are defined here. Types (type aliases) are in types.ts.
  */
 Object.defineProperty(exports, "__esModule", { value: true });

package/dist/types.d.ts

@@ -1,37 +1,13 @@
 /**
  * Type definitions for auth-broker package
+ *
+ * Type aliases (type) are defined here. Interfaces are in stores/interfaces.ts.
  */
+import type { IAuthorizationConfig, IConnectionConfig } from './stores/interfaces';
 /**
- * Environment configuration loaded from .env file
+ * Configuration - optional composition of authorization and connection configuration
+ * Can contain either authorization config, or connection config, or both
  */
-export interface EnvConfig {
-    sapUrl: string;
-    sapClient?: string;
-    jwtToken: string;
-    refreshToken?: string;
-    uaaUrl?: string;
-    uaaClientId?: string;
-    uaaClientSecret?: string;
-    language?: string;
-}
-/**
- * Service key structure from JSON file
- */
-export interface ServiceKey {
-    url?: string;
-    abap?: {
-        url?: string;
-        client?: string;
-        language?: string;
-    };
-    sap_url?: string;
-    client?: string;
-    sap_client?: string;
-    language?: string;
-    uaa: {
-        url: string;
-        clientid: string;
-        clientsecret: string;
-    };
-}
+export type IConfig = Partial<IAuthorizationConfig> & Partial<IConnectionConfig>;
+export type { IAuthorizationConfig, IConnectionConfig, IServiceKeyStore, ISessionStore, } from './stores/interfaces';
 //# sourceMappingURL=types.d.ts.map

package/dist/types.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH;;GAEG;AACH,MAAM,WAAW,SAAS;IACxB,MAAM,EAAE,MAAM,CAAC;IACf,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,QAAQ,EAAE,MAAM,CAAC;IACjB,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,eAAe,CAAC,EAAE,MAAM,CAAC;IACzB,QAAQ,CAAC,EAAE,MAAM,CAAC;CACnB;AAED;;GAEG;AACH,MAAM,WAAW,UAAU;IACzB,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,IAAI,CAAC,EAAE;QACL,GAAG,CAAC,EAAE,MAAM,CAAC;QACb,MAAM,CAAC,EAAE,MAAM,CAAC;QAChB,QAAQ,CAAC,EAAE,MAAM,CAAC;KACnB,CAAC;IACF,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,GAAG,EAAE;QACH,GAAG,EAAE,MAAM,CAAC;QACZ,QAAQ,EAAE,MAAM,CAAC;QACjB,YAAY,EAAE,MAAM,CAAC;KACtB,CAAC;CACH"}
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,KAAK,EAAE,oBAAoB,EAAE,iBAAiB,EAAE,MAAM,qBAAqB,CAAC;AAEnF;;;GAGG;AACH,MAAM,MAAM,OAAO,GAAG,OAAO,CAAC,oBAAoB,CAAC,GAAG,OAAO,CAAC,iBAAiB,CAAC,CAAC;AAGjF,YAAY,EACV,oBAAoB,EACpB,iBAAiB,EACjB,gBAAgB,EAChB,aAAa,GACd,MAAM,qBAAqB,CAAC"}

package/dist/types.js

@@ -1,5 +1,7 @@
 "use strict";
 /**
  * Type definitions for auth-broker package
+ *
+ * Type aliases (type) are defined here. Interfaces are in stores/interfaces.ts.
  */
 Object.defineProperty(exports, "__esModule", { value: true });

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@mcp-abap-adt/auth-broker",
-  "version": "0.1.5",
+  "version": "0.1.6",
   "description": "JWT authentication broker for MCP ABAP ADT - manages tokens based on destination headers",
   "main": "dist/index.js",
   "types": "dist/index.d.ts",
@@ -41,24 +41,31 @@
     "build:fast": "npx tsc -p tsconfig.json",
     "test": "NODE_OPTIONS=--experimental-vm-modules jest",
     "test:check": "npx tsc --noEmit",
-    "prepublishOnly": "npm run build"
+    "prepublishOnly": "npm run build",
+    "generate-env": "tsx bin/generate-env-from-service-key.ts"
+  },
+  "bin": {
+    "generate-env-from-service-key": "./bin/generate-env-from-service-key.ts"
   },
   "engines": {
     "node": ">=18.0.0"
   },
   "dependencies": {
     "@mcp-abap-adt/connection": "^0.1.13",
-    "axios": "^1.11.0",
-    "dotenv": "^17.2.1",
-    "express": "^5.1.0",
-    "open": "^11.0.0"
+    "@mcp-abap-adt/logger": "^0.1.0"
   },
   "devDependencies": {
+    "@mcp-abap-adt/auth-providers": "^0.1.0",
+    "@mcp-abap-adt/auth-stores-btp": "^0.1.0",
+    "@mcp-abap-adt/auth-stores-xsuaa": "^0.1.0",
     "@types/express": "^5.0.5",
     "@types/jest": "^30.0.0",
+    "@types/js-yaml": "^4.0.9",
     "@types/node": "^24.2.1",
     "jest": "^30.2.0",
+    "js-yaml": "^4.1.1",
     "ts-jest": "^29.2.5",
+    "tsx": "^4.21.0",
     "typescript": "^5.9.2"
   }
 }

package/dist/__tests__/testHelpers.d.ts

@@ -1,44 +0,0 @@
-/**
- * Common test helpers for AuthBroker tests
- */
-import { AuthBroker } from '../AuthBroker';
-export declare const TEST_DESTINATIONS_PATH: string;
-export interface TestBrokers {
-    tempDir: string;
-    broker: AuthBroker;
-    testDestinationsBroker: AuthBroker;
-}
-/**
- * Setup test brokers for a test suite
- */
-export declare function setupTestBrokers(testName: string): TestBrokers;
-/**
- * Cleanup test brokers
- */
-export declare function cleanupTestBrokers(brokers: TestBrokers): void;
-/**
- * Check if NO_EXISTS.json exists and skip test if it does
- */
-export declare function checkNoExistsFile(): boolean;
-/**
- * Prepare Test 2: Remove TRIAL.env if exists, check for TRIAL.json
- */
-export declare function prepareTest2(): {
-    envFile: string;
-    serviceKeyPath: string;
-    shouldSkip: boolean;
-};
-/**
- * Prepare Test 3: Check for TRIAL.json and TRIAL.env
- */
-export declare function prepareTest3(): {
-    envFile: string;
-    serviceKeyPath: string;
-    sapUrl: string;
-    shouldSkip: boolean;
-};
-/**
- * Verify .env file contains required tokens
- */
-export declare function verifyEnvFile(envFile: string, requireRefreshToken?: boolean): void;
-//# sourceMappingURL=testHelpers.d.ts.map

package/dist/__tests__/testHelpers.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"testHelpers.d.ts","sourceRoot":"","sources":["../../src/__tests__/testHelpers.ts"],"names":[],"mappings":"AAAA;;GAEG;AAKH,OAAO,EAAE,UAAU,EAAE,MAAM,eAAe,CAAC;AAK3C,eAAO,MAAM,sBAAsB,QAAsF,CAAC;AAE1H,MAAM,WAAW,WAAW;IAC1B,OAAO,EAAE,MAAM,CAAC;IAChB,MAAM,EAAE,UAAU,CAAC;IACnB,sBAAsB,EAAE,UAAU,CAAC;CACpC;AAED;;GAEG;AACH,wBAAgB,gBAAgB,CAAC,QAAQ,EAAE,MAAM,GAAG,WAAW,CAY9D;AAED;;GAEG;AACH,wBAAgB,kBAAkB,CAAC,OAAO,EAAE,WAAW,GAAG,IAAI,CAM7D;AAED;;GAEG;AACH,wBAAgB,iBAAiB,IAAI,OAAO,CAM3C;AAED;;GAEG;AACH,wBAAgB,YAAY,IAAI;IAAE,OAAO,EAAE,MAAM,CAAC;IAAC,cAAc,EAAE,MAAM,CAAC;IAAC,UAAU,EAAE,OAAO,CAAA;CAAE,CAe/F;AAED;;GAEG;AACH,wBAAgB,YAAY,IAAI;IAAE,OAAO,EAAE,MAAM,CAAC;IAAC,cAAc,EAAE,MAAM,CAAC;IAAC,MAAM,EAAE,MAAM,CAAC;IAAC,UAAU,EAAE,OAAO,CAAA;CAAE,CAsB/G;AAED;;GAEG;AACH,wBAAgB,aAAa,CAAC,OAAO,EAAE,MAAM,EAAE,mBAAmB,GAAE,OAAe,GAAG,IAAI,CAOzF"}

package/dist/__tests__/testHelpers.js

@@ -1,136 +0,0 @@
-"use strict";
-/**
- * Common test helpers for AuthBroker tests
- */
-var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    var desc = Object.getOwnPropertyDescriptor(m, k);
-    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
-      desc = { enumerable: true, get: function() { return m[k]; } };
-    }
-    Object.defineProperty(o, k2, desc);
-}) : (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    o[k2] = m[k];
-}));
-var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
-    Object.defineProperty(o, "default", { enumerable: true, value: v });
-}) : function(o, v) {
-    o["default"] = v;
-});
-var __importStar = (this && this.__importStar) || (function () {
-    var ownKeys = function(o) {
-        ownKeys = Object.getOwnPropertyNames || function (o) {
-            var ar = [];
-            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
-            return ar;
-        };
-        return ownKeys(o);
-    };
-    return function (mod) {
-        if (mod && mod.__esModule) return mod;
-        var result = {};
-        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
-        __setModuleDefault(result, mod);
-        return result;
-    };
-})();
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.TEST_DESTINATIONS_PATH = void 0;
-exports.setupTestBrokers = setupTestBrokers;
-exports.cleanupTestBrokers = cleanupTestBrokers;
-exports.checkNoExistsFile = checkNoExistsFile;
-exports.prepareTest2 = prepareTest2;
-exports.prepareTest3 = prepareTest3;
-exports.verifyEnvFile = verifyEnvFile;
-const path = __importStar(require("path"));
-const os = __importStar(require("os"));
-const fs = __importStar(require("fs"));
-const AuthBroker_1 = require("../AuthBroker");
-const logger_1 = require("../logger");
-const stores_1 = require("../stores");
-// Fixed test destinations path - user can place service keys here
-exports.TEST_DESTINATIONS_PATH = process.env.TEST_DESTINATIONS_PATH || path.join(process.cwd(), 'test-destinations');
-/**
- * Setup test brokers for a test suite
- */
-function setupTestBrokers(testName) {
-    const tempDir = fs.mkdtempSync(path.join(os.tmpdir(), `auth-broker-${testName}-test-`));
-    const broker = new AuthBroker_1.AuthBroker({
-        serviceKeyStore: new stores_1.FileServiceKeyStore([tempDir]),
-        sessionStore: new stores_1.FileSessionStore([tempDir]),
-    }, undefined, logger_1.testLogger);
-    const testDestinationsBroker = new AuthBroker_1.AuthBroker({
-        serviceKeyStore: new stores_1.FileServiceKeyStore([exports.TEST_DESTINATIONS_PATH]),
-        sessionStore: new stores_1.FileSessionStore([exports.TEST_DESTINATIONS_PATH]),
-    }, undefined, logger_1.testLogger);
-    return { tempDir, broker, testDestinationsBroker };
-}
-/**
- * Cleanup test brokers
- */
-function cleanupTestBrokers(brokers) {
-    if (brokers.tempDir && fs.existsSync(brokers.tempDir)) {
-        fs.rmSync(brokers.tempDir, { recursive: true, force: true });
-    }
-    brokers.broker.clearAllCache();
-    brokers.testDestinationsBroker.clearAllCache();
-}
-/**
- * Check if NO_EXISTS.json exists and skip test if it does
- */
-function checkNoExistsFile() {
-    const noExistsJson = path.join(exports.TEST_DESTINATIONS_PATH, 'NO_EXISTS.json');
-    if (fs.existsSync(noExistsJson)) {
-        return false;
-    }
-    return true;
-}
-/**
- * Prepare Test 2: Remove TRIAL.env if exists, check for TRIAL.json
- */
-function prepareTest2() {
-    const envFile = path.join(exports.TEST_DESTINATIONS_PATH, 'TRIAL.env');
-    const serviceKeyPath = path.join(exports.TEST_DESTINATIONS_PATH, 'TRIAL.json');
-    // Remove TRIAL.env if it exists before Test 2
-    if (fs.existsSync(envFile)) {
-        fs.unlinkSync(envFile);
-    }
-    // Check if service key exists
-    if (!fs.existsSync(serviceKeyPath)) {
-        return { envFile, serviceKeyPath, shouldSkip: true };
-    }
-    return { envFile, serviceKeyPath, shouldSkip: false };
-}
-/**
- * Prepare Test 3: Check for TRIAL.json and TRIAL.env
- */
-function prepareTest3() {
-    const serviceKeyPath = path.join(exports.TEST_DESTINATIONS_PATH, 'TRIAL.json');
-    const envFile = path.join(exports.TEST_DESTINATIONS_PATH, 'TRIAL.env');
-    // Check if service key exists
-    if (!fs.existsSync(serviceKeyPath)) {
-        return { envFile, serviceKeyPath, sapUrl: '', shouldSkip: true };
-    }
-    // Test 3 requires TRIAL.env file to exist
-    if (!fs.existsSync(envFile)) {
-        return { envFile, serviceKeyPath, sapUrl: '', shouldSkip: true };
-    }
-    const serviceKey = JSON.parse(fs.readFileSync(serviceKeyPath, 'utf8'));
-    const envContent = fs.readFileSync(envFile, 'utf8');
-    // Extract SAP_URL from .env or service key
-    const urlMatch = envContent.match(/SAP_URL=(.+)/);
-    const sapUrl = urlMatch ? urlMatch[1].trim() : (serviceKey.url || serviceKey.abap?.url || serviceKey.sap_url);
-    return { envFile, serviceKeyPath, sapUrl, shouldSkip: false };
-}
-/**
- * Verify .env file contains required tokens
- */
-function verifyEnvFile(envFile, requireRefreshToken = false) {
-    expect(fs.existsSync(envFile)).toBe(true);
-    const envContent = fs.readFileSync(envFile, 'utf8');
-    expect(envContent).toContain('SAP_JWT_TOKEN=');
-    if (requireRefreshToken) {
-        expect(envContent).toContain('SAP_REFRESH_TOKEN=');
-    }
-}

package/dist/browserAuth.d.ts

@@ -1,17 +0,0 @@
-/**
- * Browser authentication - OAuth2 flow for obtaining tokens
- */
-import { ServiceKey } from './types';
-import { Logger } from './logger';
-/**
- * Start browser authentication flow
- * @param serviceKey Service key with UAA configuration
- * @param browser Browser name (chrome, edge, firefox, system, none)
- * @param logger Optional logger instance. If not provided, uses default logger.
- * @returns Promise that resolves to tokens
- */
-export declare function startBrowserAuth(serviceKey: ServiceKey, browser?: string, logger?: Logger): Promise<{
-    accessToken: string;
-    refreshToken?: string;
-}>;
-//# sourceMappingURL=browserAuth.d.ts.map

package/dist/browserAuth.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"browserAuth.d.ts","sourceRoot":"","sources":["../src/browserAuth.ts"],"names":[],"mappings":"AAAA;;GAEG;AAOH,OAAO,EAAE,UAAU,EAAE,MAAM,SAAS,CAAC;AACrC,OAAO,EAAE,MAAM,EAAiB,MAAM,UAAU,CAAC;AA4DjD;;;;;;GAMG;AACH,wBAAsB,gBAAgB,CACpC,UAAU,EAAE,UAAU,EACtB,OAAO,GAAE,MAAiB,EAC1B,MAAM,CAAC,EAAE,MAAM,GACd,OAAO,CAAC;IAAE,WAAW,EAAE,MAAM,CAAC;IAAC,YAAY,CAAC,EAAE,MAAM,CAAA;CAAE,CAAC,CAyMzD"}