@mcp-abap-adt/auth-broker 0.2.8 → 0.2.10

package/CHANGELOG.md

@@ -11,6 +11,48 @@ Thank you to all contributors! See [CONTRIBUTORS.md](CONTRIBUTORS.md) for the co
 
 ## [Unreleased]
 
+## [0.2.10] - 2025-12-22
+
+### Changed
+- **Biome Migration**: Migrated from ESLint/Prettier to Biome for linting and formatting
+  - Added `@biomejs/biome` as dev dependency
+  - Added `lint`, `lint:check`, and `format` scripts to package.json
+  - Integrated Biome check into build process (`npx biome check src --diagnostic-level=error`)
+  - Replaced `unknown` with `any` in catch blocks (Biome requirement)
+  - Added `ErrorWithCode` type for better error type safety
+  - Refactored `getToken()` method into smaller private methods for better maintainability:
+    - `loadSessionData()` - loads session connection and authorization configs
+    - `getServiceUrl()` - gets serviceUrl from session or service key store
+    - `getUaaCredentials()` - gets UAA credentials from session or service key
+    - `saveTokenToSession()` - saves token and config to session
+    - `initializeSessionFromServiceKey()` - Step 0: initializes session from service key
+    - `validateExistingToken()` - Step 1: validates existing token
+    - `refreshTokenFromSession()` - Step 2a: refreshes token from session
+    - `refreshTokenFromServiceKey()` - Step 2b: refreshes token from service key
+
+### Fixed
+- Fixed type safety issues by replacing `unknown` with `any` in error handling
+- Removed unnecessary type assertions by using `ErrorWithCode` type
+- Improved code organization and readability through method extraction
+
+## [0.2.9] - 2025-12-21
+
+### Added
+- **`createTokenRefresher()` Method**: New factory method to create `ITokenRefresher` for dependency injection
+  - Returns `ITokenRefresher` implementation for a specific destination
+  - `getToken()` - returns cached token if valid, otherwise refreshes
+  - `refreshToken()` - forces token refresh and saves to session store
+  - Designed to be injected into `JwtAbapConnection` via DI
+  - Enables connections to handle 401/403 transparently without knowing auth internals
+
+### Changed
+- **Dependencies**: Updated `@mcp-abap-adt/interfaces` to `^0.2.5`
+  - New `ITokenRefresher` interface for token management DI
+  - Simplified `IAbapConnection` interface (consumer-facing methods only)
+
+### Exports
+- Re-export `ITokenRefresher` type from `@mcp-abap-adt/interfaces` for convenience
+
 ## [0.2.8] - 2025-12-21
 
 ### Changed

package/README.md

@@ -110,6 +110,38 @@ const token = await broker.getToken('TRIAL');
 const newToken = await broker.refreshToken('TRIAL');
 ```
 
+### Creating Token Refresher for DI
+
+The `createTokenRefresher()` method creates an `ITokenRefresher` implementation that can be injected into connections. This enables connections to handle token refresh transparently without knowing about authentication internals.
+
+```typescript
+import { AuthBroker } from '@mcp-abap-adt/auth-broker';
+import { JwtAbapConnection } from '@mcp-abap-adt/connection';
+
+// Create broker
+const broker = new AuthBroker({
+  sessionStore: mySessionStore,
+  serviceKeyStore: myServiceKeyStore,
+  tokenProvider: myTokenProvider,
+});
+
+// Create token refresher for specific destination
+const tokenRefresher = broker.createTokenRefresher('TRIAL');
+
+// Inject into connection (connection can handle 401/403 automatically)
+const connection = new JwtAbapConnection(config, tokenRefresher);
+
+// Token refresher methods:
+// - getToken(): Returns cached token if valid, otherwise refreshes
+// - refreshToken(): Forces token refresh and saves to session store
+```
+
+**Benefits of Token Refresher:**
+- 🔄 **Transparent Refresh**: Connection handles 401/403 errors automatically
+- 🧩 **Dependency Injection**: Clean separation of concerns
+- 💾 **Automatic Persistence**: Tokens saved to session store after refresh
+- 🎯 **Destination-Scoped**: Each refresher is bound to specific destination
+
 ## Configuration
 
 ### Environment Variables

package/dist/AuthBroker.d.ts

@@ -1,9 +1,9 @@
 /**
  * Main AuthBroker class for managing JWT tokens based on destinations
  */
-import { ILogger } from '@mcp-abap-adt/interfaces';
-import { IServiceKeyStore, ISessionStore, IAuthorizationConfig, IConnectionConfig } from './stores/interfaces';
-import { ITokenProvider } from './providers';
+import { type ILogger, type ITokenRefresher } from '@mcp-abap-adt/interfaces';
+import type { ITokenProvider } from './providers';
+import type { IAuthorizationConfig, IConnectionConfig, IServiceKeyStore, ISessionStore } from './stores/interfaces';
 /**
  * Configuration object for AuthBroker constructor
  */
@@ -44,6 +44,38 @@ export declare class AuthBroker {
      * @param logger Optional logger instance implementing ILogger interface. If not provided, uses no-op logger.
      */
     constructor(config: AuthBrokerConfig, browser?: string, logger?: ILogger);
+    /**
+     * Load session data (connection and authorization configs)
+     */
+    private loadSessionData;
+    /**
+     * Get serviceUrl from session or service key store
+     */
+    private getServiceUrl;
+    /**
+     * Get UAA credentials from session or service key
+     */
+    private getUaaCredentials;
+    /**
+     * Save token and config to session
+     */
+    private saveTokenToSession;
+    /**
+     * Initialize session from service key (Step 0)
+     */
+    private initializeSessionFromServiceKey;
+    /**
+     * Validate existing token (Step 1)
+     */
+    private validateExistingToken;
+    /**
+     * Refresh token from session (Step 2a)
+     */
+    private refreshTokenFromSession;
+    /**
+     * Refresh token from service key (Step 2b)
+     */
+    private refreshTokenFromServiceKey;
     /**
      * Get authentication token for destination.
      * Uses tokenProvider for all authentication operations (browser-based authorization).
@@ -104,5 +136,23 @@ export declare class AuthBroker {
      * @returns Promise that resolves to IConnectionConfig or null if not found
      */
     getConnectionConfig(destination: string): Promise<IConnectionConfig | null>;
+    /**
+     * Create a token refresher for a specific destination.
+     *
+     * The token refresher is designed to be injected into JwtAbapConnection via DI,
+     * allowing the connection to handle token refresh transparently without knowing
+     * about authentication internals.
+     *
+     * **Usage:**
+     * ```typescript
+     * const broker = new AuthBroker(config);
+     * const tokenRefresher = broker.createTokenRefresher('TRIAL');
+     * const connection = new JwtAbapConnection(config, tokenRefresher);
+     * ```
+     *
+     * @param destination Destination name (e.g., "TRIAL")
+     * @returns ITokenRefresher implementation for the given destination
+     */
+    createTokenRefresher(destination: string): ITokenRefresher;
 }
 //# sourceMappingURL=AuthBroker.d.ts.map

package/dist/AuthBroker.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"AuthBroker.d.ts","sourceRoot":"","sources":["../src/AuthBroker.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,EAAE,OAAO,EAA8C,MAAM,0BAA0B,CAAC;AAC/F,OAAO,EAAE,gBAAgB,EAAE,aAAa,EAAE,oBAAoB,EAAE,iBAAiB,EAAE,MAAM,qBAAqB,CAAC;AAC/G,OAAO,EAAE,cAAc,EAAE,MAAM,aAAa,CAAC;AAa7C;;GAEG;AACH,MAAM,WAAW,gBAAgB;IAC/B,mEAAmE;IACnE,YAAY,EAAE,aAAa,CAAC;IAC5B,uEAAuE;IACvE,eAAe,CAAC,EAAE,gBAAgB,CAAC;IACnC,4IAA4I;IAC5I,aAAa,EAAE,cAAc,CAAC;IAC9B;;;;OAIG;IACH,gBAAgB,CAAC,EAAE,OAAO,CAAC;CAC5B;AAED;;GAEG;AACH,qBAAa,UAAU;IACrB,OAAO,CAAC,OAAO,CAAqB;IACpC,OAAO,CAAC,MAAM,CAAU;IACxB,OAAO,CAAC,eAAe,CAA+B;IACtD,OAAO,CAAC,YAAY,CAAgB;IACpC,OAAO,CAAC,aAAa,CAAiB;IACtC,OAAO,CAAC,gBAAgB,CAAU;IAElC;;;;;;;;;;;OAWG;gBAED,MAAM,EAAE,gBAAgB,EACxB,OAAO,CAAC,EAAE,MAAM,EAChB,MAAM,CAAC,EAAE,OAAO;IAuElB;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;OAuCG;IACG,QAAQ,CAAC,WAAW,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAgYpD;;;;;OAKG;IACG,YAAY,CAAC,WAAW,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAOxD;;;;OAIG;IACG,sBAAsB,CAAC,WAAW,EAAE,MAAM,GAAG,OAAO,CAAC,oBAAoB,GAAG,IAAI,CAAC;IA4CvF;;;;OAIG;IACG,mBAAmB,CAAC,WAAW,EAAE,MAAM,GAAG,OAAO,CAAC,iBAAiB,GAAG,IAAI,CAAC;CA0ClF"}
+{"version":3,"file":"AuthBroker.d.ts","sourceRoot":"","sources":["../src/AuthBroker.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,EACL,KAAK,OAAO,EACZ,KAAK,eAAe,EAErB,MAAM,0BAA0B,CAAC;AAClC,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,aAAa,CAAC;AAClD,OAAO,KAAK,EACV,oBAAoB,EACpB,iBAAiB,EACjB,gBAAgB,EAChB,aAAa,EACd,MAAM,qBAAqB,CAAC;AA4C7B;;GAEG;AACH,MAAM,WAAW,gBAAgB;IAC/B,mEAAmE;IACnE,YAAY,EAAE,aAAa,CAAC;IAC5B,uEAAuE;IACvE,eAAe,CAAC,EAAE,gBAAgB,CAAC;IACnC,4IAA4I;IAC5I,aAAa,EAAE,cAAc,CAAC;IAC9B;;;;OAIG;IACH,gBAAgB,CAAC,EAAE,OAAO,CAAC;CAC5B;AAED;;GAEG;AACH,qBAAa,UAAU;IACrB,OAAO,CAAC,OAAO,CAAqB;IACpC,OAAO,CAAC,MAAM,CAAU;IACxB,OAAO,CAAC,eAAe,CAA+B;IACtD,OAAO,CAAC,YAAY,CAAgB;IACpC,OAAO,CAAC,aAAa,CAAiB;IACtC,OAAO,CAAC,gBAAgB,CAAU;IAElC;;;;;;;;;;;OAWG;gBACS,MAAM,EAAE,gBAAgB,EAAE,OAAO,CAAC,EAAE,MAAM,EAAE,MAAM,CAAC,EAAE,OAAO;IAoFxE;;OAEG;YACW,eAAe;IA0D7B;;OAEG;YACW,aAAa;IAoD3B;;OAEG;YACW,iBAAiB;IA2D/B;;OAEG;YACW,kBAAkB;IAkChC;;OAEG;YACW,+BAA+B;IAyG7C;;OAEG;YACW,qBAAqB;IA8BnC;;OAEG;YACW,uBAAuB;IAwFrC;;OAEG;YACW,0BAA0B;IA8GxC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;OAuCG;IACG,QAAQ,CAAC,WAAW,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IA8GpD;;;;;OAKG;IACG,YAAY,CAAC,WAAW,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IASxD;;;;OAIG;IACG,sBAAsB,CAC1B,WAAW,EAAE,MAAM,GAClB,OAAO,CAAC,oBAAoB,GAAG,IAAI,CAAC;IAoEvC;;;;OAIG;IACG,mBAAmB,CACvB,WAAW,EAAE,MAAM,GAClB,OAAO,CAAC,iBAAiB,GAAG,IAAI,CAAC;IA8DpC;;;;;;;;;;;;;;;;OAgBG;IACH,oBAAoB,CAAC,WAAW,EAAE,MAAM,GAAG,eAAe;CAqB3D"}