npm - @mcp-abap-adt/connection - Versions diffs - 0.1.0 → 0.1.2 - Mend

@mcp-abap-adt/connection 0.1.0 → 0.1.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (2) hide show

package/README.md +362 -53
package/package.json +4 -9

package/README.md CHANGED Viewed

@@ -1,80 +1,389 @@
 # @mcp-abap-adt/connection
-ABAP connection layer for MCP ABAP ADT server.
+ABAP connection layer for MCP ABAP ADT server. Provides a unified interface for connecting to SAP ABAP systems via ADT (ABAP Development Tools) protocol, supporting both on-premise (Basic Auth) and cloud (JWT/OAuth2) authentication methods.
+## Key Features
+- 🔐 **Multiple Authentication Methods**:
+  - Basic Auth for on-premise SAP systems
+  - JWT/OAuth2 for SAP BTP ABAP Environment
+- 🔄 **Automatic JWT Token Refresh**:
+  - Detects expired tokens (401/403 errors)
+  - Automatically refreshes using OAuth2 refresh token
+  - Distinguishes between auth errors and permission errors
+  - No manual intervention required
+- 💾 **Stateful Sessions**:
+  - Persistent session management with CSRF tokens and cookies
+  - Custom storage backends (file system, database, Redis, etc.)
+  - Automatic session state save/load
+- 🏗️ **Clean Architecture**:
+  - Abstract base class for common HTTP/session logic
+  - Auth-type specific implementations (BaseAbapConnection, JwtAbapConnection)
+  - Proper separation of concerns - no JWT logic in base class
+- 📝 **Custom Logging**: Pluggable logger interface for integration with any logging system
+- 🛠️ **CLI Tool**: See [JWT Auth Tools](./docs/JWT_AUTH_TOOLS.md) for obtaining SAP BTP tokens
+- 📦 **TypeScript**: Full TypeScript support with type definitions included
+- ⚡ **Timeout Management**: Configurable timeouts for different operation types
+## Architecture
+The package uses a clean separation of concerns:
+- **`AbstractAbapConnection`** (abstract, internal only):
+  - Common HTTP request logic
+  - Session management (cookies, CSRF tokens)
+  - CSRF token fetching with retry
+  - Auth-agnostic - knows nothing about Basic or JWT
+- **`BaseAbapConnection`** (concrete, exported):
+  - Basic Authentication implementation
+  - Simple connect() - fetches CSRF token
+  - Suitable for on-premise SAP systems
+- **`JwtAbapConnection`** (concrete, exported):
+  - JWT/OAuth2 Authentication implementation
+  - Smart connect() - detects expired tokens and auto-refreshes
+  - Permission vs auth error detection
+  - Suitable for SAP BTP ABAP Environment
+## Documentation
+- 📦 **[Installation Guide](./docs/INSTALLATION.md)** - Setup and installation instructions
+- 📚 **[Usage Guide](./docs/USAGE.md)** - Detailed usage examples and API documentation
+- 🧪 **[Testing Guide](./docs/AUTO_REFRESH_TESTING.md)** - Auto-refresh testing and troubleshooting
+- 🔧 **[Session Storage](./docs/CUSTOM_SESSION_STORAGE.md)** - Custom session storage implementation
+- 🔁 **[Stateful Session Guide (Connection)](./docs/STATEFUL_SESSION_GUIDE.md)** - Cookies, CSRF tokens, and session storage responsibilities
+- 💡 **[Examples](./examples/)** - Working code examples
+## Features
+- 🔐 **Multiple Authentication Methods**: Basic Auth for on-premise systems, JWT/OAuth2 for SAP BTP ABAP Environment
+- 🔄 **Auto Token Refresh**: Automatic JWT token refresh when expired (for cloud systems)
+- 💾 **Stateful Sessions**: Support for persistent sessions with CSRF token and cookie management
+- 📝 **Custom Logging**: Pluggable logger interface for integration with any logging system
+- 🛠️ **CLI Tool**: Built-in authentication helper for SAP BTP service key authentication
+- 📦 **TypeScript**: Full TypeScript support with type definitions included
+- ⚡ **Timeout Management**: Configurable timeouts for different operation types
 ## Installation
-### From Git Repository
+```bash
+npm install @mcp-abap-adt/connection
+```
+For detailed installation instructions, see [Installation Guide](./docs/INSTALLATION.md).
+## Quick Start
+### Basic Usage (On-Premise)
+```typescript
+import { createAbapConnection, SapConfig } from "@mcp-abap-adt/connection";
+const config: SapConfig = {
+  url: "https://your-sap-system.com",
+  client: "100",
+  authType: "basic",
+  username: "your-username",
+  password: "your-password",
+};
+// Create a simple logger
+const logger = {
+  info: (msg: string, meta?: any) => console.log(msg, meta),
+  error: (msg: string, meta?: any) => console.error(msg, meta),
+  warn: (msg: string, meta?: any) => console.warn(msg, meta),
+  debug: (msg: string, meta?: any) => console.debug(msg, meta),
+};
+// Create connection
+const connection = createAbapConnection(config, logger);
+// Make ADT request
+const response = await connection.makeAdtRequest({
+  method: "GET",
+  url: "/sap/bc/adt/programs/programs/your-program",
+});
+```
+### Cloud Usage (JWT/OAuth2 with Auto-Refresh)
+```typescript
+import { createAbapConnection, SapConfig } from "@mcp-abap-adt/connection";
+// JWT configuration with refresh token for auto-refresh
+const config: SapConfig = {
+  url: "https://your-instance.abap.cloud.sap",
+  client: "100", // Optional
+  authType: "jwt",
+  jwtToken: "your-jwt-token-here", // Obtained via OAuth2 flow
+  // For auto-refresh support:
+  refreshToken: "your-refresh-token",
+  uaaUrl: "https://your-tenant.authentication.cert.eu10.hana.ondemand.com",
+  uaaClientId: "your-client-id",
+  uaaClientSecret: "your-client-secret",
+};
+const logger = {
+  info: (msg: string, meta?: any) => console.log(msg, meta),
+  error: (msg: string, meta?: any) => console.error(msg, meta),
+  warn: (msg: string, meta?: any) => console.warn(msg, meta),
+  debug: (msg: string, meta?: any) => console.debug(msg, meta),
+};
+const connection = createAbapConnection(config, logger);
+// Token will be automatically refreshed if expired during requests
+const response = await connection.makeAdtRequest({
+  method: "GET",
+  url: "/sap/bc/adt/programs/programs/your-program",
+});
+// How auto-refresh works:
+// 1. If JWT token expired → SAP returns 401/403
+// 2. Connection detects this is auth error (not permission error)
+// 3. Automatically calls refresh token endpoint
+// 4. Retries the request with new token
+// 5. User doesn't need to handle this manually
+```
+### Stateful Sessions
+For operations that require session state (e.g., object modifications), you can enable stateful sessions:
+```typescript
+import {
+  createAbapConnection,
+  ISessionStorage,
+  SessionState,
+} from "@mcp-abap-adt/connection";
+// Implement session storage (e.g., file system, database, memory)
+class FileSessionStorage implements ISessionStorage {
+  async save(sessionId: string, state: SessionState): Promise<void> {
+    // Save to file system
+    await fs.writeFile(
+      `sessions/${sessionId}.json`,
+      JSON.stringify(state, null, 2)
+    );
+  }
+  async load(sessionId: string): Promise<SessionState | null> {
+    // Load from file system
+    const data = await fs.readFile(`sessions/${sessionId}.json`, "utf-8");
+    return JSON.parse(data);
+  }
+  async delete(sessionId: string): Promise<void> {
+    // Delete from file system
+    await fs.unlink(`sessions/${sessionId}.json`);
+  }
+}
+const connection = createAbapConnection(config, logger);
+const sessionStorage = new FileSessionStorage();
+// Enable stateful session
+await connection.enableStatefulSession("my-session-id", sessionStorage);
+// Now CSRF tokens and cookies are automatically managed
+await connection.makeAdtRequest({
+  method: "POST",
+  url: "/sap/bc/adt/objects/domains",
+  data: { /* domain data */ },
+});
+```
+### Custom Logger
+```typescript
+import { ILogger } from "@mcp-abap-adt/connection";
+class MyLogger implements ILogger {
+  info(message: string, meta?: any): void {
+    // Your logging implementation
+  }
+  error(message: string, meta?: any): void {
+    // Your logging implementation
+  }
+  warn(message: string, meta?: any): void {
+    // Your logging implementation
+  }
+  debug(message: string, meta?: any): void {
+    // Your logging implementation
+  }
+  csrfToken(action: "fetch" | "retry" | "success" | "error", message: string, meta?: any): void {
+    // CSRF token specific logging
+  }
+  tlsConfig(rejectUnauthorized: boolean): void {
+    // TLS configuration logging
+  }
+}
+const logger = new MyLogger();
+const connection = createAbapConnection(config, logger);
+```
+## CLI Tool
+The package includes a CLI tool for authenticating with SAP BTP using service keys:
+### Installation Options
+- **Local project install**
+  ```bash
+  npm install @mcp-abap-adt/connection --save-dev
+  npx sap-abap-auth auth -k path/to/service-key.json
+  ```
+- **Global install**
+  ```bash
+  npm install -g @mcp-abap-adt/connection
+  sap-abap-auth auth -k path/to/service-key.json
+  ```
+- **On-demand (npx)**
+  ```bash
+  npx @mcp-abap-adt/connection sap-abap-auth auth -k path/to/service-key.json
+  ```
+### Usage
 ```bash
-# Clone this repository
-git clone https://github.com/fr0ster/mcp-abap-connection.git
-cd mcp-abap-connection
+# Show help
+sap-abap-auth --help
-# Install dependencies
-# If used as submodule in monorepo, use: npm run install:local
-# Otherwise, regular npm install works fine
-npm install
+# Authenticate with service key
+sap-abap-auth auth -k service-key.json
-# Build
-npm run build
+# Specify browser
+sap-abap-auth auth -k service-key.json --browser chrome
+# Custom output file
+sap-abap-auth auth -k service-key.json --output .env.production
 ```
-### From Tarball Archive
+### Options
+- `-k, --key <path>` - Path to service key JSON file (required)
+- `-b, --browser <name>` - Browser to open (chrome, edge, firefox, system, none)
+- `-o, --output <path>` - Path to output .env file (default: .env)
+- `-h, --help` - Show help message
+### Using via `npx` (without global install)
+If `@mcp-abap-adt/connection` is listed as a dependency in your project, you can invoke the CLI directly:
 ```bash
-# Generate archive (in package directory)
-npm run pack
-# Creates: mcp-abap-adt-connection-0.1.0.tgz
+npx sap-abap-auth auth -k service-key.json
+```
+This works even when you do not install the package globally. For one-off usage, you can also run:
-# Install from archive (in consuming project)
-npm install ./path/to/mcp-abap-adt-connection-0.1.0.tgz
+```bash
+npx @mcp-abap-adt/connection sap-abap-auth auth -k service-key.json
 ```
-Or in `package.json`:
-```json
-{
-  "dependencies": {
-    "@mcp-abap-adt/connection": "file:./archives/mcp-abap-adt-connection-0.1.0.tgz"
-  }
+This will download the package on demand and execute the CLI.
+## API Reference
+### Types
+#### `SapConfig`
+Configuration for SAP ABAP connection.
+```typescript
+type SapConfig = {
+  url: string;
+  client?: string;
+  authType: "basic" | "jwt";
+  // For basic auth
+  username?: string;
+  password?: string;
+  // For JWT auth
+  jwtToken?: string;
+};
+```
+#### `AbapConnection`
+Main interface for ABAP connections.
+```typescript
+interface AbapConnection {
+  makeAdtRequest(options: AbapRequestOptions): Promise<AxiosResponse>;
+  reset(): void;
+  enableStatefulSession(sessionId: string, storage: ISessionStorage): Promise<void>;
+  disableStatefulSession(): void;
+  getSessionMode(): "stateless" | "stateful";
 }
 ```
-**Note:** This package is completely self-contained and has no dependencies on other `@mcp-abap-adt/*` packages.
+#### `ILogger`
-## Usage
+Logger interface for custom logging implementations.
 ```typescript
-import { createAbapConnection } from '@mcp-abap-adt/connection';
-// Basic authentication
-const connection = createAbapConnection({
-  url: 'https://your-sap-system.com',
-  authType: 'basic',
-  username: 'user',
-  password: 'pass',
-  client: '100'
-});
+interface ILogger {
+  info(message: string, meta?: any): void;
+  error(message: string, meta?: any): void;
+  warn(message: string, meta?: any): void;
+  debug(message: string, meta?: any): void;
+  csrfToken?(action: "fetch" | "retry" | "success" | "error", message: string, meta?: any): void;
+  tlsConfig?(rejectUnauthorized: boolean): void;
+}
+```
-// JWT authentication
-const connection = createAbapConnection({
-  url: 'https://your-sap-system.com',
-  authType: 'jwt',
-  jwtToken: 'your-jwt-token',
-  refreshToken: 'your-refresh-token',
-  uaaUrl: 'https://uaa-url.com',
-  uaaClientId: 'client-id',
-  uaaClientSecret: 'client-secret'
-});
+#### `ISessionStorage`
-// Make ADT request
-const response = await connection.makeAdtRequest({
-  url: '/sap/bc/adt/oo/classes',
-  method: 'GET',
-  timeout: 30000
-});
+Interface for session state persistence.
+```typescript
+interface ISessionStorage {
+  save(sessionId: string, state: SessionState): Promise<void>;
+  load(sessionId: string): Promise<SessionState | null>;
+  delete(sessionId: string): Promise<void>;
+}
 ```
-## Development
+### Functions
+#### `createAbapConnection(config, logger, sessionStorage?, sessionId?)`
+Factory function to create an ABAP connection instance.
+```typescript
+function createAbapConnection(
+  config: SapConfig,
+  logger: ILogger,
+  sessionStorage?: ISessionStorage,
+  sessionId?: string
+): AbapConnection;
+```
+## Requirements
+- Node.js >= 18.0.0
+- Access to SAP ABAP system (on-premise or BTP)
+## Documentation
+- [Custom Session Storage](./CUSTOM_SESSION_STORAGE.md) - How to implement custom session persistence (database, Redis, etc.)
+- [Examples](./examples/README.md) - Working code examples
+## License
+MIT
+## Repository
+https://github.com/fr0ster/mcp-abap-adt
+## Related Projects
+- [mcp-abap-adt](https://github.com/fr0ster/mcp-abap-adt) - Main MCP server for ABAP ADT
-This package is developed independently. For development setup, see the repository's documentation.

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@mcp-abap-adt/connection",
-  "version": "0.1.0",
+  "version": "0.1.2",
   "description": "ABAP connection layer for MCP ABAP ADT server",
   "main": "dist/index.js",
   "types": "dist/index.d.ts",
@@ -36,8 +36,6 @@
     "clean": "rm -rf dist tsconfig.tsbuildinfo",
     "build": "npm run clean --silent && npx tsc -p tsconfig.json",
     "build:fast": "npx tsc -p tsconfig.json",
-    "install:local": "npm install --no-workspaces",
-    "pack": "npm run build && npm pack",
     "test": "jest",
     "prepublishOnly": "npm run build"
   },
@@ -51,13 +49,10 @@
     "open": "^11.0.0"
   },
   "devDependencies": {
-    "@types/jest": "^30.0.0",
-    "@types/node": "^24.10.1",
-    "jest": "^30.2.0",
+    "@types/jest": "^29.5.14",
+    "@types/node": "^24.2.1",
+    "jest": "^29.7.0",
     "ts-jest": "^29.2.5",
     "typescript": "^5.9.2"
-  },
-  "publishConfig": {
-    "access": "public"
   }
 }