npm - @mcp-abap-adt/connection - Versions diffs - 1.8.0 → 1.8.1 - Mend

@mcp-abap-adt/connection 1.8.0 → 1.8.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (4) hide show

package/dist/connection/AbstractAbapConnection.d.ts +8 -0
package/dist/connection/AbstractAbapConnection.d.ts.map +1 -1
package/dist/connection/AbstractAbapConnection.js +52 -11
package/package.json +1 -1

package/dist/connection/AbstractAbapConnection.d.ts CHANGED Viewed

@@ -83,6 +83,14 @@ declare abstract class AbstractAbapConnection implements AbapConnection {
     private updateCookiesFromResponse;
     private getAxiosInstance;
     private ensureFreshCsrfToken;
+    /**
+     * Clear SAP-side session state when SAP rejects the cached CSRF token + session
+     * cookies (HTTP 401 on a mutation while a cached token exists). This forces the
+     * next request path to fetch a fresh token and a fresh SAP_SESSIONID cookie.
+     *
+     * Distinct from reset(): this leaves the axios instance and interceptors in place.
+     */
+    private invalidateSession;
     private shouldRetryCsrf;
 }
 export { AbstractAbapConnection };

package/dist/connection/AbstractAbapConnection.d.ts.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"AbstractAbapConnection.d.ts","sourceRoot":"","sources":["../../src/connection/AbstractAbapConnection.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,KAAK,YAAY,EAAkB,MAAM,0BAA0B,CAAC;AAM7E,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,wBAAwB,CAAC;AACxD,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,cAAc,CAAC;AAE5C,OAAO,KAAK,EAAE,cAAc,EAAE,kBAAkB,EAAE,MAAM,qBAAqB,CAAC;AAG9E,uBAAe,sBAAuB,YAAW,cAAc;IAW3D,OAAO,CAAC,QAAQ,CAAC,MAAM;IACvB,SAAS,CAAC,QAAQ,CAAC,MAAM,EAAE,OAAO,GAAG,IAAI;IAX3C,OAAO,CAAC,aAAa,CAA8B;IACnD,OAAO,CAAC,SAAS,CAAuB;IACxC,OAAO,CAAC,OAAO,CAAuB;IACtC,OAAO,CAAC,WAAW,CAAkC;IACrD,OAAO,CAAC,OAAO,CAAS;IACxB,OAAO,CAAC,SAAS,CAAuB;IACxC,OAAO,CAAC,WAAW,CAAyC;IAC5D,OAAO,CAAC,eAAe,CAAU;IAEjC,SAAS,aACU,MAAM,EAAE,SAAS,EACf,MAAM,EAAE,OAAO,GAAG,IAAI,EACzC,SAAS,CAAC,EAAE,MAAM,EAClB,OAAO,CAAC,EAAE;QAAE,eAAe,CAAC,EAAE,OAAO,CAAA;KAAE;IAqBzC;;;;;;;;;;;OAWG;IACH,cAAc,CAAC,IAAI,EAAE,UAAU,GAAG,WAAW,GAAG,IAAI;IAUpD;;OAEG;IACH,cAAc,IAAI,WAAW,GAAG,UAAU;IAI1C;;;OAGG;IACH,YAAY,CAAC,SAAS,EAAE,MAAM,GAAG,IAAI;IAKrC;;OAEG;IACH,YAAY,IAAI,MAAM,GAAG,IAAI;IAI7B,SAAS,IAAI,SAAS;IAItB,KAAK,IAAI,IAAI;IAYP,UAAU,IAAI,OAAO,CAAC,MAAM,CAAC;IAI7B,cAAc,IAAI,OAAO,CAAC,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAevD;;;;;;;;OAQG;IACH,QAAQ,CAAC,OAAO,IAAI,OAAO,CAAC,IAAI,CAAC;IAE3B,cAAc,CAAC,CAAC,GAAG,GAAG,EAAE,CAAC,GAAG,GAAG,EACnC,OAAO,EAAE,kBAAkB,GAC1B,OAAO,CAAC,YAAY,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC;~~IA4P9B~~,SAAS,CAAC,QAAQ,CAAC,wBAAwB,IAAI,MAAM;IAErD;;;OAGG;cACa,cAAc,CAC5B,GAAG,EAAE,MAAM,EACX,UAAU,GAAE,MAAgC,EAC5C,UAAU,GAAE,MAAgC,GAC3C,OAAO,CAAC,MAAM,CAAC;IA2ClB;;OAEG;YACW,0BAA0B;IAsKxC;;OAEG;IACH,SAAS,CAAC,YAAY,IAAI,MAAM,GAAG,IAAI;IAIvC;;OAEG;IACH,SAAS,CAAC,YAAY,CAAC,KAAK,EAAE,MAAM,GAAG,IAAI,GAAG,IAAI;IAIlD;;OAEG;IACH,SAAS,CAAC,UAAU,IAAI,MAAM,GAAG,IAAI;IAIrC,SAAS,CAAC,iBAAiB,CAAC,OAAO,EAAE,MAAM,GAAG,IAAI;IAIlD,OAAO,CAAC,yBAAyB;IAkEjC,OAAO,CAAC,gBAAgB;YAqBV,oBAAoB;IAiClC,OAAO,CAAC,eAAe;CA+BxB;AAGD,OAAO,EAAE,sBAAsB,EAAE,CAAC"}
1	+ {"version":3,"file":"AbstractAbapConnection.d.ts","sourceRoot":"","sources":["../../src/connection/AbstractAbapConnection.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,KAAK,YAAY,EAAkB,MAAM,0BAA0B,CAAC;AAM7E,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,wBAAwB,CAAC;AACxD,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,cAAc,CAAC;AAE5C,OAAO,KAAK,EAAE,cAAc,EAAE,kBAAkB,EAAE,MAAM,qBAAqB,CAAC;AAG9E,uBAAe,sBAAuB,YAAW,cAAc;IAW3D,OAAO,CAAC,QAAQ,CAAC,MAAM;IACvB,SAAS,CAAC,QAAQ,CAAC,MAAM,EAAE,OAAO,GAAG,IAAI;IAX3C,OAAO,CAAC,aAAa,CAA8B;IACnD,OAAO,CAAC,SAAS,CAAuB;IACxC,OAAO,CAAC,OAAO,CAAuB;IACtC,OAAO,CAAC,WAAW,CAAkC;IACrD,OAAO,CAAC,OAAO,CAAS;IACxB,OAAO,CAAC,SAAS,CAAuB;IACxC,OAAO,CAAC,WAAW,CAAyC;IAC5D,OAAO,CAAC,eAAe,CAAU;IAEjC,SAAS,aACU,MAAM,EAAE,SAAS,EACf,MAAM,EAAE,OAAO,GAAG,IAAI,EACzC,SAAS,CAAC,EAAE,MAAM,EAClB,OAAO,CAAC,EAAE;QAAE,eAAe,CAAC,EAAE,OAAO,CAAA;KAAE;IAqBzC;;;;;;;;;;;OAWG;IACH,cAAc,CAAC,IAAI,EAAE,UAAU,GAAG,WAAW,GAAG,IAAI;IAUpD;;OAEG;IACH,cAAc,IAAI,WAAW,GAAG,UAAU;IAI1C;;;OAGG;IACH,YAAY,CAAC,SAAS,EAAE,MAAM,GAAG,IAAI;IAKrC;;OAEG;IACH,YAAY,IAAI,MAAM,GAAG,IAAI;IAI7B,SAAS,IAAI,SAAS;IAItB,KAAK,IAAI,IAAI;IAYP,UAAU,IAAI,OAAO,CAAC,MAAM,CAAC;IAI7B,cAAc,IAAI,OAAO,CAAC,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAevD;;;;;;;;OAQG;IACH,QAAQ,CAAC,OAAO,IAAI,OAAO,CAAC,IAAI,CAAC;IAE3B,cAAc,CAAC,CAAC,GAAG,GAAG,EAAE,CAAC,GAAG,GAAG,EACnC,OAAO,EAAE,kBAAkB,GAC1B,OAAO,CAAC,YAAY,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC;IA+R9B,SAAS,CAAC,QAAQ,CAAC,wBAAwB,IAAI,MAAM;IAErD;;;OAGG;cACa,cAAc,CAC5B,GAAG,EAAE,MAAM,EACX,UAAU,GAAE,MAAgC,EAC5C,UAAU,GAAE,MAAgC,GAC3C,OAAO,CAAC,MAAM,CAAC;IA2ClB;;OAEG;YACW,0BAA0B;IAsKxC;;OAEG;IACH,SAAS,CAAC,YAAY,IAAI,MAAM,GAAG,IAAI;IAIvC;;OAEG;IACH,SAAS,CAAC,YAAY,CAAC,KAAK,EAAE,MAAM,GAAG,IAAI,GAAG,IAAI;IAIlD;;OAEG;IACH,SAAS,CAAC,UAAU,IAAI,MAAM,GAAG,IAAI;IAIrC,SAAS,CAAC,iBAAiB,CAAC,OAAO,EAAE,MAAM,GAAG,IAAI;IAIlD,OAAO,CAAC,yBAAyB;IAkEjC,OAAO,CAAC,gBAAgB;YAqBV,oBAAoB;IAiClC;;;;;;OAMG;IACH,OAAO,CAAC,iBAAiB;IAMzB,OAAO,CAAC,eAAe;CA+BxB;AAGD,OAAO,EAAE,sBAAsB,EAAE,CAAC"}

package/dist/connection/AbstractAbapConnection.js CHANGED Viewed

@@ -263,22 +263,51 @@ class AbstractAbapConnection {
             else {
                 this.logger?.error(errorDetails.message, errorDetails);
             }
-            // Retry logic for CSRF token errors (403 with CSRF message)
-            if (this.shouldRetryCsrf(error)) {
-                this.logger?.debug('CSRF token validation failed, fetching new token and retrying request', {
+            // Detect the "login-form 401" pattern: SAP returned 401 for a mutation while
+            // we have a cached CSRF token. The token and its bound SAP session must be
+            // discarded before the retry. Basic auth only — JWT/SAML lifecycles are
+            // managed elsewhere.
+            const isCachedTokenStale = error instanceof axios_1.AxiosError &&
+                this.config.authType === 'basic' &&
+                (normalizedMethod === 'POST' ||
+                    normalizedMethod === 'PUT' ||
+                    normalizedMethod === 'DELETE') &&
+                error.response?.status === 401 &&
+                this.getCsrfToken() !== null;
+            // Retry logic for CSRF token errors (403 with CSRF message) and the
+            // login-form 401 pattern.
+            if (this.shouldRetryCsrf(error) || isCachedTokenStale) {
+                this.logger?.debug(isCachedTokenStale
+                    ? 'Stale CSRF token / SAP session — invalidating and retrying'
+                    : 'CSRF token validation failed, fetching new token and retrying request', {
                     url: requestUrl,
                     method: normalizedMethod,
                 });
-                this.csrfToken = await this.fetchCsrfToken(requestUrl, 5, 2000);
-                if (this.csrfToken) {
-                    requestHeaders['x-csrf-token'] = this.csrfToken;
+                if (isCachedTokenStale) {
+                    this.invalidateSession();
+                    delete requestHeaders.Cookie;
+                    delete requestHeaders.cookie;
                 }
-                if (this.cookies) {
-                    requestHeaders.Cookie = this.cookies;
+                try {
+                    this.setCsrfToken(await this.fetchCsrfToken(requestUrl, 5, 2000));
+                    const refreshedToken = this.getCsrfToken();
+                    if (refreshedToken) {
+                        requestHeaders['x-csrf-token'] = refreshedToken;
+                    }
+                    const refreshedCookies = this.getCookies();
+                    if (refreshedCookies) {
+                        requestHeaders.Cookie = refreshedCookies;
+                    }
+                    const retryResponse = await this.getAxiosInstance()(requestConfig);
+                    this.updateCookiesFromResponse(retryResponse.headers);
+                    return retryResponse;
+                }
+                catch (retryError) {
+                    this.logger?.debug(`CSRF retry failed; rethrowing original error: ${retryError instanceof Error
+                        ? retryError.message
+                        : String(retryError)}`);
+                    throw error;
                 }
-                const retryResponse = await this.getAxiosInstance()(requestConfig);
-                this.updateCookiesFromResponse(retryResponse.headers);
-                return retryResponse;
             }
             // Retry logic for 401 errors on GET requests (authentication issue - need cookies)
             // Only for basic auth - JWT auth will be handled by refresh logic below
@@ -585,6 +614,18 @@ class AbstractAbapConnection {
             throw error;
         }
     }
+    /**
+     * Clear SAP-side session state when SAP rejects the cached CSRF token + session
+     * cookies (HTTP 401 on a mutation while a cached token exists). This forces the
+     * next request path to fetch a fresh token and a fresh SAP_SESSIONID cookie.
+     *
+     * Distinct from reset(): this leaves the axios instance and interceptors in place.
+     */
+    invalidateSession() {
+        this.setCsrfToken(null);
+        this.cookies = null;
+        this.cookieStore.clear();
+    }
     shouldRetryCsrf(error) {
         if (!(error instanceof axios_1.AxiosError)) {
             return false;

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@mcp-abap-adt/connection",
-  "version": "1.8.0",
+  "version": "1.8.1",
   "description": "ABAP connection layer for MCP ABAP ADT server",
   "main": "dist/index.js",
   "types": "dist/index.d.ts",