@mcp-use/cli 2.10.2 → 2.10.3

package/dist/index.js

@@ -1114,6 +1114,7 @@ var open_default = open;
 import { toJSONSchema } from "zod";
 
 // src/commands/auth.ts
+import crypto from "crypto";
 import {
   createServer
 } from "http";
@@ -1446,6 +1447,27 @@ var McpUseAPI = class _McpUseAPI {
     );
     return response.data.logs;
   }
+  /**
+   * Get GitHub connection status
+   */
+  async getGitHubConnectionStatus() {
+    return this.request("/github/connection");
+  }
+  /**
+   * Get GitHub app name
+   */
+  async getGitHubAppName() {
+    const response = await this.request("/github/appname");
+    return response.app_name;
+  }
+  /**
+   * Get accessible GitHub repositories
+   */
+  async getGitHubRepos(refresh = false) {
+    return this.request(
+      `/github/repos${refresh ? "?refresh=true" : ""}`
+    );
+  }
 };
 
 // src/commands/auth.ts
@@ -1469,7 +1491,7 @@ async function findAvailablePort(startPort = 8765) {
   }
   throw new Error("No available ports found");
 }
-async function startCallbackServer(port) {
+async function startCallbackServer(port, expectedState) {
   return new Promise((resolve, reject) => {
     let tokenResolver = null;
     const tokenPromise = new Promise((res) => {
@@ -1479,6 +1501,49 @@ async function startCallbackServer(port) {
       if (req.url?.startsWith("/callback")) {
         const url = new URL(req.url, `http://localhost:${port}`);
         const token = url.searchParams.get("token");
+        const state = url.searchParams.get("state");
+        if (state !== expectedState) {
+          res.writeHead(400, { "Content-Type": "text/html" });
+          res.end(`
+              <!DOCTYPE html>
+              <html>
+                <head>
+                  <title>Security Error</title>
+                  <meta name="viewport" content="width=device-width, initial-scale=1.0">
+                  <style>
+                    body {
+                      font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, sans-serif;
+                      display: flex;
+                      justify-content: center;
+                      align-items: center;
+                      min-height: 100vh;
+                      background: #000;
+                      padding: 1rem;
+                      margin: 0;
+                    }
+                    .container {
+                      max-width: 28rem;
+                      padding: 3rem;
+                      text-align: center;
+                      background: rgba(255, 255, 255, 0.1);
+                      backdrop-filter: blur(40px);
+                      border: 1px solid rgba(255, 255, 255, 0.2);
+                      border-radius: 1.5rem;
+                    }
+                    h1 { color: #fff; font-size: 2rem; margin-bottom: 1rem; }
+                    p { color: rgba(255, 255, 255, 0.8); font-size: 1rem; }
+                  </style>
+                </head>
+                <body>
+                  <div class="container">
+                    <h1>Security Error</h1>
+                    <p>Invalid state parameter. Please try logging in again.</p>
+                  </div>
+                </body>
+              </html>
+            `);
+          return;
+        }
         if (token && tokenResolver) {
           res.writeHead(200, { "Content-Type": "text/html" });
           res.end(`
@@ -1681,12 +1746,13 @@ async function loginCommand(options) {
       return;
     }
     console.log(source_default.cyan.bold("\u{1F510} Logging in to mcp-use cloud...\n"));
+    const state = crypto.randomBytes(32).toString("hex");
     const port = await findAvailablePort();
     const redirectUri = `http://localhost:${port}/callback`;
     console.log(source_default.gray(`Starting local server on port ${port}...`));
-    const { server, token } = await startCallbackServer(port);
+    const { server, token } = await startCallbackServer(port, state);
     const webUrl = await getWebUrl();
-    const loginUrl = `${webUrl}/auth/cli?redirect_uri=${encodeURIComponent(redirectUri)}`;
+    const loginUrl = `${webUrl}/auth/cli?redirect_uri=${encodeURIComponent(redirectUri)}&state=${state}`;
     console.log(source_default.gray(`Opening browser to ${webUrl}/auth/cli...
 `));
     console.log(
@@ -3251,33 +3317,78 @@ async function displayDeploymentProgress(api, deployment) {
       lastDisplayedLogLength = finalDeployment.buildLogs.length;
     }
     if (finalDeployment.status === "running") {
-      const mcpUrl = `https://${finalDeployment.domain}/mcp`;
-      const inspectorUrl = `https://inspector.mcp-use.com/inspector?autoConnect=${encodeURIComponent(mcpUrl)}`;
+      let mcpServerUrl;
+      let dashboardUrl = null;
+      if (finalDeployment.customDomain) {
+        mcpServerUrl = `https://${finalDeployment.customDomain}/mcp`;
+        if (finalDeployment.serverSlug) {
+          dashboardUrl = `https://mcp-use.com/cloud/servers/${finalDeployment.serverSlug}`;
+        }
+      } else if (finalDeployment.serverSlug) {
+        mcpServerUrl = `https://${finalDeployment.serverSlug}.mcp-use.run/mcp`;
+        dashboardUrl = `https://mcp-use.com/cloud/servers/${finalDeployment.serverSlug}`;
+      } else if (finalDeployment.serverId) {
+        mcpServerUrl = `https://${finalDeployment.serverId}.mcp-use.run/mcp`;
+        dashboardUrl = `https://mcp-use.com/cloud/servers/${finalDeployment.serverId}`;
+      } else {
+        mcpServerUrl = `https://${finalDeployment.domain}/mcp`;
+      }
+      const inspectorUrl = `https://inspector.mcp-use.com/inspector?autoConnect=${encodeURIComponent(
+        mcpServerUrl
+      )}`;
       console.log(source_default.green.bold("\u2713 Deployment successful!\n"));
       console.log(source_default.white("\u{1F310} MCP Server URL:"));
-      console.log(source_default.cyan.bold(`   ${mcpUrl}
+      console.log(source_default.cyan.bold(`   ${mcpServerUrl}
 `));
+      if (dashboardUrl) {
+        console.log(source_default.white("\u{1F4CA} Dashboard:"));
+        console.log(source_default.cyan.bold(`   ${dashboardUrl}
+`));
+      }
       console.log(source_default.white("\u{1F50D} Inspector URL:"));
       console.log(source_default.cyan.bold(`   ${inspectorUrl}
 `));
-      if (finalDeployment.customDomain) {
-        const customMcpUrl = `https://${finalDeployment.customDomain}/mcp`;
-        const customInspectorUrl = `https://inspector.mcp-use.com/inspect?autoConnect=${encodeURIComponent(customMcpUrl)}`;
-        console.log(source_default.white("\u{1F517} Custom Domain:"));
-        console.log(source_default.cyan.bold(`   ${customMcpUrl}
-`));
-        console.log(source_default.white("\u{1F50D} Custom Inspector:"));
-        console.log(source_default.cyan.bold(`   ${customInspectorUrl}
-`));
-      }
       console.log(
         source_default.gray("Deployment ID: ") + source_default.white(finalDeployment.id)
       );
       return;
     } else if (finalDeployment.status === "failed") {
+      stopSpinner();
       console.log(source_default.red.bold("\u2717 Deployment failed\n"));
       if (finalDeployment.error) {
         console.log(source_default.red("Error: ") + finalDeployment.error);
+        if (finalDeployment.error.includes("No GitHub installations found")) {
+          console.log();
+          const retry = await promptGitHubInstallation(api, "not_connected");
+          if (retry) {
+            console.log(source_default.cyan("\n\u{1F504} Retrying deployment...\n"));
+            const newDeployment = await api.redeployDeployment(deployment.id);
+            await displayDeploymentProgress(api, newDeployment);
+            return;
+          }
+        } else if (finalDeployment.error.includes("Authenticated git clone failed")) {
+          let repoName;
+          const repoMatch = finalDeployment.error.match(
+            /github\.com\/([^/]+\/[^/\s]+)/
+          );
+          if (repoMatch) {
+            repoName = repoMatch[1].replace(/\.git$/, "");
+          } else if (finalDeployment.source.type === "github") {
+            repoName = finalDeployment.source.repo;
+          }
+          console.log();
+          const retry = await promptGitHubInstallation(
+            api,
+            "no_access",
+            repoName
+          );
+          if (retry) {
+            console.log(source_default.cyan("\n\u{1F504} Retrying deployment...\n"));
+            const newDeployment = await api.redeployDeployment(deployment.id);
+            await displayDeploymentProgress(api, newDeployment);
+            return;
+          }
+        }
       }
       if (finalDeployment.buildLogs) {
         console.log(source_default.gray("\nBuild logs:"));
@@ -3315,6 +3426,137 @@ async function displayDeploymentProgress(api, deployment) {
     source_default.gray("Check status with: ") + source_default.white(`mcp-use status ${deployment.id}`)
   );
 }
+async function checkRepoAccess(api, owner, repo) {
+  try {
+    const reposResponse = await api.getGitHubRepos(true);
+    const repoFullName = `${owner}/${repo}`;
+    return reposResponse.repos.some((r) => r.full_name === repoFullName);
+  } catch (error) {
+    console.log(source_default.gray("Could not verify repository access"));
+    return false;
+  }
+}
+async function promptGitHubInstallation(api, reason, repoName) {
+  console.log();
+  if (reason === "not_connected") {
+    console.log(source_default.yellow("\u26A0\uFE0F  GitHub account not connected"));
+    console.log(
+      source_default.white("Deployments require a connected GitHub account.\n")
+    );
+  } else {
+    console.log(
+      source_default.yellow("\u26A0\uFE0F  GitHub App doesn't have access to this repository")
+    );
+    console.log(
+      source_default.white(
+        `The GitHub App needs permission to access ${source_default.cyan(repoName || "this repository")}.
+`
+      )
+    );
+  }
+  const shouldInstall = await prompt(
+    source_default.white(
+      `Would you like to ${reason === "not_connected" ? "connect" : "configure"} GitHub now? (Y/n): `
+    ),
+    "y"
+  );
+  if (!shouldInstall) {
+    return false;
+  }
+  try {
+    const appName = process.env.MCP_GITHUB_APP_NAME || "mcp-use";
+    const installUrl = reason === "not_connected" ? `https://github.com/apps/${appName}/installations/new` : `https://github.com/settings/installations`;
+    console.log(
+      source_default.cyan(
+        `
+Opening browser to ${reason === "not_connected" ? "install" : "configure"} GitHub App...`
+      )
+    );
+    console.log(source_default.gray(`URL: ${installUrl}
+`));
+    if (reason === "no_access") {
+      console.log(source_default.white("Please:"));
+      console.log(
+        source_default.cyan("  1. Find the 'mcp-use' (or similar) GitHub App")
+      );
+      console.log(source_default.cyan("  2. Click 'Configure'"));
+      console.log(
+        source_default.cyan(
+          `  3. Grant access to ${source_default.bold(repoName || "your repository")}`
+        )
+      );
+      console.log(source_default.cyan("  4. Save your changes"));
+      console.log(source_default.cyan("  5. Return here when done\n"));
+    } else {
+      console.log(source_default.white("Please:"));
+      console.log(source_default.cyan("  1. Select the repositories to grant access"));
+      if (repoName) {
+        console.log(
+          source_default.cyan(`  2. Make sure to include ${source_default.bold(repoName)}`)
+        );
+        console.log(source_default.cyan("  3. Complete the installation"));
+      } else {
+        console.log(source_default.cyan("  2. Complete the installation"));
+      }
+      console.log();
+    }
+    await open_default(installUrl);
+    console.log(source_default.gray("Waiting for GitHub configuration..."));
+    await prompt(
+      source_default.white("Press Enter when you've completed the GitHub setup..."),
+      "y"
+    );
+    console.log(source_default.gray("Verifying GitHub connection..."));
+    let verified = false;
+    try {
+      const status = await api.getGitHubConnectionStatus();
+      if (!status.is_connected) {
+        console.log(source_default.yellow("\u26A0\uFE0F  GitHub connection not detected."));
+      } else if (repoName) {
+        const [owner, repo] = repoName.split("/");
+        console.log(source_default.gray(`Checking access to ${repoName}...`));
+        const hasAccess = await checkRepoAccess(api, owner, repo);
+        if (!hasAccess) {
+          console.log(
+            source_default.yellow(
+              `\u26A0\uFE0F  The GitHub App may not have access to ${source_default.cyan(repoName)} yet`
+            )
+          );
+        } else {
+          console.log(source_default.green(`\u2713 Repository ${repoName} is accessible!
+`));
+          verified = true;
+        }
+      } else {
+        console.log(source_default.green("\u2713 GitHub connected successfully!\n"));
+        verified = true;
+      }
+    } catch (error) {
+      console.log(
+        source_default.yellow("\u26A0\uFE0F  Could not verify GitHub connection (API issue)")
+      );
+    }
+    if (!verified) {
+      console.log(
+        source_default.gray(
+          "\nNote: If you completed the GitHub setup, the deployment may work now.\n"
+        )
+      );
+    }
+    return true;
+  } catch (error) {
+    console.log(
+      source_default.yellow("\n\u26A0\uFE0F  Unable to open GitHub installation automatically")
+    );
+    console.log(
+      source_default.white("Please visit: ") + source_default.cyan("https://cloud.mcp-use.com/cloud/settings")
+    );
+    console.log(
+      source_default.gray("Then connect your GitHub account and try again.\n")
+    );
+    return false;
+  }
+}
 async function deployCommand(options) {
   try {
     const cwd = process.cwd();
@@ -3437,8 +3679,9 @@ async function deployCommand(options) {
     console.log();
     const shouldDeploy = await prompt(
       source_default.white(
-        `Deploy from GitHub repository ${gitInfo.owner}/${gitInfo.repo}? (y/n): `
-      )
+        `Deploy from GitHub repository ${gitInfo.owner}/${gitInfo.repo}? (Y/n): `
+      ),
+      "y"
     );
     if (!shouldDeploy) {
       console.log(source_default.gray("Deployment cancelled."));
@@ -3471,6 +3714,111 @@ async function deployCommand(options) {
     }
     console.log();
     const api = await McpUseAPI.create();
+    let githubVerified = false;
+    try {
+      console.log(source_default.gray(`[DEBUG] API URL: ${api.baseUrl}`));
+      const connectionStatus = await api.getGitHubConnectionStatus();
+      if (!connectionStatus.is_connected) {
+        const repoFullName = `${gitInfo.owner}/${gitInfo.repo}`;
+        const installed = await promptGitHubInstallation(
+          api,
+          "not_connected",
+          repoFullName
+        );
+        if (!installed) {
+          console.log(source_default.gray("Deployment cancelled."));
+          process.exit(0);
+        }
+        const retryStatus = await api.getGitHubConnectionStatus();
+        if (!retryStatus.is_connected) {
+          console.log(
+            source_default.red("\n\u2717 GitHub connection could not be verified.")
+          );
+          console.log(
+            source_default.gray("Please try connecting GitHub from the web UI:")
+          );
+          console.log(
+            source_default.cyan("  https://cloud.mcp-use.com/cloud/settings\n")
+          );
+          process.exit(1);
+        }
+        githubVerified = true;
+      } else if (gitInfo.owner && gitInfo.repo) {
+        console.log(source_default.gray("Checking repository access..."));
+        const hasAccess = await checkRepoAccess(
+          api,
+          gitInfo.owner,
+          gitInfo.repo
+        );
+        if (!hasAccess) {
+          const repoFullName = `${gitInfo.owner}/${gitInfo.repo}`;
+          console.log(
+            source_default.yellow(
+              `\u26A0\uFE0F  GitHub App doesn't have access to ${source_default.cyan(repoFullName)}`
+            )
+          );
+          const configured = await promptGitHubInstallation(
+            api,
+            "no_access",
+            repoFullName
+          );
+          if (!configured) {
+            console.log(source_default.gray("Deployment cancelled."));
+            process.exit(0);
+          }
+          const hasAccessRetry = await checkRepoAccess(
+            api,
+            gitInfo.owner,
+            gitInfo.repo
+          );
+          if (!hasAccessRetry) {
+            console.log(
+              source_default.red(
+                `
+\u2717 Repository ${source_default.cyan(repoFullName)} is still not accessible.`
+              )
+            );
+            console.log(
+              source_default.gray(
+                "Please make sure the GitHub App has access to this repository."
+              )
+            );
+            console.log(
+              source_default.cyan("  https://github.com/settings/installations\n")
+            );
+            process.exit(1);
+          }
+          githubVerified = true;
+        } else {
+          console.log(source_default.green("\u2713 Repository access confirmed"));
+          githubVerified = true;
+        }
+      }
+    } catch (error) {
+      console.log(source_default.red("\u2717 Could not verify GitHub connection"));
+      console.log(
+        source_default.gray(
+          "Error: " + (error instanceof Error ? error.message : "Unknown error")
+        )
+      );
+      console.log(source_default.gray("\nPlease ensure:"));
+      console.log(
+        source_default.cyan(
+          "  1. You have connected GitHub at https://cloud.mcp-use.com/cloud/settings"
+        )
+      );
+      console.log(
+        source_default.cyan("  2. The GitHub App has access to your repository")
+      );
+      console.log(source_default.cyan("  3. Your internet connection is stable\n"));
+      process.exit(1);
+    }
+    if (!githubVerified) {
+      console.log(
+        source_default.red("\n\u2717 GitHub verification required for this deployment")
+      );
+      process.exit(1);
+    }
     const existingLink = !options.new ? await getProjectLink(cwd) : null;
     if (existingLink) {
       try {