@microsoft/agents-a365-runtime 0.1.0-preview.93 → 0.2.0-preview.1

package/dist/cjs/environment-utils.js

@@ -1,7 +1,6 @@
 "use strict";
-// ------------------------------------------------------------------------------
-// Copyright (c) Microsoft Corporation. All rights reserved.
-// ------------------------------------------------------------------------------
+// Copyright (c) Microsoft Corporation.
+// Licensed under the MIT License.
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.DEVELOPMENT_ENVIRONMENT_NAME = exports.PRODUCTION_ENVIRONMENT_NAME = exports.PROD_OBSERVABILITY_CLUSTER_CATEGORY = exports.PROD_MCP_PLATFORM_AUTHENTICATION_SCOPE = exports.PROD_OBSERVABILITY_SCOPE = void 0;
 exports.getObservabilityAuthenticationScope = getObservabilityAuthenticationScope;
@@ -10,59 +9,113 @@ exports.isDevelopmentEnvironment = isDevelopmentEnvironment;
 exports.getMcpPlatformAuthenticationScope = getMcpPlatformAuthenticationScope;
 /**
  * Utility logic for environment-related operations.
+ *
+ * Note: These utility functions are maintained for backward compatibility.
+ * For new code, prefer using the configuration classes directly:
+ * - RuntimeConfiguration for clusterCategory, isDevelopmentEnvironment, isNodeEnvDevelopment
+ * - ToolingConfiguration for mcpPlatformAuthenticationScope
+ * - ObservabilityConfiguration for observabilityAuthenticationScopes
+ */
+const configuration_1 = require("./configuration");
+/**
+ * Production observability authentication scope.
+ * @deprecated This constant is exported for backward compatibility only.
+ * For new code, use `ObservabilityConfiguration.observabilityAuthenticationScopes` instead.
  */
 exports.PROD_OBSERVABILITY_SCOPE = 'https://api.powerplatform.com/.default';
+/**
+ * Production MCP platform authentication scope.
+ * @deprecated This constant is exported for backward compatibility only.
+ * For new code, use `ToolingConfiguration.mcpPlatformAuthenticationScope` instead.
+ */
 exports.PROD_MCP_PLATFORM_AUTHENTICATION_SCOPE = 'ea9ffc3e-8a23-4a7d-836d-234d7c7565c1/.default';
+/**
+ * Default cluster category for production environments.
+ * @deprecated This constant is exported for backward compatibility only.
+ * For new code, use `RuntimeConfiguration.clusterCategory` instead.
+ */
 exports.PROD_OBSERVABILITY_CLUSTER_CATEGORY = 'prod';
 // Default environment names
 exports.PRODUCTION_ENVIRONMENT_NAME = 'production';
 exports.DEVELOPMENT_ENVIRONMENT_NAME = 'Development';
 /**
- * Returns the scope for authenticating to the observability service
+ * Returns the scope for authenticating to the observability service.
  *
- * The default is the production observability scope, but this can be overridden
- * for internal development and testing scenarios using the
- * `A365_OBSERVABILITY_SCOPES_OVERRIDE` environment variable.
+ * @returns The authentication scopes for the current environment.
+ * @deprecated Use ObservabilityConfiguration.observabilityAuthenticationScopes instead.
  *
- * When the override is set to a non-empty string, it is split on whitespace
- * into individual scopes.
+ * @example
+ * // Before:
+ * import { getObservabilityAuthenticationScope } from '@microsoft/agents-a365-runtime';
+ * const scopes = getObservabilityAuthenticationScope();
  *
- * @returns The authentication scopes for the current environment.
+ * // After:
+ * import { defaultObservabilityConfigurationProvider } from '@microsoft/agents-a365-observability';
+ * const scopes = [...defaultObservabilityConfigurationProvider.getConfiguration().observabilityAuthenticationScopes];
  */
 function getObservabilityAuthenticationScope() {
-    const override = process.env.A365_OBSERVABILITY_SCOPES_OVERRIDE;
-    if (override && override.trim().length > 0) {
-        return override.trim().split(/\s+/);
-    }
+    // Returns production default - use ObservabilityConfiguration for proper env var support
+    // eslint-disable-next-line @typescript-eslint/no-deprecated -- Intentional: deprecated function using deprecated constant
     return [exports.PROD_OBSERVABILITY_SCOPE];
 }
 /**
  * Gets the cluster category from environment variables.
  *
+ * @param configProvider Optional configuration provider. Defaults to defaultRuntimeConfigurationProvider if not specified.
  * @returns The cluster category from CLUSTER_CATEGORY env var, defaults to 'prod'.
+ * @deprecated Use RuntimeConfiguration.clusterCategory instead.
+ *
+ * @example
+ * // Before:
+ * import { getClusterCategory } from '@microsoft/agents-a365-runtime';
+ * const cluster = getClusterCategory();
+ *
+ * // After:
+ * import { defaultRuntimeConfigurationProvider } from '@microsoft/agents-a365-runtime';
+ * const cluster = defaultRuntimeConfigurationProvider.getConfiguration().clusterCategory;
  */
-function getClusterCategory() {
-    const clusterCategory = process.env.CLUSTER_CATEGORY;
-    if (!clusterCategory) {
-        return 'prod';
-    }
-    return clusterCategory.toLowerCase();
+function getClusterCategory(configProvider) {
+    const provider = configProvider ?? configuration_1.defaultRuntimeConfigurationProvider;
+    return provider.getConfiguration().clusterCategory;
 }
 /**
  * Returns true if the current environment is a development environment.
  *
+ * @param configProvider Optional configuration provider. Defaults to defaultRuntimeConfigurationProvider if not specified.
  * @returns True if the current environment is development, false otherwise.
+ * @deprecated Use RuntimeConfiguration.isDevelopmentEnvironment instead.
+ *
+ * @example
+ * // Before:
+ * import { isDevelopmentEnvironment } from '@microsoft/agents-a365-runtime';
+ * if (isDevelopmentEnvironment()) { ... }
+ *
+ * // After:
+ * import { defaultRuntimeConfigurationProvider } from '@microsoft/agents-a365-runtime';
+ * if (defaultRuntimeConfigurationProvider.getConfiguration().isDevelopmentEnvironment) { ... }
  */
-function isDevelopmentEnvironment() {
-    const clusterCategory = getClusterCategory();
-    return ['local', 'dev'].includes(clusterCategory);
+function isDevelopmentEnvironment(configProvider) {
+    const provider = configProvider ?? configuration_1.defaultRuntimeConfigurationProvider;
+    return provider.getConfiguration().isDevelopmentEnvironment;
 }
 /**
- * Gets the MCP platform authentication scope from environment variables.
+ * Gets the MCP platform authentication scope.
+ *
+ * @returns The MCP platform authentication scope.
+ * @deprecated Use ToolingConfiguration.mcpPlatformAuthenticationScope instead.
+ *
+ * @example
+ * // Before:
+ * import { getMcpPlatformAuthenticationScope } from '@microsoft/agents-a365-runtime';
+ * const scope = getMcpPlatformAuthenticationScope();
  *
- * @returns The MCP platform authentication scope from MCP_PLATFORM_AUTHENTICATION_SCOPE env var, defaults to production scope.
+ * // After:
+ * import { defaultToolingConfigurationProvider } from '@microsoft/agents-a365-tooling';
+ * const scope = defaultToolingConfigurationProvider.getConfiguration().mcpPlatformAuthenticationScope;
  */
 function getMcpPlatformAuthenticationScope() {
-    return process.env.MCP_PLATFORM_AUTHENTICATION_SCOPE || exports.PROD_MCP_PLATFORM_AUTHENTICATION_SCOPE;
+    // Returns production default - use ToolingConfiguration for proper env var support
+    // eslint-disable-next-line @typescript-eslint/no-deprecated -- Intentional: deprecated function using deprecated constant
+    return exports.PROD_MCP_PLATFORM_AUTHENTICATION_SCOPE;
 }
 //# sourceMappingURL=environment-utils.js.map

package/dist/cjs/environment-utils.js.map

@@ -1 +1 @@
-{"version":3,"file":"environment-utils.js","sourceRoot":"","sources":["../../src/environment-utils.ts"],"names":[],"mappings":";AAAA,iFAAiF;AACjF,4DAA4D;AAC5D,iFAAiF;;;AA0BjF,kFAQC;AAOD,gDAQC;AAOD,4DAGC;AAOD,8EAEC;AAlED;;GAEG;AAEU,QAAA,wBAAwB,GAAG,wCAAwC,CAAC;AACpE,QAAA,sCAAsC,GAAG,+CAA+C,CAAC;AACzF,QAAA,mCAAmC,GAAG,MAAM,CAAC;AAE1D,4BAA4B;AACf,QAAA,2BAA2B,GAAG,YAAY,CAAC;AAC3C,QAAA,4BAA4B,GAAG,aAAa,CAAC;AAE1D;;;;;;;;;;;GAWG;AACH,SAAgB,mCAAmC;IACjD,MAAM,QAAQ,GAAG,OAAO,CAAC,GAAG,CAAC,kCAAkC,CAAC;IAEhE,IAAI,QAAQ,IAAI,QAAQ,CAAC,IAAI,EAAE,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QAC3C,OAAO,QAAQ,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC;IACtC,CAAC;IAED,OAAO,CAAC,gCAAwB,CAAC,CAAC;AACpC,CAAC;AAED;;;;GAIG;AACH,SAAgB,kBAAkB;IAChC,MAAM,eAAe,GAAG,OAAO,CAAC,GAAG,CAAC,gBAAgB,CAAC;IAErD,IAAI,CAAC,eAAe,EAAE,CAAC;QACrB,OAAO,MAAM,CAAC;IAChB,CAAC;IAED,OAAO,eAAe,CAAC,WAAW,EAAE,CAAC;AACvC,CAAC;AAED;;;;GAIG;AACH,SAAgB,wBAAwB;IACtC,MAAM,eAAe,GAAG,kBAAkB,EAAE,CAAC;IAC7C,OAAO,CAAC,OAAO,EAAE,KAAK,CAAC,CAAC,QAAQ,CAAC,eAAe,CAAC,CAAC;AACpD,CAAC;AAED;;;;GAIG;AACH,SAAgB,iCAAiC;IAC/C,OAAO,OAAO,CAAC,GAAG,CAAC,iCAAiC,IAAI,8CAAsC,CAAC;AACjG,CAAC"}
+{"version":3,"file":"environment-utils.js","sourceRoot":"","sources":["../../src/environment-utils.ts"],"names":[],"mappings":";AAAA,uCAAuC;AACvC,kCAAkC;;;AAuDlC,kFAIC;AAkBD,gDAKC;AAkBD,4DAKC;AAiBD,8EAIC;AA5HD;;;;;;;;GAQG;AAEH,mDAA4F;AAG5F;;;;GAIG;AACU,QAAA,wBAAwB,GAAG,wCAAwC,CAAC;AAEjF;;;;GAIG;AACU,QAAA,sCAAsC,GAAG,+CAA+C,CAAC;AAEtG;;;;GAIG;AACU,QAAA,mCAAmC,GAAG,MAAM,CAAC;AAE1D,4BAA4B;AACf,QAAA,2BAA2B,GAAG,YAAY,CAAC;AAC3C,QAAA,4BAA4B,GAAG,aAAa,CAAC;AAE1D;;;;;;;;;;;;;;GAcG;AACH,SAAgB,mCAAmC;IACjD,yFAAyF;IACzF,0HAA0H;IAC1H,OAAO,CAAC,gCAAwB,CAAC,CAAC;AACpC,CAAC;AAED;;;;;;;;;;;;;;;GAeG;AACH,SAAgB,kBAAkB,CAChC,cAA6D;IAE7D,MAAM,QAAQ,GAAG,cAAc,IAAI,mDAAmC,CAAC;IACvE,OAAO,QAAQ,CAAC,gBAAgB,EAAE,CAAC,eAAe,CAAC;AACrD,CAAC;AAED;;;;;;;;;;;;;;;GAeG;AACH,SAAgB,wBAAwB,CACtC,cAA6D;IAE7D,MAAM,QAAQ,GAAG,cAAc,IAAI,mDAAmC,CAAC;IACvE,OAAO,QAAQ,CAAC,gBAAgB,EAAE,CAAC,wBAAwB,CAAC;AAC9D,CAAC;AAED;;;;;;;;;;;;;;GAcG;AACH,SAAgB,iCAAiC;IAC/C,mFAAmF;IACnF,0HAA0H;IAC1H,OAAO,8CAAsC,CAAC;AAChD,CAAC"}

package/dist/cjs/index.d.ts

@@ -1,7 +1,8 @@
 export * from './power-platform-api-discovery';
-export * from './agentic-authorization-service';
 export * from './environment-utils';
 export * from './utility';
+export * from './agentic-authorization-service';
 export * from './operation-error';
 export * from './operation-result';
+export * from './configuration';
 //# sourceMappingURL=index.d.ts.map

package/dist/cjs/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/index.ts"],"names":[],"mappings":"AAAA,cAAc,gCAAgC,CAAC;AAC/C,cAAc,iCAAiC,CAAC;AAChD,cAAc,qBAAqB,CAAC;AACpC,cAAc,WAAW,CAAC;AAC1B,cAAc,mBAAmB,CAAC;AAClC,cAAc,oBAAoB,CAAC"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/index.ts"],"names":[],"mappings":"AAGA,cAAc,gCAAgC,CAAC;AAC/C,cAAc,qBAAqB,CAAC;AACpC,cAAc,WAAW,CAAC;AAC1B,cAAc,iCAAiC,CAAC;AAChD,cAAc,mBAAmB,CAAC;AAClC,cAAc,oBAAoB,CAAC;AACnC,cAAc,iBAAiB,CAAC"}

package/dist/cjs/index.js

@@ -1,4 +1,6 @@
 "use strict";
+// Copyright (c) Microsoft Corporation.
+// Licensed under the MIT License.
 var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
     if (k2 === undefined) k2 = k;
     var desc = Object.getOwnPropertyDescriptor(m, k);
@@ -15,9 +17,10 @@ var __exportStar = (this && this.__exportStar) || function(m, exports) {
 };
 Object.defineProperty(exports, "__esModule", { value: true });
 __exportStar(require("./power-platform-api-discovery"), exports);
-__exportStar(require("./agentic-authorization-service"), exports);
 __exportStar(require("./environment-utils"), exports);
 __exportStar(require("./utility"), exports);
+__exportStar(require("./agentic-authorization-service"), exports);
 __exportStar(require("./operation-error"), exports);
 __exportStar(require("./operation-result"), exports);
+__exportStar(require("./configuration"), exports);
 //# sourceMappingURL=index.js.map

package/dist/cjs/index.js.map

@@ -1 +1 @@
-{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/index.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;AAAA,iEAA+C;AAC/C,kEAAgD;AAChD,sDAAoC;AACpC,4CAA0B;AAC1B,oDAAkC;AAClC,qDAAmC"}
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/index.ts"],"names":[],"mappings":";AAAA,uCAAuC;AACvC,kCAAkC;;;;;;;;;;;;;;;;AAElC,iEAA+C;AAC/C,sDAAoC;AACpC,4CAA0B;AAC1B,kEAAgD;AAChD,oDAAkC;AAClC,qDAAmC;AACnC,kDAAgC"}

package/dist/cjs/power-platform-api-discovery.d.ts

@@ -1,4 +1,21 @@
-export type ClusterCategory = 'local' | 'dev' | 'test' | 'preprod' | 'firstrelease' | 'prod' | 'gov' | 'high' | 'dod' | 'mooncake' | 'ex' | 'rx';
+/**
+ * Cluster categories for Power Platform API discovery.
+ * String enum provides both compile-time type safety and runtime validation.
+ */
+export declare enum ClusterCategory {
+    local = "local",
+    dev = "dev",
+    test = "test",
+    preprod = "preprod",
+    firstrelease = "firstrelease",
+    prod = "prod",
+    gov = "gov",
+    high = "high",
+    dod = "dod",
+    mooncake = "mooncake",
+    ex = "ex",
+    rx = "rx"
+}
 export declare class PowerPlatformApiDiscovery {
     readonly clusterCategory: ClusterCategory;
     constructor(clusterCategory: ClusterCategory);

package/dist/cjs/power-platform-api-discovery.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"power-platform-api-discovery.d.ts","sourceRoot":"","sources":["../../src/power-platform-api-discovery.ts"],"names":[],"mappings":"AAAA,MAAM,MAAM,eAAe,GACvB,OAAO,GACP,KAAK,GACL,MAAM,GACN,SAAS,GACT,cAAc,GACd,MAAM,GACN,KAAK,GACL,MAAM,GACN,KAAK,GACL,UAAU,GACV,IAAI,GACJ,IAAI,CAAC;AAET,qBAAa,yBAAyB;IACpC,QAAQ,CAAC,eAAe,EAAE,eAAe,CAAC;gBAE9B,eAAe,EAAE,eAAe;IAIrC,gBAAgB,IAAI,MAAM;IAI1B,oBAAoB,IAAI,MAAM;IAI9B,iBAAiB,CAAC,QAAQ,EAAE,MAAM,GAAG,MAAM;IAI3C,8BAA8B,CAAC,QAAQ,EAAE,MAAM,GAAG,MAAM;IAI/D,OAAO,CAAC,+BAA+B;IAkCvC,OAAO,CAAC,sBAAsB;IAU9B,OAAO,CAAC,gCAAgC;CAuBzC"}
+{"version":3,"file":"power-platform-api-discovery.d.ts","sourceRoot":"","sources":["../../src/power-platform-api-discovery.ts"],"names":[],"mappings":"AAAA;;;GAGG;AACH,oBAAY,eAAe;IACzB,KAAK,UAAU;IACf,GAAG,QAAQ;IACX,IAAI,SAAS;IACb,OAAO,YAAY;IACnB,YAAY,iBAAiB;IAC7B,IAAI,SAAS;IACb,GAAG,QAAQ;IACX,IAAI,SAAS;IACb,GAAG,QAAQ;IACX,QAAQ,aAAa;IACrB,EAAE,OAAO;IACT,EAAE,OAAO;CACV;AAED,qBAAa,yBAAyB;IACpC,QAAQ,CAAC,eAAe,EAAE,eAAe,CAAC;gBAE9B,eAAe,EAAE,eAAe;IAIrC,gBAAgB,IAAI,MAAM;IAI1B,oBAAoB,IAAI,MAAM;IAI9B,iBAAiB,CAAC,QAAQ,EAAE,MAAM,GAAG,MAAM;IAI3C,8BAA8B,CAAC,QAAQ,EAAE,MAAM,GAAG,MAAM;IAI/D,OAAO,CAAC,+BAA+B;IAkCvC,OAAO,CAAC,sBAAsB;IAU9B,OAAO,CAAC,gCAAgC;CAuBzC"}

package/dist/cjs/power-platform-api-discovery.js

@@ -1,6 +1,25 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.PowerPlatformApiDiscovery = void 0;
+exports.PowerPlatformApiDiscovery = exports.ClusterCategory = void 0;
+/**
+ * Cluster categories for Power Platform API discovery.
+ * String enum provides both compile-time type safety and runtime validation.
+ */
+var ClusterCategory;
+(function (ClusterCategory) {
+    ClusterCategory["local"] = "local";
+    ClusterCategory["dev"] = "dev";
+    ClusterCategory["test"] = "test";
+    ClusterCategory["preprod"] = "preprod";
+    ClusterCategory["firstrelease"] = "firstrelease";
+    ClusterCategory["prod"] = "prod";
+    ClusterCategory["gov"] = "gov";
+    ClusterCategory["high"] = "high";
+    ClusterCategory["dod"] = "dod";
+    ClusterCategory["mooncake"] = "mooncake";
+    ClusterCategory["ex"] = "ex";
+    ClusterCategory["rx"] = "rx";
+})(ClusterCategory || (exports.ClusterCategory = ClusterCategory = {}));
 class PowerPlatformApiDiscovery {
     constructor(clusterCategory) {
         this.clusterCategory = clusterCategory;
@@ -34,8 +53,8 @@ class PowerPlatformApiDiscovery {
     }
     _getHexApiSuffixLength() {
         switch (this.clusterCategory) {
-            case 'firstrelease':
-            case 'prod':
+            case ClusterCategory.firstrelease:
+            case ClusterCategory.prod:
                 return 2;
             default:
                 return 1;

package/dist/cjs/power-platform-api-discovery.js.map

@@ -1 +1 @@
-{"version":3,"file":"power-platform-api-discovery.js","sourceRoot":"","sources":["../../src/power-platform-api-discovery.ts"],"names":[],"mappings":";;;AAcA,MAAa,yBAAyB;IAGpC,YAAY,eAAgC;QAC1C,IAAI,CAAC,eAAe,GAAG,eAAe,CAAC;IACzC,CAAC;IAEM,gBAAgB;QACrB,OAAO,WAAW,IAAI,CAAC,gCAAgC,EAAE,EAAE,CAAC;IAC9D,CAAC;IAEM,oBAAoB;QACzB,OAAO,IAAI,CAAC,gCAAgC,EAAE,CAAC;IACjD,CAAC;IAEM,iBAAiB,CAAC,QAAgB;QACvC,OAAO,IAAI,CAAC,+BAA+B,CAAC,QAAQ,CAAC,CAAC;IACxD,CAAC;IAEM,8BAA8B,CAAC,QAAgB;QACpD,OAAO,IAAI,CAAC,+BAA+B,CAAC,QAAQ,EAAE,KAAK,CAAC,CAAC;IAC/D,CAAC;IAEO,+BAA+B,CACrC,kBAA0B,EAC1B,iBAAyB,EAAE;QAE3B,IAAI,CAAC,iBAAiB,CAAC,IAAI,CAAC,kBAAkB,CAAC,EAAE,CAAC;YAChD,MAAM,IAAI,KAAK,CACb,wKAAwK,kBAAkB,EAAE,CAC7L,CAAC;QACJ,CAAC;QAED,MAAM,aAAa,GAAG,QAAQ,CAAC;QAC/B,MAAM,mBAAmB,GAAG,IAAI,CAAC,sBAAsB,EAAE,CAAC;QAC1D,MAAM,OAAO,GAAG,kBAAkB,CAAC,WAAW,EAAE,CAAC,OAAO,CAAC,IAAI,EAAE,EAAE,CAAC,CAAC;QAEnE,IAAI,mBAAmB,IAAI,OAAO,CAAC,MAAM,EAAE,CAAC;YAC1C,MAAM,IAAI,KAAK,CACb,yGACE,mBAAmB,GAAG,CACxB,0BAA0B,OAAO,EAAE,CACpC,CAAC;QACJ,CAAC;QAED,MAAM,aAAa,GAAG,OAAO,CAAC,SAAS,CACrC,OAAO,CAAC,MAAM,GAAG,mBAAmB,CACrC,CAAC;QACF,MAAM,aAAa,GAAG,OAAO,CAAC,SAAS,CACrC,CAAC,EACD,OAAO,CAAC,MAAM,GAAG,mBAAmB,CACrC,CAAC;QACF,MAAM,cAAc,GAAG,IAAI,CAAC,gCAAgC,EAAE,CAAC;QAE/D,OAAO,GAAG,cAAc,GAAG,aAAa,IAAI,aAAa,IAAI,aAAa,IAAI,cAAc,EAAE,CAAC;IACjG,CAAC;IAEO,sBAAsB;QAC5B,QAAQ,IAAI,CAAC,eAAe,EAAE,CAAC;YAC/B,KAAK,cAAc,CAAC;YACpB,KAAK,MAAM;gBACT,OAAO,CAAC,CAAC;YACX;gBACE,OAAO,CAAC,CAAC;QACX,CAAC;IACH,CAAC;IAEO,gCAAgC;QACtC,MAAM,oBAAoB,GAA8C;YACtE,KAAK,EAAE,6BAA6B;YACpC,GAAG,EAAE,uBAAuB,EAAE,iBAAiB;YAC/C,IAAI,EAAE,uBAAuB,EAAE,iBAAiB;YAChD,OAAO,EAAE,uBAAuB,EAAE,iBAAiB;YACnD,YAAY,EAAE,uBAAuB;YACrC,IAAI,EAAE,uBAAuB;YAC7B,GAAG,EAAE,oCAAoC;YACzC,IAAI,EAAE,qCAAqC;YAC3C,GAAG,EAAE,qBAAqB;YAC1B,QAAQ,EAAE,8CAA8C;YACxD,EAAE,EAAE,iCAAiC;YACrC,EAAE,EAAE,oCAAoC;SACzC,CAAC;QACF,MAAM,MAAM,GAAG,oBAAoB,CAAC,IAAI,CAAC,eAAe,CAAC,CAAC;QAC1D,IAAI,CAAC,MAAM,EAAE,CAAC;YACZ,MAAM,IAAI,KAAK,CACb,kCAAkC,IAAI,CAAC,eAAe,EAAE,CACzD,CAAC;QACJ,CAAC;QACD,OAAO,MAAM,CAAC;IAChB,CAAC;CACF;AA1FD,8DA0FC"}
+{"version":3,"file":"power-platform-api-discovery.js","sourceRoot":"","sources":["../../src/power-platform-api-discovery.ts"],"names":[],"mappings":";;;AAAA;;;GAGG;AACH,IAAY,eAaX;AAbD,WAAY,eAAe;IACzB,kCAAe,CAAA;IACf,8BAAW,CAAA;IACX,gCAAa,CAAA;IACb,sCAAmB,CAAA;IACnB,gDAA6B,CAAA;IAC7B,gCAAa,CAAA;IACb,8BAAW,CAAA;IACX,gCAAa,CAAA;IACb,8BAAW,CAAA;IACX,wCAAqB,CAAA;IACrB,4BAAS,CAAA;IACT,4BAAS,CAAA;AACX,CAAC,EAbW,eAAe,+BAAf,eAAe,QAa1B;AAED,MAAa,yBAAyB;IAGpC,YAAY,eAAgC;QAC1C,IAAI,CAAC,eAAe,GAAG,eAAe,CAAC;IACzC,CAAC;IAEM,gBAAgB;QACrB,OAAO,WAAW,IAAI,CAAC,gCAAgC,EAAE,EAAE,CAAC;IAC9D,CAAC;IAEM,oBAAoB;QACzB,OAAO,IAAI,CAAC,gCAAgC,EAAE,CAAC;IACjD,CAAC;IAEM,iBAAiB,CAAC,QAAgB;QACvC,OAAO,IAAI,CAAC,+BAA+B,CAAC,QAAQ,CAAC,CAAC;IACxD,CAAC;IAEM,8BAA8B,CAAC,QAAgB;QACpD,OAAO,IAAI,CAAC,+BAA+B,CAAC,QAAQ,EAAE,KAAK,CAAC,CAAC;IAC/D,CAAC;IAEO,+BAA+B,CACrC,kBAA0B,EAC1B,iBAAyB,EAAE;QAE3B,IAAI,CAAC,iBAAiB,CAAC,IAAI,CAAC,kBAAkB,CAAC,EAAE,CAAC;YAChD,MAAM,IAAI,KAAK,CACb,wKAAwK,kBAAkB,EAAE,CAC7L,CAAC;QACJ,CAAC;QAED,MAAM,aAAa,GAAG,QAAQ,CAAC;QAC/B,MAAM,mBAAmB,GAAG,IAAI,CAAC,sBAAsB,EAAE,CAAC;QAC1D,MAAM,OAAO,GAAG,kBAAkB,CAAC,WAAW,EAAE,CAAC,OAAO,CAAC,IAAI,EAAE,EAAE,CAAC,CAAC;QAEnE,IAAI,mBAAmB,IAAI,OAAO,CAAC,MAAM,EAAE,CAAC;YAC1C,MAAM,IAAI,KAAK,CACb,yGACE,mBAAmB,GAAG,CACxB,0BAA0B,OAAO,EAAE,CACpC,CAAC;QACJ,CAAC;QAED,MAAM,aAAa,GAAG,OAAO,CAAC,SAAS,CACrC,OAAO,CAAC,MAAM,GAAG,mBAAmB,CACrC,CAAC;QACF,MAAM,aAAa,GAAG,OAAO,CAAC,SAAS,CACrC,CAAC,EACD,OAAO,CAAC,MAAM,GAAG,mBAAmB,CACrC,CAAC;QACF,MAAM,cAAc,GAAG,IAAI,CAAC,gCAAgC,EAAE,CAAC;QAE/D,OAAO,GAAG,cAAc,GAAG,aAAa,IAAI,aAAa,IAAI,aAAa,IAAI,cAAc,EAAE,CAAC;IACjG,CAAC;IAEO,sBAAsB;QAC5B,QAAQ,IAAI,CAAC,eAAe,EAAE,CAAC;YAC/B,KAAK,eAAe,CAAC,YAAY,CAAC;YAClC,KAAK,eAAe,CAAC,IAAI;gBACvB,OAAO,CAAC,CAAC;YACX;gBACE,OAAO,CAAC,CAAC;QACX,CAAC;IACH,CAAC;IAEO,gCAAgC;QACtC,MAAM,oBAAoB,GAA8C;YACtE,KAAK,EAAE,6BAA6B;YACpC,GAAG,EAAE,uBAAuB,EAAE,iBAAiB;YAC/C,IAAI,EAAE,uBAAuB,EAAE,iBAAiB;YAChD,OAAO,EAAE,uBAAuB,EAAE,iBAAiB;YACnD,YAAY,EAAE,uBAAuB;YACrC,IAAI,EAAE,uBAAuB;YAC7B,GAAG,EAAE,oCAAoC;YACzC,IAAI,EAAE,qCAAqC;YAC3C,GAAG,EAAE,qBAAqB;YAC1B,QAAQ,EAAE,8CAA8C;YACxD,EAAE,EAAE,iCAAiC;YACrC,EAAE,EAAE,oCAAoC;SACzC,CAAC;QACF,MAAM,MAAM,GAAG,oBAAoB,CAAC,IAAI,CAAC,eAAe,CAAC,CAAC;QAC1D,IAAI,CAAC,MAAM,EAAE,CAAC;YACZ,MAAM,IAAI,KAAK,CACb,kCAAkC,IAAI,CAAC,eAAe,EAAE,CACzD,CAAC;QACJ,CAAC;QACD,OAAO,MAAM,CAAC;IAChB,CAAC;CACF;AA1FD,8DA0FC"}

package/dist/cjs/utility.d.ts

@@ -3,12 +3,48 @@ import { TurnContext } from '@microsoft/agents-hosting';
  * Utility class providing helper methods for agent runtime operations.
  */
 export declare class Utility {
+    private static cachedPackageName;
     /**
+     * Reads the application name from package.json at module load time.
+     * This ensures file I/O happens during initialization, not during requests.
+     *
+     * Note: Uses process.cwd() which assumes the application is started from its root directory.
+     * This is a fallback mechanism - npm_package_name (checked first in getApplicationName) is
+     * the preferred source as it's reliably set by npm/pnpm when running package scripts.
+     */
+    private static initPackageName;
+    /**
+     * **WARNING: NO SIGNATURE VERIFICATION** - This method uses jwt.decode() which does NOT
+     * verify the token signature. The token claims can be spoofed by malicious actors.
+     * This method is ONLY suitable for logging, analytics, and diagnostics purposes.
+     * Do NOT use the returned value for authorization, access control, or security decisions.
+     *
      * Decodes the current token and retrieves the App ID (appid or azp claim).
+     *
+     * Note: Returns a default GUID ('00000000-0000-0000-0000-000000000000') for empty tokens
+     * for backward compatibility with callers that expect a valid-looking GUID.
+     * For agent identification where empty string is preferred, use {@link getAgentIdFromToken}.
+     *
      * @param token Token to Decode
-     * @returns AppId
+     * @returns AppId, or default GUID for empty token, or empty string if decode fails
      */
     static GetAppIdFromToken(token: string): string;
+    /**
+     * **WARNING: NO SIGNATURE VERIFICATION** - This method uses jwt.decode() which does NOT
+     * verify the token signature. The token claims can be spoofed by malicious actors.
+     * This method is ONLY suitable for logging, analytics, and diagnostics purposes.
+     * Do NOT use the returned value for authorization, access control, or security decisions.
+     *
+     * Decodes the token and retrieves the best available agent identifier.
+     * Checks claims in priority order: xms_par_app_azp (agent blueprint ID) > appid > azp.
+     *
+     * Note: Returns empty string for empty/missing tokens (unlike {@link GetAppIdFromToken} which
+     * returns a default GUID). This allows callers to omit headers when no identifier is available.
+     *
+     * @param token JWT token to decode
+     * @returns Agent ID (GUID) or empty string if not found or token is empty
+     */
+    static getAgentIdFromToken(token: string): string;
     /**
      * Resolves the agent identity from the turn context or auth token.
      * @param context Turn Context of the turn.
@@ -22,5 +58,16 @@ export declare class Utility {
      * @returns Formatted User-Agent header string.
      */
     static GetUserAgentHeader(orchestrator?: string): string;
+    /**
+     * Gets the application name from npm_package_name environment variable or package.json.
+     * The package.json result is cached at module load time to avoid sync I/O during requests.
+     * @returns Application name or undefined if not available.
+     */
+    static getApplicationName(): string | undefined;
+    /**
+     * Resets the cached application name. Used for testing purposes.
+     * @internal
+     */
+    static resetApplicationNameCache(): void;
 }
 //# sourceMappingURL=utility.d.ts.map

package/dist/cjs/utility.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"utility.d.ts","sourceRoot":"","sources":["../../src/utility.ts"],"names":[],"mappings":"AAGA,OAAO,EAAE,WAAW,EAAE,MAAM,2BAA2B,CAAC;AAMxD;;GAEG;AACH,qBAAa,OAAO;IAClB;;;;OAIG;WACW,iBAAiB,CAAC,KAAK,EAAE,MAAM,GAAG,MAAM;IAoBtD;;;;;OAKG;WACW,oBAAoB,CAAC,OAAO,EAAE,WAAW,EAAE,SAAS,EAAE,MAAM,GAAG,MAAM;IASnF;;;;OAIG;WACW,kBAAkB,CAAC,YAAY,CAAC,EAAE,MAAM,GAAG,MAAM;CAKhE"}
+{"version":3,"file":"utility.d.ts","sourceRoot":"","sources":["../../src/utility.ts"],"names":[],"mappings":"AAGA,OAAO,EAAE,WAAW,EAAE,MAAM,2BAA2B,CAAC;AAQxD;;GAEG;AACH,qBAAa,OAAO;IAIlB,OAAO,CAAC,MAAM,CAAC,iBAAiB,CAA4C;IAE5E;;;;;;;OAOG;IACH,OAAO,CAAC,MAAM,CAAC,eAAe;IAW9B;;;;;;;;;;;;;;OAcG;WACW,iBAAiB,CAAC,KAAK,EAAE,MAAM,GAAG,MAAM;IAoBtD;;;;;;;;;;;;;;OAcG;WACW,mBAAmB,CAAC,KAAK,EAAE,MAAM,GAAG,MAAM;IAmBxD;;;;;OAKG;WACW,oBAAoB,CAAC,OAAO,EAAE,WAAW,EAAE,SAAS,EAAE,MAAM,GAAG,MAAM;IASnF;;;;OAIG;WACW,kBAAkB,CAAC,YAAY,CAAC,EAAE,MAAM,GAAG,MAAM;IAM/D;;;;OAIG;WACW,kBAAkB,IAAI,MAAM,GAAG,SAAS;IAYtD;;;OAGG;WACW,yBAAyB,IAAI,IAAI;CAGhD"}

package/dist/cjs/utility.js

@@ -41,15 +41,47 @@ Object.defineProperty(exports, "__esModule", { value: true });
 exports.Utility = void 0;
 const jwt = __importStar(require("jsonwebtoken"));
 const os_1 = __importDefault(require("os"));
+const fs_1 = __importDefault(require("fs"));
+const path_1 = __importDefault(require("path"));
 const version_1 = require("./version");
 /**
  * Utility class providing helper methods for agent runtime operations.
  */
 class Utility {
     /**
+     * Reads the application name from package.json at module load time.
+     * This ensures file I/O happens during initialization, not during requests.
+     *
+     * Note: Uses process.cwd() which assumes the application is started from its root directory.
+     * This is a fallback mechanism - npm_package_name (checked first in getApplicationName) is
+     * the preferred source as it's reliably set by npm/pnpm when running package scripts.
+     */
+    static initPackageName() {
+        try {
+            const packageJsonPath = path_1.default.resolve(process.cwd(), 'package.json');
+            const packageJson = JSON.parse(fs_1.default.readFileSync(packageJsonPath, 'utf-8'));
+            return packageJson.name || null;
+        }
+        catch {
+            // TODO: Add debug-level logging once a logger implementation is available
+            // to help troubleshoot package.json read failures in production environments
+            return null;
+        }
+    }
+    /**
+     * **WARNING: NO SIGNATURE VERIFICATION** - This method uses jwt.decode() which does NOT
+     * verify the token signature. The token claims can be spoofed by malicious actors.
+     * This method is ONLY suitable for logging, analytics, and diagnostics purposes.
+     * Do NOT use the returned value for authorization, access control, or security decisions.
+     *
      * Decodes the current token and retrieves the App ID (appid or azp claim).
+     *
+     * Note: Returns a default GUID ('00000000-0000-0000-0000-000000000000') for empty tokens
+     * for backward compatibility with callers that expect a valid-looking GUID.
+     * For agent identification where empty string is preferred, use {@link getAgentIdFromToken}.
+     *
      * @param token Token to Decode
-     * @returns AppId
+     * @returns AppId, or default GUID for empty token, or empty string if decode fails
      */
     static GetAppIdFromToken(token) {
         if (!token || token.trim() === '') {
@@ -69,6 +101,38 @@ class Utility {
             return '';
         }
     }
+    /**
+     * **WARNING: NO SIGNATURE VERIFICATION** - This method uses jwt.decode() which does NOT
+     * verify the token signature. The token claims can be spoofed by malicious actors.
+     * This method is ONLY suitable for logging, analytics, and diagnostics purposes.
+     * Do NOT use the returned value for authorization, access control, or security decisions.
+     *
+     * Decodes the token and retrieves the best available agent identifier.
+     * Checks claims in priority order: xms_par_app_azp (agent blueprint ID) > appid > azp.
+     *
+     * Note: Returns empty string for empty/missing tokens (unlike {@link GetAppIdFromToken} which
+     * returns a default GUID). This allows callers to omit headers when no identifier is available.
+     *
+     * @param token JWT token to decode
+     * @returns Agent ID (GUID) or empty string if not found or token is empty
+     */
+    static getAgentIdFromToken(token) {
+        if (!token || token.trim() === '') {
+            return '';
+        }
+        try {
+            const decoded = jwt.decode(token);
+            if (!decoded) {
+                return '';
+            }
+            // Priority: xms_par_app_azp (agent blueprint ID) > appid > azp
+            return decoded['xms_par_app_azp'] || decoded['appid'] || decoded['azp'] || '';
+        }
+        catch (_error) {
+            // Silent error handling - return empty string on decode failure
+            return '';
+        }
+    }
     /**
      * Resolves the agent identity from the turn context or auth token.
      * @param context Turn Context of the turn.
@@ -92,6 +156,32 @@ class Utility {
         const orchestratorPart = orchestrator ? `; ${orchestrator}` : '';
         return `Agent365SDK/${version_1.LIB_VERSION} (${osType}; Node.js ${process.version}${orchestratorPart})`;
     }
+    /**
+     * Gets the application name from npm_package_name environment variable or package.json.
+     * The package.json result is cached at module load time to avoid sync I/O during requests.
+     * @returns Application name or undefined if not available.
+     */
+    static getApplicationName() {
+        // First try npm_package_name (set automatically by npm/pnpm when running scripts)
+        // eslint-disable-next-line no-restricted-properties -- npm_package_name is set by npm at runtime, not a configurable setting
+        if (process.env.npm_package_name) {
+            // eslint-disable-next-line no-restricted-properties -- npm_package_name is set by npm at runtime, not a configurable setting
+            return process.env.npm_package_name;
+        }
+        // Fall back to cached package.json name (read at module load time)
+        return this.cachedPackageName || undefined;
+    }
+    /**
+     * Resets the cached application name. Used for testing purposes.
+     * @internal
+     */
+    static resetApplicationNameCache() {
+        this.cachedPackageName = Utility.initPackageName();
+    }
 }
 exports.Utility = Utility;
+// Cache for application name read from package.json
+// null = checked but not found, string = found
+// Eagerly initialized at module load time to avoid sync I/O during requests
+Utility.cachedPackageName = Utility.initPackageName();
 //# sourceMappingURL=utility.js.map

package/dist/cjs/utility.js.map

@@ -1 +1 @@
-{"version":3,"file":"utility.js","sourceRoot":"","sources":["../../src/utility.ts"],"names":[],"mappings":";AAAA,uCAAuC;AACvC,kCAAkC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAGlC,kDAAoC;AACpC,4CAAoB;AAEpB,uCAAwC;AAExC;;GAEG;AACH,MAAa,OAAO;IAClB;;;;OAIG;IACI,MAAM,CAAC,iBAAiB,CAAC,KAAa;QAC3C,IAAI,CAAC,KAAK,IAAI,KAAK,CAAC,IAAI,EAAE,KAAK,EAAE,EAAE,CAAC;YAClC,OAAO,sCAAsC,CAAC;QAChD,CAAC;QAED,IAAI,CAAC;YACH,MAAM,OAAO,GAAG,GAAG,CAAC,MAAM,CAAC,KAAK,CAAmB,CAAC;YACpD,IAAI,CAAC,OAAO,EAAE,CAAC;gBACb,OAAO,EAAE,CAAC;YACZ,CAAC;YAED,yDAAyD;YACzD,MAAM,UAAU,GAAG,OAAO,CAAC,OAAO,CAAC,IAAI,OAAO,CAAC,KAAK,CAAC,CAAC;YACtD,OAAO,UAAU,IAAI,EAAE,CAAC;QAC1B,CAAC;QAAC,OAAO,MAAM,EAAE,CAAC;YAChB,gEAAgE;YAChE,OAAO,EAAE,CAAC;QACZ,CAAC;IACH,CAAC;IAED;;;;;OAKG;IACI,MAAM,CAAC,oBAAoB,CAAC,OAAoB,EAAE,SAAiB;QACxE,gDAAgD;QAChD,MAAM,YAAY,GAAG,OAAO,CAAC,QAAQ,CAAC,gBAAgB,EAAE;YACtD,CAAC,CAAC,OAAO,CAAC,QAAQ,CAAC,oBAAoB,EAAE,IAAI,EAAE;YAC/C,CAAC,CAAC,IAAI,CAAC,iBAAiB,CAAC,SAAS,CAAC,CAAC;QAEtC,OAAO,YAAY,CAAC;IACtB,CAAC;IAED;;;;OAIG;IACI,MAAM,CAAC,kBAAkB,CAAC,YAAqB;QACpD,MAAM,MAAM,GAAG,YAAE,CAAC,IAAI,EAAE,CAAC;QACzB,MAAM,gBAAgB,GAAG,YAAY,CAAC,CAAC,CAAC,KAAK,YAAY,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;QACjE,OAAO,eAAe,qBAAW,KAAK,MAAM,aAAa,OAAO,CAAC,OAAO,GAAG,gBAAgB,GAAG,CAAC;IACjG,CAAC;CACF;AAnDD,0BAmDC"}
+{"version":3,"file":"utility.js","sourceRoot":"","sources":["../../src/utility.ts"],"names":[],"mappings":";AAAA,uCAAuC;AACvC,kCAAkC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAGlC,kDAAoC;AACpC,4CAAoB;AACpB,4CAAoB;AACpB,gDAAwB;AAExB,uCAAwC;AAExC;;GAEG;AACH,MAAa,OAAO;IAMlB;;;;;;;OAOG;IACK,MAAM,CAAC,eAAe;QAC5B,IAAI,CAAC;YACH,MAAM,eAAe,GAAG,cAAI,CAAC,OAAO,CAAC,OAAO,CAAC,GAAG,EAAE,EAAE,cAAc,CAAC,CAAC;YACpE,MAAM,WAAW,GAAG,IAAI,CAAC,KAAK,CAAC,YAAE,CAAC,YAAY,CAAC,eAAe,EAAE,OAAO,CAAC,CAAC,CAAC;YAC1E,OAAO,WAAW,CAAC,IAAI,IAAI,IAAI,CAAC;QAClC,CAAC;QAAC,MAAM,CAAC;YACP,0EAA0E;YAC1E,6EAA6E;YAC7E,OAAO,IAAI,CAAC;QACd,CAAC;IACH,CAAC;IACD;;;;;;;;;;;;;;OAcG;IACI,MAAM,CAAC,iBAAiB,CAAC,KAAa;QAC3C,IAAI,CAAC,KAAK,IAAI,KAAK,CAAC,IAAI,EAAE,KAAK,EAAE,EAAE,CAAC;YAClC,OAAO,sCAAsC,CAAC;QAChD,CAAC;QAED,IAAI,CAAC;YACH,MAAM,OAAO,GAAG,GAAG,CAAC,MAAM,CAAC,KAAK,CAAmB,CAAC;YACpD,IAAI,CAAC,OAAO,EAAE,CAAC;gBACb,OAAO,EAAE,CAAC;YACZ,CAAC;YAED,yDAAyD;YACzD,MAAM,UAAU,GAAG,OAAO,CAAC,OAAO,CAAC,IAAI,OAAO,CAAC,KAAK,CAAC,CAAC;YACtD,OAAO,UAAU,IAAI,EAAE,CAAC;QAC1B,CAAC;QAAC,OAAO,MAAM,EAAE,CAAC;YAChB,gEAAgE;YAChE,OAAO,EAAE,CAAC;QACZ,CAAC;IACH,CAAC;IAED;;;;;;;;;;;;;;OAcG;IACI,MAAM,CAAC,mBAAmB,CAAC,KAAa;QAC7C,IAAI,CAAC,KAAK,IAAI,KAAK,CAAC,IAAI,EAAE,KAAK,EAAE,EAAE,CAAC;YAClC,OAAO,EAAE,CAAC;QACZ,CAAC;QAED,IAAI,CAAC;YACH,MAAM,OAAO,GAAG,GAAG,CAAC,MAAM,CAAC,KAAK,CAAmB,CAAC;YACpD,IAAI,CAAC,OAAO,EAAE,CAAC;gBACb,OAAO,EAAE,CAAC;YACZ,CAAC;YAED,+DAA+D;YAC/D,OAAO,OAAO,CAAC,iBAAiB,CAAC,IAAI,OAAO,CAAC,OAAO,CAAC,IAAI,OAAO,CAAC,KAAK,CAAC,IAAI,EAAE,CAAC;QAChF,CAAC;QAAC,OAAO,MAAM,EAAE,CAAC;YAChB,gEAAgE;YAChE,OAAO,EAAE,CAAC;QACZ,CAAC;IACH,CAAC;IAED;;;;;OAKG;IACI,MAAM,CAAC,oBAAoB,CAAC,OAAoB,EAAE,SAAiB;QACxE,gDAAgD;QAChD,MAAM,YAAY,GAAG,OAAO,CAAC,QAAQ,CAAC,gBAAgB,EAAE;YACtD,CAAC,CAAC,OAAO,CAAC,QAAQ,CAAC,oBAAoB,EAAE,IAAI,EAAE;YAC/C,CAAC,CAAC,IAAI,CAAC,iBAAiB,CAAC,SAAS,CAAC,CAAC;QAEtC,OAAO,YAAY,CAAC;IACtB,CAAC;IAED;;;;OAIG;IACI,MAAM,CAAC,kBAAkB,CAAC,YAAqB;QACpD,MAAM,MAAM,GAAG,YAAE,CAAC,IAAI,EAAE,CAAC;QACzB,MAAM,gBAAgB,GAAG,YAAY,CAAC,CAAC,CAAC,KAAK,YAAY,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;QACjE,OAAO,eAAe,qBAAW,KAAK,MAAM,aAAa,OAAO,CAAC,OAAO,GAAG,gBAAgB,GAAG,CAAC;IACjG,CAAC;IAED;;;;OAIG;IACI,MAAM,CAAC,kBAAkB;QAC9B,kFAAkF;QAClF,6HAA6H;QAC7H,IAAI,OAAO,CAAC,GAAG,CAAC,gBAAgB,EAAE,CAAC;YACjC,6HAA6H;YAC7H,OAAO,OAAO,CAAC,GAAG,CAAC,gBAAgB,CAAC;QACtC,CAAC;QAED,mEAAmE;QACnE,OAAO,IAAI,CAAC,iBAAiB,IAAI,SAAS,CAAC;IAC7C,CAAC;IAED;;;OAGG;IACI,MAAM,CAAC,yBAAyB;QACrC,IAAI,CAAC,iBAAiB,GAAG,OAAO,CAAC,eAAe,EAAE,CAAC;IACrD,CAAC;;AA/IH,0BAgJC;AA/IC,oDAAoD;AACpD,+CAA+C;AAC/C,4EAA4E;AAC7D,yBAAiB,GAAkB,OAAO,CAAC,eAAe,EAAE,CAAC"}

package/dist/cjs/version.d.ts

@@ -1,2 +1,2 @@
-export declare const LIB_VERSION = "0.1.0-preview.93";
+export declare const LIB_VERSION = "0.2.0-preview.1";
 //# sourceMappingURL=version.d.ts.map

package/dist/cjs/version.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"version.d.ts","sourceRoot":"","sources":["../../src/version.ts"],"names":[],"mappings":"AAAA,eAAO,MAAM,WAAW,qBAAqB,CAAC"}
+{"version":3,"file":"version.d.ts","sourceRoot":"","sources":["../../src/version.ts"],"names":[],"mappings":"AAAA,eAAO,MAAM,WAAW,oBAAoB,CAAC"}

package/dist/cjs/version.js

@@ -1,5 +1,5 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.LIB_VERSION = void 0;
-exports.LIB_VERSION = "0.1.0-preview.93";
+exports.LIB_VERSION = "0.2.0-preview.1";
 //# sourceMappingURL=version.js.map

package/dist/cjs/version.js.map

@@ -1 +1 @@
-{"version":3,"file":"version.js","sourceRoot":"","sources":["../../src/version.ts"],"names":[],"mappings":";;;AAAa,QAAA,WAAW,GAAG,kBAAkB,CAAC"}
+{"version":3,"file":"version.js","sourceRoot":"","sources":["../../src/version.ts"],"names":[],"mappings":";;;AAAa,QAAA,WAAW,GAAG,iBAAiB,CAAC"}

package/dist/esm/agentic-authorization-service.d.ts

@@ -1,5 +1,28 @@
 import { TurnContext, Authorization } from '@microsoft/agents-hosting';
+/**
+ * Service for handling agentic user authentication.
+ */
 export declare class AgenticAuthenticationService {
+    /**
+     * Gets an agentic user token for platform authentication.
+     * Uses the default MCP platform authentication scope.
+     *
+     * @param authorization The authorization handler.
+     * @param authHandlerName The name of the auth handler to use.
+     * @param turnContext The turn context for the current request.
+     * @returns The token string, or empty string if no token was returned.
+     * @deprecated Use the overload with explicit scopes parameter for better control over requested permissions.
+     */
     static GetAgenticUserToken(authorization: Authorization, authHandlerName: string, turnContext: TurnContext): Promise<string>;
+    /**
+     * Gets an agentic user token for platform authentication.
+     *
+     * @param authorization The authorization handler.
+     * @param authHandlerName The name of the auth handler to use.
+     * @param turnContext The turn context for the current request.
+     * @param scopes The OAuth scopes to request. Should be obtained from the appropriate configuration (e.g., ToolingConfiguration.mcpPlatformAuthenticationScope).
+     * @returns The token string, or empty string if no token was returned.
+     */
+    static GetAgenticUserToken(authorization: Authorization, authHandlerName: string, turnContext: TurnContext, scopes: string[]): Promise<string>;
 }
 //# sourceMappingURL=agentic-authorization-service.d.ts.map

package/dist/esm/agentic-authorization-service.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"agentic-authorization-service.d.ts","sourceRoot":"","sources":["../../src/agentic-authorization-service.ts"],"names":[],"mappings":"AAGA,OAAO,EAAE,WAAW,EAAE,aAAa,EAAE,MAAM,2BAA2B,CAAC;AAGvE,qBAAa,4BAA4B;WACnB,mBAAmB,CAAC,aAAa,EAAE,aAAa,EAAE,eAAe,EAAE,MAAM,EAAE,WAAW,EAAE,WAAW;CAIxH"}
+{"version":3,"file":"agentic-authorization-service.d.ts","sourceRoot":"","sources":["../../src/agentic-authorization-service.ts"],"names":[],"mappings":"AAGA,OAAO,EAAE,WAAW,EAAE,aAAa,EAAE,MAAM,2BAA2B,CAAC;AAGvE;;GAEG;AACH,qBAAa,4BAA4B;IACvC;;;;;;;;;OASG;WACiB,mBAAmB,CACrC,aAAa,EAAE,aAAa,EAC5B,eAAe,EAAE,MAAM,EACvB,WAAW,EAAE,WAAW,GACvB,OAAO,CAAC,MAAM,CAAC;IAElB;;;;;;;;OAQG;WACiB,mBAAmB,CACrC,aAAa,EAAE,aAAa,EAC5B,eAAe,EAAE,MAAM,EACvB,WAAW,EAAE,WAAW,EACxB,MAAM,EAAE,MAAM,EAAE,GACf,OAAO,CAAC,MAAM,CAAC;CAYnB"}

package/dist/esm/agentic-authorization-service.js

@@ -1,10 +1,14 @@
 // Copyright (c) Microsoft Corporation.
 // Licensed under the MIT License.
-import { getMcpPlatformAuthenticationScope } from './environment-utils';
+import { PROD_MCP_PLATFORM_AUTHENTICATION_SCOPE } from './environment-utils';
+/**
+ * Service for handling agentic user authentication.
+ */
 export class AgenticAuthenticationService {
-    static async GetAgenticUserToken(authorization, authHandlerName, turnContext) {
-        const scope = getMcpPlatformAuthenticationScope();
-        return (await authorization.exchangeToken(turnContext, authHandlerName, { scopes: [scope] })).token || '';
+    static async GetAgenticUserToken(authorization, authHandlerName, turnContext, scopes) {
+        // eslint-disable-next-line @typescript-eslint/no-deprecated -- Intentional: maintaining backward compatibility for deprecated 3-param overload
+        const effectiveScopes = scopes ?? [PROD_MCP_PLATFORM_AUTHENTICATION_SCOPE];
+        return (await authorization.exchangeToken(turnContext, authHandlerName, { scopes: effectiveScopes })).token || '';
     }
 }
 //# sourceMappingURL=agentic-authorization-service.js.map

package/dist/esm/agentic-authorization-service.js.map

@@ -1 +1 @@
-{"version":3,"file":"agentic-authorization-service.js","sourceRoot":"","sources":["../../src/agentic-authorization-service.ts"],"names":[],"mappings":"AAAA,uCAAuC;AACvC,kCAAkC;AAGlC,OAAO,EAAE,iCAAiC,EAAE,MAAM,qBAAqB,CAAC;AAExE,MAAM,OAAO,4BAA4B;IAChC,MAAM,CAAC,KAAK,CAAC,mBAAmB,CAAC,aAA4B,EAAE,eAAuB,EAAE,WAAwB;QACrH,MAAM,KAAK,GAAG,iCAAiC,EAAE,CAAC;QAClD,OAAO,CAAC,MAAM,aAAa,CAAC,aAAa,CAAC,WAAW,EAAE,eAAe,EAAE,EAAE,MAAM,EAAE,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC,CAAC,KAAK,IAAI,EAAE,CAAC;IAC5G,CAAC;CACF"}
+{"version":3,"file":"agentic-authorization-service.js","sourceRoot":"","sources":["../../src/agentic-authorization-service.ts"],"names":[],"mappings":"AAAA,uCAAuC;AACvC,kCAAkC;AAGlC,OAAO,EAAE,sCAAsC,EAAE,MAAM,qBAAqB,CAAC;AAE7E;;GAEG;AACH,MAAM,OAAO,4BAA4B;IAiChC,MAAM,CAAC,KAAK,CAAC,mBAAmB,CACrC,aAA4B,EAC5B,eAAuB,EACvB,WAAwB,EACxB,MAAiB;QAEjB,+IAA+I;QAC/I,MAAM,eAAe,GAAG,MAAM,IAAI,CAAC,sCAAsC,CAAC,CAAC;QAC3E,OAAO,CAAC,MAAM,aAAa,CAAC,aAAa,CAAC,WAAW,EAAE,eAAe,EAAE,EAAE,MAAM,EAAE,eAAe,EAAE,CAAC,CAAC,CAAC,KAAK,IAAI,EAAE,CAAC;IACpH,CAAC;CACF"}

package/dist/esm/configuration/DefaultConfigurationProvider.d.ts

@@ -0,0 +1,39 @@
+import { IConfigurationProvider } from './IConfigurationProvider';
+import { RuntimeConfiguration } from './RuntimeConfiguration';
+/**
+ * Default provider that returns environment-based configuration.
+ *
+ * **Multi-tenant considerations:**
+ * This provider creates a single configuration instance at construction time,
+ * shared across all requests in a process. The default module-level providers
+ * (e.g., `defaultRuntimeConfigurationProvider`) are singletons.
+ *
+ * For multi-tenant scenarios, two approaches are supported:
+ *
+ * 1. **Dynamic override functions (recommended):** Pass override functions that
+ *    read from async context (e.g., OpenTelemetry baggage) at runtime. The same
+ *    Configuration instance returns different values per request.
+ *    ```typescript
+ *    const config = new ToolingConfiguration({
+ *      mcpPlatformEndpoint: () => {
+ *        const tenantConfig = context.active().getValue(TENANT_KEY);
+ *        return tenantConfig?.endpoint ?? 'https://default.endpoint';
+ *      }
+ *    });
+ *    ```
+ *
+ * 2. **Per-tenant providers:** Create separate provider instances for each tenant
+ *    when different tenants need different override functions entirely.
+ */
+export declare class DefaultConfigurationProvider<T extends RuntimeConfiguration> implements IConfigurationProvider<T> {
+    private readonly _configuration;
+    constructor(factory: () => T);
+    getConfiguration(): T;
+}
+/**
+ * Shared default provider for RuntimeConfiguration.
+ * Uses environment variables with no overrides - suitable for single-tenant
+ * deployments or when using dynamic override functions for multi-tenancy.
+ */
+export declare const defaultRuntimeConfigurationProvider: DefaultConfigurationProvider<RuntimeConfiguration>;
+//# sourceMappingURL=DefaultConfigurationProvider.d.ts.map

package/dist/esm/configuration/DefaultConfigurationProvider.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"DefaultConfigurationProvider.d.ts","sourceRoot":"","sources":["../../../src/configuration/DefaultConfigurationProvider.ts"],"names":[],"mappings":"AAGA,OAAO,EAAE,sBAAsB,EAAE,MAAM,0BAA0B,CAAC;AAClE,OAAO,EAAE,oBAAoB,EAAE,MAAM,wBAAwB,CAAC;AAE9D;;;;;;;;;;;;;;;;;;;;;;;;GAwBG;AACH,qBAAa,4BAA4B,CAAC,CAAC,SAAS,oBAAoB,CACtE,YAAW,sBAAsB,CAAC,CAAC,CAAC;IAEpC,OAAO,CAAC,QAAQ,CAAC,cAAc,CAAI;gBAEvB,OAAO,EAAE,MAAM,CAAC;IAI5B,gBAAgB,IAAI,CAAC;CAGtB;AAED;;;;GAIG;AACH,eAAO,MAAM,mCAAmC,oDACoB,CAAC"}