@n24q02m/mcp-relay-core 1.3.1 → 1.4.0

package/build/index.d.ts

@@ -1,6 +1,9 @@
 export * from './crypto/index.js';
+export { tryOpenBrowser } from './relay/browser.js';
 export { createSession, generatePassphrase, pollForResponses, pollForResult, type RelaySession, sendMessage } from './relay/client.js';
 export type * from './schema/types.js';
 export { deleteConfig, exportConfig, importConfig, listConfigs, readConfig, writeConfig } from './storage/config-file.js';
+export { clearMode, getMode, type ServerMode, setLocalMode } from './storage/mode.js';
 export * from './storage/resolver.js';
+export { acquireSessionLock, releaseSessionLock, type SessionInfo, writeSessionLock } from './storage/session-lock.js';
 //# sourceMappingURL=index.d.ts.map

package/build/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,cAAc,mBAAmB,CAAA;AACjC,OAAO,EACL,aAAa,EACb,kBAAkB,EAClB,gBAAgB,EAChB,aAAa,EACb,KAAK,YAAY,EACjB,WAAW,EACZ,MAAM,mBAAmB,CAAA;AAC1B,mBAAmB,mBAAmB,CAAA;AACtC,OAAO,EACL,YAAY,EACZ,YAAY,EACZ,YAAY,EACZ,WAAW,EACX,UAAU,EACV,WAAW,EACZ,MAAM,0BAA0B,CAAA;AACjC,cAAc,uBAAuB,CAAA"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,cAAc,mBAAmB,CAAA;AACjC,OAAO,EAAE,cAAc,EAAE,MAAM,oBAAoB,CAAA;AACnD,OAAO,EACL,aAAa,EACb,kBAAkB,EAClB,gBAAgB,EAChB,aAAa,EACb,KAAK,YAAY,EACjB,WAAW,EACZ,MAAM,mBAAmB,CAAA;AAC1B,mBAAmB,mBAAmB,CAAA;AACtC,OAAO,EACL,YAAY,EACZ,YAAY,EACZ,YAAY,EACZ,WAAW,EACX,UAAU,EACV,WAAW,EACZ,MAAM,0BAA0B,CAAA;AACjC,OAAO,EAAE,SAAS,EAAE,OAAO,EAAE,KAAK,UAAU,EAAE,YAAY,EAAE,MAAM,mBAAmB,CAAA;AACrF,cAAc,uBAAuB,CAAA;AACrC,OAAO,EACL,kBAAkB,EAClB,kBAAkB,EAClB,KAAK,WAAW,EAChB,gBAAgB,EACjB,MAAM,2BAA2B,CAAA"}

package/build/index.js

@@ -1,5 +1,8 @@
 export * from './crypto/index.js';
+export { tryOpenBrowser } from './relay/browser.js';
 export { createSession, generatePassphrase, pollForResponses, pollForResult, sendMessage } from './relay/client.js';
 export { deleteConfig, exportConfig, importConfig, listConfigs, readConfig, writeConfig } from './storage/config-file.js';
+export { clearMode, getMode, setLocalMode } from './storage/mode.js';
 export * from './storage/resolver.js';
+export { acquireSessionLock, releaseSessionLock, writeSessionLock } from './storage/session-lock.js';
 //# sourceMappingURL=index.js.map

package/build/index.js.map

@@ -1 +1 @@
-{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,cAAc,mBAAmB,CAAA;AACjC,OAAO,EACL,aAAa,EACb,kBAAkB,EAClB,gBAAgB,EAChB,aAAa,EAEb,WAAW,EACZ,MAAM,mBAAmB,CAAA;AAE1B,OAAO,EACL,YAAY,EACZ,YAAY,EACZ,YAAY,EACZ,WAAW,EACX,UAAU,EACV,WAAW,EACZ,MAAM,0BAA0B,CAAA;AACjC,cAAc,uBAAuB,CAAA"}
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,cAAc,mBAAmB,CAAA;AACjC,OAAO,EAAE,cAAc,EAAE,MAAM,oBAAoB,CAAA;AACnD,OAAO,EACL,aAAa,EACb,kBAAkB,EAClB,gBAAgB,EAChB,aAAa,EAEb,WAAW,EACZ,MAAM,mBAAmB,CAAA;AAE1B,OAAO,EACL,YAAY,EACZ,YAAY,EACZ,YAAY,EACZ,WAAW,EACX,UAAU,EACV,WAAW,EACZ,MAAM,0BAA0B,CAAA;AACjC,OAAO,EAAE,SAAS,EAAE,OAAO,EAAmB,YAAY,EAAE,MAAM,mBAAmB,CAAA;AACrF,cAAc,uBAAuB,CAAA;AACrC,OAAO,EACL,kBAAkB,EAClB,kBAAkB,EAElB,gBAAgB,EACjB,MAAM,2BAA2B,CAAA"}

package/build/relay/browser.d.ts

@@ -0,0 +1,15 @@
+/**
+ * Cross-platform browser opening with WSL detection.
+ */
+/**
+ * Try to open URL in default browser. Returns true if likely succeeded.
+ *
+ * Detection order:
+ * 1. win32: `start` command
+ * 2. darwin: `open` command
+ * 3. linux: check WSL then `xdg-open`
+ *
+ * Never throws. Returns false on failure.
+ */
+export declare function tryOpenBrowser(url: string): Promise<boolean>;
+//# sourceMappingURL=browser.d.ts.map

package/build/relay/browser.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"browser.d.ts","sourceRoot":"","sources":["../../src/relay/browser.ts"],"names":[],"mappings":"AAAA;;GAEG;AAuCH;;;;;;;;;GASG;AACH,wBAAsB,cAAc,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC,CAgClE"}

package/build/relay/browser.js

@@ -0,0 +1,78 @@
+/**
+ * Cross-platform browser opening with WSL detection.
+ */
+import { exec } from 'node:child_process';
+import { readFile } from 'node:fs/promises';
+import { promisify } from 'node:util';
+const execAsync = promisify(exec);
+async function isWsl() {
+    try {
+        const version = await readFile('/proc/version', 'utf-8');
+        const lower = version.toLowerCase();
+        return lower.includes('microsoft') || lower.includes('wsl');
+    }
+    catch {
+        return false;
+    }
+}
+async function openInWsl(url) {
+    // Try wslview first (from wslu package, commonly available)
+    try {
+        await execAsync(`wslview ${JSON.stringify(url)}`);
+        return true;
+    }
+    catch {
+        /* fall through */
+    }
+    // Fallback to cmd.exe /c start
+    try {
+        const escapedUrl = url.replace(/&/g, '^&');
+        await execAsync(`cmd.exe /c start ${JSON.stringify(escapedUrl)}`);
+        return true;
+    }
+    catch {
+        /* fall through */
+    }
+    return false;
+}
+/**
+ * Try to open URL in default browser. Returns true if likely succeeded.
+ *
+ * Detection order:
+ * 1. win32: `start` command
+ * 2. darwin: `open` command
+ * 3. linux: check WSL then `xdg-open`
+ *
+ * Never throws. Returns false on failure.
+ */
+export async function tryOpenBrowser(url) {
+    try {
+        // Validate URL to prevent shell injection
+        if (!/^https?:\/\//i.test(url)) {
+            return false;
+        }
+        const platform = process.platform;
+        const quotedUrl = JSON.stringify(url);
+        if (platform === 'win32') {
+            await execAsync(`start "" ${quotedUrl}`);
+            return true;
+        }
+        if (platform === 'darwin') {
+            await execAsync(`open ${quotedUrl}`);
+            return true;
+        }
+        // linux
+        if (await isWsl()) {
+            const result = await openInWsl(url);
+            if (result)
+                return true;
+            // Fall through to xdg-open
+        }
+        await execAsync(`xdg-open ${quotedUrl}`);
+        return true;
+    }
+    catch {
+        return false;
+    }
+}
+//# sourceMappingURL=browser.js.map

package/build/relay/browser.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"browser.js","sourceRoot":"","sources":["../../src/relay/browser.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,EAAE,IAAI,EAAE,MAAM,oBAAoB,CAAA;AACzC,OAAO,EAAE,QAAQ,EAAE,MAAM,kBAAkB,CAAA;AAC3C,OAAO,EAAE,SAAS,EAAE,MAAM,WAAW,CAAA;AAErC,MAAM,SAAS,GAAG,SAAS,CAAC,IAAI,CAAC,CAAA;AAEjC,KAAK,UAAU,KAAK;IAClB,IAAI,CAAC;QACH,MAAM,OAAO,GAAG,MAAM,QAAQ,CAAC,eAAe,EAAE,OAAO,CAAC,CAAA;QACxD,MAAM,KAAK,GAAG,OAAO,CAAC,WAAW,EAAE,CAAA;QACnC,OAAO,KAAK,CAAC,QAAQ,CAAC,WAAW,CAAC,IAAI,KAAK,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAA;IAC7D,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,KAAK,CAAA;IACd,CAAC;AACH,CAAC;AAED,KAAK,UAAU,SAAS,CAAC,GAAW;IAClC,4DAA4D;IAC5D,IAAI,CAAC;QACH,MAAM,SAAS,CAAC,WAAW,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,EAAE,CAAC,CAAA;QACjD,OAAO,IAAI,CAAA;IACb,CAAC;IAAC,MAAM,CAAC;QACP,kBAAkB;IACpB,CAAC;IAED,+BAA+B;IAC/B,IAAI,CAAC;QACH,MAAM,UAAU,GAAG,GAAG,CAAC,OAAO,CAAC,IAAI,EAAE,IAAI,CAAC,CAAA;QAC1C,MAAM,SAAS,CAAC,oBAAoB,IAAI,CAAC,SAAS,CAAC,UAAU,CAAC,EAAE,CAAC,CAAA;QACjE,OAAO,IAAI,CAAA;IACb,CAAC;IAAC,MAAM,CAAC;QACP,kBAAkB;IACpB,CAAC;IAED,OAAO,KAAK,CAAA;AACd,CAAC;AAED;;;;;;;;;GASG;AACH,MAAM,CAAC,KAAK,UAAU,cAAc,CAAC,GAAW;IAC9C,IAAI,CAAC;QACH,0CAA0C;QAC1C,IAAI,CAAC,eAAe,CAAC,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC;YAC/B,OAAO,KAAK,CAAA;QACd,CAAC;QAED,MAAM,QAAQ,GAAG,OAAO,CAAC,QAAQ,CAAA;QACjC,MAAM,SAAS,GAAG,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,CAAA;QAErC,IAAI,QAAQ,KAAK,OAAO,EAAE,CAAC;YACzB,MAAM,SAAS,CAAC,YAAY,SAAS,EAAE,CAAC,CAAA;YACxC,OAAO,IAAI,CAAA;QACb,CAAC;QAED,IAAI,QAAQ,KAAK,QAAQ,EAAE,CAAC;YAC1B,MAAM,SAAS,CAAC,QAAQ,SAAS,EAAE,CAAC,CAAA;YACpC,OAAO,IAAI,CAAA;QACb,CAAC;QAED,QAAQ;QACR,IAAI,MAAM,KAAK,EAAE,EAAE,CAAC;YAClB,MAAM,MAAM,GAAG,MAAM,SAAS,CAAC,GAAG,CAAC,CAAA;YACnC,IAAI,MAAM;gBAAE,OAAO,IAAI,CAAA;YACvB,2BAA2B;QAC7B,CAAC;QAED,MAAM,SAAS,CAAC,YAAY,SAAS,EAAE,CAAC,CAAA;QACxC,OAAO,IAAI,CAAA;IACb,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,KAAK,CAAA;IACd,CAAC;AACH,CAAC"}

package/build/storage/index.d.ts

@@ -1,5 +1,7 @@
 export { deleteConfig, exportConfig, importConfig, listConfigs, readConfig, setConfigPath, writeConfig } from './config-file.js';
 export { decryptData, deriveFileKey, derivePassphraseKey, encryptData } from './encryption.js';
 export { getMachineId, getUsername } from './machine-id.js';
+export { clearMode, getMode, type ServerMode, setLocalMode } from './mode.js';
 export { type ConfigSource, type ResolvedConfig, resolveConfig } from './resolver.js';
+export { acquireSessionLock, releaseSessionLock, type SessionInfo, setLockDir, writeSessionLock } from './session-lock.js';
 //# sourceMappingURL=index.d.ts.map

package/build/storage/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/storage/index.ts"],"names":[],"mappings":"AAAA,OAAO,EACL,YAAY,EACZ,YAAY,EACZ,YAAY,EACZ,WAAW,EACX,UAAU,EACV,aAAa,EACb,WAAW,EACZ,MAAM,kBAAkB,CAAA;AACzB,OAAO,EAAE,WAAW,EAAE,aAAa,EAAE,mBAAmB,EAAE,WAAW,EAAE,MAAM,iBAAiB,CAAA;AAC9F,OAAO,EAAE,YAAY,EAAE,WAAW,EAAE,MAAM,iBAAiB,CAAA;AAC3D,OAAO,EAAE,KAAK,YAAY,EAAE,KAAK,cAAc,EAAE,aAAa,EAAE,MAAM,eAAe,CAAA"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/storage/index.ts"],"names":[],"mappings":"AAAA,OAAO,EACL,YAAY,EACZ,YAAY,EACZ,YAAY,EACZ,WAAW,EACX,UAAU,EACV,aAAa,EACb,WAAW,EACZ,MAAM,kBAAkB,CAAA;AACzB,OAAO,EAAE,WAAW,EAAE,aAAa,EAAE,mBAAmB,EAAE,WAAW,EAAE,MAAM,iBAAiB,CAAA;AAC9F,OAAO,EAAE,YAAY,EAAE,WAAW,EAAE,MAAM,iBAAiB,CAAA;AAC3D,OAAO,EAAE,SAAS,EAAE,OAAO,EAAE,KAAK,UAAU,EAAE,YAAY,EAAE,MAAM,WAAW,CAAA;AAC7E,OAAO,EAAE,KAAK,YAAY,EAAE,KAAK,cAAc,EAAE,aAAa,EAAE,MAAM,eAAe,CAAA;AACrF,OAAO,EACL,kBAAkB,EAClB,kBAAkB,EAClB,KAAK,WAAW,EAChB,UAAU,EACV,gBAAgB,EACjB,MAAM,mBAAmB,CAAA"}

package/build/storage/index.js

@@ -1,5 +1,7 @@
 export { deleteConfig, exportConfig, importConfig, listConfigs, readConfig, setConfigPath, writeConfig } from './config-file.js';
 export { decryptData, deriveFileKey, derivePassphraseKey, encryptData } from './encryption.js';
 export { getMachineId, getUsername } from './machine-id.js';
+export { clearMode, getMode, setLocalMode } from './mode.js';
 export { resolveConfig } from './resolver.js';
+export { acquireSessionLock, releaseSessionLock, setLockDir, writeSessionLock } from './session-lock.js';
 //# sourceMappingURL=index.js.map

package/build/storage/index.js.map

@@ -1 +1 @@
-{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/storage/index.ts"],"names":[],"mappings":"AAAA,OAAO,EACL,YAAY,EACZ,YAAY,EACZ,YAAY,EACZ,WAAW,EACX,UAAU,EACV,aAAa,EACb,WAAW,EACZ,MAAM,kBAAkB,CAAA;AACzB,OAAO,EAAE,WAAW,EAAE,aAAa,EAAE,mBAAmB,EAAE,WAAW,EAAE,MAAM,iBAAiB,CAAA;AAC9F,OAAO,EAAE,YAAY,EAAE,WAAW,EAAE,MAAM,iBAAiB,CAAA;AAC3D,OAAO,EAA0C,aAAa,EAAE,MAAM,eAAe,CAAA"}
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/storage/index.ts"],"names":[],"mappings":"AAAA,OAAO,EACL,YAAY,EACZ,YAAY,EACZ,YAAY,EACZ,WAAW,EACX,UAAU,EACV,aAAa,EACb,WAAW,EACZ,MAAM,kBAAkB,CAAA;AACzB,OAAO,EAAE,WAAW,EAAE,aAAa,EAAE,mBAAmB,EAAE,WAAW,EAAE,MAAM,iBAAiB,CAAA;AAC9F,OAAO,EAAE,YAAY,EAAE,WAAW,EAAE,MAAM,iBAAiB,CAAA;AAC3D,OAAO,EAAE,SAAS,EAAE,OAAO,EAAmB,YAAY,EAAE,MAAM,WAAW,CAAA;AAC7E,OAAO,EAA0C,aAAa,EAAE,MAAM,eAAe,CAAA;AACrF,OAAO,EACL,kBAAkB,EAClB,kBAAkB,EAElB,UAAU,EACV,gBAAgB,EACjB,MAAM,mBAAmB,CAAA"}

package/build/storage/mode.d.ts

@@ -0,0 +1,23 @@
+/**
+ * Server mode management: local-only vs relay-configured.
+ *
+ * Persists user's choice to skip relay permanently by storing a mode marker
+ * in the existing config.enc encrypted storage.
+ */
+export type ServerMode = 'local' | 'configured' | null;
+/**
+ * Mark server as local-only (user explicitly skipped relay).
+ * Writes {"_mode": "local"} to config.enc[serverName].
+ */
+export declare function setLocalMode(serverName: string): Promise<void>;
+/**
+ * Get server mode.
+ * Returns "local" if local mode set, "configured" if has other keys, null if empty.
+ */
+export declare function getMode(serverName: string): Promise<ServerMode>;
+/**
+ * Remove mode marker (allows relay to trigger again).
+ * Deletes the server's config entry entirely.
+ */
+export declare function clearMode(serverName: string): Promise<void>;
+//# sourceMappingURL=mode.d.ts.map

package/build/storage/mode.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"mode.d.ts","sourceRoot":"","sources":["../../src/storage/mode.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAOH,MAAM,MAAM,UAAU,GAAG,OAAO,GAAG,YAAY,GAAG,IAAI,CAAA;AAEtD;;;GAGG;AACH,wBAAsB,YAAY,CAAC,UAAU,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC,CAEpE;AAED;;;GAGG;AACH,wBAAsB,OAAO,CAAC,UAAU,EAAE,MAAM,GAAG,OAAO,CAAC,UAAU,CAAC,CAiBrE;AAED;;;GAGG;AACH,wBAAsB,SAAS,CAAC,UAAU,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC,CAEjE"}

package/build/storage/mode.js

@@ -0,0 +1,43 @@
+/**
+ * Server mode management: local-only vs relay-configured.
+ *
+ * Persists user's choice to skip relay permanently by storing a mode marker
+ * in the existing config.enc encrypted storage.
+ */
+import { deleteConfig, readConfig, writeConfig } from './config-file.js';
+const MODE_KEY = '_mode';
+const LOCAL_MODE_VALUE = 'local';
+/**
+ * Mark server as local-only (user explicitly skipped relay).
+ * Writes {"_mode": "local"} to config.enc[serverName].
+ */
+export async function setLocalMode(serverName) {
+    await writeConfig(serverName, { [MODE_KEY]: LOCAL_MODE_VALUE });
+}
+/**
+ * Get server mode.
+ * Returns "local" if local mode set, "configured" if has other keys, null if empty.
+ */
+export async function getMode(serverName) {
+    const config = await readConfig(serverName);
+    if (config === null) {
+        return null;
+    }
+    if (config[MODE_KEY] === LOCAL_MODE_VALUE) {
+        return 'local';
+    }
+    // Has keys other than _mode -> configured
+    const nonModeKeys = Object.keys(config).filter((k) => k !== MODE_KEY);
+    if (nonModeKeys.length > 0) {
+        return 'configured';
+    }
+    return null;
+}
+/**
+ * Remove mode marker (allows relay to trigger again).
+ * Deletes the server's config entry entirely.
+ */
+export async function clearMode(serverName) {
+    await deleteConfig(serverName);
+}
+//# sourceMappingURL=mode.js.map

package/build/storage/mode.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"mode.js","sourceRoot":"","sources":["../../src/storage/mode.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,EAAE,YAAY,EAAE,UAAU,EAAE,WAAW,EAAE,MAAM,kBAAkB,CAAA;AAExE,MAAM,QAAQ,GAAG,OAAO,CAAA;AACxB,MAAM,gBAAgB,GAAG,OAAO,CAAA;AAIhC;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,YAAY,CAAC,UAAkB;IACnD,MAAM,WAAW,CAAC,UAAU,EAAE,EAAE,CAAC,QAAQ,CAAC,EAAE,gBAAgB,EAAE,CAAC,CAAA;AACjE,CAAC;AAED;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,OAAO,CAAC,UAAkB;IAC9C,MAAM,MAAM,GAAG,MAAM,UAAU,CAAC,UAAU,CAAC,CAAA;IAC3C,IAAI,MAAM,KAAK,IAAI,EAAE,CAAC;QACpB,OAAO,IAAI,CAAA;IACb,CAAC;IAED,IAAI,MAAM,CAAC,QAAQ,CAAC,KAAK,gBAAgB,EAAE,CAAC;QAC1C,OAAO,OAAO,CAAA;IAChB,CAAC;IAED,0CAA0C;IAC1C,MAAM,WAAW,GAAG,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,KAAK,QAAQ,CAAC,CAAA;IACrE,IAAI,WAAW,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QAC3B,OAAO,YAAY,CAAA;IACrB,CAAC;IAED,OAAO,IAAI,CAAA;AACb,CAAC;AAED;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,SAAS,CAAC,UAAkB;IAChD,MAAM,YAAY,CAAC,UAAU,CAAC,CAAA;AAChC,CAAC"}

package/build/storage/session-lock.d.ts

@@ -0,0 +1,19 @@
+/**
+ * File-based session lock to prevent duplicate relay sessions.
+ *
+ * When multiple MCP server processes start simultaneously (common in Claude Code),
+ * this lock prevents each from creating a separate relay session (rate limit:
+ * max 10 sessions/IP/10min).
+ *
+ * Lock file location: <config_dir>/mcp/relay-session-<server>.lock
+ */
+export declare function setLockDir(path: string | null): void;
+export interface SessionInfo {
+    sessionId: string;
+    relayUrl: string;
+    createdAt: number;
+}
+export declare function acquireSessionLock(serverName: string, maxAgeMs?: number): Promise<SessionInfo | null>;
+export declare function writeSessionLock(serverName: string, info: SessionInfo): Promise<void>;
+export declare function releaseSessionLock(serverName: string): Promise<void>;
+//# sourceMappingURL=session-lock.d.ts.map

package/build/storage/session-lock.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"session-lock.d.ts","sourceRoot":"","sources":["../../src/storage/session-lock.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAeH,wBAAgB,UAAU,CAAC,IAAI,EAAE,MAAM,GAAG,IAAI,GAAG,IAAI,CAEpD;AAUD,MAAM,WAAW,WAAW;IAC1B,SAAS,EAAE,MAAM,CAAA;IACjB,QAAQ,EAAE,MAAM,CAAA;IAChB,SAAS,EAAE,MAAM,CAAA;CAClB;AAQD,wBAAsB,kBAAkB,CACtC,UAAU,EAAE,MAAM,EAClB,QAAQ,SAAqB,GAC5B,OAAO,CAAC,WAAW,GAAG,IAAI,CAAC,CA2C7B;AAED,wBAAsB,gBAAgB,CAAC,UAAU,EAAE,MAAM,EAAE,IAAI,EAAE,WAAW,GAAG,OAAO,CAAC,IAAI,CAAC,CAiB3F;AAED,wBAAsB,kBAAkB,CAAC,UAAU,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC,CAS1E"}

package/build/storage/session-lock.js

@@ -0,0 +1,94 @@
+/**
+ * File-based session lock to prevent duplicate relay sessions.
+ *
+ * When multiple MCP server processes start simultaneously (common in Claude Code),
+ * this lock prevents each from creating a separate relay session (rate limit:
+ * max 10 sessions/IP/10min).
+ *
+ * Lock file location: <config_dir>/mcp/relay-session-<server>.lock
+ */
+import { existsSync } from 'node:fs';
+import { mkdir, readFile, rename, unlink, writeFile } from 'node:fs/promises';
+import { dirname, join } from 'node:path';
+import envPaths from 'env-paths';
+const paths = envPaths('mcp', { suffix: '' });
+const DEFAULT_LOCK_DIR = paths.config;
+const DEFAULT_MAX_AGE_MS = 600_000;
+// Allow overriding lock directory for testing
+let lockDirOverride = null;
+export function setLockDir(path) {
+    lockDirOverride = path;
+}
+function getLockDir() {
+    return lockDirOverride ?? DEFAULT_LOCK_DIR;
+}
+function lockPath(serverName) {
+    return join(getLockDir(), `relay-session-${serverName}.lock`);
+}
+export async function acquireSessionLock(serverName, maxAgeMs = DEFAULT_MAX_AGE_MS) {
+    const path = lockPath(serverName);
+    try {
+        if (!existsSync(path)) {
+            return null;
+        }
+        const raw = await readFile(path, 'utf-8');
+        const data = JSON.parse(raw);
+        // Validate required fields
+        if (typeof data.session_id !== 'string' ||
+            typeof data.relay_url !== 'string' ||
+            typeof data.created_at !== 'number') {
+            await releaseSessionLock(serverName);
+            return null;
+        }
+        const info = {
+            sessionId: data.session_id,
+            relayUrl: data.relay_url,
+            createdAt: data.created_at
+        };
+        const age = Date.now() - info.createdAt;
+        if (age > maxAgeMs) {
+            // Expired lock: clean up and return null
+            await releaseSessionLock(serverName);
+            return null;
+        }
+        return info;
+    }
+    catch {
+        // Corrupt or unreadable lock file: clean up and return null
+        try {
+            await releaseSessionLock(serverName);
+        }
+        catch {
+            /* ignore cleanup errors */
+        }
+        return null;
+    }
+}
+export async function writeSessionLock(serverName, info) {
+    const path = lockPath(serverName);
+    const dir = dirname(path);
+    if (!existsSync(dir)) {
+        await mkdir(dir, { recursive: true });
+    }
+    const data = {
+        session_id: info.sessionId,
+        relay_url: info.relayUrl,
+        created_at: info.createdAt
+    };
+    // Write atomically via temp file + rename
+    const tmpPath = `${path}.tmp`;
+    await writeFile(tmpPath, JSON.stringify(data), 'utf-8');
+    await rename(tmpPath, path);
+}
+export async function releaseSessionLock(serverName) {
+    const path = lockPath(serverName);
+    try {
+        if (existsSync(path)) {
+            await unlink(path);
+        }
+    }
+    catch {
+        /* ignore errors during cleanup */
+    }
+}
+//# sourceMappingURL=session-lock.js.map

package/build/storage/session-lock.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"session-lock.js","sourceRoot":"","sources":["../../src/storage/session-lock.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAEH,OAAO,EAAE,UAAU,EAAE,MAAM,SAAS,CAAA;AACpC,OAAO,EAAE,KAAK,EAAE,QAAQ,EAAE,MAAM,EAAE,MAAM,EAAE,SAAS,EAAE,MAAM,kBAAkB,CAAA;AAC7E,OAAO,EAAE,OAAO,EAAE,IAAI,EAAE,MAAM,WAAW,CAAA;AACzC,OAAO,QAAQ,MAAM,WAAW,CAAA;AAEhC,MAAM,KAAK,GAAG,QAAQ,CAAC,KAAK,EAAE,EAAE,MAAM,EAAE,EAAE,EAAE,CAAC,CAAA;AAC7C,MAAM,gBAAgB,GAAG,KAAK,CAAC,MAAM,CAAA;AAErC,MAAM,kBAAkB,GAAG,OAAO,CAAA;AAElC,8CAA8C;AAC9C,IAAI,eAAe,GAAkB,IAAI,CAAA;AAEzC,MAAM,UAAU,UAAU,CAAC,IAAmB;IAC5C,eAAe,GAAG,IAAI,CAAA;AACxB,CAAC;AAED,SAAS,UAAU;IACjB,OAAO,eAAe,IAAI,gBAAgB,CAAA;AAC5C,CAAC;AAED,SAAS,QAAQ,CAAC,UAAkB;IAClC,OAAO,IAAI,CAAC,UAAU,EAAE,EAAE,iBAAiB,UAAU,OAAO,CAAC,CAAA;AAC/D,CAAC;AAcD,MAAM,CAAC,KAAK,UAAU,kBAAkB,CACtC,UAAkB,EAClB,QAAQ,GAAG,kBAAkB;IAE7B,MAAM,IAAI,GAAG,QAAQ,CAAC,UAAU,CAAC,CAAA;IACjC,IAAI,CAAC;QACH,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC,EAAE,CAAC;YACtB,OAAO,IAAI,CAAA;QACb,CAAC;QAED,MAAM,GAAG,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,OAAO,CAAC,CAAA;QACzC,MAAM,IAAI,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAoB,CAAA;QAE/C,2BAA2B;QAC3B,IACE,OAAO,IAAI,CAAC,UAAU,KAAK,QAAQ;YACnC,OAAO,IAAI,CAAC,SAAS,KAAK,QAAQ;YAClC,OAAO,IAAI,CAAC,UAAU,KAAK,QAAQ,EACnC,CAAC;YACD,MAAM,kBAAkB,CAAC,UAAU,CAAC,CAAA;YACpC,OAAO,IAAI,CAAA;QACb,CAAC;QAED,MAAM,IAAI,GAAgB;YACxB,SAAS,EAAE,IAAI,CAAC,UAAU;YAC1B,QAAQ,EAAE,IAAI,CAAC,SAAS;YACxB,SAAS,EAAE,IAAI,CAAC,UAAU;SAC3B,CAAA;QAED,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,SAAS,CAAA;QACvC,IAAI,GAAG,GAAG,QAAQ,EAAE,CAAC;YACnB,yCAAyC;YACzC,MAAM,kBAAkB,CAAC,UAAU,CAAC,CAAA;YACpC,OAAO,IAAI,CAAA;QACb,CAAC;QAED,OAAO,IAAI,CAAA;IACb,CAAC;IAAC,MAAM,CAAC;QACP,4DAA4D;QAC5D,IAAI,CAAC;YACH,MAAM,kBAAkB,CAAC,UAAU,CAAC,CAAA;QACtC,CAAC;QAAC,MAAM,CAAC;YACP,2BAA2B;QAC7B,CAAC;QACD,OAAO,IAAI,CAAA;IACb,CAAC;AACH,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,gBAAgB,CAAC,UAAkB,EAAE,IAAiB;IAC1E,MAAM,IAAI,GAAG,QAAQ,CAAC,UAAU,CAAC,CAAA;IACjC,MAAM,GAAG,GAAG,OAAO,CAAC,IAAI,CAAC,CAAA;IACzB,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,EAAE,CAAC;QACrB,MAAM,KAAK,CAAC,GAAG,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAA;IACvC,CAAC;IAED,MAAM,IAAI,GAAoB;QAC5B,UAAU,EAAE,IAAI,CAAC,SAAS;QAC1B,SAAS,EAAE,IAAI,CAAC,QAAQ;QACxB,UAAU,EAAE,IAAI,CAAC,SAAS;KAC3B,CAAA;IAED,0CAA0C;IAC1C,MAAM,OAAO,GAAG,GAAG,IAAI,MAAM,CAAA;IAC7B,MAAM,SAAS,CAAC,OAAO,EAAE,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,EAAE,OAAO,CAAC,CAAA;IACvD,MAAM,MAAM,CAAC,OAAO,EAAE,IAAI,CAAC,CAAA;AAC7B,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,kBAAkB,CAAC,UAAkB;IACzD,MAAM,IAAI,GAAG,QAAQ,CAAC,UAAU,CAAC,CAAA;IACjC,IAAI,CAAC;QACH,IAAI,UAAU,CAAC,IAAI,CAAC,EAAE,CAAC;YACrB,MAAM,MAAM,CAAC,IAAI,CAAC,CAAA;QACpB,CAAC;IACH,CAAC;IAAC,MAAM,CAAC;QACP,kCAAkC;IACpC,CAAC;AACH,CAAC"}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@n24q02m/mcp-relay-core",
-  "version": "1.3.1",
+  "version": "1.4.0",
   "description": "Zero-config credential relay client for TypeScript MCP servers — ECDH P-256 + AES-256-GCM E2E encryption",
   "keywords": [
     "mcp",