@nekzus/liop 2.0.0-alpha.3 → 2.0.0-alpha.30

package/dist/chunk-YZVCAJJO.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../src/security/prm.ts","../src/gateway/hybrid.ts"],"names":["buildProtectedResourceMetadata","issuer","audience","LIOP_SCOPES","LiopHybridGateway","liopServer","meshNode","rpcPort","LiopMcpRouter","socket","buffer","isHttp2","log","err","stream","headers","contentType","path","req","res","url","method","callback","originalUrl","prm","meshInfo","m","baseUrl","authInfoResponse","t","authInfo","authHeader","e","body","chunk","jsonRequest","response","data","port","host","tools","tool","resolve","reject","addr","actualHost","assignedPort"],"mappings":"iLAoCO,SAASA,CAAAA,CACfC,CAAAA,CACAC,CAAAA,CAC4B,CAC5B,OAAO,CACN,QAAA,CAAUA,CAAAA,CACV,qBAAA,CAAuB,CAACD,CAAM,CAAA,CAC9B,gBAAA,CAAkBE,CAAAA,CAClB,wBAAA,CAA0B,CAAC,QAAQ,CAAA,CACnC,uBAAwB,gCACzB,CACD,CCjCO,IAAMC,CAAAA,CAAN,KAAwB,CAS9B,WAAA,CACSC,CAAAA,CACAC,CAAAA,CAA4B,IAAA,CACpCC,CAAAA,CAAkB,KAAA,CACjB,CAHO,IAAA,CAAA,UAAA,CAAAF,CAAAA,CACA,IAAA,CAAA,QAAA,CAAAC,CAAAA,CAGR,IAAA,CAAK,YAAA,CAAe,IAAA,CAAK,UAAA,CAAW,YAAA,CACpC,IAAA,CAAK,aAAA,CAAgB,IAAA,CAAK,UAAA,CAAW,aAAA,CAGrC,KAAK,MAAA,CAAS,IAAIE,CAAAA,CAAc,IAAA,CAAK,UAAA,CAAY,IAAA,CAAK,SAAUD,CAAO,CAAA,CAGvE,IAAA,CAAK,QAAA,CAAiB,CAAA,CAAA,YAAA,EAAa,CACnC,KAAK,aAAA,EAAc,CAGnB,IAAA,CAAK,QAAA,CAAgB,CAAA,CAAA,YAAA,EAAa,CAClC,IAAA,CAAK,aAAA,EAAc,CAGnB,IAAA,CAAK,SAAA,CAAgB,CAAA,CAAA,YAAA,CAAcE,CAAAA,EAAW,CAC7CA,EAAO,IAAA,CAAK,MAAA,CAASC,CAAAA,EAAW,CAC/B,IAAMC,CAAAA,CAAUD,CAAAA,CAAO,QAAA,EAAS,CAAE,UAAA,CAAW,gBAAgB,CAAA,CAC7DE,CAAAA,CAAI,IAAA,CACH,oDAAoDD,CAAAA,CAAU,eAAA,CAAkB,gBAAgB,CAAA,CACjG,CAAA,CACIA,CAAAA,CACH,IAAA,CAAK,QAAA,CAAS,IAAA,CAAK,YAAA,CAAcF,CAAM,CAAA,CAEvC,IAAA,CAAK,QAAA,CAAS,KAAK,YAAA,CAAcA,CAAM,CAAA,CAExCA,CAAAA,CAAO,OAAA,CAAQC,CAAM,EACtB,CAAC,CAAA,CACDD,CAAAA,CAAO,EAAA,CAAG,OAAA,CAAUI,CAAAA,EACnBD,EAAI,KAAA,CAAM,CAAA,uCAAA,EAA0CC,CAAAA,CAAI,OAAO,CAAA,CAAE,CAClE,EACD,CAAC,CAAA,CAGD,IAAA,CAAK,QAAA,CAAS,EAAA,CAAG,OAAA,CAAUA,CAAAA,EAC1BD,EAAI,KAAA,CAAM,CAAA,gCAAA,EAAmCC,CAAAA,CAAI,OAAO,CAAA,CAAE,CAC3D,EACA,IAAA,CAAK,QAAA,CAAS,EAAA,CAAG,OAAA,CAAUA,CAAAA,EAC1BD,CAAAA,CAAI,MAAM,CAAA,gCAAA,EAAmCC,CAAAA,CAAI,OAAO,CAAA,CAAE,CAC3D,CAAA,CAEAD,CAAAA,CAAI,IAAA,CAAK,4CAA4C,EACtD,CAvDQ,SAAA,CACA,QAAA,CACA,QAAA,CACA,OACA,YAAA,CAEA,aAAA,CAmDA,aAAA,EAAgB,CACvB,IAAA,CAAK,QAAA,CAAS,GAAG,QAAA,CAAU,CAACE,CAAAA,CAAQC,CAAAA,GAAY,CAC/C,IAAMC,EAAcD,CAAAA,CAAQ,cAAc,CAAA,CACpCE,CAAAA,CAAOF,CAAAA,CAAQ,OAAO,CAAA,CAExBC,CAAAA,GAAgB,kBAAA,CACnB,IAAA,CAAK,gBAAA,CAAiBF,CAAiC,CAAA,CAC7CG,CAAAA,GAAS,QACnB,IAAA,CAAK,iBAAA,CAAkBH,CAAAA,CAAmCC,CAAO,EAEnE,CAAC,EACF,CAEQ,aAAA,EAAgB,CACvB,IAAA,CAAK,QAAA,CAAS,EAAA,CAAG,SAAA,CAAW,MAAOG,CAAAA,CAAKC,CAAAA,GAAQ,CAC/C,IAAMC,CAAAA,CAAMF,CAAAA,CAAI,GAAA,EAAO,EAAA,CACjBG,CAAAA,CAASH,CAAAA,CAAI,MAAA,CAGnB,GAAIE,CAAAA,CAAI,UAAA,CAAW,OAAO,CAAA,EAAK,IAAA,CAAK,aAAA,CAAe,CAClD,IAAME,CAAAA,CACL,OAAO,IAAA,CAAK,aAAA,CAAc,QAAA,EAAa,UAAA,CACpC,IAAA,CAAK,aAAA,CAAc,UAAS,CAC5B,IAAA,CAAK,aAAA,CAEHC,CAAAA,CAAcL,CAAAA,CAAI,GAAA,CACxBA,CAAAA,CAAI,GAAA,CAAA,CAAOK,CAAAA,EAAe,EAAA,EAAI,KAAA,CAAM,CAAC,CAAA,EAAK,GAAA,CAC1C,GAAI,CACH,OAAOD,CAAAA,CAASJ,CAAAA,CAAKC,CAAG,CACzB,QAAE,CACDD,CAAAA,CAAI,GAAA,CAAMK,EACX,CACD,CAGA,GAAIF,CAAAA,GAAW,KAAA,EAASD,CAAAA,GAAQ,uCAAA,CAAyC,CACxE,GAAI,IAAA,CAAK,YAAA,CAAc,CACtB,IAAMI,CAAAA,CAAMxB,CAAAA,CACX,IAAA,CAAK,YAAA,CAAa,WAAU,CAC5B,IAAA,CAAK,YAAA,CAAa,WAAA,EACnB,CAAA,CACAmB,EAAI,SAAA,CAAU,GAAA,CAAK,CAAE,cAAA,CAAgB,kBAAmB,CAAC,EACzDA,CAAAA,CAAI,GAAA,CAAI,IAAA,CAAK,SAAA,CAAUK,CAAG,CAAC,CAAA,CAC3B,MACD,CACAL,CAAAA,CAAI,SAAA,CAAU,GAAG,CAAA,CACjBA,CAAAA,CAAI,IAAI,WAAW,CAAA,CACnB,MACD,CAEA,GACCE,CAAAA,GAAW,KAAA,GACVD,CAAAA,GAAQ,GAAA,EAAOA,CAAAA,GAAQ,MAAA,EAAUA,CAAAA,GAAQ,SAAA,CAAA,CACzC,CACD,GACCA,CAAAA,GAAQ,SAAA,EACRF,CAAAA,CAAI,OAAA,CAAQ,MAAA,EAAQ,QAAA,CAAS,kBAAkB,CAAA,CAC9C,CACD,IAAMO,CAAAA,CAAW,IAAA,CAAK,QAAA,CACnB,CACA,OAAQ,IAAA,CAAK,QAAA,CAAS,SAAA,EAAU,EAAG,QAAA,EAAS,EAAK,GACjD,UAAA,CAAY,IAAA,CAAK,QAAA,CACf,aAAA,EAAc,CACd,GAAA,CAAKC,GAAMA,CAAAA,CAAE,QAAA,EAAU,CAC1B,CAAA,CACC,IAAA,CACGzB,CAAAA,CAAS,IAAA,CAAK,YAAA,EAAc,SAAA,EAAU,CACtC0B,CAAAA,CAAU1B,CAAAA,CACbA,CAAAA,CAAO,SAAS,OAAO,CAAA,CACtBA,CAAAA,CACA,CAAA,EAAGA,CAAM,CAAA,KAAA,CAAA,CACV,GACG2B,CAAAA,CACL,IAAA,CAAK,YAAA,EAAgB3B,CAAAA,CAClB,CACA,MAAA,CAAAA,EACA,QAAA,CAAU,CAAA,EAAG0B,CAAO,CAAA,KAAA,CAAA,CACpB,GAAI,IAAA,CAAK,aAAA,CACN,CACA,cAAA,CAAgB,CAAA,EAAGA,CAAO,CAAA,MAAA,CAC3B,CAAA,CACC,EACJ,CAAA,CACC,MAAA,CAEJR,CAAAA,CAAI,SAAA,CAAU,GAAA,CAAK,CAAE,eAAgB,kBAAmB,CAAC,CAAA,CACzDA,CAAAA,CAAI,GAAA,CACH,IAAA,CAAK,UAAU,CACd,MAAA,CAAQ,SAAA,CACR,IAAA,CAAM,IAAA,CAAK,UAAA,CAAW,aAAA,EAAc,CACpC,IAAA,CAAMM,CAAAA,CACN,KAAA,CAAO,IAAA,CAAK,UAAA,CAAW,SAAA,GAAY,GAAA,CAAKI,CAAAA,EAAMA,CAAAA,CAAE,IAAI,CAAA,CACpD,IAAA,CAAMD,CAAAA,CACN,SAAA,CAAW,IAAI,IAAA,EAAK,CAAE,WAAA,EACvB,CAAC,CACF,CAAA,CACA,MACD,CAEAT,CAAAA,CAAI,SAAA,CAAU,GAAA,CAAK,CAAE,cAAA,CAAgB,0BAA2B,CAAC,CAAA,CACjEA,CAAAA,CAAI,GAAA,CAAI;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,gBAAA,CAWK,CAAA,CACb,MACD,CAEA,GAAIC,CAAAA,GAAQ,MAAA,EAAUC,CAAAA,GAAW,MAAA,CAAQ,CACxC,IAAIS,CAAAA,CAA4B,IAAA,CAGhC,GAAI,IAAA,CAAK,YAAA,CAAc,CACtB,IAAMC,CAAAA,CAAab,CAAAA,CAAI,OAAA,CAAQ,aAAA,CAC/B,GAAI,CAACa,CAAAA,EAAY,UAAA,CAAW,SAAS,CAAA,CAAG,CACvCZ,CAAAA,CAAI,SAAA,CAAU,GAAA,CAAK,CAClB,kBAAA,CACC,6FAAA,CACD,cAAA,CAAgB,kBACjB,CAAC,CAAA,CACDA,CAAAA,CAAI,GAAA,CAAI,IAAA,CAAK,SAAA,CAAU,CAAE,KAAA,CAAO,cAAe,CAAC,CAAC,CAAA,CACjD,MACD,CACA,GAAI,CACHW,CAAAA,CAAW,MAAM,IAAA,CAAK,YAAA,CAAa,QAAA,CAASC,CAAAA,CAAW,KAAA,CAAM,CAAC,CAAC,EAChE,CAAA,MAASC,CAAAA,CAAY,CACpBb,CAAAA,CAAI,SAAA,CAAU,GAAA,CAAK,CAClB,kBAAA,CAAoB,CAAA,iDAAA,EAAqDa,CAAAA,CAAY,OAAO,CAAA,CAAA,CAAA,CAC5F,cAAA,CAAgB,kBACjB,CAAC,CAAA,CACDb,CAAAA,CAAI,GAAA,CAAI,IAAA,CAAK,SAAA,CAAU,CAAE,KAAA,CAAO,eAAgB,CAAC,CAAC,CAAA,CAClD,MACD,CACD,CAEA,IAAIc,CAAAA,CAAO,EAAA,CACXf,CAAAA,CAAI,EAAA,CAAG,MAAA,CAASgB,CAAAA,EAAWD,CAAAA,EAAQC,CAAAA,CAAM,QAAA,EAAW,CAAA,CACpDhB,CAAAA,CAAI,EAAA,CAAG,KAAA,CAAO,SAAY,CACzB,GAAI,CACH,IAAMiB,CAAAA,CAAc,IAAA,CAAK,KAAA,CAAMF,CAAI,CAAA,CAC7BG,CAAAA,CAAW,MAAM,IAAA,CAAK,MAAA,CAAO,QAAA,CAASD,CAAAA,CAAaL,CAAQ,CAAA,CACjEX,CAAAA,CAAI,UAAU,GAAA,CAAK,CAAE,cAAA,CAAgB,kBAAmB,CAAC,CAAA,CACzDA,CAAAA,CAAI,GAAA,CAAI,IAAA,CAAK,SAAA,CAAUiB,CAAQ,CAAC,EACjC,CAAA,MAASJ,GAAAA,CAAY,CACpBpB,CAAAA,CAAI,IAAA,CACH,CAAA,kDAAA,EAAsDoB,GAAAA,CAAY,OAAO,CAAA,CAC1E,CAAA,CACAb,CAAAA,CAAI,SAAA,CAAU,GAAG,CAAA,CACjBA,CAAAA,CAAI,GAAA,CACH,IAAA,CAAK,SAAA,CAAU,CACd,OAAA,CAAS,KAAA,CACT,KAAA,CAAO,CAAE,IAAA,CAAM,MAAA,CAAQ,OAAA,CAAS,aAAc,CAC/C,CAAC,CACF,EACD,CACD,CAAC,EACF,CAAA,KACCA,CAAAA,CAAI,SAAA,CAAU,GAAG,CAAA,CACjBA,CAAAA,CAAI,GAAA,CAAI,WAAW,EAErB,CAAC,EACF,CAEQ,gBAAA,CAAiBL,CAAAA,CAAiC,CACzDA,CAAAA,CAAO,EAAA,CAAG,OAASoB,CAAAA,EAAmB,CAErC,IAAMG,CAAAA,CAAOH,CAAAA,CACTG,CAAAA,EACHzB,CAAAA,CAAI,IAAA,CACH,CAAA,yCAAA,EAA4CyB,CAAAA,CAAK,MAAM,CAAA,MAAA,CACxD,EACF,CAAC,CAAA,CACDvB,CAAAA,CAAO,OAAA,CAAQ,CAAE,SAAA,CAAW,GAAA,CAAK,cAAA,CAAgB,kBAAmB,CAAC,CAAA,CACrEA,CAAAA,CAAO,GAAA,GACR,CAEQ,iBAAA,CACPA,CAAAA,CACAC,CAAAA,CACC,CACD,IAAIkB,CAAAA,CAAO,EAAA,CACXnB,CAAAA,CAAO,EAAA,CAAG,MAAA,CAASoB,CAAAA,EAAWD,CAAAA,EAAQC,CAAAA,CAAM,QAAA,EAAW,CAAA,CACvDpB,CAAAA,CAAO,EAAA,CAAG,KAAA,CAAO,SAAY,CAC5B,GAAI,CACH,IAAIgB,CAAAA,CAA4B,IAAA,CAGhC,GAAI,IAAA,CAAK,YAAA,CAAc,CACtB,IAAMC,CAAAA,CAAahB,CAAAA,CAAQ,aAAA,CAC3B,GAAI,CAACgB,CAAAA,EAAY,WAAW,SAAS,CAAA,CAAG,CACvCjB,CAAAA,CAAO,OAAA,CAAQ,CACd,SAAA,CAAW,GAAA,CACX,kBAAA,CACC,6FAAA,CACD,cAAA,CAAgB,kBACjB,CAAC,CAAA,CACDA,CAAAA,CAAO,GAAA,CAAI,IAAA,CAAK,SAAA,CAAU,CAAE,KAAA,CAAO,cAAe,CAAC,CAAC,CAAA,CACpD,MACD,CACA,GAAI,CACHgB,CAAAA,CAAW,MAAM,IAAA,CAAK,YAAA,CAAa,QAAA,CAASC,CAAAA,CAAW,KAAA,CAAM,CAAC,CAAC,EAChE,CAAA,MAASC,CAAAA,CAAY,CACpBlB,CAAAA,CAAO,OAAA,CAAQ,CACd,SAAA,CAAW,GAAA,CACX,kBAAA,CAAoB,CAAA,iDAAA,EAAqDkB,CAAAA,CAAY,OAAO,CAAA,CAAA,CAAA,CAC5F,cAAA,CAAgB,kBACjB,CAAC,CAAA,CACDlB,CAAAA,CAAO,GAAA,CAAI,IAAA,CAAK,SAAA,CAAU,CAAE,KAAA,CAAO,eAAgB,CAAC,CAAC,EACrD,MACD,CACD,CAEA,IAAMsB,CAAAA,CAAW,MAAM,IAAA,CAAK,MAAA,CAAO,QAAA,CAAS,IAAA,CAAK,KAAA,CAAMH,CAAI,CAAA,CAAGH,CAAQ,CAAA,CAClEM,CAAAA,EACHtB,CAAAA,CAAO,OAAA,CAAQ,CACd,SAAA,CAAW,GAAA,CACX,cAAA,CAAgB,kBACjB,CAAC,CAAA,CACDA,CAAAA,CAAO,GAAA,CAAI,IAAA,CAAK,SAAA,CAAUsB,CAAQ,CAAC,CAAA,EAC7BtB,EAAO,KAAA,GACf,CAAA,KAAa,CACZA,CAAAA,CAAO,OAAA,CAAQ,CAAE,SAAA,CAAW,GAAI,CAAC,CAAA,CACjCA,CAAAA,CAAO,GAAA,GACR,CACD,CAAC,EACF,CAEA,MAAa,MAAA,CAAOwB,CAAAA,CAAcC,CAAAA,CAAe,SAAA,CAA4B,CAC5E,GAAI,IAAA,CAAK,QAAA,CAAU,CAClB,MAAM,IAAA,CAAK,QAAA,CAAS,KAAA,GAGpB,IAAMC,CAAAA,CAAQ,IAAA,CAAK,UAAA,CAAW,SAAA,EAAU,CACxC,IAAA,IAAWC,CAAAA,IAAQD,CAAAA,CAClB,MAAM,IAAA,CAAK,QAAA,CAAS,kBAAA,CAAmBC,CAAAA,CAAK,IAAI,CAAA,CAChD7B,CAAAA,CAAI,IAAA,CACH,CAAA,uDAAA,EAAmD6B,CAAAA,CAAK,IAAI,CAAA,CAC7D,EAEF,CACA,OAAO,IAAI,OAAA,CAAQ,CAACC,CAAAA,CAASC,CAAAA,GAAW,CACvC,IAAA,CAAK,SAAA,CAAU,EAAA,CAAG,OAAA,CAAU9B,CAAAA,EAAmC,CAC1DA,CAAAA,CAAI,IAAA,GAAS,YAAA,CAChBD,CAAAA,CAAI,IAAA,CACH,CAAA,2BAAA,EAA8B0B,CAAI,CAAA,sCAAA,CACnC,CAAA,CAEA1B,CAAAA,CAAI,KAAA,CAAM,CAAA,8BAAA,EAAiCC,CAAAA,CAAI,OAAO,CAAA,CAAE,CAAA,CAEzD8B,CAAAA,CAAO9B,CAAG,EACX,CAAC,CAAA,CAED,IAAA,CAAK,SAAA,CAAU,MAAA,CAAOyB,CAAAA,CAAMC,CAAAA,CAAM,IAAM,CACvC,IAAMK,CAAAA,CAAO,IAAA,CAAK,SAAA,CAAU,OAAA,EAAQ,CAC9BC,CAAAA,CACL,OAAOD,CAAAA,EAAS,QAAA,CAAWA,CAAAA,CAAOA,CAAAA,EAAM,OAAA,EAAWL,CAAAA,CAC9CO,GAAAA,CACL,OAAOF,CAAAA,EAAS,QAAA,CAAWN,CAAAA,CAAOM,CAAAA,EAAM,IAAA,EAAQN,CAAAA,CAEjD1B,CAAAA,CAAI,IAAA,CACH,CAAA,sEAAA,EAAoEiC,CAAU,CAAA,CAAA,EAAIC,GAAY,CAAA,CAC/F,CAAA,CACAJ,CAAAA,CAAQI,GAAY,EACrB,CAAC,EACF,CAAC,CACF,CAEA,MAAa,IAAA,EAAO,CACf,IAAA,CAAK,QAAA,EACR,MAAM,IAAA,CAAK,QAAA,CAAS,IAAA,EAAK,CAE1B,IAAA,CAAK,SAAA,CAAU,KAAA,EAAM,CACrB,IAAA,CAAK,QAAA,CAAS,KAAA,EAAM,CACpB,IAAA,CAAK,QAAA,CAAS,KAAA,GACf,CAEO,SAAA,EAA2B,CACjC,OAAO,IAAA,CAAK,MACb,CACD","file":"chunk-YZVCAJJO.js","sourcesContent":["/**\n * LIOP Protected Resource Metadata — RFC 9728\n *\n * Builds the JSON document served at /.well-known/oauth-protected-resource.\n * This enables MCP clients to discover the authorization server and\n * required scopes for accessing LIOP tools and resources.\n *\n * Standards: RFC 9728, MCP Spec 2025-11-25\n */\n\nimport { LIOP_SCOPES } from \"./rbac.js\";\n\n/**\n * RFC 9728 Protected Resource Metadata response.\n *\n * @see https://datatracker.ietf.org/doc/rfc9728\n */\nexport interface ProtectedResourceMetadata {\n\t/** Identifier for the protected resource. */\n\tresource: string;\n\t/** Array of authorization server issuer URLs that can issue tokens for this resource. */\n\tauthorization_servers: string[];\n\t/** OAuth scopes accepted by this resource. */\n\tscopes_supported: readonly string[];\n\t/** Methods of presenting the bearer token (always \"header\" for LIOP). */\n\tbearer_methods_supported: string[];\n\t/** URL to the resource documentation. */\n\tresource_documentation: string;\n}\n\n/**\n * Builds the Protected Resource Metadata document (RFC 9728).\n *\n * @param issuer - OIDC issuer URL of the Nexus authorization server\n * @param audience - JWT audience claim (resource identifier)\n */\nexport function buildProtectedResourceMetadata(\n\tissuer: string,\n\taudience: string,\n): ProtectedResourceMetadata {\n\treturn {\n\t\tresource: audience,\n\t\tauthorization_servers: [issuer],\n\t\tscopes_supported: LIOP_SCOPES,\n\t\tbearer_methods_supported: [\"header\"],\n\t\tresource_documentation: \"https://github.com/nekzus/liop\",\n\t};\n}\n","import * as http from \"node:http\";\nimport * as http2 from \"node:http2\";\nimport * as net from \"node:net\";\nimport type { MeshNode } from \"../mesh/index.js\";\nimport type { AuthInfo, JwtValidator } from \"../security/jwt-validator.js\";\nimport { buildProtectedResourceMetadata } from \"../security/prm.js\";\nimport type { LiopServer } from \"../server/index.js\";\nimport { log } from \"../utils/logger.js\";\nimport { LiopMcpRouter } from \"./router.js\";\n\n/**\n * LIOP Hybrid Gateway\n * High-level orchestration for connecting MCP (JSON-RPC) clients to the LIOP Mesh.\n */\nexport class LiopHybridGateway {\n\tprivate netServer: net.Server;\n\tprivate h2Server: http2.Http2Server;\n\tprivate h1Server: http.Server;\n\tprivate router: LiopMcpRouter;\n\tprivate jwtValidator?: JwtValidator;\n\t// biome-ignore lint/suspicious/noExplicitAny: oidc-provider is loaded in Phase C\n\tprivate oauthProvider?: any;\n\n\tconstructor(\n\t\tprivate liopServer: LiopServer,\n\t\tprivate meshNode: MeshNode | null = null,\n\t\trpcPort: number = 50051,\n\t) {\n\t\tthis.jwtValidator = this.liopServer.jwtValidator;\n\t\tthis.oauthProvider = this.liopServer.oauthProvider;\n\n\t\t// Initialize the Universal Router\n\t\tthis.router = new LiopMcpRouter(this.liopServer, this.meshNode, rpcPort);\n\n\t\t// Internal HTTP/2 Server (for Native gRPC Proxying)\n\t\tthis.h2Server = http2.createServer();\n\t\tthis.setupH2Routes();\n\n\t\t// Internal HTTP/1 Server (for Browser/MCP)\n\t\tthis.h1Server = http.createServer();\n\t\tthis.setupH1Routes();\n\n\t\t// Primary Multiplexer (L4)\n\t\tthis.netServer = net.createServer((socket) => {\n\t\t\tsocket.once(\"data\", (buffer) => {\n\t\t\t\tconst isHttp2 = buffer.toString().startsWith(\"PRI * HTTP/2.0\");\n\t\t\t\tlog.info(\n\t\t\t\t\t`[LIOP-Gateway] Incoming L4 Connection. Protocol: ${isHttp2 ? \"HTTP/2 (gRPC)\" : \"HTTP/1.1 (MCP)\"}`,\n\t\t\t\t);\n\t\t\t\tif (isHttp2) {\n\t\t\t\t\tthis.h2Server.emit(\"connection\", socket);\n\t\t\t\t} else {\n\t\t\t\t\tthis.h1Server.emit(\"connection\", socket);\n\t\t\t\t}\n\t\t\t\tsocket.unshift(buffer);\n\t\t\t});\n\t\t\tsocket.on(\"error\", (err) =>\n\t\t\t\tlog.error(`[LIOP-Gateway] NetServer Socket Error: ${err.message}`),\n\t\t\t);\n\t\t});\n\n\t\t// Attach error listeners to sub-servers to catch silent failures\n\t\tthis.h1Server.on(\"error\", (err) =>\n\t\t\tlog.error(`[LIOP-Gateway] H1 Server Error: ${err.message}`),\n\t\t);\n\t\tthis.h2Server.on(\"error\", (err) =>\n\t\t\tlog.error(`[LIOP-Gateway] H2 Server Error: ${err.message}`),\n\t\t);\n\n\t\tlog.info(\"[LIOP-Gateway] Hybrid adapter initialized.\");\n\t}\n\n\tprivate setupH2Routes() {\n\t\tthis.h2Server.on(\"stream\", (stream, headers) => {\n\t\t\tconst contentType = headers[\"content-type\"] as string;\n\t\t\tconst path = headers[\":path\"] as string;\n\n\t\t\tif (contentType === \"application/grpc\") {\n\t\t\t\tthis.handleGrpcStream(stream as http2.ServerHttp2Stream);\n\t\t\t} else if (path === \"/mcp\") {\n\t\t\t\tthis.handleMcpH2Stream(stream as http2.ServerHttp2Stream, headers);\n\t\t\t}\n\t\t});\n\t}\n\n\tprivate setupH1Routes() {\n\t\tthis.h1Server.on(\"request\", async (req, res) => {\n\t\t\tconst url = req.url || \"\";\n\t\t\tconst method = req.method;\n\n\t\t\t// [SEC] M2M OAuth 2.1 OIDC Authorization Server Router (Phase C proxy)\n\t\t\tif (url.startsWith(\"/oidc\") && this.oauthProvider) {\n\t\t\t\tconst callback =\n\t\t\t\t\ttypeof this.oauthProvider.callback === \"function\"\n\t\t\t\t\t\t? this.oauthProvider.callback()\n\t\t\t\t\t\t: this.oauthProvider;\n\t\t\t\t// Rewrite req.url to strip the '/oidc' prefix before delegating to oidc-provider\n\t\t\t\tconst originalUrl = req.url;\n\t\t\t\treq.url = (originalUrl || \"\").slice(5) || \"/\";\n\t\t\t\ttry {\n\t\t\t\t\treturn callback(req, res);\n\t\t\t\t} finally {\n\t\t\t\t\treq.url = originalUrl;\n\t\t\t\t}\n\t\t\t}\n\n\t\t\t// [SEC] RFC 9728 Protected Resource Metadata (PRM) Endpoint\n\t\t\tif (method === \"GET\" && url === \"/.well-known/oauth-protected-resource\") {\n\t\t\t\tif (this.jwtValidator) {\n\t\t\t\t\tconst prm = buildProtectedResourceMetadata(\n\t\t\t\t\t\tthis.jwtValidator.getIssuer(),\n\t\t\t\t\t\tthis.jwtValidator.getAudience(),\n\t\t\t\t\t);\n\t\t\t\t\tres.writeHead(200, { \"Content-Type\": \"application/json\" });\n\t\t\t\t\tres.end(JSON.stringify(prm));\n\t\t\t\t\treturn;\n\t\t\t\t}\n\t\t\t\tres.writeHead(404);\n\t\t\t\tres.end(\"Not Found\");\n\t\t\t\treturn;\n\t\t\t}\n\n\t\t\tif (\n\t\t\t\tmethod === \"GET\" &&\n\t\t\t\t(url === \"/\" || url === \"/mcp\" || url === \"/health\")\n\t\t\t) {\n\t\t\t\tif (\n\t\t\t\t\turl === \"/health\" &&\n\t\t\t\t\treq.headers.accept?.includes(\"application/json\")\n\t\t\t\t) {\n\t\t\t\t\tconst meshInfo = this.meshNode\n\t\t\t\t\t\t? {\n\t\t\t\t\t\t\t\tpeerId: this.meshNode.getPeerId()?.toString() || \"\",\n\t\t\t\t\t\t\t\tmultiaddrs: this.meshNode\n\t\t\t\t\t\t\t\t\t.getMultiaddrs()\n\t\t\t\t\t\t\t\t\t.map((m) => m.toString()),\n\t\t\t\t\t\t\t}\n\t\t\t\t\t\t: null;\n\t\t\t\t\tconst issuer = this.jwtValidator?.getIssuer();\n\t\t\t\t\tconst baseUrl = issuer\n\t\t\t\t\t\t? issuer.endsWith(\"/oidc\")\n\t\t\t\t\t\t\t? issuer\n\t\t\t\t\t\t\t: `${issuer}/oidc`\n\t\t\t\t\t\t: \"\";\n\t\t\t\t\tconst authInfoResponse =\n\t\t\t\t\t\tthis.jwtValidator && issuer\n\t\t\t\t\t\t\t? {\n\t\t\t\t\t\t\t\t\tissuer,\n\t\t\t\t\t\t\t\t\tjwks_uri: `${baseUrl}/jwks`,\n\t\t\t\t\t\t\t\t\t...(this.oauthProvider\n\t\t\t\t\t\t\t\t\t\t? {\n\t\t\t\t\t\t\t\t\t\t\t\ttoken_endpoint: `${baseUrl}/token`,\n\t\t\t\t\t\t\t\t\t\t\t}\n\t\t\t\t\t\t\t\t\t\t: {}),\n\t\t\t\t\t\t\t\t}\n\t\t\t\t\t\t\t: undefined;\n\n\t\t\t\t\tres.writeHead(200, { \"Content-Type\": \"application/json\" });\n\t\t\t\t\tres.end(\n\t\t\t\t\t\tJSON.stringify({\n\t\t\t\t\t\t\tstatus: \"healthy\",\n\t\t\t\t\t\t\tnode: this.liopServer.getServerInfo(),\n\t\t\t\t\t\t\tmesh: meshInfo,\n\t\t\t\t\t\t\ttools: this.liopServer.listTools().map((t) => t.name),\n\t\t\t\t\t\t\tauth: authInfoResponse,\n\t\t\t\t\t\t\ttimestamp: new Date().toISOString(),\n\t\t\t\t\t\t}),\n\t\t\t\t\t);\n\t\t\t\t\treturn;\n\t\t\t\t}\n\n\t\t\t\tres.writeHead(200, { \"Content-Type\": \"text/html; charset=utf-8\" });\n\t\t\t\tres.end(`\n                    <body style=\"background:#0f172a;color:#f8fafc;font-family:sans-serif;display:flex;flex-direction:column;align-items:center;justify-content:center;height:100vh;margin:0\">\n                        <div style=\"background:#1e293b;padding:40px;border-radius:16px;border:1px solid #38bdf8;text-align:center;box-shadow:0 20px 25px -5px rgba(0,0,0,0.1)\">\n                            <h1 style=\"color:#38bdf8;margin-top:0\">LIOP Protocol Transformer</h1>\n                            <p style=\"opacity:0.8;font-weight:600\">L4/L7 Transcoding: JSON-RPC &harr; gRPC</p>\n                            <p style=\"opacity:0.6;font-size:14px\">Active Protections: Kyber768 + AES-256-GCM + ZK-Proof Ready</p>\n                            <div style=\"background:#0f172a;padding:15px;border-radius:8px;margin-top:20px;border:1px dashed #334155\">\n                                <code style=\"color:#10b981\">Endpoint: http://localhost:3000/mcp</code>\n                            </div>\n                        </div>\n                    </body>\n                `);\n\t\t\t\treturn;\n\t\t\t}\n\n\t\t\tif (url === \"/mcp\" && method === \"POST\") {\n\t\t\t\tlet authInfo: AuthInfo | null = null;\n\n\t\t\t\t// [SEC] Continuous verification of Bearer token (NIST SP 800-207)\n\t\t\t\tif (this.jwtValidator) {\n\t\t\t\t\tconst authHeader = req.headers.authorization;\n\t\t\t\t\tif (!authHeader?.startsWith(\"Bearer \")) {\n\t\t\t\t\t\tres.writeHead(401, {\n\t\t\t\t\t\t\t\"WWW-Authenticate\":\n\t\t\t\t\t\t\t\t'Bearer error=\"invalid_token\", error_description=\"Missing or malformed Authorization header\"',\n\t\t\t\t\t\t\t\"Content-Type\": \"application/json\",\n\t\t\t\t\t\t});\n\t\t\t\t\t\tres.end(JSON.stringify({ error: \"Unauthorized\" }));\n\t\t\t\t\t\treturn;\n\t\t\t\t\t}\n\t\t\t\t\ttry {\n\t\t\t\t\t\tauthInfo = await this.jwtValidator.validate(authHeader.slice(7));\n\t\t\t\t\t} catch (e: unknown) {\n\t\t\t\t\t\tres.writeHead(401, {\n\t\t\t\t\t\t\t\"WWW-Authenticate\": `Bearer error=\"invalid_token\", error_description=\"${(e as Error).message}\"`,\n\t\t\t\t\t\t\t\"Content-Type\": \"application/json\",\n\t\t\t\t\t\t});\n\t\t\t\t\t\tres.end(JSON.stringify({ error: \"Invalid token\" }));\n\t\t\t\t\t\treturn;\n\t\t\t\t\t}\n\t\t\t\t}\n\n\t\t\t\tlet body = \"\";\n\t\t\t\treq.on(\"data\", (chunk) => (body += chunk.toString()));\n\t\t\t\treq.on(\"end\", async () => {\n\t\t\t\t\ttry {\n\t\t\t\t\t\tconst jsonRequest = JSON.parse(body);\n\t\t\t\t\t\tconst response = await this.router.dispatch(jsonRequest, authInfo);\n\t\t\t\t\t\tres.writeHead(200, { \"Content-Type\": \"application/json\" });\n\t\t\t\t\t\tres.end(JSON.stringify(response));\n\t\t\t\t\t} catch (e: unknown) {\n\t\t\t\t\t\tlog.info(\n\t\t\t\t\t\t\t`[LIOP-Gateway] Error processing JSON-RPC payload: ${(e as Error).message}`,\n\t\t\t\t\t\t);\n\t\t\t\t\t\tres.writeHead(400);\n\t\t\t\t\t\tres.end(\n\t\t\t\t\t\t\tJSON.stringify({\n\t\t\t\t\t\t\t\tjsonrpc: \"2.0\",\n\t\t\t\t\t\t\t\terror: { code: -32700, message: \"Parse error\" },\n\t\t\t\t\t\t\t}),\n\t\t\t\t\t\t);\n\t\t\t\t\t}\n\t\t\t\t});\n\t\t\t} else {\n\t\t\t\tres.writeHead(404);\n\t\t\t\tres.end(\"Not Found\");\n\t\t\t}\n\t\t});\n\t}\n\n\tprivate handleGrpcStream(stream: http2.ServerHttp2Stream) {\n\t\tstream.on(\"data\", (chunk: unknown) => {\n\t\t\t// biome-ignore lint/suspicious/noExplicitAny: Standard gRPC stream data is Buffer\n\t\t\tconst data = chunk as any;\n\t\t\tif (data)\n\t\t\t\tlog.info(\n\t\t\t\t\t`[LIOP-Gateway] Native gRPC Proxy passing ${data.length} bytes`,\n\t\t\t\t);\n\t\t});\n\t\tstream.respond({ \":status\": 200, \"content-type\": \"application/grpc\" });\n\t\tstream.end();\n\t}\n\n\tprivate handleMcpH2Stream(\n\t\tstream: http2.ServerHttp2Stream,\n\t\theaders: http2.IncomingHttpHeaders,\n\t) {\n\t\tlet body = \"\";\n\t\tstream.on(\"data\", (chunk) => (body += chunk.toString()));\n\t\tstream.on(\"end\", async () => {\n\t\t\ttry {\n\t\t\t\tlet authInfo: AuthInfo | null = null;\n\n\t\t\t\t// [SEC] Continuous verification of Bearer token over HTTP/2 (NIST SP 800-207)\n\t\t\t\tif (this.jwtValidator) {\n\t\t\t\t\tconst authHeader = headers.authorization as string;\n\t\t\t\t\tif (!authHeader?.startsWith(\"Bearer \")) {\n\t\t\t\t\t\tstream.respond({\n\t\t\t\t\t\t\t\":status\": 401,\n\t\t\t\t\t\t\t\"www-authenticate\":\n\t\t\t\t\t\t\t\t'Bearer error=\"invalid_token\", error_description=\"Missing or malformed Authorization header\"',\n\t\t\t\t\t\t\t\"content-type\": \"application/json\",\n\t\t\t\t\t\t});\n\t\t\t\t\t\tstream.end(JSON.stringify({ error: \"Unauthorized\" }));\n\t\t\t\t\t\treturn;\n\t\t\t\t\t}\n\t\t\t\t\ttry {\n\t\t\t\t\t\tauthInfo = await this.jwtValidator.validate(authHeader.slice(7));\n\t\t\t\t\t} catch (e: unknown) {\n\t\t\t\t\t\tstream.respond({\n\t\t\t\t\t\t\t\":status\": 401,\n\t\t\t\t\t\t\t\"www-authenticate\": `Bearer error=\"invalid_token\", error_description=\"${(e as Error).message}\"`,\n\t\t\t\t\t\t\t\"content-type\": \"application/json\",\n\t\t\t\t\t\t});\n\t\t\t\t\t\tstream.end(JSON.stringify({ error: \"Invalid token\" }));\n\t\t\t\t\t\treturn;\n\t\t\t\t\t}\n\t\t\t\t}\n\n\t\t\t\tconst response = await this.router.dispatch(JSON.parse(body), authInfo);\n\t\t\t\tif (response) {\n\t\t\t\t\tstream.respond({\n\t\t\t\t\t\t\":status\": 200,\n\t\t\t\t\t\t\"content-type\": \"application/json\",\n\t\t\t\t\t});\n\t\t\t\t\tstream.end(JSON.stringify(response));\n\t\t\t\t} else stream.close();\n\t\t\t} catch (_e) {\n\t\t\t\tstream.respond({ \":status\": 400 });\n\t\t\t\tstream.end();\n\t\t\t}\n\t\t});\n\t}\n\n\tpublic async listen(port: number, host: string = \"0.0.0.0\"): Promise<number> {\n\t\tif (this.meshNode) {\n\t\t\tawait this.meshNode.start();\n\n\t\t\t// Announce all local tools to the DHT\n\t\t\tconst tools = this.liopServer.listTools();\n\t\t\tfor (const tool of tools) {\n\t\t\t\tawait this.meshNode.announceCapability(tool.name);\n\t\t\t\tlog.info(\n\t\t\t\t\t`[LIOP-Gateway] 📡 Announced local tool to Mesh: ${tool.name}`,\n\t\t\t\t);\n\t\t\t}\n\t\t}\n\t\treturn new Promise((resolve, reject) => {\n\t\t\tthis.netServer.on(\"error\", (err: Error & { code?: string }) => {\n\t\t\t\tif (err.code === \"EADDRINUSE\") {\n\t\t\t\t\tlog.info(\n\t\t\t\t\t\t`[LIOP-Gateway] FATAL: Port ${port} is already in use by another process.`,\n\t\t\t\t\t);\n\t\t\t\t} else {\n\t\t\t\t\tlog.error(`[LIOP-Gateway] Binding Error: ${err.message}`);\n\t\t\t\t}\n\t\t\t\treject(err);\n\t\t\t});\n\n\t\t\tthis.netServer.listen(port, host, () => {\n\t\t\t\tconst addr = this.netServer.address();\n\t\t\t\tconst actualHost =\n\t\t\t\t\ttypeof addr === \"string\" ? addr : addr?.address || host;\n\t\t\t\tconst assignedPort =\n\t\t\t\t\ttypeof addr === \"string\" ? port : addr?.port || port;\n\n\t\t\t\tlog.info(\n\t\t\t\t\t`[LIOP-Gateway] ✅ Transformer Mesh Gateway READY and listening on ${actualHost}:${assignedPort}`,\n\t\t\t\t);\n\t\t\t\tresolve(assignedPort);\n\t\t\t});\n\t\t});\n\t}\n\n\tpublic async stop() {\n\t\tif (this.meshNode) {\n\t\t\tawait this.meshNode.stop();\n\t\t}\n\t\tthis.netServer.close();\n\t\tthis.h2Server.close();\n\t\tthis.h1Server.close();\n\t}\n\n\tpublic getRouter(): LiopMcpRouter {\n\t\treturn this.router;\n\t}\n}\n"]}

package/dist/client.d.ts

@@ -1,5 +1,6 @@
 import './verifier-DTCD9imJ.js';
 import './mesh.js';
-export { a as LiopClient } from './index-CyxNLlz7.js';
-import './types.js';
+export { a as LiopClient } from './index-B_Vbrb_I.js';
+import './types-DzEXgi4s.js';
 import 'zod';
+import 'jose';

package/dist/client.js

@@ -1,2 +1,2 @@
-export{b as LiopClient}from'./chunk-P52IE4L6.js';import'./chunk-UVTEJYHN.js';import'./chunk-ANFXJGMP.js';import'./chunk-DBXGYHKY.js';import'./chunk-HM77MWB6.js';import'./chunk-PPCOS2NU.js';import'./chunk-S6RJHZV2.js';//# sourceMappingURL=client.js.map
+export{b as LiopClient}from'./chunk-N6FGTZ6A.js';import'./chunk-SW53FNSN.js';import'./chunk-ANFXJGMP.js';import'./chunk-DBXGYHKY.js';import'./chunk-V5MKJT6S.js';import'./chunk-DQ6UW6L7.js';import'./chunk-S6RJHZV2.js';import'./chunk-4C666HHU.js';//# sourceMappingURL=client.js.map
 //# sourceMappingURL=client.js.map

package/dist/gateway.d.ts

@@ -1,8 +1,9 @@
 import { MeshNode } from './mesh.js';
-import { LiopServer } from './server.js';
+import { L as LiopServer } from './index-CL8m1L1d.js';
 import { L as LiopVerifier } from './verifier-DTCD9imJ.js';
-import { McpRequest, McpResponse } from './types.js';
+import { M as McpRequest, A as AuthInfo, b as McpResponse } from './types-DzEXgi4s.js';
 import 'zod';
+import 'jose';
 
 /**
  * LIOP MCP Router
@@ -34,7 +35,7 @@ declare class LiopMcpRouter {
     private shouldSkipManifestQuery;
     private recordManifestQuerySuccess;
     private recordManifestQueryFailure;
-    dispatch(request: McpRequest): Promise<McpResponse | null>;
+    dispatch(request: McpRequest, authInfo?: AuthInfo | null): Promise<McpResponse | null>;
     /**
      * MCP clients often send notifications/initialized then immediately tools/list.
      * Start manifest discovery without blocking the notification handler.
@@ -73,6 +74,14 @@ declare class LiopMcpRouter {
     private redactPeerId;
     private transcodeMcpToLiop;
     private routeToRemoteProvider;
+    /** Cached M2M token for dynamic gateway-to-node routing */
+    private meshAgentToken?;
+    /**
+     * Dynamically acquires an M2M access token from the Nexus Authorization Server.
+     * If peerId is provided, checks if there are node-specific environment tokens
+     * before falling back to the global static token or Nexus acquisition.
+     */
+    private getOrAcquireMeshAgentToken;
     private performTranscoding;
     private encryptWithNonce;
 }
@@ -88,6 +97,8 @@ declare class LiopHybridGateway {
     private h2Server;
     private h1Server;
     private router;
+    private jwtValidator?;
+    private oauthProvider?;
     constructor(liopServer: LiopServer, meshNode?: MeshNode | null, rpcPort?: number);
     private setupH2Routes;
     private setupH1Routes;

package/dist/gateway.js

@@ -1,2 +1,2 @@
-export{a as LiopHybridGateway}from'./chunk-JBMEAXYU.js';import'./chunk-7MAGL6ON.js';import'./chunk-UVTEJYHN.js';import'./chunk-ANFXJGMP.js';import'./chunk-DBXGYHKY.js';import'./chunk-HM77MWB6.js';import'./chunk-S6RJHZV2.js';//# sourceMappingURL=gateway.js.map
+export{b as LiopHybridGateway}from'./chunk-YZVCAJJO.js';import'./chunk-VGXNGTIC.js';import'./chunk-SW53FNSN.js';import'./chunk-ANFXJGMP.js';import'./chunk-DBXGYHKY.js';import'./chunk-SB5XJXKV.js';import'./chunk-V5MKJT6S.js';import'./chunk-S6RJHZV2.js';import'./chunk-4C666HHU.js';//# sourceMappingURL=gateway.js.map
 //# sourceMappingURL=gateway.js.map

package/dist/{index-CyxNLlz7.d.ts → index-B_Vbrb_I.d.ts}

@@ -1,6 +1,6 @@
 import { L as LiopVerifier } from './verifier-DTCD9imJ.js';
 import { MeshNodeConfig } from './mesh.js';
-import { CallToolRequest, CallToolResult } from './types.js';
+import { C as CallToolRequest, a as CallToolResult } from './types-DzEXgi4s.js';
 
 /**
  * LIOP TLS Configuration
@@ -8,6 +8,15 @@ import { CallToolRequest, CallToolResult } from './types.js';
  * Provides conditional TLS credential factories for gRPC connections.
  * When TLS options are provided, connections are secured with mutual TLS.
  * Otherwise, falls back to insecure credentials (alpha/development mode).
+ *
+ * Production Hardening (Phase 128):
+ * - When NODE_ENV=production and TLS is configured but certificate loading
+ *   fails, the system throws a fatal error instead of silently degrading
+ *   to insecure credentials. This prevents MITM/eavesdropping attacks
+ *   caused by misconfigured certificate paths going unnoticed.
+ * - Reference: gRPC-node official docs — "Using insecure credentials in
+ *   production poses significant security risks including eavesdropping,
+ *   MITM attacks, and lack of authentication."
  */
 
 interface LiopTlsOptions {
@@ -30,13 +39,26 @@ declare class LiopClient {
     private tlsOptions?;
     private serverInfo?;
     verifier: LiopVerifier;
+    private oauthToken?;
     constructor(tls?: LiopTlsOptions);
+    /**
+     * Requests an M2M access token from the Nexus Authorization Server using Client Credentials.
+     */
+    private acquireM2MToken;
     /**
      * Discovers and connects to the target server or mesh capability.
      * If address is omitted, it sets up the MeshNode to act purely dynamically.
      */
     connect(address?: string, options?: {
         meshConfig?: MeshNodeConfig;
+        auth?: {
+            clientId?: string;
+            clientSecret?: string;
+            nexusUrl?: string;
+            audience?: string;
+            scope?: string;
+            token?: string;
+        };
     }): Promise<void>;
     /**
      * Dynamically queries Kademlia DHT to find the optimal PeerID providing the Capability

package/dist/index-CL8m1L1d.d.ts

@@ -0,0 +1,500 @@
+import { z } from 'zod';
+import { MeshNode } from './mesh.js';
+import { J as JwtValidator, S as ServerInfo, a as CallToolResult, P as Prompt, G as GetPromptRequest, c as GetPromptResult, C as CallToolRequest, T as Tool, R as Resource } from './types-DzEXgi4s.js';
+
+/**
+ * LIOP OAuth 2.1 Hybrid Auth — Configuration Types
+ *
+ * Defines the auth configuration interface consumed by LiopServerOptions.
+ * Designed for zero-friction developer experience: most values auto-resolve.
+ *
+ * Standards: NIST SP 800-207, OWASP API-A07, MCP Spec 2025-11-25
+ */
+/**
+ * Role of this node in the LIOP auth hierarchy.
+ * - "nexus": Runs the embedded Authorization Server (oidc-provider) + Resource Server.
+ * - "node": Resource Server only; validates JWTs issued by the Nexus.
+ * - "none": Auth disabled (dev mode, stdio/local transport).
+ */
+type AuthRole = "nexus" | "node" | "none";
+/**
+ * OAuth client registration for M2M (Client Credentials) flows.
+ * Used exclusively by the Nexus role.
+ */
+interface OAuthClientConfig {
+    /** Unique identifier for the OAuth client. */
+    client_id: string;
+    /** Client secret for authentication (client_secret_post). */
+    client_secret: string;
+    /** OAuth grant types allowed for this client (e.g., ["client_credentials"]). */
+    grant_types: string[];
+    /** Space-delimited scopes this client can request. */
+    scope: string;
+}
+/**
+ * LIOP Auth Configuration.
+ *
+ * Minimal surface for developers:
+ *   - Nexus node:  { role: "nexus" }
+ *   - Data node:   { role: "node" }
+ *   - Dev/stdio:   omit or { role: "none" }
+ *
+ * All other fields auto-resolve from env, DHT, or secure defaults.
+ */
+interface LiopAuthConfig {
+    /** Role of this node in the auth hierarchy. */
+    role: AuthRole;
+    /**
+     * OIDC Issuer URL. Auto-derived:
+     *   - Nexus: inferred from listen address (e.g., "http://localhost:3000")
+     *   - Node: resolved from Nexus /health endpoint
+     */
+    issuer?: string;
+    /**
+     * JWT audience claim.
+     * Default: "urn:liop:mesh:api"
+     */
+    audience?: string;
+    /**
+     * URL of the Nexus authorization server (node role only).
+     * Fallback: env.LIOP_NEXUS_URL → DHT auto-discovery.
+     */
+    nexusUrl?: string;
+    /**
+     * Required scopes for accessing this node's tools.
+     * Default: auto-derived from registered tools.
+     */
+    requiredScopes?: string[];
+    /**
+     * Pre-registered OAuth clients (nexus role only).
+     * Fallback: auto-detected from env.LIOP_OAUTH_CLIENT_ID + env.LIOP_OAUTH_CLIENT_SECRET.
+     */
+    clients?: OAuthClientConfig[];
+    /**
+     * Path to local token revocation JSON list (Resource Token Revocation List).
+     * Saved as an array of SHA-256 hashes of revoked access tokens.
+     */
+    revocationPath?: string;
+    /**
+     * Pre-shared local test token for isolated testing in non-production environments.
+     * A token matching this will bypass remote JWKS check only on this specific node.
+     */
+    localTestToken?: string;
+}
+/**
+ * Secure defaults for the OAuth subsystem.
+ * Sources: NIST SP 800-207 §3.1, NIST SP 800-63B, OWASP API-A07
+ */
+declare const AUTH_DEFAULTS: {
+    /** JWT audience claim for the LIOP mesh API. */
+    readonly audience: "urn:liop:mesh:api";
+    /** M2M token time-to-live in seconds (1 hour). */
+    readonly tokenTtlSeconds: 3600;
+    /** JWKS cache TTL in milliseconds (10 min — jose default). */
+    readonly jwksCacheTtlMs: 600000;
+    /** Minimum interval between JWKS refetches (30s — jose default). */
+    readonly jwksCooldownMs: 30000;
+    /** Clock tolerance for JWT expiration checks (mesh clock skew). */
+    readonly clockToleranceSec: 5;
+    /** JWT signing algorithm (aligned with libp2p Ed25519 PeerID curve). */
+    readonly signingAlgorithm: "EdDSA";
+};
+
+/** Single named entity detected by the NER scanner. */
+interface NerEntity {
+    type: "person" | "place" | "organization";
+    text: string;
+}
+/** Result of an NER scan operation. */
+interface NerScanResult {
+    detected: boolean;
+    entities: NerEntity[];
+}
+/**
+ * Scans text content for named entities that may represent PII.
+ * Uses `compromise/three` for person, place, and organization detection.
+ *
+ * Designed for egress filtering — optimized for recall over precision
+ * to ensure sensitive data does not leak through aliased output keys.
+ */
+declare class NerScanner {
+    private static nlp;
+    /**
+     * Lazy loads the compromise library only when needed.
+     */
+    private getNlp;
+    /**
+     * Scans a single string value for named entities.
+     * Returns detected entities if the text contains recognizable PII.
+     */
+    scan(text: string): Promise<NerScanResult>;
+    /**
+     * Recursively scans all string values within an object/array.
+     * Stops at the first detection for performance (fail-fast).
+     */
+    scanDeep(input: unknown, seen?: WeakSet<object>): Promise<NerScanResult>;
+}
+
+/**
+ * LIOP Egress Shield Output Sanitizer (NIST SP 800-226 and OWASP DLP 2025 compliant)
+ * Recursively sanitizes execution outputs by rounding floating-point numbers
+ * and clamping negative values to zero floor where appropriate.
+ *
+ * Implements absolute immutability, returning a fresh copy of the data.
+ */
+interface OutputSanitizerConfig {
+    /** Maximum decimal places for floating-point values (default: 4) */
+    maxDecimalPlaces?: number;
+    /** Clamp negative values to zero floor (default: true) */
+    clampNonNegative?: boolean;
+}
+/**
+ * Recursively walks a JSON-like tree, rounding floats and clamping negative values.
+ *
+ * @param output - The raw or DP-modified output object/value to sanitize
+ * @param config - Sanitization parameters (rounding depth, negative clamping)
+ * @returns A sanitized deep copy of the output
+ */
+declare function sanitizeOutput(output: unknown, config?: OutputSanitizerConfig): unknown;
+
+/**
+ * LIOP Professional PII Engine (The Shield V2 - Tier-1 Military Edition)
+ * Implements high-fidelity detection based on NIST and OWASP standards.
+ * Features Multi-Layer Verification (Regex + Algorithmic Validators).
+ */
+type PiiRuleDefinition = {
+    name: string;
+    pattern: string | RegExp;
+    validator?: (match: string) => boolean;
+};
+type PiiRule = string | RegExp | PiiRuleDefinition;
+declare const PII_PATTERNS: {
+    EMAIL: PiiRuleDefinition;
+    CREDIT_CARD: PiiRuleDefinition;
+    IP_ADDRESS: PiiRuleDefinition;
+    PHONE: PiiRuleDefinition;
+    SSN: PiiRuleDefinition;
+    IBAN: PiiRuleDefinition;
+    PASSPORT_MRZ: PiiRuleDefinition;
+};
+/**
+ * Regional and Cultural Security Presets for Out-Of-The-Box compliance.
+ * Developers can override, merge, or omit these based on local laws.
+ */
+declare const PII_PRESETS: {
+    GLOBAL_STRICT: PiiRuleDefinition[];
+    US_COMPLIANT: PiiRuleDefinition[];
+    EU_GDPR: PiiRuleDefinition[];
+};
+declare class PiiScanner {
+    private patterns;
+    private forbiddenKeysSet;
+    private nerScanner;
+    /**
+     * Safelist of keys that contain forbidden substrings but are NOT PII.
+     * Prevents false positives from fuzzy matching (e.g., "grid" contains "id").
+     */
+    private static readonly KEY_SAFELIST;
+    /**
+     * Short forbidden tokens (< 4 chars) that require boundary-aware matching.
+     * Uses regex boundary detection to avoid false positives.
+     */
+    private shortTokenBoundaryPatterns;
+    /**
+     * Long forbidden tokens (>= 4 chars) that use substring containment.
+     */
+    private longForbiddenTokens;
+    constructor(patterns?: PiiRule[], forbiddenKeys?: string[], nerScanner?: NerScanner | null);
+    /**
+     * Scans any input (string, object, array) for PII violations.
+     * Returns the pattern/rule name that triggered the violation, or null if safe.
+     *
+     * Detection pipeline (fail-fast):
+     *   1. Exact key match (O(1) Set lookup)
+     *   2. Fuzzy key match (boundary detection for short tokens, substring for long)
+     *   3. Regex/algorithmic pattern match on string values
+     *   4. NER content scan on string values (if enabled)
+     */
+    scan(input: unknown, seen?: WeakSet<object>): Promise<string | null>;
+    /**
+     * Checks a key against fuzzy matching rules.
+     * Short tokens use boundary-aware regex; long tokens use substring containment.
+     */
+    private checkKeyFuzzy;
+    private checkString;
+}
+
+type ToolHandler<T extends z.ZodRawShape = z.ZodRawShape> = (args: z.infer<z.ZodObject<T>>, extra: {
+    signal?: AbortSignal;
+}) => Promise<CallToolResult>;
+interface LiopServerOptions {
+    capabilities?: Record<string, unknown>;
+    workerPool?: {
+        enabled?: boolean;
+        minThreads?: number;
+        maxThreads?: number;
+        idleTimeout?: number;
+        /** Max heap memory per worker in MB (default: 64). Prevents heap bomb DoS. */
+        maxHeapMb?: number;
+    };
+    security?: {
+        piiPatterns?: PiiRule[];
+        forbiddenKeys?: string[];
+        sensitiveKeys?: string[];
+        /** Enable NLP-based Named Entity Recognition scanning on output values. */
+        enableNerScanning?: boolean;
+        /** Rate limiting configuration for tool calls (OWASP A01). */
+        rateLimit?: {
+            /** Maximum calls per window per tool (default: 15). */
+            maxPerWindow?: number;
+            /** Maximum calls per window across ALL tools combined (default: 40). */
+            globalMaxPerWindow?: number;
+            /** Sliding window duration in milliseconds (default: 60000 = 1 min). */
+            windowMs?: number;
+        };
+    };
+    taxonomy?: {
+        domain?: string;
+        clearanceTier?: number;
+        executionTypes?: string[];
+    };
+    /**
+     * OAuth 2.1 Hybrid Auth configuration.
+     *
+     * Minimal usage:
+     *   - Nexus (Authorization Server): `{ role: "nexus" }`
+     *   - Data Node (Resource Server): `{ role: "node" }`
+     *   - Disabled (dev/stdio): omit or `{ role: "none" }`
+     *
+     * All other values (issuer, JWKS, audience) auto-resolve from
+     * env vars, DHT discovery, or secure defaults.
+     */
+    auth?: LiopAuthConfig;
+    /**
+     * Canonical slug for deterministic token resolution.
+     * Agents/clients resolve `LIOP_TOKEN_<tokenSlug>` from environment.
+     * Must match SCREAMING_SNAKE_CASE: /^[A-Z][A-Z0-9_]*$/ (e.g., "BANK", "VAULT", "HFT_ORACLE").
+     */
+    tokenSlug?: string;
+}
+interface AggregationPolicy {
+    /** Maximum number of object-type array elements allowed (default: 10) */
+    maxOutputRows?: number;
+    /** Allow arrays containing only primitive values (default: true) */
+    allowPrimitiveArrays?: boolean;
+    /** Block min/max extraction when dataset size < this value (default: 50) */
+    minMaxBlockThreshold?: number;
+}
+interface LogicExecutionPolicy {
+    /**
+     * Validate the business payload returned by sandbox logic (post-execution).
+     * This runs before final egress checks and blocks non-conforming outputs.
+     */
+    outputSchema?: z.ZodType<unknown>;
+    /**
+     * Enforce aggregation-first heuristics (preflight + post-check).
+     */
+    enforceAggregationFirst?: boolean | AggregationPolicy;
+    /**
+     * Optional additional deny patterns checked against extracted logic source.
+     */
+    preflightDenyPatterns?: RegExp[];
+    /**
+     * Differential Privacy epsilon per query (default: 1.0).
+     * Lower = stronger privacy + more noise. Standard: Apple iOS uses 1.0.
+     */
+    dpEpsilon?: number;
+    /**
+     * DP sensitivity: max change when one record added/removed (default: 1.0).
+     * For SUM queries on a field with range [0, X], set sensitivity = X.
+     */
+    dpSensitivity?: number;
+    /**
+     * Dataset size threshold below which Differential Privacy is active (default: 50).
+     */
+    dpSmallDatasetThreshold?: number;
+    /**
+     * Max queries per numeric field per PQC session (default: 5).
+     * Prevents multi-query differencing attacks.
+     */
+    queryBudgetPerField?: number;
+    /**
+     * Domain-specific sensitive keys that fall under the "sensitive" query budget tier.
+     */
+    sensitiveKeys?: string[];
+}
+declare class LiopServer {
+    private serverInfo;
+    private config?;
+    private logicCache;
+    private connectionStats;
+    private readonly CACHE_TTL_MS;
+    private readonly THROTTLE_THRESHOLD;
+    private readonly THROTTLE_COOLDOWN_MS;
+    private toolCallWindows;
+    private readonly toolCallMaxPerWindow;
+    private readonly toolCallWindowMs;
+    private globalCallWindow;
+    private readonly globalCallMaxPerWindow;
+    private fieldQueryBudget;
+    private readonly taintAnalyzer;
+    private tools;
+    private resources;
+    private prompts;
+    private activeSchema;
+    private sandboxRecords;
+    private piiScanner;
+    private workerPool;
+    private meshNode;
+    private rpcServer;
+    private boundPort;
+    jwtValidator?: JwtValidator;
+    oauthProvider?: any;
+    private sessions;
+    private revokedTokenHashes;
+    private lastRevocationLoadTime;
+    private static readonly LIOP_COMPACT_REGEX;
+    private extractLogic;
+    private parseUnknownJson;
+    private runPreflightPolicy;
+    private validateOutputPolicy;
+    /**
+     * Proxied tools stringify a full MCP CallToolResult (`{ content: [...] }`).
+     * Aggregation-first heuristics must scan the inner business JSON, not the MCP envelope
+     * (otherwise `content` looks like a tabular array of objects and everything blocks).
+     */
+    private unwrapForAggregationPolicyScan;
+    private violatesAggregationFirstPolicy;
+    constructor(serverInfo: ServerInfo, config?: LiopServerOptions | undefined);
+    /**
+     * Builds the centralized LIOP envelope specification document.
+     * Served as a single Resource (liop://protocol/envelope-spec) instead
+     * of being duplicated across every tool description.
+     */
+    private buildEnvelopeSpec;
+    /**
+     * Extracts a compact, human-readable field summary from a JSON Schema.
+     *
+     * Walks the schema structure to find actual data property names and types,
+     * rather than returning top-level schema metadata keys (type, items, etc.).
+     *
+     * Example output for a banking schema:
+     *   "Array of {id(string), accountHolder(string), balance(number), transactions(array of {date(string), amount(number)})}"
+     */
+    private extractSchemaFieldSummary;
+    /**
+     * Convenience alias for connectToMesh(), matching official documentation.
+     */
+    connect(options?: {
+        port?: number;
+        meshConfig?: {
+            listenAddresses?: string[];
+            bootstrapNodes?: string[];
+            identityPath?: string;
+        };
+    }): Promise<void>;
+    /**
+     * Register a new Tool
+     */
+    tool<T extends z.ZodRawShape>(name: string, description: string, shape: T, handler: ToolHandler<T>, policy?: LogicExecutionPolicy): void;
+    /**
+     * Register a dynamic prompt
+     */
+    prompt(name: string, description: string | undefined, args: Prompt["arguments"], handler: (request: GetPromptRequest) => GetPromptResult | Promise<GetPromptResult>): void;
+    /**
+     * Enables LIOP Zero-Shot Autonomy by registering the Blind Analyst standard prompt.
+     */
+    enableZeroShotAutonomy(): void;
+    /**
+     * Register a dynamic resource
+     */
+    resource(name: string, uri: string, description?: string, mimeType?: string, content?: string | (() => Promise<string>)): void;
+    /**
+     * Builds execution guidelines served as a resource to guide LLM code generation.
+     */
+    private buildExecutionGuidelines;
+    /**
+     * Broadcasts the Data Dictionary to the LLM prior to code injection.
+     */
+    dataDictionary(schema: Record<string, unknown>, name?: string, uri?: string, description?: string): void;
+    /**
+     * Manually invalidates the AST Logic Cache (e.g. for Zero-Day patches).
+     */
+    clearAstCache(): void;
+    /**
+     * Sliding window rate limiter for tool call frequency.
+     * Prevents micro-query exfiltration attacks where an attacker
+     * makes hundreds of individually-legitimate calls to reconstruct
+     * the full dataset field by field. (OWASP A01)
+     */
+    private checkToolCallRateLimit;
+    /**
+     * Global cross-tool rate limiter.
+     * Prevents attackers from distributing micro-queries across multiple tools
+     * to evade per-tool rate limits. (OWASP A01)
+     */
+    private checkGlobalRateLimit;
+    /**
+     * Emulates calling a tool (used locally or via LIOPMcpBridge)
+     */
+    callTool(request: CallToolRequest, clientId?: string): Promise<CallToolResult>;
+    /**
+     * Retrieves registered tools
+     */
+    listTools(): Tool[];
+    /**
+     * Retrieves registered prompts
+     */
+    listPrompts(): Prompt[];
+    /**
+     * Gets a specific prompt by name
+     */
+    getPrompt(request: GetPromptRequest): Promise<GetPromptResult>;
+    /**
+     * Retrieves registered resources
+     */
+    listResources(): Resource[];
+    /**
+     * Reads a specific resource by URI
+     */
+    readResource(uri: string): Promise<{
+        contents: Array<{
+            uri: string;
+            mimeType?: string;
+            text: string;
+        }>;
+    }>;
+    getServerInfo(): ServerInfo;
+    getMeshNode(): MeshNode | null;
+    /**
+     * Injects data into the secure sandbox context for Logic-on-Origin tools.
+     */
+    setSandboxData(records: Record<string, unknown>[]): void;
+    getBoundPort(): number | null;
+    /**
+     * Connects to the libp2p Kademlia DHT and announces capabilities.
+     * Boots the gRPC server for secure Logic-on-Origin.
+     */
+    connectToMesh(options?: {
+        port?: number;
+        meshConfig?: {
+            listenAddresses?: string[];
+            bootstrapNodes?: string[];
+            identityPath?: string;
+        };
+    }): Promise<void>;
+    /**
+     * Internal worker execution with Egress Filtering logic.
+     */
+    private executeInWorkerPool;
+    /**
+     * Safely destroys the worker pool, gRPC server, and Mesh node.
+     * Recommended to be called during graceful shutdowns or test teardowns.
+     */
+    close(): Promise<void>;
+    private loadRevocationList;
+    revokeToken(token: string): void;
+    revokeTokenHash(hash: string): void;
+}
+
+export { AUTH_DEFAULTS as A, LiopServer as L, NerScanner as N, type OAuthClientConfig as O, PII_PATTERNS as P, type ToolHandler as T, type LiopServerOptions as a, type AggregationPolicy as b, type AuthRole as c, type LiopAuthConfig as d, type LogicExecutionPolicy as e, type OutputSanitizerConfig as f, PII_PRESETS as g, type PiiRule as h, PiiScanner as i, sanitizeOutput as s };