@nocoo/base-mcp 0.1.0 → 0.1.1

package/dist/auth/oauth/types.d.ts

@@ -0,0 +1,187 @@
+/** MCP OAuth client record */
+export interface McpClient {
+    id: string;
+    client_id: string;
+    client_name: string;
+    redirect_uris: string;
+    grant_types: string;
+    created_at: number;
+}
+/** MCP OAuth authorization session/code record */
+export interface McpAuthCode {
+    state: string;
+    client_id: string;
+    redirect_uri: string;
+    code_challenge: string;
+    code_challenge_method: string;
+    scope: string;
+    code: string | null;
+    user_email: string | null;
+    consumed: number;
+    expires_at: number;
+}
+/** MCP OAuth token record */
+export interface McpToken {
+    id: string;
+    access_token_hash: string;
+    access_token_preview: string;
+    refresh_token_hash: string;
+    client_id: string;
+    user_email: string;
+    client_name: string | null;
+    scope: string;
+    revoked: number;
+    revoked_at: number | null;
+    expires_at: number;
+    refresh_expires_at: number;
+    last_used_at: number | null;
+    created_at: number;
+}
+/** Client store interface */
+export interface ClientStore {
+    create(input: {
+        client_name: string;
+        redirect_uris: string[];
+        grant_types: string[];
+    }): Promise<McpClient>;
+    findByClientId(clientId: string): Promise<McpClient | null>;
+}
+/** Auth session/code store interface */
+export interface AuthCodeStore {
+    createSession(input: {
+        state: string;
+        client_id: string;
+        redirect_uri: string;
+        code_challenge: string;
+        code_challenge_method: string;
+        scope: string;
+        expires_at: number;
+    }): Promise<void>;
+    findByState(state: string): Promise<McpAuthCode | null>;
+    upgrade(state: string, code: string, userEmail: string, expiresAt: number): Promise<boolean>;
+    findByCode(code: string): Promise<McpAuthCode | null>;
+    consume(code: string): Promise<boolean>;
+}
+/** Token store interface for OAuth handlers */
+export interface OAuthTokenStore {
+    create(input: {
+        access_token_hash: string;
+        access_token_preview: string;
+        refresh_token_hash: string;
+        client_id: string;
+        user_email: string;
+        scope: string;
+        client_name?: string;
+        expires_at: number;
+        refresh_expires_at: number;
+    }): Promise<McpToken>;
+    findByRefreshHash(refreshHash: string): Promise<McpToken | null>;
+    revokeByClientAndUser(clientId: string, userEmail: string): Promise<number>;
+}
+export interface AuthContext {
+    /** Check if user is authenticated */
+    isAuthenticated(): Promise<boolean>;
+    /** Get authenticated user's email (null if not authenticated) */
+    getEmail(): Promise<string | null>;
+    /** Check if email is allowed (whitelist) */
+    isEmailAllowed(email: string): boolean;
+}
+export interface OAuthContext {
+    clients: ClientStore;
+    authCodes: AuthCodeStore;
+    tokens: OAuthTokenStore;
+    auth: AuthContext;
+    /** The issuer URL (e.g., "https://myapp.com") */
+    issuer: string;
+    /** Token prefix (e.g., "myapp" -> "myapp_at_xxx") */
+    tokenPrefix: string;
+}
+/** Register handler result */
+export type RegisterResult = {
+    success: true;
+    status: 201;
+    body: {
+        client_id: string;
+        client_name: string;
+        redirect_uris: string[];
+        grant_types: string[];
+        token_endpoint_auth_method: "none";
+    };
+} | {
+    success: false;
+    status: number;
+    error: string;
+};
+/** Authorize handler result */
+export type AuthorizeResult = {
+    action: "redirect_to_callback";
+    url: string;
+} | {
+    action: "redirect_to_login";
+    loginUrl: string;
+} | {
+    action: "error";
+    error: string;
+    status: number;
+};
+/** Callback handler result */
+export type CallbackResult = {
+    action: "redirect_to_client";
+    url: string;
+} | {
+    action: "error";
+    error: string;
+    status: number;
+};
+/** Token handler result */
+export type TokenResult = {
+    success: true;
+    status: 200;
+    body: {
+        access_token: string;
+        token_type: "Bearer";
+        expires_in: number;
+        refresh_token: string;
+        scope: string;
+    };
+} | {
+    success: false;
+    status: number;
+    error: string;
+    error_description: string;
+};
+/** Revoke handler result */
+export type RevokeResult = {
+    success: true;
+    status: 200;
+} | {
+    success: false;
+    status: number;
+    error: string;
+};
+export interface RegisterInput {
+    client_name?: string;
+    redirect_uris?: string[];
+    grant_types?: string[];
+}
+export interface AuthorizeInput {
+    response_type: string | null;
+    client_id: string | null;
+    redirect_uri: string | null;
+    code_challenge: string | null;
+    code_challenge_method: string | null;
+    state: string | null;
+    scope?: string | null;
+}
+export interface CallbackInput {
+    state: string | null;
+}
+export interface TokenInput {
+    grant_type: string | null;
+    code?: string | null;
+    redirect_uri?: string | null;
+    client_id?: string | null;
+    code_verifier?: string | null;
+    refresh_token?: string | null;
+}
+//# sourceMappingURL=types.d.ts.map

package/dist/auth/oauth/types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../../src/auth/oauth/types.ts"],"names":[],"mappings":"AAQA,8BAA8B;AAC9B,MAAM,WAAW,SAAS;IACxB,EAAE,EAAE,MAAM,CAAC;IACX,SAAS,EAAE,MAAM,CAAC;IAClB,WAAW,EAAE,MAAM,CAAC;IACpB,aAAa,EAAE,MAAM,CAAC;IACtB,WAAW,EAAE,MAAM,CAAC;IACpB,UAAU,EAAE,MAAM,CAAC;CACpB;AAED,kDAAkD;AAClD,MAAM,WAAW,WAAW;IAC1B,KAAK,EAAE,MAAM,CAAC;IACd,SAAS,EAAE,MAAM,CAAC;IAClB,YAAY,EAAE,MAAM,CAAC;IACrB,cAAc,EAAE,MAAM,CAAC;IACvB,qBAAqB,EAAE,MAAM,CAAC;IAC9B,KAAK,EAAE,MAAM,CAAC;IACd,IAAI,EAAE,MAAM,GAAG,IAAI,CAAC;IACpB,UAAU,EAAE,MAAM,GAAG,IAAI,CAAC;IAC1B,QAAQ,EAAE,MAAM,CAAC;IACjB,UAAU,EAAE,MAAM,CAAC;CACpB;AAED,6BAA6B;AAC7B,MAAM,WAAW,QAAQ;IACvB,EAAE,EAAE,MAAM,CAAC;IACX,iBAAiB,EAAE,MAAM,CAAC;IAC1B,oBAAoB,EAAE,MAAM,CAAC;IAC7B,kBAAkB,EAAE,MAAM,CAAC;IAC3B,SAAS,EAAE,MAAM,CAAC;IAClB,UAAU,EAAE,MAAM,CAAC;IACnB,WAAW,EAAE,MAAM,GAAG,IAAI,CAAC;IAC3B,KAAK,EAAE,MAAM,CAAC;IACd,OAAO,EAAE,MAAM,CAAC;IAChB,UAAU,EAAE,MAAM,GAAG,IAAI,CAAC;IAC1B,UAAU,EAAE,MAAM,CAAC;IACnB,kBAAkB,EAAE,MAAM,CAAC;IAC3B,YAAY,EAAE,MAAM,GAAG,IAAI,CAAC;IAC5B,UAAU,EAAE,MAAM,CAAC;CACpB;AAED,6BAA6B;AAC7B,MAAM,WAAW,WAAW;IAC1B,MAAM,CAAC,KAAK,EAAE;QACZ,WAAW,EAAE,MAAM,CAAC;QACpB,aAAa,EAAE,MAAM,EAAE,CAAC;QACxB,WAAW,EAAE,MAAM,EAAE,CAAC;KACvB,GAAG,OAAO,CAAC,SAAS,CAAC,CAAC;IAEvB,cAAc,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,SAAS,GAAG,IAAI,CAAC,CAAC;CAC7D;AAED,wCAAwC;AACxC,MAAM,WAAW,aAAa;IAC5B,aAAa,CAAC,KAAK,EAAE;QACnB,KAAK,EAAE,MAAM,CAAC;QACd,SAAS,EAAE,MAAM,CAAC;QAClB,YAAY,EAAE,MAAM,CAAC;QACrB,cAAc,EAAE,MAAM,CAAC;QACvB,qBAAqB,EAAE,MAAM,CAAC;QAC9B,KAAK,EAAE,MAAM,CAAC;QACd,UAAU,EAAE,MAAM,CAAC;KACpB,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;IAElB,WAAW,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,WAAW,GAAG,IAAI,CAAC,CAAC;IAExD,OAAO,CACL,KAAK,EAAE,MAAM,EACb,IAAI,EAAE,MAAM,EACZ,SAAS,EAAE,MAAM,EACjB,SAAS,EAAE,MAAM,GAChB,OAAO,CAAC,OAAO,CAAC,CAAC;IAEpB,UAAU,CAAC,IAAI,EAAE,MAAM,GAAG,OAAO,CAAC,WAAW,GAAG,IAAI,CAAC,CAAC;IAEtD,OAAO,CAAC,IAAI,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC,CAAC;CACzC;AAED,+CAA+C;AAC/C,MAAM,WAAW,eAAe;IAC9B,MAAM,CAAC,KAAK,EAAE;QACZ,iBAAiB,EAAE,MAAM,CAAC;QAC1B,oBAAoB,EAAE,MAAM,CAAC;QAC7B,kBAAkB,EAAE,MAAM,CAAC;QAC3B,SAAS,EAAE,MAAM,CAAC;QAClB,UAAU,EAAE,MAAM,CAAC;QACnB,KAAK,EAAE,MAAM,CAAC;QACd,WAAW,CAAC,EAAE,MAAM,CAAC;QACrB,UAAU,EAAE,MAAM,CAAC;QACnB,kBAAkB,EAAE,MAAM,CAAC;KAC5B,GAAG,OAAO,CAAC,QAAQ,CAAC,CAAC;IAEtB,iBAAiB,CAAC,WAAW,EAAE,MAAM,GAAG,OAAO,CAAC,QAAQ,GAAG,IAAI,CAAC,CAAC;IAEjE,qBAAqB,CAAC,QAAQ,EAAE,MAAM,EAAE,SAAS,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC;CAC7E;AAMD,MAAM,WAAW,WAAW;IAC1B,qCAAqC;IACrC,eAAe,IAAI,OAAO,CAAC,OAAO,CAAC,CAAC;IAEpC,iEAAiE;IACjE,QAAQ,IAAI,OAAO,CAAC,MAAM,GAAG,IAAI,CAAC,CAAC;IAEnC,4CAA4C;IAC5C,cAAc,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC;CACxC;AAMD,MAAM,WAAW,YAAY;IAC3B,OAAO,EAAE,WAAW,CAAC;IACrB,SAAS,EAAE,aAAa,CAAC;IACzB,MAAM,EAAE,eAAe,CAAC;IACxB,IAAI,EAAE,WAAW,CAAC;IAClB,iDAAiD;IACjD,MAAM,EAAE,MAAM,CAAC;IACf,qDAAqD;IACrD,WAAW,EAAE,MAAM,CAAC;CACrB;AAMD,8BAA8B;AAC9B,MAAM,MAAM,cAAc,GACtB;IACE,OAAO,EAAE,IAAI,CAAC;IACd,MAAM,EAAE,GAAG,CAAC;IACZ,IAAI,EAAE;QACJ,SAAS,EAAE,MAAM,CAAC;QAClB,WAAW,EAAE,MAAM,CAAC;QACpB,aAAa,EAAE,MAAM,EAAE,CAAC;QACxB,WAAW,EAAE,MAAM,EAAE,CAAC;QACtB,0BAA0B,EAAE,MAAM,CAAC;KACpC,CAAC;CACH,GACD;IAAE,OAAO,EAAE,KAAK,CAAC;IAAC,MAAM,EAAE,MAAM,CAAC;IAAC,KAAK,EAAE,MAAM,CAAA;CAAE,CAAC;AAEtD,+BAA+B;AAC/B,MAAM,MAAM,eAAe,GACvB;IAAE,MAAM,EAAE,sBAAsB,CAAC;IAAC,GAAG,EAAE,MAAM,CAAA;CAAE,GAC/C;IAAE,MAAM,EAAE,mBAAmB,CAAC;IAAC,QAAQ,EAAE,MAAM,CAAA;CAAE,GACjD;IAAE,MAAM,EAAE,OAAO,CAAC;IAAC,KAAK,EAAE,MAAM,CAAC;IAAC,MAAM,EAAE,MAAM,CAAA;CAAE,CAAC;AAEvD,8BAA8B;AAC9B,MAAM,MAAM,cAAc,GACtB;IAAE,MAAM,EAAE,oBAAoB,CAAC;IAAC,GAAG,EAAE,MAAM,CAAA;CAAE,GAC7C;IAAE,MAAM,EAAE,OAAO,CAAC;IAAC,KAAK,EAAE,MAAM,CAAC;IAAC,MAAM,EAAE,MAAM,CAAA;CAAE,CAAC;AAEvD,2BAA2B;AAC3B,MAAM,MAAM,WAAW,GACnB;IACE,OAAO,EAAE,IAAI,CAAC;IACd,MAAM,EAAE,GAAG,CAAC;IACZ,IAAI,EAAE;QACJ,YAAY,EAAE,MAAM,CAAC;QACrB,UAAU,EAAE,QAAQ,CAAC;QACrB,UAAU,EAAE,MAAM,CAAC;QACnB,aAAa,EAAE,MAAM,CAAC;QACtB,KAAK,EAAE,MAAM,CAAC;KACf,CAAC;CACH,GACD;IAAE,OAAO,EAAE,KAAK,CAAC;IAAC,MAAM,EAAE,MAAM,CAAC;IAAC,KAAK,EAAE,MAAM,CAAC;IAAC,iBAAiB,EAAE,MAAM,CAAA;CAAE,CAAC;AAEjF,4BAA4B;AAC5B,MAAM,MAAM,YAAY,GACpB;IAAE,OAAO,EAAE,IAAI,CAAC;IAAC,MAAM,EAAE,GAAG,CAAA;CAAE,GAC9B;IAAE,OAAO,EAAE,KAAK,CAAC;IAAC,MAAM,EAAE,MAAM,CAAC;IAAC,KAAK,EAAE,MAAM,CAAA;CAAE,CAAC;AAMtD,MAAM,WAAW,aAAa;IAC5B,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,aAAa,CAAC,EAAE,MAAM,EAAE,CAAC;IACzB,WAAW,CAAC,EAAE,MAAM,EAAE,CAAC;CACxB;AAED,MAAM,WAAW,cAAc;IAC7B,aAAa,EAAE,MAAM,GAAG,IAAI,CAAC;IAC7B,SAAS,EAAE,MAAM,GAAG,IAAI,CAAC;IACzB,YAAY,EAAE,MAAM,GAAG,IAAI,CAAC;IAC5B,cAAc,EAAE,MAAM,GAAG,IAAI,CAAC;IAC9B,qBAAqB,EAAE,MAAM,GAAG,IAAI,CAAC;IACrC,KAAK,EAAE,MAAM,GAAG,IAAI,CAAC;IACrB,KAAK,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;CACvB;AAED,MAAM,WAAW,aAAa;IAC5B,KAAK,EAAE,MAAM,GAAG,IAAI,CAAC;CACtB;AAED,MAAM,WAAW,UAAU;IACzB,UAAU,EAAE,MAAM,GAAG,IAAI,CAAC;IAC1B,IAAI,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IACrB,YAAY,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAC7B,SAAS,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAC1B,aAAa,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAC9B,aAAa,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;CAC/B"}

package/dist/auth/oauth/types.js

@@ -0,0 +1,5 @@
+// ---------------------------------------------------------------------------
+// OAuth Handler Types and Interfaces
+// ---------------------------------------------------------------------------
+export {};
+//# sourceMappingURL=types.js.map

package/dist/auth/oauth/types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.js","sourceRoot":"","sources":["../../../src/auth/oauth/types.ts"],"names":[],"mappings":"AAAA,8EAA8E;AAC9E,qCAAqC;AACrC,8EAA8E"}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@nocoo/base-mcp",
-  "version": "0.1.0",
+  "version": "0.1.1",
   "description": "MCP Server development framework with OAuth 2.1, Entity-Driven CRUD, and Streamable HTTP transport",
   "type": "module",
   "main": "./dist/index.js",
@@ -28,6 +28,15 @@
     "dist",
     "README.md"
   ],
+  "scripts": {
+    "build": "tsc",
+    "test": "vitest run",
+    "test:watch": "vitest",
+    "test:coverage": "vitest run --coverage",
+    "lint": "eslint src",
+    "typecheck": "tsc --noEmit",
+    "prepublishOnly": "pnpm build"
+  },
   "keywords": [
     "mcp",
     "model-context-protocol",
@@ -59,12 +68,5 @@
     "@eslint/js": "^9.0.0",
     "typescript-eslint": "^8.0.0"
   },
-  "scripts": {
-    "build": "tsc",
-    "test": "vitest run",
-    "test:watch": "vitest",
-    "test:coverage": "vitest run --coverage",
-    "lint": "eslint src",
-    "typecheck": "tsc --noEmit"
-  }
-}
+  "packageManager": "pnpm@10.33.0"
+}