@openziti/ziti-mcp-server 0.1.0

package/dist/tools/auth-policies.js

@@ -0,0 +1,347 @@
+import { createErrorResponse } from '../utils/http-utility.js';
+import { withAuthenticatedClient } from '../utils/authenticated-client.js';
+import { listAuthPolicies, detailAuthPolicy, createAuthPolicy, deleteAuthPolicy, patchAuthPolicy, } from '../utils/controller-client/sdk.gen.js';
+// Define all available Auth Policy tools
+export const AUTH_POLICY_TOOLS = [
+    {
+        name: 'listAuthPolicies',
+        description: 'List all Auth Policies in the Ziti network',
+        inputSchema: {
+            type: 'object',
+            properties: {},
+        },
+        _meta: {
+            requiredScopes: ['read:auth-policies'],
+            readOnly: true,
+        },
+        annotations: {
+            title: 'List all Auth Policies defined in the Ziti network.',
+            readOnlyHint: true,
+            destructiveHint: false,
+            idempotentHint: true,
+            openWorldHint: false,
+        },
+    },
+    {
+        name: 'listAuthPolicy',
+        description: 'Get details about a specific Ziti Auth Policy',
+        inputSchema: {
+            type: 'object',
+            properties: {
+                id: { type: 'string', description: 'ID of the auth policy to retrieve' },
+            },
+            required: ['id'],
+        },
+        _meta: {
+            requiredScopes: ['read:auth-policies'],
+            readOnly: true,
+        },
+        annotations: {
+            title: 'Get Ziti Auth Policy Details',
+            readOnlyHint: true,
+            destructiveHint: false,
+            idempotentHint: true,
+            openWorldHint: false,
+        },
+    },
+    {
+        name: 'createAuthPolicy',
+        description: 'Create a new Ziti Auth Policy.',
+        inputSchema: {
+            type: 'object',
+            properties: {
+                name: { type: 'string', description: 'Name of the auth policy to create' },
+                primaryCertAllowed: {
+                    type: 'boolean',
+                    description: 'Whether certificate-based authentication is allowed',
+                    default: false,
+                },
+                primaryCertAllowExpiredCerts: {
+                    type: 'boolean',
+                    description: 'Whether expired certificates are allowed',
+                    default: false,
+                },
+                primaryExtJwtAllowed: {
+                    type: 'boolean',
+                    description: 'Whether external JWT authentication is allowed',
+                    default: false,
+                },
+                primaryExtJwtAllowedSigners: {
+                    type: 'string',
+                    description: 'Comma-separated list of allowed external JWT signer IDs',
+                },
+                primaryUpdbAllowed: {
+                    type: 'boolean',
+                    description: 'Whether username/password authentication is allowed',
+                    default: false,
+                },
+                primaryUpdbMinPasswordLength: {
+                    type: 'number',
+                    description: 'Minimum password length',
+                    default: 5,
+                },
+                primaryUpdbRequireMixedCase: {
+                    type: 'boolean',
+                    description: 'Whether passwords require mixed case',
+                    default: false,
+                },
+                primaryUpdbRequireNumberChar: {
+                    type: 'boolean',
+                    description: 'Whether passwords require a number character',
+                    default: false,
+                },
+                primaryUpdbRequireSpecialChar: {
+                    type: 'boolean',
+                    description: 'Whether passwords require a special character',
+                    default: false,
+                },
+                primaryUpdbMaxAttempts: {
+                    type: 'number',
+                    description: 'Maximum login attempts before lockout',
+                    default: 0,
+                },
+                primaryUpdbLockoutDurationMinutes: {
+                    type: 'number',
+                    description: 'Lockout duration in minutes after max attempts',
+                    default: 0,
+                },
+                secondaryRequireTotp: {
+                    type: 'boolean',
+                    description: 'Whether TOTP is required as a secondary auth factor',
+                    default: false,
+                },
+                secondaryRequireExtJwtSigner: {
+                    type: 'string',
+                    description: 'ID of an external JWT signer required as secondary auth',
+                },
+            },
+            required: ['name'],
+        },
+        _meta: {
+            requiredScopes: ['write:auth-policies'],
+            readOnly: false,
+        },
+        annotations: {
+            title: 'Create a new Auth Policy in the Ziti network.',
+            readOnlyHint: false,
+            destructiveHint: false,
+            idempotentHint: false,
+            openWorldHint: false,
+        },
+    },
+    {
+        name: 'deleteAuthPolicy',
+        description: 'Delete a Ziti Auth Policy.',
+        inputSchema: {
+            type: 'object',
+            properties: {
+                id: { type: 'string', description: 'ID of the auth policy to delete' },
+            },
+            required: ['id'],
+        },
+        _meta: {
+            requiredScopes: ['write:auth-policies'],
+            readOnly: false,
+        },
+        annotations: {
+            title: 'Delete an Auth Policy from the Ziti network.',
+            readOnlyHint: false,
+            destructiveHint: true,
+            idempotentHint: false,
+            openWorldHint: false,
+        },
+    },
+    {
+        name: 'updateAuthPolicy',
+        description: 'Update an existing Ziti Auth Policy.',
+        inputSchema: {
+            type: 'object',
+            properties: {
+                id: { type: 'string', description: 'ID of the auth policy to update' },
+                name: { type: 'string', description: 'Name to give the auth policy' },
+                primaryCertAllowed: {
+                    type: 'boolean',
+                    description: 'Whether certificate-based authentication is allowed',
+                },
+                primaryCertAllowExpiredCerts: {
+                    type: 'boolean',
+                    description: 'Whether expired certificates are allowed',
+                },
+                primaryExtJwtAllowed: {
+                    type: 'boolean',
+                    description: 'Whether external JWT authentication is allowed',
+                },
+                primaryExtJwtAllowedSigners: {
+                    type: 'string',
+                    description: 'Comma-separated list of allowed external JWT signer IDs',
+                },
+                primaryUpdbAllowed: {
+                    type: 'boolean',
+                    description: 'Whether username/password authentication is allowed',
+                },
+                primaryUpdbMinPasswordLength: {
+                    type: 'number',
+                    description: 'Minimum password length',
+                },
+                primaryUpdbRequireMixedCase: {
+                    type: 'boolean',
+                    description: 'Whether passwords require mixed case',
+                },
+                primaryUpdbRequireNumberChar: {
+                    type: 'boolean',
+                    description: 'Whether passwords require a number character',
+                },
+                primaryUpdbRequireSpecialChar: {
+                    type: 'boolean',
+                    description: 'Whether passwords require a special character',
+                },
+                primaryUpdbMaxAttempts: {
+                    type: 'number',
+                    description: 'Maximum login attempts before lockout',
+                },
+                primaryUpdbLockoutDurationMinutes: {
+                    type: 'number',
+                    description: 'Lockout duration in minutes after max attempts',
+                },
+                secondaryRequireTotp: {
+                    type: 'boolean',
+                    description: 'Whether TOTP is required as a secondary auth factor',
+                },
+                secondaryRequireExtJwtSigner: {
+                    type: 'string',
+                    description: 'ID of an external JWT signer required as secondary auth',
+                },
+            },
+            required: ['id'],
+        },
+        _meta: {
+            requiredScopes: ['write:auth-policies'],
+            readOnly: false,
+        },
+        annotations: {
+            title: 'Update an existing Auth Policy in the Ziti network.',
+            readOnlyHint: false,
+            destructiveHint: true,
+            idempotentHint: true,
+            openWorldHint: false,
+        },
+    },
+];
+function buildPrimaryBody(params) {
+    return {
+        cert: {
+            allowed: params.primaryCertAllowed,
+            allowExpiredCerts: params.primaryCertAllowExpiredCerts,
+        },
+        extJwt: {
+            allowed: params.primaryExtJwtAllowed,
+            allowedSigners: params.primaryExtJwtAllowedSigners
+                ? params.primaryExtJwtAllowedSigners.split(',').map((s) => s.trim())
+                : [],
+        },
+        updb: {
+            allowed: params.primaryUpdbAllowed,
+            minPasswordLength: params.primaryUpdbMinPasswordLength ?? 5,
+            requireMixedCase: params.primaryUpdbRequireMixedCase,
+            requireNumberChar: params.primaryUpdbRequireNumberChar,
+            requireSpecialChar: params.primaryUpdbRequireSpecialChar,
+            maxAttempts: params.primaryUpdbMaxAttempts ?? 0,
+            lockoutDurationMinutes: params.primaryUpdbLockoutDurationMinutes ?? 0,
+        },
+    };
+}
+function buildSecondaryBody(params) {
+    return {
+        requireTotp: params.secondaryRequireTotp,
+        requireExtJwtSigner: params.secondaryRequireExtJwtSigner ?? null,
+    };
+}
+function buildPrimaryPatchBody(params) {
+    return {
+        cert: params.primaryCertAllowed !== undefined || params.primaryCertAllowExpiredCerts !== undefined
+            ? {
+                allowed: params.primaryCertAllowed,
+                allowExpiredCerts: params.primaryCertAllowExpiredCerts,
+            }
+            : undefined,
+        extJwt: params.primaryExtJwtAllowed !== undefined || params.primaryExtJwtAllowedSigners !== undefined
+            ? {
+                allowed: params.primaryExtJwtAllowed,
+                allowedSigners: params.primaryExtJwtAllowedSigners
+                    ? params.primaryExtJwtAllowedSigners
+                        .split(',')
+                        .map((s) => s.trim())
+                    : undefined,
+            }
+            : undefined,
+        updb: params.primaryUpdbAllowed !== undefined ||
+            params.primaryUpdbMinPasswordLength !== undefined ||
+            params.primaryUpdbRequireMixedCase !== undefined ||
+            params.primaryUpdbRequireNumberChar !== undefined ||
+            params.primaryUpdbRequireSpecialChar !== undefined ||
+            params.primaryUpdbMaxAttempts !== undefined ||
+            params.primaryUpdbLockoutDurationMinutes !== undefined
+            ? {
+                allowed: params.primaryUpdbAllowed,
+                minPasswordLength: params.primaryUpdbMinPasswordLength,
+                requireMixedCase: params.primaryUpdbRequireMixedCase,
+                requireNumberChar: params.primaryUpdbRequireNumberChar,
+                requireSpecialChar: params.primaryUpdbRequireSpecialChar,
+                maxAttempts: params.primaryUpdbMaxAttempts,
+                lockoutDurationMinutes: params.primaryUpdbLockoutDurationMinutes,
+            }
+            : undefined,
+    };
+}
+function buildSecondaryPatchBody(params) {
+    return {
+        requireTotp: params.secondaryRequireTotp,
+        requireExtJwtSigner: params.secondaryRequireExtJwtSigner,
+    };
+}
+// Define handlers for each Auth Policy tool
+export const AUTH_POLICY_HANDLERS = {
+    listAuthPolicies: (request, config) => withAuthenticatedClient(request, config, 'list auth policies', (client, ztSession) => listAuthPolicies({ client, headers: { 'zt-session': ztSession } })),
+    listAuthPolicy: (request, config) => {
+        const { id } = request.parameters;
+        if (!id)
+            return Promise.resolve(createErrorResponse('Error: id is required'));
+        return withAuthenticatedClient(request, config, 'get auth policy', (client, ztSession) => detailAuthPolicy({ path: { id }, client, headers: { 'zt-session': ztSession } }));
+    },
+    createAuthPolicy: (request, config) => {
+        const { name } = request.parameters;
+        if (!name)
+            return Promise.resolve(createErrorResponse('Error: name is required'));
+        return withAuthenticatedClient(request, config, 'create auth policy', (client, ztSession) => createAuthPolicy({
+            body: {
+                name,
+                primary: buildPrimaryBody(request.parameters),
+                secondary: buildSecondaryBody(request.parameters),
+            },
+            client,
+            headers: { 'zt-session': ztSession },
+        }));
+    },
+    deleteAuthPolicy: (request, config) => {
+        const { id } = request.parameters;
+        if (!id)
+            return Promise.resolve(createErrorResponse('Error: id is required'));
+        return withAuthenticatedClient(request, config, 'delete auth policy', (client, ztSession) => deleteAuthPolicy({ path: { id }, client, headers: { 'zt-session': ztSession } }));
+    },
+    updateAuthPolicy: (request, config) => {
+        const { id, name } = request.parameters;
+        if (!id)
+            return Promise.resolve(createErrorResponse('Error: id is required'));
+        return withAuthenticatedClient(request, config, 'update auth policy', (client, ztSession) => patchAuthPolicy({
+            path: { id },
+            body: {
+                name,
+                primary: buildPrimaryPatchBody(request.parameters),
+                secondary: buildSecondaryPatchBody(request.parameters),
+            },
+            client,
+            headers: { 'zt-session': ztSession },
+        }));
+    },
+};
+//# sourceMappingURL=auth-policies.js.map

package/dist/tools/auth-policies.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth-policies.js","sourceRoot":"","sources":["../../src/tools/auth-policies.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,mBAAmB,EAAE,MAAM,0BAA0B,CAAC;AAC/D,OAAO,EAAE,uBAAuB,EAAE,MAAM,kCAAkC,CAAC;AAC3E,OAAO,EACL,gBAAgB,EAChB,gBAAgB,EAChB,gBAAgB,EAChB,gBAAgB,EAChB,eAAe,GAChB,MAAM,uCAAuC,CAAC;AAE/C,yCAAyC;AACzC,MAAM,CAAC,MAAM,iBAAiB,GAAW;IACvC;QACE,IAAI,EAAE,kBAAkB;QACxB,WAAW,EAAE,4CAA4C;QACzD,WAAW,EAAE;YACX,IAAI,EAAE,QAAQ;YACd,UAAU,EAAE,EAAE;SACf;QACD,KAAK,EAAE;YACL,cAAc,EAAE,CAAC,oBAAoB,CAAC;YACtC,QAAQ,EAAE,IAAI;SACf;QACD,WAAW,EAAE;YACX,KAAK,EAAE,qDAAqD;YAC5D,YAAY,EAAE,IAAI;YAClB,eAAe,EAAE,KAAK;YACtB,cAAc,EAAE,IAAI;YACpB,aAAa,EAAE,KAAK;SACrB;KACF;IACD;QACE,IAAI,EAAE,gBAAgB;QACtB,WAAW,EAAE,+CAA+C;QAC5D,WAAW,EAAE;YACX,IAAI,EAAE,QAAQ;YACd,UAAU,EAAE;gBACV,EAAE,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,WAAW,EAAE,mCAAmC,EAAE;aACzE;YACD,QAAQ,EAAE,CAAC,IAAI,CAAC;SACjB;QACD,KAAK,EAAE;YACL,cAAc,EAAE,CAAC,oBAAoB,CAAC;YACtC,QAAQ,EAAE,IAAI;SACf;QACD,WAAW,EAAE;YACX,KAAK,EAAE,8BAA8B;YACrC,YAAY,EAAE,IAAI;YAClB,eAAe,EAAE,KAAK;YACtB,cAAc,EAAE,IAAI;YACpB,aAAa,EAAE,KAAK;SACrB;KACF;IACD;QACE,IAAI,EAAE,kBAAkB;QACxB,WAAW,EAAE,gCAAgC;QAC7C,WAAW,EAAE;YACX,IAAI,EAAE,QAAQ;YACd,UAAU,EAAE;gBACV,IAAI,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,WAAW,EAAE,mCAAmC,EAAE;gBAC1E,kBAAkB,EAAE;oBAClB,IAAI,EAAE,SAAS;oBACf,WAAW,EAAE,qDAAqD;oBAClE,OAAO,EAAE,KAAK;iBACf;gBACD,4BAA4B,EAAE;oBAC5B,IAAI,EAAE,SAAS;oBACf,WAAW,EAAE,0CAA0C;oBACvD,OAAO,EAAE,KAAK;iBACf;gBACD,oBAAoB,EAAE;oBACpB,IAAI,EAAE,SAAS;oBACf,WAAW,EAAE,gDAAgD;oBAC7D,OAAO,EAAE,KAAK;iBACf;gBACD,2BAA2B,EAAE;oBAC3B,IAAI,EAAE,QAAQ;oBACd,WAAW,EAAE,yDAAyD;iBACvE;gBACD,kBAAkB,EAAE;oBAClB,IAAI,EAAE,SAAS;oBACf,WAAW,EAAE,qDAAqD;oBAClE,OAAO,EAAE,KAAK;iBACf;gBACD,4BAA4B,EAAE;oBAC5B,IAAI,EAAE,QAAQ;oBACd,WAAW,EAAE,yBAAyB;oBACtC,OAAO,EAAE,CAAC;iBACX;gBACD,2BAA2B,EAAE;oBAC3B,IAAI,EAAE,SAAS;oBACf,WAAW,EAAE,sCAAsC;oBACnD,OAAO,EAAE,KAAK;iBACf;gBACD,4BAA4B,EAAE;oBAC5B,IAAI,EAAE,SAAS;oBACf,WAAW,EAAE,8CAA8C;oBAC3D,OAAO,EAAE,KAAK;iBACf;gBACD,6BAA6B,EAAE;oBAC7B,IAAI,EAAE,SAAS;oBACf,WAAW,EAAE,+CAA+C;oBAC5D,OAAO,EAAE,KAAK;iBACf;gBACD,sBAAsB,EAAE;oBACtB,IAAI,EAAE,QAAQ;oBACd,WAAW,EAAE,uCAAuC;oBACpD,OAAO,EAAE,CAAC;iBACX;gBACD,iCAAiC,EAAE;oBACjC,IAAI,EAAE,QAAQ;oBACd,WAAW,EAAE,gDAAgD;oBAC7D,OAAO,EAAE,CAAC;iBACX;gBACD,oBAAoB,EAAE;oBACpB,IAAI,EAAE,SAAS;oBACf,WAAW,EAAE,qDAAqD;oBAClE,OAAO,EAAE,KAAK;iBACf;gBACD,4BAA4B,EAAE;oBAC5B,IAAI,EAAE,QAAQ;oBACd,WAAW,EAAE,yDAAyD;iBACvE;aACF;YACD,QAAQ,EAAE,CAAC,MAAM,CAAC;SACnB;QACD,KAAK,EAAE;YACL,cAAc,EAAE,CAAC,qBAAqB,CAAC;YACvC,QAAQ,EAAE,KAAK;SAChB;QACD,WAAW,EAAE;YACX,KAAK,EAAE,+CAA+C;YACtD,YAAY,EAAE,KAAK;YACnB,eAAe,EAAE,KAAK;YACtB,cAAc,EAAE,KAAK;YACrB,aAAa,EAAE,KAAK;SACrB;KACF;IACD;QACE,IAAI,EAAE,kBAAkB;QACxB,WAAW,EAAE,4BAA4B;QACzC,WAAW,EAAE;YACX,IAAI,EAAE,QAAQ;YACd,UAAU,EAAE;gBACV,EAAE,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,WAAW,EAAE,iCAAiC,EAAE;aACvE;YACD,QAAQ,EAAE,CAAC,IAAI,CAAC;SACjB;QACD,KAAK,EAAE;YACL,cAAc,EAAE,CAAC,qBAAqB,CAAC;YACvC,QAAQ,EAAE,KAAK;SAChB;QACD,WAAW,EAAE;YACX,KAAK,EAAE,8CAA8C;YACrD,YAAY,EAAE,KAAK;YACnB,eAAe,EAAE,IAAI;YACrB,cAAc,EAAE,KAAK;YACrB,aAAa,EAAE,KAAK;SACrB;KACF;IACD;QACE,IAAI,EAAE,kBAAkB;QACxB,WAAW,EAAE,sCAAsC;QACnD,WAAW,EAAE;YACX,IAAI,EAAE,QAAQ;YACd,UAAU,EAAE;gBACV,EAAE,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,WAAW,EAAE,iCAAiC,EAAE;gBACtE,IAAI,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,WAAW,EAAE,8BAA8B,EAAE;gBACrE,kBAAkB,EAAE;oBAClB,IAAI,EAAE,SAAS;oBACf,WAAW,EAAE,qDAAqD;iBACnE;gBACD,4BAA4B,EAAE;oBAC5B,IAAI,EAAE,SAAS;oBACf,WAAW,EAAE,0CAA0C;iBACxD;gBACD,oBAAoB,EAAE;oBACpB,IAAI,EAAE,SAAS;oBACf,WAAW,EAAE,gDAAgD;iBAC9D;gBACD,2BAA2B,EAAE;oBAC3B,IAAI,EAAE,QAAQ;oBACd,WAAW,EAAE,yDAAyD;iBACvE;gBACD,kBAAkB,EAAE;oBAClB,IAAI,EAAE,SAAS;oBACf,WAAW,EAAE,qDAAqD;iBACnE;gBACD,4BAA4B,EAAE;oBAC5B,IAAI,EAAE,QAAQ;oBACd,WAAW,EAAE,yBAAyB;iBACvC;gBACD,2BAA2B,EAAE;oBAC3B,IAAI,EAAE,SAAS;oBACf,WAAW,EAAE,sCAAsC;iBACpD;gBACD,4BAA4B,EAAE;oBAC5B,IAAI,EAAE,SAAS;oBACf,WAAW,EAAE,8CAA8C;iBAC5D;gBACD,6BAA6B,EAAE;oBAC7B,IAAI,EAAE,SAAS;oBACf,WAAW,EAAE,+CAA+C;iBAC7D;gBACD,sBAAsB,EAAE;oBACtB,IAAI,EAAE,QAAQ;oBACd,WAAW,EAAE,uCAAuC;iBACrD;gBACD,iCAAiC,EAAE;oBACjC,IAAI,EAAE,QAAQ;oBACd,WAAW,EAAE,gDAAgD;iBAC9D;gBACD,oBAAoB,EAAE;oBACpB,IAAI,EAAE,SAAS;oBACf,WAAW,EAAE,qDAAqD;iBACnE;gBACD,4BAA4B,EAAE;oBAC5B,IAAI,EAAE,QAAQ;oBACd,WAAW,EAAE,yDAAyD;iBACvE;aACF;YACD,QAAQ,EAAE,CAAC,IAAI,CAAC;SACjB;QACD,KAAK,EAAE;YACL,cAAc,EAAE,CAAC,qBAAqB,CAAC;YACvC,QAAQ,EAAE,KAAK;SAChB;QACD,WAAW,EAAE;YACX,KAAK,EAAE,qDAAqD;YAC5D,YAAY,EAAE,KAAK;YACnB,eAAe,EAAE,IAAI;YACrB,cAAc,EAAE,IAAI;YACpB,aAAa,EAAE,KAAK;SACrB;KACF;CACF,CAAC;AAEF,SAAS,gBAAgB,CAAC,MAA+B;IACvD,OAAO;QACL,IAAI,EAAE;YACJ,OAAO,EAAE,MAAM,CAAC,kBAA6B;YAC7C,iBAAiB,EAAE,MAAM,CAAC,4BAAuC;SAClE;QACD,MAAM,EAAE;YACN,OAAO,EAAE,MAAM,CAAC,oBAA+B;YAC/C,cAAc,EAAE,MAAM,CAAC,2BAA2B;gBAChD,CAAC,CAAE,MAAM,CAAC,2BAAsC,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC,CAAC,CAAS,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;gBACxF,CAAC,CAAC,EAAE;SACP;QACD,IAAI,EAAE;YACJ,OAAO,EAAE,MAAM,CAAC,kBAA6B;YAC7C,iBAAiB,EAAG,MAAM,CAAC,4BAAuC,IAAI,CAAC;YACvE,gBAAgB,EAAE,MAAM,CAAC,2BAAsC;YAC/D,iBAAiB,EAAE,MAAM,CAAC,4BAAuC;YACjE,kBAAkB,EAAE,MAAM,CAAC,6BAAwC;YACnE,WAAW,EAAG,MAAM,CAAC,sBAAiC,IAAI,CAAC;YAC3D,sBAAsB,EAAG,MAAM,CAAC,iCAA4C,IAAI,CAAC;SAClF;KACF,CAAC;AACJ,CAAC;AAED,SAAS,kBAAkB,CAAC,MAA+B;IACzD,OAAO;QACL,WAAW,EAAE,MAAM,CAAC,oBAA+B;QACnD,mBAAmB,EAAG,MAAM,CAAC,4BAAuC,IAAI,IAAI;KAC7E,CAAC;AACJ,CAAC;AAED,SAAS,qBAAqB,CAAC,MAA+B;IAC5D,OAAO;QACL,IAAI,EACF,MAAM,CAAC,kBAAkB,KAAK,SAAS,IAAI,MAAM,CAAC,4BAA4B,KAAK,SAAS;YAC1F,CAAC,CAAC;gBACE,OAAO,EAAE,MAAM,CAAC,kBAAyC;gBACzD,iBAAiB,EAAE,MAAM,CAAC,4BAAmD;aAC9E;YACH,CAAC,CAAC,SAAS;QACf,MAAM,EACJ,MAAM,CAAC,oBAAoB,KAAK,SAAS,IAAI,MAAM,CAAC,2BAA2B,KAAK,SAAS;YAC3F,CAAC,CAAC;gBACE,OAAO,EAAE,MAAM,CAAC,oBAA2C;gBAC3D,cAAc,EAAE,MAAM,CAAC,2BAA2B;oBAChD,CAAC,CAAE,MAAM,CAAC,2BAAsC;yBAC3C,KAAK,CAAC,GAAG,CAAC;yBACV,GAAG,CAAC,CAAC,CAAS,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;oBACjC,CAAC,CAAC,SAAS;aACd;YACH,CAAC,CAAC,SAAS;QACf,IAAI,EACF,MAAM,CAAC,kBAAkB,KAAK,SAAS;YACvC,MAAM,CAAC,4BAA4B,KAAK,SAAS;YACjD,MAAM,CAAC,2BAA2B,KAAK,SAAS;YAChD,MAAM,CAAC,4BAA4B,KAAK,SAAS;YACjD,MAAM,CAAC,6BAA6B,KAAK,SAAS;YAClD,MAAM,CAAC,sBAAsB,KAAK,SAAS;YAC3C,MAAM,CAAC,iCAAiC,KAAK,SAAS;YACpD,CAAC,CAAC;gBACE,OAAO,EAAE,MAAM,CAAC,kBAAyC;gBACzD,iBAAiB,EAAE,MAAM,CAAC,4BAAkD;gBAC5E,gBAAgB,EAAE,MAAM,CAAC,2BAAkD;gBAC3E,iBAAiB,EAAE,MAAM,CAAC,4BAAmD;gBAC7E,kBAAkB,EAAE,MAAM,CAAC,6BAAoD;gBAC/E,WAAW,EAAE,MAAM,CAAC,sBAA4C;gBAChE,sBAAsB,EAAE,MAAM,CAAC,iCAAuD;aACvF;YACH,CAAC,CAAC,SAAS;KAChB,CAAC;AACJ,CAAC;AAED,SAAS,uBAAuB,CAAC,MAA+B;IAC9D,OAAO;QACL,WAAW,EAAE,MAAM,CAAC,oBAA2C;QAC/D,mBAAmB,EAAE,MAAM,CAAC,4BAAkD;KAC/E,CAAC;AACJ,CAAC;AAED,4CAA4C;AAC5C,MAAM,CAAC,MAAM,oBAAoB,GAG7B;IACF,gBAAgB,EAAE,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE,CACpC,uBAAuB,CAAC,OAAO,EAAE,MAAM,EAAE,oBAAoB,EAAE,CAAC,MAAM,EAAE,SAAS,EAAE,EAAE,CACnF,gBAAgB,CAAC,EAAE,MAAM,EAAE,OAAO,EAAE,EAAE,YAAY,EAAE,SAAS,EAAE,EAAE,CAAC,CACnE;IAEH,cAAc,EAAE,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;QAClC,MAAM,EAAE,EAAE,EAAE,GAAG,OAAO,CAAC,UAAU,CAAC;QAClC,IAAI,CAAC,EAAE;YAAE,OAAO,OAAO,CAAC,OAAO,CAAC,mBAAmB,CAAC,uBAAuB,CAAC,CAAC,CAAC;QAC9E,OAAO,uBAAuB,CAAC,OAAO,EAAE,MAAM,EAAE,iBAAiB,EAAE,CAAC,MAAM,EAAE,SAAS,EAAE,EAAE,CACvF,gBAAgB,CAAC,EAAE,IAAI,EAAE,EAAE,EAAE,EAAE,EAAE,MAAM,EAAE,OAAO,EAAE,EAAE,YAAY,EAAE,SAAS,EAAE,EAAE,CAAC,CACjF,CAAC;IACJ,CAAC;IAED,gBAAgB,EAAE,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;QACpC,MAAM,EAAE,IAAI,EAAE,GAAG,OAAO,CAAC,UAAU,CAAC;QACpC,IAAI,CAAC,IAAI;YAAE,OAAO,OAAO,CAAC,OAAO,CAAC,mBAAmB,CAAC,yBAAyB,CAAC,CAAC,CAAC;QAClF,OAAO,uBAAuB,CAAC,OAAO,EAAE,MAAM,EAAE,oBAAoB,EAAE,CAAC,MAAM,EAAE,SAAS,EAAE,EAAE,CAC1F,gBAAgB,CAAC;YACf,IAAI,EAAE;gBACJ,IAAI;gBACJ,OAAO,EAAE,gBAAgB,CAAC,OAAO,CAAC,UAAU,CAAC;gBAC7C,SAAS,EAAE,kBAAkB,CAAC,OAAO,CAAC,UAAU,CAAC;aAClD;YACD,MAAM;YACN,OAAO,EAAE,EAAE,YAAY,EAAE,SAAS,EAAE;SACrC,CAAC,CACH,CAAC;IACJ,CAAC;IAED,gBAAgB,EAAE,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;QACpC,MAAM,EAAE,EAAE,EAAE,GAAG,OAAO,CAAC,UAAU,CAAC;QAClC,IAAI,CAAC,EAAE;YAAE,OAAO,OAAO,CAAC,OAAO,CAAC,mBAAmB,CAAC,uBAAuB,CAAC,CAAC,CAAC;QAC9E,OAAO,uBAAuB,CAAC,OAAO,EAAE,MAAM,EAAE,oBAAoB,EAAE,CAAC,MAAM,EAAE,SAAS,EAAE,EAAE,CAC1F,gBAAgB,CAAC,EAAE,IAAI,EAAE,EAAE,EAAE,EAAE,EAAE,MAAM,EAAE,OAAO,EAAE,EAAE,YAAY,EAAE,SAAS,EAAE,EAAE,CAAC,CACjF,CAAC;IACJ,CAAC;IAED,gBAAgB,EAAE,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;QACpC,MAAM,EAAE,EAAE,EAAE,IAAI,EAAE,GAAG,OAAO,CAAC,UAAU,CAAC;QACxC,IAAI,CAAC,EAAE;YAAE,OAAO,OAAO,CAAC,OAAO,CAAC,mBAAmB,CAAC,uBAAuB,CAAC,CAAC,CAAC;QAC9E,OAAO,uBAAuB,CAAC,OAAO,EAAE,MAAM,EAAE,oBAAoB,EAAE,CAAC,MAAM,EAAE,SAAS,EAAE,EAAE,CAC1F,eAAe,CAAC;YACd,IAAI,EAAE,EAAE,EAAE,EAAE;YACZ,IAAI,EAAE;gBACJ,IAAI;gBACJ,OAAO,EAAE,qBAAqB,CAAC,OAAO,CAAC,UAAU,CAAC;gBAClD,SAAS,EAAE,uBAAuB,CAAC,OAAO,CAAC,UAAU,CAAC;aACvD;YACD,MAAM;YACN,OAAO,EAAE,EAAE,YAAY,EAAE,SAAS,EAAE;SACrC,CAAC,CACH,CAAC;IACJ,CAAC;CACF,CAAC"}

package/dist/tools/authenticators.d.ts

@@ -0,0 +1,3 @@
+import type { HandlerConfig, HandlerRequest, HandlerResponse, Tool } from '../utils/types.js';
+export declare const AUTHENTICATOR_TOOLS: Tool[];
+export declare const AUTHENTICATOR_HANDLERS: Record<string, (request: HandlerRequest, config: HandlerConfig) => Promise<HandlerResponse>>;

package/dist/tools/authenticators.js

@@ -0,0 +1,183 @@
+import { createErrorResponse } from '../utils/http-utility.js';
+import { withAuthenticatedClient } from '../utils/authenticated-client.js';
+import { listAuthenticators, detailAuthenticator, createAuthenticator, deleteAuthenticator, patchAuthenticator, } from '../utils/controller-client/sdk.gen.js';
+// Define all available Authenticator tools
+export const AUTHENTICATOR_TOOLS = [
+    {
+        name: 'listAuthenticators',
+        description: 'List all Authenticators in the Ziti network',
+        inputSchema: {
+            type: 'object',
+            properties: {},
+        },
+        _meta: {
+            requiredScopes: ['read:authenticators'],
+            readOnly: true,
+        },
+        annotations: {
+            title: 'List all Authenticators defined in the Ziti network.',
+            readOnlyHint: true,
+            destructiveHint: false,
+            idempotentHint: true,
+            openWorldHint: false,
+        },
+    },
+    {
+        name: 'listAuthenticator',
+        description: 'Get details about a specific Ziti Authenticator',
+        inputSchema: {
+            type: 'object',
+            properties: {
+                id: { type: 'string', description: 'ID of the authenticator to retrieve' },
+            },
+            required: ['id'],
+        },
+        _meta: {
+            requiredScopes: ['read:authenticators'],
+            readOnly: true,
+        },
+        annotations: {
+            title: 'Get Ziti Authenticator Details',
+            readOnlyHint: true,
+            destructiveHint: false,
+            idempotentHint: true,
+            openWorldHint: false,
+        },
+    },
+    {
+        name: 'createAuthenticator',
+        description: 'Create a new Ziti Authenticator.',
+        inputSchema: {
+            type: 'object',
+            properties: {
+                method: {
+                    type: 'string',
+                    description: 'The type of authenticator to create (e.g. "updb" for username/password, "cert" for certificate)',
+                },
+                identityId: {
+                    type: 'string',
+                    description: 'The ID of the identity to assign this authenticator to',
+                },
+                username: {
+                    type: 'string',
+                    description: 'The username for login (used only for method="updb")',
+                },
+                password: {
+                    type: 'string',
+                    description: 'The password for login (used only for method="updb")',
+                },
+                certPem: {
+                    type: 'string',
+                    description: 'The client certificate PEM (used only for method="cert")',
+                },
+            },
+            required: ['method', 'identityId'],
+        },
+        _meta: {
+            requiredScopes: ['write:authenticators'],
+            readOnly: false,
+        },
+        annotations: {
+            title: 'Create a new Authenticator in the Ziti network.',
+            readOnlyHint: false,
+            destructiveHint: false,
+            idempotentHint: false,
+            openWorldHint: false,
+        },
+    },
+    {
+        name: 'deleteAuthenticator',
+        description: 'Delete a Ziti Authenticator.',
+        inputSchema: {
+            type: 'object',
+            properties: {
+                id: { type: 'string', description: 'ID of the authenticator to delete' },
+            },
+            required: ['id'],
+        },
+        _meta: {
+            requiredScopes: ['write:authenticators'],
+            readOnly: false,
+        },
+        annotations: {
+            title: 'Delete an Authenticator from the Ziti network.',
+            readOnlyHint: false,
+            destructiveHint: true,
+            idempotentHint: false,
+            openWorldHint: false,
+        },
+    },
+    {
+        name: 'updateAuthenticator',
+        description: 'Update an existing Ziti Authenticator.',
+        inputSchema: {
+            type: 'object',
+            properties: {
+                id: { type: 'string', description: 'ID of the authenticator to update' },
+                username: { type: 'string', description: 'New username for the authenticator' },
+                password: { type: 'string', description: 'New password for the authenticator' },
+            },
+            required: ['id'],
+        },
+        _meta: {
+            requiredScopes: ['write:authenticators'],
+            readOnly: false,
+        },
+        annotations: {
+            title: 'Update an existing Authenticator in the Ziti network.',
+            readOnlyHint: false,
+            destructiveHint: true,
+            idempotentHint: true,
+            openWorldHint: false,
+        },
+    },
+];
+// Define handlers for each Authenticator tool
+export const AUTHENTICATOR_HANDLERS = {
+    listAuthenticators: (request, config) => withAuthenticatedClient(request, config, 'list authenticators', (client, ztSession) => listAuthenticators({ client, headers: { 'zt-session': ztSession } })),
+    listAuthenticator: (request, config) => {
+        const { id } = request.parameters;
+        if (!id)
+            return Promise.resolve(createErrorResponse('Error: id is required'));
+        return withAuthenticatedClient(request, config, 'get authenticator', (client, ztSession) => detailAuthenticator({ path: { id }, client, headers: { 'zt-session': ztSession } }));
+    },
+    createAuthenticator: (request, config) => {
+        const { method, identityId, username, password, certPem } = request.parameters;
+        if (!method)
+            return Promise.resolve(createErrorResponse('Error: method is required'));
+        if (!identityId)
+            return Promise.resolve(createErrorResponse('Error: identityId is required'));
+        return withAuthenticatedClient(request, config, 'create authenticator', (client, ztSession) => createAuthenticator({
+            body: {
+                method,
+                identityId,
+                username,
+                password,
+                certPem,
+            },
+            client,
+            headers: { 'zt-session': ztSession },
+        }));
+    },
+    deleteAuthenticator: (request, config) => {
+        const { id } = request.parameters;
+        if (!id)
+            return Promise.resolve(createErrorResponse('Error: id is required'));
+        return withAuthenticatedClient(request, config, 'delete authenticator', (client, ztSession) => deleteAuthenticator({ path: { id }, client, headers: { 'zt-session': ztSession } }));
+    },
+    updateAuthenticator: (request, config) => {
+        const { id, username, password } = request.parameters;
+        if (!id)
+            return Promise.resolve(createErrorResponse('Error: id is required'));
+        return withAuthenticatedClient(request, config, 'update authenticator', (client, ztSession) => patchAuthenticator({
+            path: { id },
+            body: {
+                username,
+                password,
+            },
+            client,
+            headers: { 'zt-session': ztSession },
+        }));
+    },
+};
+//# sourceMappingURL=authenticators.js.map

package/dist/tools/authenticators.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"authenticators.js","sourceRoot":"","sources":["../../src/tools/authenticators.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,mBAAmB,EAAE,MAAM,0BAA0B,CAAC;AAC/D,OAAO,EAAE,uBAAuB,EAAE,MAAM,kCAAkC,CAAC;AAC3E,OAAO,EACL,kBAAkB,EAClB,mBAAmB,EACnB,mBAAmB,EACnB,mBAAmB,EACnB,kBAAkB,GACnB,MAAM,uCAAuC,CAAC;AAE/C,2CAA2C;AAC3C,MAAM,CAAC,MAAM,mBAAmB,GAAW;IACzC;QACE,IAAI,EAAE,oBAAoB;QAC1B,WAAW,EAAE,6CAA6C;QAC1D,WAAW,EAAE;YACX,IAAI,EAAE,QAAQ;YACd,UAAU,EAAE,EAAE;SACf;QACD,KAAK,EAAE;YACL,cAAc,EAAE,CAAC,qBAAqB,CAAC;YACvC,QAAQ,EAAE,IAAI;SACf;QACD,WAAW,EAAE;YACX,KAAK,EAAE,sDAAsD;YAC7D,YAAY,EAAE,IAAI;YAClB,eAAe,EAAE,KAAK;YACtB,cAAc,EAAE,IAAI;YACpB,aAAa,EAAE,KAAK;SACrB;KACF;IACD;QACE,IAAI,EAAE,mBAAmB;QACzB,WAAW,EAAE,iDAAiD;QAC9D,WAAW,EAAE;YACX,IAAI,EAAE,QAAQ;YACd,UAAU,EAAE;gBACV,EAAE,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,WAAW,EAAE,qCAAqC,EAAE;aAC3E;YACD,QAAQ,EAAE,CAAC,IAAI,CAAC;SACjB;QACD,KAAK,EAAE;YACL,cAAc,EAAE,CAAC,qBAAqB,CAAC;YACvC,QAAQ,EAAE,IAAI;SACf;QACD,WAAW,EAAE;YACX,KAAK,EAAE,gCAAgC;YACvC,YAAY,EAAE,IAAI;YAClB,eAAe,EAAE,KAAK;YACtB,cAAc,EAAE,IAAI;YACpB,aAAa,EAAE,KAAK;SACrB;KACF;IACD;QACE,IAAI,EAAE,qBAAqB;QAC3B,WAAW,EAAE,kCAAkC;QAC/C,WAAW,EAAE;YACX,IAAI,EAAE,QAAQ;YACd,UAAU,EAAE;gBACV,MAAM,EAAE;oBACN,IAAI,EAAE,QAAQ;oBACd,WAAW,EACT,iGAAiG;iBACpG;gBACD,UAAU,EAAE;oBACV,IAAI,EAAE,QAAQ;oBACd,WAAW,EAAE,wDAAwD;iBACtE;gBACD,QAAQ,EAAE;oBACR,IAAI,EAAE,QAAQ;oBACd,WAAW,EAAE,sDAAsD;iBACpE;gBACD,QAAQ,EAAE;oBACR,IAAI,EAAE,QAAQ;oBACd,WAAW,EAAE,sDAAsD;iBACpE;gBACD,OAAO,EAAE;oBACP,IAAI,EAAE,QAAQ;oBACd,WAAW,EAAE,0DAA0D;iBACxE;aACF;YACD,QAAQ,EAAE,CAAC,QAAQ,EAAE,YAAY,CAAC;SACnC;QACD,KAAK,EAAE;YACL,cAAc,EAAE,CAAC,sBAAsB,CAAC;YACxC,QAAQ,EAAE,KAAK;SAChB;QACD,WAAW,EAAE;YACX,KAAK,EAAE,iDAAiD;YACxD,YAAY,EAAE,KAAK;YACnB,eAAe,EAAE,KAAK;YACtB,cAAc,EAAE,KAAK;YACrB,aAAa,EAAE,KAAK;SACrB;KACF;IACD;QACE,IAAI,EAAE,qBAAqB;QAC3B,WAAW,EAAE,8BAA8B;QAC3C,WAAW,EAAE;YACX,IAAI,EAAE,QAAQ;YACd,UAAU,EAAE;gBACV,EAAE,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,WAAW,EAAE,mCAAmC,EAAE;aACzE;YACD,QAAQ,EAAE,CAAC,IAAI,CAAC;SACjB;QACD,KAAK,EAAE;YACL,cAAc,EAAE,CAAC,sBAAsB,CAAC;YACxC,QAAQ,EAAE,KAAK;SAChB;QACD,WAAW,EAAE;YACX,KAAK,EAAE,gDAAgD;YACvD,YAAY,EAAE,KAAK;YACnB,eAAe,EAAE,IAAI;YACrB,cAAc,EAAE,KAAK;YACrB,aAAa,EAAE,KAAK;SACrB;KACF;IACD;QACE,IAAI,EAAE,qBAAqB;QAC3B,WAAW,EAAE,wCAAwC;QACrD,WAAW,EAAE;YACX,IAAI,EAAE,QAAQ;YACd,UAAU,EAAE;gBACV,EAAE,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,WAAW,EAAE,mCAAmC,EAAE;gBACxE,QAAQ,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,WAAW,EAAE,oCAAoC,EAAE;gBAC/E,QAAQ,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,WAAW,EAAE,oCAAoC,EAAE;aAChF;YACD,QAAQ,EAAE,CAAC,IAAI,CAAC;SACjB;QACD,KAAK,EAAE;YACL,cAAc,EAAE,CAAC,sBAAsB,CAAC;YACxC,QAAQ,EAAE,KAAK;SAChB;QACD,WAAW,EAAE;YACX,KAAK,EAAE,uDAAuD;YAC9D,YAAY,EAAE,KAAK;YACnB,eAAe,EAAE,IAAI;YACrB,cAAc,EAAE,IAAI;YACpB,aAAa,EAAE,KAAK;SACrB;KACF;CACF,CAAC;AAEF,8CAA8C;AAC9C,MAAM,CAAC,MAAM,sBAAsB,GAG/B;IACF,kBAAkB,EAAE,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE,CACtC,uBAAuB,CAAC,OAAO,EAAE,MAAM,EAAE,qBAAqB,EAAE,CAAC,MAAM,EAAE,SAAS,EAAE,EAAE,CACpF,kBAAkB,CAAC,EAAE,MAAM,EAAE,OAAO,EAAE,EAAE,YAAY,EAAE,SAAS,EAAE,EAAE,CAAC,CACrE;IAEH,iBAAiB,EAAE,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;QACrC,MAAM,EAAE,EAAE,EAAE,GAAG,OAAO,CAAC,UAAU,CAAC;QAClC,IAAI,CAAC,EAAE;YAAE,OAAO,OAAO,CAAC,OAAO,CAAC,mBAAmB,CAAC,uBAAuB,CAAC,CAAC,CAAC;QAC9E,OAAO,uBAAuB,CAAC,OAAO,EAAE,MAAM,EAAE,mBAAmB,EAAE,CAAC,MAAM,EAAE,SAAS,EAAE,EAAE,CACzF,mBAAmB,CAAC,EAAE,IAAI,EAAE,EAAE,EAAE,EAAE,EAAE,MAAM,EAAE,OAAO,EAAE,EAAE,YAAY,EAAE,SAAS,EAAE,EAAE,CAAC,CACpF,CAAC;IACJ,CAAC;IAED,mBAAmB,EAAE,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;QACvC,MAAM,EAAE,MAAM,EAAE,UAAU,EAAE,QAAQ,EAAE,QAAQ,EAAE,OAAO,EAAE,GAAG,OAAO,CAAC,UAAU,CAAC;QAC/E,IAAI,CAAC,MAAM;YAAE,OAAO,OAAO,CAAC,OAAO,CAAC,mBAAmB,CAAC,2BAA2B,CAAC,CAAC,CAAC;QACtF,IAAI,CAAC,UAAU;YAAE,OAAO,OAAO,CAAC,OAAO,CAAC,mBAAmB,CAAC,+BAA+B,CAAC,CAAC,CAAC;QAC9F,OAAO,uBAAuB,CAAC,OAAO,EAAE,MAAM,EAAE,sBAAsB,EAAE,CAAC,MAAM,EAAE,SAAS,EAAE,EAAE,CAC5F,mBAAmB,CAAC;YAClB,IAAI,EAAE;gBACJ,MAAM;gBACN,UAAU;gBACV,QAAQ;gBACR,QAAQ;gBACR,OAAO;aACR;YACD,MAAM;YACN,OAAO,EAAE,EAAE,YAAY,EAAE,SAAS,EAAE;SACrC,CAAC,CACH,CAAC;IACJ,CAAC;IAED,mBAAmB,EAAE,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;QACvC,MAAM,EAAE,EAAE,EAAE,GAAG,OAAO,CAAC,UAAU,CAAC;QAClC,IAAI,CAAC,EAAE;YAAE,OAAO,OAAO,CAAC,OAAO,CAAC,mBAAmB,CAAC,uBAAuB,CAAC,CAAC,CAAC;QAC9E,OAAO,uBAAuB,CAAC,OAAO,EAAE,MAAM,EAAE,sBAAsB,EAAE,CAAC,MAAM,EAAE,SAAS,EAAE,EAAE,CAC5F,mBAAmB,CAAC,EAAE,IAAI,EAAE,EAAE,EAAE,EAAE,EAAE,MAAM,EAAE,OAAO,EAAE,EAAE,YAAY,EAAE,SAAS,EAAE,EAAE,CAAC,CACpF,CAAC;IACJ,CAAC;IAED,mBAAmB,EAAE,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;QACvC,MAAM,EAAE,EAAE,EAAE,QAAQ,EAAE,QAAQ,EAAE,GAAG,OAAO,CAAC,UAAU,CAAC;QACtD,IAAI,CAAC,EAAE;YAAE,OAAO,OAAO,CAAC,OAAO,CAAC,mBAAmB,CAAC,uBAAuB,CAAC,CAAC,CAAC;QAC9E,OAAO,uBAAuB,CAAC,OAAO,EAAE,MAAM,EAAE,sBAAsB,EAAE,CAAC,MAAM,EAAE,SAAS,EAAE,EAAE,CAC5F,kBAAkB,CAAC;YACjB,IAAI,EAAE,EAAE,EAAE,EAAE;YACZ,IAAI,EAAE;gBACJ,QAAQ;gBACR,QAAQ;aACT;YACD,MAAM;YACN,OAAO,EAAE,EAAE,YAAY,EAAE,SAAS,EAAE;SACrC,CAAC,CACH,CAAC;IACJ,CAAC;CACF,CAAC"}

package/dist/tools/certificate-authorities.d.ts

@@ -0,0 +1,3 @@
+import type { HandlerConfig, HandlerRequest, HandlerResponse, Tool } from '../utils/types.js';
+export declare const CA_TOOLS: Tool[];
+export declare const CA_HANDLERS: Record<string, (request: HandlerRequest, config: HandlerConfig) => Promise<HandlerResponse>>;