@paigy/mcp 0.4.0 → 0.6.0

package/README.md

@@ -7,7 +7,7 @@ A voice inbox for your AI agents. This MCP server lets an agent **notify a user*
 ### As a Claude Code plugin (one step)
 
 ```
-/plugin marketplace add mauurda/paigy
+/plugin marketplace add paigy-ai/claude
 /plugin install paigy
 ```
 

package/dist/chunk-XXBSXCOC.js

@@ -0,0 +1,77 @@
+// src/device.ts
+import { execFile } from "child_process";
+import { existsSync, mkdirSync, readFileSync, rmSync, writeFileSync } from "fs";
+import { homedir, platform } from "os";
+import { join } from "path";
+var BACKEND_URL = process.env.PAIGY_BACKEND_URL ?? "https://paigy.ai";
+var AGENT_NAME = process.env.PAIGY_AGENT ?? "mcp-agent";
+var TOKEN_PATH = join(homedir(), ".paigy", "token.json");
+function openBrowser(url) {
+  const cmd = platform() === "darwin" ? "open" : platform() === "win32" ? "cmd" : "xdg-open";
+  const args = platform() === "win32" ? ["/c", "start", url] : [url];
+  execFile(cmd, args, () => {
+  });
+}
+function saveToken(token) {
+  mkdirSync(join(homedir(), ".paigy"), { recursive: true });
+  writeFileSync(TOKEN_PATH, JSON.stringify(token, null, 2) + "\n", { mode: 384 });
+}
+var sleep = (ms) => new Promise((r) => setTimeout(r, ms));
+function readToken() {
+  if (process.env.PAIGY_TOKEN) return process.env.PAIGY_TOKEN;
+  if (existsSync(TOKEN_PATH)) {
+    try {
+      return JSON.parse(readFileSync(TOKEN_PATH, "utf8")).access_token ?? "";
+    } catch {
+    }
+  }
+  return "";
+}
+function deleteToken() {
+  if (!existsSync(TOKEN_PATH)) return false;
+  rmSync(TOKEN_PATH);
+  return true;
+}
+async function revokeToken(token) {
+  const res = await fetch(`${BACKEND_URL}/api/device/revoke`, {
+    method: "POST",
+    headers: { authorization: `Bearer ${token}` }
+  });
+  return res.ok;
+}
+async function requestCode(agent = AGENT_NAME) {
+  const res = await fetch(`${BACKEND_URL}/api/device/code`, {
+    method: "POST",
+    headers: { "content-type": "application/json" },
+    body: JSON.stringify({ agent })
+  });
+  if (!res.ok) throw new Error(`/api/device/code failed: ${res.status} ${await res.text()}`);
+  return await res.json();
+}
+async function pollToken(deviceCode) {
+  const res = await fetch(`${BACKEND_URL}/api/device/token`, {
+    method: "POST",
+    headers: { "content-type": "application/json" },
+    body: JSON.stringify({ device_code: deviceCode })
+  });
+  if (res.ok) return await res.json();
+  const body = await res.json().catch(() => ({ error: "unknown" }));
+  const err = body.error ?? "unknown";
+  if (err === "authorization_pending") return null;
+  if (err === "expired_token") throw new Error("Device code expired. Start pairing again.");
+  if (err === "access_denied") throw new Error("Access denied by user. Pairing cancelled.");
+  throw new Error(`Unexpected error from /api/device/token: ${err}`);
+}
+
+export {
+  AGENT_NAME,
+  TOKEN_PATH,
+  openBrowser,
+  saveToken,
+  sleep,
+  readToken,
+  deleteToken,
+  revokeToken,
+  requestCode,
+  pollToken
+};

package/dist/index.js

@@ -1,4 +1,14 @@
 #!/usr/bin/env node
+import {
+  deleteToken,
+  openBrowser,
+  pollToken,
+  readToken,
+  requestCode,
+  revokeToken,
+  saveToken,
+  sleep
+} from "./chunk-XXBSXCOC.js";
 
 // src/index.ts
 import { Server } from "@modelcontextprotocol/sdk/server/index.js";
@@ -183,7 +193,7 @@ function loadToken() {
   }
   return "";
 }
-var ONBOARD_MSG = "Not paired with Paigy yet \u2014 run /paigy-onboard (or `npx -y @paigy/mcp paigy-mcp-onboard`) to pair this agent, then retry.";
+var ONBOARD_MSG = "Not paired with Paigy yet \u2014 call the `pair` tool to connect this agent (it returns an approval link to show the user), then retry. Manual fallback: `npx -y @paigy/mcp paigy-mcp-onboard`.";
 function ensureAuthed(res) {
   if (res.status === 401) throw new Error(ONBOARD_MSG);
   return res;
@@ -198,11 +208,11 @@ async function submitNotification(req) {
   if (!res.ok) throw new Error(`notify failed: ${res.status} ${await res.text()}`);
   return await res.json();
 }
-var sleep = (ms) => new Promise((r) => setTimeout(r, ms));
+var sleep2 = (ms) => new Promise((r) => setTimeout(r, ms));
 async function awaitReply(notificationId, opts = {}) {
   const intervalMs = opts.intervalMs ?? 5e3;
   const windowMs = opts.windowMs ?? 3e5;
-  const doSleep = opts.sleep ?? sleep;
+  const doSleep = opts.sleep ?? sleep2;
   const now = opts.now ?? Date.now;
   const token = loadToken();
   const start = now();
@@ -251,6 +261,9 @@ var AwaitReplySchema = z2.object({
   notificationId: z2.string().describe("The id returned by notify_user \u2014 waits for the user's reply to THIS notification only.")
 });
 var CheckRepliesSchema = z2.object({});
+var PairSchema = z2.object({
+  device_code: z2.string().optional().describe("Omit to start pairing (returns an approval link to show the user). Pass the device_code from that first call to finish, once the user has approved.")
+});
 var SetTaskStateToolSchema = z2.object({
   notificationId: z2.string(),
   state: SetTaskStateSchema.shape.state
@@ -280,6 +293,16 @@ var server = new Server(
 );
 server.setRequestHandler(ListToolsRequestSchema, async () => ({
   tools: [
+    {
+      name: "pair",
+      description: "Pair this agent with the user's Paigy account (one-time) \u2014 required before notify_user/await_reply work. Two steps: (1) call with NO args to start; it opens the user's browser and returns { verification_uri_complete, user_code, device_code } \u2014 show the user the URL + user_code and ask them to approve. (2) call again passing that device_code to finish; it waits for approval and saves the token. If it returns { status:'pending' }, the user hasn't approved yet \u2014 call again with the same device_code to keep waiting.",
+      inputSchema: zodToJsonSchema(PairSchema, { target: "openApi3" })
+    },
+    {
+      name: "unpair",
+      description: "Log out / unpair this agent from the user's Paigy account: revokes the token server-side (it stops working everywhere) and deletes the local ~/.paigy/token.json. Takes no arguments. After this, notify_user/await_reply won't work until the user pairs again with the pair tool.",
+      inputSchema: zodToJsonSchema(z2.object({}), { target: "openApi3" })
+    },
     {
       name: "notify_user",
       description: "Notify the user via Paigy and get a request id to poll for their answer. Provide context.title (a specific, non-empty one-line headline \u2014 this is what the user sees first, and what shows on the ring for a call) and context.description (an array of standalone, non-empty detail chunks the user can selectively ask you to expand). Set `urgency`: 'inbox' (default) drops it silently in their inbox; 'call' rings their phone now as a voice call \u2014 use 'call' only when you genuinely need them in the moment (blocked/waiting, time-sensitive), not for routine FYIs. Plus optional options (answerable choices; each may carry a sandboxed `html` or an `image` preview for a visual 'pick one' \u2014 e.g. show layout/UI alternatives) and visuals. Use `select` to control how the user answers options: 'one' (default) = pick a single option; 'many' = multi-select, user checks any subset \u2192 answer arrives as {kind:'multi', optionIds:[...]}; 'rank' = select and order, user taps options in preferred order \u2192 answer arrives as {kind:'ranked', optionIds:[...]} (ordered by choice). If a reply comes back as {kind:'clarify', chunks:[...]}, the user wants more detail on those chunks \u2014 respond via notify_user with the SAME threadId and an expanded description. Pass `threadId` from a prior notify_user result or an await_reply reply to continue that conversation thread; omit it to start a new one.",
@@ -309,6 +332,74 @@ server.setRequestHandler(ListToolsRequestSchema, async () => ({
 }));
 server.setRequestHandler(CallToolRequestSchema, async (request) => {
   switch (request.params.name) {
+    case "pair": {
+      const { device_code } = PairSchema.parse(request.params.arguments ?? {});
+      if (!device_code) {
+        const code = await requestCode();
+        openBrowser(code.verification_uri_complete);
+        return {
+          content: [{
+            type: "text",
+            text: JSON.stringify({
+              status: "awaiting_approval",
+              verification_uri_complete: code.verification_uri_complete,
+              user_code: code.user_code,
+              device_code: code.device_code,
+              expires_in: code.expires_in,
+              message: "Show the user verification_uri_complete and user_code (their browser should have opened). After they approve, call pair again with this device_code to finish."
+            })
+          }]
+        };
+      }
+      const start = Date.now();
+      const capMs = 3e4;
+      while (Date.now() - start < capMs) {
+        const token = await pollToken(device_code);
+        if (token) {
+          saveToken(token);
+          return {
+            content: [{
+              type: "text",
+              text: JSON.stringify({ status: "paired", nickname: token.nickname, agent: token.agent, device: token.device })
+            }]
+          };
+        }
+        await sleep(2e3);
+      }
+      return {
+        content: [{
+          type: "text",
+          text: JSON.stringify({
+            status: "pending",
+            device_code,
+            message: "Still awaiting approval after ~30s. Call pair again with this device_code to keep waiting."
+          })
+        }]
+      };
+    }
+    case "unpair": {
+      const token = readToken();
+      let revoked = false;
+      if (token) {
+        try {
+          revoked = await revokeToken(token);
+        } catch {
+          revoked = false;
+        }
+      }
+      const removed = deleteToken();
+      return {
+        content: [{
+          type: "text",
+          text: JSON.stringify({
+            ok: true,
+            revoked,
+            removed,
+            message: token ? `Unpaired. Server token ${revoked ? "revoked" : "revoke not confirmed"}; local token ${removed ? "deleted" : "was already absent"}.` : "No token found \u2014 already unpaired."
+          })
+        }]
+      };
+    }
     case "notify_user": {
       const parsed = NotifyRequestSchema.parse(request.params.arguments);
       const git = detectGit();

package/dist/onboard.js

@@ -1,50 +1,15 @@
 #!/usr/bin/env node
+import {
+  AGENT_NAME,
+  TOKEN_PATH,
+  openBrowser,
+  pollToken,
+  requestCode,
+  saveToken,
+  sleep
+} from "./chunk-XXBSXCOC.js";
 
 // src/onboard.ts
-import { execFile } from "child_process";
-import { mkdirSync, writeFileSync } from "fs";
-import { homedir, platform } from "os";
-import { join } from "path";
-var BACKEND_URL = process.env.PAIGY_BACKEND_URL ?? "https://paigy.ai";
-var AGENT_NAME = process.env.PAIGY_AGENT ?? "mcp-agent";
-var TOKEN_PATH = join(homedir(), ".paigy", "token.json");
-function openBrowser(url) {
-  const cmd = platform() === "darwin" ? "open" : platform() === "win32" ? "cmd" : "xdg-open";
-  const args = platform() === "win32" ? ["/c", "start", url] : [url];
-  execFile(cmd, args, (err) => {
-    if (err) {
-    }
-  });
-}
-function saveToken(token) {
-  const dir = join(homedir(), ".paigy");
-  mkdirSync(dir, { recursive: true });
-  writeFileSync(TOKEN_PATH, JSON.stringify(token, null, 2) + "\n", { mode: 384 });
-}
-var sleep = (ms) => new Promise((r) => setTimeout(r, ms));
-async function requestCode() {
-  const res = await fetch(`${BACKEND_URL}/api/device/code`, {
-    method: "POST",
-    headers: { "content-type": "application/json" },
-    body: JSON.stringify({ agent: AGENT_NAME })
-  });
-  if (!res.ok) throw new Error(`/api/device/code failed: ${res.status} ${await res.text()}`);
-  return await res.json();
-}
-async function pollToken(deviceCode) {
-  const res = await fetch(`${BACKEND_URL}/api/device/token`, {
-    method: "POST",
-    headers: { "content-type": "application/json" },
-    body: JSON.stringify({ device_code: deviceCode })
-  });
-  if (res.ok) return await res.json();
-  const body = await res.json().catch(() => ({ error: "unknown" }));
-  const err = body.error ?? "unknown";
-  if (err === "authorization_pending") return null;
-  if (err === "expired_token") throw new Error("Device code expired. Please re-run onboarding.");
-  if (err === "access_denied") throw new Error("Access denied by user. Onboarding cancelled.");
-  throw new Error(`Unexpected error from /api/device/token: ${err}`);
-}
 async function main() {
   console.log(`
 Paigy MCP onboarding (agent: "${AGENT_NAME}")
@@ -91,6 +56,3 @@ main().catch((err) => {
   console.error(err.message);
   process.exit(1);
 });
-export {
-  TOKEN_PATH
-};

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@paigy/mcp",
-  "version": "0.4.0",
+  "version": "0.6.0",
   "description": "Paigy MCP server — a voice inbox for your AI agents. Lets an agent notify a user and await their reply.",
   "license": "MIT",
   "type": "module",
@@ -20,22 +20,23 @@
     "url": "git+https://github.com/mauurda/paigy.git",
     "directory": "apps/mcp"
   },
+  "scripts": {
+    "build": "tsup src/index.ts src/onboard.ts --format esm --clean",
+    "dev": "tsup src/index.ts src/onboard.ts --format esm --watch",
+    "typecheck": "tsc --noEmit",
+    "test": "vitest run",
+    "prepublishOnly": "pnpm --filter @paigy/schema build && pnpm build"
+  },
   "dependencies": {
     "@modelcontextprotocol/sdk": "^1.0.4",
     "zod": "^3.24.1",
     "zod-to-json-schema": "^3.24.1"
   },
   "devDependencies": {
+    "@paigy/schema": "workspace:*",
     "@types/node": "^22.0.0",
     "tsup": "^8.3.5",
     "typescript": "^5.7.2",
-    "vitest": "^2.1.8",
-    "@paigy/schema": "0.0.0"
-  },
-  "scripts": {
-    "build": "tsup src/index.ts src/onboard.ts --format esm --clean",
-    "dev": "tsup src/index.ts src/onboard.ts --format esm --watch",
-    "typecheck": "tsc --noEmit",
-    "test": "vitest run"
+    "vitest": "^2.1.8"
   }
-}
+}