@platf/bridge 0.0.16 → 0.0.18

package/dist/lib/discoveryRoutes.js

@@ -4,7 +4,9 @@
  * When auth is enabled these routes expose:
  *  - GET  /.well-known/oauth-protected-resource[/*]  (RFC 9728)
  *  - GET  /.well-known/oauth-authorization-server[/*] (RFC 8414 — proxied from issuer)
- *  - POST /oauth/register                             (Pseudo-DCR — RFC 7591)
+ *  - POST /register                                   (Pseudo-DCR — RFC 7591)
+ *
+ * OAuth proxy routes (/authorize, /token, /jwks) are in oauthProxy.ts.
  *
  * These endpoints are unauthenticated — they must be accessible to
  * any client performing OAuth discovery before obtaining a token.
@@ -83,9 +85,9 @@ export function createDiscoveryRouter(auth, logger) {
             const host = req.get('host');
             const bridgeOrigin = `${scheme}://${host}`;
             metadata.issuer = bridgeOrigin;
-            metadata.authorization_endpoint = `${bridgeOrigin}/oauth/authorize`;
-            metadata.token_endpoint = `${bridgeOrigin}/oauth/token`;
-            metadata.registration_endpoint = `${bridgeOrigin}/oauth/register`;
+            metadata.authorization_endpoint = `${bridgeOrigin}/authorize`;
+            metadata.token_endpoint = `${bridgeOrigin}/token`;
+            metadata.registration_endpoint = `${bridgeOrigin}/register`;
             metadata.jwks_uri = `${bridgeOrigin}/jwks`;
             res.json(metadata);
         }
@@ -102,7 +104,7 @@ export function createDiscoveryRouter(auth, logger) {
      * (e.g., VS Code Copilot) discover the correct client_id through
      * the normal DCR flow without requiring out-of-band configuration.
      */
-    router.post('/oauth/register', (req, res) => {
+    router.post('/register', (req, res) => {
         const body = req.body ?? {};
         res.status(201).json({
             client_id: auth.clientId,
@@ -114,69 +116,6 @@ export function createDiscoveryRouter(auth, logger) {
             redirect_uris: Array.isArray(body.redirect_uris) ? body.redirect_uris : [],
         });
     });
-    /**
-     * OAuth Authorization Endpoint — Redirect to upstream
-     *
-     * Since the bridge advertises itself as the authorization_server,
-     * clients will attempt to call /oauth/authorize here. We redirect
-     * to the upstream auth server, preserving all query parameters.
-     */
-    router.get('/oauth/authorize', (req, res) => {
-        const upstreamUrl = new URL(`${auth.issuer}/oauth/authorize`);
-        // Copy all query params to upstream
-        for (const [key, value] of Object.entries(req.query)) {
-            if (typeof value === 'string') {
-                upstreamUrl.searchParams.set(key, value);
-            }
-        }
-        logger.info(`[discovery] Redirecting /oauth/authorize to ${upstreamUrl.toString().slice(0, 100)}...`);
-        res.redirect(upstreamUrl.toString());
-    });
-    /**
-     * OAuth Token Endpoint — Proxy to upstream
-     *
-     * Proxies token exchange requests to the upstream auth server.
-     */
-    router.post('/oauth/token', async (req, res) => {
-        try {
-            const upstreamUrl = `${auth.issuer}/oauth/token`;
-            logger.info('[discovery] Proxying /oauth/token to upstream');
-            const upstreamRes = await fetch(upstreamUrl, {
-                method: 'POST',
-                headers: {
-                    'Content-Type': req.get('Content-Type') || 'application/x-www-form-urlencoded',
-                },
-                body: req.get('Content-Type')?.includes('application/json')
-                    ? JSON.stringify(req.body)
-                    : new URLSearchParams(req.body).toString(),
-            });
-            const data = await upstreamRes.text();
-            res.status(upstreamRes.status);
-            res.set('Content-Type', upstreamRes.headers.get('Content-Type') || 'application/json');
-            res.send(data);
-        }
-        catch (err) {
-            logger.error('[discovery] Error proxying /oauth/token:', err.message ?? err);
-            res.status(502).json({ error: 'upstream_error' });
-        }
-    });
-    /**
-     * JWKS Endpoint — Proxy to upstream
-     *
-     * Proxies JSON Web Key Set requests for token verification.
-     */
-    router.get('/jwks', async (req, res) => {
-        try {
-            const upstreamUrl = `${auth.issuer}/jwks`;
-            const upstreamRes = await fetch(upstreamUrl);
-            const data = await upstreamRes.json();
-            res.json(data);
-        }
-        catch (err) {
-            logger.error('[discovery] Error proxying /jwks:', err.message ?? err);
-            res.status(502).json({ error: 'upstream_error' });
-        }
-    });
     return router;
 }
 //# sourceMappingURL=discoveryRoutes.js.map

package/dist/lib/discoveryRoutes.js.map

@@ -1 +1 @@
-{"version":3,"file":"discoveryRoutes.js","sourceRoot":"","sources":["../../src/lib/discoveryRoutes.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;GAUG;AAEH,OAAO,EAAE,MAAM,EAA+B,MAAM,SAAS,CAAA;AAG7D,MAAM,UAAU,qBAAqB,CAAC,IAAgB,EAAE,MAAc;IACpE,MAAM,MAAM,GAAG,MAAM,EAAE,CAAA;IAEvB;;;;;;;;;;;;;;;;;;OAkBG;IACH,MAAM,CAAC,GAAG,CAAC,uCAAuC,EAAE,CAAC,GAAY,EAAE,GAAa,EAAE,EAAE;QAClF,wDAAwD;QACxD,+CAA+C;QAC/C,MAAM,MAAM,GAAG,GAAG,CAAC,QAAQ,CAAA;QAC3B,MAAM,IAAI,GAAG,GAAG,CAAC,GAAG,CAAC,MAAM,CAAC,CAAA;QAC5B,MAAM,YAAY,GAAG,GAAG,MAAM,MAAM,IAAI,EAAE,CAAA;QAC1C,MAAM,gBAAgB,GAAG;YACvB,QAAQ,EAAE,GAAG,YAAY,MAAM;YAC/B,4DAA4D;YAC5D,qBAAqB,EAAE,CAAC,YAAY,CAAC;YACrC,gBAAgB,EAAE,CAAC,QAAQ,EAAE,SAAS,EAAE,OAAO,CAAC;YAChD,wBAAwB,EAAE,CAAC,QAAQ,CAAC;SACrC,CAAA;QACD,GAAG,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAA;IAC5B,CAAC,CAAC,CAAA;IAEF,MAAM,CAAC,GAAG,CAAC,yCAAyC,EAAE,CAAC,GAAY,EAAE,GAAa,EAAE,EAAE;QACpF,oEAAoE;QACpE,MAAM,MAAM,GAAG,GAAG,CAAC,QAAQ,CAAA;QAC3B,MAAM,IAAI,GAAG,GAAG,CAAC,GAAG,CAAC,MAAM,CAAC,CAAA;QAC5B,MAAM,YAAY,GAAG,GAAG,MAAM,MAAM,IAAI,EAAE,CAAA;QAC1C,MAAM,YAAY,GAAG,GAAG,GAAG,GAAG,CAAC,MAAM,CAAC,CAAC,CAAC,CAAA;QACxC,MAAM,gBAAgB,GAAG;YACvB,QAAQ,EAAE,GAAG,YAAY,GAAG,YAAY,EAAE;YAC1C,4DAA4D;YAC5D,qBAAqB,EAAE,CAAC,YAAY,CAAC;YACrC,gBAAgB,EAAE,CAAC,QAAQ,EAAE,SAAS,EAAE,OAAO,CAAC;YAChD,wBAAwB,EAAE,CAAC,QAAQ,CAAC;SACrC,CAAA;QACD,GAAG,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAA;IAC5B,CAAC,CAAC,CAAA;IAEF;;;;;;;OAOG;IACH,MAAM,CAAC,GAAG,CAAC,0CAA0C,EAAE,KAAK,EAAE,GAAY,EAAE,GAAa,EAAE,EAAE;QAC3F,IAAI,CAAC;YACH,MAAM,WAAW,GAAG,GAAG,IAAI,CAAC,MAAM,yCAAyC,CAAA;YAC3E,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,WAAW,CAAC,CAAA;YAEzC,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;gBACjB,MAAM,CAAC,KAAK,CAAC,4CAA4C,QAAQ,CAAC,MAAM,EAAE,CAAC,CAAA;gBAC3E,OAAO,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,gBAAgB,EAAE,CAAC,CAAA;YAC1D,CAAC;YAED,MAAM,QAAQ,GAAG,CAAC,MAAM,QAAQ,CAAC,IAAI,EAAE,CAA4B,CAAA;YAEnE,kDAAkD;YAClD,MAAM,MAAM,GAAG,GAAG,CAAC,QAAQ,CAAA;YAC3B,MAAM,IAAI,GAAG,GAAG,CAAC,GAAG,CAAC,MAAM,CAAC,CAAA;YAC5B,MAAM,YAAY,GAAG,GAAG,MAAM,MAAM,IAAI,EAAE,CAAA;YAC1C,QAAQ,CAAC,MAAM,GAAG,YAAY,CAAA;YAC9B,QAAQ,CAAC,sBAAsB,GAAG,GAAG,YAAY,kBAAkB,CAAA;YACnE,QAAQ,CAAC,cAAc,GAAG,GAAG,YAAY,cAAc,CAAA;YACvD,QAAQ,CAAC,qBAAqB,GAAG,GAAG,YAAY,iBAAiB,CAAA;YACjE,QAAQ,CAAC,QAAQ,GAAG,GAAG,YAAY,OAAO,CAAA;YAE1C,GAAG,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAA;QACpB,CAAC;QAAC,OAAO,GAAQ,EAAE,CAAC;YAClB,MAAM,CAAC,KAAK,CAAC,yCAAyC,EAAE,GAAG,CAAC,OAAO,IAAI,GAAG,CAAC,CAAA;YAC3E,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,gBAAgB,EAAE,CAAC,CAAA;QACnD,CAAC;IACH,CAAC,CAAC,CAAA;IAEF;;;;;;;OAOG;IACH,MAAM,CAAC,IAAI,CAAC,iBAAiB,EAAE,CAAC,GAAY,EAAE,GAAa,EAAE,EAAE;QAC7D,MAAM,IAAI,GAAG,GAAG,CAAC,IAAI,IAAI,EAAE,CAAA;QAC3B,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;YACnB,SAAS,EAAE,IAAI,CAAC,QAAQ;YACxB,WAAW,EAAE,cAAc;YAC3B,8CAA8C;YAC9C,0BAA0B,EAAE,MAAM;YAClC,WAAW,EAAE,CAAC,oBAAoB,CAAC;YACnC,cAAc,EAAE,CAAC,MAAM,CAAC;YACxB,aAAa,EAAE,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC,CAAC,EAAE;SAC3E,CAAC,CAAA;IACJ,CAAC,CAAC,CAAA;IAEF;;;;;;OAMG;IACH,MAAM,CAAC,GAAG,CAAC,kBAAkB,EAAE,CAAC,GAAY,EAAE,GAAa,EAAE,EAAE;QAC7D,MAAM,WAAW,GAAG,IAAI,GAAG,CAAC,GAAG,IAAI,CAAC,MAAM,kBAAkB,CAAC,CAAA;QAC7D,oCAAoC;QACpC,KAAK,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,EAAE,CAAC;YACrD,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;gBAC9B,WAAW,CAAC,YAAY,CAAC,GAAG,CAAC,GAAG,EAAE,KAAK,CAAC,CAAA;YAC1C,CAAC;QACH,CAAC;QACD,MAAM,CAAC,IAAI,CAAC,+CAA+C,WAAW,CAAC,QAAQ,EAAE,CAAC,KAAK,CAAC,CAAC,EAAE,GAAG,CAAC,KAAK,CAAC,CAAA;QACrG,GAAG,CAAC,QAAQ,CAAC,WAAW,CAAC,QAAQ,EAAE,CAAC,CAAA;IACtC,CAAC,CAAC,CAAA;IAEF;;;;OAIG;IACH,MAAM,CAAC,IAAI,CAAC,cAAc,EAAE,KAAK,EAAE,GAAY,EAAE,GAAa,EAAE,EAAE;QAChE,IAAI,CAAC;YACH,MAAM,WAAW,GAAG,GAAG,IAAI,CAAC,MAAM,cAAc,CAAA;YAChD,MAAM,CAAC,IAAI,CAAC,+CAA+C,CAAC,CAAA;YAE5D,MAAM,WAAW,GAAG,MAAM,KAAK,CAAC,WAAW,EAAE;gBAC3C,MAAM,EAAE,MAAM;gBACd,OAAO,EAAE;oBACP,cAAc,EAAE,GAAG,CAAC,GAAG,CAAC,cAAc,CAAC,IAAI,mCAAmC;iBAC/E;gBACD,IAAI,EAAE,GAAG,CAAC,GAAG,CAAC,cAAc,CAAC,EAAE,QAAQ,CAAC,kBAAkB,CAAC;oBACzD,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,IAAI,CAAC;oBAC1B,CAAC,CAAC,IAAI,eAAe,CAAC,GAAG,CAAC,IAA8B,CAAC,CAAC,QAAQ,EAAE;aACvE,CAAC,CAAA;YAEF,MAAM,IAAI,GAAG,MAAM,WAAW,CAAC,IAAI,EAAE,CAAA;YACrC,GAAG,CAAC,MAAM,CAAC,WAAW,CAAC,MAAM,CAAC,CAAA;YAC9B,GAAG,CAAC,GAAG,CAAC,cAAc,EAAE,WAAW,CAAC,OAAO,CAAC,GAAG,CAAC,cAAc,CAAC,IAAI,kBAAkB,CAAC,CAAA;YACtF,GAAG,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;QAChB,CAAC;QAAC,OAAO,GAAQ,EAAE,CAAC;YAClB,MAAM,CAAC,KAAK,CAAC,0CAA0C,EAAE,GAAG,CAAC,OAAO,IAAI,GAAG,CAAC,CAAA;YAC5E,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,gBAAgB,EAAE,CAAC,CAAA;QACnD,CAAC;IACH,CAAC,CAAC,CAAA;IAEF;;;;OAIG;IACH,MAAM,CAAC,GAAG,CAAC,OAAO,EAAE,KAAK,EAAE,GAAY,EAAE,GAAa,EAAE,EAAE;QACxD,IAAI,CAAC;YACH,MAAM,WAAW,GAAG,GAAG,IAAI,CAAC,MAAM,OAAO,CAAA;YACzC,MAAM,WAAW,GAAG,MAAM,KAAK,CAAC,WAAW,CAAC,CAAA;YAC5C,MAAM,IAAI,GAAG,MAAM,WAAW,CAAC,IAAI,EAAE,CAAA;YACrC,GAAG,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;QAChB,CAAC;QAAC,OAAO,GAAQ,EAAE,CAAC;YAClB,MAAM,CAAC,KAAK,CAAC,mCAAmC,EAAE,GAAG,CAAC,OAAO,IAAI,GAAG,CAAC,CAAA;YACrE,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,gBAAgB,EAAE,CAAC,CAAA;QACnD,CAAC;IACH,CAAC,CAAC,CAAA;IAEF,OAAO,MAAM,CAAA;AACf,CAAC"}
+{"version":3,"file":"discoveryRoutes.js","sourceRoot":"","sources":["../../src/lib/discoveryRoutes.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;GAYG;AAEH,OAAO,EAAE,MAAM,EAA+B,MAAM,SAAS,CAAA;AAG7D,MAAM,UAAU,qBAAqB,CAAC,IAAgB,EAAE,MAAc;IACpE,MAAM,MAAM,GAAG,MAAM,EAAE,CAAA;IAEvB;;;;;;;;;;;;;;;;;;OAkBG;IACH,MAAM,CAAC,GAAG,CAAC,uCAAuC,EAAE,CAAC,GAAY,EAAE,GAAa,EAAE,EAAE;QAClF,wDAAwD;QACxD,+CAA+C;QAC/C,MAAM,MAAM,GAAG,GAAG,CAAC,QAAQ,CAAA;QAC3B,MAAM,IAAI,GAAG,GAAG,CAAC,GAAG,CAAC,MAAM,CAAC,CAAA;QAC5B,MAAM,YAAY,GAAG,GAAG,MAAM,MAAM,IAAI,EAAE,CAAA;QAC1C,MAAM,gBAAgB,GAAG;YACvB,QAAQ,EAAE,GAAG,YAAY,MAAM;YAC/B,4DAA4D;YAC5D,qBAAqB,EAAE,CAAC,YAAY,CAAC;YACrC,gBAAgB,EAAE,CAAC,QAAQ,EAAE,SAAS,EAAE,OAAO,CAAC;YAChD,wBAAwB,EAAE,CAAC,QAAQ,CAAC;SACrC,CAAA;QACD,GAAG,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAA;IAC5B,CAAC,CAAC,CAAA;IAEF,MAAM,CAAC,GAAG,CAAC,yCAAyC,EAAE,CAAC,GAAY,EAAE,GAAa,EAAE,EAAE;QACpF,oEAAoE;QACpE,MAAM,MAAM,GAAG,GAAG,CAAC,QAAQ,CAAA;QAC3B,MAAM,IAAI,GAAG,GAAG,CAAC,GAAG,CAAC,MAAM,CAAC,CAAA;QAC5B,MAAM,YAAY,GAAG,GAAG,MAAM,MAAM,IAAI,EAAE,CAAA;QAC1C,MAAM,YAAY,GAAG,GAAG,GAAG,GAAG,CAAC,MAAM,CAAC,CAAC,CAAC,CAAA;QACxC,MAAM,gBAAgB,GAAG;YACvB,QAAQ,EAAE,GAAG,YAAY,GAAG,YAAY,EAAE;YAC1C,4DAA4D;YAC5D,qBAAqB,EAAE,CAAC,YAAY,CAAC;YACrC,gBAAgB,EAAE,CAAC,QAAQ,EAAE,SAAS,EAAE,OAAO,CAAC;YAChD,wBAAwB,EAAE,CAAC,QAAQ,CAAC;SACrC,CAAA;QACD,GAAG,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAA;IAC5B,CAAC,CAAC,CAAA;IAEF;;;;;;;OAOG;IACH,MAAM,CAAC,GAAG,CAAC,0CAA0C,EAAE,KAAK,EAAE,GAAY,EAAE,GAAa,EAAE,EAAE;QAC3F,IAAI,CAAC;YACH,MAAM,WAAW,GAAG,GAAG,IAAI,CAAC,MAAM,yCAAyC,CAAA;YAC3E,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,WAAW,CAAC,CAAA;YAEzC,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;gBACjB,MAAM,CAAC,KAAK,CAAC,4CAA4C,QAAQ,CAAC,MAAM,EAAE,CAAC,CAAA;gBAC3E,OAAO,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,gBAAgB,EAAE,CAAC,CAAA;YAC1D,CAAC;YAED,MAAM,QAAQ,GAAG,CAAC,MAAM,QAAQ,CAAC,IAAI,EAAE,CAA4B,CAAA;YAEnE,kDAAkD;YAClD,MAAM,MAAM,GAAG,GAAG,CAAC,QAAQ,CAAA;YAC3B,MAAM,IAAI,GAAG,GAAG,CAAC,GAAG,CAAC,MAAM,CAAC,CAAA;YAC5B,MAAM,YAAY,GAAG,GAAG,MAAM,MAAM,IAAI,EAAE,CAAA;YAC1C,QAAQ,CAAC,MAAM,GAAG,YAAY,CAAA;YAC9B,QAAQ,CAAC,sBAAsB,GAAG,GAAG,YAAY,YAAY,CAAA;YAC7D,QAAQ,CAAC,cAAc,GAAG,GAAG,YAAY,QAAQ,CAAA;YACjD,QAAQ,CAAC,qBAAqB,GAAG,GAAG,YAAY,WAAW,CAAA;YAC3D,QAAQ,CAAC,QAAQ,GAAG,GAAG,YAAY,OAAO,CAAA;YAE1C,GAAG,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAA;QACpB,CAAC;QAAC,OAAO,GAAQ,EAAE,CAAC;YAClB,MAAM,CAAC,KAAK,CAAC,yCAAyC,EAAE,GAAG,CAAC,OAAO,IAAI,GAAG,CAAC,CAAA;YAC3E,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,gBAAgB,EAAE,CAAC,CAAA;QACnD,CAAC;IACH,CAAC,CAAC,CAAA;IAEF;;;;;;;OAOG;IACH,MAAM,CAAC,IAAI,CAAC,WAAW,EAAE,CAAC,GAAY,EAAE,GAAa,EAAE,EAAE;QACvD,MAAM,IAAI,GAAG,GAAG,CAAC,IAAI,IAAI,EAAE,CAAA;QAC3B,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;YACnB,SAAS,EAAE,IAAI,CAAC,QAAQ;YACxB,WAAW,EAAE,cAAc;YAC3B,8CAA8C;YAC9C,0BAA0B,EAAE,MAAM;YAClC,WAAW,EAAE,CAAC,oBAAoB,CAAC;YACnC,cAAc,EAAE,CAAC,MAAM,CAAC;YACxB,aAAa,EAAE,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC,CAAC,EAAE;SAC3E,CAAC,CAAA;IACJ,CAAC,CAAC,CAAA;IAEF,OAAO,MAAM,CAAA;AACf,CAAC"}

package/dist/lib/express.d.ts

@@ -0,0 +1,33 @@
+/**
+ * Shared Express application factory.
+ *
+ * Creates and configures the common Express setup used by both
+ * stateful and stateless bridges.
+ */
+import { type Express, type Response } from 'express';
+import { type CorsOptions } from 'cors';
+import type { AuthConfig, Logger } from '../types.js';
+export interface CreateAppOptions {
+    logger: Logger;
+    corsOrigin: CorsOptions['origin'];
+    healthEndpoints: string[];
+    headers: Record<string, string>;
+    auth: AuthConfig | null;
+    /** Path for the MCP endpoint (used to apply auth middleware) */
+    mcpPath: string;
+}
+/** Set custom response headers */
+export declare const setResponseHeaders: (res: Response, headers: Record<string, string>) => void;
+/**
+ * Create and configure an Express application with shared middleware.
+ *
+ * Sets up:
+ * - JSON body parser
+ * - Trust proxy (for X-Forwarded-* headers)
+ * - CORS (if configured)
+ * - Health endpoints
+ * - OAuth discovery routes (if auth enabled)
+ * - OAuth proxy routes (if auth enabled)
+ * - Auth middleware on mcpPath (if auth enabled)
+ */
+export declare function createApp(options: CreateAppOptions): Express;

package/dist/lib/express.js

@@ -0,0 +1,65 @@
+/**
+ * Shared Express application factory.
+ *
+ * Creates and configures the common Express setup used by both
+ * stateful and stateless bridges.
+ */
+import express from 'express';
+import cors from 'cors';
+import { serializeCorsOrigin } from './cors.js';
+import { createDiscoveryRouter } from './discoveryRoutes.js';
+import { createOAuthProxyRouter } from './oauthProxy.js';
+import { createAuthMiddleware } from './authMiddleware.js';
+/** Set custom response headers */
+export const setResponseHeaders = (res, headers) => Object.entries(headers).forEach(([key, value]) => res.setHeader(key, value));
+/**
+ * Create and configure an Express application with shared middleware.
+ *
+ * Sets up:
+ * - JSON body parser
+ * - Trust proxy (for X-Forwarded-* headers)
+ * - CORS (if configured)
+ * - Health endpoints
+ * - OAuth discovery routes (if auth enabled)
+ * - OAuth proxy routes (if auth enabled)
+ * - Auth middleware on mcpPath (if auth enabled)
+ */
+export function createApp(options) {
+    const { logger, corsOrigin, healthEndpoints, headers, auth, mcpPath } = options;
+    const app = express();
+    app.set('trust proxy', true);
+    app.use(express.json());
+    // CORS
+    if (corsOrigin) {
+        app.use(cors({ origin: corsOrigin, exposedHeaders: ['Mcp-Session-Id'] }));
+        logger.info(`  - CORS: enabled (${serializeCorsOrigin(corsOrigin)})`);
+    }
+    else {
+        logger.info('  - CORS: disabled');
+    }
+    // Health endpoints
+    for (const ep of healthEndpoints) {
+        app.get(ep, (_req, res) => {
+            setResponseHeaders(res, headers);
+            res.send('ok');
+        });
+    }
+    if (healthEndpoints.length) {
+        logger.info(`  - Health endpoints: ${healthEndpoints.join(', ')}`);
+    }
+    // OAuth (when auth is enabled)
+    if (auth) {
+        // Discovery routes (PRM, AS metadata, pseudo-DCR)
+        app.use(createDiscoveryRouter(auth, logger));
+        // OAuth proxy routes (authorize redirect, token proxy, JWKS proxy)
+        app.use(createOAuthProxyRouter(auth, logger));
+        // Auth middleware on MCP path
+        app.use(mcpPath, createAuthMiddleware(auth, logger));
+        logger.info(`  - Auth: enabled (issuer=${auth.issuer})`);
+    }
+    else {
+        logger.info('  - Auth: disabled');
+    }
+    return app;
+}
+//# sourceMappingURL=express.js.map

package/dist/lib/express.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"express.js","sourceRoot":"","sources":["../../src/lib/express.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,OAAwC,MAAM,SAAS,CAAA;AAC9D,OAAO,IAA0B,MAAM,MAAM,CAAA;AAE7C,OAAO,EAAE,mBAAmB,EAAE,MAAM,WAAW,CAAA;AAC/C,OAAO,EAAE,qBAAqB,EAAE,MAAM,sBAAsB,CAAA;AAC5D,OAAO,EAAE,sBAAsB,EAAE,MAAM,iBAAiB,CAAA;AACxD,OAAO,EAAE,oBAAoB,EAAE,MAAM,qBAAqB,CAAA;AAY1D,kCAAkC;AAClC,MAAM,CAAC,MAAM,kBAAkB,GAAG,CAAC,GAAa,EAAE,OAA+B,EAAE,EAAE,CACnF,MAAM,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,GAAG,EAAE,KAAK,CAAC,EAAE,EAAE,CAAC,GAAG,CAAC,SAAS,CAAC,GAAG,EAAE,KAAK,CAAC,CAAC,CAAA;AAE9E;;;;;;;;;;;GAWG;AACH,MAAM,UAAU,SAAS,CAAC,OAAyB;IACjD,MAAM,EAAE,MAAM,EAAE,UAAU,EAAE,eAAe,EAAE,OAAO,EAAE,IAAI,EAAE,OAAO,EAAE,GAAG,OAAO,CAAA;IAE/E,MAAM,GAAG,GAAG,OAAO,EAAE,CAAA;IACrB,GAAG,CAAC,GAAG,CAAC,aAAa,EAAE,IAAI,CAAC,CAAA;IAC5B,GAAG,CAAC,GAAG,CAAC,OAAO,CAAC,IAAI,EAAE,CAAC,CAAA;IAEvB,OAAO;IACP,IAAI,UAAU,EAAE,CAAC;QACf,GAAG,CAAC,GAAG,CAAC,IAAI,CAAC,EAAE,MAAM,EAAE,UAAU,EAAE,cAAc,EAAE,CAAC,gBAAgB,CAAC,EAAE,CAAC,CAAC,CAAA;QACzE,MAAM,CAAC,IAAI,CAAC,sBAAsB,mBAAmB,CAAC,UAAU,CAAC,GAAG,CAAC,CAAA;IACvE,CAAC;SAAM,CAAC;QACN,MAAM,CAAC,IAAI,CAAC,oBAAoB,CAAC,CAAA;IACnC,CAAC;IAED,mBAAmB;IACnB,KAAK,MAAM,EAAE,IAAI,eAAe,EAAE,CAAC;QACjC,GAAG,CAAC,GAAG,CAAC,EAAE,EAAE,CAAC,IAAI,EAAE,GAAG,EAAE,EAAE;YACxB,kBAAkB,CAAC,GAAG,EAAE,OAAO,CAAC,CAAA;YAChC,GAAG,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;QAChB,CAAC,CAAC,CAAA;IACJ,CAAC;IACD,IAAI,eAAe,CAAC,MAAM,EAAE,CAAC;QAC3B,MAAM,CAAC,IAAI,CAAC,yBAAyB,eAAe,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,CAAA;IACpE,CAAC;IAED,+BAA+B;IAC/B,IAAI,IAAI,EAAE,CAAC;QACT,kDAAkD;QAClD,GAAG,CAAC,GAAG,CAAC,qBAAqB,CAAC,IAAI,EAAE,MAAM,CAAC,CAAC,CAAA;QAC5C,mEAAmE;QACnE,GAAG,CAAC,GAAG,CAAC,sBAAsB,CAAC,IAAI,EAAE,MAAM,CAAC,CAAC,CAAA;QAC7C,8BAA8B;QAC9B,GAAG,CAAC,GAAG,CAAC,OAAO,EAAE,oBAAoB,CAAC,IAAI,EAAE,MAAM,CAAC,CAAC,CAAA;QACpD,MAAM,CAAC,IAAI,CAAC,6BAA6B,IAAI,CAAC,MAAM,GAAG,CAAC,CAAA;IAC1D,CAAC;SAAM,CAAC;QACN,MAAM,CAAC,IAAI,CAAC,oBAAoB,CAAC,CAAA;IACnC,CAAC;IAED,OAAO,GAAG,CAAA;AACZ,CAAC"}

package/dist/lib/getLogger.d.ts

@@ -1,3 +1,3 @@
-import type { Logger } from '../types.js';
-export type LogLevel = 'none' | 'info' | 'debug';
+import type { Logger, LogLevel } from '../types.js';
 export declare function getLogger(logLevel: LogLevel): Logger;
+export type { LogLevel };

package/dist/lib/getLogger.js.map

@@ -1 +1 @@
-{"version":3,"file":"getLogger.js","sourceRoot":"","sources":["../../src/lib/getLogger.ts"],"names":[],"mappings":"AAAA,OAAO,IAAI,MAAM,WAAW,CAAA;AAG5B,MAAM,iBAAiB,GAAG,CAAC,IAAe,EAAE,EAAE,CAAC,IAAI,CAAA;AAEnD,MAAM,GAAG,GACP,CAAC,EAAE,UAAU,GAAG,iBAAiB,KAAgD,EAAE,EAAE,EAAE,CACvF,CAAC,GAAG,IAAe,EAAE,EAAE,CACrB,OAAO,CAAC,GAAG,CAAC,gBAAgB,EAAE,GAAG,UAAU,CAAC,IAAI,CAAC,CAAC,CAAA;AAEtD,MAAM,SAAS,GACb,CAAC,EAAE,UAAU,GAAG,iBAAiB,KAAgD,EAAE,EAAE,EAAE,CACvF,CAAC,GAAG,IAAe,EAAE,EAAE,CACrB,OAAO,CAAC,KAAK,CAAC,gBAAgB,EAAE,GAAG,UAAU,CAAC,IAAI,CAAC,CAAC,CAAA;AAExD,MAAM,UAAU,GAAW;IACzB,IAAI,EAAE,GAAG,EAAE,GAAE,CAAC;IACd,KAAK,EAAE,GAAG,EAAE,GAAE,CAAC;CAChB,CAAA;AAED,MAAM,UAAU,GAAW;IACzB,IAAI,EAAE,GAAG,EAAE;IACX,KAAK,EAAE,SAAS,EAAE;CACnB,CAAA;AAED,MAAM,eAAe,GAAG,CAAC,IAAe,EAAE,EAAE,CAC1C,IAAI,CAAC,GAAG,CAAC,CAAC,GAAG,EAAE,EAAE;IACf,IAAI,OAAO,GAAG,KAAK,QAAQ,EAAE,CAAC;QAC5B,OAAO,IAAI,CAAC,OAAO,CAAC,GAAG,EAAE;YACvB,KAAK,EAAE,IAAI;YACX,MAAM,EAAE,OAAO,CAAC,MAAM,CAAC,KAAK;YAC5B,OAAO,EAAE,KAAK;SACf,CAAC,CAAA;IACJ,CAAC;IACD,OAAO,GAAG,CAAA;AACZ,CAAC,CAAC,CAAA;AAEJ,MAAM,WAAW,GAAW;IAC1B,IAAI,EAAE,GAAG,CAAC,EAAE,UAAU,EAAE,eAAe,EAAE,CAAC;IAC1C,KAAK,EAAE,SAAS,CAAC,EAAE,UAAU,EAAE,eAAe,EAAE,CAAC;CAClD,CAAA;AAID,MAAM,UAAU,SAAS,CAAC,QAAkB;IAC1C,IAAI,QAAQ,KAAK,MAAM;QAAE,OAAO,UAAU,CAAA;IAC1C,IAAI,QAAQ,KAAK,OAAO;QAAE,OAAO,WAAW,CAAA;IAC5C,OAAO,UAAU,CAAA;AACnB,CAAC"}
+{"version":3,"file":"getLogger.js","sourceRoot":"","sources":["../../src/lib/getLogger.ts"],"names":[],"mappings":"AAAA,OAAO,IAAI,MAAM,WAAW,CAAA;AAG5B,MAAM,iBAAiB,GAAG,CAAC,IAAe,EAAE,EAAE,CAAC,IAAI,CAAA;AAEnD,MAAM,GAAG,GACP,CAAC,EAAE,UAAU,GAAG,iBAAiB,KAAgD,EAAE,EAAE,EAAE,CACvF,CAAC,GAAG,IAAe,EAAE,EAAE,CACrB,OAAO,CAAC,GAAG,CAAC,gBAAgB,EAAE,GAAG,UAAU,CAAC,IAAI,CAAC,CAAC,CAAA;AAEtD,MAAM,SAAS,GACb,CAAC,EAAE,UAAU,GAAG,iBAAiB,KAAgD,EAAE,EAAE,EAAE,CACvF,CAAC,GAAG,IAAe,EAAE,EAAE,CACrB,OAAO,CAAC,KAAK,CAAC,gBAAgB,EAAE,GAAG,UAAU,CAAC,IAAI,CAAC,CAAC,CAAA;AAExD,MAAM,UAAU,GAAW;IACzB,IAAI,EAAE,GAAG,EAAE,GAAE,CAAC;IACd,KAAK,EAAE,GAAG,EAAE,GAAE,CAAC;CAChB,CAAA;AAED,MAAM,UAAU,GAAW;IACzB,IAAI,EAAE,GAAG,EAAE;IACX,KAAK,EAAE,SAAS,EAAE;CACnB,CAAA;AAED,MAAM,eAAe,GAAG,CAAC,IAAe,EAAE,EAAE,CAC1C,IAAI,CAAC,GAAG,CAAC,CAAC,GAAG,EAAE,EAAE;IACf,IAAI,OAAO,GAAG,KAAK,QAAQ,EAAE,CAAC;QAC5B,OAAO,IAAI,CAAC,OAAO,CAAC,GAAG,EAAE;YACvB,KAAK,EAAE,IAAI;YACX,MAAM,EAAE,OAAO,CAAC,MAAM,CAAC,KAAK;YAC5B,OAAO,EAAE,KAAK;SACf,CAAC,CAAA;IACJ,CAAC;IACD,OAAO,GAAG,CAAA;AACZ,CAAC,CAAC,CAAA;AAEJ,MAAM,WAAW,GAAW;IAC1B,IAAI,EAAE,GAAG,CAAC,EAAE,UAAU,EAAE,eAAe,EAAE,CAAC;IAC1C,KAAK,EAAE,SAAS,CAAC,EAAE,UAAU,EAAE,eAAe,EAAE,CAAC;CAClD,CAAA;AAED,MAAM,UAAU,SAAS,CAAC,QAAkB;IAC1C,IAAI,QAAQ,KAAK,MAAM;QAAE,OAAO,UAAU,CAAA;IAC1C,IAAI,QAAQ,KAAK,OAAO;QAAE,OAAO,WAAW,CAAA;IAC5C,OAAO,UAAU,CAAA;AACnB,CAAC"}

package/dist/lib/mcpMessages.d.ts

@@ -0,0 +1,10 @@
+/**
+ * MCP message helpers for auto-initialization and protocol handling.
+ */
+import type { JSONRPCMessage } from '@modelcontextprotocol/sdk/types.js';
+/** Create a synthetic MCP initialize request */
+export declare function createInitializeRequest(id: string | number, protocolVersion: string): JSONRPCMessage;
+/** Create an initialized notification */
+export declare function createInitializedNotification(): JSONRPCMessage;
+/** Generate a unique ID for auto-init requests */
+export declare function generateAutoInitId(): string;

package/dist/lib/mcpMessages.js

@@ -0,0 +1,35 @@
+/**
+ * MCP message helpers for auto-initialization and protocol handling.
+ */
+import { VERSION, SERVER_NAME } from './config.js';
+/** Create a synthetic MCP initialize request */
+export function createInitializeRequest(id, protocolVersion) {
+    return {
+        jsonrpc: '2.0',
+        id,
+        method: 'initialize',
+        params: {
+            protocolVersion,
+            capabilities: {
+                roots: { listChanged: true },
+                sampling: {},
+            },
+            clientInfo: {
+                name: SERVER_NAME,
+                version: VERSION,
+            },
+        },
+    };
+}
+/** Create an initialized notification */
+export function createInitializedNotification() {
+    return {
+        jsonrpc: '2.0',
+        method: 'notifications/initialized',
+    };
+}
+/** Generate a unique ID for auto-init requests */
+export function generateAutoInitId() {
+    return `init_${Date.now()}_${Math.random().toString(36).slice(2, 11)}`;
+}
+//# sourceMappingURL=mcpMessages.js.map

package/dist/lib/mcpMessages.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"mcpMessages.js","sourceRoot":"","sources":["../../src/lib/mcpMessages.ts"],"names":[],"mappings":"AAAA;;GAEG;AAGH,OAAO,EAAE,OAAO,EAAE,WAAW,EAAE,MAAM,aAAa,CAAA;AAElD,gDAAgD;AAChD,MAAM,UAAU,uBAAuB,CACrC,EAAmB,EACnB,eAAuB;IAEvB,OAAO;QACL,OAAO,EAAE,KAAK;QACd,EAAE;QACF,MAAM,EAAE,YAAY;QACpB,MAAM,EAAE;YACN,eAAe;YACf,YAAY,EAAE;gBACZ,KAAK,EAAE,EAAE,WAAW,EAAE,IAAI,EAAE;gBAC5B,QAAQ,EAAE,EAAE;aACb;YACD,UAAU,EAAE;gBACV,IAAI,EAAE,WAAW;gBACjB,OAAO,EAAE,OAAO;aACjB;SACF;KACF,CAAA;AACH,CAAC;AAED,yCAAyC;AACzC,MAAM,UAAU,6BAA6B;IAC3C,OAAO;QACL,OAAO,EAAE,KAAK;QACd,MAAM,EAAE,2BAA2B;KACpC,CAAA;AACH,CAAC;AAED,kDAAkD;AAClD,MAAM,UAAU,kBAAkB;IAChC,OAAO,QAAQ,IAAI,CAAC,GAAG,EAAE,IAAI,IAAI,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,EAAE,CAAA;AACxE,CAAC"}

package/dist/lib/oauthProxy.d.ts

@@ -0,0 +1,14 @@
+/**
+ * OAuth 2.0 proxy routes for the bridge.
+ *
+ * These routes proxy OAuth endpoints to the upstream authorization server:
+ *  - GET  /authorize  → Redirect to upstream (preserves query params)
+ *  - POST /token      → Proxy to upstream
+ *  - GET  /jwks       → Proxy JWKS for token verification
+ *
+ * This separation allows the bridge to advertise itself as the authorization
+ * server while delegating actual auth operations to the upstream issuer.
+ */
+import { Router } from 'express';
+import type { AuthConfig, Logger } from '../types.js';
+export declare function createOAuthProxyRouter(auth: AuthConfig, logger: Logger): Router;

package/dist/lib/oauthProxy.js

@@ -0,0 +1,80 @@
+/**
+ * OAuth 2.0 proxy routes for the bridge.
+ *
+ * These routes proxy OAuth endpoints to the upstream authorization server:
+ *  - GET  /authorize  → Redirect to upstream (preserves query params)
+ *  - POST /token      → Proxy to upstream
+ *  - GET  /jwks       → Proxy JWKS for token verification
+ *
+ * This separation allows the bridge to advertise itself as the authorization
+ * server while delegating actual auth operations to the upstream issuer.
+ */
+import { Router } from 'express';
+export function createOAuthProxyRouter(auth, logger) {
+    const router = Router();
+    /**
+     * OAuth Authorization Endpoint — Redirect to upstream
+     *
+     * Since the bridge advertises itself as the authorization_server,
+     * clients will attempt to call /authorize here. We redirect
+     * to the upstream auth server, preserving all query parameters.
+     */
+    router.get('/authorize', (req, res) => {
+        const upstreamUrl = new URL(`${auth.issuer}/oauth/authorize`);
+        // Copy all query params to upstream
+        for (const [key, value] of Object.entries(req.query)) {
+            if (typeof value === 'string') {
+                upstreamUrl.searchParams.set(key, value);
+            }
+        }
+        logger.info(`[oauth-proxy] Redirecting /authorize to upstream`);
+        res.redirect(upstreamUrl.toString());
+    });
+    /**
+     * OAuth Token Endpoint — Proxy to upstream
+     *
+     * Proxies token exchange requests to the upstream auth server.
+     */
+    router.post('/token', async (req, res) => {
+        try {
+            const upstreamUrl = `${auth.issuer}/oauth/token`;
+            logger.info('[oauth-proxy] Proxying /token to upstream');
+            const upstreamRes = await fetch(upstreamUrl, {
+                method: 'POST',
+                headers: {
+                    'Content-Type': req.get('Content-Type') || 'application/x-www-form-urlencoded',
+                },
+                body: req.get('Content-Type')?.includes('application/json')
+                    ? JSON.stringify(req.body)
+                    : new URLSearchParams(req.body).toString(),
+            });
+            const data = await upstreamRes.text();
+            res.status(upstreamRes.status);
+            res.set('Content-Type', upstreamRes.headers.get('Content-Type') || 'application/json');
+            res.send(data);
+        }
+        catch (err) {
+            logger.error('[oauth-proxy] Error proxying /token:', err.message ?? err);
+            res.status(502).json({ error: 'upstream_error' });
+        }
+    });
+    /**
+     * JWKS Endpoint — Proxy to upstream
+     *
+     * Proxies JSON Web Key Set requests for token verification.
+     */
+    router.get('/jwks', async (_req, res) => {
+        try {
+            const upstreamUrl = `${auth.issuer}/jwks`;
+            const upstreamRes = await fetch(upstreamUrl);
+            const data = await upstreamRes.json();
+            res.json(data);
+        }
+        catch (err) {
+            logger.error('[oauth-proxy] Error proxying /jwks:', err.message ?? err);
+            res.status(502).json({ error: 'upstream_error' });
+        }
+    });
+    return router;
+}
+//# sourceMappingURL=oauthProxy.js.map

package/dist/lib/oauthProxy.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"oauthProxy.js","sourceRoot":"","sources":["../../src/lib/oauthProxy.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;GAUG;AAEH,OAAO,EAAE,MAAM,EAA+B,MAAM,SAAS,CAAA;AAG7D,MAAM,UAAU,sBAAsB,CAAC,IAAgB,EAAE,MAAc;IACrE,MAAM,MAAM,GAAG,MAAM,EAAE,CAAA;IAEvB;;;;;;OAMG;IACH,MAAM,CAAC,GAAG,CAAC,YAAY,EAAE,CAAC,GAAY,EAAE,GAAa,EAAE,EAAE;QACvD,MAAM,WAAW,GAAG,IAAI,GAAG,CAAC,GAAG,IAAI,CAAC,MAAM,kBAAkB,CAAC,CAAA;QAC7D,oCAAoC;QACpC,KAAK,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,EAAE,CAAC;YACrD,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;gBAC9B,WAAW,CAAC,YAAY,CAAC,GAAG,CAAC,GAAG,EAAE,KAAK,CAAC,CAAA;YAC1C,CAAC;QACH,CAAC;QACD,MAAM,CAAC,IAAI,CAAC,kDAAkD,CAAC,CAAA;QAC/D,GAAG,CAAC,QAAQ,CAAC,WAAW,CAAC,QAAQ,EAAE,CAAC,CAAA;IACtC,CAAC,CAAC,CAAA;IAEF;;;;OAIG;IACH,MAAM,CAAC,IAAI,CAAC,QAAQ,EAAE,KAAK,EAAE,GAAY,EAAE,GAAa,EAAE,EAAE;QAC1D,IAAI,CAAC;YACH,MAAM,WAAW,GAAG,GAAG,IAAI,CAAC,MAAM,cAAc,CAAA;YAChD,MAAM,CAAC,IAAI,CAAC,2CAA2C,CAAC,CAAA;YAExD,MAAM,WAAW,GAAG,MAAM,KAAK,CAAC,WAAW,EAAE;gBAC3C,MAAM,EAAE,MAAM;gBACd,OAAO,EAAE;oBACP,cAAc,EAAE,GAAG,CAAC,GAAG,CAAC,cAAc,CAAC,IAAI,mCAAmC;iBAC/E;gBACD,IAAI,EAAE,GAAG,CAAC,GAAG,CAAC,cAAc,CAAC,EAAE,QAAQ,CAAC,kBAAkB,CAAC;oBACzD,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,IAAI,CAAC;oBAC1B,CAAC,CAAC,IAAI,eAAe,CAAC,GAAG,CAAC,IAA8B,CAAC,CAAC,QAAQ,EAAE;aACvE,CAAC,CAAA;YAEF,MAAM,IAAI,GAAG,MAAM,WAAW,CAAC,IAAI,EAAE,CAAA;YACrC,GAAG,CAAC,MAAM,CAAC,WAAW,CAAC,MAAM,CAAC,CAAA;YAC9B,GAAG,CAAC,GAAG,CAAC,cAAc,EAAE,WAAW,CAAC,OAAO,CAAC,GAAG,CAAC,cAAc,CAAC,IAAI,kBAAkB,CAAC,CAAA;YACtF,GAAG,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;QAChB,CAAC;QAAC,OAAO,GAAQ,EAAE,CAAC;YAClB,MAAM,CAAC,KAAK,CAAC,sCAAsC,EAAE,GAAG,CAAC,OAAO,IAAI,GAAG,CAAC,CAAA;YACxE,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,gBAAgB,EAAE,CAAC,CAAA;QACnD,CAAC;IACH,CAAC,CAAC,CAAA;IAEF;;;;OAIG;IACH,MAAM,CAAC,GAAG,CAAC,OAAO,EAAE,KAAK,EAAE,IAAa,EAAE,GAAa,EAAE,EAAE;QACzD,IAAI,CAAC;YACH,MAAM,WAAW,GAAG,GAAG,IAAI,CAAC,MAAM,OAAO,CAAA;YACzC,MAAM,WAAW,GAAG,MAAM,KAAK,CAAC,WAAW,CAAC,CAAA;YAC5C,MAAM,IAAI,GAAG,MAAM,WAAW,CAAC,IAAI,EAAE,CAAA;YACrC,GAAG,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;QAChB,CAAC;QAAC,OAAO,GAAQ,EAAE,CAAC;YAClB,MAAM,CAAC,KAAK,CAAC,qCAAqC,EAAE,GAAG,CAAC,OAAO,IAAI,GAAG,CAAC,CAAA;YACvE,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,gBAAgB,EAAE,CAAC,CAAA;QACnD,CAAC;IACH,CAAC,CAAC,CAAA;IAEF,OAAO,MAAM,CAAA;AACf,CAAC"}

package/dist/types.d.ts

@@ -1,7 +1,10 @@
+/** Logger interface for structured logging */
 export interface Logger {
     info: (...args: unknown[]) => void;
     error: (...args: unknown[]) => void;
 }
+/** Log level for the logger */
+export type LogLevel = 'none' | 'info' | 'debug';
 /** OAuth auth config passed when --authIssuer is set */
 export interface AuthConfig {
     /** OAuth issuer URL (e.g. https://auth.platf.ai) */

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@platf/bridge",
-  "version": "0.0.16",
+  "version": "0.0.18",
   "description": "Stdio-to-Streamable HTTP bridge for MCP servers — Platf AI Hub",
   "module": "src/index.ts",
   "main": "dist/index.js",