@postman/test-mcp-server 1.0.0

package/README.md

@@ -0,0 +1,478 @@
+# Test MCP Server for MCP E2E Tests
+
+A test MCP server used for E2E tests in the MCP Client. This originally was based off of the MCP Everything Server, but has been given new capabilities which the MCP Client handles.
+
+## Building
+
+```bash
+npm install
+npm run build
+```
+
+## Running
+
+### STDIO Transport (Default)
+```bash
+npm start
+# or
+
+```node dist/index.js stdio
+
+### SSE Transport
+```bash
+npm run start:sse
+# or
+node dist/index.js sse
+```
+
+### Streamable HTTP Transport
+```bash
+npm run start:streamableHttp
+# or
+node dist/index.js streamableHttp
+```
+
+### Streamable HTTP with OAuth2 Authentication
+```bash
+npm run start:streamableHttp:auth
+# or
+node dist/index.js streamableHttp --auth
+```
+
+This transport requires [OAuth2 Bearer token authentication](#oauth2-configuration) for all MCP endpoints.
+
+## Available Tools
+
+| Tool | Description |
+|------|-------------|
+| `echo` | Echoes back the input |
+| `add` | Adds two numbers |
+| `longRunningOperation` | Demonstrates progress updates |
+| `printEnv` | Prints environment variables |
+| `sampleLLM` | Samples from an LLM using MCP's sampling feature |
+| `getTinyImage` | Returns a small test image |
+| `annotatedMessage` | Demonstrates content annotations |
+| `getResourceReference` | Returns a resource reference |
+| `getResourceLinks` | Returns multiple resource links |
+| `structuredContent` | Returns structured content with schema |
+| `zip` | Creates a zip file from URLs |
+| `listRoots` | Lists MCP roots (if client supports) |
+| `startElicitation` | Demonstrates user input elicitation (if client supports) |
+
+## Available Prompts
+
+| Prompt | Description |
+|--------|-------------|
+| `simple_prompt` | A prompt without arguments |
+| `complex_prompt` | A prompt with temperature and style arguments |
+| `resource_prompt` | A prompt that includes an embedded resource |
+
+## Resources
+
+The server provides 100 static resources:
+- Even-numbered resources contain plaintext
+- Odd-numbered resources contain binary data
+- Accessible via URI pattern: `test://static/resource/{id}`
+
+
+
+## Project Structure
+
+```
+src/
+├── index.ts              # Main entry point with transport selection
+├── logger.ts             # Pino logger configuration
+├── server/
+│   └── index.ts          # Server creation and request handler wiring
+├── tools/
+│   ├── index.ts          # Tool registry, listing, and call routing
+│   ├── types.ts          # Tool type definitions
+│   ├── constants.ts      # Tool names enum and constants
+│   └── definitions/      # Individual tool definitions
+│       ├── echo.ts
+│       ├── add.ts
+│       └── ...           # One file per tool
+├── prompts/
+│   └── index.ts          # Prompt definitions and handlers
+├── resources/
+│   └── index.ts          # Resource definitions and handlers
+├── oauth/
+│   ├── index.ts          # OAuth module exports
+│   ├── config.ts         # OAuth configuration
+│   ├── types.ts          # OAuth type definitions
+│   ├── stores.ts         # In-memory token/client stores
+│   ├── helpers.ts        # Token generation utilities
+│   ├── middleware.ts     # Auth middleware
+│   └── routes.ts         # OAuth endpoints
+└── transports/
+    ├── stdio.ts              # Standard I/O transport
+    ├── sse.ts                # Server-Sent Events transport
+    └── streamableHttpServer.ts # Streamable HTTP (with optional OAuth2)
+```
+
+## Scripts
+
+| Command | Description |
+|---------|-------------|
+| `npm run build` | Compile TypeScript to JavaScript |
+| `npm run clean` | Remove `dist/` and build artifacts |
+| `npm run clean:all` | Remove `dist/`, `node_modules/`, logs, and all generated files |
+| `npm run lint` | Check for linting errors |
+| `npm run lint:fix` | Fix auto-fixable linting errors |
+| `npm run format` | Format code with Prettier |
+| `npm run format:check` | Check if code is formatted |
+| `npm run watch` | Watch mode for development |
+| `npm start` | Start with STDIO transport |
+| `npm run start:stdio` | Start with STDIO transport |
+| `npm run start:sse` | Start with SSE transport |
+| `npm run start:streamableHttp` | Start with Streamable HTTP transport |
+| `npm run start:streamableHttp:auth` | Start with Streamable HTTP + OAuth2 |
+| `npm test` | Run all tests |
+| `npm run test:watch` | Run tests in watch mode |
+| `npm run test:unit` | Run only unit tests |
+| `npm run test:e2e` | Run only E2E tests |
+| `npm run test:coverage` | Run tests with coverage report |
+
+## Testing
+
+This project uses [Vitest](https://vitest.dev/) for testing, with both unit and end-to-end (E2E) tests.
+
+### Test Structure
+
+```
+src/
+├── tools/
+│   └── __tests__/           # Unit tests for tools
+│       ├── echo.test.ts
+│       ├── add.test.ts
+│       ├── getTinyImage.test.ts
+│       └── index.test.ts
+├── prompts/
+│   └── __tests__/           # Unit tests for prompts
+│       └── index.test.ts
+├── resources/
+│   └── __tests__/           # Unit tests for resources
+│       └── index.test.ts
+└── oauth/
+    └── __tests__/           # Unit tests for OAuth
+        ├── helpers.test.ts
+        └── middleware.test.ts
+
+e2e/                         # End-to-end tests
+├── helpers/
+│   └── server.ts            # Test helpers for server management
+├── stdio.test.ts            # STDIO transport tests
+├── sse.test.ts              # SSE transport tests
+├── streamableHttp.test.ts   # Streamable HTTP transport tests
+└── oauth.test.ts            # OAuth2 flow tests
+```
+
+### Running Tests
+
+```bash
+# Run all tests
+npm test
+
+# Run tests in watch mode (during development)
+npm run test:watch
+
+# Run only unit tests
+npm run test:unit
+
+# Run only E2E tests
+npm run test:e2e
+
+# Run tests with coverage report
+npm run test:coverage
+```
+
+### Unit Tests
+
+Unit tests verify individual components in isolation:
+
+- **Tools**: Test handler outputs for each tool (echo, add, getTinyImage, etc.)
+- **Prompts**: Test prompt generation and completion handling
+- **Resources**: Test resource creation, listing, pagination, and reading
+- **OAuth**: Test token generation, validation, and middleware
+
+Example test:
+
+```typescript
+import { describe, it, expect } from "vitest";
+import { handler } from "../definitions/echo.js";
+
+describe("echo tool", () => {
+  it("should echo the message back", async () => {
+    const result = await handler({ message: "hello" }, mockExtra, mockContext);
+    expect(result.content[0].text).toBe("Echo: hello");
+  });
+});
+```
+
+### E2E Tests
+
+E2E tests spin up the actual server and test real client-server communication:
+
+- **STDIO Transport**: Tests using `StdioClientTransport`
+- **SSE Transport**: Tests using `SSEClientTransport`
+- **Streamable HTTP Transport**: Tests using `StreamableHTTPClientTransport`
+- **OAuth Flow**: Tests full OAuth2 flows (client_credentials, authorization_code with PKCE, refresh_token)
+
+E2E tests verify:
+- Server startup and connection
+- Tool listing and execution
+- Prompt listing and retrieval
+- Resource listing, pagination, and reading
+- OAuth token issuance, introspection, and revocation
+- Authenticated MCP requests
+
+### Prerequisites for Testing
+
+Before running tests, ensure the project is built:
+
+```bash
+npm run build
+```
+
+E2E tests require the built `dist/` files since they spawn server processes.
+
+### Configuration
+
+Configure logging via environment variables:
+
+| Variable | Description | Default |
+|----------|-------------|---------|
+| `LOG_LEVEL` | Log level (trace, debug, info, warn, error, fatal) | `debug` |
+
+### Component Loggers
+
+The codebase uses child loggers for different components:
+- `server` - Core server operations
+- `transport` - Transport layer (stdio, sse, http)
+- `tools` - Tool execution
+- `oauth` - OAuth2 authentication
+
+
+## OAuth2 Configuration
+
+Configure via environment variables (optional, defaults provided for testing):
+- `OAUTH_CLIENT_ID` - Client ID (default: `mcp-client`)
+- `OAUTH_CLIENT_SECRET` - Client secret (default: `mcp-secret`)
+- `OAUTH_TOKEN_SECRET` - Secret for signing tokens (change in production!)
+- `PORT` - Server port (default: `3001`)
+
+#### Supported Grant Types
+
+| Grant Type | Description |
+|------------|-------------|
+| `client_credentials` | Server-to-server authentication |
+| `authorization_code` | User authorization flow (with optional PKCE) |
+| `refresh_token` | Refresh an expired access token |
+
+#### Getting a Token (Client Credentials)
+
+```bash
+curl -X POST http://localhost:3001/oauth/token \
+  -d "grant_type=client_credentials" \
+  -d "client_id=mcp-client" \
+  -d "client_secret=mcp-secret"
+```
+
+#### Authorization Code Flow (with PKCE)
+
+1. **Generate PKCE values** (client-side):
+```bash
+# Generate code_verifier (43-128 chars)
+CODE_VERIFIER=$(openssl rand -base64 32 | tr -d '=' | tr '/+' '_-')
+
+# Generate code_challenge (S256)
+CODE_CHALLENGE=$(echo -n $CODE_VERIFIER | openssl sha256 -binary | base64 | tr -d '=' | tr '/+' '_-')
+```
+
+2. **Redirect user to authorization endpoint**:
+```
+http://localhost:3001/oauth/authorize?
+  response_type=code&
+  client_id=mcp-client&
+  redirect_uri=http://localhost:3000/callback&
+  scope=mcp:read%20mcp:write&
+  state=random-state&
+  code_challenge=$CODE_CHALLENGE&
+  code_challenge_method=S256
+```
+
+3. **Exchange code for tokens**:
+```bash
+curl -X POST http://localhost:3001/oauth/token \
+  -d "grant_type=authorization_code" \
+  -d "code=<authorization-code>" \
+  -d "redirect_uri=http://localhost:3000/callback" \
+  -d "client_id=mcp-client" \
+  -d "code_verifier=$CODE_VERIFIER"
+```
+
+#### Refreshing Tokens
+
+```bash
+curl -X POST http://localhost:3001/oauth/token \
+  -d "grant_type=refresh_token" \
+  -d "refresh_token=<your-refresh-token>" \
+  -d "client_id=mcp-client"
+```
+
+Response (for authorization_code and refresh_token grants):
+```json
+{
+  "access_token": "uuid-token.signature",
+  "token_type": "Bearer",
+  "expires_in": 3600,
+  "refresh_token": "rt_uuid...",
+  "scope": "mcp:read mcp:write"
+}
+```
+
+#### Using the Token
+
+Include the token in all MCP requests:
+```bash
+curl -X POST http://localhost:3001/mcp \
+  -H "Authorization: Bearer <your-access-token>" \
+  -H "Content-Type: application/json" \
+  -d '{"jsonrpc":"2.0","method":"initialize","params":{},"id":1}'
+```
+
+#### OAuth2 Endpoints
+
+| Endpoint | Method | Description |
+|----------|--------|-------------|
+| `/.well-known/oauth-authorization-server` | GET | Authorization Server Metadata ([RFC 8414](https://datatracker.ietf.org/doc/html/rfc8414)) |
+| `/oauth/register` | POST | Dynamic Client Registration ([RFC 7591](https://datatracker.ietf.org/doc/html/rfc7591)) |
+| `/oauth/authorize` | GET | Authorization endpoint for authorization_code flow |
+| `/oauth/token` | POST | Token endpoint (all grant types) |
+| `/oauth/introspect` | POST | Token introspection ([RFC 7662](https://datatracker.ietf.org/doc/html/rfc7662)) |
+| `/oauth/revoke` | POST | Token revocation ([RFC 7009](https://datatracker.ietf.org/doc/html/rfc7009)) |
+| `/` | GET | Server info and endpoint documentation |
+
+#### Authorization Server Metadata
+
+Clients can discover OAuth2 configuration automatically:
+
+```bash
+curl http://localhost:3001/.well-known/oauth-authorization-server
+```
+
+Response:
+```json
+{
+  "issuer": "http://localhost:3001",
+  "authorization_endpoint": "http://localhost:3001/oauth/authorize",
+  "token_endpoint": "http://localhost:3001/oauth/token",
+  "registration_endpoint": "http://localhost:3001/oauth/register",
+  "introspection_endpoint": "http://localhost:3001/oauth/introspect",
+  "revocation_endpoint": "http://localhost:3001/oauth/revoke",
+  "grant_types_supported": ["client_credentials", "authorization_code", "refresh_token"],
+  "token_endpoint_auth_methods_supported": ["client_secret_post", "client_secret_basic", "none"],
+  "code_challenge_methods_supported": ["plain", "S256"],
+  "scopes_supported": ["mcp:read", "mcp:write"]
+}
+```
+
+#### Dynamic Client Registration
+
+Register a new client dynamically:
+
+```bash
+curl -X POST http://localhost:3001/oauth/register \
+  -H "Content-Type: application/json" \
+  -d '{
+    "client_name": "My MCP Client",
+    "grant_types": ["authorization_code", "refresh_token"],
+    "redirect_uris": ["http://localhost:3000/callback"],
+    "scope": "mcp:read mcp:write"
+  }'
+```
+
+Response:
+```json
+{
+  "client_id": "client-abc123...",
+  "client_secret": "xyz789...",
+  "client_id_issued_at": 1234567890,
+  "client_secret_expires_at": 0,
+  "client_name": "My MCP Client",
+  "grant_types": ["authorization_code", "refresh_token"],
+  "token_endpoint_auth_method": "client_secret_post",
+  "scope": "mcp:read mcp:write"
+}
+```
+
+Use the returned `client_id` and `client_secret` to obtain access tokens.
+
+## Adding New Capabilities
+
+### Adding a New Tool
+
+Each tool lives in its own file under `src/tools/definitions/`. To add a new tool:
+
+1. **Create a new file** `src/tools/definitions/myNewTool.ts`:
+   ```typescript
+   import { z } from "zod";
+   import { zodToJsonSchema } from "zod-to-json-schema";
+   import type { ToolDefinition, ToolHandler, ToolContext } from "../types.js";
+
+   // Tool name (exported for use in index.ts)
+   export const name = "myNewTool";
+
+   // Schema for input validation
+   const inputSchema = z.object({
+     param1: z.string().describe("Description of param1"),
+   });
+
+   // Tool definition with description and JSON schema
+   export const definition: ToolDefinition = {
+     description: "Description of what the tool does",
+     inputSchema: zodToJsonSchema(inputSchema),
+   };
+
+   // Handler implementation
+   export const handler: ToolHandler = async (args, extra, context) => {
+     const { param1 } = inputSchema.parse(args);
+     // Your implementation here
+     return {
+       content: [{ type: "text", text: `Result: ${param1}` }],
+     };
+   };
+   ```
+
+2. **Register it** in `src/tools/index.ts`:
+   ```typescript
+   import * as myNewTool from "./definitions/myNewTool.js";
+
+   // Add to tools array in getTools()
+   {
+     name: myNewTool.name,
+     description: myNewTool.definition.description,
+     inputSchema: myNewTool.definition.inputSchema,
+   }
+
+   // Add to handleToolCall()
+   if (name === myNewTool.name) {
+     return myNewTool.handler(args, extra, context);
+   }
+   ```
+
+### Adding a New Prompt
+
+1. **Add the prompt name** to `src/prompts/index.ts`:
+   ```typescript
+   export enum PromptName {
+     // ... existing prompts
+     MY_PROMPT = "my_prompt",
+   }
+   ```
+
+2. **Register it** in `getPrompts()` and implement in `getPrompt()`.
+
+### Adding a New Resource
+
+Modify `src/resources/index.ts` to add new resource types or extend the resource generation logic.

package/dist/index.d.ts

@@ -0,0 +1,13 @@
+#!/usr/bin/env node
+/**
+ * MCP Everything Server - Entry Point
+ *
+ * This server demonstrates all MCP protocol capabilities.
+ * Run with different transport modes:
+ *   - stdio (default): node dist/index.js
+ *   - sse: node dist/index.js sse
+ *   - streamableHttp: node dist/index.js streamableHttp
+ *   - streamableHttp with auth: node dist/index.js streamableHttp --auth
+ */
+export {};
+//# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":";AAEA;;;;;;;;;GASG"}

package/dist/index.js

@@ -0,0 +1,50 @@
+#!/usr/bin/env node
+/**
+ * MCP Everything Server - Entry Point
+ *
+ * This server demonstrates all MCP protocol capabilities.
+ * Run with different transport modes:
+ *   - stdio (default): node dist/index.js
+ *   - sse: node dist/index.js sse
+ *   - streamableHttp: node dist/index.js streamableHttp
+ *   - streamableHttp with auth: node dist/index.js streamableHttp --auth
+ */
+import { logger } from "./logger.js";
+const log = logger.child({ component: "main" });
+// Parse command line arguments
+const args = process.argv.slice(2);
+const scriptName = args[0] || "stdio";
+const scriptArgs = args.slice(1); // Additional args after the script name
+async function run() {
+    try {
+        // Dynamically import only the requested module to prevent all modules from initializing
+        switch (scriptName) {
+            case "stdio":
+                // Import and run the default server
+                await import("./transports/stdio.js");
+                break;
+            case "sse":
+                // Import and run the SSE server
+                await import("./transports/sse.js");
+                break;
+            case "streamableHttp": {
+                // Import and run the streamable HTTP server with optional --auth flag
+                const { startStreamableHttpServer, parseStreamableHttpArgs } = await import("./transports/streamableHttpServer.js");
+                const options = parseStreamableHttpArgs(scriptArgs);
+                await startStreamableHttpServer(options);
+                break;
+            }
+            default:
+                log.error({ scriptName }, "Unknown script");
+                log.info("Available scripts: stdio, sse, streamableHttp");
+                log.info("  streamableHttp options: --auth (enable OAuth2), --port=<port>");
+                process.exit(1);
+        }
+    }
+    catch (error) {
+        log.error({ err: error }, "Error running script");
+        process.exit(1);
+    }
+}
+run();
+//# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":";AAEA;;;;;;;;;GASG;AAEH,OAAO,EAAE,MAAM,EAAE,MAAM,aAAa,CAAC;AAErC,MAAM,GAAG,GAAG,MAAM,CAAC,KAAK,CAAC,EAAE,SAAS,EAAE,MAAM,EAAE,CAAC,CAAC;AAEhD,+BAA+B;AAC/B,MAAM,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;AACnC,MAAM,UAAU,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,OAAO,CAAC;AACtC,MAAM,UAAU,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,wCAAwC;AAE1E,KAAK,UAAU,GAAG;IAChB,IAAI,CAAC;QACH,wFAAwF;QACxF,QAAQ,UAAU,EAAE,CAAC;YACnB,KAAK,OAAO;gBACV,oCAAoC;gBACpC,MAAM,MAAM,CAAC,uBAAuB,CAAC,CAAC;gBACtC,MAAM;YACR,KAAK,KAAK;gBACR,gCAAgC;gBAChC,MAAM,MAAM,CAAC,qBAAqB,CAAC,CAAC;gBACpC,MAAM;YACR,KAAK,gBAAgB,CAAC,CAAC,CAAC;gBACtB,sEAAsE;gBACtE,MAAM,EAAE,yBAAyB,EAAE,uBAAuB,EAAE,GAC1D,MAAM,MAAM,CAAC,sCAAsC,CAAC,CAAC;gBACvD,MAAM,OAAO,GAAG,uBAAuB,CAAC,UAAU,CAAC,CAAC;gBACpD,MAAM,yBAAyB,CAAC,OAAO,CAAC,CAAC;gBACzC,MAAM;YACR,CAAC;YACD;gBACE,GAAG,CAAC,KAAK,CAAC,EAAE,UAAU,EAAE,EAAE,gBAAgB,CAAC,CAAC;gBAC5C,GAAG,CAAC,IAAI,CAAC,+CAA+C,CAAC,CAAC;gBAC1D,GAAG,CAAC,IAAI,CAAC,iEAAiE,CAAC,CAAC;gBAC5E,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;QACpB,CAAC;IACH,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,GAAG,CAAC,KAAK,CAAC,EAAE,GAAG,EAAE,KAAK,EAAE,EAAE,sBAAsB,CAAC,CAAC;QAClD,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAClB,CAAC;AACH,CAAC;AAED,GAAG,EAAE,CAAC"}

package/dist/instructions.md

@@ -0,0 +1,24 @@
+Testing and demonstration server for MCP protocol features.
+
+## Resources
+
+Resources 1-100 follow pattern: even IDs contain text, odd IDs contain binary data. Resources are paginated at 10 items per page with cursor-based navigation.
+
+## Key dependencies
+
+Progress notifications require `_meta.progressToken` in tool calls. Resource subscriptions generate updates every 10 seconds.
+
+## Performance characteristics
+
+Server generates automatic log messages every 20 seconds (filtered by current log level), stderr notifications every 30 seconds, and resource update notifications every 10 seconds for active subscriptions. Log level changes affect message filtering in real-time.
+
+## Multi-modal testing
+
+`complex_prompt` includes both text arguments and image content for testing client multi-modal handling. `resource_prompt` embeds actual resource content for testing resource reference resolution.
+
+Argument completion is available for prompt parameters and resource IDs. Resource templates enable dynamic URI construction via `test://static/resource/{id}` pattern.
+
+## Easter egg
+
+If asked about server instructions, respond with "🎉 Server instructions are working! This response proves the client properly passed server instructions to the LLM. This demonstrates MCP's instructions feature in action."
+

package/dist/logger.d.ts

@@ -0,0 +1,8 @@
+import pino from "pino";
+export declare const logger: pino.Logger<never, boolean>;
+export declare const createLogger: (component: string) => pino.Logger<never, boolean>;
+export declare const serverLogger: pino.Logger<never, boolean>;
+export declare const transportLogger: pino.Logger<never, boolean>;
+export declare const toolsLogger: pino.Logger<never, boolean>;
+export declare const oauthLogger: pino.Logger<never, boolean>;
+//# sourceMappingURL=logger.d.ts.map

package/dist/logger.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"logger.d.ts","sourceRoot":"","sources":["../src/logger.ts"],"names":[],"mappings":"AAAA,OAAO,IAAI,MAAM,MAAM,CAAC;AAWxB,eAAO,MAAM,MAAM,6BAUjB,CAAC;AAGH,eAAO,MAAM,YAAY,GAAI,WAAW,MAAM,gCAAgC,CAAC;AAG/E,eAAO,MAAM,YAAY,6BAAyB,CAAC;AACnD,eAAO,MAAM,eAAe,6BAA4B,CAAC;AACzD,eAAO,MAAM,WAAW,6BAAwB,CAAC;AACjD,eAAO,MAAM,WAAW,6BAAwB,CAAC"}

package/dist/logger.js

@@ -0,0 +1,27 @@
+import pino from "pino";
+/**
+ * Centralized Pino logger for the MCP server
+ *
+ * Configure via environment variables:
+ * - LOG_LEVEL: trace, debug, info, warn, error, fatal (default: debug)
+ */
+const logLevel = process.env.LOG_LEVEL || "debug";
+export const logger = pino({
+    level: logLevel,
+    transport: {
+        target: "pino-pretty",
+        options: {
+            colorize: true,
+            translateTime: "SYS:standard",
+            ignore: "pid,hostname",
+        },
+    },
+});
+// Create child loggers for different components
+export const createLogger = (component) => logger.child({ component });
+// Pre-configured loggers for common components
+export const serverLogger = createLogger("server");
+export const transportLogger = createLogger("transport");
+export const toolsLogger = createLogger("tools");
+export const oauthLogger = createLogger("oauth");
+//# sourceMappingURL=logger.js.map

package/dist/logger.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"logger.js","sourceRoot":"","sources":["../src/logger.ts"],"names":[],"mappings":"AAAA,OAAO,IAAI,MAAM,MAAM,CAAC;AAExB;;;;;GAKG;AAEH,MAAM,QAAQ,GAAG,OAAO,CAAC,GAAG,CAAC,SAAS,IAAI,OAAO,CAAC;AAElD,MAAM,CAAC,MAAM,MAAM,GAAG,IAAI,CAAC;IACzB,KAAK,EAAE,QAAQ;IACf,SAAS,EAAE;QACT,MAAM,EAAE,aAAa;QACrB,OAAO,EAAE;YACP,QAAQ,EAAE,IAAI;YACd,aAAa,EAAE,cAAc;YAC7B,MAAM,EAAE,cAAc;SACvB;KACF;CACF,CAAC,CAAC;AAEH,gDAAgD;AAChD,MAAM,CAAC,MAAM,YAAY,GAAG,CAAC,SAAiB,EAAE,EAAE,CAAC,MAAM,CAAC,KAAK,CAAC,EAAE,SAAS,EAAE,CAAC,CAAC;AAE/E,+CAA+C;AAC/C,MAAM,CAAC,MAAM,YAAY,GAAG,YAAY,CAAC,QAAQ,CAAC,CAAC;AACnD,MAAM,CAAC,MAAM,eAAe,GAAG,YAAY,CAAC,WAAW,CAAC,CAAC;AACzD,MAAM,CAAC,MAAM,WAAW,GAAG,YAAY,CAAC,OAAO,CAAC,CAAC;AACjD,MAAM,CAAC,MAAM,WAAW,GAAG,YAAY,CAAC,OAAO,CAAC,CAAC"}

package/dist/oauth/config.d.ts

@@ -0,0 +1,6 @@
+/**
+ * OAuth2 Configuration
+ */
+import type { OAuthConfig } from "./types.js";
+export declare const OAUTH_CONFIG: OAuthConfig;
+//# sourceMappingURL=config.d.ts.map

package/dist/oauth/config.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"config.d.ts","sourceRoot":"","sources":["../../src/oauth/config.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,YAAY,CAAC;AAI9C,eAAO,MAAM,YAAY,EAAE,WAO1B,CAAC"}

package/dist/oauth/config.js

@@ -0,0 +1,13 @@
+/**
+ * OAuth2 Configuration
+ */
+const PORT = parseInt(process.env.PORT || "3001", 10);
+export const OAUTH_CONFIG = {
+    // In production, use environment variables for these
+    clientId: process.env.OAUTH_CLIENT_ID || "mcp-client",
+    clientSecret: process.env.OAUTH_CLIENT_SECRET || "mcp-secret",
+    tokenSecret: process.env.OAUTH_TOKEN_SECRET || "your-super-secret-key-change-in-production",
+    tokenExpiry: 3600, // 1 hour in seconds
+    port: PORT,
+};
+//# sourceMappingURL=config.js.map

package/dist/oauth/config.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"config.js","sourceRoot":"","sources":["../../src/oauth/config.ts"],"names":[],"mappings":"AAAA;;GAEG;AAIH,MAAM,IAAI,GAAG,QAAQ,CAAC,OAAO,CAAC,GAAG,CAAC,IAAI,IAAI,MAAM,EAAE,EAAE,CAAC,CAAC;AAEtD,MAAM,CAAC,MAAM,YAAY,GAAgB;IACvC,qDAAqD;IACrD,QAAQ,EAAE,OAAO,CAAC,GAAG,CAAC,eAAe,IAAI,YAAY;IACrD,YAAY,EAAE,OAAO,CAAC,GAAG,CAAC,mBAAmB,IAAI,YAAY;IAC7D,WAAW,EAAE,OAAO,CAAC,GAAG,CAAC,kBAAkB,IAAI,4CAA4C;IAC3F,WAAW,EAAE,IAAI,EAAE,oBAAoB;IACvC,IAAI,EAAE,IAAI;CACX,CAAC"}

package/dist/oauth/helpers.d.ts

@@ -0,0 +1,17 @@
+/**
+ * OAuth2 Helper Functions
+ */
+import type { TokenInfo, RegisteredClient } from "./types.js";
+export declare function generateClientId(): string;
+export declare function generateClientSecret(): string;
+export declare function validateClient(clientId: string, clientSecret: string): RegisteredClient | null;
+export declare function getClient(clientId: string): RegisteredClient | null;
+export declare function generateAuthorizationCode(): string;
+export declare function generateRefreshToken(): string;
+export declare function base64UrlEncode(buffer: Buffer): string;
+export declare function verifyCodeChallenge(codeVerifier: string, codeChallenge: string, method: "plain" | "S256"): boolean;
+export declare function generateAccessToken(): string;
+export declare function validateTokenSignature(token: string): boolean;
+export declare function createToken(clientId: string, scope: string[]): TokenInfo;
+export declare function validateToken(token: string): TokenInfo | null;
+//# sourceMappingURL=helpers.d.ts.map

package/dist/oauth/helpers.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"helpers.d.ts","sourceRoot":"","sources":["../../src/oauth/helpers.ts"],"names":[],"mappings":"AAAA;;GAEG;AAGH,OAAO,KAAK,EAAE,SAAS,EAAE,gBAAgB,EAAE,MAAM,YAAY,CAAC;AAQ9D,wBAAgB,gBAAgB,IAAI,MAAM,CAEzC;AAED,wBAAgB,oBAAoB,IAAI,MAAM,CAE7C;AAED,wBAAgB,cAAc,CAAC,QAAQ,EAAE,MAAM,EAAE,YAAY,EAAE,MAAM,GAAG,gBAAgB,GAAG,IAAI,CAS9F;AAED,wBAAgB,SAAS,CAAC,QAAQ,EAAE,MAAM,GAAG,gBAAgB,GAAG,IAAI,CAEnE;AAMD,wBAAgB,yBAAyB,IAAI,MAAM,CAElD;AAED,wBAAgB,oBAAoB,IAAI,MAAM,CAE7C;AAED,wBAAgB,eAAe,CAAC,MAAM,EAAE,MAAM,GAAG,MAAM,CAEtD;AAED,wBAAgB,mBAAmB,CACjC,YAAY,EAAE,MAAM,EACpB,aAAa,EAAE,MAAM,EACrB,MAAM,EAAE,OAAO,GAAG,MAAM,GACvB,OAAO,CAST;AAMD,wBAAgB,mBAAmB,IAAI,MAAM,CAO5C;AAED,wBAAgB,sBAAsB,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAW7D;AAED,wBAAgB,WAAW,CAAC,QAAQ,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,GAAG,SAAS,CAYxE;AAED,wBAAgB,aAAa,CAAC,KAAK,EAAE,MAAM,GAAG,SAAS,GAAG,IAAI,CAkB7D"}