npm - @redocly/realm - Versions diffs - 0.129.2 → 0.130.0-custom.2 - Mend

@redocly/realm 0.129.2 → 0.130.0-custom.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (464) hide show

package/dist/server/web-server/routes/catalog/helpers/create-entity-update-schema.js ADDED Viewed

@@ -0,0 +1 @@

+ import{entityFileSchema as n}from"@redocly/config";import{entityBaseProperties as p}from"@redocly/config";function y(r,e){const i=n.oneOf.find(t=>t.properties.type.const===e);if(!i){const t=Object.keys(r.entityTypes??{}).find(o=>o===e);if(!t)throw new Error(`Entity type: ${e} not found`);return{type:"object",properties:{...p,type:{const:t},metadata:{additionalProperties:!0,...r.entityTypes?.[t].metadataSchema},revision:{type:"string"}},additionalProperties:!1}}return{properties:{...i.properties,revision:{type:"string"}},additionalProperties:!1}}export{y as createEntityUpdateSchema};

package/dist/server/web-server/routes/catalog/helpers/has-access-to-entity.d.ts ADDED Viewed

@@ -0,0 +1,10 @@
+import type { Context } from 'hono';
+import type { Store } from '../../../../store';
+export declare function hasAccessToEntity({ ctx, store, accessLevel, entityType, entityKey, }: {
+    ctx: Context;
+    store: Store;
+    accessLevel: 'READ' | 'WRITE';
+    entityType: string;
+    entityKey: string;
+}): boolean;
+//# sourceMappingURL=has-access-to-entity.d.ts.map

package/dist/server/web-server/routes/catalog/helpers/has-access-to-entity.js ADDED Viewed

@@ -0,0 +1 @@

+ import{getNotAccessibleCatalogResources as a}from"../../../../plugins/catalog-entities/utils/get-not-accessible-catalog-resources.js";import{getCurrentRbacTeams as f}from"../../helpers/get-current-rbac-teams.js";function g({ctx:e,store:t,accessLevel:s,entityType:c,entityKey:r}){const n=t.getConfig().rbac||{},o=f(e),{types:i,entities:u}=a({rbacConfig:n,currentRbacTeams:o,accessLevel:s});return!(i.includes(c)||u.includes(r))}export{g as hasAccessToEntity};

package/dist/server/web-server/routes/catalog/mappers/map-entity-read-model-schema-to-entity-read-dto.d.ts ADDED Viewed

@@ -0,0 +1,4 @@
+import type { EntityReadModelSchema } from '../../../../plugins/catalog-entities/schemas/read-model-schemas';
+import type { EntityReadDto } from '../dto/read-entity-dto.js';
+export declare function mapEntityReadModelSchemaToEntityReadDto(entity: EntityReadModelSchema | null): EntityReadDto | null;
+//# sourceMappingURL=map-entity-read-model-schema-to-entity-read-dto.d.ts.map

package/dist/server/web-server/routes/catalog/mappers/map-entity-read-model-schema-to-entity-read-dto.js ADDED Viewed

@@ -0,0 +1 @@

+ function r(a){return a?{id:a.id,organizationId:a.organizationId,projectId:a.projectId,type:a.type,key:a.key,title:a.title,summary:a.summary,tags:a.tags,metadata:a.metadata,git:a.git,contact:a.contact,links:a.links,source:a.source,sourceFile:a.sourceFile,version:a.version,revision:a.revision,isCurrent:a.isCurrent,isDefaultVersion:a.isDefaultVersion,object:"catalogEntity",createdAt:a.createdAt,updatedAt:a.updatedAt}:null}export{r as mapEntityReadModelSchemaToEntityReadDto};

package/dist/server/web-server/routes/catalog/parsers/entities/parse-entities.d.ts ADDED Viewed

@@ -0,0 +1,4 @@
+import type { EntitiesCatalogConfig } from '@redocly/config';
+import type { EntityDtoSchema } from '../../../../../plugins/catalog-entities/schemas/dto-schemas';
+export declare function parseEntities(entities: unknown[], catalogConfig: EntitiesCatalogConfig): EntityDtoSchema[];
+//# sourceMappingURL=parse-entities.d.ts.map

package/dist/server/web-server/routes/catalog/parsers/entities/parse-entities.js ADDED Viewed

	@@ -0,0 +1 @@
1	+ import{createValidator as a}from"../../../../../plugins/catalog-entities/utils/ajv-validator.js";import{createEntitySchema as e}from"../../helpers/create-entity-schema.js";function m(t,i){const r={type:"array",items:e(i)};return a(r,{errorPrefix:"Entity validation failed:",dataVar:"entity"})(t)}export{m as parseEntities};

package/dist/server/web-server/routes/catalog/parsers/entities/parse-entity-update-data.d.ts ADDED Viewed

@@ -0,0 +1,4 @@
+import type { EntitiesCatalogConfig } from '@redocly/config';
+import type { EntityDtoSchema } from '../../../../../plugins/catalog-entities/schemas/dto-schemas';
+export declare function parseEntityUpdateData(entityUpdateData: unknown, catalogConfig: EntitiesCatalogConfig, entityType: string): Partial<EntityDtoSchema>;
+//# sourceMappingURL=parse-entity-update-data.d.ts.map

package/dist/server/web-server/routes/catalog/parsers/entities/parse-entity-update-data.js ADDED Viewed

	@@ -0,0 +1 @@
1	+ import{createValidator as i}from"../../../../../plugins/catalog-entities/utils/ajv-validator.js";import{createEntityUpdateSchema as n}from"../../helpers/create-entity-update-schema.js";function y(t,a,e){const r=n(a,e);return i(r,{errorPrefix:"Entity validation failed:",dataVar:"entity"})(t)}export{y as parseEntityUpdateData};

package/dist/server/web-server/routes/catalog/parsers/entities/parse-entity.d.ts ADDED Viewed

@@ -0,0 +1,4 @@
+import type { EntitiesCatalogConfig } from '@redocly/config';
+import type { EntityDtoSchema } from '../../../../../plugins/catalog-entities/schemas/dto-schemas';
+export declare function parseEntity(entity: unknown, catalogConfig: EntitiesCatalogConfig): EntityDtoSchema;
+//# sourceMappingURL=parse-entity.d.ts.map

package/dist/server/web-server/routes/catalog/parsers/entities/parse-entity.js ADDED Viewed

	@@ -0,0 +1 @@
1	+ import{createValidator as i}from"../../../../../plugins/catalog-entities/utils/ajv-validator.js";import{createEntitySchema as e}from"../../helpers/create-entity-schema.js";function y(t,r){const a=e(r);return i(a,{errorPrefix:"Entity validation failed:",dataVar:"entity"})(t)}export{y as parseEntity};

package/dist/server/web-server/routes/catalog/parsers/relations/parse-entities-relations.d.ts ADDED Viewed

@@ -0,0 +1,13 @@
+export declare const parseEntitiesRelations: (data: unknown) => {
+    sourceFile?: string | null | undefined;
+    isDeleted?: boolean | null | undefined;
+    fileHash?: string | null | undefined;
+    sourceVersion?: string | null | undefined;
+    sourceRevision?: string | null | undefined;
+    targetVersion?: string | null | undefined;
+    targetRevision?: string | null | undefined;
+    type: "extends" | "partOf" | "hasParts" | "creates" | "createdBy" | "owns" | "ownedBy" | "implements" | "implementedBy" | "dependsOn" | "dependencyOf" | "uses" | "usedBy" | "produces" | "consumes" | "linksTo" | "supersedes" | "supersededBy" | "compatibleWith" | "extendedBy" | "relatesTo" | "hasMember" | "memberOf" | "triggers" | "triggeredBy" | "returns" | "returnedBy";
+    sourceKey: string;
+    targetKey: string;
+}[];
+//# sourceMappingURL=parse-entities-relations.d.ts.map

package/dist/server/web-server/routes/catalog/parsers/relations/parse-entities-relations.js ADDED Viewed

	@@ -0,0 +1 @@
1	+ import{entitiesRelationsDtoSchema as t}from"../../../../../plugins/catalog-entities/schemas/dto-schemas.js";import{createValidator as i}from"../../../../../plugins/catalog-entities/utils/ajv-validator.js";const r=i(t,{errorPrefix:"Entities relations validation failed:",dataVar:"relation"});export{r as parseEntitiesRelations};

package/dist/server/web-server/routes/catalog/parsers/relations/parse-entity-relation-update-data.d.ts ADDED Viewed

@@ -0,0 +1,13 @@
+export declare function parseEntityRelationUpdateData(relationUpdateData: unknown): Partial<{
+    sourceFile?: string | null | undefined;
+    isDeleted?: boolean | null | undefined;
+    fileHash?: string | null | undefined;
+    sourceVersion?: string | null | undefined;
+    sourceRevision?: string | null | undefined;
+    targetVersion?: string | null | undefined;
+    targetRevision?: string | null | undefined;
+    type: "extends" | "partOf" | "hasParts" | "creates" | "createdBy" | "owns" | "ownedBy" | "implements" | "implementedBy" | "dependsOn" | "dependencyOf" | "uses" | "usedBy" | "produces" | "consumes" | "linksTo" | "supersedes" | "supersededBy" | "compatibleWith" | "extendedBy" | "relatesTo" | "hasMember" | "memberOf" | "triggers" | "triggeredBy" | "returns" | "returnedBy";
+    sourceKey: string;
+    targetKey: string;
+}>;
+//# sourceMappingURL=parse-entity-relation-update-data.d.ts.map

package/dist/server/web-server/routes/catalog/parsers/relations/parse-entity-relation-update-data.js ADDED Viewed

	@@ -0,0 +1 @@
1	+ import{createValidator as e}from"../../../../../plugins/catalog-entities/utils/ajv-validator.js";import{createEntityRelationUpdateSchema as i}from"../../helpers/create-entity-relation-update-schema.js";function l(t){const a=i();return e(a,{errorPrefix:"Entity relation validation failed:",dataVar:"relation"})(t)}export{l as parseEntityRelationUpdateData};

package/dist/server/web-server/routes/catalog/parsers/relations/parse-entity-relation.d.ts ADDED Viewed

@@ -0,0 +1,13 @@
+export declare const parseEntityRelation: (data: unknown) => {
+    sourceFile?: string | null | undefined;
+    isDeleted?: boolean | null | undefined;
+    fileHash?: string | null | undefined;
+    sourceVersion?: string | null | undefined;
+    sourceRevision?: string | null | undefined;
+    targetVersion?: string | null | undefined;
+    targetRevision?: string | null | undefined;
+    type: "extends" | "partOf" | "hasParts" | "creates" | "createdBy" | "owns" | "ownedBy" | "implements" | "implementedBy" | "dependsOn" | "dependencyOf" | "uses" | "usedBy" | "produces" | "consumes" | "linksTo" | "supersedes" | "supersededBy" | "compatibleWith" | "extendedBy" | "relatesTo" | "hasMember" | "memberOf" | "triggers" | "triggeredBy" | "returns" | "returnedBy";
+    sourceKey: string;
+    targetKey: string;
+};
+//# sourceMappingURL=parse-entity-relation.d.ts.map

package/dist/server/web-server/routes/catalog/parsers/relations/parse-entity-relation.js ADDED Viewed

	@@ -0,0 +1 @@
1	+ import{entityRelationDtoSchema as t}from"../../../../../plugins/catalog-entities/schemas/dto-schemas.js";import{createValidator as a}from"../../../../../plugins/catalog-entities/utils/ajv-validator.js";const o=a(t,{errorPrefix:"Entity relation validation failed:",dataVar:"relation"});export{o as parseEntityRelation};

package/dist/server/web-server/routes/dynamic-route.js CHANGED Viewed

	@@ -1 +1 @@
1	- import u from"path";import{REDOCLY_ROUTE_RBAC as E,REDOCLY_TEAMS_RBAC as w}from"@redocly/config";import{withoutPathPrefix as M,withPathPrefix as q}from"@redocly/theme/core/utils";import{CACHE_CONTROL_NO_CACHE_HEADER_VALUE as _,DEFAULT_IMMUTABLE_CACHE_MAX_AGE as O}from"../../constants/common.js";import{removeTrailingSlash as F}from"../../../utils/url/remove-trailing-slash.js";import{findInIterable as H}from"../../../utils/collection/find-in-iterable.js";import{sanitizeRedirectPathname as v}from"../../../utils/url/sanitize-redirect-pathname.js";import{~~sanitizePath~~ as z}from"../../../utils/path/sanitize-path.js";import{normalizeRouteSlug as B}from"../../../utils/path/normalize-route-slug.js";import{isPathInFolder as G}from"../../../utils/path/is-path-in-folder.js";import{processRedirects as N}from"./helpers/process-redirects.js";import{renderPage as Y,getServerProps as $}from"../../ssr/index.js";import{canAccessAsset as k,canAccessResource as L}from"../../utils/rbac.js";import{handleErrorPageRender as y,handleUnauthorized as P,handleUnauthorizedAsset as U}from"../utils.js";import{DEFAULT_MAX_AGE_FOR_MIME_TYPE as V,MIME_TYPES as W}from"../mime-types.js";import{fileExistsAsync as X}from"../../utils/index.js";import{getRedirectRoute as Z}from"../utils/legacy-openapi-redirects.js";import{telemetry as j}from"../../../cli/telemetry/index.js";import{telemetry as J}from"../../telemetry/index.js";function Ae(e,I,T){return async o=>{const h=o.get("logger"),l=o.req,i=new URL(l.url),n=M(z(decodeURIComponent(i.pathname))),R=u.parse(n).ext===".md",m=B(n),r=(l.method==="GET"\|\|l.method==="HEAD")&&!R?e.getRouteBySlug(m,{followRedirect:!1})\|\|H(e.routesBySlug?.values(),t=>t.hasClientRoutes&&(n===t.slug\|\|n.startsWith(t.slug+"/"))):void 0,A=e.getRedirect(m);if(A){const t=N({redirect:A,reqUrlSearch:i.search});return J.sendRedirectMessage({from:m,templateId:t.type.toString()}),o.newResponse(null,t.type,{Location:t.location})}const d=~~process~~.~~env.NODE_ENV==="production"~~?301:302;if(r?.metadata?.type==="openapi"){const t=Z(i.pathname);if(t)return h.info("Legacy OpenAPI docs redirect from "+i.pathname),o.newResponse(null,d,{Location:encodeURI(t)});if(i.pathname.match(/[A-Z]/))return h.warn("Redirect to lowercase route to avoid 404 error"),o.newResponse(null,d,{Location:encodeURI(i.pathname.toLowerCase())})}if(n.endsWith("/")&&n!=="/"){const t=v(new URL(m\|\|"/",o.req.url).pathname);return o.newResponse(null,d,{Location:encodeURI(q((t==="/"?"/":F(t))+i.search))})}const{isAuthenticated:c,teams:f,claims:{email:p}}=o.get("auth");if(r){if(!L(r,{isAuthenticated:c,email:p,teams:f},e.config.rbac,e.config.requiresLogin))return c?y(o,e,{slug:r.slug,[w]:r[w],[E]:r[E]},403):P(o,e,r.slug);const t=await I(r),s=await $(r,o,t,e),{html:b,statusCode:D}=await Y(r,s,o,e,j);return o.html(b,D,{"Cache-Control":_})}const a=u.resolve(e.outdir,"."+n);if(!G(a,e.outdir))return U(o);if(R){const t=n==="index.html.md"?"/":n.replace(/\.md$/,""),s=e.getRouteBySlug(t,{followRedirect:!1});if(s&&!L(s,{isAuthenticated:c,email:p,teams:f},e.config.rbac,e.config.requiresLogin))return P(o,e,n)}if(!k(n,e.getGlobalConfig("rbac"),e.getGlobalConfig("requiresLogin"),e.getGlobalConfig("directoryPaths"),{isAuthenticated:c,email:p,teams:f}))return U(o);const C=W[u.extname(a)]\|\|"text/plain",g=a.match(/assets\/.\.[a-f0-9]{8,}\..+/)\|\|a.match(/runtime\/chunks\/./)?O:V[C],S=g?{"Cache-Control":`public, max-age=${g}, immutable`,Expires:new Date(Date.now()+g1e3).toUTCString()}:{"Cache-Control":_};if(await X(a)){const t=l.query("download")!=null,s=await T(a);return o.newResponse(s,200,{"Content-Type":C,"Access-Control-Allow-Origin":"",...S,...t&&{"Content-Disposition":`attachment; filename="${u.basename(a)}"`}})}else return y(o,e,{slug:m},404)}}export{Ae as dynamicRouteHandler};
1	+ import u from"path";import{REDOCLY_ROUTE_RBAC as E,REDOCLY_TEAMS_RBAC as w}from"@redocly/config";import{withoutPathPrefix as q,withPathPrefix as D}from"@redocly/theme/core/utils";import{CACHE_CONTROL_NO_CACHE_HEADER_VALUE as L,DEFAULT_IMMUTABLE_CACHE_MAX_AGE as O}from"../../constants/common.js";import{removeTrailingSlash as v}from"../../../utils/url/remove-trailing-slash.js";import{findInIterable as F}from"../../../utils/collection/find-in-iterable.js";import{sanitizeRedirectPathname as H}from"../../../utils/url/sanitize-redirect-pathname.js";import{envConfig as z}from"../../../config/env-config.js";import{sanitizePath as B}from"../../../utils/path/sanitize-path.js";import{normalizeRouteSlug as G}from"../../../utils/path/normalize-route-slug.js";import{isPathInFolder as Y}from"../../../utils/path/is-path-in-folder.js";import{processRedirects as $}from"./helpers/process-redirects.js";import{renderPage as k,getServerProps as N}from"../../ssr/index.js";import{canAccessAsset as W,canAccessResource as _}from"../../utils/rbac.js";import{handleErrorPageRender as y,handleUnauthorized as P,handleUnauthorizedAsset as U}from"../utils.js";import{DEFAULT_MAX_AGE_FOR_MIME_TYPE as X,MIME_TYPES as j}from"../mime-types.js";import{fileExistsAsync as V}from"../../utils/index.js";import{getRedirectRoute as Z}from"../utils/legacy-openapi-redirects.js";import{telemetry as J}from"../../../cli/telemetry/index.js";import{telemetry as K}from"../../telemetry/index.js";function Ee(e,I,T){return async o=>{const h=o.get("logger"),l=o.req,i=new URL(l.url),n=q(B(decodeURIComponent(i.pathname))),R=u.parse(n).ext===".md",m=G(n),r=(l.method==="GET"\|\|l.method==="HEAD")&&!R?e.getRouteBySlug(m,{followRedirect:!1})\|\|F(e.routesBySlug?.values(),t=>t.hasClientRoutes&&(n===t.slug\|\|n.startsWith(t.slug+"/"))):void 0,A=e.getRedirect(m);if(A){const t=$({redirect:A,reqUrlSearch:i.search});return K.sendRedirectMessage([{object:"redirect",from:m,templateId:t.type.toString()}]),o.newResponse(null,t.type,{Location:t.location})}const d=z.isProductionEnv?301:302;if(r?.metadata?.type==="openapi"){const t=Z(i.pathname);if(t)return h.info("Legacy OpenAPI docs redirect from "+i.pathname),o.newResponse(null,d,{Location:encodeURI(t)});if(i.pathname.match(/[A-Z]/))return h.warn("Redirect to lowercase route to avoid 404 error"),o.newResponse(null,d,{Location:encodeURI(i.pathname.toLowerCase())})}if(n.endsWith("/")&&n!=="/"){const t=H(new URL(m\|\|"/",o.req.url).pathname);return o.newResponse(null,d,{Location:encodeURI(D((t==="/"?"/":v(t))+i.search))})}const{isAuthenticated:c,teams:f,claims:{email:p}}=o.get("auth");if(r){if(!_(r,{isAuthenticated:c,email:p,teams:f},e.config.rbac,e.config.requiresLogin))return c?y(o,e,{slug:r.slug,[w]:r[w],[E]:r[E]},403):P(o,e,r.slug);const t=await I(r),s=await N(r,o,t,e),{html:b,statusCode:M}=await k(r,s,o,e,J);return o.html(b,M,{"Cache-Control":L})}const a=u.resolve(e.outdir,"."+n);if(!Y(a,e.outdir))return U(o);if(R){const t=n==="index.html.md"?"/":n.replace(/\.md$/,""),s=e.getRouteBySlug(t,{followRedirect:!1});if(s&&!_(s,{isAuthenticated:c,email:p,teams:f},e.config.rbac,e.config.requiresLogin))return P(o,e,n)}if(!W(n,e.getGlobalConfig("rbac"),e.getGlobalConfig("requiresLogin"),e.getGlobalConfig("directoryPaths"),{isAuthenticated:c,email:p,teams:f}))return U(o);const C=j[u.extname(a)]\|\|"text/plain",g=a.match(/assets\/.\.[a-f0-9]{8,}\..+/)\|\|a.match(/runtime\/chunks\/./)?O:X[C],S=g?{"Cache-Control":`public, max-age=${g}, immutable`,Expires:new Date(Date.now()+g1e3).toUTCString()}:{"Cache-Control":L};if(await V(a)){const t=l.query("download")!=null,s=await T(a);return o.newResponse(s,200,{"Content-Type":C,"Access-Control-Allow-Origin":"",...S,...t&&{"Content-Disposition":`attachment; filename="${u.basename(a)}"`}})}else return y(o,e,{slug:m},404)}}export{Ee as dynamicRouteHandler};

package/dist/server/web-server/routes/error.js CHANGED Viewed

	@@ -1 +1 @@
1	- import{context as s,SpanStatusCode as n,trace as a}from"@opentelemetry/api";import{~~isDevelopMode~~ as o}from"~~../../utils~~/~~envs/is~~-~~develop-mode~~.js";const m=e=>{const t=a?.getSpan(s.active());return t&&(t.setStatus({code:n.ERROR,message:e.message}),t.recordException(e),t.end()),e instanceof Error&&"name"in e&&e.name==="URIError"?new Response("Malformed URL",{status:400}):~~o()~~&&e?.name==="PageMissingDefaultExportError"?new Response(e.message,{status:200}):new Response("Internal Server Error",{status:500})};export{m as errorHandler};
1	+ import{context as n,SpanStatusCode as s,trace as o}from"@opentelemetry/api";import{envConfig as a}from"../../../config/env-config.js";const m=e=>{const t=o?.getSpan(n.active());return t&&(t.setStatus({code:s.ERROR,message:e.message}),t.recordException(e),t.end()),e instanceof Error&&"name"in e&&e.name==="URIError"?new Response("Malformed URL",{status:400}):a.isDevelopMode&&e?.name==="PageMissingDefaultExportError"?new Response(e.message,{status:200}):new Response("Internal Server Error",{status:500})};export{m as errorHandler};

package/dist/server/web-server/routes/helpers/get-current-rbac-teams.d.ts ADDED Viewed

@@ -0,0 +1,3 @@
+import type { Context } from 'hono';
+export declare function getCurrentRbacTeams(ctx: Context): string[];
+//# sourceMappingURL=get-current-rbac-teams.d.ts.map

package/dist/server/web-server/routes/helpers/get-current-rbac-teams.js ADDED Viewed

	@@ -0,0 +1 @@
1	+ function t(e){return e.get("apiKeyTeams")?.length?e.get("apiKeyTeams"):e.get("auth")?.teams\|\|[]}export{t as getCurrentRbacTeams};

package/dist/server/web-server/routes/helpers/get-rbac-restrictions-data-for-catalog.d.ts ADDED Viewed

@@ -0,0 +1,11 @@
+import type { Context } from 'hono';
+import type { Store } from '../../../store.js';
+export declare function getRbacRestrictionsDataForCatalog({ store, ctx }: {
+    store: Store;
+    ctx: Context;
+}): {
+    currentRbacTeamsForRead: string[];
+    excludedTypes: string[];
+    excludedEntities: string[];
+};
+//# sourceMappingURL=get-rbac-restrictions-data-for-catalog.d.ts.map

package/dist/server/web-server/routes/helpers/get-rbac-restrictions-data-for-catalog.js ADDED Viewed

@@ -0,0 +1 @@

+ import{getNotAccessibleCatalogResources as n}from"../../../plugins/catalog-entities/utils/get-not-accessible-catalog-resources.js";import{getCurrentRbacTeams as i}from"./get-current-rbac-teams.js";import{expandTeamsForRead as m}from"../../../utils/rbac.js";function b({store:o,ctx:r}){const e=o.getConfig().rbac||{},t=i(r),a=m(e,t),{types:c,entities:s}=n({rbacConfig:e,currentRbacTeams:t});return{currentRbacTeamsForRead:a,excludedTypes:c,excludedEntities:s}}export{b as getRbacRestrictionsDataForCatalog};

package/dist/server/web-server/routes/index.js CHANGED Viewed

	@@ -1 +1 @@
1	- import{serveStatic as f}from"hono/serve-static";import{withPathPrefix as e,withoutPathPrefix as s}from"@redocly/theme/core/utils";import{ServerRoutes as i}from"../../../constants/common.js";import{PUBLIC_STATIC_FOLDER as R}from"../../constants/common.js";import{authMiddleware as c}from"../middleware/authMiddleware.js";import{ensureSearchData as g}from"../middleware/ensureSearchData.js";import{dynamicMiddleware as S}from"../middleware/dynamic-middleware/dynamic-middleware.js";import{installRoutes as P}from"../../plugins/dev-onboarding/api/routes/index.js";import{authorizeHandler as I,oidcCallbackHandler as r,logoutHandler as d,postLogoutHandler as h,idpLoginHandler as D,redoclyLoginCallbackHandler as N,samlCallbackHandler as M,redoclyTokenLoginHandler as U,inviteHandler as B}from"./auth.js";import{appDataHandler as G}from"./app-data.js";import{searchFacetsHandler as w,searchHandler as F}from"./search.js";import{dynamicRouteHandler as v}from"./dynamic-route.js";import{pageDataHandler as K,sharedPageDataHandler as y}from"./page-data.js";import{pathPrefixRedirectHandler as k}from"./path-prefix-redirect.js";import{getRoutesByLineHandler as E,resolvePathHandler as o,resolvePathsHandler as Y,resolveSlugHandler as p}from"./resolve-route.js";import{feedbackHandler as b}from"./feedback.js";import{loggerMiddleware as V}from"../middleware/loggerMiddleware.js";import{responseHeadersMiddleware as x}from"../middleware/responseHeadersMiddleware.js";import{idleTimeoutMiddleware as z}from"../middleware/idleTimeoutMiddleware.js";import{otelTracesHandler as Z}from"./otel/otel.js";import{healthCheckHandler as $}from"./health.js";import{askAiHandler as q}from"./ask-ai.js";import{replayOauth2RedirectCallbackHandler as W}from"./replay-oauth2-redirect.js";import{mcpOAuthProtectedResourceHandler as j,mcpOAuthAuthorizationServerHandler as J,mcpDynamicClientRegistrationHandler as Q,mcpAuthorizationHandler as X,mcpTokenPortalHandler as u,mcpCallbackHandler as _}from"./mcp-oauth.js";import{corsMiddleware as O}from"../middleware/corsMiddleware.js";import{installApiRoutes as aa}from"./api-routes/api-routes.js";import{cookieMiddleware as ea}from"../middleware/cookieMiddleware.js";import{staticContentHandler as ia}from"../routes/static-content.js";import{infoHandler as L}from"./info.js";import{catalogHandler as la}from"./catalog/catalog.js";import{catalogRelationsHandler as ta}from"./catalog/catalog-relations.js";import{bffCatalogHandler as ma}from"./catalog/bff-catalog.js";import{bffCatalogRevisionsHandler as na}from"./catalog/bff-catalog-revisions.js";import{bffCatalogRelatedEntitiesHandler as Aa}from"./catalog/bff-catalog-related-entities.js";import{catalogAuthMiddleware as C}from"../middleware/catalogAuthMiddleware.js";import{telemetryMiddleware as Ta}from"../middleware/telemetry-middleware.js";import{errorHandler as da}from"./error.js";function Wa(a,l,t){const{resolveRouteData:n,readStaticAsset:A}=t;a.use("",z()),a.use("",ea()),a.use("",S(l)),a.use("",c(l)),a.use("",V()),a.use("",x(l)),a.use("",Ta()),a.use(e(""),f({root:`./${R}`,getContent:(m,H)=>ia(m,H,l,A),rewriteRequestPath:m=>s(m)})),a.use(e(i.FEEDBACK),O({allowMethods:["POST"]})),a.use(e(i.ASK_AI),O({allowMethods:["POST"]})),a.use("",Ea(l));const T=g(l);a.use(e(i.INFO),L()),~~process~~.~~env.~~NEW_CATALOG_ENABLED==="true"&&(a.use(e(i.CATALOG_ENTITIES),C(l.serverOutDir~~,{secureMethods:["POST","PUT","DELETE","PATCH"]~~})),a.use(e(i.CATALOG_ENTITIES_RELATIONS),C(l.serverOutDir~~,{secureMethods:["POST","PUT","DELETE","PATCH"]~~})),~~a.use~~(e(i~~.CATALOG_ENTITIES~~)~~,la(l~~)),a.~~use~~(e(i.~~CATALOG_ENTITIES_RELATIONS~~),ta(~~l)),a.get(e(~~i.~~BFF_CATALOG_ENTITIES~~),ma(l)),a.get(e(i.BFF_CATALOG_RELATED_ENTITIES),Aa(l)),a.get(e(i.BFF_CATALOG_REVISIONS),na(l))),a.get(e(i.SHARED_PAGE_DATA),y(l)),a.get(e(i.PAGE_DATA),K(l,n)),a.get(e(i.APP_DATA),G(l)),a.post(e(i.SEARCH),T,F(l)),a.post(e(i.SEARCH_FACETS),T,w(l)),a.post(e(i.AUTHORIZATION),I),a.post(e(i.LOGOUT),d(l)),a.get(e(i.LOGOUT),d(l)),a.get(e(i.POST_LOGOUT),h(l)),a.get(e(i.OIDC_CALLBACK),r(l)),a.get(e(i.REDOCLY_TOKEN_LOGIN),U(l)),a.get(e(i.REDOCLY_LOGIN_CALLBACK),N()),a.get(e(i.IDP_LOGIN),D(l)),a.post(e(i.SAML_CALLBACK),M(l)),a.get(e(i.INVITE),B(l)),a.get(e(i.HEALTH),$),a.get(e(~~i.MCP_OAUTH_PROTECTED_RESOURCE~~),j()),a.get(~~e(i~~.MCP_OAUTH_AUTHORIZATION_SERVER),J()),a.post(e(i.MCP_DYNAMIC_CLIENT_REGISTRATION),Q()),a.get(e(i.MCP_AUTHORIZATION),X()),a.post(e(i.MCP_TOKEN_PORTAL),u()),a.get(e(i.MCP_CALLBACK),_()),a.get(e(`${i.MCP_CALLBACK}/`),_()),P(a,l),aa(a,l),a.post(e(i.FEEDBACK),b(l)),a.post(e(i.RESOLVE_ROUTE_BY_PATH),o(l)),a.post(e(i.RESOLVE_ROUTES_BY_PATHS),Y(l)),a.post(e(i.RESOLVE_ROUTE_BY_SLUG),p(l)),a.post(e(i.ASK_AI),q(l)),a.get(e(i.GET_ROUTES_BY_LINE),E(l)),a.post(e(i.OTEL_TRACES),Z),a.get(e(i.REPLAY_OAUTH2_CALLBACK),W),a.all(e("/"),v(l,n,A)),a.get("",k),a.onError(da)}function Ea(a){return async(l,t)=>{await a.waitForPluginsLifecycle(),await t()}}function ja(a,l){a.get(e(i.INFO),L()),a.post(e(i.RESOLVE_ROUTE_BY_PATH),o(l)),a.post(e(i.RESOLVE_ROUTE_BY_SLUG),p(l)),a.get(e(i.GET_ROUTES_BY_LINE),E(l))}export{ja as installDevRoutes,Wa as installProdRoutes,Ea as waitForPluginsLifecycle};
1	+ import{serveStatic as H}from"hono/serve-static";import{withPathPrefix as e,withoutPathPrefix as R}from"@redocly/theme/core/utils";import{ServerRoutes as l}from"../../../constants/common.js";import{PUBLIC_STATIC_FOLDER as C}from"../../constants/common.js";import{envConfig as L}from"../../../config/env-config.js";import{authMiddleware as c}from"../middleware/authMiddleware.js";import{ensureSearchData as g}from"../middleware/ensureSearchData.js";import{dynamicMiddleware as S}from"../middleware/dynamic-middleware/dynamic-middleware.js";import{installRoutes as I}from"../../plugins/dev-onboarding/api/routes/index.js";import{authorizeHandler as P,oidcCallbackHandler as D,logoutHandler as A,postLogoutHandler as h,idpLoginHandler as M,redoclyLoginCallbackHandler as N,samlCallbackHandler as v,redoclyTokenLoginHandler as B,inviteHandler as U}from"./auth.js";import{appDataHandler as w}from"./app-data.js";import{searchFacetsHandler as G,searchHandler as F}from"./search.js";import{dynamicRouteHandler as K}from"./dynamic-route.js";import{pageDataHandler as y,sharedPageDataHandler as k}from"./page-data.js";import{pathPrefixRedirectHandler as Y}from"./path-prefix-redirect.js";import{getRoutesByLineHandler as _,resolvePathHandler as O,resolvePathsHandler as b,resolveSlugHandler as r}from"./resolve-route.js";import{feedbackHandler as V}from"./feedback.js";import{loggerMiddleware as x}from"../middleware/loggerMiddleware.js";import{responseHeadersMiddleware as $}from"../middleware/responseHeadersMiddleware.js";import{idleTimeoutMiddleware as z}from"../middleware/idleTimeoutMiddleware.js";import{otelTracesHandler as Z}from"./otel/otel.js";import{healthCheckHandler as u}from"./health.js";import{askAiHandler as q}from"./ask-ai.js";import{replayOauth2RedirectCallbackHandler as W}from"./replay-oauth2-redirect.js";import{mcpOAuthProtectedResourceHandler as j,mcpOAuthAuthorizationServerHandler as J,mcpDynamicClientRegistrationHandler as Q,mcpAuthorizationHandler as X,mcpTokenPortalHandler as aa,mcpCallbackHandler as E}from"./mcp-oauth.js";import{corsMiddleware as T}from"../middleware/corsMiddleware.js";import{installApiRoutes as ea}from"./api-routes/api-routes.js";import{cookieMiddleware as ia}from"../middleware/cookieMiddleware.js";import{staticContentHandler as la}from"../routes/static-content.js";import{infoHandler as f}from"./info.js";import{catalogHandler as ta}from"./catalog/catalog.js";import{catalogRelationsHandler as ma}from"./catalog/catalog-relations.js";import{bffCatalogHandler as na}from"./catalog/bff-catalog.js";import{bffCatalogRevisionsHandler as da}from"./catalog/bff-catalog-revisions.js";import{bffCatalogRelatedEntitiesHandler as oa}from"./catalog/bff-catalog-related-entities.js";import{catalogAuthMiddleware as t}from"../middleware/catalogAuthMiddleware.js";import{telemetryMiddleware as pa}from"../middleware/telemetry-middleware.js";import{errorHandler as Aa}from"./error.js";function ja(a,i,m){const{resolveRouteData:d,readStaticAsset:o}=m;a.use("",z()),a.use("",ia()),a.use("",S(i)),a.use("",c(i)),a.use("",x()),a.use("",$(i)),a.use("",pa()),a.use(e(""),H({root:`./${C}`,getContent:(n,s)=>la(n,s,i,o),rewriteRequestPath:n=>R(n)})),a.use(e(l.FEEDBACK),T({allowMethods:["POST"]})),a.use(e(l.ASK_AI),T({allowMethods:["POST"]})),a.use("",_a(i));const p=g(i);a.use(e(l.INFO),f()),L.NEW_CATALOG_ENABLED==="true"&&(a.use(e(l.CATALOG_ENTITIES),t({serverOutDir:i.serverOutDir}),ta(i)),a.use(e(l.CATALOG_ENTITIES_RELATIONS),t({serverOutDir:i.serverOutDir}),ma(i)),a.get(e(l.BFF_CATALOG_ENTITIES),t({serverOutDir:i.serverOutDir,protectReadMethods:!1}),na(i)),a.get(e(l.BFF_CATALOG_RELATED_ENTITIES),t({serverOutDir:i.serverOutDir,protectReadMethods:!1}),oa(i)),a.get(e(l.BFF_CATALOG_REVISIONS),t({serverOutDir:i.serverOutDir,protectReadMethods:!1}),da(i))),a.get(e(l.SHARED_PAGE_DATA),k(i)),a.get(e(l.PAGE_DATA),y(i,d)),a.get(e(l.APP_DATA),w(i)),a.post(e(l.SEARCH),p,F(i)),a.post(e(l.SEARCH_FACETS),p,G(i)),a.post(e(l.AUTHORIZATION),P),a.post(e(l.LOGOUT),A(i)),a.get(e(l.LOGOUT),A(i)),a.get(e(l.POST_LOGOUT),h(i)),a.get(e(l.OIDC_CALLBACK),D(i)),a.get(e(l.REDOCLY_TOKEN_LOGIN),B(i)),a.get(e(l.REDOCLY_LOGIN_CALLBACK),N()),a.get(e(l.IDP_LOGIN),M(i)),a.post(e(l.SAML_CALLBACK),v(i)),a.get(e(l.INVITE),U(i)),a.get(e(l.HEALTH),u),a.get(`${l.MCP_OAUTH_PROTECTED_RESOURCE}${e("/mcp")}`,j()),a.get(l.MCP_OAUTH_AUTHORIZATION_SERVER,J()),a.post(e(l.MCP_DYNAMIC_CLIENT_REGISTRATION),Q()),a.get(e(l.MCP_AUTHORIZATION),X()),a.post(e(l.MCP_TOKEN_PORTAL),aa()),a.get(e(l.MCP_CALLBACK),E()),a.get(e(`${l.MCP_CALLBACK}/`),E()),I(a,i),ea(a,i),a.post(e(l.FEEDBACK),V(i)),a.post(e(l.RESOLVE_ROUTE_BY_PATH),O(i)),a.post(e(l.RESOLVE_ROUTES_BY_PATHS),b(i)),a.post(e(l.RESOLVE_ROUTE_BY_SLUG),r(i)),a.post(e(l.ASK_AI),q(i)),a.get(e(l.GET_ROUTES_BY_LINE),_(i)),a.post(e(l.OTEL_TRACES),Z),a.get(e(l.REPLAY_OAUTH2_CALLBACK),W),a.all(e("/"),K(i,d,o)),a.get("",Y),a.onError(Aa)}function _a(a){return async(i,m)=>{await a.waitForPluginsLifecycle(),await m()}}function Ja(a,i){a.get(e(l.INFO),f()),a.post(e(l.RESOLVE_ROUTE_BY_PATH),O(i)),a.post(e(l.RESOLVE_ROUTE_BY_SLUG),r(i)),a.get(e(l.GET_ROUTES_BY_LINE),_(i))}export{Ja as installDevRoutes,ja as installProdRoutes,_a as waitForPluginsLifecycle};

package/dist/server/web-server/routes/info.js CHANGED Viewed

	@@ -1 +1 @@
1	- function r(){return async n=>n.json({version:~~process~~.~~env.~~REDOCLY_PORTAL_VERSION},200)}export{r as infoHandler};
1	+ import{envConfig as r}from"../../../config/env-config.js";function e(){return async n=>n.json({version:r.REDOCLY_PORTAL_VERSION},200)}export{e as infoHandler};

package/dist/server/web-server/routes/mcp-oauth.js CHANGED Viewed

	@@ -1 +1 @@
1	- import{getCookie as C}from"hono/cookie";import{ulid as w}from"ulid";import{AUTH_URL as _,JWT_SECRET_KEY as y}from"../../constants/common.js";import{ServerRoutes as d}from"../../../constants/common.js";import{withPathPrefix as m}from"@redocly/theme/core/utils";import{telemetry as l}from"../../telemetry/index.js";import{createMcpAuthorizationCode as k,verifyMcpAuthorizationCode as S,createMcpSessionResource as u}from"../auth.js";import*as h from"../jwt/jwt.js";import{getRequestOrigin as g}from"../utils/get-request-origin.js";const n=(e,r,o=200,a)=>e.json(r,o,{"Content-Type":"application/json",...a??{}});async function T(e){const r=Math.floor(Date.now()/1e3);return h.sign({type:"mcp_context",...e,iat:r,exp:r+600},y)}async function I(e){await h.verify(e,y);const{payload:r}=h.decode(e);if(r.type!=="mcp_context")throw new Error("Invalid context token type");return r}function O(){return async e=>{if(e.req.method!=="GET")return n(e,{error:"Method not allowed"},405,{Allow:"GET"});const r=g(e);return n(e,{resource:`${r}/mcp`,authorization_servers:[r],bearer_methods_supported:["header"],resource_documentation:`${r}~~/.well-known/oauth-authorization-server~~`,scopes_supported:["openid","profile","email","offline_access"],bearer_token_types_supported:["Bearer"]})}}function D(){return async e=>{const r=g(e);return n(e,{issuer:_\|\|"",authorization_endpoint:`${r}${d.MCP_AUTHORIZATION}`,token_endpoint:`${r}${d.MCP_TOKEN_PORTAL}`,jwks_uri:`${_\|\|""}/.well-known/jwks.json`,registration_endpoint:`${r}${d.MCP_DYNAMIC_CLIENT_REGISTRATION}`,scopes_supported:["openid","profile","email","offline_access"],response_types_supported:["code"],grant_types_supported:["authorization_code","refresh_token","client_credentials"],subject_types_supported:["public"],id_token_signing_alg_values_supported:["RS256"],code_challenge_methods_supported:["S256"]})}}function $(){return async e=>{if(e.req.method!=="POST")return n(e,{error:"Method not allowed"},405);try{return n(e,{client_id:~~process~~.~~env.~~OAUTH_CLIENT_ID\|\|"",client_name:"MCP Client",redirect_uris:[],grant_types:["authorization_code","refresh_token"],response_types:["code"],scope:"openid offline email",subject_type:"public",token_endpoint_auth_method:"none",created_at:new Date().toISOString(),updated_at:new Date().toISOString()},201)}catch(r){return n(e,{error:"invalid_request",error_description:r?.message\|\|"Unable to register client"},500)}}}function q(){return async e=>{const r=new URL(e.req.url),{searchParams:o}=r,a=o.get("redirect_uri"),t=w();l.sendMcpAuthorizationStartedMessage({...u(t),redirect_uri:a\|\|null});const s=g(e),c={isMcpFlow:!0,originalRedirectUri:a,mcpClientId:o.get("client_id"),mcpState:o.get("state"),mcpSessionId:t,timestamp:Date.now()};try{const i=await T(c),p=new URL(d.IDP_LOGIN,s);return p.searchParams.set("redirectTo",`${m(d.MCP_CALLBACK)}/${i}`),p.searchParams.set("idpId","oidc"),e.redirect(p.toString())}catch(i){const p=i instanceof Error?i.message:String(i),M=i instanceof Error?i.stack:String(i);l.sendMcpAuthorizationFailedMessage({...u(t),error:p,error_details:M});const f=new URL(m(`${_}/oauth2/auth`));return f.search=o.toString(),e.redirect(f.toString())}}}function H(){return async e=>{if(e.req.method!=="POST")return n(e,{error:"Method not allowed"},405);try{const r=await e.req.formData(),o=r.get("grant_type"),a=r.get("code"),t=r.get("redirect_uri")\|\|void 0;if(o!=="authorization_code"\|\|!a)return n(e,{error:"invalid_request",error_description:"Invalid grant type or missing authorization code"},400);try{const s=await S(a);if(t&&t!==s.redirect_uri)return n(e,{error:"invalid_grant",error_description:"redirect_uri mismatch"},400);if(~~process~~.~~env.~~OAUTH_CLIENT_ID&&s.client_id&&s.client_id!==~~process~~.~~env.~~OAUTH_CLIENT_ID)return n(e,{error:"invalid_client",error_description:"Client mismatch"},400);const c=s.id_token;return typeof c!="string"\|\|c.length===0?n(e,{error:"invalid_grant",error_description:"Missing id_token in authorization code"},400):n(e,{access_token:c,token_type:"Bearer",expires_in:3600,scope:"openid profile email",id_token:c},200,{"Cache-Control":"no-store",Pragma:"no-cache"})}catch{return n(e,{error:"invalid_grant",error_description:"Invalid authorization code"},400)}}catch(r){const o=r instanceof Error?r.message:String(r);return n(e,{error:"server_error",error_description:"Failed to process token request",error_details:o},500)}}}function b(){return async e=>{const r=new URL(e.req.url);let o=r.searchParams.get("context");if(!o&&r.pathname.startsWith(m(`${d.MCP_CALLBACK}/`))){const t=r.pathname.split("/");o=t[t.length-1]}if(!o)return l.sendMcpAuthorizationFailedMessage({...u(null),error:"Missing context parameter",error_details:null}),e.text("Missing context parameter",400);let a=null;try{const t=await I(o);if(a=t.mcpSessionId\|\|null,!t.isMcpFlow\|\|!t.originalRedirectUri)throw new Error("Invalid MCP context");const s=C(e,"idp_id_token")\|\|C(e,"authorization"),c=await k({idToken:s\|\|"",clientId:t.mcpClientId\|\|"",redirectUri:t.originalRedirectUri,ttlSec:600}),i=new URL(t.originalRedirectUri);return i.searchParams.set("code",c),t.mcpState&&i.searchParams.set("state",t.mcpState),l.sendMcpAuthorizationCompletedMessage({...u(a),redirect_uri:t.originalRedirectUri\|\|null}),e.redirect(i.toString())}catch(t){const s=t instanceof Error?t.message:String(t),c=t instanceof Error?t.stack:String(t);return l.sendMcpAuthorizationFailedMessage({...u(a),error:s,error_details:c}),e.text(`Invalid MCP callback: ${s}`,400)}}}export{T as createMcpContextToken,q as mcpAuthorizationHandler,b as mcpCallbackHandler,$ as mcpDynamicClientRegistrationHandler,D as mcpOAuthAuthorizationServerHandler,O as mcpOAuthProtectedResourceHandler,H as mcpTokenPortalHandler,I as verifyAndParseMcpContextToken};
1	+ import{getCookie as y}from"hono/cookie";import{ulid as w}from"ulid";import{AUTH_URL as m,JWT_SECRET_KEY as M}from"../../constants/common.js";import{ServerRoutes as d}from"../../../constants/common.js";import{withPathPrefix as p}from"@redocly/theme/core/utils";import{telemetry as u}from"../../telemetry/index.js";import{envConfig as g}from"../../../config/env-config.js";import{createMcpAuthorizationCode as I,verifyMcpAuthorizationCode as k,createMcpSessionResource as _}from"../auth.js";import*as h from"../jwt/jwt.js";import{AlgorithmTypes as T}from"../jwt/types.js";import{getRequestOrigin as f}from"../utils/get-request-origin.js";const n=(e,r,o=200,a)=>e.json(r,o,{"Content-Type":"application/json",...a??{}});async function A(e){const r=Math.floor(Date.now()/1e3);return h.sign({type:"mcp_context",...e,iat:r,exp:r+600},M,T.HS256)}async function P(e){await h.verify(e,M,T.HS256);const{payload:r}=h.decode(e);if(r.type!=="mcp_context")throw new Error("Invalid context token type");return r}function q(){return async e=>{if(e.req.method!=="GET")return n(e,{error:"Method not allowed"},405,{Allow:"GET"});const r=f(e);return n(e,{resource:`${r}${p("/mcp")}`,authorization_servers:[r],bearer_methods_supported:["header"],resource_documentation:`${r}${d.MCP_OAUTH_AUTHORIZATION_SERVER}`,scopes_supported:["openid","profile","email","offline_access"],bearer_token_types_supported:["Bearer"]})}}function b(){return async e=>{const r=f(e);return n(e,{issuer:m\|\|"",authorization_endpoint:`${r}${p(d.MCP_AUTHORIZATION)}`,token_endpoint:`${r}${p(d.MCP_TOKEN_PORTAL)}`,jwks_uri:`${m\|\|""}/.well-known/jwks.json`,registration_endpoint:`${r}${p(d.MCP_DYNAMIC_CLIENT_REGISTRATION)}`,scopes_supported:["openid","profile","email","offline_access"],response_types_supported:["code"],grant_types_supported:["authorization_code","refresh_token","client_credentials"],subject_types_supported:["public"],id_token_signing_alg_values_supported:["RS256"],code_challenge_methods_supported:["S256"]})}}function N(){return async e=>{if(e.req.method!=="POST")return n(e,{error:"Method not allowed"},405);try{return n(e,{client_id:g.OAUTH_CLIENT_ID\|\|"",client_name:"MCP Client",redirect_uris:[],grant_types:["authorization_code","refresh_token"],response_types:["code"],scope:"openid offline email",subject_type:"public",token_endpoint_auth_method:"none",created_at:new Date().toISOString(),updated_at:new Date().toISOString()},201)}catch(r){return n(e,{error:"invalid_request",error_description:r?.message\|\|"Unable to register client"},500)}}}function j(){return async e=>{const r=new URL(e.req.url),{searchParams:o}=r,a=o.get("redirect_uri"),t=w();u.sendMcpAuthorizationStartedMessage([{..._(t),redirect_uri:a\|\|null}]);const s=f(e),c={isMcpFlow:!0,originalRedirectUri:a,mcpClientId:o.get("client_id"),mcpState:o.get("state"),mcpSessionId:t,timestamp:Date.now()};try{const i=await A(c),l=new URL(p(d.IDP_LOGIN),s);return l.searchParams.set("redirectTo",`${d.MCP_CALLBACK}/${i}`),l.searchParams.set("idpId","oidc"),e.redirect(l.toString())}catch(i){const l=i instanceof Error?i.message:String(i),S=i instanceof Error?i.stack:String(i);u.sendMcpAuthorizationFailedMessage([{..._(t),error:l,error_details:S}]);const C=new URL(p(`${m}/oauth2/auth`));return C.search=o.toString(),e.redirect(C.toString())}}}function F(){return async e=>{if(e.req.method!=="POST")return n(e,{error:"Method not allowed"},405);try{const r=await e.req.formData(),o=r.get("grant_type"),a=r.get("code"),t=r.get("redirect_uri")\|\|void 0;if(o!=="authorization_code"\|\|!a)return n(e,{error:"invalid_request",error_description:"Invalid grant type or missing authorization code"},400);try{const s=await k(a);if(t&&t!==s.redirect_uri)return n(e,{error:"invalid_grant",error_description:"redirect_uri mismatch"},400);if(g.OAUTH_CLIENT_ID&&s.client_id&&s.client_id!==g.OAUTH_CLIENT_ID)return n(e,{error:"invalid_client",error_description:"Client mismatch"},400);const c=s.id_token;return typeof c!="string"\|\|c.length===0?n(e,{error:"invalid_grant",error_description:"Missing id_token in authorization code"},400):n(e,{access_token:c,token_type:"Bearer",expires_in:3600,scope:"openid profile email",id_token:c},200,{"Cache-Control":"no-store",Pragma:"no-cache"})}catch{return n(e,{error:"invalid_grant",error_description:"Invalid authorization code"},400)}}catch(r){const o=r instanceof Error?r.message:String(r);return n(e,{error:"server_error",error_description:"Failed to process token request",error_details:o},500)}}}function B(){return async e=>{const r=new URL(e.req.url);let o=r.searchParams.get("context");if(!o&&r.pathname.startsWith(p(`${d.MCP_CALLBACK}/`))){const t=r.pathname.split("/");o=t[t.length-1]}if(!o)return u.sendMcpAuthorizationFailedMessage([{..._(null),error:"Missing context parameter",error_details:null}]),e.text("Missing context parameter",400);let a=null;try{const t=await P(o);if(a=t.mcpSessionId\|\|null,!t.isMcpFlow\|\|!t.originalRedirectUri)throw new Error("Invalid MCP context");const s=y(e,"idp_id_token")\|\|y(e,"authorization"),c=await I({idToken:s\|\|"",clientId:t.mcpClientId\|\|"",redirectUri:t.originalRedirectUri,ttlSec:600}),i=new URL(t.originalRedirectUri);return i.searchParams.set("code",c),t.mcpState&&i.searchParams.set("state",t.mcpState),u.sendMcpAuthorizationCompletedMessage([{..._(a),redirect_uri:t.originalRedirectUri\|\|null}]),e.redirect(i.toString())}catch(t){const s=t instanceof Error?t.message:String(t),c=t instanceof Error?t.stack:String(t);return u.sendMcpAuthorizationFailedMessage([{..._(a),error:s,error_details:c}]),e.text(`Invalid MCP callback: ${s}`,400)}}}export{A as createMcpContextToken,j as mcpAuthorizationHandler,B as mcpCallbackHandler,N as mcpDynamicClientRegistrationHandler,b as mcpOAuthAuthorizationServerHandler,q as mcpOAuthProtectedResourceHandler,F as mcpTokenPortalHandler,P as verifyAndParseMcpContextToken};

package/dist/server/web-server/routes/otel/otel.js CHANGED Viewed

	@@ -1 +1 @@
1	- import{getClientIp as v}from"../../utils/get-client-ip.js";import{PRODUCT_NAME as l}from"../../../../config/product-gates.js";import{toAttribute as t,getAttributesStringValue as _}from"./otlp.js";const p=~~process~~.~~env.~~OTEL_TRACES_URL\|\|"https://otel.cloud.redocly.com/v1/traces";async function L(e){const s=await e.req.json(),o=g(e),r={resourceSpans:s.resourceSpans.map(n=>{const u=_(n.resource.attributes.find(c=>c.key==="session_id"));return u?{...n,resource:{...n.resource,attributes:[...n.resource.attributes,...y(o,u)]},scopeSpans:n.scopeSpans.map(c=>({...c,spans:c.spans.map(i=>({...i,attributes:i.name.startsWith("event.")&&i.name!=="event.undefined"?A(i,o,u):i.attributes}))}))}:n})};return await fetch(p,{method:"POST",headers:{"Content-Type":"application/json"},body:JSON.stringify(r)}),e.newResponse(null,200,{})}function g(e){const s=e.get("auth")?.claims?.id\|\|e.get("auth")?.claims?.sub,o=v(e.req.raw)\|\|e.req.raw.context.remoteAddr?.hostname,r=e.req.raw.headers.get("user-agent"),n=e.req.raw.headers.get("accept-language"),u=n?.split(",")[0];return{userId:s,clientIp:o,userAgent:r\|\|void 0,acceptLanguage:n\|\|void 0,locale:u}}function y(e,s){const o=[t("redocly.organization.id",~~process~~.~~env.~~ORGANIZATION_ID),t("redocly.organization.slug",~~process~~.~~env.~~ORGANIZATION_SLUG),t("redocly.project.id",~~process~~.~~env.~~PROJECT_ID),t("redocly.project.slug",~~process~~.~~env.~~PROJECT_SLUG),t("redocly.product.type",l.toLowerCase()),t("redocly.client.ip",e.clientIp),t("redocly.client.userAgent",e.userAgent),t("redocly.client.acceptLanguage",e.acceptLanguage),t("redocly.client.locale",e.locale)];return e.userId?o.push(t("redocly.user.id",e.userId)):o.push(t("redocly.anonymous.id",a(s))),o.filter(r=>r!==void 0)}function m(e,s,o){const r=f(e.userId,s),n=new Date(Math.floor(Number(o.startTimeUnixNano)/1e6)).toISOString(),u=o.attributes.find(d=>d.key==="cloudevents.event_data.uri"),c=u&&"stringValue"in u.value?[t("cloudevents.event_data.page.uri",u.value.stringValue)]:[];return[t("cloudevents.event_spec_version","1.0"),t("cloudevents.event_object","event"),t("cloudevents.event_origin","realm-ui"),t("cloudevents.event_source",r.uri),t("cloudevents.event_source_details.id",r.id),t("cloudevents.event_source_details.object",r.object),t("cloudevents.event_source_details.uri",r.uri),t("cloudevents.event_data_content_type","application/json; charset=utf-8"),t("cloudevents.event_organization_id",~~process~~.~~env.~~ORGANIZATION_ID),t("cloudevents.event_organization_slug",~~process~~.~~env.~~ORGANIZATION_SLUG),t("cloudevents.event_project_id",~~process~~.~~env.~~PROJECT_ID),t("cloudevents.event_project_slug",~~process~~.~~env.~~PROJECT_SLUG),t("cloudevents.event_product_type",l.toLowerCase()),t("cloudevents.event_session_id",s),t("cloudevents.event_time",n),t("cloudevents.event_client.ip",e.clientIp),t("cloudevents.event_client.user_agent",e.userAgent),t("cloudevents.event_client.accept_language",e.acceptLanguage),t("cloudevents.event_client.locale",e.locale),...c]}function A(e,s,o){return[...e.attributes.filter(n=>{const u="stringValue"in n.value&&n.value.stringValue==="",c=/cloudevents\.event_source_details\..+/.test(n.key);return!(u\|\|c)}),...m(s,o,e)].filter(n=>n!==void 0)}function f(e,s){return e?{id:e,object:"user",uri:`${~~process~~.~~env.~~MAIN_API_URL}/users/${e}`}:{id:a(s),object:"anonymous",uri:`${~~process~~.~~env.~~MAIN_API_URL}/anonymous/${a(s)}`}}function a(e){return e.replace("ses_","ann_")}export{L as otelTracesHandler,A as toCloudEventAttributes,f as toSource};
1	+ import{envConfig as c}from"../../../../config/env-config.js";import{getClientIp as v}from"../../utils/get-client-ip.js";import{PRODUCT_NAME as d}from"../../../../config/product-gates.js";import{toAttribute as t,getAttributesStringValue as g}from"./otlp.js";const p=c.OTEL_TRACES_URL\|\|"https://otel.cloud.redocly.com/v1/traces";async function T(e){const o=await e.req.json(),r=m(e),s={resourceSpans:o.resourceSpans.map(n=>{const u=g(n.resource.attributes.find(i=>i.key==="session_id"));return u?{...n,resource:{...n.resource,attributes:[...n.resource.attributes,...y(r,u)]},scopeSpans:n.scopeSpans.map(i=>({...i,spans:i.spans.map(a=>({...a,attributes:a.name.startsWith("event.")&&a.name!=="event.undefined"?A(a,r,u):a.attributes}))}))}:n})};return await fetch(p,{method:"POST",headers:{"Content-Type":"application/json"},body:JSON.stringify(s)}),e.newResponse(null,200,{})}function m(e){const o=e.get("auth")?.claims?.id\|\|e.get("auth")?.claims?.sub,r=v(e.req.raw)\|\|e.req.raw.context.remoteAddr?.hostname,s=e.req.raw.headers.get("user-agent"),n=e.req.raw.headers.get("accept-language"),u=n?.split(",")[0];return{userId:o,clientIp:r,userAgent:s\|\|void 0,acceptLanguage:n\|\|void 0,locale:u}}function y(e,o){const r=[t("redocly.organization.id",c.ORGANIZATION_ID),t("redocly.organization.slug",c.ORGANIZATION_SLUG),t("redocly.project.id",c.PROJECT_ID),t("redocly.project.slug",c.PROJECT_SLUG),t("redocly.product.type",d.toLowerCase()),t("redocly.client.ip",e.clientIp),t("redocly.client.userAgent",e.userAgent),t("redocly.client.acceptLanguage",e.acceptLanguage),t("redocly.client.locale",e.locale)];return e.userId?r.push(t("redocly.user.id",e.userId)):r.push(t("redocly.anonymous.id",l(o))),r.filter(s=>s!==void 0)}function f(e,o,r){const s=b(e.userId,o),n=new Date(Math.floor(Number(r.startTimeUnixNano)/1e6)).toISOString(),u=r.attributes.find(_=>_.key==="cloudevents.event_data.uri"),i=u&&"stringValue"in u.value?[t("cloudevents.event_data.page.uri",u.value.stringValue)]:[];return[t("cloudevents.event_spec_version","1.0"),t("cloudevents.event_object","event"),t("cloudevents.event_origin","realm-ui"),t("cloudevents.event_source",s.uri),t("cloudevents.event_source_details.id",s.id),t("cloudevents.event_source_details.object",s.object),t("cloudevents.event_source_details.uri",s.uri),t("cloudevents.event_data_content_type","application/json; charset=utf-8"),t("cloudevents.event_organization_id",c.ORGANIZATION_ID),t("cloudevents.event_organization_slug",c.ORGANIZATION_SLUG),t("cloudevents.event_project_id",c.PROJECT_ID),t("cloudevents.event_project_slug",c.PROJECT_SLUG),t("cloudevents.event_product_type",d.toLowerCase()),t("cloudevents.event_session_id",o),t("cloudevents.event_time",n),t("cloudevents.event_client.ip",e.clientIp),t("cloudevents.event_client.user_agent",e.userAgent),t("cloudevents.event_client.accept_language",e.acceptLanguage),t("cloudevents.event_client.locale",e.locale),...i]}function A(e,o,r){return[...e.attributes.filter(n=>{const u="stringValue"in n.value&&n.value.stringValue==="",i=/cloudevents\.event_source_details\..+/.test(n.key);return!(u\|\|i)}),...f(o,r,e)].filter(n=>n!==void 0)}function b(e,o){return e?{id:e,object:"user",uri:`${c.MAIN_API_URL}/users/${e}`}:{id:l(o),object:"anonymous",uri:`${c.MAIN_API_URL}/anonymous/${l(o)}`}}function l(e){return e.replace("ses_","ann_")}export{T as otelTracesHandler,A as toCloudEventAttributes,b as toSource};

package/dist/server/web-server/routes/page-data.js CHANGED Viewed

	@@ -1 +1 @@
1	- import{DEV_LOGIN_SLUG as w,ServerRoutes as N}from"../../../constants/common.js";import{CACHE_CONTROL_NO_CACHE_HEADER_VALUE as a,DEFAULT_TITLE as O}from"../../constants/common.js";import{findInIterable as U}from"../../../utils/collection/find-in-iterable.js";import{removeTrailingSlash as $}from"../../../utils/url/remove-trailing-slash.js";import{~~isDevelopMode~~ as F}from"~~../../utils~~/~~envs/is~~-~~develop-mode~~.js";import{canAccessResource as q,filterDataByAccessDeep as A,isResourcePubliclyAccessible as B}from"../../utils/rbac.js";import{getServerProps as H}from"../../ssr/index.js";import{readSharedData as V}from"../../utils/index.js";import{getRedirectLoginUrl as G}from"../utils/get-redirect-login-url.js";import{processRedirects as M}from"./helpers/process-redirects.js";import{removeErrorDetails as k}from"../utils/remove-error-details.js";import{telemetry as K}from"../../telemetry/index.js";function ae(e,s){return async(t,m)=>{const l=t.get("logger"),{req:u}=t,{pathname:d}=new URL(u.url),{seo:f,ssoDirect:h}=e.getConfig(),i=f?.title\|\|O;if(e?.compilationErrors?.length&&F())return t.json({templateId:"compilation-error",props:{compilationErrors:e?.compilationErrors},sharedDataIds:{}},500,{"Cache-Control":a});const p=d.match(/page-data(.)data.json$/);if(!p)return m();const c=decodeURI(p[1]),n=c==="/index/"?"/":$(c),o=e.getRouteBySlug(n,{followRedirect:!1})\|\|U(e.routesBySlug.values(),r=>r.hasClientRoutes&&c.startsWith(r.slug));if(~~c===N.~~OIDC_CALLBACK+"/")return t.json({templateId:"403OIDC",sharedDataIds:{},props:{seo:{title:`${i} - Forbidden`}}},200,{"Cache-Control":a});const{isAuthenticated:C,teams:D,claims:{name:S,picture:b,email:I}}=t.get("auth"),R={isAuthenticated:C,email:I,teams:D},g={isAuthenticated:C,name:S,picture:b,email:I,teams:D},E=e.getRedirect(n);if(E){const r=M({redirect:E}).location;return K.sendRedirectMessage({from:n,templateId:"404"}),t.json({templateId:"404",redirectTo:r,sharedDataIds:{},props:{}},301,{"Cache-Control":a})}if(!o){const r=e.getRouteBySlug(n,{followRedirect:!0});return l.error(`Page not found: ${d}`),t.json({templateId:"404",redirectTo:r?.slug,sharedDataIds:{},props:{seo:{title:`${i} - Not Found`}},userData:g},404,{"Cache-Control":a})}if(l.verbose(`Page viewed: ${o.slug}`),!q(o,R,e.config.rbac,e.config.requiresLogin)&&o.slug!==w){if(C)return t.json({templateId:"403",sharedDataIds:{},props:{seo:{title:`${i} - Forbidden`}},userData:g},403,{"Cache-Control":a});const r=Object.keys(h\|\|{}).length>0;return t.json({templateId:"404",sharedDataIds:{},props:{seo:{title:`${i} - Not Found`}},userData:g,...r?{redirectTo:G(e,o.slug)}:{}},r?401:404,{"Cache-Control":a})}const j=A(o.versions,R,e.config.rbac,e.config.requiresLogin),v=e.routesSharedData.get(o.slug)\|\|{},T=await s(o),_=await H(o,t,T,e),{sharedDataIds:y,...L}=_,P={templateId:o.templateId,versions:j,sharedDataIds:{...v,...y\|\|{}},props:~~process~~.~~env.NODE_ENV==="production"~~?k(L):L,slug:o.slug,userData:g,isPublic:B(o,e.config)};return t.json(P,200,{"Cache-Control":a})}}function se(e){return async(s,t)=>{const m=s.get("logger"),{req:l}=s,{pathname:u}=new URL(l.url),d=u.match(/\/page-data\/shared\/(.)\.json/);if(!d)return t();const f=decodeURIComponent(d[1]),h=await V(f,e.outdir),{isAuthenticated:i,teams:p,claims:{email:c}}=s.get("auth"),n=A(h,{isAuthenticated:i,email:c,teams:p},e.config.rbac,e.config.requiresLogin);return n?s.json(n,200,{"Cache-Control":a}):(m.error(`Shared data not found: ${u}`),s.text("Not Found",404,{"Cache-Control":a}))}}export{ae as pageDataHandler,se as sharedPageDataHandler};
1	+ import{DEV_LOGIN_SLUG as U,ServerRoutes as $}from"../../../constants/common.js";import{CACHE_CONTROL_NO_CACHE_HEADER_VALUE as a,DEFAULT_TITLE as F}from"../../constants/common.js";import{findInIterable as O}from"../../../utils/collection/find-in-iterable.js";import{removeTrailingSlash as N}from"../../../utils/url/remove-trailing-slash.js";import{envConfig as E}from"../../../config/env-config.js";import{canAccessResource as q,filterDataByAccessDeep as b,isResourcePubliclyAccessible as B}from"../../utils/rbac.js";import{getServerProps as H}from"../../ssr/index.js";import{readSharedData as G}from"../../utils/index.js";import{getRedirectLoginUrl as M}from"../utils/get-redirect-login-url.js";import{processRedirects as V}from"./helpers/process-redirects.js";import{removeErrorDetails as k}from"../utils/remove-error-details.js";import{telemetry as K}from"../../telemetry/index.js";function ae(e,s){return async(o,h)=>{const l=o.get("logger"),{req:u}=o,{pathname:c}=new URL(u.url),{seo:g,ssoDirect:m}=e.getConfig(),n=g?.title\|\|F;if(e?.compilationErrors?.length&&E.isDevelopMode)return o.json({templateId:"compilation-error",props:{compilationErrors:e?.compilationErrors},sharedDataIds:{}},500,{"Cache-Control":a});const p=c.match(/page-data(.)data.json$/);if(!p)return h();const i=decodeURI(p[1]),d=i==="/index/"?"/":N(i),t=e.getRouteBySlug(d,{followRedirect:!1})\|\|O(e.routesBySlug.values(),r=>r.hasClientRoutes&&i.startsWith(r.slug));if(i===$.OIDC_CALLBACK+"/")return o.json({templateId:"403OIDC",sharedDataIds:{},props:{seo:{title:`${n} - Forbidden`}}},200,{"Cache-Control":a});const{isAuthenticated:C,teams:D,claims:{name:j,picture:v,email:I}}=o.get("auth"),R={isAuthenticated:C,email:I,teams:D},f={isAuthenticated:C,name:j,picture:v,email:I,teams:D},L=e.getRedirect(d);if(L){const r=V({redirect:L}).location;return K.sendRedirectMessage([{object:"redirect",from:d,templateId:"404"}]),o.json({templateId:"404",redirectTo:r,sharedDataIds:{},props:{}},301,{"Cache-Control":a})}if(!t){const r=e.getRouteBySlug(d,{followRedirect:!0});return l.error(`Page not found: ${c}`),o.json({templateId:"404",redirectTo:r?.slug,sharedDataIds:{},props:{seo:{title:`${n} - Not Found`}},userData:f},404,{"Cache-Control":a})}if(l.verbose(`Page viewed: ${t.slug}`),!q(t,R,e.config.rbac,e.config.requiresLogin)&&t.slug!==U){if(C)return o.json({templateId:"403",sharedDataIds:{},props:{seo:{title:`${n} - Forbidden`}},userData:f},403,{"Cache-Control":a});const r=Object.keys(m\|\|{}).length>0;return o.json({templateId:"404",sharedDataIds:{},props:{seo:{title:`${n} - Not Found`}},userData:f,...r?{redirectTo:M(e,t.slug)}:{}},r?401:404,{"Cache-Control":a})}const A=b(t.versions,R,e.config.rbac,e.config.requiresLogin),P=e.routesSharedData.get(t.slug)\|\|{},T=await s(t),y=await H(t,o,T,e),{sharedDataIds:_,...S}=y,w={templateId:t.templateId,versions:A,sharedDataIds:{...P,..._\|\|{}},props:E.isProductionEnv?k(S):S,slug:t.slug,userData:f,isPublic:B(t,e.config)};return o.json(w,200,{"Cache-Control":a})}}function se(e){return async(s,o)=>{const h=s.get("logger"),{req:l}=s,{pathname:u}=new URL(l.url),c=u.match(/\/page-data\/shared\/(.)\.json/);if(!c)return o();const g=decodeURIComponent(c[1]),m=await G(g,e.outdir),{isAuthenticated:n,teams:p,claims:{email:i}}=s.get("auth"),t=g==="scorecard"?m:b(m,{isAuthenticated:n,email:i,teams:p},e.config.rbac,e.config.requiresLogin);return t?s.json(t,200,{"Cache-Control":a}):(h.error(`Shared data not found: ${u}`),s.text("Not Found",404,{"Cache-Control":a}))}}export{ae as pageDataHandler,se as sharedPageDataHandler};

package/dist/server/web-server/routes/path-prefix-redirect.js CHANGED Viewed

	@@ -1 +1 @@
1	- import{getPathPrefix as i}from"@redocly/theme/core/utils";async function c(e,n){const t=new URL(e.req.url),r=i(),o=~~process~~.~~env.NODE_ENV==="production"~~?301:302;if(r&&t.pathname==="/")return e.newResponse(null,o,{Location:r});await n()}export{c as pathPrefixRedirectHandler};
1	+ import{getPathPrefix as i}from"@redocly/theme/core/utils";import{envConfig as a}from"../../../config/env-config.js";async function p(e,r){const t=new URL(e.req.url),n=i(),o=a.isProductionEnv?301:302;if(n&&t.pathname==="/")return e.newResponse(null,o,{Location:n});await r()}export{p as pathPrefixRedirectHandler};

package/dist/server/web-server/utils.d.ts CHANGED Viewed

@@ -12,10 +12,10 @@ export declare function handleErrorPageRender(ctx: Context, store: Store, option
     };
 }, statusCode: ClientErrorStatusCode, templateId?: string): Promise<Response>;
 export declare function getLoginUrlWithRedirect(redirectTo: string): string;
-export declare function handleUnauthorizedAsset(ctx: Context): Promise<Response & import("hono").TypedResponse<"Forbidden", 100 | -1 | 500 | 400 | 200 | 302 | 401 | 300 | 403 | 301 | 102 | 103 | 201 | 202 | 203 | 206 | 207 | 208 | 226 | 303 | 305 | 306 | 307 | 308 | 402 | 404 | 405 | 406 | 407 | 408 | 409 | 410 | 411 | 412 | 413 | 414 | 415 | 416 | 417 | 418 | 421 | 422 | 423 | 424 | 425 | 426 | 428 | 429 | 431 | 451 | 501 | 502 | 503 | 504 | 505 | 506 | 507 | 508 | 510 | 511, "text">>;
+export declare function handleUnauthorizedAsset(ctx: Context): Promise<Response & import("hono").TypedResponse<"Forbidden", 100 | -1 | 500 | 400 | 200 | 302 | 401 | 403 | 300 | 301 | 102 | 103 | 201 | 202 | 203 | 206 | 207 | 208 | 226 | 303 | 305 | 306 | 307 | 308 | 402 | 404 | 405 | 406 | 407 | 408 | 409 | 410 | 411 | 412 | 413 | 414 | 415 | 416 | 417 | 418 | 421 | 422 | 423 | 424 | 425 | 426 | 428 | 429 | 431 | 451 | 501 | 502 | 503 | 504 | 505 | 506 | 507 | 508 | 510 | 511, "text">>;
 export declare function handleUnauthorizedApiRequest(ctx: Context): Response & import("hono").TypedResponse<{
     message: string;
-}, 100 | -1 | 500 | 400 | 200 | 302 | 401 | 300 | 403 | 301 | 102 | 103 | 201 | 202 | 203 | 206 | 207 | 208 | 226 | 303 | 305 | 306 | 307 | 308 | 402 | 404 | 405 | 406 | 407 | 408 | 409 | 410 | 411 | 412 | 413 | 414 | 415 | 416 | 417 | 418 | 421 | 422 | 423 | 424 | 425 | 426 | 428 | 429 | 431 | 451 | 501 | 502 | 503 | 504 | 505 | 506 | 507 | 508 | 510 | 511, "json">;
+}, 100 | -1 | 500 | 400 | 200 | 302 | 401 | 403 | 300 | 301 | 102 | 103 | 201 | 202 | 203 | 206 | 207 | 208 | 226 | 303 | 305 | 306 | 307 | 308 | 402 | 404 | 405 | 406 | 407 | 408 | 409 | 410 | 411 | 412 | 413 | 414 | 415 | 416 | 417 | 418 | 421 | 422 | 423 | 424 | 425 | 426 | 428 | 429 | 431 | 451 | 501 | 502 | 503 | 504 | 505 | 506 | 507 | 508 | 510 | 511, "json">;
 /**
  * Normalize the IP address to an IPv4 address.
  * @param address - The IP address to normalize.

package/dist/server/workers/mcp-tool-worker-pool.d.ts ADDED Viewed

@@ -0,0 +1,4 @@
+import { WorkerPool } from './worker-pool.js';
+export declare const MCP_TOOL_WORKER_KEY = "executeMcpTool";
+export declare const mcpToolWorkers: WorkerPool;
+//# sourceMappingURL=mcp-tool-worker-pool.d.ts.map

package/dist/server/workers/mcp-tool-worker-pool.js ADDED Viewed

	@@ -0,0 +1 @@
1	+ import{getAllowedEnvs as o}from"../utils/envs/get-api-route-allowed-env-variables.js";import{WorkerPool as r}from"./worker-pool.js";const s="executeMcpTool",e=5,c=new r({workerScript:"./mcp-tool-worker",minWorkers:1,maxWorkers:e,workerType:"process",forkOpts:{env:{...o()},stdio:"inherit"},lazy:!0});export{s as MCP_TOOL_WORKER_KEY,c as mcpToolWorkers};

package/dist/server/workers/mcp-tool-worker.d.ts ADDED Viewed

	@@ -0,0 +1,2 @@
1	+ export {};
2	+ //# sourceMappingURL=mcp-tool-worker.d.ts.map

package/dist/server/workers/mcp-tool-worker.js ADDED Viewed

	@@ -0,0 +1 @@
1	+ import o from"workerpool";import{executeMcpTool as r}from"../plugins/mcp/workers/execute-mcp-tool.js";import{MCP_TOOL_WORKER_KEY as m}from"./mcp-tool-worker-pool.js";o.worker({[m]:r});

package/dist/server/workers/types.d.ts CHANGED Viewed

@@ -1,9 +1,11 @@
 import type { ApiRoutesWorkerParams, ApiRoutesWorkerResponse } from '../types/plugins/api-routes.js';
 import type { RenderPayload } from '../../types/ssr.js';
-import type { ScorecardsWorkerParams, ScorecardsWorkerResponse } from '../plugins/scorecards/workers/scorecards.js';
+import type { ScorecardsWorkerParams, ScorecardsWorkerResponse } from '../types/plugins/scorecards.js';
+import type { McpToolWorkerParams, McpToolWorkerResponse } from '../plugins/mcp/types.js';
 import type { SCORECARDS_WORKER_KEY } from './scorecards-worker-pool.js';
 import type { API_ROUTES_WORKER_KEY } from './api-routes-worker-pool.js';
 import type { SSR_WORKER_KEY } from './ssr-worker-pool.js';
+import type { MCP_TOOL_WORKER_KEY } from './mcp-tool-worker-pool.js';
 export type SsrWorkerResponse = {
     html: string;
     statusCode: 200 | 500;
@@ -22,6 +24,10 @@ export type WorkerTypeMapping = {
         params: [ScorecardsWorkerParams];
         response: ScorecardsWorkerResponse;
     };
+    [MCP_TOOL_WORKER_KEY]: {
+        params: [McpToolWorkerParams];
+        response: McpToolWorkerResponse;
+    };
 };
 export type WorkerParams<T extends keyof WorkerTypeMapping> = WorkerTypeMapping[T]['params'];
 export type WorkerResponse<T extends keyof WorkerTypeMapping> = WorkerTypeMapping[T]['response'];

package/dist/server/workers/worker-pool.js CHANGED Viewed

	@@ -1 +1 @@
1	- import s from"workerpool";import{~~isDevelopMode~~ as l}from"~~../utils~~/~~envs/is~~-~~develop-mode~~.js";import{fromCurrentDir as m}from"../utils/paths.js";class p{#t=null;#o;constructor(o){this.#o=o,this.#o.lazy\|\|(this.#t=this.#i())}#i(){const{workerScript:o,lazy:e,...i}=this.#o;let t=o;return!t.endsWith(".js")&&!t.endsWith(".mjs")&&(t=m(import.meta.url,`${t}.${l()?"js":"mjs"}`)),s.pool(t,{...i})}#r(){return this.#t\|\|(this.#t=this.#i()),this.#t}async exec(o,e,i){let r=this.#r().exec(o,e);return i?.timeout&&(r=r.timeout(i.timeout)),await r}async terminate(){this.#t&&(await this.#t.terminate(),this.#t=null)}}export{p as WorkerPool};
1	+ import s from"workerpool";import{envConfig as l}from"../../config/env-config.js";import{fromCurrentDir as n}from"../utils/paths.js";class f{#t=null;#o;constructor(o){this.#o=o,this.#o.lazy\|\|(this.#t=this.#i())}#i(){const{workerScript:o,lazy:e,...i}=this.#o;let t=o;return!t.endsWith(".js")&&!t.endsWith(".mjs")&&(t=n(import.meta.url,`${t}.${l.isDevelopMode?"js":"mjs"}`)),s.pool(t,{...i})}#r(){return this.#t\|\|(this.#t=this.#i()),this.#t}async exec(o,e,i){let r=this.#r().exec(o,e);return i?.timeout&&(r=r.timeout(i.timeout)),await r}async terminate(){this.#t&&(await this.#t.terminate(),this.#t=null)}}export{f as WorkerPool};

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@redocly/realm",
-  "version": "0.129.2",
+  "version": "0.130.0-custom.2",
   "description": "",
   "type": "module",
   "bin": {
@@ -23,17 +23,15 @@
     "@opentelemetry/core": "2.0.1",
     "@opentelemetry/exporter-trace-otlp-http": "0.202.0",
     "@opentelemetry/instrumentation": "0.202.0",
-    "@opentelemetry/instrumentation-document-load": "0.47.0",
-    "@opentelemetry/instrumentation-fetch": "0.202.0",
     "@opentelemetry/instrumentation-http": "0.202.0",
-    "@opentelemetry/instrumentation-xml-http-request": "0.202.0",
     "@opentelemetry/resources": "2.0.1",
     "@opentelemetry/sdk-trace-node": "2.0.1",
     "@opentelemetry/sdk-trace-web": "2.0.1",
     "@opentelemetry/semantic-conventions": "1.34.0",
-    "@redocly/ajv": "8.17.1",
-    "@redocly/openapi-core": "2.14.3",
-    "@shikijs/transformers": "^1.22.2",
+    "@redocly/ajv": "8.17.2",
+    "openapi-sampler": "1.6.2",
+    "@redocly/openapi-core": "2.17.0",
+    "@shikijs/transformers": "3.21.0",
     "@tanstack/react-query": "5.62.3",
     "@tanstack/react-table": "8.21.3",
     "@tanstack/react-virtual": "3.13.0",
@@ -56,7 +54,7 @@
     "flexsearch": "0.7.43",
     "graphql": "16.9.0",
     "gray-matter": "4.0.3",
-    "hono": "4.10.6",
+    "hono": "4.11.7",
     "htmlparser2": "8.0.2",
     "i18next": "22.4.15",
     "is-glob": "4.0.3",
@@ -67,19 +65,18 @@
     "nanoid": "5.0.9",
     "node-fetch": "3.3.1",
     "nprogress": "0.2.0",
-    "openapi-sampler": "1.6.2",
     "os-browserify": "0.3.0",
     "path-browserify": "1.0.1",
     "picomatch": "2.3.1",
-    "react": "19.2.3",
+    "react": "^19.2.4",
     "react-calendar": "5.1.0",
     "react-date-picker": "11.0.0",
-    "react-dom": "19.2.3",
-    "react-router-dom": "^6.21.1",
+    "react-dom": "^19.2.4",
+    "react-router-dom": "^6.30.3",
     "react-select": "5.10.1",
     "reactjs-popup": "2.0.6",
     "semver": "7.7.3",
-    "shiki": "1.24.4",
+    "shiki": "3.21.0",
     "simple-git": "3.20.0",
     "sitemap": "7.1.1",
     "stream-http": "3.2.0",
@@ -93,18 +90,19 @@
     "xml-crypto": "6.0.1",
     "xpath": "0.0.34",
     "yaml-ast-parser": "0.0.43",
-    "@redocly/asyncapi-docs": "1.6.1",
-    "@redocly/config": "0.41.2",
-    "@redocly/portal-legacy-ui": "0.12.0",
-    "@redocly/portal-plugin-mock-server": "0.14.1",
-    "@redocly/realm-asyncapi-sdk": "0.7.0",
-    "@redocly/theme": "0.61.1",
-    "@redocly/openapi-docs": "3.17.1",
-    "@redocly/graphql-docs": "1.6.0"
+    "zod": "^3.25.76",
+    "@redocly/config": "0.43.0-custom.0",
+    "@redocly/graphql-docs": "1.7.0-custom.0",
+    "@redocly/portal-plugin-mock-server": "0.16.0-next.0",
+    "@redocly/portal-legacy-ui": "0.14.0-next.0",
+    "@redocly/openapi-docs": "3.18.0-custom.0",
+    "@redocly/realm-asyncapi-sdk": "0.9.0-next.0",
+    "@redocly/asyncapi-docs": "1.7.0-custom.0",
+    "@redocly/theme": "0.62.0-custom.0"
   },
   "peerDependencies": {
-    "react": "19.2.3",
-    "react-dom": "19.2.3"
+    "react": "^19.2.4",
+    "react-dom": "^19.2.4"
   },
   "nx": {
     "implicitDependencies": [

package/dist/server/plugins/catalog-entities/database/mappers/create-entity-relation.js DELETED Viewed

@@ -1 +0,0 @@

- import{logger as o}from"../../../../tools/notifiers/logger.js";import{entityRelationDatabaseSchema as a}from"../../schemas/database-schemas.js";import{validateWithResult as i}from"../../utils/ajv-validator.js";function c(r){const e=i(a,r);if(!e.success)return o.warn(`Invalid database catalog entity relation, error: ${e.error}`),null;const t=e.data||{};return{id:t.id,organizationId:t.organization_id,projectId:t.project_id,sourceKey:t.source_key,targetKey:t.target_key,sourceVersion:t.source_version??null,sourceRevision:t.source_revision??null,targetVersion:t.target_version??null,targetRevision:t.target_revision??null,type:t.source_to_target_relation,createdAt:t.created_at??null,updatedAt:t.updated_at??null,object:"catalogEntityRelation"}}export{c as createEntityRelation};

package/dist/server/plugins/catalog-entities/entities/validate-entity.d.ts DELETED Viewed

@@ -1,6 +0,0 @@
-import { type EntityRelationFileSchema, type EntityBaseFileSchema } from '@redocly/config';
-import type { EntitiesCatalogConfig } from '@redocly/config';
-export declare function validateEntityRelation(relation: unknown): asserts relation is EntityRelationFileSchema;
-export declare function parseAndValidateEntity(entity: unknown, catalogConfig: EntitiesCatalogConfig): EntityBaseFileSchema;
-export declare function parseAndValidateEntities(entities: unknown[], catalogConfig: EntitiesCatalogConfig): EntityBaseFileSchema[];
-//# sourceMappingURL=validate-entity.d.ts.map

package/dist/server/plugins/catalog-entities/entities/validate-entity.js DELETED Viewed

@@ -1 +0,0 @@

- import{entityFileSchema as r,entityRelationFileSchema as d,entityBaseProperties as l}from"@redocly/config";import{createValidator as n}from"../utils/ajv-validator.js";const s=n(d,{errorPrefix:"Entity relation validation failed:",dataVar:"relation"});function p(t){s(t)}function m(t,e){const i=o(e);return n(i,{errorPrefix:"Entity validation failed:",dataVar:"entity"})(t)}function f(t,e){const i={type:"array",items:o(e)};return n(i,{errorPrefix:"Entity validation failed:",dataVar:"entity"})(t)}function o(t){const e=Object.entries(t.entityTypes??{}).map(([i,a])=>({type:"object",properties:{...l,type:{const:i},metadata:{additionalProperties:!0,...a.metadataSchema}},required:["key","title","type"],additionalProperties:!1}));return{...r,oneOf:[...r.oneOf,...e]}}export{f as parseAndValidateEntities,m as parseAndValidateEntity,p as validateEntityRelation};

package/dist/server/plugins/mcp/workers/run-api-routes-worker.d.ts DELETED Viewed

@@ -1,5 +0,0 @@
-import type { Context } from 'hono';
-import type { ApiRoute } from '../../../types';
-import type { Store } from '../../../store.js';
-export declare function runMcpWorker(route: ApiRoute, ctx: Context, store: Store): Promise<Response>;
-//# sourceMappingURL=run-api-routes-worker.d.ts.map

package/dist/server/plugins/mcp/workers/run-api-routes-worker.js DELETED Viewed

@@ -1 +0,0 @@

- import*as u from"workerpool";import{withPathPrefix as d}from"@redocly/theme/core/utils";import{TimeoutExceededError as p}from"../../../api-routes/errors/timeout-exceeded.js";import{serializeRequest as l}from"../../../api-routes/helpers/serialize-request.js";import{API_ROUTES_WORKER_KEY as f}from"../../../workers/api-routes-worker-pool.js";import{mcpWorkers as h}from"../../../workers/mcp-worker-pool.js";const w=15;async function A(o,a,t){const e=a.get("auth"),i=await t.resolveRouteStaticData(o)||{},s=d(o.slug);try{const{status:r,headers:m,body:c}=await h.exec(f,[{serverOutDir:t.serverOutDir,slug:s,requestHandlerId:o.requestHandlerId,maxResponseSizeMB:w,ctxData:{user:{teams:e.teams,email:e.claims.email,claims:e.claims,idpAccessToken:e.idpAccessToken,idpId:e.claims.idpId,isAuthenticated:e.isAuthenticated},config:t.config},staticData:{...i,props:{...i.props,routeSlug:s,outdir:t.outdir}},req:await l(a.req.raw)}]),n=c.data?Buffer.from(c.data):null;return new Response(n,{status:r,headers:m})}catch(r){throw r instanceof u.Promise.TimeoutError?new p("Timeout exceeded"):r}}export{A as runMcpWorker};

package/dist/server/utils/envs/is-build-mode.d.ts DELETED Viewed

	@@ -1,2 +0,0 @@
1	- export declare function isBuildMode(): boolean;
2	- //# sourceMappingURL=is-build-mode.d.ts.map

package/dist/server/utils/envs/is-build-mode.js DELETED Viewed

	@@ -1 +0,0 @@
1	- import{cliCommandNames as N}from"../../../constants/common.js";function o(){return process.env.REDOCLY_RUNNING_COMMAND===N.BUILD\|\|process.env.REDOCLY_RUNNING_COMMAND===N.PREPARE}export{o as isBuildMode};

package/dist/server/utils/envs/is-develop-mode.d.ts DELETED Viewed

@@ -1,7 +0,0 @@
-/**
- * Checks if the current running command is 'develop'.
- *
- * @returns {boolean} - Returns `true` if the current running command is 'develop', otherwise `false`.
- */
-export declare function isDevelopMode(): boolean;
-//# sourceMappingURL=is-develop-mode.d.ts.map

package/dist/server/utils/envs/is-develop-mode.js DELETED Viewed

	@@ -1 +0,0 @@
1	- import{cliCommandNames as e}from"../../../constants/common.js";function r(){return process.env.REDOCLY_RUNNING_COMMAND===e.DEVELOP}export{r as isDevelopMode};

package/dist/server/utils/envs/is-production-mode.d.ts DELETED Viewed

@@ -1,10 +0,0 @@
-/**
- * Checks if the current runtime environment is set to production.
- *
- * This function looks at the `REDOCLY_ENV` environment variable and returns
- * `true` if its value is `"production"`, otherwise returns `false`.
- *
- * @returns {boolean} `true` if the environment is production, otherwise `false`.
- */
-export declare function isProductionMode(): boolean;
-//# sourceMappingURL=is-production-mode.d.ts.map

package/dist/server/utils/envs/is-production-mode.js DELETED Viewed

	@@ -1 +0,0 @@
1	- import{readEnvVariable as o}from"../../utils/envs/read-env-variable.js";function i(){return o("REDOCLY_ENV")==="production"}export{i as isProductionMode};

package/dist/server/workers/mcp-worker-pool.d.ts DELETED Viewed

@@ -1,4 +0,0 @@
-import { WorkerPool } from './worker-pool.js';
-export declare const API_ROUTES_WORKER_KEY = "executeApiRoute";
-export declare const mcpWorkers: WorkerPool;
-//# sourceMappingURL=mcp-worker-pool.d.ts.map

package/dist/server/workers/mcp-worker-pool.js DELETED Viewed

	@@ -1 +0,0 @@
1	- import{getAllowedEnvs as r}from"../utils/envs/get-api-route-allowed-env-variables.js";import{WorkerPool as o}from"./worker-pool.js";const p="executeApiRoute",e=5,i=new o({workerScript:"./api-routes-worker",minWorkers:1,maxWorkers:e,workerType:"process",forkOpts:{env:{...r()},stdio:"inherit"},lazy:!0});export{p as API_ROUTES_WORKER_KEY,i as mcpWorkers};

package/dist/utils/env/is-local-development.d.ts DELETED Viewed

@@ -1,13 +0,0 @@
-/**
- * Checks if the current environment is local development.
- *
- * @param - This function takes no parameters.
- * @returns `true` if the current environment is local development, otherwise `false`.
- *
- * @example
- * ```ts
- * isLocalDevelopment();
- * // true (in local development), false (in other environments)
- */
-export declare const isLocalDevelopment: () => boolean;
-//# sourceMappingURL=is-local-development.d.ts.map

package/dist/utils/env/is-local-development.js DELETED Viewed

	@@ -1 +0,0 @@
1	- const e=()=>process.env.REDOCLY_ENV==="local";export{e as isLocalDevelopment};