@sassoftware/sas-score-mcp-serverjs 0.0.2

package/src/toolhelpers/_tableColumns.js

@@ -0,0 +1,61 @@
+/*
+ * Copyright © 2025, SAS Institute Inc., Cary, NC, USA.  All Rights Reserved.
+ * SPDX-License-Identifier: Apache-2.0
+ */
+import restafedit from '@sassoftware/restafedit';
+import getLogonPayload from './getLogonPayload.js';
+import deleteSession from './deleteSession.js';
+
+async function _tableColumns(table, server) {
+let logonPayload = await getLogonPayload();
+
+let [lib, name] = table.split('.');
+let itable = { name: name };
+if (server === 'cas') {
+  itable.caslib = lib;
+} else {
+  itable.libref = lib;
+}
+let config = {
+  source: (server === 'sas') ? 'compute' : server,
+  table: itable,
+
+  initialFetch: {
+    qs: {
+      start: 0, // Adjust for 0-based index
+      limit: 1,
+      format: true,
+      where: ''
+    }
+  }
+};
+
+
+let appControl = {};
+try {
+  appControl = await restafedit.setup(
+    logonPayload,
+    config,
+    null,/* create a sessiion */
+    {},
+    'user',
+    {}
+  );
+
+  //let tableSummary = await restafedit.getTableSummary(appControl);
+
+  await restafedit.scrollTable('first', appControl);
+  console.error(`Fetched columns for table ${table} from ${server}`);
+  let columns = {...appControl.state.columns};
+  delete columns._rowIndex;
+  delete columns._modified;
+  delete columns._index_;
+  console.error(columns);
+  await deleteSession(appControl);
+  return JSON.stringify(columns);
+} catch (e) {
+ await deleteSession(appControl);
+  return outdata = null;
+};
+}
+export default _tableColumns;

package/src/toolhelpers/_tableInfo.js

@@ -0,0 +1,72 @@
+/*
+ * Copyright © 2025, SAS Institute Inc., Cary, NC, USA.  All Rights Reserved.
+ * SPDX-License-Identifier: Apache-2.0
+ */
+import restafedit from '@sassoftware/restafedit';
+import deleteSession from './deleteSession.js';
+
+async function _tableInfo(params) {
+  let { table, lib, server, _appContext } = params;
+  
+
+  if (table.includes('.')) {
+    let parts = table.split('.');
+    lib = parts[0];
+    table = parts[1];
+  }
+  let itable = { name: table };
+  if (server === 'cas') {
+    itable.caslib = lib;
+  } else {
+    itable.libref = lib;
+  }
+  let config = {
+    casServerName: _appContext.cas,
+    computeContext: _appContext.sas,
+    source: (server === 'sas') ? 'compute' : server,
+    table: itable,
+
+    initialFetch: {
+      qs: {
+        start: 0, // Adjust for 0-based index
+        limit: 1,
+        format: true,
+        where: ''
+      }
+    }
+  };
+
+
+  let appControl = {};
+  try {
+    appControl = await restafedit.setup(
+      _appContext.logonPayload,
+      config,
+      null,/* create a sessiion */
+      {},
+      'user',
+     _appContext.storeConfig
+    );
+
+    //let tableSummary = await restafedit.getTableSummary(appControl);
+  
+    await restafedit.scrollTable('first', appControl);
+
+    let outdata = appControl.state.data.map((d) => {
+      delete d._rowIndex;
+      delete d._modified;
+      delete d._index_;
+      return d;
+    });
+    let columns = appControl.state.columns;
+    let structuredContent = { columns: columns, sampleData: outdata };
+ 
+    await deleteSession(appControl);
+    return { content: [{ type: 'text', text: JSON.stringify(structuredContent) }], structuredContent: structuredContent };
+
+  } catch (err) {;
+    await deleteSession(appControl);
+    return { isError: true, content: [{ type: 'text', text: JSON.stringify(err) }] };
+  }
+}
+export default _tableInfo;

package/src/toolhelpers/deleteSession.js

@@ -0,0 +1,13 @@
+/*
+ * Copyright © 2025, SAS Institute Inc., Cary, NC, USA.  All Rights Reserved.
+ * SPDX-License-Identifier: Apache-2.0
+ */
+async function deleteSession(appControl) {
+  let {store, session} = appControl;
+  if (store != null && session != null) {
+    await store.apiCall(session.links('delete'));
+  }
+  return;
+
+}
+export default deleteSession;

package/src/toolhelpers/getLogonPayload.js

@@ -0,0 +1,100 @@
+/*
+ * Copyright © 2025, SAS Institute Inc., Cary, NC, USA.  All Rights Reserved.
+ * SPDX-License-Identifier: Apache-2.0
+ */
+
+import getToken from "./getToken.js";
+import refreshToken from "./refreshToken.js";
+
+async function getLogonPayload(_appContext) {
+  _appContext.contexts.logonPayload = await igetLogonPayload(_appContext);
+  return _appContext.contexts.logonPayload;  
+}
+
+async function igetLogonPayload(_appContext) {
+
+  // Use cached logonPayload if available
+  // This will cause timeouts if the token expires
+  if (_appContext.logonPayload != null && _appContext.tokenRefresh !== true) {
+    console.error("[Note] Using cached logonPayload information");
+    return _appContext.contexts.logonPayload;
+  }
+
+  // Use user supplied bearer token 
+  if (_appContext.AUTHFLOW === "bearer") {
+    console.error("[Note] Using user suplied bearer token ");
+    let logonPayload = {
+      host: _appContext.VIYA_SERVER,
+      authType: "server",
+      token: _appContext.bearerToken,
+      tokenType: "Bearer",
+    };
+    return logonPayload;
+  }
+
+  // Use user supplied refresh token-
+  if (_appContext.AUTHFLOW === "refresh") {
+    console.error("[Note] Using user supplied refresh token"); 
+    let token = await refreshToken(_appContext,{token: _appContext.refreshToken, host: _appContext.VIYA_SERVER});
+    let logonPayload = {
+      host: _appContext.VIYA_SERVER,
+      authType: "server",
+      token: token,
+      tokenType: "Bearer",
+    };
+
+    return logonPayload;
+  }
+  
+  if (_appContext.AUTHFLOW === "token") {
+    console.error("[Note] Using token supplied by user");
+    let logonPayload = {
+      host: _appContext.VIYA_SERVER,
+      authType: "server",
+      token: _appContext.TOKEN,
+      tokenType: "Bearer",
+    };
+    return logonPayload;
+  }
+ 
+  if (_appContext.AUTHFLOW === "none") {
+    console.error(
+      "[Note] No authentication flow selected. Proceeding without authentication."
+    );
+    let logonPayload = {
+      host: _appContext.VIYA_SERVER,
+      authType: "none",
+    };
+    return logonPayload;
+  }
+
+  if (_appContext.PASSWORDAUTHFLOW === "password") {
+    let logonPayload = {
+      host: _appContext.VIYA_SERVER,
+      authType: "password",
+      user: _appContext.USERNAME,
+      password: _appContext.PASSWORD,
+      clientID: _appContext.CLIENTIDPW,
+      clientSecret: _appContext.CLIENTSECRETPW,
+    };
+
+    return logonPayload;
+  }
+
+  // sascli auth flow - create from credentials file
+  try {
+    let { host, token } = await getToken(_appContext)
+    console.error("[Note] got refresh token from getToken() for host ", host);
+    let logonPayload = {
+      host: host,
+      authType: "server",
+      token: token,
+      tokenType: "Bearer",
+    };
+    return logonPayload;
+  } catch (e) {
+    console.error("[Error].... Error getting token: ", e);
+    return null;
+  }
+}
+export default getLogonPayload;

package/src/toolhelpers/getOpts.js

@@ -0,0 +1,43 @@
+/**
+ * Copyright © 2025, SAS Institute Inc., Cary, NC, USA.  All Rights Reserved.
+ * SPDX-License-Identifier: Apache-2.0
+ */
+/**
+ * Helper function to get TLS options(for the app server) from specified directory
+ * signed certificates 
+ * for testing you can use mkcert
+ * if this function return a null, coreehttp will create unsigned certs
+ * @param {Object} _appContext - Application context containing SSLCERT property
+ */
+import fs from 'fs';
+function getOpts(_appContext) {
+    
+     if (_appContext.tlsOpts != null) {
+        return _appContext.tlsOpts;
+    }
+    let tlsdir = _appContext.SSLCERT;
+    if (tlsdir == null || tlsdir === 'NONE') {
+        return null;
+    }
+
+    console.error("[Note] Using TLS dir: " + tlsdir);
+    if (fs.existsSync(tlsdir) === false) {
+        console.error("[Warning] Specified TLS dir does not exist: " + tlsdir);
+        return null;
+    }
+
+    let listOfFiles = fs.readdirSync(tlsdir);
+    console.error("[Note] TLS/SSL files found: " + listOfFiles);
+    let options = {};
+    for(let i=0; i < listOfFiles.length; i++) {
+        let fname = listOfFiles[i];
+        let name = tlsdir + '/' + listOfFiles[i];
+        let key = fname.split('.')[0];
+        options[key] = fs.readFileSync(name, { encoding: 'utf8' });
+    }
+    console.error('TLS FILES', Object.keys(options));
+    _appContext.tlsOpts = options;
+    return options;
+   
+}
+export default getOpts;

package/src/toolhelpers/getOptsViya.js

@@ -0,0 +1,38 @@
+/**
+ * Copyright © 2025, SAS Institute Inc., Cary, NC, USA.  All Rights Reserved.
+ * SPDX-License-Identifier: Apache-2.0
+ */
+import fs from 'fs';
+function getOptsViya(_appContext) {
+    
+     if (_appContext.contexts.viyaCert != null) {
+        console.error('[Note] Using cached viyaOpts');
+        return _appContext.contexts.viyaCert;
+    }
+    let tlsdir = _appContext.VIYACERT;
+    if (tlsdir == null || tlsdir === 'NONE') {
+        return {};
+    }
+
+    console.error(`[Note] Using VIYACERT dir: ` + tlsdir);
+    if (fs.existsSync(tlsdir) === false) {
+        console.error("[Warning] Specified VIYACERT dir does not exist: " + tlsdir);
+        return {};
+    }
+
+    let listOfFiles = fs.readdirSync(tlsdir);
+    console.error("[Note] TLS/SSL files found: " + listOfFiles);
+    let options = {};
+    for(let i=0; i < listOfFiles.length; i++) {
+        let fname = listOfFiles[i];
+        let name = tlsdir + '/' + listOfFiles[i];
+        let key = fname.split('.')[0];
+        console.error('Reading TLS file: ' + name + ' as key: ' + key);
+        options[key] = fs.readFileSync(name, { encoding: 'utf8' });
+    }
+    console.error('VIYACERT FILES', Object.keys(options));
+    _appContext.contexts.viyaCert = options;
+    return options;
+   
+}
+export default getOptsViya;

package/src/toolhelpers/getStoreOpts.js

@@ -0,0 +1,18 @@
+/**
+ * Copyright © 2025, SAS Institute Inc., Cary, NC, USA.  All Rights Reserved.
+ * SPDX-License-Identifier: Apache-2.0
+ */
+import getOptsViya from './getOptsViya.js';
+
+function getStoreOpts(_appContext) {
+  
+  let opts = getOptsViya(_appContext);
+
+  
+  let storeOpts = {
+    casProxy: true,
+    httpOptions: { ...opts, rejectUnauthorized: true }
+  }
+  return storeOpts;
+}
+export default getStoreOpts;

package/src/toolhelpers/getToken.js

@@ -0,0 +1,40 @@
+/*
+ * Copyright © 2025, SAS Institute Inc., Cary, NC, USA.  All Rights Reserved.
+ * SPDX-License-Identifier: Apache-2.0
+ */
+import fs from 'fs';
+import os from 'os';
+import refreshToken from './refreshToken.js';
+async function getToken(_appContext) {
+  let homedir = os.homedir();
+
+  if (_appContext.SAS_CLI_CONFIG != null) {
+    homedir = _appContext.SAS_CLI_CONFIG;
+  }
+
+  let sep = (os.platform() === 'win32') ? '\\' : '/';
+  let credentials = homedir + sep + '.sas' + sep + 'credentials.json';
+  let url = homedir + sep + '.sas' + sep + 'config.json';
+  console.error('[Note] Using credentials file: ' + credentials);
+  console.error('[Note] Using config file: ' + url);
+
+  try {
+
+    let j = fs.readFileSync(credentials, 'utf8');
+    let js = JSON.parse(j);
+    let profile = (_appContext.SAS_CLI_PROFILE == null || _appContext.SAS_CLI_PROFILE.toLowerCase() === 'default')
+      ? 'Default' : _appContext.SAS_CLI_PROFILE;
+    let refresh_token = js[profile]['refresh-token'];
+    j = fs.readFileSync(url, 'utf8');
+    js = JSON.parse(j);
+    let host = js[profile]['sas-endpoint'];
+
+    let token = await refreshToken(_appContext, { token: refresh_token, host: host });
+    return { host, token };
+  } catch (e) {
+    console.error(e);
+    throw '[Error] Failed to read credentials/config file: ' + e;
+  }
+
+}
+export default getToken;

package/src/toolhelpers/refreshToken.js

@@ -0,0 +1,48 @@
+ /*
+ * Copyright © 2025, SAS Institute Inc., Cary, NC, USA.  All Rights Reserved.
+ * SPDX-License-Identifier: Apache-2.0
+ */
+ import { Agent, fetch } from 'undici';
+ import getOpts from './getOpts.js';
+ async function refreshToken(_appContext,params) {
+  let {host, token} = params;
+    const url = `${host}/SASLogon/oauth/token`;
+    let opts = getOpts(_appContext);
+
+    const agent = new Agent({
+      connect: opts
+    });
+    
+    const body = new URLSearchParams({
+      grant_type: 'refresh_token',
+      refresh_token: token,
+      client_id: 'sas.cli'
+    });
+    
+    try {
+      const response = await fetch(url, {
+        method: 'POST',
+        headers: {
+          'Accept': 'application/json',
+          'Content-Type': 'application/x-www-form-urlencoded',
+          dispatcher: agent
+        },
+        body: body.toString()
+      });
+
+      if (!response.ok) {
+        const error = await response.text();
+        console.error('[Error] Failed to refresh token: ', error);
+        throw new Error(error);
+      }
+
+      const data = await response.json();
+      
+      return data.access_token;
+    } catch (err) {
+      console.error('[Error] Failed to refresh token: ', err);
+      throw err;
+    }
+  }
+  
+  export default refreshToken;

package/test/README.md

@@ -0,0 +1,63 @@
+# MCP API Tests
+
+This directory contains tests that use direct HTTP calls to test the MCP protocol and tools.
+
+## Running Tests
+
+### List Libraries Test
+
+Test the `list-libraries` tool using raw HTTP POST requests to the MCP endpoint:
+
+**Prerequisites:**
+1. Start the MCP server in HTTP mode:
+```bash
+npm start
+# Server should be running at http://localhost:8080/mcp
+```
+
+2. In a separate terminal, run the test:
+```bash
+node test/listLibraries.test.js
+```
+
+This test will:
+1. Make HTTP POST requests to http://localhost:8080/mcp
+2. Use JSON-RPC 2.0 protocol format
+3. Call the `list-libraries` tool with various parameters
+4. Verify the responses
+
+### Test Scenarios
+
+The test covers:
+- ✓ Connecting to MCP server
+- ✓ Listing available tools
+- ✓ List CAS libraries with default parameters
+- ✓ List CAS libraries with custom limit
+- ✓ List SAS libraries
+- ✓ List libraries with pagination
+- ✓ Server parameter normalization (CAS → cas)
+
+## Prerequisites
+
+Make sure you have:
+- Node.js >= 22.16.0
+- Valid `.env` file with SAS Viya credentials
+- `@modelcontextprotocol/sdk` installed
+
+## Environment Setup
+
+The test requires environment variables for SAS Viya connection:
+```
+VIYA_SERVER=https://your-viya-server.com
+CLIENTID=your-client-id
+CLIENTSECRET=your-client-secret
+```
+
+## Output
+
+The test will display:
+- Connection status
+- Tool discovery results
+- Each test scenario with pass/fail status
+- Response data from each call
+- Final summary of passed/failed tests