npm - @stackable-labs/mcp-app-extension - Versions diffs - 0.3.1 → 0.4.1 - Mend

@stackable-labs/mcp-app-extension 0.3.1 → 0.4.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (8) hide show

package/dist/chunk-4XCX3LVH.js ADDED Viewed

@@ -0,0 +1,73 @@
+#!/usr/bin/env node
+import { mkdir, writeFile, readFile } from 'fs/promises';
+import { join } from 'path';
+import { homedir } from 'os';
+// ../../lib/contracts/src/permissions.ts
+var SUPER_ROLE = {
+  ADMIN: "org:super_admin"
+};
+var ORG_ROLE = {
+  ADMIN: "org:admin",
+  OWNER: "org:owner"};
+var EDITOR_ROLES = [
+  SUPER_ROLE.ADMIN,
+  ORG_ROLE.ADMIN,
+  ORG_ROLE.OWNER
+];
+[
+  ...Object.values(SUPER_ROLE),
+  ...Object.values(EDITOR_ROLES)
+];
+// ../../lib/utils-auth/src/constants.ts
+var STANDALONE_CLIENT = {
+  CLI: "@stackable-labs/cli-app-extension",
+  MCP: "@stackable-labs/mcp-app-extension"
+};
+Object.values(STANDALONE_CLIENT);
+// ../../lib/utils-auth/src/index.ts
+var AUTH_DIR = join(homedir(), ".stackable");
+join(AUTH_DIR, "auth.json");
+join(AUTH_DIR, "mcp-auth.json");
+var resolveAuthFile = (filename) => join(AUTH_DIR, filename ?? "auth.json");
+var readAuthState = async (filename) => {
+  try {
+    const content = await readFile(resolveAuthFile(filename), "utf8");
+    return JSON.parse(content);
+  } catch {
+    return null;
+  }
+};
+var writeAuthState = async (state, filename) => {
+  await mkdir(AUTH_DIR, { recursive: true, mode: 448 });
+  await writeFile(resolveAuthFile(filename), JSON.stringify(state, null, 2), { mode: 384 });
+};
+var decodeJwtPayload = (token) => {
+  try {
+    const [, payload] = token.split(".");
+    if (!payload) {
+      return null;
+    }
+    const json = Buffer.from(payload, "base64url").toString("utf8");
+    return JSON.parse(json);
+  } catch {
+    return null;
+  }
+};
+var getToken = async (filename) => {
+  const state = await readAuthState(filename);
+  if (!state) {
+    throw new Error("Not authenticated. Run `stackable-app-extension auth login` first.");
+  }
+  const payload = decodeJwtPayload(state.token);
+  if (payload?.exp && typeof payload.exp === "number") {
+    if (Date.now() >= payload.exp * 1e3) {
+      throw new Error("Session expired. Run `stackable-app-extension auth login` to re-authenticate.");
+    }
+  }
+  return state.token;
+};
+export { STANDALONE_CLIENT, getToken, writeAuthState };

package/dist/chunk-6EMXRSXY.js ADDED Viewed

@@ -0,0 +1,72 @@
+import { mkdir, writeFile, readFile } from 'fs/promises';
+import { join } from 'path';
+import { homedir } from 'os';
+// ../../lib/utils-auth/src/constants.ts
+var STANDALONE_CLIENT = {
+  CLI: "@stackable-labs/cli-app-extension",
+  MCP: "@stackable-labs/mcp-app-extension"
+};
+Object.values(STANDALONE_CLIENT);
+// ../../lib/contracts/src/permissions.ts
+var SUPER_ROLE = {
+  ADMIN: "org:super_admin"
+};
+var ORG_ROLE = {
+  ADMIN: "org:admin",
+  OWNER: "org:owner"};
+var EDITOR_ROLES = [
+  SUPER_ROLE.ADMIN,
+  ORG_ROLE.ADMIN,
+  ORG_ROLE.OWNER
+];
+[
+  ...Object.values(SUPER_ROLE),
+  ...Object.values(EDITOR_ROLES)
+];
+// ../../lib/utils-auth/src/index.ts
+var AUTH_DIR = join(homedir(), ".stackable");
+join(AUTH_DIR, "auth.json");
+join(AUTH_DIR, "mcp-auth.json");
+var resolveAuthFile = (filename) => join(AUTH_DIR, filename ?? "auth.json");
+var readAuthState = async (filename) => {
+  try {
+    const content = await readFile(resolveAuthFile(filename), "utf8");
+    return JSON.parse(content);
+  } catch {
+    return null;
+  }
+};
+var writeAuthState = async (state, filename) => {
+  await mkdir(AUTH_DIR, { recursive: true, mode: 448 });
+  await writeFile(resolveAuthFile(filename), JSON.stringify(state, null, 2), { mode: 384 });
+};
+var decodeJwtPayload = (token) => {
+  try {
+    const [, payload] = token.split(".");
+    if (!payload) {
+      return null;
+    }
+    const json = Buffer.from(payload, "base64url").toString("utf8");
+    return JSON.parse(json);
+  } catch {
+    return null;
+  }
+};
+var getToken = async (filename) => {
+  const state = await readAuthState(filename);
+  if (!state) {
+    throw new Error("Not authenticated. Run `stackable-app-extension auth login` first.");
+  }
+  const payload = decodeJwtPayload(state.token);
+  if (payload?.exp && typeof payload.exp === "number") {
+    if (Date.now() >= payload.exp * 1e3) {
+      throw new Error("Session expired. Run `stackable-app-extension auth login` to re-authenticate.");
+    }
+  }
+  return state.token;
+};
+export { STANDALONE_CLIENT, getToken, writeAuthState };

package/dist/index.js CHANGED Viewed

@@ -1,4 +1,5 @@
 #!/usr/bin/env node
+import { STANDALONE_CLIENT, getToken } from './chunk-4XCX3LVH.js';
 import { StdioServerTransport } from '@modelcontextprotocol/sdk/server/stdio.js';
 import { McpServer } from '@modelcontextprotocol/sdk/server/mcp.js';
 import { IDENTITY_EVENTS, ACTIVITY_EVENTS, SURFACE_TARGETS, PERMISSIONS, CAPABILITY_PERMISSION_MAP, ALLOWED_ICONS, UI_TAGS, UI_TAG_ATTRIBUTES, tagToComponentName } from '@stackable-labs/sdk-extension-contracts';
@@ -3751,28 +3752,6 @@ pair(EXAMPLE_SNIPPETS, EXAMPLE_SNIPPETS2);
 pair(CAPABILITY_SNIPPETS, CAPABILITY_SNIPPETS2);
 pair(EVENT_SNIPPETS, EVENT_SNIPPETS2);
-// ../../lib/contracts/src/permissions.ts
-var SUPER_ROLE = {
-  ADMIN: "org:super_admin"
-};
-var ORG_ROLE = {
-  ADMIN: "org:admin",
-  OWNER: "org:owner"};
-var EDITOR_ROLES = [
-  SUPER_ROLE.ADMIN,
-  ORG_ROLE.ADMIN,
-  ORG_ROLE.OWNER
-];
-[
-  ...Object.values(SUPER_ROLE),
-  ...Object.values(EDITOR_ROLES)
-];
-// ../../lib/utils-services/src/auth/index.ts
-var STANDALONE_CLIENT = {
-  MCP: "@stackable-labs/mcp-app-extension"
-};
 // package.json
 var package_default = {
   version: "0.0.0"};
@@ -3780,6 +3759,7 @@ var package_default = {
 // src/server.ts
 var MCP_CLIENT_NAME = STANDALONE_CLIENT.MCP;
 var DEFAULT_ADMIN_API_URL = "https://api-use1.stackablelabs.io/admin";
+var DEFAULT_MCP_API_BASE_URL = "https://api-use1.stackablelabs.io/mcp";
 var textContent = (text) => ({ content: [{ type: "text", text }] });
 var errorContent = (text) => ({ content: [{ type: "text", text }], isError: true });
 var createMcpServer = (options = {}) => {
@@ -3791,31 +3771,13 @@ var createMcpServer = (options = {}) => {
     if (options.authContext?.token) {
       return options.authContext.token;
     }
-    const { readFile } = await import('fs/promises');
-    const { join } = await import('path');
-    const { homedir } = await import('os');
-    const authFile = join(homedir(), ".stackable", "auth.json");
-    let state;
     try {
-      const content = await readFile(authFile, "utf8");
-      state = JSON.parse(content);
+      return await getToken("mcp-auth.json");
     } catch {
-      throw new Error("Not authenticated. Run 'stackable-app-extension auth login' first.");
-    }
-    const [, payload] = state.token.split(".");
-    if (payload) {
-      try {
-        const decoded = JSON.parse(Buffer.from(payload, "base64url").toString("utf8"));
-        if (decoded.exp && Date.now() >= decoded.exp * 1e3) {
-          throw new Error("Session expired. Run 'stackable-app-extension auth login' to re-authenticate.");
-        }
-      } catch (err) {
-        if (err instanceof Error && err.message.includes("expired")) {
-          throw err;
-        }
-      }
     }
-    return state.token;
+    const { performOAuthFlow } = await import('./auth-AJDGAQSE.js');
+    const MCP_API_BASE_URL = process.env.MCP_API_BASE_URL ?? DEFAULT_MCP_API_BASE_URL;
+    return performOAuthFlow(`${MCP_API_BASE_URL}/.well-known/oauth-authorization-server`);
   };
   const authHeaders = (token) => ({
     authorization: `Bearer ${token}`,
@@ -3824,10 +3786,18 @@ var createMcpServer = (options = {}) => {
   });
   const callApi = async (path) => {
     const token = await getAuthToken();
-    const baseUrl = process.env.ADMIN_API_BASE_URL ?? DEFAULT_ADMIN_API_URL;
-    const res = await fetch(`${baseUrl}${path}`, { headers: authHeaders(token) });
+    const ADMIN_API_BASE_URL = process.env.ADMIN_API_BASE_URL ?? DEFAULT_ADMIN_API_URL;
+    const url = `${ADMIN_API_BASE_URL}${path}`;
+    let res;
+    try {
+      res = await fetch(url, { headers: authHeaders(token) });
+    } catch (err) {
+      return errorContent(
+        `Network error calling ${url}: ${err.message}. Check ADMIN_API_BASE_URL env var (currently "${ADMIN_API_BASE_URL}").`
+      );
+    }
     if (!res.ok) {
-      return errorContent(`API error: ${res.status} ${res.statusText}`);
+      return errorContent(`API error: ${res.status} ${res.statusText} (${url})`);
     }
     const data = await res.json();
     return textContent(JSON.stringify(data, null, 2));
@@ -3836,7 +3806,14 @@ var createMcpServer = (options = {}) => {
     try {
       return await fn();
     } catch (err) {
-      return errorContent(err.message);
+      const e = err;
+      if (e.message.includes("fetch")) {
+        const MCP_API_BASE_URL = process.env.MCP_API_BASE_URL ?? DEFAULT_MCP_API_BASE_URL;
+        return errorContent(
+          `MCP auth flow failed: ${e.message}. Check MCP_API_BASE_URL env var (currently "${MCP_API_BASE_URL}"). To re-auth from scratch: rm ~/.stackable/mcp-auth.json`
+        );
+      }
+      return errorContent(e.message);
     }
   };
   const registrySkills = listSkills("registry");

package/dist/server.js CHANGED Viewed

@@ -1,9 +1,8 @@
+import { STANDALONE_CLIENT, getToken } from './chunk-6EMXRSXY.js';
 import { McpServer } from '@modelcontextprotocol/sdk/server/mcp.js';
 import { IDENTITY_EVENTS, ACTIVITY_EVENTS, SURFACE_TARGETS, PERMISSIONS, CAPABILITY_PERMISSION_MAP, ALLOWED_ICONS, UI_TAGS, UI_TAG_ATTRIBUTES, tagToComponentName } from '@stackable-labs/sdk-extension-contracts';
 import { z } from 'zod';
-// src/server.ts
 // ../../sdk/extension/ai-docs/src/generated/template-content.ts
 var PATTERN_SECTIONS = [
   {
@@ -3751,28 +3750,6 @@ pair(EXAMPLE_SNIPPETS, EXAMPLE_SNIPPETS2);
 pair(CAPABILITY_SNIPPETS, CAPABILITY_SNIPPETS2);
 pair(EVENT_SNIPPETS, EVENT_SNIPPETS2);
-// ../../lib/contracts/src/permissions.ts
-var SUPER_ROLE = {
-  ADMIN: "org:super_admin"
-};
-var ORG_ROLE = {
-  ADMIN: "org:admin",
-  OWNER: "org:owner"};
-var EDITOR_ROLES = [
-  SUPER_ROLE.ADMIN,
-  ORG_ROLE.ADMIN,
-  ORG_ROLE.OWNER
-];
-[
-  ...Object.values(SUPER_ROLE),
-  ...Object.values(EDITOR_ROLES)
-];
-// ../../lib/utils-services/src/auth/index.ts
-var STANDALONE_CLIENT = {
-  MCP: "@stackable-labs/mcp-app-extension"
-};
 // package.json
 var package_default = {
   version: "0.0.0"};
@@ -3780,6 +3757,7 @@ var package_default = {
 // src/server.ts
 var MCP_CLIENT_NAME = STANDALONE_CLIENT.MCP;
 var DEFAULT_ADMIN_API_URL = "https://api-use1.stackablelabs.io/admin";
+var DEFAULT_MCP_API_BASE_URL = "https://api-use1.stackablelabs.io/mcp";
 var textContent = (text) => ({ content: [{ type: "text", text }] });
 var errorContent = (text) => ({ content: [{ type: "text", text }], isError: true });
 var createMcpServer = (options = {}) => {
@@ -3791,31 +3769,13 @@ var createMcpServer = (options = {}) => {
     if (options.authContext?.token) {
       return options.authContext.token;
     }
-    const { readFile } = await import('fs/promises');
-    const { join } = await import('path');
-    const { homedir } = await import('os');
-    const authFile = join(homedir(), ".stackable", "auth.json");
-    let state;
     try {
-      const content = await readFile(authFile, "utf8");
-      state = JSON.parse(content);
+      return await getToken("mcp-auth.json");
     } catch {
-      throw new Error("Not authenticated. Run 'stackable-app-extension auth login' first.");
     }
-    const [, payload] = state.token.split(".");
-    if (payload) {
-      try {
-        const decoded = JSON.parse(Buffer.from(payload, "base64url").toString("utf8"));
-        if (decoded.exp && Date.now() >= decoded.exp * 1e3) {
-          throw new Error("Session expired. Run 'stackable-app-extension auth login' to re-authenticate.");
-        }
-      } catch (err) {
-        if (err instanceof Error && err.message.includes("expired")) {
-          throw err;
-        }
-      }
-    }
-    return state.token;
+    const { performOAuthFlow } = await import('./auth-JRYNP3PL.js');
+    const MCP_API_BASE_URL = process.env.MCP_API_BASE_URL ?? DEFAULT_MCP_API_BASE_URL;
+    return performOAuthFlow(`${MCP_API_BASE_URL}/.well-known/oauth-authorization-server`);
   };
   const authHeaders = (token) => ({
     authorization: `Bearer ${token}`,
@@ -3824,10 +3784,18 @@ var createMcpServer = (options = {}) => {
   });
   const callApi = async (path) => {
     const token = await getAuthToken();
-    const baseUrl = process.env.ADMIN_API_BASE_URL ?? DEFAULT_ADMIN_API_URL;
-    const res = await fetch(`${baseUrl}${path}`, { headers: authHeaders(token) });
+    const ADMIN_API_BASE_URL = process.env.ADMIN_API_BASE_URL ?? DEFAULT_ADMIN_API_URL;
+    const url = `${ADMIN_API_BASE_URL}${path}`;
+    let res;
+    try {
+      res = await fetch(url, { headers: authHeaders(token) });
+    } catch (err) {
+      return errorContent(
+        `Network error calling ${url}: ${err.message}. Check ADMIN_API_BASE_URL env var (currently "${ADMIN_API_BASE_URL}").`
+      );
+    }
     if (!res.ok) {
-      return errorContent(`API error: ${res.status} ${res.statusText}`);
+      return errorContent(`API error: ${res.status} ${res.statusText} (${url})`);
     }
     const data = await res.json();
     return textContent(JSON.stringify(data, null, 2));
@@ -3836,7 +3804,14 @@ var createMcpServer = (options = {}) => {
     try {
       return await fn();
     } catch (err) {
-      return errorContent(err.message);
+      const e = err;
+      if (e.message.includes("fetch")) {
+        const MCP_API_BASE_URL = process.env.MCP_API_BASE_URL ?? DEFAULT_MCP_API_BASE_URL;
+        return errorContent(
+          `MCP auth flow failed: ${e.message}. Check MCP_API_BASE_URL env var (currently "${MCP_API_BASE_URL}"). To re-auth from scratch: rm ~/.stackable/mcp-auth.json`
+        );
+      }
+      return errorContent(e.message);
     }
   };
   const registrySkills = listSkills("registry");

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@stackable-labs/mcp-app-extension",
-  "version": "0.3.1",
+  "version": "0.4.1",
   "type": "module",
   "bin": {
     "mcp-app-extension": "./dist/index.js"
@@ -23,6 +23,8 @@
   "dependencies": {
     "@modelcontextprotocol/sdk": "1.x",
     "@stackable-labs/sdk-extension-contracts": "latest",
+    "oauth4webapi": "3.x",
+    "open": "10.x",
     "zod": "3.x"
   },
   "description": "MCP server for AI-assisted Stackable extension development.",