@toolplex/client 0.1.38 → 0.1.40

package/dist/mcp-server/clientContext.d.ts

@@ -14,6 +14,7 @@ export declare class ClientContext {
     private _flags;
     private _isOrgUser;
     private _clientName;
+    private _userId;
     get sessionId(): string;
     set sessionId(id: string);
     get dev(): boolean;
@@ -34,5 +35,12 @@ export declare class ClientContext {
     set flags(consts: ClientFlags);
     get isOrgUser(): boolean;
     set isOrgUser(isOrgUser: boolean);
+    /**
+     * Optional user ID for system API keys to specify user context.
+     * Used for per-user telemetry tracking in cloud sessions.
+     * Returns null if not set (which is fine for regular client usage).
+     */
+    get userId(): string | null;
+    set userId(id: string | null);
     isInitialized(): boolean;
 }

package/dist/mcp-server/clientContext.js

@@ -13,6 +13,7 @@ export class ClientContext {
         this._flags = null;
         this._isOrgUser = null;
         this._clientName = null;
+        this._userId = null; // For system keys to specify user context
     }
     get sessionId() {
         if (!this._sessionId) {
@@ -104,6 +105,17 @@ export class ClientContext {
     set isOrgUser(isOrgUser) {
         this._isOrgUser = isOrgUser;
     }
+    /**
+     * Optional user ID for system API keys to specify user context.
+     * Used for per-user telemetry tracking in cloud sessions.
+     * Returns null if not set (which is fine for regular client usage).
+     */
+    get userId() {
+        return this._userId;
+    }
+    set userId(id) {
+        this._userId = id;
+    }
     isInitialized() {
         return !!(this._sessionId &&
             this._apiKey &&

package/dist/mcp-server/index.js

@@ -9,6 +9,8 @@ const apiKey = process.env.TOOLPLEX_API_KEY;
 const clientMode = process.env.TOOLPLEX_CLIENT_MODE || "standard";
 const clientName = process.env.CLIENT_NAME || "unknown";
 const logLevel = process.env.LOG_LEVEL || "info";
+// Optional user ID for per-user telemetry (system API keys only)
+const userId = process.env.TOOLPLEX_USER_ID;
 // Read bundled dependency paths from environment variables
 // These are provided by the host application (e.g., Electron desktop)
 const bundledDependencies = {
@@ -48,6 +50,7 @@ const config = {
     logLevel,
     bundledDependencies,
     sessionResumeHistory,
+    userId,
 };
 serve(config).catch(() => {
     process.exit(1);

package/dist/mcp-server/toolplexApi/service.js

@@ -30,7 +30,7 @@ export class ToolplexApiService {
         return response.json();
     }
     getBaseHeaders() {
-        return {
+        const headers = {
             "Content-Type": "application/json",
             Accept: "application/json",
             "x-api-key": this.clientContext.apiKey,
@@ -40,6 +40,12 @@ export class ToolplexApiService {
             "x-client-platform": os.platform(),
             "x-client-arch": os.arch(),
         };
+        // For system API keys (cloud-agent), include user ID for per-user telemetry
+        const userId = this.clientContext.userId;
+        if (userId) {
+            headers["x-user-id"] = userId;
+        }
+        return headers;
     }
     getHeadersWithSession() {
         return {

package/dist/mcp-server/toolplexServer.js

@@ -33,6 +33,9 @@ export async function serve(config) {
     clientContext.clientMode = config.clientMode;
     clientContext.clientName = config.clientName;
     clientContext.clientVersion = clientVersion;
+    if (config.userId) {
+        clientContext.userId = config.userId;
+    }
     await Registry.init(clientContext);
     // Store bundled dependencies in Registry for use throughout the application
     if (config.bundledDependencies) {

package/dist/server-manager/serverManager.js

@@ -50,6 +50,9 @@ function extractPrivateRegistryScope(args) {
  * - username: the scope without @ (e.g., "tp-user-abc123def45")
  * - password: the ToolPlex API key (tp_live_xxx or tp_test_xxx)
  *
+ * IMPORTANT: We also clear _authToken to override any expired tokens in the
+ * user's ~/.npmrc. This ensures our injected basic auth takes precedence.
+ *
  * @param scope - The scope without @ (e.g., "tp-user-abc123def45")
  * @param apiKey - The ToolPlex API key
  */
@@ -66,14 +69,24 @@ function getPrivateRegistryEnv(scope, apiKey) {
         // Set Basic auth for the registry
         // npm_config_//host/:_auth maps to //host/:_auth in .npmrc
         "npm_config_//registry.toolplex.ai/:_auth": auth,
+        // Clear any existing _authToken from user's ~/.npmrc to prevent expired tokens
+        // from taking precedence over our injected basic auth
+        "npm_config_//registry.toolplex.ai/:_authToken": "",
     };
 }
 /**
  * Get additional args to prepend for private registry packages.
  * Uses --registry flag which is more reliable than env vars with special chars.
+ *
+ * IMPORTANT: We use --userconfig=/dev/null to completely ignore the user's ~/.npmrc.
+ * This prevents expired tokens in ~/.npmrc from interfering with our injected basic auth.
  */
 function getPrivateRegistryArgs() {
-    return [`--registry=${PRIVATE_REGISTRY_URL}`];
+    return [
+        `--registry=${PRIVATE_REGISTRY_URL}`,
+        // Ignore user's ~/.npmrc to prevent expired _authToken from taking precedence
+        `--userconfig=/dev/null`,
+    ];
 }
 export class ServerManager {
     constructor() {

package/dist/shared/mcpServerTypes.d.ts

@@ -38,6 +38,8 @@ export interface ToolplexServerConfig {
             server_id: string;
         }>;
     };
+    /** Optional user ID for system API keys to specify user context (per-user telemetry) */
+    userId?: string;
 }
 export declare const TransportTypeSchema: z.ZodEnum<["stdio", "sse"]>;
 export type TransportType = z.infer<typeof TransportTypeSchema>;

package/dist/src/mcp-server/clientContext.js

@@ -13,6 +13,7 @@ export class ClientContext {
         this._flags = null;
         this._isOrgUser = null;
         this._clientName = null;
+        this._userId = null; // For system keys to specify user context
     }
     get sessionId() {
         if (!this._sessionId) {
@@ -104,6 +105,17 @@ export class ClientContext {
     set isOrgUser(isOrgUser) {
         this._isOrgUser = isOrgUser;
     }
+    /**
+     * Optional user ID for system API keys to specify user context.
+     * Used for per-user telemetry tracking in cloud sessions.
+     * Returns null if not set (which is fine for regular client usage).
+     */
+    get userId() {
+        return this._userId;
+    }
+    set userId(id) {
+        this._userId = id;
+    }
     isInitialized() {
         return !!(this._sessionId &&
             this._apiKey &&

package/dist/src/mcp-server/toolplexApi/service.js

@@ -30,7 +30,7 @@ export class ToolplexApiService {
         return response.json();
     }
     getBaseHeaders() {
-        return {
+        const headers = {
             "Content-Type": "application/json",
             Accept: "application/json",
             "x-api-key": this.clientContext.apiKey,
@@ -40,6 +40,12 @@ export class ToolplexApiService {
             "x-client-platform": os.platform(),
             "x-client-arch": os.arch(),
         };
+        // For system API keys (cloud-agent), include user ID for per-user telemetry
+        const userId = this.clientContext.userId;
+        if (userId) {
+            headers["x-user-id"] = userId;
+        }
+        return headers;
     }
     getHeadersWithSession() {
         return {

package/dist/version.d.ts

@@ -1 +1 @@
-export declare const version = "0.1.38";
+export declare const version = "0.1.40";

package/dist/version.js

@@ -1 +1 @@
-export const version = '0.1.38';
+export const version = '0.1.40';

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@toolplex/client",
-  "version": "0.1.38",
+  "version": "0.1.40",
   "author": "ToolPlex LLC",
   "license": "SEE LICENSE IN LICENSE",
   "description": "The official ToolPlex client for AI agent tool discovery and execution",