@tunnelhub/mcp 1.0.0

package/dist/auth/session-manager.d.ts

@@ -0,0 +1,17 @@
+import type { AuthContext, Session } from '../types/mcp.js';
+export declare class SessionManager {
+    private readonly tokenManager;
+    private readonly cognitoClient;
+    private readonly apiClient;
+    constructor();
+    createSession(): Promise<Session>;
+    switchEnvironment(environmentId: string): Promise<Session>;
+    private resolveFrontendUrl;
+    getCurrentContext(): Promise<AuthContext | null>;
+    getAllSessions(): Session[];
+    getCurrentSession(): Session | null;
+    logout(sessionId?: string): void;
+    private refreshSession;
+    private getRequiredSession;
+}
+//# sourceMappingURL=session-manager.d.ts.map

package/dist/auth/session-manager.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"session-manager.d.ts","sourceRoot":"","sources":["../../src/auth/session-manager.ts"],"names":[],"mappings":"AAGA,OAAO,KAAK,EAAE,WAAW,EAAE,OAAO,EAAE,MAAM,iBAAiB,CAAC;AAI5D,qBAAa,cAAc;IACzB,OAAO,CAAC,QAAQ,CAAC,YAAY,CAAe;IAE5C,OAAO,CAAC,QAAQ,CAAC,aAAa,CAAgB;IAE9C,OAAO,CAAC,QAAQ,CAAC,SAAS,CAAY;;IAQhC,aAAa,IAAI,OAAO,CAAC,OAAO,CAAC;IAgEjC,iBAAiB,CAAC,aAAa,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC;IAqBhE,OAAO,CAAC,kBAAkB;IAQpB,iBAAiB,IAAI,OAAO,CAAC,WAAW,GAAG,IAAI,CAAC;IA2BtD,cAAc,IAAI,OAAO,EAAE;IAI3B,iBAAiB,IAAI,OAAO,GAAG,IAAI;IAInC,MAAM,CAAC,SAAS,CAAC,EAAE,MAAM,GAAG,IAAI;YAYlB,cAAc;YAed,kBAAkB;CAQjC"}

package/dist/auth/session-manager.js

@@ -0,0 +1,152 @@
+import { BrowserAuthFlow } from './browser-auth.js';
+import { CognitoClient } from './cognito-client.js';
+import { TokenManager } from './token-manager.js';
+import { ApiClient } from '../utils/api-client.js';
+import { MCPError } from '../utils/error-handler.js';
+export class SessionManager {
+    tokenManager;
+    cognitoClient;
+    apiClient;
+    constructor() {
+        this.tokenManager = new TokenManager();
+        this.cognitoClient = new CognitoClient();
+        this.apiClient = new ApiClient();
+    }
+    async createSession() {
+        const apiHost = this.apiClient.getDefaultApiHost();
+        const preferredSession = this.getCurrentSession() || this.getAllSessions()[0] || null;
+        const frontendUrl = preferredSession?.frontendUrl || this.apiClient.getDefaultFrontendUrl();
+        const preferredTenantId = preferredSession?.tenantId;
+        const browserAuth = new BrowserAuthFlow();
+        const tokens = await browserAuth.authenticate(frontendUrl, preferredTenantId);
+        const currentUser = await this.apiClient.getCurrentUser(tokens.idToken);
+        const tenantId = currentUser.tenantId;
+        if (!tenantId) {
+            throw new MCPError('Authenticated user does not include tenantId.', 'TENANT_NOT_FOUND');
+        }
+        const publicTenant = await this.apiClient.getTenantPublic(tenantId);
+        const resolvedFrontendUrl = this.resolveFrontendUrl(publicTenant);
+        const bootstrapSession = {
+            id: tenantId,
+            tenantId,
+            tenantName: publicTenant.accountName,
+            environmentId: '',
+            environmentName: '',
+            apiHost,
+            frontendUrl: resolvedFrontendUrl,
+            clientId: publicTenant.cognito.dedicated?.userPoolClientId ||
+                publicTenant.cognito.shared?.userPoolClientId ||
+                currentUser.userPoolClientId ||
+                '',
+            tokens: {
+                idToken: tokens.idToken,
+                accessToken: tokens.accessToken,
+                refreshToken: tokens.refreshToken,
+                expiresAt: Date.now() + tokens.expiresIn * 1000,
+            },
+            user: {
+                id: currentUser.uuid,
+                email: currentUser.email,
+                role: currentUser.role,
+                timezone: currentUser.timezone || 'America/Sao_Paulo',
+            },
+            lastUsed: new Date().toISOString(),
+        };
+        this.apiClient.setSession(bootstrapSession);
+        const environments = await this.apiClient.getEnvironments(bootstrapSession);
+        const defaultEnvironment = environments.find((environment) => environment.isProductive) || environments[0];
+        if (!defaultEnvironment) {
+            throw new MCPError('No environments available for authenticated user.', 'ENVIRONMENT_NOT_FOUND');
+        }
+        const session = {
+            ...bootstrapSession,
+            environmentId: defaultEnvironment.uuid,
+            environmentName: defaultEnvironment.name,
+        };
+        this.tokenManager.saveSession(session);
+        this.tokenManager.setCurrentSessionId(session.id);
+        return session;
+    }
+    async switchEnvironment(environmentId) {
+        const session = await this.getRequiredSession();
+        const environments = await this.apiClient.getEnvironments(session);
+        const environment = environments.find((item) => item.uuid === environmentId);
+        if (!environment) {
+            throw new MCPError(`Environment ${environmentId} not found for current tenant.`, 'ENVIRONMENT_NOT_FOUND');
+        }
+        const updatedSession = {
+            ...session,
+            environmentId: environment.uuid,
+            environmentName: environment.name,
+            lastUsed: new Date().toISOString(),
+        };
+        this.tokenManager.saveSession(updatedSession);
+        this.tokenManager.setCurrentSessionId(updatedSession.id);
+        return updatedSession;
+    }
+    resolveFrontendUrl(publicTenant) {
+        if (publicTenant.domain) {
+            return `https://${publicTenant.domain}.tunnelhub.io`;
+        }
+        return this.apiClient.getDefaultFrontendUrl();
+    }
+    async getCurrentContext() {
+        const session = this.tokenManager.getCurrentSession();
+        if (!session) {
+            return null;
+        }
+        if (this.tokenManager.isTokenExpiring(session)) {
+            await this.refreshSession(session.id);
+        }
+        const freshSession = this.tokenManager.getCurrentSession();
+        if (!freshSession) {
+            return null;
+        }
+        if (!freshSession.user.timezone) {
+            freshSession.user.timezone = 'America/Sao_Paulo';
+            this.tokenManager.saveSession(freshSession);
+        }
+        this.apiClient.setSession(freshSession);
+        return {
+            session: freshSession,
+            isValid: true,
+        };
+    }
+    getAllSessions() {
+        return this.tokenManager.getSessionsSortedByLastUsed();
+    }
+    getCurrentSession() {
+        return this.tokenManager.getCurrentSession();
+    }
+    logout(sessionId) {
+        if (sessionId) {
+            this.tokenManager.deleteSession(sessionId);
+            return;
+        }
+        const currentSession = this.tokenManager.getCurrentSessionId();
+        if (currentSession) {
+            this.tokenManager.deleteSession(currentSession);
+        }
+    }
+    async refreshSession(sessionId) {
+        const session = this.tokenManager.getSession(sessionId);
+        if (!session) {
+            throw new MCPError('Session not found.', 'SESSION_NOT_FOUND');
+        }
+        const refreshedTokens = await this.cognitoClient.refreshTokens(session.clientId, session.tokens.refreshToken);
+        this.tokenManager.updateSessionTokens(sessionId, {
+            idToken: refreshedTokens.idToken,
+            accessToken: refreshedTokens.accessToken,
+            refreshToken: refreshedTokens.refreshToken,
+            expiresAt: Date.now() + refreshedTokens.expiresIn * 1000,
+        });
+    }
+    async getRequiredSession() {
+        const authContext = await this.getCurrentContext();
+        if (!authContext?.session) {
+            throw new MCPError('Not authenticated. Use login_tunnelhub first.', 'AUTH_REQUIRED');
+        }
+        return authContext.session;
+    }
+}
+//# sourceMappingURL=session-manager.js.map

package/dist/auth/session-manager.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"session-manager.js","sourceRoot":"","sources":["../../src/auth/session-manager.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,eAAe,EAAE,MAAM,mBAAmB,CAAC;AACpD,OAAO,EAAE,aAAa,EAAE,MAAM,qBAAqB,CAAC;AACpD,OAAO,EAAE,YAAY,EAAE,MAAM,oBAAoB,CAAC;AAElD,OAAO,EAAE,SAAS,EAAE,MAAM,wBAAwB,CAAC;AACnD,OAAO,EAAE,QAAQ,EAAE,MAAM,2BAA2B,CAAC;AAErD,MAAM,OAAO,cAAc;IACR,YAAY,CAAe;IAE3B,aAAa,CAAgB;IAE7B,SAAS,CAAY;IAEtC;QACE,IAAI,CAAC,YAAY,GAAG,IAAI,YAAY,EAAE,CAAC;QACvC,IAAI,CAAC,aAAa,GAAG,IAAI,aAAa,EAAE,CAAC;QACzC,IAAI,CAAC,SAAS,GAAG,IAAI,SAAS,EAAE,CAAC;IACnC,CAAC;IAED,KAAK,CAAC,aAAa;QACjB,MAAM,OAAO,GAAG,IAAI,CAAC,SAAS,CAAC,iBAAiB,EAAE,CAAC;QACnD,MAAM,gBAAgB,GAAG,IAAI,CAAC,iBAAiB,EAAE,IAAI,IAAI,CAAC,cAAc,EAAE,CAAC,CAAC,CAAC,IAAI,IAAI,CAAC;QACtF,MAAM,WAAW,GAAG,gBAAgB,EAAE,WAAW,IAAI,IAAI,CAAC,SAAS,CAAC,qBAAqB,EAAE,CAAC;QAC5F,MAAM,iBAAiB,GAAG,gBAAgB,EAAE,QAAQ,CAAC;QACrD,MAAM,WAAW,GAAG,IAAI,eAAe,EAAE,CAAC;QAC1C,MAAM,MAAM,GAAG,MAAM,WAAW,CAAC,YAAY,CAAC,WAAW,EAAE,iBAAiB,CAAC,CAAC;QAC9E,MAAM,WAAW,GAAG,MAAM,IAAI,CAAC,SAAS,CAAC,cAAc,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC;QAExE,MAAM,QAAQ,GAAG,WAAW,CAAC,QAAQ,CAAC;QACtC,IAAI,CAAC,QAAQ,EAAE,CAAC;YACd,MAAM,IAAI,QAAQ,CAAC,+CAA+C,EAAE,kBAAkB,CAAC,CAAC;QAC1F,CAAC;QAED,MAAM,YAAY,GAAG,MAAM,IAAI,CAAC,SAAS,CAAC,eAAe,CAAC,QAAQ,CAAC,CAAC;QACpE,MAAM,mBAAmB,GAAG,IAAI,CAAC,kBAAkB,CAAC,YAAY,CAAC,CAAC;QAElE,MAAM,gBAAgB,GAAY;YAChC,EAAE,EAAE,QAAQ;YACZ,QAAQ;YACR,UAAU,EAAE,YAAY,CAAC,WAAW;YACpC,aAAa,EAAE,EAAE;YACjB,eAAe,EAAE,EAAE;YACnB,OAAO;YACP,WAAW,EAAE,mBAAmB;YAChC,QAAQ,EACN,YAAY,CAAC,OAAO,CAAC,SAAS,EAAE,gBAAgB;gBAChD,YAAY,CAAC,OAAO,CAAC,MAAM,EAAE,gBAAgB;gBAC7C,WAAW,CAAC,gBAAgB;gBAC5B,EAAE;YACJ,MAAM,EAAE;gBACN,OAAO,EAAE,MAAM,CAAC,OAAO;gBACvB,WAAW,EAAE,MAAM,CAAC,WAAW;gBAC/B,YAAY,EAAE,MAAM,CAAC,YAAY;gBACjC,SAAS,EAAE,IAAI,CAAC,GAAG,EAAE,GAAG,MAAM,CAAC,SAAS,GAAG,IAAI;aAChD;YACD,IAAI,EAAE;gBACJ,EAAE,EAAE,WAAW,CAAC,IAAI;gBACpB,KAAK,EAAE,WAAW,CAAC,KAAK;gBACxB,IAAI,EAAE,WAAW,CAAC,IAAI;gBACtB,QAAQ,EAAE,WAAW,CAAC,QAAQ,IAAI,mBAAmB;aACtD;YACD,QAAQ,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;SACnC,CAAC;QAEF,IAAI,CAAC,SAAS,CAAC,UAAU,CAAC,gBAAgB,CAAC,CAAC;QAC5C,MAAM,YAAY,GAAG,MAAM,IAAI,CAAC,SAAS,CAAC,eAAe,CAAC,gBAAgB,CAAC,CAAC;QAC5E,MAAM,kBAAkB,GAAG,YAAY,CAAC,IAAI,CAAC,CAAC,WAAW,EAAE,EAAE,CAAC,WAAW,CAAC,YAAY,CAAC,IAAI,YAAY,CAAC,CAAC,CAAC,CAAC;QAE3G,IAAI,CAAC,kBAAkB,EAAE,CAAC;YACxB,MAAM,IAAI,QAAQ,CAAC,mDAAmD,EAAE,uBAAuB,CAAC,CAAC;QACnG,CAAC;QAED,MAAM,OAAO,GAAY;YACvB,GAAG,gBAAgB;YACnB,aAAa,EAAE,kBAAkB,CAAC,IAAI;YACtC,eAAe,EAAE,kBAAkB,CAAC,IAAI;SACzC,CAAC;QAEF,IAAI,CAAC,YAAY,CAAC,WAAW,CAAC,OAAO,CAAC,CAAC;QACvC,IAAI,CAAC,YAAY,CAAC,mBAAmB,CAAC,OAAO,CAAC,EAAE,CAAC,CAAC;QAClD,OAAO,OAAO,CAAC;IACjB,CAAC;IAED,KAAK,CAAC,iBAAiB,CAAC,aAAqB;QAC3C,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,kBAAkB,EAAE,CAAC;QAChD,MAAM,YAAY,GAAG,MAAM,IAAI,CAAC,SAAS,CAAC,eAAe,CAAC,OAAO,CAAC,CAAC;QACnE,MAAM,WAAW,GAAG,YAAY,CAAC,IAAI,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,IAAI,CAAC,IAAI,KAAK,aAAa,CAAC,CAAC;QAE7E,IAAI,CAAC,WAAW,EAAE,CAAC;YACjB,MAAM,IAAI,QAAQ,CAAC,eAAe,aAAa,gCAAgC,EAAE,uBAAuB,CAAC,CAAC;QAC5G,CAAC;QAED,MAAM,cAAc,GAAY;YAC9B,GAAG,OAAO;YACV,aAAa,EAAE,WAAW,CAAC,IAAI;YAC/B,eAAe,EAAE,WAAW,CAAC,IAAI;YACjC,QAAQ,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;SACnC,CAAC;QAEF,IAAI,CAAC,YAAY,CAAC,WAAW,CAAC,cAAc,CAAC,CAAC;QAC9C,IAAI,CAAC,YAAY,CAAC,mBAAmB,CAAC,cAAc,CAAC,EAAE,CAAC,CAAC;QACzD,OAAO,cAAc,CAAC;IACxB,CAAC;IAEO,kBAAkB,CAAC,YAAiC;QAC1D,IAAI,YAAY,CAAC,MAAM,EAAE,CAAC;YACxB,OAAO,WAAW,YAAY,CAAC,MAAM,eAAe,CAAC;QACvD,CAAC;QAED,OAAO,IAAI,CAAC,SAAS,CAAC,qBAAqB,EAAE,CAAC;IAChD,CAAC;IAED,KAAK,CAAC,iBAAiB;QACrB,MAAM,OAAO,GAAG,IAAI,CAAC,YAAY,CAAC,iBAAiB,EAAE,CAAC;QACtD,IAAI,CAAC,OAAO,EAAE,CAAC;YACb,OAAO,IAAI,CAAC;QACd,CAAC;QAED,IAAI,IAAI,CAAC,YAAY,CAAC,eAAe,CAAC,OAAO,CAAC,EAAE,CAAC;YAC/C,MAAM,IAAI,CAAC,cAAc,CAAC,OAAO,CAAC,EAAE,CAAC,CAAC;QACxC,CAAC;QAED,MAAM,YAAY,GAAG,IAAI,CAAC,YAAY,CAAC,iBAAiB,EAAE,CAAC;QAC3D,IAAI,CAAC,YAAY,EAAE,CAAC;YAClB,OAAO,IAAI,CAAC;QACd,CAAC;QAED,IAAI,CAAC,YAAY,CAAC,IAAI,CAAC,QAAQ,EAAE,CAAC;YAChC,YAAY,CAAC,IAAI,CAAC,QAAQ,GAAG,mBAAmB,CAAC;YACjD,IAAI,CAAC,YAAY,CAAC,WAAW,CAAC,YAAY,CAAC,CAAC;QAC9C,CAAC;QAED,IAAI,CAAC,SAAS,CAAC,UAAU,CAAC,YAAY,CAAC,CAAC;QACxC,OAAO;YACL,OAAO,EAAE,YAAY;YACrB,OAAO,EAAE,IAAI;SACd,CAAC;IACJ,CAAC;IAED,cAAc;QACZ,OAAO,IAAI,CAAC,YAAY,CAAC,2BAA2B,EAAE,CAAC;IACzD,CAAC;IAED,iBAAiB;QACf,OAAO,IAAI,CAAC,YAAY,CAAC,iBAAiB,EAAE,CAAC;IAC/C,CAAC;IAED,MAAM,CAAC,SAAkB;QACvB,IAAI,SAAS,EAAE,CAAC;YACd,IAAI,CAAC,YAAY,CAAC,aAAa,CAAC,SAAS,CAAC,CAAC;YAC3C,OAAO;QACT,CAAC;QAED,MAAM,cAAc,GAAG,IAAI,CAAC,YAAY,CAAC,mBAAmB,EAAE,CAAC;QAC/D,IAAI,cAAc,EAAE,CAAC;YACnB,IAAI,CAAC,YAAY,CAAC,aAAa,CAAC,cAAc,CAAC,CAAC;QAClD,CAAC;IACH,CAAC;IAEO,KAAK,CAAC,cAAc,CAAC,SAAiB;QAC5C,MAAM,OAAO,GAAG,IAAI,CAAC,YAAY,CAAC,UAAU,CAAC,SAAS,CAAC,CAAC;QACxD,IAAI,CAAC,OAAO,EAAE,CAAC;YACb,MAAM,IAAI,QAAQ,CAAC,oBAAoB,EAAE,mBAAmB,CAAC,CAAC;QAChE,CAAC;QAED,MAAM,eAAe,GAAG,MAAM,IAAI,CAAC,aAAa,CAAC,aAAa,CAAC,OAAO,CAAC,QAAQ,EAAE,OAAO,CAAC,MAAM,CAAC,YAAY,CAAC,CAAC;QAC9G,IAAI,CAAC,YAAY,CAAC,mBAAmB,CAAC,SAAS,EAAE;YAC/C,OAAO,EAAE,eAAe,CAAC,OAAO;YAChC,WAAW,EAAE,eAAe,CAAC,WAAW;YACxC,YAAY,EAAE,eAAe,CAAC,YAAY;YAC1C,SAAS,EAAE,IAAI,CAAC,GAAG,EAAE,GAAG,eAAe,CAAC,SAAS,GAAG,IAAI;SACzD,CAAC,CAAC;IACL,CAAC;IAEO,KAAK,CAAC,kBAAkB;QAC9B,MAAM,WAAW,GAAG,MAAM,IAAI,CAAC,iBAAiB,EAAE,CAAC;QACnD,IAAI,CAAC,WAAW,EAAE,OAAO,EAAE,CAAC;YAC1B,MAAM,IAAI,QAAQ,CAAC,+CAA+C,EAAE,eAAe,CAAC,CAAC;QACvF,CAAC;QAED,OAAO,WAAW,CAAC,OAAO,CAAC;IAC7B,CAAC;CACF"}

package/dist/auth/token-manager.d.ts

@@ -0,0 +1,50 @@
+import type { Session } from '../types/mcp.js';
+export declare class TokenManager {
+    private config;
+    constructor();
+    /**
+     * Get all sessions
+     */
+    getAllSessions(): Record<string, Session>;
+    /**
+     * Get a specific session
+     */
+    getSession(sessionId: string): Session | null;
+    /**
+     * Save or update a session
+     */
+    saveSession(session: Session): void;
+    /**
+     * Delete a session
+     */
+    deleteSession(sessionId: string): void;
+    /**
+     * Get current session ID
+     */
+    getCurrentSessionId(): string | null;
+    /**
+     * Set current session ID
+     */
+    setCurrentSessionId(sessionId: string | null): void;
+    /**
+     * Get current session
+     */
+    getCurrentSession(): Session | null;
+    /**
+     * Update session tokens
+     */
+    updateSessionTokens(sessionId: string, tokens: Session['tokens']): void;
+    /**
+     * Check if token is expired or expiring soon
+     */
+    isTokenExpiring(session: Session, bufferMinutes?: number): boolean;
+    /**
+     * Clear all sessions
+     */
+    clearAllSessions(): void;
+    /**
+     * Get sessions sorted by last used
+     */
+    getSessionsSortedByLastUsed(): Session[];
+}
+//# sourceMappingURL=token-manager.d.ts.map

package/dist/auth/token-manager.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"token-manager.d.ts","sourceRoot":"","sources":["../../src/auth/token-manager.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,iBAAiB,CAAC;AAI/C,qBAAa,YAAY;IACvB,OAAO,CAAC,MAAM,CAAc;;IAS5B;;OAEG;IACH,cAAc,IAAI,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC;IAIzC;;OAEG;IACH,UAAU,CAAC,SAAS,EAAE,MAAM,GAAG,OAAO,GAAG,IAAI;IAK7C;;OAEG;IACH,WAAW,CAAC,OAAO,EAAE,OAAO,GAAG,IAAI;IASnC;;OAEG;IACH,aAAa,CAAC,SAAS,EAAE,MAAM,GAAG,IAAI;IAWtC;;OAEG;IACH,mBAAmB,IAAI,MAAM,GAAG,IAAI;IAIpC;;OAEG;IACH,mBAAmB,CAAC,SAAS,EAAE,MAAM,GAAG,IAAI,GAAG,IAAI;IAInD;;OAEG;IACH,iBAAiB,IAAI,OAAO,GAAG,IAAI;IAMnC;;OAEG;IACH,mBAAmB,CAAC,SAAS,EAAE,MAAM,EAAE,MAAM,EAAE,OAAO,CAAC,QAAQ,CAAC,GAAG,IAAI;IASvE;;OAEG;IACH,eAAe,CAAC,OAAO,EAAE,OAAO,EAAE,aAAa,SAAI,GAAG,OAAO;IAQ7D;;OAEG;IACH,gBAAgB,IAAI,IAAI;IAKxB;;OAEG;IACH,2BAA2B,IAAI,OAAO,EAAE;CAQzC"}

package/dist/auth/token-manager.js

@@ -0,0 +1,107 @@
+import Configstore from 'configstore';
+const CONFIG_KEY = 'tunnelhub-mcp';
+export class TokenManager {
+    config;
+    constructor() {
+        this.config = new Configstore(CONFIG_KEY, {
+            sessions: {},
+            currentSession: null
+        });
+    }
+    /**
+     * Get all sessions
+     */
+    getAllSessions() {
+        return this.config.get('sessions') || {};
+    }
+    /**
+     * Get a specific session
+     */
+    getSession(sessionId) {
+        const sessions = this.getAllSessions();
+        return sessions[sessionId] || null;
+    }
+    /**
+     * Save or update a session
+     */
+    saveSession(session) {
+        const sessions = this.getAllSessions();
+        sessions[session.id] = {
+            ...session,
+            lastUsed: new Date().toISOString()
+        };
+        this.config.set('sessions', sessions);
+    }
+    /**
+     * Delete a session
+     */
+    deleteSession(sessionId) {
+        const sessions = this.getAllSessions();
+        delete sessions[sessionId];
+        this.config.set('sessions', sessions);
+        // If this was the current session, clear it
+        if (this.getCurrentSessionId() === sessionId) {
+            this.setCurrentSessionId(null);
+        }
+    }
+    /**
+     * Get current session ID
+     */
+    getCurrentSessionId() {
+        return this.config.get('currentSession') || null;
+    }
+    /**
+     * Set current session ID
+     */
+    setCurrentSessionId(sessionId) {
+        this.config.set('currentSession', sessionId);
+    }
+    /**
+     * Get current session
+     */
+    getCurrentSession() {
+        const sessionId = this.getCurrentSessionId();
+        if (!sessionId)
+            return null;
+        return this.getSession(sessionId);
+    }
+    /**
+     * Update session tokens
+     */
+    updateSessionTokens(sessionId, tokens) {
+        const session = this.getSession(sessionId);
+        if (!session)
+            return;
+        session.tokens = tokens;
+        session.lastUsed = new Date().toISOString();
+        this.saveSession(session);
+    }
+    /**
+     * Check if token is expired or expiring soon
+     */
+    isTokenExpiring(session, bufferMinutes = 5) {
+        const now = Date.now();
+        const expiresAt = session.tokens.expiresAt;
+        const bufferMs = bufferMinutes * 60 * 1000;
+        return now >= (expiresAt - bufferMs);
+    }
+    /**
+     * Clear all sessions
+     */
+    clearAllSessions() {
+        this.config.set('sessions', {});
+        this.config.set('currentSession', null);
+    }
+    /**
+     * Get sessions sorted by last used
+     */
+    getSessionsSortedByLastUsed() {
+        const sessions = Object.values(this.getAllSessions());
+        return sessions.sort((a, b) => {
+            const dateA = new Date(a.lastUsed).getTime();
+            const dateB = new Date(b.lastUsed).getTime();
+            return dateB - dateA;
+        });
+    }
+}
+//# sourceMappingURL=token-manager.js.map

package/dist/auth/token-manager.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"token-manager.js","sourceRoot":"","sources":["../../src/auth/token-manager.ts"],"names":[],"mappings":"AAAA,OAAO,WAAW,MAAM,aAAa,CAAC;AAGtC,MAAM,UAAU,GAAG,eAAe,CAAC;AAEnC,MAAM,OAAO,YAAY;IACf,MAAM,CAAc;IAE5B;QACE,IAAI,CAAC,MAAM,GAAG,IAAI,WAAW,CAAC,UAAU,EAAE;YACxC,QAAQ,EAAE,EAAE;YACZ,cAAc,EAAE,IAAI;SACrB,CAAC,CAAC;IACL,CAAC;IAED;;OAEG;IACH,cAAc;QACZ,OAAQ,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,UAAU,CAAyC,IAAI,EAAE,CAAC;IACpF,CAAC;IAED;;OAEG;IACH,UAAU,CAAC,SAAiB;QAC1B,MAAM,QAAQ,GAAG,IAAI,CAAC,cAAc,EAAE,CAAC;QACvC,OAAO,QAAQ,CAAC,SAAS,CAAC,IAAI,IAAI,CAAC;IACrC,CAAC;IAED;;OAEG;IACH,WAAW,CAAC,OAAgB;QAC1B,MAAM,QAAQ,GAAG,IAAI,CAAC,cAAc,EAAE,CAAC;QACvC,QAAQ,CAAC,OAAO,CAAC,EAAE,CAAC,GAAG;YACrB,GAAG,OAAO;YACV,QAAQ,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;SACnC,CAAC;QACF,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,UAAU,EAAE,QAAQ,CAAC,CAAC;IACxC,CAAC;IAED;;OAEG;IACH,aAAa,CAAC,SAAiB;QAC7B,MAAM,QAAQ,GAAG,IAAI,CAAC,cAAc,EAAE,CAAC;QACvC,OAAO,QAAQ,CAAC,SAAS,CAAC,CAAC;QAC3B,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,UAAU,EAAE,QAAQ,CAAC,CAAC;QAEtC,4CAA4C;QAC5C,IAAI,IAAI,CAAC,mBAAmB,EAAE,KAAK,SAAS,EAAE,CAAC;YAC7C,IAAI,CAAC,mBAAmB,CAAC,IAAI,CAAC,CAAC;QACjC,CAAC;IACH,CAAC;IAED;;OAEG;IACH,mBAAmB;QACjB,OAAQ,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,gBAAgB,CAA+B,IAAI,IAAI,CAAC;IAClF,CAAC;IAED;;OAEG;IACH,mBAAmB,CAAC,SAAwB;QAC1C,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,gBAAgB,EAAE,SAAS,CAAC,CAAC;IAC/C,CAAC;IAED;;OAEG;IACH,iBAAiB;QACf,MAAM,SAAS,GAAG,IAAI,CAAC,mBAAmB,EAAE,CAAC;QAC7C,IAAI,CAAC,SAAS;YAAE,OAAO,IAAI,CAAC;QAC5B,OAAO,IAAI,CAAC,UAAU,CAAC,SAAS,CAAC,CAAC;IACpC,CAAC;IAED;;OAEG;IACH,mBAAmB,CAAC,SAAiB,EAAE,MAAyB;QAC9D,MAAM,OAAO,GAAG,IAAI,CAAC,UAAU,CAAC,SAAS,CAAC,CAAC;QAC3C,IAAI,CAAC,OAAO;YAAE,OAAO;QAErB,OAAO,CAAC,MAAM,GAAG,MAAM,CAAC;QACxB,OAAO,CAAC,QAAQ,GAAG,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;QAC5C,IAAI,CAAC,WAAW,CAAC,OAAO,CAAC,CAAC;IAC5B,CAAC;IAED;;OAEG;IACH,eAAe,CAAC,OAAgB,EAAE,aAAa,GAAG,CAAC;QACjD,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QACvB,MAAM,SAAS,GAAG,OAAO,CAAC,MAAM,CAAC,SAAS,CAAC;QAC3C,MAAM,QAAQ,GAAG,aAAa,GAAG,EAAE,GAAG,IAAI,CAAC;QAE3C,OAAO,GAAG,IAAI,CAAC,SAAS,GAAG,QAAQ,CAAC,CAAC;IACvC,CAAC;IAED;;OAEG;IACH,gBAAgB;QACd,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,UAAU,EAAE,EAAE,CAAC,CAAC;QAChC,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,gBAAgB,EAAE,IAAI,CAAC,CAAC;IAC1C,CAAC;IAED;;OAEG;IACH,2BAA2B;QACzB,MAAM,QAAQ,GAAG,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,cAAc,EAAE,CAAC,CAAC;QACtD,OAAO,QAAQ,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE;YAC5B,MAAM,KAAK,GAAG,IAAI,IAAI,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,OAAO,EAAE,CAAC;YAC7C,MAAM,KAAK,GAAG,IAAI,IAAI,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,OAAO,EAAE,CAAC;YAC7C,OAAO,KAAK,GAAG,KAAK,CAAC;QACvB,CAAC,CAAC,CAAC;IACL,CAAC;CACF"}

package/dist/index.d.ts

@@ -0,0 +1,3 @@
+#!/usr/bin/env node
+export {};
+//# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":""}

package/dist/index.js

@@ -0,0 +1,6 @@
+#!/usr/bin/env node
+import { StdioServerTransport } from '@modelcontextprotocol/sdk/server/stdio.js';
+import server from './server.js';
+const transport = new StdioServerTransport();
+await server.connect(transport);
+//# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":";AAEA,OAAO,EAAE,oBAAoB,EAAE,MAAM,2CAA2C,CAAC;AACjF,OAAO,MAAM,MAAM,aAAa,CAAC;AAEjC,MAAM,SAAS,GAAG,IAAI,oBAAoB,EAAE,CAAC;AAE7C,MAAM,MAAM,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC"}

package/dist/prompts/index.d.ts

@@ -0,0 +1,3 @@
+import type { McpServer } from '@modelcontextprotocol/sdk/server/mcp.js';
+export declare function registerPrompts(_server: McpServer): void;
+//# sourceMappingURL=index.d.ts.map

package/dist/prompts/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/prompts/index.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,yCAAyC,CAAC;AAEzE,wBAAgB,eAAe,CAAC,OAAO,EAAE,SAAS,GAAG,IAAI,CAKxD"}

package/dist/prompts/index.js

@@ -0,0 +1,7 @@
+export function registerPrompts(_server) {
+    // TODO: Implement prompts
+    // - Integration setup wizard
+    // - Automation builder
+    // - Troubleshooting guide
+}
+//# sourceMappingURL=index.js.map

package/dist/prompts/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/prompts/index.ts"],"names":[],"mappings":"AAEA,MAAM,UAAU,eAAe,CAAC,OAAkB;IAChD,0BAA0B;IAC1B,6BAA6B;IAC7B,uBAAuB;IACvB,0BAA0B;AAC5B,CAAC"}

package/dist/resources/index.d.ts

@@ -0,0 +1,3 @@
+import type { McpServer } from '@modelcontextprotocol/sdk/server/mcp.js';
+export declare function registerResources(_server: McpServer): void;
+//# sourceMappingURL=index.d.ts.map

package/dist/resources/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/resources/index.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,yCAAyC,CAAC;AAEzE,wBAAgB,iBAAiB,CAAC,OAAO,EAAE,SAAS,GAAG,IAAI,CAK1D"}

package/dist/resources/index.js

@@ -0,0 +1,7 @@
+export function registerResources(_server) {
+    // TODO: Implement resources
+    // - execution://
+    // - logs://
+    // - metrics://
+}
+//# sourceMappingURL=index.js.map

package/dist/resources/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/resources/index.ts"],"names":[],"mappings":"AAEA,MAAM,UAAU,iBAAiB,CAAC,OAAkB;IAClD,4BAA4B;IAC5B,iBAAiB;IACjB,YAAY;IACZ,eAAe;AACjB,CAAC"}

package/dist/server.d.ts

@@ -0,0 +1,12 @@
+import { McpServer } from '@modelcontextprotocol/sdk/server/mcp.js';
+export declare class TunnelHubMCPServer {
+    private readonly server;
+    private readonly sessionManager;
+    private readonly apiClient;
+    constructor();
+    private setupServer;
+    getServer(): McpServer;
+}
+declare const _default: McpServer;
+export default _default;
+//# sourceMappingURL=server.d.ts.map

package/dist/server.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"server.d.ts","sourceRoot":"","sources":["../src/server.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,MAAM,yCAAyC,CAAC;AAUpE,qBAAa,kBAAkB;IAC7B,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAY;IAEnC,OAAO,CAAC,QAAQ,CAAC,cAAc,CAAiB;IAEhD,OAAO,CAAC,QAAQ,CAAC,SAAS,CAAY;;IAYtC,OAAO,CAAC,WAAW;IAqBnB,SAAS,IAAI,SAAS;CAGvB;;AAID,wBAA2C"}

package/dist/server.js

@@ -0,0 +1,46 @@
+import { McpServer } from '@modelcontextprotocol/sdk/server/mcp.js';
+import { SessionManager } from './auth/session-manager.js';
+import { registerAutomationTools } from './tools/automations/index.js';
+import { registerMonitoringTools } from './tools/monitoring/index.js';
+import { registerSessionTools } from './tools/session/index.js';
+import { registerTenantTools } from './tools/tenants/index.js';
+import { ApiClient } from './utils/api-client.js';
+import { MCPError } from './utils/error-handler.js';
+export class TunnelHubMCPServer {
+    server;
+    sessionManager;
+    apiClient;
+    constructor() {
+        this.server = new McpServer({
+            name: 'tunnelhub-mcp-server',
+            version: '1.0.0',
+        });
+        this.sessionManager = new SessionManager();
+        this.apiClient = new ApiClient();
+        this.setupServer();
+    }
+    setupServer() {
+        const context = {
+            sessionManager: this.sessionManager,
+            apiClient: this.apiClient,
+            getSession: async () => {
+                const authContext = await this.sessionManager.getCurrentContext();
+                if (!authContext?.session) {
+                    throw new MCPError('Not authenticated. Use login_tunnelhub first.', 'AUTH_REQUIRED');
+                }
+                this.apiClient.setSession(authContext.session);
+                return authContext.session;
+            },
+        };
+        registerSessionTools(this.server, context);
+        registerTenantTools(this.server, context);
+        registerAutomationTools(this.server, context);
+        registerMonitoringTools(this.server, context);
+    }
+    getServer() {
+        return this.server;
+    }
+}
+const tunnelHubServer = new TunnelHubMCPServer();
+export default tunnelHubServer.getServer();
+//# sourceMappingURL=server.js.map

package/dist/server.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"server.js","sourceRoot":"","sources":["../src/server.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,MAAM,yCAAyC,CAAC;AACpE,OAAO,EAAE,cAAc,EAAE,MAAM,2BAA2B,CAAC;AAC3D,OAAO,EAAE,uBAAuB,EAAE,MAAM,8BAA8B,CAAC;AACvE,OAAO,EAAE,uBAAuB,EAAE,MAAM,6BAA6B,CAAC;AACtE,OAAO,EAAE,oBAAoB,EAAE,MAAM,0BAA0B,CAAC;AAChE,OAAO,EAAE,mBAAmB,EAAE,MAAM,0BAA0B,CAAC;AAC/D,OAAO,EAAE,SAAS,EAAE,MAAM,uBAAuB,CAAC;AAElD,OAAO,EAAE,QAAQ,EAAE,MAAM,0BAA0B,CAAC;AAEpD,MAAM,OAAO,kBAAkB;IACZ,MAAM,CAAY;IAElB,cAAc,CAAiB;IAE/B,SAAS,CAAY;IAEtC;QACE,IAAI,CAAC,MAAM,GAAG,IAAI,SAAS,CAAC;YAC1B,IAAI,EAAE,sBAAsB;YAC5B,OAAO,EAAE,OAAO;SACjB,CAAC,CAAC;QACH,IAAI,CAAC,cAAc,GAAG,IAAI,cAAc,EAAE,CAAC;QAC3C,IAAI,CAAC,SAAS,GAAG,IAAI,SAAS,EAAE,CAAC;QACjC,IAAI,CAAC,WAAW,EAAE,CAAC;IACrB,CAAC;IAEO,WAAW;QACjB,MAAM,OAAO,GAAgB;YAC3B,cAAc,EAAE,IAAI,CAAC,cAAc;YACnC,SAAS,EAAE,IAAI,CAAC,SAAS;YACzB,UAAU,EAAE,KAAK,IAAI,EAAE;gBACrB,MAAM,WAAW,GAAG,MAAM,IAAI,CAAC,cAAc,CAAC,iBAAiB,EAAE,CAAC;gBAClE,IAAI,CAAC,WAAW,EAAE,OAAO,EAAE,CAAC;oBAC1B,MAAM,IAAI,QAAQ,CAAC,+CAA+C,EAAE,eAAe,CAAC,CAAC;gBACvF,CAAC;gBAED,IAAI,CAAC,SAAS,CAAC,UAAU,CAAC,WAAW,CAAC,OAAO,CAAC,CAAC;gBAC/C,OAAO,WAAW,CAAC,OAAO,CAAC;YAC7B,CAAC;SACF,CAAC;QAEF,oBAAoB,CAAC,IAAI,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;QAC3C,mBAAmB,CAAC,IAAI,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;QAC1C,uBAAuB,CAAC,IAAI,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;QAC9C,uBAAuB,CAAC,IAAI,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAChD,CAAC;IAED,SAAS;QACP,OAAO,IAAI,CAAC,MAAM,CAAC;IACrB,CAAC;CACF;AAED,MAAM,eAAe,GAAG,IAAI,kBAAkB,EAAE,CAAC;AAEjD,eAAe,eAAe,CAAC,SAAS,EAAE,CAAC"}

package/dist/tools/api-gateway/index.d.ts

@@ -0,0 +1,3 @@
+import type { McpServer } from '@modelcontextprotocol/sdk/server/mcp.js';
+export declare function registerApiGatewayTools(_server: McpServer, _context: unknown): void;
+//# sourceMappingURL=index.d.ts.map

package/dist/tools/api-gateway/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/tools/api-gateway/index.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,yCAAyC,CAAC;AAEzE,wBAAgB,uBAAuB,CAAC,OAAO,EAAE,SAAS,EAAE,QAAQ,EAAE,OAAO,GAAG,IAAI,CAOnF"}

package/dist/tools/api-gateway/index.js

@@ -0,0 +1,9 @@
+export function registerApiGatewayTools(_server, _context) {
+    // TODO: Implement API gateway tools
+    // - list_api_gateways
+    // - list_api_clients
+    // - create_api_key
+    // - revoke_api_key
+    // - view_api_logs
+}
+//# sourceMappingURL=index.js.map

package/dist/tools/api-gateway/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/tools/api-gateway/index.ts"],"names":[],"mappings":"AAEA,MAAM,UAAU,uBAAuB,CAAC,OAAkB,EAAE,QAAiB;IAC3E,oCAAoC;IACpC,sBAAsB;IACtB,qBAAqB;IACrB,mBAAmB;IACnB,mBAAmB;IACnB,kBAAkB;AACpB,CAAC"}

package/dist/tools/automations/index.d.ts

@@ -0,0 +1,3 @@
+import type { McpServer } from '@modelcontextprotocol/sdk/server/mcp.js';
+export declare function registerAutomationTools(server: McpServer, context: unknown): void;
+//# sourceMappingURL=index.d.ts.map

package/dist/tools/automations/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/tools/automations/index.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,yCAAyC,CAAC;AAqNzE,wBAAgB,uBAAuB,CAAC,MAAM,EAAE,SAAS,EAAE,OAAO,EAAE,OAAO,GAAG,IAAI,CAOjF"}