@vinkius-core/mcp-fusion 2.8.1 → 2.9.0

package/dist/cli/templates/readme.js

@@ -0,0 +1,177 @@
+/** Generate `README.md` with Claude/Cursor config snippets */
+export function readme(config) {
+    const clientEntry = config.transport === 'sse'
+        ? { url: 'http://localhost:3001/sse' }
+        : { command: 'npx', args: ['tsx', 'src/server.ts'] };
+    const clientConfig = JSON.stringify({
+        mcpServers: {
+            [config.name]: clientEntry,
+        },
+    }, null, 2);
+    const sseNote = config.transport === 'sse'
+        ? `\n> **Note:** SSE transport requires the server to be running first. Run \\\`npm start\\\` before connecting.`
+        : '';
+    return `# ${config.name}
+
+MCP Server built with [MCP Fusion](https://mcp-fusion.vinkius.com/) — the MVA framework for the Model Context Protocol.
+
+## Quick Start
+
+\`\`\`bash
+npm install
+${config.transport === 'sse' ? 'npm start' : 'npm run dev'}
+\`\`\`
+${config.testing ? `
+## Testing
+
+\`\`\`bash
+npm test
+\`\`\`
+` : ''}
+## Project Structure
+
+\`\`\`
+src/
+├── fusion.ts          # initFusion<AppContext>() — context center
+├── context.ts         # AppContext type + factory
+├── server.ts          # Bootstrap with autoDiscover
+├── tools/             # Drop a file → it's a tool (autoDiscover)
+│   └── system/
+│       ├── health.ts  # Health check with Presenter
+│       └── echo.ts    # Echo for connectivity testing
+├── presenters/        # MVA View Layer (Egress Firewall)
+│   └── SystemPresenter.ts
+├── prompts/           # MCP Prompt Engine
+│   └── greet.ts
+└── middleware/        # RBAC guards
+    └── auth.ts
+\`\`\`
+
+## Client Configuration
+
+### Cursor Editor
+
+> **Already configured!** The \`.cursor/mcp.json\` file was generated automatically.
+> Just open this folder in Cursor and the server connects instantly.
+${sseNote}
+
+### Claude Desktop
+
+Add to your \`claude_desktop_config.json\`:
+
+\`\`\`json
+${clientConfig}
+\`\`\`
+${vectorReadmeSection(config)}
+## Adding New Tools
+
+Create a new file in \`src/tools/\`. It's automatically discovered:
+
+\`\`\`typescript
+// src/tools/my-domain/my-tool.ts
+import { f } from '../../fusion.js';
+import { success } from '@vinkius-core/mcp-fusion';
+
+export default f.tool({
+    name: 'my_domain.my_tool',
+    description: 'What this tool does',
+    input: {
+        query: { type: 'string', description: 'Search query' },
+    },
+    handler: async ({ input, ctx }) => {
+        return success({ result: input.query });
+    },
+});
+\`\`\`
+
+No registration needed. The \`autoDiscover()\` system picks it up automatically.
+
+## Documentation
+
+- [MCP Fusion Docs](https://mcp-fusion.vinkius.com/)
+- [Presenter — Egress Firewall](https://mcp-fusion.vinkius.com/presenter)
+- [DX Guide — initFusion()](https://mcp-fusion.vinkius.com/dx-guide)
+- [Testing](https://mcp-fusion.vinkius.com/testing)
+`;
+}
+/** Vector-specific README section */
+function vectorReadmeSection(config) {
+    switch (config.vector) {
+        case 'prisma':
+            return `
+## Database Setup (Prisma)
+
+1. Configure your database URL in \`.env\`:
+   \`\`\`
+   DATABASE_URL="postgresql://user:password@localhost:5432/mydb"
+   \`\`\`
+
+2. Edit \`prisma/schema.prisma\` to define your models
+
+3. Generate the Prisma client and Fusion tools:
+   \`\`\`bash
+   npm run db:generate
+   \`\`\`
+
+4. Push the schema to your database:
+   \`\`\`bash
+   npm run db:push
+   \`\`\`
+
+Use \`/// @fusion.hide\` on sensitive fields to strip them from the Egress Firewall.
+`;
+        case 'n8n':
+            return `
+## n8n Workflow Setup
+
+1. Configure your n8n instance in \`.env\`:
+   \`\`\`
+   N8N_BASE_URL=http://localhost:5678
+   N8N_API_KEY=your-api-key
+   \`\`\`
+
+2. The connector in \`src/n8n.ts\` auto-discovers webhook workflows
+   and registers them as MCP tools.
+`;
+        case 'openapi':
+            return `
+## OpenAPI Generator Setup
+
+1. Replace \`openapi.yaml\` with your actual OpenAPI 3.x spec
+
+2. Generate the MCP server from the spec:
+   \`\`\`bash
+   npx mcp-fusion-openapi-gen ./openapi.yaml --outDir ./src/generated
+   \`\`\`
+
+3. Import and register the generated tools in \`src/server.ts\`
+`;
+        case 'oauth':
+            return `
+## OAuth Device Flow Setup
+
+1. Configure your OAuth provider in \`.env\`:
+   \`\`\`
+   OAUTH_CLIENT_ID=your-client-id
+   OAUTH_AUTH_ENDPOINT=https://api.example.com/oauth/device/code
+   OAUTH_TOKEN_ENDPOINT=https://api.example.com/oauth/device/token
+   \`\`\`
+
+2. The auth tool in \`src/auth.ts\` is pre-configured with login, complete, status, and logout actions.
+
+3. Protect any tool with the \`withAuth\` middleware from \`src/middleware/auth.ts\`:
+   \`\`\`ts
+   import { withAuth } from '../middleware/auth.js';
+
+   export default f.tool({
+       name: 'protected.action',
+       middleware: [withAuth],
+       handler: async ({ ctx }) => { /* authenticated */ },
+   });
+   \`\`\`
+`;
+        default:
+            return '';
+    }
+}
+//# sourceMappingURL=readme.js.map

package/dist/cli/templates/readme.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"readme.js","sourceRoot":"","sources":["../../../src/cli/templates/readme.ts"],"names":[],"mappings":"AAMA,8DAA8D;AAC9D,MAAM,UAAU,MAAM,CAAC,MAAqB;IACxC,MAAM,WAAW,GAAG,MAAM,CAAC,SAAS,KAAK,KAAK;QAC1C,CAAC,CAAC,EAAE,GAAG,EAAE,2BAA2B,EAAE;QACtC,CAAC,CAAC,EAAE,OAAO,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC,KAAK,EAAE,eAAe,CAAC,EAAE,CAAC;IAEzD,MAAM,YAAY,GAAG,IAAI,CAAC,SAAS,CAAC;QAChC,UAAU,EAAE;YACR,CAAC,MAAM,CAAC,IAAI,CAAC,EAAE,WAAW;SAC7B;KACJ,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC;IAEZ,MAAM,OAAO,GAAG,MAAM,CAAC,SAAS,KAAK,KAAK;QACtC,CAAC,CAAC,+GAA+G;QACjH,CAAC,CAAC,EAAE,CAAC;IAET,OAAO,KAAK,MAAM,CAAC,IAAI;;;;;;;;EAQzB,MAAM,CAAC,SAAS,KAAK,KAAK,CAAC,CAAC,CAAC,WAAW,CAAC,CAAC,CAAC,aAAa;;EAExD,MAAM,CAAC,OAAO,CAAC,CAAC,CAAC;;;;;;CAMlB,CAAC,CAAC,CAAC,EAAE;;;;;;;;;;;;;;;;;;;;;;;;;;EA0BJ,OAAO;;;;;;;EAOP,YAAY;;EAEZ,mBAAmB,CAAC,MAAM,CAAC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;CA8B5B,CAAC;AACF,CAAC;AAED,qCAAqC;AACrC,SAAS,mBAAmB,CAAC,MAAqB;IAC9C,QAAQ,MAAM,CAAC,MAAM,EAAE,CAAC;QACpB,KAAK,QAAQ;YACT,OAAO;;;;;;;;;;;;;;;;;;;;;CAqBlB,CAAC;QACM,KAAK,KAAK;YACN,OAAO;;;;;;;;;;;CAWlB,CAAC;QACM,KAAK,SAAS;YACV,OAAO;;;;;;;;;;;CAWlB,CAAC;QACM,KAAK,OAAO;YACR,OAAO;;;;;;;;;;;;;;;;;;;;;;CAsBlB,CAAC;QACM;YACI,OAAO,EAAE,CAAC;IAClB,CAAC;AACL,CAAC"}

package/dist/cli/templates/testing.d.ts

@@ -0,0 +1,11 @@
+/**
+ * Testing Templates — Test setup and example tests
+ * @module
+ */
+/** Generate `vitest.config.ts` */
+export declare function vitestConfig(): string;
+/** Generate `tests/setup.ts` — Test infrastructure */
+export declare function testSetupTs(): string;
+/** Generate `tests/system.test.ts` — Egress Firewall + RBAC tests */
+export declare function systemTestTs(): string;
+//# sourceMappingURL=testing.d.ts.map

package/dist/cli/templates/testing.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"testing.d.ts","sourceRoot":"","sources":["../../../src/cli/templates/testing.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,kCAAkC;AAClC,wBAAgB,YAAY,IAAI,MAAM,CASrC;AAED,sDAAsD;AACtD,wBAAgB,WAAW,IAAI,MAAM,CAwBpC;AAED,qEAAqE;AACrE,wBAAgB,YAAY,IAAI,MAAM,CAwDrC"}

package/dist/cli/templates/testing.js

@@ -0,0 +1,100 @@
+/**
+ * Testing Templates — Test setup and example tests
+ * @module
+ */
+/** Generate `vitest.config.ts` */
+export function vitestConfig() {
+    return `import { defineConfig } from 'vitest/config';
+
+export default defineConfig({
+    test: {
+        include: ['tests/**/*.test.ts'],
+    },
+});
+`;
+}
+/** Generate `tests/setup.ts` — Test infrastructure */
+export function testSetupTs() {
+    return `/**
+ * Test Setup — In-Memory MVA Emulator
+ *
+ * Creates a FusionTester that runs the full pipeline
+ * (Zod → Middleware → Handler → Egress Firewall)
+ * without any network transport.
+ *
+ * 2ms per test. $0.00 in tokens. Zero servers.
+ */
+import { createFusionTester } from '@vinkius-core/mcp-fusion-testing';
+import { ToolRegistry, autoDiscover } from '@vinkius-core/mcp-fusion';
+import type { AppContext } from '../src/context.js';
+
+const registry = new ToolRegistry<AppContext>();
+await autoDiscover(registry, new URL('../src/tools', import.meta.url).pathname);
+
+export const tester = createFusionTester(registry, {
+    contextFactory: () => ({
+        role: 'ADMIN' as const,
+        tenantId: 'test-tenant',
+    }),
+});
+`;
+}
+/** Generate `tests/system.test.ts` — Egress Firewall + RBAC tests */
+export function systemTestTs() {
+    return `/**
+ * System Tools — Egress Firewall & RBAC Tests
+ *
+ * Proves that:
+ * 1. The Presenter strips undeclared fields (SOC2 CC6.1)
+ * 2. RBAC middleware blocks GUEST access (SOC2 CC6.3)
+ * 3. System rules from .describe() are injected
+ */
+import { describe, it, expect } from 'vitest';
+import { tester } from './setup.js';
+
+describe('System Tools', () => {
+    describe('Egress Firewall', () => {
+        it('should return validated health data through the Presenter', async () => {
+            const result = await tester.callAction('system', 'health');
+
+            expect(result.isError).toBe(false);
+            expect(result.data).toHaveProperty('status');
+            expect(result.data).toHaveProperty('uptime');
+            expect(result.data).toHaveProperty('version');
+            expect(result.data).toHaveProperty('timestamp');
+        });
+
+        it('should strip undeclared fields (tenant must NOT leak)', async () => {
+            const result = await tester.callAction('system', 'health');
+
+            expect(result.isError).toBe(false);
+            // The handler returns 'tenant' but the Presenter schema
+            // does not declare it → stripped by Egress Firewall
+            expect(result.data).not.toHaveProperty('tenant');
+        });
+
+        it('should include JIT system rules from .describe()', async () => {
+            const result = await tester.callAction('system', 'health');
+
+            expect(result.systemRules.length).toBeGreaterThan(0);
+            expect(result.systemRules.some(
+                (r: string) => r.includes('uptime') || r.includes('Uptime')
+            )).toBe(true);
+        });
+    });
+
+    describe('Echo Tool', () => {
+        it('should echo the message back', async () => {
+            const result = await tester.callAction('system', 'echo', {
+                message: 'hello fusion',
+            });
+
+            expect(result.isError).toBe(false);
+            expect(result.data).toHaveProperty('echo', 'hello fusion');
+            expect(result.data).toHaveProperty('receivedAt');
+        });
+    });
+});
+`;
+}
+//# sourceMappingURL=testing.js.map

package/dist/cli/templates/testing.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"testing.js","sourceRoot":"","sources":["../../../src/cli/templates/testing.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,kCAAkC;AAClC,MAAM,UAAU,YAAY;IACxB,OAAO;;;;;;;CAOV,CAAC;AACF,CAAC;AAED,sDAAsD;AACtD,MAAM,UAAU,WAAW;IACvB,OAAO;;;;;;;;;;;;;;;;;;;;;;CAsBV,CAAC;AACF,CAAC;AAED,qEAAqE;AACrE,MAAM,UAAU,YAAY;IACxB,OAAO;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;CAsDV,CAAC;AACF,CAAC"}

package/dist/cli/templates/tools.d.ts

@@ -0,0 +1,9 @@
+/**
+ * Tool Templates — Example tools for the scaffolded project
+ * @module
+ */
+/** Generate `src/tools/system/health.ts` — Health check with Presenter */
+export declare function healthToolTs(): string;
+/** Generate `src/tools/system/echo.ts` — Simple echo tool */
+export declare function echoToolTs(): string;
+//# sourceMappingURL=tools.d.ts.map

package/dist/cli/templates/tools.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"tools.d.ts","sourceRoot":"","sources":["../../../src/cli/templates/tools.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,0EAA0E;AAC1E,wBAAgB,YAAY,IAAI,MAAM,CA+BrC;AAED,6DAA6D;AAC7D,wBAAgB,UAAU,IAAI,MAAM,CA0BnC"}

package/dist/cli/templates/tools.js

@@ -0,0 +1,66 @@
+/**
+ * Tool Templates — Example tools for the scaffolded project
+ * @module
+ */
+/** Generate `src/tools/system/health.ts` — Health check with Presenter */
+export function healthToolTs() {
+    return `/**
+ * System Health Tool — Full MVA Pipeline Example
+ *
+ * Demonstrates:
+ * - f.tool() with automatic context typing
+ * - Presenter integration (Egress Firewall)
+ * - readOnly annotation for LLM optimization
+ * - export default for autoDiscover()
+ */
+import { f } from '../../fusion.js';
+import { SystemPresenter } from '../../presenters/SystemPresenter.js';
+
+export default f.tool({
+    name: 'system.health',
+    description: 'Real-time server health status',
+    readOnly: true,
+    returns: SystemPresenter,
+    handler: async ({ ctx }) => {
+        // Return raw data — the Presenter validates, strips
+        // undeclared fields, injects rules, and renders UI.
+        return {
+            status: 'healthy',
+            uptime: process.uptime(),
+            version: '0.1.0',
+            timestamp: new Date().toISOString(),
+            tenant: ctx.tenantId,
+        };
+    },
+});
+`;
+}
+/** Generate `src/tools/system/echo.ts` — Simple echo tool */
+export function echoToolTs() {
+    return `/**
+ * Echo Tool — Connectivity Testing
+ *
+ * Minimal tool without a Presenter. Uses success() for
+ * a raw JSON response. Useful for verifying the MCP
+ * connection is alive.
+ */
+import { f } from '../../fusion.js';
+import { success } from '@vinkius-core/mcp-fusion';
+
+export default f.tool({
+    name: 'system.echo',
+    description: 'Echo a message back (connectivity test)',
+    readOnly: true,
+    input: {
+        message: { type: 'string', description: 'Message to echo back' },
+    },
+    handler: async ({ input }) => {
+        return success({
+            echo: input.message,
+            receivedAt: new Date().toISOString(),
+        });
+    },
+});
+`;
+}
+//# sourceMappingURL=tools.js.map

package/dist/cli/templates/tools.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"tools.js","sourceRoot":"","sources":["../../../src/cli/templates/tools.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,0EAA0E;AAC1E,MAAM,UAAU,YAAY;IACxB,OAAO;;;;;;;;;;;;;;;;;;;;;;;;;;;;;CA6BV,CAAC;AACF,CAAC;AAED,6DAA6D;AAC7D,MAAM,UAAU,UAAU;IACtB,OAAO;;;;;;;;;;;;;;;;;;;;;;;;CAwBV,CAAC;AACF,CAAC"}

package/dist/cli/templates/vectors/database.d.ts

@@ -0,0 +1,9 @@
+/**
+ * Database Vector — Prisma schema + DB tool templates
+ * @module
+ */
+/** Generate `prisma/schema.prisma` */
+export declare function prismaSchema(): string;
+/** Generate `src/tools/db/users.ts` */
+export declare function dbUsersToolTs(): string;
+//# sourceMappingURL=database.d.ts.map

package/dist/cli/templates/vectors/database.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"database.d.ts","sourceRoot":"","sources":["../../../../src/cli/templates/vectors/database.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,sCAAsC;AACtC,wBAAgB,YAAY,IAAI,MAAM,CAgDrC;AAED,uCAAuC;AACvC,wBAAgB,aAAa,IAAI,MAAM,CA8BtC"}

package/dist/cli/templates/vectors/database.js

@@ -0,0 +1,87 @@
+/**
+ * Database Vector — Prisma schema + DB tool templates
+ * @module
+ */
+/** Generate `prisma/schema.prisma` */
+export function prismaSchema() {
+    return `// Prisma Schema — Database-Driven MCP Server
+//
+// The mcp-fusion-prisma-gen generator reads annotations
+// and auto-generates Presenters + ToolBuilders with:
+// - Field-level security (/// @fusion.hide)
+// - Tenant isolation
+// - OOM protection
+
+generator client {
+    provider = "prisma-client-js"
+}
+
+generator fusion {
+    provider = "mcp-fusion-prisma-gen"
+}
+
+datasource db {
+    provider = "postgresql"
+    url      = env("DATABASE_URL")
+}
+
+model User {
+    id        String   @id @default(cuid())
+    email     String   @unique
+    name      String
+
+    /// @fusion.hide — Stripped by the Egress Firewall before reaching the LLM
+    password  String
+
+    role      String   @default("USER")
+    createdAt DateTime @default(now())
+    updatedAt DateTime @updatedAt
+
+    posts     Post[]
+}
+
+model Post {
+    id        String   @id @default(cuid())
+    title     String
+    content   String?
+    published Boolean  @default(false)
+    createdAt DateTime @default(now())
+
+    author    User     @relation(fields: [authorId], references: [id])
+    authorId  String
+}
+`;
+}
+/** Generate `src/tools/db/users.ts` */
+export function dbUsersToolTs() {
+    return `/**
+ * Database Users Tool — Prisma-Driven CRUD
+ *
+ * Example tool that queries the database via Prisma.
+ * The Presenter strips the 'password' field before
+ * it reaches the LLM context.
+ */
+import { f } from '../../fusion.js';
+import { success } from '@vinkius-core/mcp-fusion';
+
+export default f.tool({
+    name: 'db.list_users',
+    description: 'List users from the database',
+    readOnly: true,
+    input: {
+        take: { type: 'number', min: 1, max: 50, optional: true, description: 'Max results' },
+    },
+    handler: async ({ input, ctx }) => {
+        // TODO: Replace with your Prisma client
+        // const users = await ctx.db.user.findMany({ take: input.take ?? 10 });
+        // return users;
+
+        return success({
+            hint: 'Connect your Prisma client in src/context.ts to enable database queries.',
+            example: 'const users = await ctx.db.user.findMany({ take: 10 })',
+        });
+    },
+});
+`;
+}
+//# sourceMappingURL=database.js.map

package/dist/cli/templates/vectors/database.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"database.js","sourceRoot":"","sources":["../../../../src/cli/templates/vectors/database.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,sCAAsC;AACtC,MAAM,UAAU,YAAY;IACxB,OAAO;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;CA8CV,CAAC;AACF,CAAC;AAED,uCAAuC;AACvC,MAAM,UAAU,aAAa;IACzB,OAAO;;;;;;;;;;;;;;;;;;;;;;;;;;;;CA4BV,CAAC;AACF,CAAC"}

package/dist/cli/templates/vectors/index.d.ts

@@ -0,0 +1,9 @@
+/**
+ * Vector Templates — Barrel Export
+ * @module
+ */
+export { prismaSchema, dbUsersToolTs } from './database.js';
+export { n8nConnectorTs } from './workflow.js';
+export { openapiYaml, openapiSetupMd } from './openapi.js';
+export { oauthSetupTs, oauthMiddlewareTs } from './oauth.js';
+//# sourceMappingURL=index.d.ts.map

package/dist/cli/templates/vectors/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../../src/cli/templates/vectors/index.ts"],"names":[],"mappings":"AAAA;;;GAGG;AACH,OAAO,EAAE,YAAY,EAAE,aAAa,EAAE,MAAM,eAAe,CAAC;AAC5D,OAAO,EAAE,cAAc,EAAE,MAAM,eAAe,CAAC;AAC/C,OAAO,EAAE,WAAW,EAAE,cAAc,EAAE,MAAM,cAAc,CAAC;AAC3D,OAAO,EAAE,YAAY,EAAE,iBAAiB,EAAE,MAAM,YAAY,CAAC"}

package/dist/cli/templates/vectors/index.js

@@ -0,0 +1,9 @@
+/**
+ * Vector Templates — Barrel Export
+ * @module
+ */
+export { prismaSchema, dbUsersToolTs } from './database.js';
+export { n8nConnectorTs } from './workflow.js';
+export { openapiYaml, openapiSetupMd } from './openapi.js';
+export { oauthSetupTs, oauthMiddlewareTs } from './oauth.js';
+//# sourceMappingURL=index.js.map

package/dist/cli/templates/vectors/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../../src/cli/templates/vectors/index.ts"],"names":[],"mappings":"AAAA;;;GAGG;AACH,OAAO,EAAE,YAAY,EAAE,aAAa,EAAE,MAAM,eAAe,CAAC;AAC5D,OAAO,EAAE,cAAc,EAAE,MAAM,eAAe,CAAC;AAC/C,OAAO,EAAE,WAAW,EAAE,cAAc,EAAE,MAAM,cAAc,CAAC;AAC3D,OAAO,EAAE,YAAY,EAAE,iBAAiB,EAAE,MAAM,YAAY,CAAC"}

package/dist/cli/templates/vectors/oauth.d.ts

@@ -0,0 +1,10 @@
+/**
+ * OAuth Vector — Device Flow Authentication templates
+ * @module
+ */
+import type { ProjectConfig } from '../../types.js';
+/** Generate `src/auth.ts` — OAuth Device Flow setup */
+export declare function oauthSetupTs(config: ProjectConfig): string;
+/** Generate `src/middleware/auth.ts` — requireAuth middleware */
+export declare function oauthMiddlewareTs(): string;
+//# sourceMappingURL=oauth.d.ts.map

package/dist/cli/templates/vectors/oauth.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"oauth.d.ts","sourceRoot":"","sources":["../../../../src/cli/templates/vectors/oauth.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,gBAAgB,CAAC;AAEpD,uDAAuD;AACvD,wBAAgB,YAAY,CAAC,MAAM,EAAE,aAAa,GAAG,MAAM,CAsC1D;AAED,iEAAiE;AACjE,wBAAgB,iBAAiB,IAAI,MAAM,CA8B1C"}

package/dist/cli/templates/vectors/oauth.js

@@ -0,0 +1,77 @@
+/**
+ * OAuth Vector — Device Flow Authentication templates
+ * @module
+ */
+/** Generate `src/auth.ts` — OAuth Device Flow setup */
+export function oauthSetupTs(config) {
+    return `/**
+ * OAuth Setup — Device Flow Authentication (RFC 8628)
+ *
+ * Pre-configured \`createAuthTool()\` with login, complete, status, logout actions.
+ * The \`requireAuth()\` middleware protects any tool with one line.
+ *
+ * 1. Set CLIENT_ID and AUTH endpoints in .env
+ * 2. Register the auth tool in server.ts
+ * 3. Use \`requireAuth()\` on protected tools
+ */
+import { createAuthTool, TokenManager } from '@vinkius-core/mcp-fusion-oauth';
+import type { ToolRegistry } from '@vinkius-core/mcp-fusion';
+
+export function registerAuth<TContext>(registry: ToolRegistry<TContext>): void {
+    const clientId = process.env['OAUTH_CLIENT_ID'];
+    const authEndpoint = process.env['OAUTH_AUTH_ENDPOINT'];
+    const tokenEndpoint = process.env['OAUTH_TOKEN_ENDPOINT'];
+
+    if (!clientId || !authEndpoint || !tokenEndpoint) {
+        console.error('⚠️  OAUTH_CLIENT_ID, OAUTH_AUTH_ENDPOINT, OAUTH_TOKEN_ENDPOINT are required in .env');
+        return;
+    }
+
+    const auth = createAuthTool({
+        clientId,
+        authorizationEndpoint: authEndpoint,
+        tokenEndpoint,
+        tokenManager: {
+            configDir: '.${config.name}',
+            envVar: '${config.name.toUpperCase().replace(/-/g, '_')}_TOKEN',
+        },
+    });
+
+    registry.register(auth);
+    console.error('🔐 OAuth Device Flow registered (auth.login → auth.complete → auth.status)');
+}
+`;
+}
+/** Generate `src/middleware/auth.ts` — requireAuth middleware */
+export function oauthMiddlewareTs() {
+    return `/**
+ * Auth Middleware — Protect tools with requireAuth()
+ *
+ * @example
+ * \`\`\`ts
+ * import { withAuth } from '../middleware/auth.js';
+ *
+ * export default f.tool({
+ *     name: 'projects.list',
+ *     middleware: [withAuth],
+ *     handler: async ({ ctx }) => { /* authenticated */ },
+ * });
+ * \`\`\`
+ */
+import { requireAuth } from '@vinkius-core/mcp-fusion-oauth';
+
+/**
+ * Pre-configured auth middleware.
+ * Rejects unauthenticated requests with \`AUTH_REQUIRED\` + self-healing hints.
+ */
+export const withAuth = requireAuth({
+    extractToken: (ctx: unknown) => {
+        const obj = ctx as Record<string, unknown>;
+        return typeof obj['token'] === 'string' ? obj['token'] : null;
+    },
+    recoveryHint: 'Call auth action=login to authenticate via browser',
+    recoveryAction: 'auth',
+});
+`;
+}
+//# sourceMappingURL=oauth.js.map

package/dist/cli/templates/vectors/oauth.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"oauth.js","sourceRoot":"","sources":["../../../../src/cli/templates/vectors/oauth.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAIH,uDAAuD;AACvD,MAAM,UAAU,YAAY,CAAC,MAAqB;IAC9C,OAAO;;;;;;;;;;;;;;;;;;;;;;;;;;;;2BA4BgB,MAAM,CAAC,IAAI;uBACf,MAAM,CAAC,IAAI,CAAC,WAAW,EAAE,CAAC,OAAO,CAAC,IAAI,EAAE,GAAG,CAAC;;;;;;;CAOlE,CAAC;AACF,CAAC;AAED,iEAAiE;AACjE,MAAM,UAAU,iBAAiB;IAC7B,OAAO;;;;;;;;;;;;;;;;;;;;;;;;;;;;CA4BV,CAAC;AACF,CAAC"}

package/dist/cli/templates/vectors/openapi.d.ts

@@ -0,0 +1,10 @@
+/**
+ * OpenAPI Vector — Spec + setup templates
+ * @module
+ */
+import type { ProjectConfig } from '../../types.js';
+/** Generate `openapi.yaml` — Sample OpenAPI spec */
+export declare function openapiYaml(config: ProjectConfig): string;
+/** Generate `SETUP.md` — OpenAPI generation instructions */
+export declare function openapiSetupMd(): string;
+//# sourceMappingURL=openapi.d.ts.map

package/dist/cli/templates/vectors/openapi.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"openapi.d.ts","sourceRoot":"","sources":["../../../../src/cli/templates/vectors/openapi.ts"],"names":[],"mappings":"AAAA;;;GAGG;AACH,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,gBAAgB,CAAC;AAEpD,oDAAoD;AACpD,wBAAgB,WAAW,CAAC,MAAM,EAAE,aAAa,GAAG,MAAM,CAwEzD;AAED,4DAA4D;AAC5D,wBAAgB,cAAc,IAAI,MAAM,CA6BvC"}