@wootsup/mcp 0.1.0-rc.1

package/dist/modules/apimapper/credentials.js

@@ -0,0 +1,258 @@
+// src/modules/apimapper/credentials.ts — Credential CRUD + OAuth begin
+//
+// CRITICAL: Credential wire format is **snake_case** (auth_type, auth_data,
+// oauth_provider). This matches Connections (also snake_case after Round-2
+// audit correction) but differs from Graph (camelCase) and LocalSource
+// (camelCase). See types.ts for the canonical wire-shape map.
+//
+// SECURITY: All credential responses are routed through `sanitizeSecrets()`
+// in client.ts → request({sanitize:true}). Even if the PHP backend
+// regresses and returns auth_data, the MCP layer never leaks it. See
+// credential-sanitizer.ts.
+import { z } from "zod";
+import { formatResult, autoFormatTable, readOnly, creating, mutating, destructive, } from "@getimo/mcp-toolkit";
+import { request, hintFor } from "./client.js";
+export function registerCredentialTools(server) {
+    // ── apimapper_credential_list ──────────────────────────────────────
+    server.registerTool("apimapper_credential_list", {
+        title: "List Credentials",
+        description: "List all stored credentials (sanitised — secrets omitted). " +
+            "Use apimapper_credential_get for one credential's metadata." +
+            "\n\nExample:\n  apimapper_credential_list({})",
+        inputSchema: {
+            auth_type: z
+                .enum(["api_key", "bearer", "basic_auth", "oauth2_code", "oauth2_cc", "all"])
+                .default("all")
+                .describe("Filter by auth_type (server wire-format field)"),
+        },
+        annotations: readOnly(),
+    }, async ({ auth_type }) => {
+        const r = await request("/credentials", {}, { sanitize: true });
+        if (!r.success) {
+            return formatResult({ error: r.error, status: r.status, errorCode: r.errorCode, context: { auth_type }, hint: hintFor(r.errorCode) }, true);
+        }
+        const raw = Array.isArray(r.data?.credentials) ? r.data.credentials : [];
+        const items = auth_type === "all" ? raw : raw.filter((c) => c.auth_type === auth_type);
+        return autoFormatTable(items.map((c) => ({
+            id: c.id,
+            name: c.name,
+            auth_type: c.auth_type,
+            provider: c.oauth_provider || c.provider || "—",
+            updated_at: c.updated_at || "—",
+        })), {
+            columns: [
+                { key: "id", label: "ID", width: 28 },
+                { key: "name", label: "NAME", width: 28 },
+                { key: "auth_type", label: "AUTH_TYPE", width: 14 },
+                { key: "provider", label: "PROVIDER", width: 16 },
+                { key: "updated_at", label: "UPDATED", width: 22 },
+            ],
+            header: (n) => `${n} credentials`,
+            footer: "Use apimapper_credential_get <id> for metadata. Secrets are NEVER returned.",
+        });
+    });
+    // ── apimapper_credential_get ───────────────────────────────────────
+    server.registerTool("apimapper_credential_get", {
+        title: "Get Credential (sanitised)",
+        description: "Fetch credential metadata. **Secret values are stripped at the MCP boundary** " +
+            "(auth_data, refresh_token, access_token, api_key, etc. → '[REDACTED]'). " +
+            "Use only for metadata inspection." +
+            "\n\nExample:\n  apimapper_credential_get({ id: 'cred_pexels_key' })",
+        inputSchema: {
+            id: z.string().describe('Credential ID (e.g., "cred_abc123"). Use apimapper_credential_list to find.'),
+        },
+        annotations: readOnly(),
+    }, async ({ id }) => {
+        const r = await request(`/credentials/${encodeURIComponent(id)}`, {}, { sanitize: true });
+        if (!r.success) {
+            return formatResult({ error: r.error, status: r.status, errorCode: r.errorCode, context: { id }, hint: hintFor(r.errorCode) }, true);
+        }
+        // Server may return either `credential: {...}` envelope or bare object.
+        const cred = r.data && typeof r.data === "object" && "credential" in r.data
+            ? r.data.credential
+            : r.data;
+        if (!cred || Object.keys(cred).length === 0) {
+            return formatResult({ error: "credential not found", status: r.status, context: { id }, hint: hintFor("not_found") }, true);
+        }
+        const mapped = {
+            id: cred.id,
+            name: cred.name,
+            auth_type: cred.auth_type,
+            oauth_provider: cred.oauth_provider || null,
+            oauth_token_expires_at: cred.oauth_token_expires_at || null,
+            provider: cred.provider || null,
+            created_at: cred.created_at,
+            updated_at: cred.updated_at,
+            note: "Secret fields stripped at MCP boundary. To inspect a secret, use the UI Admin or 1Password.",
+        };
+        return formatResult(mapped, false, { maxChars: 3000 });
+    });
+    // ── apimapper_credential_create ────────────────────────────────────
+    server.registerTool("apimapper_credential_create", {
+        title: "Create Credential",
+        description: "Create a new credential. Secrets are encrypted server-side. " +
+            "REST contract uses snake_case keys: auth_type, auth_data, oauth_provider." +
+            "\n\nExample:\n  apimapper_credential_create({ name: 'Pexels API Key', auth_type: 'api_key', auth_data: { api_key: 'a1b2c3d4...' } })",
+        inputSchema: {
+            name: z.string().min(1).describe('Credential name (e.g., "Calendly Live API Key")'),
+            auth_type: z
+                .enum(["api_key", "bearer", "basic_auth", "oauth2_code", "oauth2_cc"])
+                .describe("Auth type (server wire-format key — snake_case)"),
+            auth_data: z
+                .record(z.string(), z.unknown())
+                .describe('Secret payload (shape depends on auth_type). ' +
+                'api_key: {"api_key":"..."}, ' +
+                'bearer: {"token":"..."}, ' +
+                'basic_auth: {"username":"...","password":"..."}, ' +
+                'oauth2_*: {"client_id":"...","client_secret":"...","auth_url":"...","token_url":"...","scopes":[...]}'),
+            oauth_provider: z.string().optional().describe('OAuth provider slug (e.g., "google", "meta") for oauth2_* types'),
+            provider: z.string().optional().describe('Generic provider slug for credential-by-provider filtering'),
+            oauth_token_expires_at: z.string().optional().describe('ISO timestamp when access token expires (oauth2_* only)'),
+        },
+        annotations: creating(),
+    }, async (input) => {
+        const r = await request("/credentials", { method: "POST", body: JSON.stringify(input) }, { sanitize: true });
+        if (!r.success) {
+            return formatResult({
+                error: r.error,
+                status: r.status,
+                errorCode: r.errorCode,
+                context: { name: input.name, auth_type: input.auth_type },
+                hint: hintFor(r.errorCode),
+            }, true);
+        }
+        const cred = r.data?.credential;
+        return formatResult({
+            created: true,
+            id: cred?.id,
+            name: cred?.name,
+            auth_type: cred?.auth_type,
+            note: "auth_data accepted and encrypted; not echoed.",
+        }, false, { maxChars: 2000 });
+    });
+    // ── apimapper_credential_update ────────────────────────────────────
+    server.registerTool("apimapper_credential_update", {
+        title: "Update Credential",
+        description: "Update credential metadata or rotate secret. REST contract uses snake_case. " +
+            "Only provided fields are changed." +
+            "\n\nExample:\n  apimapper_credential_update({ id: 'cred_pexels_key', name: 'Pexels API Key (rotated)' })",
+        inputSchema: {
+            id: z.string().describe("Credential ID. Use apimapper_credential_list to find."),
+            patch: z
+                .record(z.string(), z.unknown())
+                .describe('Fields to update — snake_case keys. ' +
+                'Examples: {"name":"Renamed"}, {"auth_data":{"api_key":"newkey"}}, ' +
+                '{"oauth_token_expires_at":"2026-12-31T00:00:00Z"}'),
+        },
+        annotations: mutating(),
+    }, async ({ id, patch }) => {
+        const r = await request(`/credentials/${encodeURIComponent(id)}`, { method: "PUT", body: JSON.stringify(patch) }, { sanitize: true });
+        if (!r.success) {
+            return formatResult({ error: r.error, status: r.status, errorCode: r.errorCode, context: { id }, hint: hintFor(r.errorCode) }, true);
+        }
+        const cred = r.data?.credential;
+        return formatResult({
+            updated: true,
+            id: cred?.id,
+            name: cred?.name,
+            auth_type: cred?.auth_type,
+            note: "Patch applied; secret values (if any) stripped from response.",
+        }, false, { maxChars: 2000 });
+    });
+    // ── apimapper_credential_delete ────────────────────────────────────
+    server.registerTool("apimapper_credential_delete", {
+        title: "Delete Credential",
+        description: "Permanently delete a credential. Any connection using it will lose auth. " +
+            "Preview-mode (confirm:false) fetches the credential metadata so you can verify before deletion." +
+            "\n\nExample:\n  apimapper_credential_delete({ id: 'cred_pexels_key', confirm: false })",
+        inputSchema: {
+            id: z.string().describe("Credential ID. Use apimapper_credential_list to find."),
+            confirm: z
+                .boolean()
+                .default(false)
+                .describe("Must be true to execute. On confirm:false, returns a preview."),
+        },
+        annotations: destructive(),
+    }, async ({ id, confirm }) => {
+        if (!confirm) {
+            // Preview: fetch metadata for informed confirmation.
+            const preview = await request(`/credentials/${encodeURIComponent(id)}`, {}, { sanitize: true });
+            const cred = preview.success && preview.data && typeof preview.data === "object" && "credential" in preview.data
+                ? preview.data.credential
+                : preview.data;
+            return formatResult({
+                preview: true,
+                warning: "DESTRUCTIVE — Credential delete cannot be undone. Dependent connections will fail auth.",
+                target: cred
+                    ? { id: cred.id, name: cred.name, auth_type: cred.auth_type, provider: cred.oauth_provider || cred.provider }
+                    : { id, note: "could not preview — id may not exist" },
+                instruction: "Ask user to confirm, then call again with confirm: true.",
+            });
+        }
+        const r = await request(`/credentials/${encodeURIComponent(id)}`, { method: "DELETE" });
+        if (!r.success) {
+            return formatResult({ error: r.error, status: r.status, errorCode: r.errorCode, context: { id }, hint: hintFor(r.errorCode) }, true);
+        }
+        return formatResult({ deleted: true, id }, false, { maxChars: 1500 });
+    });
+    // ── apimapper_credential_link ──────────────────────────────────────
+    server.registerTool("apimapper_credential_link", {
+        title: "Link Credential to Connection",
+        description: "Attach a credential to a connection. PUT /connections/{id} with " +
+            "wire-format key `credential_id` (snake_case — Connection wire is snake_case)." +
+            "\n\nExample:\n  apimapper_credential_link({ connection_id: 'con_abc123', credential_id: 'cred_pexels_key' })",
+        inputSchema: {
+            connection_id: z.string().describe("Connection ID. Use apimapper_connection_list."),
+            credential_id: z.string().describe("Credential ID. Use apimapper_credential_list."),
+        },
+        annotations: mutating(),
+    }, async ({ connection_id, credential_id }) => {
+        // Connection wire = snake_case (verified vs ConnectionProbeCore.php:89).
+        const r = await request(`/connections/${encodeURIComponent(connection_id)}`, {
+            method: "PUT",
+            body: JSON.stringify({ credential_id }),
+        });
+        if (!r.success) {
+            return formatResult({
+                error: r.error,
+                status: r.status,
+                errorCode: r.errorCode,
+                context: { connection_id, credential_id },
+                hint: hintFor(r.errorCode),
+            }, true);
+        }
+        return formatResult({ linked: true, connection_id, credential_id }, false, { maxChars: 1500 });
+    });
+    // ── apimapper_oauth_authorize_begin ────────────────────────────────
+    server.registerTool("apimapper_oauth_authorize_begin", {
+        title: "Begin OAuth2 Authorize Flow",
+        description: "Initiate the OAuth2 authorization-code flow for a credential. Returns the upstream " +
+            "authorize URL the user must visit in a browser to grant consent. " +
+            "After consent: call apimapper_credential_get to verify the credential was populated." +
+            "\n\nExample:\n  apimapper_oauth_authorize_begin({ credential_id: 'cred_google_drive' })",
+        inputSchema: {
+            credential_id: z
+                .string()
+                .describe("Credential ID (must be type oauth2_code). Use apimapper_credential_list."),
+            scopes: z
+                .array(z.string())
+                .optional()
+                .describe('Override scopes (e.g., ["https://www.googleapis.com/auth/spreadsheets.readonly"])'),
+        },
+        annotations: creating(),
+    }, async ({ credential_id, scopes }) => {
+        const r = await request("/oauth/authorize", {
+            method: "POST",
+            body: JSON.stringify({ credential_id, scopes }),
+        });
+        if (!r.success) {
+            return formatResult({ error: r.error, status: r.status, errorCode: r.errorCode, context: { credential_id }, hint: hintFor(r.errorCode) }, true);
+        }
+        return formatResult({
+            authorize_url: r.data?.authorize_url,
+            state: r.data?.state,
+            instruction: "Open authorize_url in a browser, complete consent. Then call apimapper_credential_get to verify population.",
+        }, false, { maxChars: 2000 });
+    });
+}
+//# sourceMappingURL=credentials.js.map

package/dist/modules/apimapper/credentials.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"credentials.js","sourceRoot":"","sources":["../../../src/modules/apimapper/credentials.ts"],"names":[],"mappings":"AAAA,uEAAuE;AACvE,EAAE;AACF,4EAA4E;AAC5E,2EAA2E;AAC3E,uEAAuE;AACvE,8DAA8D;AAC9D,EAAE;AACF,4EAA4E;AAC5E,mEAAmE;AACnE,qEAAqE;AACrE,2BAA2B;AAG3B,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AACxB,OAAO,EACL,YAAY,EACZ,eAAe,EACf,QAAQ,EACR,QAAQ,EACR,QAAQ,EACR,WAAW,GACZ,MAAM,qBAAqB,CAAC;AAC7B,OAAO,EAAE,OAAO,EAAE,OAAO,EAAE,MAAM,aAAa,CAAC;AAG/C,MAAM,UAAU,uBAAuB,CAAC,MAAiB;IACvD,sEAAsE;IACtE,MAAM,CAAC,YAAY,CACjB,2BAA2B,EAC3B;QACE,KAAK,EAAE,kBAAkB;QACzB,WAAW,EACT,6DAA6D;YAC7D,6DAA6D;YAC7D,+CAA+C;QACjD,WAAW,EAAE;YACX,SAAS,EAAE,CAAC;iBACT,IAAI,CAAC,CAAC,SAAS,EAAE,QAAQ,EAAE,YAAY,EAAE,aAAa,EAAE,WAAW,EAAE,KAAK,CAAC,CAAC;iBAC5E,OAAO,CAAC,KAAK,CAAC;iBACd,QAAQ,CAAC,gDAAgD,CAAC;SAC9D;QACD,WAAW,EAAE,QAAQ,EAAE;KACxB,EACD,KAAK,EAAE,EAAE,SAAS,EAAE,EAAE,EAAE;QACtB,MAAM,CAAC,GAAG,MAAM,OAAO,CAAgC,cAAc,EAAE,EAAE,EAAE,EAAE,QAAQ,EAAE,IAAI,EAAE,CAAC,CAAC;QAC/F,IAAI,CAAC,CAAC,CAAC,OAAO,EAAE,CAAC;YACf,OAAO,YAAY,CACjB,EAAE,KAAK,EAAE,CAAC,CAAC,KAAK,EAAE,MAAM,EAAE,CAAC,CAAC,MAAM,EAAE,SAAS,EAAE,CAAC,CAAC,SAAS,EAAE,OAAO,EAAE,EAAE,SAAS,EAAE,EAAE,IAAI,EAAE,OAAO,CAAC,CAAC,CAAC,SAAS,CAAC,EAAE,EAChH,IAAI,CACL,CAAC;QACJ,CAAC;QACD,MAAM,GAAG,GAAG,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,IAAI,EAAE,WAAW,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,CAAC,EAAE,CAAC;QACzE,MAAM,KAAK,GAAG,SAAS,KAAK,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,SAAS,KAAK,SAAS,CAAC,CAAC;QACvF,OAAO,eAAe,CACpB,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;YAChB,EAAE,EAAE,CAAC,CAAC,EAAE;YACR,IAAI,EAAE,CAAC,CAAC,IAAI;YACZ,SAAS,EAAE,CAAC,CAAC,SAAS;YACtB,QAAQ,EAAE,CAAC,CAAC,cAAc,IAAI,CAAC,CAAC,QAAQ,IAAI,GAAG;YAC/C,UAAU,EAAE,CAAC,CAAC,UAAU,IAAI,GAAG;SAChC,CAAC,CAA8B,EAChC;YACE,OAAO,EAAE;gBACP,EAAE,GAAG,EAAE,IAAI,EAAE,KAAK,EAAE,IAAI,EAAE,KAAK,EAAE,EAAE,EAAE;gBACrC,EAAE,GAAG,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,KAAK,EAAE,EAAE,EAAE;gBACzC,EAAE,GAAG,EAAE,WAAW,EAAE,KAAK,EAAE,WAAW,EAAE,KAAK,EAAE,EAAE,EAAE;gBACnD,EAAE,GAAG,EAAE,UAAU,EAAE,KAAK,EAAE,UAAU,EAAE,KAAK,EAAE,EAAE,EAAE;gBACjD,EAAE,GAAG,EAAE,YAAY,EAAE,KAAK,EAAE,SAAS,EAAE,KAAK,EAAE,EAAE,EAAE;aACnD;YACD,MAAM,EAAE,CAAC,CAAC,EAAE,EAAE,CAAC,GAAG,CAAC,cAAc;YACjC,MAAM,EAAE,6EAA6E;SACtF,CACF,CAAC;IACJ,CAAC,CACF,CAAC;IAEF,sEAAsE;IACtE,MAAM,CAAC,YAAY,CACjB,0BAA0B,EAC1B;QACE,KAAK,EAAE,4BAA4B;QACnC,WAAW,EACT,gFAAgF;YAChF,0EAA0E;YAC1E,mCAAmC;YACnC,qEAAqE;QACvE,WAAW,EAAE;YACX,EAAE,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,6EAA6E,CAAC;SACvG;QACD,WAAW,EAAE,QAAQ,EAAE;KACxB,EACD,KAAK,EAAE,EAAE,EAAE,EAAE,EAAE,EAAE;QACf,MAAM,CAAC,GAAG,MAAM,OAAO,CACrB,gBAAgB,kBAAkB,CAAC,EAAE,CAAC,EAAE,EACxC,EAAE,EACF,EAAE,QAAQ,EAAE,IAAI,EAAE,CACnB,CAAC;QACF,IAAI,CAAC,CAAC,CAAC,OAAO,EAAE,CAAC;YACf,OAAO,YAAY,CACjB,EAAE,KAAK,EAAE,CAAC,CAAC,KAAK,EAAE,MAAM,EAAE,CAAC,CAAC,MAAM,EAAE,SAAS,EAAE,CAAC,CAAC,SAAS,EAAE,OAAO,EAAE,EAAE,EAAE,EAAE,EAAE,IAAI,EAAE,OAAO,CAAC,CAAC,CAAC,SAAS,CAAC,EAAE,EACzG,IAAI,CACL,CAAC;QACJ,CAAC;QACD,wEAAwE;QACxE,MAAM,IAAI,GACR,CAAC,CAAC,IAAI,IAAI,OAAO,CAAC,CAAC,IAAI,KAAK,QAAQ,IAAI,YAAY,IAAI,CAAC,CAAC,IAAI;YAC5D,CAAC,CAAE,CAAC,CAAC,IAAmC,CAAC,UAAU;YACnD,CAAC,CAAE,CAAC,CAAC,IAAmB,CAAC;QAC7B,IAAI,CAAC,IAAI,IAAI,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YAC5C,OAAO,YAAY,CACjB,EAAE,KAAK,EAAE,sBAAsB,EAAE,MAAM,EAAE,CAAC,CAAC,MAAM,EAAE,OAAO,EAAE,EAAE,EAAE,EAAE,EAAE,IAAI,EAAE,OAAO,CAAC,WAAW,CAAC,EAAE,EAChG,IAAI,CACL,CAAC;QACJ,CAAC;QACD,MAAM,MAAM,GAAG;YACb,EAAE,EAAE,IAAI,CAAC,EAAE;YACX,IAAI,EAAE,IAAI,CAAC,IAAI;YACf,SAAS,EAAE,IAAI,CAAC,SAAS;YACzB,cAAc,EAAE,IAAI,CAAC,cAAc,IAAI,IAAI;YAC3C,sBAAsB,EAAE,IAAI,CAAC,sBAAsB,IAAI,IAAI;YAC3D,QAAQ,EAAE,IAAI,CAAC,QAAQ,IAAI,IAAI;YAC/B,UAAU,EAAE,IAAI,CAAC,UAAU;YAC3B,UAAU,EAAE,IAAI,CAAC,UAAU;YAC3B,IAAI,EAAE,6FAA6F;SACpG,CAAC;QACF,OAAO,YAAY,CAAC,MAAM,EAAE,KAAK,EAAE,EAAE,QAAQ,EAAE,IAAI,EAAE,CAAC,CAAC;IACzD,CAAC,CACF,CAAC;IAEF,sEAAsE;IACtE,MAAM,CAAC,YAAY,CACjB,6BAA6B,EAC7B;QACE,KAAK,EAAE,mBAAmB;QAC1B,WAAW,EACT,8DAA8D;YAC9D,2EAA2E;YAC3E,sIAAsI;QACxI,WAAW,EAAE;YACX,IAAI,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,iDAAiD,CAAC;YACnF,SAAS,EAAE,CAAC;iBACT,IAAI,CAAC,CAAC,SAAS,EAAE,QAAQ,EAAE,YAAY,EAAE,aAAa,EAAE,WAAW,CAAC,CAAC;iBACrE,QAAQ,CAAC,iDAAiD,CAAC;YAC9D,SAAS,EAAE,CAAC;iBACT,MAAM,CAAC,CAAC,CAAC,MAAM,EAAE,EAAE,CAAC,CAAC,OAAO,EAAE,CAAC;iBAC/B,QAAQ,CACP,+CAA+C;gBAC7C,8BAA8B;gBAC9B,2BAA2B;gBAC3B,mDAAmD;gBACnD,uGAAuG,CAC1G;YACH,cAAc,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE,CAAC,QAAQ,CAAC,iEAAiE,CAAC;YACjH,QAAQ,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE,CAAC,QAAQ,CAAC,4DAA4D,CAAC;YACtG,sBAAsB,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE,CAAC,QAAQ,CAAC,yDAAyD,CAAC;SAClH;QACD,WAAW,EAAE,QAAQ,EAAE;KACxB,EACD,KAAK,EAAE,KAAK,EAAE,EAAE;QACd,MAAM,CAAC,GAAG,MAAM,OAAO,CACrB,cAAc,EACd,EAAE,MAAM,EAAE,MAAM,EAAE,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC,EAAE,EAC/C,EAAE,QAAQ,EAAE,IAAI,EAAE,CACnB,CAAC;QACF,IAAI,CAAC,CAAC,CAAC,OAAO,EAAE,CAAC;YACf,OAAO,YAAY,CACjB;gBACE,KAAK,EAAE,CAAC,CAAC,KAAK;gBACd,MAAM,EAAE,CAAC,CAAC,MAAM;gBAChB,SAAS,EAAE,CAAC,CAAC,SAAS;gBACtB,OAAO,EAAE,EAAE,IAAI,EAAE,KAAK,CAAC,IAAI,EAAE,SAAS,EAAE,KAAK,CAAC,SAAS,EAAE;gBACzD,IAAI,EAAE,OAAO,CAAC,CAAC,CAAC,SAAS,CAAC;aAC3B,EACD,IAAI,CACL,CAAC;QACJ,CAAC;QACD,MAAM,IAAI,GAAG,CAAC,CAAC,IAAI,EAAE,UAAU,CAAC;QAChC,OAAO,YAAY,CACjB;YACE,OAAO,EAAE,IAAI;YACb,EAAE,EAAE,IAAI,EAAE,EAAE;YACZ,IAAI,EAAE,IAAI,EAAE,IAAI;YAChB,SAAS,EAAE,IAAI,EAAE,SAAS;YAC1B,IAAI,EAAE,+CAA+C;SACtD,EACD,KAAK,EACL,EAAE,QAAQ,EAAE,IAAI,EAAE,CACnB,CAAC;IACJ,CAAC,CACF,CAAC;IAEF,sEAAsE;IACtE,MAAM,CAAC,YAAY,CACjB,6BAA6B,EAC7B;QACE,KAAK,EAAE,mBAAmB;QAC1B,WAAW,EACT,8EAA8E;YAC9E,mCAAmC;YACnC,0GAA0G;QAC5G,WAAW,EAAE;YACX,EAAE,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,uDAAuD,CAAC;YAChF,KAAK,EAAE,CAAC;iBACL,MAAM,CAAC,CAAC,CAAC,MAAM,EAAE,EAAE,CAAC,CAAC,OAAO,EAAE,CAAC;iBAC/B,QAAQ,CACP,sCAAsC;gBACpC,oEAAoE;gBACpE,mDAAmD,CACtD;SACJ;QACD,WAAW,EAAE,QAAQ,EAAE;KACxB,EACD,KAAK,EAAE,EAAE,EAAE,EAAE,KAAK,EAAE,EAAE,EAAE;QACtB,MAAM,CAAC,GAAG,MAAM,OAAO,CACrB,gBAAgB,kBAAkB,CAAC,EAAE,CAAC,EAAE,EACxC,EAAE,MAAM,EAAE,KAAK,EAAE,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC,EAAE,EAC9C,EAAE,QAAQ,EAAE,IAAI,EAAE,CACnB,CAAC;QACF,IAAI,CAAC,CAAC,CAAC,OAAO,EAAE,CAAC;YACf,OAAO,YAAY,CACjB,EAAE,KAAK,EAAE,CAAC,CAAC,KAAK,EAAE,MAAM,EAAE,CAAC,CAAC,MAAM,EAAE,SAAS,EAAE,CAAC,CAAC,SAAS,EAAE,OAAO,EAAE,EAAE,EAAE,EAAE,EAAE,IAAI,EAAE,OAAO,CAAC,CAAC,CAAC,SAAS,CAAC,EAAE,EACzG,IAAI,CACL,CAAC;QACJ,CAAC;QACD,MAAM,IAAI,GAAG,CAAC,CAAC,IAAI,EAAE,UAAU,CAAC;QAChC,OAAO,YAAY,CACjB;YACE,OAAO,EAAE,IAAI;YACb,EAAE,EAAE,IAAI,EAAE,EAAE;YACZ,IAAI,EAAE,IAAI,EAAE,IAAI;YAChB,SAAS,EAAE,IAAI,EAAE,SAAS;YAC1B,IAAI,EAAE,+DAA+D;SACtE,EACD,KAAK,EACL,EAAE,QAAQ,EAAE,IAAI,EAAE,CACnB,CAAC;IACJ,CAAC,CACF,CAAC;IAEF,sEAAsE;IACtE,MAAM,CAAC,YAAY,CACjB,6BAA6B,EAC7B;QACE,KAAK,EAAE,mBAAmB;QAC1B,WAAW,EACT,2EAA2E;YAC3E,iGAAiG;YACjG,wFAAwF;QAC1F,WAAW,EAAE;YACX,EAAE,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,uDAAuD,CAAC;YAChF,OAAO,EAAE,CAAC;iBACP,OAAO,EAAE;iBACT,OAAO,CAAC,KAAK,CAAC;iBACd,QAAQ,CAAC,+DAA+D,CAAC;SAC7E;QACD,WAAW,EAAE,WAAW,EAAE;KAC3B,EACD,KAAK,EAAE,EAAE,EAAE,EAAE,OAAO,EAAE,EAAE,EAAE;QACxB,IAAI,CAAC,OAAO,EAAE,CAAC;YACb,qDAAqD;YACrD,MAAM,OAAO,GAAG,MAAM,OAAO,CAC3B,gBAAgB,kBAAkB,CAAC,EAAE,CAAC,EAAE,EACxC,EAAE,EACF,EAAE,QAAQ,EAAE,IAAI,EAAE,CACnB,CAAC;YACF,MAAM,IAAI,GACR,OAAO,CAAC,OAAO,IAAI,OAAO,CAAC,IAAI,IAAI,OAAO,OAAO,CAAC,IAAI,KAAK,QAAQ,IAAI,YAAY,IAAI,OAAO,CAAC,IAAI;gBACjG,CAAC,CAAE,OAAO,CAAC,IAAmC,CAAC,UAAU;gBACzD,CAAC,CAAE,OAAO,CAAC,IAA+B,CAAC;YAC/C,OAAO,YAAY,CAAC;gBAClB,OAAO,EAAE,IAAI;gBACb,OAAO,EAAE,yFAAyF;gBAClG,MAAM,EAAE,IAAI;oBACV,CAAC,CAAC,EAAE,EAAE,EAAE,IAAI,CAAC,EAAE,EAAE,IAAI,EAAE,IAAI,CAAC,IAAI,EAAE,SAAS,EAAE,IAAI,CAAC,SAAS,EAAE,QAAQ,EAAE,IAAI,CAAC,cAAc,IAAI,IAAI,CAAC,QAAQ,EAAE;oBAC7G,CAAC,CAAC,EAAE,EAAE,EAAE,IAAI,EAAE,sCAAsC,EAAE;gBACxD,WAAW,EAAE,0DAA0D;aACxE,CAAC,CAAC;QACL,CAAC;QACD,MAAM,CAAC,GAAG,MAAM,OAAO,CAAC,gBAAgB,kBAAkB,CAAC,EAAE,CAAC,EAAE,EAAE,EAAE,MAAM,EAAE,QAAQ,EAAE,CAAC,CAAC;QACxF,IAAI,CAAC,CAAC,CAAC,OAAO,EAAE,CAAC;YACf,OAAO,YAAY,CACjB,EAAE,KAAK,EAAE,CAAC,CAAC,KAAK,EAAE,MAAM,EAAE,CAAC,CAAC,MAAM,EAAE,SAAS,EAAE,CAAC,CAAC,SAAS,EAAE,OAAO,EAAE,EAAE,EAAE,EAAE,EAAE,IAAI,EAAE,OAAO,CAAC,CAAC,CAAC,SAAS,CAAC,EAAE,EACzG,IAAI,CACL,CAAC;QACJ,CAAC;QACD,OAAO,YAAY,CAAC,EAAE,OAAO,EAAE,IAAI,EAAE,EAAE,EAAE,EAAE,KAAK,EAAE,EAAE,QAAQ,EAAE,IAAI,EAAE,CAAC,CAAC;IACxE,CAAC,CACF,CAAC;IAEF,sEAAsE;IACtE,MAAM,CAAC,YAAY,CACjB,2BAA2B,EAC3B;QACE,KAAK,EAAE,+BAA+B;QACtC,WAAW,EACT,kEAAkE;YAClE,+EAA+E;YAC/E,8GAA8G;QAChH,WAAW,EAAE;YACX,aAAa,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,+CAA+C,CAAC;YACnF,aAAa,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,+CAA+C,CAAC;SACpF;QACD,WAAW,EAAE,QAAQ,EAAE;KACxB,EACD,KAAK,EAAE,EAAE,aAAa,EAAE,aAAa,EAAE,EAAE,EAAE;QACzC,yEAAyE;QACzE,MAAM,CAAC,GAAG,MAAM,OAAO,CAAC,gBAAgB,kBAAkB,CAAC,aAAa,CAAC,EAAE,EAAE;YAC3E,MAAM,EAAE,KAAK;YACb,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,EAAE,aAAa,EAAE,CAAC;SACxC,CAAC,CAAC;QACH,IAAI,CAAC,CAAC,CAAC,OAAO,EAAE,CAAC;YACf,OAAO,YAAY,CACjB;gBACE,KAAK,EAAE,CAAC,CAAC,KAAK;gBACd,MAAM,EAAE,CAAC,CAAC,MAAM;gBAChB,SAAS,EAAE,CAAC,CAAC,SAAS;gBACtB,OAAO,EAAE,EAAE,aAAa,EAAE,aAAa,EAAE;gBACzC,IAAI,EAAE,OAAO,CAAC,CAAC,CAAC,SAAS,CAAC;aAC3B,EACD,IAAI,CACL,CAAC;QACJ,CAAC;QACD,OAAO,YAAY,CAAC,EAAE,MAAM,EAAE,IAAI,EAAE,aAAa,EAAE,aAAa,EAAE,EAAE,KAAK,EAAE,EAAE,QAAQ,EAAE,IAAI,EAAE,CAAC,CAAC;IACjG,CAAC,CACF,CAAC;IAEF,sEAAsE;IACtE,MAAM,CAAC,YAAY,CACjB,iCAAiC,EACjC;QACE,KAAK,EAAE,6BAA6B;QACpC,WAAW,EACT,qFAAqF;YACrF,mEAAmE;YACnE,sFAAsF;YACtF,yFAAyF;QAC3F,WAAW,EAAE;YACX,aAAa,EAAE,CAAC;iBACb,MAAM,EAAE;iBACR,QAAQ,CAAC,0EAA0E,CAAC;YACvF,MAAM,EAAE,CAAC;iBACN,KAAK,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC;iBACjB,QAAQ,EAAE;iBACV,QAAQ,CAAC,mFAAmF,CAAC;SACjG;QACD,WAAW,EAAE,QAAQ,EAAE;KACxB,EACD,KAAK,EAAE,EAAE,aAAa,EAAE,MAAM,EAAE,EAAE,EAAE;QAClC,MAAM,CAAC,GAAG,MAAM,OAAO,CAA4C,kBAAkB,EAAE;YACrF,MAAM,EAAE,MAAM;YACd,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,EAAE,aAAa,EAAE,MAAM,EAAE,CAAC;SAChD,CAAC,CAAC;QACH,IAAI,CAAC,CAAC,CAAC,OAAO,EAAE,CAAC;YACf,OAAO,YAAY,CACjB,EAAE,KAAK,EAAE,CAAC,CAAC,KAAK,EAAE,MAAM,EAAE,CAAC,CAAC,MAAM,EAAE,SAAS,EAAE,CAAC,CAAC,SAAS,EAAE,OAAO,EAAE,EAAE,aAAa,EAAE,EAAE,IAAI,EAAE,OAAO,CAAC,CAAC,CAAC,SAAS,CAAC,EAAE,EACpH,IAAI,CACL,CAAC;QACJ,CAAC;QACD,OAAO,YAAY,CACjB;YACE,aAAa,EAAE,CAAC,CAAC,IAAI,EAAE,aAAa;YACpC,KAAK,EAAE,CAAC,CAAC,IAAI,EAAE,KAAK;YACpB,WAAW,EACT,6GAA6G;SAChH,EACD,KAAK,EACL,EAAE,QAAQ,EAAE,IAAI,EAAE,CACnB,CAAC;IACJ,CAAC,CACF,CAAC;AACJ,CAAC"}

package/dist/modules/apimapper/diagnose.d.ts

@@ -0,0 +1,18 @@
+import type { McpServer } from "@modelcontextprotocol/sdk/server/mcp.js";
+export type DiagnoseBlocker = "malformed-token" | "expired" | "phishing-risk" | "plugin-missing" | "identity-error" | "scope-too-narrow" | "capability-missing";
+export interface DiagnoseCheck {
+    name: string;
+    passed: boolean;
+    detail: string;
+}
+export interface DiagnoseResult {
+    ready: boolean;
+    checks: DiagnoseCheck[];
+    recommendation: string;
+    blockers: DiagnoseBlocker[];
+}
+/**
+ * Run the full diagnosis chain. Never throws; always returns DiagnoseResult.
+ */
+export declare function diagnoseSite(token: string, siteUrl: string): Promise<DiagnoseResult>;
+export declare function registerDiagnoseTool(server: McpServer): void;

package/dist/modules/apimapper/diagnose.js

@@ -0,0 +1,305 @@
+// src/modules/apimapper/diagnose.ts — Phase 8.3 pre-flight composite.
+//
+// `apimapper_diagnose(token, siteUrl)` runs BEFORE profile creation:
+//
+//   Step 1 — decode the token (network-free, via inspectToken).
+//   Step 2 — probe siteUrl for the API Mapper identity endpoint. Tries
+//            WordPress first (/wp-json/api-mapper/v1/identity), then
+//            Joomla (/index.php?option=com_ajax&plugin=apimapper&task=getIdentity).
+//   Step 3 — verify token.iss matches the probed site_url (anti-phishing).
+//   Step 4 — verify identity.capabilities includes the minimum we need
+//            (currently: 'flows' + 'library').
+//   Step 5 — verify token.scope includes at least 'read'.
+//
+// Output structure: { ready, checks[], recommendation, blockers[] }.
+//
+// `blockers[]` is a STABLE enum the caller can branch on:
+//   "malformed-token" | "expired" | "phishing-risk" | "plugin-missing" |
+//   "identity-error" | "scope-too-narrow" | "capability-missing"
+//
+// Network-tolerant: any unexpected fetch error is captured into a check
+// but the function never throws.
+import { z } from "zod";
+import { formatResult, readOnly } from "@getimo/mcp-toolkit";
+import { inspectToken } from "./inspect.js";
+const REQUIRED_CAPABILITIES = ["flows", "library"];
+const MIN_SCOPE = "read";
+/** Strip trailing slashes for clean URL construction. */
+function stripSlash(s) {
+    return s.replace(/\/+$/, "");
+}
+/** Probe the WordPress REST identity endpoint. */
+async function probeWordPress(siteUrl) {
+    const url = `${stripSlash(siteUrl)}/wp-json/api-mapper/v1/identity`;
+    try {
+        const res = await fetch(url, {
+            method: "GET",
+            headers: { Accept: "application/json" },
+        });
+        if (res.status === 404) {
+            return { ok: false, status: 404, probedUrl: url, error: "not found" };
+        }
+        if (!res.ok) {
+            return {
+                ok: false,
+                status: res.status,
+                probedUrl: url,
+                error: `HTTP ${res.status}`,
+            };
+        }
+        const data = (await res.json());
+        return { ok: true, status: res.status, data, probedUrl: url };
+    }
+    catch (e) {
+        return {
+            ok: false,
+            probedUrl: url,
+            error: e instanceof Error ? e.message : String(e),
+        };
+    }
+}
+/** Probe the Joomla com_ajax identity endpoint. */
+async function probeJoomla(siteUrl) {
+    const url = `${stripSlash(siteUrl)}/index.php?option=com_ajax&plugin=apimapper&task=getIdentity&format=json`;
+    try {
+        const res = await fetch(url, {
+            method: "GET",
+            headers: { Accept: "application/json" },
+        });
+        if (!res.ok) {
+            return {
+                ok: false,
+                status: res.status,
+                probedUrl: url,
+                error: `HTTP ${res.status}`,
+            };
+        }
+        const env = (await res.json());
+        if (env.success !== true) {
+            return {
+                ok: false,
+                status: res.status,
+                probedUrl: url,
+                error: typeof env.error === "string" ? env.error : "joomla success:false",
+            };
+        }
+        return { ok: true, status: res.status, data: env.data, probedUrl: url };
+    }
+    catch (e) {
+        return {
+            ok: false,
+            probedUrl: url,
+            error: e instanceof Error ? e.message : String(e),
+        };
+    }
+}
+/** Probe siteUrl: try WP, then fall back to Joomla. */
+async function probeIdentity(siteUrl) {
+    const wp = await probeWordPress(siteUrl);
+    if (wp.ok)
+        return wp;
+    const joomla = await probeJoomla(siteUrl);
+    if (joomla.ok)
+        return joomla;
+    // Neither succeeded — return whichever has a more informative status.
+    if (wp.status && wp.status !== 404)
+        return wp;
+    return joomla;
+}
+/**
+ * Compare two URLs for issuer-match purposes. Strips trailing slashes and
+ * compares case-insensitively. We deliberately keep this simple — the
+ * server records `iss` as the exact site URL the plugin was installed at.
+ */
+function urlsMatch(a, b) {
+    return stripSlash(a).toLowerCase() === stripSlash(b).toLowerCase();
+}
+/**
+ * Run the full diagnosis chain. Never throws; always returns DiagnoseResult.
+ */
+export async function diagnoseSite(token, siteUrl) {
+    const checks = [];
+    const blockers = [];
+    // ── Step 1: decode token ────────────────────────────────────────────
+    const tokenInfo = inspectToken(token);
+    if (!tokenInfo.valid || !tokenInfo.payload) {
+        checks.push({
+            name: "token-decode",
+            passed: false,
+            detail: tokenInfo.error || "decode failed",
+        });
+        blockers.push("malformed-token");
+        return {
+            ready: false,
+            checks,
+            blockers,
+            recommendation: "Token failed structural decode. Verify it starts with 'amk_live_' or 'amk_test_' and was copied complete.",
+        };
+    }
+    checks.push({
+        name: "token-decode",
+        passed: true,
+        detail: `kid=${tokenInfo.payload.kid} env=${tokenInfo.derived?.env}`,
+    });
+    // Check expiry up-front — short-circuit-able blocker.
+    if (tokenInfo.derived?.expired) {
+        checks.push({
+            name: "token-expiry",
+            passed: false,
+            detail: `expired ${Math.abs(tokenInfo.derived.expires_in_seconds ?? 0)}s ago`,
+        });
+        blockers.push("expired");
+    }
+    else {
+        checks.push({
+            name: "token-expiry",
+            passed: true,
+            detail: tokenInfo.derived?.expires_in_seconds !== undefined
+                ? `expires in ${tokenInfo.derived.expires_in_seconds}s`
+                : "no exp (non-expiring)",
+        });
+    }
+    // ── Step 2: probe identity endpoint ─────────────────────────────────
+    const probe = await probeIdentity(siteUrl);
+    if (!probe.ok) {
+        if (probe.status === 404) {
+            checks.push({
+                name: "identity-probe",
+                passed: false,
+                detail: "404 on both WP and Joomla identity endpoints",
+            });
+            blockers.push("plugin-missing");
+        }
+        else {
+            checks.push({
+                name: "identity-probe",
+                passed: false,
+                detail: probe.error || `HTTP ${probe.status ?? "??"}`,
+            });
+            blockers.push("identity-error");
+        }
+        // No point continuing iss-match / capability checks without identity.
+        return {
+            ready: false,
+            checks,
+            blockers,
+            recommendation: "Cannot reach the API Mapper plugin. Verify the site URL is correct and the plugin is installed + activated.",
+        };
+    }
+    checks.push({
+        name: "identity-probe",
+        passed: true,
+        detail: `platform=${probe.data?.platform ?? "?"} site_url=${probe.data?.site_url ?? "?"}`,
+    });
+    // ── Step 3: iss match ───────────────────────────────────────────────
+    const probedSiteUrl = probe.data?.site_url;
+    if (!probedSiteUrl) {
+        checks.push({
+            name: "iss-match",
+            passed: false,
+            detail: "identity payload missing site_url field",
+        });
+        blockers.push("identity-error");
+    }
+    else if (!urlsMatch(probedSiteUrl, tokenInfo.payload.iss)) {
+        checks.push({
+            name: "iss-match",
+            passed: false,
+            detail: `token.iss=${tokenInfo.payload.iss} but site reports ${probedSiteUrl}`,
+        });
+        blockers.push("phishing-risk");
+    }
+    else {
+        checks.push({
+            name: "iss-match",
+            passed: true,
+            detail: `${probedSiteUrl} matches token.iss`,
+        });
+    }
+    // ── Step 4: capability coverage ─────────────────────────────────────
+    const caps = Array.isArray(probe.data?.capabilities)
+        ? probe.data.capabilities
+        : [];
+    const missingCaps = REQUIRED_CAPABILITIES.filter((c) => !caps.includes(c));
+    if (missingCaps.length > 0) {
+        checks.push({
+            name: "capabilities",
+            passed: false,
+            detail: `missing: ${missingCaps.join(", ")}`,
+        });
+        blockers.push("capability-missing");
+    }
+    else {
+        checks.push({
+            name: "capabilities",
+            passed: true,
+            detail: `has ${REQUIRED_CAPABILITIES.join(", ")}`,
+        });
+    }
+    // ── Step 5: scope check ─────────────────────────────────────────────
+    const scopes = tokenInfo.payload.scope ?? [];
+    if (!scopes.includes(MIN_SCOPE)) {
+        checks.push({
+            name: "scope-sufficient",
+            passed: false,
+            detail: `token.scope=[${scopes.join(",")}] missing '${MIN_SCOPE}'`,
+        });
+        blockers.push("scope-too-narrow");
+    }
+    else {
+        checks.push({
+            name: "scope-sufficient",
+            passed: true,
+            detail: `has '${MIN_SCOPE}' (full scope: ${scopes.join(",")})`,
+        });
+    }
+    // ── Aggregate ───────────────────────────────────────────────────────
+    const ready = blockers.length === 0;
+    let recommendation;
+    if (ready) {
+        recommendation = `Ready to create a profile for ${probedSiteUrl}.`;
+    }
+    else if (blockers.includes("phishing-risk")) {
+        recommendation =
+            "Token issuer does NOT match the site URL. This may indicate phishing — do NOT proceed. Generate a fresh token on the actual target site.";
+    }
+    else if (blockers.includes("expired")) {
+        recommendation = "Token expired. Generate a fresh token via the API Mapper admin UI.";
+    }
+    else if (blockers.includes("scope-too-narrow")) {
+        recommendation = `Token scope is too narrow — needs at least '${MIN_SCOPE}'. Re-issue with the correct scope.`;
+    }
+    else if (blockers.includes("capability-missing")) {
+        recommendation =
+            "Plugin reports missing capabilities — update plugin to a newer version (apimapper_release_list).";
+    }
+    else {
+        recommendation = "Diagnosis reported blockers. See checks[] for details.";
+    }
+    return { ready, checks, blockers, recommendation };
+}
+// ── MCP tool registration ──────────────────────────────────────────────
+export function registerDiagnoseTool(server) {
+    server.registerTool("apimapper_diagnose", {
+        title: "Pre-Flight Diagnosis (Composite)",
+        description: "Validate a token + siteUrl pair before profile creation. Runs token decode, identity probe " +
+            "(WordPress then Joomla fallback), iss/site-URL match (anti-phishing), capability check, and " +
+            "scope check. Returns ready=true/false plus structured blockers[] and a recommendation." +
+            "\n\nExample:\n  apimapper_diagnose({ token: 'amk_live_eyJ2IjoxLC...XYZ.abc123', siteUrl: 'https://example.com/wp' })",
+        inputSchema: {
+            token: z
+                .string()
+                .min(1)
+                .describe('API Mapper token (e.g., "amk_live_eyJ2IjoxLC...XYZ.abc123")'),
+            siteUrl: z
+                .string()
+                .url()
+                .describe('Site URL the token is meant for (e.g., "https://example.com/wp")'),
+        },
+        annotations: readOnly(),
+    }, async ({ token, siteUrl }) => {
+        const result = await diagnoseSite(token, siteUrl);
+        return formatResult(result, false, { maxChars: 4000 });
+    });
+}
+//# sourceMappingURL=diagnose.js.map

package/dist/modules/apimapper/diagnose.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"diagnose.js","sourceRoot":"","sources":["../../../src/modules/apimapper/diagnose.ts"],"names":[],"mappings":"AAAA,sEAAsE;AACtE,EAAE;AACF,qEAAqE;AACrE,EAAE;AACF,gEAAgE;AAChE,uEAAuE;AACvE,qEAAqE;AACrE,oFAAoF;AACpF,2EAA2E;AAC3E,uEAAuE;AACvE,+CAA+C;AAC/C,0DAA0D;AAC1D,EAAE;AACF,qEAAqE;AACrE,EAAE;AACF,0DAA0D;AAC1D,yEAAyE;AACzE,iEAAiE;AACjE,EAAE;AACF,wEAAwE;AACxE,iCAAiC;AAGjC,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AACxB,OAAO,EAAE,YAAY,EAAE,QAAQ,EAAE,MAAM,qBAAqB,CAAC;AAC7D,OAAO,EAAE,YAAY,EAAE,MAAM,cAAc,CAAC;AAwB5C,MAAM,qBAAqB,GAAG,CAAC,OAAO,EAAE,SAAS,CAAU,CAAC;AAC5D,MAAM,SAAS,GAAG,MAAM,CAAC;AAgBzB,yDAAyD;AACzD,SAAS,UAAU,CAAC,CAAS;IAC3B,OAAO,CAAC,CAAC,OAAO,CAAC,MAAM,EAAE,EAAE,CAAC,CAAC;AAC/B,CAAC;AAED,kDAAkD;AAClD,KAAK,UAAU,cAAc,CAAC,OAAe;IAC3C,MAAM,GAAG,GAAG,GAAG,UAAU,CAAC,OAAO,CAAC,iCAAiC,CAAC;IACpE,IAAI,CAAC;QACH,MAAM,GAAG,GAAG,MAAM,KAAK,CAAC,GAAG,EAAE;YAC3B,MAAM,EAAE,KAAK;YACb,OAAO,EAAE,EAAE,MAAM,EAAE,kBAAkB,EAAE;SACxC,CAAC,CAAC;QACH,IAAI,GAAG,CAAC,MAAM,KAAK,GAAG,EAAE,CAAC;YACvB,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,GAAG,EAAE,SAAS,EAAE,GAAG,EAAE,KAAK,EAAE,WAAW,EAAE,CAAC;QACxE,CAAC;QACD,IAAI,CAAC,GAAG,CAAC,EAAE,EAAE,CAAC;YACZ,OAAO;gBACL,EAAE,EAAE,KAAK;gBACT,MAAM,EAAE,GAAG,CAAC,MAAM;gBAClB,SAAS,EAAE,GAAG;gBACd,KAAK,EAAE,QAAQ,GAAG,CAAC,MAAM,EAAE;aAC5B,CAAC;QACJ,CAAC;QACD,MAAM,IAAI,GAAG,CAAC,MAAM,GAAG,CAAC,IAAI,EAAE,CAAqB,CAAC;QACpD,OAAO,EAAE,EAAE,EAAE,IAAI,EAAE,MAAM,EAAE,GAAG,CAAC,MAAM,EAAE,IAAI,EAAE,SAAS,EAAE,GAAG,EAAE,CAAC;IAChE,CAAC;IAAC,OAAO,CAAC,EAAE,CAAC;QACX,OAAO;YACL,EAAE,EAAE,KAAK;YACT,SAAS,EAAE,GAAG;YACd,KAAK,EAAE,CAAC,YAAY,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC;SAClD,CAAC;IACJ,CAAC;AACH,CAAC;AAED,mDAAmD;AACnD,KAAK,UAAU,WAAW,CAAC,OAAe;IACxC,MAAM,GAAG,GAAG,GAAG,UAAU,CAAC,OAAO,CAAC,0EAA0E,CAAC;IAC7G,IAAI,CAAC;QACH,MAAM,GAAG,GAAG,MAAM,KAAK,CAAC,GAAG,EAAE;YAC3B,MAAM,EAAE,KAAK;YACb,OAAO,EAAE,EAAE,MAAM,EAAE,kBAAkB,EAAE;SACxC,CAAC,CAAC;QACH,IAAI,CAAC,GAAG,CAAC,EAAE,EAAE,CAAC;YACZ,OAAO;gBACL,EAAE,EAAE,KAAK;gBACT,MAAM,EAAE,GAAG,CAAC,MAAM;gBAClB,SAAS,EAAE,GAAG;gBACd,KAAK,EAAE,QAAQ,GAAG,CAAC,MAAM,EAAE;aAC5B,CAAC;QACJ,CAAC;QACD,MAAM,GAAG,GAAG,CAAC,MAAM,GAAG,CAAC,IAAI,EAAE,CAAmE,CAAC;QACjG,IAAI,GAAG,CAAC,OAAO,KAAK,IAAI,EAAE,CAAC;YACzB,OAAO;gBACL,EAAE,EAAE,KAAK;gBACT,MAAM,EAAE,GAAG,CAAC,MAAM;gBAClB,SAAS,EAAE,GAAG;gBACd,KAAK,EAAE,OAAO,GAAG,CAAC,KAAK,KAAK,QAAQ,CAAC,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC,CAAC,sBAAsB;aAC1E,CAAC;QACJ,CAAC;QACD,OAAO,EAAE,EAAE,EAAE,IAAI,EAAE,MAAM,EAAE,GAAG,CAAC,MAAM,EAAE,IAAI,EAAE,GAAG,CAAC,IAAI,EAAE,SAAS,EAAE,GAAG,EAAE,CAAC;IAC1E,CAAC;IAAC,OAAO,CAAC,EAAE,CAAC;QACX,OAAO;YACL,EAAE,EAAE,KAAK;YACT,SAAS,EAAE,GAAG;YACd,KAAK,EAAE,CAAC,YAAY,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC;SAClD,CAAC;IACJ,CAAC;AACH,CAAC;AAED,uDAAuD;AACvD,KAAK,UAAU,aAAa,CAAC,OAAe;IAC1C,MAAM,EAAE,GAAG,MAAM,cAAc,CAAC,OAAO,CAAC,CAAC;IACzC,IAAI,EAAE,CAAC,EAAE;QAAE,OAAO,EAAE,CAAC;IACrB,MAAM,MAAM,GAAG,MAAM,WAAW,CAAC,OAAO,CAAC,CAAC;IAC1C,IAAI,MAAM,CAAC,EAAE;QAAE,OAAO,MAAM,CAAC;IAC7B,sEAAsE;IACtE,IAAI,EAAE,CAAC,MAAM,IAAI,EAAE,CAAC,MAAM,KAAK,GAAG;QAAE,OAAO,EAAE,CAAC;IAC9C,OAAO,MAAM,CAAC;AAChB,CAAC;AAED;;;;GAIG;AACH,SAAS,SAAS,CAAC,CAAS,EAAE,CAAS;IACrC,OAAO,UAAU,CAAC,CAAC,CAAC,CAAC,WAAW,EAAE,KAAK,UAAU,CAAC,CAAC,CAAC,CAAC,WAAW,EAAE,CAAC;AACrE,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,YAAY,CAChC,KAAa,EACb,OAAe;IAEf,MAAM,MAAM,GAAoB,EAAE,CAAC;IACnC,MAAM,QAAQ,GAAsB,EAAE,CAAC;IAEvC,uEAAuE;IACvE,MAAM,SAAS,GAAG,YAAY,CAAC,KAAK,CAAC,CAAC;IACtC,IAAI,CAAC,SAAS,CAAC,KAAK,IAAI,CAAC,SAAS,CAAC,OAAO,EAAE,CAAC;QAC3C,MAAM,CAAC,IAAI,CAAC;YACV,IAAI,EAAE,cAAc;YACpB,MAAM,EAAE,KAAK;YACb,MAAM,EAAE,SAAS,CAAC,KAAK,IAAI,eAAe;SAC3C,CAAC,CAAC;QACH,QAAQ,CAAC,IAAI,CAAC,iBAAiB,CAAC,CAAC;QACjC,OAAO;YACL,KAAK,EAAE,KAAK;YACZ,MAAM;YACN,QAAQ;YACR,cAAc,EACZ,2GAA2G;SAC9G,CAAC;IACJ,CAAC;IACD,MAAM,CAAC,IAAI,CAAC;QACV,IAAI,EAAE,cAAc;QACpB,MAAM,EAAE,IAAI;QACZ,MAAM,EAAE,OAAO,SAAS,CAAC,OAAO,CAAC,GAAG,QAAQ,SAAS,CAAC,OAAO,EAAE,GAAG,EAAE;KACrE,CAAC,CAAC;IAEH,sDAAsD;IACtD,IAAI,SAAS,CAAC,OAAO,EAAE,OAAO,EAAE,CAAC;QAC/B,MAAM,CAAC,IAAI,CAAC;YACV,IAAI,EAAE,cAAc;YACpB,MAAM,EAAE,KAAK;YACb,MAAM,EAAE,WAAW,IAAI,CAAC,GAAG,CAAC,SAAS,CAAC,OAAO,CAAC,kBAAkB,IAAI,CAAC,CAAC,OAAO;SAC9E,CAAC,CAAC;QACH,QAAQ,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;IAC3B,CAAC;SAAM,CAAC;QACN,MAAM,CAAC,IAAI,CAAC;YACV,IAAI,EAAE,cAAc;YACpB,MAAM,EAAE,IAAI;YACZ,MAAM,EACJ,SAAS,CAAC,OAAO,EAAE,kBAAkB,KAAK,SAAS;gBACjD,CAAC,CAAC,cAAc,SAAS,CAAC,OAAO,CAAC,kBAAkB,GAAG;gBACvD,CAAC,CAAC,uBAAuB;SAC9B,CAAC,CAAC;IACL,CAAC;IAED,uEAAuE;IACvE,MAAM,KAAK,GAAG,MAAM,aAAa,CAAC,OAAO,CAAC,CAAC;IAC3C,IAAI,CAAC,KAAK,CAAC,EAAE,EAAE,CAAC;QACd,IAAI,KAAK,CAAC,MAAM,KAAK,GAAG,EAAE,CAAC;YACzB,MAAM,CAAC,IAAI,CAAC;gBACV,IAAI,EAAE,gBAAgB;gBACtB,MAAM,EAAE,KAAK;gBACb,MAAM,EAAE,8CAA8C;aACvD,CAAC,CAAC;YACH,QAAQ,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAC;QAClC,CAAC;aAAM,CAAC;YACN,MAAM,CAAC,IAAI,CAAC;gBACV,IAAI,EAAE,gBAAgB;gBACtB,MAAM,EAAE,KAAK;gBACb,MAAM,EAAE,KAAK,CAAC,KAAK,IAAI,QAAQ,KAAK,CAAC,MAAM,IAAI,IAAI,EAAE;aACtD,CAAC,CAAC;YACH,QAAQ,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAC;QAClC,CAAC;QACD,sEAAsE;QACtE,OAAO;YACL,KAAK,EAAE,KAAK;YACZ,MAAM;YACN,QAAQ;YACR,cAAc,EACZ,6GAA6G;SAChH,CAAC;IACJ,CAAC;IACD,MAAM,CAAC,IAAI,CAAC;QACV,IAAI,EAAE,gBAAgB;QACtB,MAAM,EAAE,IAAI;QACZ,MAAM,EAAE,YAAY,KAAK,CAAC,IAAI,EAAE,QAAQ,IAAI,GAAG,aAAa,KAAK,CAAC,IAAI,EAAE,QAAQ,IAAI,GAAG,EAAE;KAC1F,CAAC,CAAC;IAEH,uEAAuE;IACvE,MAAM,aAAa,GAAG,KAAK,CAAC,IAAI,EAAE,QAAQ,CAAC;IAC3C,IAAI,CAAC,aAAa,EAAE,CAAC;QACnB,MAAM,CAAC,IAAI,CAAC;YACV,IAAI,EAAE,WAAW;YACjB,MAAM,EAAE,KAAK;YACb,MAAM,EAAE,yCAAyC;SAClD,CAAC,CAAC;QACH,QAAQ,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAC;IAClC,CAAC;SAAM,IAAI,CAAC,SAAS,CAAC,aAAa,EAAE,SAAS,CAAC,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC;QAC5D,MAAM,CAAC,IAAI,CAAC;YACV,IAAI,EAAE,WAAW;YACjB,MAAM,EAAE,KAAK;YACb,MAAM,EAAE,aAAa,SAAS,CAAC,OAAO,CAAC,GAAG,qBAAqB,aAAa,EAAE;SAC/E,CAAC,CAAC;QACH,QAAQ,CAAC,IAAI,CAAC,eAAe,CAAC,CAAC;IACjC,CAAC;SAAM,CAAC;QACN,MAAM,CAAC,IAAI,CAAC;YACV,IAAI,EAAE,WAAW;YACjB,MAAM,EAAE,IAAI;YACZ,MAAM,EAAE,GAAG,aAAa,oBAAoB;SAC7C,CAAC,CAAC;IACL,CAAC;IAED,uEAAuE;IACvE,MAAM,IAAI,GAAG,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,IAAI,EAAE,YAAY,CAAC;QAClD,CAAC,CAAC,KAAK,CAAC,IAAK,CAAC,YAAY;QAC1B,CAAC,CAAC,EAAE,CAAC;IACP,MAAM,WAAW,GAAG,qBAAqB,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,CAAC;IAC3E,IAAI,WAAW,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QAC3B,MAAM,CAAC,IAAI,CAAC;YACV,IAAI,EAAE,cAAc;YACpB,MAAM,EAAE,KAAK;YACb,MAAM,EAAE,YAAY,WAAW,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE;SAC7C,CAAC,CAAC;QACH,QAAQ,CAAC,IAAI,CAAC,oBAAoB,CAAC,CAAC;IACtC,CAAC;SAAM,CAAC;QACN,MAAM,CAAC,IAAI,CAAC;YACV,IAAI,EAAE,cAAc;YACpB,MAAM,EAAE,IAAI;YACZ,MAAM,EAAE,OAAO,qBAAqB,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE;SAClD,CAAC,CAAC;IACL,CAAC;IAED,uEAAuE;IACvE,MAAM,MAAM,GAAG,SAAS,CAAC,OAAO,CAAC,KAAK,IAAI,EAAE,CAAC;IAC7C,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,SAAS,CAAC,EAAE,CAAC;QAChC,MAAM,CAAC,IAAI,CAAC;YACV,IAAI,EAAE,kBAAkB;YACxB,MAAM,EAAE,KAAK;YACb,MAAM,EAAE,gBAAgB,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,cAAc,SAAS,GAAG;SACnE,CAAC,CAAC;QACH,QAAQ,CAAC,IAAI,CAAC,kBAAkB,CAAC,CAAC;IACpC,CAAC;SAAM,CAAC;QACN,MAAM,CAAC,IAAI,CAAC;YACV,IAAI,EAAE,kBAAkB;YACxB,MAAM,EAAE,IAAI;YACZ,MAAM,EAAE,QAAQ,SAAS,kBAAkB,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,GAAG;SAC/D,CAAC,CAAC;IACL,CAAC;IAED,uEAAuE;IACvE,MAAM,KAAK,GAAG,QAAQ,CAAC,MAAM,KAAK,CAAC,CAAC;IACpC,IAAI,cAAsB,CAAC;IAC3B,IAAI,KAAK,EAAE,CAAC;QACV,cAAc,GAAG,iCAAiC,aAAa,GAAG,CAAC;IACrE,CAAC;SAAM,IAAI,QAAQ,CAAC,QAAQ,CAAC,eAAe,CAAC,EAAE,CAAC;QAC9C,cAAc;YACZ,0IAA0I,CAAC;IAC/I,CAAC;SAAM,IAAI,QAAQ,CAAC,QAAQ,CAAC,SAAS,CAAC,EAAE,CAAC;QACxC,cAAc,GAAG,oEAAoE,CAAC;IACxF,CAAC;SAAM,IAAI,QAAQ,CAAC,QAAQ,CAAC,kBAAkB,CAAC,EAAE,CAAC;QACjD,cAAc,GAAG,+CAA+C,SAAS,qCAAqC,CAAC;IACjH,CAAC;SAAM,IAAI,QAAQ,CAAC,QAAQ,CAAC,oBAAoB,CAAC,EAAE,CAAC;QACnD,cAAc;YACZ,kGAAkG,CAAC;IACvG,CAAC;SAAM,CAAC;QACN,cAAc,GAAG,wDAAwD,CAAC;IAC5E,CAAC;IAED,OAAO,EAAE,KAAK,EAAE,MAAM,EAAE,QAAQ,EAAE,cAAc,EAAE,CAAC;AACrD,CAAC;AAED,0EAA0E;AAE1E,MAAM,UAAU,oBAAoB,CAAC,MAAiB;IACpD,MAAM,CAAC,YAAY,CACjB,oBAAoB,EACpB;QACE,KAAK,EAAE,kCAAkC;QACzC,WAAW,EACT,6FAA6F;YAC7F,8FAA8F;YAC9F,wFAAwF;YACxF,sHAAsH;QACxH,WAAW,EAAE;YACX,KAAK,EAAE,CAAC;iBACL,MAAM,EAAE;iBACR,GAAG,CAAC,CAAC,CAAC;iBACN,QAAQ,CAAC,6DAA6D,CAAC;YAC1E,OAAO,EAAE,CAAC;iBACP,MAAM,EAAE;iBACR,GAAG,EAAE;iBACL,QAAQ,CAAC,kEAAkE,CAAC;SAChF;QACD,WAAW,EAAE,QAAQ,EAAE;KACxB,EACD,KAAK,EAAE,EAAE,KAAK,EAAE,OAAO,EAAE,EAAE,EAAE;QAC3B,MAAM,MAAM,GAAG,MAAM,YAAY,CAAC,KAAK,EAAE,OAAO,CAAC,CAAC;QAClD,OAAO,YAAY,CAAC,MAAM,EAAE,KAAK,EAAE,EAAE,QAAQ,EAAE,IAAI,EAAE,CAAC,CAAC;IACzD,CAAC,CACF,CAAC;AACJ,CAAC"}

package/dist/modules/apimapper/flows.d.ts

@@ -0,0 +1,2 @@
+import type { McpServer } from "@modelcontextprotocol/sdk/server/mcp.js";
+export declare function registerFlowTools(server: McpServer): void;