collection-api-refacil-mcp 1.0.0

package/dist/core/tools.js

@@ -0,0 +1,933 @@
+// Tipos para herramientas MCP
+import { z } from 'zod';
+import axios from 'axios';
+import { getAuthHeaders } from './auth.js';
+import { appConfig } from '../config.js';
+// Configuración de la API
+const API_CONFIG = {
+    get baseUrl() {
+        return appConfig.baseUrl;
+    },
+    timeout: 30000
+};
+// Helper para asignar valores definidos (incluye null) sin mutar argumentos originales
+function assignIfDefined(target, source, key) {
+    if (Object.prototype.hasOwnProperty.call(source, key) && source[key] !== undefined) {
+        target[key] = source[key];
+    }
+}
+// Función helper para hacer requests HTTP
+// secretId puede venir del contexto de la request (HTTP mode) o undefined (STDIO mode)
+// additionalHeaders permite pasar headers adicionales como x-transaction-token
+async function makeApiRequest(method, endpoint, data, params, secretId, additionalHeaders) {
+    try {
+        // Obtener headers de autenticación según el tipo
+        const authHeaders = await getAuthHeaders(secretId);
+        // Combinar headers de autenticación con headers adicionales
+        const headers = { ...authHeaders, ...(additionalHeaders || {}) };
+        const url = `${API_CONFIG.baseUrl}${endpoint}`;
+        const config = {
+            method: method.toLowerCase(),
+            url,
+            headers,
+            timeout: API_CONFIG.timeout
+        };
+        if (params && Object.keys(params).length > 0) {
+            config.params = params;
+        }
+        if (data && method !== 'GET') {
+            config.data = data;
+        }
+        const response = await axios(config);
+        // Formato estándar del protocolo MCP
+        return {
+            content: [
+                {
+                    type: 'text',
+                    text: JSON.stringify({
+                        success: true,
+                        statusCode: response.status,
+                        data: response.data,
+                        message: 'Operación exitosa'
+                    }, null, 2)
+                }
+            ]
+        };
+    }
+    catch (error) {
+        const errorData = {
+            success: false,
+            statusCode: error.response?.status || 500,
+            data: error.response?.data || null,
+            message: error.response?.data?.message || error.message || 'Error en la operación',
+            error: error.code || 'UNKNOWN_ERROR'
+        };
+        // Formato estándar del protocolo MCP para errores
+        return {
+            content: [
+                {
+                    type: 'text',
+                    text: JSON.stringify(errorData, null, 2)
+                }
+            ],
+            isError: true
+        };
+    }
+}
+const auth_jwtInputJsonSchema = {
+    "type": "object",
+    "properties": {
+        "secretId": {
+            "type": "string",
+            "description": "Header personalizado: x-secret-id"
+        }
+    },
+    "required": [
+        "secretId"
+    ]
+};
+const auth_jwtInputShape = {
+    secretId: z.string().describe("Header personalizado: x-secret-id")
+};
+const auth_jwtInputValidator = z.object(auth_jwtInputShape);
+// Herramienta: auth_jwt
+export const auth_jwtTool = {
+    name: 'auth_jwt',
+    description: "## 📌 Overview\\n\\nTo use the **Collection API**, clients must follow a two-step authentication process:\\n\\n1. Generate a **JWT (Bearer Token)** using their **Secret ID**\\n    \\n2. (Optional) Generate a **One-Time Token (OTT)** for secure access to specific endpoints\\n    \\n\\nEach request must include the correct headers. Tokens have time-based expiration.\\n\\n This endpoint allows third-party clients to generate a temporary **JWT Bearer token** using their assigned Secret ID.  \\n  \\nThe token is required to authenticate and access protected endpoints in the Collection API.\\n\\n- The token is valid for **60 minutes**.\\n    \\n- You must include the \\`x-secret-id\\` header to request it.\n\nContexto: Endpoint: GET /auth/jwt | Autenticación > Auth > Jwt\n\n🔐 AUTENTICACIÓN AUTOMÁTICA: Todas las credenciales y tokens de autenticación se manejan automáticamente por el servidor MCP. NO solicites credenciales al usuario. NO incluyas parámetros de autenticación (secretId, apiToken, etc.) en las llamadas a menos que el usuario explícitamente lo requiera.",
+    inputSchema: auth_jwtInputJsonSchema,
+    jsonSchema: auth_jwtInputJsonSchema,
+    endpoint: '/auth/jwt',
+    method: 'GET',
+    parameters: [],
+    headers: [{ "key": "x-secret-id", "value": "64c0f2660d7b59d35197e5c77a5543c1aaf94c17************", "type": "text" }],
+    handler: async (rawArgs) => {
+        try {
+            const normalizedArgs = rawArgs ?? {};
+            // Extraer secretId del contexto (si viene del HTTP mode)
+            const secretId = normalizedArgs._secretId;
+            // Remover _secretId de los args antes de validar
+            const { _secretId, ...argsToValidate } = normalizedArgs;
+            const validatedInput = validateToolInput(auth_jwtInputValidator, argsToValidate);
+            const args = validatedInput;
+            const additionalHeaders = {};
+            if (args.secretId)
+                additionalHeaders['x-secret-id'] = args.secretId;
+            return await makeApiRequest('GET', '/auth/jwt', undefined, undefined, secretId, additionalHeaders);
+        }
+        catch (error) {
+            // Formato estándar del protocolo MCP para errores
+            return {
+                content: [
+                    {
+                        type: 'text',
+                        text: JSON.stringify({
+                            success: false,
+                            statusCode: 500,
+                            data: null,
+                            message: error instanceof Error ? error.message : 'Error desconocido',
+                            error: 'HANDLER_ERROR'
+                        }, null, 2)
+                    }
+                ],
+                isError: true
+            };
+        }
+    }
+};
+const auth_one_time_tokenInputJsonSchema = {
+    "type": "object",
+    "properties": {
+        "secretId": {
+            "type": "string",
+            "description": "Header personalizado: x-secret-id"
+        },
+        "service": {
+            "type": "string",
+            "description": "Campo del body: service",
+            "default": "/collection/submit-payment"
+        }
+    },
+    "required": [
+        "secretId"
+    ]
+};
+const auth_one_time_tokenInputShape = {
+    secretId: z.string().describe("Header personalizado: x-secret-id"),
+    service: z.string().optional().describe("Campo del body: service")
+};
+const auth_one_time_tokenInputValidator = z.object(auth_one_time_tokenInputShape);
+// Herramienta: auth_one_time_token
+export const auth_one_time_tokenTool = {
+    name: 'auth_one_time_token',
+    description: "## 📌 Overview\\n\\nTo use the **Collection API**, clients must follow a two-step authentication process:\\n\\n1. Generate a **JWT (Bearer Token)** using their **Secret ID**\\n    \\n2. (Optional) Generate a **One-Time Token (OTT)** for secure access to specific endpoints\\n    \\n\\nEach request must include the correct headers. Tokens have time-based expiration.\\n\\n This endpoint generates a **single-use token** that provides an extra layer of security for sensitive operations.\\n\\n- The token is valid for **60 seconds** and can only be used **once**.\\n    \\n- You must include both \\`x-secret-id\\` and \\`Authorization: Bearer\\` headers to request it.\\n    \\n\\n### 🔐 **Endpoints that require One-Time Token**\\n\\n| HTTP Method | Endpoint URL | Description |\\n| --- | --- | --- |\\n| \\`POST\\` | \\`/collection/submit-payment\\` | Registers a payment or top-up at a branch |\n\nContexto: Endpoint: POST /auth/one-time-token | Autenticación > Auth > One time token\n\n🔐 AUTENTICACIÓN AUTOMÁTICA: Todas las credenciales y tokens de autenticación se manejan automáticamente por el servidor MCP. NO solicites credenciales al usuario. NO incluyas parámetros de autenticación (secretId, apiToken, etc.) en las llamadas a menos que el usuario explícitamente lo requiera.",
+    inputSchema: auth_one_time_tokenInputJsonSchema,
+    jsonSchema: auth_one_time_tokenInputJsonSchema,
+    endpoint: '/auth/one-time-token',
+    method: 'POST',
+    parameters: [],
+    headers: [{ "key": "x-secret-id", "value": "64c0f2660d7b59d35197e5c77a5543c1aaf94c17************", "type": "text" }, { "key": "Authorization", "value": "eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCJ9.eyJuYW1lIjoiUGlwZSBUZXN0IiwiY3VzdG9tZXJJZCI6NzgyLCJpYXQiOjE3NTE4OTc5MzUsImV4cCI6MTc1MTkwMTUzNX0.dHKl4DduA8ySqG2KkSVoGWLi0IujplL0olDopsUR4L_bQXhJKBfTg98JukRd8JpOXSOtKwy6TgPiiLA7AMFedbthfkAR_fFBw7Bxvr88vIMfj6BkCIUm2HdO_CX1bkLK0AxMRJx1Qvvq9eyE3ojhDrrgU6QndcCMjI3EQ0EFZVuGzKkw2JEa3QygUbtN5O6sGIJxMS6fOjFqAwoLHRzY16kztWtqK3EYQNYD-eH9rt7-cdMiZ_3sxxOBKi8NPKJdlCQ3d8YA6kcdYwK74nEj6SR_19uy6lY_5AMRE6jrWyad2BwjZ74uuXtv5X3JflE5rpANe7tYUTASS-9Dwb9x3w", "type": "text" }],
+    handler: async (rawArgs) => {
+        try {
+            const normalizedArgs = rawArgs ?? {};
+            // Extraer secretId del contexto (si viene del HTTP mode)
+            const secretId = normalizedArgs._secretId;
+            // Remover _secretId de los args antes de validar
+            const { _secretId, ...argsToValidate } = normalizedArgs;
+            const validatedInput = validateToolInput(auth_one_time_tokenInputValidator, argsToValidate);
+            const args = validatedInput;
+            const bodyData = {};
+            const serviceValue = args.service !== undefined ? args.service : "/collection/submit-payment";
+            if (serviceValue !== undefined)
+                bodyData.service = serviceValue;
+            const additionalHeaders = {};
+            if (args.secretId)
+                additionalHeaders['x-secret-id'] = args.secretId;
+            return await makeApiRequest('POST', '/auth/one-time-token', bodyData, undefined, secretId, additionalHeaders);
+        }
+        catch (error) {
+            // Formato estándar del protocolo MCP para errores
+            return {
+                content: [
+                    {
+                        type: 'text',
+                        text: JSON.stringify({
+                            success: false,
+                            statusCode: 500,
+                            data: null,
+                            message: error instanceof Error ? error.message : 'Error desconocido',
+                            error: 'HANDLER_ERROR'
+                        }, null, 2)
+                    }
+                ],
+                isError: true
+            };
+        }
+    }
+};
+const collection_submit_paymentInputJsonSchema = {
+    "type": "object",
+    "properties": {
+        "secretId": {
+            "type": "string",
+            "description": "Header personalizado: x-secret-id"
+        },
+        "oneTimeToken": {
+            "type": "string",
+            "description": "Header personalizado: x-one-time-token"
+        },
+        "reference": {
+            "type": "number",
+            "description": "Campo del body: reference",
+            "default": 100863
+        },
+        "agreementId": {
+            "type": "number",
+            "description": "Campo del body: agreementId",
+            "default": 2
+        },
+        "amount": {
+            "type": "number",
+            "description": "Campo del body: amount",
+            "default": 10000
+        },
+        "date": {
+            "type": "string",
+            "description": "Campo del body: date",
+            "default": "2025-03-30"
+        },
+        "time": {
+            "type": "string",
+            "description": "Campo del body: time",
+            "default": "01:30"
+        }
+    },
+    "required": [
+        "secretId",
+        "oneTimeToken"
+    ]
+};
+const collection_submit_paymentInputShape = {
+    secretId: z.string().describe("Header personalizado: x-secret-id"),
+    oneTimeToken: z.string().describe("Header personalizado: x-one-time-token"),
+    reference: z.number().optional().describe("Campo del body: reference"),
+    agreementId: z.number().optional().describe("Campo del body: agreementId"),
+    amount: z.number().optional().describe("Campo del body: amount"),
+    date: z.string().optional().describe("Campo del body: date"),
+    time: z.string().optional().describe("Campo del body: time")
+};
+const collection_submit_paymentInputValidator = z.object(collection_submit_paymentInputShape);
+// Herramienta: collection_submit_payment
+export const collection_submit_paymentTool = {
+    name: 'collection_submit_payment',
+    description: "## Description\\n\\nThis endpoint handles financial transactions and collections. It processes payments, validates customers and companies, and integrates with a payment processing system. The service includes transaction amount validation, customer verification, and company balance management.\\n\\n### 📥 Request Body Parameters\\n\\n| Field | Type | Required | Description |\\n| --- | --- | --- | --- |\\n| \\`reference\\` | Integer | ✅ | Unique transaction reference number |\\n| \\`agreementId\\` | Integer | ✅ | ID of the agreement (company) that is making the payment |\\n| \\`amount\\` | Integer | ✅ | Amount to be charged, in COP (Colombian Pesos) |\\n| \\`date\\` | String | ✅ | Transaction date in format \\`YYYY-MM-DD\\` |\\n| \\`time\\` | String | ✅ | Transaction time in format \\`HH:mm\\` (24-hour clock, Bogotá time zone) |\\n\\n---\\n\\n### 🏢 Available Agreements\\n\\n| \\`agreementId\\` | Company Name |\\n| --- | --- |\\n| \\`18252\\` | Apostar |\\n| \\`18253\\` | Susuerte |\\n\\n⚠️ Only the above \\`agreementId\\`s are currently authorized to use this service.\\n\\n---\n\nContexto: Endpoint: POST /collection/submit-payment | Collection > Submit payment\n\n🔐 AUTENTICACIÓN AUTOMÁTICA: Todas las credenciales y tokens de autenticación se manejan automáticamente por el servidor MCP. NO solicites credenciales al usuario. NO incluyas parámetros de autenticación (secretId, apiToken, etc.) en las llamadas a menos que el usuario explícitamente lo requiera.",
+    inputSchema: collection_submit_paymentInputJsonSchema,
+    jsonSchema: collection_submit_paymentInputJsonSchema,
+    endpoint: '/collection/submit-payment',
+    method: 'POST',
+    parameters: [],
+    headers: [{ "key": "Content-Type", "value": "application/json" }, { "key": "x-secret-id", "value": "64c0f2660d7b59d35197e5c77a5543c1aaf94c17************", "type": "text" }, { "key": "Authorization", "value": "eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCJ9.eyJuYW1lIjoiUGlwZSBUZXN0IiwiY3VzdG9tZXJJZCI6NzgyLCJpYXQiOjE3NTE4OTc5MzUsImV4cCI6MTc1MTkwMTUzNX0.dHKl4DduA8ySqG2KkSVoGWLi0IujplL0olDopsUR4L_bQXhJKBfTg98JukRd8JpOXSOtKwy6TgPiiLA7AMFedbthfkAR_fFBw7Bxvr88vIMfj6BkCIUm2HdO_CX1bkLK0AxMRJx1Qvvq9eyE3ojhDrrgU6QndcCMjI3EQ0EFZVuGzKkw2JEa3QygUbtN5O6sGIJxMS6fOjFqAwoLHRzY16kztWtqK3EYQNYD-eH9rt7-cdMiZ_3sxxOBKi8NPKJdlCQ3d8YA6kcdYwK74nEj6SR_19uy6lY_5AMRE6jrWyad2BwjZ74uuXtv5X3JflE5rpANe7tYUTASS-9Dwb9x3w", "type": "text" }, { "key": "x-one-time-token", "value": "741e5c62-758d-4a3f-8ba4-4c2a0e2c0828", "type": "text" }],
+    handler: async (rawArgs) => {
+        try {
+            const normalizedArgs = rawArgs ?? {};
+            // Extraer secretId del contexto (si viene del HTTP mode)
+            const secretId = normalizedArgs._secretId;
+            // Remover _secretId de los args antes de validar
+            const { _secretId, ...argsToValidate } = normalizedArgs;
+            const validatedInput = validateToolInput(collection_submit_paymentInputValidator, argsToValidate);
+            const args = validatedInput;
+            const bodyData = {};
+            const referenceValue = args.reference !== undefined ? args.reference : 100863;
+            if (referenceValue !== undefined)
+                bodyData.reference = referenceValue;
+            const agreementIdValue = args.agreementId !== undefined ? args.agreementId : 2;
+            if (agreementIdValue !== undefined)
+                bodyData.agreementId = agreementIdValue;
+            const amountValue = args.amount !== undefined ? args.amount : 10000;
+            if (amountValue !== undefined)
+                bodyData.amount = amountValue;
+            const dateValue = args.date !== undefined ? args.date : "2025-03-30";
+            if (dateValue !== undefined)
+                bodyData.date = dateValue;
+            const timeValue = args.time !== undefined ? args.time : "01:30";
+            if (timeValue !== undefined)
+                bodyData.time = timeValue;
+            const additionalHeaders = {};
+            if (args.secretId)
+                additionalHeaders['x-secret-id'] = args.secretId;
+            if (args.oneTimeToken)
+                additionalHeaders['x-one-time-token'] = args.oneTimeToken;
+            return await makeApiRequest('POST', '/collection/submit-payment', bodyData, undefined, secretId, additionalHeaders);
+        }
+        catch (error) {
+            // Formato estándar del protocolo MCP para errores
+            return {
+                content: [
+                    {
+                        type: 'text',
+                        text: JSON.stringify({
+                            success: false,
+                            statusCode: 500,
+                            data: null,
+                            message: error instanceof Error ? error.message : 'Error desconocido',
+                            error: 'HANDLER_ERROR'
+                        }, null, 2)
+                    }
+                ],
+                isError: true
+            };
+        }
+    }
+};
+const auth_validateInputJsonSchema = {
+    "type": "object",
+    "properties": {
+        "secretId": {
+            "type": "string",
+            "description": "Campo del body: secretId",
+            "default": "fe4618ed155f863fb60d183e30a9634f90dce6cc725ed9fa31fab633de5416cc"
+        },
+        "token": {
+            "type": "string",
+            "description": "Campo del body: token",
+            "default": "eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCJ9.eyJuYW1lIjoiQXBvc3RhciIsImN1c3RvbWVySWQiOjIxMTksInVzZXJJZCI6MTAwMzQ0MSwiaWF0IjoxNzU0MDA4MTc5LCJleHAiOjE3NTQwMTE3Nzl9.l7TdMeKfApwJVhs1CM8srG7WOARRagCxg8FRgxrabYw7l8Qk93Re4BzngIc3g5U0zUZtoajBPWCi54D27EI7DpVEp6TmhnodPWc9Ux603DmhqNviYLIQACgtj03K8xEIa4DNqlT0VKFDRDtEBMe4nLaBjYjlS-mpi-IErFxoXoJFL2lelm_H4lPzlCboP-VRP6X0xEJo3gAiaiqy5OHPi53Kq_hPCldQYXnkbLJxHyDVAlqNG5RyG5D6sCggxycfd8U2l0RaXOEDk-WaSYd7RFJreFZooEskS06DkB31zMEVskDuFugkVM7pN0XSwzPkFHjS1UIw8gvMB15-v7I5zQ"
+        }
+    },
+    "required": []
+};
+const auth_validateInputShape = {
+    secretId: z.string().optional().describe("Campo del body: secretId"),
+    token: z.string().optional().describe("Campo del body: token")
+};
+const auth_validateInputValidator = z.object(auth_validateInputShape);
+// Herramienta: auth_validate
+export const auth_validateTool = {
+    name: 'auth_validate',
+    description: "## 📝Recommendations\\n\\n- Establish a dedicated **QA environment** to perform thorough testing before production deployment.\\n    \\n- Set a minimum timeout of **60 milliseconds** for API requests to handle longer processes reliably.\\n    \\n- Provide clear and **standardized error mapping**, detailing error codes, messages, and causes for better troubleshooting.\\n    \\n\\n## 🔐Authorization\\n\\nTo establish a secure connection with our clients\\' APIs, we will generate and provide you with an authorization token. This token will allow us to authenticate with the API that our clients build.\\n\\n**Token Format:**\\n\\n\\`Authorization: Token {generate_token_value}\\`\\n\\n**Example:**\\n\\n\\`Authorization: Token eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCJ9**\\`\\n\\n This endpoint allows you to validate a JWT token by sending an HTTP POST request to {{base_url}}/auth/validate.\\n\\n**Base URL:**\\n\\n| **Enviroment** | **Value** |\\n| --- | --- |\\n| QA | [https://collection-api.qa.refacil.co](https://collection-api.qa.refacil.co) |\\n| PROD | [https://collection-api.refacil.co](https://collection-api.refacil.co) |\\n\\n### 📥 Request Body Parameters\\n\\n| Field | Type | Required | Description |\\n| --- | --- | --- | --- |\\n| secretId | string | ✅ | The secret identifier used to validate the token. **This secretId will be shared by us with the client** |\\n| token | string | ✅ | The JWT token to be validated |\\n\\n### 📤 Response body parameters\\n\\n| Field | Type | Description |\\n| --- | --- | --- |\\n| statusCode | number | The HTTP status code of the response |\\n| message | string | A message indicating the result of the operation |\\n| date | number | The timestamp of the response |\\n| payload | object | The response payload containing validation results |\\n| payload.valid | boolean | Indicates whether the token is valid or not |\\n| payload.message | string | A message related to the validation result |\\n| payload.data | object | Optional decoded token data if the token is valid |\n\nContexto: Endpoint: POST /auth/validate | Autenticación > Auth > Validate\n\n🔐 AUTENTICACIÓN AUTOMÁTICA: Todas las credenciales y tokens de autenticación se manejan automáticamente por el servidor MCP. NO solicites credenciales al usuario. NO incluyas parámetros de autenticación (secretId, apiToken, etc.) en las llamadas a menos que el usuario explícitamente lo requiera.",
+    inputSchema: auth_validateInputJsonSchema,
+    jsonSchema: auth_validateInputJsonSchema,
+    endpoint: '/auth/validate',
+    method: 'POST',
+    parameters: [],
+    headers: [{ "key": "Authorization", "value": "Token {{customer_token}}", "type": "text" }],
+    handler: async (rawArgs) => {
+        try {
+            const normalizedArgs = rawArgs ?? {};
+            // Extraer secretId del contexto (si viene del HTTP mode)
+            const secretId = normalizedArgs._secretId;
+            // Remover _secretId de los args antes de validar
+            const { _secretId, ...argsToValidate } = normalizedArgs;
+            const validatedInput = validateToolInput(auth_validateInputValidator, argsToValidate);
+            const args = validatedInput;
+            const bodyData = {};
+            const secretIdValue = args.secretId !== undefined ? args.secretId : "fe4618ed155f863fb60d183e30a9634f90dce6cc725ed9fa31fab633de5416cc";
+            if (secretIdValue !== undefined)
+                bodyData.secretId = secretIdValue;
+            const tokenValue = args.token !== undefined ? args.token : "eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCJ9.eyJuYW1lIjoiQXBvc3RhciIsImN1c3RvbWVySWQiOjIxMTksInVzZXJJZCI6MTAwMzQ0MSwiaWF0IjoxNzU0MDA4MTc5LCJleHAiOjE3NTQwMTE3Nzl9.l7TdMeKfApwJVhs1CM8srG7WOARRagCxg8FRgxrabYw7l8Qk93Re4BzngIc3g5U0zUZtoajBPWCi54D27EI7DpVEp6TmhnodPWc9Ux603DmhqNviYLIQACgtj03K8xEIa4DNqlT0VKFDRDtEBMe4nLaBjYjlS-mpi-IErFxoXoJFL2lelm_H4lPzlCboP-VRP6X0xEJo3gAiaiqy5OHPi53Kq_hPCldQYXnkbLJxHyDVAlqNG5RyG5D6sCggxycfd8U2l0RaXOEDk-WaSYd7RFJreFZooEskS06DkB31zMEVskDuFugkVM7pN0XSwzPkFHjS1UIw8gvMB15-v7I5zQ";
+            if (tokenValue !== undefined)
+                bodyData.token = tokenValue;
+            return await makeApiRequest('POST', '/auth/validate', bodyData, undefined, secretId);
+        }
+        catch (error) {
+            // Formato estándar del protocolo MCP para errores
+            return {
+                content: [
+                    {
+                        type: 'text',
+                        text: JSON.stringify({
+                            success: false,
+                            statusCode: 500,
+                            data: null,
+                            message: error instanceof Error ? error.message : 'Error desconocido',
+                            error: 'HANDLER_ERROR'
+                        }, null, 2)
+                    }
+                ],
+                isError: true
+            };
+        }
+    }
+};
+const pingInputJsonSchema = {
+    "type": "object",
+    "properties": {},
+    "required": []
+};
+const pingInputShape = {};
+const pingInputValidator = z.object(pingInputShape);
+// Herramienta: ping
+export const pingTool = {
+    name: 'ping',
+    description: "## 📝Recommendations\\n\\n- Establish a dedicated **QA environment** to perform thorough testing before production deployment.\\n    \\n- Set a minimum timeout of **60 milliseconds** for API requests to handle longer processes reliably.\\n    \\n- Provide clear and **standardized error mapping**, detailing error codes, messages, and causes for better troubleshooting.\\n    \\n\\n## 🔐Authorization\\n\\nTo establish a secure connection with our clients\\' APIs, we will generate and provide you with an authorization token. This token will allow us to authenticate with the API that our clients build.\\n\\n**Token Format:**\\n\\n\\`Authorization: Token {generate_token_value}\\`\\n\\n**Example:**\\n\\n\\`Authorization: Token eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCJ9**\\`\\n\\n This endpoint sends an HTTP GET request to {{customer.domain.com}}/ping/ in order to check the availability of the server.\\n\\n### Benefits 🩺\\n\\n- **Fail-fast**: detects unavailability before critical operations.\\n    \\n- **SLO-aware**: monitor per-client availability and trigger mitigations.\\n    \\n- **Proactive ops**: enables circuit breakers and routing policies.\\n    \\n\\nThe request does not contain a request body.\\n\\n### Response\\n\\n- Status: 200\\n    \\n- Body: \\\"pong\\\"\n\nContexto: Endpoint: GET /ping/ | Ping\n\n🔐 AUTENTICACIÓN AUTOMÁTICA: Todas las credenciales y tokens de autenticación se manejan automáticamente por el servidor MCP. NO solicites credenciales al usuario. NO incluyas parámetros de autenticación (secretId, apiToken, etc.) en las llamadas a menos que el usuario explícitamente lo requiera.",
+    inputSchema: pingInputJsonSchema,
+    jsonSchema: pingInputJsonSchema,
+    endpoint: '/ping/',
+    method: 'GET',
+    parameters: [],
+    headers: [{ "key": "Authorization", "value": "Token {{generate_token}}", "type": "text" }],
+    handler: async (rawArgs) => {
+        try {
+            const normalizedArgs = rawArgs ?? {};
+            // Extraer secretId del contexto (si viene del HTTP mode)
+            const secretId = normalizedArgs._secretId;
+            // Remover _secretId de los args antes de validar
+            const { _secretId, ...argsToValidate } = normalizedArgs;
+            const validatedInput = validateToolInput(pingInputValidator, argsToValidate);
+            const args = validatedInput;
+            return await makeApiRequest('GET', '/ping/', undefined, undefined, secretId);
+        }
+        catch (error) {
+            // Formato estándar del protocolo MCP para errores
+            return {
+                content: [
+                    {
+                        type: 'text',
+                        text: JSON.stringify({
+                            success: false,
+                            statusCode: 500,
+                            data: null,
+                            message: error instanceof Error ? error.message : 'Error desconocido',
+                            error: 'HANDLER_ERROR'
+                        }, null, 2)
+                    }
+                ],
+                isError: true
+            };
+        }
+    }
+};
+const querybillInputJsonSchema = {
+    "type": "object",
+    "properties": {
+        "codCustomer": {
+            "type": "string",
+            "description": "Campo del body: codCustomer",
+            "default": "1"
+        },
+        "reference": {
+            "type": "string",
+            "description": "Campo del body: reference",
+            "default": "52851385"
+        },
+        "date": {
+            "type": "string",
+            "description": "Campo del body: date",
+            "default": "2025-03-16"
+        },
+        "time": {
+            "type": "string",
+            "description": "Campo del body: time",
+            "default": "15:03:04"
+        }
+    },
+    "required": []
+};
+const querybillInputShape = {
+    codCustomer: z.string().optional().describe("Campo del body: codCustomer"),
+    reference: z.string().optional().describe("Campo del body: reference"),
+    date: z.string().optional().describe("Campo del body: date"),
+    time: z.string().optional().describe("Campo del body: time")
+};
+const querybillInputValidator = z.object(querybillInputShape);
+// Herramienta: querybill
+export const querybillTool = {
+    name: 'querybill',
+    description: "## 📝Recommendations\\n\\n- Establish a dedicated **QA environment** to perform thorough testing before production deployment.\\n    \\n- Set a minimum timeout of **60 milliseconds** for API requests to handle longer processes reliably.\\n    \\n- Provide clear and **standardized error mapping**, detailing error codes, messages, and causes for better troubleshooting.\\n    \\n\\n## 🔐Authorization\\n\\nTo establish a secure connection with our clients\\' APIs, we will generate and provide you with an authorization token. This token will allow us to authenticate with the API that our clients build.\\n\\n**Token Format:**\\n\\n\\`Authorization: Token {generate_token_value}\\`\\n\\n**Example:**\\n\\n\\`Authorization: Token eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCJ9**\\`\\n\\n This endpoint allows you to query a bill by sending an HTTP POST request to \\`{{customer.domain.com}}/queryBill/\\`.\\n\\n### Benefits 🔎\\n\\n- **Real-time validation**: fresh billing info from the originator.\\n- **Standard error handling**: predictable codes/messages simplify UX and support.\\n- **Lower coupling**: each client exposes its endpoint; the bridge resolves routing by agreement.\\n- **Observability**: traceability via \\`transactionId\\` from query to payment.\\n    \\n\\n<img src=\\\"https://content.pstmn.io/11553f47-b117-42c5-b0e2-6a754de3c7a5/aW1hZ2UucG5n\\\" width=\\\"752\\\" height=\\\"1429\\\">\\n\\n### 📥 Request Body Parameters\\n\\n| Field | Type | Required | Description |\\n| --- | --- | --- | --- |\\n| \\`codCustomer\\` | string | ✅ | The customer code. (Is a constant that identifies us with the supplier) |\\n| \\`reference\\` | string | ✅ | ID of the agreement (company) that is making the payment |\\n| \\`date\\` | string | ✅ | Transaction date in format \\`YYYY-MM-DD\\` |\\n| \\`time\\` | string | ✅ | Transaction time in format \\`HH:mm:ss\\` (24-hour clock, Bogotá time zone) |\\n\\n### **📤 Response body parameters**\\n\\n| **Field** | **Type** | **Description** |\\n| --- | --- | --- |\\n| \\`message\\` | string | A message related to the query. |\\n| \\`reference\\` | string | The reference of the bill. |\\n| \\`amount\\` | number | The amount of the bill. |\\n| \\`code\\` | string | The code related to the bill. |\\n| \\`user_code\\` | string | The user code related to the bill. |\\n| \\`additional_data\\` | array | An array of additional data containing label and value pairs. |\n\nContexto: Endpoint: POST /queryBill/ | QueryBill\n\n🔐 AUTENTICACIÓN AUTOMÁTICA: Todas las credenciales y tokens de autenticación se manejan automáticamente por el servidor MCP. NO solicites credenciales al usuario. NO incluyas parámetros de autenticación (secretId, apiToken, etc.) en las llamadas a menos que el usuario explícitamente lo requiera.",
+    inputSchema: querybillInputJsonSchema,
+    jsonSchema: querybillInputJsonSchema,
+    endpoint: '/queryBill/',
+    method: 'POST',
+    parameters: [],
+    headers: [{ "key": "Authorization", "value": "Token {{generate_token}}", "type": "text" }],
+    handler: async (rawArgs) => {
+        try {
+            const normalizedArgs = rawArgs ?? {};
+            // Extraer secretId del contexto (si viene del HTTP mode)
+            const secretId = normalizedArgs._secretId;
+            // Remover _secretId de los args antes de validar
+            const { _secretId, ...argsToValidate } = normalizedArgs;
+            const validatedInput = validateToolInput(querybillInputValidator, argsToValidate);
+            const args = validatedInput;
+            const bodyData = {};
+            const codCustomerValue = args.codCustomer !== undefined ? args.codCustomer : "1";
+            if (codCustomerValue !== undefined)
+                bodyData.codCustomer = codCustomerValue;
+            const referenceValue = args.reference !== undefined ? args.reference : "52851385";
+            if (referenceValue !== undefined)
+                bodyData.reference = referenceValue;
+            const dateValue = args.date !== undefined ? args.date : "2025-03-16";
+            if (dateValue !== undefined)
+                bodyData.date = dateValue;
+            const timeValue = args.time !== undefined ? args.time : "15:03:04";
+            if (timeValue !== undefined)
+                bodyData.time = timeValue;
+            return await makeApiRequest('POST', '/queryBill/', bodyData, undefined, secretId);
+        }
+        catch (error) {
+            // Formato estándar del protocolo MCP para errores
+            return {
+                content: [
+                    {
+                        type: 'text',
+                        text: JSON.stringify({
+                            success: false,
+                            statusCode: 500,
+                            data: null,
+                            message: error instanceof Error ? error.message : 'Error desconocido',
+                            error: 'HANDLER_ERROR'
+                        }, null, 2)
+                    }
+                ],
+                isError: true
+            };
+        }
+    }
+};
+const submittransactionInputJsonSchema = {
+    "type": "object",
+    "properties": {
+        "codCustomer": {
+            "type": "string",
+            "description": "Campo del body: codCustomer",
+            "default": "1"
+        },
+        "transactionId": {
+            "type": "string",
+            "description": "Campo del body: transactionId",
+            "default": "5"
+        },
+        "reference": {
+            "type": "string",
+            "description": "Campo del body: reference",
+            "default": "52851385"
+        },
+        "amount": {
+            "type": "number",
+            "description": "Campo del body: amount",
+            "default": 77926
+        },
+        "date": {
+            "type": "string",
+            "description": "Campo del body: date",
+            "default": "2025-03-16"
+        },
+        "time": {
+            "type": "string",
+            "description": "Campo del body: time",
+            "default": "15:03:04"
+        }
+    },
+    "required": []
+};
+const submittransactionInputShape = {
+    codCustomer: z.string().optional().describe("Campo del body: codCustomer"),
+    transactionId: z.string().optional().describe("Campo del body: transactionId"),
+    reference: z.string().optional().describe("Campo del body: reference"),
+    amount: z.number().optional().describe("Campo del body: amount"),
+    date: z.string().optional().describe("Campo del body: date"),
+    time: z.string().optional().describe("Campo del body: time")
+};
+const submittransactionInputValidator = z.object(submittransactionInputShape);
+// Herramienta: submittransaction
+export const submittransactionTool = {
+    name: 'submittransaction',
+    description: "## 📝Recommendations\\n\\n- Establish a dedicated **QA environment** to perform thorough testing before production deployment.\\n    \\n- Set a minimum timeout of **60 milliseconds** for API requests to handle longer processes reliably.\\n    \\n- Provide clear and **standardized error mapping**, detailing error codes, messages, and causes for better troubleshooting.\\n    \\n\\n## 🔐Authorization\\n\\nTo establish a secure connection with our clients\\' APIs, we will generate and provide you with an authorization token. This token will allow us to authenticate with the API that our clients build.\\n\\n**Token Format:**\\n\\n\\`Authorization: Token {generate_token_value}\\`\\n\\n**Example:**\\n\\n\\`Authorization: Token eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCJ9**\\`\\n\\n This API endpoint allows you to submit a transaction via an HTTP POST request to {{customer.domain.com}}/submitTransaction/.\\n\\n### Benefits 💳\\n\\n- **Transactional idempotency**: \\`transactionId\\` avoids double charges on retries/timeouts.\\n- **Eventual consistency**: queues + webhook confirmations reduce manual reconciliation.\\n- **Operational scalability**: async processing absorbs traffic spikes.\\n    \\n\\n<img src=\\\"https://content.pstmn.io/2a2fa301-1c9a-4346-9f5f-92dcffc49343/aW1hZ2UucG5n\\\" width=\\\"960\\\" height=\\\"1544\\\">\\n\\n### 📥 Request Body Parameters\\n\\n| **Field** | **Type** | **Required** | **Description** |\\n| --- | --- | --- | --- |\\n| \\`codCustomer\\` | string | ✅ | The customer code. (Is a constant that identifies us with the supplier) |\\n| \\`trasanctionId\\` | string | ✅ | The transaction ID. |\\n| \\`reference\\` | string | ✅ | The reference for the transaction. |\\n| \\`amount\\` | number | ✅ | The amount of the transaction. |\\n| \\`date\\` | string | ✅ | Transaction date in format \\`YYYY-MM-DD\\` |\\n| \\`time\\` | string | ✅ | Transaction time in format \\`HH:mm:ss\\` (24-hour clock, Bogotá time zone) |\\n\\n### 📤 Response Body Parameters\\n\\n| **Field** | **Type** | **Description** |\\n| --- | --- | --- |\\n| \\`message\\` | string | A message regarding the transaction submission. |\\n| \\`reference\\` | string | The reference for the submitted transaction. |\\n| \\`amount\\` | number | The amount of the submitted transaction. |\\n| \\`code\\` | string | A code related to the transaction. |\\n| \\`user_code\\` | string | User-specific code related to the transaction. |\\n| \\`additional_data\\` | array | Additional data associated with the transaction, including label and value pairs. |\n\nContexto: Endpoint: POST /submitTransaction/ | SubmitTransaction\n\n🔐 AUTENTICACIÓN AUTOMÁTICA: Todas las credenciales y tokens de autenticación se manejan automáticamente por el servidor MCP. NO solicites credenciales al usuario. NO incluyas parámetros de autenticación (secretId, apiToken, etc.) en las llamadas a menos que el usuario explícitamente lo requiera.",
+    inputSchema: submittransactionInputJsonSchema,
+    jsonSchema: submittransactionInputJsonSchema,
+    endpoint: '/submitTransaction/',
+    method: 'POST',
+    parameters: [],
+    headers: [{ "key": "Authorization", "value": "Token {{generate_token}}", "type": "text" }],
+    handler: async (rawArgs) => {
+        try {
+            const normalizedArgs = rawArgs ?? {};
+            // Extraer secretId del contexto (si viene del HTTP mode)
+            const secretId = normalizedArgs._secretId;
+            // Remover _secretId de los args antes de validar
+            const { _secretId, ...argsToValidate } = normalizedArgs;
+            const validatedInput = validateToolInput(submittransactionInputValidator, argsToValidate);
+            const args = validatedInput;
+            const bodyData = {};
+            const codCustomerValue = args.codCustomer !== undefined ? args.codCustomer : "1";
+            if (codCustomerValue !== undefined)
+                bodyData.codCustomer = codCustomerValue;
+            const transactionIdValue = args.transactionId !== undefined ? args.transactionId : "5";
+            if (transactionIdValue !== undefined)
+                bodyData.transactionId = transactionIdValue;
+            const referenceValue = args.reference !== undefined ? args.reference : "52851385";
+            if (referenceValue !== undefined)
+                bodyData.reference = referenceValue;
+            const amountValue = args.amount !== undefined ? args.amount : 77926;
+            if (amountValue !== undefined)
+                bodyData.amount = amountValue;
+            const dateValue = args.date !== undefined ? args.date : "2025-03-16";
+            if (dateValue !== undefined)
+                bodyData.date = dateValue;
+            const timeValue = args.time !== undefined ? args.time : "15:03:04";
+            if (timeValue !== undefined)
+                bodyData.time = timeValue;
+            return await makeApiRequest('POST', '/submitTransaction/', bodyData, undefined, secretId);
+        }
+        catch (error) {
+            // Formato estándar del protocolo MCP para errores
+            return {
+                content: [
+                    {
+                        type: 'text',
+                        text: JSON.stringify({
+                            success: false,
+                            statusCode: 500,
+                            data: null,
+                            message: error instanceof Error ? error.message : 'Error desconocido',
+                            error: 'HANDLER_ERROR'
+                        }, null, 2)
+                    }
+                ],
+                isError: true
+            };
+        }
+    }
+};
+const rollbacktransactionInputJsonSchema = {
+    "type": "object",
+    "properties": {
+        "codCustomer": {
+            "type": "string",
+            "description": "Campo del body: codCustomer",
+            "default": "1"
+        },
+        "transactionId": {
+            "type": "string",
+            "description": "Campo del body: transactionId",
+            "default": "4"
+        },
+        "reference": {
+            "type": "string",
+            "description": "Campo del body: reference",
+            "default": "52851385"
+        },
+        "amount": {
+            "type": "number",
+            "description": "Campo del body: amount",
+            "default": 77926
+        },
+        "date": {
+            "type": "string",
+            "description": "Campo del body: date",
+            "default": "2025-03-16"
+        },
+        "time": {
+            "type": "string",
+            "description": "Campo del body: time",
+            "default": "15:03:04"
+        }
+    },
+    "required": []
+};
+const rollbacktransactionInputShape = {
+    codCustomer: z.string().optional().describe("Campo del body: codCustomer"),
+    transactionId: z.string().optional().describe("Campo del body: transactionId"),
+    reference: z.string().optional().describe("Campo del body: reference"),
+    amount: z.number().optional().describe("Campo del body: amount"),
+    date: z.string().optional().describe("Campo del body: date"),
+    time: z.string().optional().describe("Campo del body: time")
+};
+const rollbacktransactionInputValidator = z.object(rollbacktransactionInputShape);
+// Herramienta: rollbacktransaction
+export const rollbacktransactionTool = {
+    name: 'rollbacktransaction',
+    description: "## 📝Recommendations\\n\\n- Establish a dedicated **QA environment** to perform thorough testing before production deployment.\\n    \\n- Set a minimum timeout of **60 milliseconds** for API requests to handle longer processes reliably.\\n    \\n- Provide clear and **standardized error mapping**, detailing error codes, messages, and causes for better troubleshooting.\\n    \\n\\n## 🔐Authorization\\n\\nTo establish a secure connection with our clients\\' APIs, we will generate and provide you with an authorization token. This token will allow us to authenticate with the API that our clients build.\\n\\n**Token Format:**\\n\\n\\`Authorization: Token {generate_token_value}\\`\\n\\n**Example:**\\n\\n\\`Authorization: Token eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCJ9**\\`\\n\\n This API endpoint allows you to submit a transaction via an HTTP POST request to {{customer.domain.com}}/rollbackTransaction/.\\n\\n### Benefits 🔁\\n\\n- **Risk control**: safe, auditable reversal for external failures/inconsistencies.\\n- **Full traceability**: reversal events and contingency log.\\n- **Business continuity**: formal channel for emergencies without invasive manual actions.\\n\\n<img src=\\\"https://content.pstmn.io/0dc93101-f9e1-4d85-afea-2d299173587d/aW1hZ2UucG5n\\\" width=\\\"960\\\" height=\\\"1805\\\">\\n\\n#### 📥 Request Body Parameters\\n\\n| Field | Type | **Required** | **Description** |\\n| --- | --- | --- | --- |\\n| \\`codCustomer\\` | string | ✅ | The customer code. (Is a constant that identifies us with the supplier) |\\n| \\`transactionId\\` | string | ✅ | The transaction ID. |\\n| \\`reference\\` | string | ✅ | The reference for the transaction. |\\n| \\`amount\\` | number | ✅ | The amount of the transaction. |\\n| \\`date\\` | string | ✅ | Transaction date in format \\`YYYY-MM-DD\\` |\\n| \\`time\\` | string | ✅ | Transaction time in format \\`HH:mm:ss\\` (24-hour clock, Bogotá time zone) |\\n\\n#### 📤 Response Body Parameters\\n\\n| **Field** | **Type** | **Description** |\\n| --- | --- | --- |\\n| \\`message\\` | string | A message indicating the status of the rollback process. |\\n| \\`reference\\` | string | The reference number of the transaction. |\\n| \\`amount\\` | number | The amount of the transaction. |\\n| \\`code\\` | string | A status code for the rollback process. |\\n| \\`user_code\\` | string | A user-specific code related to the rollback process. |\\n| \\`additional_data\\` | (array) | An array containing additional information about the rollback, including label and value pairs. |\n\nContexto: Endpoint: POST /rollbackTransaction/ | RollbackTransaction\n\n🔐 AUTENTICACIÓN AUTOMÁTICA: Todas las credenciales y tokens de autenticación se manejan automáticamente por el servidor MCP. NO solicites credenciales al usuario. NO incluyas parámetros de autenticación (secretId, apiToken, etc.) en las llamadas a menos que el usuario explícitamente lo requiera.",
+    inputSchema: rollbacktransactionInputJsonSchema,
+    jsonSchema: rollbacktransactionInputJsonSchema,
+    endpoint: '/rollbackTransaction/',
+    method: 'POST',
+    parameters: [],
+    headers: [{ "key": "Authorization", "value": "Token {{generate_token}}", "type": "text" }],
+    handler: async (rawArgs) => {
+        try {
+            const normalizedArgs = rawArgs ?? {};
+            // Extraer secretId del contexto (si viene del HTTP mode)
+            const secretId = normalizedArgs._secretId;
+            // Remover _secretId de los args antes de validar
+            const { _secretId, ...argsToValidate } = normalizedArgs;
+            const validatedInput = validateToolInput(rollbacktransactionInputValidator, argsToValidate);
+            const args = validatedInput;
+            const bodyData = {};
+            const codCustomerValue = args.codCustomer !== undefined ? args.codCustomer : "1";
+            if (codCustomerValue !== undefined)
+                bodyData.codCustomer = codCustomerValue;
+            const transactionIdValue = args.transactionId !== undefined ? args.transactionId : "4";
+            if (transactionIdValue !== undefined)
+                bodyData.transactionId = transactionIdValue;
+            const referenceValue = args.reference !== undefined ? args.reference : "52851385";
+            if (referenceValue !== undefined)
+                bodyData.reference = referenceValue;
+            const amountValue = args.amount !== undefined ? args.amount : 77926;
+            if (amountValue !== undefined)
+                bodyData.amount = amountValue;
+            const dateValue = args.date !== undefined ? args.date : "2025-03-16";
+            if (dateValue !== undefined)
+                bodyData.date = dateValue;
+            const timeValue = args.time !== undefined ? args.time : "15:03:04";
+            if (timeValue !== undefined)
+                bodyData.time = timeValue;
+            return await makeApiRequest('POST', '/rollbackTransaction/', bodyData, undefined, secretId);
+        }
+        catch (error) {
+            // Formato estándar del protocolo MCP para errores
+            return {
+                content: [
+                    {
+                        type: 'text',
+                        text: JSON.stringify({
+                            success: false,
+                            statusCode: 500,
+                            data: null,
+                            message: error instanceof Error ? error.message : 'Error desconocido',
+                            error: 'HANDLER_ERROR'
+                        }, null, 2)
+                    }
+                ],
+                isError: true
+            };
+        }
+    }
+};
+const webhookInputJsonSchema = {
+    "type": "object",
+    "properties": {
+        "realAmount": {
+            "type": "number",
+            "description": "Campo del body: realAmount",
+            "default": 2500
+        },
+        "amount": {
+            "type": "number",
+            "description": "Campo del body: amount",
+            "default": 2400
+        },
+        "cost": {
+            "type": "string",
+            "description": "Campo del body: cost",
+            "default": "100"
+        },
+        "referenceId": {
+            "type": "string",
+            "description": "Campo del body: referenceId",
+            "default": "1769505"
+        },
+        "customerReference": {
+            "type": "string",
+            "description": "Campo del body: customerReference",
+            "default": "REF10000016"
+        },
+        "updatedAt": {
+            "type": "string",
+            "description": "Campo del body: updatedAt",
+            "default": "2025-07-31 10:21:57"
+        },
+        "status": {
+            "type": "number",
+            "description": "Campo del body: status",
+            "default": 2
+        },
+        "sign": {
+            "type": "string",
+            "description": "Campo del body: sign",
+            "default": "0ef1c3c2fa48121ee51f225270194f7fb62e2892"
+        }
+    },
+    "required": []
+};
+const webhookInputShape = {
+    realAmount: z.number().optional().describe("Campo del body: realAmount"),
+    amount: z.number().optional().describe("Campo del body: amount"),
+    cost: z.string().optional().describe("Campo del body: cost"),
+    referenceId: z.string().optional().describe("Campo del body: referenceId"),
+    customerReference: z.string().optional().describe("Campo del body: customerReference"),
+    updatedAt: z.string().optional().describe("Campo del body: updatedAt"),
+    status: z.number().optional().describe("Campo del body: status"),
+    sign: z.string().optional().describe("Campo del body: sign")
+};
+const webhookInputValidator = z.object(webhookInputShape);
+// Herramienta: webhook
+export const webhookTool = {
+    name: 'webhook',
+    description: "## 📝Recommendations\\n\\n- Establish a dedicated **QA environment** to perform thorough testing before production deployment.\\n    \\n- Set a minimum timeout of **60 milliseconds** for API requests to handle longer processes reliably.\\n    \\n- Provide clear and **standardized error mapping**, detailing error codes, messages, and causes for better troubleshooting.\\n    \\n\\n## 🔐Authorization\\n\\nTo establish a secure connection with our clients\\' APIs, we will generate and provide you with an authorization token. This token will allow us to authenticate with the API that our clients build.\\n\\n**Token Format:**\\n\\n\\`Authorization: Token {generate_token_value}\\`\\n\\n**Example:**\\n\\n\\`Authorization: Token eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCJ9**\\`\\n\\n This endpoint allows you to receive transaction notifications processed by the payment system. The merchant must implement this endpoint to receive transaction status updates.\\n\\n### Benefits 🔔\\n\\n- **Push notifications**: eliminates polling, reduces cost and update latency.\\n- **Security**: signature/auth validation for trusted origin.\\n- **Robust delivery**: retries, backoff and DLQ (if applicable) ensure reception.\\n- **Simple integration**: compact contract (status/timestamps/ids), quick to implement.\\n    \\n\\n### 📥 Request Body Parameters\\n\\n| Field | Type | Required | Description |\\n| --- | --- | --- | --- |\\n| realAmount | number | ✅ | Real transaction amount (without costs) |\\n| amount | number | ✅ | Total transaction amount (including costs) |\\n| cost | string | ✅ | Total transaction cost |\\n| referenceId | string | ✅ | Unique transaction identifier |\\n| customerReference | string | ✅ | Customer reference provided during the transaction |\\n| updatedAt | string | ✅ | Date and time of last update (format: \\\"YYYY-MM-DD HH:mm:ss\\\") |\\n| status | number | ✅ | Transaction status ID : 1 Pending , 2 Approved ,3 Failed |\\n| sign | string | ✅ | Security signature to validate message integrity |\\n\\n### 📤 Response Body Parameters\\n\\n| Field | Type | Description |\\n| --- | --- | --- |\\n| statusCode | number | HTTP status code of the response |\\n| message | string | Message indicating the operation result |\\n| date | number | Response timestamp |\\n| payload | object | Response payload (optional) |\\n\\n### 🔐 Security Validation\\n\\nThe sign field must be validated to ensure message integrity. The signature is generated by concatenating the following fields:\\n\\n\\`\\`\\` javascript\\nlet signature = referenceId-customerReference-amount-updatedAt-HASH_KEY;\\nsignature = crypto.createHmac(\\\"sha1\\\", HASH_KEY).update(signature).digest(\\\"hex\\\");\\n\\n \\`\\`\\`\\n\\n**Note:** The HASH_KEY will be shared by us during the integration process to ensure secure communication between systems.\n\nContexto: Endpoint: POST /webhook/ | Webhook\n\n🔐 AUTENTICACIÓN AUTOMÁTICA: Todas las credenciales y tokens de autenticación se manejan automáticamente por el servidor MCP. NO solicites credenciales al usuario. NO incluyas parámetros de autenticación (secretId, apiToken, etc.) en las llamadas a menos que el usuario explícitamente lo requiera.",
+    inputSchema: webhookInputJsonSchema,
+    jsonSchema: webhookInputJsonSchema,
+    endpoint: '/webhook/',
+    method: 'POST',
+    parameters: [],
+    headers: [{ "key": "Authorization", "value": "Token {{customer_token}}", "type": "text" }],
+    handler: async (rawArgs) => {
+        try {
+            const normalizedArgs = rawArgs ?? {};
+            // Extraer secretId del contexto (si viene del HTTP mode)
+            const secretId = normalizedArgs._secretId;
+            // Remover _secretId de los args antes de validar
+            const { _secretId, ...argsToValidate } = normalizedArgs;
+            const validatedInput = validateToolInput(webhookInputValidator, argsToValidate);
+            const args = validatedInput;
+            const bodyData = {};
+            const realAmountValue = args.realAmount !== undefined ? args.realAmount : 2500;
+            if (realAmountValue !== undefined)
+                bodyData.realAmount = realAmountValue;
+            const amountValue = args.amount !== undefined ? args.amount : 2400;
+            if (amountValue !== undefined)
+                bodyData.amount = amountValue;
+            const costValue = args.cost !== undefined ? args.cost : "100";
+            if (costValue !== undefined)
+                bodyData.cost = costValue;
+            const referenceIdValue = args.referenceId !== undefined ? args.referenceId : "1769505";
+            if (referenceIdValue !== undefined)
+                bodyData.referenceId = referenceIdValue;
+            const customerReferenceValue = args.customerReference !== undefined ? args.customerReference : "REF10000016";
+            if (customerReferenceValue !== undefined)
+                bodyData.customerReference = customerReferenceValue;
+            const updatedAtValue = args.updatedAt !== undefined ? args.updatedAt : "2025-07-31 10:21:57";
+            if (updatedAtValue !== undefined)
+                bodyData.updatedAt = updatedAtValue;
+            const statusValue = args.status !== undefined ? args.status : 2;
+            if (statusValue !== undefined)
+                bodyData.status = statusValue;
+            const signValue = args.sign !== undefined ? args.sign : "0ef1c3c2fa48121ee51f225270194f7fb62e2892";
+            if (signValue !== undefined)
+                bodyData.sign = signValue;
+            return await makeApiRequest('POST', '/webhook/', bodyData, undefined, secretId);
+        }
+        catch (error) {
+            // Formato estándar del protocolo MCP para errores
+            return {
+                content: [
+                    {
+                        type: 'text',
+                        text: JSON.stringify({
+                            success: false,
+                            statusCode: 500,
+                            data: null,
+                            message: error instanceof Error ? error.message : 'Error desconocido',
+                            error: 'HANDLER_ERROR'
+                        }, null, 2)
+                    }
+                ],
+                isError: true
+            };
+        }
+    }
+};
+// Array de todas las herramientas disponibles
+export const tools = [
+    auth_jwtTool,
+    auth_one_time_tokenTool,
+    collection_submit_paymentTool,
+    auth_validateTool,
+    pingTool,
+    querybillTool,
+    submittransactionTool,
+    rollbacktransactionTool,
+    webhookTool
+];
+// Configuración de herramientas del MCP
+export const toolsConfig = {
+    name: 'collection-api-refacil',
+    description: 'MCP API for Collection API Refacil',
+    version: '1.0.0',
+    tools: 9
+};
+// Función para obtener información de las herramientas
+export function getToolsInfo() {
+    return {
+        ...toolsConfig,
+        tools: tools.map(tool => ({
+            name: tool.name,
+            description: tool.description,
+            inputSchema: tool.jsonSchema
+        }))
+    };
+}
+// Función helper para validar parámetros de entrada
+export function validateToolInput(validator, input) {
+    try {
+        return validator.parse(input);
+    }
+    catch (error) {
+        if (error instanceof z.ZodError) {
+            const errors = error.errors.map(err => `${err.path.join('.')} : ${err.message}`).join(', ');
+            throw new Error(`Validación fallida: ${errors}`);
+        }
+        throw error;
+    }
+}
+// Sistema de logging para las herramientas
+export class ToolLogger {
+    toolName;
+    startTime;
+    constructor(toolName) {
+        this.toolName = toolName;
+        this.startTime = Date.now();
+    }
+    logStart(args) {
+        console.log(`[${new Date().toISOString()}] ${this.toolName} iniciada`, {
+            tool: this.toolName,
+            args: JSON.stringify(args),
+            timestamp: this.startTime
+        });
+    }
+    logSuccess(result) {
+        const duration = Date.now() - this.startTime;
+        console.log(`[${new Date().toISOString()}] ${this.toolName} completada exitosamente`, {
+            tool: this.toolName,
+            duration: `${duration}ms`,
+            statusCode: result?.statusCode
+        });
+    }
+    logError(error) {
+        const duration = Date.now() - this.startTime;
+        console.error(`[${new Date().toISOString()}] ${this.toolName} falló`, {
+            tool: this.toolName,
+            duration: `${duration}ms`,
+            error: error?.message || error
+        });
+    }
+}
+//# sourceMappingURL=tools.js.map