fa-mcp-sdk 0.2.121 → 0.2.131

package/bin/fa-mcp.js

@@ -11,6 +11,7 @@ import yaml from 'js-yaml';
 const __filename = fileURLToPath(import.meta.url);
 const __dirname = path.dirname(__filename);
 const PRINT_FILLED = true;
+const PROJ_ROOT = path.join(__dirname, '..');
 
 const hl = (v) => chalk.bgGreen.black(v);
 const hly = (v) => chalk.bgYellow.black(v);
@@ -26,6 +27,8 @@ const printFilled = (paramName, paramValue) => {
   }
 };
 
+const faMcpSdkVersion = require(path.join(PROJ_ROOT, 'package.json')).version;
+
 const getAsk = () => {
   const rl = readline.createInterface({
     input: process.stdin,
@@ -100,9 +103,29 @@ const parseConfigFile = (filePath, content) => {
   }
 };
 
+const removeIfExists = async (targetPath, relPath, options = {}) => {
+  const fullPath = path.join(targetPath, relPath);
+
+  try {
+    let finalOptions = { force: true, ...options };
+
+    try {
+      const stat = await fs.lstat(fullPath);
+      if (stat.isDirectory() && finalOptions.recursive === undefined) {
+        finalOptions = { ...finalOptions, recursive: true };
+      }
+    } catch {
+      // lstat упадёт, если файла/папки нет — это ок, просто пойдем в rm с теми же опциями
+    }
+
+    await fs.rm(fullPath, finalOptions);
+  } catch {
+    // игнорируем любые ошибки удаления
+  }
+};
+
 class MCPGenerator {
   constructor () {
-    this.templateDir = path.join(__dirname, '..', 'cli-template');
     this.lastConfigPath = path.join(process.cwd(), '~last-cli-config.json');
     this.requiredParams = [
       {
@@ -723,6 +746,7 @@ certificate's public and private keys`,
 
   async handlePackageJson (content, config) {
     try {
+      content = content.replace('"project.name"', '"{{project.name}}"');
       // First replace all template parameters in the content string
       let updatedContent = content;
       for (const [param, value] of Object.entries(config)) {
@@ -752,7 +776,7 @@ certificate's public and private keys`,
           delete packageJson.author;
         }
       }
-
+      packageJson.dependencies['fa-mcp-sdk'] = `^${faMcpSdkVersion}`;
       return JSON.stringify(packageJson, null, 2);
     } catch (error) {
       throw new Error(`Error processing package.json: ${error.message}`);
@@ -805,6 +829,11 @@ certificate's public and private keys`,
             modified = true;
           }
         }
+        content = content.replace(/'[^']+\/core\/index.js'/g, 'fa-mcp-sdk');
+      }
+      if (filePath.endsWith('test-sse-npm-package.js')) {
+        content = content.replace(/http:\/\/localhost:9876/g, `http://localhost:${config.port}`);
+        modified = true;
       }
 
       if (modified) {
@@ -856,8 +885,10 @@ certificate's public and private keys`,
   async createProject (config) {
     const targetPath = config.projectAbsPath;
     // Copy template files
-    await this.copyDirectory(this.templateDir, targetPath);
-    await fs.copyFile(path.join(targetPath, '.env.example'), path.join(targetPath, '.env')); // VVT
+    await this.copyDirectory(path.join(PROJ_ROOT, 'cli-template'), targetPath);
+    await this.copyDirectory(path.join(PROJ_ROOT, 'src/template'), path.join(targetPath, 'src'));
+    await this.copyDirectory(path.join(PROJ_ROOT, 'src/tests'), path.join(targetPath, 'tests'));
+    await fs.copyFile(path.join(targetPath, '.env.example'), path.join(targetPath, '.env'));
 
     // Rename mcp-template.com.conf if mcp.domain is provided
     const mcpDomain = config['mcp.domain'];
@@ -917,15 +948,16 @@ certificate's public and private keys`,
         console.log('⚠️  Warning: Could not create config/_local.yaml file:', error.message);
       }
     }
+    const pathsToRemove = [
+      { rel: 'node_modules' },
+      { rel: 'yarn.lock' },
+      { rel: 'package-lock.json' },
+      { rel: 'src/index-to-remove.ts' },
+    ];
 
-    // Remove node_modules from project if it exists
-    try {
-      const nodeModulesPath = path.join(targetPath, 'node_modules');
-      await fs.access(nodeModulesPath);
-      await fs.rm(nodeModulesPath, { recursive: true, force: true });
-    } catch {
-      // node_modules doesn't exist, which is fine
-    }
+    await Promise.all(
+      pathsToRemove.map(({ rel, options }) => removeIfExists(targetPath, rel, options)),
+    );
   }
 
   async run () {

package/cli-template/config/_local.yaml

@@ -1,6 +1,16 @@
 # Copy this file to local.yaml and update with your database credentials
 # local.yaml is gitignored and won't be committed
 ---
+#ad:
+#  domains:
+#    MYDOMAIN:
+#      default: true
+#      controllers:
+#        - 'ldap://c1.corp.com'
+#        - 'ldap://c2.corp.com'
+#      username: '***'
+#      password: '***'
+
 # --------------------------------------------------
 # CACHING Reduces API calls by caching responses
 # --------------------------------------------------
@@ -65,12 +75,40 @@ webServer:
   port: {{port}}
   # array of hosts that CORS skips
   originHosts: ['localhost', '0.0.0.0']
+  # Authentication is configured here only when accessing the MCP server
+  # Authentication in services that enable tools, resources, and prompts
+  # is implemented more deeply. To do this, you need to use the information passed in HTTP headers
+  # You can also use a custom authorization function
   auth:
     enabled: {{webServer.auth.enabled}} # Enables/disables token authorization
-    # An array of fixed tokens that pass to the MCP (use only for MCPs with green data or for development)
+    # ========================================================================
+    # PERMANENT SERVER TOKENS
+    # Static tokens for server-to-server communication
+    # CPU cost: O(1) - fastest authentication method
+    #
+    # To enable this authentication, you need to set auth.enabled = true
+    # and set one token of at least 20 characters in length
+    # ========================================================================
     permanentServerTokens: []
-    token:
+    # ========================================================================
+    # JWT TOKEN WITH SYMMETRIC ENCRYPTION
+    # Custom JWT tokens with AES-256 encryption
+    # CPU cost: Medium - decryption + JSON parsing
+    #
+    # To enable this authentication, you need to set auth.enabled = true and set
+    # encryptKey to at least 20 characters
+    # ========================================================================
+    jwtToken:
       # Symmetric encryption key to generate a token for this MCP
       encryptKey: '{{webServer.auth.token.encryptKey}}'
       # If webServer.auth.enabled and the parameter true, the service name and the service specified in the token will be checked
       checkMCPName: {{webServer.auth.token.checkMCPName}}
+    # ========================================================================
+    # Basic Authentication - Base64 encoded username:password
+    # CPU cost: Medium - Base64 decoding + string comparison
+    # To enable this authentication, you need to set auth.enabled = true
+    # and set username and password to valid values
+    # ========================================================================
+    basic:
+      username: ''
+      password: '***'

package/cli-template/config/custom-environment-variables.yaml

@@ -1,6 +1,7 @@
 cache:
   ttlSeconds: CACHE_TTL_SECONDS
   maxItems: CACHE_MAX_ITEMS
+  checkPeriod: CACHE_CHECK_PERIOD
 
 db:
   postgres:
@@ -33,6 +34,9 @@ webServer:
   auth:
     enabled: WS_AUTH_ENABLED
     permanentServerTokens: WS_SERVER_TOKENS # comma separated list
-    token:
+    jwtToken:
       encryptKey: WS_TOKEN_ENCRYPT_KEY
       checkMCPName: WS_CHECK_MC_NAME
+    basic:
+      username: WS_AUTH_BASIC_USERNAME
+      password: WS_AUTH_BASIC_PASSWORD

package/cli-template/config/default.yaml

@@ -110,12 +110,42 @@ webServer:
   port: {{port}}
   # array of hosts that CORS skips
   originHosts: ['localhost', '0.0.0.0']
+  # Authentication is configured here only when accessing the MCP server
+  # Authentication in services that enable tools, resources, and prompts
+  # is implemented more deeply. To do this, you need to use the information passed in HTTP headers
+  # You can also use a custom authorization function
   auth:
-    enabled: false # Enables/disables token authorization
-    # An array of fixed tokens that pass to the MCP (use only for MCPs with green data or for development)
-    permanentServerTokens: []
-    token:
-      # Symmetric encryption key to generate a token for this MCP
+    enabled: false # Enables/disables authorization
+    # ========================================================================
+    # PERMANENT SERVER TOKENS
+    # Static tokens for server-to-server communication
+    # CPU cost: O(1) - fastest authentication method
+    #
+    # To enable this authentication, you need to set auth.enabled = true
+    # and set one token of at least 20 characters in length
+    # ========================================================================
+    permanentServerTokens: [ ] # Add your server tokens here: ['token1', 'token2']
+
+    # ========================================================================
+    # JWT TOKEN WITH SYMMETRIC ENCRYPTION
+    # Custom JWT tokens with AES-256 encryption
+    # CPU cost: Medium - decryption + JSON parsing
+    #
+    # To enable this authentication, you need to set auth.enabled = true and set
+    # encryptKey to at least 20 characters
+    # ========================================================================
+    jwtToken:
+      # Symmetric encryption key to generate a token for this MCP (minimum 8 chars)
       encryptKey: '***'
       # If webServer.auth.enabled and the parameter true, the service name and the service specified in the token will be checked
       checkMCPName: true
+
+    # ========================================================================
+    # Basic Authentication - Base64 encoded username:password
+    # CPU cost: Medium - Base64 decoding + string comparison
+    # To enable this authentication, you need to set auth.enabled = true
+    # and set username and password to valid values
+    # ========================================================================
+    basic:
+      username: ''
+      password: '***'