fa-mcp-sdk 0.2.125 → 0.2.131

package/bin/fa-mcp.js

@@ -11,6 +11,7 @@ import yaml from 'js-yaml';
 const __filename = fileURLToPath(import.meta.url);
 const __dirname = path.dirname(__filename);
 const PRINT_FILLED = true;
+const PROJ_ROOT = path.join(__dirname, '..');
 
 const hl = (v) => chalk.bgGreen.black(v);
 const hly = (v) => chalk.bgYellow.black(v);
@@ -26,6 +27,8 @@ const printFilled = (paramName, paramValue) => {
   }
 };
 
+const faMcpSdkVersion = require(path.join(PROJ_ROOT, 'package.json')).version;
+
 const getAsk = () => {
   const rl = readline.createInterface({
     input: process.stdin,
@@ -100,9 +103,29 @@ const parseConfigFile = (filePath, content) => {
   }
 };
 
+const removeIfExists = async (targetPath, relPath, options = {}) => {
+  const fullPath = path.join(targetPath, relPath);
+
+  try {
+    let finalOptions = { force: true, ...options };
+
+    try {
+      const stat = await fs.lstat(fullPath);
+      if (stat.isDirectory() && finalOptions.recursive === undefined) {
+        finalOptions = { ...finalOptions, recursive: true };
+      }
+    } catch {
+      // lstat упадёт, если файла/папки нет — это ок, просто пойдем в rm с теми же опциями
+    }
+
+    await fs.rm(fullPath, finalOptions);
+  } catch {
+    // игнорируем любые ошибки удаления
+  }
+};
+
 class MCPGenerator {
   constructor () {
-    this.templateDir = path.join(__dirname, '..', 'cli-template');
     this.lastConfigPath = path.join(process.cwd(), '~last-cli-config.json');
     this.requiredParams = [
       {
@@ -753,7 +776,7 @@ certificate's public and private keys`,
           delete packageJson.author;
         }
       }
-
+      packageJson.dependencies['fa-mcp-sdk'] = `^${faMcpSdkVersion}`;
       return JSON.stringify(packageJson, null, 2);
     } catch (error) {
       throw new Error(`Error processing package.json: ${error.message}`);
@@ -806,6 +829,11 @@ certificate's public and private keys`,
             modified = true;
           }
         }
+        content = content.replace(/'[^']+\/core\/index.js'/g, 'fa-mcp-sdk');
+      }
+      if (filePath.endsWith('test-sse-npm-package.js')) {
+        content = content.replace(/http:\/\/localhost:9876/g, `http://localhost:${config.port}`);
+        modified = true;
       }
 
       if (modified) {
@@ -857,8 +885,10 @@ certificate's public and private keys`,
   async createProject (config) {
     const targetPath = config.projectAbsPath;
     // Copy template files
-    await this.copyDirectory(this.templateDir, targetPath);
-    await fs.copyFile(path.join(targetPath, '.env.example'), path.join(targetPath, '.env')); // VVT
+    await this.copyDirectory(path.join(PROJ_ROOT, 'cli-template'), targetPath);
+    await this.copyDirectory(path.join(PROJ_ROOT, 'src/template'), path.join(targetPath, 'src'));
+    await this.copyDirectory(path.join(PROJ_ROOT, 'src/tests'), path.join(targetPath, 'tests'));
+    await fs.copyFile(path.join(targetPath, '.env.example'), path.join(targetPath, '.env'));
 
     // Rename mcp-template.com.conf if mcp.domain is provided
     const mcpDomain = config['mcp.domain'];
@@ -918,15 +948,16 @@ certificate's public and private keys`,
         console.log('⚠️  Warning: Could not create config/_local.yaml file:', error.message);
       }
     }
+    const pathsToRemove = [
+      { rel: 'node_modules' },
+      { rel: 'yarn.lock' },
+      { rel: 'package-lock.json' },
+      { rel: 'src/index-to-remove.ts' },
+    ];
 
-    // Remove node_modules from project if it exists
-    try {
-      const nodeModulesPath = path.join(targetPath, 'node_modules');
-      await fs.access(nodeModulesPath);
-      await fs.rm(nodeModulesPath, { recursive: true, force: true });
-    } catch {
-      // node_modules doesn't exist, which is fine
-    }
+    await Promise.all(
+      pathsToRemove.map(({ rel, options }) => removeIfExists(targetPath, rel, options)),
+    );
   }
 
   async run () {

package/cli-template/config/_local.yaml

@@ -75,22 +75,40 @@ webServer:
   port: {{port}}
   # array of hosts that CORS skips
   originHosts: ['localhost', '0.0.0.0']
+  # Authentication is configured here only when accessing the MCP server
+  # Authentication in services that enable tools, resources, and prompts
+  # is implemented more deeply. To do this, you need to use the information passed in HTTP headers
+  # You can also use a custom authorization function
   auth:
     enabled: {{webServer.auth.enabled}} # Enables/disables token authorization
-    # An array of fixed tokens that pass to the MCP (use only for MCPs with green data or for development)
+    # ========================================================================
+    # PERMANENT SERVER TOKENS
+    # Static tokens for server-to-server communication
+    # CPU cost: O(1) - fastest authentication method
+    #
+    # To enable this authentication, you need to set auth.enabled = true
+    # and set one token of at least 20 characters in length
+    # ========================================================================
     permanentServerTokens: []
+    # ========================================================================
+    # JWT TOKEN WITH SYMMETRIC ENCRYPTION
+    # Custom JWT tokens with AES-256 encryption
+    # CPU cost: Medium - decryption + JSON parsing
+    #
+    # To enable this authentication, you need to set auth.enabled = true and set
+    # encryptKey to at least 20 characters
+    # ========================================================================
     jwtToken:
       # Symmetric encryption key to generate a token for this MCP
       encryptKey: '{{webServer.auth.token.encryptKey}}'
       # If webServer.auth.enabled and the parameter true, the service name and the service specified in the token will be checked
       checkMCPName: {{webServer.auth.token.checkMCPName}}
-    #basic:
-    #  username: '***'
-    #  password: '***'
-    #oauth2:
-    #  type: 'oauth2';
-    #  clientId: '***'
-    #  clientSecret: '***'
-    #  redirectUri?: 'string'
-    #  tokenEndpoint?: string # For custom OAuth providers // VVR
-    #pat: string;
+    # ========================================================================
+    # Basic Authentication - Base64 encoded username:password
+    # CPU cost: Medium - Base64 decoding + string comparison
+    # To enable this authentication, you need to set auth.enabled = true
+    # and set username and password to valid values
+    # ========================================================================
+    basic:
+      username: ''
+      password: '***'

package/cli-template/config/custom-environment-variables.yaml

@@ -40,9 +40,3 @@ webServer:
     basic:
       username: WS_AUTH_BASIC_USERNAME
       password: WS_AUTH_BASIC_PASSWORD
-    oauth2:
-      clientId: WS_AUTH_OAUTH2_CLIENT_ID
-      clientSecret: WS_AUTH_OAUTH2_CLIENT_SECRET
-      redirectUri: WS_AUTH_OAUTH2_REDIRECT_URI
-      tokenEndpoint: WS_AUTH_OAUTH2_TOKEN_ENDPOINT # For custom OAuth providers // VVR
-    pat: WS_AUTH_PAT

package/cli-template/config/default.yaml

@@ -110,22 +110,42 @@ webServer:
   port: {{port}}
   # array of hosts that CORS skips
   originHosts: ['localhost', '0.0.0.0']
+  # Authentication is configured here only when accessing the MCP server
+  # Authentication in services that enable tools, resources, and prompts
+  # is implemented more deeply. To do this, you need to use the information passed in HTTP headers
+  # You can also use a custom authorization function
   auth:
-    enabled: false # Enables/disables token authorization
-    # An array of fixed tokens that pass to the MCP (use only for MCPs with green data or for development)
-    permanentServerTokens: []
+    enabled: false # Enables/disables authorization
+    # ========================================================================
+    # PERMANENT SERVER TOKENS
+    # Static tokens for server-to-server communication
+    # CPU cost: O(1) - fastest authentication method
+    #
+    # To enable this authentication, you need to set auth.enabled = true
+    # and set one token of at least 20 characters in length
+    # ========================================================================
+    permanentServerTokens: [ ] # Add your server tokens here: ['token1', 'token2']
+
+    # ========================================================================
+    # JWT TOKEN WITH SYMMETRIC ENCRYPTION
+    # Custom JWT tokens with AES-256 encryption
+    # CPU cost: Medium - decryption + JSON parsing
+    #
+    # To enable this authentication, you need to set auth.enabled = true and set
+    # encryptKey to at least 20 characters
+    # ========================================================================
     jwtToken:
-      # Symmetric encryption key to generate a token for this MCP
+      # Symmetric encryption key to generate a token for this MCP (minimum 8 chars)
       encryptKey: '***'
       # If webServer.auth.enabled and the parameter true, the service name and the service specified in the token will be checked
       checkMCPName: true
-    #basic:
-    #  username: '***'
-    #  password: '***'
-    #oauth2:
-    #  type: 'oauth2';
-    #  clientId: '***'
-    #  clientSecret: '***'
-    #  redirectUri?: 'string'
-    #  tokenEndpoint?: string # For custom OAuth providers // VVR
-    #pat: string;
+
+    # ========================================================================
+    # Basic Authentication - Base64 encoded username:password
+    # CPU cost: Medium - Base64 decoding + string comparison
+    # To enable this authentication, you need to set auth.enabled = true
+    # and set username and password to valid values
+    # ========================================================================
+    basic:
+      username: ''
+      password: '***'