fa-mcp-sdk 0.2.144 → 0.2.174

package/dist/core/web/admin-router.js

@@ -0,0 +1,227 @@
+/**
+ * Admin panel router - Token Generator & Validator
+ * Endpoints for JWT token generation and validation
+ */
+import { Router } from 'express';
+import chalk from 'chalk';
+import { dirname, join } from 'path';
+import { fileURLToPath } from 'url';
+import { appConfig } from '../bootstrap/init-config.js';
+import { checkJwtToken, generateToken } from '../auth/jwt.js';
+import { isNTLMEnabled } from '../auth/token-generator/ntlm/ntlm-domain-config.js';
+import { getSessionStats } from '../auth/token-generator/ntlm/ntlm-session-storage.js';
+import { getLoginPageHTML } from '../auth/token-generator/ntlm/ntlm-templates.js';
+import { createAdminAuthMW } from '../auth/admin-auth.js';
+import { logger as lgr } from '../logger.js';
+const __filename = fileURLToPath(import.meta.url);
+const __dirname = dirname(__filename);
+// Path to static files (relative to compiled JS location in dist/)
+const staticPath = join(__dirname, 'static/token-gen');
+const logger = lgr.getSubLogger({ name: chalk.bgCyan('admin-router') });
+const timeToSeconds = {
+    minutes: 60,
+    hours: 60 * 60,
+    days: 60 * 60 * 24,
+    months: 60 * 60 * 24 * 30,
+    years: 60 * 60 * 24 * 365,
+};
+const { adminAuth } = appConfig.webServer || {};
+const adminAuthType = adminAuth?.enabled === true ? adminAuth.type : undefined;
+const ntlmEnabled = adminAuthType === 'ntlm' && isNTLMEnabled;
+/**
+ * Creates admin router with all token generation endpoints
+ */
+export function createAdminRouter() {
+    const router = Router();
+    // Apply admin authentication middleware to all admin routes
+    const adminAuthMW = createAdminAuthMW();
+    router.use(adminAuthMW);
+    // Note: Static files (CSS, JS) are served globally at /static/token-gen/ by server-http.ts
+    // Main admin page - Token Generator UI
+    router.get('/', (req, res) => {
+        const username = req.ntlm?.username || 'Unknown';
+        const domain = req.ntlm?.domain || 'Unknown';
+        const isAuthenticated = req.ntlm?.isAuthenticated || false;
+        logger.info(`Admin page accessed by: ${domain}\\${username} (Authenticated: ${isAuthenticated})`);
+        // Serve static index.html
+        res.sendFile(join(staticPath, 'index.html'));
+    });
+    // Login page (for NTLM)
+    router.get('/login', (req, res) => {
+        res.send(getLoginPageHTML(req.ntlm?.username || ''));
+    });
+    // Logout endpoint
+    router.get('/logout', (req, res) => {
+        logger.info(`Logout requested by: ${req.ntlm?.domain || 'Unknown'}\\${req.ntlm?.username || 'Unknown'}`);
+        if (adminAuthType === 'ntlm') {
+            // NTLM logout - send 401 to trigger browser auth prompt
+            res.setHeader('WWW-Authenticate', 'NTLM');
+            res.setHeader('Clear-Site-Data', '"cookies", "storage"');
+            return res.status(401).send('Authentication required - please login again');
+        }
+        // For other auth types, just clear the session indication
+        res.setHeader('Clear-Site-Data', '"cookies", "storage"');
+        return res.status(401).json({
+            success: true,
+            message: 'Logged out successfully',
+        });
+    });
+    // Debug endpoint for session stats (development only)
+    router.get('/debug/sessions', (req, res) => {
+        if (process.env.NODE_ENV === 'production') {
+            return res.status(404).json({ error: 'Not available in production' });
+        }
+        const stats = getSessionStats();
+        return res.json({
+            message: 'Admin Panel Session Statistics',
+            timestamp: new Date().toISOString(),
+            ...stats,
+        });
+    });
+    // API: Generate token
+    router.post('/api/generate-token', (req, res) => {
+        try {
+            const username = req.ntlm?.username || 'Unknown';
+            const domain = req.ntlm?.domain || 'Unknown';
+            const authenticatedUser = `${domain}\\${username}`;
+            const { user, timeValue, timeUnit, payload } = req.body;
+            if (!user || !timeValue || !timeUnit) {
+                logger.info(`Token generation failed (missing parameters) by: ${authenticatedUser}`);
+                return res.json({
+                    success: false,
+                    error: 'Need to fill in the user and token lifetime',
+                });
+            }
+            const multiplier = timeToSeconds[timeUnit];
+            if (!multiplier) {
+                logger.info(`Token generation failed (invalid time unit) by: ${authenticatedUser}`);
+                return res.json({
+                    success: false,
+                    error: 'Invalid Time Unit',
+                });
+            }
+            const liveTimeSec = timeValue * multiplier;
+            const token = generateToken(user, liveTimeSec, payload || {});
+            logger.info(`Generated token for user: ${user}, duration: ${timeValue} ${timeUnit}, requested by: ${authenticatedUser}`);
+            return res.json({
+                success: true,
+                token: token,
+            });
+        }
+        catch (error) {
+            const username = req.ntlm?.username || 'Unknown';
+            const domain = req.ntlm?.domain || 'Unknown';
+            logger.error(`Error generating token for ${domain}\\${username}:`, error);
+            return res.json({
+                success: false,
+                error: error.message,
+            });
+        }
+    });
+    // API: Validate token
+    router.post('/api/validate-token', (req, res) => {
+        try {
+            const username = req.ntlm?.username || 'Unknown';
+            const domain = req.ntlm?.domain || 'Unknown';
+            const authenticatedUser = `${domain}\\${username}`;
+            const { token } = req.body;
+            if (!token) {
+                logger.info(`Token validation failed (no token provided) by: ${authenticatedUser}`);
+                return res.json({
+                    success: false,
+                    error: 'Token Not Transferred',
+                });
+            }
+            const result = checkJwtToken({ token });
+            if (result.errorReason) {
+                logger.info(`Token validation failed (${result.errorReason}) by: ${authenticatedUser}`);
+                return res.json({
+                    success: false,
+                    error: result.errorReason,
+                });
+            }
+            logger.info(`Token validated successfully for user: ${result.payload?.user}, requested by: ${authenticatedUser}`);
+            return res.json({
+                success: true,
+                payload: result.payload,
+            });
+        }
+        catch (error) {
+            const username = req.ntlm?.username || 'Unknown';
+            const domain = req.ntlm?.domain || 'Unknown';
+            logger.error(`Error validating token for ${domain}\\${username}:`, error);
+            return res.json({
+                success: false,
+                error: error.message,
+            });
+        }
+    });
+    // API: Service info
+    router.get('/api/service-info', (req, res) => {
+        try {
+            const username = req.ntlm?.username || 'Unknown';
+            const domain = req.ntlm?.domain || 'Unknown';
+            const isAuthenticated = req.ntlm?.isAuthenticated || false;
+            logger.info(`Service info requested by: ${domain}\\${username}`);
+            res.json({
+                success: true,
+                serviceName: appConfig.name,
+                primaryColor: appConfig.uiColor.primary,
+                authenticatedUser: `${domain}\\${username}`,
+                isAuthenticated,
+                authType: adminAuthType,
+                ntlmEnabled,
+                timestamp: new Date().toISOString(),
+            });
+        }
+        catch (error) {
+            const username = req.ntlm?.username || 'Unknown';
+            const domain = req.ntlm?.domain || 'Unknown';
+            logger.error(`Error getting service info for ${domain}\\${username}:`, error);
+            res.json({
+                success: false,
+                error: error.message,
+                serviceName: appConfig.name,
+                authType: adminAuthType,
+                ntlmEnabled,
+            });
+        }
+    });
+    // API: Auth status
+    router.get('/api/auth-status', (req, res) => {
+        try {
+            const username = req.ntlm?.username || 'Unknown';
+            const domain = req.ntlm?.domain || 'Unknown';
+            const isAuthenticated = req.ntlm?.isAuthenticated || false;
+            // Determine if logout is available (only for basic and ntlm)
+            const canLogout = isAuthenticated && (adminAuthType === 'basic' || adminAuthType === 'ntlm');
+            // Format user display based on auth type
+            let userDisplay = null;
+            if (isAuthenticated) {
+                if (adminAuthType === 'ntlm') {
+                    userDisplay = `${domain}\\${username}`;
+                }
+                else {
+                    userDisplay = username;
+                }
+            }
+            res.json({
+                success: true,
+                authType: adminAuthType || null,
+                isAuthenticated,
+                user: userDisplay,
+                canLogout,
+                timestamp: new Date().toISOString(),
+            });
+        }
+        catch (error) {
+            res.json({
+                success: false,
+                error: error.message,
+                authType: adminAuthType || null,
+            });
+        }
+    });
+    return router;
+}
+//# sourceMappingURL=admin-router.js.map

package/dist/core/web/admin-router.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"admin-router.js","sourceRoot":"","sources":["../../../src/core/web/admin-router.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,EAAE,MAAM,EAAqB,MAAM,SAAS,CAAC;AACpD,OAAO,KAAK,MAAM,OAAO,CAAC;AAC1B,OAAO,EAAE,OAAO,EAAE,IAAI,EAAE,MAAM,MAAM,CAAC;AACrC,OAAO,EAAE,aAAa,EAAE,MAAM,KAAK,CAAC;AACpC,OAAO,EAAE,SAAS,EAAE,MAAM,6BAA6B,CAAC;AACxD,OAAO,EAAE,aAAa,EAAE,aAAa,EAAE,MAAM,gBAAgB,CAAC;AAC9D,OAAO,EAAE,aAAa,EAAE,MAAM,oDAAoD,CAAC;AACnF,OAAO,EAAE,eAAe,EAAE,MAAM,sDAAsD,CAAC;AACvF,OAAO,EAAE,gBAAgB,EAAE,MAAM,gDAAgD,CAAC;AAClF,OAAO,EAAiB,iBAAiB,EAAE,MAAM,uBAAuB,CAAC;AACzE,OAAO,EAAE,MAAM,IAAI,GAAG,EAAE,MAAM,cAAc,CAAC;AAE7C,MAAM,UAAU,GAAG,aAAa,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;AAClD,MAAM,SAAS,GAAG,OAAO,CAAC,UAAU,CAAC,CAAC;AAEtC,mEAAmE;AACnE,MAAM,UAAU,GAAG,IAAI,CAAC,SAAS,EAAE,kBAAkB,CAAC,CAAC;AAEvD,MAAM,MAAM,GAAG,GAAG,CAAC,YAAY,CAAC,EAAE,IAAI,EAAE,KAAK,CAAC,MAAM,CAAC,cAAc,CAAC,EAAE,CAAC,CAAC;AAExE,MAAM,aAAa,GAAsE;IACvF,OAAO,EAAE,EAAE;IACX,KAAK,EAAE,EAAE,GAAG,EAAE;IACd,IAAI,EAAE,EAAE,GAAG,EAAE,GAAG,EAAE;IAClB,MAAM,EAAE,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE;IACzB,KAAK,EAAE,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,GAAG;CAC1B,CAAC;AAEF,MAAM,EAAE,SAAS,EAAE,GAAG,SAAS,CAAC,SAAS,IAAI,EAAE,CAAC;AAChD,MAAM,aAAa,GAA8B,SAAS,EAAE,OAAO,KAAK,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC;AAC1G,MAAM,WAAW,GAAG,aAAa,KAAK,MAAM,IAAI,aAAa,CAAC;AAE9D;;GAEG;AACH,MAAM,UAAU,iBAAiB;IAC/B,MAAM,MAAM,GAAG,MAAM,EAAE,CAAC;IAExB,4DAA4D;IAC5D,MAAM,WAAW,GAAG,iBAAiB,EAAE,CAAC;IACxC,MAAM,CAAC,GAAG,CAAC,WAAW,CAAC,CAAC;IAExB,2FAA2F;IAE3F,uCAAuC;IACvC,MAAM,CAAC,GAAG,CAAC,GAAG,EAAE,CAAC,GAAY,EAAE,GAAa,EAAE,EAAE;QAC9C,MAAM,QAAQ,GAAG,GAAG,CAAC,IAAI,EAAE,QAAQ,IAAI,SAAS,CAAC;QACjD,MAAM,MAAM,GAAG,GAAG,CAAC,IAAI,EAAE,MAAM,IAAI,SAAS,CAAC;QAC7C,MAAM,eAAe,GAAG,GAAG,CAAC,IAAI,EAAE,eAAe,IAAI,KAAK,CAAC;QAE3D,MAAM,CAAC,IAAI,CAAC,2BAA2B,MAAM,KAAK,QAAQ,oBAAoB,eAAe,GAAG,CAAC,CAAC;QAElG,0BAA0B;QAC1B,GAAG,CAAC,QAAQ,CAAC,IAAI,CAAC,UAAU,EAAE,YAAY,CAAC,CAAC,CAAC;IAC/C,CAAC,CAAC,CAAC;IAEH,wBAAwB;IACxB,MAAM,CAAC,GAAG,CAAC,QAAQ,EAAE,CAAC,GAAY,EAAE,GAAa,EAAE,EAAE;QACnD,GAAG,CAAC,IAAI,CAAC,gBAAgB,CAAC,GAAG,CAAC,IAAI,EAAE,QAAQ,IAAI,EAAE,CAAC,CAAC,CAAC;IACvD,CAAC,CAAC,CAAC;IAEH,kBAAkB;IAClB,MAAM,CAAC,GAAG,CAAC,SAAS,EAAE,CAAC,GAAY,EAAE,GAAa,EAAE,EAAE;QACpD,MAAM,CAAC,IAAI,CAAC,wBAAwB,GAAG,CAAC,IAAI,EAAE,MAAM,IAAI,SAAS,KAAK,GAAG,CAAC,IAAI,EAAE,QAAQ,IAAI,SAAS,EAAE,CAAC,CAAC;QAEzG,IAAI,aAAa,KAAK,MAAM,EAAE,CAAC;YAC7B,wDAAwD;YACxD,GAAG,CAAC,SAAS,CAAC,kBAAkB,EAAE,MAAM,CAAC,CAAC;YAC1C,GAAG,CAAC,SAAS,CAAC,iBAAiB,EAAE,sBAAsB,CAAC,CAAC;YACzD,OAAO,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,8CAA8C,CAAC,CAAC;QAC9E,CAAC;QAED,0DAA0D;QAC1D,GAAG,CAAC,SAAS,CAAC,iBAAiB,EAAE,sBAAsB,CAAC,CAAC;QACzD,OAAO,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;YAC1B,OAAO,EAAE,IAAI;YACb,OAAO,EAAE,yBAAyB;SACnC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,sDAAsD;IACtD,MAAM,CAAC,GAAG,CAAC,iBAAiB,EAAE,CAAC,GAAY,EAAE,GAAa,EAAE,EAAE;QAC5D,IAAI,OAAO,CAAC,GAAG,CAAC,QAAQ,KAAK,YAAY,EAAE,CAAC;YAC1C,OAAO,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,6BAA6B,EAAE,CAAC,CAAC;QACxE,CAAC;QAED,MAAM,KAAK,GAAG,eAAe,EAAE,CAAC;QAChC,OAAO,GAAG,CAAC,IAAI,CAAC;YACd,OAAO,EAAE,gCAAgC;YACzC,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;YACnC,GAAG,KAAK;SACT,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,sBAAsB;IACtB,MAAM,CAAC,IAAI,CAAC,qBAAqB,EAAE,CAAC,GAAY,EAAE,GAAa,EAAE,EAAE;QACjE,IAAI,CAAC;YACH,MAAM,QAAQ,GAAG,GAAG,CAAC,IAAI,EAAE,QAAQ,IAAI,SAAS,CAAC;YACjD,MAAM,MAAM,GAAG,GAAG,CAAC,IAAI,EAAE,MAAM,IAAI,SAAS,CAAC;YAC7C,MAAM,iBAAiB,GAAG,GAAG,MAAM,KAAK,QAAQ,EAAE,CAAC;YAEnD,MAAM,EAAE,IAAI,EAAE,SAAS,EAAE,QAAQ,EAAE,OAAO,EAAE,GAAG,GAAG,CAAC,IAKlD,CAAC;YAEF,IAAI,CAAC,IAAI,IAAI,CAAC,SAAS,IAAI,CAAC,QAAQ,EAAE,CAAC;gBACrC,MAAM,CAAC,IAAI,CAAC,oDAAoD,iBAAiB,EAAE,CAAC,CAAC;gBACrF,OAAO,GAAG,CAAC,IAAI,CAAC;oBACd,OAAO,EAAE,KAAK;oBACd,KAAK,EAAE,6CAA6C;iBACrD,CAAC,CAAC;YACL,CAAC;YAED,MAAM,UAAU,GAAG,aAAa,CAAC,QAAQ,CAAC,CAAC;YAC3C,IAAI,CAAC,UAAU,EAAE,CAAC;gBAChB,MAAM,CAAC,IAAI,CAAC,mDAAmD,iBAAiB,EAAE,CAAC,CAAC;gBACpF,OAAO,GAAG,CAAC,IAAI,CAAC;oBACd,OAAO,EAAE,KAAK;oBACd,KAAK,EAAE,mBAAmB;iBAC3B,CAAC,CAAC;YACL,CAAC;YAED,MAAM,WAAW,GAAG,SAAS,GAAG,UAAU,CAAC;YAC3C,MAAM,KAAK,GAAG,aAAa,CAAC,IAAI,EAAE,WAAW,EAAE,OAAO,IAAI,EAAE,CAAC,CAAC;YAE9D,MAAM,CAAC,IAAI,CAAC,6BAA6B,IAAI,eAAe,SAAS,IAAI,QAAQ,mBAAmB,iBAAiB,EAAE,CAAC,CAAC;YAEzH,OAAO,GAAG,CAAC,IAAI,CAAC;gBACd,OAAO,EAAE,IAAI;gBACb,KAAK,EAAE,KAAK;aACb,CAAC,CAAC;QAEL,CAAC;QAAC,OAAO,KAAU,EAAE,CAAC;YACpB,MAAM,QAAQ,GAAG,GAAG,CAAC,IAAI,EAAE,QAAQ,IAAI,SAAS,CAAC;YACjD,MAAM,MAAM,GAAG,GAAG,CAAC,IAAI,EAAE,MAAM,IAAI,SAAS,CAAC;YAC7C,MAAM,CAAC,KAAK,CAAC,8BAA8B,MAAM,KAAK,QAAQ,GAAG,EAAE,KAAK,CAAC,CAAC;YAC1E,OAAO,GAAG,CAAC,IAAI,CAAC;gBACd,OAAO,EAAE,KAAK;gBACd,KAAK,EAAE,KAAK,CAAC,OAAO;aACrB,CAAC,CAAC;QACL,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,sBAAsB;IACtB,MAAM,CAAC,IAAI,CAAC,qBAAqB,EAAE,CAAC,GAAY,EAAE,GAAa,EAAE,EAAE;QACjE,IAAI,CAAC;YACH,MAAM,QAAQ,GAAG,GAAG,CAAC,IAAI,EAAE,QAAQ,IAAI,SAAS,CAAC;YACjD,MAAM,MAAM,GAAG,GAAG,CAAC,IAAI,EAAE,MAAM,IAAI,SAAS,CAAC;YAC7C,MAAM,iBAAiB,GAAG,GAAG,MAAM,KAAK,QAAQ,EAAE,CAAC;YAEnD,MAAM,EAAE,KAAK,EAAE,GAAG,GAAG,CAAC,IAA0B,CAAC;YAEjD,IAAI,CAAC,KAAK,EAAE,CAAC;gBACX,MAAM,CAAC,IAAI,CAAC,mDAAmD,iBAAiB,EAAE,CAAC,CAAC;gBACpF,OAAO,GAAG,CAAC,IAAI,CAAC;oBACd,OAAO,EAAE,KAAK;oBACd,KAAK,EAAE,uBAAuB;iBAC/B,CAAC,CAAC;YACL,CAAC;YAED,MAAM,MAAM,GAAG,aAAa,CAAC,EAAE,KAAK,EAAE,CAAC,CAAC;YAExC,IAAI,MAAM,CAAC,WAAW,EAAE,CAAC;gBACvB,MAAM,CAAC,IAAI,CAAC,4BAA4B,MAAM,CAAC,WAAW,SAAS,iBAAiB,EAAE,CAAC,CAAC;gBACxF,OAAO,GAAG,CAAC,IAAI,CAAC;oBACd,OAAO,EAAE,KAAK;oBACd,KAAK,EAAE,MAAM,CAAC,WAAW;iBAC1B,CAAC,CAAC;YACL,CAAC;YAED,MAAM,CAAC,IAAI,CAAC,0CAA0C,MAAM,CAAC,OAAO,EAAE,IAAI,mBAAmB,iBAAiB,EAAE,CAAC,CAAC;YAElH,OAAO,GAAG,CAAC,IAAI,CAAC;gBACd,OAAO,EAAE,IAAI;gBACb,OAAO,EAAE,MAAM,CAAC,OAAO;aACxB,CAAC,CAAC;QAEL,CAAC;QAAC,OAAO,KAAU,EAAE,CAAC;YACpB,MAAM,QAAQ,GAAG,GAAG,CAAC,IAAI,EAAE,QAAQ,IAAI,SAAS,CAAC;YACjD,MAAM,MAAM,GAAG,GAAG,CAAC,IAAI,EAAE,MAAM,IAAI,SAAS,CAAC;YAC7C,MAAM,CAAC,KAAK,CAAC,8BAA8B,MAAM,KAAK,QAAQ,GAAG,EAAE,KAAK,CAAC,CAAC;YAC1E,OAAO,GAAG,CAAC,IAAI,CAAC;gBACd,OAAO,EAAE,KAAK;gBACd,KAAK,EAAE,KAAK,CAAC,OAAO;aACrB,CAAC,CAAC;QACL,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,oBAAoB;IACpB,MAAM,CAAC,GAAG,CAAC,mBAAmB,EAAE,CAAC,GAAY,EAAE,GAAa,EAAE,EAAE;QAC9D,IAAI,CAAC;YACH,MAAM,QAAQ,GAAG,GAAG,CAAC,IAAI,EAAE,QAAQ,IAAI,SAAS,CAAC;YACjD,MAAM,MAAM,GAAG,GAAG,CAAC,IAAI,EAAE,MAAM,IAAI,SAAS,CAAC;YAC7C,MAAM,eAAe,GAAG,GAAG,CAAC,IAAI,EAAE,eAAe,IAAI,KAAK,CAAC;YAE3D,MAAM,CAAC,IAAI,CAAC,8BAA8B,MAAM,KAAK,QAAQ,EAAE,CAAC,CAAC;YAEjE,GAAG,CAAC,IAAI,CAAC;gBACP,OAAO,EAAE,IAAI;gBACb,WAAW,EAAE,SAAS,CAAC,IAAI;gBAC3B,YAAY,EAAE,SAAS,CAAC,OAAO,CAAC,OAAO;gBACvC,iBAAiB,EAAE,GAAG,MAAM,KAAK,QAAQ,EAAE;gBAC3C,eAAe;gBACf,QAAQ,EAAE,aAAa;gBACvB,WAAW;gBACX,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;aACpC,CAAC,CAAC;QACL,CAAC;QAAC,OAAO,KAAU,EAAE,CAAC;YACpB,MAAM,QAAQ,GAAG,GAAG,CAAC,IAAI,EAAE,QAAQ,IAAI,SAAS,CAAC;YACjD,MAAM,MAAM,GAAG,GAAG,CAAC,IAAI,EAAE,MAAM,IAAI,SAAS,CAAC;YAC7C,MAAM,CAAC,KAAK,CAAC,kCAAkC,MAAM,KAAK,QAAQ,GAAG,EAAE,KAAK,CAAC,CAAC;YAC9E,GAAG,CAAC,IAAI,CAAC;gBACP,OAAO,EAAE,KAAK;gBACd,KAAK,EAAE,KAAK,CAAC,OAAO;gBACpB,WAAW,EAAE,SAAS,CAAC,IAAI;gBAC3B,QAAQ,EAAE,aAAa;gBACvB,WAAW;aACZ,CAAC,CAAC;QACL,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,mBAAmB;IACnB,MAAM,CAAC,GAAG,CAAC,kBAAkB,EAAE,CAAC,GAAY,EAAE,GAAa,EAAE,EAAE;QAC7D,IAAI,CAAC;YACH,MAAM,QAAQ,GAAG,GAAG,CAAC,IAAI,EAAE,QAAQ,IAAI,SAAS,CAAC;YACjD,MAAM,MAAM,GAAG,GAAG,CAAC,IAAI,EAAE,MAAM,IAAI,SAAS,CAAC;YAC7C,MAAM,eAAe,GAAG,GAAG,CAAC,IAAI,EAAE,eAAe,IAAI,KAAK,CAAC;YAE3D,6DAA6D;YAC7D,MAAM,SAAS,GAAG,eAAe,IAAI,CAAC,aAAa,KAAK,OAAO,IAAI,aAAa,KAAK,MAAM,CAAC,CAAC;YAE7F,yCAAyC;YACzC,IAAI,WAAW,GAAkB,IAAI,CAAC;YACtC,IAAI,eAAe,EAAE,CAAC;gBACpB,IAAI,aAAa,KAAK,MAAM,EAAE,CAAC;oBAC7B,WAAW,GAAG,GAAG,MAAM,KAAK,QAAQ,EAAE,CAAC;gBACzC,CAAC;qBAAM,CAAC;oBACN,WAAW,GAAG,QAAQ,CAAC;gBACzB,CAAC;YACH,CAAC;YAED,GAAG,CAAC,IAAI,CAAC;gBACP,OAAO,EAAE,IAAI;gBACb,QAAQ,EAAE,aAAa,IAAI,IAAI;gBAC/B,eAAe;gBACf,IAAI,EAAE,WAAW;gBACjB,SAAS;gBACT,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;aACpC,CAAC,CAAC;QACL,CAAC;QAAC,OAAO,KAAU,EAAE,CAAC;YACpB,GAAG,CAAC,IAAI,CAAC;gBACP,OAAO,EAAE,KAAK;gBACd,KAAK,EAAE,KAAK,CAAC,OAAO;gBACpB,QAAQ,EAAE,aAAa,IAAI,IAAI;aAChC,CAAC,CAAC;QACL,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,OAAO,MAAM,CAAC;AAChB,CAAC"}

package/dist/core/web/favicon-svg.d.ts

@@ -1,5 +1,5 @@
 import { RequestHandler } from 'express';
-export declare const getFaviconSvg: () => string;
+export declare const getLogoSvg: () => string;
 /**
  * Serves the favicon located by the given `path`.
  */

package/dist/core/web/favicon-svg.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"favicon-svg.d.ts","sourceRoot":"","sources":["../../../src/core/web/favicon-svg.ts"],"names":[],"mappings":"AAAA,OAAO,EAAmC,cAAc,EAAE,MAAM,SAAS,CAAC;AAgB1E,eAAO,MAAM,aAAa,QAAO,MAIhC,CAAC;AAGF;;GAEG;AACH,eAAO,MAAM,UAAU,QAAO,cAyB7B,CAAC"}
+{"version":3,"file":"favicon-svg.d.ts","sourceRoot":"","sources":["../../../src/core/web/favicon-svg.ts"],"names":[],"mappings":"AAAA,OAAO,EAAmC,cAAc,EAAE,MAAM,SAAS,CAAC;AAoC1E,eAAO,MAAM,UAAU,QAAO,MAI7B,CAAC;AAGF;;GAEG;AACH,eAAO,MAAM,UAAU,QAAO,cAyB7B,CAAC"}

package/dist/core/web/favicon-svg.js

@@ -1,6 +1,24 @@
 import crypto from 'crypto';
+import { readFileSync } from 'fs';
+import { dirname, join } from 'path';
+import { fileURLToPath } from 'url';
 import { config, getProjectData } from '../bootstrap/init-config.js';
+const __filename = fileURLToPath(import.meta.url);
+const __dirname = dirname(__filename);
 const ONE_YEAR_MS = 60 * 60 * 24 * 365 * 1000; // 1 year
+// Default logo SVG (loaded from static/logo.svg)
+let defaultLogoSvg = null;
+const loadDefaultLogo = () => {
+    if (defaultLogoSvg === null) {
+        try {
+            defaultLogoSvg = readFileSync(join(__dirname, 'static/logo.svg'), 'utf-8');
+        }
+        catch {
+            defaultLogoSvg = '<svg><!-- No logo provided --></svg>';
+        }
+    }
+    return defaultLogoSvg;
+};
 const etagS = (entity) => {
     // compute hash of entity
     const hash = crypto
@@ -10,9 +28,9 @@ const etagS = (entity) => {
         .substring(0, 27);
     return `"${Buffer.byteLength(entity, 'utf8').toString(16)}-${hash}"`;
 };
-export const getFaviconSvg = () => {
+export const getLogoSvg = () => {
     const { assets } = getProjectData();
-    let svg = assets?.favicon || '<svg><!-- No favicon provided --></svg>';
+    let svg = assets?.logoSvg || loadDefaultLogo();
     return svg.replace('fill="currentColor"', `fill="${config.uiColor.primary}"`);
 };
 /**
@@ -32,7 +50,7 @@ export const faviconSvg = () => {
             return;
         }
         // Lazy load SVG when needed
-        const svg = getFaviconSvg();
+        const svg = getLogoSvg();
         res.setHeader('Cache-Control', `public, max-age=${Math.floor(ONE_YEAR_MS / 1000)}`);
         res.setHeader('ETag', etagS(svg));
         res.setHeader('Content-Length', svg.length);

package/dist/core/web/favicon-svg.js.map

@@ -1 +1 @@
-{"version":3,"file":"favicon-svg.js","sourceRoot":"","sources":["../../../src/core/web/favicon-svg.ts"],"names":[],"mappings":"AACA,OAAO,MAAM,MAAM,QAAQ,CAAC;AAC5B,OAAO,EAAE,MAAM,EAAE,cAAc,EAAE,MAAM,6BAA6B,CAAC;AAErE,MAAM,WAAW,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,GAAG,GAAG,IAAI,CAAC,CAAC,SAAS;AAExD,MAAM,KAAK,GAAG,CAAC,MAAc,EAAU,EAAE;IACvC,yBAAyB;IACzB,MAAM,IAAI,GAAG,MAAM;SAChB,UAAU,CAAC,MAAM,CAAC;SAClB,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC;SACtB,MAAM,CAAC,QAAQ,CAAC;SAChB,SAAS,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;IACpB,OAAO,IAAI,MAAM,CAAC,UAAU,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC,QAAQ,CAAC,EAAE,CAAC,IAAI,IAAI,GAAG,CAAC;AACvE,CAAC,CAAC;AAEF,MAAM,CAAC,MAAM,aAAa,GAAG,GAAW,EAAE;IACxC,MAAM,EAAE,MAAM,EAAE,GAAG,cAAc,EAAE,CAAC;IACpC,IAAI,GAAG,GAAW,MAAM,EAAE,OAAO,IAAI,yCAAyC,CAAC;IAC/E,OAAO,GAAG,CAAC,OAAO,CAAC,qBAAqB,EAAE,SAAS,MAAM,CAAC,OAAO,CAAC,OAAO,GAAG,CAAC,CAAC;AAChF,CAAC,CAAC;AAGF;;GAEG;AACH,MAAM,CAAC,MAAM,UAAU,GAAG,GAAmB,EAAE;IAC7C,OAAO,CAAC,GAAY,EAAE,GAAa,EAAE,IAAkB,EAAE,EAAE;QACzD,IAAI,CAAC,gBAAgB,CAAC,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC,EAAE,CAAC;YACrC,IAAI,EAAE,CAAC;YACP,OAAO;QACT,CAAC;QAED,IAAI,GAAG,CAAC,MAAM,KAAK,KAAK,IAAI,GAAG,CAAC,MAAM,KAAK,MAAM,EAAE,CAAC;YAClD,GAAG,CAAC,UAAU,GAAG,GAAG,CAAC,MAAM,KAAK,SAAS,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,GAAG,CAAC;YACtD,GAAG,CAAC,SAAS,CAAC,OAAO,EAAE,oBAAoB,CAAC,CAAC;YAC7C,GAAG,CAAC,SAAS,CAAC,gBAAgB,EAAE,GAAG,CAAC,CAAC;YACrC,GAAG,CAAC,GAAG,EAAE,CAAC;YACV,OAAO;QACT,CAAC;QAED,4BAA4B;QAC5B,MAAM,GAAG,GAAG,aAAa,EAAE,CAAC;QAE5B,GAAG,CAAC,SAAS,CAAC,eAAe,EAAE,mBAAmB,IAAI,CAAC,KAAK,CAAC,WAAW,GAAG,IAAI,CAAC,EAAE,CAAC,CAAC;QACpF,GAAG,CAAC,SAAS,CAAC,MAAM,EAAE,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC;QAClC,GAAG,CAAC,SAAS,CAAC,gBAAgB,EAAE,GAAG,CAAC,MAAM,CAAC,CAAC;QAC5C,GAAG,CAAC,SAAS,CAAC,cAAc,EAAE,eAAe,CAAC,CAAC;QAC/C,GAAG,CAAC,UAAU,GAAG,GAAG,CAAC;QACrB,GAAG,CAAC,GAAG,CAAC,GAAG,EAAE,OAAO,CAAC,CAAC;IACxB,CAAC,CAAC;AACJ,CAAC,CAAC"}
+{"version":3,"file":"favicon-svg.js","sourceRoot":"","sources":["../../../src/core/web/favicon-svg.ts"],"names":[],"mappings":"AACA,OAAO,MAAM,MAAM,QAAQ,CAAC;AAC5B,OAAO,EAAE,YAAY,EAAE,MAAM,IAAI,CAAC;AAClC,OAAO,EAAE,OAAO,EAAE,IAAI,EAAE,MAAM,MAAM,CAAC;AACrC,OAAO,EAAE,aAAa,EAAE,MAAM,KAAK,CAAC;AACpC,OAAO,EAAE,MAAM,EAAE,cAAc,EAAE,MAAM,6BAA6B,CAAC;AAErE,MAAM,UAAU,GAAG,aAAa,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;AAClD,MAAM,SAAS,GAAG,OAAO,CAAC,UAAU,CAAC,CAAC;AAEtC,MAAM,WAAW,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,GAAG,GAAG,IAAI,CAAC,CAAC,SAAS;AAExD,iDAAiD;AACjD,IAAI,cAAc,GAAkB,IAAI,CAAC;AAEzC,MAAM,eAAe,GAAG,GAAW,EAAE;IACnC,IAAI,cAAc,KAAK,IAAI,EAAE,CAAC;QAC5B,IAAI,CAAC;YACH,cAAc,GAAG,YAAY,CAAC,IAAI,CAAC,SAAS,EAAE,iBAAiB,CAAC,EAAE,OAAO,CAAC,CAAC;QAC7E,CAAC;QAAC,MAAM,CAAC;YACP,cAAc,GAAG,sCAAsC,CAAC;QAC1D,CAAC;IACH,CAAC;IACD,OAAO,cAAc,CAAC;AACxB,CAAC,CAAC;AAEF,MAAM,KAAK,GAAG,CAAC,MAAc,EAAU,EAAE;IACvC,yBAAyB;IACzB,MAAM,IAAI,GAAG,MAAM;SAChB,UAAU,CAAC,MAAM,CAAC;SAClB,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC;SACtB,MAAM,CAAC,QAAQ,CAAC;SAChB,SAAS,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;IACpB,OAAO,IAAI,MAAM,CAAC,UAAU,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC,QAAQ,CAAC,EAAE,CAAC,IAAI,IAAI,GAAG,CAAC;AACvE,CAAC,CAAC;AAEF,MAAM,CAAC,MAAM,UAAU,GAAG,GAAW,EAAE;IACrC,MAAM,EAAE,MAAM,EAAE,GAAG,cAAc,EAAE,CAAC;IACpC,IAAI,GAAG,GAAW,MAAM,EAAE,OAAO,IAAI,eAAe,EAAE,CAAC;IACvD,OAAO,GAAG,CAAC,OAAO,CAAC,qBAAqB,EAAE,SAAS,MAAM,CAAC,OAAO,CAAC,OAAO,GAAG,CAAC,CAAC;AAChF,CAAC,CAAC;AAGF;;GAEG;AACH,MAAM,CAAC,MAAM,UAAU,GAAG,GAAmB,EAAE;IAC7C,OAAO,CAAC,GAAY,EAAE,GAAa,EAAE,IAAkB,EAAE,EAAE;QACzD,IAAI,CAAC,gBAAgB,CAAC,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC,EAAE,CAAC;YACrC,IAAI,EAAE,CAAC;YACP,OAAO;QACT,CAAC;QAED,IAAI,GAAG,CAAC,MAAM,KAAK,KAAK,IAAI,GAAG,CAAC,MAAM,KAAK,MAAM,EAAE,CAAC;YAClD,GAAG,CAAC,UAAU,GAAG,GAAG,CAAC,MAAM,KAAK,SAAS,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,GAAG,CAAC;YACtD,GAAG,CAAC,SAAS,CAAC,OAAO,EAAE,oBAAoB,CAAC,CAAC;YAC7C,GAAG,CAAC,SAAS,CAAC,gBAAgB,EAAE,GAAG,CAAC,CAAC;YACrC,GAAG,CAAC,GAAG,EAAE,CAAC;YACV,OAAO;QACT,CAAC;QAED,4BAA4B;QAC5B,MAAM,GAAG,GAAG,UAAU,EAAE,CAAC;QAEzB,GAAG,CAAC,SAAS,CAAC,eAAe,EAAE,mBAAmB,IAAI,CAAC,KAAK,CAAC,WAAW,GAAG,IAAI,CAAC,EAAE,CAAC,CAAC;QACpF,GAAG,CAAC,SAAS,CAAC,MAAM,EAAE,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC;QAClC,GAAG,CAAC,SAAS,CAAC,gBAAgB,EAAE,GAAG,CAAC,MAAM,CAAC,CAAC;QAC5C,GAAG,CAAC,SAAS,CAAC,cAAc,EAAE,eAAe,CAAC,CAAC;QAC/C,GAAG,CAAC,UAAU,GAAG,GAAG,CAAC;QACrB,GAAG,CAAC,GAAG,CAAC,GAAG,EAAE,OAAO,CAAC,CAAC;IACxB,CAAC,CAAC;AACJ,CAAC,CAAC"}

package/dist/core/web/home-api.d.ts

@@ -0,0 +1,7 @@
+/**
+ * Home page API endpoint
+ * Returns all dynamic data needed for the home page
+ */
+import { Request, Response } from 'express';
+export declare function handleHomeInfo(_req: Request, res: Response): Promise<void>;
+//# sourceMappingURL=home-api.d.ts.map

package/dist/core/web/home-api.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"home-api.d.ts","sourceRoot":"","sources":["../../../src/core/web/home-api.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,SAAS,CAAC;AAyB5C,wBAAsB,cAAc,CAAE,IAAI,EAAE,OAAO,EAAE,GAAG,EAAE,QAAQ,GAAG,OAAO,CAAC,IAAI,CAAC,CAqEjF"}

package/dist/core/web/home-api.js

@@ -0,0 +1,93 @@
+/**
+ * Home page API endpoint
+ * Returns all dynamic data needed for the home page
+ */
+import { getResourcesList } from '../mcp/resources.js';
+import { getPromptsList } from '../mcp/prompts.js';
+import { getMainDBConnectionStatus } from '../db/pg-db.js';
+import { getLogoSvg } from './favicon-svg.js';
+import { appConfig, getProjectData } from '../bootstrap/init-config.js';
+const startTime = new Date();
+const getUptime = () => {
+    const uptimeMs = Date.now() - startTime.getTime();
+    const uptimeSeconds = Math.floor(uptimeMs / 1000);
+    const hours = Math.floor(uptimeSeconds / 3600);
+    const minutes = Math.floor((uptimeSeconds % 3600) / 60);
+    const seconds = uptimeSeconds % 60;
+    if (hours > 0) {
+        return `${hours}h ${minutes}m ${seconds}s`;
+    }
+    else if (minutes > 0) {
+        return `${minutes}m ${seconds}s`;
+    }
+    else {
+        return `${seconds}s`;
+    }
+};
+export async function handleHomeInfo(_req, res) {
+    try {
+        const { version, repo } = appConfig;
+        const serviceTitle = appConfig.productName.replace(/MCP/i, '').replace(/\s{2,}/g, ' ').trim();
+        const logoSvg = getLogoSvg();
+        const { resources } = getResourcesList();
+        const { prompts } = getPromptsList();
+        const { tools, httpComponents } = global.__MCP_PROJECT_DATA__;
+        const { getConsulUIAddress = (_s) => '', assets } = getProjectData();
+        // Build footer HTML
+        const footerParts = [];
+        if (repo) {
+            footerParts.push(`<a href="${repo}" target="_blank" rel="noopener">GitHub Repository</a>`);
+        }
+        if (assets?.maintainerHtml) {
+            footerParts.push(assets.maintainerHtml);
+        }
+        // Database info
+        let db = null;
+        if (appConfig.isMainDBUsed) {
+            const dbStatus = await getMainDBConnectionStatus();
+            const { host, port, database } = appConfig.db.postgres.dbs.main;
+            db = {
+                connection: `${host}:${port}/${database}`,
+                status: dbStatus,
+            };
+        }
+        // Consul info
+        let consul = null;
+        if (appConfig.consul.service.enable) {
+            const { id } = appConfig.consul.service;
+            if (id) {
+                consul = {
+                    id,
+                    url: getConsulUIAddress(id),
+                };
+            }
+        }
+        const response = {
+            serviceTitle,
+            description: appConfig.description,
+            version,
+            uptime: getUptime(),
+            primaryColor: appConfig.uiColor.primary,
+            logoSvg,
+            toolsCount: tools.length,
+            resourcesCount: resources.length,
+            promptsCount: prompts.length,
+            tools,
+            resources,
+            prompts,
+            db,
+            swagger: !!httpComponents?.swagger,
+            consul,
+            repo,
+            footer: footerParts.join(' • '),
+        };
+        res.json(response);
+    }
+    catch (error) {
+        res.status(500).json({
+            error: 'Failed to get home info',
+            message: error.message,
+        });
+    }
+}
+//# sourceMappingURL=home-api.js.map

package/dist/core/web/home-api.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"home-api.js","sourceRoot":"","sources":["../../../src/core/web/home-api.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAGH,OAAO,EAAE,gBAAgB,EAAE,MAAM,qBAAqB,CAAC;AACvD,OAAO,EAAE,cAAc,EAAE,MAAM,mBAAmB,CAAC;AACnD,OAAO,EAAE,yBAAyB,EAAE,MAAM,gBAAgB,CAAC;AAC3D,OAAO,EAAE,UAAU,EAAE,MAAM,kBAAkB,CAAC;AAC9C,OAAO,EAAE,SAAS,EAAE,cAAc,EAAE,MAAM,6BAA6B,CAAC;AAExE,MAAM,SAAS,GAAG,IAAI,IAAI,EAAE,CAAC;AAE7B,MAAM,SAAS,GAAG,GAAW,EAAE;IAC7B,MAAM,QAAQ,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,CAAC,OAAO,EAAE,CAAC;IAClD,MAAM,aAAa,GAAG,IAAI,CAAC,KAAK,CAAC,QAAQ,GAAG,IAAI,CAAC,CAAC;IAClD,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,aAAa,GAAG,IAAI,CAAC,CAAC;IAC/C,MAAM,OAAO,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC,aAAa,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC,CAAC;IACxD,MAAM,OAAO,GAAG,aAAa,GAAG,EAAE,CAAC;IAEnC,IAAI,KAAK,GAAG,CAAC,EAAE,CAAC;QACd,OAAO,GAAG,KAAK,KAAK,OAAO,KAAK,OAAO,GAAG,CAAC;IAC7C,CAAC;SAAM,IAAI,OAAO,GAAG,CAAC,EAAE,CAAC;QACvB,OAAO,GAAG,OAAO,KAAK,OAAO,GAAG,CAAC;IACnC,CAAC;SAAM,CAAC;QACN,OAAO,GAAG,OAAO,GAAG,CAAC;IACvB,CAAC;AACH,CAAC,CAAC;AAEF,MAAM,CAAC,KAAK,UAAU,cAAc,CAAE,IAAa,EAAE,GAAa;IAChE,IAAI,CAAC;QACH,MAAM,EAAE,OAAO,EAAE,IAAI,EAAE,GAAG,SAAS,CAAC;QACpC,MAAM,YAAY,GAAG,SAAS,CAAC,WAAW,CAAC,OAAO,CAAC,MAAM,EAAE,EAAE,CAAC,CAAC,OAAO,CAAC,SAAS,EAAE,GAAG,CAAC,CAAC,IAAI,EAAE,CAAC;QAC9F,MAAM,OAAO,GAAG,UAAU,EAAE,CAAC;QAC7B,MAAM,EAAE,SAAS,EAAE,GAAG,gBAAgB,EAAE,CAAC;QACzC,MAAM,EAAE,OAAO,EAAE,GAAG,cAAc,EAAE,CAAC;QACrC,MAAM,EAAE,KAAK,EAAE,cAAc,EAAE,GAAI,MAAc,CAAC,oBAAoB,CAAC;QACvE,MAAM,EAAE,kBAAkB,GAAG,CAAC,EAAU,EAAE,EAAE,CAAC,EAAE,EAAE,MAAM,EAAE,GAAG,cAAc,EAAE,CAAC;QAE7E,oBAAoB;QACpB,MAAM,WAAW,GAAa,EAAE,CAAC;QACjC,IAAI,IAAI,EAAE,CAAC;YACT,WAAW,CAAC,IAAI,CAAC,YAAY,IAAI,wDAAwD,CAAC,CAAC;QAC7F,CAAC;QACD,IAAI,MAAM,EAAE,cAAc,EAAE,CAAC;YAC3B,WAAW,CAAC,IAAI,CAAC,MAAM,CAAC,cAAc,CAAC,CAAC;QAC1C,CAAC;QAED,gBAAgB;QAChB,IAAI,EAAE,GAAG,IAAI,CAAC;QACd,IAAI,SAAS,CAAC,YAAY,EAAE,CAAC;YAC3B,MAAM,QAAQ,GAAG,MAAM,yBAAyB,EAAE,CAAC;YACnD,MAAM,EAAE,IAAI,EAAE,IAAI,EAAE,QAAQ,EAAE,GAAG,SAAS,CAAC,EAAE,CAAC,QAAS,CAAC,GAAG,CAAC,IAAK,CAAC;YAClE,EAAE,GAAG;gBACH,UAAU,EAAE,GAAG,IAAI,IAAI,IAAI,IAAI,QAAQ,EAAE;gBACzC,MAAM,EAAE,QAAQ;aACjB,CAAC;QACJ,CAAC;QAED,cAAc;QACd,IAAI,MAAM,GAAG,IAAI,CAAC;QAClB,IAAI,SAAS,CAAC,MAAM,CAAC,OAAO,CAAC,MAAM,EAAE,CAAC;YACpC,MAAM,EAAE,EAAE,EAAE,GAAG,SAAS,CAAC,MAAM,CAAC,OAAO,CAAC;YACxC,IAAI,EAAE,EAAE,CAAC;gBACP,MAAM,GAAG;oBACP,EAAE;oBACF,GAAG,EAAE,kBAAkB,CAAC,EAAE,CAAC;iBAC5B,CAAC;YACJ,CAAC;QACH,CAAC;QAED,MAAM,QAAQ,GAAG;YACf,YAAY;YACZ,WAAW,EAAE,SAAS,CAAC,WAAW;YAClC,OAAO;YACP,MAAM,EAAE,SAAS,EAAE;YACnB,YAAY,EAAE,SAAS,CAAC,OAAO,CAAC,OAAO;YACvC,OAAO;YACP,UAAU,EAAE,KAAK,CAAC,MAAM;YACxB,cAAc,EAAE,SAAS,CAAC,MAAM;YAChC,YAAY,EAAE,OAAO,CAAC,MAAM;YAC5B,KAAK;YACL,SAAS;YACT,OAAO;YACP,EAAE;YACF,OAAO,EAAE,CAAC,CAAC,cAAc,EAAE,OAAO;YAClC,MAAM;YACN,IAAI;YACJ,MAAM,EAAE,WAAW,CAAC,IAAI,CAAC,KAAK,CAAC;SAChC,CAAC;QAEF,GAAG,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;IACrB,CAAC;IAAC,OAAO,KAAU,EAAE,CAAC;QACpB,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;YACnB,KAAK,EAAE,yBAAyB;YAChC,OAAO,EAAE,KAAK,CAAC,OAAO;SACvB,CAAC,CAAC;IACL,CAAC;AACH,CAAC"}

package/dist/core/web/server-http.d.ts

@@ -1,3 +1,4 @@
+export declare const isAdminEnabled: boolean;
 /**
  * Start HTTP server with SSE transport
  */

package/dist/core/web/server-http.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"server-http.d.ts","sourceRoot":"","sources":["../../../src/core/web/server-http.ts"],"names":[],"mappings":"AAgEA;;GAEG;AACH,wBAAsB,eAAe,IAAK,OAAO,CAAC,IAAI,CAAC,CAgYtD"}
+{"version":3,"file":"server-http.d.ts","sourceRoot":"","sources":["../../../src/core/web/server-http.ts"],"names":[],"mappings":"AAqCA,eAAO,MAAM,cAAc,SAA8B,CAAC;AAyC1D;;GAEG;AACH,wBAAsB,eAAe,IAAK,OAAO,CAAC,IAAI,CAAC,CA+ZtD"}

package/dist/core/web/server-http.js

@@ -3,6 +3,8 @@ import { CallToolRequestSchema } from '@modelcontextprotocol/sdk/types.js';
 import express from 'express';
 import helmet from 'helmet';
 import { RateLimiterMemory } from 'rate-limiter-flexible';
+import { dirname, join } from 'path';
+import { fileURLToPath } from 'url';
 import { appConfig, getProjectData } from '../bootstrap/init-config.js';
 import { getResource, getResourcesList } from '../mcp/resources.js';
 import { createAuthMW } from '../auth/middleware.js';
@@ -15,10 +17,19 @@ import { applyCors } from './cors.js';
 import { faviconSvg } from './favicon-svg.js';
 import chalk from 'chalk';
 import { getPrompt, getPromptsList } from '../mcp/prompts.js';
-import { renderAboutPage } from './about-page/render.js';
+import { handleHomeInfo } from './home-api.js';
 import { getMainDBConnectionStatus } from '../db/pg-db.js';
 import { normalizeHeaders } from '../utils/utils.js';
+import { createAdminRouter } from './admin-router.js';
+import { validateAdminAuthConfig } from '../auth/admin-auth.js';
+import { createSvgRouter } from './svg-icons.js';
+const __filename = fileURLToPath(import.meta.url);
+const __dirname = dirname(__filename);
+// Path to static files
+const staticPath = join(__dirname, 'static');
 const logger = lgr.getSubLogger({ name: chalk.bgYellow('server-http') });
+const { adminAuth } = appConfig.webServer || {};
+export const isAdminEnabled = adminAuth?.enabled === true;
 /**
  * Handle rate limiting with consistent error response
  */
@@ -71,16 +82,15 @@ export async function startHttpServer() {
     app.use(express.urlencoded({ extended: true, limit: '10mb' }));
     applyCors(app);
     app.use(faviconSvg());
-    // Root endpoint with About page
-    app.get('/', async (req, res) => {
-        try {
-            const html = await renderAboutPage();
-            res.type('html').send(html);
-        }
-        catch (error) {
-            logger.error('Failed to render about page:', error);
-            res.status(500).send('Error rendering about page');
-        }
+    // Serve static files (CSS, JS, SVG)
+    app.use('/static', express.static(staticPath));
+    // SVG icons with color substitution
+    app.use('/svg', createSvgRouter());
+    // Home page API endpoint
+    app.get('/api/home-info', handleHomeInfo);
+    // Root endpoint - serve static Home page
+    app.get('/', (req, res) => {
+        res.sendFile(join(staticPath, 'home', 'index.html'));
     });
     // Health check endpoint
     app.get('/health', async (req, res) => {
@@ -112,21 +122,33 @@ export async function startHttpServer() {
     if (apiRouter) {
         app.use('/api', apiRouter);
     }
+    // Admin panel routes (Token Generator & Validator)
+    if (isAdminEnabled) {
+        const adminConfigError = validateAdminAuthConfig();
+        if (adminConfigError) {
+            logger.error(`Admin auth configuration error: ${adminConfigError}`);
+            throw new Error(`Admin auth configuration error: ${adminConfigError}`);
+        }
+        const adminRouter = createAdminRouter();
+        app.use('/admin', adminRouter);
+        logger.info('Admin panel mounted at /admin');
+    }
     // SSE endpoints for legacy MCP communication
-    // Store SSE transports by session ID with transport, server, and preserved headers
+    // Store SSE transports by session ID with transport, server, preserved headers, and auth payload
     const sseTransports = new Map();
-    // Create SSE server instance with preserved headers from connection establishment
-    async function createSseServer(preservedHeaders) {
+    // Create SSE server instance with preserved headers and auth payload from connection establishment
+    async function createSseServer(preservedHeaders, authPayload) {
         const sseServer = createMcpServer();
-        // Override the tool call handler to include rate limiting and preserved headers
+        // Override the tool call handler to include rate limiting, preserved headers and auth payload
         sseServer.setRequestHandler(CallToolRequestSchema, async (request) => {
             // Apply rate limiting for each SSE tool call
             const toolCallClientId = 'sse-tool-unknown';
             await handleRateLimit(rateLimiter, toolCallClientId, 'unknown', `SSE tool call | tool: ${request.params.name}`);
-            // Execute the tool call with preserved headers from SSE connection establishment
+            // Execute the tool call with preserved headers and payload from SSE connection establishment
             const result = await toolHandler({
                 ...request.params,
-                headers: preservedHeaders // Use headers from when SSE connection was established
+                headers: preservedHeaders, // Use headers from when SSE connection was established
+                payload: authPayload // Use auth payload from when SSE connection was established
             });
             return {
                 content: result.content,
@@ -144,15 +166,19 @@ export async function startHttpServer() {
             // Preserve normalized headers from SSE connection establishment
             const preservedHeaders = normalizeHeaders(req.headers);
             logger.debug('SSE connection headers preserved:', Object.keys(preservedHeaders));
+            // Extract auth payload from middleware (set by authMW)
+            const authInfo = req.authInfo;
+            const authPayload = authInfo?.payload;
             // Create SSE transport that will use the same endpoint for POST requests
             const transport = new SSEServerTransport('/sse', res);
-            // Create a dedicated server instance with preserved headers for this SSE connection
-            const sseServer = await createSseServer(preservedHeaders);
-            // Store transport, server, and headers for cleanup and reference
+            // Create a dedicated server instance with preserved headers and auth payload for this SSE connection
+            const sseServer = await createSseServer(preservedHeaders, authPayload);
+            // Store transport, server, headers, and payload for cleanup and reference
             sseTransports.set(transport.sessionId, {
                 transport,
                 server: sseServer,
-                headers: preservedHeaders
+                headers: preservedHeaders,
+                payload: authPayload
             });
             // Clean up transport and server on connection close
             res.on('close', () => {
@@ -275,9 +301,12 @@ export async function startHttpServer() {
                     // Apply rate limiting for tool calls
                     const toolCallClientId = `tool-${req.ip || 'unknown'}`;
                     await handleRateLimit(rateLimiter, toolCallClientId, req.ip || 'unknown', `tool call | tool: ${params?.name || 'unknown'}`, res, id);
+                    // Extract auth payload from middleware (set by authMW)
+                    const mcpAuthPayload = req.authInfo?.payload;
                     result = await toolHandler({
                         ...params,
-                        headers: normalizeHeaders(req.headers)
+                        headers: normalizeHeaders(req.headers),
+                        payload: mcpAuthPayload
                     });
                     break;
                 case 'prompts/list':
@@ -345,7 +374,7 @@ export async function startHttpServer() {
     // 404 handler for unknown routes
     app.use((req, res) => {
         const availableEndpoints = {
-            about: 'GET /',
+            home: 'GET /',
             health: 'GET /health',
             sse: 'GET /sse, POST /sse',
             messages: 'POST /messages',
@@ -354,6 +383,9 @@ export async function startHttpServer() {
         if (swagger) {
             availableEndpoints.docs = 'GET /docs';
         }
+        if (isAdminEnabled) {
+            availableEndpoints.admin = 'GET /admin';
+        }
         Object.assign(availableEndpoints, {
             ...(httpComponents?.endpointsOn404 || {}),
         });
@@ -373,8 +405,11 @@ export async function startHttpServer() {
     // Start HTTP server
     const port = appConfig.webServer.port;
     app.listen(port, '0.0.0.0', () => {
-        const msg = `${chalk.magenta(appConfig.productName)} started with ${chalk.blue('HTTP')} transport on port ${chalk.blue(port)}
-About page: http://localhost:${port}/`;
+        let msg = `${chalk.magenta(appConfig.productName)} started with ${chalk.blue('HTTP')} transport on port ${chalk.blue(port)}
+Home page: http://localhost:${port}/`;
+        if (isAdminEnabled) {
+            msg += `\nAdmin panel: http://localhost:${port}/admin`;
+        }
         console.log(msg);
     });
 }