fa-mcp-sdk 0.2.146 → 0.2.174

package/README.md

@@ -174,7 +174,7 @@ npm start
 
 Provides endpoints:
 
-- `GET /` - About page with server info
+- `GET /` - Home page with server info
 - `GET /health` - Health check
 - `GET /sse` - Server-Sent Events for MCP communication
 - `POST /mcp` - Direct MCP JSON-RPC endpoint

package/bin/fa-mcp.js

@@ -46,6 +46,7 @@ const ALLOWED_FILES = [
   '__misc',
   '_tmp',
   '~last-cli-config.json',
+  'yarn.lock',
 ];
 
 const getAsk = () => {
@@ -227,6 +228,11 @@ class MCPGenerator {
         defaultValue: '***',
         title: 'Token for registering service with Consul agent',
       },
+      {
+        name: 'consul.agent.reg.host',
+        defaultValue: '',
+        title: 'The host of the consul agent where the service will be registered',
+      },
       {
         name: 'consul.envCode.dev',
         defaultValue: '<envCode.dev>',
@@ -730,6 +736,9 @@ certificate's public and private keys`,
 
   async copyDirectory (source, target) {
     const entries = await fs.readdir(source, { withFileTypes: true });
+    if (!fss.existsSync(target)) {
+      await fs.mkdir(target, { recursive: true });
+    }
 
     for (const entry of entries) {
       if (entry.name === 'node_modules' || entry.name === 'dist') {
@@ -845,6 +854,10 @@ certificate's public and private keys`,
         content = content.replace(/http:\/\/localhost:9876/g, `http://localhost:${config.port}`);
         modified = true;
       }
+      if (filePath.endsWith('test-stdio.js')) {
+        content = content.replace('../dist/template/start.js', 'dist/src/start.js');
+        modified = true;
+      }
 
       if (modified) {
         await fs.writeFile(filePath, content, 'utf8');
@@ -854,40 +867,14 @@ certificate's public and private keys`,
       await this.transformTargetFile(config, '.env', (c) => c.replace(/^(NODE_CONSUL_ENV)=([^\r\n]*)/m, '#$1=$2'));
     }
     if (config['claude.isBypassPermissions'] === 'true') {
+      const c1 = ['sudo cp', 'sudo', 'bash', 'chmod', 'curl', 'dir', 'echo', 'git', 'find', 'grep', 'jest',
+        'mkdir', 'node', 'npm install', 'npm run', 'npm test', 'npm', 'npx', 'pkill', 'set', 'playwright', 'powershell',
+        'rm', 'taskkill', 'tasklist', 'timeout', 'turbo run', 'wc'];
+      const c2 = ['jobs', 'npm start', 'unset http_proxy'];
+      const i = ' '.repeat(8);
+      const allowBashLines = [...c1.map((c) => `${i}"Bash(${c}:*)",`), ...c2.map((c) => `${i}"Bash(${c})",`)].join('\n');
       const transformFn = (c) => c.replace('"acceptEdits"', '"bypassPermissions"')
-        .replace(/"allow": \[\s+"Edit",/, `"allow": [
-      "Bash(sudo cp:*)",
-      "Bash(sudo:*)",
-      "Bash(bash:*)",
-      "Bash(chmod:*)",
-      "Bash(curl:*)",
-      "Bash(dir:*)",
-      "Bash(echo:*)",
-      "Bash(git:*)",
-      "Bash(find:*)",
-      "Bash(grep:*)",
-      "Bash(jest:*)",
-      "Bash(jobs)",
-      "Bash(mkdir:*)",
-      "Bash(node:*)",
-      "Bash(npm install:*)",
-      "Bash(npm run:*)",
-      "Bash(npm start)",
-      "Bash(npm test:*)",
-      "Bash(npm:*)",
-      "Bash(npx:*)",
-      "Bash(pkill:*)",
-      "Bash(set:*)",
-      "Bash(playwright:*)",
-      "Bash(powershell:*)",
-      "Bash(rm:*)",
-      "Bash(taskkill:*)",
-      "Bash(tasklist:*)",
-      "Bash(timeout:*)",
-      "Bash(turbo run:*)",
-      "Bash(unset http_proxy)",
-      "Bash(wc:*)",
-      "Edit",`);
+        .replace(/"allow": \[\s+"Edit",/, `"allow": [\n${allowBashLines}\n${i}"Edit",`);
       await this.transformTargetFile(config, '.claude/settings.json', transformFn);
     }
   }
@@ -897,12 +884,32 @@ certificate's public and private keys`,
     // Copy template files
     await this.copyDirectory(path.join(PROJ_ROOT, 'cli-template'), targetPath);
     await this.copyDirectory(path.join(PROJ_ROOT, 'src/template'), path.join(targetPath, 'src'));
-    let testsTargetPath = path.join(targetPath, 'tests');
-    await fs.mkdir(testsTargetPath, { recursive: true });
+
+    const testsTargetPath = path.join(targetPath, 'tests');
+
     await this.copyDirectory(path.join(PROJ_ROOT, 'src/tests'), testsTargetPath);
     await fs.copyFile(path.join(targetPath, '.env.example'), path.join(targetPath, '.env'));
     await fs.rename(path.join(targetPath, 'gitignore'), path.join(targetPath, '.gitignore'));
-    await fs.rename(path.join(targetPath, 'run'), path.join(targetPath, '.run'));
+    await fs.rename(path.join(targetPath, 'r'), path.join(targetPath, '.run'));
+
+    await this.copyDirectory(path.join(PROJ_ROOT, 'config'), path.join(targetPath, 'config'));
+
+    const scriptsTargetPath = path.join(targetPath, 'scripts');
+    await this.copyDirectory(path.join(PROJ_ROOT, 'scripts'), scriptsTargetPath);
+    await fs.rm(path.join(targetPath, 'scripts/copy-static.js'), { force: true });
+
+    // Rename all .xml files in .run directory to .run.xml
+    const runDirPath = path.join(targetPath, '.run');
+    const files = await fs.readdir(runDirPath);
+
+    for (const file of files) {
+      if (file.endsWith('.xml')) {
+        const oldFilePath = path.join(runDirPath, file);
+        const newFileName = file.slice(0, -4) + '.run.xml';
+        const newFilePath = path.join(runDirPath, newFileName);
+        await fs.rename(oldFilePath, newFilePath);
+      }
+    }
 
     // Rename mcp-template.com.conf if mcp.domain is provided
     const mcpDomain = config['mcp.domain'];
@@ -920,15 +927,13 @@ certificate's public and private keys`,
     }
 
     // Read _local.yaml into memory and rename it to local.yaml
-    let localYamlContent = '';
+    let localYamlExampleContent = '';
+    const localYamlExamplePath = path.join(targetPath, 'config', '_local.yaml');
+    const localYamlPath = path.join(targetPath, 'config', 'local.yaml');
     try {
-      const localYamlPath = path.join(targetPath, 'config', '_local.yaml');
-      const localYamlNewPath = path.join(targetPath, 'config', 'local.yaml');
 
-      localYamlContent = await fs.readFile(localYamlPath, 'utf8');
-      await fs.rename(localYamlPath, localYamlNewPath);
+      localYamlExampleContent = await fs.readFile(localYamlExamplePath, 'utf8');
     } catch (error) {
-      // _local.yaml doesn't exist, which might be fine
       console.log('⚠️  Warning: Could not process config/_local.yaml file:', error.message);
     }
 
@@ -936,35 +941,40 @@ certificate's public and private keys`,
     await this.replaceTemplateParameters(config);
 
     // Replace template placeholders with defaultValue from optionalParams and save as _local.yaml
-    if (localYamlContent) {
+    if (localYamlExampleContent) {
       try {
-        let modifiedContent = localYamlContent;
-
+        let localYamlExampleModifiedContent = localYamlExampleContent;
+        let localYamlModifiedContent = localYamlExampleContent;
         // Replace with defaultValue from optionalParams
         for (const param of this.optionalParams) {
           const template = `{{${param.name}}}`;
-          if (modifiedContent.includes(template)) {
+          if (localYamlExampleModifiedContent.includes(template)) {
             const defaultValue = param.defaultValue || '';
-            modifiedContent = modifiedContent.replace(new RegExp(escapeRegExp(template), 'g'), defaultValue);
+            localYamlExampleModifiedContent = localYamlExampleModifiedContent.replace(new RegExp(escapeRegExp(template), 'g'), defaultValue);
           }
         }
+
         // Replacement of the remaining substitution places with what is in the config
         for (const [paramName, value] of Object.entries(config)) {
           const template = `{{${paramName}}}`;
-          if (modifiedContent.includes(template)) {
-            modifiedContent = modifiedContent.replace(new RegExp(escapeRegExp(template), 'g'), value);
+          if (localYamlExampleModifiedContent.includes(template)) {
+            localYamlExampleModifiedContent = localYamlExampleModifiedContent.replace(new RegExp(escapeRegExp(template), 'g'), value);
+          }
+          if (localYamlModifiedContent.includes(template)) {
+            localYamlModifiedContent = localYamlModifiedContent.replace(new RegExp(escapeRegExp(template), 'g'), value);
           }
         }
+        if (!config['consul.agent.reg.host']) {
+          localYamlModifiedContent = localYamlModifiedContent.replace(/(\n +)host: '[^']*'( # The host of the consul agent)/, '$1# host: \'\'$2');
+        }
 
-        const newLocalYamlPath = path.join(targetPath, 'config', '_local.yaml');
-        await fs.writeFile(newLocalYamlPath, modifiedContent, 'utf8');
+        await fs.writeFile(localYamlPath, localYamlModifiedContent, 'utf8');
+        await fs.writeFile(localYamlExamplePath, localYamlExampleModifiedContent, 'utf8');
       } catch (error) {
         console.log('⚠️  Warning: Could not create config/_local.yaml file:', error.message);
       }
     }
     const pathsToRemove = [
-      { rel: 'node_modules' },
-      { rel: 'yarn.lock' },
       { rel: 'package-lock.json' },
     ];
 
@@ -994,7 +1004,9 @@ certificate's public and private keys`,
       process.exit(0);
 
     } catch (error) {
-      console.error('\n❌  Error:', error.message);
+      if (error.message && !(error.stack || '').includes(String(error.message))) {
+        console.error('\n❌  Error:', error.message);
+      }
       console.error(error.stack);
       process.exit(1);
     }

package/cli-template/.env.example

@@ -16,8 +16,8 @@ DEBUG=config-info
 
 ## DEBUG patterns ##
 # AP-UPDATER - consul/access-points-updater
-# af-consul:reg | af-consul:* - consul/cyclic-register
-# af-consul:curl - consul/prepare-consul-api
+# fa-consul:reg | fa-consul:* - consul/cyclic-register
+# fa-consul:curl - consul/prepare-consul-api
 # token:auth
 
 # The address of the mcp server for testing. Default: http://localhost:<config.webServer.port>

package/cli-template/README.md

@@ -39,7 +39,7 @@ npm run test:mcp-simple # Simple test
 
 **HTTP Mode** (web integration):
 - HTTP server with Server-Sent Events (SSE)
-- About page with server status at `http://localhost:{{port}}/`
+- Home page with server status at `http://localhost:{{port}}/`
 - Health check endpoint at `/health`
 - Direct JSON-RPC 2.0 endpoint at `/mcp`
 
@@ -97,7 +97,7 @@ Add to `claude_desktop_config.json`:
 
 ## HTTP Mode Endpoints
 
-- **/** - About page
+- **/** - Home page
 - **/health** - Health check
 - **/sse** - Server-Sent Events
 - **/mcp** - JSON-RPC 2.0

package/cli-template/fa-mcp-sdk-spec.md

@@ -79,7 +79,6 @@ const customAuthValidator: CustomAuthValidator = async (req): Promise<AuthResult
     return {
       success: true,
       authType: 'basic',
-      tokenType: 'custom',
       username: userID || 'unknown',
     };
   } else {
@@ -451,7 +450,7 @@ consul:
       description: <description> # <description> will be replaced by <package.json>.description at initialization
       tags: [] # If null or empty array - Will be pulled up from package.keywords at initialization
       meta:
-         # "About" page link template
+         # "Home" page link template
          who: 'http://{address}:{port}/'
    envCode: # Used to generate the service ID
       prod: {{consul.envCode.prod}} # Production environment code
@@ -497,7 +496,7 @@ swagger:
         description: "PROD server"
 
 uiColor:
-   # Font color of the header and a number of interface elements on the ABOUT page
+   # Font color of the header and a number of interface elements on the HOME page
    primary: '#0f65dc'
 
 webServer:
@@ -870,13 +869,12 @@ addErrorMessage(originalError, 'Database operation failed');
 ```typescript
 import {
   ICheckTokenResult,
-  checkToken,
+  checkJwtToken,
   generateToken
 } from 'fa-mcp-sdk';
 
 // Types used:
 export interface ICheckTokenResult {
-  inTokenType?: TTokenType          // 'permanent' | 'JWT'
   payload?: ITokenPayload,          // Token payload with user data
   errorReason?: string,             // Error message if validation failed
   isTokenDecrypted?: boolean,       // Whether token was successfully decrypted
@@ -888,16 +886,16 @@ export interface ITokenPayload {
   [key: string]: any,               // Additional payload data
 }
 
-// checkToken - validate token and return detailed result
+// checkJwtToken - validate token and return detailed result
 // Function Signature:
-const checkToken = (arg: {
+const checkJwtToken = (arg: {
   token: string,
   expectedUser?: string,
   expectedService?: string,
 }): ICheckTokenResult {...}
 
 // Example:
-const tokenResult = checkToken({
+const tokenResult = checkJwtToken({
   token: 'user_provided_token',
   expectedUser: 'john_doe',
   expectedService: 'my-mcp-server'
@@ -966,6 +964,86 @@ await generateTokenApp(); // Uses default configuration from appConfig
 //   domainController: 'dc.domain.com'
 ```
 
+#### Test Authentication Headers
+
+```typescript
+import { getAuthHeadersForTests } from 'fa-mcp-sdk';
+
+// getAuthHeadersForTests - automatically generate authentication headers for testing
+// Function Signature:
+function getAuthHeadersForTests(): object {...}
+
+// Determines authentication headers based on appConfig.webServer.auth configuration.
+// Returns Authorization header using the first valid auth method found.
+//
+// Priority order (CPU-optimized, fastest first):
+// 1. permanentServerTokens - if at least one token is defined
+// 2. basic auth - if username AND password are both set
+// 3. JWT token - if jwtToken.encryptKey is set, generates token on the fly
+//
+// Returns empty object if auth is not enabled or no valid method configured.
+
+// Examples:
+const headers = getAuthHeadersForTests();
+
+// Use in fetch requests
+const response = await fetch('http://localhost:3000/mcp', {
+  method: 'POST',
+  headers: {
+    'Content-Type': 'application/json',
+    ...headers  // Automatically adds Authorization header if auth is enabled
+  },
+  body: JSON.stringify(requestBody)
+});
+
+// Use with test clients
+import { McpHttpClient } from 'fa-mcp-sdk';
+
+const client = new McpHttpClient('http://localhost:3000');
+const authHeaders = getAuthHeadersForTests();
+const result = await client.callTool('my_tool', { query: 'test' }, authHeaders);
+
+// Return value examples based on configuration:
+
+// If permanentServerTokens configured:
+// { Authorization: 'Bearer server-token-1' }
+
+// If basic auth configured:
+// { Authorization: 'Basic YWRtaW46cGFzc3dvcmQ=' }  // base64 of 'admin:password'
+
+// If JWT encryptKey configured:
+// { Authorization: 'Bearer eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9...' }
+
+// If auth.enabled = false or no valid method:
+// {}
+
+// Typical test setup:
+import { getAuthHeadersForTests, appConfig } from 'fa-mcp-sdk';
+
+describe('MCP Server Tests', () => {
+  const baseUrl = `http://localhost:${appConfig.webServer.port}`;
+  const authHeaders = getAuthHeadersForTests();
+
+  it('should call tool with authentication', async () => {
+    const response = await fetch(`${baseUrl}/mcp`, {
+      method: 'POST',
+      headers: {
+        'Content-Type': 'application/json',
+        ...authHeaders
+      },
+      body: JSON.stringify({
+        jsonrpc: '2.0',
+        method: 'tools/call',
+        params: { name: 'my_tool', arguments: { query: 'test' } },
+        id: 1
+      })
+    });
+
+    expect(response.ok).toBe(true);
+  });
+});
+```
+
 #### Multi-Authentication System
 
 The FA-MCP-SDK supports a comprehensive multi-authentication system that allows multiple authentication methods to work together with CPU-optimized performance ordering.
@@ -979,7 +1057,6 @@ import {
   AuthDetectionResult,
   CustomAuthValidator,
   checkMultiAuth,
-  checkCombinedAuth,
   detectAuthConfiguration,
   logAuthConfiguration,
   createAuthMW,         // Universal authentication middleware
@@ -994,12 +1071,12 @@ export type CustomAuthValidator = (req: any) => Promise<AuthResult> | AuthResult
 
 // Authentication result interface
 export interface AuthResult {
-  success: boolean;
-  error?: string;
-  authType?: AuthType;
-  tokenType?: string;
-  username?: string;
-  payload?: any;
+   success: boolean;
+   error?: string;
+   authType?: AuthType;
+   username?: string;
+   isTokenDecrypted?: boolean; // only for JWT
+   payload?: any;
 }
 
 // Authentication detection result
@@ -1026,24 +1103,6 @@ if (result.success) {
   console.log('Authentication failed:', result.error);
 }
 
-// checkCombinedAuth - validate using configured auth + custom validator
-// Function Signature:
-async function checkCombinedAuth( req: any ): Promise<AuthResult> {...}
-
-// This is the enhanced function that:
-// 1. Runs standard MCP auth methods (if configured)
-// 2. Additionally runs custom validator (if configured)
-// 3. Can use custom validator as fallback if standard auth fails
-
-// Example:
-const authResult = await checkCombinedAuth(req);
-
-if (authResult.success) {
-  console.log(`Authentication successful via ${authResult.authType}`);
-} else {
-  console.log('Combined authentication failed:', authResult.error);
-}
-
 // detectAuthConfiguration - analyze auth configuration
 // Function Signature:
 function detectAuthConfiguration(): AuthDetectionResult {...}
@@ -1088,7 +1147,6 @@ app.get('/api/protected', (req, res) => {
     message: 'Access granted',
     authType: authInfo?.authType,
     username: authInfo?.username,
-    tokenType: authInfo?.tokenType
   });
 });
 
@@ -1119,7 +1177,7 @@ function createAuthMW(options?: {
 async function getMultiAuthError(req: Request): Promise<{ code: number, message: string } | undefined>
 
 // Returns error object if authentication failed, undefined if successful
-// Uses checkCombinedAuth internally - supports all authentication methods
+// Uses checkMultiAuth internally - supports all authentication methods
 
 // Example - Custom middleware with different auth levels
 app.use('/api/custom', async (req, res, next) => {
@@ -1174,7 +1232,6 @@ const databaseAuthValidator: CustomAuthValidator = async (req): Promise<AuthResu
         return {
           success: true,
           authType: 'basic',
-          tokenType: 'basic',
           username: dbUser.username,
           payload: { userId: dbUser.id, roles: dbUser.roles }
         };
@@ -1187,7 +1244,6 @@ const databaseAuthValidator: CustomAuthValidator = async (req): Promise<AuthResu
         return {
           success: true,
           authType: 'basic',
-          tokenType: 'apiKey',
           username: username,
           payload: { apiKey: apiKey.substring(0, 8) + '...' }
         };
@@ -1226,7 +1282,6 @@ const ipBasedAuthValidator: CustomAuthValidator = async (req): Promise<AuthResul
     return {
       success: true,
       authType: 'basic',
-      tokenType: 'ipBased',
       username: `ip-${clientIP}`,
       payload: { clientIP, userAgent, accessTime: new Date().toISOString() }
     };
@@ -1261,7 +1316,6 @@ const externalServiceAuthValidator: CustomAuthValidator = async (req): Promise<A
       return {
         success: true,
         authType: 'basic',
-        tokenType: 'external',
         username: result.username || clientId,
         payload: {
           clientId,
@@ -1303,7 +1357,6 @@ const mfaAuthValidator: CustomAuthValidator = async (req): Promise<AuthResult> =
       return {
         success: true,
         authType: 'basic',
-        tokenType: 'mfa',
         username: username,
         payload: {
           userId: user.id,
@@ -1351,7 +1404,6 @@ app.post('/test-token', async (req, res) => {
     res.json({
       valid: result.success,
       authType: result.authType,
-      tokenType: result.tokenType,
       error: result.error,
       username: result.username,
       hasPayload: !!result.payload
@@ -1412,6 +1464,35 @@ curl -H "Authorization: Bearer token123" \
 
 The multi-authentication system automatically tries authentication methods in CPU-optimized order (fastest first) and returns on the first successful match, providing both performance and flexibility.
 
+### Check if a user belongs to an AD group
+
+#### Configuration (`config/local.yaml`)
+
+```yaml
+ad:
+  domains:
+    MYDOMAIN:
+      default: true
+      controllers: ['ldap://dc1.corp.com']
+      username: 'svc_account@corp.com'
+      password: '***'
+      # baseDn: 'DC=corp,DC=com'  # Optional, auto-derived from controller URL
+```
+
+#### Usage
+
+```typescript
+import { initADGroupChecker } from 'fa-mcp-sdk';
+
+const { isUserInGroup, groupChecker } = initADGroupChecker();
+
+const isAdmin = await isUserInGroup('john.doe', 'Admins');
+const isDeveloper = await isUserInGroup('john.doe', 'Developers');
+
+groupChecker.clearCache();  // Clear cache if needed
+```
+
+
 ### Utility Functions
 
 #### General Utilities

package/cli-template/package.json

@@ -13,15 +13,15 @@
     "build": "tsc",
     "clean": "rimraf dist",
     "cb": "npm run clean && npm run build",
-    "ci": "node --no-deprecation ./scripts/npm/run.js",
-    "reinstall": "node --no-deprecation ./scripts/npm/run.js reinstall",
+    "ci": "node --no-deprecation ../scripts/npm/run.js",
+    "reinstall": "node --no-deprecation ../scripts/npm/run.js reinstall",
     "typecheck": "tsc --noEmit",
     "lint": "eslint .",
     "lint:fix": "eslint --fix .",
     "generate-token": "node node_modules/fa-mcp-sdk/dist/core/auth/token-generator/server.js",
     "dead:exports": "ts-prune",
     "dead:files": "knip",
-    "postinstall": "node scripts/npm/patch_node_modules.js",
+    "postinstall": "node ../scripts/npm/patch_node_modules.js",
     "consul:unreg": "node node_modules/fa-mcp-sdk/dist/core/consul/deregister.js",
     "test": "jest",
     "test:mcp": "node scripts/test-mcp-tools.js",

package/cli-template/r/TEST HTTP.xml

@@ -0,0 +1,9 @@
+<component name="ProjectRunConfigurationManager">
+  <configuration
+      default="false"
+      name="TEST HTTP"
+      type="NodeJSConfigurationType"
+      path-to-js-file="tests/mcp/test-http.js" working-dir="$PROJECT_DIR$/">
+    <method v="2" />
+  </configuration>
+</component>

package/cli-template/{run/TEST SSE.run.xml → r/TEST SSE.xml }

@@ -1,5 +1,5 @@
 <component name="ProjectRunConfigurationManager">
-  <configuration default="false" name="TEST SSE" type="NodeJSConfigurationType" path-to-js-file="src/tests/mcp/test-sse.js" working-dir="$PROJECT_DIR$/">
+  <configuration default="false" name="TEST SSE" type="NodeJSConfigurationType" path-to-js-file="tests/mcp/test-sse.js" working-dir="$PROJECT_DIR$/">
     <method v="2" />
   </configuration>
-</component>
+</component>

package/cli-template/{run/TEST STDIO.run.xml → r/TEST STDIO.xml }

@@ -1,5 +1,5 @@
 <component name="ProjectRunConfigurationManager">
-  <configuration default="false" name="TEST STDIO" type="NodeJSConfigurationType" path-to-js-file="src/tests/mcp/test-stdio.js" working-dir="$PROJECT_DIR$">
+  <configuration default="false" name="TEST STDIO" type="NodeJSConfigurationType" path-to-js-file="tests/mcp/test-stdio.js" working-dir="$PROJECT_DIR$">
     <method v="2" />
   </configuration>
-</component>
+</component>

package/cli-template/r/generate-token.xml

@@ -0,0 +1,14 @@
+<component name="ProjectRunConfigurationManager">
+  <configuration default="false" name="generate-token" type="js.build_tools.npm" nameIsGenerated="true">
+    <package-json value="$PROJECT_DIR$/package.json" />
+    <command value="run" />
+    <scripts>
+      <script value="generate-token" />
+    </scripts>
+    <node-interpreter value="project" />
+    <envs>
+      <env name="DEBUG" value="ntlm:auth-flow,ntlm:ldap-proxy,ntlm:ldap-proxy-id" />
+    </envs>
+    <method v="2" />
+  </configuration>
+</component>

package/cli-template/{run/kill-server.run.xml → r/kill-server.xml}

@@ -4,8 +4,8 @@
       name="kill-server"
       type="NodeJSConfigurationType"
       application-parameters="{{port}}"
-      path-to-js-file="kill-port.js"
-      working-dir="$PROJECT_DIR$/scripts"
+      path-to-js-file="scripts/kill-port.js"
+      working-dir="$PROJECT_DIR$"
   >
     <method v="2"/>
   </configuration>

package/cli-template/{run/kill-token-gen-server.xml → r/remove-nul.xml}

@@ -1,12 +1,11 @@
 <component name="ProjectRunConfigurationManager">
   <configuration
       default="false"
-      name="kill-token-gen-server"
+      name="remove-nul.js"
       type="NodeJSConfigurationType"
-      application-parameters="3030"
-      path-to-js-file="kill-port.js"
-      working-dir="$PROJECT_DIR$/scripts"
-  >
+      nameIsGenerated="true"
+      path-to-js-file="scripts/remove-nul.js"
+      working-dir="$PROJECT_DIR$">
     <method v="2"/>
   </configuration>
 </component>