fa-mcp-sdk 0.2.239 → 0.2.243

package/cli-template/FA-MCP-SDK-DOC/00-FA-MCP-SDK-index.md

@@ -54,16 +54,16 @@ npm install fa-mcp-sdk
 
 ## Documentation Structure
 
-| File                                                       | Content | Read When |
-|------------------------------------------------------------|---------|-----------|
-| [01-getting-started.md](01-getting-started.md)             | Installation, project structure, `initMcpServer()`, core types (`McpServerData`, `IPromptData`, `IResourceData`) | Starting a new project, understanding project structure |
-| [02-1-tools-and-api.md](02-1-tools-and-api.md)             | Tool definitions, `toolHandler`, HTTP headers, REST API with tsoa decorators, OpenAPI/Swagger auto-generation | Creating MCP tools, adding REST endpoints |
+| File                                                           | Content | Read When |
+|----------------------------------------------------------------|---------|-----------|
+| [01-getting-started.md](01-getting-started.md)                 | Installation, project structure, `initMcpServer()`, core types (`McpServerData`, `IPromptData`, `IResourceData`), Configuration API (`AppConfig`, `getProjectData`, `getSafeAppConfig`) | Starting a new project, understanding project structure |
+| [02-1-tools-and-api.md](02-1-tools-and-api.md)                 | Tool definitions, `toolHandler`, HTTP headers, REST API with tsoa decorators, OpenAPI/Swagger (`configureOpenAPI`, `OpenAPISpecResponse`, `SwaggerUIConfig`) | Creating MCP tools, adding REST endpoints, configuring Swagger |
 | [02-2-prompts-and-resources.md](02-2-prompts-and-resources.md) | Standard prompts (agent-brief, agent-prompt), custom prompts, standard resources, custom resources, `requireAuth` | Configuring prompts and resources |
-| [03-configuration.md](03-configuration.md)                 | `appConfig`, YAML configuration, cache management, database integration (PostgreSQL) | Configuring the server, using cache or database |
-| [04-authentication.md](04-authentication.md)               | Multi-auth system, JWT tokens, Basic auth, server tokens, custom validators, `createAuthMW()` | Setting up authentication |
-| [05-ad-authorization.md](05-ad-authorization.md)           | AD group-based authorization examples: HTTP level, all tools, per-tool | Implementing AD group restrictions |
-| [06-utilities.md](06-utilities.md)                         | Error handling, utility functions, logging, events, Consul integration, graceful shutdown | Error handling, logging, service discovery |
-| [07-testing-and-operations.md](07-testing-and-operations.md) | Test clients (STDIO, HTTP, SSE), transport types, best practices | Testing, deployment, operations |
+| [03-configuration.md](03-configuration.md)                     | `appConfig`, YAML configuration, cache management, database integration (PostgreSQL) | Configuring the server, using cache or database |
+| [04-authentication.md](04-authentication.md)                   | Multi-auth system, JWT tokens (`TTokenType`), Basic auth, server tokens, custom validators, `createAuthMW()`, Token Generator (`generateTokenApp`) | Setting up authentication, generating tokens |
+| [05-ad-authorization.md](05-ad-authorization.md)               | AD configuration types (`IADConfig`, `IDcConfig`), AD group-based authorization examples: HTTP level, all tools, per-tool | Implementing AD group restrictions |
+| [06-utilities.md](06-utilities.md)                             | Error handling (`ServerError`), utility functions (`normalizeHeaders`, `getTools`), constants (`ROOT_PROJECT_DIR`), logging, events, Consul integration, graceful shutdown | Error handling, logging, service discovery |
+| [07-testing-and-operations.md](07-testing-and-operations.md)   | Test clients (STDIO, HTTP, SSE, Streamable HTTP - `McpStreamableHttpClient`), transport types, best practices | Testing, deployment, operations |
 
 ## Common Tasks Quick Reference
 
@@ -121,13 +121,16 @@ Read: `07-testing-and-operations.md`
 import { initMcpServer, McpServerData } from 'fa-mcp-sdk';
 
 // Configuration
-import { appConfig } from 'fa-mcp-sdk';
+import { appConfig, AppConfig, getProjectData, getSafeAppConfig, ROOT_PROJECT_DIR } from 'fa-mcp-sdk';
 
 // Authentication
-import { createAuthMW, checkJwtToken, generateToken, getAuthHeadersForTests } from 'fa-mcp-sdk';
+import { createAuthMW, generateToken, getAuthHeadersForTests, TTokenType, generateTokenApp } from 'fa-mcp-sdk';
 
 // Tools
-import { formatToolResult, ToolExecutionError } from 'fa-mcp-sdk';
+import { formatToolResult, ToolExecutionError, getTools } from 'fa-mcp-sdk';
+
+// Errors
+import { ServerError, BaseMcpError, ValidationError } from 'fa-mcp-sdk';
 
 // Database
 import { queryMAIN, execMAIN, oneRowMAIN, checkMainDB } from 'fa-mcp-sdk';
@@ -139,13 +142,16 @@ import { getCache } from 'fa-mcp-sdk';
 import { logger, fileLogger } from 'fa-mcp-sdk';
 
 // Utilities
-import { trim, ppj, toError, toStr } from 'fa-mcp-sdk';
+import { trim, ppj, toError, toStr, normalizeHeaders } from 'fa-mcp-sdk';
 
 // Test clients
-import { McpHttpClient, McpStdioClient, McpSseClient } from 'fa-mcp-sdk';
+import { McpHttpClient, McpStdioClient, McpSseClient, McpStreamableHttpClient } from 'fa-mcp-sdk';
 
 // AD Groups
-import { initADGroupChecker } from 'fa-mcp-sdk';
+import { initADGroupChecker, IADConfig, IDcConfig } from 'fa-mcp-sdk';
+
+// OpenAPI/Swagger
+import { configureOpenAPI, createSwaggerUIAssetsMiddleware, OpenAPISpecResponse, SwaggerUIConfig } from 'fa-mcp-sdk';
 ```
 
 ## Project Structure

package/cli-template/FA-MCP-SDK-DOC/01-getting-started.md

@@ -108,8 +108,8 @@ Main configuration interface for your MCP server.
 ```typescript
 interface McpServerData {
   // MCP Core Components
-  tools: Tool[];                                    // Your tool definitions
-  toolHandler: (params: { name: string; arguments?: any; headers?: Record<string, string> }) => Promise<any>; // Tool execution function
+  tools: Tool[] | (() => Promise<Tool[]>);         // Your tool definitions (static array or async function)
+  toolHandler: (params: IToolHandlerParams) => Promise<any>; // Tool execution function
 
   // Agent Configuration
   agentBrief: string;                              // Brief description of your agent
@@ -121,7 +121,8 @@ interface McpServerData {
   customResources?: IResourceData[] | null;        // Custom resource definitions
 
   // Authentication
-  customAuthValidator?: CustomAuthValidator;           // Custom authentication validator function
+  customAuthValidator?: CustomAuthValidator;       // Custom authentication validator function
+  tokenGenAuthHandler?: TokenGenAuthHandler;       // Custom authorization for Token Generator admin page
 
   // HTTP Server Components (for HTTP transport)
   httpComponents?: {
@@ -130,13 +131,20 @@ interface McpServerData {
 
   // UI Assets
   assets?: {
-    favicon?: string;                              // SVG content for favicon
+    logoSvg?: string;                              // SVG content for logo/favicon
     maintainerHtml?: string;                       // Support contact HTML snippet
   };
 
   // Consul Integration
   getConsulUIAddress?: (serviceId: string) => string; // Function to generate Consul UI URLs
 }
+
+interface IToolHandlerParams {
+  name: string;
+  arguments?: any;
+  headers?: Record<string, string>;
+  payload?: { user: string; [key: string]: any } | undefined; // JWT payload if authenticated
+}
 ```
 
 ### `IPromptData`
@@ -184,9 +192,13 @@ interface IResourceData {
   title?: string;                                  // Optional display title
   description: string;                             // Human-readable description
   mimeType: string;                                // MIME type (e.g., "text/plain", "application/json")
-  content: IResourceContent;                       // Static content or dynamic function
+  content: IResourceContent;                       // Static string, object, or dynamic function
   requireAuth?: boolean;                           // Whether authentication is required
 }
+
+// Content types for resources
+type IResourceContent = string | object | TResourceContentFunction;
+type TResourceContentFunction = (uri: string) => string | Promise<string>;
 ```
 
 Example `src/custom-resources.ts`:
@@ -205,3 +217,79 @@ export const customResources: IResourceData[] = [
   },
 ];
 ```
+
+---
+
+## Configuration API
+
+### `AppConfig`
+
+Base configuration type for MCP server applications. Extends multiple configuration interfaces for database, logging, web server, MCP, and Active Directory settings.
+
+```typescript
+import { appConfig, AppConfig } from 'fa-mcp-sdk';
+
+// appConfig is a singleton with merged configuration from:
+// - config/default.yaml (base)
+// - config/{NODE_ENV}.yaml (environment-specific)
+// - Environment variables (highest priority)
+
+// Access configuration values
+const port = appConfig.webServer.port;
+const serviceName = appConfig.name;
+const isAuthEnabled = appConfig.webServer.auth.enabled;
+```
+
+**Key Properties:**
+
+| Property | Type | Description |
+|----------|------|-------------|
+| `name` | string | Package name from package.json |
+| `shortName` | string | Name without 'mcp' suffix |
+| `version` | string | Package version |
+| `description` | string | Package description |
+| `webServer` | object | HTTP server configuration (host, port, auth) |
+| `mcp` | object | MCP protocol settings (transportType, rateLimit) |
+| `logger` | object | Logging configuration (level, useFileLogger) |
+| `ad` | object | Active Directory configuration |
+| `consul` | object | Consul service discovery settings |
+
+### `getProjectData()`
+
+Retrieves the MCP server project data that was passed to `initMcpServer()`.
+
+```typescript
+import { getProjectData, McpServerData } from 'fa-mcp-sdk';
+
+// Function Signature:
+function getProjectData(): McpServerData;
+
+// Example - Access project data from anywhere in your application:
+const projectData = getProjectData();
+console.log('Agent brief:', projectData.agentBrief);
+console.log('Tools count:', projectData.tools.length);
+```
+
+### `getSafeAppConfig()`
+
+Returns a deep clone of the application configuration with sensitive data masked. Use this for logging configuration without exposing secrets.
+
+```typescript
+import { getSafeAppConfig } from 'fa-mcp-sdk';
+
+// Function Signature:
+function getSafeAppConfig(): any;
+
+// Example - Log configuration safely:
+const safeConfig = getSafeAppConfig();
+console.log('Current configuration:', JSON.stringify(safeConfig, null, 2));
+
+// Sensitive values are masked:
+// - Database passwords: '[MASKED]'
+// - JWT keys, API tokens, etc.
+```
+
+**Typical Use Cases:**
+- Debugging configuration issues
+- Audit logging of startup parameters
+- Displaying configuration in admin interfaces

package/cli-template/FA-MCP-SDK-DOC/02-1-tools-and-api.md

@@ -33,10 +33,11 @@ export const tools: Tool[] = [
 ### Tool Handler in `src/tools/handle-tool-call.ts`
 
 ```typescript
-import { formatToolResult, ToolExecutionError, logger } from 'fa-mcp-sdk';
+import { formatToolResult, ToolExecutionError, logger, IToolHandlerParams } from 'fa-mcp-sdk';
 
-export const handleToolCall = async (params: { name: string, arguments?: any, headers?: Record<string, string> }): Promise<any> => {
-  const { name, arguments: args, headers } = params;
+export const handleToolCall = async (params: IToolHandlerParams): Promise<any> => {
+  const { name, arguments: args, headers, payload } = params;
+  // payload contains { user: string, ... } if JWT authentication is enabled
 
   logger.info(`Tool called: ${name}`);
 
@@ -93,12 +94,10 @@ The FA-MCP-SDK automatically passes normalized HTTP headers to your `toolHandler
 **Example Usage:**
 
 ```typescript
-export const handleToolCall = async (params: {
-  name: string,
-  arguments?: any,
-  headers?: Record<string, string>
-}): Promise<any> => {
-  const { name, arguments: args, headers } = params;
+import { IToolHandlerParams } from 'fa-mcp-sdk';
+
+export const handleToolCall = async (params: IToolHandlerParams): Promise<any> => {
+  const { name, arguments: args, headers, payload } = params;
 
   // Access client information via headers
   if (headers) {
@@ -319,3 +318,196 @@ export class PublicController {
   }
 }
 ```
+
+---
+
+## OpenAPI/Swagger API Reference
+
+### Types
+
+```typescript
+import {
+  configureOpenAPI,
+  createSwaggerUIAssetsMiddleware,
+  OpenAPISpecResponse,
+  SwaggerUIConfig
+} from 'fa-mcp-sdk';
+```
+
+### `OpenAPISpecResponse`
+
+Type representing the OpenAPI 3.0 specification structure.
+
+```typescript
+interface OpenAPISpecResponse {
+  openapi: string;                  // '3.0.0'
+  info: {
+    title: string;
+    version: string;
+    description?: string;
+  };
+  servers?: Array<{
+    url: string;
+    description: string;
+  }>;
+  paths: Record<string, any>;       // API endpoint definitions
+  components?: {
+    schemas?: Record<string, any>;
+    securitySchemes?: Record<string, any>;
+  };
+  tags?: Array<{
+    name: string;
+    description: string;
+  }>;
+}
+```
+
+### `SwaggerUIConfig`
+
+Configuration options for customizing Swagger UI appearance and behavior.
+
+```typescript
+interface SwaggerUIConfig {
+  customCss?: string;               // Custom CSS overrides
+  customSiteTitle?: string;         // Browser tab title
+  customfavIcon?: string;           // Custom favicon URL
+  swaggerOptions?: {
+    persistAuthorization?: boolean;       // Remember auth between reloads
+    displayRequestDuration?: boolean;     // Show request timing
+    docExpansion?: 'none' | 'list' | 'full';  // Default expansion
+    defaultModelsExpandDepth?: number;    // Schema expansion depth
+    urls?: Array<{                        // Multiple spec sources
+      name: string;
+      url: string;
+    }>;
+  };
+}
+```
+
+### `configureOpenAPI()`
+
+Automatically configures and serves OpenAPI documentation for APIs with tsoa decorators. Called internally by `initMcpServer()` when `httpComponents.apiRouter` is provided.
+
+```typescript
+// Function Signature:
+async function configureOpenAPI(apiRouter?: Router | null): Promise<{
+  swaggerUi?: any;
+  swaggerSpecs?: any;
+} | null>;
+
+// Behavior:
+// 1. Checks for swagger/openapi.yaml in project root
+// 2. If not found, generates spec using tsoa programmatic API
+// 3. Enhances spec with app configuration (servers, auth, info)
+// 4. Creates /api/openapi.json and /api/openapi.yaml endpoints
+// 5. Returns Swagger UI middleware for /docs endpoint
+
+// The function is called automatically - typically no manual invocation needed
+// To customize, modify config/default.yaml:
+
+// config/default.yaml
+swagger:
+  servers:
+    - url: 'https://api.production.com'
+      description: 'Production server'
+    - url: 'https://api.staging.com'
+      description: 'Staging server'
+```
+
+### `createSwaggerUIAssetsMiddleware()`
+
+Creates Express middleware for serving Swagger UI static assets. Used internally to set up the `/docs` endpoint.
+
+```typescript
+import { createSwaggerUIAssetsMiddleware } from 'fa-mcp-sdk';
+
+// Function Signature:
+function createSwaggerUIAssetsMiddleware(): RequestHandler[];
+
+// Returns swagger-ui-express.serve middleware array
+// Typically used internally by configureOpenAPI()
+
+// Manual usage (advanced):
+import express from 'express';
+const app = express();
+
+app.use('/docs', createSwaggerUIAssetsMiddleware(), swaggerUiSetup);
+```
+
+### OpenAPI Specification Generation
+
+The OpenAPI specification is generated automatically when the server starts:
+
+1. **Automatic Generation**: If `swagger/openapi.yaml` doesn't exist, it's generated from tsoa-decorated controllers
+2. **Manual Regeneration**: Delete `swagger/openapi.yaml` and restart the server
+3. **Source Files**: Controllers in `src/api/*.ts` are scanned for decorators
+
+**Generated Spec Location:**
+- `swagger/openapi.yaml` - YAML format (primary)
+- Runtime endpoints: `/api/openapi.json`, `/api/openapi.yaml`
+
+**Accessing Documentation:**
+- Swagger UI: `http://localhost:{port}/docs`
+- Raw spec: `http://localhost:{port}/api/openapi.json`
+
+### Configuration via YAML
+
+```yaml
+# config/default.yaml
+swagger:
+  servers:
+    - url: 'http://localhost:3000'
+      description: 'Development server'
+    - url: 'https://api.example.com'
+      description: 'Production server'
+
+webServer:
+  auth:
+    enabled: true  # Adds Bearer auth to OpenAPI spec
+```
+
+### Example: Complete API Setup
+
+```typescript
+// src/api/router.ts
+import { Router } from 'express';
+import { Route, Get, Post, Body, Tags, Security } from 'tsoa';
+
+export const apiRouter: Router = Router();
+
+interface DataResponse {
+  id: string;
+  value: string;
+}
+
+@Route('api')
+export class DataController {
+  /**
+   * Get data by ID
+   * @param id Unique identifier
+   */
+  @Get('data/{id}')
+  @Tags('Data')
+  @Security('bearerAuth')
+  public async getData(id: string): Promise<DataResponse> {
+    return { id, value: 'example' };
+  }
+
+  /**
+   * Create new data entry
+   */
+  @Post('data')
+  @Tags('Data')
+  @Security('bearerAuth')
+  public async createData(
+    @Body() body: { value: string }
+  ): Promise<DataResponse> {
+    return { id: 'new-id', value: body.value };
+  }
+}
+```
+
+After starting the server with this controller:
+- Swagger UI available at `/docs`
+- Endpoints documented with authentication requirements
+- Request/response schemas generated from TypeScript types

package/cli-template/FA-MCP-SDK-DOC/03-configuration.md

@@ -315,8 +315,7 @@ const execMAIN = async (
 ): Promise<number | undefined> {...}
 
 // Examples:
-await execMAIN('INSERT INTO logs (message, created_at) VALUES ($1, $2)',
-  ['Server started', new Date()]);
+await execMAIN({ sqlText: 'INSERT INTO logs (message, created_at) VALUES ($1, $2)', sqlValues: ['Server started', new Date()] });
 await execMAIN({ sqlText: 'UPDATE users SET active = $1 WHERE id = $2', sqlValues: [false, userId] });
 
 // queryRsMAIN - execute SQL and return rows array directly

package/cli-template/FA-MCP-SDK-DOC/04-authentication.md

@@ -1,14 +1,44 @@
 # Authentication and Security
 
+## Authentication Types
+
+### `TTokenType`
+
+Type identifier for authentication methods. Used to indicate which authentication mechanism was used for a request.
+
+```typescript
+import { TTokenType } from 'fa-mcp-sdk';
+
+// Type Definition:
+type TTokenType = 'permanent' | 'JWT';
+
+// Usage in authentication results:
+interface AuthResult {
+  success: boolean;
+  authType?: TTokenType;  // Indicates which auth method succeeded
+  username?: string;
+  // ...
+}
+```
+
+| Value | Description |
+|-------|-------------|
+| `'permanent'` | Permanent server token from `permanentServerTokens` config |
+| `'JWT'` | JSON Web Token authentication |
+
+---
+
 ## Token-based Authentication
 
 ```typescript
 import {
   ICheckTokenResult,
-  checkJwtToken,
+  ITokenPayload,
   generateToken
 } from 'fa-mcp-sdk';
 
+// Note: checkJwtToken is internal. Use createAuthMW() or getMultiAuthError() for authentication.
+
 // Types used:
 export interface ICheckTokenResult {
   payload?: ITokenPayload,          // Token payload with user data
@@ -22,26 +52,8 @@ export interface ITokenPayload {
   [key: string]: any,               // Additional payload data
 }
 
-// checkJwtToken - validate token and return detailed result
-// Function Signature:
-const checkJwtToken = (arg: {
-  token: string,
-  expectedUser?: string,
-  expectedService?: string,
-}): ICheckTokenResult {...}
-
-// Example:
-const tokenResult = checkJwtToken({
-  token: 'user_provided_token',
-  expectedUser: 'john_doe',
-  expectedService: 'my-mcp-server'
-});
-
-if (!tokenResult.errorReason) {
-  console.log('Valid token for user:', tokenResult.payload?.user);
-} else {
-  console.log('Auth failed:', tokenResult.errorReason);
-}
+// Note: Token validation is handled automatically by createAuthMW() middleware.
+// For programmatic validation, use getMultiAuthError() which supports all auth methods.
 
 // generateToken - create JWT token
 // Function Signature:
@@ -291,9 +303,10 @@ export interface AuthResult {
 
 // Authentication detection result
 export interface AuthDetectionResult {
-  configured: AuthType[];    // Authentication types found in configuration
-  valid: AuthType[];        // Authentication types properly configured and ready
-  errors: Record<string, string[]>;  // Configuration errors by auth type
+  configured: AuthType[];           // Authentication types found in configuration
+  configuredSet: Set<AuthType>;     // Set of configured auth types for quick lookup
+  configuredTypes: string;          // Comma-separated string of configured types
+  errors: Record<string, string[]>; // Configuration errors by auth type
 }
 ```
 
@@ -320,7 +333,7 @@ function detectAuthConfiguration(): AuthDetectionResult {...}
 // Example:
 const detection = detectAuthConfiguration();
 console.log('Configured auth types:', detection.configured);
-console.log('Valid auth types:', detection.valid);
+console.log('Configured types string:', detection.configuredTypes);
 console.log('Configuration errors:', detection.errors);
 
 // logAuthConfiguration - log auth system status (debugging)
@@ -542,3 +555,72 @@ See the separate documentation file `05-ad-authorization.md` for detailed exampl
 1. **HTTP Server Level Access Restriction** - Using `customAuthValidator`
 2. **Access Restriction to ALL MCP Tools** - Checking in `toolHandler`
 3. **Access Restriction to SPECIFIC MCP Tools** - Per-tool group requirements
+
+---
+
+## Token Generator Application
+
+### `generateTokenApp()`
+
+Launches a standalone Token Generator web application for administrative JWT token generation. The application provides a web UI for creating and validating tokens.
+
+```typescript
+import { generateTokenApp } from 'fa-mcp-sdk';
+
+// Function Signature:
+function generateTokenApp(port?: number): Server;
+
+// Start Token Generator on default port (3030)
+generateTokenApp();
+
+// Start on custom port
+generateTokenApp(8080);
+
+// Can also be run directly from command line:
+// npx ts-node node_modules/fa-mcp-sdk/dist/core/auth/token-generator/server.js
+```
+
+**Features:**
+- Web UI for JWT token generation
+- Token validation interface
+- NTLM authentication support (if configured in AD settings)
+- Service info endpoint with authentication status
+
+**Environment Variables:**
+- `TOKEN_GEN_PORT` - Override default port (3030)
+
+**Endpoints:**
+
+| Endpoint                    | Method | Description               |
+|-----------------------------|--------|---------------------------|
+| `/`                         | GET    | Token Generator web UI    |
+| `/admin/api/generate-token` | POST   | Generate new JWT token    |
+| `/admin/api/validate-token` | POST   | Validate existing token   |
+| `/admin/api/service-info`   | GET    | Get service information   |
+| `/admin/api/auth-status`    | GET    | Get authentication status |
+| `/admin/logout`             | GET    | Logout endpoint           |
+
+**Request Body for Token Generation:**
+
+```typescript
+interface GenerateTokenRequest {
+  user: string;           // Username for the token
+  timeValue: number;      // Duration value
+  timeUnit: 'minutes' | 'hours' | 'days' | 'months' | 'years';
+  payload?: Record<string, any>;  // Optional additional payload
+}
+```
+
+**Example Usage:**
+
+```typescript
+// Programmatic token generation (without UI)
+import { generateToken } from 'fa-mcp-sdk';
+
+// Generate a 1-hour token
+const token = generateToken('john.doe', 3600, { role: 'admin' });
+console.log('Generated token:', token);
+
+// Token validation is handled automatically by createAuthMW() middleware
+// or use getMultiAuthError() for programmatic validation
+```

package/cli-template/FA-MCP-SDK-DOC/05-ad-authorization.md

@@ -4,6 +4,76 @@ This document demonstrates how to implement additional authorization based on Ac
 group membership. These examples assume JWT token authentication (`jwtToken`) is configured,
 and the user information is extracted from the JWT payload.
 
+## AD Configuration Types
+
+### `IADConfig`
+
+Main Active Directory configuration interface for group membership checks and NTLM authentication.
+
+```typescript
+import { IADConfig } from 'fa-mcp-sdk';
+
+// Type Definition:
+interface IADConfig {
+  ad: {
+    domains: {
+      // Key is domain name (e.g., 'OFFICE', 'CORP')
+      [domainName: string]: IDcConfig;
+    };
+    tlsOptions?: ConnectionOptions;  // TLS options for LDAPS connections
+    strategy?: EAuthStrategy;        // NTLM authentication strategy
+    groupCacheTtlMs?: number;        // Cache TTL for group checks (default: 10 minutes)
+    dnCacheTtlMs?: number;           // Cache TTL for DN lookups (default: 24 hours)
+  };
+}
+```
+
+### `IDcConfig`
+
+Domain Controller configuration for individual AD domains.
+
+```typescript
+import { IDcConfig } from 'fa-mcp-sdk';
+
+// Type Definition:
+interface IDcConfig {
+  controllers: string[];     // LDAP URLs: ['ldap://dc1.corp.com', 'ldap://dc2.corp.com']
+  username: string;          // Service account for LDAP queries
+  password: string;          // Service account password
+  baseDn?: string;           // Base DN for searches (auto-derived from URL if not set)
+  default?: boolean;         // Mark as default domain for operations
+
+  // Internal fields (assigned during config processing):
+  name?: string;             // Domain name
+  hostReSource?: string;     // RegExp source for hostname matching
+  hostRe?: RegExp;           // Compiled hostname matcher
+}
+```
+
+**Configuration Example (`config/default.yaml`):**
+
+```yaml
+ad:
+  groupCacheTtlMs: 600000    # 10 minutes
+  dnCacheTtlMs: 86400000     # 24 hours
+  domains:
+    CORP:
+      default: true
+      controllers:
+        - 'ldap://dc1.corp.com'
+        - 'ldap://dc2.corp.com'
+      username: 'svc_mcp@corp.com'
+      password: '${AD_SERVICE_PASSWORD}'  # From environment variable
+      baseDn: 'DC=corp,DC=com'            # Optional, auto-derived if omitted
+    PARTNER:
+      controllers:
+        - 'ldap://dc1.partner.local'
+      username: 'svc_reader@partner.local'
+      password: '${AD_PARTNER_PASSWORD}'
+```
+
+---
+
 ## Configuration for AD Group Authorization
 
 First, extend your configuration to include the required AD group:
@@ -51,8 +121,9 @@ import {
   CustomAuthValidator,
   AuthResult,
   initADGroupChecker,
-  checkJwtToken,
 } from 'fa-mcp-sdk';
+// Note: JWT validation is handled automatically by the SDK's multi-auth system.
+// The customAuthValidator receives parsed JWT payload when jwtToken auth is enabled.
 import { tools } from './tools/tools.js';
 import { handleToolCall } from './tools/handle-tool-call.js';
 import { AGENT_BRIEF } from './prompts/agent-brief.js';
@@ -67,38 +138,28 @@ const { isUserInGroup } = initADGroupChecker();
 
 /**
  * Custom authentication validator with AD group membership check
+ * This validator is called AFTER the SDK's standard JWT validation.
+ * The req object contains parsed authInfo from the standard auth flow.
  * Returns 403 Forbidden if user is not in the required AD group
  */
 const customAuthValidator: CustomAuthValidator = async (req): Promise<AuthResult> => {
-  const authHeader = req.headers.authorization;
+  // Extract user info from request (populated by standard auth)
+  const authInfo = (req as any).authInfo;
 
-  if (!authHeader?.startsWith('Bearer ')) {
-    return { success: false, error: 'Missing or invalid Authorization header' };
+  // If standard auth failed or no user info, let standard auth handle it
+  if (!authInfo?.username) {
+    return { success: false, error: 'User information not available' };
   }
 
-  const token = authHeader.slice(7);
-
-  // Validate JWT token
-  const tokenResult = checkJwtToken({ token });
-  if (tokenResult.errorReason) {
-    return { success: false, error: tokenResult.errorReason };
-  }
-
-  const payload = tokenResult.payload;
-  if (!payload?.user) {
-    return { success: false, error: 'Invalid token: missing user' };
-  }
-
-  const username = payload.user;
+  const username = authInfo.username;
 
   // Bypass group check if configured (for debugging)
   if (config.groupAccess.bypassGroupCheck) {
     return {
       success: true,
-      authType: 'jwtToken',
+      authType: authInfo.authType,
       username,
-      payload,
-      isTokenDecrypted: tokenResult.isTokenDecrypted,
+      payload: authInfo.payload,
     };
   }
 
@@ -116,10 +177,9 @@ const customAuthValidator: CustomAuthValidator = async (req): Promise<AuthResult
 
     return {
       success: true,
-      authType: 'jwtToken',
+      authType: authInfo.authType,
       username,
-      payload,
-      isTokenDecrypted: tokenResult.isTokenDecrypted,
+      payload: authInfo.payload,
     };
   } catch (error) {
     const errorMessage = error instanceof Error ? error.message : String(error);
@@ -168,6 +228,7 @@ import {
   logger,
   appConfig,
   initADGroupChecker,
+  IToolHandlerParams,
 } from 'fa-mcp-sdk';
 import { CustomAppConfig } from '../_types_/custom-config.js';
 
@@ -180,7 +241,7 @@ const { isUserInGroup } = initADGroupChecker();
 /**
  * Check if user has access to MCP tools based on AD group membership
  */
-async function checkToolAccess(payload: { user: string; [key: string]: any } | undefined): Promise<void> {
+async function checkToolAccess(payload: IToolHandlerParams['payload']): Promise<void> {
   // Skip check if bypass is enabled
   if (config.groupAccess.bypassGroupCheck) {
     return;
@@ -212,12 +273,7 @@ async function checkToolAccess(payload: { user: string; [key: string]: any } | u
   }
 }
 
-export const handleToolCall = async (params: {
-  name: string;
-  arguments?: any;
-  headers?: Record<string, string>;
-  payload?: { user: string; [key: string]: any };
-}): Promise<any> => {
+export const handleToolCall = async (params: IToolHandlerParams): Promise<any> => {
   const { name, arguments: args, headers, payload } = params;
 
   logger.info(`Tool called: ${name} by user: ${payload?.user || 'unknown'}`);
@@ -317,6 +373,7 @@ import {
   logger,
   appConfig,
   initADGroupChecker,
+  IToolHandlerParams,
 } from 'fa-mcp-sdk';
 import { CustomAppConfig } from '../_types_/custom-config.js';
 
@@ -331,7 +388,7 @@ const { isUserInGroup } = initADGroupChecker();
  */
 async function checkToolAccess(
   toolName: string,
-  payload: { user: string; [key: string]: any } | undefined
+  payload: IToolHandlerParams['payload']
 ): Promise<void> {
   const toolAccess = config.toolGroupAccess;
 
@@ -389,12 +446,7 @@ async function checkToolAccess(
   }
 }
 
-export const handleToolCall = async (params: {
-  name: string;
-  arguments?: any;
-  headers?: Record<string, string>;
-  payload?: { user: string; [key: string]: any };
-}): Promise<any> => {
+export const handleToolCall = async (params: IToolHandlerParams): Promise<any> => {
   const { name, arguments: args, headers, payload } = params;
 
   logger.info(`Tool called: ${name} by user: ${payload?.user || 'unknown'}`);

package/cli-template/FA-MCP-SDK-DOC/06-utilities.md

@@ -5,7 +5,7 @@
 ### Custom Error Classes
 
 ```typescript
-import { BaseMcpError, ToolExecutionError, ValidationError } from 'fa-mcp-sdk';
+import { BaseMcpError, ToolExecutionError, ValidationError, ServerError } from 'fa-mcp-sdk';
 
 // Create custom error types
 class MyCustomError extends BaseMcpError {
@@ -24,6 +24,40 @@ if (toolFailed) {
 }
 ```
 
+### `ServerError`
+
+Server-related error class for internal MCP server failures. Use for unexpected server-side errors that aren't tool-specific.
+
+```typescript
+import { ServerError } from 'fa-mcp-sdk';
+
+// Class Definition:
+class ServerError extends BaseMcpError {
+  constructor(
+    message: string,
+    details?: Record<string, unknown>,
+    printed?: boolean
+  );
+}
+
+// Examples:
+throw new ServerError('Database connection failed');
+
+throw new ServerError('Configuration error', {
+  configKey: 'webServer.port',
+  expected: 'number',
+  received: 'string'
+});
+
+// With printed flag (prevents duplicate logging)
+throw new ServerError('Internal error', undefined, true);
+```
+
+**Properties:**
+- `code`: Always `'SERVER_ERROR'`
+- `httpStatus`: Always `500`
+- `details`: Optional additional error context
+
 ### Error Utilities
 
 ```typescript
@@ -79,6 +113,35 @@ addErrorMessage(originalError, 'Database operation failed');
 
 ---
 
+## Constants
+
+### `ROOT_PROJECT_DIR`
+
+Absolute path to the project root directory. Calculated at runtime based on `process.cwd()`.
+
+```typescript
+import { ROOT_PROJECT_DIR } from 'fa-mcp-sdk';
+
+// Constant Definition:
+const ROOT_PROJECT_DIR: string = process.cwd();
+
+// Example usage:
+import * as path from 'path';
+
+const configPath = path.join(ROOT_PROJECT_DIR, 'config', 'default.yaml');
+const assetsPath = path.join(ROOT_PROJECT_DIR, 'src', 'assets');
+
+console.log('Project root:', ROOT_PROJECT_DIR);
+// Output: /home/user/my-mcp-server
+```
+
+**Use Cases:**
+- Building absolute paths to project files
+- Locating configuration files
+- Resolving asset paths
+
+---
+
 ## Utility Functions
 
 ### General Utilities
@@ -165,6 +228,78 @@ const logoContent = getAsset('logo.svg');         // Reads from src/asset/logo.s
 const iconContent = getAsset('icons/star.svg');   // Reads from src/asset/icons/star.svg
 ```
 
+### HTTP Utilities
+
+```typescript
+import { normalizeHeaders } from 'fa-mcp-sdk';
+
+// normalizeHeaders - Normalize HTTP headers for consistent access
+// Function Signature:
+function normalizeHeaders(headers: Record<string, any>): Record<string, string>;
+
+// Features:
+// - Converts all header names to lowercase
+// - Joins array values with ', ' separator
+// - Filters out null/undefined values
+// - Converts non-string values to strings
+
+// Example:
+const rawHeaders = {
+  'Authorization': 'Bearer token123',
+  'X-Custom-Header': 'value',
+  'Accept-Language': ['en', 'ru'],
+  'X-Null-Header': null,
+};
+
+const normalized = normalizeHeaders(rawHeaders);
+// Result:
+// {
+//   'authorization': 'Bearer token123',
+//   'x-custom-header': 'value',
+//   'accept-language': 'en, ru'
+// }
+
+// Common use case - accessing headers in tool handler:
+import { IToolHandlerParams } from 'fa-mcp-sdk';
+
+export const handleToolCall = async (params: IToolHandlerParams): Promise<any> => {
+  const { headers } = params;
+
+  // Headers are already normalized by SDK, access with lowercase keys
+  const authHeader = headers?.authorization;
+  const userAgent = headers?.['user-agent'];
+  const clientIP = headers?.['x-real-ip'] || headers?.['x-forwarded-for'];
+
+  // ...
+};
+```
+
+### Tool Utilities
+
+```typescript
+import { getTools } from 'fa-mcp-sdk';
+import { Tool } from '@modelcontextprotocol/sdk/types.js';
+
+// getTools - Get the list of registered MCP tools
+// Function Signature:
+async function getTools(): Promise<Tool[]>;
+
+// Retrieves tools from the project data passed to initMcpServer()
+// Supports both static arrays and dynamic tool functions
+
+// Example:
+const tools = await getTools();
+console.log(`Registered tools: ${tools.length}`);
+tools.forEach(tool => {
+  console.log(`- ${tool.name}: ${tool.description}`);
+});
+
+// Useful for:
+// - Introspection and debugging
+// - Dynamic tool documentation
+// - Tool validation in tests
+```
+
 ### Network Utilities
 
 ```typescript

package/cli-template/FA-MCP-SDK-DOC/07-testing-and-operations.md

@@ -8,8 +8,7 @@ Create tests in your `tests/` directory:
 
 **`tests/utils.ts`** - Test utilities:
 ```typescript
-import { ITestResult, logResultToFile, formatResultAsMarkdown } from 'fa-mcp-sdk';
-
+// Test result interface for tracking test outcomes
 export interface ITestResult {
   fullId: string;
   toolName: string;
@@ -22,11 +21,21 @@ export interface ITestResult {
   error: string | null;
 }
 
-// Log test results
-await logResultToFile(testResult);
-
-// Format as markdown
-const markdown = formatResultAsMarkdown(testResult);
+// Example utility functions for your test suite
+export const formatResultAsMarkdown = (result: ITestResult): string => {
+  const statusIcon = result.status === 'passed' ? '✅' : '❌';
+  return `${statusIcon} ${result.toolName} - ${result.description}\n` +
+    `Duration: ${result.duration}ms\n` +
+    (result.error ? `Error: ${result.error}\n` : '');
+};
+
+export const logResultToFile = async (result: ITestResult): Promise<void> => {
+  const fs = await import('fs/promises');
+  const path = await import('path');
+  const filename = `${result.toolName}.md`;
+  const filepath = path.join(process.cwd(), '_logs/mcp', filename);
+  await fs.writeFile(filepath, formatResultAsMarkdown(result), 'utf-8');
+};
 ```
 
 ### Test Clients
@@ -77,6 +86,82 @@ const client = new McpSseClient('http://localhost:3000');
 const result = await client.callTool('my_custom_tool', { query: 'test' });
 ```
 
+**Streamable HTTP Transport Testing (MCP 2025 Specification):**
+
+```typescript
+import { McpStreamableHttpClient } from 'fa-mcp-sdk';
+
+// McpStreamableHttpClient - Test client for MCP Streamable HTTP transport
+// Implements the new MCP 2025 streamable HTTP specification with NDJSON
+// Supports long-lived connections, multiple requests/responses, and notifications
+
+// Constructor:
+const client = new McpStreamableHttpClient(baseUrl: string, options?: {
+  endpointPath?: string;        // Default: '/mcp'
+  headers?: Record<string, string>;
+  requestTimeoutMs?: number;    // Default: 120000 (2 minutes)
+});
+
+// Example usage:
+const client = new McpStreamableHttpClient('http://localhost:3000', {
+  headers: { 'Authorization': 'Bearer your-token' },
+  requestTimeoutMs: 60000,
+});
+
+// Initialize connection (required before other operations)
+await client.initialize({
+  protocolVersion: '2024-11-05',
+  clientInfo: { name: 'test-client', version: '1.0.0' },
+});
+
+console.log('Server:', client.serverInfo);
+console.log('Capabilities:', client.capabilities);
+
+// Call tools
+const toolResult = await client.callTool('my_custom_tool', { query: 'test' });
+console.log('Tool result:', toolResult);
+
+// Get prompts
+const prompt = await client.getPrompt('agent_brief');
+
+// List and read resources
+const resources = await client.listResources();
+const content = await client.readResource('custom-resource://data1');
+
+// Subscribe to notifications
+const unsubscribe = client.onNotification('notifications/tools/list_changed', (params) => {
+  console.log('Tools changed:', params);
+});
+
+// Send custom RPC
+const customResult = await client.sendRpc('custom/method', { foo: 'bar' });
+
+// Close connection when done
+await client.close();
+```
+
+**Key Features:**
+- **NDJSON Streaming**: Newline-delimited JSON over HTTP for efficient communication
+- **Bidirectional**: Supports both requests and server notifications
+- **Persistent Connection**: Single HTTP connection for multiple operations
+- **Timeout Handling**: Configurable request timeouts with automatic cleanup
+
+**Available Methods:**
+
+| Method                              | Description                       |
+|-------------------------------------|-----------------------------------|
+| `initialize(params)`                | Initialize MCP session            |
+| `close()`                           | Close connection gracefully       |
+| `callTool(name, args, headers?)`    | Execute an MCP tool               |
+| `getPrompt(name, args?)`            | Retrieve a prompt                 |
+| `listResources()`                   | List available resources          |
+| `readResource(uri)`                 | Read resource content             |
+| `listTools()`                       | List available tools              |
+| `listPrompts()`                     | List available prompts            |
+| `sendRpc(method, params, timeout?)` | Send custom JSON-RPC request      |
+| `notify(method, params?)`           | Send notification (no response)   |
+| `onNotification(method, handler)`   | Subscribe to server notifications |
+
 ### Test Categories and Recommendations
 
 1. **Prompt Tests**:

package/cli-template/package.json

@@ -47,7 +47,7 @@
   "dependencies": {
     "@modelcontextprotocol/sdk": "^1.25.2",
     "dotenv": "^17.2.3",
-    "fa-mcp-sdk": "^0.2.239"
+    "fa-mcp-sdk": "^0.2.243"
   },
   "devDependencies": {
     "@types/express": "^5.0.6",

package/config/default.yaml

@@ -78,10 +78,10 @@ consul:
       token: '***'
   service:
     enable: {{consul.service.enable}} # true - Allows registration of the service with the consul
-    name: <name> # <name> will be replaced by <package.json>.name at initialization
+    name: <name> # Here you can specify an alternative name for the service. String "<name>" will be replaced by <package.json>.name at initialization
     instance: '{{SERVICE_INSTANCE}}' # This value will be specified as a suffix in the id of the service
-    version: <version> # <version> will be replaced by <package.json>.version at initialization
-    description: <description> # <description> will be replaced by <package.json>.description at initialization
+    version: <version> # String "<version>" will be replaced by <package.json>.version at initialization
+    description: <description> # Here you can specify an alternative name description. String "<description>" will be replaced by <package.json>.description at initialization
     tags: [ ] # If null or empty array - Will be pulled up from package.keywords at initialization
     meta:
       # "Home" page link template

package/dist/core/auth/token-generator/ntlm/ntlm-domain-config.js

@@ -57,13 +57,4 @@ export const tokenGenDomainConfig = {
     strategy: isNTLMEnabled ? (appConfig.ad.strategy || 'NTLM') : undefined, // from config or default NTLM
     tlsOptions: isNTLMEnabled ? appConfig.ad.tlsOptions : undefined, // from config if specified
 };
-// Debug info VVR
-if (isNTLMEnabled) {
-    console.log(`[TOKEN-GEN] Configured domains: ${Object.keys(tokenGenDomains).join(', ')}`);
-    console.log(`[TOKEN-GEN] Default domain: ${tokenGenDomainConfig.defaultDomain}`);
-    console.log(`[TOKEN-GEN] Strategy: ${tokenGenDomainConfig.strategy}`);
-}
-else {
-    console.log('[TOKEN-GEN] NTLM authentication disabled - no domain configuration available');
-}
 //# sourceMappingURL=ntlm-domain-config.js.map

package/dist/core/auth/token-generator/ntlm/ntlm-domain-config.js.map

@@ -1 +1 @@
-{"version":3,"file":"ntlm-domain-config.js","sourceRoot":"","sources":["../../../../../src/core/auth/token-generator/ntlm/ntlm-domain-config.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,aAAa,EAAE,MAAM,iBAAiB,CAAC;AAChD,OAAO,EAAE,QAAQ,EAAE,MAAM,aAAa,CAAC;AACvC,OAAO,EAAE,SAAS,EAAE,MAAM,mCAAmC,CAAC;AAG9D,yCAAyC;AACzC,MAAM,CAAC,MAAM,aAAa,GAAY,CAAC,CAAC,CAAC,SAAS,CAAC,EAAE,IAAI,QAAQ,CAAC,SAAS,CAAC,EAAE,CAAC,OAAO,CAAC,IAAI,MAAM,CAAC,IAAI,CAAC,SAAS,CAAC,EAAE,CAAC,OAAO,CAAC,CAAC,MAAM,CAAC,CAAC;AAGrI,qEAAqE;AACrE,IAAI,CAAC,aAAa,EAAE,CAAC;IACnB,OAAO,CAAC,GAAG,CAAC,yEAAyE,CAAC,CAAC;AACzF,CAAC;KAAM,CAAC;IACN,MAAM,EAAE,OAAO,EAAE,GAAG,SAAS,CAAC,EAAE,CAAC;IAEjC,IAAI,CAAC,QAAQ,CAAC,OAAO,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,MAAM,EAAE,CAAC;QACvD,MAAM,IAAI,aAAa,CAAC,8CAA8C,CAAC,CAAC;IAC1E,CAAC;AACH,CAAC;AAED,MAAM,CAAC,MAAM,2BAA2B,GAAc,EAAE,WAAW,EAAE,EAAE,EAAE,QAAQ,EAAE,EAAE,EAAE,QAAQ,EAAE,EAAE,EAAE,CAAC;AACtG,MAAM,CAAC,MAAM,eAAe,GAAwC,EAAE,CAAC;AAEvE,qEAAqE;AACrE,IAAI,aAAa,EAAE,CAAC;IAClB,MAAM,EAAE,OAAO,EAAE,GAAG,SAAS,CAAC,EAAE,CAAC;IAEjC,MAAM,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,UAAU,EAAE,IAAI,CAAC,EAAE,EAAE;QACrD,MAAM,EAAE,WAAW,EAAE,GAAG,IAAI,CAAC;QAC7B,IAAI,CAAC,WAAW,EAAE,MAAM,EAAE,CAAC;YACzB,MAAM,IAAI,aAAa,CAAC,2CAA2C,UAAU,GAAG,CAAC,CAAC;QACpF,CAAC;QACD,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,WAAW,CAAC,EAAE,CAAC;YAChC,MAAM,IAAI,aAAa,CAAC,aAAa,UAAU,oBAAoB,CAAC,CAAC;QACvE,CAAC;QAED,WAAW,CAAC,OAAO,CAAC,CAAC,EAAE,EAAE,EAAE;YACzB,IAAI,CAAC,EAAE,CAAC,UAAU,CAAC,MAAM,CAAC,EAAE,CAAC;gBAC3B,MAAM,IAAI,aAAa,CAAC,qFAAqF,UAAU,UAAU,EAAE,EAAE,CAAC,CAAC;YACzI,CAAC;QACH,CAAC,CAAC,CAAC;QAEH,iCAAiC;QACjC,IAAI,CAAC,IAAI,GAAG,UAAU,CAAC;QACvB,eAAe,CAAC,UAAU,CAAC,GAAG,IAAI,CAAC;QAEnC,mCAAmC;QACnC,IAAI,IAAI,CAAC,OAAO,IAAI,CAAC,2BAA2B,CAAC,IAAI,EAAE,CAAC;YACtD,MAAM,CAAC,MAAM,CAAC,2BAA2B,EAAE,IAAI,CAAC,CAAC;YACjD,2BAA2B,CAAC,IAAI,GAAG,UAAU,CAAC;QAChD,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,IAAI,CAAC,2BAA2B,CAAC,IAAI,EAAE,CAAC;QACtC,MAAM,IAAI,aAAa,CAAC,6DAA6D,CAAC,CAAC;IACzF,CAAC;AACH,CAAC;AAED,+CAA+C;AAC/C,MAAM,CAAC,MAAM,eAAe,GAAG,CAAC,UAAmB,EAAa,EAAE;IAChE,IAAI,CAAC,UAAU,EAAE,CAAC;QAChB,OAAO,2BAA2B,CAAC;IACrC,CAAC;IACD,OAAO,eAAe,CAAC,UAAU,CAAC,IAAI,2BAA2B,CAAC;AACpE,CAAC,CAAC;AAEF,MAAM,CAAC,MAAM,oBAAoB,GAAG;IAClC,aAAa,EAAE,aAAa,CAAC,CAAC,CAAC,2BAA2B,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS;IAC3E,OAAO,EAAE,aAAa,CAAC,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,EAAE;IAC7C,QAAQ,EAAE,aAAa,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC,EAAE,CAAC,QAAQ,IAAI,MAAM,CAAC,CAAC,CAAC,CAAC,SAAS,EAAE,8BAA8B;IACvG,UAAU,EAAE,aAAa,CAAC,CAAC,CAAC,SAAS,CAAC,EAAE,CAAC,UAAU,CAAC,CAAC,CAAC,SAAS,EAAE,2BAA2B;CAC7F,CAAC;AAEF,iBAAiB;AACjB,IAAI,aAAa,EAAE,CAAC;IAClB,OAAO,CAAC,GAAG,CAAC,mCAAmC,MAAM,CAAC,IAAI,CAAC,eAAe,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IAC1F,OAAO,CAAC,GAAG,CAAC,+BAA+B,oBAAoB,CAAC,aAAa,EAAE,CAAC,CAAC;IACjF,OAAO,CAAC,GAAG,CAAC,yBAAyB,oBAAoB,CAAC,QAAQ,EAAE,CAAC,CAAC;AACxE,CAAC;KAAM,CAAC;IACN,OAAO,CAAC,GAAG,CAAC,8EAA8E,CAAC,CAAC;AAC9F,CAAC"}
+{"version":3,"file":"ntlm-domain-config.js","sourceRoot":"","sources":["../../../../../src/core/auth/token-generator/ntlm/ntlm-domain-config.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,aAAa,EAAE,MAAM,iBAAiB,CAAC;AAChD,OAAO,EAAE,QAAQ,EAAE,MAAM,aAAa,CAAC;AACvC,OAAO,EAAE,SAAS,EAAE,MAAM,mCAAmC,CAAC;AAG9D,yCAAyC;AACzC,MAAM,CAAC,MAAM,aAAa,GAAY,CAAC,CAAC,CAAC,SAAS,CAAC,EAAE,IAAI,QAAQ,CAAC,SAAS,CAAC,EAAE,CAAC,OAAO,CAAC,IAAI,MAAM,CAAC,IAAI,CAAC,SAAS,CAAC,EAAE,CAAC,OAAO,CAAC,CAAC,MAAM,CAAC,CAAC;AAGrI,qEAAqE;AACrE,IAAI,CAAC,aAAa,EAAE,CAAC;IACnB,OAAO,CAAC,GAAG,CAAC,yEAAyE,CAAC,CAAC;AACzF,CAAC;KAAM,CAAC;IACN,MAAM,EAAE,OAAO,EAAE,GAAG,SAAS,CAAC,EAAE,CAAC;IAEjC,IAAI,CAAC,QAAQ,CAAC,OAAO,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,MAAM,EAAE,CAAC;QACvD,MAAM,IAAI,aAAa,CAAC,8CAA8C,CAAC,CAAC;IAC1E,CAAC;AACH,CAAC;AAED,MAAM,CAAC,MAAM,2BAA2B,GAAc,EAAE,WAAW,EAAE,EAAE,EAAE,QAAQ,EAAE,EAAE,EAAE,QAAQ,EAAE,EAAE,EAAE,CAAC;AACtG,MAAM,CAAC,MAAM,eAAe,GAAwC,EAAE,CAAC;AAEvE,qEAAqE;AACrE,IAAI,aAAa,EAAE,CAAC;IAClB,MAAM,EAAE,OAAO,EAAE,GAAG,SAAS,CAAC,EAAE,CAAC;IAEjC,MAAM,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,UAAU,EAAE,IAAI,CAAC,EAAE,EAAE;QACrD,MAAM,EAAE,WAAW,EAAE,GAAG,IAAI,CAAC;QAC7B,IAAI,CAAC,WAAW,EAAE,MAAM,EAAE,CAAC;YACzB,MAAM,IAAI,aAAa,CAAC,2CAA2C,UAAU,GAAG,CAAC,CAAC;QACpF,CAAC;QACD,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,WAAW,CAAC,EAAE,CAAC;YAChC,MAAM,IAAI,aAAa,CAAC,aAAa,UAAU,oBAAoB,CAAC,CAAC;QACvE,CAAC;QAED,WAAW,CAAC,OAAO,CAAC,CAAC,EAAE,EAAE,EAAE;YACzB,IAAI,CAAC,EAAE,CAAC,UAAU,CAAC,MAAM,CAAC,EAAE,CAAC;gBAC3B,MAAM,IAAI,aAAa,CAAC,qFAAqF,UAAU,UAAU,EAAE,EAAE,CAAC,CAAC;YACzI,CAAC;QACH,CAAC,CAAC,CAAC;QAEH,iCAAiC;QACjC,IAAI,CAAC,IAAI,GAAG,UAAU,CAAC;QACvB,eAAe,CAAC,UAAU,CAAC,GAAG,IAAI,CAAC;QAEnC,mCAAmC;QACnC,IAAI,IAAI,CAAC,OAAO,IAAI,CAAC,2BAA2B,CAAC,IAAI,EAAE,CAAC;YACtD,MAAM,CAAC,MAAM,CAAC,2BAA2B,EAAE,IAAI,CAAC,CAAC;YACjD,2BAA2B,CAAC,IAAI,GAAG,UAAU,CAAC;QAChD,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,IAAI,CAAC,2BAA2B,CAAC,IAAI,EAAE,CAAC;QACtC,MAAM,IAAI,aAAa,CAAC,6DAA6D,CAAC,CAAC;IACzF,CAAC;AACH,CAAC;AAED,+CAA+C;AAC/C,MAAM,CAAC,MAAM,eAAe,GAAG,CAAC,UAAmB,EAAa,EAAE;IAChE,IAAI,CAAC,UAAU,EAAE,CAAC;QAChB,OAAO,2BAA2B,CAAC;IACrC,CAAC;IACD,OAAO,eAAe,CAAC,UAAU,CAAC,IAAI,2BAA2B,CAAC;AACpE,CAAC,CAAC;AAEF,MAAM,CAAC,MAAM,oBAAoB,GAAG;IAClC,aAAa,EAAE,aAAa,CAAC,CAAC,CAAC,2BAA2B,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS;IAC3E,OAAO,EAAE,aAAa,CAAC,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,EAAE;IAC7C,QAAQ,EAAE,aAAa,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC,EAAE,CAAC,QAAQ,IAAI,MAAM,CAAC,CAAC,CAAC,CAAC,SAAS,EAAE,8BAA8B;IACvG,UAAU,EAAE,aAAa,CAAC,CAAC,CAAC,SAAS,CAAC,EAAE,CAAC,UAAU,CAAC,CAAC,CAAC,SAAS,EAAE,2BAA2B;CAC7F,CAAC"}

package/package.json

@@ -1,7 +1,7 @@
 {
   "name": "fa-mcp-sdk",
   "productName": "FA MCP SDK",
-  "version": "0.2.239",
+  "version": "0.2.243",
   "description": "Core infrastructure and templates for building Model Context Protocol (MCP) servers with TypeScript",
   "type": "module",
   "main": "dist/core/index.js",