integrate-sdk 0.7.23 → 0.7.25

package/dist/adapters/index.js

@@ -0,0 +1,2173 @@
+var __defProp = Object.defineProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, {
+      get: all[name],
+      enumerable: true,
+      configurable: true,
+      set: (newValue) => all[name] = () => newValue
+    });
+};
+var __esm = (fn, res) => () => (fn && (res = fn(fn = 0)), res);
+
+// base-handler.ts
+class OAuthHandler {
+  config;
+  serverUrl;
+  apiKey;
+  constructor(config) {
+    this.config = config;
+    if (!config || !config.providers) {
+      throw new Error("OAuthHandler requires a valid config with providers");
+    }
+    this.serverUrl = config.serverUrl || MCP_SERVER_URL;
+    this.apiKey = config.apiKey;
+  }
+  getHeaders(additionalHeaders) {
+    const headers = {
+      ...additionalHeaders
+    };
+    if (this.apiKey) {
+      headers["X-API-KEY"] = this.apiKey;
+    }
+    return headers;
+  }
+  async handleAuthorize(request) {
+    const providerConfig = this.config.providers[request.provider];
+    if (!providerConfig) {
+      throw new Error(`Provider ${request.provider} not configured. Add OAuth credentials to your API route configuration.`);
+    }
+    if (!providerConfig.clientId || !providerConfig.clientSecret) {
+      throw new Error(`Missing OAuth credentials for ${request.provider}. Check your environment variables.`);
+    }
+    const url = new URL("/oauth/authorize", this.serverUrl);
+    url.searchParams.set("provider", request.provider);
+    url.searchParams.set("client_id", providerConfig.clientId);
+    url.searchParams.set("client_secret", providerConfig.clientSecret);
+    url.searchParams.set("scope", request.scopes.join(","));
+    url.searchParams.set("state", request.state);
+    url.searchParams.set("code_challenge", request.codeChallenge);
+    url.searchParams.set("code_challenge_method", request.codeChallengeMethod);
+    const redirectUri = request.redirectUri || providerConfig.redirectUri;
+    if (redirectUri) {
+      url.searchParams.set("redirect_uri", redirectUri);
+    }
+    const response = await fetch(url.toString(), {
+      method: "GET",
+      headers: this.getHeaders()
+    });
+    if (!response.ok) {
+      const error = await response.text();
+      throw new Error(`MCP server failed to generate authorization URL: ${error}`);
+    }
+    const data = await response.json();
+    return data;
+  }
+  async handleCallback(request) {
+    const providerConfig = this.config.providers[request.provider];
+    if (!providerConfig) {
+      throw new Error(`Provider ${request.provider} not configured. Add OAuth credentials to your API route configuration.`);
+    }
+    if (!providerConfig.clientId || !providerConfig.clientSecret) {
+      throw new Error(`Missing OAuth credentials for ${request.provider}. Check your environment variables.`);
+    }
+    const url = new URL("/oauth/callback", this.serverUrl);
+    const response = await fetch(url.toString(), {
+      method: "POST",
+      headers: this.getHeaders({
+        "Content-Type": "application/json"
+      }),
+      body: JSON.stringify({
+        provider: request.provider,
+        code: request.code,
+        code_verifier: request.codeVerifier,
+        state: request.state,
+        client_id: providerConfig.clientId,
+        client_secret: providerConfig.clientSecret,
+        redirect_uri: providerConfig.redirectUri
+      })
+    });
+    if (!response.ok) {
+      const error = await response.text();
+      throw new Error(`MCP server failed to exchange authorization code: ${error}`);
+    }
+    const data = await response.json();
+    return data;
+  }
+  async handleStatus(provider, accessToken) {
+    const url = new URL("/oauth/status", this.serverUrl);
+    url.searchParams.set("provider", provider);
+    const response = await fetch(url.toString(), {
+      method: "GET",
+      headers: this.getHeaders({
+        Authorization: `Bearer ${accessToken}`
+      })
+    });
+    if (!response.ok) {
+      if (response.status === 401) {
+        return {
+          authorized: false
+        };
+      }
+      const error = await response.text();
+      throw new Error(`MCP server failed to check authorization status: ${error}`);
+    }
+    const data = await response.json();
+    return data;
+  }
+  async handleDisconnect(request, accessToken) {
+    if (!accessToken) {
+      throw new Error("No access token provided. Cannot disconnect provider.");
+    }
+    const url = new URL("/oauth/disconnect", this.serverUrl);
+    const response = await fetch(url.toString(), {
+      method: "POST",
+      headers: this.getHeaders({
+        "Content-Type": "application/json",
+        Authorization: `Bearer ${accessToken}`
+      }),
+      body: JSON.stringify({
+        provider: request.provider
+      })
+    });
+    if (!response.ok) {
+      const error = await response.text();
+      throw new Error(`MCP server failed to disconnect provider: ${error}`);
+    }
+    const data = await response.json();
+    return data;
+  }
+  async handleToolCall(request, authHeader) {
+    const url = this.serverUrl;
+    const headers = this.getHeaders({
+      "Content-Type": "application/json"
+    });
+    if (authHeader && authHeader.startsWith("Bearer ")) {
+      headers["Authorization"] = authHeader;
+    }
+    const jsonRpcRequest = {
+      jsonrpc: "2.0",
+      id: Date.now() + Math.random(),
+      method: "tools/call",
+      params: {
+        name: request.name,
+        arguments: request.arguments || {}
+      }
+    };
+    const response = await fetch(url, {
+      method: "POST",
+      headers,
+      body: JSON.stringify(jsonRpcRequest)
+    });
+    if (!response.ok) {
+      const error = await response.text();
+      throw new Error(`MCP server failed to execute tool call: ${error}`);
+    }
+    const jsonRpcResponse = await response.json();
+    if (jsonRpcResponse.error) {
+      const error = new Error(jsonRpcResponse.error.message || "Tool call failed");
+      error.code = jsonRpcResponse.error.code;
+      error.data = jsonRpcResponse.error.data;
+      throw error;
+    }
+    return jsonRpcResponse.result;
+  }
+}
+var MCP_SERVER_URL = "https://mcp.integrate.dev/api/v1/mcp";
+
+// ../oauth/pkce.ts
+var exports_pkce = {};
+__export(exports_pkce, {
+  parseState: () => parseState,
+  generateStateWithReturnUrl: () => generateStateWithReturnUrl,
+  generateState: () => generateState,
+  generateCodeVerifier: () => generateCodeVerifier,
+  generateCodeChallenge: () => generateCodeChallenge
+});
+function generateCodeVerifier() {
+  const array = new Uint8Array(32);
+  if (typeof crypto !== "undefined" && crypto.getRandomValues) {
+    crypto.getRandomValues(array);
+  } else if (typeof globalThis !== "undefined" && globalThis.crypto) {
+    globalThis.crypto.getRandomValues(array);
+  } else {
+    throw new Error("crypto.getRandomValues is not available. Please use Node.js 19+ or a modern browser.");
+  }
+  return base64UrlEncode(array);
+}
+async function generateCodeChallenge(verifier) {
+  const encoder = new TextEncoder;
+  const data = encoder.encode(verifier);
+  let hashBuffer;
+  if (typeof crypto !== "undefined" && crypto.subtle) {
+    hashBuffer = await crypto.subtle.digest("SHA-256", data);
+  } else if (typeof globalThis !== "undefined" && globalThis.crypto?.subtle) {
+    hashBuffer = await globalThis.crypto.subtle.digest("SHA-256", data);
+  } else {
+    throw new Error("crypto.subtle.digest is not available. Please use Node.js 19+ or a modern browser.");
+  }
+  return base64UrlEncode(new Uint8Array(hashBuffer));
+}
+function generateState() {
+  const array = new Uint8Array(16);
+  if (typeof crypto !== "undefined" && crypto.getRandomValues) {
+    crypto.getRandomValues(array);
+  } else if (typeof globalThis !== "undefined" && globalThis.crypto) {
+    globalThis.crypto.getRandomValues(array);
+  } else {
+    throw new Error("crypto.getRandomValues is not available. Please use Node.js 19+ or a modern browser.");
+  }
+  return base64UrlEncode(array);
+}
+function generateStateWithReturnUrl(returnUrl) {
+  const csrf = generateState();
+  const stateData = returnUrl ? { csrf, returnUrl } : { csrf };
+  const encoder = new TextEncoder;
+  const jsonBytes = encoder.encode(JSON.stringify(stateData));
+  return base64UrlEncode(jsonBytes);
+}
+function parseState(state) {
+  try {
+    const decoded = base64UrlDecode(state);
+    const parsed = JSON.parse(decoded);
+    if (typeof parsed === "string") {
+      return { csrf: parsed };
+    } else if (parsed && typeof parsed === "object") {
+      return {
+        csrf: parsed.csrf || state,
+        returnUrl: parsed.returnUrl
+      };
+    }
+    return { csrf: state };
+  } catch {
+    return { csrf: state };
+  }
+}
+function base64UrlEncode(array) {
+  let base64 = "";
+  if (typeof Buffer !== "undefined") {
+    base64 = Buffer.from(array).toString("base64");
+  } else {
+    const binary = String.fromCharCode(...array);
+    base64 = btoa(binary);
+  }
+  return base64.replace(/\+/g, "-").replace(/\//g, "_").replace(/=/g, "");
+}
+function base64UrlDecode(str) {
+  let base64 = str.replace(/-/g, "+").replace(/_/g, "/");
+  while (base64.length % 4 !== 0) {
+    base64 += "=";
+  }
+  if (typeof Buffer !== "undefined") {
+    return Buffer.from(base64, "base64").toString("utf-8");
+  } else {
+    const binary = atob(base64);
+    const bytes = new Uint8Array(binary.length);
+    for (let i = 0;i < binary.length; i++) {
+      bytes[i] = binary.charCodeAt(i);
+    }
+    const decoder = new TextDecoder;
+    return decoder.decode(bytes);
+  }
+}
+
+// ../errors.ts
+var exports_errors = {};
+__export(exports_errors, {
+  parseServerError: () => parseServerError,
+  isTokenExpiredError: () => isTokenExpiredError,
+  isAuthorizationError: () => isAuthorizationError,
+  isAuthError: () => isAuthError,
+  ToolCallError: () => ToolCallError,
+  TokenExpiredError: () => TokenExpiredError,
+  IntegrateSDKError: () => IntegrateSDKError,
+  ConnectionError: () => ConnectionError,
+  AuthorizationError: () => AuthorizationError,
+  AuthenticationError: () => AuthenticationError
+});
+function isAuthError(error) {
+  return error instanceof AuthenticationError;
+}
+function isTokenExpiredError(error) {
+  return error instanceof TokenExpiredError;
+}
+function isAuthorizationError(error) {
+  return error instanceof AuthorizationError;
+}
+function parseServerError(error, context) {
+  if (error && typeof error === "object" && "jsonrpcError" in error) {
+    const jsonrpcError = error.jsonrpcError;
+    if (jsonrpcError && typeof jsonrpcError === "object") {
+      return parseServerError(jsonrpcError, context);
+    }
+  }
+  if (error && typeof error === "object" && "code" in error && "message" in error) {
+    const code = error.code;
+    const message = error.message || "Unknown error";
+    if (code === -32600) {
+      return new IntegrateSDKError(`Invalid request: ${message}`);
+    }
+    if (code === -32601) {
+      return new IntegrateSDKError(`Method not found: ${message}`);
+    }
+    if (code === -32602) {
+      return new IntegrateSDKError(`Invalid params: ${message}`);
+    }
+    if (code === 401 || code === -32001) {
+      if (message.toLowerCase().includes("expired") || message.toLowerCase().includes("token")) {
+        return new TokenExpiredError(message, context?.provider);
+      }
+      return new AuthenticationError(message, 401, context?.provider);
+    }
+    if (code === 403 || code === -32002) {
+      return new AuthorizationError(message, 403);
+    }
+    if (context?.toolName) {
+      return new ToolCallError(message, context.toolName, error);
+    }
+    return new IntegrateSDKError(message);
+  }
+  if (error instanceof Error) {
+    const message = error.message;
+    const statusCode = error.statusCode;
+    if (statusCode === 401) {
+      if (message.toLowerCase().includes("expired") || message.toLowerCase().includes("token")) {
+        return new TokenExpiredError(message, context?.provider);
+      }
+      return new AuthenticationError(message, 401, context?.provider);
+    }
+    if (statusCode === 403) {
+      return new AuthorizationError(message, 403);
+    }
+    if (message.includes("401") || message.includes("Unauthorized") || message.includes("unauthenticated")) {
+      if (message.toLowerCase().includes("expired") || message.toLowerCase().includes("token")) {
+        return new TokenExpiredError(message, context?.provider);
+      }
+      return new AuthenticationError(message, 401, context?.provider);
+    }
+    if (message.includes("403") || message.includes("Forbidden") || message.includes("unauthorized")) {
+      return new AuthorizationError(message, 403);
+    }
+    if (context?.toolName) {
+      return new ToolCallError(message, context.toolName, error);
+    }
+    return new IntegrateSDKError(message);
+  }
+  return new IntegrateSDKError(String(error));
+}
+var IntegrateSDKError, AuthenticationError, AuthorizationError, TokenExpiredError, ConnectionError, ToolCallError;
+var init_errors = __esm(() => {
+  IntegrateSDKError = class IntegrateSDKError extends Error {
+    constructor(message) {
+      super(message);
+      this.name = "IntegrateSDKError";
+    }
+  };
+  AuthenticationError = class AuthenticationError extends IntegrateSDKError {
+    statusCode;
+    provider;
+    constructor(message, statusCode, provider) {
+      super(message);
+      this.name = "AuthenticationError";
+      this.statusCode = statusCode;
+      this.provider = provider;
+    }
+  };
+  AuthorizationError = class AuthorizationError extends IntegrateSDKError {
+    statusCode;
+    requiredScopes;
+    constructor(message, statusCode, requiredScopes) {
+      super(message);
+      this.name = "AuthorizationError";
+      this.statusCode = statusCode;
+      this.requiredScopes = requiredScopes;
+    }
+  };
+  TokenExpiredError = class TokenExpiredError extends AuthenticationError {
+    constructor(message, provider) {
+      super(message, 401, provider);
+      this.name = "TokenExpiredError";
+    }
+  };
+  ConnectionError = class ConnectionError extends IntegrateSDKError {
+    statusCode;
+    constructor(message, statusCode) {
+      super(message);
+      this.name = "ConnectionError";
+      this.statusCode = statusCode;
+    }
+  };
+  ToolCallError = class ToolCallError extends IntegrateSDKError {
+    toolName;
+    originalError;
+    constructor(message, toolName, originalError) {
+      super(message);
+      this.name = "ToolCallError";
+      this.toolName = toolName;
+      this.originalError = originalError;
+    }
+  };
+});
+
+// auto-routes.ts
+var globalOAuthConfig = null;
+function setGlobalOAuthConfig(config) {
+  globalOAuthConfig = config;
+}
+function getGlobalOAuthConfig() {
+  return globalOAuthConfig;
+}
+async function POST(req, context) {
+  if (!globalOAuthConfig) {
+    throw new Error("OAuth configuration not found. Did you configure oauthProviders in createMCPClient?");
+  }
+  const handler = new OAuthHandler(globalOAuthConfig);
+  const action = context?.params?.action;
+  if (!action) {
+    return createErrorResponse("Missing action parameter", 400);
+  }
+  try {
+    if (action === "authorize") {
+      const body = await parseRequestBody(req);
+      const result = await handler.handleAuthorize(body);
+      return createSuccessResponse(result);
+    }
+    if (action === "callback") {
+      const body = await parseRequestBody(req);
+      const result = await handler.handleCallback(body);
+      return createSuccessResponse(result);
+    }
+    if (action === "disconnect") {
+      const body = await parseRequestBody(req);
+      const accessToken = extractAccessToken(req);
+      if (!accessToken) {
+        return createErrorResponse("Missing or invalid Authorization header", 400);
+      }
+      if (!body.provider) {
+        return createErrorResponse("Missing provider in request body", 400);
+      }
+      const result = await handler.handleDisconnect({ provider: body.provider }, accessToken);
+      return createSuccessResponse(result);
+    }
+    return createErrorResponse(`Unknown action: ${action}`, 404);
+  } catch (error) {
+    console.error(`[OAuth ${action}] Error:`, error);
+    return createErrorResponse(error.message, 500);
+  }
+}
+async function GET(req, context) {
+  if (!globalOAuthConfig) {
+    throw new Error("OAuth configuration not found. Did you configure oauthProviders in createMCPClient?");
+  }
+  const handler = new OAuthHandler(globalOAuthConfig);
+  const action = context?.params?.action;
+  if (!action) {
+    return createErrorResponse("Missing action parameter", 400);
+  }
+  try {
+    if (action === "status") {
+      const provider = extractProvider(req);
+      const accessToken = extractAccessToken(req);
+      if (!provider) {
+        return createErrorResponse("Missing provider parameter", 400);
+      }
+      if (!accessToken) {
+        return createErrorResponse("Missing or invalid Authorization header", 400);
+      }
+      const result = await handler.handleStatus(provider, accessToken);
+      return createSuccessResponse(result);
+    }
+    return createErrorResponse(`Unknown action: ${action}`, 404);
+  } catch (error) {
+    console.error(`[OAuth ${action}] Error:`, error);
+    return createErrorResponse(error.message, 500);
+  }
+}
+async function parseRequestBody(req) {
+  if (typeof req.json === "function") {
+    return await req.json();
+  }
+  throw new Error("Unable to parse request body");
+}
+function extractAccessToken(req) {
+  if (req.headers?.get) {
+    const authHeader = req.headers.get("authorization");
+    if (authHeader && authHeader.startsWith("Bearer ")) {
+      return authHeader.substring(7);
+    }
+  }
+  return;
+}
+function extractProvider(req) {
+  let url;
+  if (req.nextUrl) {
+    url = new URL(req.nextUrl);
+  } else if (req.url) {
+    url = new URL(req.url);
+  } else {
+    return;
+  }
+  return url.searchParams.get("provider") || undefined;
+}
+function createSuccessResponse(data) {
+  if (typeof globalThis.NextResponse !== "undefined") {
+    const NextResponse = globalThis.NextResponse;
+    return NextResponse.json(data);
+  }
+  return new Response(JSON.stringify(data), {
+    status: 200,
+    headers: { "Content-Type": "application/json" }
+  });
+}
+function createErrorResponse(message, status) {
+  if (typeof globalThis.NextResponse !== "undefined") {
+    const NextResponse = globalThis.NextResponse;
+    return NextResponse.json({ error: message }, { status });
+  }
+  return new Response(JSON.stringify({ error: message }), {
+    status,
+    headers: { "Content-Type": "application/json" }
+  });
+}
+
+// nextjs.ts
+function createNextOAuthHandler(config) {
+  const handler = new OAuthHandler(config);
+  const handlers = {
+    async authorize(req) {
+      try {
+        const body = await req.json();
+        const result = await handler.handleAuthorize(body);
+        return Response.json(result);
+      } catch (error) {
+        console.error("[OAuth Authorize] Error:", error);
+        return Response.json({ error: error.message || "Failed to get authorization URL" }, { status: 500 });
+      }
+    },
+    async callback(req) {
+      try {
+        const body = await req.json();
+        const result = await handler.handleCallback(body);
+        return Response.json(result);
+      } catch (error) {
+        console.error("[OAuth Callback] Error:", error);
+        return Response.json({ error: error.message || "Failed to exchange authorization code" }, { status: 500 });
+      }
+    },
+    async status(req) {
+      try {
+        const provider = req.nextUrl.searchParams.get("provider");
+        const authHeader = req.headers.get("authorization");
+        if (!provider) {
+          return Response.json({ error: "Missing provider query parameter" }, { status: 400 });
+        }
+        if (!authHeader || !authHeader.startsWith("Bearer ")) {
+          return Response.json({ error: "Missing or invalid Authorization header" }, { status: 400 });
+        }
+        const accessToken = authHeader.substring(7);
+        const result = await handler.handleStatus(provider, accessToken);
+        return Response.json(result);
+      } catch (error) {
+        console.error("[OAuth Status] Error:", error);
+        return Response.json({ error: error.message || "Failed to check authorization status" }, { status: 500 });
+      }
+    },
+    async disconnect(req) {
+      try {
+        const authHeader = req.headers.get("authorization");
+        if (!authHeader || !authHeader.startsWith("Bearer ")) {
+          return Response.json({ error: "Missing or invalid Authorization header" }, { status: 400 });
+        }
+        const accessToken = authHeader.substring(7);
+        const body = await req.json();
+        const { provider } = body;
+        if (!provider) {
+          return Response.json({ error: "Missing provider in request body" }, { status: 400 });
+        }
+        const result = await handler.handleDisconnect({ provider }, accessToken);
+        return Response.json(result);
+      } catch (error) {
+        console.error("[OAuth Disconnect] Error:", error);
+        return Response.json({ error: error.message || "Failed to disconnect provider" }, { status: 500 });
+      }
+    },
+    createRoutes() {
+      return {
+        async POST(req, context) {
+          const params = context.params instanceof Promise ? await context.params : context.params;
+          const action = params.action;
+          if (action === "authorize") {
+            return handlers.authorize(req);
+          }
+          if (action === "callback") {
+            return handlers.callback(req);
+          }
+          if (action === "disconnect") {
+            return handlers.disconnect(req);
+          }
+          if (action === "mcp") {
+            return handlers.mcp(req);
+          }
+          return Response.json({ error: `Unknown action: ${action}` }, { status: 404 });
+        },
+        async GET(req, context) {
+          const params = context.params instanceof Promise ? await context.params : context.params;
+          const action = params.action;
+          if (action === "status") {
+            return handlers.status(req);
+          }
+          return Response.json({ error: `Unknown action: ${action}` }, { status: 404 });
+        }
+      };
+    },
+    async mcp(req) {
+      try {
+        const body = await req.json();
+        const authHeader = req.headers.get("authorization");
+        const result = await handler.handleToolCall(body, authHeader);
+        return Response.json(result);
+      } catch (error) {
+        console.error("[MCP Tool Call] Error:", error);
+        return Response.json({ error: error.message || "Failed to execute tool call" }, { status: error.statusCode || 500 });
+      }
+    },
+    toNextJsHandler(redirectConfig) {
+      const defaultRedirectUrl = redirectConfig?.redirectUrl || "/";
+      const errorRedirectUrl = redirectConfig?.errorRedirectUrl || "/auth-error";
+      return {
+        async POST(req, context) {
+          const params = context.params instanceof Promise ? await context.params : context.params;
+          const segments = params.all || [];
+          if (segments.length === 2 && segments[0] === "oauth") {
+            const action = segments[1];
+            if (action === "authorize") {
+              return handlers.authorize(req);
+            }
+            if (action === "callback") {
+              return handlers.callback(req);
+            }
+            if (action === "disconnect") {
+              return handlers.disconnect(req);
+            }
+            return Response.json({ error: `Unknown action: ${action}` }, { status: 404 });
+          }
+          if (segments.length === 1 && segments[0] === "mcp") {
+            return handlers.mcp(req);
+          }
+          return Response.json({ error: `Invalid route: /${segments.join("/")}` }, { status: 404 });
+        },
+        async GET(req, context) {
+          const params = context.params instanceof Promise ? await context.params : context.params;
+          const segments = params.all || [];
+          if (segments.length === 2 && segments[0] === "oauth") {
+            const action = segments[1];
+            if (action === "status") {
+              return handlers.status(req);
+            }
+            if (action === "callback") {
+              const { searchParams } = new URL(req.url);
+              const code = searchParams.get("code");
+              const state = searchParams.get("state");
+              const error = searchParams.get("error");
+              const errorDescription = searchParams.get("error_description");
+              if (error) {
+                const errorMsg = errorDescription || error;
+                console.error("[OAuth Redirect] Error:", errorMsg);
+                return Response.redirect(new URL(`${errorRedirectUrl}?error=${encodeURIComponent(errorMsg)}`, req.url));
+              }
+              if (!code || !state) {
+                console.error("[OAuth Redirect] Missing code or state parameter");
+                return Response.redirect(new URL(`${errorRedirectUrl}?error=${encodeURIComponent("Invalid OAuth callback")}`, req.url));
+              }
+              let returnUrl = defaultRedirectUrl;
+              try {
+                const { parseState: parseState2 } = await Promise.resolve().then(() => exports_pkce);
+                const stateData = parseState2(state);
+                if (stateData.returnUrl) {
+                  returnUrl = stateData.returnUrl;
+                }
+              } catch (e) {
+                try {
+                  const referrer = req.headers?.get?.("referer") || req.headers?.get?.("referrer");
+                  if (referrer) {
+                    const referrerUrl = new URL(referrer);
+                    const currentUrl = new URL(req.url);
+                    if (referrerUrl.origin === currentUrl.origin) {
+                      returnUrl = referrerUrl.pathname + referrerUrl.search;
+                    }
+                  }
+                } catch {}
+              }
+              const targetUrl = new URL(returnUrl, req.url);
+              targetUrl.hash = `oauth_callback=${encodeURIComponent(JSON.stringify({ code, state }))}`;
+              return Response.redirect(targetUrl);
+            }
+            return Response.json({ error: `Unknown action: ${action}` }, { status: 404 });
+          }
+          return Response.json({ error: `Invalid route: /${segments.join("/")}` }, { status: 404 });
+        }
+      };
+    }
+  };
+  return handlers;
+}
+
+// node.ts
+function fromNodeHeaders(nodeHeaders) {
+  const webHeaders = new Headers;
+  for (const [key, value] of Object.entries(nodeHeaders)) {
+    if (value !== undefined) {
+      if (Array.isArray(value)) {
+        value.forEach((v) => webHeaders.append(key, v));
+      } else {
+        webHeaders.set(key, value);
+      }
+    }
+  }
+  return webHeaders;
+}
+async function toWebRequest(req) {
+  const protocol = req.socket.encrypted ? "https" : "http";
+  const host = req.headers.host || "localhost";
+  const url = `${protocol}://${host}${req.url}`;
+  const headers = fromNodeHeaders(req.headers);
+  let body;
+  if (req.method && ["POST", "PUT", "PATCH"].includes(req.method)) {
+    body = await new Promise((resolve, reject) => {
+      let data = "";
+      req.on("data", (chunk) => data += chunk);
+      req.on("end", () => resolve(data));
+      req.on("error", reject);
+    });
+  }
+  return new Request(url, {
+    method: req.method,
+    headers,
+    body: body || undefined
+  });
+}
+async function sendWebResponse(webRes, nodeRes) {
+  nodeRes.statusCode = webRes.status;
+  webRes.headers.forEach((value, key) => {
+    nodeRes.setHeader(key, value);
+  });
+  const body = await webRes.text();
+  nodeRes.end(body);
+}
+function toNodeHandler(config) {
+  const oauthHandler = new OAuthHandler(config);
+  return async (req, res) => {
+    try {
+      const webReq = await toWebRequest(req);
+      const url = new URL(webReq.url);
+      const segments = url.pathname.split("/").filter(Boolean);
+      const action = segments[segments.length - 1];
+      let webRes;
+      if (req.method === "POST") {
+        if (action === "authorize") {
+          const body = await webReq.json();
+          const result = await oauthHandler.handleAuthorize(body);
+          webRes = new Response(JSON.stringify(result), {
+            status: 200,
+            headers: { "Content-Type": "application/json" }
+          });
+        } else if (action === "callback") {
+          const body = await webReq.json();
+          const result = await oauthHandler.handleCallback(body);
+          webRes = new Response(JSON.stringify(result), {
+            status: 200,
+            headers: { "Content-Type": "application/json" }
+          });
+        } else if (action === "disconnect") {
+          const authHeader = webReq.headers.get("authorization");
+          if (!authHeader || !authHeader.startsWith("Bearer ")) {
+            webRes = new Response(JSON.stringify({ error: "Missing or invalid Authorization header" }), {
+              status: 400,
+              headers: { "Content-Type": "application/json" }
+            });
+          } else {
+            const accessToken = authHeader.substring(7);
+            const body = await webReq.json();
+            const { provider } = body;
+            if (!provider) {
+              webRes = new Response(JSON.stringify({ error: "Missing provider in request body" }), {
+                status: 400,
+                headers: { "Content-Type": "application/json" }
+              });
+            } else {
+              const result = await oauthHandler.handleDisconnect({ provider }, accessToken);
+              webRes = new Response(JSON.stringify(result), {
+                status: 200,
+                headers: { "Content-Type": "application/json" }
+              });
+            }
+          }
+        } else {
+          webRes = new Response(JSON.stringify({ error: `Unknown action: ${action}` }), {
+            status: 404,
+            headers: { "Content-Type": "application/json" }
+          });
+        }
+      } else if (req.method === "GET" && action === "status") {
+        const provider = url.searchParams.get("provider");
+        const authHeader = webReq.headers.get("authorization");
+        if (!provider) {
+          webRes = new Response(JSON.stringify({ error: "Missing provider query parameter" }), {
+            status: 400,
+            headers: { "Content-Type": "application/json" }
+          });
+        } else if (!authHeader || !authHeader.startsWith("Bearer ")) {
+          webRes = new Response(JSON.stringify({ error: "Missing or invalid Authorization header" }), {
+            status: 400,
+            headers: { "Content-Type": "application/json" }
+          });
+        } else {
+          const accessToken = authHeader.substring(7);
+          const result = await oauthHandler.handleStatus(provider, accessToken);
+          webRes = new Response(JSON.stringify(result), {
+            status: 200,
+            headers: { "Content-Type": "application/json" }
+          });
+        }
+      } else {
+        webRes = new Response(JSON.stringify({ error: `Unknown action: ${action}` }), {
+          status: 404,
+          headers: { "Content-Type": "application/json" }
+        });
+      }
+      await sendWebResponse(webRes, res);
+    } catch (error) {
+      console.error("[OAuth Handler] Error:", error);
+      const errorRes = new Response(JSON.stringify({ error: error.message || "Internal server error" }), {
+        status: 500,
+        headers: { "Content-Type": "application/json" }
+      });
+      await sendWebResponse(errorRes, res);
+    }
+  };
+}
+
+// ../protocol/jsonrpc.ts
+function parseMessage(message) {
+  try {
+    return JSON.parse(message);
+  } catch (error) {
+    throw new Error(`Failed to parse JSON-RPC message: ${error}`);
+  }
+}
+
+// ../transport/http-session.ts
+class HttpSessionTransport {
+  url;
+  headers;
+  timeout;
+  messageHandlers = new Set;
+  sessionId;
+  sseController;
+  connected = false;
+  constructor(options) {
+    this.url = options.url;
+    this.headers = options.headers || {};
+    this.timeout = options.timeout || 30000;
+  }
+  async connect() {
+    if (this.connected) {
+      return;
+    }
+    this.connected = true;
+  }
+  async sendRequest(method, params) {
+    if (!this.connected) {
+      throw new Error("Not connected to server");
+    }
+    const request = {
+      jsonrpc: "2.0",
+      id: Date.now() + Math.random(),
+      method,
+      params
+    };
+    const headers = {
+      ...this.headers,
+      "Content-Type": "application/json"
+    };
+    if (this.sessionId) {
+      headers["mcp-session-id"] = this.sessionId;
+    }
+    try {
+      const controller = new AbortController;
+      const timeoutId = setTimeout(() => controller.abort(), this.timeout);
+      const response = await fetch(this.url, {
+        method: "POST",
+        headers,
+        body: JSON.stringify(request),
+        signal: controller.signal
+      });
+      clearTimeout(timeoutId);
+      if (!response.ok) {
+        const error = new Error(`Request failed: ${response.statusText}`);
+        error.statusCode = response.status;
+        throw error;
+      }
+      if (!this.sessionId) {
+        const sid = response.headers.get("mcp-session-id");
+        if (sid) {
+          this.sessionId = sid;
+          console.log("Session established:", sid);
+          this.startSSEListener();
+        }
+      }
+      const jsonResponse = await response.json();
+      if ("error" in jsonResponse) {
+        const error = new Error(`JSON-RPC Error ${jsonResponse.error.code}: ${jsonResponse.error.message}`);
+        error.code = jsonResponse.error.code;
+        if (jsonResponse.error.data) {
+          error.data = jsonResponse.error.data;
+        }
+        error.jsonrpcError = jsonResponse.error;
+        throw error;
+      }
+      return jsonResponse.result;
+    } catch (error) {
+      if (error instanceof Error) {
+        if (error.name === "AbortError") {
+          const timeoutError = new Error("Request timeout");
+          timeoutError.code = -32000;
+          throw timeoutError;
+        }
+        throw error;
+      }
+      throw new Error(String(error));
+    }
+  }
+  async startSSEListener() {
+    if (!this.sessionId || this.sseController) {
+      return;
+    }
+    this.sseController = new AbortController;
+    try {
+      const response = await fetch(this.url, {
+        method: "GET",
+        headers: {
+          ...this.headers,
+          Accept: "text/event-stream",
+          "mcp-session-id": this.sessionId
+        },
+        signal: this.sseController.signal
+      });
+      if (!response.ok || !response.body) {
+        return;
+      }
+      this.processSSEStream(response.body);
+    } catch (error) {
+      if (error instanceof Error && error.name === "AbortError") {
+        return;
+      }
+      console.error("SSE connection error:", error);
+    }
+  }
+  async processSSEStream(body) {
+    const reader = body.getReader();
+    const decoder = new TextDecoder;
+    let buffer = "";
+    try {
+      while (true) {
+        const { done, value } = await reader.read();
+        if (done)
+          break;
+        buffer += decoder.decode(value, { stream: true });
+        const lines = buffer.split(`
+`);
+        buffer = lines.pop() || "";
+        for (const line of lines) {
+          if (line.startsWith("data: ")) {
+            const data = line.slice(6).trim();
+            if (data) {
+              this.handleNotification(data);
+            }
+          }
+        }
+      }
+    } catch (error) {
+      if (error instanceof Error && error.name === "AbortError") {
+        return;
+      }
+      console.error("SSE stream error:", error);
+    } finally {
+      reader.releaseLock();
+    }
+  }
+  handleNotification(data) {
+    try {
+      const message = parseMessage(data);
+      this.messageHandlers.forEach((handler) => {
+        try {
+          handler(message);
+        } catch (error) {
+          console.error("Error in message handler:", error);
+        }
+      });
+    } catch (error) {
+      console.error("Failed to parse notification:", error);
+    }
+  }
+  onMessage(handler) {
+    this.messageHandlers.add(handler);
+    return () => {
+      this.messageHandlers.delete(handler);
+    };
+  }
+  async disconnect() {
+    if (!this.connected) {
+      return;
+    }
+    if (this.sseController) {
+      this.sseController.abort();
+      this.sseController = undefined;
+    }
+    this.messageHandlers.clear();
+    this.sessionId = undefined;
+    this.connected = false;
+  }
+  isConnected() {
+    return this.connected;
+  }
+  getSessionId() {
+    return this.sessionId;
+  }
+  setHeader(key, value) {
+    this.headers[key] = value;
+  }
+  removeHeader(key) {
+    delete this.headers[key];
+  }
+  getHeaders() {
+    return { ...this.headers };
+  }
+}
+
+// ../client.ts
+init_errors();
+
+// ../utils/naming.ts
+function camelToSnake(str) {
+  return str.replace(/[A-Z]/g, (letter) => `_${letter.toLowerCase()}`);
+}
+function methodToToolName(methodName, integrationId) {
+  const snakeCaseMethod = camelToSnake(methodName);
+  return `${integrationId}_${snakeCaseMethod}`;
+}
+// ../oauth/window-manager.ts
+function isBrowser() {
+  return typeof window !== "undefined" && typeof window.document !== "undefined";
+}
+
+class OAuthWindowManager {
+  popupWindow = null;
+  popupCheckInterval = null;
+  popupCheckTimeout = null;
+  openPopup(url, options) {
+    if (!isBrowser()) {
+      throw new Error("OAuthWindowManager.openPopup() can only be used in browser environments");
+    }
+    const width = options?.width || 600;
+    const height = options?.height || 700;
+    const left = window.screenX + (window.outerWidth - width) / 2;
+    const top = window.screenY + (window.outerHeight - height) / 2;
+    const features = [
+      `popup=yes`,
+      `width=${width}`,
+      `height=${height}`,
+      `left=${left}`,
+      `top=${top}`,
+      "toolbar=no",
+      "location=no",
+      "directories=no",
+      "status=no",
+      "menubar=no",
+      "scrollbars=yes",
+      "resizable=yes",
+      "copyhistory=no",
+      "noopener=no"
+    ].join(",");
+    const windowName = `oauth_popup_${Date.now()}`;
+    this.popupWindow = window.open(url, windowName, features);
+    if (!this.popupWindow) {
+      console.warn("Popup was blocked by the browser. Please allow popups for this site.");
+      return null;
+    }
+    this.popupWindow.focus();
+    return this.popupWindow;
+  }
+  openRedirect(url) {
+    if (!isBrowser()) {
+      throw new Error("OAuthWindowManager.openRedirect() can only be used in browser environments");
+    }
+    window.location.href = url;
+  }
+  listenForCallback(mode, timeoutMs = 5 * 60 * 1000) {
+    if (mode === "popup") {
+      return this.listenForPopupCallback(timeoutMs);
+    } else {
+      return this.listenForRedirectCallback();
+    }
+  }
+  listenForPopupCallback(timeoutMs) {
+    if (!isBrowser()) {
+      return Promise.reject(new Error("OAuth popup callback can only be used in browser environments"));
+    }
+    return new Promise((resolve, reject) => {
+      const timeout = setTimeout(() => {
+        this.cleanup();
+        reject(new Error("OAuth authorization timed out"));
+      }, timeoutMs);
+      const messageHandler = (event) => {
+        if (event.data && event.data.type === "oauth_callback") {
+          clearTimeout(timeout);
+          if (this.popupCheckTimeout) {
+            clearTimeout(this.popupCheckTimeout);
+            this.popupCheckTimeout = null;
+          }
+          window.removeEventListener("message", messageHandler);
+          const { code, state, error } = event.data;
+          if (error) {
+            this.cleanup();
+            reject(new Error(`OAuth error: ${error}`));
+            return;
+          }
+          if (!code || !state) {
+            this.cleanup();
+            reject(new Error("Invalid OAuth callback: missing code or state"));
+            return;
+          }
+          this.cleanup();
+          resolve({ code, state });
+        }
+      };
+      window.addEventListener("message", messageHandler);
+      this.popupCheckTimeout = setTimeout(() => {
+        this.popupCheckTimeout = null;
+        this.popupCheckInterval = setInterval(() => {
+          if (this.popupWindow?.closed) {
+            clearTimeout(timeout);
+            clearInterval(this.popupCheckInterval);
+            window.removeEventListener("message", messageHandler);
+            this.cleanup();
+            reject(new Error("OAuth popup was closed by user"));
+          }
+        }, 500);
+      }, 2000);
+    });
+  }
+  listenForRedirectCallback() {
+    if (!isBrowser()) {
+      return Promise.reject(new Error("OAuth redirect callback can only be used in browser environments"));
+    }
+    return new Promise((resolve, reject) => {
+      const params = new URLSearchParams(window.location.search);
+      let code = params.get("code");
+      let state = params.get("state");
+      let error = params.get("error");
+      let errorDescription = params.get("error_description");
+      if (!code && !error && window.location.hash) {
+        try {
+          const hash = window.location.hash.substring(1);
+          const hashParams = new URLSearchParams(hash);
+          const oauthCallback = hashParams.get("oauth_callback");
+          if (oauthCallback) {
+            const parsed = JSON.parse(decodeURIComponent(oauthCallback));
+            code = parsed.code;
+            state = parsed.state;
+            window.history.replaceState(null, "", window.location.pathname + window.location.search);
+          }
+        } catch (e) {
+          console.error("Failed to parse OAuth callback params from hash:", e);
+        }
+      }
+      if (!code && !error) {
+        try {
+          const stored = sessionStorage.getItem("oauth_callback_params");
+          if (stored) {
+            const parsed = JSON.parse(stored);
+            code = parsed.code;
+            state = parsed.state;
+            sessionStorage.removeItem("oauth_callback_params");
+          }
+        } catch (e) {
+          console.error("Failed to parse OAuth callback params from sessionStorage:", e);
+        }
+      }
+      if (error) {
+        const errorMsg = errorDescription || error;
+        reject(new Error(`OAuth error: ${errorMsg}`));
+        return;
+      }
+      if (!code || !state) {
+        reject(new Error("Invalid OAuth callback: missing code or state in URL"));
+        return;
+      }
+      resolve({ code, state });
+    });
+  }
+  cleanup() {
+    if (this.popupWindow && !this.popupWindow.closed) {
+      this.popupWindow.close();
+    }
+    this.popupWindow = null;
+    if (this.popupCheckInterval) {
+      clearInterval(this.popupCheckInterval);
+      this.popupCheckInterval = null;
+    }
+    if (this.popupCheckTimeout) {
+      clearTimeout(this.popupCheckTimeout);
+      this.popupCheckTimeout = null;
+    }
+  }
+  close() {
+    this.cleanup();
+  }
+}
+
+// ../oauth/manager.ts
+class OAuthManager {
+  pendingAuths = new Map;
+  providerTokens = new Map;
+  windowManager;
+  flowConfig;
+  oauthApiBase;
+  constructor(oauthApiBase, flowConfig) {
+    this.oauthApiBase = oauthApiBase;
+    this.windowManager = new OAuthWindowManager;
+    this.flowConfig = {
+      mode: flowConfig?.mode || "redirect",
+      popupOptions: flowConfig?.popupOptions,
+      onAuthCallback: flowConfig?.onAuthCallback
+    };
+    this.cleanupExpiredPendingAuths();
+  }
+  async initiateFlow(provider, config, returnUrl) {
+    const codeVerifier = generateCodeVerifier();
+    const codeChallenge = await generateCodeChallenge(codeVerifier);
+    const state = generateStateWithReturnUrl(returnUrl);
+    const pendingAuth = {
+      provider,
+      state,
+      codeVerifier,
+      codeChallenge,
+      scopes: config.scopes,
+      redirectUri: config.redirectUri,
+      returnUrl,
+      initiatedAt: Date.now()
+    };
+    this.pendingAuths.set(state, pendingAuth);
+    this.savePendingAuthToStorage(state, pendingAuth);
+    const authUrl = await this.getAuthorizationUrl(provider, config.scopes, state, codeChallenge, config.redirectUri);
+    if (this.flowConfig.mode === "popup") {
+      this.windowManager.openPopup(authUrl, this.flowConfig.popupOptions);
+      try {
+        const callbackParams = await this.windowManager.listenForCallback("popup");
+        await this.handleCallback(callbackParams.code, callbackParams.state);
+      } catch (error) {
+        this.pendingAuths.delete(state);
+        throw error;
+      }
+    } else {
+      this.windowManager.openRedirect(authUrl);
+    }
+  }
+  async handleCallback(code, state) {
+    let pendingAuth = this.pendingAuths.get(state);
+    if (!pendingAuth) {
+      pendingAuth = this.loadPendingAuthFromStorage(state);
+    }
+    if (!pendingAuth) {
+      throw new Error("Invalid state parameter: no matching OAuth flow found");
+    }
+    const fiveMinutes = 5 * 60 * 1000;
+    if (Date.now() - pendingAuth.initiatedAt > fiveMinutes) {
+      this.pendingAuths.delete(state);
+      this.removePendingAuthFromStorage(state);
+      throw new Error("OAuth flow expired: please try again");
+    }
+    if (this.flowConfig.onAuthCallback) {
+      try {
+        await this.flowConfig.onAuthCallback(pendingAuth.provider, code, state);
+      } catch (error) {
+        console.error("Custom OAuth callback handler failed:", error);
+      }
+    }
+    try {
+      const response = await this.exchangeCodeForToken(pendingAuth.provider, code, pendingAuth.codeVerifier, state);
+      const tokenData = {
+        accessToken: response.accessToken,
+        refreshToken: response.refreshToken,
+        tokenType: response.tokenType,
+        expiresIn: response.expiresIn,
+        expiresAt: response.expiresAt,
+        scopes: response.scopes
+      };
+      this.providerTokens.set(pendingAuth.provider, tokenData);
+      this.saveProviderToken(pendingAuth.provider, tokenData);
+      this.pendingAuths.delete(state);
+      this.removePendingAuthFromStorage(state);
+      return { ...tokenData, provider: pendingAuth.provider };
+    } catch (error) {
+      this.pendingAuths.delete(state);
+      this.removePendingAuthFromStorage(state);
+      throw error;
+    }
+  }
+  async checkAuthStatus(provider) {
+    const tokenData = this.providerTokens.get(provider);
+    if (!tokenData) {
+      return {
+        authorized: false,
+        provider
+      };
+    }
+    return {
+      authorized: true,
+      provider,
+      scopes: tokenData.scopes,
+      expiresAt: tokenData.expiresAt
+    };
+  }
+  async disconnectProvider(provider) {
+    const tokenData = this.providerTokens.get(provider);
+    if (!tokenData) {
+      throw new Error(`No access token available for provider "${provider}". Cannot disconnect provider.`);
+    }
+    this.providerTokens.delete(provider);
+    this.clearProviderToken(provider);
+  }
+  getProviderToken(provider) {
+    return this.providerTokens.get(provider);
+  }
+  getAllProviderTokens() {
+    return new Map(this.providerTokens);
+  }
+  setProviderToken(provider, tokenData) {
+    this.providerTokens.set(provider, tokenData);
+    this.saveProviderToken(provider, tokenData);
+  }
+  clearProviderToken(provider) {
+    this.providerTokens.delete(provider);
+    if (typeof window !== "undefined" && window.localStorage) {
+      try {
+        window.localStorage.removeItem(`integrate_token_${provider}`);
+      } catch (error) {
+        console.error(`Failed to clear token for ${provider} from localStorage:`, error);
+      }
+    }
+  }
+  clearAllProviderTokens() {
+    const providers = Array.from(this.providerTokens.keys());
+    this.providerTokens.clear();
+    if (typeof window !== "undefined" && window.localStorage) {
+      for (const provider of providers) {
+        try {
+          window.localStorage.removeItem(`integrate_token_${provider}`);
+        } catch (error) {
+          console.error(`Failed to clear token for ${provider} from localStorage:`, error);
+        }
+      }
+    }
+  }
+  clearAllPendingAuths() {
+    this.pendingAuths.clear();
+    if (typeof window !== "undefined" && window.localStorage) {
+      try {
+        const prefix = "integrate_oauth_pending_";
+        const keysToRemove = [];
+        for (let i = 0;i < window.localStorage.length; i++) {
+          const key = window.localStorage.key(i);
+          if (key && key.startsWith(prefix)) {
+            keysToRemove.push(key);
+          }
+        }
+        keysToRemove.forEach((key) => window.localStorage.removeItem(key));
+      } catch (error) {
+        console.error("Failed to clear pending auths from localStorage:", error);
+      }
+    }
+  }
+  saveProviderToken(provider, tokenData) {
+    if (typeof window !== "undefined" && window.localStorage) {
+      try {
+        const key = `integrate_token_${provider}`;
+        window.localStorage.setItem(key, JSON.stringify(tokenData));
+      } catch (error) {
+        console.error(`Failed to save token for ${provider} to localStorage:`, error);
+      }
+    }
+  }
+  loadProviderToken(provider) {
+    if (typeof window !== "undefined" && window.localStorage) {
+      try {
+        const key = `integrate_token_${provider}`;
+        const stored = window.localStorage.getItem(key);
+        if (stored) {
+          return JSON.parse(stored);
+        }
+      } catch (error) {
+        console.error(`Failed to load token for ${provider} from localStorage:`, error);
+      }
+    }
+    return;
+  }
+  loadAllProviderTokens(providers) {
+    for (const provider of providers) {
+      const tokenData = this.loadProviderToken(provider);
+      if (tokenData) {
+        this.providerTokens.set(provider, tokenData);
+      }
+    }
+  }
+  savePendingAuthToStorage(state, pendingAuth) {
+    if (typeof window !== "undefined" && window.localStorage) {
+      try {
+        const key = `integrate_oauth_pending_${state}`;
+        window.localStorage.setItem(key, JSON.stringify(pendingAuth));
+      } catch (error) {
+        console.error("Failed to save pending auth to localStorage:", error);
+      }
+    }
+  }
+  loadPendingAuthFromStorage(state) {
+    if (typeof window !== "undefined" && window.localStorage) {
+      try {
+        const key = `integrate_oauth_pending_${state}`;
+        const stored = window.localStorage.getItem(key);
+        if (stored) {
+          return JSON.parse(stored);
+        }
+      } catch (error) {
+        console.error("Failed to load pending auth from localStorage:", error);
+      }
+    }
+    return;
+  }
+  removePendingAuthFromStorage(state) {
+    if (typeof window !== "undefined" && window.localStorage) {
+      try {
+        const key = `integrate_oauth_pending_${state}`;
+        window.localStorage.removeItem(key);
+      } catch (error) {
+        console.error("Failed to remove pending auth from localStorage:", error);
+      }
+    }
+  }
+  cleanupExpiredPendingAuths() {
+    if (typeof window !== "undefined" && window.localStorage) {
+      try {
+        const prefix = "integrate_oauth_pending_";
+        const fiveMinutes = 5 * 60 * 1000;
+        const now = Date.now();
+        const keysToRemove = [];
+        for (let i = 0;i < window.localStorage.length; i++) {
+          const key = window.localStorage.key(i);
+          if (key && key.startsWith(prefix)) {
+            try {
+              const stored = window.localStorage.getItem(key);
+              if (stored) {
+                const pendingAuth = JSON.parse(stored);
+                if (now - pendingAuth.initiatedAt > fiveMinutes) {
+                  keysToRemove.push(key);
+                }
+              }
+            } catch (error) {
+              keysToRemove.push(key);
+            }
+          }
+        }
+        keysToRemove.forEach((key) => window.localStorage.removeItem(key));
+      } catch (error) {
+        console.error("Failed to cleanup expired pending auths:", error);
+      }
+    }
+  }
+  async getAuthorizationUrl(provider, scopes, state, codeChallenge, redirectUri) {
+    const url = `${this.oauthApiBase}/authorize`;
+    const response = await fetch(url, {
+      method: "POST",
+      headers: {
+        "Content-Type": "application/json"
+      },
+      body: JSON.stringify({
+        provider,
+        scopes,
+        state,
+        codeChallenge,
+        codeChallengeMethod: "S256",
+        redirectUri
+      })
+    });
+    if (!response.ok) {
+      const error = await response.text();
+      throw new Error(`Failed to get authorization URL: ${error}`);
+    }
+    const data = await response.json();
+    return data.authorizationUrl;
+  }
+  async exchangeCodeForToken(provider, code, codeVerifier, state) {
+    const url = `${this.oauthApiBase}/callback`;
+    const response = await fetch(url, {
+      method: "POST",
+      headers: {
+        "Content-Type": "application/json"
+      },
+      body: JSON.stringify({
+        provider,
+        code,
+        codeVerifier,
+        state
+      })
+    });
+    if (!response.ok) {
+      const error = await response.text();
+      throw new Error(`Failed to exchange code for token: ${error}`);
+    }
+    const data = await response.json();
+    return data;
+  }
+  close() {
+    this.windowManager.close();
+  }
+}
+
+// ../client.ts
+class SimpleEventEmitter {
+  handlers = new Map;
+  on(event, handler) {
+    if (!this.handlers.has(event)) {
+      this.handlers.set(event, new Set);
+    }
+    this.handlers.get(event).add(handler);
+  }
+  off(event, handler) {
+    const handlers = this.handlers.get(event);
+    if (handlers) {
+      handlers.delete(handler);
+    }
+  }
+  emit(event, payload) {
+    const handlers = this.handlers.get(event);
+    if (handlers) {
+      handlers.forEach((handler) => {
+        try {
+          handler(payload);
+        } catch (error) {
+          console.error(`Error in event handler for ${event}:`, error);
+        }
+      });
+    }
+  }
+  removeAllListeners(event) {
+    if (event) {
+      this.handlers.delete(event);
+    } else {
+      this.handlers.clear();
+    }
+  }
+}
+var MCP_SERVER_URL2 = "https://mcp.integrate.dev/api/v1/mcp";
+var clientCache = new Map;
+var cleanupClients = new Set;
+class MCPClient {
+  transport;
+  integrations;
+  availableTools = new Map;
+  enabledToolNames = new Set;
+  initialized = false;
+  clientInfo;
+  onReauthRequired;
+  maxReauthRetries;
+  authState = new Map;
+  oauthManager;
+  eventEmitter = new SimpleEventEmitter;
+  apiRouteBase;
+  github;
+  gmail;
+  server;
+  constructor(config) {
+    this.transport = new HttpSessionTransport({
+      url: config.serverUrl || MCP_SERVER_URL2,
+      headers: config.headers,
+      timeout: config.timeout
+    });
+    const oauthApiBase = config.oauthApiBase || "/api/integrate/oauth";
+    const defaultRedirectUri = this.getDefaultRedirectUri(oauthApiBase);
+    this.apiRouteBase = config.apiRouteBase || "/api/integrate";
+    this.integrations = config.integrations.map((integration) => {
+      if (integration.oauth && !integration.oauth.redirectUri) {
+        return {
+          ...integration,
+          oauth: {
+            ...integration.oauth,
+            redirectUri: defaultRedirectUri
+          }
+        };
+      }
+      return integration;
+    });
+    this.clientInfo = config.clientInfo || {
+      name: "integrate-sdk",
+      version: "0.1.0"
+    };
+    this.onReauthRequired = config.onReauthRequired;
+    this.maxReauthRetries = config.maxReauthRetries ?? 1;
+    this.oauthManager = new OAuthManager(oauthApiBase, config.oauthFlow);
+    const providers = this.integrations.filter((p) => p.oauth).map((p) => p.oauth.provider);
+    this.oauthManager.loadAllProviderTokens(providers);
+    for (const integration of this.integrations) {
+      for (const toolName of integration.tools) {
+        this.enabledToolNames.add(toolName);
+      }
+      if (integration.oauth) {
+        const hasToken = this.oauthManager.getProviderToken(integration.oauth.provider) !== undefined;
+        this.authState.set(integration.oauth.provider, { authenticated: hasToken });
+      }
+    }
+    this.github = this.createIntegrationProxy("github");
+    this.gmail = this.createIntegrationProxy("gmail");
+    this.server = this.createServerProxy();
+    this.initializeIntegrations();
+  }
+  getDefaultRedirectUri(oauthApiBase) {
+    if (typeof window === "undefined" || !window.location) {
+      return "http://localhost:3000/api/integrate/oauth/callback";
+    }
+    const origin = window.location.origin;
+    const normalizedPath = oauthApiBase.replace(/\/$/, "");
+    return `${origin}${normalizedPath}/callback`;
+  }
+  createIntegrationProxy(integrationId) {
+    return new Proxy({}, {
+      get: (_target, methodName) => {
+        return async (args) => {
+          const toolName = methodToToolName(methodName, integrationId);
+          return await this.callToolWithRetry(toolName, args, 0);
+        };
+      }
+    });
+  }
+  createServerProxy() {
+    return new Proxy({}, {
+      get: (_target, methodName) => {
+        return async (args) => {
+          const toolName = methodToToolName(methodName, "");
+          const finalToolName = toolName.startsWith("_") ? toolName.substring(1) : toolName;
+          return await this.callServerToolInternal(finalToolName, args);
+        };
+      }
+    });
+  }
+  async callServerToolInternal(name, args) {
+    try {
+      const response = await this.callToolThroughHandler(name, args);
+      return response;
+    } catch (error) {
+      const parsedError = parseServerError(error, { toolName: name });
+      throw parsedError;
+    }
+  }
+  async initializeIntegrations() {
+    for (const integration of this.integrations) {
+      if (integration.onInit) {
+        await integration.onInit(this);
+      }
+    }
+  }
+  async connect() {
+    for (const integration of this.integrations) {
+      if (integration.onBeforeConnect) {
+        await integration.onBeforeConnect(this);
+      }
+    }
+    await this.transport.connect();
+    await this.initialize();
+    await this.discoverTools();
+    for (const integration of this.integrations) {
+      if (integration.onAfterConnect) {
+        await integration.onAfterConnect(this);
+      }
+    }
+  }
+  async initialize() {
+    const params = {
+      protocolVersion: "2024-11-05",
+      capabilities: {
+        tools: {}
+      },
+      clientInfo: this.clientInfo
+    };
+    const response = await this.transport.sendRequest("initialize" /* INITIALIZE */, params);
+    this.initialized = true;
+    return response;
+  }
+  async discoverTools() {
+    const response = await this.transport.sendRequest("tools/list" /* TOOLS_LIST */);
+    for (const tool of response.tools) {
+      this.availableTools.set(tool.name, tool);
+    }
+    const enabledTools = response.tools.filter((tool) => this.enabledToolNames.has(tool.name));
+    console.log(`Discovered ${response.tools.length} tools, ${enabledTools.length} enabled by integrations`);
+  }
+  async _callToolByName(name, args) {
+    return await this.callToolWithRetry(name, args, 0);
+  }
+  async callServerTool(name, args) {
+    try {
+      const response = await this.callToolThroughHandler(name, args);
+      return response;
+    } catch (error) {
+      const parsedError = parseServerError(error, { toolName: name });
+      throw parsedError;
+    }
+  }
+  async callToolThroughHandler(name, args, provider) {
+    const transportHeaders = this.transport.headers || {};
+    const hasApiKey = !!transportHeaders["X-API-KEY"];
+    if (hasApiKey) {
+      if (provider) {
+        const tokenData = this.oauthManager.getProviderToken(provider);
+        if (tokenData && this.transport.setHeader) {
+          const previousAuthHeader = transportHeaders["Authorization"];
+          try {
+            this.transport.setHeader("Authorization", `Bearer ${tokenData.accessToken}`);
+            const result3 = await this.transport.sendRequest("tools/call", {
+              name,
+              arguments: args || {}
+            });
+            return result3;
+          } finally {
+            if (previousAuthHeader && this.transport.setHeader) {
+              this.transport.setHeader("Authorization", previousAuthHeader);
+            } else if (this.transport.removeHeader) {
+              this.transport.removeHeader("Authorization");
+            }
+          }
+        }
+      }
+      const result2 = await this.transport.sendRequest("tools/call", {
+        name,
+        arguments: args || {}
+      });
+      return result2;
+    }
+    const url = `${this.apiRouteBase}/mcp`;
+    const headers = {
+      "Content-Type": "application/json"
+    };
+    if (provider) {
+      const tokenData = this.oauthManager.getProviderToken(provider);
+      if (tokenData) {
+        headers["Authorization"] = `Bearer ${tokenData.accessToken}`;
+      }
+    }
+    const response = await fetch(url, {
+      method: "POST",
+      headers,
+      body: JSON.stringify({
+        name,
+        arguments: args
+      })
+    });
+    if (!response.ok) {
+      let errorMessage = `Request failed: ${response.statusText}`;
+      const error = new Error(errorMessage);
+      error.statusCode = response.status;
+      try {
+        const errorData = await response.json();
+        if (errorData.error) {
+          errorMessage = typeof errorData.error === "string" ? errorData.error : errorData.error.message || errorMessage;
+          error.message = errorMessage;
+        }
+        if (errorData.code) {
+          error.code = errorData.code;
+        }
+        if (errorData.data) {
+          error.data = errorData.data;
+        }
+        if (errorData.error && typeof errorData.error === "object") {
+          error.jsonrpcError = errorData.error;
+        }
+      } catch {}
+      throw error;
+    }
+    const result = await response.json();
+    return result;
+  }
+  async callToolWithRetry(name, args, retryCount = 0) {
+    if (!this.enabledToolNames.has(name)) {
+      throw new Error(`Tool "${name}" is not enabled. Enable it by adding the appropriate integration.`);
+    }
+    const provider = this.getProviderForTool(name);
+    try {
+      const response = await this.callToolThroughHandler(name, args, provider);
+      if (provider) {
+        this.authState.set(provider, { authenticated: true });
+      }
+      return response;
+    } catch (error) {
+      const parsedError = parseServerError(error, { toolName: name, provider });
+      if (isAuthError(parsedError) && retryCount < this.maxReauthRetries) {
+        if (provider) {
+          this.authState.set(provider, {
+            authenticated: false,
+            lastError: parsedError
+          });
+        }
+        if (this.onReauthRequired && provider) {
+          const reauthSuccess = await this.onReauthRequired({
+            provider,
+            error: parsedError,
+            toolName: name
+          });
+          if (reauthSuccess) {
+            return await this.callToolWithRetry(name, args, retryCount + 1);
+          }
+        }
+      }
+      throw parsedError;
+    }
+  }
+  getProviderForTool(toolName) {
+    for (const integration of this.integrations) {
+      if (integration.tools.includes(toolName) && integration.oauth) {
+        return integration.oauth.provider;
+      }
+    }
+    return;
+  }
+  getTool(name) {
+    return this.availableTools.get(name);
+  }
+  getAvailableTools() {
+    return Array.from(this.availableTools.values());
+  }
+  setRequestHeader(key, value) {
+    this.transport.setHeader(key, value);
+  }
+  getEnabledTools() {
+    return Array.from(this.availableTools.values()).filter((tool) => this.enabledToolNames.has(tool.name));
+  }
+  getOAuthConfig(integrationId) {
+    const integration = this.integrations.find((p) => p.id === integrationId);
+    return integration?.oauth;
+  }
+  getAllOAuthConfigs() {
+    const configs = new Map;
+    for (const integration of this.integrations) {
+      if (integration.oauth) {
+        configs.set(integration.id, integration.oauth);
+      }
+    }
+    return configs;
+  }
+  onMessage(handler) {
+    return this.transport.onMessage(handler);
+  }
+  on(event, handler) {
+    this.eventEmitter.on(event, handler);
+  }
+  off(event, handler) {
+    this.eventEmitter.off(event, handler);
+  }
+  clearSessionToken() {
+    this.oauthManager.clearAllProviderTokens();
+  }
+  async disconnectProvider(provider) {
+    const integration = this.integrations.find((p) => p.oauth?.provider === provider);
+    if (!integration?.oauth) {
+      throw new Error(`No OAuth configuration found for provider: ${provider}`);
+    }
+    try {
+      await this.oauthManager.disconnectProvider(provider);
+      this.authState.set(provider, { authenticated: false });
+      this.eventEmitter.emit("auth:disconnect", { provider });
+    } catch (error) {
+      this.eventEmitter.emit("auth:error", {
+        provider,
+        error
+      });
+      throw error;
+    }
+  }
+  async logout() {
+    this.clearSessionToken();
+    this.oauthManager.clearAllPendingAuths();
+    this.authState.clear();
+    for (const integration of this.integrations) {
+      if (integration.oauth) {
+        this.authState.set(integration.oauth.provider, { authenticated: false });
+      }
+    }
+    this.eventEmitter.emit("auth:logout", {});
+  }
+  async disconnect() {
+    for (const integration of this.integrations) {
+      if (integration.onDisconnect) {
+        await integration.onDisconnect(this);
+      }
+    }
+    await this.transport.disconnect();
+    this.initialized = false;
+  }
+  isConnected() {
+    return this.transport.isConnected();
+  }
+  isInitialized() {
+    return this.initialized;
+  }
+  getAuthState(provider) {
+    return this.authState.get(provider);
+  }
+  isProviderAuthenticated(provider) {
+    return this.authState.get(provider)?.authenticated ?? false;
+  }
+  async isAuthorized(provider) {
+    const status = await this.oauthManager.checkAuthStatus(provider);
+    return status.authorized;
+  }
+  async authorizedProviders() {
+    const authorized = [];
+    for (const integration of this.integrations) {
+      if (integration.oauth) {
+        const status = await this.oauthManager.checkAuthStatus(integration.oauth.provider);
+        if (status.authorized) {
+          authorized.push(integration.oauth.provider);
+        }
+      }
+    }
+    return authorized;
+  }
+  async getAuthorizationStatus(provider) {
+    return await this.oauthManager.checkAuthStatus(provider);
+  }
+  async authorize(provider, options) {
+    const integration = this.integrations.find((p) => p.oauth?.provider === provider);
+    if (!integration?.oauth) {
+      const error = new Error(`No OAuth configuration found for provider: ${provider}`);
+      this.eventEmitter.emit("auth:error", { provider, error });
+      throw error;
+    }
+    this.eventEmitter.emit("auth:started", { provider });
+    try {
+      await this.oauthManager.initiateFlow(provider, integration.oauth, options?.returnUrl);
+      const tokenData = this.oauthManager.getProviderToken(provider);
+      if (tokenData) {
+        this.eventEmitter.emit("auth:complete", {
+          provider,
+          accessToken: tokenData.accessToken,
+          expiresAt: tokenData.expiresAt
+        });
+      }
+      this.authState.set(provider, { authenticated: true });
+    } catch (error) {
+      this.eventEmitter.emit("auth:error", { provider, error });
+      throw error;
+    }
+  }
+  async handleOAuthCallback(params) {
+    try {
+      const result = await this.oauthManager.handleCallback(params.code, params.state);
+      this.authState.set(result.provider, { authenticated: true });
+      this.eventEmitter.emit("auth:complete", {
+        provider: result.provider,
+        accessToken: result.accessToken,
+        expiresAt: result.expiresAt
+      });
+    } catch (error) {
+      this.eventEmitter.emit("auth:error", {
+        provider: "unknown",
+        error
+      });
+      throw error;
+    }
+  }
+  getProviderToken(provider) {
+    return this.oauthManager.getProviderToken(provider);
+  }
+  setProviderToken(provider, tokenData) {
+    this.oauthManager.setProviderToken(provider, tokenData);
+    this.authState.set(provider, { authenticated: true });
+  }
+  getAllProviderTokens() {
+    const tokens = {};
+    const allTokens = this.oauthManager.getAllProviderTokens();
+    for (const [provider, tokenData] of allTokens.entries()) {
+      tokens[provider] = tokenData.accessToken;
+    }
+    return tokens;
+  }
+  async reauthenticate(provider) {
+    const state = this.authState.get(provider);
+    if (!state) {
+      throw new Error(`Provider "${provider}" not found in configured integrations`);
+    }
+    if (!this.onReauthRequired) {
+      throw new Error("No re-authentication handler configured. Set onReauthRequired in client config.");
+    }
+    const lastError = state.lastError || new (await Promise.resolve().then(() => (init_errors(), exports_errors))).AuthenticationError("Manual re-authentication requested", undefined, provider);
+    const success = await this.onReauthRequired({
+      provider,
+      error: lastError
+    });
+    if (success) {
+      this.authState.set(provider, { authenticated: true });
+    }
+    return success;
+  }
+}
+// ../server.ts
+function toSolidStartHandler(clientOrHandlerOrOptions, _redirectOptions) {
+  if (clientOrHandlerOrOptions && clientOrHandlerOrOptions.handler && typeof clientOrHandlerOrOptions.handler === "function") {
+    const baseHandler = clientOrHandlerOrOptions.handler;
+    const handler2 = async (event) => {
+      return baseHandler(event.request);
+    };
+    return {
+      GET: handler2,
+      POST: handler2,
+      PATCH: handler2,
+      PUT: handler2,
+      DELETE: handler2
+    };
+  }
+  if (typeof clientOrHandlerOrOptions === "function") {
+    const baseHandler = clientOrHandlerOrOptions;
+    const handler2 = async (event) => {
+      return baseHandler(event.request);
+    };
+    return {
+      GET: handler2,
+      POST: handler2,
+      PATCH: handler2,
+      PUT: handler2,
+      DELETE: handler2
+    };
+  }
+  const options = clientOrHandlerOrOptions;
+  if (!options.providers || Object.keys(options.providers).length === 0) {
+    throw new Error("toSolidStartHandler requires either a handler function or a providers config object");
+  }
+  const { providers, serverUrl, apiKey, redirectUrl, errorRedirectUrl } = options;
+  const nextHandler = createNextOAuthHandler({
+    providers,
+    serverUrl,
+    apiKey
+  });
+  const routes = nextHandler.toNextJsHandler({
+    redirectUrl: redirectUrl || "/",
+    errorRedirectUrl: errorRedirectUrl || "/auth-error"
+  });
+  const handler = async (event) => {
+    const method = event.request.method.toUpperCase();
+    const url = new URL(event.request.url);
+    const pathParts = url.pathname.split("/").filter(Boolean);
+    const integrateIndex = pathParts.indexOf("integrate");
+    const segments = integrateIndex >= 0 ? pathParts.slice(integrateIndex + 1) : [];
+    const context = {
+      params: segments
+    };
+    if (method === "POST") {
+      return routes.POST(event.request, { params: { all: context.params } });
+    } else if (method === "GET") {
+      return routes.GET(event.request, { params: { all: context.params } });
+    } else {
+      return Response.json({ error: `Method ${method} not allowed` }, { status: 405 });
+    }
+  };
+  return {
+    GET: handler,
+    POST: handler,
+    PATCH: handler,
+    PUT: handler,
+    DELETE: handler
+  };
+}
+function toSvelteKitHandler(clientOrHandlerOrOptions, _redirectOptions) {
+  if (clientOrHandlerOrOptions && clientOrHandlerOrOptions.handler && typeof clientOrHandlerOrOptions.handler === "function") {
+    const baseHandler = clientOrHandlerOrOptions.handler;
+    return async (event) => {
+      const all = event.params?.all;
+      return baseHandler(event.request, { params: { all } });
+    };
+  }
+  if (typeof clientOrHandlerOrOptions === "function") {
+    const baseHandler = clientOrHandlerOrOptions;
+    return async (event) => {
+      const all = event.params?.all;
+      return baseHandler(event.request, { params: { all } });
+    };
+  }
+  const options = clientOrHandlerOrOptions;
+  if (!options.providers || Object.keys(options.providers).length === 0) {
+    throw new Error("toSvelteKitHandler requires either a handler function or a providers config object");
+  }
+  const { providers, serverUrl, apiKey, redirectUrl, errorRedirectUrl } = options;
+  const nextHandler = createNextOAuthHandler({
+    providers,
+    serverUrl,
+    apiKey
+  });
+  const routes = nextHandler.toNextJsHandler({
+    redirectUrl: redirectUrl || "/",
+    errorRedirectUrl: errorRedirectUrl || "/auth-error"
+  });
+  return async (event) => {
+    const method = event.request.method.toUpperCase();
+    const all = event.params?.all;
+    const context = {
+      params: Array.isArray(all) ? all : all ? all.split("/").filter(Boolean) : []
+    };
+    if (method === "POST") {
+      return routes.POST(event.request, { params: { all: context.params } });
+    } else if (method === "GET") {
+      return routes.GET(event.request, { params: { all: context.params } });
+    } else {
+      return Response.json({ error: `Method ${method} not allowed` }, { status: 405 });
+    }
+  };
+}
+// svelte-kit.ts
+async function svelteKitHandler({
+  authConfig,
+  event,
+  resolve,
+  basePath = "/api/integrate"
+}) {
+  const { url } = event;
+  const baseUrl = new URL(basePath, url.origin);
+  if (!url.pathname.startsWith(baseUrl.pathname)) {
+    return resolve(event);
+  }
+  return authConfig(event.request);
+}
+
+// tanstack-start.ts
+function toTanStackStartHandler(handler) {
+  const baseHandler = async ({ request }) => {
+    return handler(request);
+  };
+  return {
+    GET: baseHandler,
+    POST: baseHandler
+  };
+}
+var createTanStackOAuthHandler = toTanStackStartHandler;
+export {
+  toTanStackStartHandler,
+  toSvelteKitHandler,
+  toSolidStartHandler,
+  toNodeHandler,
+  svelteKitHandler,
+  setGlobalOAuthConfig,
+  getGlobalOAuthConfig,
+  fromNodeHeaders,
+  createTanStackOAuthHandler,
+  createNextOAuthHandler,
+  POST,
+  OAuthHandler,
+  GET
+};