npm - kojee-mcp - Versions diffs - 0.2.0 → 0.2.2 - Mend

kojee-mcp 0.2.0 → 0.2.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (5) hide show

package/dist/{chunk-O5UYOIQX.js → chunk-QKAUM3TR.js} +43 -6
package/dist/cli.js +12 -16
package/dist/index.d.ts +3 -0
package/dist/index.js +1 -1
package/package.json +1 -1

package/dist/{chunk-O5UYOIQX.js → chunk-QKAUM3TR.js} RENAMED Viewed

@@ -1,4 +1,5 @@
 // src/index.ts
+import fs2 from "fs";
 import path2 from "path";
 // src/auth/auth-module.ts
@@ -532,6 +533,11 @@ var ToolRegistry = class {
     const result = await this.gateway.sendRpc("tools/list", {
       include_schema: true
     });
+    const maybeError = result;
+    if (maybeError.isError) {
+      const msg = maybeError.content?.[0]?.text ?? "unknown error";
+      throw new Error(`Gateway rejected tools/list: ${msg}`);
+    }
     const toolList = result?.tools;
     if (!toolList || !Array.isArray(toolList)) {
       console.error("[tools] No tools returned from gateway");
@@ -628,9 +634,27 @@ var DEFAULT_KEYSTORE_PATH = path2.join(
   ".kojee",
   "keypair.json"
 );
+function isDPoPEnrollmentError(err) {
+  const msg = String(err?.message ?? err ?? "").toLowerCase();
+  if (msg.includes("invalid or expired") && msg.includes("token")) return false;
+  if (msg.includes("generate a new")) return false;
+  return msg.includes("401") || msg.includes("authentication failed") || msg.includes("dpop") || msg.includes("key enrollment") || msg.includes("kid");
+}
 async function startProxy(config) {
   const keystorePath = config.keystorePath || DEFAULT_KEYSTORE_PATH;
   console.error(`[kojee-mcp] Starting proxy for ${config.url}`);
+  const registry = await enrollAndDiscover(config, keystorePath);
+  console.error(
+    `[kojee-mcp] Ready \u2014 ${registry.toolCount} tools available from ${config.url}`
+  );
+  const server = createMcpServer(registry);
+  process.stdin.on("end", () => {
+    console.error("[kojee-mcp] stdin closed, exiting");
+    process.exit(0);
+  });
+  await startMcpServer(server);
+}
+async function enrollAndDiscover(config, keystorePath, isRetry = false) {
   const auth = new AuthModule(config.token, config.url, keystorePath);
   const keyPair = await auth.ensureEnrolled();
   const sessionId = GatewayClient.deriveSessionId(config.token);
@@ -643,12 +667,25 @@ async function startProxy(config) {
     sessionId
   );
   const registry = new ToolRegistry(gateway);
-  await registry.discoverTools();
-  console.error(
-    `[kojee-mcp] Ready \u2014 ${registry.toolCount} tools available from ${config.url}`
-  );
-  const server = createMcpServer(registry);
-  await startMcpServer(server);
+  try {
+    await registry.discoverTools();
+    return registry;
+  } catch (err) {
+    if (isRetry || !isDPoPEnrollmentError(err)) {
+      throw err;
+    }
+    console.error(
+      "[kojee-mcp] Auth failed, attempting recovery with fresh enrollment..."
+    );
+    try {
+      if (fs2.existsSync(keystorePath)) {
+        fs2.unlinkSync(keystorePath);
+      }
+    } catch (unlinkErr) {
+      console.error("[kojee-mcp] Could not remove stale keystore:", unlinkErr);
+    }
+    return enrollAndDiscover(config, keystorePath, true);
+  }
 }
 export {

package/dist/cli.js CHANGED Viewed

@@ -1,40 +1,36 @@
 #!/usr/bin/env node
 import {
   startProxy
-} from "./chunk-O5UYOIQX.js";
+} from "./chunk-QKAUM3TR.js";
 // src/cli.ts
 import { Command } from "commander";
+import crypto from "crypto";
 import path from "path";
-var DEFAULT_KEYSTORE_PATH = path.join(
-  process.env["HOME"] ?? "~",
-  ".kojee",
-  "keypair.json"
-);
+var KOJEE_DIR = path.join(process.env["HOME"] ?? "~", ".kojee");
+function deriveKeystorePath(token) {
+  const hash = crypto.createHash("sha256").update(token).digest("hex").slice(0, 12);
+  return path.join(KOJEE_DIR, `keypair-${hash}.json`);
+}
 var program = new Command().name("kojee-mcp").description(
   "Local MCP proxy for Kojee \u2014 handles DPoP auth, tool discovery, and governance transparently"
-).version("0.1.0").requiredOption(
+).version("0.2.2").requiredOption(
   "--token <token>",
-  "Gateway token (gw_...)"
+  "Gateway token"
 ).requiredOption(
   "--url <url>",
   "Broker base URL (e.g. https://kojee.ai)"
 ).option(
   "--keystore-path <path>",
-  "Path to persisted keypair file",
-  DEFAULT_KEYSTORE_PATH
+  "Path to persisted keypair file (defaults to per-token path under ~/.kojee/)"
 ).action(async (opts) => {
-  if (!opts.token.startsWith("gw_")) {
-    console.error(
-      "Warning: Gateway token does not start with 'gw_'. Ensure you are using a valid gateway token."
-    );
-  }
   const url = opts.url.replace(/\/+$/, "");
+  const keystorePath = opts.keystorePath ?? deriveKeystorePath(opts.token);
   try {
     await startProxy({
       token: opts.token,
       url,
-      keystorePath: opts.keystorePath
+      keystorePath
     });
   } catch (err) {
     console.error("[kojee-mcp] Fatal error:", err);

package/dist/index.d.ts CHANGED Viewed

@@ -13,6 +13,9 @@ interface ProxyConfig {
  * 3. Create gateway client
  * 4. Discover tools from gateway
  * 5. Start MCP stdio server
+ *
+ * If step 4 fails with an auth error that looks like a stale keystore,
+ * we wipe the keystore and retry once with a fresh enrollment.
  */
 declare function startProxy(config: ProxyConfig): Promise<void>;

package/dist/index.js CHANGED Viewed

@@ -1,6 +1,6 @@
 import {
   startProxy
-} from "./chunk-O5UYOIQX.js";
+} from "./chunk-QKAUM3TR.js";
 export {
   startProxy
 };

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "kojee-mcp",
-  "version": "0.2.0",
+  "version": "0.2.2",
   "description": "Local MCP proxy for Kojee — handles DPoP auth, tool discovery, and governance transparently",
   "type": "module",
   "main": "dist/index.js",