mcp-creatio 0.6.2 → 0.6.4
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/README.md +280 -156
- package/dist/cli.d.ts.map +1 -1
- package/dist/cli.js +27 -10
- package/dist/cli.js.map +1 -1
- package/dist/config-builder.d.ts +8 -0
- package/dist/config-builder.d.ts.map +1 -1
- package/dist/config-builder.js +147 -43
- package/dist/config-builder.js.map +1 -1
- package/dist/consts.d.ts.map +1 -1
- package/dist/consts.js +2 -1
- package/dist/consts.js.map +1 -1
- package/dist/creatio/auth/auth-manager.d.ts.map +1 -1
- package/dist/creatio/auth/auth-manager.js +5 -2
- package/dist/creatio/auth/auth-manager.js.map +1 -1
- package/dist/creatio/auth/auth.d.ts +4 -31
- package/dist/creatio/auth/auth.d.ts.map +1 -1
- package/dist/creatio/auth/auth.js +20 -26
- package/dist/creatio/auth/auth.js.map +1 -1
- package/dist/creatio/auth/constants.d.ts +14 -0
- package/dist/creatio/auth/constants.d.ts.map +1 -0
- package/dist/creatio/auth/constants.js +20 -0
- package/dist/creatio/auth/constants.js.map +1 -0
- package/dist/creatio/auth/contracts.d.ts +15 -0
- package/dist/creatio/auth/contracts.d.ts.map +1 -0
- package/dist/creatio/auth/contracts.js +3 -0
- package/dist/creatio/auth/contracts.js.map +1 -0
- package/dist/creatio/auth/headers.d.ts +3 -0
- package/dist/creatio/auth/headers.d.ts.map +1 -0
- package/dist/creatio/auth/headers.js +15 -0
- package/dist/creatio/auth/headers.js.map +1 -0
- package/dist/creatio/auth/identity.d.ts +8 -0
- package/dist/creatio/auth/identity.d.ts.map +1 -0
- package/dist/creatio/auth/identity.js +18 -0
- package/dist/creatio/auth/identity.js.map +1 -0
- package/dist/creatio/auth/index.d.ts +4 -3
- package/dist/creatio/auth/index.d.ts.map +1 -1
- package/dist/creatio/auth/index.js +5 -3
- package/dist/creatio/auth/index.js.map +1 -1
- package/dist/creatio/auth/providers/base-oauth2-provider.d.ts +13 -7
- package/dist/creatio/auth/providers/base-oauth2-provider.d.ts.map +1 -1
- package/dist/creatio/auth/providers/base-oauth2-provider.js +29 -19
- package/dist/creatio/auth/providers/base-oauth2-provider.js.map +1 -1
- package/dist/creatio/auth/providers/base-provider.js +1 -1
- package/dist/creatio/auth/providers/base-provider.js.map +1 -1
- package/dist/creatio/auth/providers/broker-provider.d.ts +20 -0
- package/dist/creatio/auth/providers/broker-provider.d.ts.map +1 -0
- package/dist/creatio/auth/providers/broker-provider.js +72 -0
- package/dist/creatio/auth/providers/broker-provider.js.map +1 -0
- package/dist/creatio/auth/providers/creatio-oauth-client.d.ts +27 -0
- package/dist/creatio/auth/providers/creatio-oauth-client.d.ts.map +1 -0
- package/dist/creatio/auth/providers/creatio-oauth-client.js +122 -0
- package/dist/creatio/auth/providers/creatio-oauth-client.js.map +1 -0
- package/dist/creatio/auth/providers/index.d.ts +3 -1
- package/dist/creatio/auth/providers/index.d.ts.map +1 -1
- package/dist/creatio/auth/providers/index.js +3 -1
- package/dist/creatio/auth/providers/index.js.map +1 -1
- package/dist/creatio/auth/providers/oauth2-bearer-provider.d.ts +17 -0
- package/dist/creatio/auth/providers/oauth2-bearer-provider.d.ts.map +1 -0
- package/dist/creatio/auth/providers/oauth2-bearer-provider.js +33 -0
- package/dist/creatio/auth/providers/oauth2-bearer-provider.js.map +1 -0
- package/dist/creatio/auth/providers/oauth2-provider.d.ts +2 -2
- package/dist/creatio/auth/providers/oauth2-provider.d.ts.map +1 -1
- package/dist/creatio/auth/providers/oauth2-provider.js +4 -9
- package/dist/creatio/auth/providers/oauth2-provider.js.map +1 -1
- package/dist/creatio/auth/providers/type.d.ts +20 -1
- package/dist/creatio/auth/providers/type.d.ts.map +1 -1
- package/dist/creatio/auth/providers/type.js +22 -2
- package/dist/creatio/auth/providers/type.js.map +1 -1
- package/dist/creatio/client-config.d.ts +26 -5
- package/dist/creatio/client-config.d.ts.map +1 -1
- package/dist/creatio/engines/admin-operation-engine.d.ts +1 -1
- package/dist/creatio/engines/admin-operation-engine.d.ts.map +1 -1
- package/dist/creatio/engines/admin-operation-engine.js +3 -3
- package/dist/creatio/engines/admin-operation-engine.js.map +1 -1
- package/dist/creatio/engines/configuration-engine.d.ts +1 -1
- package/dist/creatio/engines/configuration-engine.d.ts.map +1 -1
- package/dist/creatio/engines/configuration-engine.js +3 -3
- package/dist/creatio/engines/configuration-engine.js.map +1 -1
- package/dist/creatio/engines/crud-engine.d.ts +1 -1
- package/dist/creatio/engines/crud-engine.d.ts.map +1 -1
- package/dist/creatio/engines/crud-engine.js +4 -4
- package/dist/creatio/engines/crud-engine.js.map +1 -1
- package/dist/creatio/engines/engine-manager.d.ts +4 -2
- package/dist/creatio/engines/engine-manager.d.ts.map +1 -1
- package/dist/creatio/engines/engine-manager.js +9 -10
- package/dist/creatio/engines/engine-manager.js.map +1 -1
- package/dist/creatio/engines/engine.d.ts.map +1 -1
- package/dist/creatio/engines/engine.js +12 -1
- package/dist/creatio/engines/engine.js.map +1 -1
- package/dist/creatio/engines/feature-engine.d.ts +1 -1
- package/dist/creatio/engines/feature-engine.d.ts.map +1 -1
- package/dist/creatio/engines/feature-engine.js +3 -3
- package/dist/creatio/engines/feature-engine.js.map +1 -1
- package/dist/creatio/engines/process-engine.d.ts +1 -1
- package/dist/creatio/engines/process-engine.d.ts.map +1 -1
- package/dist/creatio/engines/process-engine.js +3 -3
- package/dist/creatio/engines/process-engine.js.map +1 -1
- package/dist/creatio/engines/sys-settings-engine.d.ts +1 -1
- package/dist/creatio/engines/sys-settings-engine.d.ts.map +1 -1
- package/dist/creatio/engines/sys-settings-engine.js +3 -3
- package/dist/creatio/engines/sys-settings-engine.js.map +1 -1
- package/dist/creatio/engines/user-engine.d.ts +1 -1
- package/dist/creatio/engines/user-engine.d.ts.map +1 -1
- package/dist/creatio/engines/user-engine.js +3 -3
- package/dist/creatio/engines/user-engine.js.map +1 -1
- package/dist/creatio/provider-context.d.ts +3 -0
- package/dist/creatio/provider-context.d.ts.map +1 -1
- package/dist/creatio/services/client-cache-hash-client.d.ts +22 -0
- package/dist/creatio/services/client-cache-hash-client.d.ts.map +1 -0
- package/dist/creatio/services/client-cache-hash-client.js +56 -0
- package/dist/creatio/services/client-cache-hash-client.js.map +1 -0
- package/dist/creatio/services/creatio-service-context.d.ts +6 -1
- package/dist/creatio/services/creatio-service-context.d.ts.map +1 -1
- package/dist/creatio/services/creatio-service-context.js +15 -1
- package/dist/creatio/services/creatio-service-context.js.map +1 -1
- package/dist/creatio/services/crud-provider-factory.d.ts +4 -0
- package/dist/creatio/services/crud-provider-factory.d.ts.map +1 -1
- package/dist/creatio/services/crud-provider-factory.js +1 -1
- package/dist/creatio/services/crud-provider-factory.js.map +1 -1
- package/dist/creatio/services/dataservice/data-service-column-values.d.ts.map +1 -1
- package/dist/creatio/services/dataservice/data-service-crud-provider.d.ts +5 -3
- package/dist/creatio/services/dataservice/data-service-crud-provider.d.ts.map +1 -1
- package/dist/creatio/services/dataservice/data-service-crud-provider.js +8 -6
- package/dist/creatio/services/dataservice/data-service-crud-provider.js.map +1 -1
- package/dist/creatio/services/dataservice/data-service-filter-translator.d.ts.map +1 -1
- package/dist/creatio/services/dataservice/data-service-filter-translator.js +7 -2
- package/dist/creatio/services/dataservice/data-service-filter-translator.js.map +1 -1
- package/dist/creatio/services/dataservice/data-service-query-builder.d.ts.map +1 -1
- package/dist/creatio/services/dataservice/data-service-query-builder.js.map +1 -1
- package/dist/creatio/services/dataservice/data-service-schema.d.ts +6 -4
- package/dist/creatio/services/dataservice/data-service-schema.d.ts.map +1 -1
- package/dist/creatio/services/dataservice/data-service-schema.js +29 -18
- package/dist/creatio/services/dataservice/data-service-schema.js.map +1 -1
- package/dist/creatio/services/dataservice/data-service-transport.d.ts +4 -1
- package/dist/creatio/services/dataservice/data-service-transport.d.ts.map +1 -1
- package/dist/creatio/services/dataservice/data-service-transport.js +8 -3
- package/dist/creatio/services/dataservice/data-service-transport.js.map +1 -1
- package/dist/creatio/services/dataservice/data-service-types.d.ts +0 -19
- package/dist/creatio/services/dataservice/data-service-types.d.ts.map +1 -1
- package/dist/creatio/services/dataservice/data-service-value-type.d.ts +2 -1
- package/dist/creatio/services/dataservice/data-service-value-type.d.ts.map +1 -1
- package/dist/creatio/services/dataservice/data-service-value-type.js +20 -16
- package/dist/creatio/services/dataservice/data-service-value-type.js.map +1 -1
- package/dist/creatio/services/http-client.d.ts +13 -0
- package/dist/creatio/services/http-client.d.ts.map +1 -1
- package/dist/creatio/services/http-client.js +26 -2
- package/dist/creatio/services/http-client.js.map +1 -1
- package/dist/creatio/services/identifiers.d.ts +10 -0
- package/dist/creatio/services/identifiers.d.ts.map +1 -0
- package/dist/creatio/services/identifiers.js +20 -0
- package/dist/creatio/services/identifiers.js.map +1 -0
- package/dist/creatio/services/index.d.ts +2 -0
- package/dist/creatio/services/index.d.ts.map +1 -1
- package/dist/creatio/services/index.js +2 -0
- package/dist/creatio/services/index.js.map +1 -1
- package/dist/creatio/services/odata/metadata-store.d.ts +16 -3
- package/dist/creatio/services/odata/metadata-store.d.ts.map +1 -1
- package/dist/creatio/services/odata/metadata-store.js +65 -38
- package/dist/creatio/services/odata/metadata-store.js.map +1 -1
- package/dist/creatio/services/odata/odata-crud-provider.d.ts.map +1 -1
- package/dist/creatio/services/odata/odata-crud-provider.js +10 -25
- package/dist/creatio/services/odata/odata-crud-provider.js.map +1 -1
- package/dist/creatio/services/odata/odata-query-translator.d.ts +4 -5
- package/dist/creatio/services/odata/odata-query-translator.d.ts.map +1 -1
- package/dist/creatio/services/odata/odata-query-translator.js +32 -20
- package/dist/creatio/services/odata/odata-query-translator.js.map +1 -1
- package/dist/creatio/services/schema-freshness-gate.d.ts +26 -0
- package/dist/creatio/services/schema-freshness-gate.d.ts.map +1 -0
- package/dist/creatio/services/schema-freshness-gate.js +58 -0
- package/dist/creatio/services/schema-freshness-gate.js.map +1 -0
- package/dist/creatio/services/user-info-provider.d.ts.map +1 -1
- package/dist/creatio/services/user-info-provider.js +2 -2
- package/dist/creatio/services/user-info-provider.js.map +1 -1
- package/dist/index.js +35 -4
- package/dist/index.js.map +1 -1
- package/dist/log.d.ts +1 -1
- package/dist/log.d.ts.map +1 -1
- package/dist/log.js +6 -2
- package/dist/log.js.map +1 -1
- package/dist/server/bearer/base-url-guard.d.ts +20 -0
- package/dist/server/bearer/base-url-guard.d.ts.map +1 -0
- package/dist/server/bearer/base-url-guard.js +55 -0
- package/dist/server/bearer/base-url-guard.js.map +1 -0
- package/dist/server/bearer/bearer-edge.d.ts +42 -0
- package/dist/server/bearer/bearer-edge.d.ts.map +1 -0
- package/dist/server/bearer/bearer-edge.js +122 -0
- package/dist/server/bearer/bearer-edge.js.map +1 -0
- package/dist/server/bearer/bearer-token.d.ts +27 -0
- package/dist/server/bearer/bearer-token.d.ts.map +1 -0
- package/dist/server/bearer/bearer-token.js +50 -0
- package/dist/server/bearer/bearer-token.js.map +1 -0
- package/dist/server/bearer/index.d.ts +3 -0
- package/dist/server/bearer/index.d.ts.map +1 -0
- package/dist/server/bearer/index.js +19 -0
- package/dist/server/bearer/index.js.map +1 -0
- package/dist/server/http/auth-edge.d.ts +26 -0
- package/dist/server/http/auth-edge.d.ts.map +1 -0
- package/dist/server/http/auth-edge.js +75 -0
- package/dist/server/http/auth-edge.js.map +1 -0
- package/dist/server/http/broker-handlers.d.ts +45 -0
- package/dist/server/http/broker-handlers.d.ts.map +1 -0
- package/dist/server/http/broker-handlers.js +224 -0
- package/dist/server/http/broker-handlers.js.map +1 -0
- package/dist/server/http/{httpServer.d.ts → http-server.d.ts} +5 -13
- package/dist/server/http/http-server.d.ts.map +1 -0
- package/dist/server/http/{httpServer.js → http-server.js} +19 -53
- package/dist/server/http/http-server.js.map +1 -0
- package/dist/server/http/index.d.ts +1 -3
- package/dist/server/http/index.d.ts.map +1 -1
- package/dist/server/http/index.js +1 -3
- package/dist/server/http/index.js.map +1 -1
- package/dist/server/http/mcp-handlers.d.ts.map +1 -1
- package/dist/server/http/mcp-handlers.js +16 -3
- package/dist/server/http/mcp-handlers.js.map +1 -1
- package/dist/server/http/middleware.d.ts +3 -4
- package/dist/server/http/middleware.d.ts.map +1 -1
- package/dist/server/http/middleware.js +33 -23
- package/dist/server/http/middleware.js.map +1 -1
- package/dist/server/http/public-origin.d.ts +10 -0
- package/dist/server/http/public-origin.d.ts.map +1 -0
- package/dist/server/http/public-origin.js +19 -0
- package/dist/server/http/public-origin.js.map +1 -0
- package/dist/server/http/rate-limiter.d.ts +1 -1
- package/dist/server/http/rate-limiter.d.ts.map +1 -1
- package/dist/server/http/rate-limiter.js +11 -11
- package/dist/server/http/rate-limiter.js.map +1 -1
- package/dist/server/http-agent.d.ts +9 -0
- package/dist/server/http-agent.d.ts.map +1 -0
- package/dist/server/http-agent.js +35 -0
- package/dist/server/http-agent.js.map +1 -0
- package/dist/server/index.d.ts +2 -0
- package/dist/server/index.d.ts.map +1 -1
- package/dist/server/index.js +2 -0
- package/dist/server/index.js.map +1 -1
- package/dist/server/keepalive.d.ts +26 -0
- package/dist/server/keepalive.d.ts.map +1 -0
- package/dist/server/keepalive.js +64 -0
- package/dist/server/keepalive.js.map +1 -0
- package/dist/server/mcp/creatio-rest.d.ts +6 -0
- package/dist/server/mcp/creatio-rest.d.ts.map +1 -1
- package/dist/server/mcp/creatio-rest.js +21 -3
- package/dist/server/mcp/creatio-rest.js.map +1 -1
- package/dist/server/mcp/crtmcp/crt-mcp-client.d.ts +1 -1
- package/dist/server/mcp/crtmcp/crt-mcp-client.d.ts.map +1 -1
- package/dist/server/mcp/crtmcp/crt-mcp-client.js +16 -13
- package/dist/server/mcp/crtmcp/crt-mcp-client.js.map +1 -1
- package/dist/server/mcp/crtmcp/crt-mcp-tool-preparer.d.ts +2 -2
- package/dist/server/mcp/crtmcp/crt-mcp-tool-preparer.d.ts.map +1 -1
- package/dist/server/mcp/crtmcp/crt-mcp-tool-preparer.js +17 -17
- package/dist/server/mcp/crtmcp/crt-mcp-tool-preparer.js.map +1 -1
- package/dist/server/mcp/dataforge/dataforge-client.d.ts +12 -12
- package/dist/server/mcp/dataforge/dataforge-client.d.ts.map +1 -1
- package/dist/server/mcp/dataforge/dataforge-client.js +40 -47
- package/dist/server/mcp/dataforge/dataforge-client.js.map +1 -1
- package/dist/server/mcp/dataforge/dataforge-tool-preparer.d.ts +2 -2
- package/dist/server/mcp/dataforge/dataforge-tool-preparer.d.ts.map +1 -1
- package/dist/server/mcp/dataforge/dataforge-tool-preparer.js +9 -9
- package/dist/server/mcp/dataforge/dataforge-tool-preparer.js.map +1 -1
- package/dist/server/mcp/filters.d.ts.map +1 -1
- package/dist/server/mcp/filters.js +4 -1
- package/dist/server/mcp/filters.js.map +1 -1
- package/dist/server/mcp/globalsearch/globalsearch-client.d.ts +4 -4
- package/dist/server/mcp/globalsearch/globalsearch-client.d.ts.map +1 -1
- package/dist/server/mcp/globalsearch/globalsearch-client.js +39 -50
- package/dist/server/mcp/globalsearch/globalsearch-client.js.map +1 -1
- package/dist/server/mcp/globalsearch/globalsearch-tool-preparer.d.ts +1 -1
- package/dist/server/mcp/globalsearch/globalsearch-tool-preparer.d.ts.map +1 -1
- package/dist/server/mcp/globalsearch/globalsearch-tool-preparer.js +1 -1
- package/dist/server/mcp/globalsearch/globalsearch-tool-preparer.js.map +1 -1
- package/dist/server/mcp/server.d.ts +35 -8
- package/dist/server/mcp/server.d.ts.map +1 -1
- package/dist/server/mcp/server.js +113 -45
- package/dist/server/mcp/server.js.map +1 -1
- package/dist/server/mcp/tools-data.d.ts +2 -2
- package/dist/server/mcp/tools-data.d.ts.map +1 -1
- package/dist/server/mcp/tools-data.js +1 -1
- package/dist/server/mcp/tools-data.js.map +1 -1
- package/dist/server/oauth/oauth-server.d.ts +41 -10
- package/dist/server/oauth/oauth-server.d.ts.map +1 -1
- package/dist/server/oauth/oauth-server.js +82 -48
- package/dist/server/oauth/oauth-server.js.map +1 -1
- package/dist/server/oauth/storage.d.ts +42 -5
- package/dist/server/oauth/storage.d.ts.map +1 -1
- package/dist/server/oauth/storage.js +81 -18
- package/dist/server/oauth/storage.js.map +1 -1
- package/dist/server/oauth/token-manager.d.ts +21 -4
- package/dist/server/oauth/token-manager.d.ts.map +1 -1
- package/dist/server/oauth/token-manager.js +18 -19
- package/dist/server/oauth/token-manager.js.map +1 -1
- package/dist/server/oauth/types.d.ts +0 -12
- package/dist/server/oauth/types.d.ts.map +1 -1
- package/dist/server/oauth/validators.d.ts.map +1 -1
- package/dist/server/oauth/validators.js +14 -5
- package/dist/server/oauth/validators.js.map +1 -1
- package/dist/sessions/index.d.ts +1 -1
- package/dist/sessions/index.d.ts.map +1 -1
- package/dist/sessions/index.js +1 -1
- package/dist/sessions/index.js.map +1 -1
- package/dist/sessions/redis-token-store.d.ts +22 -0
- package/dist/sessions/redis-token-store.d.ts.map +1 -0
- package/dist/sessions/redis-token-store.js +70 -0
- package/dist/sessions/redis-token-store.js.map +1 -0
- package/dist/sessions/session-context.d.ts +21 -40
- package/dist/sessions/session-context.d.ts.map +1 -1
- package/dist/sessions/session-context.js +25 -105
- package/dist/sessions/session-context.js.map +1 -1
- package/dist/sessions/token-crypto.d.ts +8 -0
- package/dist/sessions/token-crypto.d.ts.map +1 -0
- package/dist/sessions/token-crypto.js +43 -0
- package/dist/sessions/token-crypto.js.map +1 -0
- package/dist/sessions/token-store.d.ts +42 -0
- package/dist/sessions/token-store.d.ts.map +1 -0
- package/dist/sessions/token-store.js +66 -0
- package/dist/sessions/token-store.js.map +1 -0
- package/dist/utils/context.d.ts +12 -0
- package/dist/utils/context.d.ts.map +1 -1
- package/dist/utils/context.js +16 -0
- package/dist/utils/context.js.map +1 -1
- package/dist/utils/env-aliases.d.ts +9 -0
- package/dist/utils/env-aliases.d.ts.map +1 -0
- package/dist/utils/env-aliases.js +61 -0
- package/dist/utils/env-aliases.js.map +1 -0
- package/dist/utils/env.d.ts +5 -0
- package/dist/utils/env.d.ts.map +1 -1
- package/dist/utils/env.js +10 -1
- package/dist/utils/env.js.map +1 -1
- package/dist/utils/index.d.ts +1 -0
- package/dist/utils/index.d.ts.map +1 -1
- package/dist/utils/index.js +1 -0
- package/dist/utils/index.js.map +1 -1
- package/dist/utils/redact.d.ts +25 -0
- package/dist/utils/redact.d.ts.map +1 -0
- package/dist/utils/redact.js +64 -0
- package/dist/utils/redact.js.map +1 -0
- package/package.json +78 -76
- package/dist/creatio/auth/providers/oauth2-code-provider.d.ts +0 -21
- package/dist/creatio/auth/providers/oauth2-code-provider.d.ts.map +0 -1
- package/dist/creatio/auth/providers/oauth2-code-provider.js +0 -251
- package/dist/creatio/auth/providers/oauth2-code-provider.js.map +0 -1
- package/dist/server/http/creatio-oauth-handlers.d.ts +0 -13
- package/dist/server/http/creatio-oauth-handlers.d.ts.map +0 -1
- package/dist/server/http/creatio-oauth-handlers.js +0 -160
- package/dist/server/http/creatio-oauth-handlers.js.map +0 -1
- package/dist/server/http/httpServer.d.ts.map +0 -1
- package/dist/server/http/httpServer.js.map +0 -1
- package/dist/server/http/mcp-oauth-handlers.d.ts +0 -11
- package/dist/server/http/mcp-oauth-handlers.d.ts.map +0 -1
- package/dist/server/http/mcp-oauth-handlers.js +0 -118
- package/dist/server/http/mcp-oauth-handlers.js.map +0 -1
- package/dist/sessions/token-refresh-scheduler.d.ts +0 -16
- package/dist/sessions/token-refresh-scheduler.d.ts.map +0 -1
- package/dist/sessions/token-refresh-scheduler.js +0 -66
- package/dist/sessions/token-refresh-scheduler.js.map +0 -1
|
@@ -1,251 +0,0 @@
|
|
|
1
|
-
"use strict";
|
|
2
|
-
var __importDefault = (this && this.__importDefault) || function (mod) {
|
|
3
|
-
return (mod && mod.__esModule) ? mod : { "default": mod };
|
|
4
|
-
};
|
|
5
|
-
Object.defineProperty(exports, "__esModule", { value: true });
|
|
6
|
-
exports.OAuth2CodeProvider = void 0;
|
|
7
|
-
const consts_1 = require("../../../consts");
|
|
8
|
-
const log_1 = __importDefault(require("../../../log"));
|
|
9
|
-
const sessions_1 = require("../../../sessions");
|
|
10
|
-
const utils_1 = require("../../../utils");
|
|
11
|
-
const auth_1 = require("../auth");
|
|
12
|
-
const base_oauth2_provider_1 = require("./base-oauth2-provider");
|
|
13
|
-
class OAuth2CodeProvider extends base_oauth2_provider_1.BaseOAuth2Provider {
|
|
14
|
-
_sessionContext = sessions_1.SessionContext.instance;
|
|
15
|
-
_tokenRefreshScheduler = new sessions_1.TokenRefreshScheduler();
|
|
16
|
-
// Deduplicates concurrent refreshes per user so K simultaneous requests trigger
|
|
17
|
-
// one refresh call, not K (avoids the thundering herd + rotating-refresh-token races).
|
|
18
|
-
_inflightRefresh = new Map();
|
|
19
|
-
authErrorCode = 'oauth2_code_need_consent';
|
|
20
|
-
get _scope() {
|
|
21
|
-
return this.authConfig.scope || 'offline_access';
|
|
22
|
-
}
|
|
23
|
-
constructor(config) {
|
|
24
|
-
super(config);
|
|
25
|
-
this._tokenRefreshScheduler.setRefreshCallback(this.refreshUserTokens.bind(this));
|
|
26
|
-
}
|
|
27
|
-
async _exchangeCodeForTokens(code) {
|
|
28
|
-
const idBase = this.getIdentityBase();
|
|
29
|
-
const url = idBase + auth_1.TOKEN_ENDPOINT;
|
|
30
|
-
const body = new URLSearchParams();
|
|
31
|
-
body.set('grant_type', 'authorization_code');
|
|
32
|
-
body.set('client_id', this.authConfig.clientId);
|
|
33
|
-
if (this.authConfig.clientSecret) {
|
|
34
|
-
body.set('client_secret', this.authConfig.clientSecret);
|
|
35
|
-
}
|
|
36
|
-
body.set('code', code);
|
|
37
|
-
body.set('redirect_uri', this.authConfig.redirectUri);
|
|
38
|
-
body.set('scope', this._scope);
|
|
39
|
-
log_1.default.creatioAuthStart(this.config.baseUrl, 'oauth2_code');
|
|
40
|
-
const res = await fetch(url, {
|
|
41
|
-
method: 'POST',
|
|
42
|
-
headers: { 'Content-Type': 'application/x-www-form-urlencoded' },
|
|
43
|
-
body: body.toString(),
|
|
44
|
-
});
|
|
45
|
-
const txt = await res.text().catch(() => '');
|
|
46
|
-
if (!res.ok || !txt) {
|
|
47
|
-
log_1.default.creatioAuthFailed(this.config.baseUrl, `token:${res.status} ${txt}`, 'oauth2_code');
|
|
48
|
-
throw new Error(`oauth2_code_token_error:${res.status}`);
|
|
49
|
-
}
|
|
50
|
-
let j;
|
|
51
|
-
try {
|
|
52
|
-
j = JSON.parse(txt);
|
|
53
|
-
}
|
|
54
|
-
catch {
|
|
55
|
-
log_1.default.creatioAuthFailed(this.config.baseUrl, 'token_parse_failed', 'oauth2_code');
|
|
56
|
-
throw new Error('oauth2_code_token_parse_failed');
|
|
57
|
-
}
|
|
58
|
-
if (!j.access_token) {
|
|
59
|
-
throw new Error('oauth2_code_no_access_token');
|
|
60
|
-
}
|
|
61
|
-
const expiresIn = Number(j.expires_in) || 180;
|
|
62
|
-
const accessTokenExpiryMs = this.computeExpiryMs(expiresIn, 1);
|
|
63
|
-
log_1.default.creatioAuthOk(this.config.baseUrl, 'oauth2_code');
|
|
64
|
-
return {
|
|
65
|
-
accessToken: String(j.access_token),
|
|
66
|
-
accessTokenExpiryMs,
|
|
67
|
-
refreshToken: j.refresh_token ? String(j.refresh_token) : undefined,
|
|
68
|
-
};
|
|
69
|
-
}
|
|
70
|
-
async _refreshTokens(refreshToken) {
|
|
71
|
-
const idBase = this.getIdentityBase();
|
|
72
|
-
const url = idBase + auth_1.TOKEN_ENDPOINT;
|
|
73
|
-
log_1.default.info('oauth2_code.refresh_attempt', { url, refreshTokenLength: refreshToken.length });
|
|
74
|
-
const body = new URLSearchParams();
|
|
75
|
-
body.set('grant_type', 'refresh_token');
|
|
76
|
-
body.set('client_id', this.authConfig.clientId);
|
|
77
|
-
if (this.authConfig.clientSecret) {
|
|
78
|
-
body.set('client_secret', this.authConfig.clientSecret);
|
|
79
|
-
}
|
|
80
|
-
body.set('refresh_token', refreshToken);
|
|
81
|
-
body.set('redirect_uri', this.authConfig.redirectUri);
|
|
82
|
-
body.set('scope', this._scope);
|
|
83
|
-
const res = await fetch(url, {
|
|
84
|
-
method: 'POST',
|
|
85
|
-
headers: { 'Content-Type': 'application/x-www-form-urlencoded' },
|
|
86
|
-
body: body.toString(),
|
|
87
|
-
});
|
|
88
|
-
const txt = await res.text().catch(() => '');
|
|
89
|
-
log_1.default.info('oauth2_code.refresh_response', {
|
|
90
|
-
status: res.status,
|
|
91
|
-
hasBody: !!txt,
|
|
92
|
-
bodyLength: txt.length,
|
|
93
|
-
});
|
|
94
|
-
if (!res.ok || !txt) {
|
|
95
|
-
log_1.default.error('oauth2_code.refresh_failed', {
|
|
96
|
-
status: res.status,
|
|
97
|
-
body: txt.substring(0, 200),
|
|
98
|
-
});
|
|
99
|
-
throw new Error(`oauth2_code_refresh_error:${res.status}`);
|
|
100
|
-
}
|
|
101
|
-
let j;
|
|
102
|
-
try {
|
|
103
|
-
j = JSON.parse(txt);
|
|
104
|
-
}
|
|
105
|
-
catch {
|
|
106
|
-
throw new Error('oauth2_code_refresh_parse_failed');
|
|
107
|
-
}
|
|
108
|
-
if (!j.access_token) {
|
|
109
|
-
throw new Error('oauth2_code_refresh_no_access_token');
|
|
110
|
-
}
|
|
111
|
-
const expiresIn = Number(j.expires_in) || 180;
|
|
112
|
-
const accessTokenExpiryMs = this.computeExpiryMs(expiresIn, 1);
|
|
113
|
-
const newTokens = {
|
|
114
|
-
accessToken: String(j.access_token),
|
|
115
|
-
accessTokenExpiryMs,
|
|
116
|
-
refreshToken: j.refresh_token ? String(j.refresh_token) : refreshToken,
|
|
117
|
-
};
|
|
118
|
-
log_1.default.info('oauth2_code.refresh_success', {
|
|
119
|
-
hasNewRefreshToken: !!j.refresh_token,
|
|
120
|
-
expiresIn,
|
|
121
|
-
accessTokenLength: newTokens.accessToken.length,
|
|
122
|
-
});
|
|
123
|
-
return newTokens;
|
|
124
|
-
}
|
|
125
|
-
throwNoTokenError() {
|
|
126
|
-
const userKey = (0, utils_1.getEffectiveUserKey)();
|
|
127
|
-
const errorMessage = userKey
|
|
128
|
-
? `${this.authErrorCode}:http://localhost:${consts_1.HTTP_MCP_PORT}/oauth/start?userKey=${encodeURIComponent(userKey)}`
|
|
129
|
-
: this.authErrorCode;
|
|
130
|
-
throw new Error(errorMessage);
|
|
131
|
-
}
|
|
132
|
-
_refreshTokensDeduped(userKey, refreshToken) {
|
|
133
|
-
const existing = this._inflightRefresh.get(userKey);
|
|
134
|
-
if (existing) {
|
|
135
|
-
return existing;
|
|
136
|
-
}
|
|
137
|
-
const promise = (async () => {
|
|
138
|
-
const updated = await this._refreshTokens(refreshToken);
|
|
139
|
-
await this._sessionContext.setTokensForUser(userKey, updated);
|
|
140
|
-
return updated;
|
|
141
|
-
})().finally(() => this._inflightRefresh.delete(userKey));
|
|
142
|
-
this._inflightRefresh.set(userKey, promise);
|
|
143
|
-
return promise;
|
|
144
|
-
}
|
|
145
|
-
async ensureAccessToken(force = false) {
|
|
146
|
-
// This provider is a process-wide singleton serving many concurrent users, so the
|
|
147
|
-
// per-user tokens in SessionContext are the only cache — never instance fields,
|
|
148
|
-
// which a second user would overwrite (token thrash + cross-user bleed).
|
|
149
|
-
const userKey = (0, utils_1.getEffectiveUserKey)();
|
|
150
|
-
if (!userKey) {
|
|
151
|
-
log_1.default.warn('oauth2_code.no_user_key');
|
|
152
|
-
return undefined;
|
|
153
|
-
}
|
|
154
|
-
const saved = await this._sessionContext.getTokensForUser(userKey);
|
|
155
|
-
if (!saved) {
|
|
156
|
-
log_1.default.warn('oauth2_code.no_saved_tokens', { userKey });
|
|
157
|
-
return undefined;
|
|
158
|
-
}
|
|
159
|
-
const now = Date.now();
|
|
160
|
-
if (!force &&
|
|
161
|
-
saved.accessToken &&
|
|
162
|
-
saved.accessTokenExpiryMs &&
|
|
163
|
-
now < saved.accessTokenExpiryMs) {
|
|
164
|
-
return saved.accessToken;
|
|
165
|
-
}
|
|
166
|
-
if (saved.refreshToken) {
|
|
167
|
-
const updated = await this._refreshTokensDeduped(userKey, saved.refreshToken);
|
|
168
|
-
return updated.accessToken;
|
|
169
|
-
}
|
|
170
|
-
await this._sessionContext.deleteTokensForUser(userKey);
|
|
171
|
-
return undefined;
|
|
172
|
-
}
|
|
173
|
-
async finishAuthorization(code) {
|
|
174
|
-
const userKey = (0, utils_1.getEffectiveUserKey)();
|
|
175
|
-
log_1.default.info('oauth2_code.finish_authorization', { userKey, hasCode: !!code });
|
|
176
|
-
if (!userKey) {
|
|
177
|
-
throw new Error('oauth2_code_missing_user');
|
|
178
|
-
}
|
|
179
|
-
const tokens = await this._exchangeCodeForTokens(code);
|
|
180
|
-
await this._sessionContext.setTokensForUser(userKey, tokens);
|
|
181
|
-
this._tokenRefreshScheduler.scheduleRefresh(userKey);
|
|
182
|
-
log_1.default.info('oauth2_code.authorization_complete', { userKey });
|
|
183
|
-
}
|
|
184
|
-
async getAuthorizeUrl(state) {
|
|
185
|
-
const idBase = this.getIdentityBase();
|
|
186
|
-
const u = new URL(idBase + auth_1.AUTHORIZE_ENDPOINT);
|
|
187
|
-
u.searchParams.set('client_id', this.authConfig.clientId);
|
|
188
|
-
u.searchParams.set('redirect_uri', this.authConfig.redirectUri);
|
|
189
|
-
u.searchParams.set('response_type', 'code');
|
|
190
|
-
u.searchParams.set('state', state);
|
|
191
|
-
const scopeParam = encodeURIComponent(this._scope);
|
|
192
|
-
u.search += '&scope=' + scopeParam;
|
|
193
|
-
log_1.default.info('oauth2_code.authorize_url', { idBase });
|
|
194
|
-
return u.toString();
|
|
195
|
-
}
|
|
196
|
-
async revoke() {
|
|
197
|
-
try {
|
|
198
|
-
const userKey = (0, utils_1.getUserKey)();
|
|
199
|
-
if (!userKey) {
|
|
200
|
-
return;
|
|
201
|
-
}
|
|
202
|
-
const saved = await this._sessionContext.getTokensForUser(userKey);
|
|
203
|
-
if (!saved?.refreshToken) {
|
|
204
|
-
await this._sessionContext.deleteTokensForUser(userKey);
|
|
205
|
-
return;
|
|
206
|
-
}
|
|
207
|
-
const idBase = this.getIdentityBase();
|
|
208
|
-
const url = idBase + auth_1.REVOCATION_ENDPOINT;
|
|
209
|
-
const body = new URLSearchParams();
|
|
210
|
-
body.set('client_id', this.authConfig.clientId);
|
|
211
|
-
if (this.authConfig.clientSecret) {
|
|
212
|
-
body.set('client_secret', this.authConfig.clientSecret);
|
|
213
|
-
}
|
|
214
|
-
body.set('token', saved.refreshToken);
|
|
215
|
-
body.set('token_type_hint', 'refresh_token');
|
|
216
|
-
const res = await fetch(url, {
|
|
217
|
-
method: 'POST',
|
|
218
|
-
headers: { 'Content-Type': 'application/x-www-form-urlencoded' },
|
|
219
|
-
body: body.toString(),
|
|
220
|
-
});
|
|
221
|
-
if (!res.ok) {
|
|
222
|
-
const t = await res.text().catch(() => '');
|
|
223
|
-
log_1.default.error('oauth2_code.revoke_failed', { status: res.status, t });
|
|
224
|
-
}
|
|
225
|
-
}
|
|
226
|
-
finally {
|
|
227
|
-
const userKey = (0, utils_1.getUserKey)();
|
|
228
|
-
if (userKey) {
|
|
229
|
-
await this._sessionContext.deleteTokensForUser(userKey);
|
|
230
|
-
this._tokenRefreshScheduler.cancelRefresh(userKey);
|
|
231
|
-
}
|
|
232
|
-
this.accessToken = undefined;
|
|
233
|
-
this.accessTokenExpiryMs = undefined;
|
|
234
|
-
}
|
|
235
|
-
}
|
|
236
|
-
async refreshUserTokens(userKey) {
|
|
237
|
-
const saved = await this._sessionContext.getTokensForUser(userKey);
|
|
238
|
-
if (!saved?.refreshToken) {
|
|
239
|
-
throw new Error('oauth2_no_refresh_token');
|
|
240
|
-
}
|
|
241
|
-
// Share the same in-flight refresh as on-demand callers to avoid colliding
|
|
242
|
-
// refresh calls that would invalidate each other's rotating refresh token.
|
|
243
|
-
await this._refreshTokensDeduped(userKey, saved.refreshToken);
|
|
244
|
-
log_1.default.info('oauth2_code.background_refresh_success', { userKey });
|
|
245
|
-
}
|
|
246
|
-
cancelAllRefresh() {
|
|
247
|
-
this._tokenRefreshScheduler.cancelAllRefresh();
|
|
248
|
-
}
|
|
249
|
-
}
|
|
250
|
-
exports.OAuth2CodeProvider = OAuth2CodeProvider;
|
|
251
|
-
//# sourceMappingURL=oauth2-code-provider.js.map
|
|
@@ -1 +0,0 @@
|
|
|
1
|
-
{"version":3,"file":"oauth2-code-provider.js","sourceRoot":"","sources":["../../../../src/creatio/auth/providers/oauth2-code-provider.ts"],"names":[],"mappings":";;;;;;AAAA,4CAAgD;AAChD,uDAA+B;AAC/B,gDAA2F;AAC3F,0CAAiE;AAEjE,kCAAkF;AAElF,iEAA4D;AAE5D,MAAa,kBAAmB,SAAQ,yCAAwC;IAC9D,eAAe,GAAG,yBAAc,CAAC,QAAQ,CAAC;IAC1C,sBAAsB,GAAG,IAAI,gCAAqB,EAAE,CAAC;IACtE,gFAAgF;IAChF,uFAAuF;IACtE,gBAAgB,GAAG,IAAI,GAAG,EAA+B,CAAC;IAExD,aAAa,GAAG,0BAA0B,CAAC;IAE9D,IAAY,MAAM;QACjB,OAAO,IAAI,CAAC,UAAU,CAAC,KAAK,IAAI,gBAAgB,CAAC;IAClD,CAAC;IAED,YAAY,MAA2B;QACtC,KAAK,CAAC,MAAM,CAAC,CAAC;QACd,IAAI,CAAC,sBAAsB,CAAC,kBAAkB,CAAC,IAAI,CAAC,iBAAiB,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC;IACnF,CAAC;IAEO,KAAK,CAAC,sBAAsB,CAAC,IAAY;QAChD,MAAM,MAAM,GAAG,IAAI,CAAC,eAAe,EAAE,CAAC;QACtC,MAAM,GAAG,GAAG,MAAM,GAAG,qBAAc,CAAC;QACpC,MAAM,IAAI,GAAG,IAAI,eAAe,EAAE,CAAC;QACnC,IAAI,CAAC,GAAG,CAAC,YAAY,EAAE,oBAAoB,CAAC,CAAC;QAC7C,IAAI,CAAC,GAAG,CAAC,WAAW,EAAE,IAAI,CAAC,UAAU,CAAC,QAAQ,CAAC,CAAC;QAChD,IAAI,IAAI,CAAC,UAAU,CAAC,YAAY,EAAE,CAAC;YAClC,IAAI,CAAC,GAAG,CAAC,eAAe,EAAE,IAAI,CAAC,UAAU,CAAC,YAAY,CAAC,CAAC;QACzD,CAAC;QACD,IAAI,CAAC,GAAG,CAAC,MAAM,EAAE,IAAI,CAAC,CAAC;QACvB,IAAI,CAAC,GAAG,CAAC,cAAc,EAAE,IAAI,CAAC,UAAU,CAAC,WAAW,CAAC,CAAC;QACtD,IAAI,CAAC,GAAG,CAAC,OAAO,EAAE,IAAI,CAAC,MAAM,CAAC,CAAC;QAC/B,aAAG,CAAC,gBAAgB,CAAC,IAAI,CAAC,MAAM,CAAC,OAAO,EAAE,aAAa,CAAC,CAAC;QACzD,MAAM,GAAG,GAAG,MAAM,KAAK,CAAC,GAAG,EAAE;YAC5B,MAAM,EAAE,MAAM;YACd,OAAO,EAAE,EAAE,cAAc,EAAE,mCAAmC,EAAE;YAChE,IAAI,EAAE,IAAI,CAAC,QAAQ,EAAE;SACrB,CAAC,CAAC;QACH,MAAM,GAAG,GAAG,MAAM,GAAG,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC,EAAE,CAAC,CAAC;QAC7C,IAAI,CAAC,GAAG,CAAC,EAAE,IAAI,CAAC,GAAG,EAAE,CAAC;YACrB,aAAG,CAAC,iBAAiB,CAAC,IAAI,CAAC,MAAM,CAAC,OAAO,EAAE,SAAS,GAAG,CAAC,MAAM,IAAI,GAAG,EAAE,EAAE,aAAa,CAAC,CAAC;YACxF,MAAM,IAAI,KAAK,CAAC,2BAA2B,GAAG,CAAC,MAAM,EAAE,CAAC,CAAC;QAC1D,CAAC;QACD,IAAI,CAAM,CAAC;QACX,IAAI,CAAC;YACJ,CAAC,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;QACrB,CAAC;QAAC,MAAM,CAAC;YACR,aAAG,CAAC,iBAAiB,CAAC,IAAI,CAAC,MAAM,CAAC,OAAO,EAAE,oBAAoB,EAAE,aAAa,CAAC,CAAC;YAChF,MAAM,IAAI,KAAK,CAAC,gCAAgC,CAAC,CAAC;QACnD,CAAC;QACD,IAAI,CAAC,CAAC,CAAC,YAAY,EAAE,CAAC;YACrB,MAAM,IAAI,KAAK,CAAC,6BAA6B,CAAC,CAAC;QAChD,CAAC;QACD,MAAM,SAAS,GAAG,MAAM,CAAC,CAAC,CAAC,UAAU,CAAC,IAAI,GAAG,CAAC;QAC9C,MAAM,mBAAmB,GAAG,IAAI,CAAC,eAAe,CAAC,SAAS,EAAE,CAAC,CAAC,CAAC;QAC/D,aAAG,CAAC,aAAa,CAAC,IAAI,CAAC,MAAM,CAAC,OAAO,EAAE,aAAa,CAAC,CAAC;QACtD,OAAO;YACN,WAAW,EAAE,MAAM,CAAC,CAAC,CAAC,YAAY,CAAC;YACnC,mBAAmB;YACnB,YAAY,EAAE,CAAC,CAAC,aAAa,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,aAAa,CAAC,CAAC,CAAC,CAAC,SAAS;SACnE,CAAC;IACH,CAAC;IAEO,KAAK,CAAC,cAAc,CAAC,YAAoB;QAChD,MAAM,MAAM,GAAG,IAAI,CAAC,eAAe,EAAE,CAAC;QACtC,MAAM,GAAG,GAAG,MAAM,GAAG,qBAAc,CAAC;QACpC,aAAG,CAAC,IAAI,CAAC,6BAA6B,EAAE,EAAE,GAAG,EAAE,kBAAkB,EAAE,YAAY,CAAC,MAAM,EAAE,CAAC,CAAC;QAC1F,MAAM,IAAI,GAAG,IAAI,eAAe,EAAE,CAAC;QACnC,IAAI,CAAC,GAAG,CAAC,YAAY,EAAE,eAAe,CAAC,CAAC;QACxC,IAAI,CAAC,GAAG,CAAC,WAAW,EAAE,IAAI,CAAC,UAAU,CAAC,QAAQ,CAAC,CAAC;QAChD,IAAI,IAAI,CAAC,UAAU,CAAC,YAAY,EAAE,CAAC;YAClC,IAAI,CAAC,GAAG,CAAC,eAAe,EAAE,IAAI,CAAC,UAAU,CAAC,YAAY,CAAC,CAAC;QACzD,CAAC;QACD,IAAI,CAAC,GAAG,CAAC,eAAe,EAAE,YAAY,CAAC,CAAC;QACxC,IAAI,CAAC,GAAG,CAAC,cAAc,EAAE,IAAI,CAAC,UAAU,CAAC,WAAW,CAAC,CAAC;QACtD,IAAI,CAAC,GAAG,CAAC,OAAO,EAAE,IAAI,CAAC,MAAM,CAAC,CAAC;QAC/B,MAAM,GAAG,GAAG,MAAM,KAAK,CAAC,GAAG,EAAE;YAC5B,MAAM,EAAE,MAAM;YACd,OAAO,EAAE,EAAE,cAAc,EAAE,mCAAmC,EAAE;YAChE,IAAI,EAAE,IAAI,CAAC,QAAQ,EAAE;SACrB,CAAC,CAAC;QACH,MAAM,GAAG,GAAG,MAAM,GAAG,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC,EAAE,CAAC,CAAC;QAC7C,aAAG,CAAC,IAAI,CAAC,8BAA8B,EAAE;YACxC,MAAM,EAAE,GAAG,CAAC,MAAM;YAClB,OAAO,EAAE,CAAC,CAAC,GAAG;YACd,UAAU,EAAE,GAAG,CAAC,MAAM;SACtB,CAAC,CAAC;QACH,IAAI,CAAC,GAAG,CAAC,EAAE,IAAI,CAAC,GAAG,EAAE,CAAC;YACrB,aAAG,CAAC,KAAK,CAAC,4BAA4B,EAAE;gBACvC,MAAM,EAAE,GAAG,CAAC,MAAM;gBAClB,IAAI,EAAE,GAAG,CAAC,SAAS,CAAC,CAAC,EAAE,GAAG,CAAC;aAC3B,CAAC,CAAC;YACH,MAAM,IAAI,KAAK,CAAC,6BAA6B,GAAG,CAAC,MAAM,EAAE,CAAC,CAAC;QAC5D,CAAC;QACD,IAAI,CAAM,CAAC;QACX,IAAI,CAAC;YACJ,CAAC,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;QACrB,CAAC;QAAC,MAAM,CAAC;YACR,MAAM,IAAI,KAAK,CAAC,kCAAkC,CAAC,CAAC;QACrD,CAAC;QACD,IAAI,CAAC,CAAC,CAAC,YAAY,EAAE,CAAC;YACrB,MAAM,IAAI,KAAK,CAAC,qCAAqC,CAAC,CAAC;QACxD,CAAC;QACD,MAAM,SAAS,GAAG,MAAM,CAAC,CAAC,CAAC,UAAU,CAAC,IAAI,GAAG,CAAC;QAC9C,MAAM,mBAAmB,GAAG,IAAI,CAAC,eAAe,CAAC,SAAS,EAAE,CAAC,CAAC,CAAC;QAC/D,MAAM,SAAS,GAAG;YACjB,WAAW,EAAE,MAAM,CAAC,CAAC,CAAC,YAAY,CAAC;YACnC,mBAAmB;YACnB,YAAY,EAAE,CAAC,CAAC,aAAa,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,aAAa,CAAC,CAAC,CAAC,CAAC,YAAY;SACtE,CAAC;QACF,aAAG,CAAC,IAAI,CAAC,6BAA6B,EAAE;YACvC,kBAAkB,EAAE,CAAC,CAAC,CAAC,CAAC,aAAa;YACrC,SAAS;YACT,iBAAiB,EAAE,SAAS,CAAC,WAAW,CAAC,MAAM;SAC/C,CAAC,CAAC;QACH,OAAO,SAAS,CAAC;IAClB,CAAC;IAES,iBAAiB;QAC1B,MAAM,OAAO,GAAG,IAAA,2BAAmB,GAAE,CAAC;QACtC,MAAM,YAAY,GAAG,OAAO;YAC3B,CAAC,CAAC,GAAG,IAAI,CAAC,aAAa,qBAAqB,sBAAa,wBAAwB,kBAAkB,CAAC,OAAO,CAAC,EAAE;YAC9G,CAAC,CAAC,IAAI,CAAC,aAAa,CAAC;QACtB,MAAM,IAAI,KAAK,CAAC,YAAY,CAAC,CAAC;IAC/B,CAAC;IAEO,qBAAqB,CAAC,OAAe,EAAE,YAAoB;QAClE,MAAM,QAAQ,GAAG,IAAI,CAAC,gBAAgB,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC;QACpD,IAAI,QAAQ,EAAE,CAAC;YACd,OAAO,QAAQ,CAAC;QACjB,CAAC;QACD,MAAM,OAAO,GAAG,CAAC,KAAK,IAAI,EAAE;YAC3B,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,cAAc,CAAC,YAAY,CAAC,CAAC;YACxD,MAAM,IAAI,CAAC,eAAe,CAAC,gBAAgB,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC;YAC9D,OAAO,OAAO,CAAC;QAChB,CAAC,CAAC,EAAE,CAAC,OAAO,CAAC,GAAG,EAAE,CAAC,IAAI,CAAC,gBAAgB,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,CAAC;QAC1D,IAAI,CAAC,gBAAgB,CAAC,GAAG,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC;QAC5C,OAAO,OAAO,CAAC;IAChB,CAAC;IAES,KAAK,CAAC,iBAAiB,CAAC,KAAK,GAAG,KAAK;QAC9C,kFAAkF;QAClF,gFAAgF;QAChF,yEAAyE;QACzE,MAAM,OAAO,GAAG,IAAA,2BAAmB,GAAE,CAAC;QACtC,IAAI,CAAC,OAAO,EAAE,CAAC;YACd,aAAG,CAAC,IAAI,CAAC,yBAAyB,CAAC,CAAC;YACpC,OAAO,SAAS,CAAC;QAClB,CAAC;QACD,MAAM,KAAK,GAAG,MAAM,IAAI,CAAC,eAAe,CAAC,gBAAgB,CAAC,OAAO,CAAC,CAAC;QACnE,IAAI,CAAC,KAAK,EAAE,CAAC;YACZ,aAAG,CAAC,IAAI,CAAC,6BAA6B,EAAE,EAAE,OAAO,EAAE,CAAC,CAAC;YACrD,OAAO,SAAS,CAAC;QAClB,CAAC;QACD,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QACvB,IACC,CAAC,KAAK;YACN,KAAK,CAAC,WAAW;YACjB,KAAK,CAAC,mBAAmB;YACzB,GAAG,GAAG,KAAK,CAAC,mBAAmB,EAC9B,CAAC;YACF,OAAO,KAAK,CAAC,WAAW,CAAC;QAC1B,CAAC;QACD,IAAI,KAAK,CAAC,YAAY,EAAE,CAAC;YACxB,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,qBAAqB,CAAC,OAAO,EAAE,KAAK,CAAC,YAAY,CAAC,CAAC;YAC9E,OAAO,OAAO,CAAC,WAAW,CAAC;QAC5B,CAAC;QACD,MAAM,IAAI,CAAC,eAAe,CAAC,mBAAmB,CAAC,OAAO,CAAC,CAAC;QACxD,OAAO,SAAS,CAAC;IAClB,CAAC;IAEM,KAAK,CAAC,mBAAmB,CAAC,IAAY;QAC5C,MAAM,OAAO,GAAG,IAAA,2BAAmB,GAAE,CAAC;QACtC,aAAG,CAAC,IAAI,CAAC,kCAAkC,EAAE,EAAE,OAAO,EAAE,OAAO,EAAE,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC;QAC3E,IAAI,CAAC,OAAO,EAAE,CAAC;YACd,MAAM,IAAI,KAAK,CAAC,0BAA0B,CAAC,CAAC;QAC7C,CAAC;QACD,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,sBAAsB,CAAC,IAAI,CAAC,CAAC;QACvD,MAAM,IAAI,CAAC,eAAe,CAAC,gBAAgB,CAAC,OAAO,EAAE,MAAM,CAAC,CAAC;QAC7D,IAAI,CAAC,sBAAsB,CAAC,eAAe,CAAC,OAAO,CAAC,CAAC;QACrD,aAAG,CAAC,IAAI,CAAC,oCAAoC,EAAE,EAAE,OAAO,EAAE,CAAC,CAAC;IAC7D,CAAC;IAEM,KAAK,CAAC,eAAe,CAAC,KAAa;QACzC,MAAM,MAAM,GAAG,IAAI,CAAC,eAAe,EAAE,CAAC;QACtC,MAAM,CAAC,GAAG,IAAI,GAAG,CAAC,MAAM,GAAG,yBAAkB,CAAC,CAAC;QAC/C,CAAC,CAAC,YAAY,CAAC,GAAG,CAAC,WAAW,EAAE,IAAI,CAAC,UAAU,CAAC,QAAQ,CAAC,CAAC;QAC1D,CAAC,CAAC,YAAY,CAAC,GAAG,CAAC,cAAc,EAAE,IAAI,CAAC,UAAU,CAAC,WAAW,CAAC,CAAC;QAChE,CAAC,CAAC,YAAY,CAAC,GAAG,CAAC,eAAe,EAAE,MAAM,CAAC,CAAC;QAC5C,CAAC,CAAC,YAAY,CAAC,GAAG,CAAC,OAAO,EAAE,KAAK,CAAC,CAAC;QACnC,MAAM,UAAU,GAAG,kBAAkB,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QACnD,CAAC,CAAC,MAAM,IAAI,SAAS,GAAG,UAAU,CAAC;QACnC,aAAG,CAAC,IAAI,CAAC,2BAA2B,EAAE,EAAE,MAAM,EAAE,CAAC,CAAC;QAClD,OAAO,CAAC,CAAC,QAAQ,EAAE,CAAC;IACrB,CAAC;IAEM,KAAK,CAAC,MAAM;QAClB,IAAI,CAAC;YACJ,MAAM,OAAO,GAAG,IAAA,kBAAU,GAAE,CAAC;YAC7B,IAAI,CAAC,OAAO,EAAE,CAAC;gBACd,OAAO;YACR,CAAC;YACD,MAAM,KAAK,GAAG,MAAM,IAAI,CAAC,eAAe,CAAC,gBAAgB,CAAC,OAAO,CAAC,CAAC;YACnE,IAAI,CAAC,KAAK,EAAE,YAAY,EAAE,CAAC;gBAC1B,MAAM,IAAI,CAAC,eAAe,CAAC,mBAAmB,CAAC,OAAO,CAAC,CAAC;gBACxD,OAAO;YACR,CAAC;YACD,MAAM,MAAM,GAAG,IAAI,CAAC,eAAe,EAAE,CAAC;YACtC,MAAM,GAAG,GAAG,MAAM,GAAG,0BAAmB,CAAC;YACzC,MAAM,IAAI,GAAG,IAAI,eAAe,EAAE,CAAC;YACnC,IAAI,CAAC,GAAG,CAAC,WAAW,EAAE,IAAI,CAAC,UAAU,CAAC,QAAQ,CAAC,CAAC;YAChD,IAAI,IAAI,CAAC,UAAU,CAAC,YAAY,EAAE,CAAC;gBAClC,IAAI,CAAC,GAAG,CAAC,eAAe,EAAE,IAAI,CAAC,UAAU,CAAC,YAAY,CAAC,CAAC;YACzD,CAAC;YACD,IAAI,CAAC,GAAG,CAAC,OAAO,EAAE,KAAK,CAAC,YAAY,CAAC,CAAC;YACtC,IAAI,CAAC,GAAG,CAAC,iBAAiB,EAAE,eAAe,CAAC,CAAC;YAC7C,MAAM,GAAG,GAAG,MAAM,KAAK,CAAC,GAAG,EAAE;gBAC5B,MAAM,EAAE,MAAM;gBACd,OAAO,EAAE,EAAE,cAAc,EAAE,mCAAmC,EAAE;gBAChE,IAAI,EAAE,IAAI,CAAC,QAAQ,EAAE;aACrB,CAAC,CAAC;YACH,IAAI,CAAC,GAAG,CAAC,EAAE,EAAE,CAAC;gBACb,MAAM,CAAC,GAAG,MAAM,GAAG,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC,EAAE,CAAC,CAAC;gBAC3C,aAAG,CAAC,KAAK,CAAC,2BAA2B,EAAE,EAAE,MAAM,EAAE,GAAG,CAAC,MAAM,EAAE,CAAC,EAAE,CAAC,CAAC;YACnE,CAAC;QACF,CAAC;gBAAS,CAAC;YACV,MAAM,OAAO,GAAG,IAAA,kBAAU,GAAE,CAAC;YAC7B,IAAI,OAAO,EAAE,CAAC;gBACb,MAAM,IAAI,CAAC,eAAe,CAAC,mBAAmB,CAAC,OAAO,CAAC,CAAC;gBACxD,IAAI,CAAC,sBAAsB,CAAC,aAAa,CAAC,OAAO,CAAC,CAAC;YACpD,CAAC;YACD,IAAI,CAAC,WAAW,GAAG,SAAS,CAAC;YAC7B,IAAI,CAAC,mBAAmB,GAAG,SAAS,CAAC;QACtC,CAAC;IACF,CAAC;IAEM,KAAK,CAAC,iBAAiB,CAAC,OAAe;QAC7C,MAAM,KAAK,GAAG,MAAM,IAAI,CAAC,eAAe,CAAC,gBAAgB,CAAC,OAAO,CAAC,CAAC;QACnE,IAAI,CAAC,KAAK,EAAE,YAAY,EAAE,CAAC;YAC1B,MAAM,IAAI,KAAK,CAAC,yBAAyB,CAAC,CAAC;QAC5C,CAAC;QACD,2EAA2E;QAC3E,2EAA2E;QAC3E,MAAM,IAAI,CAAC,qBAAqB,CAAC,OAAO,EAAE,KAAK,CAAC,YAAY,CAAC,CAAC;QAC9D,aAAG,CAAC,IAAI,CAAC,wCAAwC,EAAE,EAAE,OAAO,EAAE,CAAC,CAAC;IACjE,CAAC;IAEM,gBAAgB;QACtB,IAAI,CAAC,sBAAsB,CAAC,gBAAgB,EAAE,CAAC;IAChD,CAAC;CACD;AAxPD,gDAwPC"}
|
|
@@ -1,13 +0,0 @@
|
|
|
1
|
-
import type { Server } from '../mcp';
|
|
2
|
-
import type { OAuthServer } from '../oauth';
|
|
3
|
-
import type { Request, Response } from 'express';
|
|
4
|
-
export declare class CreatioOAuthHandlers {
|
|
5
|
-
private readonly _sessionContext;
|
|
6
|
-
private readonly _server;
|
|
7
|
-
private readonly _oauthServer;
|
|
8
|
-
constructor(server: Server, oauthServer: OAuthServer);
|
|
9
|
-
handleOAuthStart(req: Request, res: Response): Promise<void>;
|
|
10
|
-
handleOAuthCallback(req: Request, res: Response): Promise<void>;
|
|
11
|
-
handleOAuthRevoke(req: Request, res: Response): Promise<void>;
|
|
12
|
-
}
|
|
13
|
-
//# sourceMappingURL=creatio-oauth-handlers.d.ts.map
|
|
@@ -1 +0,0 @@
|
|
|
1
|
-
{"version":3,"file":"creatio-oauth-handlers.d.ts","sourceRoot":"","sources":["../../../src/server/http/creatio-oauth-handlers.ts"],"names":[],"mappings":"AAMA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,QAAQ,CAAC;AACrC,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,UAAU,CAAC;AAC5C,OAAO,KAAK,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,SAAS,CAAC;AAEjD,qBAAa,oBAAoB;IAChC,OAAO,CAAC,QAAQ,CAAC,eAAe,CAA2B;IAC3D,OAAO,CAAC,QAAQ,CAAC,OAAO,CAAS;IACjC,OAAO,CAAC,QAAQ,CAAC,YAAY,CAAc;gBAE/B,MAAM,EAAE,MAAM,EAAE,WAAW,EAAE,WAAW;IAKvC,gBAAgB,CAAC,GAAG,EAAE,OAAO,EAAE,GAAG,EAAE,QAAQ,GAAG,OAAO,CAAC,IAAI,CAAC;IAwC5D,mBAAmB,CAAC,GAAG,EAAE,OAAO,EAAE,GAAG,EAAE,QAAQ,GAAG,OAAO,CAAC,IAAI,CAAC;IAyF/D,iBAAiB,CAAC,GAAG,EAAE,OAAO,EAAE,GAAG,EAAE,QAAQ,GAAG,OAAO,CAAC,IAAI,CAAC;CAqB1E"}
|
|
@@ -1,160 +0,0 @@
|
|
|
1
|
-
"use strict";
|
|
2
|
-
var __importDefault = (this && this.__importDefault) || function (mod) {
|
|
3
|
-
return (mod && mod.__esModule) ? mod : { "default": mod };
|
|
4
|
-
};
|
|
5
|
-
Object.defineProperty(exports, "__esModule", { value: true });
|
|
6
|
-
exports.CreatioOAuthHandlers = void 0;
|
|
7
|
-
const creatio_1 = require("../../creatio");
|
|
8
|
-
const log_1 = __importDefault(require("../../log"));
|
|
9
|
-
const sessions_1 = require("../../sessions");
|
|
10
|
-
const utils_1 = require("../../utils");
|
|
11
|
-
const oauth_1 = require("../oauth");
|
|
12
|
-
class CreatioOAuthHandlers {
|
|
13
|
-
_sessionContext = sessions_1.SessionContext.instance;
|
|
14
|
-
_server;
|
|
15
|
-
_oauthServer;
|
|
16
|
-
constructor(server, oauthServer) {
|
|
17
|
-
this._server = server;
|
|
18
|
-
this._oauthServer = oauthServer;
|
|
19
|
-
}
|
|
20
|
-
async handleOAuthStart(req, res) {
|
|
21
|
-
try {
|
|
22
|
-
const userKey = req.query.userKey;
|
|
23
|
-
const authKey = req.query.authKey;
|
|
24
|
-
const effectiveUserKey = userKey || authKey;
|
|
25
|
-
if (!effectiveUserKey) {
|
|
26
|
-
res.status(400).send('Missing userKey parameter. Add ?userKey=your_user_key to URL');
|
|
27
|
-
return;
|
|
28
|
-
}
|
|
29
|
-
const provider = this._server.authProvider;
|
|
30
|
-
if (!(0, creatio_1.supportsInteractiveAuth)(provider)) {
|
|
31
|
-
res.status(400).send('Authorization-code flow is not enabled for this deployment (configure CREATIO_CODE_* auth)');
|
|
32
|
-
return;
|
|
33
|
-
}
|
|
34
|
-
// Bind the OAuth state to the session that initiated the flow (if any),
|
|
35
|
-
// so the callback maps only that session — never every active session (CWE-639).
|
|
36
|
-
const initiatingSessionId = (0, utils_1.getSessionIdFromRequest)(req) ?? undefined;
|
|
37
|
-
const state = this._sessionContext.createOAuthState(effectiveUserKey, initiatingSessionId);
|
|
38
|
-
const url = await provider.getAuthorizeUrl(state);
|
|
39
|
-
const mcpParams = req.query;
|
|
40
|
-
if (mcpParams.client_id && mcpParams.redirect_uri) {
|
|
41
|
-
const urlObj = new URL(url);
|
|
42
|
-
const stateWithMcp = `${state}&client_id=${mcpParams.client_id}&redirect_uri=${encodeURIComponent(mcpParams.redirect_uri)}&code_challenge=${mcpParams.code_challenge}&code_challenge_method=${mcpParams.code_challenge_method}&mcp_state=${mcpParams.state || ''}`;
|
|
43
|
-
urlObj.searchParams.set('state', stateWithMcp);
|
|
44
|
-
return res.redirect(302, urlObj.toString());
|
|
45
|
-
}
|
|
46
|
-
res.redirect(302, url);
|
|
47
|
-
}
|
|
48
|
-
catch (err) {
|
|
49
|
-
log_1.default.error('oauth.start.error', { error: String(err?.message ?? err) });
|
|
50
|
-
res.status(500).send('OAuth start failed');
|
|
51
|
-
}
|
|
52
|
-
}
|
|
53
|
-
async handleOAuthCallback(req, res) {
|
|
54
|
-
try {
|
|
55
|
-
const code = String(req.query?.code ?? '') || String(req.body?.code ?? '');
|
|
56
|
-
const state = String(req.query?.state ?? '') || String(req.body?.state ?? '');
|
|
57
|
-
log_1.default.info('oauth.callback.start', {
|
|
58
|
-
hasCode: !!code,
|
|
59
|
-
hasState: !!state,
|
|
60
|
-
});
|
|
61
|
-
if (!code || !state) {
|
|
62
|
-
res.status(400).send('Missing code or state');
|
|
63
|
-
return;
|
|
64
|
-
}
|
|
65
|
-
const stateParts = state.split('&');
|
|
66
|
-
const creatioState = stateParts[0];
|
|
67
|
-
log_1.default.info('oauth.callback.state_parse', {
|
|
68
|
-
hasMcpParams: stateParts.length > 1,
|
|
69
|
-
});
|
|
70
|
-
if (!creatioState) {
|
|
71
|
-
log_1.default.error('oauth.callback.no_creatio_state');
|
|
72
|
-
res.status(400).send('Invalid state format');
|
|
73
|
-
return;
|
|
74
|
-
}
|
|
75
|
-
const stateResult = this._sessionContext.validateAndConsumeOAuthState(creatioState);
|
|
76
|
-
if (!stateResult) {
|
|
77
|
-
log_1.default.error('oauth.callback.creatio_state_invalid');
|
|
78
|
-
res.status(400).send('Unknown or expired state');
|
|
79
|
-
return;
|
|
80
|
-
}
|
|
81
|
-
const { userKey, sessionId: boundSessionId } = stateResult;
|
|
82
|
-
const provider = this._server.authProvider;
|
|
83
|
-
if (!(0, creatio_1.supportsInteractiveAuth)(provider)) {
|
|
84
|
-
res.status(400).send('Authorization-code flow is not enabled for this deployment');
|
|
85
|
-
return;
|
|
86
|
-
}
|
|
87
|
-
await (0, utils_1.runWithContext)({ userKey }, async () => provider.finishAuthorization(code));
|
|
88
|
-
// Map ONLY the session that initiated this flow, if it still exists.
|
|
89
|
-
// Bearer-token MCP clients carry their identity in the issued JWT and need
|
|
90
|
-
// no session mapping at all.
|
|
91
|
-
if (boundSessionId && this._sessionContext.hasSession(boundSessionId)) {
|
|
92
|
-
this._sessionContext.mapSessionToUser(boundSessionId, userKey);
|
|
93
|
-
}
|
|
94
|
-
const stateParams = new URLSearchParams(state);
|
|
95
|
-
const clientId = stateParams.get('client_id');
|
|
96
|
-
const redirectUri = stateParams.get('redirect_uri');
|
|
97
|
-
const codeChallenge = stateParams.get('code_challenge');
|
|
98
|
-
if (clientId && redirectUri && codeChallenge) {
|
|
99
|
-
// Re-validate the redirect target before emitting any redirect: the MCP params
|
|
100
|
-
// are appended to the state in plaintext and must not be trusted blindly (CWE-601).
|
|
101
|
-
if (!oauth_1.OAuthValidators.isAllowedRedirectUri(redirectUri)) {
|
|
102
|
-
log_1.default.error('oauth.callback.redirect_uri_disallowed', { clientId });
|
|
103
|
-
res.status(400).send('Disallowed redirect_uri');
|
|
104
|
-
return;
|
|
105
|
-
}
|
|
106
|
-
const mcpState = stateParams.get('mcp_state');
|
|
107
|
-
log_1.default.info('oauth.callback.state_validation', {
|
|
108
|
-
clientId,
|
|
109
|
-
hasState: !!mcpState,
|
|
110
|
-
});
|
|
111
|
-
if (mcpState && !this._oauthServer.validateState(mcpState, clientId)) {
|
|
112
|
-
log_1.default.error('oauth.callback.state_invalid', { clientId });
|
|
113
|
-
const errorUrl = new URL(redirectUri);
|
|
114
|
-
errorUrl.searchParams.set('error', 'invalid_request');
|
|
115
|
-
errorUrl.searchParams.set('error_description', 'Unknown or expired state');
|
|
116
|
-
if (mcpState) {
|
|
117
|
-
errorUrl.searchParams.set('state', mcpState);
|
|
118
|
-
}
|
|
119
|
-
return res.redirect(errorUrl.toString());
|
|
120
|
-
}
|
|
121
|
-
const authCode = this._oauthServer.generateAuthorizationCode(clientId, redirectUri, codeChallenge, stateParams.get('code_challenge_method') || 'S256', userKey);
|
|
122
|
-
const redirectUrl = new URL(redirectUri);
|
|
123
|
-
redirectUrl.searchParams.set('code', authCode);
|
|
124
|
-
if (mcpState) {
|
|
125
|
-
redirectUrl.searchParams.set('state', mcpState);
|
|
126
|
-
}
|
|
127
|
-
return res.redirect(redirectUrl.toString());
|
|
128
|
-
}
|
|
129
|
-
res.status(200).send('Authorization successful. You can close this window.');
|
|
130
|
-
}
|
|
131
|
-
catch (err) {
|
|
132
|
-
log_1.default.error('oauth.callback.error', { error: String(err?.message ?? err) });
|
|
133
|
-
res.status(500).send('OAuth callback failed');
|
|
134
|
-
}
|
|
135
|
-
}
|
|
136
|
-
async handleOAuthRevoke(req, res) {
|
|
137
|
-
try {
|
|
138
|
-
// Identity comes ONLY from the validated Bearer token (set by bearerAuth middleware).
|
|
139
|
-
// A caller must never be able to revoke another user's tokens via ?userKey= (CWE-639).
|
|
140
|
-
const userKey = req.userKey;
|
|
141
|
-
if (!userKey) {
|
|
142
|
-
res.status(401).send('Valid Bearer token required');
|
|
143
|
-
return;
|
|
144
|
-
}
|
|
145
|
-
const provider = this._server.authProvider;
|
|
146
|
-
if (!(0, creatio_1.supportsRevoke)(provider)) {
|
|
147
|
-
res.status(400).send('Token revocation is not supported for this deployment');
|
|
148
|
-
return;
|
|
149
|
-
}
|
|
150
|
-
await (0, utils_1.runWithContext)({ userKey }, async () => provider.revoke());
|
|
151
|
-
res.status(200).send('Revoked');
|
|
152
|
-
}
|
|
153
|
-
catch (err) {
|
|
154
|
-
log_1.default.error('oauth.revoke.error', { error: String(err?.message ?? err) });
|
|
155
|
-
res.status(500).send('OAuth revoke failed');
|
|
156
|
-
}
|
|
157
|
-
}
|
|
158
|
-
}
|
|
159
|
-
exports.CreatioOAuthHandlers = CreatioOAuthHandlers;
|
|
160
|
-
//# sourceMappingURL=creatio-oauth-handlers.js.map
|
|
@@ -1 +0,0 @@
|
|
|
1
|
-
{"version":3,"file":"creatio-oauth-handlers.js","sourceRoot":"","sources":["../../../src/server/http/creatio-oauth-handlers.ts"],"names":[],"mappings":";;;;;;AAAA,2CAAwE;AACxE,oDAA4B;AAC5B,6CAAgD;AAChD,uCAAsE;AACtE,oCAA2C;AAM3C,MAAa,oBAAoB;IACf,eAAe,GAAG,yBAAc,CAAC,QAAQ,CAAC;IAC1C,OAAO,CAAS;IAChB,YAAY,CAAc;IAE3C,YAAY,MAAc,EAAE,WAAwB;QACnD,IAAI,CAAC,OAAO,GAAG,MAAM,CAAC;QACtB,IAAI,CAAC,YAAY,GAAG,WAAW,CAAC;IACjC,CAAC;IAEM,KAAK,CAAC,gBAAgB,CAAC,GAAY,EAAE,GAAa;QACxD,IAAI,CAAC;YACJ,MAAM,OAAO,GAAG,GAAG,CAAC,KAAK,CAAC,OAAiB,CAAC;YAC5C,MAAM,OAAO,GAAG,GAAG,CAAC,KAAK,CAAC,OAAiB,CAAC;YAC5C,MAAM,gBAAgB,GAAG,OAAO,IAAI,OAAO,CAAC;YAC5C,IAAI,CAAC,gBAAgB,EAAE,CAAC;gBACvB,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CACnB,8DAA8D,CAC9D,CAAC;gBACF,OAAO;YACR,CAAC;YACD,MAAM,QAAQ,GAAG,IAAI,CAAC,OAAO,CAAC,YAAY,CAAC;YAC3C,IAAI,CAAC,IAAA,iCAAuB,EAAC,QAAQ,CAAC,EAAE,CAAC;gBACxC,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CACnB,4FAA4F,CAC5F,CAAC;gBACF,OAAO;YACR,CAAC;YACD,wEAAwE;YACxE,iFAAiF;YACjF,MAAM,mBAAmB,GAAG,IAAA,+BAAuB,EAAC,GAAG,CAAC,IAAI,SAAS,CAAC;YACtE,MAAM,KAAK,GAAG,IAAI,CAAC,eAAe,CAAC,gBAAgB,CAClD,gBAAgB,EAChB,mBAAmB,CACnB,CAAC;YACF,MAAM,GAAG,GAAG,MAAM,QAAQ,CAAC,eAAe,CAAC,KAAK,CAAC,CAAC;YAClD,MAAM,SAAS,GAAG,GAAG,CAAC,KAAY,CAAC;YACnC,IAAI,SAAS,CAAC,SAAS,IAAI,SAAS,CAAC,YAAY,EAAE,CAAC;gBACnD,MAAM,MAAM,GAAG,IAAI,GAAG,CAAC,GAAG,CAAC,CAAC;gBAC5B,MAAM,YAAY,GAAG,GAAG,KAAK,cAAc,SAAS,CAAC,SAAS,iBAAiB,kBAAkB,CAAC,SAAS,CAAC,YAAY,CAAC,mBAAmB,SAAS,CAAC,cAAc,0BAA0B,SAAS,CAAC,qBAAqB,cAAc,SAAS,CAAC,KAAK,IAAI,EAAE,EAAE,CAAC;gBACnQ,MAAM,CAAC,YAAY,CAAC,GAAG,CAAC,OAAO,EAAE,YAAY,CAAC,CAAC;gBAC/C,OAAO,GAAG,CAAC,QAAQ,CAAC,GAAG,EAAE,MAAM,CAAC,QAAQ,EAAE,CAAC,CAAC;YAC7C,CAAC;YACD,GAAG,CAAC,QAAQ,CAAC,GAAG,EAAE,GAAG,CAAC,CAAC;QACxB,CAAC;QAAC,OAAO,GAAQ,EAAE,CAAC;YACnB,aAAG,CAAC,KAAK,CAAC,mBAAmB,EAAE,EAAE,KAAK,EAAE,MAAM,CAAC,GAAG,EAAE,OAAO,IAAI,GAAG,CAAC,EAAE,CAAC,CAAC;YACvE,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,oBAAoB,CAAC,CAAC;QAC5C,CAAC;IACF,CAAC;IAEM,KAAK,CAAC,mBAAmB,CAAC,GAAY,EAAE,GAAa;QAC3D,IAAI,CAAC;YACJ,MAAM,IAAI,GAAG,MAAM,CAAC,GAAG,CAAC,KAAK,EAAE,IAAI,IAAI,EAAE,CAAC,IAAI,MAAM,CAAE,GAAW,CAAC,IAAI,EAAE,IAAI,IAAI,EAAE,CAAC,CAAC;YACpF,MAAM,KAAK,GAAG,MAAM,CAAC,GAAG,CAAC,KAAK,EAAE,KAAK,IAAI,EAAE,CAAC,IAAI,MAAM,CAAE,GAAW,CAAC,IAAI,EAAE,KAAK,IAAI,EAAE,CAAC,CAAC;YACvF,aAAG,CAAC,IAAI,CAAC,sBAAsB,EAAE;gBAChC,OAAO,EAAE,CAAC,CAAC,IAAI;gBACf,QAAQ,EAAE,CAAC,CAAC,KAAK;aACjB,CAAC,CAAC;YACH,IAAI,CAAC,IAAI,IAAI,CAAC,KAAK,EAAE,CAAC;gBACrB,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,uBAAuB,CAAC,CAAC;gBAC9C,OAAO;YACR,CAAC;YACD,MAAM,UAAU,GAAG,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;YACpC,MAAM,YAAY,GAAG,UAAU,CAAC,CAAC,CAAC,CAAC;YACnC,aAAG,CAAC,IAAI,CAAC,4BAA4B,EAAE;gBACtC,YAAY,EAAE,UAAU,CAAC,MAAM,GAAG,CAAC;aACnC,CAAC,CAAC;YACH,IAAI,CAAC,YAAY,EAAE,CAAC;gBACnB,aAAG,CAAC,KAAK,CAAC,iCAAiC,CAAC,CAAC;gBAC7C,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,sBAAsB,CAAC,CAAC;gBAC7C,OAAO;YACR,CAAC;YACD,MAAM,WAAW,GAAG,IAAI,CAAC,eAAe,CAAC,4BAA4B,CAAC,YAAY,CAAC,CAAC;YACpF,IAAI,CAAC,WAAW,EAAE,CAAC;gBAClB,aAAG,CAAC,KAAK,CAAC,sCAAsC,CAAC,CAAC;gBAClD,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,0BAA0B,CAAC,CAAC;gBACjD,OAAO;YACR,CAAC;YACD,MAAM,EAAE,OAAO,EAAE,SAAS,EAAE,cAAc,EAAE,GAAG,WAAW,CAAC;YAC3D,MAAM,QAAQ,GAAG,IAAI,CAAC,OAAO,CAAC,YAAY,CAAC;YAC3C,IAAI,CAAC,IAAA,iCAAuB,EAAC,QAAQ,CAAC,EAAE,CAAC;gBACxC,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,4DAA4D,CAAC,CAAC;gBACnF,OAAO;YACR,CAAC;YACD,MAAM,IAAA,sBAAc,EAAC,EAAE,OAAO,EAAE,EAAE,KAAK,IAAI,EAAE,CAAC,QAAQ,CAAC,mBAAmB,CAAC,IAAI,CAAC,CAAC,CAAC;YAClF,qEAAqE;YACrE,2EAA2E;YAC3E,6BAA6B;YAC7B,IAAI,cAAc,IAAI,IAAI,CAAC,eAAe,CAAC,UAAU,CAAC,cAAc,CAAC,EAAE,CAAC;gBACvE,IAAI,CAAC,eAAe,CAAC,gBAAgB,CAAC,cAAc,EAAE,OAAO,CAAC,CAAC;YAChE,CAAC;YACD,MAAM,WAAW,GAAG,IAAI,eAAe,CAAC,KAAK,CAAC,CAAC;YAC/C,MAAM,QAAQ,GAAG,WAAW,CAAC,GAAG,CAAC,WAAW,CAAC,CAAC;YAC9C,MAAM,WAAW,GAAG,WAAW,CAAC,GAAG,CAAC,cAAc,CAAC,CAAC;YACpD,MAAM,aAAa,GAAG,WAAW,CAAC,GAAG,CAAC,gBAAgB,CAAC,CAAC;YACxD,IAAI,QAAQ,IAAI,WAAW,IAAI,aAAa,EAAE,CAAC;gBAC9C,+EAA+E;gBAC/E,oFAAoF;gBACpF,IAAI,CAAC,uBAAe,CAAC,oBAAoB,CAAC,WAAW,CAAC,EAAE,CAAC;oBACxD,aAAG,CAAC,KAAK,CAAC,wCAAwC,EAAE,EAAE,QAAQ,EAAE,CAAC,CAAC;oBAClE,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,yBAAyB,CAAC,CAAC;oBAChD,OAAO;gBACR,CAAC;gBACD,MAAM,QAAQ,GAAG,WAAW,CAAC,GAAG,CAAC,WAAW,CAAC,CAAC;gBAC9C,aAAG,CAAC,IAAI,CAAC,iCAAiC,EAAE;oBAC3C,QAAQ;oBACR,QAAQ,EAAE,CAAC,CAAC,QAAQ;iBACpB,CAAC,CAAC;gBACH,IAAI,QAAQ,IAAI,CAAC,IAAI,CAAC,YAAY,CAAC,aAAa,CAAC,QAAQ,EAAE,QAAQ,CAAC,EAAE,CAAC;oBACtE,aAAG,CAAC,KAAK,CAAC,8BAA8B,EAAE,EAAE,QAAQ,EAAE,CAAC,CAAC;oBACxD,MAAM,QAAQ,GAAG,IAAI,GAAG,CAAC,WAAW,CAAC,CAAC;oBACtC,QAAQ,CAAC,YAAY,CAAC,GAAG,CAAC,OAAO,EAAE,iBAAiB,CAAC,CAAC;oBACtD,QAAQ,CAAC,YAAY,CAAC,GAAG,CAAC,mBAAmB,EAAE,0BAA0B,CAAC,CAAC;oBAC3E,IAAI,QAAQ,EAAE,CAAC;wBACd,QAAQ,CAAC,YAAY,CAAC,GAAG,CAAC,OAAO,EAAE,QAAQ,CAAC,CAAC;oBAC9C,CAAC;oBACD,OAAO,GAAG,CAAC,QAAQ,CAAC,QAAQ,CAAC,QAAQ,EAAE,CAAC,CAAC;gBAC1C,CAAC;gBACD,MAAM,QAAQ,GAAG,IAAI,CAAC,YAAY,CAAC,yBAAyB,CAC3D,QAAQ,EACR,WAAW,EACX,aAAa,EACb,WAAW,CAAC,GAAG,CAAC,uBAAuB,CAAC,IAAI,MAAM,EAClD,OAAO,CACP,CAAC;gBACF,MAAM,WAAW,GAAG,IAAI,GAAG,CAAC,WAAW,CAAC,CAAC;gBACzC,WAAW,CAAC,YAAY,CAAC,GAAG,CAAC,MAAM,EAAE,QAAQ,CAAC,CAAC;gBAC/C,IAAI,QAAQ,EAAE,CAAC;oBACd,WAAW,CAAC,YAAY,CAAC,GAAG,CAAC,OAAO,EAAE,QAAQ,CAAC,CAAC;gBACjD,CAAC;gBACD,OAAO,GAAG,CAAC,QAAQ,CAAC,WAAW,CAAC,QAAQ,EAAE,CAAC,CAAC;YAC7C,CAAC;YACD,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,sDAAsD,CAAC,CAAC;QAC9E,CAAC;QAAC,OAAO,GAAQ,EAAE,CAAC;YACnB,aAAG,CAAC,KAAK,CAAC,sBAAsB,EAAE,EAAE,KAAK,EAAE,MAAM,CAAC,GAAG,EAAE,OAAO,IAAI,GAAG,CAAC,EAAE,CAAC,CAAC;YAC1E,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,uBAAuB,CAAC,CAAC;QAC/C,CAAC;IACF,CAAC;IAEM,KAAK,CAAC,iBAAiB,CAAC,GAAY,EAAE,GAAa;QACzD,IAAI,CAAC;YACJ,sFAAsF;YACtF,uFAAuF;YACvF,MAAM,OAAO,GAAI,GAAW,CAAC,OAA6B,CAAC;YAC3D,IAAI,CAAC,OAAO,EAAE,CAAC;gBACd,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,6BAA6B,CAAC,CAAC;gBACpD,OAAO;YACR,CAAC;YACD,MAAM,QAAQ,GAAG,IAAI,CAAC,OAAO,CAAC,YAAY,CAAC;YAC3C,IAAI,CAAC,IAAA,wBAAc,EAAC,QAAQ,CAAC,EAAE,CAAC;gBAC/B,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,uDAAuD,CAAC,CAAC;gBAC9E,OAAO;YACR,CAAC;YACD,MAAM,IAAA,sBAAc,EAAC,EAAE,OAAO,EAAE,EAAE,KAAK,IAAI,EAAE,CAAC,QAAQ,CAAC,MAAM,EAAE,CAAC,CAAC;YACjE,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;QACjC,CAAC;QAAC,OAAO,GAAQ,EAAE,CAAC;YACnB,aAAG,CAAC,KAAK,CAAC,oBAAoB,EAAE,EAAE,KAAK,EAAE,MAAM,CAAC,GAAG,EAAE,OAAO,IAAI,GAAG,CAAC,EAAE,CAAC,CAAC;YACxE,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,qBAAqB,CAAC,CAAC;QAC7C,CAAC;IACF,CAAC;CACD;AAhKD,oDAgKC"}
|
|
@@ -1 +0,0 @@
|
|
|
1
|
-
{"version":3,"file":"httpServer.d.ts","sourceRoot":"","sources":["../../../src/server/http/httpServer.ts"],"names":[],"mappings":"AAGA,OAAO,OAAO,MAAM,SAAS,CAAC;AAa9B,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,QAAQ,CAAC;AAErC,qBAAa,UAAU;IACtB,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAC,mBAAmB,CAAiB;IAG5D,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAC,UAAU,CAAsC;IAExE,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAC,oBAAoB,CAAiC;IAC7E,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAC,gBAAgB,CAAiC;IACzE,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAC,mBAAmB,CAAiC;IAC5E,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAC,iBAAiB,CAAiC;IAC1E,OAAO,CAAC,QAAQ,CAAC,OAAO,CAAS;IACjC,OAAO,CAAC,QAAQ,CAAC,IAAI,CAAa;IAClC,OAAO,CAAC,QAAQ,CAAC,YAAY,CAAqB;IAClD,OAAO,CAAC,IAAI,CAAe;IAC3B,OAAO,CAAC,aAAa,CAA6B;IAClD,OAAO,CAAC,QAAQ,CAAC,eAAe,CAA2B;IAC3D,OAAO,CAAC,QAAQ,CAAC,YAAY,CAAc;IAC3C,OAAO,CAAC,QAAQ,CAAC,WAAW,CAAiB;IAC7C,OAAO,CAAC,QAAQ,CAAC,YAAY,CAAc;IAC3C,OAAO,CAAC,QAAQ,CAAC,qBAAqB,CAAuB;IAC7D,OAAO,CAAC,QAAQ,CAAC,iBAAiB,CAAmB;IAErD,IAAW,GAAG,IAAI,OAAO,CAAC,OAAO,CAEhC;gBAEW,MAAM,EAAE,MAAM;IAW1B,OAAO,CAAC,gBAAgB;IAWxB,OAAO,CAAC,YAAY;IAQpB,OAAO,CAAC,kBAAkB;IAM1B,OAAO,CAAC,eAAe;IAIvB,OAAO,CAAC,2BAA2B;IAmBnC,OAAO,CAAC,uBAAuB;IAqBxB,KAAK,CAAC,IAAI,EAAE,MAAM;IA4BZ,IAAI;CAoCjB"}
|
|
@@ -1 +0,0 @@
|
|
|
1
|
-
{"version":3,"file":"httpServer.js","sourceRoot":"","sources":["../../../src/server/http/httpServer.ts"],"names":[],"mappings":";;;;;;AAGA,sDAA8B;AAE9B,4CAAkD;AAClD,oDAA4B;AAC5B,6CAAgD;AAChD,uCAAkC;AAClC,oCAAuC;AAEvC,qEAAgE;AAChE,iDAA6C;AAC7C,6DAAwD;AACxD,6CAA8C;AAI9C,MAAa,UAAU;IACd,MAAM,CAAU,mBAAmB,GAAG,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC;IAC5D,8EAA8E;IAC9E,sFAAsF;IAC9E,MAAM,CAAU,UAAU,GAAG,IAAA,WAAG,EAAC,mBAAmB,CAAC,IAAI,MAAM,CAAC;IACxE,uFAAuF;IAC/E,MAAM,CAAU,oBAAoB,GAAG,EAAE,QAAQ,EAAE,MAAM,EAAE,GAAG,EAAE,EAAE,EAAE,CAAC;IACrE,MAAM,CAAU,gBAAgB,GAAG,EAAE,QAAQ,EAAE,MAAM,EAAE,GAAG,EAAE,EAAE,EAAE,CAAC;IACjE,MAAM,CAAU,mBAAmB,GAAG,EAAE,QAAQ,EAAE,MAAM,EAAE,GAAG,EAAE,EAAE,EAAE,CAAC;IACpE,MAAM,CAAU,iBAAiB,GAAG,EAAE,QAAQ,EAAE,MAAM,EAAE,GAAG,EAAE,EAAE,EAAE,CAAC;IACzD,OAAO,CAAS;IAChB,IAAI,GAAG,IAAA,iBAAO,GAAE,CAAC;IACjB,YAAY,GAAG,IAAI,GAAG,EAAU,CAAC;IAC1C,IAAI,CAAe;IACnB,aAAa,CAA6B;IACjC,eAAe,GAAG,yBAAc,CAAC,QAAQ,CAAC;IAC1C,YAAY,CAAc;IAC1B,WAAW,CAAiB;IAC5B,YAAY,CAAc;IAC1B,qBAAqB,CAAuB;IAC5C,iBAAiB,CAAmB;IAErD,IAAW,GAAG;QACb,OAAO,IAAI,CAAC,IAAI,CAAC;IAClB,CAAC;IAED,YAAY,MAAc;QACzB,IAAI,CAAC,OAAO,GAAG,MAAM,CAAC;QACtB,IAAI,CAAC,YAAY,GAAG,IAAI,mBAAW,EAAE,CAAC;QACtC,IAAI,CAAC,WAAW,GAAG,IAAI,2BAAc,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC;QACzD,IAAI,CAAC,YAAY,GAAG,IAAI,0BAAW,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;QAClD,IAAI,CAAC,qBAAqB,GAAG,IAAI,6CAAoB,CAAC,IAAI,CAAC,OAAO,EAAE,IAAI,CAAC,YAAY,CAAC,CAAC;QACvF,IAAI,CAAC,iBAAiB,GAAG,IAAI,qCAAgB,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC;QACjE,IAAI,CAAC,gBAAgB,EAAE,CAAC;QACxB,IAAI,CAAC,YAAY,EAAE,CAAC;IACrB,CAAC;IAEO,gBAAgB;QACvB,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC,WAAW,CAAC,aAAa,EAAE,CAAC,CAAC;QAChD,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC,WAAW,CAAC,cAAc,EAAE,CAAC,CAAC;QACjD,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,iBAAO,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,UAAU,CAAC,UAAU,EAAE,CAAC,CAAC,CAAC;QAC9D,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,iBAAO,CAAC,UAAU,CAAC,EAAE,QAAQ,EAAE,IAAI,EAAE,KAAK,EAAE,UAAU,CAAC,UAAU,EAAE,CAAC,CAAC,CAAC;QACpF,IAAI,IAAI,CAAC,eAAe,EAAE,EAAE,CAAC;YAC5B,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,MAAM,EAAE,IAAI,CAAC,WAAW,CAAC,UAAU,EAAE,CAAC,CAAC;QACtD,CAAC;QACD,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC,WAAW,CAAC,YAAY,EAAE,CAAC,CAAC;IAChD,CAAC;IAEO,YAAY;QACnB,IAAI,CAAC,kBAAkB,EAAE,CAAC;QAC1B,IAAI,IAAI,CAAC,eAAe,EAAE,EAAE,CAAC;YAC5B,IAAI,CAAC,2BAA2B,EAAE,CAAC;YACnC,IAAI,CAAC,uBAAuB,EAAE,CAAC;QAChC,CAAC;IACF,CAAC;IAEO,kBAAkB;QACzB,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE,GAAG,EAAE,EAAE,CAAC,IAAI,CAAC,YAAY,CAAC,aAAa,CAAC,GAAG,EAAE,GAAG,CAAC,CAAC,CAAC;QAChF,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE,GAAG,EAAE,EAAE,CAAC,IAAI,CAAC,YAAY,CAAC,oBAAoB,CAAC,GAAG,EAAE,GAAG,CAAC,CAAC,CAAC;QACtF,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE,GAAG,EAAE,EAAE,CAAC,IAAI,CAAC,YAAY,CAAC,oBAAoB,CAAC,GAAG,EAAE,GAAG,CAAC,CAAC,CAAC;IAC1F,CAAC;IAEO,eAAe;QACtB,OAAO,IAAI,CAAC,OAAO,CAAC,YAAY,CAAC,IAAI,KAAK,0BAAgB,CAAC,UAAU,CAAC;IACvE,CAAC;IAEO,2BAA2B;QAClC,IAAI,CAAC,IAAI,CAAC,GAAG,CACZ,cAAc,EACd,IAAI,CAAC,WAAW,CAAC,SAAS,CAAC,UAAU,CAAC,oBAAoB,CAAC,EAC3D,CAAC,GAAG,EAAE,GAAG,EAAE,EAAE,CAAC,IAAI,CAAC,qBAAqB,CAAC,gBAAgB,CAAC,GAAG,EAAE,GAAG,CAAC,CACnE,CAAC;QACF,IAAI,CAAC,IAAI,CAAC,GAAG,CACZ,iBAAiB,EACjB,IAAI,CAAC,WAAW,CAAC,SAAS,CAAC,UAAU,CAAC,oBAAoB,CAAC,EAC3D,CAAC,GAAG,EAAE,GAAG,EAAE,EAAE,CAAC,IAAI,CAAC,qBAAqB,CAAC,mBAAmB,CAAC,GAAG,EAAE,GAAG,CAAC,CACtE,CAAC;QACF,IAAI,CAAC,IAAI,CAAC,IAAI,CACb,eAAe,EACf,IAAI,CAAC,WAAW,CAAC,SAAS,CAAC,UAAU,CAAC,iBAAiB,CAAC,EACxD,IAAI,CAAC,WAAW,CAAC,UAAU,EAAE,EAC7B,CAAC,GAAG,EAAE,GAAG,EAAE,EAAE,CAAC,IAAI,CAAC,qBAAqB,CAAC,iBAAiB,CAAC,GAAG,EAAE,GAAG,CAAC,CACpE,CAAC;IACH,CAAC;IAEO,uBAAuB;QAC9B,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,yCAAyC,EAAE,CAAC,GAAG,EAAE,GAAG,EAAE,EAAE,CACrE,IAAI,CAAC,iBAAiB,CAAC,cAAc,CAAC,GAAG,EAAE,GAAG,CAAC,CAC/C,CAAC;QACF,IAAI,CAAC,IAAI,CAAC,IAAI,CACb,WAAW,EACX,IAAI,CAAC,WAAW,CAAC,SAAS,CAAC,UAAU,CAAC,mBAAmB,CAAC,EAC1D,CAAC,GAAG,EAAE,GAAG,EAAE,EAAE,CAAC,IAAI,CAAC,iBAAiB,CAAC,wBAAwB,CAAC,GAAG,EAAE,GAAG,CAAC,CACvE,CAAC;QACF,IAAI,CAAC,IAAI,CAAC,GAAG,CACZ,YAAY,EACZ,IAAI,CAAC,WAAW,CAAC,SAAS,CAAC,UAAU,CAAC,oBAAoB,CAAC,EAC3D,CAAC,GAAG,EAAE,GAAG,EAAE,EAAE,CAAC,IAAI,CAAC,iBAAiB,CAAC,mBAAmB,CAAC,GAAG,EAAE,GAAG,CAAC,CAClE,CAAC;QACF,IAAI,CAAC,IAAI,CAAC,IAAI,CACb,QAAQ,EACR,IAAI,CAAC,WAAW,CAAC,SAAS,CAAC,UAAU,CAAC,gBAAgB,CAAC,EACvD,CAAC,GAAG,EAAE,GAAG,EAAE,EAAE,CAAC,IAAI,CAAC,iBAAiB,CAAC,mBAAmB,CAAC,GAAG,EAAE,GAAG,CAAC,CAClE,CAAC;IACH,CAAC;IAEM,KAAK,CAAC,IAAY;QACxB,OAAO,IAAI,OAAO,CAAO,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;YAC5C,IAAI,CAAC,IAAI,GAAG,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,EAAE,GAAG,EAAE;gBACvC,aAAG,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC;gBACpB,OAAO,EAAE,CAAC;YACX,CAAC,CAAC,CAAC;YACH,IAAI,CAAC,IAAI,CAAC,gBAAgB,GAAG,IAAI,CAAC;YAClC,IAAI,CAAC,IAAI,CAAC,cAAc,GAAG,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC,IAAI,CAAC,gBAAgB,GAAG,IAAI,EAAE,IAAI,CAAC,CAAC;YAC7E,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,OAAO,EAAE,CAAC,GAAG,EAAE,EAAE;gBAC7B,aAAG,CAAC,KAAK,CAAC,kBAAkB,EAAE,EAAE,KAAK,EAAE,MAAM,CAAC,GAAG,CAAC,EAAE,IAAI,EAAE,CAAC,CAAC;gBAC5D,MAAM,CAAC,GAAG,CAAC,CAAC;YACb,CAAC,CAAC,CAAC;YACH,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,YAAY,EAAE,CAAC,MAAc,EAAE,EAAE;gBAC7C,IAAI,CAAC,YAAY,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;gBAC9B,MAAM,CAAC,IAAI,CAAC,OAAO,EAAE,GAAG,EAAE,CAAC,IAAI,CAAC,YAAY,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC;YAC9D,CAAC,CAAC,CAAC;YACH,+EAA+E;YAC/E,iFAAiF;YACjF,uBAAuB;YACvB,IAAI,CAAC,aAAa,GAAG,WAAW,CAAC,GAAG,EAAE;gBACrC,IAAI,CAAC,YAAY,CAAC,OAAO,EAAE,CAAC;gBAC5B,IAAI,CAAC,eAAe,CAAC,yBAAyB,EAAE,CAAC;gBACjD,IAAI,CAAC,eAAe,CAAC,gBAAgB,EAAE,CAAC;YACzC,CAAC,EAAE,UAAU,CAAC,mBAAmB,CAAC,CAAC;YACnC,IAAI,CAAC,aAAa,CAAC,KAAK,EAAE,CAAC;QAC5B,CAAC,CAAC,CAAC;IACJ,CAAC;IAEM,KAAK,CAAC,IAAI;QAChB,IAAI,IAAI,CAAC,aAAa,EAAE,CAAC;YACxB,aAAa,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC;YAClC,IAAI,CAAC,aAAa,GAAG,SAAS,CAAC;QAChC,CAAC;QACD,IAAI,CAAC;YACJ,IAAI,CAAC,OAAO,CAAC,YAAY,CAAC,gBAAgB,EAAE,CAAC;QAC9C,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACd,aAAG,CAAC,IAAI,CAAC,8BAA8B,EAAE,EAAE,KAAK,EAAE,MAAM,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;QAClE,CAAC;QACD,IAAI,IAAI,CAAC,IAAI,EAAE,CAAC;YACf,IAAI,CAAC;gBACJ,MAAM,IAAI,CAAC,OAAO,CAAC,OAAO,EAAE,CAAC;gBAC7B,MAAM,IAAI,OAAO,CAAO,CAAC,OAAO,EAAE,EAAE;oBACnC,IAAI,CAAC,IAAI,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC,OAAO,EAAE,CAAC,CAAC;gBAClC,CAAC,CAAC,CAAC;YACJ,CAAC;YAAC,OAAO,GAAG,EAAE,CAAC;gBACd,aAAG,CAAC,KAAK,CAAC,iBAAiB,EAAE,EAAE,KAAK,EAAE,MAAM,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;YACtD,CAAC;QACF,CAAC;QACD,KAAK,MAAM,MAAM,IAAI,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,YAAY,CAAC,EAAE,CAAC;YACpD,IAAI,CAAC;gBACJ,MAAM,CAAC,OAAO,EAAE,CAAC;YAClB,CAAC;YAAC,MAAM,CAAC,CAAA,CAAC;QACX,CAAC;QACD,IAAI,CAAC,YAAY,CAAC,KAAK,EAAE,CAAC;QAC1B,MAAM,QAAQ,GAAG,IAAI,CAAC,eAAe,CAAC,cAAc,EAAE,CAAC;QACvD,KAAK,MAAM,OAAO,IAAI,QAAQ,EAAE,CAAC;YAChC,IAAI,CAAC;gBACJ,OAAO,CAAC,SAAS,EAAE,KAAK,EAAE,CAAC;YAC5B,CAAC;YAAC,OAAO,GAAG,EAAE,CAAC;gBACd,aAAG,CAAC,IAAI,CAAC,wBAAwB,EAAE,EAAE,SAAS,EAAE,OAAO,CAAC,EAAE,EAAE,KAAK,EAAE,MAAM,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;YACnF,CAAC;YACD,IAAI,CAAC,eAAe,CAAC,aAAa,CAAC,OAAO,CAAC,EAAE,CAAC,CAAC;QAChD,CAAC;IACF,CAAC;;AAzKF,gCA0KC"}
|
|
@@ -1,11 +0,0 @@
|
|
|
1
|
-
import type { OAuthServer } from '../oauth';
|
|
2
|
-
import type { Request, Response } from 'express';
|
|
3
|
-
export declare class MCPOAuthHandlers {
|
|
4
|
-
private readonly _oauthServer;
|
|
5
|
-
constructor(oauthServer: OAuthServer);
|
|
6
|
-
handleMetadata(req: Request, res: Response): void;
|
|
7
|
-
handleClientRegistration(req: Request, res: Response): Response | void;
|
|
8
|
-
handleAuthorization(req: Request, res: Response): Promise<void>;
|
|
9
|
-
handleTokenExchange(req: Request, res: Response): Promise<Response | void>;
|
|
10
|
-
}
|
|
11
|
-
//# sourceMappingURL=mcp-oauth-handlers.d.ts.map
|
|
@@ -1 +0,0 @@
|
|
|
1
|
-
{"version":3,"file":"mcp-oauth-handlers.d.ts","sourceRoot":"","sources":["../../../src/server/http/mcp-oauth-handlers.ts"],"names":[],"mappings":"AAKA,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,UAAU,CAAC;AAC5C,OAAO,KAAK,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,SAAS,CAAC;AAEjD,qBAAa,gBAAgB;IAC5B,OAAO,CAAC,QAAQ,CAAC,YAAY,CAAc;gBAE/B,WAAW,EAAE,WAAW;IAI7B,cAAc,CAAC,GAAG,EAAE,OAAO,EAAE,GAAG,EAAE,QAAQ,GAAG,IAAI;IAKjD,wBAAwB,CAAC,GAAG,EAAE,OAAO,EAAE,GAAG,EAAE,QAAQ,GAAG,QAAQ,GAAG,IAAI;IAqBhE,mBAAmB,CAAC,GAAG,EAAE,OAAO,EAAE,GAAG,EAAE,QAAQ,GAAG,OAAO,CAAC,IAAI,CAAC;IAkD/D,mBAAmB,CAAC,GAAG,EAAE,OAAO,EAAE,GAAG,EAAE,QAAQ,GAAG,OAAO,CAAC,QAAQ,GAAG,IAAI,CAAC;CA4BvF"}
|
|
@@ -1,118 +0,0 @@
|
|
|
1
|
-
"use strict";
|
|
2
|
-
var __importDefault = (this && this.__importDefault) || function (mod) {
|
|
3
|
-
return (mod && mod.__esModule) ? mod : { "default": mod };
|
|
4
|
-
};
|
|
5
|
-
Object.defineProperty(exports, "__esModule", { value: true });
|
|
6
|
-
exports.MCPOAuthHandlers = void 0;
|
|
7
|
-
const node_crypto_1 = require("node:crypto");
|
|
8
|
-
const log_1 = __importDefault(require("../../log"));
|
|
9
|
-
const validators_1 = require("../oauth/validators");
|
|
10
|
-
class MCPOAuthHandlers {
|
|
11
|
-
_oauthServer;
|
|
12
|
-
constructor(oauthServer) {
|
|
13
|
-
this._oauthServer = oauthServer;
|
|
14
|
-
}
|
|
15
|
-
handleMetadata(req, res) {
|
|
16
|
-
const metadata = this._oauthServer.getAuthorizationServerMetadata();
|
|
17
|
-
res.json(metadata);
|
|
18
|
-
}
|
|
19
|
-
handleClientRegistration(req, res) {
|
|
20
|
-
try {
|
|
21
|
-
const { redirect_uris } = req.body;
|
|
22
|
-
const validationError = validators_1.OAuthValidators.validateClientRegistration(redirect_uris);
|
|
23
|
-
if (validationError) {
|
|
24
|
-
return res.status(400).json({
|
|
25
|
-
error: 'invalid_request',
|
|
26
|
-
error_description: validationError,
|
|
27
|
-
});
|
|
28
|
-
}
|
|
29
|
-
const client = this._oauthServer.registerClient(redirect_uris);
|
|
30
|
-
res.status(201).json(client);
|
|
31
|
-
}
|
|
32
|
-
catch (error) {
|
|
33
|
-
log_1.default.error('oauth.register.error', { error: String(error) });
|
|
34
|
-
res.status(500).json({
|
|
35
|
-
error: 'server_error',
|
|
36
|
-
error_description: 'Failed to register client',
|
|
37
|
-
});
|
|
38
|
-
}
|
|
39
|
-
}
|
|
40
|
-
async handleAuthorization(req, res) {
|
|
41
|
-
try {
|
|
42
|
-
const params = {
|
|
43
|
-
client_id: req.query.client_id,
|
|
44
|
-
redirect_uri: req.query.redirect_uri,
|
|
45
|
-
response_type: req.query.response_type,
|
|
46
|
-
state: req.query.state,
|
|
47
|
-
code_challenge: req.query.code_challenge,
|
|
48
|
-
code_challenge_method: req.query.code_challenge_method,
|
|
49
|
-
scope: req.query.scope,
|
|
50
|
-
};
|
|
51
|
-
// Never redirect to an unvalidated target. If the redirect_uri is missing or
|
|
52
|
-
// not allow-listed, fail closed with a direct error response (CWE-601).
|
|
53
|
-
if (!params.redirect_uri || !validators_1.OAuthValidators.isAllowedRedirectUri(params.redirect_uri)) {
|
|
54
|
-
res.status(400).json({
|
|
55
|
-
error: 'invalid_request',
|
|
56
|
-
error_description: 'Missing or disallowed redirect_uri',
|
|
57
|
-
});
|
|
58
|
-
return;
|
|
59
|
-
}
|
|
60
|
-
// state is mandatory: it is the CSRF / session-binding control for the flow (CWE-352).
|
|
61
|
-
if (!params.state) {
|
|
62
|
-
const errorUrl = new URL(params.redirect_uri);
|
|
63
|
-
errorUrl.searchParams.set('error', 'invalid_request');
|
|
64
|
-
errorUrl.searchParams.set('error_description', 'state parameter is required');
|
|
65
|
-
return res.redirect(errorUrl.toString());
|
|
66
|
-
}
|
|
67
|
-
const validationError = this._oauthServer.validateAuthorizationRequest(params);
|
|
68
|
-
if (validationError) {
|
|
69
|
-
const errorUrl = new URL(params.redirect_uri);
|
|
70
|
-
errorUrl.searchParams.set('error', validationError.error);
|
|
71
|
-
if (validationError.error_description) {
|
|
72
|
-
errorUrl.searchParams.set('error_description', validationError.error_description);
|
|
73
|
-
}
|
|
74
|
-
errorUrl.searchParams.set('state', params.state);
|
|
75
|
-
return res.redirect(errorUrl.toString());
|
|
76
|
-
}
|
|
77
|
-
this._oauthServer.storeState(params.state, params.client_id);
|
|
78
|
-
const authKey = (0, node_crypto_1.randomUUID)();
|
|
79
|
-
const creatioAuthUrl = `/oauth/start?authKey=${authKey}&client_id=${params.client_id}&redirect_uri=${encodeURIComponent(params.redirect_uri)}&code_challenge=${params.code_challenge}&code_challenge_method=${params.code_challenge_method}&state=${params.state || ''}`;
|
|
80
|
-
res.redirect(creatioAuthUrl);
|
|
81
|
-
}
|
|
82
|
-
catch (error) {
|
|
83
|
-
log_1.default.error('oauth.authorize.error', { error: String(error) });
|
|
84
|
-
res.status(500).send('Authorization failed');
|
|
85
|
-
}
|
|
86
|
-
}
|
|
87
|
-
async handleTokenExchange(req, res) {
|
|
88
|
-
try {
|
|
89
|
-
const tokenParams = req.body || {};
|
|
90
|
-
log_1.default.info('oauth.token.request', {
|
|
91
|
-
contentType: req.headers['content-type'],
|
|
92
|
-
hasBody: !!req.body,
|
|
93
|
-
bodyKeys: req.body ? Object.keys(req.body) : [],
|
|
94
|
-
params: {
|
|
95
|
-
grant_type: tokenParams.grant_type,
|
|
96
|
-
code: tokenParams.code ? '***' + tokenParams.code.slice(-4) : 'missing',
|
|
97
|
-
client_id: tokenParams.client_id,
|
|
98
|
-
redirect_uri: tokenParams.redirect_uri,
|
|
99
|
-
has_code_verifier: !!tokenParams.code_verifier,
|
|
100
|
-
},
|
|
101
|
-
});
|
|
102
|
-
const result = await this._oauthServer.exchangeCodeForToken(tokenParams);
|
|
103
|
-
if ('error' in result) {
|
|
104
|
-
return res.status(400).json(result);
|
|
105
|
-
}
|
|
106
|
-
res.json(result);
|
|
107
|
-
}
|
|
108
|
-
catch (error) {
|
|
109
|
-
log_1.default.error('oauth.token.error', { error: String(error) });
|
|
110
|
-
res.status(500).json({
|
|
111
|
-
error: 'server_error',
|
|
112
|
-
error_description: 'Failed to exchange token',
|
|
113
|
-
});
|
|
114
|
-
}
|
|
115
|
-
}
|
|
116
|
-
}
|
|
117
|
-
exports.MCPOAuthHandlers = MCPOAuthHandlers;
|
|
118
|
-
//# sourceMappingURL=mcp-oauth-handlers.js.map
|
|
@@ -1 +0,0 @@
|
|
|
1
|
-
{"version":3,"file":"mcp-oauth-handlers.js","sourceRoot":"","sources":["../../../src/server/http/mcp-oauth-handlers.ts"],"names":[],"mappings":";;;;;;AAAA,6CAAyC;AAEzC,oDAA4B;AAC5B,oDAAsD;AAKtD,MAAa,gBAAgB;IACX,YAAY,CAAc;IAE3C,YAAY,WAAwB;QACnC,IAAI,CAAC,YAAY,GAAG,WAAW,CAAC;IACjC,CAAC;IAEM,cAAc,CAAC,GAAY,EAAE,GAAa;QAChD,MAAM,QAAQ,GAAG,IAAI,CAAC,YAAY,CAAC,8BAA8B,EAAE,CAAC;QACpE,GAAG,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;IACpB,CAAC;IAEM,wBAAwB,CAAC,GAAY,EAAE,GAAa;QAC1D,IAAI,CAAC;YACJ,MAAM,EAAE,aAAa,EAAE,GAAG,GAAG,CAAC,IAAI,CAAC;YACnC,MAAM,eAAe,GAAG,4BAAe,CAAC,0BAA0B,CAAC,aAAa,CAAC,CAAC;YAClF,IAAI,eAAe,EAAE,CAAC;gBACrB,OAAO,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;oBAC3B,KAAK,EAAE,iBAAiB;oBACxB,iBAAiB,EAAE,eAAe;iBAClC,CAAC,CAAC;YACJ,CAAC;YACD,MAAM,MAAM,GAAG,IAAI,CAAC,YAAY,CAAC,cAAc,CAAC,aAAa,CAAC,CAAC;YAC/D,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QAC9B,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YAChB,aAAG,CAAC,KAAK,CAAC,sBAAsB,EAAE,EAAE,KAAK,EAAE,MAAM,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;YAC5D,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;gBACpB,KAAK,EAAE,cAAc;gBACrB,iBAAiB,EAAE,2BAA2B;aAC9C,CAAC,CAAC;QACJ,CAAC;IACF,CAAC;IAEM,KAAK,CAAC,mBAAmB,CAAC,GAAY,EAAE,GAAa;QAC3D,IAAI,CAAC;YACJ,MAAM,MAAM,GAAG;gBACd,SAAS,EAAE,GAAG,CAAC,KAAK,CAAC,SAAmB;gBACxC,YAAY,EAAE,GAAG,CAAC,KAAK,CAAC,YAAsB;gBAC9C,aAAa,EAAE,GAAG,CAAC,KAAK,CAAC,aAAuB;gBAChD,KAAK,EAAE,GAAG,CAAC,KAAK,CAAC,KAAe;gBAChC,cAAc,EAAE,GAAG,CAAC,KAAK,CAAC,cAAwB;gBAClD,qBAAqB,EAAE,GAAG,CAAC,KAAK,CAAC,qBAA+B;gBAChE,KAAK,EAAE,GAAG,CAAC,KAAK,CAAC,KAAe;aAChC,CAAC;YACF,6EAA6E;YAC7E,wEAAwE;YACxE,IAAI,CAAC,MAAM,CAAC,YAAY,IAAI,CAAC,4BAAe,CAAC,oBAAoB,CAAC,MAAM,CAAC,YAAY,CAAC,EAAE,CAAC;gBACxF,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;oBACpB,KAAK,EAAE,iBAAiB;oBACxB,iBAAiB,EAAE,oCAAoC;iBACvD,CAAC,CAAC;gBACH,OAAO;YACR,CAAC;YACD,uFAAuF;YACvF,IAAI,CAAC,MAAM,CAAC,KAAK,EAAE,CAAC;gBACnB,MAAM,QAAQ,GAAG,IAAI,GAAG,CAAC,MAAM,CAAC,YAAY,CAAC,CAAC;gBAC9C,QAAQ,CAAC,YAAY,CAAC,GAAG,CAAC,OAAO,EAAE,iBAAiB,CAAC,CAAC;gBACtD,QAAQ,CAAC,YAAY,CAAC,GAAG,CAAC,mBAAmB,EAAE,6BAA6B,CAAC,CAAC;gBAC9E,OAAO,GAAG,CAAC,QAAQ,CAAC,QAAQ,CAAC,QAAQ,EAAE,CAAC,CAAC;YAC1C,CAAC;YACD,MAAM,eAAe,GAAG,IAAI,CAAC,YAAY,CAAC,4BAA4B,CAAC,MAAM,CAAC,CAAC;YAC/E,IAAI,eAAe,EAAE,CAAC;gBACrB,MAAM,QAAQ,GAAG,IAAI,GAAG,CAAC,MAAM,CAAC,YAAY,CAAC,CAAC;gBAC9C,QAAQ,CAAC,YAAY,CAAC,GAAG,CAAC,OAAO,EAAE,eAAe,CAAC,KAAK,CAAC,CAAC;gBAC1D,IAAI,eAAe,CAAC,iBAAiB,EAAE,CAAC;oBACvC,QAAQ,CAAC,YAAY,CAAC,GAAG,CACxB,mBAAmB,EACnB,eAAe,CAAC,iBAAiB,CACjC,CAAC;gBACH,CAAC;gBACD,QAAQ,CAAC,YAAY,CAAC,GAAG,CAAC,OAAO,EAAE,MAAM,CAAC,KAAK,CAAC,CAAC;gBACjD,OAAO,GAAG,CAAC,QAAQ,CAAC,QAAQ,CAAC,QAAQ,EAAE,CAAC,CAAC;YAC1C,CAAC;YACD,IAAI,CAAC,YAAY,CAAC,UAAU,CAAC,MAAM,CAAC,KAAK,EAAE,MAAM,CAAC,SAAS,CAAC,CAAC;YAC7D,MAAM,OAAO,GAAG,IAAA,wBAAU,GAAE,CAAC;YAC7B,MAAM,cAAc,GAAG,wBAAwB,OAAO,cAAc,MAAM,CAAC,SAAS,iBAAiB,kBAAkB,CAAC,MAAM,CAAC,YAAY,CAAC,mBAAmB,MAAM,CAAC,cAAc,0BAA0B,MAAM,CAAC,qBAAqB,UAAU,MAAM,CAAC,KAAK,IAAI,EAAE,EAAE,CAAC;YACzQ,GAAG,CAAC,QAAQ,CAAC,cAAc,CAAC,CAAC;QAC9B,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YAChB,aAAG,CAAC,KAAK,CAAC,uBAAuB,EAAE,EAAE,KAAK,EAAE,MAAM,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;YAC7D,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,sBAAsB,CAAC,CAAC;QAC9C,CAAC;IACF,CAAC;IAEM,KAAK,CAAC,mBAAmB,CAAC,GAAY,EAAE,GAAa;QAC3D,IAAI,CAAC;YACJ,MAAM,WAAW,GAAG,GAAG,CAAC,IAAI,IAAI,EAAE,CAAC;YACnC,aAAG,CAAC,IAAI,CAAC,qBAAqB,EAAE;gBAC/B,WAAW,EAAE,GAAG,CAAC,OAAO,CAAC,cAAc,CAAC;gBACxC,OAAO,EAAE,CAAC,CAAC,GAAG,CAAC,IAAI;gBACnB,QAAQ,EAAE,GAAG,CAAC,IAAI,CAAC,CAAC,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,EAAE;gBAC/C,MAAM,EAAE;oBACP,UAAU,EAAE,WAAW,CAAC,UAAU;oBAClC,IAAI,EAAE,WAAW,CAAC,IAAI,CAAC,CAAC,CAAC,KAAK,GAAG,WAAW,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,SAAS;oBACvE,SAAS,EAAE,WAAW,CAAC,SAAS;oBAChC,YAAY,EAAE,WAAW,CAAC,YAAY;oBACtC,iBAAiB,EAAE,CAAC,CAAC,WAAW,CAAC,aAAa;iBAC9C;aACD,CAAC,CAAC;YACH,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,YAAY,CAAC,oBAAoB,CAAC,WAAW,CAAC,CAAC;YACzE,IAAI,OAAO,IAAI,MAAM,EAAE,CAAC;gBACvB,OAAO,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;YACrC,CAAC;YACD,GAAG,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QAClB,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YAChB,aAAG,CAAC,KAAK,CAAC,mBAAmB,EAAE,EAAE,KAAK,EAAE,MAAM,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;YACzD,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;gBACpB,KAAK,EAAE,cAAc;gBACrB,iBAAiB,EAAE,0BAA0B;aAC7C,CAAC,CAAC;QACJ,CAAC;IACF,CAAC;CACD;AA/GD,4CA+GC"}
|