mcp-use 0.2.0 → 1.0.0

package/dist/chunk-YUSC6R6V.js

@@ -0,0 +1,299 @@
+import {
+  __name
+} from "./chunk-SHUYVCID.js";
+
+// src/auth/browser-provider.ts
+import { sanitizeUrl } from "strict-url-sanitise";
+var BrowserOAuthClientProvider = class {
+  static {
+    __name(this, "BrowserOAuthClientProvider");
+  }
+  serverUrl;
+  storageKeyPrefix;
+  serverUrlHash;
+  clientName;
+  clientUri;
+  callbackUrl;
+  preventAutoAuth;
+  onPopupWindow;
+  constructor(serverUrl, options = {}) {
+    this.serverUrl = serverUrl;
+    this.storageKeyPrefix = options.storageKeyPrefix || "mcp:auth";
+    this.serverUrlHash = this.hashString(serverUrl);
+    this.clientName = options.clientName || "MCP Browser Client";
+    this.clientUri = options.clientUri || (typeof window !== "undefined" ? window.location.origin : "");
+    this.callbackUrl = sanitizeUrl(
+      options.callbackUrl || (typeof window !== "undefined" ? new URL("/oauth/callback", window.location.origin).toString() : "/oauth/callback")
+    );
+    this.preventAutoAuth = options.preventAutoAuth;
+    this.onPopupWindow = options.onPopupWindow;
+  }
+  // --- SDK Interface Methods ---
+  get redirectUrl() {
+    return sanitizeUrl(this.callbackUrl);
+  }
+  get clientMetadata() {
+    return {
+      redirect_uris: [this.redirectUrl],
+      token_endpoint_auth_method: "none",
+      // Public client
+      grant_types: ["authorization_code", "refresh_token"],
+      response_types: ["code"],
+      client_name: this.clientName,
+      client_uri: this.clientUri
+      // scope: 'openid profile email mcp', // Example scopes, adjust as needed
+    };
+  }
+  async clientInformation() {
+    const key = this.getKey("client_info");
+    const data = localStorage.getItem(key);
+    if (!data) return void 0;
+    try {
+      return JSON.parse(data);
+    } catch (e) {
+      console.warn(`[${this.storageKeyPrefix}] Failed to parse client information:`, e);
+      localStorage.removeItem(key);
+      return void 0;
+    }
+  }
+  // NOTE: The SDK's auth() function uses this if dynamic registration is needed.
+  // Ensure your OAuthClientInformationFull matches the expected structure if DCR is used.
+  async saveClientInformation(clientInformation) {
+    const key = this.getKey("client_info");
+    localStorage.setItem(key, JSON.stringify(clientInformation));
+  }
+  async tokens() {
+    const key = this.getKey("tokens");
+    const data = localStorage.getItem(key);
+    if (!data) return void 0;
+    try {
+      return JSON.parse(data);
+    } catch (e) {
+      console.warn(`[${this.storageKeyPrefix}] Failed to parse tokens:`, e);
+      localStorage.removeItem(key);
+      return void 0;
+    }
+  }
+  async saveTokens(tokens) {
+    const key = this.getKey("tokens");
+    localStorage.setItem(key, JSON.stringify(tokens));
+    localStorage.removeItem(this.getKey("code_verifier"));
+    localStorage.removeItem(this.getKey("last_auth_url"));
+  }
+  async saveCodeVerifier(codeVerifier) {
+    const key = this.getKey("code_verifier");
+    localStorage.setItem(key, codeVerifier);
+  }
+  async codeVerifier() {
+    const key = this.getKey("code_verifier");
+    const verifier = localStorage.getItem(key);
+    if (!verifier) {
+      throw new Error(
+        `[${this.storageKeyPrefix}] Code verifier not found in storage for key ${key}. Auth flow likely corrupted or timed out.`
+      );
+    }
+    return verifier;
+  }
+  /**
+   * Generates and stores the authorization URL with state, without opening a popup.
+   * Used when preventAutoAuth is enabled to provide the URL for manual navigation.
+   * @param authorizationUrl The fully constructed authorization URL from the SDK.
+   * @returns The full authorization URL with state parameter.
+   */
+  async prepareAuthorizationUrl(authorizationUrl) {
+    const state = globalThis.crypto.randomUUID();
+    const stateKey = `${this.storageKeyPrefix}:state_${state}`;
+    const stateData = {
+      serverUrlHash: this.serverUrlHash,
+      expiry: Date.now() + 1e3 * 60 * 10,
+      // State expires in 10 minutes
+      // Store provider options needed to reconstruct on callback
+      providerOptions: {
+        serverUrl: this.serverUrl,
+        storageKeyPrefix: this.storageKeyPrefix,
+        clientName: this.clientName,
+        clientUri: this.clientUri,
+        callbackUrl: this.callbackUrl
+      }
+    };
+    localStorage.setItem(stateKey, JSON.stringify(stateData));
+    authorizationUrl.searchParams.set("state", state);
+    const authUrlString = authorizationUrl.toString();
+    const sanitizedAuthUrl = sanitizeUrl(authUrlString);
+    localStorage.setItem(this.getKey("last_auth_url"), sanitizedAuthUrl);
+    return sanitizedAuthUrl;
+  }
+  /**
+   * Redirects the user agent to the authorization URL, storing necessary state.
+   * This now adheres to the SDK's void return type expectation for the interface.
+   * @param authorizationUrl The fully constructed authorization URL from the SDK.
+   */
+  async redirectToAuthorization(authorizationUrl) {
+    if (this.preventAutoAuth) return;
+    const sanitizedAuthUrl = await this.prepareAuthorizationUrl(authorizationUrl);
+    const popupFeatures = "width=600,height=700,resizable=yes,scrollbars=yes,status=yes";
+    try {
+      const popup = window.open(sanitizedAuthUrl, `mcp_auth_${this.serverUrlHash}`, popupFeatures);
+      if (this.onPopupWindow) {
+        this.onPopupWindow(sanitizedAuthUrl, popupFeatures, popup);
+      }
+      if (!popup || popup.closed || typeof popup.closed === "undefined") {
+        console.warn(
+          `[${this.storageKeyPrefix}] Popup likely blocked by browser. Manual navigation might be required using the stored URL.`
+        );
+      } else {
+        popup.focus();
+        console.info(`[${this.storageKeyPrefix}] Redirecting to authorization URL in popup.`);
+      }
+    } catch (e) {
+      console.error(`[${this.storageKeyPrefix}] Error opening popup window:`, e);
+    }
+  }
+  // --- Helper Methods ---
+  /**
+   * Retrieves the last URL passed to `redirectToAuthorization`. Useful for manual fallback.
+   */
+  getLastAttemptedAuthUrl() {
+    const storedUrl = localStorage.getItem(this.getKey("last_auth_url"));
+    return storedUrl ? sanitizeUrl(storedUrl) : null;
+  }
+  clearStorage() {
+    const prefixPattern = `${this.storageKeyPrefix}_${this.serverUrlHash}_`;
+    const statePattern = `${this.storageKeyPrefix}:state_`;
+    const keysToRemove = [];
+    let count = 0;
+    for (let i = 0; i < localStorage.length; i++) {
+      const key = localStorage.key(i);
+      if (!key) continue;
+      if (key.startsWith(prefixPattern)) {
+        keysToRemove.push(key);
+      } else if (key.startsWith(statePattern)) {
+        try {
+          const item = localStorage.getItem(key);
+          if (item) {
+            const state = JSON.parse(item);
+            if (state.serverUrlHash === this.serverUrlHash) {
+              keysToRemove.push(key);
+            }
+          }
+        } catch (e) {
+          console.warn(`[${this.storageKeyPrefix}] Error parsing state key ${key} during clearStorage:`, e);
+        }
+      }
+    }
+    const uniqueKeysToRemove = [...new Set(keysToRemove)];
+    uniqueKeysToRemove.forEach((key) => {
+      localStorage.removeItem(key);
+      count++;
+    });
+    return count;
+  }
+  hashString(str) {
+    let hash = 0;
+    for (let i = 0; i < str.length; i++) {
+      const char = str.charCodeAt(i);
+      hash = (hash << 5) - hash + char;
+      hash = hash & hash;
+    }
+    return Math.abs(hash).toString(16);
+  }
+  getKey(keySuffix) {
+    return `${this.storageKeyPrefix}_${this.serverUrlHash}_${keySuffix}`;
+  }
+};
+
+// src/auth/callback.ts
+import { auth } from "@modelcontextprotocol/sdk/client/auth.js";
+async function onMcpAuthorization() {
+  const queryParams = new URLSearchParams(window.location.search);
+  const code = queryParams.get("code");
+  const state = queryParams.get("state");
+  const error = queryParams.get("error");
+  const errorDescription = queryParams.get("error_description");
+  const logPrefix = "[mcp-callback]";
+  console.log(`${logPrefix} Handling callback...`, { code, state, error, errorDescription });
+  let provider = null;
+  let storedStateData = null;
+  const stateKey = state ? `mcp:auth:state_${state}` : null;
+  try {
+    if (error) {
+      throw new Error(`OAuth error: ${error} - ${errorDescription || "No description provided."}`);
+    }
+    if (!code) {
+      throw new Error("Authorization code not found in callback query parameters.");
+    }
+    if (!state || !stateKey) {
+      throw new Error("State parameter not found or invalid in callback query parameters.");
+    }
+    const storedStateJSON = localStorage.getItem(stateKey);
+    if (!storedStateJSON) {
+      throw new Error(`Invalid or expired state parameter "${state}". No matching state found in storage.`);
+    }
+    try {
+      storedStateData = JSON.parse(storedStateJSON);
+    } catch (e) {
+      throw new Error("Failed to parse stored OAuth state.");
+    }
+    if (!storedStateData.expiry || storedStateData.expiry < Date.now()) {
+      localStorage.removeItem(stateKey);
+      throw new Error("OAuth state has expired. Please try initiating authentication again.");
+    }
+    if (!storedStateData.providerOptions) {
+      throw new Error("Stored state is missing required provider options.");
+    }
+    const { serverUrl, ...providerOptions } = storedStateData.providerOptions;
+    console.log(`${logPrefix} Re-instantiating provider for server: ${serverUrl}`);
+    provider = new BrowserOAuthClientProvider(serverUrl, providerOptions);
+    console.log(`${logPrefix} Calling SDK auth() to exchange code...`);
+    const authResult = await auth(provider, { serverUrl, authorizationCode: code });
+    if (authResult === "AUTHORIZED") {
+      console.log(`${logPrefix} Authorization successful via SDK auth(). Notifying opener...`);
+      if (window.opener && !window.opener.closed) {
+        window.opener.postMessage({ type: "mcp_auth_callback", success: true }, window.location.origin);
+        window.close();
+      } else {
+        console.warn(`${logPrefix} No opener window detected. Redirecting to root.`);
+        const pathParts = window.location.pathname.split("/").filter(Boolean);
+        const basePath = pathParts.length > 0 && pathParts[pathParts.length - 1] === "callback" ? "/" + pathParts.slice(0, -2).join("/") : "/";
+        window.location.href = basePath || "/";
+      }
+      localStorage.removeItem(stateKey);
+    } else {
+      console.warn(`${logPrefix} SDK auth() returned unexpected status: ${authResult}`);
+      throw new Error(`Unexpected result from authentication library: ${authResult}`);
+    }
+  } catch (err) {
+    console.error(`${logPrefix} Error during OAuth callback handling:`, err);
+    const errorMessage = err instanceof Error ? err.message : String(err);
+    if (window.opener && !window.opener.closed) {
+      window.opener.postMessage({ type: "mcp_auth_callback", success: false, error: errorMessage }, window.location.origin);
+    }
+    try {
+      document.body.innerHTML = `
+            <div style="font-family: sans-serif; padding: 20px;">
+            <h1>Authentication Error</h1>
+            <p style="color: red; background-color: #ffebeb; border: 1px solid red; padding: 10px; border-radius: 4px;">
+                ${errorMessage}
+            </p>
+            <p>You can close this window or <a href="#" onclick="window.close(); return false;">click here to close</a>.</p>
+            <pre style="font-size: 0.8em; color: #555; margin-top: 20px; white-space: pre-wrap;">${err instanceof Error ? err.stack : ""}</pre>
+            </div>
+        `;
+    } catch (displayError) {
+      console.error(`${logPrefix} Could not display error in callback window:`, displayError);
+    }
+    if (stateKey) {
+      localStorage.removeItem(stateKey);
+    }
+    if (provider) {
+      localStorage.removeItem(provider.getKey("code_verifier"));
+      localStorage.removeItem(provider.getKey("last_auth_url"));
+    }
+  }
+}
+__name(onMcpAuthorization, "onMcpAuthorization");
+
+export {
+  BrowserOAuthClientProvider,
+  onMcpAuthorization
+};