mcp-wordpress 1.2.0 → 1.2.2

package/README.md

@@ -63,7 +63,29 @@ npx mcp-wordpress setup
 npm run setup
 ```
 
-## 🏆 Latest Achievement: v1.2.0 - Performance & Documentation Revolution
+## 🏆 Latest Achievement: v1.2.1 - Test Infrastructure & Multi-Site Enhancement
+
+Building on v1.2.0's performance monitoring and documentation features, v1.2.1 delivers **100% test reliability**, **enhanced multi-site support**, and **production-ready repository organization**:
+
+### ✅ Test Infrastructure Overhaul (v1.2.1)
+
+- **🔧 100% Test Success Rate**: Fixed all failing integration and tool tests
+- **🌐 Multi-Site Testing**: Comprehensive test suite for multi-site WordPress configurations  
+- **🛡️ Enhanced Security**: Improved .gitignore and credential protection
+- **📋 Test Organization**: Streamlined test scripts and better error reporting
+- **⚡ Quick Validation**: New `npm run test:multisite` command for rapid configuration testing
+
+### 🌐 Multi-Site Configuration Enhancements (v1.2.1)
+
+- **📝 Complete Documentation**: Comprehensive Claude Desktop setup guide for multi-site usage
+- **🔧 Fixed Configuration**: Resolved JWT authentication validation issues
+- **✅ Site Validation**: Enhanced uniqueness checks for site URLs and IDs
+- **🚀 Quick Testing**: Instant validation of all configured WordPress sites
+- **📊 Status Reporting**: Clear success/failure reporting for each site configuration
+
+---
+
+## 🏆 Previous Achievement: v1.2.0 - Performance & Documentation Revolution
 
 We've implemented a **comprehensive performance monitoring system**, **intelligent caching**, **auto-generated documentation**, and **Docker containerization** - all while maintaining complete backward compatibility:
 
@@ -106,13 +128,16 @@ We've implemented a **comprehensive performance monitoring system**, **intellige
 - [API Documentation](./docs/api/README.md)
 - [Docker Deployment Guide](./docs/DOCKER.md)
 
-## 🔐 Authentication & Testing Status
+## 🔐 Authentication & Testing Status (v1.2.1)
 
 ✅ **Application Passwords** - Tested and working perfectly
 ✅ **JWT Authentication** - Supported with plugin  
 ✅ **Basic Authentication** - Development ready
 ✅ **API Key Authentication** - Plugin-based support
-✅ **All Tests Passing** - 100% success rate (41/41 tests)
+✅ **Integration Tests** - 100% success rate (9/9 tests passing)
+✅ **Multi-Site Tests** - 100% success rate (3/3 sites verified)
+✅ **Security Tests** - 100% success rate (40/40 tests passing)
+✅ **Performance Tests** - 100% success rate (8/8 tests passing)
 ✅ **Tool Tests** - 100% success rate (14/14 tools working)
 
 The setup wizard guides you through:
@@ -148,7 +173,7 @@ I want to use the NPX version (mcp-wordpress) so I don't need to install anythin
 
 For local development and customization:
 
-```
+```text
 Build and configure the MCP WordPress server project from https://github.com/thomasdyhr/mcp-wordpress locally on my computer. 
 
 Please:
@@ -291,6 +316,139 @@ Here's a complete `claude_desktop_config.json` file with MCP WordPress:
 }
 ```
 
+## 🌐 Multi-Site Configuration
+
+MCP WordPress Server supports managing multiple WordPress sites from a single configuration. This is perfect for agencies, developers managing multiple client sites, or anyone with multiple WordPress installations.
+
+### Setting Up Multi-Site Configuration
+
+1. **Create a `mcp-wordpress.config.json` file** in your project root:
+
+```json
+{
+  "sites": [
+    {
+      "id": "site1",
+      "name": "My Main Site",
+      "config": {
+        "WORDPRESS_SITE_URL": "https://site1.com",
+        "WORDPRESS_USERNAME": "admin",
+        "WORDPRESS_APP_PASSWORD": "xxxx xxxx xxxx xxxx xxxx xxxx"
+      }
+    },
+    {
+      "id": "site2", 
+      "name": "My Blog",
+      "config": {
+        "WORDPRESS_SITE_URL": "https://blog.site2.com",
+        "WORDPRESS_USERNAME": "editor",
+        "WORDPRESS_APP_PASSWORD": "yyyy yyyy yyyy yyyy yyyy yyyy",
+        "WORDPRESS_AUTH_METHOD": "app-password"
+      }
+    },
+    {
+      "id": "dev",
+      "name": "Development Site",
+      "config": {
+        "WORDPRESS_SITE_URL": "http://localhost:8080",
+        "WORDPRESS_USERNAME": "dev_user",
+        "WORDPRESS_APP_PASSWORD": "zzzz zzzz zzzz zzzz zzzz zzzz"
+      }
+    }
+  ]
+}
+```
+
+1. **Configure Claude Desktop for Multi-Site**:
+
+```json
+{
+  "mcpServers": {
+    "mcp-wordpress": {
+      "command": "npx",
+      "args": ["mcp-wordpress"]
+    }
+  }
+}
+```
+
+Note: When using multi-site configuration, you don't need to specify environment variables in Claude Desktop. The server will read from your `mcp-wordpress.config.json` file.
+
+### Using Multi-Site Tools
+
+When you have multiple sites configured, all tools require a `site` parameter:
+
+```text
+# List posts from site1
+wp_list_posts --site="site1"
+
+# Create a post on the blog site
+wp_create_post --site="site2" --title="New Blog Post" --content="Content here"
+
+# Get user info from development site
+wp_get_current_user --site="dev"
+```
+
+### Important Multi-Site Notes
+
+- **Site IDs must be unique** - Each site needs a unique identifier
+- **Security**: The `mcp-wordpress.config.json` file contains sensitive credentials and should NEVER be committed to version control
+- **Default Site**: If only one site is configured, it will be used by default without needing the `--site` parameter
+- **Authentication**: Each site can use different authentication methods (app-password, jwt, basic, api-key)
+
+### Example: Managing Multiple Client Sites
+
+```json
+{
+  "sites": [
+    {
+      "id": "client-acme",
+      "name": "ACME Corporation",
+      "config": {
+        "WORDPRESS_SITE_URL": "https://acme-corp.com",
+        "WORDPRESS_USERNAME": "mcp_admin",
+        "WORDPRESS_APP_PASSWORD": "aaaa bbbb cccc dddd eeee ffff"
+      }
+    },
+    {
+      "id": "client-tech",
+      "name": "TechStartup Blog",
+      "config": {
+        "WORDPRESS_SITE_URL": "https://blog.techstartup.io",
+        "WORDPRESS_USERNAME": "content_manager",
+        "WORDPRESS_APP_PASSWORD": "gggg hhhh iiii jjjj kkkk llll"
+      }
+    },
+    {
+      "id": "client-shop",
+      "name": "Online Shop",
+      "config": {
+        "WORDPRESS_SITE_URL": "https://shop.example.com",
+        "WORDPRESS_USERNAME": "shop_admin",
+        "WORDPRESS_APP_PASSWORD": "mmmm nnnn oooo pppp qqqq rrrr",
+        "WORDPRESS_AUTH_METHOD": "jwt",
+        "WORDPRESS_JWT_SECRET": "your-jwt-secret-here"
+      }
+    }
+  ]
+}
+```
+
+Then in Claude Desktop, you can manage all sites:
+
+```text
+# Check posts across all client sites
+wp_list_posts --site="client-acme" --per_page=5
+wp_list_posts --site="client-tech" --per_page=5
+wp_list_posts --site="client-shop" --per_page=5
+
+# Update content on specific sites
+wp_update_post --site="client-acme" --id=123 --title="Updated Title"
+
+# Manage media across sites
+wp_list_media --site="client-shop" --media_type="image"
+```
+
 ## 🛠 Build System
 
 ### TypeScript Build
@@ -529,7 +687,7 @@ npm run lint:fix
 
 ## 🏗 Project Structure
 
-```
+```diagram
 mcp-wordpress/
 ├── src/                     # TypeScript source code
 │   ├── index.ts            # Main MCP server
@@ -665,7 +823,7 @@ services:
 
 Test the MCP server against a real WordPress instance using our automated testing setup:
 
-```bash
+```bash copy
 # Automated live contract testing (recommended)
 npm run test:contracts:live
 ```

package/dist/security/SecurityConfig.d.ts

@@ -38,11 +38,11 @@ export declare const SecurityConfig: {
         auth: number;
     };
     headers: {
-        "X-Content-Type-Options": string;
-        "X-Frame-Options": string;
-        "X-XSS-Protection": string;
-        "Strict-Transport-Security": string;
-        "Content-Security-Policy": string;
+        'X-Content-Type-Options': string;
+        'X-Frame-Options': string;
+        'X-XSS-Protection': string;
+        'Strict-Transport-Security': string;
+        'Content-Security-Policy': string;
     };
     errorMessages: {
         authentication: string;

package/dist/security/SecurityConfig.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"SecurityConfig.d.ts","sourceRoot":"","sources":["../../src/security/SecurityConfig.ts"],"names":[],"mappings":"AAAA;;GAEG;AAIH,eAAO,MAAM,cAAc;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;CAwK1B,CAAC;AAEF;;GAEG;AACH,qBAAa,aAAa;IACxB;;OAEG;IACH,MAAM,CAAC,mBAAmB,CAAC,GAAG,EAAE,GAAG,GAAG,GAAG;IAsBzC;;OAEG;IACH,MAAM,CAAC,YAAY,CAAC,GAAG,EAAE,MAAM,GAAG,MAAM;IAUxC;;OAEG;IACH,MAAM,CAAC,mBAAmB,CAAC,MAAM,GAAE,MAAW,GAAG,MAAM;IAgBvD;;OAEG;IACH,MAAM,CAAC,sBAAsB,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO;IAKxD;;OAEG;IACH,MAAM,CAAC,cAAc,CAAC,IAAI,EAAE,GAAG,GAAG,GAAG;CAStC;AAED;;GAEG;AACH,wBAAgB,iBAAiB,CAC/B,KAAK,EAAE,GAAG,EACV,eAAe,GAAE,MAAiD,GACjE,KAAK,CAeP;AAKD;;GAEG;AACH,wBAAgB,sBAAsB,IAAI;IACxC,UAAU,EAAE,OAAO,CAAC;IACpB,aAAa,EAAE,OAAO,CAAC;IACvB,YAAY,EAAE,OAAO,CAAC;CACvB,CAQA"}
+{"version":3,"file":"SecurityConfig.d.ts","sourceRoot":"","sources":["../../src/security/SecurityConfig.ts"],"names":[],"mappings":"AAAA;;GAEG;AAIH,eAAO,MAAM,cAAc;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;CAwK1B,CAAC;AAEF;;GAEG;AACH,qBAAa,aAAa;IACxB;;OAEG;IACH,MAAM,CAAC,mBAAmB,CAAC,GAAG,EAAE,GAAG,GAAG,GAAG;IAsBzC;;OAEG;IACH,MAAM,CAAC,YAAY,CAAC,GAAG,EAAE,MAAM,GAAG,MAAM;IAUxC;;OAEG;IACH,MAAM,CAAC,mBAAmB,CAAC,MAAM,GAAE,MAAW,GAAG,MAAM;IAgBvD;;OAEG;IACH,MAAM,CAAC,sBAAsB,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO;IAKxD;;OAEG;IACH,MAAM,CAAC,cAAc,CAAC,IAAI,EAAE,GAAG,GAAG,GAAG;CAStC;AAED;;GAEG;AACH,wBAAgB,iBAAiB,CAC/B,KAAK,EAAE,GAAG,EACV,eAAe,GAAE,MAAiD,GACjE,KAAK,CAeP;AAKD;;GAEG;AACH,wBAAgB,sBAAsB,IAAI;IACxC,UAAU,EAAE,OAAO,CAAC;IACpB,aAAa,EAAE,OAAO,CAAC;IACvB,YAAY,EAAE,OAAO,CAAC;CACrB,CAQF"}

package/dist/security/SecurityConfig.js

@@ -1,66 +1,66 @@
 /**
  * Security configuration and constants for MCP WordPress
  */
-import { randomBytes } from "crypto";
+import { randomBytes } from 'crypto';
 export const SecurityConfig = {
     // Rate limiting
     rateLimiting: {
         default: {
             windowMs: 60 * 1000, // 1 minute
-            maxRequests: 60,
+            maxRequests: 60
         },
         authentication: {
             windowMs: 5 * 60 * 1000, // 5 minutes
-            maxAttempts: 5,
+            maxAttempts: 5
         },
         upload: {
             windowMs: 60 * 1000, // 1 minute
-            maxRequests: 10,
-        },
+            maxRequests: 10
+        }
     },
     // File upload restrictions
     fileUpload: {
         maxSizeMB: 10,
         allowedMimeTypes: [
-            "image/jpeg",
-            "image/png",
-            "image/gif",
-            "image/webp",
-            "image/svg+xml",
-            "application/pdf",
-            "application/msword",
-            "application/vnd.openxmlformats-officedocument.wordprocessingml.document",
-            "application/vnd.ms-excel",
-            "application/vnd.openxmlformats-officedocument.spreadsheetml.sheet",
-            "text/plain",
-            "text/csv",
+            'image/jpeg',
+            'image/png',
+            'image/gif',
+            'image/webp',
+            'image/svg+xml',
+            'application/pdf',
+            'application/msword',
+            'application/vnd.openxmlformats-officedocument.wordprocessingml.document',
+            'application/vnd.ms-excel',
+            'application/vnd.openxmlformats-officedocument.spreadsheetml.sheet',
+            'text/plain',
+            'text/csv'
         ],
         // Dangerous file extensions to block
         blockedExtensions: [
-            ".exe",
-            ".bat",
-            ".cmd",
-            ".com",
-            ".pif",
-            ".scr",
-            ".vbs",
-            ".js",
-            ".jar",
-            ".zip",
-            ".rar",
-            ".tar",
-            ".php",
-            ".php3",
-            ".php4",
-            ".php5",
-            ".phtml",
-            ".sh",
-            ".bash",
-            ".zsh",
-            ".fish",
-            ".ps1",
-            ".psm1",
-        ],
+            '.exe',
+            '.bat',
+            '.cmd',
+            '.com',
+            '.pif',
+            '.scr',
+            '.vbs',
+            '.js',
+            '.jar',
+            '.zip',
+            '.rar',
+            '.tar',
+            '.php',
+            '.php3',
+            '.php4',
+            '.php5',
+            '.phtml',
+            '.sh',
+            '.bash',
+            '.zsh',
+            '.fish',
+            '.ps1',
+            '.psm1'
+        ]
     },
     // Input validation
     validation: {
@@ -72,54 +72,54 @@ export const SecurityConfig = {
         maxUsernameLength: 60,
         minUsernameLength: 3,
         maxPasswordLength: 128,
-        minPasswordLength: 8,
+        minPasswordLength: 8
     },
     // Request timeouts (milliseconds)
     timeouts: {
         default: 30000, // 30 seconds
         upload: 600000, // 10 minutes
-        auth: 10000, // 10 seconds
+        auth: 10000 // 10 seconds
     },
     // Security headers
     headers: {
-        "X-Content-Type-Options": "nosniff",
-        "X-Frame-Options": "DENY",
-        "X-XSS-Protection": "1; mode=block",
-        "Strict-Transport-Security": "max-age=31536000; includeSubDomains",
-        "Content-Security-Policy": "default-src 'self'",
+        'X-Content-Type-Options': 'nosniff',
+        'X-Frame-Options': 'DENY',
+        'X-XSS-Protection': '1; mode=block',
+        'Strict-Transport-Security': 'max-age=31536000; includeSubDomains',
+        'Content-Security-Policy': 'default-src \'self\''
     },
     // Error messages (generic to avoid information disclosure)
     errorMessages: {
-        authentication: "Authentication failed. Please check your credentials.",
-        authorization: "You do not have permission to perform this action.",
-        validation: "Invalid input provided.",
-        rateLimit: "Too many requests. Please try again later.",
-        serverError: "An error occurred processing your request.",
-        notFound: "The requested resource was not found.",
+        authentication: 'Authentication failed. Please check your credentials.',
+        authorization: 'You do not have permission to perform this action.',
+        validation: 'Invalid input provided.',
+        rateLimit: 'Too many requests. Please try again later.',
+        serverError: 'An error occurred processing your request.',
+        notFound: 'The requested resource was not found.'
     },
     // Logging configuration
     logging: {
         // Fields to exclude from logs
         excludeFields: [
-            "password",
-            "appPassword",
-            "app_password",
-            "token",
-            "secret",
-            "authorization",
-            "cookie",
-            "session",
-            "key",
-            "apiKey",
-            "api_key",
+            'password',
+            'appPassword',
+            'app_password',
+            'token',
+            'secret',
+            'authorization',
+            'cookie',
+            'session',
+            'key',
+            'apiKey',
+            'api_key'
         ],
         // Patterns to redact in log messages
         redactPatterns: [
             /password["\s:=]+["']?([^"'\s]+)["']?/gi,
             /token["\s:=]+["']?([^"'\s]+)["']?/gi,
             /secret["\s:=]+["']?([^"'\s]+)["']?/gi,
-            /key["\s:=]+["']?([^"'\s]+)["']?/gi,
-        ],
+            /key["\s:=]+["']?([^"'\s]+)["']?/gi
+        ]
     },
     // Cache configuration
     cache: {
@@ -135,30 +135,30 @@ export const SecurityConfig = {
             semiStatic: 2 * 60 * 60 * 1000, // 2 hours - categories, tags, user profiles
             dynamic: 15 * 60 * 1000, // 15 minutes - posts, pages, comments
             session: 30 * 60 * 1000, // 30 minutes - authentication, current user
-            realtime: 60 * 1000, // 1 minute - real-time data
+            realtime: 60 * 1000 // 1 minute - real-time data
         },
         // Cache-Control headers by data type
         cacheHeaders: {
-            static: "public, max-age=14400", // 4 hours
-            semiStatic: "public, max-age=7200", // 2 hours
-            dynamic: "public, max-age=900", // 15 minutes
-            session: "private, max-age=1800", // 30 minutes
-            realtime: "public, max-age=60", // 1 minute
+            static: 'public, max-age=14400', // 4 hours
+            semiStatic: 'public, max-age=7200', // 2 hours
+            dynamic: 'public, max-age=900', // 15 minutes
+            session: 'private, max-age=1800', // 30 minutes
+            realtime: 'public, max-age=60' // 1 minute
         },
         // Invalidation settings
         invalidation: {
             enabled: true,
             batchSize: 100, // Max events to process in one batch
             queueTimeout: 5000, // Max time to wait before processing queue (ms)
-            enableCascading: true, // Allow cascading invalidations
+            enableCascading: true // Allow cascading invalidations
         },
         // Memory management
         cleanup: {
             interval: 60 * 1000, // Cleanup interval in milliseconds (1 minute)
             maxMemoryMB: 50, // Maximum memory usage for cache
-            evictionThreshold: 0.8, // Start evicting when 80% full
-        },
-    },
+            evictionThreshold: 0.8 // Start evicting when 80% full
+        }
+    }
 };
 /**
  * Security utility functions
@@ -168,15 +168,15 @@ export class SecurityUtils {
      * Redact sensitive information from objects
      */
     static redactSensitiveData(obj) {
-        if (typeof obj !== "object" || obj === null) {
+        if (typeof obj !== 'object' || obj === null) {
             return obj;
         }
         const redacted = Array.isArray(obj) ? [...obj] : { ...obj };
         for (const key in redacted) {
             if (SecurityConfig.logging.excludeFields.some((field) => key.toLowerCase().includes(field.toLowerCase()))) {
-                redacted[key] = "[REDACTED]";
+                redacted[key] = '[REDACTED]';
             }
-            else if (typeof redacted[key] === "object") {
+            else if (typeof redacted[key] === 'object') {
                 redacted[key] = SecurityUtils.redactSensitiveData(redacted[key]);
             }
         }
@@ -189,7 +189,7 @@ export class SecurityUtils {
         let redacted = str;
         for (const pattern of SecurityConfig.logging.redactPatterns) {
             redacted = redacted.replace(pattern, (match, value) => {
-                return match.replace(value, "[REDACTED]");
+                return match.replace(value, '[REDACTED]');
             });
         }
         return redacted;
@@ -198,9 +198,9 @@ export class SecurityUtils {
      * Generate secure random strings
      */
     static generateSecureToken(length = 32) {
-        const chars = "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789";
+        const chars = 'ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789';
         const array = new Uint8Array(length);
-        if (typeof crypto !== "undefined" && crypto.getRandomValues) {
+        if (typeof crypto !== 'undefined' && crypto.getRandomValues) {
             crypto.getRandomValues(array);
         }
         else {
@@ -208,7 +208,7 @@ export class SecurityUtils {
             const buffer = randomBytes(length);
             array.set(buffer);
         }
-        return Array.from(array, (byte) => chars[byte % chars.length]).join("");
+        return Array.from(array, (byte) => chars[byte % chars.length]).join('');
     }
     /**
      * Check if a file extension is allowed
@@ -221,10 +221,10 @@ export class SecurityUtils {
      * Sanitize log output
      */
     static sanitizeForLog(data) {
-        if (typeof data === "string") {
+        if (typeof data === 'string') {
             return SecurityUtils.redactString(data);
         }
-        if (typeof data === "object") {
+        if (typeof data === 'object') {
             return SecurityUtils.redactSensitiveData(data);
         }
         return data;
@@ -235,28 +235,28 @@ export class SecurityUtils {
  */
 export function createSecureError(error, fallbackMessage = SecurityConfig.errorMessages.serverError) {
     // Log the actual error for debugging (with sanitization)
-    if (process.env.NODE_ENV !== "production") {
-        console.error("Secure Error:", SecurityUtils.sanitizeForLog(error));
+    if (process.env.NODE_ENV !== 'production') {
+        console.error('Secure Error:', SecurityUtils.sanitizeForLog(error));
     }
     // Return generic error to prevent information disclosure
     const secureError = new Error(fallbackMessage);
     // Preserve error code if it's safe
-    if (error && typeof error.code === "string" && !error.code.includes("_")) {
+    if (error && typeof error.code === 'string' && !error.code.includes('_')) {
         secureError.code = error.code;
     }
     return secureError;
 }
 // Import path for file extension checking
-import * as path from "path";
+import * as path from 'path';
 /**
  * Environment-specific security settings
  */
 export function getEnvironmentSecurity() {
-    const isProduction = process.env.NODE_ENV === "production";
+    const isProduction = process.env.NODE_ENV === 'production';
     return {
         strictMode: isProduction,
         verboseErrors: !isProduction,
-        enforceHttps: isProduction,
+        enforceHttps: isProduction
     };
 }
 //# sourceMappingURL=SecurityConfig.js.map

package/dist/security/SecurityConfig.js.map

@@ -1 +1 @@
-{"version":3,"file":"SecurityConfig.js","sourceRoot":"","sources":["../../src/security/SecurityConfig.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,EAAE,WAAW,EAAE,MAAM,QAAQ,CAAC;AAErC,MAAM,CAAC,MAAM,cAAc,GAAG;IAC5B,gBAAgB;IAChB,YAAY,EAAE;QACZ,OAAO,EAAE;YACP,QAAQ,EAAE,EAAE,GAAG,IAAI,EAAE,WAAW;YAChC,WAAW,EAAE,EAAE;SAChB;QACD,cAAc,EAAE;YACd,QAAQ,EAAE,CAAC,GAAG,EAAE,GAAG,IAAI,EAAE,YAAY;YACrC,WAAW,EAAE,CAAC;SACf;QACD,MAAM,EAAE;YACN,QAAQ,EAAE,EAAE,GAAG,IAAI,EAAE,WAAW;YAChC,WAAW,EAAE,EAAE;SAChB;KACF;IAED,2BAA2B;IAC3B,UAAU,EAAE;QACV,SAAS,EAAE,EAAE;QACb,gBAAgB,EAAE;YAChB,YAAY;YACZ,WAAW;YACX,WAAW;YACX,YAAY;YACZ,eAAe;YACf,iBAAiB;YACjB,oBAAoB;YACpB,yEAAyE;YACzE,0BAA0B;YAC1B,mEAAmE;YACnE,YAAY;YACZ,UAAU;SACX;QACD,qCAAqC;QACrC,iBAAiB,EAAE;YACjB,MAAM;YACN,MAAM;YACN,MAAM;YACN,MAAM;YACN,MAAM;YACN,MAAM;YACN,MAAM;YACN,KAAK;YACL,MAAM;YACN,MAAM;YACN,MAAM;YACN,MAAM;YACN,MAAM;YACN,OAAO;YACP,OAAO;YACP,OAAO;YACP,QAAQ;YACR,KAAK;YACL,OAAO;YACP,MAAM;YACN,OAAO;YACP,MAAM;YACN,OAAO;SACR;KACF;IAED,mBAAmB;IACnB,UAAU,EAAE;QACV,eAAe,EAAE,IAAI;QACrB,cAAc,EAAE,GAAG;QACnB,gBAAgB,EAAE,KAAK;QACvB,gBAAgB,EAAE,GAAG;QACrB,YAAY,EAAE,IAAI;QAClB,iBAAiB,EAAE,EAAE;QACrB,iBAAiB,EAAE,CAAC;QACpB,iBAAiB,EAAE,GAAG;QACtB,iBAAiB,EAAE,CAAC;KACrB;IAED,kCAAkC;IAClC,QAAQ,EAAE;QACR,OAAO,EAAE,KAAK,EAAE,aAAa;QAC7B,MAAM,EAAE,MAAM,EAAE,aAAa;QAC7B,IAAI,EAAE,KAAK,EAAE,aAAa;KAC3B;IAED,mBAAmB;IACnB,OAAO,EAAE;QACP,wBAAwB,EAAE,SAAS;QACnC,iBAAiB,EAAE,MAAM;QACzB,kBAAkB,EAAE,eAAe;QACnC,2BAA2B,EAAE,qCAAqC;QAClE,yBAAyB,EAAE,oBAAoB;KAChD;IAED,2DAA2D;IAC3D,aAAa,EAAE;QACb,cAAc,EAAE,uDAAuD;QACvE,aAAa,EAAE,oDAAoD;QACnE,UAAU,EAAE,yBAAyB;QACrC,SAAS,EAAE,4CAA4C;QACvD,WAAW,EAAE,4CAA4C;QACzD,QAAQ,EAAE,uCAAuC;KAClD;IAED,wBAAwB;IACxB,OAAO,EAAE;QACP,8BAA8B;QAC9B,aAAa,EAAE;YACb,UAAU;YACV,aAAa;YACb,cAAc;YACd,OAAO;YACP,QAAQ;YACR,eAAe;YACf,QAAQ;YACR,SAAS;YACT,KAAK;YACL,QAAQ;YACR,SAAS;SACV;QACD,qCAAqC;QACrC,cAAc,EAAE;YACd,wCAAwC;YACxC,qCAAqC;YACrC,sCAAsC;YACtC,mCAAmC;SACpC;KACF;IAED,sBAAsB;IACtB,KAAK,EAAE;QACL,yBAAyB;QACzB,OAAO,EAAE,IAAI;QACb,OAAO,EAAE,IAAI,EAAE,mCAAmC;QAClD,UAAU,EAAE,EAAE,GAAG,EAAE,GAAG,IAAI,EAAE,yBAAyB;QACrD,SAAS,EAAE,IAAI;QACf,WAAW,EAAE,IAAI;QAEjB,0CAA0C;QAC1C,UAAU,EAAE;YACV,MAAM,EAAE,CAAC,GAAG,EAAE,GAAG,EAAE,GAAG,IAAI,EAAE,sCAAsC;YAClE,UAAU,EAAE,CAAC,GAAG,EAAE,GAAG,EAAE,GAAG,IAAI,EAAE,4CAA4C;YAC5E,OAAO,EAAE,EAAE,GAAG,EAAE,GAAG,IAAI,EAAE,sCAAsC;YAC/D,OAAO,EAAE,EAAE,GAAG,EAAE,GAAG,IAAI,EAAE,4CAA4C;YACrE,QAAQ,EAAE,EAAE,GAAG,IAAI,EAAE,4BAA4B;SAClD;QAED,qCAAqC;QACrC,YAAY,EAAE;YACZ,MAAM,EAAE,uBAAuB,EAAE,UAAU;YAC3C,UAAU,EAAE,sBAAsB,EAAE,UAAU;YAC9C,OAAO,EAAE,qBAAqB,EAAE,aAAa;YAC7C,OAAO,EAAE,uBAAuB,EAAE,aAAa;YAC/C,QAAQ,EAAE,oBAAoB,EAAE,WAAW;SAC5C;QAED,wBAAwB;QACxB,YAAY,EAAE;YACZ,OAAO,EAAE,IAAI;YACb,SAAS,EAAE,GAAG,EAAE,qCAAqC;YACrD,YAAY,EAAE,IAAI,EAAE,gDAAgD;YACpE,eAAe,EAAE,IAAI,EAAE,gCAAgC;SACxD;QAED,oBAAoB;QACpB,OAAO,EAAE;YACP,QAAQ,EAAE,EAAE,GAAG,IAAI,EAAE,8CAA8C;YACnE,WAAW,EAAE,EAAE,EAAE,iCAAiC;YAClD,iBAAiB,EAAE,GAAG,EAAE,+BAA+B;SACxD;KACF;CACF,CAAC;AAEF;;GAEG;AACH,MAAM,OAAO,aAAa;IACxB;;OAEG;IACH,MAAM,CAAC,mBAAmB,CAAC,GAAQ;QACjC,IAAI,OAAO,GAAG,KAAK,QAAQ,IAAI,GAAG,KAAK,IAAI,EAAE,CAAC;YAC5C,OAAO,GAAG,CAAC;QACb,CAAC;QAED,MAAM,QAAQ,GAAG,KAAK,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,GAAG,GAAG,CAAC,CAAC,CAAC,CAAC,EAAE,GAAG,GAAG,EAAE,CAAC;QAE5D,KAAK,MAAM,GAAG,IAAI,QAAQ,EAAE,CAAC;YAC3B,IACE,cAAc,CAAC,OAAO,CAAC,aAAa,CAAC,IAAI,CAAC,CAAC,KAAK,EAAE,EAAE,CAClD,GAAG,CAAC,WAAW,EAAE,CAAC,QAAQ,CAAC,KAAK,CAAC,WAAW,EAAE,CAAC,CAChD,EACD,CAAC;gBACD,QAAQ,CAAC,GAAG,CAAC,GAAG,YAAY,CAAC;YAC/B,CAAC;iBAAM,IAAI,OAAO,QAAQ,CAAC,GAAG,CAAC,KAAK,QAAQ,EAAE,CAAC;gBAC7C,QAAQ,CAAC,GAAG,CAAC,GAAG,aAAa,CAAC,mBAAmB,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC;YACnE,CAAC;QACH,CAAC;QAED,OAAO,QAAQ,CAAC;IAClB,CAAC;IAED;;OAEG;IACH,MAAM,CAAC,YAAY,CAAC,GAAW;QAC7B,IAAI,QAAQ,GAAG,GAAG,CAAC;QACnB,KAAK,MAAM,OAAO,IAAI,cAAc,CAAC,OAAO,CAAC,cAAc,EAAE,CAAC;YAC5D,QAAQ,GAAG,QAAQ,CAAC,OAAO,CAAC,OAAO,EAAE,CAAC,KAAK,EAAE,KAAK,EAAE,EAAE;gBACpD,OAAO,KAAK,CAAC,OAAO,CAAC,KAAK,EAAE,YAAY,CAAC,CAAC;YAC5C,CAAC,CAAC,CAAC;QACL,CAAC;QACD,OAAO,QAAQ,CAAC;IAClB,CAAC;IAED;;OAEG;IACH,MAAM,CAAC,mBAAmB,CAAC,SAAiB,EAAE;QAC5C,MAAM,KAAK,GACT,gEAAgE,CAAC;QACnE,MAAM,KAAK,GAAG,IAAI,UAAU,CAAC,MAAM,CAAC,CAAC;QAErC,IAAI,OAAO,MAAM,KAAK,WAAW,IAAI,MAAM,CAAC,eAAe,EAAE,CAAC;YAC5D,MAAM,CAAC,eAAe,CAAC,KAAK,CAAC,CAAC;QAChC,CAAC;aAAM,CAAC;YACN,uBAAuB;YACvB,MAAM,MAAM,GAAG,WAAW,CAAC,MAAM,CAAC,CAAC;YACnC,KAAK,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;QACpB,CAAC;QAED,OAAO,KAAK,CAAC,IAAI,CAAC,KAAK,EAAE,CAAC,IAAI,EAAE,EAAE,CAAC,KAAK,CAAC,IAAI,GAAG,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IAC1E,CAAC;IAED;;OAEG;IACH,MAAM,CAAC,sBAAsB,CAAC,QAAgB;QAC5C,MAAM,GAAG,GAAG,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC,WAAW,EAAE,CAAC;QACjD,OAAO,CAAC,cAAc,CAAC,UAAU,CAAC,iBAAiB,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC;IACpE,CAAC;IAED;;OAEG;IACH,MAAM,CAAC,cAAc,CAAC,IAAS;QAC7B,IAAI,OAAO,IAAI,KAAK,QAAQ,EAAE,CAAC;YAC7B,OAAO,aAAa,CAAC,YAAY,CAAC,IAAI,CAAC,CAAC;QAC1C,CAAC;QACD,IAAI,OAAO,IAAI,KAAK,QAAQ,EAAE,CAAC;YAC7B,OAAO,aAAa,CAAC,mBAAmB,CAAC,IAAI,CAAC,CAAC;QACjD,CAAC;QACD,OAAO,IAAI,CAAC;IACd,CAAC;CACF;AAED;;GAEG;AACH,MAAM,UAAU,iBAAiB,CAC/B,KAAU,EACV,kBAA0B,cAAc,CAAC,aAAa,CAAC,WAAW;IAElE,yDAAyD;IACzD,IAAI,OAAO,CAAC,GAAG,CAAC,QAAQ,KAAK,YAAY,EAAE,CAAC;QAC1C,OAAO,CAAC,KAAK,CAAC,eAAe,EAAE,aAAa,CAAC,cAAc,CAAC,KAAK,CAAC,CAAC,CAAC;IACtE,CAAC;IAED,yDAAyD;IACzD,MAAM,WAAW,GAAG,IAAI,KAAK,CAAC,eAAe,CAAC,CAAC;IAE/C,mCAAmC;IACnC,IAAI,KAAK,IAAI,OAAO,KAAK,CAAC,IAAI,KAAK,QAAQ,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,EAAE,CAAC;QACxE,WAAmB,CAAC,IAAI,GAAG,KAAK,CAAC,IAAI,CAAC;IACzC,CAAC;IAED,OAAO,WAAW,CAAC;AACrB,CAAC;AAED,0CAA0C;AAC1C,OAAO,KAAK,IAAI,MAAM,MAAM,CAAC;AAE7B;;GAEG;AACH,MAAM,UAAU,sBAAsB;IAKpC,MAAM,YAAY,GAAG,OAAO,CAAC,GAAG,CAAC,QAAQ,KAAK,YAAY,CAAC;IAE3D,OAAO;QACL,UAAU,EAAE,YAAY;QACxB,aAAa,EAAE,CAAC,YAAY;QAC5B,YAAY,EAAE,YAAY;KAC3B,CAAC;AACJ,CAAC"}
+{"version":3,"file":"SecurityConfig.js","sourceRoot":"","sources":["../../src/security/SecurityConfig.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,EAAE,WAAW,EAAE,MAAM,QAAQ,CAAC;AAErC,MAAM,CAAC,MAAM,cAAc,GAAG;IAC5B,gBAAgB;IAChB,YAAY,EAAE;QACZ,OAAO,EAAE;YACP,QAAQ,EAAE,EAAE,GAAG,IAAI,EAAE,WAAW;YAChC,WAAW,EAAE,EAAE;SAChB;QACD,cAAc,EAAE;YACd,QAAQ,EAAE,CAAC,GAAG,EAAE,GAAG,IAAI,EAAE,YAAY;YACrC,WAAW,EAAE,CAAC;SACf;QACD,MAAM,EAAE;YACN,QAAQ,EAAE,EAAE,GAAG,IAAI,EAAE,WAAW;YAChC,WAAW,EAAE,EAAE;SAChB;KACF;IAED,2BAA2B;IAC3B,UAAU,EAAE;QACV,SAAS,EAAE,EAAE;QACb,gBAAgB,EAAE;YAChB,YAAY;YACZ,WAAW;YACX,WAAW;YACX,YAAY;YACZ,eAAe;YACf,iBAAiB;YACjB,oBAAoB;YACpB,yEAAyE;YACzE,0BAA0B;YAC1B,mEAAmE;YACnE,YAAY;YACZ,UAAU;SACX;QACD,qCAAqC;QACrC,iBAAiB,EAAE;YACjB,MAAM;YACN,MAAM;YACN,MAAM;YACN,MAAM;YACN,MAAM;YACN,MAAM;YACN,MAAM;YACN,KAAK;YACL,MAAM;YACN,MAAM;YACN,MAAM;YACN,MAAM;YACN,MAAM;YACN,OAAO;YACP,OAAO;YACP,OAAO;YACP,QAAQ;YACR,KAAK;YACL,OAAO;YACP,MAAM;YACN,OAAO;YACP,MAAM;YACN,OAAO;SACR;KACF;IAED,mBAAmB;IACnB,UAAU,EAAE;QACV,eAAe,EAAE,IAAI;QACrB,cAAc,EAAE,GAAG;QACnB,gBAAgB,EAAE,KAAK;QACvB,gBAAgB,EAAE,GAAG;QACrB,YAAY,EAAE,IAAI;QAClB,iBAAiB,EAAE,EAAE;QACrB,iBAAiB,EAAE,CAAC;QACpB,iBAAiB,EAAE,GAAG;QACtB,iBAAiB,EAAE,CAAC;KACrB;IAED,kCAAkC;IAClC,QAAQ,EAAE;QACR,OAAO,EAAE,KAAK,EAAE,aAAa;QAC7B,MAAM,EAAE,MAAM,EAAE,aAAa;QAC7B,IAAI,EAAE,KAAK,CAAC,aAAa;KAC1B;IAED,mBAAmB;IACnB,OAAO,EAAE;QACP,wBAAwB,EAAE,SAAS;QACnC,iBAAiB,EAAE,MAAM;QACzB,kBAAkB,EAAE,eAAe;QACnC,2BAA2B,EAAE,qCAAqC;QAClE,yBAAyB,EAAE,sBAAsB;KAClD;IAED,2DAA2D;IAC3D,aAAa,EAAE;QACb,cAAc,EAAE,uDAAuD;QACvE,aAAa,EAAE,oDAAoD;QACnE,UAAU,EAAE,yBAAyB;QACrC,SAAS,EAAE,4CAA4C;QACvD,WAAW,EAAE,4CAA4C;QACzD,QAAQ,EAAE,uCAAuC;KAClD;IAED,wBAAwB;IACxB,OAAO,EAAE;QACP,8BAA8B;QAC9B,aAAa,EAAE;YACb,UAAU;YACV,aAAa;YACb,cAAc;YACd,OAAO;YACP,QAAQ;YACR,eAAe;YACf,QAAQ;YACR,SAAS;YACT,KAAK;YACL,QAAQ;YACR,SAAS;SACV;QACD,qCAAqC;QACrC,cAAc,EAAE;YACd,wCAAwC;YACxC,qCAAqC;YACrC,sCAAsC;YACtC,mCAAmC;SACpC;KACF;IAED,sBAAsB;IACtB,KAAK,EAAE;QACL,yBAAyB;QACzB,OAAO,EAAE,IAAI;QACb,OAAO,EAAE,IAAI,EAAE,mCAAmC;QAClD,UAAU,EAAE,EAAE,GAAG,EAAE,GAAG,IAAI,EAAE,yBAAyB;QACrD,SAAS,EAAE,IAAI;QACf,WAAW,EAAE,IAAI;QAEjB,0CAA0C;QAC1C,UAAU,EAAE;YACV,MAAM,EAAE,CAAC,GAAG,EAAE,GAAG,EAAE,GAAG,IAAI,EAAE,sCAAsC;YAClE,UAAU,EAAE,CAAC,GAAG,EAAE,GAAG,EAAE,GAAG,IAAI,EAAE,4CAA4C;YAC5E,OAAO,EAAE,EAAE,GAAG,EAAE,GAAG,IAAI,EAAE,sCAAsC;YAC/D,OAAO,EAAE,EAAE,GAAG,EAAE,GAAG,IAAI,EAAE,4CAA4C;YACrE,QAAQ,EAAE,EAAE,GAAG,IAAI,CAAC,4BAA4B;SACjD;QAED,qCAAqC;QACrC,YAAY,EAAE;YACZ,MAAM,EAAE,uBAAuB,EAAE,UAAU;YAC3C,UAAU,EAAE,sBAAsB,EAAE,UAAU;YAC9C,OAAO,EAAE,qBAAqB,EAAE,aAAa;YAC7C,OAAO,EAAE,uBAAuB,EAAE,aAAa;YAC/C,QAAQ,EAAE,oBAAoB,CAAC,WAAW;SAC3C;QAED,wBAAwB;QACxB,YAAY,EAAE;YACZ,OAAO,EAAE,IAAI;YACb,SAAS,EAAE,GAAG,EAAE,qCAAqC;YACrD,YAAY,EAAE,IAAI,EAAE,gDAAgD;YACpE,eAAe,EAAE,IAAI,CAAC,gCAAgC;SACvD;QAED,oBAAoB;QACpB,OAAO,EAAE;YACP,QAAQ,EAAE,EAAE,GAAG,IAAI,EAAE,8CAA8C;YACnE,WAAW,EAAE,EAAE,EAAE,iCAAiC;YAClD,iBAAiB,EAAE,GAAG,CAAC,+BAA+B;SACvD;KACF;CACF,CAAC;AAEF;;GAEG;AACH,MAAM,OAAO,aAAa;IACxB;;OAEG;IACH,MAAM,CAAC,mBAAmB,CAAC,GAAQ;QACjC,IAAI,OAAO,GAAG,KAAK,QAAQ,IAAI,GAAG,KAAK,IAAI,EAAE,CAAC;YAC5C,OAAO,GAAG,CAAC;QACb,CAAC;QAED,MAAM,QAAQ,GAAG,KAAK,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,GAAG,GAAG,CAAC,CAAC,CAAC,CAAC,EAAE,GAAG,GAAG,EAAE,CAAC;QAE5D,KAAK,MAAM,GAAG,IAAI,QAAQ,EAAE,CAAC;YAC3B,IACE,cAAc,CAAC,OAAO,CAAC,aAAa,CAAC,IAAI,CAAC,CAAC,KAAK,EAAE,EAAE,CAClD,GAAG,CAAC,WAAW,EAAE,CAAC,QAAQ,CAAC,KAAK,CAAC,WAAW,EAAE,CAAC,CAChD,EACD,CAAC;gBACD,QAAQ,CAAC,GAAG,CAAC,GAAG,YAAY,CAAC;YAC/B,CAAC;iBAAM,IAAI,OAAO,QAAQ,CAAC,GAAG,CAAC,KAAK,QAAQ,EAAE,CAAC;gBAC7C,QAAQ,CAAC,GAAG,CAAC,GAAG,aAAa,CAAC,mBAAmB,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC;YACnE,CAAC;QACH,CAAC;QAED,OAAO,QAAQ,CAAC;IAClB,CAAC;IAED;;OAEG;IACH,MAAM,CAAC,YAAY,CAAC,GAAW;QAC7B,IAAI,QAAQ,GAAG,GAAG,CAAC;QACnB,KAAK,MAAM,OAAO,IAAI,cAAc,CAAC,OAAO,CAAC,cAAc,EAAE,CAAC;YAC5D,QAAQ,GAAG,QAAQ,CAAC,OAAO,CAAC,OAAO,EAAE,CAAC,KAAK,EAAE,KAAK,EAAE,EAAE;gBACpD,OAAO,KAAK,CAAC,OAAO,CAAC,KAAK,EAAE,YAAY,CAAC,CAAC;YAC5C,CAAC,CAAC,CAAC;QACL,CAAC;QACD,OAAO,QAAQ,CAAC;IAClB,CAAC;IAED;;OAEG;IACH,MAAM,CAAC,mBAAmB,CAAC,SAAiB,EAAE;QAC5C,MAAM,KAAK,GACT,gEAAgE,CAAC;QACnE,MAAM,KAAK,GAAG,IAAI,UAAU,CAAC,MAAM,CAAC,CAAC;QAErC,IAAI,OAAO,MAAM,KAAK,WAAW,IAAI,MAAM,CAAC,eAAe,EAAE,CAAC;YAC5D,MAAM,CAAC,eAAe,CAAC,KAAK,CAAC,CAAC;QAChC,CAAC;aAAM,CAAC;YACN,uBAAuB;YACvB,MAAM,MAAM,GAAG,WAAW,CAAC,MAAM,CAAC,CAAC;YACnC,KAAK,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;QACpB,CAAC;QAED,OAAO,KAAK,CAAC,IAAI,CAAC,KAAK,EAAE,CAAC,IAAI,EAAE,EAAE,CAAC,KAAK,CAAC,IAAI,GAAG,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IAC1E,CAAC;IAED;;OAEG;IACH,MAAM,CAAC,sBAAsB,CAAC,QAAgB;QAC5C,MAAM,GAAG,GAAG,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC,WAAW,EAAE,CAAC;QACjD,OAAO,CAAC,cAAc,CAAC,UAAU,CAAC,iBAAiB,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC;IACpE,CAAC;IAED;;OAEG;IACH,MAAM,CAAC,cAAc,CAAC,IAAS;QAC7B,IAAI,OAAO,IAAI,KAAK,QAAQ,EAAE,CAAC;YAC7B,OAAO,aAAa,CAAC,YAAY,CAAC,IAAI,CAAC,CAAC;QAC1C,CAAC;QACD,IAAI,OAAO,IAAI,KAAK,QAAQ,EAAE,CAAC;YAC7B,OAAO,aAAa,CAAC,mBAAmB,CAAC,IAAI,CAAC,CAAC;QACjD,CAAC;QACD,OAAO,IAAI,CAAC;IACd,CAAC;CACF;AAED;;GAEG;AACH,MAAM,UAAU,iBAAiB,CAC/B,KAAU,EACV,kBAA0B,cAAc,CAAC,aAAa,CAAC,WAAW;IAElE,yDAAyD;IACzD,IAAI,OAAO,CAAC,GAAG,CAAC,QAAQ,KAAK,YAAY,EAAE,CAAC;QAC1C,OAAO,CAAC,KAAK,CAAC,eAAe,EAAE,aAAa,CAAC,cAAc,CAAC,KAAK,CAAC,CAAC,CAAC;IACtE,CAAC;IAED,yDAAyD;IACzD,MAAM,WAAW,GAAG,IAAI,KAAK,CAAC,eAAe,CAAC,CAAC;IAE/C,mCAAmC;IACnC,IAAI,KAAK,IAAI,OAAO,KAAK,CAAC,IAAI,KAAK,QAAQ,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,EAAE,CAAC;QACxE,WAAmB,CAAC,IAAI,GAAG,KAAK,CAAC,IAAI,CAAC;IACzC,CAAC;IAED,OAAO,WAAW,CAAC;AACrB,CAAC;AAED,0CAA0C;AAC1C,OAAO,KAAK,IAAI,MAAM,MAAM,CAAC;AAE7B;;GAEG;AACH,MAAM,UAAU,sBAAsB;IAKpC,MAAM,YAAY,GAAG,OAAO,CAAC,GAAG,CAAC,QAAQ,KAAK,YAAY,CAAC;IAE3D,OAAO;QACL,UAAU,EAAE,YAAY;QACxB,aAAa,EAAE,CAAC,YAAY;QAC5B,YAAY,EAAE,YAAY;KAC3B,CAAC;AACJ,CAAC"}

package/dist/tools/BaseToolManager.js

@@ -1,7 +1,7 @@
 /**
  * Base utility class for tool managers to reduce code duplication
  */
-import { getErrorMessage } from "../utils/error.js";
+import { getErrorMessage } from '../utils/error.js';
 export class BaseToolUtils {
     /**
      * Validate required parameters
@@ -18,7 +18,7 @@ export class BaseToolUtils {
     /**
      * Validate ID parameter
      */
-    static validateId(id, name = "id") {
+    static validateId(id, name = 'id') {
         const numId = Number(id);
         if (!Number.isInteger(numId) || numId <= 0) {
             throw new Error(`Invalid ${name}: must be a positive integer`);
@@ -36,12 +36,12 @@ export class BaseToolUtils {
      * Cache key generation helper
      */
     static generateCacheKey(operation, params) {
-        const site = params.site || "default";
+        const site = params.site || 'default';
         const paramStr = Object.entries(params)
-            .filter(([key]) => key !== "site")
+            .filter(([key]) => key !== 'site')
             .sort(([a], [b]) => a.localeCompare(b))
             .map(([key, value]) => `${key}:${value}`)
-            .join("|");
+            .join('|');
         return `${site}:${operation}:${paramStr}`;
     }
     /**

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "mcp-wordpress",
-  "version": "1.2.0",
+  "version": "1.2.2",
   "description": "Comprehensive Model Context Protocol server for WordPress management with 59 tools, performance monitoring, intelligent caching, auto-generated documentation, Docker support, TypeScript, and production-ready authentication",
   "keywords": [
     "mcp",
@@ -78,7 +78,8 @@
     "test:security": "npm run build && NODE_OPTIONS=\"--experimental-vm-modules\" jest tests/security/ --config=jest.typescript.config.json",
     "test:security:penetration": "npm run build && NODE_OPTIONS=\"--experimental-vm-modules\" jest tests/security/penetration-tests.test.js --config=jest.typescript.config.json",
     "test:security:validation": "npm run build && NODE_OPTIONS=\"--experimental-vm-modules\" jest tests/security/security-validation.test.js --config=jest.typescript.config.json",
-    "test:tools": "node scripts/test-all-tools.js",
+    "test:tools": "node scripts/test-all-tools-fixed.js",
+    "test:multisite": "node scripts/test-multisite-quick.js",
     "test:typescript": "npm run build && NODE_OPTIONS=\"--experimental-vm-modules\" jest --config=jest.typescript.config.json",
     "test:watch": "NODE_OPTIONS=\"--experimental-vm-modules\" jest --watch --config=jest.typescript.config.json",
     "test:with-env": "bash scripts/start-test-env.sh && npm run test:typescript",

package/src/security/SecurityConfig.ts

@@ -2,68 +2,68 @@
  * Security configuration and constants for MCP WordPress
  */
 
-import { randomBytes } from "crypto";
+import { randomBytes } from 'crypto';
 
 export const SecurityConfig = {
   // Rate limiting
   rateLimiting: {
     default: {
       windowMs: 60 * 1000, // 1 minute
-      maxRequests: 60,
+      maxRequests: 60
     },
     authentication: {
       windowMs: 5 * 60 * 1000, // 5 minutes
-      maxAttempts: 5,
+      maxAttempts: 5
     },
     upload: {
       windowMs: 60 * 1000, // 1 minute
-      maxRequests: 10,
-    },
+      maxRequests: 10
+    }
   },
 
   // File upload restrictions
   fileUpload: {
     maxSizeMB: 10,
     allowedMimeTypes: [
-      "image/jpeg",
-      "image/png",
-      "image/gif",
-      "image/webp",
-      "image/svg+xml",
-      "application/pdf",
-      "application/msword",
-      "application/vnd.openxmlformats-officedocument.wordprocessingml.document",
-      "application/vnd.ms-excel",
-      "application/vnd.openxmlformats-officedocument.spreadsheetml.sheet",
-      "text/plain",
-      "text/csv",
+      'image/jpeg',
+      'image/png',
+      'image/gif',
+      'image/webp',
+      'image/svg+xml',
+      'application/pdf',
+      'application/msword',
+      'application/vnd.openxmlformats-officedocument.wordprocessingml.document',
+      'application/vnd.ms-excel',
+      'application/vnd.openxmlformats-officedocument.spreadsheetml.sheet',
+      'text/plain',
+      'text/csv'
     ],
     // Dangerous file extensions to block
     blockedExtensions: [
-      ".exe",
-      ".bat",
-      ".cmd",
-      ".com",
-      ".pif",
-      ".scr",
-      ".vbs",
-      ".js",
-      ".jar",
-      ".zip",
-      ".rar",
-      ".tar",
-      ".php",
-      ".php3",
-      ".php4",
-      ".php5",
-      ".phtml",
-      ".sh",
-      ".bash",
-      ".zsh",
-      ".fish",
-      ".ps1",
-      ".psm1",
-    ],
+      '.exe',
+      '.bat',
+      '.cmd',
+      '.com',
+      '.pif',
+      '.scr',
+      '.vbs',
+      '.js',
+      '.jar',
+      '.zip',
+      '.rar',
+      '.tar',
+      '.php',
+      '.php3',
+      '.php4',
+      '.php5',
+      '.phtml',
+      '.sh',
+      '.bash',
+      '.zsh',
+      '.fish',
+      '.ps1',
+      '.psm1'
+    ]
   },
 
   // Input validation
@@ -76,58 +76,58 @@ export const SecurityConfig = {
     maxUsernameLength: 60,
     minUsernameLength: 3,
     maxPasswordLength: 128,
-    minPasswordLength: 8,
+    minPasswordLength: 8
   },
 
   // Request timeouts (milliseconds)
   timeouts: {
     default: 30000, // 30 seconds
     upload: 600000, // 10 minutes
-    auth: 10000, // 10 seconds
+    auth: 10000 // 10 seconds
   },
 
   // Security headers
   headers: {
-    "X-Content-Type-Options": "nosniff",
-    "X-Frame-Options": "DENY",
-    "X-XSS-Protection": "1; mode=block",
-    "Strict-Transport-Security": "max-age=31536000; includeSubDomains",
-    "Content-Security-Policy": "default-src 'self'",
+    'X-Content-Type-Options': 'nosniff',
+    'X-Frame-Options': 'DENY',
+    'X-XSS-Protection': '1; mode=block',
+    'Strict-Transport-Security': 'max-age=31536000; includeSubDomains',
+    'Content-Security-Policy': 'default-src \'self\''
   },
 
   // Error messages (generic to avoid information disclosure)
   errorMessages: {
-    authentication: "Authentication failed. Please check your credentials.",
-    authorization: "You do not have permission to perform this action.",
-    validation: "Invalid input provided.",
-    rateLimit: "Too many requests. Please try again later.",
-    serverError: "An error occurred processing your request.",
-    notFound: "The requested resource was not found.",
+    authentication: 'Authentication failed. Please check your credentials.',
+    authorization: 'You do not have permission to perform this action.',
+    validation: 'Invalid input provided.',
+    rateLimit: 'Too many requests. Please try again later.',
+    serverError: 'An error occurred processing your request.',
+    notFound: 'The requested resource was not found.'
   },
 
   // Logging configuration
   logging: {
     // Fields to exclude from logs
     excludeFields: [
-      "password",
-      "appPassword",
-      "app_password",
-      "token",
-      "secret",
-      "authorization",
-      "cookie",
-      "session",
-      "key",
-      "apiKey",
-      "api_key",
+      'password',
+      'appPassword',
+      'app_password',
+      'token',
+      'secret',
+      'authorization',
+      'cookie',
+      'session',
+      'key',
+      'apiKey',
+      'api_key'
     ],
     // Patterns to redact in log messages
     redactPatterns: [
       /password["\s:=]+["']?([^"'\s]+)["']?/gi,
       /token["\s:=]+["']?([^"'\s]+)["']?/gi,
       /secret["\s:=]+["']?([^"'\s]+)["']?/gi,
-      /key["\s:=]+["']?([^"'\s]+)["']?/gi,
-    ],
+      /key["\s:=]+["']?([^"'\s]+)["']?/gi
+    ]
   },
 
   // Cache configuration
@@ -145,16 +145,16 @@ export const SecurityConfig = {
       semiStatic: 2 * 60 * 60 * 1000, // 2 hours - categories, tags, user profiles
       dynamic: 15 * 60 * 1000, // 15 minutes - posts, pages, comments
       session: 30 * 60 * 1000, // 30 minutes - authentication, current user
-      realtime: 60 * 1000, // 1 minute - real-time data
+      realtime: 60 * 1000 // 1 minute - real-time data
     },
 
     // Cache-Control headers by data type
     cacheHeaders: {
-      static: "public, max-age=14400", // 4 hours
-      semiStatic: "public, max-age=7200", // 2 hours
-      dynamic: "public, max-age=900", // 15 minutes
-      session: "private, max-age=1800", // 30 minutes
-      realtime: "public, max-age=60", // 1 minute
+      static: 'public, max-age=14400', // 4 hours
+      semiStatic: 'public, max-age=7200', // 2 hours
+      dynamic: 'public, max-age=900', // 15 minutes
+      session: 'private, max-age=1800', // 30 minutes
+      realtime: 'public, max-age=60' // 1 minute
     },
 
     // Invalidation settings
@@ -162,16 +162,16 @@ export const SecurityConfig = {
       enabled: true,
       batchSize: 100, // Max events to process in one batch
       queueTimeout: 5000, // Max time to wait before processing queue (ms)
-      enableCascading: true, // Allow cascading invalidations
+      enableCascading: true // Allow cascading invalidations
     },
 
     // Memory management
     cleanup: {
       interval: 60 * 1000, // Cleanup interval in milliseconds (1 minute)
       maxMemoryMB: 50, // Maximum memory usage for cache
-      evictionThreshold: 0.8, // Start evicting when 80% full
-    },
-  },
+      evictionThreshold: 0.8 // Start evicting when 80% full
+    }
+  }
 };
 
 /**
@@ -182,7 +182,7 @@ export class SecurityUtils {
    * Redact sensitive information from objects
    */
   static redactSensitiveData(obj: any): any {
-    if (typeof obj !== "object" || obj === null) {
+    if (typeof obj !== 'object' || obj === null) {
       return obj;
     }
 
@@ -191,11 +191,11 @@ export class SecurityUtils {
     for (const key in redacted) {
       if (
         SecurityConfig.logging.excludeFields.some((field) =>
-          key.toLowerCase().includes(field.toLowerCase()),
+          key.toLowerCase().includes(field.toLowerCase())
         )
       ) {
-        redacted[key] = "[REDACTED]";
-      } else if (typeof redacted[key] === "object") {
+        redacted[key] = '[REDACTED]';
+      } else if (typeof redacted[key] === 'object') {
         redacted[key] = SecurityUtils.redactSensitiveData(redacted[key]);
       }
     }
@@ -210,7 +210,7 @@ export class SecurityUtils {
     let redacted = str;
     for (const pattern of SecurityConfig.logging.redactPatterns) {
       redacted = redacted.replace(pattern, (match, value) => {
-        return match.replace(value, "[REDACTED]");
+        return match.replace(value, '[REDACTED]');
       });
     }
     return redacted;
@@ -221,10 +221,10 @@ export class SecurityUtils {
    */
   static generateSecureToken(length: number = 32): string {
     const chars =
-      "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789";
+      'ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789';
     const array = new Uint8Array(length);
 
-    if (typeof crypto !== "undefined" && crypto.getRandomValues) {
+    if (typeof crypto !== 'undefined' && crypto.getRandomValues) {
       crypto.getRandomValues(array);
     } else {
       // Fallback for Node.js
@@ -232,7 +232,7 @@ export class SecurityUtils {
       array.set(buffer);
     }
 
-    return Array.from(array, (byte) => chars[byte % chars.length]).join("");
+    return Array.from(array, (byte) => chars[byte % chars.length]).join('');
   }
 
   /**
@@ -247,10 +247,10 @@ export class SecurityUtils {
    * Sanitize log output
    */
   static sanitizeForLog(data: any): any {
-    if (typeof data === "string") {
+    if (typeof data === 'string') {
       return SecurityUtils.redactString(data);
     }
-    if (typeof data === "object") {
+    if (typeof data === 'object') {
       return SecurityUtils.redactSensitiveData(data);
     }
     return data;
@@ -262,18 +262,18 @@ export class SecurityUtils {
  */
 export function createSecureError(
   error: any,
-  fallbackMessage: string = SecurityConfig.errorMessages.serverError,
+  fallbackMessage: string = SecurityConfig.errorMessages.serverError
 ): Error {
   // Log the actual error for debugging (with sanitization)
-  if (process.env.NODE_ENV !== "production") {
-    console.error("Secure Error:", SecurityUtils.sanitizeForLog(error));
+  if (process.env.NODE_ENV !== 'production') {
+    console.error('Secure Error:', SecurityUtils.sanitizeForLog(error));
   }
 
   // Return generic error to prevent information disclosure
   const secureError = new Error(fallbackMessage);
 
   // Preserve error code if it's safe
-  if (error && typeof error.code === "string" && !error.code.includes("_")) {
+  if (error && typeof error.code === 'string' && !error.code.includes('_')) {
     (secureError as any).code = error.code;
   }
 
@@ -281,7 +281,7 @@ export function createSecureError(
 }
 
 // Import path for file extension checking
-import * as path from "path";
+import * as path from 'path';
 
 /**
  * Environment-specific security settings
@@ -290,12 +290,12 @@ export function getEnvironmentSecurity(): {
   strictMode: boolean;
   verboseErrors: boolean;
   enforceHttps: boolean;
-} {
-  const isProduction = process.env.NODE_ENV === "production";
+  } {
+  const isProduction = process.env.NODE_ENV === 'production';
 
   return {
     strictMode: isProduction,
     verboseErrors: !isProduction,
-    enforceHttps: isProduction,
+    enforceHttps: isProduction
   };
 }

package/src/tools/BaseToolManager.ts

@@ -2,7 +2,7 @@
  * Base utility class for tool managers to reduce code duplication
  */
 
-import { getErrorMessage } from "../utils/error.js";
+import { getErrorMessage } from '../utils/error.js';
 
 export class BaseToolUtils {
   /**
@@ -23,7 +23,7 @@ export class BaseToolUtils {
   /**
    * Validate ID parameter
    */
-  static validateId(id: unknown, name = "id"): number {
+  static validateId(id: unknown, name = 'id'): number {
     const numId = Number(id);
     if (!Number.isInteger(numId) || numId <= 0) {
       throw new Error(`Invalid ${name}: must be a positive integer`);
@@ -44,14 +44,14 @@ export class BaseToolUtils {
    */
   static generateCacheKey(
     operation: string,
-    params: Record<string, unknown>,
+    params: Record<string, unknown>
   ): string {
-    const site = params.site || "default";
+    const site = params.site || 'default';
     const paramStr = Object.entries(params)
-      .filter(([key]) => key !== "site")
+      .filter(([key]) => key !== 'site')
       .sort(([a], [b]) => a.localeCompare(b))
       .map(([key, value]) => `${key}:${value}`)
-      .join("|");
+      .join('|');
     return `${site}:${operation}:${paramStr}`;
   }