npm - midsummer-sol - Versions diffs - 0.2.0 → 0.2.2 - Mend

midsummer-sol 0.2.0 → 0.2.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (4) hide show

package/sol-secret-mcp.js CHANGED Viewed

@@ -246,8 +246,143 @@ var init_sign = __esm(() => {
   ED25519_PKCS8_PREFIX2 = Buffer.from("302e020100300506032b657004220420", "hex");
 });
+// src/bin/mcp-http.ts
+var exports_mcp_http = {};
+__export(exports_mcp_http, {
+  serveMcpHttp: () => serveMcpHttp,
+  resolveMcpToken: () => resolveMcpToken,
+  parseStandaloneHttp: () => parseStandaloneHttp
+});
+import { randomUUID, timingSafeEqual as timingSafeEqual2 } from "node:crypto";
+import { createServer } from "node:http";
+function tokenMatches(provided, expected) {
+  const a = Buffer.from(provided);
+  const b = Buffer.from(expected);
+  if (a.length !== b.length)
+    return false;
+  return timingSafeEqual2(a, b);
+}
+function bearer(req) {
+  const h = req.headers["authorization"];
+  if (typeof h !== "string")
+    return;
+  const m = /^Bearer\s+(.+)$/i.exec(h.trim());
+  return m ? m[1].trim() : undefined;
+}
+function writeJson(res, status, body) {
+  const s = JSON.stringify(body);
+  res.writeHead(status, { "Content-Type": "application/json" });
+  res.end(s);
+}
+async function readBody(req) {
+  const chunks = [];
+  for await (const c of req)
+    chunks.push(c);
+  if (chunks.length === 0)
+    return;
+  const raw = Buffer.concat(chunks).toString("utf8");
+  if (!raw.trim())
+    return;
+  return JSON.parse(raw);
+}
+async function serveMcpHttp(buildServer, opts) {
+  const { StreamableHTTPServerTransport } = await import("@modelcontextprotocol/sdk/server/streamableHttp.js");
+  const { isInitializeRequest } = await import("@modelcontextprotocol/sdk/types.js");
+  const port = opts.port ?? 8765;
+  const host = opts.host ?? "127.0.0.1";
+  const transports = new Map;
+  const http = createServer(async (req, res) => {
+    try {
+      const tok = bearer(req);
+      if (!tok || !tokenMatches(tok, opts.token)) {
+        res.setHeader("WWW-Authenticate", "Bearer");
+        writeJson(res, 401, { jsonrpc: "2.0", error: { code: -32001, message: "unauthorized: a valid Authorization: Bearer token is required" }, id: null });
+        return;
+      }
+      const url = (req.url ?? "").split("?")[0];
+      if (url !== MCP_PATH) {
+        writeJson(res, 404, { jsonrpc: "2.0", error: { code: -32601, message: `not found — the MCP endpoint is ${MCP_PATH}` }, id: null });
+        return;
+      }
+      const sessionId = req.headers["mcp-session-id"];
+      const sid = typeof sessionId === "string" ? sessionId : undefined;
+      if (req.method === "POST") {
+        const body = await readBody(req);
+        let transport = sid ? transports.get(sid) : undefined;
+        if (!transport) {
+          if (sid || !isInitializeRequest(body)) {
+            writeJson(res, 400, { jsonrpc: "2.0", error: { code: -32000, message: "no valid session — send an initialize request first" }, id: null });
+            return;
+          }
+          transport = new StreamableHTTPServerTransport({
+            sessionIdGenerator: () => randomUUID(),
+            onsessioninitialized: (id) => void transports.set(id, transport)
+          });
+          transport.onclose = () => {
+            if (transport.sessionId)
+              transports.delete(transport.sessionId);
+          };
+          const server = await buildServer();
+          await server.connect(transport);
+        }
+        await transport.handleRequest(req, res, body);
+        return;
+      }
+      if (req.method === "GET" || req.method === "DELETE") {
+        const transport = sid ? transports.get(sid) : undefined;
+        if (!transport) {
+          writeJson(res, 400, { jsonrpc: "2.0", error: { code: -32000, message: "unknown or missing Mcp-Session-Id" }, id: null });
+          return;
+        }
+        await transport.handleRequest(req, res);
+        return;
+      }
+      writeJson(res, 405, { jsonrpc: "2.0", error: { code: -32000, message: "method not allowed" }, id: null });
+    } catch (e) {
+      if (!res.headersSent) {
+        writeJson(res, 500, { jsonrpc: "2.0", error: { code: -32603, message: "internal error: " + (e instanceof Error ? e.message : String(e)) }, id: null });
+      } else {
+        try {
+          res.end();
+        } catch {}
+      }
+    }
+  });
+  await new Promise((resolve, reject) => {
+    http.once("error", reject);
+    http.listen(port, host, () => {
+      http.off("error", reject);
+      process.stderr.write(`${opts.label} MCP (HTTP) listening on http://${host}:${port}${MCP_PATH} — Authorization: Bearer required
+`);
+      resolve();
+    });
+  });
+  await new Promise(() => {});
+}
+function resolveMcpToken(flagToken) {
+  const t = (flagToken ?? process.env.SOL_MCP_TOKEN ?? "").trim();
+  return t.length ? t : undefined;
+}
+function parseStandaloneHttp(argv, label = "sol") {
+  if (!argv.includes("--http"))
+    return;
+  const val = (name) => {
+    const i = argv.indexOf(name);
+    return i >= 0 && i + 1 < argv.length ? argv[i + 1] : undefined;
+  };
+  const token = resolveMcpToken(val("--token"));
+  if (!token) {
+    process.stderr.write("refusing to start an OPEN HTTP MCP — set SOL_MCP_TOKEN (or --token <T>). every request must send `Authorization: Bearer <token>`.\n");
+    process.exit(1);
+  }
+  const portRaw = val("--port");
+  return { token, port: portRaw ? Number(portRaw) : undefined, host: val("--host"), label };
+}
+var MCP_PATH = "/mcp";
+var init_mcp_http = () => {};
 // src/bin/identity-store.ts
-import { chmodSync as chmodSync2, existsSync as existsSync6, mkdirSync as mkdirSync4, readFileSync as readFileSync7, writeFileSync as writeFileSync6 } from "node:fs";
+import { chmodSync as chmodSync2, existsSync as existsSync6, mkdirSync as mkdirSync5, readFileSync as readFileSync7, writeFileSync as writeFileSync6 } from "node:fs";
 import { homedir as homedir2 } from "node:os";
 import { dirname as dirname2, join as join5 } from "node:path";
 function loadIdentity2() {
@@ -271,7 +406,7 @@ function loadVerified() {
 function pinVerified(accountId, fingerprint) {
   const all = loadVerified();
   all[accountId] = fingerprint;
-  mkdirSync4(dirname2(VERIFIED_PATH2), { recursive: true });
+  mkdirSync5(dirname2(VERIFIED_PATH2), { recursive: true });
   writeFileSync6(VERIFIED_PATH2, JSON.stringify(all, null, 2), { mode: 384 });
   try {
     chmodSync2(VERIFIED_PATH2, 384);
@@ -1447,7 +1582,7 @@ function authorFingerprint(e) {
   return e.authorKey ? fingerprintOf(e.authorKey) : undefined;
 }
 // src/secret/anchor.ts
-import { existsSync as existsSync3, readFileSync as readFileSync3, writeFileSync as writeFileSync3 } from "node:fs";
+import { existsSync as existsSync3, mkdirSync as mkdirSync2, readdirSync, readFileSync as readFileSync3, writeFileSync as writeFileSync3 } from "node:fs";
 import { join as join3 } from "node:path";
 init_sign();
 var creatorPinPath = (solDir) => join3(envDir(solDir), "creator.pin");
@@ -1641,6 +1776,7 @@ function validateGenesisAnchor(solDir) {
   }
   return out;
 }
+var ENVSTATE_SKIP_FILES = new Set(["journal.jsonl", "creator.pin", "head.pin"]);
 // src/secret/env-state.ts
 init_sign();
 // src/secret/gate-derive.ts
@@ -1741,7 +1877,7 @@ function canDeclare(solDir, prior, actor, id) {
   return { allowed: !!id, guarded: true };
 }
 // src/secret/model.ts
-import { existsSync as existsSync4, mkdirSync as mkdirSync2, readdirSync, readFileSync as readFileSync4, statSync, unlinkSync, writeFileSync as writeFileSync4 } from "node:fs";
+import { existsSync as existsSync4, mkdirSync as mkdirSync3, readdirSync as readdirSync2, readFileSync as readFileSync4, statSync, unlinkSync, writeFileSync as writeFileSync4 } from "node:fs";
 init_sign();
 var BASE_ENV = "base";
 function envInitialized(solDir) {
@@ -1774,13 +1910,15 @@ function resolveAll(world) {
   return world.manifest.order.map((e) => resolveOne(world, e));
 }
 function audienceFor(world, env, entryAud) {
-  if (entryAud && entryAud.length)
-    return entryAud;
-  return world.files[env]?.audience ?? [];
+  const base = entryAud && entryAud.length ? entryAud : world.files[env]?.audience ?? [];
+  const runtime = world.manifest.runtime[env];
+  if (runtime && !base.includes(runtime))
+    return [...base, runtime];
+  return base;
 }
 function ensureEnvDir(solDir) {
-  mkdirSync2(envDir(solDir), { recursive: true });
-  mkdirSync2(sealDir(solDir), { recursive: true });
+  mkdirSync3(envDir(solDir), { recursive: true });
+  mkdirSync3(sealDir(solDir), { recursive: true });
 }
 function writeEnvFile(solDir, f) {
   ensureEnvDir(solDir);
@@ -1867,7 +2005,14 @@ function validateWorld(solDir, world, opts = {}) {
         const actual = new Set(recipientsOf(box));
         const expected = new Set(resolvedAud.accountIds);
         const extra = [...actual].filter((a) => !expected.has(a));
-        const missing = [...expected].filter((a) => !actual.has(a));
+        let missing = [...expected].filter((a) => !actual.has(a));
+        const runtimeHandle2 = world.manifest.runtime[r.env];
+        const runtimeAccts = new Set((runtimeHandle2 ? world.gate.handles[runtimeHandle2] ?? [] : []).map((rec) => rec.accountId));
+        const missingRuntime = missing.filter((a) => runtimeAccts.has(a));
+        missing = missing.filter((a) => !runtimeAccts.has(a));
+        if (missingRuntime.length) {
+          issues.push({ severity: "warn", check: "audience-integrity", message: `${r.env}/${s.name}: the runtime recipient [${missingRuntime.join(", ")}] joined the env @audience after this value was sealed — it can't inject this secret yet. reseal it (\`sol secret set ${s.name} --env ${r.env}\`) to include the runtime.` });
+        }
         if (extra.length || missing.length) {
           issues.push({ severity: "error", check: "audience-integrity", message: `${r.env}/${s.name}: sealed recipients drift from the audience (missing: [${missing.join(", ")}], extra: [${extra.join(", ")}]) — reseal with \`sol secret set\` or \`sol secret audience\`` });
         }
@@ -2777,7 +2922,9 @@ function secretInject(ctx, args) {
     ctx.die("usage: sol secret inject --env E -- <cmd> [args...]");
   const cmd = args.slice(dashdash + 1);
   const world = loadWorld(ctx.solDir);
-  const self = ctx.loadSelfIdentity();
+  const runtimeRoot = process.env.SOL_RUNTIME_RECOVERY_CODE;
+  const self = runtimeRoot ? runtimeSelfFromRoot(env, runtimeRoot) : ctx.loadSelfIdentity();
+  const recipientActor = self?.accountId ?? ctx.actor;
   const injected = {};
   let revealedCount = 0;
   for (const s of resolveOne(world, env).secrets) {
@@ -2794,7 +2941,7 @@ function secretInject(ctx, args) {
     revealedCount++;
   }
   if (!revealedCount)
-    ctx.die(`no secrets in ${env} are readable by ${ctx.actor} — are you a recipient? (set SOL_RECOVERY_CODE)`);
+    ctx.die(`no secrets in ${env} are readable by ${recipientActor} — are you a recipient? (set SOL_RECOVERY_CODE, or SOL_RUNTIME_RECOVERY_CODE when injecting from the runtime)`);
   process.stderr.write(`sol: injecting ${revealedCount} secret(s) into the subprocess env: ${Object.keys(injected).join(", ")}
 `);
   const res = spawnSync(cmd[0], cmd.slice(1), { stdio: "inherit", env: { ...process.env, ...injected } });
@@ -2911,6 +3058,11 @@ async function runtimeProvision(ctx, args) {
   const { gate } = await audienceAdd(audCtx, world.gate, prov.handle, prov.accountId, prov.x25519Pub);
   writeAudienceDoc(ctx.solDir, gate);
   journal2(ctx, id, { op: "audience-add", handle: prov.handle, members: memberSnapshot(gate, prov.handle), recipientAtOp: true, prevAud, newAud: (gate.handles[prov.handle] ?? []).map((r) => r.accountId), at: Date.now() });
+  const envFile = world.files[env];
+  if (envFile && !(envFile.audience ?? []).includes(prov.handle)) {
+    envFile.audience = [...envFile.audience ?? [], prov.handle];
+    writeEnvFile(ctx.solDir, envFile);
+  }
   world.manifest.runtime[env] = prov.handle;
   writeManifest(ctx.solDir, world.manifest);
   regenerateSchema(ctx.solDir, loadWorld(ctx.solDir));
@@ -3180,7 +3332,7 @@ async function callMcpTool(ctx, name, args = {}) {
 }
 // src/bin/identity-store.ts
-import { chmodSync, existsSync as existsSync5, mkdirSync as mkdirSync3, readFileSync as readFileSync6, writeFileSync as writeFileSync5 } from "node:fs";
+import { chmodSync, existsSync as existsSync5, mkdirSync as mkdirSync4, readFileSync as readFileSync6, writeFileSync as writeFileSync5 } from "node:fs";
 import { homedir } from "node:os";
 import { dirname, join as join4 } from "node:path";
 var IDENTITY_PATH = join4(homedir(), ".sol", "identity.json");
@@ -3197,16 +3349,10 @@ var EXPORT_KDF = { N: 1 << 15, r: 8, p: 1, maxmem: 64 * 1024 * 1024 };
 var VERIFIED_PATH = join4(homedir(), ".sol", "verified-keys.json");
 // src/bin/sol-secret-mcp.ts
-async function startSecretMcp(opts = {}) {
+init_mcp_http();
+async function buildSecretServer(solDir) {
   const { Server } = await import("@modelcontextprotocol/sdk/server/index.js");
-  const { StdioServerTransport } = await import("@modelcontextprotocol/sdk/server/stdio.js");
   const { CallToolRequestSchema, ListToolsRequestSchema } = await import("@modelcontextprotocol/sdk/types.js");
-  const solDir = opts.solDir || process.env.SOL_DIR || join7(process.cwd(), ".sol");
-  if (!existsSync8(solDir)) {
-    process.stderr.write(`sol-secret-mcp: no .sol at ${solDir} \u2014 run \`sol init\` first (or set SOL_DIR)
-`);
-    process.exit(1);
-  }
   const dirUrl = (process.env.SOL_REMOTE || "https://sol.midsummer.new").replace(/\/+$/, "");
   async function fetchKey2(account) {
     const { fetchKey: f } = await Promise.resolve().then(() => (init_seal_audience(), exports_seal_audience));
@@ -3236,10 +3382,27 @@ async function startSecretMcp(opts = {}) {
     const r = await callMcpTool(ctx, req.params.name, req.params.arguments ?? {});
     return { content: [{ type: "text", text: r.text }], isError: r.isError };
   });
+  return server;
+}
+async function startSecretMcp(opts = {}) {
+  const solDir = opts.solDir || process.env.SOL_DIR || join7(process.cwd(), ".sol");
+  if (!existsSync8(solDir)) {
+    process.stderr.write(`sol-secret-mcp: no .sol at ${solDir} \u2014 run \`sol init\` first (or set SOL_DIR)
+`);
+    process.exit(1);
+  }
+  if (opts.http) {
+    const { serveMcpHttp: serveMcpHttp2 } = await Promise.resolve().then(() => (init_mcp_http(), exports_mcp_http));
+    await serveMcpHttp2(() => buildSecretServer(solDir), opts.http);
+    return;
+  }
+  const { StdioServerTransport } = await import("@modelcontextprotocol/sdk/server/stdio.js");
+  const server = await buildSecretServer(solDir);
   await server.connect(new StdioServerTransport);
 }
 if (__require.main == __require.module) {
-  startSecretMcp().catch((e) => {
+  const http = parseStandaloneHttp(process.argv.slice(2), "sol-secrets");
+  startSecretMcp({ http }).catch((e) => {
     process.stderr.write(`sol-secret-mcp: ${e?.message ?? e}
 `);
     process.exit(1);