opencode-cursor-proxy 1.0.1

package/dist/lib/api/proto/types.d.ts

@@ -0,0 +1,201 @@
+export declare enum AgentMode {
+    UNSPECIFIED = 0,
+    AGENT = 1,
+    ASK = 2,
+    PLAN = 3,
+    DEBUG = 4,
+    TRIAGE = 5
+}
+export interface OpenAIToolDefinition {
+    type: "function";
+    function: {
+        name: string;
+        description?: string;
+        parameters?: Record<string, unknown>;
+    };
+}
+export interface McpExecRequest {
+    id: number;
+    execId?: string;
+    name: string;
+    args: Record<string, unknown>;
+    toolCallId: string;
+    providerIdentifier: string;
+    toolName: string;
+}
+export interface ShellExecRequest {
+    type: 'shell';
+    id: number;
+    execId?: string;
+    command: string;
+    cwd?: string;
+}
+export interface LsExecRequest {
+    type: 'ls';
+    id: number;
+    execId?: string;
+    path: string;
+}
+export interface RequestContextExecRequest {
+    type: 'request_context';
+    id: number;
+    execId?: string;
+}
+export interface ReadExecRequest {
+    type: 'read';
+    id: number;
+    execId?: string;
+    path: string;
+}
+export interface GrepExecRequest {
+    type: 'grep';
+    id: number;
+    execId?: string;
+    pattern: string;
+    path?: string;
+    glob?: string;
+}
+export interface WriteExecRequest {
+    type: 'write';
+    id: number;
+    execId?: string;
+    path: string;
+    fileText: string;
+    toolCallId?: string;
+    returnFileContentAfterWrite?: boolean;
+    fileBytes?: Uint8Array;
+}
+export type ExecRequest = (McpExecRequest & {
+    type: 'mcp';
+}) | ShellExecRequest | LsExecRequest | RequestContextExecRequest | ReadExecRequest | GrepExecRequest | WriteExecRequest;
+export interface KvServerMessage {
+    id: number;
+    messageType: 'get_blob_args' | 'set_blob_args' | 'unknown';
+    blobId?: Uint8Array;
+    blobData?: Uint8Array;
+}
+export interface ToolCallInfo {
+    callId: string;
+    modelCallId?: string;
+    toolType: string;
+    name: string;
+    arguments: string;
+}
+export interface ParsedToolCall {
+    toolType: string;
+    name: string;
+    arguments: Record<string, unknown>;
+}
+export interface ParsedToolCallStarted {
+    callId: string;
+    modelCallId: string;
+    toolCall: ParsedToolCall | null;
+}
+export interface ParsedPartialToolCall {
+    callId: string;
+    modelCallId: string;
+    argsTextDelta: string;
+    toolCall: ParsedToolCall | null;
+}
+export interface AgentStreamChunk {
+    type: "text" | "thinking" | "token" | "checkpoint" | "done" | "error" | "tool_call_started" | "tool_call_completed" | "partial_tool_call" | "exec_request" | "heartbeat" | "exec_server_abort" | "interaction_query" | "kv_blob_assistant";
+    content?: string;
+    error?: string;
+    toolCall?: ToolCallInfo;
+    partialArgs?: string;
+    execRequest?: ExecRequest;
+    queryId?: number;
+    queryType?: string;
+    blobContent?: string;
+}
+export interface ChatTimingMetrics {
+    requestStart: number;
+    messageBuildMs?: number;
+    sseConnectionMs?: number;
+    firstBidiAppendMs?: number;
+    firstChunkMs?: number;
+    firstTextMs?: number;
+    firstToolCallMs?: number;
+    turnEndedMs?: number;
+    totalMs?: number;
+    chunkCount: number;
+    textChunks: number;
+    toolCalls: number;
+    execRequests: number;
+    kvMessages: number;
+    heartbeats: number;
+}
+export interface AgentServiceOptions {
+    baseUrl?: string;
+    privacyMode?: boolean;
+    workspacePath?: string;
+}
+export interface AgentChatRequest {
+    message: string;
+    model?: string;
+    mode?: AgentMode;
+    conversationId?: string;
+    tools?: OpenAIToolDefinition[];
+}
+export interface McpResult {
+    success?: {
+        content: string;
+        isError?: boolean;
+    };
+    error?: string;
+}
+export interface ShellOutcome {
+    command: string;
+    cwd: string;
+    stdout: string;
+    stderr: string;
+    exitCode: number;
+    executionTimeMs?: number;
+}
+export interface WriteResult {
+    success?: {
+        path: string;
+        linesCreated: number;
+        fileSize: number;
+        fileContentAfterWrite?: string;
+    };
+    error?: {
+        path: string;
+        error: string;
+    };
+}
+export interface BlobAnalysis {
+    type: 'json' | 'text' | 'protobuf' | 'binary';
+    json?: unknown;
+    text?: string;
+    protoFields?: Array<{
+        num: number;
+        wire: number;
+        size: number;
+        text?: string;
+    }>;
+}
+export interface ParsedInteractionUpdate {
+    text: string | null;
+    thinking: string | null;
+    isComplete: boolean;
+    isHeartbeat: boolean;
+    toolCallStarted: {
+        callId: string;
+        modelCallId: string;
+        toolType: string;
+        name: string;
+        arguments: string;
+    } | null;
+    toolCallCompleted: {
+        callId: string;
+        modelCallId: string;
+        toolType: string;
+        name: string;
+        arguments: string;
+    } | null;
+    partialToolCall: {
+        callId: string;
+        argsTextDelta: string;
+    } | null;
+}

package/dist/lib/api/proto/types.js

@@ -0,0 +1,10 @@
+export var AgentMode;
+(function (AgentMode) {
+    AgentMode[AgentMode["UNSPECIFIED"] = 0] = "UNSPECIFIED";
+    AgentMode[AgentMode["AGENT"] = 1] = "AGENT";
+    AgentMode[AgentMode["ASK"] = 2] = "ASK";
+    AgentMode[AgentMode["PLAN"] = 3] = "PLAN";
+    AgentMode[AgentMode["DEBUG"] = 4] = "DEBUG";
+    AgentMode[AgentMode["TRIAGE"] = 5] = "TRIAGE";
+})(AgentMode || (AgentMode = {}));
+//# sourceMappingURL=types.js.map

package/dist/lib/api/proto/types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.js","sourceRoot":"","sources":["../../../../src/lib/api/proto/types.ts"],"names":[],"mappings":"AAAA,MAAM,CAAN,IAAY,SAOX;AAPD,WAAY,SAAS;IACnB,uDAAe,CAAA;IACf,2CAAS,CAAA;IACT,uCAAO,CAAA;IACP,yCAAQ,CAAA;IACR,2CAAS,CAAA;IACT,6CAAU,CAAA;AACZ,CAAC,EAPW,SAAS,KAAT,SAAS,QAOpB"}

package/dist/lib/auth/helpers.d.ts

@@ -0,0 +1,40 @@
+/**
+ * Auth Helper Functions
+ *
+ * Higher-level authentication functions that combine storage and login
+ * functionality for common auth operations.
+ */
+import { type CredentialManager, type StoredCredentials } from "../storage";
+/**
+ * Refresh an access token using the refresh token
+ */
+export declare function refreshAccessToken(refreshToken: string, endpoint?: string): Promise<{
+    accessToken: string;
+    refreshToken: string;
+} | null>;
+/**
+ * Get a valid access token, refreshing if necessary
+ */
+export declare function getValidAccessToken(credentialManager: CredentialManager, endpoint?: string): Promise<string | null>;
+/**
+ * Authenticate using an API key
+ */
+export declare function authenticateWithApiKey(credentialManager: CredentialManager, apiKey: string, options?: {
+    endpoint?: string;
+}): Promise<boolean>;
+/**
+ * Authenticate using a direct token (no refresh token)
+ */
+export declare function authenticateWithToken(credentialManager: CredentialManager, token: string): Promise<void>;
+/**
+ * Check if the user is authenticated with a valid token
+ */
+export declare function isAuthenticated(credentialManager: CredentialManager): Promise<boolean>;
+/**
+ * Get stored credentials
+ */
+export declare function getStoredCredentials(credentialManager: CredentialManager): Promise<StoredCredentials>;
+/**
+ * Clear all credentials
+ */
+export declare function clearCredentials(credentialManager: CredentialManager): Promise<void>;

package/dist/lib/auth/helpers.js

@@ -0,0 +1,103 @@
+/**
+ * Auth Helper Functions
+ *
+ * Higher-level authentication functions that combine storage and login
+ * functionality for common auth operations.
+ */
+import { isTokenExpiringSoon, isTokenExpired } from "../utils/jwt";
+import {} from "../storage";
+import { LoginManager, CURSOR_API_BASE_URL } from "./login";
+// --- Token Refresh ---
+const REFRESH_ENDPOINT = "/auth/refresh";
+/**
+ * Refresh an access token using the refresh token
+ */
+export async function refreshAccessToken(refreshToken, endpoint = CURSOR_API_BASE_URL) {
+    try {
+        const response = await fetch(`${endpoint}${REFRESH_ENDPOINT}`, {
+            method: "POST",
+            headers: {
+                "Content-Type": "application/json",
+                Authorization: `Bearer ${refreshToken}`,
+            },
+            body: JSON.stringify({}),
+        });
+        if (!response.ok) {
+            return null;
+        }
+        const result = await response.json();
+        if (typeof result === "object" &&
+            result !== null &&
+            "accessToken" in result &&
+            "refreshToken" in result) {
+            return result;
+        }
+    }
+    catch {
+        // Refresh failed
+    }
+    return null;
+}
+// --- High-Level Auth Functions ---
+/**
+ * Get a valid access token, refreshing if necessary
+ */
+export async function getValidAccessToken(credentialManager, endpoint = CURSOR_API_BASE_URL) {
+    const accessToken = await credentialManager.getAccessToken();
+    // Check if we have a valid token
+    if (accessToken && !isTokenExpiringSoon(accessToken)) {
+        return accessToken;
+    }
+    // Try to refresh
+    const refreshToken = await credentialManager.getRefreshToken();
+    if (refreshToken) {
+        const refreshed = await refreshAccessToken(refreshToken, endpoint);
+        if (refreshed) {
+            await credentialManager.setAuthentication(refreshed.accessToken, refreshed.refreshToken);
+            return refreshed.accessToken;
+        }
+    }
+    // Return possibly expired token (let the API reject if needed)
+    return accessToken ?? null;
+}
+/**
+ * Authenticate using an API key
+ */
+export async function authenticateWithApiKey(credentialManager, apiKey, options) {
+    const loginManager = new LoginManager();
+    const result = await loginManager.loginWithApiKey(apiKey, options);
+    if (result) {
+        await credentialManager.setAuthentication(result.accessToken, result.refreshToken, apiKey);
+        return true;
+    }
+    return false;
+}
+/**
+ * Authenticate using a direct token (no refresh token)
+ */
+export async function authenticateWithToken(credentialManager, token) {
+    // Store token without refresh token
+    await credentialManager.setAuthentication(token, "");
+}
+/**
+ * Check if the user is authenticated with a valid token
+ */
+export async function isAuthenticated(credentialManager) {
+    const token = await credentialManager.getAccessToken();
+    if (!token)
+        return false;
+    return !isTokenExpired(token);
+}
+/**
+ * Get stored credentials
+ */
+export async function getStoredCredentials(credentialManager) {
+    return credentialManager.getAllCredentials();
+}
+/**
+ * Clear all credentials
+ */
+export async function clearCredentials(credentialManager) {
+    return credentialManager.clearAuthentication();
+}
+//# sourceMappingURL=helpers.js.map

package/dist/lib/auth/helpers.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"helpers.js","sourceRoot":"","sources":["../../../src/lib/auth/helpers.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,EAAE,mBAAmB,EAAE,cAAc,EAAE,MAAM,cAAc,CAAC;AACnE,OAAO,EAGN,MAAM,YAAY,CAAC;AACpB,OAAO,EAAE,YAAY,EAAE,mBAAmB,EAAE,MAAM,SAAS,CAAC;AAE5D,wBAAwB;AAExB,MAAM,gBAAgB,GAAG,eAAe,CAAC;AAEzC;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,kBAAkB,CACtC,YAAoB,EACpB,WAAmB,mBAAmB;IAEtC,IAAI,CAAC;QACH,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,QAAQ,GAAG,gBAAgB,EAAE,EAAE;YAC7D,MAAM,EAAE,MAAM;YACd,OAAO,EAAE;gBACP,cAAc,EAAE,kBAAkB;gBAClC,aAAa,EAAE,UAAU,YAAY,EAAE;aACxC;YACD,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,EAAE,CAAC;SACzB,CAAC,CAAC;QAEH,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;YACjB,OAAO,IAAI,CAAC;QACd,CAAC;QAED,MAAM,MAAM,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;QAErC,IACE,OAAO,MAAM,KAAK,QAAQ;YAC1B,MAAM,KAAK,IAAI;YACf,aAAa,IAAI,MAAM;YACvB,cAAc,IAAI,MAAM,EACxB,CAAC;YACD,OAAO,MAAuD,CAAC;QACjE,CAAC;IACH,CAAC;IAAC,MAAM,CAAC;QACP,iBAAiB;IACnB,CAAC;IAED,OAAO,IAAI,CAAC;AACd,CAAC;AAED,oCAAoC;AAEpC;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,mBAAmB,CACvC,iBAAoC,EACpC,WAAmB,mBAAmB;IAEtC,MAAM,WAAW,GAAG,MAAM,iBAAiB,CAAC,cAAc,EAAE,CAAC;IAE7D,iCAAiC;IACjC,IAAI,WAAW,IAAI,CAAC,mBAAmB,CAAC,WAAW,CAAC,EAAE,CAAC;QACrD,OAAO,WAAW,CAAC;IACrB,CAAC;IAED,iBAAiB;IACjB,MAAM,YAAY,GAAG,MAAM,iBAAiB,CAAC,eAAe,EAAE,CAAC;IAC/D,IAAI,YAAY,EAAE,CAAC;QACjB,MAAM,SAAS,GAAG,MAAM,kBAAkB,CAAC,YAAY,EAAE,QAAQ,CAAC,CAAC;QACnE,IAAI,SAAS,EAAE,CAAC;YACd,MAAM,iBAAiB,CAAC,iBAAiB,CACvC,SAAS,CAAC,WAAW,EACrB,SAAS,CAAC,YAAY,CACvB,CAAC;YACF,OAAO,SAAS,CAAC,WAAW,CAAC;QAC/B,CAAC;IACH,CAAC;IAED,+DAA+D;IAC/D,OAAO,WAAW,IAAI,IAAI,CAAC;AAC7B,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,sBAAsB,CAC1C,iBAAoC,EACpC,MAAc,EACd,OAA+B;IAE/B,MAAM,YAAY,GAAG,IAAI,YAAY,EAAE,CAAC;IACxC,MAAM,MAAM,GAAG,MAAM,YAAY,CAAC,eAAe,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAEnE,IAAI,MAAM,EAAE,CAAC;QACX,MAAM,iBAAiB,CAAC,iBAAiB,CACvC,MAAM,CAAC,WAAW,EAClB,MAAM,CAAC,YAAY,EACnB,MAAM,CACP,CAAC;QACF,OAAO,IAAI,CAAC;IACd,CAAC;IAED,OAAO,KAAK,CAAC;AACf,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,qBAAqB,CACzC,iBAAoC,EACpC,KAAa;IAEb,oCAAoC;IACpC,MAAM,iBAAiB,CAAC,iBAAiB,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC;AACvD,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,eAAe,CACnC,iBAAoC;IAEpC,MAAM,KAAK,GAAG,MAAM,iBAAiB,CAAC,cAAc,EAAE,CAAC;IACvD,IAAI,CAAC,KAAK;QAAE,OAAO,KAAK,CAAC;IACzB,OAAO,CAAC,cAAc,CAAC,KAAK,CAAC,CAAC;AAChC,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,oBAAoB,CACxC,iBAAoC;IAEpC,OAAO,iBAAiB,CAAC,iBAAiB,EAAE,CAAC;AAC/C,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,gBAAgB,CACpC,iBAAoC;IAEpC,OAAO,iBAAiB,CAAC,mBAAmB,EAAE,CAAC;AACjD,CAAC"}

package/dist/lib/auth/index.d.ts

@@ -0,0 +1,7 @@
+/**
+ * Auth Module
+ *
+ * Re-exports all auth-related functionality
+ */
+export { refreshAccessToken, getValidAccessToken, authenticateWithApiKey, authenticateWithToken, isAuthenticated, getStoredCredentials, clearCredentials, } from "./helpers";
+export { LoginManager, CURSOR_API_BASE_URL, CURSOR_WEBSITE_URL, POLLING_ENDPOINT, generateAuthParams, openBrowser, type AuthResult, type AuthParams, type LoginMetadata, } from "./login";

package/dist/lib/auth/index.js

@@ -0,0 +1,10 @@
+/**
+ * Auth Module
+ *
+ * Re-exports all auth-related functionality
+ */
+// Re-export helpers
+export { refreshAccessToken, getValidAccessToken, authenticateWithApiKey, authenticateWithToken, isAuthenticated, getStoredCredentials, clearCredentials, } from "./helpers";
+// Re-export login manager and related
+export { LoginManager, CURSOR_API_BASE_URL, CURSOR_WEBSITE_URL, POLLING_ENDPOINT, generateAuthParams, openBrowser, } from "./login";
+//# sourceMappingURL=index.js.map

package/dist/lib/auth/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/lib/auth/index.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,oBAAoB;AACpB,OAAO,EACL,kBAAkB,EAClB,mBAAmB,EACnB,sBAAsB,EACtB,qBAAqB,EACrB,eAAe,EACf,oBAAoB,EACpB,gBAAgB,GACjB,MAAM,WAAW,CAAC;AAEnB,sCAAsC;AACtC,OAAO,EACL,YAAY,EACZ,mBAAmB,EACnB,kBAAkB,EAClB,gBAAgB,EAChB,kBAAkB,EAClB,WAAW,GAIZ,MAAM,SAAS,CAAC"}

package/dist/lib/auth/login.d.ts

@@ -0,0 +1,55 @@
+/**
+ * Login Manager
+ *
+ * Handles the OAuth PKCE login flow and API key authentication
+ * for Cursor's authentication system.
+ */
+export declare const CURSOR_WEBSITE_URL = "https://cursor.com";
+export declare const CURSOR_API_BASE_URL = "https://api2.cursor.sh";
+export declare const POLLING_ENDPOINT = "https://api2.cursor.sh/auth/poll";
+export interface AuthResult {
+    accessToken: string;
+    refreshToken: string;
+}
+export interface AuthParams {
+    uuid: string;
+    challenge: string;
+    verifier: string;
+    loginUrl: string;
+}
+export interface LoginMetadata {
+    uuid: string;
+    verifier: string;
+}
+/**
+ * Generate authentication parameters (PKCE flow)
+ */
+export declare function generateAuthParams(): AuthParams;
+/**
+ * Open a URL in the default browser
+ */
+export declare function openBrowser(url: string): Promise<void>;
+export declare class LoginManager {
+    /**
+     * Start the OAuth login flow
+     * Returns metadata needed for polling and the URL to open in browser
+     */
+    startLogin(): {
+        metadata: LoginMetadata;
+        loginUrl: string;
+    };
+    /**
+     * Poll for authentication result
+     * This waits for the user to complete the browser login
+     */
+    waitForResult(metadata: LoginMetadata, options?: {
+        maxAttempts?: number;
+        onProgress?: (attempt: number) => void;
+    }): Promise<AuthResult | null>;
+    /**
+     * Exchange API key for access/refresh tokens
+     */
+    loginWithApiKey(apiKey: string, options?: {
+        endpoint?: string;
+    }): Promise<AuthResult | null>;
+}

package/dist/lib/auth/login.js

@@ -0,0 +1,184 @@
+/**
+ * Login Manager
+ *
+ * Handles the OAuth PKCE login flow and API key authentication
+ * for Cursor's authentication system.
+ */
+import { createHash, randomBytes, randomUUID } from "node:crypto";
+import { platform } from "node:os";
+import { exec } from "node:child_process";
+// --- Configuration ---
+export const CURSOR_WEBSITE_URL = "https://cursor.com";
+export const CURSOR_API_BASE_URL = "https://api2.cursor.sh";
+export const POLLING_ENDPOINT = `${CURSOR_API_BASE_URL}/auth/poll`;
+// --- Helper Functions ---
+/**
+ * Base64 URL encode a buffer (RFC 4648)
+ */
+function base64URLEncode(buffer) {
+    return buffer
+        .toString("base64")
+        .replace(/\+/g, "-")
+        .replace(/\//g, "_")
+        .replace(/=/g, "");
+}
+/**
+ * Generate a SHA-256 hash of the input string
+ */
+function sha256(data) {
+    return createHash("sha256").update(data).digest();
+}
+/**
+ * Generate authentication parameters (PKCE flow)
+ */
+export function generateAuthParams() {
+    // Generate a 32-byte random verifier
+    const verifierArray = randomBytes(32);
+    const verifier = base64URLEncode(verifierArray);
+    // Generate challenge by SHA-256 hashing the verifier
+    const challengeHash = sha256(verifier);
+    const challenge = base64URLEncode(challengeHash);
+    // Generate a UUID
+    const uuid = randomUUID();
+    // Construct the login URL
+    const loginUrl = `${CURSOR_WEBSITE_URL}/loginDeepControl?challenge=${challenge}&uuid=${uuid}&mode=login&redirectTarget=cli`;
+    return {
+        uuid,
+        challenge,
+        verifier,
+        loginUrl,
+    };
+}
+/**
+ * Open a URL in the default browser
+ */
+export function openBrowser(url) {
+    return new Promise((resolve, reject) => {
+        const command = platform() === "darwin"
+            ? `open "${url}"`
+            : platform() === "win32"
+                ? `start "" "${url}"`
+                : `xdg-open "${url}"`;
+        exec(command, (error) => {
+            if (error) {
+                reject(error);
+            }
+            else {
+                resolve();
+            }
+        });
+    });
+}
+/**
+ * Sleep for a given number of milliseconds
+ */
+function sleep(ms) {
+    return new Promise((resolve) => setTimeout(resolve, ms));
+}
+// --- LoginManager ---
+export class LoginManager {
+    /**
+     * Start the OAuth login flow
+     * Returns metadata needed for polling and the URL to open in browser
+     */
+    startLogin() {
+        const authParams = generateAuthParams();
+        return {
+            metadata: {
+                uuid: authParams.uuid,
+                verifier: authParams.verifier,
+            },
+            loginUrl: authParams.loginUrl,
+        };
+    }
+    /**
+     * Poll for authentication result
+     * This waits for the user to complete the browser login
+     */
+    async waitForResult(metadata, options) {
+        const maxAttempts = options?.maxAttempts ?? 150;
+        const baseDelay = 1000; // 1 second base delay
+        const maxDelay = 10000; // 10 seconds maximum delay
+        const backoffMultiplier = 1.2; // Gentle exponential backoff
+        const maxConsecutiveErrors = 3;
+        let consecutiveErrors = 0;
+        for (let attempt = 0; attempt < maxAttempts; attempt++) {
+            try {
+                const url = `${POLLING_ENDPOINT}?uuid=${metadata.uuid}&verifier=${metadata.verifier}`;
+                const response = await fetch(url, {
+                    headers: {
+                        "Content-Type": "application/json",
+                    },
+                });
+                // 404 means authentication is still pending
+                if (response.status === 404) {
+                    consecutiveErrors = 0;
+                    const delay = Math.min(baseDelay * Math.pow(backoffMultiplier, attempt), maxDelay);
+                    options?.onProgress?.(attempt);
+                    await sleep(delay);
+                    continue;
+                }
+                // Check for other error statuses
+                if (!response.ok) {
+                    consecutiveErrors++;
+                    if (consecutiveErrors >= maxConsecutiveErrors) {
+                        return null;
+                    }
+                    const delay = Math.min(baseDelay * Math.pow(backoffMultiplier, attempt), maxDelay);
+                    await sleep(delay);
+                    continue;
+                }
+                // Success case
+                consecutiveErrors = 0;
+                const authResult = await response.json();
+                if (typeof authResult === "object" &&
+                    authResult !== null &&
+                    "accessToken" in authResult &&
+                    "refreshToken" in authResult) {
+                    return authResult;
+                }
+                return null;
+            }
+            catch {
+                consecutiveErrors++;
+                if (consecutiveErrors >= maxConsecutiveErrors) {
+                    return null;
+                }
+                const delay = Math.min(baseDelay * Math.pow(backoffMultiplier, attempt), maxDelay);
+                await sleep(delay);
+            }
+        }
+        return null;
+    }
+    /**
+     * Exchange API key for access/refresh tokens
+     */
+    async loginWithApiKey(apiKey, options) {
+        const baseUrl = options?.endpoint ?? CURSOR_API_BASE_URL;
+        try {
+            const response = await fetch(`${baseUrl}/auth/exchange_user_api_key`, {
+                method: "POST",
+                headers: {
+                    "Content-Type": "application/json",
+                    Authorization: `Bearer ${apiKey}`,
+                },
+                body: JSON.stringify({}),
+            });
+            if (!response.ok) {
+                return null;
+            }
+            const authResult = await response.json();
+            if (typeof authResult === "object" &&
+                authResult !== null &&
+                "accessToken" in authResult &&
+                "refreshToken" in authResult) {
+                return authResult;
+            }
+        }
+        catch {
+            // API key exchange error
+        }
+        return null;
+    }
+}
+//# sourceMappingURL=login.js.map

package/dist/lib/auth/login.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"login.js","sourceRoot":"","sources":["../../../src/lib/auth/login.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,EAAE,UAAU,EAAE,WAAW,EAAE,UAAU,EAAE,MAAM,aAAa,CAAC;AAClE,OAAO,EAAE,QAAQ,EAAE,MAAM,SAAS,CAAC;AACnC,OAAO,EAAE,IAAI,EAAE,MAAM,oBAAoB,CAAC;AAE1C,wBAAwB;AAExB,MAAM,CAAC,MAAM,kBAAkB,GAAG,oBAAoB,CAAC;AACvD,MAAM,CAAC,MAAM,mBAAmB,GAAG,wBAAwB,CAAC;AAC5D,MAAM,CAAC,MAAM,gBAAgB,GAAG,GAAG,mBAAmB,YAAY,CAAC;AAqBnE,2BAA2B;AAE3B;;GAEG;AACH,SAAS,eAAe,CAAC,MAAc;IACrC,OAAO,MAAM;SACV,QAAQ,CAAC,QAAQ,CAAC;SAClB,OAAO,CAAC,KAAK,EAAE,GAAG,CAAC;SACnB,OAAO,CAAC,KAAK,EAAE,GAAG,CAAC;SACnB,OAAO,CAAC,IAAI,EAAE,EAAE,CAAC,CAAC;AACvB,CAAC;AAED;;GAEG;AACH,SAAS,MAAM,CAAC,IAAY;IAC1B,OAAO,UAAU,CAAC,QAAQ,CAAC,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,MAAM,EAAE,CAAC;AACpD,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,kBAAkB;IAChC,qCAAqC;IACrC,MAAM,aAAa,GAAG,WAAW,CAAC,EAAE,CAAC,CAAC;IACtC,MAAM,QAAQ,GAAG,eAAe,CAAC,aAAa,CAAC,CAAC;IAEhD,qDAAqD;IACrD,MAAM,aAAa,GAAG,MAAM,CAAC,QAAQ,CAAC,CAAC;IACvC,MAAM,SAAS,GAAG,eAAe,CAAC,aAAa,CAAC,CAAC;IAEjD,kBAAkB;IAClB,MAAM,IAAI,GAAG,UAAU,EAAE,CAAC;IAE1B,0BAA0B;IAC1B,MAAM,QAAQ,GAAG,GAAG,kBAAkB,+BAA+B,SAAS,SAAS,IAAI,gCAAgC,CAAC;IAE5H,OAAO;QACL,IAAI;QACJ,SAAS;QACT,QAAQ;QACR,QAAQ;KACT,CAAC;AACJ,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,WAAW,CAAC,GAAW;IACrC,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;QACrC,MAAM,OAAO,GACX,QAAQ,EAAE,KAAK,QAAQ;YACrB,CAAC,CAAC,SAAS,GAAG,GAAG;YACjB,CAAC,CAAC,QAAQ,EAAE,KAAK,OAAO;gBACtB,CAAC,CAAC,aAAa,GAAG,GAAG;gBACrB,CAAC,CAAC,aAAa,GAAG,GAAG,CAAC;QAE5B,IAAI,CAAC,OAAO,EAAE,CAAC,KAAK,EAAE,EAAE;YACtB,IAAI,KAAK,EAAE,CAAC;gBACV,MAAM,CAAC,KAAK,CAAC,CAAC;YAChB,CAAC;iBAAM,CAAC;gBACN,OAAO,EAAE,CAAC;YACZ,CAAC;QACH,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;AACL,CAAC;AAED;;GAEG;AACH,SAAS,KAAK,CAAC,EAAU;IACvB,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,EAAE,CAAC,UAAU,CAAC,OAAO,EAAE,EAAE,CAAC,CAAC,CAAC;AAC3D,CAAC;AAED,uBAAuB;AAEvB,MAAM,OAAO,YAAY;IACvB;;;OAGG;IACH,UAAU;QACR,MAAM,UAAU,GAAG,kBAAkB,EAAE,CAAC;QACxC,OAAO;YACL,QAAQ,EAAE;gBACR,IAAI,EAAE,UAAU,CAAC,IAAI;gBACrB,QAAQ,EAAE,UAAU,CAAC,QAAQ;aAC9B;YACD,QAAQ,EAAE,UAAU,CAAC,QAAQ;SAC9B,CAAC;IACJ,CAAC;IAED;;;OAGG;IACH,KAAK,CAAC,aAAa,CACjB,QAAuB,EACvB,OAGC;QAED,MAAM,WAAW,GAAG,OAAO,EAAE,WAAW,IAAI,GAAG,CAAC;QAChD,MAAM,SAAS,GAAG,IAAI,CAAC,CAAC,sBAAsB;QAC9C,MAAM,QAAQ,GAAG,KAAK,CAAC,CAAC,2BAA2B;QACnD,MAAM,iBAAiB,GAAG,GAAG,CAAC,CAAC,6BAA6B;QAC5D,MAAM,oBAAoB,GAAG,CAAC,CAAC;QAE/B,IAAI,iBAAiB,GAAG,CAAC,CAAC;QAE1B,KAAK,IAAI,OAAO,GAAG,CAAC,EAAE,OAAO,GAAG,WAAW,EAAE,OAAO,EAAE,EAAE,CAAC;YACvD,IAAI,CAAC;gBACH,MAAM,GAAG,GAAG,GAAG,gBAAgB,SAAS,QAAQ,CAAC,IAAI,aAAa,QAAQ,CAAC,QAAQ,EAAE,CAAC;gBACtF,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,EAAE;oBAChC,OAAO,EAAE;wBACP,cAAc,EAAE,kBAAkB;qBACnC;iBACF,CAAC,CAAC;gBAEH,4CAA4C;gBAC5C,IAAI,QAAQ,CAAC,MAAM,KAAK,GAAG,EAAE,CAAC;oBAC5B,iBAAiB,GAAG,CAAC,CAAC;oBACtB,MAAM,KAAK,GAAG,IAAI,CAAC,GAAG,CACpB,SAAS,GAAG,IAAI,CAAC,GAAG,CAAC,iBAAiB,EAAE,OAAO,CAAC,EAChD,QAAQ,CACT,CAAC;oBACF,OAAO,EAAE,UAAU,EAAE,CAAC,OAAO,CAAC,CAAC;oBAC/B,MAAM,KAAK,CAAC,KAAK,CAAC,CAAC;oBACnB,SAAS;gBACX,CAAC;gBAED,iCAAiC;gBACjC,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;oBACjB,iBAAiB,EAAE,CAAC;oBACpB,IAAI,iBAAiB,IAAI,oBAAoB,EAAE,CAAC;wBAC9C,OAAO,IAAI,CAAC;oBACd,CAAC;oBACD,MAAM,KAAK,GAAG,IAAI,CAAC,GAAG,CACpB,SAAS,GAAG,IAAI,CAAC,GAAG,CAAC,iBAAiB,EAAE,OAAO,CAAC,EAChD,QAAQ,CACT,CAAC;oBACF,MAAM,KAAK,CAAC,KAAK,CAAC,CAAC;oBACnB,SAAS;gBACX,CAAC;gBAED,eAAe;gBACf,iBAAiB,GAAG,CAAC,CAAC;gBACtB,MAAM,UAAU,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;gBAEzC,IACE,OAAO,UAAU,KAAK,QAAQ;oBAC9B,UAAU,KAAK,IAAI;oBACnB,aAAa,IAAI,UAAU;oBAC3B,cAAc,IAAI,UAAU,EAC5B,CAAC;oBACD,OAAO,UAAwB,CAAC;gBAClC,CAAC;gBAED,OAAO,IAAI,CAAC;YACd,CAAC;YAAC,MAAM,CAAC;gBACP,iBAAiB,EAAE,CAAC;gBACpB,IAAI,iBAAiB,IAAI,oBAAoB,EAAE,CAAC;oBAC9C,OAAO,IAAI,CAAC;gBACd,CAAC;gBACD,MAAM,KAAK,GAAG,IAAI,CAAC,GAAG,CACpB,SAAS,GAAG,IAAI,CAAC,GAAG,CAAC,iBAAiB,EAAE,OAAO,CAAC,EAChD,QAAQ,CACT,CAAC;gBACF,MAAM,KAAK,CAAC,KAAK,CAAC,CAAC;YACrB,CAAC;QACH,CAAC;QAED,OAAO,IAAI,CAAC;IACd,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,eAAe,CACnB,MAAc,EACd,OAA+B;QAE/B,MAAM,OAAO,GAAG,OAAO,EAAE,QAAQ,IAAI,mBAAmB,CAAC;QAEzD,IAAI,CAAC;YACH,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,OAAO,6BAA6B,EAAE;gBACpE,MAAM,EAAE,MAAM;gBACd,OAAO,EAAE;oBACP,cAAc,EAAE,kBAAkB;oBAClC,aAAa,EAAE,UAAU,MAAM,EAAE;iBAClC;gBACD,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,EAAE,CAAC;aACzB,CAAC,CAAC;YAEH,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;gBACjB,OAAO,IAAI,CAAC;YACd,CAAC;YAED,MAAM,UAAU,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;YAEzC,IACE,OAAO,UAAU,KAAK,QAAQ;gBAC9B,UAAU,KAAK,IAAI;gBACnB,aAAa,IAAI,UAAU;gBAC3B,cAAc,IAAI,UAAU,EAC5B,CAAC;gBACD,OAAO,UAAwB,CAAC;YAClC,CAAC;QACH,CAAC;QAAC,MAAM,CAAC;YACP,yBAAyB;QAC3B,CAAC;QAED,OAAO,IAAI,CAAC;IACd,CAAC;CACF"}