paygate-mcp 1.0.0 → 1.2.0

package/README.md

@@ -40,6 +40,8 @@ Agent → PayGate (auth + billing) → Your MCP Server (stdio or HTTP)
 - **Usage Quotas** — Daily/monthly call and credit limits per key (with UTC auto-reset)
 - **Dynamic Pricing** — Charge extra credits based on input size (`creditsPerKbInput`)
 - **OAuth 2.1** — Full authorization server with PKCE, client registration, Bearer tokens
+- **SSE Streaming** — Full MCP Streamable HTTP transport (POST SSE, GET notifications, DELETE sessions)
+- **Audit Log** — Structured audit trail with retention policies, query API, CSV/JSON export
 - **Refund on Failure** — Automatically refund credits when downstream tool calls fail
 - **Webhook Events** — POST batched usage events to any URL for external billing/alerting
 - **Config File Mode** — Load all settings from a JSON file (`--config`)
@@ -247,7 +249,9 @@ A real-time admin UI for managing keys, viewing usage, and monitoring tool calls
 
 | Endpoint | Method | Auth | Description |
 |----------|--------|------|-------------|
-| `/mcp` | POST | `X-API-Key` or `Bearer` | JSON-RPC 2.0 proxy to wrapped MCP server |
+| `/mcp` | POST | `X-API-Key` or `Bearer` | JSON-RPC 2.0 proxy (returns JSON or SSE) |
+| `/mcp` | GET | `X-API-Key` or `Bearer` | SSE notification stream (Streamable HTTP) |
+| `/mcp` | DELETE | `Mcp-Session-Id` | Terminate an MCP session |
 | `/balance` | GET | `X-API-Key` | Client self-service — check credits, quota, ACL, expiry |
 | `/keys` | POST | `X-Admin-Key` | Create API key (with ACL, expiry, quota, credits) |
 | `/keys` | GET | `X-Admin-Key` | List all keys (masked, with expiry status) |
@@ -267,6 +271,9 @@ A real-time admin UI for managing keys, viewing usage, and monitoring tool calls
 | `/oauth/token` | POST | None | Token endpoint (code exchange + refresh) |
 | `/oauth/revoke` | POST | None | Token revocation (RFC 7009) |
 | `/oauth/clients` | GET | `X-Admin-Key` | List registered OAuth clients |
+| `/audit` | GET | `X-Admin-Key` | Query audit log (filter by type, actor, time) |
+| `/audit/export` | GET | `X-Admin-Key` | Export full audit log (JSON or CSV) |
+| `/audit/stats` | GET | `X-Admin-Key` | Audit log statistics |
 | `/` | GET | None | Health check |
 
 ### Free Methods
@@ -527,6 +534,64 @@ curl -X POST http://localhost:3402/oauth/token \
 
 OAuth tokens are backed by API keys — each token maps to an API key for billing. The `/mcp` endpoint accepts both `X-API-Key` and `Authorization: Bearer` headers.
 
+### SSE Streaming (MCP Streamable HTTP)
+
+PayGate implements the full MCP Streamable HTTP transport with SSE support:
+
+```bash
+# POST /mcp with SSE response (add Accept header)
+curl -N -X POST http://localhost:3402/mcp \
+  -H "Content-Type: application/json" \
+  -H "Accept: text/event-stream" \
+  -H "X-API-Key: YOUR_KEY" \
+  -d '{"jsonrpc":"2.0","id":1,"method":"tools/call","params":{"name":"analyze","arguments":{}}}'
+# Response: SSE stream with event: message + data: {jsonrpc response}
+
+# GET /mcp — Open SSE notification stream
+curl -N http://localhost:3402/mcp \
+  -H "Accept: text/event-stream" \
+  -H "Mcp-Session-Id: mcp_sess_..."
+# Receives server-initiated notifications as SSE events
+
+# DELETE /mcp — Terminate session
+curl -X DELETE http://localhost:3402/mcp \
+  -H "Mcp-Session-Id: mcp_sess_..."
+```
+
+**Session Management:**
+- Every POST `/mcp` response includes an `Mcp-Session-Id` header
+- Clients reuse sessions by sending `Mcp-Session-Id` on subsequent requests
+- GET `/mcp` opens a long-lived SSE connection for server-to-client notifications
+- DELETE `/mcp` terminates a session and closes all SSE connections
+- Sessions auto-expire after 30 minutes of inactivity
+
+**Transport modes:**
+- `POST /mcp` without `Accept: text/event-stream` → standard JSON response (backward compatible)
+- `POST /mcp` with `Accept: text/event-stream` → SSE-wrapped JSON-RPC response
+- `GET /mcp` with `Accept: text/event-stream` → long-lived notification stream
+
+### Audit Log
+
+Every significant operation is recorded in a structured audit trail:
+
+```bash
+# Query audit events (with filtering)
+curl http://localhost:3402/audit?types=key.created,gate.deny&limit=50 \
+  -H "X-Admin-Key: YOUR_ADMIN_KEY"
+
+# Export full audit log as CSV
+curl http://localhost:3402/audit/export?format=csv \
+  -H "X-Admin-Key: YOUR_ADMIN_KEY" > audit.csv
+
+# Get audit statistics
+curl http://localhost:3402/audit/stats \
+  -H "X-Admin-Key: YOUR_ADMIN_KEY"
+```
+
+**Tracked events:** `key.created`, `key.revoked`, `key.topup`, `key.acl_updated`, `key.expiry_updated`, `key.quota_updated`, `key.limit_updated`, `gate.allow`, `gate.deny`, `session.created`, `session.destroyed`, `oauth.client_registered`, `oauth.token_issued`, `oauth.token_revoked`, `admin.auth_failed`, `billing.refund`.
+
+**Retention:** Ring buffer (default 10,000 events), age-based cleanup (default 30 days), automatic periodic enforcement.
+
 ### Config File Mode
 
 Load all settings from a JSON file instead of CLI flags:
@@ -624,6 +689,9 @@ const result = await client.callTool('search', { query: 'hello' });
 - OAuth 2.1 with PKCE (S256) — no implicit grant, no plain challenge
 - OAuth tokens are opaque hex strings (no JWT data leakage)
 - Quota counters reset atomically at UTC boundaries
+- SSE sessions auto-expire (30 min), max 1000 concurrent, max 3 SSE per session
+- Audit log with retention policies (ring buffer, age-based cleanup)
+- API keys masked in audit events (only first 7 + last 4 chars visible)
 - Red-teamed with 101 adversarial security tests across 14 passes
 
 ## Current Limitations
@@ -651,6 +719,10 @@ const result = await client.callTool('search', { query: 'hello' });
 - [x] Usage quotas — daily/monthly call and credit limits per key
 - [x] Dynamic pricing — charge by input size (`creditsPerKbInput`)
 - [x] OAuth 2.1 — PKCE, client registration, Bearer tokens, token refresh/revocation
+- [x] SSE streaming — Full MCP Streamable HTTP transport with session management
+- [x] Audit log — Structured audit trail with retention, query API, CSV/JSON export
+- [ ] Registry/discovery — Agent-discoverable paid tools
+- [ ] Horizontal scaling — Redis-backed state for multi-process deployments
 
 ## Requirements
 

package/dist/audit.d.ts

@@ -0,0 +1,102 @@
+/**
+ * AuditLogger — Structured audit trail with retention policies.
+ *
+ * Logs every significant event: key management, gate decisions, billing,
+ * session lifecycle, and admin operations. Ring buffer with configurable
+ * max size and age-based retention. Zero external dependencies.
+ */
+export type AuditEventType = 'key.created' | 'key.revoked' | 'key.topup' | 'key.acl_updated' | 'key.expiry_updated' | 'key.quota_updated' | 'key.limit_updated' | 'gate.allow' | 'gate.deny' | 'session.created' | 'session.destroyed' | 'oauth.client_registered' | 'oauth.token_issued' | 'oauth.token_revoked' | 'admin.auth_failed' | 'billing.refund';
+export interface AuditEvent {
+    /** Monotonically increasing ID */
+    id: number;
+    /** ISO 8601 timestamp */
+    timestamp: string;
+    /** Event type (dot-separated category.action) */
+    type: AuditEventType;
+    /** Actor: API key (masked), admin, system, or null */
+    actor: string;
+    /** Human-readable description */
+    message: string;
+    /** Structured metadata (varies by event type) */
+    metadata: Record<string, unknown>;
+}
+export interface AuditLogConfig {
+    /** Maximum number of events to retain. Default: 10000. */
+    maxEvents: number;
+    /** Maximum age of events in hours. 0 = no age limit. Default: 720 (30 days). */
+    maxAgeHours: number;
+    /** How often to run retention cleanup in ms. Default: 60000 (1 min). */
+    cleanupIntervalMs: number;
+}
+export interface AuditQuery {
+    /** Filter by event type(s). */
+    types?: AuditEventType[];
+    /** Filter by actor (partial match). */
+    actor?: string;
+    /** Return events since this ISO date. */
+    since?: string;
+    /** Return events until this ISO date. */
+    until?: string;
+    /** Max events to return. Default: 100. */
+    limit?: number;
+    /** Offset for pagination. Default: 0. */
+    offset?: number;
+}
+export interface AuditQueryResult {
+    total: number;
+    offset: number;
+    limit: number;
+    events: AuditEvent[];
+}
+export declare class AuditLogger {
+    private events;
+    private nextId;
+    private readonly config;
+    private cleanupTimer;
+    constructor(config?: Partial<AuditLogConfig>);
+    /**
+     * Log an audit event.
+     */
+    log(type: AuditEventType, actor: string, message: string, metadata?: Record<string, unknown>): AuditEvent;
+    /**
+     * Query events with optional filters.
+     */
+    query(q?: AuditQuery): AuditQueryResult;
+    /**
+     * Get summary statistics of the audit log.
+     */
+    stats(): {
+        totalEvents: number;
+        oldestEvent: string | null;
+        newestEvent: string | null;
+        eventsByType: Record<string, number>;
+        eventsLastHour: number;
+        eventsLast24h: number;
+    };
+    /**
+     * Export all events (for backup/external systems).
+     */
+    exportAll(): AuditEvent[];
+    /**
+     * Export events as CSV string.
+     */
+    exportCsv(q?: AuditQuery): string;
+    /**
+     * Get event count.
+     */
+    get size(): number;
+    /**
+     * Enforce retention policy: remove events older than maxAgeHours.
+     */
+    enforceRetention(): number;
+    /**
+     * Clear all events.
+     */
+    clear(): void;
+    /**
+     * Stop cleanup timer.
+     */
+    destroy(): void;
+}
+export declare function maskKeyForAudit(key: string): string;
+//# sourceMappingURL=audit.d.ts.map

package/dist/audit.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"audit.d.ts","sourceRoot":"","sources":["../src/audit.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAIH,MAAM,MAAM,cAAc,GAEtB,aAAa,GACb,aAAa,GACb,WAAW,GACX,iBAAiB,GACjB,oBAAoB,GACpB,mBAAmB,GACnB,mBAAmB,GAEnB,YAAY,GACZ,WAAW,GAEX,iBAAiB,GACjB,mBAAmB,GAEnB,yBAAyB,GACzB,oBAAoB,GACpB,qBAAqB,GAErB,mBAAmB,GAEnB,gBAAgB,CAAC;AAErB,MAAM,WAAW,UAAU;IACzB,kCAAkC;IAClC,EAAE,EAAE,MAAM,CAAC;IACX,yBAAyB;IACzB,SAAS,EAAE,MAAM,CAAC;IAClB,iDAAiD;IACjD,IAAI,EAAE,cAAc,CAAC;IACrB,sDAAsD;IACtD,KAAK,EAAE,MAAM,CAAC;IACd,iCAAiC;IACjC,OAAO,EAAE,MAAM,CAAC;IAChB,iDAAiD;IACjD,QAAQ,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;CACnC;AAED,MAAM,WAAW,cAAc;IAC7B,0DAA0D;IAC1D,SAAS,EAAE,MAAM,CAAC;IAClB,gFAAgF;IAChF,WAAW,EAAE,MAAM,CAAC;IACpB,wEAAwE;IACxE,iBAAiB,EAAE,MAAM,CAAC;CAC3B;AAED,MAAM,WAAW,UAAU;IACzB,+BAA+B;IAC/B,KAAK,CAAC,EAAE,cAAc,EAAE,CAAC;IACzB,uCAAuC;IACvC,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,yCAAyC;IACzC,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,yCAAyC;IACzC,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,0CAA0C;IAC1C,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,yCAAyC;IACzC,MAAM,CAAC,EAAE,MAAM,CAAC;CACjB;AAED,MAAM,WAAW,gBAAgB;IAC/B,KAAK,EAAE,MAAM,CAAC;IACd,MAAM,EAAE,MAAM,CAAC;IACf,KAAK,EAAE,MAAM,CAAC;IACd,MAAM,EAAE,UAAU,EAAE,CAAC;CACtB;AAUD,qBAAa,WAAW;IACtB,OAAO,CAAC,MAAM,CAAoB;IAClC,OAAO,CAAC,MAAM,CAAK;IACnB,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAiB;IACxC,OAAO,CAAC,YAAY,CAA+C;gBAEvD,MAAM,CAAC,EAAE,OAAO,CAAC,cAAc,CAAC;IAU5C;;OAEG;IACH,GAAG,CAAC,IAAI,EAAE,cAAc,EAAE,KAAK,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,EAAE,QAAQ,GAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAM,GAAG,UAAU;IAoB7G;;OAEG;IACH,KAAK,CAAC,CAAC,GAAE,UAAe,GAAG,gBAAgB;IAoC3C;;OAEG;IACH,KAAK,IAAI;QACP,WAAW,EAAE,MAAM,CAAC;QACpB,WAAW,EAAE,MAAM,GAAG,IAAI,CAAC;QAC3B,WAAW,EAAE,MAAM,GAAG,IAAI,CAAC;QAC3B,YAAY,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;QACrC,cAAc,EAAE,MAAM,CAAC;QACvB,aAAa,EAAE,MAAM,CAAC;KACvB;IA0BD;;OAEG;IACH,SAAS,IAAI,UAAU,EAAE;IAIzB;;OAEG;IACH,SAAS,CAAC,CAAC,GAAE,UAAe,GAAG,MAAM;IASrC;;OAEG;IACH,IAAI,IAAI,IAAI,MAAM,CAEjB;IAED;;OAEG;IACH,gBAAgB,IAAI,MAAM;IAS1B;;OAEG;IACH,KAAK,IAAI,IAAI;IAKb;;OAEG;IACH,OAAO,IAAI,IAAI;CAMhB;AAID,wBAAgB,eAAe,CAAC,GAAG,EAAE,MAAM,GAAG,MAAM,CAGnD"}

package/dist/audit.js

@@ -0,0 +1,165 @@
+"use strict";
+/**
+ * AuditLogger — Structured audit trail with retention policies.
+ *
+ * Logs every significant event: key management, gate decisions, billing,
+ * session lifecycle, and admin operations. Ring buffer with configurable
+ * max size and age-based retention. Zero external dependencies.
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.AuditLogger = void 0;
+exports.maskKeyForAudit = maskKeyForAudit;
+const DEFAULT_AUDIT_CONFIG = {
+    maxEvents: 10_000,
+    maxAgeHours: 720, // 30 days
+    cleanupIntervalMs: 60_000, // 1 minute
+};
+// ─── AuditLogger Class ───────────────────────────────────────────────────────
+class AuditLogger {
+    events = [];
+    nextId = 1;
+    config;
+    cleanupTimer = null;
+    constructor(config) {
+        this.config = { ...DEFAULT_AUDIT_CONFIG, ...config };
+        // Start retention cleanup timer
+        if (this.config.cleanupIntervalMs > 0) {
+            this.cleanupTimer = setInterval(() => this.enforceRetention(), this.config.cleanupIntervalMs);
+            this.cleanupTimer.unref(); // Don't prevent process exit
+        }
+    }
+    /**
+     * Log an audit event.
+     */
+    log(type, actor, message, metadata = {}) {
+        const event = {
+            id: this.nextId++,
+            timestamp: new Date().toISOString(),
+            type,
+            actor,
+            message,
+            metadata,
+        };
+        this.events.push(event);
+        // Enforce max size immediately (ring buffer behavior)
+        if (this.events.length > this.config.maxEvents) {
+            this.events = this.events.slice(-this.config.maxEvents);
+        }
+        return event;
+    }
+    /**
+     * Query events with optional filters.
+     */
+    query(q = {}) {
+        let filtered = this.events;
+        // Filter by type(s)
+        if (q.types && q.types.length > 0) {
+            const typeSet = new Set(q.types);
+            filtered = filtered.filter(e => typeSet.has(e.type));
+        }
+        // Filter by actor (partial match, case-insensitive)
+        if (q.actor) {
+            const actorLower = q.actor.toLowerCase();
+            filtered = filtered.filter(e => e.actor.toLowerCase().includes(actorLower));
+        }
+        // Filter by time range
+        if (q.since) {
+            const sinceDate = new Date(q.since).getTime();
+            filtered = filtered.filter(e => new Date(e.timestamp).getTime() >= sinceDate);
+        }
+        if (q.until) {
+            const untilDate = new Date(q.until).getTime();
+            filtered = filtered.filter(e => new Date(e.timestamp).getTime() <= untilDate);
+        }
+        const total = filtered.length;
+        const offset = Math.max(0, q.offset || 0);
+        const limit = Math.min(1000, Math.max(1, q.limit || 100));
+        // Return newest first (reverse chronological) — copy to avoid mutating
+        const reversed = [...filtered].reverse();
+        const page = reversed.slice(offset, offset + limit);
+        return { total, offset, limit, events: page };
+    }
+    /**
+     * Get summary statistics of the audit log.
+     */
+    stats() {
+        const now = Date.now();
+        const oneHourAgo = now - 3_600_000;
+        const oneDayAgo = now - 86_400_000;
+        const eventsByType = {};
+        let eventsLastHour = 0;
+        let eventsLast24h = 0;
+        for (const e of this.events) {
+            eventsByType[e.type] = (eventsByType[e.type] || 0) + 1;
+            const ts = new Date(e.timestamp).getTime();
+            if (ts >= oneHourAgo)
+                eventsLastHour++;
+            if (ts >= oneDayAgo)
+                eventsLast24h++;
+        }
+        return {
+            totalEvents: this.events.length,
+            oldestEvent: this.events.length > 0 ? this.events[0].timestamp : null,
+            newestEvent: this.events.length > 0 ? this.events[this.events.length - 1].timestamp : null,
+            eventsByType,
+            eventsLastHour,
+            eventsLast24h,
+        };
+    }
+    /**
+     * Export all events (for backup/external systems).
+     */
+    exportAll() {
+        return [...this.events];
+    }
+    /**
+     * Export events as CSV string.
+     */
+    exportCsv(q = {}) {
+        const result = this.query({ ...q, limit: q.limit || 10_000 });
+        const header = 'id,timestamp,type,actor,message';
+        const rows = result.events.map(e => `${e.id},${e.timestamp},${e.type},"${e.actor.replace(/"/g, '""')}","${e.message.replace(/"/g, '""')}"`);
+        return [header, ...rows].join('\n');
+    }
+    /**
+     * Get event count.
+     */
+    get size() {
+        return this.events.length;
+    }
+    /**
+     * Enforce retention policy: remove events older than maxAgeHours.
+     */
+    enforceRetention() {
+        if (this.config.maxAgeHours <= 0)
+            return 0;
+        const cutoff = Date.now() - (this.config.maxAgeHours * 3_600_000);
+        const before = this.events.length;
+        this.events = this.events.filter(e => new Date(e.timestamp).getTime() >= cutoff);
+        return before - this.events.length;
+    }
+    /**
+     * Clear all events.
+     */
+    clear() {
+        this.events = [];
+        this.nextId = 1;
+    }
+    /**
+     * Stop cleanup timer.
+     */
+    destroy() {
+        if (this.cleanupTimer) {
+            clearInterval(this.cleanupTimer);
+            this.cleanupTimer = null;
+        }
+    }
+}
+exports.AuditLogger = AuditLogger;
+// ─── Helper: Mask API key for audit ──────────────────────────────────────────
+function maskKeyForAudit(key) {
+    if (!key || key.length < 10)
+        return '***';
+    return key.slice(0, 7) + '...' + key.slice(-4);
+}
+//# sourceMappingURL=audit.js.map

package/dist/audit.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"audit.js","sourceRoot":"","sources":["../src/audit.ts"],"names":[],"mappings":";AAAA;;;;;;GAMG;;;AA+PH,0CAGC;AAxLD,MAAM,oBAAoB,GAAmB;IAC3C,SAAS,EAAE,MAAM;IACjB,WAAW,EAAE,GAAG,EAAE,UAAU;IAC5B,iBAAiB,EAAE,MAAM,EAAE,WAAW;CACvC,CAAC;AAEF,gFAAgF;AAEhF,MAAa,WAAW;IACd,MAAM,GAAiB,EAAE,CAAC;IAC1B,MAAM,GAAG,CAAC,CAAC;IACF,MAAM,CAAiB;IAChC,YAAY,GAA0C,IAAI,CAAC;IAEnE,YAAY,MAAgC;QAC1C,IAAI,CAAC,MAAM,GAAG,EAAE,GAAG,oBAAoB,EAAE,GAAG,MAAM,EAAE,CAAC;QAErD,gCAAgC;QAChC,IAAI,IAAI,CAAC,MAAM,CAAC,iBAAiB,GAAG,CAAC,EAAE,CAAC;YACtC,IAAI,CAAC,YAAY,GAAG,WAAW,CAAC,GAAG,EAAE,CAAC,IAAI,CAAC,gBAAgB,EAAE,EAAE,IAAI,CAAC,MAAM,CAAC,iBAAiB,CAAC,CAAC;YAC9F,IAAI,CAAC,YAAY,CAAC,KAAK,EAAE,CAAC,CAAC,6BAA6B;QAC1D,CAAC;IACH,CAAC;IAED;;OAEG;IACH,GAAG,CAAC,IAAoB,EAAE,KAAa,EAAE,OAAe,EAAE,WAAoC,EAAE;QAC9F,MAAM,KAAK,GAAe;YACxB,EAAE,EAAE,IAAI,CAAC,MAAM,EAAE;YACjB,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;YACnC,IAAI;YACJ,KAAK;YACL,OAAO;YACP,QAAQ;SACT,CAAC;QAEF,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;QAExB,sDAAsD;QACtD,IAAI,IAAI,CAAC,MAAM,CAAC,MAAM,GAAG,IAAI,CAAC,MAAM,CAAC,SAAS,EAAE,CAAC;YAC/C,IAAI,CAAC,MAAM,GAAG,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC;QAC1D,CAAC;QAED,OAAO,KAAK,CAAC;IACf,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,IAAgB,EAAE;QACtB,IAAI,QAAQ,GAAG,IAAI,CAAC,MAAM,CAAC;QAE3B,oBAAoB;QACpB,IAAI,CAAC,CAAC,KAAK,IAAI,CAAC,CAAC,KAAK,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAClC,MAAM,OAAO,GAAG,IAAI,GAAG,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC;YACjC,QAAQ,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC;QACvD,CAAC;QAED,oDAAoD;QACpD,IAAI,CAAC,CAAC,KAAK,EAAE,CAAC;YACZ,MAAM,UAAU,GAAG,CAAC,CAAC,KAAK,CAAC,WAAW,EAAE,CAAC;YACzC,QAAQ,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,KAAK,CAAC,WAAW,EAAE,CAAC,QAAQ,CAAC,UAAU,CAAC,CAAC,CAAC;QAC9E,CAAC;QAED,uBAAuB;QACvB,IAAI,CAAC,CAAC,KAAK,EAAE,CAAC;YACZ,MAAM,SAAS,GAAG,IAAI,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,OAAO,EAAE,CAAC;YAC9C,QAAQ,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,IAAI,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,OAAO,EAAE,IAAI,SAAS,CAAC,CAAC;QAChF,CAAC;QACD,IAAI,CAAC,CAAC,KAAK,EAAE,CAAC;YACZ,MAAM,SAAS,GAAG,IAAI,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,OAAO,EAAE,CAAC;YAC9C,QAAQ,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,IAAI,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,OAAO,EAAE,IAAI,SAAS,CAAC,CAAC;QAChF,CAAC;QAED,MAAM,KAAK,GAAG,QAAQ,CAAC,MAAM,CAAC;QAC9B,MAAM,MAAM,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,CAAC,CAAC,MAAM,IAAI,CAAC,CAAC,CAAC;QAC1C,MAAM,KAAK,GAAG,IAAI,CAAC,GAAG,CAAC,IAAI,EAAE,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,CAAC,CAAC,KAAK,IAAI,GAAG,CAAC,CAAC,CAAC;QAE1D,uEAAuE;QACvE,MAAM,QAAQ,GAAG,CAAC,GAAG,QAAQ,CAAC,CAAC,OAAO,EAAE,CAAC;QACzC,MAAM,IAAI,GAAG,QAAQ,CAAC,KAAK,CAAC,MAAM,EAAE,MAAM,GAAG,KAAK,CAAC,CAAC;QAEpD,OAAO,EAAE,KAAK,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,IAAI,EAAE,CAAC;IAChD,CAAC;IAED;;OAEG;IACH,KAAK;QAQH,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QACvB,MAAM,UAAU,GAAG,GAAG,GAAG,SAAS,CAAC;QACnC,MAAM,SAAS,GAAG,GAAG,GAAG,UAAU,CAAC;QAEnC,MAAM,YAAY,GAA2B,EAAE,CAAC;QAChD,IAAI,cAAc,GAAG,CAAC,CAAC;QACvB,IAAI,aAAa,GAAG,CAAC,CAAC;QAEtB,KAAK,MAAM,CAAC,IAAI,IAAI,CAAC,MAAM,EAAE,CAAC;YAC5B,YAAY,CAAC,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,YAAY,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC;YACvD,MAAM,EAAE,GAAG,IAAI,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,OAAO,EAAE,CAAC;YAC3C,IAAI,EAAE,IAAI,UAAU;gBAAE,cAAc,EAAE,CAAC;YACvC,IAAI,EAAE,IAAI,SAAS;gBAAE,aAAa,EAAE,CAAC;QACvC,CAAC;QAED,OAAO;YACL,WAAW,EAAE,IAAI,CAAC,MAAM,CAAC,MAAM;YAC/B,WAAW,EAAE,IAAI,CAAC,MAAM,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,IAAI;YACrE,WAAW,EAAE,IAAI,CAAC,MAAM,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,IAAI;YAC1F,YAAY;YACZ,cAAc;YACd,aAAa;SACd,CAAC;IACJ,CAAC;IAED;;OAEG;IACH,SAAS;QACP,OAAO,CAAC,GAAG,IAAI,CAAC,MAAM,CAAC,CAAC;IAC1B,CAAC;IAED;;OAEG;IACH,SAAS,CAAC,IAAgB,EAAE;QAC1B,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,EAAE,GAAG,CAAC,EAAE,KAAK,EAAE,CAAC,CAAC,KAAK,IAAI,MAAM,EAAE,CAAC,CAAC;QAC9D,MAAM,MAAM,GAAG,iCAAiC,CAAC;QACjD,MAAM,IAAI,GAAG,MAAM,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CACjC,GAAG,CAAC,CAAC,EAAE,IAAI,CAAC,CAAC,SAAS,IAAI,CAAC,CAAC,IAAI,KAAK,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,IAAI,EAAE,IAAI,CAAC,MAAM,CAAC,CAAC,OAAO,CAAC,OAAO,CAAC,IAAI,EAAE,IAAI,CAAC,GAAG,CACvG,CAAC;QACF,OAAO,CAAC,MAAM,EAAE,GAAG,IAAI,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IACtC,CAAC;IAED;;OAEG;IACH,IAAI,IAAI;QACN,OAAO,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC;IAC5B,CAAC;IAED;;OAEG;IACH,gBAAgB;QACd,IAAI,IAAI,CAAC,MAAM,CAAC,WAAW,IAAI,CAAC;YAAE,OAAO,CAAC,CAAC;QAE3C,MAAM,MAAM,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,CAAC,IAAI,CAAC,MAAM,CAAC,WAAW,GAAG,SAAS,CAAC,CAAC;QAClE,MAAM,MAAM,GAAG,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC;QAClC,IAAI,CAAC,MAAM,GAAG,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,IAAI,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,OAAO,EAAE,IAAI,MAAM,CAAC,CAAC;QACjF,OAAO,MAAM,GAAG,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC;IACrC,CAAC;IAED;;OAEG;IACH,KAAK;QACH,IAAI,CAAC,MAAM,GAAG,EAAE,CAAC;QACjB,IAAI,CAAC,MAAM,GAAG,CAAC,CAAC;IAClB,CAAC;IAED;;OAEG;IACH,OAAO;QACL,IAAI,IAAI,CAAC,YAAY,EAAE,CAAC;YACtB,aAAa,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC;YACjC,IAAI,CAAC,YAAY,GAAG,IAAI,CAAC;QAC3B,CAAC;IACH,CAAC;CACF;AAzKD,kCAyKC;AAED,gFAAgF;AAEhF,SAAgB,eAAe,CAAC,GAAW;IACzC,IAAI,CAAC,GAAG,IAAI,GAAG,CAAC,MAAM,GAAG,EAAE;QAAE,OAAO,KAAK,CAAC;IAC1C,OAAO,GAAG,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,GAAG,KAAK,GAAG,GAAG,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC;AACjD,CAAC"}

package/dist/index.d.ts

@@ -27,6 +27,10 @@ export { WebhookEmitter } from './webhook';
 export { QuotaTracker } from './quota';
 export { OAuthProvider } from './oauth';
 export type { OAuthClientRecord, OAuthTokenRecord, OAuthServerMetadata, OAuthConfig } from './oauth';
+export { SessionManager, writeSseHeaders, writeSseEvent, writeSseKeepAlive } from './session';
+export { AuditLogger, maskKeyForAudit } from './audit';
+export type { AuditEvent, AuditEventType, AuditLogConfig, AuditQuery, AuditQueryResult } from './audit';
+export type { McpSession, SessionManagerConfig } from './session';
 export { getDashboardHtml } from './dashboard';
 export { PayGateClient, PayGateError } from './client';
 export type { PayGateClientConfig, CreditsNeededInfo, BalanceInfo } from './client';

package/dist/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;GAeG;AAEH,OAAO,EAAE,aAAa,EAAE,MAAM,UAAU,CAAC;AACzC,OAAO,EAAE,IAAI,EAAE,MAAM,QAAQ,CAAC;AAC9B,OAAO,EAAE,QAAQ,EAAE,MAAM,SAAS,CAAC;AACnC,OAAO,EAAE,YAAY,EAAE,MAAM,cAAc,CAAC;AAC5C,OAAO,EAAE,iBAAiB,EAAE,MAAM,UAAU,CAAC;AAC7C,OAAO,EAAE,QAAQ,EAAE,MAAM,SAAS,CAAC;AACnC,OAAO,EAAE,UAAU,EAAE,MAAM,SAAS,CAAC;AACrC,OAAO,EAAE,WAAW,EAAE,MAAM,gBAAgB,CAAC;AAC7C,OAAO,EAAE,oBAAoB,EAAE,MAAM,UAAU,CAAC;AAChD,OAAO,EAAE,cAAc,EAAE,MAAM,WAAW,CAAC;AAC3C,OAAO,EAAE,YAAY,EAAE,MAAM,SAAS,CAAC;AACvC,OAAO,EAAE,aAAa,EAAE,MAAM,SAAS,CAAC;AACxC,YAAY,EAAE,iBAAiB,EAAE,gBAAgB,EAAE,mBAAmB,EAAE,WAAW,EAAE,MAAM,SAAS,CAAC;AACrG,OAAO,EAAE,gBAAgB,EAAE,MAAM,aAAa,CAAC;AAC/C,OAAO,EAAE,aAAa,EAAE,YAAY,EAAE,MAAM,UAAU,CAAC;AACvD,YAAY,EAAE,mBAAmB,EAAE,iBAAiB,EAAE,WAAW,EAAE,MAAM,UAAU,CAAC;AAEpF,YAAY,EACV,aAAa,EACb,cAAc,EACd,eAAe,EACf,YAAY,EACZ,cAAc,EACd,QAAQ,EACR,WAAW,EACX,mBAAmB,EACnB,YAAY,EACZ,UAAU,EACV,YAAY,EACZ,YAAY,EACZ,WAAW,GACZ,MAAM,SAAS,CAAC;AAEjB,OAAO,EAAE,cAAc,EAAE,MAAM,SAAS,CAAC"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;GAeG;AAEH,OAAO,EAAE,aAAa,EAAE,MAAM,UAAU,CAAC;AACzC,OAAO,EAAE,IAAI,EAAE,MAAM,QAAQ,CAAC;AAC9B,OAAO,EAAE,QAAQ,EAAE,MAAM,SAAS,CAAC;AACnC,OAAO,EAAE,YAAY,EAAE,MAAM,cAAc,CAAC;AAC5C,OAAO,EAAE,iBAAiB,EAAE,MAAM,UAAU,CAAC;AAC7C,OAAO,EAAE,QAAQ,EAAE,MAAM,SAAS,CAAC;AACnC,OAAO,EAAE,UAAU,EAAE,MAAM,SAAS,CAAC;AACrC,OAAO,EAAE,WAAW,EAAE,MAAM,gBAAgB,CAAC;AAC7C,OAAO,EAAE,oBAAoB,EAAE,MAAM,UAAU,CAAC;AAChD,OAAO,EAAE,cAAc,EAAE,MAAM,WAAW,CAAC;AAC3C,OAAO,EAAE,YAAY,EAAE,MAAM,SAAS,CAAC;AACvC,OAAO,EAAE,aAAa,EAAE,MAAM,SAAS,CAAC;AACxC,YAAY,EAAE,iBAAiB,EAAE,gBAAgB,EAAE,mBAAmB,EAAE,WAAW,EAAE,MAAM,SAAS,CAAC;AACrG,OAAO,EAAE,cAAc,EAAE,eAAe,EAAE,aAAa,EAAE,iBAAiB,EAAE,MAAM,WAAW,CAAC;AAC9F,OAAO,EAAE,WAAW,EAAE,eAAe,EAAE,MAAM,SAAS,CAAC;AACvD,YAAY,EAAE,UAAU,EAAE,cAAc,EAAE,cAAc,EAAE,UAAU,EAAE,gBAAgB,EAAE,MAAM,SAAS,CAAC;AACxG,YAAY,EAAE,UAAU,EAAE,oBAAoB,EAAE,MAAM,WAAW,CAAC;AAClE,OAAO,EAAE,gBAAgB,EAAE,MAAM,aAAa,CAAC;AAC/C,OAAO,EAAE,aAAa,EAAE,YAAY,EAAE,MAAM,UAAU,CAAC;AACvD,YAAY,EAAE,mBAAmB,EAAE,iBAAiB,EAAE,WAAW,EAAE,MAAM,UAAU,CAAC;AAEpF,YAAY,EACV,aAAa,EACb,cAAc,EACd,eAAe,EACf,YAAY,EACZ,cAAc,EACd,QAAQ,EACR,WAAW,EACX,mBAAmB,EACnB,YAAY,EACZ,UAAU,EACV,YAAY,EACZ,YAAY,EACZ,WAAW,GACZ,MAAM,SAAS,CAAC;AAEjB,OAAO,EAAE,cAAc,EAAE,MAAM,SAAS,CAAC"}

package/dist/index.js

@@ -16,7 +16,7 @@
  * ```
  */
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.DEFAULT_CONFIG = exports.PayGateError = exports.PayGateClient = exports.getDashboardHtml = exports.OAuthProvider = exports.QuotaTracker = exports.WebhookEmitter = exports.StripeWebhookHandler = exports.RateLimiter = exports.UsageMeter = exports.KeyStore = exports.MultiServerRouter = exports.HttpMcpProxy = exports.McpProxy = exports.Gate = exports.PayGateServer = void 0;
+exports.DEFAULT_CONFIG = exports.PayGateError = exports.PayGateClient = exports.getDashboardHtml = exports.maskKeyForAudit = exports.AuditLogger = exports.writeSseKeepAlive = exports.writeSseEvent = exports.writeSseHeaders = exports.SessionManager = exports.OAuthProvider = exports.QuotaTracker = exports.WebhookEmitter = exports.StripeWebhookHandler = exports.RateLimiter = exports.UsageMeter = exports.KeyStore = exports.MultiServerRouter = exports.HttpMcpProxy = exports.McpProxy = exports.Gate = exports.PayGateServer = void 0;
 var server_1 = require("./server");
 Object.defineProperty(exports, "PayGateServer", { enumerable: true, get: function () { return server_1.PayGateServer; } });
 var gate_1 = require("./gate");
@@ -41,6 +41,14 @@ var quota_1 = require("./quota");
 Object.defineProperty(exports, "QuotaTracker", { enumerable: true, get: function () { return quota_1.QuotaTracker; } });
 var oauth_1 = require("./oauth");
 Object.defineProperty(exports, "OAuthProvider", { enumerable: true, get: function () { return oauth_1.OAuthProvider; } });
+var session_1 = require("./session");
+Object.defineProperty(exports, "SessionManager", { enumerable: true, get: function () { return session_1.SessionManager; } });
+Object.defineProperty(exports, "writeSseHeaders", { enumerable: true, get: function () { return session_1.writeSseHeaders; } });
+Object.defineProperty(exports, "writeSseEvent", { enumerable: true, get: function () { return session_1.writeSseEvent; } });
+Object.defineProperty(exports, "writeSseKeepAlive", { enumerable: true, get: function () { return session_1.writeSseKeepAlive; } });
+var audit_1 = require("./audit");
+Object.defineProperty(exports, "AuditLogger", { enumerable: true, get: function () { return audit_1.AuditLogger; } });
+Object.defineProperty(exports, "maskKeyForAudit", { enumerable: true, get: function () { return audit_1.maskKeyForAudit; } });
 var dashboard_1 = require("./dashboard");
 Object.defineProperty(exports, "getDashboardHtml", { enumerable: true, get: function () { return dashboard_1.getDashboardHtml; } });
 var client_1 = require("./client");

package/dist/index.js.map

@@ -1 +1 @@
-{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":";AAAA;;;;;;;;;;;;;;;GAeG;;;AAEH,mCAAyC;AAAhC,uGAAA,aAAa,OAAA;AACtB,+BAA8B;AAArB,4FAAA,IAAI,OAAA;AACb,iCAAmC;AAA1B,iGAAA,QAAQ,OAAA;AACjB,2CAA4C;AAAnC,0GAAA,YAAY,OAAA;AACrB,mCAA6C;AAApC,2GAAA,iBAAiB,OAAA;AAC1B,iCAAmC;AAA1B,iGAAA,QAAQ,OAAA;AACjB,iCAAqC;AAA5B,mGAAA,UAAU,OAAA;AACnB,+CAA6C;AAApC,2GAAA,WAAW,OAAA;AACpB,mCAAgD;AAAvC,8GAAA,oBAAoB,OAAA;AAC7B,qCAA2C;AAAlC,yGAAA,cAAc,OAAA;AACvB,iCAAuC;AAA9B,qGAAA,YAAY,OAAA;AACrB,iCAAwC;AAA/B,sGAAA,aAAa,OAAA;AAEtB,yCAA+C;AAAtC,6GAAA,gBAAgB,OAAA;AACzB,mCAAuD;AAA9C,uGAAA,aAAa,OAAA;AAAE,sGAAA,YAAY,OAAA;AAmBpC,iCAAyC;AAAhC,uGAAA,cAAc,OAAA"}
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":";AAAA;;;;;;;;;;;;;;;GAeG;;;AAEH,mCAAyC;AAAhC,uGAAA,aAAa,OAAA;AACtB,+BAA8B;AAArB,4FAAA,IAAI,OAAA;AACb,iCAAmC;AAA1B,iGAAA,QAAQ,OAAA;AACjB,2CAA4C;AAAnC,0GAAA,YAAY,OAAA;AACrB,mCAA6C;AAApC,2GAAA,iBAAiB,OAAA;AAC1B,iCAAmC;AAA1B,iGAAA,QAAQ,OAAA;AACjB,iCAAqC;AAA5B,mGAAA,UAAU,OAAA;AACnB,+CAA6C;AAApC,2GAAA,WAAW,OAAA;AACpB,mCAAgD;AAAvC,8GAAA,oBAAoB,OAAA;AAC7B,qCAA2C;AAAlC,yGAAA,cAAc,OAAA;AACvB,iCAAuC;AAA9B,qGAAA,YAAY,OAAA;AACrB,iCAAwC;AAA/B,sGAAA,aAAa,OAAA;AAEtB,qCAA8F;AAArF,yGAAA,cAAc,OAAA;AAAE,0GAAA,eAAe,OAAA;AAAE,wGAAA,aAAa,OAAA;AAAE,4GAAA,iBAAiB,OAAA;AAC1E,iCAAuD;AAA9C,oGAAA,WAAW,OAAA;AAAE,wGAAA,eAAe,OAAA;AAGrC,yCAA+C;AAAtC,6GAAA,gBAAgB,OAAA;AACzB,mCAAuD;AAA9C,uGAAA,aAAa,OAAA;AAAE,sGAAA,YAAY,OAAA;AAmBpC,iCAAyC;AAAhC,uGAAA,cAAc,OAAA"}

package/dist/server.d.ts

@@ -17,6 +17,8 @@ import { McpProxy } from './proxy';
 import { HttpMcpProxy } from './http-proxy';
 import { MultiServerRouter } from './router';
 import { OAuthProvider } from './oauth';
+import { SessionManager } from './session';
+import { AuditLogger } from './audit';
 /** Union type for both proxy backends */
 type ProxyBackend = McpProxy | HttpMcpProxy;
 export declare class PayGateServer {
@@ -31,6 +33,10 @@ export declare class PayGateServer {
     private stripeHandler;
     /** OAuth 2.1 provider (null if OAuth is not enabled) */
     readonly oauth: OAuthProvider | null;
+    /** Session manager for Streamable HTTP transport */
+    readonly sessions: SessionManager;
+    /** Structured audit log */
+    readonly audit: AuditLogger;
     /** The active request handler — either proxy or router */
     private get handler();
     constructor(config: Partial<PayGateConfig> & {
@@ -42,6 +48,19 @@ export declare class PayGateServer {
     }>;
     private handleRequest;
     private handleMcp;
+    /**
+     * GET /mcp — Open an SSE stream for server-to-client notifications.
+     * The connection stays open until the client disconnects or session is deleted.
+     */
+    private handleMcpSseStream;
+    /**
+     * DELETE /mcp — Terminate a session.
+     */
+    private handleMcpDeleteSession;
+    /**
+     * Resolve API key from X-API-Key header or OAuth Bearer token.
+     */
+    private resolveApiKey;
     private handleRoot;
     private handleStatus;
     private handleCreateKey;
@@ -68,6 +87,9 @@ export declare class PayGateServer {
     private handleOAuthRevoke;
     /** GET /oauth/clients — List registered OAuth clients (admin only) */
     private handleOAuthClients;
+    private handleAudit;
+    private handleAuditExport;
+    private handleAuditStats;
     private checkAdmin;
     private readBody;
     stop(): Promise<void>;

package/dist/server.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"server.d.ts","sourceRoot":"","sources":["../src/server.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;GAYG;AAKH,OAAO,EAAE,aAAa,EAAkB,mBAAmB,EAAkB,MAAM,SAAS,CAAC;AAS7F,OAAO,EAAE,IAAI,EAAE,MAAM,QAAQ,CAAC;AAC9B,OAAO,EAAE,QAAQ,EAAE,MAAM,SAAS,CAAC;AACnC,OAAO,EAAE,YAAY,EAAE,MAAM,cAAc,CAAC;AAC5C,OAAO,EAAE,iBAAiB,EAAE,MAAM,UAAU,CAAC;AAE7C,OAAO,EAAE,aAAa,EAAE,MAAM,SAAS,CAAC;AAMxC,yCAAyC;AACzC,KAAK,YAAY,GAAG,QAAQ,GAAG,YAAY,CAAC;AAY5C,qBAAa,aAAa;IACxB,QAAQ,CAAC,IAAI,EAAE,IAAI,CAAC;IACpB,0DAA0D;IAC1D,QAAQ,CAAC,KAAK,EAAE,YAAY,GAAG,IAAI,CAAC;IACpC,8DAA8D;IAC9D,QAAQ,CAAC,MAAM,EAAE,iBAAiB,GAAG,IAAI,CAAC;IAC1C,OAAO,CAAC,MAAM,CAAuB;IACrC,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAgB;IACvC,OAAO,CAAC,QAAQ,CAAC,QAAQ,CAAS;IAClC,OAAO,CAAC,aAAa,CAAqC;IAC1D,wDAAwD;IACxD,QAAQ,CAAC,KAAK,EAAE,aAAa,GAAG,IAAI,CAAQ;IAE5C,0DAA0D;IAC1D,OAAO,KAAK,OAAO,GAElB;gBAGC,MAAM,EAAE,OAAO,CAAC,aAAa,CAAC,GAAG;QAAE,aAAa,EAAE,MAAM,CAAA;KAAE,EAC1D,QAAQ,CAAC,EAAE,MAAM,EACjB,SAAS,CAAC,EAAE,MAAM,EAClB,SAAS,CAAC,EAAE,MAAM,EAClB,mBAAmB,CAAC,EAAE,MAAM,EAC5B,OAAO,CAAC,EAAE,mBAAmB,EAAE;IAkC3B,KAAK,IAAI,OAAO,CAAC;QAAE,IAAI,EAAE,MAAM,CAAC;QAAC,QAAQ,EAAE,MAAM,CAAA;KAAE,CAAC;YAuB5C,aAAa;YAoEb,SAAS;IAsCvB,OAAO,CAAC,UAAU;IAmClB,OAAO,CAAC,YAAY;YASN,eAAe;IA8D7B,OAAO,CAAC,cAAc;YASR,WAAW;YA6CX,eAAe;YAqCf,YAAY;YA0CZ,eAAe;YAiDf,cAAc;IAwD5B,OAAO,CAAC,aAAa;YAqDP,YAAY;IA4C1B,OAAO,CAAC,WAAW;YA8CL,mBAAmB;IAmCjC,OAAO,CAAC,eAAe;IAYvB,+EAA+E;IAC/E,OAAO,CAAC,mBAAmB;IAU3B,oEAAoE;YACtD,mBAAmB;IA4DjC,yDAAyD;YAC3C,oBAAoB;IAuFlC,yCAAyC;YAC3B,gBAAgB;IA8E9B,uDAAuD;YACzC,iBAAiB;IAiC/B,sEAAsE;IACtE,OAAO,CAAC,kBAAkB;IAmB1B,OAAO,CAAC,UAAU;IAUlB,OAAO,CAAC,QAAQ;IAkBV,IAAI,IAAI,OAAO,CAAC,IAAI,CAAC;CAU5B"}
+{"version":3,"file":"server.d.ts","sourceRoot":"","sources":["../src/server.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;GAYG;AAKH,OAAO,EAAE,aAAa,EAAkB,mBAAmB,EAAkB,MAAM,SAAS,CAAC;AAS7F,OAAO,EAAE,IAAI,EAAE,MAAM,QAAQ,CAAC;AAC9B,OAAO,EAAE,QAAQ,EAAE,MAAM,SAAS,CAAC;AACnC,OAAO,EAAE,YAAY,EAAE,MAAM,cAAc,CAAC;AAC5C,OAAO,EAAE,iBAAiB,EAAE,MAAM,UAAU,CAAC;AAE7C,OAAO,EAAE,aAAa,EAAE,MAAM,SAAS,CAAC;AACxC,OAAO,EAAE,cAAc,EAAqD,MAAM,WAAW,CAAC;AAC9F,OAAO,EAAE,WAAW,EAAmB,MAAM,SAAS,CAAC;AAMvD,yCAAyC;AACzC,KAAK,YAAY,GAAG,QAAQ,GAAG,YAAY,CAAC;AAY5C,qBAAa,aAAa;IACxB,QAAQ,CAAC,IAAI,EAAE,IAAI,CAAC;IACpB,0DAA0D;IAC1D,QAAQ,CAAC,KAAK,EAAE,YAAY,GAAG,IAAI,CAAC;IACpC,8DAA8D;IAC9D,QAAQ,CAAC,MAAM,EAAE,iBAAiB,GAAG,IAAI,CAAC;IAC1C,OAAO,CAAC,MAAM,CAAuB;IACrC,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAgB;IACvC,OAAO,CAAC,QAAQ,CAAC,QAAQ,CAAS;IAClC,OAAO,CAAC,aAAa,CAAqC;IAC1D,wDAAwD;IACxD,QAAQ,CAAC,KAAK,EAAE,aAAa,GAAG,IAAI,CAAQ;IAC5C,oDAAoD;IACpD,QAAQ,CAAC,QAAQ,EAAE,cAAc,CAAC;IAClC,2BAA2B;IAC3B,QAAQ,CAAC,KAAK,EAAE,WAAW,CAAC;IAE5B,0DAA0D;IAC1D,OAAO,KAAK,OAAO,GAElB;gBAGC,MAAM,EAAE,OAAO,CAAC,aAAa,CAAC,GAAG;QAAE,aAAa,EAAE,MAAM,CAAA;KAAE,EAC1D,QAAQ,CAAC,EAAE,MAAM,EACjB,SAAS,CAAC,EAAE,MAAM,EAClB,SAAS,CAAC,EAAE,MAAM,EAClB,mBAAmB,CAAC,EAAE,MAAM,EAC5B,OAAO,CAAC,EAAE,mBAAmB,EAAE;IAwC3B,KAAK,IAAI,OAAO,CAAC;QAAE,IAAI,EAAE,MAAM,CAAC;QAAC,QAAQ,EAAE,MAAM,CAAA;KAAE,CAAC;YAuB5C,aAAa;YA2Eb,SAAS;IA8EvB;;;OAGG;IACH,OAAO,CAAC,kBAAkB;IA+C1B;;OAEG;IACH,OAAO,CAAC,sBAAsB;IAyB9B;;OAEG;IACH,OAAO,CAAC,aAAa;IAiBrB,OAAO,CAAC,UAAU;IAsClB,OAAO,CAAC,YAAY;YASN,eAAe;IAuE7B,OAAO,CAAC,cAAc;YASR,WAAW;YAoDX,eAAe;YAyCf,YAAY;YAiDZ,eAAe;YAuDf,cAAc;IA6D5B,OAAO,CAAC,aAAa;YAqDP,YAAY;IAiD1B,OAAO,CAAC,WAAW;YA8CL,mBAAmB;IAmCjC,OAAO,CAAC,eAAe;IAYvB,+EAA+E;IAC/E,OAAO,CAAC,mBAAmB;IAU3B,oEAAoE;YACtD,mBAAmB;IA4DjC,yDAAyD;YAC3C,oBAAoB;IAuFlC,yCAAyC;YAC3B,gBAAgB;IA8E9B,uDAAuD;YACzC,iBAAiB;IAiC/B,sEAAsE;IACtE,OAAO,CAAC,kBAAkB;IAqB1B,OAAO,CAAC,WAAW;IA0BnB,OAAO,CAAC,iBAAiB;IAgCzB,OAAO,CAAC,gBAAgB;IAcxB,OAAO,CAAC,UAAU;IAclB,OAAO,CAAC,QAAQ;IAkBV,IAAI,IAAI,OAAO,CAAC,IAAI,CAAC;CAY5B"}