npm - proctor-mcp-server - Versions diffs - 0.1.3 → 0.1.4 - Mend

proctor-mcp-server 0.1.3 → 0.1.4

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (5) hide show

package/package.json +1 -1
package/shared/proctor-client/lib/run-exam.js +3 -0
package/shared/tools/run-exam.d.ts +28 -0
package/shared/tools/run-exam.js +50 -0
package/shared/types.d.ts +27 -0

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "proctor-mcp-server",
-  "version": "0.1.3",
+  "version": "0.1.4",
   "description": "Local implementation of Proctor MCP server",
   "main": "build/index.js",
   "type": "module",

package/shared/proctor-client/lib/run-exam.js CHANGED Viewed

@@ -20,6 +20,9 @@ export async function* runExam(apiKey, baseUrl, params) {
     if (params.max_retries !== undefined) {
         body.max_retries = params.max_retries;
     }
+    if (params.preloaded_credentials) {
+        body.preloaded_credentials = params.preloaded_credentials;
+    }
     const response = await fetch(url.toString(), {
         method: 'POST',
         headers: {

package/shared/tools/run-exam.d.ts CHANGED Viewed

@@ -30,6 +30,34 @@ export declare function runExam(_server: Server, clientFactory: ClientFactory):
                 type: string;
                 description: "Maximum number of retry attempts (0-10). Default is 0.";
             };
+            preloaded_credentials: {
+                type: string;
+                description: "Optional pre-loaded OAuth credentials for servers that require authentication.\n\nWhen provided, these credentials are passed to proctor-mcp-client which loads them into its credential store before connecting to the server. This allows testing OAuth-protected servers without requiring interactive login.\n\n**Example:**\n```json\n{\n  \"server_key\": \"remotes[0]\",\n  \"access_token\": \"eyJhbGciOiJSUzI1NiIs...\",\n  \"refresh_token\": \"dGhpcyBpcyBhIHJlZnJl...\",\n  \"token_endpoint\": \"https://auth.example.com/oauth/token\",\n  \"client_id\": \"abc123\",\n  \"client_secret\": \"secret\",\n  \"expires_at\": \"2024-12-31T23:59:59Z\"\n}\n```\n\n**Fields:**\n- server_key (required): Server key from mcp.json (e.g., \"remotes[0]\")\n- access_token (required): OAuth access token\n- refresh_token: OAuth refresh token for token renewal\n- token_endpoint: URL for token refresh operations\n- client_id: OAuth client ID\n- client_secret: OAuth client secret\n- expires_at: ISO 8601 timestamp when the access token expires";
+                properties: {
+                    server_key: {
+                        type: string;
+                    };
+                    access_token: {
+                        type: string;
+                    };
+                    refresh_token: {
+                        type: string;
+                    };
+                    token_endpoint: {
+                        type: string;
+                    };
+                    client_id: {
+                        type: string;
+                    };
+                    client_secret: {
+                        type: string;
+                    };
+                    expires_at: {
+                        type: string;
+                    };
+                };
+                required: string[];
+            };
         };
         required: string[];
     };

package/shared/tools/run-exam.js CHANGED Viewed

@@ -75,7 +75,41 @@ These underscore-prefixed fields are stripped from the config before execution a
 The server.json follows the server.json specification and can include: name, title, description, version, websiteUrl, remotes (with url, type, headers), and packages (for stdio servers with identifier, registryType, runtimeHint, environmentVariables, runtimeArguments).`,
     custom_runtime_image: 'Required if runtime_id is "__custom__". Docker image URL in format: registry/image:tag',
     max_retries: 'Maximum number of retry attempts (0-10). Default is 0.',
+    preloaded_credentials: `Optional pre-loaded OAuth credentials for servers that require authentication.
+When provided, these credentials are passed to proctor-mcp-client which loads them into its credential store before connecting to the server. This allows testing OAuth-protected servers without requiring interactive login.
+**Example:**
+\`\`\`json
+{
+  "server_key": "remotes[0]",
+  "access_token": "eyJhbGciOiJSUzI1NiIs...",
+  "refresh_token": "dGhpcyBpcyBhIHJlZnJl...",
+  "token_endpoint": "https://auth.example.com/oauth/token",
+  "client_id": "abc123",
+  "client_secret": "secret",
+  "expires_at": "2024-12-31T23:59:59Z"
+}
+\`\`\`
+**Fields:**
+- server_key (required): Server key from mcp.json (e.g., "remotes[0]")
+- access_token (required): OAuth access token
+- refresh_token: OAuth refresh token for token renewal
+- token_endpoint: URL for token refresh operations
+- client_id: OAuth client ID
+- client_secret: OAuth client secret
+- expires_at: ISO 8601 timestamp when the access token expires`,
 };
+const PreloadedCredentialsSchema = z.object({
+    server_key: z.string().min(1),
+    access_token: z.string().min(1),
+    refresh_token: z.string().optional(),
+    token_endpoint: z.string().optional(),
+    client_id: z.string().optional(),
+    client_secret: z.string().optional(),
+    expires_at: z.string().optional(),
+});
 const RunExamSchema = z.object({
     runtime_id: z.string().min(1).describe(PARAM_DESCRIPTIONS.runtime_id),
     exam_id: z.string().min(1).describe(PARAM_DESCRIPTIONS.exam_id),
@@ -83,6 +117,7 @@ const RunExamSchema = z.object({
     server_json: z.string().optional().describe(PARAM_DESCRIPTIONS.server_json),
     custom_runtime_image: z.string().optional().describe(PARAM_DESCRIPTIONS.custom_runtime_image),
     max_retries: z.number().min(0).max(10).optional().describe(PARAM_DESCRIPTIONS.max_retries),
+    preloaded_credentials: PreloadedCredentialsSchema.optional().describe(PARAM_DESCRIPTIONS.preloaded_credentials),
 });
 export function runExam(_server, clientFactory) {
     return {
@@ -142,6 +177,20 @@ The mcp_json parameter accepts a JSON object with server configurations. Each se
                     type: 'number',
                     description: PARAM_DESCRIPTIONS.max_retries,
                 },
+                preloaded_credentials: {
+                    type: 'object',
+                    description: PARAM_DESCRIPTIONS.preloaded_credentials,
+                    properties: {
+                        server_key: { type: 'string' },
+                        access_token: { type: 'string' },
+                        refresh_token: { type: 'string' },
+                        token_endpoint: { type: 'string' },
+                        client_id: { type: 'string' },
+                        client_secret: { type: 'string' },
+                        expires_at: { type: 'string' },
+                    },
+                    required: ['server_key', 'access_token'],
+                },
             },
             required: ['runtime_id', 'exam_id', 'mcp_json'],
         },
@@ -187,6 +236,7 @@ The mcp_json parameter accepts a JSON object with server configurations. Each se
                     server_json: validatedArgs.server_json,
                     custom_runtime_image: validatedArgs.custom_runtime_image,
                     max_retries: validatedArgs.max_retries,
+                    preloaded_credentials: validatedArgs.preloaded_credentials,
                 })) {
                     if (entry.type === 'log') {
                         const logData = entry.data;

package/shared/types.d.ts CHANGED Viewed

@@ -71,6 +71,12 @@ export interface RunExamParams {
     server_json?: string;
     custom_runtime_image?: string;
     max_retries?: number;
+    /**
+     * Pre-loaded OAuth credentials for servers that require authentication.
+     * When provided, these credentials are passed to proctor-mcp-client which
+     * loads them into its credential store before connecting to the server.
+     */
+    preloaded_credentials?: PreloadedCredentials;
     /**
      * When true, OAuth credentials obtained via web bridge are not persisted in the database.
      * Instead, the user receives a one-time copy-to-clipboard page with their credentials.
@@ -117,4 +123,25 @@ export interface CancelExamResponse {
 export interface ApiError {
     error: string;
 }
+/**
+ * Pre-loaded OAuth credentials for a server.
+ * These credentials are injected into the proctor-mcp-client before exam execution,
+ * allowing OAuth-protected servers to be tested without requiring interactive login.
+ */
+export interface PreloadedCredentials {
+    /** Server key from mcp.json (e.g., "remotes[0]") */
+    server_key: string;
+    /** OAuth access token */
+    access_token: string;
+    /** OAuth refresh token (if available) */
+    refresh_token?: string;
+    /** Token endpoint URL for refresh operations */
+    token_endpoint?: string;
+    /** OAuth client ID */
+    client_id?: string;
+    /** OAuth client secret (if applicable) */
+    client_secret?: string;
+    /** ISO 8601 timestamp when the access token expires */
+    expires_at?: string;
+}
 //# sourceMappingURL=types.d.ts.map