npm - slack-max-api-mcp - Versions diffs - 1.0.7 → 1.0.8 - Mend

slack-max-api-mcp 1.0.7 → 1.0.8

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (4) hide show

package/.env.example CHANGED Viewed

@@ -38,6 +38,10 @@ SLACK_CLIENT_SECRET=
 # Optional auto-onboarding trigger for interactive `slack-max-api-mcp` runs
 # SLACK_AUTO_ONBOARD=true
+# Built-in default team gateway used when no auto-onboard gateway is set:
+# SLACK_DEFAULT_TEAM_GATEWAY_URL=https://43.202.54.65.sslip.io
+# SLACK_DEFAULT_TEAM_GATEWAY_INSECURE_TLS=true
+# SLACK_GATEWAY_INSECURE_TLS=true
 # SLACK_AUTO_ONBOARD_URL=https://mcp-gateway.example.com/onboard.ps1?token=...
 # or
 # SLACK_AUTO_ONBOARD_GATEWAY=https://mcp-gateway.example.com

package/README.md CHANGED Viewed

@@ -62,17 +62,26 @@ Slack Web API를 Codex/Claude Code에서 바로 사용할 수 있게 만든 `std
 2. USER 토큰 사용 시 메시지/파일 검색, 채널 읽기, 메시지 전송 가능
 3. BOT으로 검색은 토큰 타입 제한(`not_allowed_token_type`)이 있어 USER 토큰 사용 권장
-## 설치 및 실행
-```powershell
-npm install -g slack-max-api-mcp@latest
-slack-max-api-mcp
-```
-또는:
-```powershell
-npx -y slack-max-api-mcp
+## 설치 및 실행
+```powershell
+npm install -g slack-max-api-mcp@latest
+slack-max-api-mcp
+```
+팀원 기본 온보딩(현재 패키지 기본값):
+1. 추가 환경변수 없이 `slack-max-api-mcp` 실행 시 자동 온보딩 시도
+2. 기본 게이트웨이: `https://43.202.54.65.sslip.io`
+3. 승인 후 Codex 등록 1회:
+```powershell
+codex mcp add slack-max -- npx -y slack-max-api-mcp
+```
+또는:
+```powershell
+npx -y slack-max-api-mcp
 ```
 ## Codex / Claude Code 연결
@@ -122,9 +131,7 @@ npx -y slack-max-api-mcp gateway start
 ### 팀원 경험 (토큰 전달 없이 권장)
 ```powershell
-$env:NODE_TLS_REJECT_UNAUTHORIZED='0'
-npx -y slack-max-api-mcp onboard run --gateway "https://your-gateway.example.com"
-Remove-Item Env:NODE_TLS_REJECT_UNAUTHORIZED
+npx -y slack-max-api-mcp onboard run
 ```
 자동 동작:
@@ -155,7 +162,7 @@ powershell -ExecutionPolicy Bypass -Command "irm 'https://your-gateway.example.c
 ### 팀원 경험 (설치 후 `slack-max-api-mcp`만 실행)
-운영자가 아래 값을 사전에 배포(이미지/스크립트/MDM)하면 팀원은 다음만 수행하면 됩니다.
+현재 패키지 기본 게이트웨이(`https://43.202.54.65.sslip.io`)를 계속 사용할 경우 팀원은 다음만 수행하면 됩니다.
 ```powershell
 npm install -g slack-max-api-mcp@latest
@@ -168,10 +175,10 @@ slack-max-api-mcp
 3. Slack Allow 승인
 4. 완료 후 Codex에서 바로 사용
-필요한 사전 배포값(팀원이 직접 입력하지 않아도 됨):
-1. `SLACK_AUTO_ONBOARD_URL` 또는
-2. `SLACK_AUTO_ONBOARD_GATEWAY` + `SLACK_AUTO_ONBOARD_TOKEN`
-3. 토큰 없는 자동 온보딩은 `SLACK_AUTO_ONBOARD_GATEWAY` 단독도 가능 (게이트웨이 `SLACK_GATEWAY_PUBLIC_ONBOARD=true` 필요)
+게이트웨이 주소를 바꿔야 할 때만(운영자):
+1. `SLACK_DEFAULT_TEAM_GATEWAY_URL`
+2. `SLACK_DEFAULT_TEAM_GATEWAY_INSECURE_TLS` (`true/false`)
+3. 또는 기존 방식대로 `SLACK_AUTO_ONBOARD_URL`, `SLACK_AUTO_ONBOARD_GATEWAY` 사용 가능
 ## 2) 단독/개인 운영: 로컬 OAuth 모드

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "slack-max-api-mcp",
-  "version": "1.0.7",
+  "version": "1.0.8",
   "description": "Slack MCP server (stdio) for Codex and Claude Code",
   "main": "src/slack-mcp-server.js",
   "bin": {
@@ -27,6 +27,7 @@
   "type": "commonjs",
   "dependencies": {
     "@modelcontextprotocol/sdk": "^1.27.1",
+    "undici": "^7.16.0",
     "zod": "^4.3.6"
   }
 }

package/src/slack-mcp-server.js CHANGED Viewed

@@ -6,6 +6,7 @@ const http = require("node:http");
 const path = require("node:path");
 const crypto = require("node:crypto");
 const { spawn } = require("node:child_process");
+const { Agent, fetch: undiciFetch } = require("undici");
 const { McpServer } = require("@modelcontextprotocol/sdk/server/mcp.js");
 const { StdioServerTransport } = require("@modelcontextprotocol/sdk/server/stdio.js");
 const { z } = require("zod");
@@ -57,8 +58,20 @@ const GATEWAY_PUBLIC_ONBOARD_PROFILE_PREFIX =
 const GATEWAY_STATE_TTL_MS = Number(process.env.SLACK_GATEWAY_STATE_TTL_MS || 15 * 60 * 1000);
 const INVITE_TOKEN_DEFAULT_DAYS = Number(process.env.SLACK_INVITE_TOKEN_DEFAULT_DAYS || 7);
 const AUTO_ONBOARD_ENABLED = process.env.SLACK_AUTO_ONBOARD !== "false";
+const DEFAULT_TEAM_GATEWAY_URL =
+  process.env.SLACK_DEFAULT_TEAM_GATEWAY_URL || "https://43.202.54.65.sslip.io";
+const DEFAULT_TEAM_GATEWAY_INSECURE_TLS =
+  process.env.SLACK_DEFAULT_TEAM_GATEWAY_INSECURE_TLS !== "false";
+const GATEWAY_INSECURE_TLS =
+  process.env.SLACK_GATEWAY_INSECURE_TLS === "true"
+    ? true
+    : process.env.SLACK_GATEWAY_INSECURE_TLS === "false"
+    ? false
+    : null;
 const AUTO_ONBOARD_GATEWAY =
-  process.env.SLACK_AUTO_ONBOARD_GATEWAY || process.env.SLACK_ONBOARD_GATEWAY_URL || "";
+  process.env.SLACK_AUTO_ONBOARD_GATEWAY ||
+  process.env.SLACK_ONBOARD_GATEWAY_URL ||
+  DEFAULT_TEAM_GATEWAY_URL;
 const AUTO_ONBOARD_PROFILE = process.env.SLACK_AUTO_ONBOARD_PROFILE || "";
 const AUTO_ONBOARD_TOKEN = process.env.SLACK_AUTO_ONBOARD_TOKEN || process.env.SLACK_ONBOARD_TOKEN || "";
 const AUTO_ONBOARD_URL = process.env.SLACK_AUTO_ONBOARD_URL || process.env.SLACK_ONBOARD_URL || "";
@@ -68,6 +81,11 @@ const ONBOARD_PACKAGE_SPEC =
   process.env.SLACK_ONBOARD_INSTALL_SPEC ||
   "slack-max-api-mcp@latest";
 const ONBOARD_SKIP_TLS_VERIFY = process.env.SLACK_ONBOARD_SKIP_TLS_VERIFY === "true";
+const INSECURE_TLS_DISPATCHER = new Agent({
+  connect: {
+    rejectUnauthorized: false,
+  },
+});
 function parseSimpleEnvFile(filePath) {
   if (!fs.existsSync(filePath)) return {};
@@ -127,6 +145,33 @@ function ensureParentDirectory(filePath) {
   fs.mkdirSync(dirPath, { recursive: true });
 }
+function normalizeBaseUrl(url) {
+  return String(url || "").trim().replace(/\/+$/, "");
+}
+function normalizeUrlOrigin(url) {
+  try {
+    const parsed = new URL(String(url || "").trim());
+    return `${parsed.protocol}//${parsed.host}`.replace(/\/+$/, "");
+  } catch {
+    return normalizeBaseUrl(url);
+  }
+}
+function shouldUseInsecureGatewayTls(url) {
+  if (!url) return false;
+  if (GATEWAY_INSECURE_TLS !== null) return GATEWAY_INSECURE_TLS;
+  if (!DEFAULT_TEAM_GATEWAY_INSECURE_TLS) return false;
+  return normalizeUrlOrigin(url) === normalizeUrlOrigin(DEFAULT_TEAM_GATEWAY_URL);
+}
+async function fetchWithOptionalInsecureGatewayTls(url, options) {
+  if (!shouldUseInsecureGatewayTls(url)) {
+    return undiciFetch(url, options);
+  }
+  return undiciFetch(url, { ...(options || {}), dispatcher: INSECURE_TLS_DISPATCHER });
+}
 function emptyTokenStore() {
   return { version: 1, default_profile: null, profiles: {} };
 }
@@ -354,7 +399,8 @@ async function callSlackApiViaGateway(method, params = {}, tokenOverride, option
     throw new Error("Gateway URL is missing. Set SLACK_GATEWAY_URL to use gateway mode.");
   }
-  const response = await fetch(`${runtimeGateway.url}/api/slack/call`, {
+  const gatewayCallUrl = `${runtimeGateway.url}/api/slack/call`;
+  const response = await fetchWithOptionalInsecureGatewayTls(gatewayCallUrl, {
     method: "POST",
     headers: buildGatewayAuthHeaders(runtimeGateway.apiKey),
     body: JSON.stringify({
@@ -404,7 +450,8 @@ async function slackHttpViaGateway(input) {
     throw new Error("Gateway URL is missing. Set SLACK_GATEWAY_URL to use gateway mode.");
   }
-  const response = await fetch(`${runtimeGateway.url}/api/slack/http`, {
+  const gatewayHttpUrl = `${runtimeGateway.url}/api/slack/http`;
+  const response = await fetchWithOptionalInsecureGatewayTls(gatewayHttpUrl, {
     method: "POST",
     headers: buildGatewayAuthHeaders(runtimeGateway.apiKey),
     body: JSON.stringify({
@@ -1018,11 +1065,12 @@ function printOnboardHelp() {
     "Slack Max onboarding helper",
     "",
     "Usage:",
-    "  slack-max-api-mcp onboard run --gateway https://gateway.example.com [--token <invite_token>]",
+    "  slack-max-api-mcp onboard run [--gateway https://gateway.example.com] [--token <invite_token>]",
     "    [--profile NAME] [--team T123] [--scope a,b] [--user-scope c,d]",
-    "  slack-max-api-mcp onboard quick --gateway https://gateway.example.com",
+    "  slack-max-api-mcp onboard quick [--gateway https://gateway.example.com]",
     "  slack-max-api-mcp onboard help",
     "",
+    `Default gateway (if omitted): ${DEFAULT_TEAM_GATEWAY_URL}`,
     "If --token is omitted, it uses gateway public onboarding endpoint (/onboard/bootstrap).",
     "This command writes local client config and opens the Slack OAuth approval page automatically.",
   ];
@@ -1031,11 +1079,11 @@ function printOnboardHelp() {
 async function runOnboardStart(args) {
   const { options } = parseCliArgs(args);
-  const gateway = String(options.gateway || options.url || "").replace(/\/+$/, "");
+  const gateway = normalizeBaseUrl(options.gateway || options.url || DEFAULT_TEAM_GATEWAY_URL);
   const token = String(options.token || "");
   if (!gateway) {
     throw new Error(
-      "Usage: slack-max-api-mcp onboard run --gateway <url> [--token <invite_token>] [--profile <name>]"
+      "Usage: slack-max-api-mcp onboard run [--gateway <url>] [--token <invite_token>] [--profile <name>]"
     );
   }
@@ -1057,7 +1105,7 @@ async function runOnboardStart(args) {
         return `${gateway}/onboard/bootstrap${query ? `?${query}` : ""}`;
       })();
-  const response = await fetch(onboardingUrl, {
+  const response = await fetchWithOptionalInsecureGatewayTls(onboardingUrl, {
     method: "GET",
     headers: { Accept: "application/json" },
   });