strapi-oauth-mcp-manager 0.1.0

package/README.md

@@ -0,0 +1,143 @@
+# Strapi OAuth MCP Manager
+
+Centralized OAuth 2.0 authentication manager for Strapi MCP (Model Context Protocol) plugins. Enables ChatGPT, Claude, and other AI assistants to securely authenticate with your Strapi MCP endpoints.
+
+## Features
+
+- **Centralized OAuth 2.0** - Single authentication layer for all MCP plugins
+- **RFC Compliant** - Implements RFC 6749, RFC 8414, and RFC 9728
+- **Dual Authentication** - Supports both OAuth tokens and Strapi API tokens
+- **ChatGPT Ready** - Works with ChatGPT's MCP integration out of the box
+- **Claude Compatible** - Supports direct API token authentication
+- **Admin Management** - Manage OAuth clients through Strapi admin panel
+- **Wildcard Redirects** - Supports wildcard patterns in redirect URIs
+
+## Installation
+
+```bash
+npm install strapi-oauth-mcp-manager
+```
+
+## Configuration
+
+Add the plugin to your `config/plugins.ts`:
+
+```typescript
+export default () => ({
+  'strapi-oauth-mcp-manager': {
+    enabled: true,
+  },
+  // Your other MCP plugins...
+  'yt-transcript-strapi-plugin': {
+    enabled: true,
+  },
+});
+```
+
+## How It Works
+
+### For MCP Plugin Developers
+
+MCP plugins register with the OAuth manager to gain authentication support:
+
+```typescript
+// In your plugin's bootstrap.ts
+const oauthPlugin = strapi.plugin('strapi-oauth-mcp-manager');
+
+if (oauthPlugin) {
+  await oauthPlugin.service('endpoint').register({
+    name: 'My MCP Plugin',
+    pluginId: 'my-mcp-plugin',
+    path: '/api/my-mcp-plugin/mcp',
+    description: 'MCP endpoint for my tools',
+  });
+}
+```
+
+### For Users
+
+1. **Create an OAuth Client** in Strapi Admin:
+   - Go to Content Manager > MCP OAuth Client
+   - Add client name, ID, secret, and redirect URIs
+   - Link to a Strapi API token
+
+2. **Configure ChatGPT**:
+   - MCP Server URL: `https://your-domain/api/your-mcp-plugin/mcp`
+   - OAuth Client ID: From Strapi admin
+   - OAuth Client Secret: From Strapi admin
+
+## OAuth Endpoints
+
+| Endpoint | URL |
+|----------|-----|
+| Authorization | `/api/strapi-oauth-mcp-manager/oauth/authorize` |
+| Token | `/api/strapi-oauth-mcp-manager/oauth/token` |
+| Discovery (RFC 8414) | `/api/strapi-oauth-mcp-manager/.well-known/oauth-authorization-server` |
+| Protected Resource (RFC 9728) | `/api/strapi-oauth-mcp-manager/.well-known/oauth-protected-resource` |
+
+## Content Types
+
+The plugin creates these content types:
+
+| Content Type | Purpose |
+|--------------|---------|
+| `mcp-oauth-client` | OAuth client configurations |
+| `mcp-oauth-code` | Authorization codes (temporary) |
+| `mcp-oauth-token` | Access and refresh tokens |
+| `mcp-endpoint` | Registered MCP endpoints |
+
+## Creating an OAuth Client for ChatGPT
+
+In Strapi Admin > Content Manager > MCP OAuth Client:
+
+```json
+{
+  "name": "ChatGPT",
+  "clientId": "chatgpt",
+  "clientSecret": "your-secure-secret",
+  "redirectUris": ["https://chatgpt.com/connector_platform_oauth_redirect"],
+  "strapiApiToken": "your-strapi-api-token",
+  "active": true
+}
+```
+
+## Authentication Flow
+
+```
+1. Client hits MCP endpoint without auth
+2. Returns 401 with WWW-Authenticate header
+3. Client discovers OAuth endpoints via .well-known
+4. Client completes OAuth authorization code flow
+5. Client receives access token
+6. Client makes MCP requests with Bearer token
+7. OAuth manager validates and forwards to MCP plugin
+```
+
+## Claude Desktop (API Token)
+
+For Claude Desktop, use direct Strapi API tokens:
+
+```json
+{
+  "mcpServers": {
+    "your-mcp": {
+      "command": "npx",
+      "args": [
+        "mcp-remote",
+        "https://your-domain/api/your-mcp-plugin/mcp",
+        "--header",
+        "Authorization: Bearer YOUR_STRAPI_API_TOKEN"
+      ]
+    }
+  }
+}
+```
+
+## Requirements
+
+- Strapi v5.x
+- Node.js >= 18
+
+## License
+
+MIT

package/dist/_chunks/App-CjW3NftW.mjs

@@ -0,0 +1,23 @@
+import { jsx, jsxs } from "react/jsx-runtime";
+import { Page } from "@strapi/strapi/admin";
+import { Routes, Route } from "react-router-dom";
+import { Main } from "@strapi/design-system";
+import { useIntl } from "react-intl";
+import { P as PLUGIN_ID } from "./index-DzBaU9Fw.mjs";
+const getTranslation = (id) => `${PLUGIN_ID}.${id}`;
+const HomePage = () => {
+  const { formatMessage } = useIntl();
+  return /* @__PURE__ */ jsx(Main, { children: /* @__PURE__ */ jsxs("h1", { children: [
+    "Welcome to ",
+    formatMessage({ id: getTranslation("plugin.name") })
+  ] }) });
+};
+const App = () => {
+  return /* @__PURE__ */ jsxs(Routes, { children: [
+    /* @__PURE__ */ jsx(Route, { index: true, element: /* @__PURE__ */ jsx(HomePage, {}) }),
+    /* @__PURE__ */ jsx(Route, { path: "*", element: /* @__PURE__ */ jsx(Page.Error, {}) })
+  ] });
+};
+export {
+  App
+};

package/dist/_chunks/App-DsMhfKkM.js

@@ -0,0 +1,23 @@
+"use strict";
+Object.defineProperty(exports, Symbol.toStringTag, { value: "Module" });
+const jsxRuntime = require("react/jsx-runtime");
+const admin = require("@strapi/strapi/admin");
+const reactRouterDom = require("react-router-dom");
+const designSystem = require("@strapi/design-system");
+const reactIntl = require("react-intl");
+const index = require("./index-B2ShbPnj.js");
+const getTranslation = (id) => `${index.PLUGIN_ID}.${id}`;
+const HomePage = () => {
+  const { formatMessage } = reactIntl.useIntl();
+  return /* @__PURE__ */ jsxRuntime.jsx(designSystem.Main, { children: /* @__PURE__ */ jsxRuntime.jsxs("h1", { children: [
+    "Welcome to ",
+    formatMessage({ id: getTranslation("plugin.name") })
+  ] }) });
+};
+const App = () => {
+  return /* @__PURE__ */ jsxRuntime.jsxs(reactRouterDom.Routes, { children: [
+    /* @__PURE__ */ jsxRuntime.jsx(reactRouterDom.Route, { index: true, element: /* @__PURE__ */ jsxRuntime.jsx(HomePage, {}) }),
+    /* @__PURE__ */ jsxRuntime.jsx(reactRouterDom.Route, { path: "*", element: /* @__PURE__ */ jsxRuntime.jsx(admin.Page.Error, {}) })
+  ] });
+};
+exports.App = App;

package/dist/_chunks/en-B4KWt_jN.js

@@ -0,0 +1,4 @@
+"use strict";
+Object.defineProperty(exports, Symbol.toStringTag, { value: "Module" });
+const en = {};
+exports.default = en;

package/dist/_chunks/en-Byx4XI2L.mjs

@@ -0,0 +1,4 @@
+const en = {};
+export {
+  en as default
+};

package/dist/_chunks/index-B2ShbPnj.js

@@ -0,0 +1,65 @@
+"use strict";
+const react = require("react");
+const jsxRuntime = require("react/jsx-runtime");
+const icons = require("@strapi/icons");
+const __variableDynamicImportRuntimeHelper = (glob, path, segs) => {
+  const v = glob[path];
+  if (v) {
+    return typeof v === "function" ? v() : Promise.resolve(v);
+  }
+  return new Promise((_, reject) => {
+    (typeof queueMicrotask === "function" ? queueMicrotask : setTimeout)(
+      reject.bind(
+        null,
+        new Error(
+          "Unknown variable dynamic import: " + path + (path.split("/").length !== segs ? ". Note that variables only represent file names one level deep." : "")
+        )
+      )
+    );
+  });
+};
+const PLUGIN_ID = "strapi-oauth-mcp-manager";
+const Initializer = ({ setPlugin }) => {
+  const ref = react.useRef(setPlugin);
+  react.useEffect(() => {
+    ref.current(PLUGIN_ID);
+  }, []);
+  return null;
+};
+const PluginIcon = () => /* @__PURE__ */ jsxRuntime.jsx(icons.PuzzlePiece, {});
+const index = {
+  register(app) {
+    app.addMenuLink({
+      to: `plugins/${PLUGIN_ID}`,
+      icon: PluginIcon,
+      intlLabel: {
+        id: `${PLUGIN_ID}.plugin.name`,
+        defaultMessage: PLUGIN_ID
+      },
+      Component: async () => {
+        const { App } = await Promise.resolve().then(() => require("./App-DsMhfKkM.js"));
+        return App;
+      }
+    });
+    app.registerPlugin({
+      id: PLUGIN_ID,
+      initializer: Initializer,
+      isReady: false,
+      name: PLUGIN_ID
+    });
+  },
+  async registerTrads({ locales }) {
+    return Promise.all(
+      locales.map(async (locale) => {
+        try {
+          const { default: data } = await __variableDynamicImportRuntimeHelper(/* @__PURE__ */ Object.assign({ "./translations/en.json": () => Promise.resolve().then(() => require("./en-B4KWt_jN.js")) }), `./translations/${locale}.json`, 3);
+          return { data, locale };
+        } catch {
+          return { data: {}, locale };
+        }
+      })
+    );
+  }
+};
+exports.PLUGIN_ID = PLUGIN_ID;
+exports.index = index;

package/dist/_chunks/index-DzBaU9Fw.mjs

@@ -0,0 +1,66 @@
+import { useRef, useEffect } from "react";
+import { jsx } from "react/jsx-runtime";
+import { PuzzlePiece } from "@strapi/icons";
+const __variableDynamicImportRuntimeHelper = (glob, path, segs) => {
+  const v = glob[path];
+  if (v) {
+    return typeof v === "function" ? v() : Promise.resolve(v);
+  }
+  return new Promise((_, reject) => {
+    (typeof queueMicrotask === "function" ? queueMicrotask : setTimeout)(
+      reject.bind(
+        null,
+        new Error(
+          "Unknown variable dynamic import: " + path + (path.split("/").length !== segs ? ". Note that variables only represent file names one level deep." : "")
+        )
+      )
+    );
+  });
+};
+const PLUGIN_ID = "strapi-oauth-mcp-manager";
+const Initializer = ({ setPlugin }) => {
+  const ref = useRef(setPlugin);
+  useEffect(() => {
+    ref.current(PLUGIN_ID);
+  }, []);
+  return null;
+};
+const PluginIcon = () => /* @__PURE__ */ jsx(PuzzlePiece, {});
+const index = {
+  register(app) {
+    app.addMenuLink({
+      to: `plugins/${PLUGIN_ID}`,
+      icon: PluginIcon,
+      intlLabel: {
+        id: `${PLUGIN_ID}.plugin.name`,
+        defaultMessage: PLUGIN_ID
+      },
+      Component: async () => {
+        const { App } = await import("./App-CjW3NftW.mjs");
+        return App;
+      }
+    });
+    app.registerPlugin({
+      id: PLUGIN_ID,
+      initializer: Initializer,
+      isReady: false,
+      name: PLUGIN_ID
+    });
+  },
+  async registerTrads({ locales }) {
+    return Promise.all(
+      locales.map(async (locale) => {
+        try {
+          const { default: data } = await __variableDynamicImportRuntimeHelper(/* @__PURE__ */ Object.assign({ "./translations/en.json": () => import("./en-Byx4XI2L.mjs") }), `./translations/${locale}.json`, 3);
+          return { data, locale };
+        } catch {
+          return { data: {}, locale };
+        }
+      })
+    );
+  }
+};
+export {
+  PLUGIN_ID as P,
+  index as i
+};

package/dist/admin/index.js

@@ -0,0 +1,3 @@
+"use strict";
+const index = require("../_chunks/index-B2ShbPnj.js");
+module.exports = index.index;

package/dist/admin/index.mjs

@@ -0,0 +1,4 @@
+import { i } from "../_chunks/index-DzBaU9Fw.mjs";
+export {
+  i as default
+};

package/dist/admin/src/components/Initializer.d.ts

@@ -0,0 +1,5 @@
+type InitializerProps = {
+    setPlugin: (id: string) => void;
+};
+declare const Initializer: ({ setPlugin }: InitializerProps) => null;
+export { Initializer };

package/dist/admin/src/components/PluginIcon.d.ts

@@ -0,0 +1,2 @@
+declare const PluginIcon: () => import("react/jsx-runtime").JSX.Element;
+export { PluginIcon };

package/dist/admin/src/index.d.ts

@@ -0,0 +1,10 @@
+declare const _default: {
+    register(app: any): void;
+    registerTrads({ locales }: {
+        locales: string[];
+    }): Promise<{
+        data: any;
+        locale: string;
+    }[]>;
+};
+export default _default;

package/dist/admin/src/pages/App.d.ts

@@ -0,0 +1,2 @@
+declare const App: () => import("react/jsx-runtime").JSX.Element;
+export { App };

package/dist/admin/src/pages/HomePage.d.ts

@@ -0,0 +1,2 @@
+declare const HomePage: () => import("react/jsx-runtime").JSX.Element;
+export { HomePage };

package/dist/admin/src/pluginId.d.ts

@@ -0,0 +1 @@
+export declare const PLUGIN_ID = "strapi-oauth-mcp-manager";

package/dist/admin/src/utils/getTranslation.d.ts

@@ -0,0 +1,2 @@
+declare const getTranslation: (id: string) => string;
+export { getTranslation };