sub-bridge 1.0.0 → 1.0.3

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "sub-bridge",
-  "version": "1.0.0",
+  "version": "1.0.3",
   "description": "MCP bridge to use ChatGPT Pro, Claude Max, etc. in Cursor via an OpenAI-compatible proxy",
   "main": "dist/cli.js",
   "bin": {
@@ -11,7 +11,7 @@
     "dev": "tsx src/cli.ts --verbose",
     "dev:server": "tsx watch src/server.ts",
     "dev:mcp": "tsx src/mcp.ts",
-    "dev:tmux": "tmux attach -t sub-bridge || tmux new -s sub-bridge \"set -a; source ./.env; set +a; npm run dev:server\"",
+    "dev:tmux": "tmux attach -t sub-bridge 2>/dev/null || tmux new -s sub-bridge \"set -a; source ./.env; set +a; npm run dev:server || sleep 10\"",
     "start": "node dist/cli.js",
     "start:server": "tsx src/server.ts",
     "start:mcp": "tsx src/mcp.ts",
@@ -34,6 +34,10 @@
   ],
   "author": "Maol-1997",
   "license": "MIT",
+  "repository": {
+    "type": "git",
+    "url": "https://github.com/buremba/sub-bridge"
+  },
   "dependencies": {
     "@hono/node-server": "^1.19.7",
     "@modelcontextprotocol/sdk": "^1.0.0",

package/src/cli.ts

@@ -69,23 +69,9 @@ async function main() {
 }
 
 function printSetupInstructions(publicUrl: string) {
-  log()
-  log(chalk.bold.yellow('  Setup in Cursor:'))
-  log(chalk.dim('  ─────────────────────────────────────'))
-  log()
-  log(chalk.dim('  1. Command Palette (Cmd+Shift+P / Ctrl+Shift+P)'))
-  log(chalk.dim('  2. Search "Cursor Settings" → Open'))
-  log(chalk.dim('  3. Navigate: Models → API Keys (expand)'))
-  log(chalk.dim('  4. Enable "OpenAI API Key" toggle'))
-  log(chalk.dim('  5. Set API key with routing:'))
-  log(chalk.dim('     '), chalk.cyan('o3=opus-4.5,o3-mini=sonnet-4.5:sk-ant-xxx'))
-  log(chalk.dim('  6. Enable "Override OpenAI Base URL" toggle'))
-  log(chalk.dim('  7. Set Base URL:'), chalk.cyan.bold(`${publicUrl}/v1`))
   log()
   log(chalk.dim('  Getting API keys:'))
   log(chalk.dim('    • Open'), chalk.cyan(publicUrl), chalk.dim('in your external browser and click Login buttons'))
-  log(chalk.dim('    • Or use Claude Code CLI:'), chalk.cyan('claude setup-token'))
-  log(chalk.dim('    • Or use Codex CLI:'), chalk.cyan('codex login'))
   log()
   log(chalk.dim('  Use MCP tool: "get_status" to get URL anytime'))
   log()

package/src/routes/chat.ts

@@ -961,6 +961,9 @@ Examples:
 export function createChatRoutes() {
   const app = new Hono()
 
+  // Base route for quick health checks
+  app.get('/', (c) => c.json({ status: 'ok' }))
+
   // Models endpoint
   app.get('/models', async (c) => {
     const response = await fetch('https://models.dev/api.json')

package/src/server.ts

@@ -23,6 +23,7 @@ import { createChatRoutes } from './routes/chat'
 import { createOAuthRoutes } from './routes/oauth'
 import { addSharedOptions } from './utils/cli-args'
 import { buildStatusText } from './utils/setup-instructions'
+import { getCloudflaredHostnames } from './utils/cloudflared-config'
 
 // ============================================================================
 // CONFIGURATION
@@ -86,10 +87,14 @@ export function createServerApp(config: ServerConfig, getPublicUrl: () => string
   }))
 
   // API config for frontend
-  app.get('/api/config', (c) => c.json({
-    publicUrl: getPublicUrl(),
-    port: localPort.value,
-  }))
+  app.get('/api/config', async (c) => {
+    const cloudflaredHostnames = await getCloudflaredHostnames(localPort.value)
+    return c.json({
+      publicUrl: getPublicUrl(),
+      port: localPort.value,
+      cloudflaredHostnames,
+    })
+  })
 
   // MCP tool forwarding endpoint
   app.post('/mcp/tools/:name', async (c) => {
@@ -156,14 +161,13 @@ export async function startServer(config: ServerConfig): Promise<StartedServer>
         : `http://localhost:${info.port}`
 
       log()
-      log(chalk.bold.cyan('  Sub Bridge HTTP Server'))
+      log(chalk.bold.cyan('  Sub Bridge OpenAI API Gateway and MCP Server'))
       log(chalk.dim('  ─────────────────────────────────────'))
       log()
       log(' ', chalk.green(publicUrl))
       log(chalk.dim(`  Port: ${info.port}`))
       log()
       log(chalk.dim('  API key format: o3=opus-4.5,o3-mini=sonnet-4.5:sk-ant-xxx'))
-      log()
 
       resolve({
         port: info.port,

package/src/tunnel/providers/cloudflare.ts

@@ -3,6 +3,9 @@
 // ============================================================================
 
 import { Tunnel } from 'cloudflared'
+import fs from 'node:fs/promises'
+import os from 'node:os'
+import path from 'node:path'
 import type { TunnelProvider, TunnelInstance } from '../types'
 
 export class CloudflareTunnelProvider implements TunnelProvider {
@@ -27,14 +30,21 @@ export class CloudflareTunnelProvider implements TunnelProvider {
     }
 
     // Anonymous tunnel using cloudflared npm package
-    const tunnel = Tunnel.quick(`http://localhost:${localPort}`)
+    const tmpDir = await fs.mkdtemp(path.join(os.tmpdir(), 'sub-bridge-cloudflared-'))
+    const configPath = path.join(tmpDir, 'config.yml')
+    await fs.writeFile(configPath, 'no-autoupdate: true\n')
+    // Use HTTP/2 protocol for more reliable connections
+    const tunnel = Tunnel.quick(`http://localhost:${localPort}`, { '--config': configPath, '--protocol': 'http2' })
 
+    // Wait for URL event - the tunnel is usable once we have the URL
     const url = await new Promise<string>((resolve, reject) => {
-      const timeout = setTimeout(() => reject(new Error('Tunnel timeout (30s)')), 30000)
-      tunnel.once('url', (tunnelUrl: string) => {
+      const timeout = setTimeout(() => reject(new Error('Tunnel timeout (60s)')), 60000)
+
+      tunnel.once('url', (url: string) => {
         clearTimeout(timeout)
-        resolve(tunnelUrl)
+        resolve(url)
       })
+
       tunnel.once('error', (err: Error) => {
         clearTimeout(timeout)
         reject(err)
@@ -44,7 +54,10 @@ export class CloudflareTunnelProvider implements TunnelProvider {
     return {
       providerId: this.id,
       publicUrl: url,
-      stop: () => tunnel.stop()
+      stop: () => {
+        tunnel.stop()
+        void fs.rm(tmpDir, { recursive: true, force: true })
+      }
     }
   }
 }

package/src/tunnel/registry.ts

@@ -3,6 +3,54 @@
 // ============================================================================
 
 import type { TunnelProvider, TunnelInstance, TunnelStatus, ProviderInfo } from './types'
+import { SERVICE_IDENTIFIER } from '../utils/port'
+
+function sleep(ms: number): Promise<void> {
+  return new Promise((resolve) => setTimeout(resolve, ms))
+}
+
+async function verifyTunnelHealth(publicUrl: string, expectedPort: number): Promise<void> {
+  const baseUrl = publicUrl.replace(/\/$/, '')
+  const healthUrl = `${baseUrl}/health`
+  const maxAttempts = 12
+  let lastError: Error | null = null
+
+  for (let attempt = 1; attempt <= maxAttempts; attempt++) {
+    const controller = new AbortController()
+    const timeout = setTimeout(() => controller.abort(), 3000)
+
+    try {
+      const response = await fetch(healthUrl, { signal: controller.signal })
+      if (!response.ok) {
+        throw new Error(`Tunnel check failed (HTTP ${response.status})`)
+      }
+
+      const data = await response.json() as { service?: string; port?: number }
+      if (data.service !== SERVICE_IDENTIFIER) {
+        throw new Error('Tunnel check failed (unexpected service)')
+      }
+      if (typeof data.port === 'number' && data.port !== expectedPort) {
+        throw new Error(`Tunnel check failed (unexpected port ${data.port})`)
+      }
+      return
+    } catch (error) {
+      if (error instanceof Error && error.name === 'AbortError') {
+        lastError = new Error('Tunnel check timed out')
+      } else if (error instanceof Error) {
+        lastError = error
+      } else {
+        lastError = new Error(String(error))
+      }
+      if (attempt < maxAttempts) {
+        await sleep(400)
+        continue
+      }
+      throw new Error(`Tunnel check failed: ${lastError.message} (${healthUrl})`)
+    } finally {
+      clearTimeout(timeout)
+    }
+  }
+}
 import {
   CloudflareTunnelProvider,
   NgrokTunnelProvider,
@@ -70,15 +118,38 @@ export class TunnelRegistry {
       throw new Error(`Tunnel provider ${provider.name} is not available`)
     }
 
-    try {
-      this.lastError = null
-      this.activeTunnel = await provider.start(localPort, namedUrl)
-      this.startedAt = new Date().toISOString()
-      return this.getStatus()
-    } catch (error) {
-      this.lastError = error instanceof Error ? error.message : String(error)
-      throw error
+    const isQuickCloudflare = providerId === 'cloudflare' && !namedUrl
+    const maxAttempts = isQuickCloudflare ? 4 : 1
+    let lastError: Error | null = null
+
+    for (let attempt = 1; attempt <= maxAttempts; attempt++) {
+      try {
+        this.lastError = null
+        this.activeTunnel = await provider.start(localPort, namedUrl)
+        this.startedAt = new Date().toISOString()
+        await verifyTunnelHealth(this.activeTunnel.publicUrl, localPort)
+        return this.getStatus()
+      } catch (error) {
+        lastError = error instanceof Error ? error : new Error(String(error))
+        this.lastError = lastError.message
+        if (this.activeTunnel) {
+          this.activeTunnel.stop()
+          this.activeTunnel = null
+          this.startedAt = null
+        }
+        if (attempt < maxAttempts) {
+          await sleep(600)
+          continue
+        }
+      }
     }
+
+    const message = lastError?.message || 'Unknown error'
+    throw new Error(
+      maxAttempts > 1
+        ? `Failed to start tunnel after ${maxAttempts} attempts: ${message}`
+        : message
+    )
   }
 
   stop(): TunnelStatus {

package/src/utils/cloudflared-config.ts

@@ -0,0 +1,121 @@
+import fs from 'node:fs/promises'
+import os from 'node:os'
+import path from 'node:path'
+
+interface IngressRule {
+  hostname?: string
+  service?: string
+}
+
+function stripQuotes(value: string): string {
+  const trimmed = value.trim()
+  if (
+    (trimmed.startsWith('"') && trimmed.endsWith('"')) ||
+    (trimmed.startsWith("'") && trimmed.endsWith("'"))
+  ) {
+    return trimmed.slice(1, -1)
+  }
+  return trimmed
+}
+
+function normalizeHostname(hostname: string): string {
+  return hostname.replace(/^https?:\/\//, '').split('/')[0]?.trim() || ''
+}
+
+function parseIngressRules(content: string): IngressRule[] {
+  const entries: IngressRule[] = []
+  const lines = content.split(/\r?\n/)
+  let inIngress = false
+  let current: IngressRule | null = null
+
+  for (const rawLine of lines) {
+    const line = rawLine.replace(/\t/g, '  ')
+    const trimmed = line.trim()
+    if (!trimmed || trimmed.startsWith('#')) continue
+
+    if (!inIngress) {
+      if (trimmed === 'ingress:' || trimmed.startsWith('ingress:')) {
+        inIngress = true
+      }
+      continue
+    }
+
+    const indent = line.match(/^\s*/)?.[0].length ?? 0
+    if (indent === 0 && !trimmed.startsWith('-')) {
+      break
+    }
+
+    if (trimmed.startsWith('-')) {
+      if (current && (current.hostname || current.service)) entries.push(current)
+      current = {}
+      const afterDash = trimmed.slice(1).trim()
+      if (afterDash.startsWith('hostname:')) {
+        current.hostname = stripQuotes(afterDash.slice('hostname:'.length))
+      } else if (afterDash.startsWith('service:')) {
+        current.service = stripQuotes(afterDash.slice('service:'.length))
+      }
+      continue
+    }
+
+    if (!current) continue
+
+    if (trimmed.startsWith('hostname:')) {
+      current.hostname = stripQuotes(trimmed.slice('hostname:'.length))
+      continue
+    }
+    if (trimmed.startsWith('service:')) {
+      current.service = stripQuotes(trimmed.slice('service:'.length))
+      continue
+    }
+  }
+
+  if (current && (current.hostname || current.service)) entries.push(current)
+  return entries
+}
+
+function serviceMatchesPort(service: string, port: number): boolean {
+  if (!service || service.startsWith('http_status:')) return false
+
+  try {
+    const url = new URL(service)
+    const protocol = url.protocol
+    if (protocol !== 'http:' && protocol !== 'https:') return false
+
+    const resolvedPort = url.port
+      ? Number(url.port)
+      : (protocol === 'https:' ? 443 : 80)
+    if (resolvedPort !== port) return false
+
+    const host = url.hostname
+    return host === 'localhost' || host === '127.0.0.1' || host === '0.0.0.0' || host === '::1'
+  } catch {
+    return false
+  }
+}
+
+export async function getCloudflaredHostnames(port: number): Promise<string[]> {
+  const home = os.homedir()
+  const configPaths = [
+    path.join(home, '.cloudflared', 'config.yml'),
+    path.join(home, '.cloudflared', 'config.yaml'),
+  ]
+
+  const hostnames = new Set<string>()
+
+  for (const configPath of configPaths) {
+    try {
+      const content = await fs.readFile(configPath, 'utf8')
+      const rules = parseIngressRules(content)
+      for (const rule of rules) {
+        if (!rule.hostname || !rule.service) continue
+        if (!serviceMatchesPort(rule.service, port)) continue
+        const normalized = normalizeHostname(rule.hostname)
+        if (normalized) hostnames.add(normalized)
+      }
+    } catch {
+      continue
+    }
+  }
+
+  return Array.from(hostnames)
+}

package/src/utils/setup-instructions.ts

@@ -21,15 +21,15 @@ export function buildStatusText(options: StatusTextOptions): string {
     const lines = [
       'Sub Bridge is running.',
       '',
-      `Setup URL: ${baseUrl}`,
+      `Setup URL: ${baseUrl}?to=cursor`,
       "Open this URL in your browser where you're logged into ChatGPT or Claude.",
       '',
       'To configure Cursor:',
       '1. Authenticate with ChatGPT or Claude in the web UI',
       '2. Copy the generated API key',
-      '3. In Cursor: Settings → Models → API Keys',
-      '   - Paste the API key',
-      `   - Set Base URL to: ${baseUrlForV1}/v1`,
+      '3. In Cursor Settings → Models → API Keys',
+      '   - Paste the API key from the web UI',
+      `   - Set Base URL from the web UI`,
       '',
       ...MODEL_MAPPING_LINES,
     ]
@@ -46,14 +46,11 @@ export function buildStatusText(options: StatusTextOptions): string {
     'Sub Bridge server not reachable.',
     '',
     'To set up:',
-    `1. Open ${baseUrl} in your browser where you're logged into ChatGPT or Claude`,
+    `1. Open ${baseUrl}?to=cursor in your browser where you're logged into ChatGPT or Claude`,
     '2. Authenticate and copy the generated API key',
-    `3. In Cursor: Settings → Models → API Keys, paste the key and set Base URL to ${baseUrlForV1}/v1`,
+    `3. In Cursor: Settings → Models → API Keys, paste the key and set Base URL from the web UI`,
     '',
     ...MODEL_MAPPING_LINES,
-    '',
-    'If you need a public URL, enable a tunnel in the web UI.',
-    '',
     `Setup screenshot: ${baseUrl}/assets/setup.png`,
   ].join('\n')
 }

package/dist/auth/oauth-flow.d.ts

@@ -1,24 +0,0 @@
-interface PKCE {
-    verifier: string;
-    challenge: string;
-}
-interface TokenResponse {
-    access_token: string;
-    refresh_token: string;
-    expires_in: number;
-}
-interface ExchangeOptions {
-    persist?: boolean;
-    log?: boolean;
-}
-export declare function getAuthorizationUrl(pkce: PKCE): string;
-export declare function exchangeCodeForTokens(code: string, verifier: string, options?: ExchangeOptions): Promise<TokenResponse>;
-export declare function generateAuthSession(): Promise<{
-    authUrl: string;
-    sessionId: string;
-}>;
-export declare function handleOAuthCallback(code: string, sessionId: string): Promise<TokenResponse>;
-export declare function login(): Promise<boolean>;
-export declare function logout(): Promise<boolean>;
-export {};
-//# sourceMappingURL=oauth-flow.d.ts.map

package/dist/auth/oauth-flow.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"oauth-flow.d.ts","sourceRoot":"","sources":["../../src/auth/oauth-flow.ts"],"names":[],"mappings":"AAQA,UAAU,IAAI;IACZ,QAAQ,EAAE,MAAM,CAAA;IAChB,SAAS,EAAE,MAAM,CAAA;CAClB;AAED,UAAU,aAAa;IACrB,YAAY,EAAE,MAAM,CAAA;IACpB,aAAa,EAAE,MAAM,CAAA;IACrB,UAAU,EAAE,MAAM,CAAA;CACnB;AAED,UAAU,eAAe;IACvB,OAAO,CAAC,EAAE,OAAO,CAAA;IACjB,GAAG,CAAC,EAAE,OAAO,CAAA;CACd;AAiBD,wBAAgB,mBAAmB,CAAC,IAAI,EAAE,IAAI,GAAG,MAAM,CAetD;AAuCD,wBAAsB,qBAAqB,CACzC,IAAI,EAAE,MAAM,EACZ,QAAQ,EAAE,MAAM,EAChB,OAAO,GAAE,eAAoB,GAC5B,OAAO,CAAC,aAAa,CAAC,CAuCxB;AAGD,wBAAsB,mBAAmB,IAAI,OAAO,CAAC;IACnD,OAAO,EAAE,MAAM,CAAA;IACf,SAAS,EAAE,MAAM,CAAA;CAClB,CAAC,CASD;AAGD,wBAAsB,mBAAmB,CACvC,IAAI,EAAE,MAAM,EACZ,SAAS,EAAE,MAAM,GAChB,OAAO,CAAC,aAAa,CAAC,CAMxB;AAED,wBAAsB,KAAK,IAAI,OAAO,CAAC,OAAO,CAAC,CAgB9C;AAED,wBAAsB,MAAM,IAAI,OAAO,CAAC,OAAO,CAAC,CAS/C"}

package/dist/auth/oauth-flow.js

@@ -1,184 +0,0 @@
-"use strict";
-var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    var desc = Object.getOwnPropertyDescriptor(m, k);
-    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
-      desc = { enumerable: true, get: function() { return m[k]; } };
-    }
-    Object.defineProperty(o, k2, desc);
-}) : (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    o[k2] = m[k];
-}));
-var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
-    Object.defineProperty(o, "default", { enumerable: true, value: v });
-}) : function(o, v) {
-    o["default"] = v;
-});
-var __importStar = (this && this.__importStar) || (function () {
-    var ownKeys = function(o) {
-        ownKeys = Object.getOwnPropertyNames || function (o) {
-            var ar = [];
-            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
-            return ar;
-        };
-        return ownKeys(o);
-    };
-    return function (mod) {
-        if (mod && mod.__esModule) return mod;
-        var result = {};
-        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
-        __setModuleDefault(result, mod);
-        return result;
-    };
-})();
-var __importDefault = (this && this.__importDefault) || function (mod) {
-    return (mod && mod.__esModule) ? mod : { "default": mod };
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.getAuthorizationUrl = getAuthorizationUrl;
-exports.exchangeCodeForTokens = exchangeCodeForTokens;
-exports.generateAuthSession = generateAuthSession;
-exports.handleOAuthCallback = handleOAuthCallback;
-exports.login = login;
-exports.logout = logout;
-const crypto_1 = __importDefault(require("crypto"));
-const authManager = __importStar(require("./oauth-manager"));
-const CLIENT_ID = process.env.ANTHROPIC_OAUTH_CLIENT_ID ||
-    '9d1c250a-e61b-44d9-88ed-5944d1962f5e';
-const REDIRECT_URI = 'https://console.anthropic.com/oauth/code/callback';
-function splitCodeState(code) {
-    const splits = code.split('#');
-    return { code: splits[0], state: splits[1] || undefined };
-}
-function generatePKCE() {
-    const verifier = crypto_1.default.randomBytes(32).toString('base64url');
-    const challenge = crypto_1.default
-        .createHash('sha256')
-        .update(verifier)
-        .digest('base64url');
-    return { verifier, challenge };
-}
-function getAuthorizationUrl(pkce) {
-    const authUrl = new URL('https://claude.ai/oauth/authorize');
-    authUrl.searchParams.set('code', 'true');
-    authUrl.searchParams.set('client_id', CLIENT_ID);
-    authUrl.searchParams.set('response_type', 'code');
-    authUrl.searchParams.set('redirect_uri', REDIRECT_URI);
-    authUrl.searchParams.set('scope', 'org:create_api_key user:profile user:inference');
-    authUrl.searchParams.set('code_challenge', pkce.challenge);
-    authUrl.searchParams.set('code_challenge_method', 'S256');
-    authUrl.searchParams.set('state', pkce.verifier);
-    return authUrl.toString();
-}
-async function startAuthFlow() {
-    const pkce = generatePKCE();
-    const authUrl = getAuthorizationUrl(pkce);
-    console.log('\n🔐 OAuth Authentication Required');
-    console.log('Please visit the following URL to authenticate:');
-    console.log(`\n${authUrl}\n`);
-    console.log('After authentication, you will get a code.');
-    console.log('Please paste the entire code here and press Enter:\n');
-    // Read code from stdin
-    const code = await readCodeFromStdin();
-    if (!code) {
-        throw new Error('No code provided');
-    }
-    // Exchange code for tokens
-    return await exchangeCodeForTokens(code, pkce.verifier);
-}
-async function readCodeFromStdin() {
-    return new Promise((resolve) => {
-        let code = '';
-        process.stdin.setEncoding('utf8');
-        process.stdin.resume();
-        process.stdin.on('data', (chunk) => {
-            code += chunk;
-            if (code.includes('\n')) {
-                process.stdin.pause();
-                resolve(code.trim());
-            }
-        });
-    });
-}
-async function exchangeCodeForTokens(code, verifier, options = {}) {
-    const { code: authCode, state } = splitCodeState(code);
-    const response = await fetch('https://console.anthropic.com/v1/oauth/token', {
-        method: 'POST',
-        headers: {
-            'Content-Type': 'application/json',
-        },
-        body: JSON.stringify({
-            code: authCode,
-            state: state || verifier,
-            grant_type: 'authorization_code',
-            client_id: CLIENT_ID,
-            redirect_uri: REDIRECT_URI,
-            code_verifier: verifier,
-        }),
-    });
-    if (!response.ok) {
-        const error = await response.text();
-        throw new Error(`Failed to exchange code: ${error}`);
-    }
-    const data = (await response.json());
-    const shouldPersist = options.persist ?? true;
-    const shouldLog = options.log ?? true;
-    if (shouldPersist) {
-        await authManager.set({
-            type: 'oauth',
-            refresh: data.refresh_token,
-            access: data.access_token,
-            expires: Date.now() + data.expires_in * 1000,
-        });
-        if (shouldLog) {
-            console.log('✅ OAuth tokens saved successfully!');
-        }
-    }
-    return data;
-}
-// New function to generate auth URL and store PKCE verifier
-async function generateAuthSession() {
-    const pkce = generatePKCE();
-    const authUrl = getAuthorizationUrl(pkce);
-    // Store PKCE verifier temporarily (in production, use a proper session store)
-    // For now, we'll use the verifier as the session ID
-    const sessionId = pkce.verifier;
-    return { authUrl, sessionId };
-}
-// New function to handle OAuth callback
-async function handleOAuthCallback(code, sessionId) {
-    // In production, retrieve the verifier from session store
-    // For now, we use the sessionId as the verifier
-    const verifier = sessionId;
-    return await exchangeCodeForTokens(code, verifier);
-}
-async function login() {
-    try {
-        // Check if we already have valid credentials
-        const existing = await authManager.get();
-        if (existing && existing.access && existing.expires > Date.now()) {
-            console.log('✅ Valid OAuth credentials already exist');
-            return true;
-        }
-        // Start OAuth flow
-        await startAuthFlow();
-        return true;
-    }
-    catch (error) {
-        console.error('OAuth login failed:', error);
-        return false;
-    }
-}
-async function logout() {
-    try {
-        await authManager.remove();
-        console.log('✅ OAuth credentials removed');
-        return true;
-    }
-    catch (error) {
-        console.error('Logout failed:', error);
-        return false;
-    }
-}
-//# sourceMappingURL=oauth-flow.js.map

package/dist/auth/oauth-flow.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"oauth-flow.js","sourceRoot":"","sources":["../../src/auth/oauth-flow.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAuCA,kDAeC;AAuCD,sDA2CC;AAGD,kDAYC;AAGD,kDASC;AAED,sBAgBC;AAED,wBASC;AAhMD,oDAA2B;AAC3B,6DAA8C;AAE9C,MAAM,SAAS,GACb,OAAO,CAAC,GAAG,CAAC,yBAAyB;IACrC,sCAAsC,CAAA;AACxC,MAAM,YAAY,GAAG,mDAAmD,CAAA;AAkBxE,SAAS,cAAc,CAAC,IAAY;IAClC,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,CAAA;IAC9B,OAAO,EAAE,IAAI,EAAE,MAAM,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,MAAM,CAAC,CAAC,CAAC,IAAI,SAAS,EAAE,CAAA;AAC3D,CAAC;AAED,SAAS,YAAY;IACnB,MAAM,QAAQ,GAAG,gBAAM,CAAC,WAAW,CAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,WAAW,CAAC,CAAA;IAC7D,MAAM,SAAS,GAAG,gBAAM;SACrB,UAAU,CAAC,QAAQ,CAAC;SACpB,MAAM,CAAC,QAAQ,CAAC;SAChB,MAAM,CAAC,WAAW,CAAC,CAAA;IAEtB,OAAO,EAAE,QAAQ,EAAE,SAAS,EAAE,CAAA;AAChC,CAAC;AAED,SAAgB,mBAAmB,CAAC,IAAU;IAC5C,MAAM,OAAO,GAAG,IAAI,GAAG,CAAC,mCAAmC,CAAC,CAAA;IAC5D,OAAO,CAAC,YAAY,CAAC,GAAG,CAAC,MAAM,EAAE,MAAM,CAAC,CAAA;IACxC,OAAO,CAAC,YAAY,CAAC,GAAG,CAAC,WAAW,EAAE,SAAS,CAAC,CAAA;IAChD,OAAO,CAAC,YAAY,CAAC,GAAG,CAAC,eAAe,EAAE,MAAM,CAAC,CAAA;IACjD,OAAO,CAAC,YAAY,CAAC,GAAG,CAAC,cAAc,EAAE,YAAY,CAAC,CAAA;IACtD,OAAO,CAAC,YAAY,CAAC,GAAG,CACtB,OAAO,EACP,gDAAgD,CACjD,CAAA;IACD,OAAO,CAAC,YAAY,CAAC,GAAG,CAAC,gBAAgB,EAAE,IAAI,CAAC,SAAS,CAAC,CAAA;IAC1D,OAAO,CAAC,YAAY,CAAC,GAAG,CAAC,uBAAuB,EAAE,MAAM,CAAC,CAAA;IACzD,OAAO,CAAC,YAAY,CAAC,GAAG,CAAC,OAAO,EAAE,IAAI,CAAC,QAAQ,CAAC,CAAA;IAEhD,OAAO,OAAO,CAAC,QAAQ,EAAE,CAAA;AAC3B,CAAC;AAED,KAAK,UAAU,aAAa;IAC1B,MAAM,IAAI,GAAG,YAAY,EAAE,CAAA;IAC3B,MAAM,OAAO,GAAG,mBAAmB,CAAC,IAAI,CAAC,CAAA;IAEzC,OAAO,CAAC,GAAG,CAAC,oCAAoC,CAAC,CAAA;IACjD,OAAO,CAAC,GAAG,CAAC,iDAAiD,CAAC,CAAA;IAC9D,OAAO,CAAC,GAAG,CAAC,KAAK,OAAO,IAAI,CAAC,CAAA;IAC7B,OAAO,CAAC,GAAG,CAAC,4CAA4C,CAAC,CAAA;IACzD,OAAO,CAAC,GAAG,CAAC,sDAAsD,CAAC,CAAA;IAEnE,uBAAuB;IACvB,MAAM,IAAI,GAAG,MAAM,iBAAiB,EAAE,CAAA;IAEtC,IAAI,CAAC,IAAI,EAAE,CAAC;QACV,MAAM,IAAI,KAAK,CAAC,kBAAkB,CAAC,CAAA;IACrC,CAAC;IAED,2BAA2B;IAC3B,OAAO,MAAM,qBAAqB,CAAC,IAAI,EAAE,IAAI,CAAC,QAAQ,CAAC,CAAA;AACzD,CAAC;AAED,KAAK,UAAU,iBAAiB;IAC9B,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,EAAE;QAC7B,IAAI,IAAI,GAAG,EAAE,CAAA;QACb,OAAO,CAAC,KAAK,CAAC,WAAW,CAAC,MAAM,CAAC,CAAA;QACjC,OAAO,CAAC,KAAK,CAAC,MAAM,EAAE,CAAA;QAEtB,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC,MAAM,EAAE,CAAC,KAAK,EAAE,EAAE;YACjC,IAAI,IAAI,KAAK,CAAA;YACb,IAAI,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,CAAC;gBACxB,OAAO,CAAC,KAAK,CAAC,KAAK,EAAE,CAAA;gBACrB,OAAO,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC,CAAA;YACtB,CAAC;QACH,CAAC,CAAC,CAAA;IACJ,CAAC,CAAC,CAAA;AACJ,CAAC;AAEM,KAAK,UAAU,qBAAqB,CACzC,IAAY,EACZ,QAAgB,EAChB,UAA2B,EAAE;IAE7B,MAAM,EAAE,IAAI,EAAE,QAAQ,EAAE,KAAK,EAAE,GAAG,cAAc,CAAC,IAAI,CAAC,CAAA;IACtD,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,8CAA8C,EAAE;QAC3E,MAAM,EAAE,MAAM;QACd,OAAO,EAAE;YACP,cAAc,EAAE,kBAAkB;SACnC;QACD,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC;YACnB,IAAI,EAAE,QAAQ;YACd,KAAK,EAAE,KAAK,IAAI,QAAQ;YACxB,UAAU,EAAE,oBAAoB;YAChC,SAAS,EAAE,SAAS;YACpB,YAAY,EAAE,YAAY;YAC1B,aAAa,EAAE,QAAQ;SACxB,CAAC;KACH,CAAC,CAAA;IAEF,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;QACjB,MAAM,KAAK,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAA;QACnC,MAAM,IAAI,KAAK,CAAC,4BAA4B,KAAK,EAAE,CAAC,CAAA;IACtD,CAAC;IAED,MAAM,IAAI,GAAG,CAAC,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAkB,CAAA;IACrD,MAAM,aAAa,GAAG,OAAO,CAAC,OAAO,IAAI,IAAI,CAAA;IAC7C,MAAM,SAAS,GAAG,OAAO,CAAC,GAAG,IAAI,IAAI,CAAA;IAErC,IAAI,aAAa,EAAE,CAAC;QAClB,MAAM,WAAW,CAAC,GAAG,CAAC;YACpB,IAAI,EAAE,OAAO;YACb,OAAO,EAAE,IAAI,CAAC,aAAa;YAC3B,MAAM,EAAE,IAAI,CAAC,YAAY;YACzB,OAAO,EAAE,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,UAAU,GAAG,IAAI;SAC7C,CAAC,CAAA;QACF,IAAI,SAAS,EAAE,CAAC;YACd,OAAO,CAAC,GAAG,CAAC,oCAAoC,CAAC,CAAA;QACnD,CAAC;IACH,CAAC;IAED,OAAO,IAAI,CAAA;AACb,CAAC;AAED,4DAA4D;AACrD,KAAK,UAAU,mBAAmB;IAIvC,MAAM,IAAI,GAAG,YAAY,EAAE,CAAA;IAC3B,MAAM,OAAO,GAAG,mBAAmB,CAAC,IAAI,CAAC,CAAA;IAEzC,8EAA8E;IAC9E,oDAAoD;IACpD,MAAM,SAAS,GAAG,IAAI,CAAC,QAAQ,CAAA;IAE/B,OAAO,EAAE,OAAO,EAAE,SAAS,EAAE,CAAA;AAC/B,CAAC;AAED,wCAAwC;AACjC,KAAK,UAAU,mBAAmB,CACvC,IAAY,EACZ,SAAiB;IAEjB,0DAA0D;IAC1D,gDAAgD;IAChD,MAAM,QAAQ,GAAG,SAAS,CAAA;IAE1B,OAAO,MAAM,qBAAqB,CAAC,IAAI,EAAE,QAAQ,CAAC,CAAA;AACpD,CAAC;AAEM,KAAK,UAAU,KAAK;IACzB,IAAI,CAAC;QACH,6CAA6C;QAC7C,MAAM,QAAQ,GAAG,MAAM,WAAW,CAAC,GAAG,EAAE,CAAA;QACxC,IAAI,QAAQ,IAAI,QAAQ,CAAC,MAAM,IAAI,QAAQ,CAAC,OAAO,GAAG,IAAI,CAAC,GAAG,EAAE,EAAE,CAAC;YACjE,OAAO,CAAC,GAAG,CAAC,yCAAyC,CAAC,CAAA;YACtD,OAAO,IAAI,CAAA;QACb,CAAC;QAED,mBAAmB;QACnB,MAAM,aAAa,EAAE,CAAA;QACrB,OAAO,IAAI,CAAA;IACb,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,OAAO,CAAC,KAAK,CAAC,qBAAqB,EAAE,KAAK,CAAC,CAAA;QAC3C,OAAO,KAAK,CAAA;IACd,CAAC;AACH,CAAC;AAEM,KAAK,UAAU,MAAM;IAC1B,IAAI,CAAC;QACH,MAAM,WAAW,CAAC,MAAM,EAAE,CAAA;QAC1B,OAAO,CAAC,GAAG,CAAC,6BAA6B,CAAC,CAAA;QAC1C,OAAO,IAAI,CAAA;IACb,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,OAAO,CAAC,KAAK,CAAC,gBAAgB,EAAE,KAAK,CAAC,CAAA;QACtC,OAAO,KAAK,CAAA;IACd,CAAC;AACH,CAAC"}

package/dist/auth/oauth-manager.d.ts

@@ -1,13 +0,0 @@
-interface OAuthCredentials {
-    type: 'oauth';
-    refresh: string;
-    access: string;
-    expires: number;
-}
-declare function get(): Promise<OAuthCredentials | null>;
-declare function set(credentials: OAuthCredentials): Promise<boolean>;
-declare function remove(): Promise<boolean>;
-declare function getAll(): Promise<Record<string, OAuthCredentials>>;
-declare function getAccessToken(): Promise<string | null>;
-export { get, set, remove, getAll, getAccessToken };
-//# sourceMappingURL=oauth-manager.d.ts.map

package/dist/auth/oauth-manager.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"oauth-manager.d.ts","sourceRoot":"","sources":["../../src/auth/oauth-manager.ts"],"names":[],"mappings":"AAAA,UAAU,gBAAgB;IACxB,IAAI,EAAE,OAAO,CAAA;IACb,OAAO,EAAE,MAAM,CAAA;IACf,MAAM,EAAE,MAAM,CAAA;IACd,OAAO,EAAE,MAAM,CAAA;CAChB;AAED,iBAAe,GAAG,IAAI,OAAO,CAAC,gBAAgB,GAAG,IAAI,CAAC,CAErD;AAED,iBAAe,GAAG,CAAC,WAAW,EAAE,gBAAgB,GAAG,OAAO,CAAC,OAAO,CAAC,CAElE;AAED,iBAAe,MAAM,IAAI,OAAO,CAAC,OAAO,CAAC,CAExC;AAED,iBAAe,MAAM,IAAI,OAAO,CAAC,MAAM,CAAC,MAAM,EAAE,gBAAgB,CAAC,CAAC,CAEjE;AAED,iBAAe,cAAc,IAAI,OAAO,CAAC,MAAM,GAAG,IAAI,CAAC,CAItD;AAED,OAAO,EAAE,GAAG,EAAE,GAAG,EAAE,MAAM,EAAE,MAAM,EAAE,cAAc,EAAE,CAAA"}