UNPKG

@ai-capabilities-suite/mcp-debugger-core

Version:

Core debugging engine for Node.js and TypeScript applications. Provides Inspector Protocol integration, breakpoint management, variable inspection, execution control, profiling, hang detection, and source map support.

github.com/digital-defiance/ai-capabilities-suite/tree/main/packages/mcp-debugger-core

digital-defiance/ai-capabilities-suite

251 lines 7.85 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
"use strict"; Object.defineProperty(exports, "__esModule", { value: true }); exports.AuthManager = void 0; const crypto_1 = require("crypto"); /** * Manages authentication for MCP connections * Provides token-based authentication and API key validation */ class AuthManager { constructor(config = { enabled: false }) { this.tokens = new Map(); this.apiKeys = new Map(); this.validTokens = new Set(); // Pre-configured valid tokens this.config = { tokenExpirationMs: 60 * 60 * 1000, // 1 hour default ...config, }; // Add pre-configured tokens if provided if (config.tokens) { config.tokens.forEach((token) => this.validTokens.add(token)); } } /** * Generate a new authentication token * @param metadata Optional metadata to associate with the token * @returns The generated token */ generateToken(metadata) { const token = (0, crypto_1.randomBytes)(32).toString('hex'); const now = new Date(); const expiresAt = new Date(now.getTime() + (this.config.tokenExpirationMs || 60 * 60 * 1000)); const authToken = { token, createdAt: now, expiresAt, metadata, }; this.tokens.set(token, authToken); return authToken; } /** * Authenticate a token and return detailed result * @param token The token to authenticate * @returns Authentication result with status and error message */ authenticate(token) { if (!this.config.enabled) { return { authenticated: true }; // Authentication disabled } // Check for null/undefined/empty tokens if (!token || token.trim() === '') { return { authenticated: false, error: 'Authentication token is required', }; } // Use constant-time comparison to prevent timing attacks const isValid = this.constantTimeCompare(token); if (!isValid) { return { authenticated: false, error: 'Invalid authentication token', }; } return { authenticated: true }; } /** * Constant-time comparison to prevent timing attacks * @param token The token to check * @returns True if the token is valid */ constantTimeCompare(token) { // Check pre-configured tokens if (this.validTokens.size > 0) { let isValid = false; for (const validToken of this.validTokens) { // Use crypto.timingSafeEqual for constant-time comparison const tokenBuffer = Buffer.from(token); const validBuffer = Buffer.from(validToken); // Pad buffers to same length to avoid timing leaks const maxLen = Math.max(tokenBuffer.length, validBuffer.length); const paddedToken = Buffer.alloc(maxLen); const paddedValid = Buffer.alloc(maxLen); tokenBuffer.copy(paddedToken); validBuffer.copy(paddedValid); try { if (paddedToken.equals(paddedValid)) { isValid = true; } } catch { // Continue checking other tokens } } return isValid; } // Check generated tokens return this.validateToken(token); } /** * Validate an authentication token * @param token The token to validate * @returns True if the token is valid and not expired */ validateToken(token) { if (!this.config.enabled) { return true; // Authentication disabled } const authToken = this.tokens.get(token); if (!authToken) { return false; } // Check if token is expired if (new Date() > authToken.expiresAt) { this.tokens.delete(token); return false; } return true; } /** * Revoke an authentication token * @param token The token to revoke * @returns True if the token was found and revoked */ revokeToken(token) { return this.tokens.delete(token); } /** * Clean up expired tokens */ cleanupExpiredTokens() { const now = new Date(); for (const [token, authToken] of this.tokens.entries()) { if (now > authToken.expiresAt) { this.tokens.delete(token); } } } /** * Create an API key * @param name Name for the API key * @param metadata Optional metadata to associate with the key * @returns The created API key (with the unhashed key) */ createApiKey(name, metadata) { const key = (0, crypto_1.randomBytes)(32).toString('hex'); const hashedKey = this.hashApiKey(key); const apiKey = { key, // Return the unhashed key only once hashedKey, name, createdAt: new Date(), enabled: true, metadata, }; this.apiKeys.set(hashedKey, apiKey); return apiKey; } /** * Validate an API key * @param key The API key to validate * @returns True if the key is valid and enabled */ validateApiKey(key) { if (!this.config.enabled || !this.config.requireApiKey) { return true; // API key validation disabled } const hashedKey = this.hashApiKey(key); const apiKey = this.apiKeys.get(hashedKey); if (!apiKey) { return false; } return apiKey.enabled; } /** * Revoke an API key * @param key The API key to revoke * @returns True if the key was found and revoked */ revokeApiKey(key) { const hashedKey = this.hashApiKey(key); const apiKey = this.apiKeys.get(hashedKey); if (!apiKey) { return false; } apiKey.enabled = false; return true; } /** * Delete an API key * @param key The API key to delete * @returns True if the key was found and deleted */ deleteApiKey(key) { const hashedKey = this.hashApiKey(key); return this.apiKeys.delete(hashedKey); } /** * Get all API keys (without the actual key values) * @returns Array of API keys with hashed keys */ getAllApiKeys() { return Array.from(this.apiKeys.values()).map(({ key, ...rest }) => rest); } /** * Hash an API key for secure storage * @param key The API key to hash * @returns The hashed key */ hashApiKey(key) { return (0, crypto_1.createHash)('sha256').update(key).digest('hex'); } /** * Check if authentication is enabled * @returns True if authentication is enabled */ isEnabled() { return this.config.enabled; } /** * Check if API key validation is required * @returns True if API key validation is required */ requiresApiKey() { return this.config.enabled && (this.config.requireApiKey || false); } /** * Get the number of active tokens * @returns The number of active tokens */ getActiveTokenCount() { this.cleanupExpiredTokens(); return this.tokens.size; } /** * Get the number of API keys * @returns The number of API keys */ getApiKeyCount() { return this.apiKeys.size; } /** * Clear all tokens and API keys */ clear() { this.tokens.clear(); this.apiKeys.clear(); } } exports.AuthManager = AuthManager; //# sourceMappingURL=auth-manager.js.map