UNPKG

@tiberriver256/mcp-server-azure-devops

Version:

Azure DevOps reference server for the Model Context Protocol (MCP)

135 lines 5.57 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
"use strict"; Object.defineProperty(exports, "__esModule", { value: true }); exports.AuthenticationMethod = void 0; exports.createAuthClient = createAuthClient; const azure_devops_node_api_1 = require("azure-devops-node-api"); const bearertoken_1 = require("azure-devops-node-api/handlers/bearertoken"); const identity_1 = require("@azure/identity"); const errors_1 = require("../errors"); /** * Authentication methods supported by the Azure DevOps client */ var AuthenticationMethod; (function (AuthenticationMethod) { /** * Personal Access Token authentication */ AuthenticationMethod["PersonalAccessToken"] = "pat"; /** * Azure Identity authentication (DefaultAzureCredential) */ AuthenticationMethod["AzureIdentity"] = "azure-identity"; /** * Azure CLI authentication (AzureCliCredential) */ AuthenticationMethod["AzureCli"] = "azure-cli"; })(AuthenticationMethod || (exports.AuthenticationMethod = AuthenticationMethod = {})); /** * Azure DevOps resource ID for token acquisition */ const AZURE_DEVOPS_RESOURCE_ID = '499b84ac-1321-427f-aa17-267ca6975798'; /** * Creates an authenticated client for Azure DevOps API based on the specified authentication method * * @param config Authentication configuration * @returns Authenticated WebApi client * @throws {AzureDevOpsAuthenticationError} If authentication fails */ async function createAuthClient(config) { if (!config.organizationUrl) { throw new errors_1.AzureDevOpsAuthenticationError('Organization URL is required'); } try { let client; switch (config.method) { case AuthenticationMethod.PersonalAccessToken: client = await createPatClient(config); break; case AuthenticationMethod.AzureIdentity: client = await createAzureIdentityClient(config); break; case AuthenticationMethod.AzureCli: client = await createAzureCliClient(config); break; default: throw new errors_1.AzureDevOpsAuthenticationError(`Unsupported authentication method: ${config.method}`); } // Test the connection const locationsApi = await client.getLocationsApi(); await locationsApi.getResourceAreas(); return client; } catch (error) { if (error instanceof errors_1.AzureDevOpsAuthenticationError) { throw error; } throw new errors_1.AzureDevOpsAuthenticationError(`Failed to authenticate with Azure DevOps: ${error instanceof Error ? error.message : String(error)}`); } } /** * Creates a client using Personal Access Token authentication * * @param config Authentication configuration * @returns Authenticated WebApi client * @throws {AzureDevOpsAuthenticationError} If PAT is missing or authentication fails */ async function createPatClient(config) { if (!config.personalAccessToken) { throw new errors_1.AzureDevOpsAuthenticationError('Personal Access Token is required'); } // Create authentication handler using PAT const authHandler = (0, azure_devops_node_api_1.getPersonalAccessTokenHandler)(config.personalAccessToken); // Create API client with the auth handler return new azure_devops_node_api_1.WebApi(config.organizationUrl, authHandler); } /** * Creates a client using DefaultAzureCredential authentication * * @param config Authentication configuration * @returns Authenticated WebApi client * @throws {AzureDevOpsAuthenticationError} If token acquisition fails */ async function createAzureIdentityClient(config) { try { // Create DefaultAzureCredential const credential = new identity_1.DefaultAzureCredential(); // Get token for Azure DevOps const token = await credential.getToken(`${AZURE_DEVOPS_RESOURCE_ID}/.default`); if (!token || !token.token) { throw new Error('Failed to acquire token'); } // Create bearer token handler const authHandler = new bearertoken_1.BearerCredentialHandler(token.token); // Create API client with the auth handler return new azure_devops_node_api_1.WebApi(config.organizationUrl, authHandler); } catch (error) { throw new errors_1.AzureDevOpsAuthenticationError(`Failed to acquire Azure Identity token: ${error instanceof Error ? error.message : String(error)}`); } } /** * Creates a client using AzureCliCredential authentication * * @param config Authentication configuration * @returns Authenticated WebApi client * @throws {AzureDevOpsAuthenticationError} If token acquisition fails */ async function createAzureCliClient(config) { try { // Create AzureCliCredential const credential = new identity_1.AzureCliCredential(); // Get token for Azure DevOps const token = await credential.getToken(`${AZURE_DEVOPS_RESOURCE_ID}/.default`); if (!token || !token.token) { throw new Error('Failed to acquire token'); } // Create bearer token handler const authHandler = new bearertoken_1.BearerCredentialHandler(token.token); // Create API client with the auth handler return new azure_devops_node_api_1.WebApi(config.organizationUrl, authHandler); } catch (error) { throw new errors_1.AzureDevOpsAuthenticationError(`Failed to acquire Azure CLI token: ${error instanceof Error ? error.message : String(error)}`); } } //# sourceMappingURL=auth-factory.js.map