#!/usr/bin/env node
/**
* Jaxon Digital Optimizely DXP MCP Server
* Built with official @modelcontextprotocol for full Claude compatibility
*
* Built by Jaxon Digital - Optimizely Gold Partner
* https://www.jaxondigital.com
*/
// Telemetry is enabled by default (opt-out model)
// Users can disable by setting OPTIMIZELY_MCP_TELEMETRY=false in their environment
// Load required modules first
const fs = require('fs');
const path = require('path');
// DO NOT OUTPUT ANYTHING AT MODULE LOAD TIME!
// All logging must happen AFTER MCP connection is established
// Load environment variables from .env file if it exists (silently)
// Try multiple locations for .env file
const envPaths = [
path.join(process.cwd(), '.env'), // Current working directory
path.join(__dirname, '..', '.env'), // Parent of dist/ directory
path.join(__dirname, '.env'), // Same directory as script
path.join(process.cwd(), '.env.local'), // Local override file
path.join(process.cwd(), '.env.oca') // OCA-specific file
];
for (const envPath of envPaths) {
if (fs.existsSync(envPath)) {
// Silent loading - no console output before connection!
const envContent = fs.readFileSync(envPath, 'utf8');
envContent.split('\n').forEach(line => {
if (line && !line.startsWith('#')) {
const [key, ...valueParts] = line.split('=');
if (key && valueParts.length > 0) {
// Don't override existing environment variables
if (!process.env[key.trim()]) {
process.env[key.trim()] = valueParts.join('=').trim();
}
}
}
});
break; // Only load the first .env file found
}
}
// FALLBACK: Load from local config file if exists
if (!process.env.OCA) {
const localConfigPath = path.join(process.cwd(), '.mcp-env.json');
if (fs.existsSync(localConfigPath)) {
try {
const config = JSON.parse(fs.readFileSync(localConfigPath, 'utf8'));
Object.keys(config).forEach(key => {
if (!process.env[key]) {
process.env[key] = config[key];
}
});
} catch (e) {
// Silent fail - don't break MCP startup
}
}
}
const { Server } = require('@modelcontextprotocol/sdk/server/index.js');
const { StdioServerTransport } = require('@modelcontextprotocol/sdk/server/stdio.js');
const { StreamableHTTPServerTransport } = require('@modelcontextprotocol/sdk/server/streamableHttp.js');
const {
ListToolsRequestSchema,
CallToolRequestSchema,
ListResourcesRequestSchema,
ListPromptsRequestSchema,
GetPromptRequestSchema
} = require('@modelcontextprotocol/sdk/types.js');
const { z } = require('zod');
const { zodToJsonSchema } = require('zod-to-json-schema');
// Import existing modules
const libPath = path.join(__dirname, '..', 'lib');
const Config = require(path.join(libPath, 'config'));
const ErrorHandler = require(path.join(libPath, 'error-handler'));
const ResponseBuilder = require(path.join(libPath, 'response-builder'));
const OutputLogger = require(path.join(libPath, 'output-logger'));
const {
DeploymentTools,
StorageTools,
ContentTools
} = require(path.join(libPath, 'tools'));
const ProjectTools = require(path.join(libPath, 'tools', 'project-tools'));
const MonitoringTools = require(path.join(libPath, 'tools', 'monitoring-tools'));
// DXP-101: ConnectionTestTools removed - functionality replaced by REST API in PermissionChecker
const PermissionChecker = require(path.join(libPath, 'tools', 'permission-checker'));
const SimpleTools = require(path.join(libPath, 'tools', 'simple-tools'));
const DatabaseSimpleTools = require(path.join(libPath, 'tools', 'database-simple-tools'));
const BlobDownloadTools = require(path.join(libPath, 'tools', 'blob-download-tools'));
const LogDownloadTools = require(path.join(libPath, 'tools', 'log-download-tools'));
const DownloadManagementTools = require(path.join(libPath, 'tools', 'download-management-tools'));
const ProjectSwitchTool = require(path.join(libPath, 'tools', 'project-switch-tool'));
const VersionChecker = require(path.join(libPath, 'version-check'));
const AIGuidanceTools = require(path.join(libPath, 'tools', 'ai-guidance-tools'));
const DatabaseExportPrompts = require(path.join(libPath, 'prompts', 'database-export-prompts'));
const DeploymentWorkflowPrompts = require(path.join(libPath, 'prompts', 'deployment-workflow-prompts'));
const { getTelemetry } = require(path.join(libPath, 'telemetry'));
// Hosting type detection and tool filtering (DXP-23)
const HostingDetector = require(path.join(libPath, 'utils', 'hosting-detector'));
const ToolAvailabilityMatrix = require(path.join(libPath, 'utils', 'tool-availability-matrix'));
const HostingAwareHelp = require(path.join(libPath, 'tools', 'hosting-aware-help'));
// Initialize telemetry
const telemetry = getTelemetry();
// Check for updates on startup (async, non-blocking) - Only for npm installations
// Detect if we're running from npm global install vs local development
const isLocalDevelopment = () => {
// Check if we're running from a development directory (has .git, node_modules, etc.)
const fs = require('fs');
const currentDir = __dirname;
const rootDir = path.join(__dirname, '..'); // Check root directory, not dist
// If we have a .git folder or package.json with devDependencies, we're in development
const hasGit = fs.existsSync(path.join(rootDir, '.git'));
const hasPackageJson = fs.existsSync(path.join(rootDir, 'package.json'));
if (hasPackageJson) {
try {
const pkg = JSON.parse(fs.readFileSync(path.join(rootDir, 'package.json'), 'utf8'));
const hasDevDeps = pkg.devDependencies && Object.keys(pkg.devDependencies).length > 0;
return hasGit || hasDevDeps;
} catch (e) {
return hasGit;
}
}
return hasGit;
};
// Version check moved to after connection is established
// Store the result to check later
const shouldCheckVersion = !isLocalDevelopment();
// Helper function to normalize environment names
function normalizeEnvironmentName(env) {
if (!env) return env;
const envUpper = env.toUpperCase();
// Map common abbreviations to full names
const abbreviations = {
'INT': 'Integration',
'INTE': 'Integration',
'INTEGRATION': 'Integration',
'PREP': 'Preproduction',
'PRE': 'Preproduction',
'PREPRODUCTION': 'Preproduction',
'PROD': 'Production',
'PRODUCTION': 'Production'
};
return abbreviations[envUpper] || env;
}
// Custom Zod transformer for environment names
const environmentSchema = z.string().transform(normalizeEnvironmentName).pipe(
z.enum(['Integration', 'Preproduction', 'Production'])
);
// Define Zod schemas for each tool
const schemas = {
// Simple Commands - Dead Simple with Smart Defaults
status: z.object({
project: z.string().optional().describe('Project name (uses default if not specified)'),
environment: z.string().optional().describe('Filter to specific environment')
}),
quick: z.object({
project: z.string().optional().describe('Project name (uses default if not specified)')
}),
// Database export operations - Natural language for database exports
// Database export operations - Consolidated tools (DXP-81)
db_export: z.object({
environment: z.string().optional().describe('Environment to export from: prod/production, staging/preproduction, int/integration (default: auto-select based on permissions)'),
database: z.string().optional().default('epicms').describe('Database name: epicms or epicommerce (default: epicms)'),
previewOnly: z.boolean().optional().describe('Preview export without executing - shows what would happen, includes capability check'),
forceNew: z.boolean().optional().describe('Force new export - skip existing local backup check'),
useExisting: z.boolean().optional().describe('Use existing local backup if available (returns immediately)'),
autoDownload: z.boolean().optional().describe('Automatically download export when complete'),
monitor: z.boolean().optional().default(false).describe('Automatically monitor export progress until complete (polls every 30s)'),
downloadPath: z.string().optional().describe('Directory to save downloaded export (default: configured download path)'),
background: z.boolean().optional().default(true).describe('Download in background vs wait for completion (default: true)'),
skipConfirmation: z.boolean().optional().describe('Skip download confirmation prompts'),
retentionHours: z.number().int().positive().optional().default(168).describe('How long Azure retains export in hours (default: 168 = 7 days)'),
project: z.string().optional().describe('Project name (default: current project from environment)'),
// Legacy parameters for compatibility
projectName: z.string().optional().describe('Alternative to project parameter'),
databaseName: z.string().optional().describe('Legacy: use database parameter instead'),
projectId: z.string().optional().describe('Project UUID (if providing inline credentials)'),
apiKey: z.string().optional().describe('API key (if providing inline credentials)'),
apiSecret: z.string().optional().describe('API secret (if providing inline credentials)')
}),
db_export_status: z.object({
exportId: z.string().optional().describe('Export ID to check status for (from db_export response)'),
environment: z.string().optional().describe('Environment where export was created: Production, Preproduction, Integration (required if exportId provided)'),
latest: z.boolean().optional().describe('Check status of latest/most recent export instead of specific exportId'),
monitor: z.boolean().optional().describe('Enable continuous monitoring - polls every 30s until export completes'),
waitBeforeCheck: z.number().int().min(60).max(180).optional().describe('Wait N seconds before checking status (60-180s). Tool waits synchronously.'),
autoDownload: z.boolean().optional().describe('Automatically download export if status is complete'),
downloadPath: z.string().optional().describe('Directory to save downloaded export'),
background: z.boolean().optional().default(true).describe('Download in background vs wait for completion (default: true)'),
skipConfirmation: z.boolean().optional().describe('Skip download confirmation prompts'),
project: z.string().optional().describe('Project name (default: current project)'),
// Legacy parameters
projectName: z.string().optional().describe('Alternative to project parameter'),
projectId: z.string().optional().describe('Project UUID (if providing inline credentials)'),
apiKey: z.string().optional().describe('API key (if providing inline credentials)'),
apiSecret: z.string().optional().describe('API secret (if providing inline credentials)')
}),
check_download_status: z.object({
downloadId: z.string().describe('Download ID to check (returned from background download operations)'),
waitBeforeCheck: z.number().int().min(10).max(120).optional().describe('Wait N seconds before checking status (10-120s). Tool waits synchronously.'),
monitor: z.boolean().optional().describe('Enable monitoring mode - adds instructions to keep checking if still downloading')
}),
db_export_download: z.object({
exportId: z.string().optional().describe('Export ID to download (not required if downloadUrl provided)'),
environment: z.string().optional().describe('Environment where export was created (not required if downloadUrl provided)'),
downloadUrl: z.string().optional().describe('Direct SAS URL to download from (skips API authentication - useful for downloaded URLs from db_export_status)'),
downloadPath: z.string().optional().describe('Directory to save downloaded export'),
background: z.boolean().optional().default(true).describe('Download in background vs wait for completion (default: true)'),
skipConfirmation: z.boolean().optional().describe('Skip file overwrite confirmation prompts'),
monitor: z.boolean().optional().describe('Enable download monitoring - instructs AI to poll check_download_status until complete'),
project: z.string().optional().describe('Project name (default: current project)'),
// Legacy parameters
projectName: z.string().optional().describe('Alternative to project parameter'),
projectId: z.string().optional().describe('Project UUID (if providing inline credentials)'),
apiKey: z.string().optional().describe('API key (if providing inline credentials)'),
apiSecret: z.string().optional().describe('API secret (if providing inline credentials)')
}),
test_export_query: z.object({
environment: z.string().optional().describe('Environment to test (default: Production)')
}),
// REMOVED: check_export_status - renamed to db_export_status
// REMOVED: export_database - renamed to db_export
// REMOVED: download_database_export - renamed to db_export_download
// REMOVED: list_exports - tool relies on broken queryPaaSExports (DXP-49)
// REMOVED: check_download_capabilities - embedded in db_export preview mode (DXP-81)
// Blob download tools
download_blobs: z.object({
environment: z.enum(['Integration', 'Preproduction', 'Production']).optional().default('Production'),
containerName: z.string().optional().describe('Storage container name (auto-detected if not specified)'),
downloadPath: z.string().optional().describe('Where to save files (auto-detected based on project)'),
previewOnly: z.boolean().optional().describe('Show download preview without actually downloading'),
filter: z.string().optional().describe('Filter for specific files: exact name ("logo.png"), glob pattern ("*.pdf", "2024/*.jpg"), or substring ("report")'),
incremental: z.boolean().optional().describe('Use smart incremental download (skip unchanged files). Default: true'),
forceFullDownload: z.boolean().optional().describe('Force full download even if files exist locally. Default: false'),
skipConfirmation: z.boolean().optional().default(false).describe('Skip confirmation preview (WARNING: downloads immediately without preview). Default: false - always show preview'),
monitor: z.boolean().optional().default(false).describe('DXP-3: Enable real-time progress monitoring during download. Shows progress updates every 10 seconds or 50 files. Default: false (opt-in)'),
background: z.boolean().optional().default(false).describe('DXP-3: Start download in background and return immediately with downloadId. Use download_status({ downloadId, monitor: true }) to watch progress. Default: false (blocking download)'),
projectName: z.string().optional(),
projectId: z.string().optional(),
apiKey: z.string().optional(),
apiSecret: z.string().optional()
}),
download_media: z.object({
environment: z.enum(['Integration', 'Preproduction', 'Production']).optional().default('Production'),
containerName: z.string().optional().describe('Storage container name (auto-detected if not specified)'),
downloadPath: z.string().optional().describe('Where to save files (auto-detected based on project)'),
previewOnly: z.boolean().optional().describe('Show download preview without actually downloading'),
filter: z.string().optional().describe('Filter for specific files: exact name ("logo.png"), glob pattern ("*.pdf", "2024/*.jpg"), or substring ("report")'),
incremental: z.boolean().optional().describe('Use smart incremental download (skip unchanged files). Default: true'),
forceFullDownload: z.boolean().optional().describe('Force full download even if files exist locally. Default: false'),
skipConfirmation: z.boolean().optional().default(false).describe('Skip confirmation preview (WARNING: downloads immediately without preview). Default: false - always show preview'),
monitor: z.boolean().optional().default(false).describe('DXP-3: Enable real-time progress monitoring during download. Shows progress updates every 10 seconds or 50 files. Default: false (opt-in)'),
background: z.boolean().optional().default(false).describe('DXP-3: Start download in background and return immediately with downloadId. Use download_status({ downloadId, monitor: true }) to watch progress. Default: false (blocking download)'),
projectName: z.string().optional(),
projectId: z.string().optional(),
apiKey: z.string().optional(),
apiSecret: z.string().optional()
}),
download_assets: z.object({
environment: z.enum(['Integration', 'Preproduction', 'Production']).optional().default('Production'),
containerName: z.string().optional().describe('Storage container name (auto-detected if not specified)'),
downloadPath: z.string().optional().describe('Where to save files (auto-detected based on project)'),
previewOnly: z.boolean().optional().describe('Show download preview without actually downloading'),
filter: z.string().optional().describe('Filter for specific files: exact name ("logo.png"), glob pattern ("*.pdf", "2024/*.jpg"), or substring ("report")'),
incremental: z.boolean().optional().describe('Use smart incremental download (skip unchanged files). Default: true'),
forceFullDownload: z.boolean().optional().describe('Force full download even if files exist locally. Default: false'),
skipConfirmation: z.boolean().optional().default(false).describe('Skip confirmation preview (WARNING: downloads immediately without preview). Default: false - always show preview'),
monitor: z.boolean().optional().default(false).describe('DXP-3: Enable real-time progress monitoring during download. Shows progress updates every 10 seconds or 50 files. Default: false (opt-in)'),
background: z.boolean().optional().default(false).describe('DXP-3: Start download in background and return immediately with downloadId. Use download_status({ downloadId, monitor: true }) to watch progress. Default: false (blocking download)'),
projectName: z.string().optional(),
projectId: z.string().optional(),
apiKey: z.string().optional(),
apiSecret: z.string().optional()
}),
// Log download tools
download_logs: z.object({
environment: z.enum(['Integration', 'Preproduction', 'Production']).optional().default('Production'),
logType: z.enum(['application', 'web', 'cloudflare', 'all']).optional(),
containerName: z.string().optional().describe('Override default container name'),
slot: z.boolean().optional().default(false).describe('Download deployment slot logs instead of production logs. Default: false (production logs only). Set to true to get logs from /SLOTS/SLOT/ path (deployment slot logs during warmup)'),
dateFilter: z.string().optional().describe('Filter logs by date (e.g., "2025/08/24" or "2025/08")'),
// Time-based filtering (β EASIEST - recommended for most use cases)
secondsBack: z.number().optional().describe('β EASIEST: Last N seconds. No date math needed! (e.g., 30)'),
minutesBack: z.number().optional().describe('β EASIEST: Last N minutes. No date math needed! (e.g., 15)'),
hoursBack: z.number().optional().describe('β EASIEST: Last N hours. No date math needed! (e.g., 6)'),
daysBack: z.number().optional().describe('β EASIEST: Last N days. No date math needed! (e.g., 7 for last week)'),
weeksBack: z.number().optional().describe('β EASIEST: Last N weeks. No date math needed! (e.g., 2)'),
monthsBack: z.number().optional().describe('β EASIEST: Last N months. No date math needed! (e.g., 3)'),
yearsBack: z.number().optional().describe('β EASIEST: Last N years. No date math needed! (e.g., 1)'),
// Date range filtering (medium complexity - smart defaults)
startDate: z.string().optional().describe('Start date (e.g., "2025/10/01"). Can use alone - endDate defaults to NOW. Format: "YYYY/MM/DD" or "YYYY-MM-DD"'),
endDate: z.string().optional().describe('End date (e.g., "2025/10/08"). Can use alone - startDate defaults to 7 days before. Format: "YYYY/MM/DD" or "YYYY-MM-DD"'),
// DXP-20/DXP-88: ISO 8601 datetime support (advanced - for precise time windows with smart defaults)
startDateTime: z.string().optional().describe('β οΈ ADVANCED: ISO 8601 start datetime. Can use alone - endDateTime defaults to NOW. For simpler filtering, use daysBack/hoursBack instead. (e.g., "2025-09-15T01:00:00-05:00")'),
endDateTime: z.string().optional().describe('β οΈ ADVANCED: ISO 8601 end datetime. Can use alone - startDateTime defaults to 7 days before. For simpler filtering, use daysBack/hoursBack instead. (e.g., "2025-09-15T01:30:00-05:00")'),
downloadPath: z.string().optional().describe('Where to save log files'),
previewOnly: z.boolean().optional().describe('Show download preview without actually downloading'),
skipConfirmation: z.boolean().optional().default(false).describe('Skip confirmation preview (WARNING: downloads immediately without preview). Default: false - always show preview'),
incremental: z.boolean().optional().describe('Use smart incremental download (skip unchanged files). Default: true'),
forceFullDownload: z.boolean().optional().describe('Force full download even if files exist locally. Default: false'),
monitor: z.boolean().optional().default(false).describe('DXP-3: Enable real-time progress monitoring during download. Shows progress updates every 10 seconds or 50 files. Default: false (opt-in)'),
background: z.boolean().optional().default(false).describe('DXP-3: Start download in background and return immediately with downloadId. Use download_status({ downloadId, monitor: true }) to watch progress. Default: false (blocking download)'),
projectName: z.string().optional(),
projectId: z.string().optional(),
apiKey: z.string().optional(),
apiSecret: z.string().optional()
}),
// Log discovery tool
discover_logs: z.object({
projectName: z.string().optional(),
projectId: z.string().optional(),
apiKey: z.string().optional(),
apiSecret: z.string().optional()
}),
// Container debug tool
debug_containers: z.object({
environment: z.enum(['Integration', 'Preproduction', 'Production']).optional(),
projectName: z.string().optional(),
projectId: z.string().optional(),
apiKey: z.string().optional(),
apiSecret: z.string().optional()
}),
// Download management tools (DXP-82)
download_list: z.object({
status: z.enum(['active', 'completed', 'failed', 'all'])
.optional()
.default('active')
.describe('Filter by status: active (running), completed (successful), failed (errors/cancelled), or all'),
type: z.enum(['logs', 'database', 'all'])
.optional()
.default('all')
.describe('Filter by download type'),
limit: z.number()
.int()
.positive()
.optional()
.default(10)
.describe('Max results for history queries (1-100)'),
offset: z.number()
.int()
.min(0)
.optional()
.default(0)
.describe('Pagination offset for history')
}),
download_status: z.object({
downloadId: z.string()
.describe('Download ID to check (from download_list)'),
monitor: z.boolean().optional().default(false)
.describe('DXP-3: Auto-monitor download - polls every 10s and shows live progress updates until complete. Returns combined progress report. Default: false (single status check)')
}),
download_cancel: z.object({
downloadId: z.string()
.optional()
.describe('Download ID to cancel. Omit to cancel all active downloads')
}),
// Download configuration
show_download_config: z.object({
projectName: z.string().optional().describe('Show config for specific project')
}),
// Project switching
switch_project: z.object({
projectName: z.string().describe('Name of the project to switch to')
}),
// Connection testing
test_connection: z.object({
projectId: z.string().optional(),
projectName: z.string().optional(),
apiKey: z.string().optional(),
apiSecret: z.string().optional(),
setupMode: z.boolean().optional(), // Run in setup wizard mode
autoFix: z.boolean().optional(), // Auto-install missing dependencies
skipChecks: z.boolean().optional() // Skip certain checks
}),
health_check: z.object({
projectId: z.string().optional(),
projectName: z.string().optional(),
apiKey: z.string().optional(),
apiSecret: z.string().optional(),
debug: z.boolean().optional().describe('Include debug information (process ID, session ID, etc.)')
}),
// Version information
get_version: z.object({}),
// AI guidance and best practices
get_ai_guidance: z.object({
topic: z.string().optional().describe('Specific topic to get guidance on (e.g., "confirmation", "downloads", "errors", "parameters")')
}),
// Permission checking
// check_permissions removed - merged into test_connection
// New permission checking tool that avoids cached module issue
verify_access: z.object({
projectId: z.string().optional(),
projectName: z.string().optional(),
apiKey: z.string().optional(),
apiSecret: z.string().optional(),
forceRefresh: z.boolean().optional().describe('Force re-check even if cached')
}),
// Project management
get_project: z.object({
projectName: z.string().optional(),
projectId: z.string().optional()
}),
update_project: z.object({
projectName: z.string().optional(),
projectId: z.string().optional(),
// Rename
renameTo: z.string().optional(),
// Credentials
apiKey: z.string().optional(),
apiSecret: z.string().optional(),
connectionString: z.string().optional(),
// Paths
blobPath: z.string().optional(),
dbPath: z.string().optional(),
logPath: z.string().optional(),
// Settings
makeDefault: z.boolean().optional()
}),
list_projects: z.object({}),
current_project: z.object({}),
get_support: z.object({}),
list_monitors: z.object({}),
update_monitoring_interval: z.object({
deploymentId: z.string().optional(),
interval: z.number().min(10).max(600)
}),
stop_monitoring: z.object({
deploymentId: z.string().optional(),
all: z.boolean().optional()
}),
get_monitoring_stats: z.object({}),
disable_telemetry: z.object({}),
enable_telemetry: z.object({}),
get_rate_limit_status: z.object({
projectName: z.string().optional(),
projectId: z.string().optional()
}),
get_cache_status: z.object({
projectName: z.string().optional(),
projectId: z.string().optional(),
action: z.enum(['status', 'clear']).optional().default('status')
}),
// Database operations section removed - all tools are now defined above with proper schemas
// Deployment operations
list_deployments: z.object({
limit: z.number().min(1).max(100).optional().default(20),
offset: z.number().min(0).optional(),
activeOnly: z.boolean().optional().default(false).describe('Filter to only active deployments (InProgress, AwaitingVerification, Resetting, Completing). Useful for autonomous agents detecting deployment conflicts.'),
projectName: z.string().optional(),
projectId: z.string().optional(),
apiKey: z.string().optional(),
apiSecret: z.string().optional()
}),
start_deployment: z.object({
sourceEnvironment: environmentSchema,
targetEnvironment: environmentSchema,
deploymentType: z.enum(['code', 'content', 'all']).optional(),
sourceApps: z.array(z.string()).optional(),
includeBlob: z.boolean().optional(),
includeDatabase: z.boolean().optional(),
directDeploy: z.boolean().optional().default(false),
useMaintenancePage: z.boolean().optional().default(false),
projectName: z.string().optional(),
projectId: z.string().optional(),
apiKey: z.string().optional(),
apiSecret: z.string().optional()
}),
get_deployment_status: z.object({
deploymentId: z.string(),
waitBeforeCheck: z.number().optional().describe('Seconds to wait before checking status (default: 0)'),
monitor: z.boolean().optional().describe('Enable monitoring mode with AI guidance (default: false)'),
projectName: z.string().optional(),
projectId: z.string().optional(),
apiKey: z.string().optional(),
apiSecret: z.string().optional()
}),
monitor_deployment: z.object({
deploymentId: z.string().describe('Deployment ID to monitor continuously'),
interval: z.number().optional().describe('Check interval in seconds (default: 30)'),
maxDuration: z.number().optional().describe('Maximum monitoring duration in minutes (default: 30)'),
autoComplete: z.boolean().optional().describe('Auto-complete when verification reached (default: false)'),
projectName: z.string().optional(),
projectId: z.string().optional(),
apiKey: z.string().optional(),
apiSecret: z.string().optional()
}),
complete_deployment: z.object({
deploymentId: z.string(),
projectName: z.string().optional(),
projectId: z.string().optional(),
apiKey: z.string().optional(),
apiSecret: z.string().optional()
}),
reset_deployment: z.object({
deploymentId: z.string(),
projectName: z.string().optional(),
projectId: z.string().optional(),
apiKey: z.string().optional(),
apiSecret: z.string().optional()
}),
// Storage operations
list_storage_containers: z.object({
environment: environmentSchema,
projectName: z.string().optional(),
projectId: z.string().optional(),
apiKey: z.string().optional(),
apiSecret: z.string().optional()
}),
generate_storage_sas_link: z.object({
environment: environmentSchema,
containerName: z.string(),
projectName: z.string().optional(),
projectId: z.string().optional(),
permissions: z.enum(['Read', 'Write', 'Delete', 'List']).optional().default('Read'),
expiryHours: z.number().optional().default(24),
apiKey: z.string().optional(),
apiSecret: z.string().optional()
}),
// Package operations
// Content operations
copy_content: z.object({
sourceEnvironment: environmentSchema,
targetEnvironment: environmentSchema,
projectName: z.string().optional(),
projectId: z.string().optional(),
apiKey: z.string().optional(),
apiSecret: z.string().optional()
}),
// Deployment helper operations
};
// Special handler for project info - now delegated to ProjectTools
function handleProjectInfo(args) {
return ProjectTools.getProjectInfo(args);
}
// Legacy project info handler (for reference)
function handleProjectInfoLegacy() {
const projectId = process.env.OPTIMIZELY_PROJECT_ID;
const projectName = process.env.OPTIMIZELY_PROJECT_NAME;
const hasApiKey = !!process.env.OPTIMIZELY_API_KEY;
const hasApiSecret = !!process.env.OPTIMIZELY_API_SECRET;
const isConfigured = projectId && hasApiKey && hasApiSecret;
let infoText = `π **Optimizely DXP Project Information**\n\n`;
if (isConfigured) {
if (projectName) {
infoText += `β
**Active Project: ${projectName}**\n\n`;
} else {
infoText += `β
**Project is configured and ready!**\n\n`;
}
infoText += `**Project Details:**\n`;
if (projectName) {
infoText += `β’ Name: **${projectName}**\n`;
}
infoText += `β’ Project ID: \`${projectId}\`\n` +
`β’ API Key: β
Configured\n` +
`β’ API Secret: β
Configured\n`;
} else {
infoText += `β οΈ **Configuration Required**\n\n` +
`**Current Status:**\n` +
`β’ Project ID: ${projectId ? `\`${projectId}\`` : 'β Not configured'}\n` +
`β’ API Key: ${hasApiKey ? 'β
Configured' : 'β Not configured'}\n` +
`β’ API Secret: ${hasApiSecret ? 'β
Configured' : 'β Not configured'}\n\n`;
if (!projectId || !hasApiKey || !hasApiSecret) {
infoText += `**To configure, you have two options:**\n\n` +
`**Option 1: Pass credentials with each tool call**\n` +
`When using any tool, provide:\n` +
`β’ projectId: "your-project-id"\n` +
`β’ apiKey: "your-api-key"\n` +
`β’ apiSecret: "your-api-secret"\n\n` +
`**Option 2: Configure environment variables (recommended)**\n` +
`Edit your MCP client config and add:\n\n` +
`\`\`\`json\n` +
`"env": {\n` +
` "OPTIMIZELY_PROJECT_ID": "your-project-id",\n` +
` "OPTIMIZELY_API_KEY": "your-api-key",\n` +
` "OPTIMIZELY_API_SECRET": "your-api-secret"\n` +
`}\n` +
`\`\`\`\n\n` +
`Then restart your MCP client.\n`;
}
}
infoText += `\nBuilt by Jaxon Digital - Optimizely Gold Partner`;
return {
result: {
content: [{
type: 'text',
text: infoText
}]
}
};
}
/**
* Handle analytics request
*/
function handleDisableTelemetry(args) {
try {
// Disable telemetry for this session
telemetry.enabled = false;
// Also set environment variable for future sessions in this process
process.env.OPTIMIZELY_MCP_TELEMETRY = 'false';
return {
result: {
content: [{
type: 'text',
text: `π **Telemetry Disabled**\n\n` +
`β
Anonymous telemetry has been disabled for this session.\n\n` +
`**What this means:**\n` +
`β’ No usage data will be collected\n` +
`β’ No performance metrics will be tracked\n` +
`β’ No error reports will be sent\n\n` +
`**To make this permanent across all sessions:**\n\n` +
`**Option 1:** Add to your Claude Desktop config:\n` +
`\`"OPTIMIZELY_MCP_TELEMETRY": "false"\`\n\n` +
`**Option 2:** Set environment variable:\n` +
`\`export OPTIMIZELY_MCP_TELEMETRY=false\`\n\n` +
`**To re-enable:** Use the \`enable_telemetry\` tool.\n\n` +
`Thank you for using Jaxon Digital's Optimizely DXP MCP Server! π`
}]
}
};
} catch (error) {
const errorMessage = ErrorHandler.formatError(error, { tool: 'disable_telemetry' });
return {
result: {
content: [{
type: 'text',
text: errorMessage
}]
}
};
}
}
function handleEnableTelemetry(args) {
try {
// Enable telemetry for this session
telemetry.enabled = true;
// Remove the disable flag from environment
delete process.env.OPTIMIZELY_MCP_TELEMETRY;
return {
result: {
content: [{
type: 'text',
text: `π **Telemetry Enabled**\n\n` +
`β
Anonymous telemetry has been re-enabled for this session.\n\n` +
`**What we collect (anonymously):**\n` +
`β’ Tool usage patterns (which tools are used most)\n` +
`β’ Performance metrics (operation times)\n` +
`β’ Error categories (no sensitive data)\n\n` +
`**Privacy guaranteed:**\n` +
`β’ No personal information\n` +
`β’ No project names or IDs\n` +
`β’ No API keys or secrets\n` +
`β’ No file contents or paths\n\n` +
`**To disable again:** Use the \`disable_telemetry\` tool.\n\n` +
`Thank you for helping us improve this tool! π`
}]
}
};
} catch (error) {
const errorMessage = ErrorHandler.formatError(error, { tool: 'enable_telemetry' });
return {
result: {
content: [{
type: 'text',
text: errorMessage
}]
}
};
}
}
/**
* Handle rate limit status request
*/
function handleGetRateLimitStatus(args) {
try {
// DXP-106/DXP-107: Rate limiter moved to DXPRestClient
const DXPRestClient = require(path.join(libPath, 'dxp-rest-client'));
const rateLimiter = DXPRestClient.rateLimiter;
// Get project credentials for the status check
let projectId = args.projectId || process.env.OPTIMIZELY_PROJECT_ID;
// If project name provided, try to resolve it
if (args.projectName && !projectId) {
const ProjectTools = require(path.join(libPath, 'tools', 'project-tools'));
const projectCreds = ProjectTools.getProjectCredentials(args.projectName);
if (projectCreds) {
projectId = projectCreds.projectId;
}
}
if (!projectId) {
const defaultCreds = ProjectTools.getProjectCredentials();
projectId = defaultCreds.projectId;
}
if (!projectId) {
return {
error: `No project ID found. Please provide a projectId parameter or configure environment variables.\n\nπ§ Need help? Contact us at support@jaxondigital.com`
};
}
const status = rateLimiter.getStatus(projectId);
const suggestedWait = rateLimiter.getSuggestedWaitTime(projectId);
let statusText = `β‘ **Rate Limit Status**\n\n`;
statusText += `**Project:** \`${projectId}\`\n\n`;
statusText += `π **Usage Quotas**\n`;
statusText += `β’ Requests per minute: ${status.requestsLastMinute}/${status.maxRequestsPerMinute}\n`;
statusText += `β’ Requests per hour: ${status.requestsLastHour}/${status.maxRequestsPerHour}\n`;
const minutePercent = ((status.requestsLastMinute / status.maxRequestsPerMinute) * 100).toFixed(1);
const hourPercent = ((status.requestsLastHour / status.maxRequestsPerHour) * 100).toFixed(1);
statusText += `β’ Minute usage: ${minutePercent}%\n`;
statusText += `β’ Hour usage: ${hourPercent}%\n\n`;
if (status.isThrottled) {
const waitTime = Math.ceil((status.throttleRetryAfter - Date.now()) / 1000);
statusText += `π¨ **Currently Throttled**\n`;
statusText += `β’ Status: API returned 429 (Too Many Requests)\n`;
statusText += `β’ Wait time: ${waitTime} seconds\n`;
statusText += `β’ Retry after: ${new Date(status.throttleRetryAfter).toISOString()}\n\n`;
} else if (status.backoffUntil) {
const waitTime = Math.ceil((status.backoffUntil - Date.now()) / 1000);
statusText += `β³ **Backing Off**\n`;
statusText += `β’ Reason: Consecutive failures\n`;
statusText += `β’ Wait time: ${waitTime} seconds\n`;
statusText += `β’ Retry after: ${new Date(status.backoffUntil).toISOString()}\n\n`;
} else if (suggestedWait > 0) {
statusText += `β οΈ **Usage Warning**\n`;
statusText += `β’ Status: Approaching rate limits\n`;
statusText += `β’ Suggested wait: ${Math.ceil(suggestedWait / 1000)} seconds\n`;
statusText += `β’ Recommendation: Space out requests\n\n`;
} else {
statusText += `β
**Status: Good**\n`;
statusText += `β’ No rate limiting active\n`;
statusText += `β’ Requests can proceed normally\n\n`;
}
if (status.consecutiveFailures > 0) {
statusText += `β οΈ **Error History**\n`;
statusText += `β’ Consecutive failures: ${status.consecutiveFailures}\n`;
statusText += `β’ This triggers exponential backoff\n\n`;
}
if (status.lastRequest > 0) {
const lastRequestAge = ((Date.now() - status.lastRequest) / 1000).toFixed(1);
statusText += `π
**Last Request**\n`;
statusText += `β’ ${lastRequestAge} seconds ago\n`;
statusText += `β’ Time: ${new Date(status.lastRequest).toISOString()}\n\n`;
}
statusText += `π§ **Rate Limiting Info**\n`;
statusText += `β’ Rate limiting helps prevent API abuse\n`;
statusText += `β’ Limits are per-project and reset automatically\n`;
statusText += `β’ Failed requests don't count against quotas\n`;
statusText += `β’ The system uses exponential backoff for failed requests\n\n`;
statusText += `π‘ **Tips**\n`;
statusText += `β’ Space out requests when approaching limits\n`;
statusText += `β’ Use batch operations when possible\n`;
statusText += `β’ Check this status if requests are being throttled\n\n`;
statusText += `π§ Need help? Contact us at support@jaxondigital.com`;
return {
result: {
content: [{
type: 'text',
text: statusText
}]
}
};
} catch (error) {
OutputLogger.error('Rate limit status error:', error);
return {
error: `Failed to get rate limit status: ${error.message}\n\nπ§ Need help? Contact us at support@jaxondigital.com`
};
}
}
/**
* Handle cache status request
*/
function handleGetCacheStatus(args) {
try {
// DXP-106/DXP-107: Cache management now integrated within operations, no centralized manager
return {
result: {
content: [{
type: 'text',
text: `πΎ **Cache Status**\n\n` +
`β οΈ **Note**: Cache management is now integrated within individual operations (v3.44.0+).\n\n` +
`**What Changed**\n` +
`β’ Cache is operation-specific and automatic\n` +
`β’ No manual management required\n` +
`β’ Each operation handles its own caching strategy\n\n` +
`**Alternative**\n` +
`β’ Use \`get_rate_limit_status\` to check API request status\n` +
`β’ Individual operations automatically cache when beneficial\n\n` +
`π§ Need help? Contact us at support@jaxondigital.com`
}]
}
};
/* DISABLED - Old centralized cache removed in DXP-101
const PowerShellHelper = require(path.join(libPath, 'powershell-helper'));
// Get project credentials for the status check
let projectId = args.projectId || process.env.OPTIMIZELY_PROJECT_ID;
// If project name provided, try to resolve it
if (args.projectName && !projectId) {
const ProjectTools = require(path.join(libPath, 'tools', 'project-tools'));
const projectCreds = ProjectTools.getProjectCredentials(args.projectName);
if (projectCreds) {
projectId = projectCreds.projectId;
}
}
if (!projectId && args.action === 'clear') {
const defaultCreds = ProjectTools.getProjectCredentials();
projectId = defaultCreds.projectId;
}
// Handle clear action
if (args.action === 'clear') {
if (!projectId) {
return {
error: `No project ID found for cache clearing. Please provide a projectId parameter.\n\nπ§ Need help? Contact us at support@jaxondigital.com`
};
}
PowerShellHelper.clearCache(projectId);
return {
result: {
content: [{
type: 'text',
text: `β
**Cache Cleared**\n\n` +
`**Project:** \`${projectId}\`\n\n` +
`All cached entries for this project have been removed.\n\n` +
`π§ Need help? Contact us at support@jaxondigital.com`
}]
}
};
}
// Get cache statistics
const stats = PowerShellHelper.getCacheStats();
let statusText = `πΎ **Cache Status**\n\n`;
statusText += `π **Performance Metrics**\n`;
statusText += `β’ Hit Rate: ${stats.hitRate} (${stats.hits} hits, ${stats.misses} misses)\n`;
statusText += `β’ Total Entries: ${stats.entries}/${stats.maxEntries || 1000}\n`;
statusText += `β’ Cache Size: ${stats.sizeMB} MB / ${stats.maxSizeMB} MB\n`;
statusText += `β’ Operations: ${stats.sets} sets, ${stats.deletes} deletes\n\n`;
const efficiency = stats.hits + stats.misses > 0 ? ((stats.hits / (stats.hits + stats.misses)) * 100) : 0;
if (efficiency >= 70) {
statusText += `β
**Cache Performance: Excellent**\n`;
statusText += `β’ High hit rate indicates good caching efficiency\n`;
statusText += `β’ Frequently accessed data is being cached effectively\n\n`;
} else if (efficiency >= 40) {
statusText += `β οΈ **Cache Performance: Good**\n`;
statusText += `β’ Moderate hit rate - caching is helping performance\n`;
statusText += `β’ Consider using operations that benefit from caching more frequently\n\n`;
} else if (stats.hits + stats.misses > 10) {
statusText += `π **Cache Performance: Low**\n`;
statusText += `β’ Low hit rate - cache may need tuning\n`;
statusText += `β’ Operations may not be benefiting from caching\n\n`;
} else {
statusText += `π **Cache Performance: Starting**\n`;
statusText += `β’ Not enough data to determine efficiency\n`;
statusText += `β’ Performance will improve with usage\n\n`;
}
if (stats.entries > 0) {
statusText += `π§ **Cache Details**\n`;
statusText += `β’ Cached operations include: list_deployments, get_deployment_status, list_storage_containers\n`;
statusText += `β’ Cache automatically expires based on data type\n`;
statusText += `β’ Write operations automatically invalidate related cache entries\n`;
statusText += `β’ Cache is persistent across sessions\n\n`;
}
statusText += `π‘ **How Caching Helps**\n`;
statusText += `β’ Reduces API calls to Optimizely DXP\n`;
statusText += `β’ Improves response times for repeated operations\n`;
statusText += `β’ Respects rate limits by serving cached results\n`;
statusText += `β’ Automatically invalidates when data changes\n\n`;
statusText += `π **Cache Management**\n`;
statusText += `β’ Use \`get_cache_status\` with \`action: "clear"\` to clear project cache\n`;
statusText += `β’ Cache automatically cleans expired entries\n`;
statusText += `β’ Size and entry limits prevent unlimited growth\n\n`;
if (projectId) {
statusText += `**Current Project:** \`${projectId}\`\n\n`;
}
statusText += `π§ Need help? Contact us at support@jaxondigital.com`;
return {
result: {
content: [{
type: 'text',
text: statusText
}]
}
};
*/ // End DISABLED
} catch (error) {
OutputLogger.error('Cache status error:', error);
return {
error: `Failed to get cache status: ${error.message}\n\nπ§ Need help? Contact us at support@jaxondigital.com`
};
}
}
// Project resolution wrapper for tools that require credentials
function withProjectResolution(toolHandler) {
return async (args) => {
// Add project resolution if credentials are missing (including self-hosted)
if (!args.connectionString && (!args.apiKey || !args.apiSecret || !args.projectId)) {
const projects = ProjectTools.getConfiguredProjects();
if (projects.length === 0) {
return ResponseBuilder.error('No projects configured. Run "setup_wizard" to configure your first project.');
}
let projectConfig = null;
const projectName = args.projectName || args.project; // Handle both parameter names
if (projectName) {
// Find project by name (exact match, case-insensitive)
OutputLogger.debug(`Searching for "${projectName}" (case-insensitive)...`);
projectConfig = projects.find(p => {
const matches = p.name && p.name.toLowerCase() === projectName.toLowerCase();
OutputLogger.debug(`Comparing "${p.name}" === "${projectName}" -> ${matches}`);
return matches;
});
if (!projectConfig) {
const availableNames = projects.map(p => p.name).filter(Boolean).join(', ') || 'None';
return ResponseBuilder.error(`Project "${projectName}" not found. Available projects: ${availableNames}`);
}
} else {
// Use default project if no project specified
OutputLogger.debug(`No project specified, using default...`);
projectConfig = projects.find(p => p.isDefault) || projects[0];
if (!projectConfig) {
return ResponseBuilder.error('No default project configured. Please specify a project name.');
}
}
OutputLogger.debug(`Selected project:`, {
name: projectConfig.name,
id: projectConfig.projectId || projectConfig.id
});
// Add resolved project credentials to args (handling both DXP and self-hosted)
if (projectConfig.connectionString) {
// Self-hosted project
args.connectionString = args.connectionString || projectConfig.connectionString;
args.projectName = args.projectName || projectConfig.name;
args.isSelfHosted = true;
args.projectType = 'self-hosted';
} else if (projectConfig.isSelfHosted) {
// Handle case where isSelfHosted flag is set but connectionString might be missing
args.isSelfHosted = true;
args.projectType = 'self-hosted';
args.connectionString = args.connectionString || projectConfig.connectionString;
args.projectName = args.projectName || projectConfig.name;
} else {
// DXP project
args.projectId = args.projectId || projectConfig.projectId || projectConfig.id;
args.apiKey = args.apiKey || projectConfig.apiKey;
args.apiSecret = args.apiSecret || projectConfig.apiSecret;
args.projectName = args.projectName || projectConfig.name;
args.projectType = projectConfig.projectType || 'dxp-paas';
}
}
// IMPORTANT: Preserve the environment from the original request
// The environment is not stored in project config, it's specified per operation
return toolHandler(args);
};
}
// New verify_access handler that avoids cached module issues
async function handleVerifyAccess(args) {
// Use the unified PermissionChecker for most accurate results
return await PermissionChecker.verifyAccess(args);
}
// check_permissions removed - functionality merged into test_connection
// Handle get_version command
async function handleGetVersion(args) {
try {
const packageJson = require(path.join(__dirname, '..', 'package.json'));
const currentVersion = packageJson.version;
let versionText = `π¦ **Jaxon Optimizely DXP MCP Server**\n\n`;
versionText += `**Current Version**: v${currentVersion}\n`;
versionText += `**Released**: ${packageJson.publishedAt || 'Unknown'}\n\n`;
// Check for updates (with error handling)
try {
const versionChecker = require(path.join(libPath, 'version-check'));
const updateInfo = await versionChecker.checkForUpdates();
if (updateInfo && updateInfo.updateAvailable) {
versionText += `β οΈ **Update Available**: v${updateInfo.latestVersion}\n`;
versionText += `π
Released: ${updateInfo.publishedAt || 'Recently'}\n\n`;
versionText += `**To Update**:\n`;
versionText += `\`\`\`bash\n`;
versionText += `npm install -g ${packageJson.name}@latest\n`;
versionText += `\`\`\`\n\n`;
versionText += `Then restart Claude Desktop or your MCP client.\n`;
} else if (updateInfo) {
versionText += `β
**You are on the latest version!**\n`;
} else {
// updateInfo is null, likely due to network issues
versionText += `βΉοΈ **Update check unavailable** (offline or timeout)\n`;
}
} catch (updateError) {
// If update check fails, just show current version
OutputLogger.error('Version check error:', updateError);
versionText += `βΉοΈ **Update check failed** - showing current version only\n`;
}
versionText += `\n**System Information**:\n`;
versionText += `β’ Node.js: ${process.version}\n`;
versionText += `β’ Platform: ${process.platform}\n`;
versionText += `β’ Architecture: ${process.arch}\n`;
// DXP-66: Build structured data for automation tools
const structuredData = {
currentVersion: currentVersion,
packageName: packageJson.name,
updateAvailable: false,
latestVersion: currentVersion,
system: {
nodeVersion: process.version,
platform: process.platform,
architecture: process.arch
}
};
// Add update info if available
try {
const versionChecker = require(path.join(libPath, 'version-check'));
const updateInfo = await versionChecker.checkForUpdates();
if (updateInfo && updateInfo.updateAvailable) {
structuredData.updateAvailable = true;
structuredData.latestVersion = updateInfo.latestVersion;
}
} catch (e) {
// Ignore update check errors for structured data
}
return ResponseBuilder.successWithStructuredData(
structuredData,
ResponseBuilder.addFooter(versionText)
);
} catch (error) {
OutputLogger.error('Error in handleGetVersion:', error);
const errorMessage = ErrorHandler.formatError(error, { tool: 'get_version', args });
return {
result: {
content: [{
type: 'text',
text: errorMessage
}]
}
};
}
}
// Handle debug_info command
async function handleDebugInfo(args) {
try {
const sessionId = process.env.MCP_SESSION_ID || 'no-session';
const uptime = Math.floor(process.uptime());
const uptimeHours = Math.floor(uptime / 3600);
const uptimeMinutes = Math.floor((uptime % 3600) / 60);
const uptimeSeconds = uptime % 60;
let debugText = `π§ **MCP Server Debug Information**\n\n`;
debugText += `**Process Information**:\n`;
debugText += `β’ Process ID: ${process.pid}\n`;
debugText += `β’ Session ID: ${sessionId}\n`;
debugText += `β’ Uptime: ${uptimeHours}h ${uptimeMinutes}m ${uptimeSeconds}s\n`;
debugText += `β’ Memory Usage: ${Math.round(process.memoryUsage().rss / 1024 / 1024)} MB\n\n`;
debugText += `**Runtime Environment**:\n`;
debugText += `β’ Node.js: ${process.version}\n`;
debugText += `β’ Platform: ${process.platform}\n`;
debugText += `β’ Architecture: ${process.arch}\n`;
debugText += `β’ Working Directory: ${process.cwd()}\n\n`;
debugText += `**Environment Variables** (relevant):\n`;
if (process.env.MCP_SESSION_ID) debugText += `β’ MCP_SESSION_ID: ${process.env.MCP_SESSION_ID}\n`;
if (process.env.NODE_ENV) debugText += `β’ NODE_ENV: ${process.env.NODE_ENV}\n`;
if (process.env.DEBUG) debugText += `β’ DEBUG: ${process.env.DEBUG}\n`;
return {
result: {
content: [{
type: 'text',
text: ResponseBuilder.addFooter(debugText)
}]
}
};
} catch (error) {
OutputLogger.error('Error in handleDebugInfo:', error);
const errorMessage = ErrorHandler.formatError(error, { tool: 'test_debug', args });
return {
result: {
content: [{
type: 'text',
text: errorMessage
}]
}
};
}
}
// Command handler map
const commandHandlers = {
// AI-Friendly Tools - Goal-oriented interfaces for AI agents
// Simple Commands - Dead Simple with Smart Defaults
'status': (args) => SimpleTools.handleStatus(args),
'quick': (args) => SimpleTools.handleQuick(args),
// Database export tools - Consolidated (DXP-81)
'db_export': withProjectResolution((args) => DatabaseSimpleTools.handleExportDatabase(args)),
'db_export_status': withProjectResolution((args) => DatabaseSimpleTools.handleExportStatus(args)),
'db_export_download': withProjectResolution((args) => DatabaseSimpleTools.handleDownloadDatabaseExport(args)),
'check_download_status': (args) => DatabaseSimpleTools.handleCheckDownloadStatus(args),
'test_export_query': withProjectResolution((args) => DatabaseSimpleTools.testExportQuery(args)),
// REMOVED: export_database - renamed to db_export
// REMOVED: check_export_status - renamed to db_export_status
// REMOVED: download_database_export - renamed to db_export_download
// REMOVED: list_exports - relies on broken queryPaaSExports (DXP-49)
// REMOVED: check_download_capabilities - embedded in db_export preview mode (DXP-81)
// Blob Download Tools
'download_blobs': withProjectResolution((args) => BlobDownloadTools.handleDownloadBlobs(args)),
'download_media': withProjectResolution((args) => BlobDownloadTools.handleDownloadBlobs(args)),
'download_assets': withProjectResolution((args) => BlobDownloadTools.handleDownloadBlobs(args)),
// Log Download Tools
'download_logs': withProjectResolution((args) => LogDownloadTools.handleDownloadLogs(args)),
'discover_logs': withProjectResolution((args) => require(path.join(libPath, 'tools', 'log-discovery-tools')).discoverLogContainers(args)),
// DXP-101: debug_containers removed (used PowerShell)
// Download Management (DXP-82 - Consolidated tools)
'download_list': (args) => DownloadManagementTools.handleDownloadList(args),
'download_status': (args) => DownloadManagementTools.handleDownloadStatus(args),
'download_cancel': (args) => DownloadManagementTools.handleDownloadCancel(args),
// Download Configuration
'show_download_config': (args) => require(path.join(libPath, 'tools', 'download-config-tools')).handleShowDownloadConfig(args),
// Project Switching
'switch_project': (args) => ProjectSwitchTool.handleSwitchProject(args),
// Setup & Connection Tools
'test_connection': withProjectResolution((args) => PermissionChecker.verifyAccess(args)),
'health_check': async (args) => {
console.error('[HEALTH_CHECK] Called with args:', args);
if (args?.debug) {
console.error('[HEALTH_CHECK] Routing to handleDebugInfo');
return handleDebugInfo(args);
}
// DXP-107: Use PermissionChecker.verifyAccess instead of removed ConnectionTestTools
console.error('[HEALTH_CHECK] Routing to PermissionChecker.verifyAccess');
const result = await PermissionChecker.verifyAccess(args);
console.error('[HEALTH_CHECK] Completed successfully');
return result;
},
'get_version': handleGetVersion,
'get_ai_guidance': async (args) => AIGuidanceTools.getAIGuidance(args), // Direct handler, no credentials needed
// 'check_permissions': removed - merged into test_connection
'verify_access': handleVerifyAccess, // Direct handler, no withProjectResolution to avoid cached module
'get_project': (args) => ProjectTools.getProject(args),
'update_project': (args) => ProjectTools.updateProject(args),
'list_projects': (args) => ProjectTools.listProjects(args),
'current_project': () => ProjectTools.showCurrentProject(),
'get_support': (args) => ProjectTools.handleGetSupport(args),
'list_monitors': (args) => MonitoringTools.listMonitors(args),
'update_monitoring_interval': (args) => MonitoringTools.updateMonitoringInterval(args),
'stop_monitoring': (args) => MonitoringTools.stopMonitoring(args),
'get_monitoring_stats': (args) => MonitoringTools.getMonitoringStats(args),
'disable_telemetry': handleDisableTelemetry,
'enable_telemetry': handleEnableTelemetry,
'get_rate_limit_status': handleGetRateLimitStatus,
'get_cache_status': handleGetCacheStatus,
// Legacy database tools are now handled above as aliases
'list_deployments': withProjectResolution((args) => DeploymentTools.handleListDeployments(args)),
'start_deployment': withProjectResolution((args) => DeploymentTools.handleStartDeployment(args)),
'get_deployment_status': withProjectResolution((args) => DeploymentTools.handleGetDeploymentStatus(args)),
'monitor_deployment': withProjectResolution((args) => DeploymentTools.handleMonitorDeployment(args)),
'complete_deployment': withProjectResolution((args) => DeploymentTools.handleCompleteDeployment(args)),
'reset_deployment': withProjectResolution((args) => DeploymentTools.handleResetDeployment(args)),
'list_storage_containers': withProjectResolution((args) => StorageTools.handleListStorageContainers(args)),
'generate_storage_sas_link': withProjectResolution((args) => StorageTools.handleGenerateStorageSasLink(args)),
'copy_content': withProjectResolution((args) => ContentTools.handleCopyContent(args)),
};
// Tool definitions
const toolDefinitions = Object.keys(schemas).sort((a, b) => {
return a.localeCompare(b);
}).map(name => {
const descriptions = {
// Simple Commands
'deploy': 'π Deploy to environment with smart defaults',
'status': 'π Show deployment and environment status overview',
'quick': 'β‘ Fast status check with essentials only',
// Database Export Operations (DXP-81: Consolidated)
'db_export': 'πΎ Start database export with auto-monitor and auto-download options',
'db_export_status': 'π Check export status with optional monitoring and download',
'db_export_download': 'π₯ Download completed export (background or synchronous)',
// Storage Downloads
'download_blobs': 'π¦ Download blobs/media from storage container',
'download_media': 'πΌοΈ Download media files from storage',
'download_assets': 'π Download asset files from storage',
// Log Operations
'download_logs': 'π Download logs from environment (dateFilter, logType)',
'discover_logs': 'π Discover log containers across environments',
// DXP-101: debug_containers removed (used PowerShell)
// Download Management (DXP-82)
'download_list': 'π₯ List downloads (filter by status/type, pagination)',
'download_status': 'π Get download status (downloadId)',
'download_cancel': 'β Cancel download (downloadId optional - omit to cancel all)',
// Configuration
'show_download_config': 'π Show download path configuration',
// Project Management
'switch_project': 'π Switch to different project',
// System & Connection
'test_connection': 'π Test connection to project',
'debug_info': 'π§ Show process and system information',
'health_check': 'π₯ Check system health and status',
'get_version': 'π Check MCP server version',
'get_ai_guidance': 'π€ Get command routing guidance',
'verify_access': 'π Verify environment access permissions',
'get_project': 'π Get project information',
'update_project': 'βοΈ Update project configuration',
'list_projects': 'π List all configured projects',
'current_project': 'π Show current active project',
'get_support': 'π¬ Get support information',
// Monitoring
'list_monitors': 'π‘ List active deployment monitors',
'update_monitoring_interval': 'β±οΈ Update monitoring frequency',
'stop_monitoring': 'π Stop deployment monitoring',
'get_monitoring_stats': 'π Get monitoring statistics',
// System Settings
'disable_telemetry': 'π Disable telemetry collection',
'enable_telemetry': 'π Enable telemetry collection',
'get_rate_limit_status': 'β³ View rate limit status',
'get_cache_status': 'πΎ View cache performance',
// Deployment Operations
'list_deployments': 'π List deployments for project',
'start_deployment': 'π Start deployment between environments',
'get_deployment_status': 'π Get deployment status (deploymentId)',
'monitor_deployment': 'π Monitor deployment progress (deploymentId)',
'complete_deployment': 'β
Complete deployment in verification state',
'reset_deployment': 'β©οΈ Reset/rollback deployment',
// Storage Operations
'list_storage_containers': 'π¦ List storage containers for environment',
'generate_storage_sas_link': 'π Generate SAS link for storage container',
// Content Operations
'copy_content': 'π Copy content between environments',
};
return {
name,
description: descriptions[name],
inputSchema: schemas[name]
};
});
// Server instance - will be created in main()
let server;
// Handler setup function - will be called from main() after server creation
function setupHandlers(server) {
// Handle tools/list request - Filter by environment (DXP-23)
server.setRequestHandler(ListToolsRequestSchema, async () => {
// Get current project to determine hosting type
const ProjectTools = require('../lib/tools/project-tools');
const currentProject = ProjectTools.getCurrentProject();
// Pass project info for hosting type detection
const projectArgs = currentProject ? {
projectId: currentProject.projectId,
apiKey: currentProject.apiKey,
apiSecret: currentProject.apiSecret,
connectionString: currentProject.connectionString
} : {};
// DXP-89: Get hosting type to determine filtering behavior
const currentHosting = HostingDetector.detectHostingType(projectArgs);
// For unknown hosting, show ALL tools (user can configure credentials inline or via environment)
// For known hosting types, filter to only show compatible tools
let availableToolNames;
if (currentHosting === 'unknown') {
// Show all tools - users can provide credentials inline or configure project
// Tool execution will validate and provide clear error messages if needed
availableToolNames = Object.keys(schemas);
} else {
// Filter based on hosting type capabilities (DXP-23)
availableToolNames = ToolAvailabilityMatrix.getAvailableTools(projectArgs)
.map(t => t.name);
}
// Filter tool definitions to only include available tools
const filteredTools = toolDefinitions
.filter(tool => availableToolNames.includes(tool.name))
.map(tool => ({
name: tool.name,
description: tool.description,
inputSchema: zodToJsonSchema(tool.inputSchema)
}));
return {
tools: filteredTools
};
});
// Handle resources/list request - Claude Code expects this
server.setRequestHandler(ListResourcesRequestSchema, async () => {
// Return empty resources list - we don't expose any resources
return {
resources: []
};
});
// Handle prompts/list request - Claude Code expects this
server.setRequestHandler(ListPromptsRequestSchema, async () => {
try {
// Combine prompts from both modules
const databasePrompts = DatabaseExportPrompts.getPromptDefinitions();
const deploymentPrompts = DeploymentWorkflowPrompts.getPromptDefinitions();
const promptDefinitions = [...databasePrompts, ...deploymentPrompts];
console.error('\nπ― [PROMPT SYSTEM] prompts/list called - returning', promptDefinitions.length, 'prompt(s)');
console.error(' Available prompts:', promptDefinitions.map(p => p.name).join(', '));
return {
prompts: promptDefinitions
};
} catch (error) {
console.error('β [PROMPT SYSTEM] Error getting prompt definitions:', error);
return {
prompts: []
};
}
});
// Handle prompts/get request - returns specific prompt with messages
server.setRequestHandler(GetPromptRequestSchema, async (request) => {
try {
const { name, arguments: promptArgs = {} } = request.params;
console.error('\nπ₯ [PROMPT SYSTEM] prompts/get called!');
console.error(' Prompt name:', name);
console.error(' Arguments:', JSON.stringify(promptArgs));
console.error(' THIS MEANS CLAUDE IS USING THE PROMPT!');
let messages;
let description;
// Route to appropriate prompt handler
if (name === 'export-database') {
messages = DatabaseExportPrompts.getPromptMessages(name, promptArgs);
description = `Database export workflow prompt: ${name}`;
} else if (name === 'deployment-workflow') {
messages = DeploymentWorkflowPrompts.getPromptMessages(name, promptArgs);
description = `Deployment monitoring workflow prompt: ${name}`;
} else {
throw new Error(`Unknown prompt: ${name}`);
}
console.error(' β
Returning', messages.length, 'message(s) for workflow guidance');
return {
description: description,
messages: messages
};
} catch (error) {
console.error('β [PROMPT SYSTEM] Error getting prompt messages:', error);
console.error(' Error details:', error.message);
console.error(' Error stack:', error.stack);
throw error; // Re-throw the original error with full details
}
});
// Handle tools/call request
server.setRequestHandler(CallToolRequestSchema, async (request) => {
// DXP-34 FIX: Use simple destructuring pattern like working log-analyzer-mcp
// Changed from: const { name: toolName, arguments: args } = request.params;
// The destructuring alias was causing toolName to be undefined in some MCP environments
const { name, arguments: args } = request.params;
const toolName = name; // Explicit assignment for clarity
// DXP-34: Debug logging for tool name tracking
if (process.env.DEBUG || process.env.TELEMETRY_DEBUG) {
console.error(`[DXP-34 DEBUG] Tool request received:`, {
toolName: toolName,
hasToolName: !!toolName,
typeOfToolName: typeof toolName,
requestParams: Object.keys(request.params || {})
});
}
// DXP-34: Validate tool name is present
if (!toolName) {
console.error('[DXP-34 ERROR] Tool request received without tool name!', {
request: JSON.stringify(request.params)
});
throw new Error('Tool name is required but was not provided');
}
// Validate input with Zod schema
const schema = schemas[toolName];
if (!schema) {
throw new Error(`Unknown tool: ${toolName}`);
}
let validatedArgs;
try {
// Fix for Claude Desktop using backticks in parameter names and values
let processedArgs = args;
// Check if args is an object with backtick-wrapped keys
if (typeof args === 'object' && args !== null) {
const keys = Object.keys(args);
// Check if any key has backticks
if (keys.some(key => key.includes('`'))) {
console.error('[BACKTICK FIX] Detected backticks in object keys, attempting to fix...');
console.error('[BACKTICK FIX] Original keys:', keys);
processedArgs = {};
// Copy properties, removing backticks from keys
for (const key of keys) {
// Remove backticks from the key
const cleanKey = key.replace(/`/g, '');
let value = args[key];
// Also clean the value if it's a string with backticks
if (typeof value === 'string' && value.includes('`')) {
value = value.replace(/`/g, '');
}
processedArgs[cleanKey] = value;
}
console.error('[BACKTICK FIX] Fixed keys:', Object.keys(processedArgs));
console.error('[BACKTICK FIX] Fixed args:', processedArgs);
}
}
// Original string-based fix (keep for backward compatibility)
else if (typeof args === 'string' && args.includes('`')) {
console.error('[BACKTICK FIX] Detected backticks in string parameters, attempting to fix...');
console.error('[BACKTICK FIX] Original args:', args);
try {
// First, replace backticked keys: `key`: -> "key":
let fixed = args.replace(/`(\w+)`:/g, '"$1":');
// Then, replace backticked values: : `value` -> : "value"
fixed = fixed.replace(/:\s*`([^`]+)`/g, ': "$1"');
console.error('[BACKTICK FIX] After fixing:', fixed);
processedArgs = JSON.parse(fixed);
console.error('[BACKTICK FIX] Successfully fixed malformed JSON');
} catch (fixError) {
console.error('[BACKTICK FIX] Failed to fix malformed JSON:', fixError.message);
processedArgs = args;
}
}
validatedArgs = schema.parse(processedArgs);
} catch (error) {
return {
content: [{
type: 'text',
text: `β Invalid arguments: ${error.message}\n\nπ§ Need help? Contact us at support@jaxondigital.com`
}],
isError: true
};
}
// Check tool availability for current environment (DXP-23)
if (!ToolAvailabilityMatrix.isToolAvailable(toolName, validatedArgs)) {
const restrictionMessage = ToolAvailabilityMatrix.getRestrictionMessage(toolName, validatedArgs);
const hostingName = HostingDetector.getHostingTypeName(validatedArgs);
return {
content: [{
type: 'text',
text: `β Tool Not Available in ${hostingName}\n\n${restrictionMessage}\n\nπ§ Need help? Contact support@jaxondigital.com`
}],
isError: true
};
}
// Auto-register project when credentials are provided inline (BEFORE credential injection)
// This ensures API keys are saved even when used with get_project or update_project
if (validatedArgs.projectName && validatedArgs.projectId &&
validatedArgs.apiKey && validatedArgs.apiSecret) {
// Check if this is a new project or update
const existingProjects = ProjectTools.getConfiguredProjects();
const isNewProject = !existingProjects.find(p =>
p.projectId === validatedArgs.projectId ||
p.name === validatedArgs.projectName
);
// Add or update the API key configuration
ProjectTools.addConfiguration({
name: validatedArgs.projectName,
projectId: validatedArgs.projectId, // Fixed: was 'id', should be 'projectId'
apiKey: validatedArgs.apiKey,
apiSecret: validatedArgs.apiSecret,
environments: ['Integration', 'Preproduction', 'Production'],
isDefault: false
});
// Log registration for debugging (to stderr)
if (isNewProject) {
// console.error(`Registered new project: ${validatedArgs.projectName}`);
} else {
// console.error(`Updated project: ${validatedArgs.projectName}`);
}
}
// Handle project switching and credential injection
// First check if a project name was provided (for easier switching)
if (validatedArgs.projectName && !validatedArgs.projectId) {
const projectCreds = ProjectTools.getProjectCredentials(validatedArgs.projectName);
if (projectCreds) {
validatedArgs.projectId = projectCreds.projectId;
validatedArgs.apiKey = projectCreds.apiKey;
validatedArgs.apiSecret = projectCreds.apiSecret;
// Remember this project for subsequent calls in the session
ProjectTools.setLastUsedProject(validatedArgs.projectName);
}
}
// Inject environment credentials if not provided and no inline credentials
if (!validatedArgs.projectId && !validatedArgs.apiKey && !validatedArgs.apiSecret) {
const defaultCreds = ProjectTools.getProjectCredentials();
validatedArgs.projectId = defaultCreds.projectId || process.env.OPTIMIZELY_PROJECT_ID;
validatedArgs.apiKey = defaultCreds.apiKey || process.env.OPTIMIZELY_API_KEY;
validatedArgs.apiSecret = defaultCreds.apiSecret || process.env.OPTIMIZELY_API_SECRET;
}
// CRITICAL FIX: Always inject project name when we have credentials but no project name
// This must happen OUTSIDE the credential injection block to ensure it always runs
if ((validatedArgs.projectId || validatedArgs.apiKey) && !validatedArgs.project && !validatedArgs.projectName) {
const defaultCreds = ProjectTools.getProjectCredentials();
console.error('[DEBUG] Project injection - defaultCreds:', JSON.stringify(defaultCreds, null, 2));
if (defaultCreds.name) {
console.error('[DEBUG] Injecting project name:', defaultCreds.name);
validatedArgs.project = defaultCreds.name;
validatedArgs.projectName = defaultCreds.name;
} else {
console.error('[DEBUG] No project name in defaultCreds!');
}
}
// Final debug check
if (toolName === 'db_export') {
console.error('\nπ [DB_EXPORT] Tool called directly');
console.error(' Args:', JSON.stringify({
project: validatedArgs.project,
projectName: validatedArgs.projectName,
projectId: validatedArgs.projectId,
hasApiKey: !!validatedArgs.apiKey,
hasApiSecret: !!validatedArgs.apiSecret
}, null, 2));
}
// If still missing apiKey or apiSecret, try to get from configured projects
if (!validatedArgs.apiKey || !validatedArgs.apiSecret) {
const projectCreds = ProjectTools.getProjectCredentials(validatedArgs.projectId);
if (projectCreds) {
validatedArgs.apiKey = validatedArgs.apiKey || projectCreds.apiKey;
validatedArgs.apiSecret = validatedArgs.apiSecret || projectCreds.apiSecret;
}
}
// Log which project is being used (to stderr to avoid polluting stdout)
if (validatedArgs.projectId && toolName !== 'get_project' && toolName !== 'update_project') {
// console.error(`Using project: ${validatedArgs.projectId}`);
}
// Tools that use withProjectResolution wrapper (they handle credentials internally)
const toolsWithProjectResolution = [
'backup', 'backup_status', 'list_backups',
'deploy', 'status', 'rollback', 'quick',
'switch_project',
'test_connection', 'health_check',
'download_blobs', 'download_logs', 'list_storage_containers',
'db_export', 'db_export_status'
];
// Check for missing credentials (except for project management tools and tools with project resolution)
const shouldCheckCredentials = (toolName !== 'get_project' &&
toolName !== 'update_project' &&
toolName !== 'list_projects' && // list_projects doesn't need credentials
toolName !== 'current_project' && // current_project doesn't need credentials
toolName !== 'list_api_keys' &&
toolName !== 'get_ai_guidance' && // AI guidance doesn't need credentials
!toolsWithProjectResolution.includes(toolName));
if (shouldCheckCredentials) {
const missingCreds = [];
const hasProjectName = !!validatedArgs.projectName;
if (!validatedArgs.projectId) missingCreds.push('Project ID');
if (!validatedArgs.apiKey) missingCreds.push('API Key');
if (!validatedArgs.apiSecret) missingCreds.push('API Secret');
// Only show missing credentials error if we're actually missing required fields
if (missingCreds.length > 0) {
// Add project name suggestion if other credentials are missing
if (!hasProjectName) {
missingCreds.unshift('Project Name (strongly recommended for easy reference)');
}
return {
content: [{
type: 'text',
text: `β **Connection Error**\n\n` +
`The following credentials are required but not provided:\n` +
missingCreds.map(c => `β’ ${c}`).join('\n') + `\n\n` +
`**How to fix this:**\n\n` +
`**Option 1:** Pass ALL credentials as parameters to this tool:\n` +
`β’ projectName: "Your Project Name" (e.g., "Production", "Staging", "ClientA")\n` +
`β’ projectId: "your-uuid"\n` +
`β’ apiKey: "your-key"\n` +
`β’ apiSecret: "your-secret"\n\n` +
`**Why Project Name is Important:**\n` +
`Once you provide a project name, the project is auto-registered and you can reference it by name in future commands!\n\n` +
`**Option 2:** Configure environment variables in Claude Desktop:\n` +
`Run the \`get_project\` tool for detailed setup instructions.\n\n` +
`π‘ **Tip:** Use \`list_api_keys\` to see all registered API key configurations.`
}],
isError: true
};
}
}
// Execute tool using handler map
const startTime = Date.now();
try {
const handler = commandHandlers[toolName];
if (!handler) {
throw new Error(`Tool ${toolName} not implemented`);
}
// Track tool usage (legacy format for existing metrics)
telemetry.trackToolUsage(toolName, {
environment: validatedArgs.environment,
hasCredentials: !!(validatedArgs.apiKey && validatedArgs.projectId)
});
console.error(`[HANDLER CALL] Calling ${toolName} with args:`, {
hasConnectionString: !!validatedArgs.connectionString,
hasApiKey: !!validatedArgs.apiKey,
containerName: validatedArgs.containerName
});
const result = await handler(validatedArgs);
const duration = Date.now() - startTime;
console.error(`[HANDLER DONE] ${toolName} completed in ${duration}ms`);
// DXP-34: Debug logging before telemetry call
if (process.env.DEBUG || process.env.TELEMETRY_DEBUG) {
console.error(`[DXP-34 DEBUG] Before trackToolCall:`, {
toolName: toolName,
hasToolName: !!toolName,
typeOfToolName: typeof toolName,
duration: duration,
success: !result.error
});
}
// DXP-34 SIMPLIFIED: Use ONLY trackToolDirect to eliminate complexity
telemetry.trackToolDirect(toolName, duration, !result.error);
// Flush telemetry to ensure events are sent in short-lived MCP sessions
// This is critical for MCP because the process doesn't exit normally
telemetry.flush().catch(() => {
// Silently ignore flush errors
});
// Handle response format
if (result.error) {
// Track error (legacy format)
telemetry.trackError(new Error(result.error), {
tool: toolName,
operation: 'tool_execution',
environment: validatedArgs.environment
});
return {
content: [{
type: 'text',
text: result.error || 'An error occurred'
}],
isError: true
};
}
// DXP-34 SIMPLIFIED: Removed complex deployment tracking
// Format successful response
// Debug logging for db_export status checking
if (toolName === 'db_export' && validatedArgs.exportId) {
console.error('[EXPORT_STATUS DEBUG] Result structure:', {
hasResult: !!result,
hasResultResult: !!result?.result,
hasResultContent: !!result?.content,
resultKeys: Object.keys(result || {}),
resultResultKeys: Object.keys(result?.result || {}),
contentType: typeof result?.result?.content?.[0]?.text,
contentValue: result?.result?.content?.[0]?.text?.substring?.(0, 100)
});
}
// DXP-66: Format response for both AI assistants and automation tools
// Use structuredContent for automation tools, content.text for AI assistants
let finalText;
let structuredData = null;
if (result.data && result.message) {
// Structured response with data - return BOTH text message and structured data
finalText = result.message; // Human-readable message for AI
structuredData = {
success: !result.error,
data: result.data
// Note: message is already in content[0].text, no need to duplicate it here
};
} else if (result.result?.content?.[0]?.text) {
// Nested MCP format response
finalText = result.result.content[0].text;
} else if (result.content?.[0]?.text) {
// Direct MCP format response
finalText = result.content[0].text;
} else if (typeof result === 'string') {
// Plain string response
finalText = result;
} else {
// Fallback: stringify the entire result
finalText = JSON.stringify(result, null, 2);
}
// Build response with both text content and structured data
const response = {
content: [{
type: 'text',
text: finalText
}]
};
// Add structuredContent if we have structured data (MCP protocol feature)
if (structuredData) {
response.structuredContent = structuredData;
}
return response;
} catch (error) {
console.error(`[CATCH] Caught error in tool ${toolName}:`, error.message);
console.error(`[CATCH] Error stack:`, error.stack);
OutputLogger.error(`Error executing tool ${toolName}:`, error);
// Track error
const duration = Date.now() - startTime;
// DXP-34 SIMPLIFIED: Use ONLY trackToolDirect for error tracking too
telemetry.trackToolDirect(toolName, duration, false);
return {
content: [{
type: 'text',
text: `β Error: ${error.message}`
}],
isError: true
};
}
});
}
/**
* Start HTTP server for n8n integration
* DXP-89: Add HTTP Streamable transport support
* Production hardening: size limits, timeouts, error handling, graceful shutdown
*/
async function startHttpServer(server, port = 3001) {
const express = require('express');
const packageJson = require(path.join(__dirname, '..', 'package.json'));
const RateLimiter = require(path.join(__dirname, '..', 'lib', 'rate-limiter'));
const app = express();
// DXP-89 Hardening: Security headers (OWASP recommendations)
app.use((req, res, next) => {
// Prevent MIME type sniffing
res.setHeader('X-Content-Type-Options', 'nosniff');
// Prevent clickjacking
res.setHeader('X-Frame-Options', 'DENY');
// Enable XSS protection
res.setHeader('X-XSS-Protection', '1; mode=block');
// Content Security Policy (restrict to same origin)
res.setHeader('Content-Security-Policy', "default-src 'self'");
// Remove Express signature
res.removeHeader('X-Powered-By');
next();
});
// DXP-89 Hardening: Request size limit (DoS protection)
app.use(express.json({ limit: '10mb' }));
// DXP-89 Hardening: Request timeout (prevent hung connections)
app.use((req, res, next) => {
req.setTimeout(120000); // 2 minutes
res.setTimeout(120000);
next();
});
// DXP-89 Hardening: Request logging (sanitized)
app.use((req, res, next) => {
const start = Date.now();
res.on('finish', () => {
const duration = Date.now() - start;
const ip = req.ip || req.connection.remoteAddress;
console.error(`[HTTP] ${req.method} ${req.path} - ${res.statusCode} (${duration}ms) - ${ip}`);
});
next();
});
// DXP-108: IP whitelist for trusted internal callers
const TRUSTED_IPS = [
'127.0.0.1', // localhost
'::1', // localhost IPv6
/^172\.\d+\.\d+\.\d+$/, // Docker network (172.x.x.x)
/^10\.\d+\.\d+\.\d+$/ // Private network (10.x.x.x)
];
function isTrustedIp(clientIp) {
if (!clientIp || clientIp === 'unknown') return false;
return TRUSTED_IPS.some(pattern =>
typeof pattern === 'string' ? clientIp === pattern : pattern.test(clientIp)
);
}
// DXP-89 Hardening: Rate limiting (per-IP, except trusted internal IPs)
const rateLimiter = new RateLimiter({
maxRequestsPerMinute: 30,
maxRequestsPerHour: 500,
debug: process.env.DEBUG === 'true'
});
app.use((req, res, next) => {
let clientIp = req.ip || req.connection.remoteAddress || 'unknown';
// DXP-109: Strip IPv6-mapped IPv4 prefix (::ffff:x.x.x.x -> x.x.x.x)
if (clientIp.startsWith('::ffff:')) {
clientIp = clientIp.substring(7);
}
// DXP-108: Skip rate limiting for trusted internal IPs
if (isTrustedIp(clientIp)) {
return next();
}
// Apply rate limiting only for external IPs
const rateCheck = rateLimiter.checkRateLimit(clientIp);
if (!rateCheck.allowed) {
const retryAfterSeconds = Math.ceil(rateCheck.waitTime / 1000);
res.setHeader('Retry-After', retryAfterSeconds);
return res.status(429).json({
jsonrpc: '2.0',
error: {
code: -32000,
message: `Rate limit exceeded. Please retry after ${retryAfterSeconds} seconds.`,
data: {
reason: rateCheck.reason,
retryAfter: retryAfterSeconds
}
}
});
}
rateLimiter.recordRequest(clientIp);
next();
});
// Health check endpoint (GET only)
app.get('/health', (req, res) => {
res.json({
status: 'ok',
service: 'optimizely-dxp-mcp',
version: packageJson.version,
mode: 'http',
timestamp: new Date().toISOString(),
uptime: process.uptime(),
memory: process.memoryUsage(),
pid: process.pid
});
});
// DXP-89 Hardening: Reject non-GET requests to health endpoint
app.all('/health', (req, res) => {
res.status(405).json({
error: 'Method Not Allowed',
allowed: ['GET']
});
});
// MCP endpoint (POST only)
app.post('/mcp', async (req, res) => {
// DXP-89 Hardening: Validate Content-Type
const contentType = req.get('content-type');
if (!contentType || !contentType.includes('application/json')) {
return res.status(415).json({
jsonrpc: '2.0',
error: {
code: -32700,
message: 'Unsupported Media Type: Content-Type must be application/json'
}
});
}
try {
const transport = new StreamableHTTPServerTransport({
sessionIdGenerator: undefined,
enableJsonResponse: true,
strictHeaders: false // DXP-100: Allow n8n MCP Client Tool (doesn't send proper Accept headers)
});
// Clean up transport on response close
res.on('close', () => {
try {
transport.close();
} catch (error) {
// Ignore close errors
}
});
// Connect server to transport and handle request
await server.connect(transport);
await transport.handleRequest(req, res, req.body);
} catch (error) {
console.error('[MCP SERVER] HTTP request error:', error);
if (!res.headersSent) {
res.status(500).json({
jsonrpc: '2.0',
error: {
code: -32603,
message: 'Internal server error',
// DXP-89 Hardening: Only expose error details in development
...(process.env.NODE_ENV === 'development' && { data: error.message })
}
});
}
}
});
// DXP-89 Hardening: Reject non-POST requests to MCP endpoint
app.all('/mcp', (req, res) => {
res.status(405).json({
error: 'Method Not Allowed',
allowed: ['POST']
});
});
// DXP-89 Hardening: Catch-all for undefined routes (404)
app.use((req, res) => {
res.status(404).json({
error: 'Not Found',
message: `Route ${req.method} ${req.path} not found`,
availableEndpoints: ['GET /health', 'POST /mcp']
});
});
// DXP-89 Hardening: Malformed JSON error handler
app.use((err, req, res, next) => {
if (err instanceof SyntaxError && err.status === 400 && 'body' in err) {
return res.status(400).json({
jsonrpc: '2.0',
error: {
code: -32700,
message: 'Parse error: Invalid JSON'
}
});
}
next(err);
});
// DXP-89 Hardening: Bind appropriately for environment
// Docker: 0.0.0.0 (allow host access), Local: localhost (security)
const host = process.env.DXP_MCP_HOST || '0.0.0.0';
return new Promise((resolve, reject) => {
const httpServer = app.listen(port, host, () => {
console.error(`[MCP SERVER] HTTP Streamable transport enabled`);
console.error(`[MCP SERVER] Server listening on http://${host}:${port}`);
console.error(`[MCP SERVER] MCP endpoint: POST http://${host}:${port}/mcp`);
console.error(`[MCP SERVER] Health check: GET http://${host}:${port}/health`);
console.error(`[MCP SERVER] Ready for n8n integration`);
resolve(httpServer);
});
// DXP-89 Hardening: Handle listen errors (e.g., port in use)
httpServer.on('error', (err) => {
reject(err);
});
});
}
// Main function
async function main() {
const packageJson = require(path.join(__dirname, '..', 'package.json'));
// Generate and set session ID at startup if not already set
if (!process.env.MCP_SESSION_ID) {
process.env.MCP_SESSION_ID = `${Date.now()}-${Math.random().toString(36).substr(2, 9)}`;
console.error(`[MCP SERVER] Session ID generated: ${process.env.MCP_SESSION_ID}`);
}
// Create server instance
server = new Server(
{
name: Config.PROJECT.NAME,
version: packageJson.version
},
{
capabilities: {
tools: {},
resources: {},
prompts: {
listChanged: true
}
}
}
);
// Setup handlers after server creation
setupHandlers(server);
// DXP-89: Detect transport mode (stdio for Claude Desktop, http for n8n)
const transportMode = process.env.DXP_MCP_MODE || 'stdio';
// DXP-89 Hardening: Validate transport mode
if (transportMode !== 'stdio' && transportMode !== 'http') {
throw new Error(`Invalid DXP_MCP_MODE: "${transportMode}". Must be 'stdio' or 'http'.`);
}
// DXP-89 Hardening: Validate port number
const httpPort = parseInt(process.env.DXP_MCP_PORT || '3001', 10);
if (isNaN(httpPort) || httpPort < 1 || httpPort > 65535) {
throw new Error(`Invalid DXP_MCP_PORT: "${process.env.DXP_MCP_PORT}". Must be 1-65535.`);
}
if (transportMode === 'http') {
// HTTP mode for n8n integration
console.error(`[MCP SERVER] Starting in HTTP mode (n8n integration)`);
// DXP-89 Hardening: Better error handling for port-in-use
let httpServerInstance;
try {
httpServerInstance = await startHttpServer(server, httpPort);
} catch (error) {
if (error.code === 'EADDRINUSE') {
console.error(`[MCP SERVER] ERROR: Port ${httpPort} is already in use`);
console.error(`[MCP SERVER] Try: DXP_MCP_PORT=8080 npm start`);
process.exit(1);
}
throw error;
}
// DXP-89 Hardening: Graceful shutdown on SIGTERM/SIGINT
const gracefulShutdown = (signal) => {
console.error(`[MCP SERVER] ${signal} received, shutting down gracefully...`);
if (httpServerInstance) {
httpServerInstance.close(() => {
console.error('[MCP SERVER] HTTP server closed');
process.exit(0);
});
// Force shutdown after 10 seconds if graceful shutdown hangs
setTimeout(() => {
console.error('[MCP SERVER] Force shutdown after timeout');
process.exit(1);
}, 10000);
} else {
process.exit(0);
}
};
process.on('SIGTERM', () => gracefulShutdown('SIGTERM'));
process.on('SIGINT', () => gracefulShutdown('SIGINT'));
// Initialize telemetry AFTER server starts
telemetry.initialize();
// Success message already printed by startHttpServer
OutputLogger.success(`Jaxon Optimizely DXP MCP Server v${packageJson.version} ready`);
} else {
// Default stdio mode for Claude Desktop
console.error(`[MCP SERVER] Starting in stdio mode (Claude Desktop)`);
const transport = new StdioServerTransport();
// Add error handlers for pipe/connection errors (when client disconnects)
// This prevents the server from crashing when Claude Desktop times out or closes
const isClientDisconnectError = (err) => {
return err.code === 'EPIPE' ||
err.code === 'ECONNRESET' ||
err.code === 'ERR_STREAM_WRITE_AFTER_END' ||
err.code === 'ERR_STREAM_DESTROYED';
};
process.stdout.on('error', (err) => {
if (isClientDisconnectError(err)) {
// Client disconnected - this is normal during timeouts or when user closes Claude
// Don't crash, just exit gracefully (no logging as stdout may be broken)
process.exit(0);
} else {
// Other errors should be logged
try {
console.error('[MCP SERVER] Stdout error:', err);
} catch (e) {
// Can't log, just exit
process.exit(1);
}
}
});
process.stdin.on('error', (err) => {
if (isClientDisconnectError(err)) {
// Client disconnected - exit gracefully
process.exit(0);
} else {
try {
console.error('[MCP SERVER] Stdin error:', err);
} catch (e) {
process.exit(1);
}
}
});
await server.connect(transport);
// NOW we can log safely after connection is established
OutputLogger.success(`Jaxon Optimizely DXP MCP Server v${packageJson.version} ready`);
// Initialize telemetry AFTER connection
telemetry.initialize();
}
// Load completed downloads from persistent storage (survives server restarts)
await DatabaseSimpleTools.loadCompletedDownloads();
// Check what projects are configured
try {
const ProjectTools = require(path.join(libPath, 'tools', 'project-tools'));
const projects = ProjectTools.getConfiguredProjects();
if (projects.length > 0) {
const current = ProjectTools.getCurrentProject();
if (current && current.isSelfHosted) {
OutputLogger.success(`Self-hosted project detected: ${current.name}`);
} else if (current) {
OutputLogger.success(`DXP project detected: ${current.name}`);
}
}
} catch (error) {
// Ignore project detection errors at startup
}
// Check for PowerShell availability (after connection) - only if not self-hosted
try {
const ProjectTools = require(path.join(libPath, 'tools', 'project-tools'));
const current = ProjectTools.getCurrentProject();
if (!current || !current.isSelfHosted) {
const { getPowerShellDetector } = require(path.join(libPath, 'powershell-detector'));
const detector = getPowerShellDetector();
const psCommand = await detector.getCommand();
// Silent success - don't log unless there's an issue
}
} catch (error) {
// Log PowerShell warning but don't break the connection
OutputLogger.warn('PowerShell not detected - some features may not work');
}
// Run version check after connection (if not local development)
if (shouldCheckVersion) {
(async () => {
const updateInfo = await VersionChecker.checkForUpdates();
const notification = VersionChecker.formatUpdateNotification(updateInfo);
if (notification) {
OutputLogger.debug(notification);
}
})();
} else {
OutputLogger.debug('Running in local development mode - skipping version check');
}
}
// Only run main if this is the main module (not when required)
if (require.main === module) {
// Add global error handlers for client disconnect errors
// This catches any disconnect errors that escape local handlers
const isClientDisconnectError = (error) => {
return error?.code === 'EPIPE' ||
error?.code === 'ECONNRESET' ||
error?.code === 'ERR_STREAM_WRITE_AFTER_END' ||
error?.code === 'ERR_STREAM_DESTROYED';
};
process.on('uncaughtException', (error) => {
if (isClientDisconnectError(error)) {
// Client disconnected - exit gracefully without logging
// (stdout may be broken, so logging could cause another error)
process.exit(0);
} else {
// Other uncaught exceptions should be logged and crash
try {
console.error('[MCP SERVER] Uncaught exception:', error);
} catch (e) {
// Can't log, just exit with error code
}
process.exit(1);
}
});
process.on('unhandledRejection', (reason, promise) => {
// Check if the rejection is due to client disconnect
if (isClientDisconnectError(reason)) {
process.exit(0);
}
try {
console.error('[MCP SERVER] Unhandled promise rejection:', reason);
} catch (e) {
// Can't log, continue
}
// Don't exit on unhandled rejections - just log them
});
// Handle errors
main().catch((error) => {
console.error('β Failed to start MCP server');
console.error('Error:', error.message || error);
if (error.stack) {
console.error('Stack:', error.stack);
}
process.exit(1);
});
}
// Export for testing
module.exports = {
commandHandlers
};
