@mondaydotcomorg/atp-providers

Production-ready provider implementations for ATP (cache, auth, OAuth, audit).

Overview

This package provides concrete implementations of ATP provider interfaces including cache backends, authentication providers, OAuth integrations, and audit sinks.

Installation

``bash npm install @mondaydotcomorg/atp-providers`

`Architecture`

`mermaid graph TB Providers[Providers Package] --> Cache[Cache Providers] Providers --> Auth[Auth Providers] Providers --> OAuth[OAuth Providers] Providers --> Audit[Audit Sinks]

Cache --> Memory[MemoryCache] Cache --> Redis[RedisCache] Cache --> File[FileCache]

Auth --> Env[EnvAuthProvider]

OAuth --> Google[GoogleOAuthProvider] OAuth --> GitHub[GitHubOAuthProvider]

Audit --> JSONL[JSONLAuditSink] Audit --> OTel[OpenTelemetryAuditSink]`

`Cache Providers`

`$3`

In-memory cache for development and testing.

`typescript import { MemoryCache } from '@mondaydotcomorg/atp-providers';

const cache = new MemoryCache({ defaultTTL: 3600, // 1 hour maxSize: 1000, // Max entries });

await cache.set('key', value, 3600); const cached = await cache.get('key'); await cache.delete('key');`

`$3`

Redis-backed cache for production and distributed systems.

`typescript import { RedisCache } from '@mondaydotcomorg/atp-providers'; import Redis from 'ioredis';

const redis = new Redis({ host: 'localhost', port: 6379, password: process.env.REDIS_PASSWORD, });

const cache = new RedisCache({ redis, keyPrefix: 'atp:', defaultTTL: 3600, });

await cache.set('key', value, 3600); const cached = await cache.get('key');`

Benefits:

- Cross-pod state sharing - Persistent storage - High performance - Production-ready

`$3`

File-based cache for simple persistence.

`typescript import { FileCache } from '@mondaydotcomorg/atp-providers';

const cache = new FileCache({ directory: './cache', defaultTTL: 3600, });

await cache.set('key', value); const cached = await cache.get('key');`

`Auth Providers`

`$3`

Environment-based authentication for simple use cases.

`typescript import { EnvAuthProvider } from '@mondaydotcomorg/atp-providers';

const authProvider = new EnvAuthProvider({ envPrefix: 'AUTH_', // Reads AUTH_* env vars });

// Set credentials await authProvider.setCredentials('github', { accessToken: 'ghp_...', refreshToken: null, expiresAt: null, });

// Get credentials const credentials = await authProvider.getCredentials('github'); console.log(credentials.accessToken);`

`OAuth Providers`

`$3`

Google OAuth 2.0 integration.

`typescript import { GoogleOAuthProvider } from '@mondaydotcomorg/atp-providers';

const oauth = new GoogleOAuthProvider({ clientId: process.env.GOOGLE_CLIENT_ID, clientSecret: process.env.GOOGLE_CLIENT_SECRET, redirectUri: 'http://localhost:3333/oauth/callback', scopes: [ 'https://www.googleapis.com/auth/userinfo.email', 'https://www.googleapis.com/auth/calendar', ], });

// Generate auth URL const authUrl = await oauth.generateAuthUrl({ state: 'random-state', });

// Handle callback const tokens = await oauth.handleCallback('authorization-code', { state: 'random-state', });

// Refresh token const newTokens = await oauth.refreshToken('refresh-token');

// Check scopes const hasScope = await oauth.checkScopes(tokens.accessToken, [ 'https://www.googleapis.com/auth/calendar', ]);`

`$3`

GitHub OAuth integration.

`typescript import { GitHubOAuthProvider } from '@mondaydotcomorg/atp-providers';

const oauth = new GitHubOAuthProvider({ clientId: process.env.GITHUB_CLIENT_ID, clientSecret: process.env.GITHUB_CLIENT_SECRET, redirectUri: 'http://localhost:3333/oauth/callback', scopes: ['repo', 'user'], });

const authUrl = await oauth.generateAuthUrl({ state: 'state' }); const tokens = await oauth.handleCallback('code', { state: 'state' });`

`$3`

`typescript import type { OAuthProvider } from '@mondaydotcomorg/atp-protocol';

class SlackOAuthProvider implements OAuthProvider { name = 'slack';

async generateAuthUrl(config) { returnhttps://slack.com/oauth/v2/authorize?client_id=${config.clientId}&...; }

async handleCallback(code, config) { // Exchange code for tokens const response = await fetch('https://slack.com/api/oauth.v2.access', { method: 'POST', body: JSON.stringify({ code, client_id: config.clientId, ... }), }); const data = await response.json(); return { accessToken: data.access_token, refreshToken: data.refresh_token, expiresAt: Date.now() + data.expires_in * 1000, }; }

async refreshToken(refreshToken, config) { // Implement refresh }

async checkScopes(accessToken, requiredScopes) { // Verify scopes return true; } }`

`Audit Sinks`

`$3`

Write audit logs as JSON Lines files.

`typescript import { JSONLAuditSink } from '@mondaydotcomorg/atp-providers';

const auditSink = new JSONLAuditSink({ path: './audit-logs', rotateDaily: true, // Create new file each day compress: true, // Compress old logs });

// Automatically logs all events // Files: audit-2024-01-15.jsonl`

Features:

- Daily rotation - Compression - Structured JSON - Easy parsing

`$3`

Export audit events to OpenTelemetry collector.

`typescript import { OpenTelemetryAuditSink } from '@mondaydotcomorg/atp-providers';

const auditSink = new OpenTelemetryAuditSink({ endpoint: 'http://localhost:4318/v1/traces', serviceName: 'atp-server', serviceVersion: '1.0.0', });

// Events exported as spans and metrics`

Integration with observability platforms:

- Jaeger - Zipkin - Prometheus - Datadog - New Relic

`OpenTelemetry Metrics`

`typescript import { OTelCounter, OTelHistogram, METRIC_CONFIGS } from '@mondaydotcomorg/atp-providers';

// Predefined metrics // - atp.execution.count (counter) // - atp.execution.duration (histogram) // - atp.execution.memory (histogram) // - atp.tool.calls (counter) // - atp.llm.calls (counter) // - atp.cache.hits/misses (counters)

// Custom attributes import { OTelAttribute } from '@mondaydotcomorg/atp-providers';

const attributes = { [OTelAttribute.EXECUTION_ID]: 'exec-123', [OTelAttribute.CLIENT_ID]: 'client-456', [OTelAttribute.TOOL_NAME]: 'github.repos.get', };`

`Usage in Server`

`typescript import { createServer } from '@mondaydotcomorg/atp-server'; import { RedisCache, EnvAuthProvider, GoogleOAuthProvider, JSONLAuditSink, OpenTelemetryAuditSink, } from '@mondaydotcomorg/atp-providers'; import Redis from 'ioredis';

const redis = new Redis(process.env.REDIS_URL);

const server = createServer({ audit: { enabled: true, sinks: [ new JSONLAuditSink({ path: './audit-logs', rotateDaily: true }), new OpenTelemetryAuditSink({ endpoint: 'http://localhost:4318/v1/traces', serviceName: 'atp-server', }), ], }, otel: { enabled: true, serviceName: 'atp-server', }, });

server.setCacheProvider(new RedisCache({ redis })); server.setAuthProvider(new EnvAuthProvider());

// Add OAuth-protected API const googleCalendar = { name: 'calendar', type: 'oauth', oauthProvider: new GoogleOAuthProvider({ clientId: process.env.GOOGLE_CLIENT_ID, clientSecret: process.env.GOOGLE_CLIENT_SECRET, redirectUri: 'http://localhost:3333/oauth/callback', scopes: ['https://www.googleapis.com/auth/calendar'], }), functions: [ { name: 'listEvents', description: 'List calendar events', inputSchema: { type: 'object', properties: {} }, handler: async (input, credentials) => { const response = await fetch( 'https://www.googleapis.com/calendar/v3/calendars/primary/events', { headers: { Authorization:Bearer ${credentials.accessToken}, }, } ); return await response.json(); }, }, ], };

server.addAPIGroup(googleCalendar);

await server.start(3333);`

`Cache Provider Interface`

`typescript interface CacheProvider { name: string; get(key: string): Promise; set(key: string, value: unknown, ttl?: number): Promise; delete(key: string): Promise; has(key: string): Promise; clear?(): Promise; }`

`Auth Provider Interface`

`typescript interface AuthProvider { name: string; getCredentials(key: string): Promise; setCredentials(key: string, credentials: UserCredentialData): Promise; deleteCredentials(key: string): Promise; }

interface UserCredentialData { accessToken: string; refreshToken: string | null; expiresAt: number | null; scopes?: string[]; }`

`OAuth Provider Interface`

`typescript interface OAuthProvider { name: string; generateAuthUrl(config: OAuthConfig): Promise; handleCallback(code: string, config: OAuthConfig): Promise; refreshToken(refreshToken: string, config: OAuthConfig): Promise; checkScopes(accessToken: string, requiredScopes: string[]): Promise; }`

`Audit Sink Interface`

`typescript interface AuditSink { write(event: AuditEvent): Promise; flush?(): Promise; }

interface AuditEvent { timestamp: number; type: 'execution' | 'tool_call' | 'llm_call' | 'approval' | 'error'; executionId?: string; clientId?: string; data: Record; }``

TypeScript Support

Full TypeScript definitions included.

License

MIT

@mondaydotcomorg/atp-providers

Production-ready provider implementations for ATP (cache, auth, OAuth, audit).

Overview

This package provides concrete implementations of ATP provider interfaces including cache backends, authentication providers, OAuth integrations, and audit sinks.

Installation

``bash npm install @mondaydotcomorg/atp-providers`

`Architecture`

`mermaid graph TB Providers[Providers Package] --> Cache[Cache Providers] Providers --> Auth[Auth Providers] Providers --> OAuth[OAuth Providers] Providers --> Audit[Audit Sinks]

Cache --> Memory[MemoryCache] Cache --> Redis[RedisCache] Cache --> File[FileCache]

Auth --> Env[EnvAuthProvider]

OAuth --> Google[GoogleOAuthProvider] OAuth --> GitHub[GitHubOAuthProvider]

Audit --> JSONL[JSONLAuditSink] Audit --> OTel[OpenTelemetryAuditSink]`

`Cache Providers`

`$3`

In-memory cache for development and testing.

`typescript import { MemoryCache } from '@mondaydotcomorg/atp-providers';

const cache = new MemoryCache({ defaultTTL: 3600, // 1 hour maxSize: 1000, // Max entries });

await cache.set('key', value, 3600); const cached = await cache.get('key'); await cache.delete('key');`

`$3`

Redis-backed cache for production and distributed systems.

`typescript import { RedisCache } from '@mondaydotcomorg/atp-providers'; import Redis from 'ioredis';

const redis = new Redis({ host: 'localhost', port: 6379, password: process.env.REDIS_PASSWORD, });

const cache = new RedisCache({ redis, keyPrefix: 'atp:', defaultTTL: 3600, });

await cache.set('key', value, 3600); const cached = await cache.get('key');`

Benefits:

- Cross-pod state sharing - Persistent storage - High performance - Production-ready

`$3`

File-based cache for simple persistence.

`typescript import { FileCache } from '@mondaydotcomorg/atp-providers';

const cache = new FileCache({ directory: './cache', defaultTTL: 3600, });

await cache.set('key', value); const cached = await cache.get('key');`

`Auth Providers`

`$3`

Environment-based authentication for simple use cases.

`typescript import { EnvAuthProvider } from '@mondaydotcomorg/atp-providers';

const authProvider = new EnvAuthProvider({ envPrefix: 'AUTH_', // Reads AUTH_* env vars });

// Set credentials await authProvider.setCredentials('github', { accessToken: 'ghp_...', refreshToken: null, expiresAt: null, });

// Get credentials const credentials = await authProvider.getCredentials('github'); console.log(credentials.accessToken);`

`OAuth Providers`

`$3`

Google OAuth 2.0 integration.

`typescript import { GoogleOAuthProvider } from '@mondaydotcomorg/atp-providers';

// Generate auth URL const authUrl = await oauth.generateAuthUrl({ state: 'random-state', });

// Handle callback const tokens = await oauth.handleCallback('authorization-code', { state: 'random-state', });

// Refresh token const newTokens = await oauth.refreshToken('refresh-token');

// Check scopes const hasScope = await oauth.checkScopes(tokens.accessToken, [ 'https://www.googleapis.com/auth/calendar', ]);`

`$3`

GitHub OAuth integration.

`typescript import { GitHubOAuthProvider } from '@mondaydotcomorg/atp-providers';

const authUrl = await oauth.generateAuthUrl({ state: 'state' }); const tokens = await oauth.handleCallback('code', { state: 'state' });`

`$3`

`typescript import type { OAuthProvider } from '@mondaydotcomorg/atp-protocol';

class SlackOAuthProvider implements OAuthProvider { name = 'slack';

async generateAuthUrl(config) { returnhttps://slack.com/oauth/v2/authorize?client_id=${config.clientId}&...; }

async refreshToken(refreshToken, config) { // Implement refresh }

async checkScopes(accessToken, requiredScopes) { // Verify scopes return true; } }`

`Audit Sinks`

`$3`

Write audit logs as JSON Lines files.

`typescript import { JSONLAuditSink } from '@mondaydotcomorg/atp-providers';

const auditSink = new JSONLAuditSink({ path: './audit-logs', rotateDaily: true, // Create new file each day compress: true, // Compress old logs });

// Automatically logs all events // Files: audit-2024-01-15.jsonl`

Features:

- Daily rotation - Compression - Structured JSON - Easy parsing

`$3`

Export audit events to OpenTelemetry collector.

`typescript import { OpenTelemetryAuditSink } from '@mondaydotcomorg/atp-providers';

const auditSink = new OpenTelemetryAuditSink({ endpoint: 'http://localhost:4318/v1/traces', serviceName: 'atp-server', serviceVersion: '1.0.0', });

// Events exported as spans and metrics`

Integration with observability platforms:

- Jaeger - Zipkin - Prometheus - Datadog - New Relic

`OpenTelemetry Metrics`

`typescript import { OTelCounter, OTelHistogram, METRIC_CONFIGS } from '@mondaydotcomorg/atp-providers';

// Custom attributes import { OTelAttribute } from '@mondaydotcomorg/atp-providers';

const attributes = { [OTelAttribute.EXECUTION_ID]: 'exec-123', [OTelAttribute.CLIENT_ID]: 'client-456', [OTelAttribute.TOOL_NAME]: 'github.repos.get', };`

`Usage in Server`

const redis = new Redis(process.env.REDIS_URL);

server.setCacheProvider(new RedisCache({ redis })); server.setAuthProvider(new EnvAuthProvider());

server.addAPIGroup(googleCalendar);

await server.start(3333);`

`Cache Provider Interface`

`Auth Provider Interface`

interface UserCredentialData { accessToken: string; refreshToken: string | null; expiresAt: number | null; scopes?: string[]; }`

`OAuth Provider Interface`

`Audit Sink Interface`

`typescript interface AuditSink { write(event: AuditEvent): Promise; flush?(): Promise; }

interface AuditEvent { timestamp: number; type: 'execution' | 'tool_call' | 'llm_call' | 'approval' | 'error'; executionId?: string; clientId?: string; data: Record; }``

TypeScript Support

Full TypeScript definitions included.

License

MIT

@mondaydotcomorg/atp-providers

@mondaydotcomorg/atp-providers

Overview

Installation

Architecture

Cache Providers

$3

$3

$3

Auth Providers

$3

OAuth Providers

$3

$3

$3

Audit Sinks

$3

$3

OpenTelemetry Metrics

Usage in Server

Cache Provider Interface

Auth Provider Interface

OAuth Provider Interface

Audit Sink Interface

TypeScript Support

License

@mondaydotcomorg/atp-providers

@mondaydotcomorg/atp-providers

Overview

Installation

Architecture

Cache Providers

$3

$3

$3

Auth Providers

$3

OAuth Providers

$3

$3

$3

Audit Sinks

$3

$3

OpenTelemetry Metrics

Usage in Server

Cache Provider Interface

Auth Provider Interface

OAuth Provider Interface

Audit Sink Interface

TypeScript Support

License

Dist Tags

`Architecture`

`Cache Providers`

`$3`

`$3`

`$3`

`Auth Providers`

`$3`

`OAuth Providers`

`$3`

`$3`

`$3`

`Audit Sinks`

`$3`

`$3`

`OpenTelemetry Metrics`

`Usage in Server`

`Cache Provider Interface`

`Auth Provider Interface`

`OAuth Provider Interface`

`Audit Sink Interface`

`Architecture`

`Cache Providers`

`$3`

`$3`

`$3`

`Auth Providers`

`$3`

`OAuth Providers`

`$3`

`$3`

`$3`

`Audit Sinks`

`$3`

`$3`

`OpenTelemetry Metrics`

`Usage in Server`

`Cache Provider Interface`

`Auth Provider Interface`

`OAuth Provider Interface`

`Audit Sink Interface`