chore: load the systemCA and check for FIPS, help and version

For help we are refering to the README.md, if we want something more
fancy we porobably want to have better documentation generation so we
don't maintain two files (here and the README.md)

Author: kmruiz

src/common/config.ts

@@ -66,7 +66,6 @@ const OPTIONS = {
         "tlsAllowInvalidCertificates",
         "tlsAllowInvalidHostnames",
         "tlsFIPSMode",
-        "tlsUseSystemCA",
         "version",
     ],
     array: ["disabledTools", "loggers"],

src/index.ts

@@ -2,10 +2,19 @@
 
 import { ConsoleLogger, LogId } from "./common/logger.js";
 import { config } from "./common/config.js";
+import crypto from "crypto";
+import { packageInfo } from "./common/packageInfo.js";
 import { StdioRunner } from "./transports/stdio.js";
 import { StreamableHttpRunner } from "./transports/streamableHttp.js";
+import { systemCA } from "@mongodb-js/devtools-proxy-support";
 
 async function main(): Promise<void> {
+    systemCA().catch(() => undefined); // load system CA asynchronously as in mongosh
+
+    assertFIPSMode();
+    assertHelpMode();
+    assertVersionMode();
+
     const transportRunner = config.transport === "stdio" ? new StdioRunner(config) : new StreamableHttpRunner(config);
 
     const shutdown = (): void => {
@@ -78,3 +87,40 @@ main().catch((error: unknown) => {
     });
     process.exit(1);
 });
+
+function assertFIPSMode() {
+    let fipsError: Error | undefined = undefined;
+    if (config.tlsFIPSMode) {
+        if (!fipsError && !crypto.getFips()) {
+            fipsError = new Error("FIPS mode not enabled despite requested.");
+        }
+    }
+
+    if (fipsError) {
+        if (process.config.variables.node_shared_openssl) {
+            console.error(
+                "Could not enable FIPS mode. Please ensure that your system OpenSSL installation supports FIPS."
+            );
+        } else {
+            console.error("Could not enable FIPS mode. This installation does not appear to support FIPS.");
+        }
+        console.error("Error details:");
+        console.error(fipsError);
+        process.exit(1);
+    }
+}
+
+function assertHelpMode() {
+    if (!!config.help) {
+        console.log("For usage information refer to the README.md:");
+        console.log("https://github.com/mongodb-js/mongodb-mcp-server?tab=readme-ov-file#quick-start");
+        process.exit(0);
+    }
+}
+
+function assertVersionMode() {
+    if (!!config.version) {
+        console.log(packageInfo.version);
+        process.exit(0);
+    }
+}

tests/unit/common/config.test.ts

@@ -1,7 +1,7 @@
 import { describe, it, expect } from "vitest";
 import { setupUserConfig, UserConfig } from "../../../src/common/config.js";
 
-describe.only("config", () => {
+describe("config", () => {
     describe("env var parsing", () => {
         describe("string cases", () => {
             const testCases = {
@@ -227,7 +227,7 @@ describe.only("config", () => {
                     });
 
                     for (const [key, value] of Object.entries(expected)) {
-                        expect(actual[key as keyof UserConfig]).toBe(value as unknown);
+                        expect(actual[key as keyof UserConfig]).toBe(value);
                     }
                 });
             }
@@ -311,10 +311,6 @@ describe.only("config", () => {
                     cli: ["--tlsFIPSMode"],
                     expected: { tlsFIPSMode: true },
                 },
-                {
-                    cli: ["--tlsUseSystemCA"],
-                    expected: { tlsUseSystemCA: true },
-                },
                 {
                     cli: ["--version"],
                     expected: { version: true },
@@ -330,7 +326,7 @@ describe.only("config", () => {
                     });
 
                     for (const [key, value] of Object.entries(expected)) {
-                        expect(actual[key as keyof UserConfig]).toBe(value as unknown);
+                        expect(actual[key as keyof UserConfig]).toBe(value);
                     }
                 });
             }
@@ -357,7 +353,7 @@ describe.only("config", () => {
                     });
 
                     for (const [key, value] of Object.entries(expected)) {
-                        expect(actual[key as keyof UserConfig]).toEqual(value as unknown);
+                        expect(actual[key as keyof UserConfig]).toEqual(value);
                     }
                 });
             }