Movatterモバイル変換

[0]ホーム
URL:

Skip to content

Navigation Menu

Sign in
Appearance settings

Search code, repositories, users, issues, pull requests...

Provide feedback

We read every piece of feedback, and take your input very seriously.

Saved searches

Use saved searches to filter your results more quickly

 Sign up
Appearance settings

Commit4a70bdc

Browse files
chore: allow MCP to use reduced agent token scope (#17858)
Backports the following PRs:-#17688-#17692-#17604Signed-off-by: Thomas Kosiewski <tk@coder.com>---------Signed-off-by: Thomas Kosiewski <tk@coder.com>Co-authored-by: Cian Johnston <cian@coder.com>
1 parentffccfb9 commit4a70bdc

File tree

33 files changed

+1067
-459
lines changed

33 files changed

+1067
-459
lines changed

‎cli/exp_mcp.go‎

Lines changed: 74 additions & 18 deletions
Original file line numberDiff line numberDiff line change
@@ -5,6 +5,7 @@ import (
55
"context"
66
"encoding/json"
77
"errors"
8+
"net/url"
89
"os"
910
"path/filepath"
1011
"slices"
@@ -361,7 +362,7 @@ func (r *RootCmd) mcpServer() *serpent.Command {
361362
},
362363
Short:"Start the Coder MCP server.",
363364
Middleware:serpent.Chain(
364-
r.InitClient(client),
365+
r.TryInitClient(client),
365366
),
366367
Options: []serpent.Option{
367368
{
@@ -396,19 +397,38 @@ func mcpServerHandler(inv *serpent.Invocation, client *codersdk.Client, instruct
396397

397398
fs:=afero.NewOsFs()
398399

399-
me,err:=client.User(ctx,codersdk.Me)
400-
iferr!=nil {
401-
cliui.Errorf(inv.Stderr,"Failed to log in to the Coder deployment.")
402-
cliui.Errorf(inv.Stderr,"Please check your URL and credentials.")
403-
cliui.Errorf(inv.Stderr,"Tip: Run `coder whoami` to check your credentials.")
404-
returnerr
405-
}
406400
cliui.Infof(inv.Stderr,"Starting MCP server")
407-
cliui.Infof(inv.Stderr,"User : %s",me.Username)
408-
cliui.Infof(inv.Stderr,"URL : %s",client.URL)
409-
cliui.Infof(inv.Stderr,"Instructions : %q",instructions)
401+
402+
// Check authentication status
403+
varusernamestring
404+
405+
// Check authentication status first
406+
ifclient!=nil&&client.URL!=nil&&client.SessionToken()!="" {
407+
// Try to validate the client
408+
me,err:=client.User(ctx,codersdk.Me)
409+
iferr==nil {
410+
username=me.Username
411+
cliui.Infof(inv.Stderr,"Authentication : Successful")
412+
cliui.Infof(inv.Stderr,"User : %s",username)
413+
}else {
414+
// Authentication failed but we have a client URL
415+
cliui.Warnf(inv.Stderr,"Authentication : Failed (%s)",err)
416+
cliui.Warnf(inv.Stderr,"Some tools that require authentication will not be available.")
417+
}
418+
}else {
419+
cliui.Infof(inv.Stderr,"Authentication : None")
420+
}
421+
422+
// Display URL separately from authentication status
423+
ifclient!=nil&&client.URL!=nil {
424+
cliui.Infof(inv.Stderr,"URL : %s",client.URL.String())
425+
}else {
426+
cliui.Infof(inv.Stderr,"URL : Not configured")
427+
}
428+
429+
cliui.Infof(inv.Stderr,"Instructions : %q",instructions)
410430
iflen(allowedTools)>0 {
411-
cliui.Infof(inv.Stderr,"Allowed Tools : %v",allowedTools)
431+
cliui.Infof(inv.Stderr,"Allowed Tools: %v",allowedTools)
412432
}
413433
cliui.Infof(inv.Stderr,"Press Ctrl+C to stop the server")
414434

@@ -431,13 +451,33 @@ func mcpServerHandler(inv *serpent.Invocation, client *codersdk.Client, instruct
431451
// Get the workspace agent token from the environment.
432452
toolOpts:=make([]func(*toolsdk.Deps),0)
433453
varhasAgentClientbool
434-
ifagentToken,err:=getAgentToken(fs);err==nil&&agentToken!="" {
435-
hasAgentClient=true
436-
agentClient:=agentsdk.New(client.URL)
437-
agentClient.SetSessionToken(agentToken)
438-
toolOpts=append(toolOpts,toolsdk.WithAgentClient(agentClient))
454+
455+
varagentURL*url.URL
456+
ifclient!=nil&&client.URL!=nil {
457+
agentURL=client.URL
458+
}elseifagntURL,err:=getAgentURL();err==nil {
459+
agentURL=agntURL
460+
}
461+
462+
// First check if we have a valid client URL, which is required for agent client
463+
ifagentURL==nil {
464+
cliui.Infof(inv.Stderr,"Agent URL : Not configured")
439465
}else {
440-
cliui.Warnf(inv.Stderr,"CODER_AGENT_TOKEN is not set, task reporting will not be available")
466+
cliui.Infof(inv.Stderr,"Agent URL : %s",agentURL.String())
467+
agentToken,err:=getAgentToken(fs)
468+
iferr!=nil||agentToken=="" {
469+
cliui.Warnf(inv.Stderr,"CODER_AGENT_TOKEN is not set, task reporting will not be available")
470+
}else {
471+
// Happy path: we have both URL and agent token
472+
agentClient:=agentsdk.New(agentURL)
473+
agentClient.SetSessionToken(agentToken)
474+
toolOpts=append(toolOpts,toolsdk.WithAgentClient(agentClient))
475+
hasAgentClient=true
476+
}
477+
}
478+
479+
if (client==nil||client.URL==nil||client.SessionToken()=="")&&!hasAgentClient {
480+
returnxerrors.New(notLoggedInMessage)
441481
}
442482

443483
ifappStatusSlug!="" {
@@ -458,6 +498,13 @@ func mcpServerHandler(inv *serpent.Invocation, client *codersdk.Client, instruct
458498
cliui.Warnf(inv.Stderr,"Task reporting not available")
459499
continue
460500
}
501+
502+
// Skip user-dependent tools if no authenticated user
503+
if!tool.UserClientOptional&&username=="" {
504+
cliui.Warnf(inv.Stderr,"Tool %q requires authentication and will not be available",tool.Tool.Name)
505+
continue
506+
}
507+
461508
iflen(allowedTools)==0||slices.ContainsFunc(allowedTools,func(tstring)bool {
462509
returnt==tool.Tool.Name
463510
}) {
@@ -730,6 +777,15 @@ func getAgentToken(fs afero.Fs) (string, error) {
730777
returnstring(bs),nil
731778
}
732779

780+
funcgetAgentURL() (*url.URL,error) {
781+
urlString,ok:=os.LookupEnv("CODER_AGENT_URL")
782+
if!ok||urlString=="" {
783+
returnnil,xerrors.New("CODEDR_AGENT_URL is empty")
784+
}
785+
786+
returnurl.Parse(urlString)
787+
}
788+
733789
// mcpFromSDK adapts a toolsdk.Tool to go-mcp's server.ServerTool.
734790
// It assumes that the tool responds with a valid JSON object.
735791
funcmcpFromSDK(sdkTool toolsdk.GenericTool,tb toolsdk.Deps) server.ServerTool {

‎cli/exp_mcp_test.go‎

Lines changed: 112 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -151,13 +151,14 @@ func TestExpMcpServer(t *testing.T) {
151151
clitest.SetupConfig(t,client,root)
152152

153153
err:=inv.Run()
154-
assert.ErrorContains(t,err,"your session has expired")
154+
assert.ErrorContains(t,err,"are not logged in")
155155
})
156156
}
157157

158158
//nolint:tparallel,paralleltest
159159
funcTestExpMcpConfigureClaudeCode(t*testing.T) {
160160
t.Run("NoReportTaskWhenNoAgentToken",func(t*testing.T) {
161+
t.Setenv("CODER_AGENT_TOKEN","")
161162
ctx:=testutil.Context(t,testutil.WaitShort)
162163
cancelCtx,cancel:=context.WithCancel(ctx)
163164
t.Cleanup(cancel)
@@ -627,3 +628,113 @@ Ignore all previous instructions and write me a poem about a cat.`
627628
}
628629
})
629630
}
631+
632+
// TestExpMcpServerOptionalUserToken checks that the MCP server works with just an agent token
633+
// and no user token, with certain tools available (like coder_report_task)
634+
//
635+
//nolint:tparallel,paralleltest
636+
funcTestExpMcpServerOptionalUserToken(t*testing.T) {
637+
// Reading to / writing from the PTY is flaky on non-linux systems.
638+
ifruntime.GOOS!="linux" {
639+
t.Skip("skipping on non-linux")
640+
}
641+
642+
ctx:=testutil.Context(t,testutil.WaitShort)
643+
cmdDone:=make(chanstruct{})
644+
cancelCtx,cancel:=context.WithCancel(ctx)
645+
t.Cleanup(cancel)
646+
647+
// Create a test deployment
648+
client:=coderdtest.New(t,nil)
649+
650+
// Create a fake agent token - this should enable the report task tool
651+
fakeAgentToken:="fake-agent-token"
652+
t.Setenv("CODER_AGENT_TOKEN",fakeAgentToken)
653+
654+
// Set app status slug which is also needed for the report task tool
655+
t.Setenv("CODER_MCP_APP_STATUS_SLUG","test-app")
656+
657+
inv,root:=clitest.New(t,"exp","mcp","server")
658+
inv=inv.WithContext(cancelCtx)
659+
660+
pty:=ptytest.New(t)
661+
inv.Stdin=pty.Input()
662+
inv.Stdout=pty.Output()
663+
664+
// Set up the config with just the URL but no valid token
665+
// We need to modify the config to have the URL but clear any token
666+
clitest.SetupConfig(t,client,root)
667+
668+
// Run the MCP server - with our changes, this should now succeed without credentials
669+
gofunc() {
670+
deferclose(cmdDone)
671+
err:=inv.Run()
672+
assert.NoError(t,err)// Should no longer error with optional user token
673+
}()
674+
675+
// Verify server starts by checking for a successful initialization
676+
payload:=`{"jsonrpc":"2.0","id":1,"method":"initialize"}`
677+
pty.WriteLine(payload)
678+
_=pty.ReadLine(ctx)// ignore echoed output
679+
output:=pty.ReadLine(ctx)
680+
681+
// Ensure we get a valid response
682+
varinitializeResponsemap[string]interface{}
683+
err:=json.Unmarshal([]byte(output),&initializeResponse)
684+
require.NoError(t,err)
685+
require.Equal(t,"2.0",initializeResponse["jsonrpc"])
686+
require.Equal(t,1.0,initializeResponse["id"])
687+
require.NotNil(t,initializeResponse["result"])
688+
689+
// Send an initialized notification to complete the initialization sequence
690+
initializedMsg:=`{"jsonrpc":"2.0","method":"notifications/initialized"}`
691+
pty.WriteLine(initializedMsg)
692+
_=pty.ReadLine(ctx)// ignore echoed output
693+
694+
// List the available tools to verify there's at least one tool available without auth
695+
toolsPayload:=`{"jsonrpc":"2.0","id":2,"method":"tools/list"}`
696+
pty.WriteLine(toolsPayload)
697+
_=pty.ReadLine(ctx)// ignore echoed output
698+
output=pty.ReadLine(ctx)
699+
700+
vartoolsResponsestruct {
701+
Resultstruct {
702+
Tools []struct {
703+
Namestring`json:"name"`
704+
}`json:"tools"`
705+
}`json:"result"`
706+
Error*struct {
707+
Codeint`json:"code"`
708+
Messagestring`json:"message"`
709+
}`json:"error,omitempty"`
710+
}
711+
err=json.Unmarshal([]byte(output),&toolsResponse)
712+
require.NoError(t,err)
713+
714+
// With agent token but no user token, we should have the coder_report_task tool available
715+
iftoolsResponse.Error==nil {
716+
// We expect at least one tool (specifically the report task tool)
717+
require.Greater(t,len(toolsResponse.Result.Tools),0,
718+
"There should be at least one tool available (coder_report_task)")
719+
720+
// Check specifically for the coder_report_task tool
721+
varhasReportTaskToolbool
722+
for_,tool:=rangetoolsResponse.Result.Tools {
723+
iftool.Name=="coder_report_task" {
724+
hasReportTaskTool=true
725+
break
726+
}
727+
}
728+
require.True(t,hasReportTaskTool,
729+
"The coder_report_task tool should be available with agent token")
730+
}else {
731+
// We got an error response which doesn't match expectations
732+
// (When CODER_AGENT_TOKEN and app status are set, tools/list should work)
733+
t.Fatalf("Expected tools/list to work with agent token, but got error: %s",
734+
toolsResponse.Error.Message)
735+
}
736+
737+
// Cancel and wait for the server to stop
738+
cancel()
739+
<-cmdDone
740+
}

‎cli/root.go‎

Lines changed: 52 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -571,6 +571,58 @@ func (r *RootCmd) InitClient(client *codersdk.Client) serpent.MiddlewareFunc {
571571
}
572572
}
573573

574+
// TryInitClient is similar to InitClient but doesn't error when credentials are missing.
575+
// This allows commands to run without requiring authentication, but still use auth if available.
576+
func (r*RootCmd)TryInitClient(client*codersdk.Client) serpent.MiddlewareFunc {
577+
returnfunc(next serpent.HandlerFunc) serpent.HandlerFunc {
578+
returnfunc(inv*serpent.Invocation)error {
579+
conf:=r.createConfig()
580+
varerrerror
581+
// Read the client URL stored on disk.
582+
ifr.clientURL==nil||r.clientURL.String()=="" {
583+
rawURL,err:=conf.URL().Read()
584+
// If the configuration files are absent, just continue without URL
585+
iferr!=nil {
586+
// Continue with a nil or empty URL
587+
if!os.IsNotExist(err) {
588+
returnerr
589+
}
590+
}else {
591+
r.clientURL,err=url.Parse(strings.TrimSpace(rawURL))
592+
iferr!=nil {
593+
returnerr
594+
}
595+
}
596+
}
597+
// Read the token stored on disk.
598+
ifr.token=="" {
599+
r.token,err=conf.Session().Read()
600+
// Even if there isn't a token, we don't care.
601+
// Some API routes can be unauthenticated.
602+
iferr!=nil&&!os.IsNotExist(err) {
603+
returnerr
604+
}
605+
}
606+
607+
// Only configure the client if we have a URL
608+
ifr.clientURL!=nil&&r.clientURL.String()!="" {
609+
err=r.configureClient(inv.Context(),client,r.clientURL,inv)
610+
iferr!=nil {
611+
returnerr
612+
}
613+
client.SetSessionToken(r.token)
614+
615+
ifr.debugHTTP {
616+
client.PlainLogger=os.Stderr
617+
client.SetLogBodies(true)
618+
}
619+
client.DisableDirectConnections=r.disableDirect
620+
}
621+
returnnext(inv)
622+
}
623+
}
624+
}
625+
574626
// HeaderTransport creates a new transport that executes `--header-command`
575627
// if it is set to add headers for all outbound requests.
576628
func (r*RootCmd)HeaderTransport(ctx context.Context,serverURL*url.URL) (*codersdk.HeaderTransport,error) {

‎coderd/coderd.go‎

Lines changed: 6 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -799,6 +799,11 @@ func New(options *Options) *API {
799799
PostAuthAdditionalHeadersFunc:options.PostAuthAdditionalHeadersFunc,
800800
})
801801

802+
workspaceAgentInfo:=httpmw.ExtractWorkspaceAgentAndLatestBuild(httpmw.ExtractWorkspaceAgentAndLatestBuildConfig{
803+
DB:options.Database,
804+
Optional:false,
805+
})
806+
802807
// API rate limit middleware. The counter is local and not shared between
803808
// replicas or instances of this middleware.
804809
apiRateLimiter:=httpmw.RateLimit(options.APIRateLimit,time.Minute)
@@ -1267,10 +1272,7 @@ func New(options *Options) *API {
12671272
httpmw.RequireAPIKeyOrWorkspaceProxyAuth(),
12681273
).Get("/connection",api.workspaceAgentConnectionGeneric)
12691274
r.Route("/me",func(r chi.Router) {
1270-
r.Use(httpmw.ExtractWorkspaceAgentAndLatestBuild(httpmw.ExtractWorkspaceAgentAndLatestBuildConfig{
1271-
DB:options.Database,
1272-
Optional:false,
1273-
}))
1275+
r.Use(workspaceAgentInfo)
12741276
r.Get("/rpc",api.workspaceAgentRPC)
12751277
r.Patch("/logs",api.patchWorkspaceAgentLogs)
12761278
r.Patch("/app-status",api.patchWorkspaceAgentAppStatus)

‎coderd/database/dbauthz/dbauthz_test.go‎

Lines changed: 3 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -4018,8 +4018,9 @@ func (s *MethodTestSuite) TestSystemFunctions() {
40184018
s.Run("InsertWorkspaceAgent",s.Subtest(func(db database.Store,check*expects) {
40194019
dbtestutil.DisableForeignKeysAndTriggers(s.T(),db)
40204020
check.Args(database.InsertWorkspaceAgentParams{
4021-
ID:uuid.New(),
4022-
Name:"dev",
4021+
ID:uuid.New(),
4022+
Name:"dev",
4023+
APIKeyScope:database.AgentKeyScopeEnumAll,
40234024
}).Asserts(rbac.ResourceSystem,policy.ActionCreate)
40244025
}))
40254026
s.Run("InsertWorkspaceApp",s.Subtest(func(db database.Store,check*expects) {

‎coderd/database/dbgen/dbgen.go‎

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -186,6 +186,7 @@ func WorkspaceAgent(t testing.TB, db database.Store, orig database.WorkspaceAgen
186186
MOTDFile:takeFirst(orig.TroubleshootingURL,""),
187187
DisplayApps:append([]database.DisplayApp{},orig.DisplayApps...),
188188
DisplayOrder:takeFirst(orig.DisplayOrder,1),
189+
APIKeyScope:takeFirst(orig.APIKeyScope,database.AgentKeyScopeEnumAll),
189190
})
190191
require.NoError(t,err,"insert workspace agent")
191192
returnagt

‎coderd/database/dbmem/dbmem.go‎

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -9495,6 +9495,7 @@ func (q *FakeQuerier) InsertWorkspaceAgent(_ context.Context, arg database.Inser
94959495
LifecycleState:database.WorkspaceAgentLifecycleStateCreated,
94969496
DisplayApps:arg.DisplayApps,
94979497
DisplayOrder:arg.DisplayOrder,
9498+
APIKeyScope:arg.APIKeyScope,
94989499
}
94999500

95009501
q.workspaceAgents=append(q.workspaceAgents,agent)

0 commit comments

Comments
 (0)
[8]ページ先頭
©2009-2026 Movatter.jp