RubyGems - mcp-auth - Versions diffs - 0.1.0 - Mend

mcp-auth 0.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (30) hide show

checksums.yaml +7 -0
data/CHANGELOG.md +43 -0
data/CONTRIBUTING.md +107 -0
data/LICENSE.txt +21 -0
data/README.md +869 -0
data/Rakefile +8 -0
data/app/controllers/mcp/auth/oauth_controller.rb +494 -0
data/app/controllers/mcp/auth/well_known_controller.rb +147 -0
data/app/models/mcp/auth/access_token.rb +30 -0
data/app/models/mcp/auth/authorization_code.rb +33 -0
data/app/models/mcp/auth/oauth_client.rb +60 -0
data/app/models/mcp/auth/refresh_token.rb +32 -0
data/app/views/mcp/auth/consent.html.erb +527 -0
data/config/routes.rb +43 -0
data/lib/generators/mcp/auth/install_generator.rb +80 -0
data/lib/generators/mcp/auth/templates/README +114 -0
data/lib/generators/mcp/auth/templates/create_access_tokens.rb.erb +23 -0
data/lib/generators/mcp/auth/templates/create_authorization_codes.rb.erb +26 -0
data/lib/generators/mcp/auth/templates/create_oauth_clients.rb.erb +22 -0
data/lib/generators/mcp/auth/templates/create_refresh_tokens.rb.erb +22 -0
data/lib/generators/mcp/auth/templates/initializer.rb +199 -0
data/lib/generators/mcp/auth/templates/views/consent.html.erb +527 -0
data/lib/mcp/auth/engine.rb +32 -0
data/lib/mcp/auth/scope_registry.rb +113 -0
data/lib/mcp/auth/services/authorization_service.rb +102 -0
data/lib/mcp/auth/services/token_service.rb +230 -0
data/lib/mcp/auth/version.rb +7 -0
data/lib/mcp/auth.rb +109 -0
data/lib/tasks/mcp_auth_tasks.rake +89 -0
metadata +254 -0

checksums.yaml ADDED Viewed

@@ -0,0 +1,7 @@
+---
+SHA256:
+  metadata.gz: 2f3afa0eeb6e176bc47801df4caf7b5298646f86c53c2607b2ac28781abe1f83
+  data.tar.gz: 0bbb349fcb1ac5b8ad142946f742a1e75bb9ebdcf11f041f2c9eaf081b8b9d5f
+SHA512:
+  metadata.gz: b51073154b563e332913f9a08773acd618858b9a6e067ddb4145ddc73a2a5da86c830c93b75a87fc496e6c7e35ac8e064f18cd3fbabec8920fb3f17dea5a8545
+  data.tar.gz: 2f003c85cfa923ea611550c0d2c0f7a86b7c8c7e98ec1d64d2de2c25e50a295b1577209ef3cc500f0168c53135de56763580c94e946d9a6e31c16c72f77f283d

data/CHANGELOG.md ADDED Viewed

@@ -0,0 +1,43 @@
+# Changelog
+All notable changes to this project will be documented in this file.
+The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/),
+and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
+## [Unreleased]
+## [0.1.0] - 2025-01-10
+### Added
+- Initial release of MCP Auth gem
+- OAuth 2.1 authorization flow implementation
+- PKCE support (RFC 7636) with S256 method requirement
+- Dynamic Client Registration (RFC 7591)
+- Token Revocation (RFC 7009)
+- Token Introspection (RFC 7662)
+- Authorization Server Metadata (RFC 8414)
+- Protected Resource Metadata (RFC 9728)
+- Resource Indicators support (RFC 8707) for token audience binding
+- OpenID Connect Discovery support
+- Automatic middleware for protecting `/mcp/*` routes
+- JWT access tokens with proper audience validation
+- Refresh token rotation for enhanced security
+- Database-backed token storage for revocation support
+- Customizable user data fetching
+- Rake tasks for token cleanup and management
+- Beautiful consent screen UI
+- Comprehensive test suite
+- Full documentation and examples
+### Security
+- HTTPS enforcement for production environments
+- Secure token generation using SecureRandom
+- Constant-time string comparison for PKCE validation
+- Short-lived access tokens (1 hour default)
+- Automatic refresh token rotation
+- Token audience validation to prevent confused deputy attacks
+- WWW-Authenticate header with resource metadata on 401 responses
+[Unreleased]: https://github.com/SerhiiBorozenets/mcp-auth/compare/v0.1.0...HEAD
+[0.1.0]: https://github.com/SerhiiBorozenets/mcp-auth/releases/tag/v0.1.0

data/CONTRIBUTING.md ADDED Viewed

@@ -0,0 +1,107 @@
+# Contributing to MCP Auth
+Thank you for your interest in contributing to MCP Auth! This document provides guidelines and instructions for contributing.
+## Code of Conduct
+Be respectful and inclusive. We're all here to build great software together.
+## How to Contribute
+### Reporting Bugs
+Before creating bug reports, please check existing issues to avoid duplicates. When creating a bug report, include:
+- Clear, descriptive title
+- Steps to reproduce the issue
+- Expected behavior
+- Actual behavior
+- Ruby and Rails versions
+- Any relevant logs or error messages
+### Suggesting Enhancements
+Enhancement suggestions are tracked as GitHub issues. When creating an enhancement suggestion, include:
+- Clear, descriptive title
+- Detailed description of the proposed functionality
+- Explanation of why this enhancement would be useful
+- Possible implementation approach (optional)
+### Pull Requests
+1. Fork the repository
+2. Create a new branch (`git checkout -b feature/amazing-feature`)
+3. Make your changes
+4. Add tests for your changes
+5. Ensure all tests pass (`bundle exec rspec`)
+6. Run RuboCop (`bundle exec rubocop`)
+7. Commit your changes (`git commit -m 'Add amazing feature'`)
+8. Push to the branch (`git push origin feature/amazing-feature`)
+9. Open a Pull Request
+#### Pull Request Guidelines
+- Follow the existing code style
+- Write clear, descriptive commit messages
+- Include tests for new functionality
+- Update documentation as needed
+- Keep PRs focused on a single feature or bug fix
+- Ensure CI passes before requesting review
+## Development Setup
+1. Clone the repository:
+```bash
+git clone https://github.com/SerhiiBorozenets/mcp-auth.git
+cd mcp-auth
+```
+2. Install dependencies:
+```bash
+bundle install
+```
+3. Run tests:
+```bash
+bundle exec rspec
+```
+4. Run linter:
+```bash
+bundle exec rubocop
+```
+## Testing
+- Write tests for all new features and bug fixes
+- Maintain or improve code coverage
+- Use RSpec for testing
+- Follow existing test patterns
+## Code Style
+- Follow Ruby Style Guide
+- Use RuboCop for linting
+- Keep methods small and focused
+- Write descriptive variable and method names
+- Add comments for complex logic
+## Documentation
+- Update README.md for user-facing changes
+- Add YARD documentation for public APIs
+- Update CHANGELOG.md following Keep a Changelog format
+- Include examples for new features
+## Security
+If you discover a security vulnerability, please email [security@example.com] instead of creating a public issue. We'll work with you to address it promptly.
+## License
+By contributing, you agree that your contributions will be licensed under the MIT License.
+## Questions?
+Feel free to open an issue for any questions about contributing!

data/LICENSE.txt ADDED Viewed

@@ -0,0 +1,21 @@
+The MIT License (MIT)
+Copyright (c) 2025 [Your Name]
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+The above copyright notice and this permission notice shall be included in
+all copies or substantial portions of the Software.
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
+THE SOFTWARE.