@tiangong-lca/mcp-server 0.0.4 → 0.0.6

package/README.md

@@ -32,17 +32,17 @@ npx -y supergateway \
 
 ```bash
 # Build MCP server image using Dockerfile (optional)
-docker build -t linancn/tiangong-lca-mcp-server:0.0.1 .
+docker build -t linancn/tiangong-lca-mcp-server:0.0.5 .
 
 # Pull MCP server image
-docker pull linancn/tiangong-lca-mcp-server:0.0.1
+docker pull linancn/tiangong-lca-mcp-server:0.0.5
 
 # Start MCP server using Docker
 docker run -d \
     --name tiangong-lca-mcp-server \
-    --publish 3001:80 \
+    --publish 9278:9278 \
     --env-file .env \
-    linancn/tiangong-lca-mcp-server:0.0.1
+    linancn/tiangong-lca-mcp-server:0.0.5
 ```
 
 ## Development
@@ -90,7 +90,7 @@ npm install -g supergateway
 # Launch the SSE Server (If the parameter --baseUrl is configured, it should be set to a valid IP address or domain name)
 npx dotenv -e .env -- \
 npx -y supergateway \
-    --stdio "npx -y -p tiangong-lca-mcp-server-0.0.3.tgz tiangong-lca-mcp-stdio" \
+    --stdio "npx -y -p tiangong-lca-mcp-server-0.0.5.tgz tiangong-lca-mcp-stdio" \
     --port 3001 \
     --ssePath /sse \
     --messagePath /message

package/dist/src/_shared/auth_middleware.js

@@ -0,0 +1,74 @@
+import { createClient } from '@supabase/supabase-js';
+import { Redis } from '@upstash/redis';
+import decodeApiKey from './decode_api_key.js';
+const supabase_base_url = process.env.SUPABASE_BASE_URL ?? '';
+const supabase_anon_key = process.env.SUPABASE_ANON_KEY ?? '';
+const supabase = createClient(supabase_base_url, supabase_anon_key);
+const redis_url = process.env.UPSTASH_REDIS_URL ?? '';
+const redis_token = process.env.UPSTASH_REDIS_TOKEN ?? '';
+const redis = new Redis({
+    url: redis_url,
+    token: redis_token,
+});
+export async function authenticateRequest(bearerKey) {
+    const credentials = decodeApiKey(bearerKey);
+    if (credentials) {
+        const { email = '', password = '' } = credentials;
+        const userIdFromRedis = await redis.get('lca_' + email);
+        if (!userIdFromRedis) {
+            const { data, error } = await supabase.auth.signInWithPassword({
+                email: email,
+                password: password,
+            });
+            console.error(email, password, data, error);
+            if (error) {
+                return {
+                    isAuthenticated: false,
+                    response: 'Unauthorized',
+                };
+            }
+            if (data.user.role !== 'authenticated') {
+                return {
+                    isAuthenticated: false,
+                    response: 'You are not an authenticated user.',
+                };
+            }
+            else {
+                await redis.setex('lca_' + email, 3600, data.user.id);
+                return {
+                    isAuthenticated: true,
+                    response: data.user.id,
+                };
+            }
+        }
+        return {
+            isAuthenticated: true,
+            response: String(userIdFromRedis),
+        };
+    }
+    const { data: authData } = await supabase.auth.getUser(bearerKey);
+    if (authData.user?.role === 'authenticated') {
+        return {
+            isAuthenticated: true,
+            response: authData.user?.id,
+        };
+    }
+    if (!authData || !authData.user) {
+        return {
+            isAuthenticated: false,
+            response: 'User Not Found',
+        };
+    }
+    else {
+        if (authData.user.role !== 'authenticated') {
+            return {
+                isAuthenticated: false,
+                response: 'Forbidden',
+            };
+        }
+    }
+    return {
+        isAuthenticated: true,
+        response: authData.user.id,
+    };
+}

package/dist/src/_shared/config.js

@@ -1,4 +1,4 @@
-export const base_url = process.env.BASE_URL ?? '';
+export const supabase_base_url = process.env.SUPABASE_BASE_URL ?? '';
 export const supabase_anon_key = process.env.SUPABASE_ANON_KEY ?? '';
 export const x_api_key = process.env.X_API_KEY ?? '';
 export const x_region = process.env.X_REGION ?? '';

package/dist/src/_shared/decode_api_key.js

@@ -0,0 +1,16 @@
+function decodeApiKey(apiKey) {
+    if (!apiKey)
+        return null;
+    try {
+        const jsonString = atob(apiKey);
+        const credentials = JSON.parse(jsonString);
+        if (!credentials.email || !credentials.password) {
+            return null;
+        }
+        return credentials;
+    }
+    catch (_error) {
+        return null;
+    }
+}
+export default decodeApiKey;

package/dist/src/_shared/init_server.js

@@ -5,19 +5,19 @@ import { regOpenLcaLciaTool } from '../tools/openlca_ipc_lcia.js';
 import { regOpenLcaListLCIAMethodsTool } from '../tools/openlca_ipc_lcia_methods_list.js';
 import { regOpenLcaListSystemProcessTool } from '../tools/openlca_ipc_process_list.js';
 import { regProcessSearchTool } from '../tools/process_hybrid_search.js';
-export function initializeServer() {
+export function initializeServer(bearerKey) {
     const server = new McpServer({
         name: 'TianGong-MCP-Server',
         version: '1.0.0',
     });
-    regFlowSearchTool(server);
-    regProcessSearchTool(server);
+    regFlowSearchTool(server, bearerKey);
+    regProcessSearchTool(server, bearerKey);
     regBomCalculationTool(server);
     regOpenLcaLciaTool(server);
     regOpenLcaListSystemProcessTool(server);
     regOpenLcaListLCIAMethodsTool(server);
     return server;
 }
-export function getServer() {
-    return initializeServer();
+export function getServer(bearerKey) {
+    return initializeServer(bearerKey);
 }