crowdsec-local-mcp 0.0.2__py3-none-any.whl

crowdsec_local_mcp/__init__.py

@@ -0,0 +1,5 @@
+"""CrowdSec MCP package."""
+
+from .mcp_core import main
+
+__all__ = ["main"]

crowdsec_local_mcp/__main__.py

@@ -0,0 +1,24 @@
+#!/usr/bin/env python3
+
+# Use `uv run --project . <command>` to run this module directly for testing.
+
+import asyncio
+
+from .mcp_core import LOGGER, main
+
+# Import modules for their registration side effects.
+from . import mcp_waf  # noqa: F401
+
+try:
+    from . import mcp_scenarios  # noqa: F401
+except ModuleNotFoundError:
+    LOGGER.warning("Scenario module not available; scenario tools disabled")
+
+
+def run() -> None:
+    """Entry-point used by console scripts."""
+    asyncio.run(main())
+
+
+if __name__ == "__main__":
+    run()

crowdsec_local_mcp/compose/waf-test/.gitignore

@@ -0,0 +1,3 @@
+# Generated at runtime by the MCP integration.
+rules/current-rule.yaml
+crowdsec/appsec-configs/mcp-appsec.yaml

crowdsec_local_mcp/compose/waf-test/crowdsec/acquis.d/appsec.yaml

@@ -0,0 +1,8 @@
+# Acquisition file registering the MCP-generated AppSec configuration.
+appsec_configs:
+ - mcp-appsec
+labels:
+  type: appsec
+listen_addr: 0.0.0.0:7422
+source: appsec
+name: myAppSecComponent

crowdsec_local_mcp/compose/waf-test/crowdsec/appsec-configs/mcp-appsec.yaml.template

@@ -0,0 +1,8 @@
+name: mcp-appsec
+default_remediation: ban
+inband_rules:
+  # Keep the CrowdSec base config to ensure essential protections remain active.
+  - crowdsecurity/base-config
+  # The MCP tooling copies the user rule into the custom directory as current-rule.yaml
+  ## XXX FIXME : make this a variable :)
+  - __PLACEHOLDER_FOR_USER_RULE__

crowdsec_local_mcp/compose/waf-test/crowdsec/init-bouncer.sh

@@ -0,0 +1,29 @@
+#!/bin/bash
+set -euo pipefail
+
+API_KEY="mcp-nginx-bouncer-test-key"
+BOUNCER_NAME="mcp-nginx-bouncer"
+
+/bin/bash /docker_start.sh "$@" &
+PID=$!
+trap 'kill "$PID" 2>/dev/null || true' EXIT
+
+for _ in $(seq 1 90); do
+    if cscli lapi status >/dev/null 2>&1; then
+        break
+    fi
+    sleep 2;
+done
+
+if ! cscli lapi status >/dev/null 2>&1; then
+    echo "CrowdSec LAPI did not become ready in time" >&2
+    wait "$PID"
+    exit 1
+fi
+
+cscli bouncers delete "$BOUNCER_NAME" >/dev/null 2>&1 || true
+cscli bouncers add "$BOUNCER_NAME" -k "$API_KEY"
+
+trap - EXIT
+wait "$PID"
+exit $?

crowdsec_local_mcp/compose/waf-test/docker-compose.yml

@@ -0,0 +1,68 @@
+version: "3.9"
+
+services:
+  crowdsec:
+    image: crowdsecurity/crowdsec:latest
+    hostname: crowdsec
+    container_name: crowdsec-appsec
+    restart: "no"
+    entrypoint:
+      - /bin/bash
+      - /usr/local/bin/init-bouncer.sh
+    environment:
+      # Ensure the local API stays accessible for the nginx bouncer.
+      - DISABLE_LOCAL_API=0
+      - DISABLE_ONLINE_API=1
+      # Turn on AppSec mode inside the CrowdSec container.
+      - ENABLE_APPSEC=1
+    volumes:
+      # Persist CrowdSec data (buckets, alerts, etc.) between restarts.
+      - crowdsec-data:/var/lib/crowdsec/data
+      # Allow templated acquisition and AppSec config overrides without replacing the whole /etc/crowdsec tree.
+      - ./crowdsec/acquis.d/appsec.yaml:/etc/crowdsec/acquis.d/appsec-mcp.yaml:ro
+      - ./crowdsec/appsec-configs/mcp-appsec.yaml:/etc/crowdsec/appsec-configs/mcp-appsec.yaml:ro
+      - ./crowdsec/init-bouncer.sh:/usr/local/bin/init-bouncer.sh:ro
+      # The MCP tooling will drop the user-provided rule in this folder as current-rule.yaml
+      - ./rules:/etc/crowdsec/appsec-rules/custom
+    ports:
+      - "18080:8080" # LAPI (use non-default host port to avoid conflicts)
+      - "17422:7422" # AppSec Live mode (non-default host port)
+    networks:
+      - waf-net
+
+  nginx:
+    build:
+      context: ./nginx
+    container_name: nginx-appsec
+    restart: "no"
+    depends_on:
+      - crowdsec
+      - backend
+    ports:
+      - "8081:80"
+    command:
+      - openresty
+      - -g
+      - 'daemon off;'
+    volumes:
+      - ./nginx/nginx.conf:/usr/local/openresty/nginx/conf/nginx.conf:ro
+      # Site config enabling the CrowdSec module and proxying to the backend.
+      - ./nginx/site-enabled:/usr/local/openresty/nginx/conf/site-enabled:ro
+      # Override the bouncer configuration shipped in the image with the harness version.
+      - ./nginx/crowdsec/crowdsec-openresty-bouncer.conf:/etc/crowdsec/bouncers/crowdsec-openresty-bouncer.conf:ro
+    networks:
+      - waf-net
+
+  backend:
+    image: nginxdemos/hello:latest
+    container_name: app-backend
+    restart: unless-stopped
+    networks:
+      - waf-net
+
+volumes:
+  crowdsec-data:
+
+networks:
+  waf-net:
+    driver: bridge

crowdsec_local_mcp/compose/waf-test/nginx/Dockerfile

@@ -0,0 +1,67 @@
+
+FROM ubuntu:24.04
+
+# Install dependencies
+RUN apt-get update && apt-get install -y \
+    git \
+    make \
+    software-properties-common \
+    wget \
+    gnupg \
+    ca-certificates \
+    gettext \
+    curl
+
+RUN wget -O - https://openresty.org/package/pubkey.gpg | apt-key add -
+RUN echo "deb http://openresty.org/package/ubuntu $(lsb_release -sc) main"| tee /etc/apt/sources.list.d/openresty.list
+RUN curl -s https://install.crowdsec.net |  bash
+
+RUN apt update
+
+RUN apt install -y openresty openresty-opm gettext-base
+
+RUN apt install -y crowdsec-openresty-bouncer
+
+
+
+EXPOSE 80
+
+
+# # Install the bouncer
+# COPY build.sh /build.sh
+# COPY start.sh /start.sh
+
+# RUN chmod +x /build.sh && /build.sh
+# RUN chmod +x /start.sh
+
+# # Set the script as the entrypoint
+# ENTRYPOINT ["/start.sh"]
+
+
+
+# FROM debian:bookworm
+
+# ENV DEBIAN_FRONTEND=noninteractive
+
+# # Install nginx with Lua module support and prerequisites for the CrowdSec nginx bouncer.
+# RUN set -eux; \
+#     apt-get update; \
+#     apt-get install -y --no-install-recommends \
+#         ca-certificates \
+#         curl \
+#         gnupg2 \
+#         iproute2 \
+#         libnginx-mod-http-lua \
+#         lsb-release \
+#         nginx \
+#         procps; \
+#     curl -s https://packagecloud.io/install/repositories/crowdsec/crowdsec/script.deb.sh | bash; \
+#     apt-get install -y --no-install-recommends crowdsec-nginx-bouncer; \
+#     rm -rf /var/lib/apt/lists/*
+
+# # Prepare directories that will receive bind mounts at runtime.
+# RUN mkdir -p /etc/nginx/conf.d /etc/nginx/crowdsec
+
+# EXPOSE 80
+
+# CMD ["nginx", "-g", "daemon off;"]

crowdsec_local_mcp/compose/waf-test/nginx/crowdsec/crowdsec-openresty-bouncer.conf

@@ -0,0 +1,25 @@
+API_URL=http://crowdsec:8080
+API_KEY=mcp-nginx-bouncer-test-key
+BOUNCING_ON_TYPE=all
+FALLBACK_REMEDIATION=ban
+MODE=stream
+REQUEST_TIMEOUT=1000
+EXCLUDE_LOCATION=
+ENABLE_INTERNAL=false
+CACHE_EXPIRATION=1
+UPDATE_FREQUENCY=10
+BAN_TEMPLATE_PATH=/var/lib/crowdsec/lua/templates/ban.html
+REDIRECT_LOCATION=
+RET_CODE=
+CAPTCHA_PROVIDER=
+SECRET_KEY=
+SITE_KEY=
+CAPTCHA_TEMPLATE_PATH=/var/lib/crowdsec/lua/templates/captcha.html
+CAPTCHA_EXPIRATION=3600
+APPSEC_URL=http://crowdsec:7422
+APPSEC_FAILURE_ACTION=passthrough
+APPSEC_CONNECT_TIMEOUT=100
+APPSEC_SEND_TIMEOUT=100
+APPSEC_PROCESS_TIMEOUT=1000
+ALWAYS_SEND_TO_APPSEC=false
+SSL_VERIFY=true

crowdsec_local_mcp/compose/waf-test/nginx/nginx.conf

@@ -0,0 +1,25 @@
+
+worker_processes  auto;
+
+error_log  /dev/stderr info;
+pid        /tmp/nginx.pid;
+
+
+events {
+    worker_connections 1024;
+}
+
+http {
+    resolver 127.0.0.11;
+
+    include       /usr/local/openresty/nginx/conf/mime.types;
+    default_type  application/octet-stream;
+
+    sendfile        on;
+    keepalive_timeout  65;
+
+    access_log /dev/stdout;
+
+    include /usr/local/openresty/nginx/conf/conf.d/*.conf;
+    include /usr/local/openresty/nginx/conf/site-enabled/*.conf;
+}

crowdsec_local_mcp/compose/waf-test/nginx/site-enabled/default-site.conf

@@ -0,0 +1,15 @@
+# Auto-generated by MCP test harness. Route requests through AppSec and the CrowdSec bouncer.
+upstream backend_app {
+    server backend:80;
+}
+
+server {
+    listen 80;
+    server_name _;
+
+    location / {
+        proxy_pass http://backend_app;
+        proxy_set_header Host $host;
+        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
+    }
+}

crowdsec_local_mcp/compose/waf-test/rules/base-config.yaml

@@ -0,0 +1,11 @@
+name: crowdsecurity/base-config
+#### This file is intended to provide a basic configuration for coraza:
+#### - Set the body processors based on the content-type
+
+seclang_rules:
+ - Secrule REQUEST_HEADERS:Content-Type "@rx ^application/x-www-form-urlencoded" "id:100,phase:1,pass,nolog,noauditlog,ctl:requestBodyProcessor=URLENCODED"
+ - Secrule REQUEST_HEADERS:Content-Type "@rx ^multipart/form-data" "id:101,phase:1,pass,nolog,noauditlog,ctl:requestBodyProcessor=MULTIPART"
+ - Secrule REQUEST_HEADERS:Content-Type "@rx ^application/xml" "id:102,phase:1,pass,nolog,noauditlog,ctl:requestBodyProcessor=XML"
+ - Secrule REQUEST_HEADERS:Content-Type "@rx ^application/json" "id:103,phase:1,pass,nolog,noauditlog,ctl:requestBodyProcessor=JSON"
+ - Secrule REQUEST_HEADERS:Content-Type "@rx ^text/xml" "id:104,phase:1,pass,nolog,noauditlog,ctl:requestBodyProcessor=XML"
+ - SecRule REQBODY_PROCESSOR "!@rx (?:URLENCODED|MULTIPART|XML|JSON)" "id:105,phase:1,pass,nolog,noauditlog,ctl:requestBodyProcessor=RAW" #Use our custom RAW body processor, just to have REQUEST_BODY set

crowdsec_local_mcp/mcp_core.py

@@ -0,0 +1,151 @@
+import asyncio
+import logging
+import tempfile
+from collections import OrderedDict
+from pathlib import Path
+from typing import Any, Callable, Dict, List, Optional
+
+import mcp.server.stdio
+import mcp.types as types
+from mcp.server import NotificationOptions, Server
+from mcp.server.models import InitializationOptions
+
+SCRIPT_DIR = Path(__file__).parent
+PROMPTS_DIR = SCRIPT_DIR / "prompts"
+LOG_FILE_PATH = Path(tempfile.gettempdir()) / "crowdsec-mcp.log"
+
+
+def _configure_logger() -> logging.Logger:
+    """Configure and return the module-level logger."""
+    LOG_FILE_PATH.parent.mkdir(parents=True, exist_ok=True)
+
+    logger = logging.getLogger("crowdsec-mcp")
+    if logger.handlers:
+        return logger
+
+    logger.setLevel(logging.INFO)
+    handler = logging.FileHandler(LOG_FILE_PATH, encoding="utf-8")
+    formatter = logging.Formatter(
+        "%(asctime)s [%(levelname)s] %(name)s: %(message)s"
+    )
+    handler.setFormatter(formatter)
+    logger.addHandler(handler)
+    logger.propagate = False
+    return logger
+
+
+LOGGER = _configure_logger()
+server = Server("crowdsec-prompt-server")
+
+ToolHandler = Callable[[Optional[Dict[str, Any]]], List[types.TextContent]]
+ResourceReader = Callable[[], str]
+
+
+class MCPRegistry:
+    """Central registry for tool and resource integrations."""
+
+    def __init__(self) -> None:
+        self._tool_handlers: Dict[str, ToolHandler] = {}
+        self._tools: "OrderedDict[str, types.Tool]" = OrderedDict()
+        self._resources: "OrderedDict[str, types.Resource]" = OrderedDict()
+        self._resource_readers: Dict[str, ResourceReader] = {}
+
+    def register_tools(
+        self,
+        handlers: Dict[str, ToolHandler],
+        tool_definitions: List[types.Tool],
+    ) -> None:
+        for name, handler in handlers.items():
+            if name in self._tool_handlers:
+                raise ValueError(f"Tool handler already registered for '{name}'")
+            self._tool_handlers[name] = handler
+
+        for tool in tool_definitions:
+            if tool.name in self._tools:
+                raise ValueError(f"Tool definition already registered for '{tool.name}'")
+            self._tools[tool.name] = tool
+
+    def register_resources(
+        self,
+        resources: List[types.Resource],
+        readers: Dict[str, ResourceReader],
+    ) -> None:
+        for resource in resources:
+            if resource.uri in self._resources:
+                raise ValueError(f"Resource already registered for '{resource.uri}'")
+            self._resources[resource.uri] = resource
+
+        for uri, reader in readers.items():
+            if uri in self._resource_readers:
+                raise ValueError(f"Resource reader already registered for '{uri}'")
+            self._resource_readers[uri] = reader
+
+    @property
+    def tools(self) -> List[types.Tool]:
+        return list(self._tools.values())
+
+    @property
+    def resources(self) -> List[types.Resource]:
+        return list(self._resources.values())
+
+    def get_tool_handler(self, name: str) -> ToolHandler:
+        try:
+            return self._tool_handlers[name]
+        except KeyError as exc:
+            raise ValueError(f"Unknown tool: {name}") from exc
+
+    def get_resource_reader(self, uri: str) -> ResourceReader:
+        try:
+            return self._resource_readers[uri]
+        except KeyError as exc:
+            raise ValueError(f"Unknown resource: {uri}") from exc
+
+
+REGISTRY = MCPRegistry()
+
+
+@server.list_tools()
+async def handle_list_tools() -> List[types.Tool]:
+    LOGGER.info("Listing available tools")
+    return REGISTRY.tools
+
+
+@server.call_tool()
+async def handle_call_tool(
+    name: str, arguments: Optional[Dict[str, Any]]
+) -> List[types.TextContent]:
+    LOGGER.info("handle_call_tool invoked for tool '%s'", name)
+    handler = REGISTRY.get_tool_handler(name)
+    return handler(arguments)
+
+
+@server.list_resources()
+async def handle_list_resources() -> List[types.Resource]:
+    LOGGER.info("Listing available resources")
+    return REGISTRY.resources
+
+
+@server.read_resource()
+async def handle_read_resource(uri: str) -> str:
+    LOGGER.info("Reading resource content for %s", uri)
+    reader = REGISTRY.get_resource_reader(uri)
+    return reader()
+
+
+async def main() -> None:
+    """Main entry point for the MCP server."""
+    LOGGER.info("Starting MCP stdio server")
+    async with mcp.server.stdio.stdio_server() as (read_stream, write_stream):
+        await server.run(
+            read_stream,
+            write_stream,
+            InitializationOptions(
+                server_name="crowdsec-prompt-server",
+                server_version="0.1.0",
+                capabilities=server.get_capabilities(
+                    notification_options=NotificationOptions(),
+                    experimental_capabilities={},
+                ),
+            ),
+        )
+    LOGGER.info("MCP stdio server stopped")