PyPI - golf-mcp - Versions diffs - 0.1.19__py3-none-any.whl → 0.2.0__py3-none-any.whl - Mend

golf-mcp 0.1.19py3-none-any.whl → 0.2.0py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Potentially problematic release.

This version of golf-mcp might be problematic. Click here for more details.

Files changed (123) hide show

golf/__init__.py +9 -1
golf/_endpoints.py +6 -0
golf/_endpoints_fallback.py +10 -0
golf/auth/__init__.py +188 -84
golf/auth/api_key.py +6 -14
golf/auth/factory.py +333 -0
golf/auth/helpers.py +12 -42
golf/auth/providers.py +396 -0
golf/auth/registry.py +256 -0
golf/cli/branding.py +192 -0
golf/cli/main.py +28 -69
golf/commands/__init__.py +2 -0
golf/commands/build.py +4 -7
golf/commands/init.py +30 -53
golf/commands/run.py +50 -20
golf/core/builder.py +356 -412
golf/core/builder_auth.py +63 -144
golf/core/builder_telemetry.py +26 -3
golf/core/config.py +38 -59
golf/core/parser.py +132 -139
golf/core/platform.py +12 -10
golf/core/telemetry.py +11 -19
golf/core/transformer.py +38 -15
golf/examples/__pycache__/__init__.cpython-311.pyc +0 -0
golf/examples/basic/.coverage +0 -0
golf/examples/basic/.env.example +8 -4
golf/examples/basic/README.md +117 -45
golf/examples/basic/__pycache__/auth.cpython-311.pyc +0 -0
golf/examples/basic/auth.py +76 -0
golf/examples/basic/golf.json +2 -5
golf/examples/basic/htmlcov/.gitignore +2 -0
golf/examples/basic/htmlcov/class_index.html +547 -0
golf/examples/basic/htmlcov/coverage_html_cb_6fb7b396.js +733 -0
golf/examples/basic/htmlcov/favicon_32_cb_58284776.png +0 -0
golf/examples/basic/htmlcov/function_index.html +2091 -0
golf/examples/basic/htmlcov/index.html +349 -0
golf/examples/basic/htmlcov/keybd_closed_cb_ce680311.png +0 -0
golf/examples/basic/htmlcov/status.json +1 -0
golf/examples/basic/htmlcov/style_cb_8e611ae1.css +337 -0
golf/examples/basic/htmlcov/z_1c9a91c0e91c8496___init___py.html +323 -0
golf/examples/basic/htmlcov/z_1c9a91c0e91c8496_api_key_py.html +170 -0
golf/examples/basic/htmlcov/z_1c9a91c0e91c8496_factory_py.html +430 -0
golf/examples/basic/htmlcov/z_1c9a91c0e91c8496_helpers_py.html +288 -0
golf/examples/basic/htmlcov/z_1c9a91c0e91c8496_providers_py.html +493 -0
golf/examples/basic/htmlcov/z_1c9a91c0e91c8496_registry_py.html +353 -0
golf/examples/basic/htmlcov/z_3ec3b3f490dc0950___init___py.html +120 -0
golf/examples/basic/htmlcov/z_3ec3b3f490dc0950_instrumentation_py.html +1535 -0
golf/examples/basic/htmlcov/z_4b8b9dd4ccccc5db___init___py.html +98 -0
golf/examples/basic/htmlcov/z_4b8b9dd4ccccc5db_branding_py.html +289 -0
golf/examples/basic/htmlcov/z_4b8b9dd4ccccc5db_main_py.html +476 -0
golf/examples/basic/htmlcov/z_5a6c4e6bcc86fb2f___init___py.html +97 -0
golf/examples/basic/htmlcov/z_6cadab9ec0df475d___init___py.html +102 -0
golf/examples/basic/htmlcov/z_6cadab9ec0df475d_build_py.html +178 -0
golf/examples/basic/htmlcov/z_6cadab9ec0df475d_init_py.html +387 -0
golf/examples/basic/htmlcov/z_6cadab9ec0df475d_run_py.html +222 -0
golf/examples/basic/htmlcov/z_6fcdee0582ba84e4___init___py.html +106 -0
golf/examples/basic/htmlcov/z_6fcdee0582ba84e4__endpoints_fallback_py.html +107 -0
golf/examples/basic/htmlcov/z_7ba499ed22986217___init___py.html +98 -0
golf/examples/basic/htmlcov/z_7ba499ed22986217_builder_auth_py.html +306 -0
golf/examples/basic/htmlcov/z_7ba499ed22986217_builder_metrics_py.html +329 -0
golf/examples/basic/htmlcov/z_7ba499ed22986217_builder_py.html +1471 -0
golf/examples/basic/htmlcov/z_7ba499ed22986217_builder_telemetry_py.html +186 -0
golf/examples/basic/htmlcov/z_7ba499ed22986217_config_py.html +315 -0
golf/examples/basic/htmlcov/z_7ba499ed22986217_parser_py.html +1149 -0
golf/examples/basic/htmlcov/z_7ba499ed22986217_platform_py.html +279 -0
golf/examples/basic/htmlcov/z_7ba499ed22986217_telemetry_py.html +589 -0
golf/examples/basic/htmlcov/z_7ba499ed22986217_transformer_py.html +286 -0
golf/examples/basic/htmlcov/z_7d7da37693a43688___init___py.html +107 -0
golf/examples/basic/htmlcov/z_7d7da37693a43688_collector_py.html +417 -0
golf/examples/basic/htmlcov/z_7d7da37693a43688_registry_py.html +109 -0
golf/examples/basic/htmlcov/z_abe733142b40ad4e___init___py.html +109 -0
golf/examples/basic/htmlcov/z_abe733142b40ad4e_context_py.html +150 -0
golf/examples/basic/htmlcov/z_abe733142b40ad4e_elicitation_py.html +267 -0
golf/examples/basic/htmlcov/z_abe733142b40ad4e_sampling_py.html +318 -0
golf/examples/basic/prompts/__pycache__/welcome.cpython-311.pyc +0 -0
golf/examples/basic/prompts/welcome.py +3 -5
golf/examples/basic/resources/__pycache__/current_time.cpython-311.pyc +0 -0
golf/examples/basic/resources/__pycache__/info.cpython-311.pyc +0 -0
golf/examples/basic/resources/current_time.py +5 -13
golf/examples/basic/resources/weather/__pycache__/common.cpython-311.pyc +0 -0
golf/examples/basic/resources/weather/__pycache__/current.cpython-311.pyc +0 -0
golf/examples/basic/resources/weather/__pycache__/forecast.cpython-311.pyc +0 -0
golf/examples/basic/resources/weather/city.py +46 -0
golf/examples/basic/resources/weather/common.py +4 -11
golf/examples/basic/resources/weather/current.py +5 -5
golf/examples/basic/resources/weather/forecast.py +5 -5
golf/examples/basic/tools/__pycache__/calculator.cpython-311.pyc +0 -0
golf/examples/basic/tools/calculator.py +94 -0
golf/examples/basic/tools/say/__pycache__/hello.cpython-311.pyc +0 -0
golf/examples/basic/tools/say/hello.py +65 -0
golf/metrics/collector.py +100 -19
golf/telemetry/__init__.py +4 -0
golf/telemetry/instrumentation.py +496 -174
golf/utilities/__init__.py +12 -0
golf/utilities/context.py +53 -0
golf/utilities/elicitation.py +170 -0
golf/utilities/sampling.py +221 -0
{golf_mcp-0.1.19.dist-info → golf_mcp-0.2.0.dist-info}/METADATA +56 -110
golf_mcp-0.2.0.dist-info/RECORD +110 -0
golf/auth/oauth.py +0 -861
golf/auth/provider.py +0 -115
golf/examples/api_key/.env +0 -2
golf/examples/api_key/.env.example +0 -1
golf/examples/api_key/README.md +0 -84
golf/examples/api_key/golf.json +0 -8
golf/examples/api_key/pre_build.py +0 -11
golf/examples/api_key/tools/issues/create.py +0 -93
golf/examples/api_key/tools/issues/list.py +0 -92
golf/examples/api_key/tools/repos/list.py +0 -111
golf/examples/api_key/tools/search/code.py +0 -106
golf/examples/api_key/tools/users/get.py +0 -82
golf/examples/basic/.env +0 -5
golf/examples/basic/pre_build.py +0 -28
golf/examples/basic/tools/github_user.py +0 -65
golf/examples/basic/tools/hello.py +0 -34
golf/examples/basic/tools/payments/charge.py +0 -70
golf/examples/basic/tools/payments/common.py +0 -36
golf/examples/basic/tools/payments/refund.py +0 -61
golf_mcp-0.1.19.dist-info/RECORD +0 -60
{golf_mcp-0.1.19.dist-info → golf_mcp-0.2.0.dist-info}/WHEEL +0 -0
{golf_mcp-0.1.19.dist-info → golf_mcp-0.2.0.dist-info}/entry_points.txt +0 -0
{golf_mcp-0.1.19.dist-info → golf_mcp-0.2.0.dist-info}/licenses/LICENSE +0 -0
{golf_mcp-0.1.19.dist-info → golf_mcp-0.2.0.dist-info}/top_level.txt +0 -0

golf/auth/factory.py ADDED Viewed

@@ -0,0 +1,333 @@
+"""Factory functions for creating FastMCP authentication providers."""
+import os
+from typing import Any
+# Import these at runtime to avoid import errors during Golf installation
+from typing import TYPE_CHECKING
+if TYPE_CHECKING:
+    from fastmcp.server.auth.auth import AuthProvider
+    from fastmcp.server.auth import JWTVerifier, StaticTokenVerifier
+from mcp.server.auth.settings import RevocationOptions
+from .providers import (
+    AuthConfig,
+    JWTAuthConfig,
+    StaticTokenConfig,
+    OAuthServerConfig,
+    RemoteAuthConfig,
+)
+from .registry import (
+    get_provider_registry,
+    create_auth_provider_from_registry,
+)
+def create_auth_provider(config: AuthConfig) -> "AuthProvider":
+    """Create a FastMCP AuthProvider from Golf auth configuration.
+    This function uses the provider registry system to allow extensibility.
+    Built-in providers are automatically registered, and custom providers
+    can be added via the registry system.
+    Args:
+        config: Golf authentication configuration
+    Returns:
+        Configured FastMCP AuthProvider instance
+    Raises:
+        ValueError: If configuration is invalid
+        ImportError: If required dependencies are missing
+        KeyError: If provider type is not registered
+    """
+    try:
+        return create_auth_provider_from_registry(config)
+    except KeyError:
+        # Fall back to legacy dispatch for backward compatibility
+        # This ensures existing code continues to work during transition
+        if config.provider_type == "jwt":
+            return _create_jwt_provider(config)
+        elif config.provider_type == "static":
+            return _create_static_provider(config)
+        elif config.provider_type == "oauth_server":
+            return _create_oauth_server_provider(config)
+        elif config.provider_type == "remote":
+            return _create_remote_provider(config)
+        else:
+            raise ValueError(f"Unknown provider type: {config.provider_type}") from None
+def _create_jwt_provider(config: JWTAuthConfig) -> "JWTVerifier":
+    """Create JWT token verifier from configuration."""
+    # Resolve runtime values from environment variables
+    public_key = config.public_key
+    if config.public_key_env_var:
+        env_value = os.environ.get(config.public_key_env_var)
+        if env_value:
+            public_key = env_value
+    jwks_uri = config.jwks_uri
+    if config.jwks_uri_env_var:
+        env_value = os.environ.get(config.jwks_uri_env_var)
+        if env_value:
+            jwks_uri = env_value
+    issuer = config.issuer
+    if config.issuer_env_var:
+        env_value = os.environ.get(config.issuer_env_var)
+        if env_value:
+            issuer = env_value
+    audience = config.audience
+    if config.audience_env_var:
+        env_value = os.environ.get(config.audience_env_var)
+        if env_value:
+            # Handle both string and comma-separated list
+            if "," in env_value:
+                audience = [s.strip() for s in env_value.split(",")]
+            else:
+                audience = env_value
+    # Validate configuration
+    if not public_key and not jwks_uri:
+        raise ValueError("Either public_key or jwks_uri must be provided for JWT verification")
+    if public_key and jwks_uri:
+        raise ValueError("Provide either public_key or jwks_uri, not both")
+    try:
+        from fastmcp.server.auth import JWTVerifier
+    except ImportError as e:
+        raise ImportError("JWTVerifier not available. Please install fastmcp>=2.11.0") from e
+    return JWTVerifier(
+        public_key=public_key,
+        jwks_uri=jwks_uri,
+        issuer=issuer,
+        audience=audience,
+        algorithm=config.algorithm,
+        required_scopes=config.required_scopes,
+    )
+def _create_static_provider(config: StaticTokenConfig) -> "StaticTokenVerifier":
+    """Create static token verifier from configuration."""
+    if not config.tokens:
+        raise ValueError("Static token provider requires at least one token")
+    try:
+        from fastmcp.server.auth import StaticTokenVerifier
+    except ImportError as e:
+        raise ImportError("StaticTokenVerifier not available. Please install fastmcp>=2.11.0") from e
+    return StaticTokenVerifier(
+        tokens=config.tokens,
+        required_scopes=config.required_scopes,
+    )
+def _create_oauth_server_provider(config: OAuthServerConfig) -> "AuthProvider":
+    """Create OAuth authorization server provider from configuration."""
+    try:
+        from fastmcp.server.auth import OAuthProvider
+    except ImportError as e:
+        raise ImportError(
+            "OAuthProvider not available in this FastMCP version. Please upgrade to FastMCP 2.11.0 or later."
+        ) from e
+    # Resolve runtime values from environment variables with validation
+    base_url = config.base_url
+    if config.base_url_env_var:
+        env_value = os.environ.get(config.base_url_env_var)
+        if env_value:
+            # Apply the same validation as the config field to env var value
+            try:
+                from urllib.parse import urlparse
+                env_value = env_value.strip()
+                parsed = urlparse(env_value)
+                if not parsed.scheme or not parsed.netloc:
+                    raise ValueError(
+                        f"Invalid base URL from environment variable {config.base_url_env_var}: '{env_value}'"
+                    )
+                if parsed.scheme not in ("http", "https"):
+                    raise ValueError(f"Base URL from environment must use http/https: '{env_value}'")
+                # Production HTTPS check
+                is_production = (
+                    os.environ.get("GOLF_ENV", "").lower() in ("prod", "production")
+                    or os.environ.get("NODE_ENV", "").lower() == "production"
+                    or os.environ.get("ENVIRONMENT", "").lower() in ("prod", "production")
+                )
+                if is_production and parsed.scheme == "http":
+                    raise ValueError(f"Base URL must use HTTPS in production: '{env_value}'")
+                base_url = env_value
+            except Exception as e:
+                raise ValueError(f"Invalid base URL from environment variable {config.base_url_env_var}: {e}") from e
+    # Additional security validations before creating provider
+    from urllib.parse import urlparse
+    # Validate final base_url
+    parsed_base = urlparse(base_url)
+    if not parsed_base.scheme or not parsed_base.netloc:
+        raise ValueError(f"Invalid base URL: '{base_url}'")
+    # Security check: prevent localhost in production
+    is_production = (
+        os.environ.get("GOLF_ENV", "").lower() in ("prod", "production")
+        or os.environ.get("NODE_ENV", "").lower() == "production"
+        or os.environ.get("ENVIRONMENT", "").lower() in ("prod", "production")
+    )
+    if is_production and parsed_base.hostname in ("localhost", "127.0.0.1", "0.0.0.0"):
+        raise ValueError(f"Cannot use localhost/loopback addresses in production: '{base_url}'")
+    # Client registration options - always disabled for security
+    client_reg_options = None
+    # Create revocation options
+    revocation_options = None
+    if config.allow_token_revocation:
+        revocation_options = RevocationOptions(enabled=True)
+    return OAuthProvider(
+        base_url=base_url,
+        issuer_url=config.issuer_url,
+        service_documentation_url=config.service_documentation_url,
+        client_registration_options=client_reg_options,
+        revocation_options=revocation_options,
+        required_scopes=config.required_scopes,
+    )
+def _create_remote_provider(config: RemoteAuthConfig) -> "AuthProvider":
+    """Create remote auth provider from configuration."""
+    try:
+        from fastmcp.server.auth import RemoteAuthProvider
+    except ImportError as e:
+        raise ImportError(
+            "RemoteAuthProvider not available in this FastMCP version. Please upgrade to FastMCP 2.11.0 or later."
+        ) from e
+    # Resolve runtime values from environment variables
+    authorization_servers = config.authorization_servers
+    if config.authorization_servers_env_var:
+        env_value = os.environ.get(config.authorization_servers_env_var)
+        if env_value:
+            # Split comma-separated values and strip whitespace
+            authorization_servers = [s.strip() for s in env_value.split(",")]
+    resource_server_url = config.resource_server_url
+    if config.resource_server_url_env_var:
+        env_value = os.environ.get(config.resource_server_url_env_var)
+        if env_value:
+            resource_server_url = env_value
+    # Create the underlying token verifier
+    token_verifier = create_auth_provider(config.token_verifier_config)
+    # Ensure it's actually a TokenVerifier
+    if not hasattr(token_verifier, "verify_token"):
+        raise ValueError(f"Remote auth provider requires a TokenVerifier, got {type(token_verifier).__name__}")
+    return RemoteAuthProvider(
+        token_verifier=token_verifier,
+        authorization_servers=authorization_servers,
+        resource_server_url=resource_server_url,
+    )
+def create_simple_jwt_provider(
+    *,
+    jwks_uri: str | None = None,
+    public_key: str | None = None,
+    issuer: str | None = None,
+    audience: str | list[str] | None = None,
+    required_scopes: list[str] | None = None,
+) -> "JWTVerifier":
+    """Create a simple JWT provider for common use cases.
+    This is a convenience function for creating JWT providers without
+    having to construct the full configuration objects.
+    Args:
+        jwks_uri: JWKS URI for key fetching
+        public_key: Static public key (PEM format)
+        issuer: Expected issuer claim
+        audience: Expected audience claim(s)
+        required_scopes: Required scopes for all requests
+    Returns:
+        Configured JWTVerifier instance
+    """
+    config = JWTAuthConfig(
+        jwks_uri=jwks_uri,
+        public_key=public_key,
+        issuer=issuer,
+        audience=audience,
+        required_scopes=required_scopes or [],
+    )
+    return _create_jwt_provider(config)
+def create_dev_token_provider(
+    tokens: dict[str, Any] | None = None,
+    required_scopes: list[str] | None = None,
+) -> "StaticTokenVerifier":
+    """Create a static token provider for development.
+    Args:
+        tokens: Token dictionary or None for default dev tokens
+        required_scopes: Required scopes for all requests
+    Returns:
+        Configured StaticTokenVerifier instance
+    """
+    if tokens is None:
+        # Default development tokens
+        tokens = {
+            "dev-token-123": {
+                "client_id": "dev-client",
+                "scopes": ["read", "write"],
+            },
+            "admin-token-456": {
+                "client_id": "admin-client",
+                "scopes": ["read", "write", "admin"],
+            },
+        }
+    config = StaticTokenConfig(
+        tokens=tokens,
+        required_scopes=required_scopes or [],
+    )
+    return _create_static_provider(config)
+def register_builtin_providers() -> None:
+    """Register built-in authentication providers in the registry.
+    This function registers the standard Golf authentication providers:
+    - jwt: JWT token verification
+    - static: Static token verification (development)
+    - oauth_server: Full OAuth authorization server
+    - remote: Remote authorization server integration
+    """
+    registry = get_provider_registry()
+    # Register built-in provider factories
+    registry.register_factory("jwt", _create_jwt_provider)
+    registry.register_factory("static", _create_static_provider)
+    registry.register_factory("oauth_server", _create_oauth_server_provider)
+    registry.register_factory("remote", _create_remote_provider)
+# Register built-in providers when module is imported
+register_builtin_providers()

golf/auth/helpers.py CHANGED Viewed

@@ -3,48 +3,22 @@
 from contextvars import ContextVar
 from typing import Any
-# Re-export get_access_token from the MCP SDK
-from mcp.server.auth.middleware.auth_context import get_access_token
-from .oauth import GolfOAuthProvider
-# Context variable to store the active OAuth provider
-_active_golf_oauth_provider: GolfOAuthProvider | None = None
+from starlette.requests import Request
 # Context variable to store the current request's API key
 _current_api_key: ContextVar[str | None] = ContextVar("current_api_key", default=None)
-def _set_active_golf_oauth_provider(provider: GolfOAuthProvider) -> None:
-    """
-    Sets the active GolfOAuthProvider instance.
-    Should only be called once during server startup.
-    """
-    global _active_golf_oauth_provider
-    _active_golf_oauth_provider = provider
 def get_provider_token() -> str | None:
     """
-    Get a provider token (e.g., GitHub token) associated with the current
-    MCP session's access token.
+    Get a provider token (legacy function - no longer supported in Golf 0.2.x).
-    This relies on _set_active_golf_oauth_provider being called at server startup.
+    In Golf 0.2.x, use FastMCP's built-in auth providers for OAuth flows.
+    This function returns None and is kept for backwards compatibility.
     """
-    mcp_access_token = get_access_token()  # From MCP SDK, uses its own ContextVar
-    if not mcp_access_token:
-        # No active MCP session token.
-        return None
-    provider = _active_golf_oauth_provider
-    if not provider:
-        return None
-    if not hasattr(provider, "get_provider_token"):
-        return None
-    # Call the get_provider_token method on the actual GolfOAuthProvider instance
-    return provider.get_provider_token(mcp_access_token.token)
+    # Legacy OAuth provider support removed in Golf 0.2.x
+    # Use FastMCP 2.11+ auth providers instead
+    return None
 def extract_token_from_header(auth_header: str) -> str | None:
@@ -149,7 +123,7 @@ def get_api_key() -> str | None:
     return None
-def get_api_key_from_request(request) -> str | None:
+def get_api_key_from_request(request: Request) -> str | None:
     """Get the API key from a specific request object.
     This is useful when you have direct access to the request object.
@@ -199,23 +173,19 @@ def debug_api_key_context() -> dict[str, Any]:
         if task:
             debug_info["has_async_task"] = True
             debug_info["task_id"] = id(task)
-    except:
+    except Exception:
         pass
     try:
         main_module = sys.modules.get("__main__")
         if main_module:
-            debug_info["main_module_has_storage"] = hasattr(
-                main_module, "api_key_storage"
-            )
-            debug_info["main_module_has_context"] = hasattr(
-                main_module, "request_id_context"
-            )
+            debug_info["main_module_has_storage"] = hasattr(main_module, "api_key_storage")
+            debug_info["main_module_has_context"] = hasattr(main_module, "request_id_context")
             if hasattr(main_module, "request_id_context"):
                 request_id_context = main_module.request_id_context
                 debug_info["request_id_from_context"] = request_id_context.get()
-    except:
+    except Exception:
         pass
     return debug_info

golf-mcp 0.1.19__py3-none-any.whl → 0.2.0__py3-none-any.whl

Potentially problematic release.

golf-mcp 0.1.19py3-none-any.whl → 0.2.0py3-none-any.whl