PyPI - mcp-proxy-adapter - Versions diffs - 6.0.0__py3-none-any.whl → 6.1.1__py3-none-any.whl - Mend

mcp-proxy-adapter 6.0.0py3-none-any.whl → 6.1.1py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (264) hide show

mcp_proxy_adapter/examples/run_security_tests.py ADDED Viewed

@@ -0,0 +1,326 @@
+#!/usr/bin/env python3
+"""
+Security Test Runner for MCP Proxy Adapter
+This script runs comprehensive security tests against all server configurations:
+- Basic HTTP
+- HTTP + Token authentication
+- HTTPS
+- HTTPS + Token authentication
+- mTLS
+Author: Vasiliy Zdanovskiy
+email: vasilyvz@gmail.com
+"""
+import asyncio
+import json
+import os
+import signal
+import subprocess
+import sys
+import time
+from pathlib import Path
+from typing import Dict, List, Optional, Any
+# Add project root to path
+project_root = Path(__file__).parent.parent.parent
+sys.path.insert(0, str(project_root))
+from security_test_client import SecurityTestClient, TestResult
+class SecurityTestRunner:
+    """Main test runner for security testing."""
+    def __init__(self):
+        """Initialize test runner."""
+        self.servers = {}
+        self.test_results = {}
+        self.configs = {
+            "basic_http": {
+                "config": "server_configs/config_basic_http.json",
+                "port": 8000,
+                "url": "http://localhost:8000",
+                "auth": "none"
+            },
+            "http_token": {
+                "config": "server_configs/config_http_token.json",
+                "port": 8001,
+                "url": "http://localhost:8001",
+                "auth": "api_key"
+            },
+            "https": {
+                "config": "server_configs/config_https.json",
+                "port": 8443,
+                "url": "https://localhost:8443",
+                "auth": "none"
+            },
+            "https_token": {
+                "config": "server_configs/config_https_token.json",
+                "port": 8444,
+                "url": "https://localhost:8444",
+                "auth": "api_key"
+            },
+            "mtls": {
+                "config": "server_configs/config_mtls.json",
+                "port": 8445,
+                "url": "https://localhost:8445",
+                "auth": "certificate"
+            }
+        }
+    def check_prerequisites(self) -> bool:
+        """Check if all prerequisites are met."""
+        print("🔍 Checking prerequisites...")
+        # Check if we're in the right directory
+        if not Path("server_configs").exists():
+            print("❌ server_configs directory not found. Please run from mcp_proxy_adapter/examples/")
+            return False
+        # Check if certificates exist
+        cert_files = [
+            "certs/ca_cert.pem",
+            "certs/server_cert.pem",
+            "certs/server_key.pem"
+        ]
+        missing_certs = []
+        for cert_file in cert_files:
+            if not Path(cert_file).exists():
+                missing_certs.append(cert_file)
+        if missing_certs:
+            print(f"❌ Missing certificates: {missing_certs}")
+            print("💡 Run: python generate_certificates.py")
+            return False
+        print("✅ Prerequisites check passed")
+        return True
+    def start_server(self, name: str, config_path: str, port: int) -> Optional[subprocess.Popen]:
+        """Start a server in background."""
+        try:
+            print(f"🚀 Starting {name} server on port {port}...")
+            # Start server in background
+            process = subprocess.Popen([
+                sys.executable, "-m", "mcp_proxy_adapter.main",
+                "--config", config_path
+            ], stdout=subprocess.PIPE, stderr=subprocess.PIPE)
+            # Wait a bit for server to start
+            time.sleep(3)
+            # Check if process is still running
+            if process.poll() is None:
+                print(f"✅ {name} server started (PID: {process.pid})")
+                return process
+            else:
+                stdout, stderr = process.communicate()
+                print(f"❌ Failed to start {name} server:")
+                print(f"STDOUT: {stdout.decode()}")
+                print(f"STDERR: {stderr.decode()}")
+                return None
+        except Exception as e:
+            print(f"❌ Error starting {name} server: {e}")
+            return None
+    def stop_server(self, name: str, process: subprocess.Popen):
+        """Stop a server."""
+        try:
+            print(f"🛑 Stopping {name} server (PID: {process.pid})...")
+            process.terminate()
+            # Wait for graceful shutdown
+            try:
+                process.wait(timeout=5)
+                print(f"✅ {name} server stopped")
+            except subprocess.TimeoutExpired:
+                print(f"⚠️ Force killing {name} server")
+                process.kill()
+                process.wait()
+        except Exception as e:
+            print(f"❌ Error stopping {name} server: {e}")
+    async def test_server(self, name: str, config: Dict[str, Any]) -> List[TestResult]:
+        """Test a specific server configuration."""
+        print(f"\n🧪 Testing {name} server...")
+        print("=" * 50)
+        # Create client with appropriate SSL context
+        if config["auth"] == "certificate":
+            # For mTLS, create client with certificate-based SSL context
+            client = SecurityTestClient(config["url"])
+            # Override SSL context for mTLS
+            client.create_ssl_context = client.create_ssl_context_for_mtls
+            async with client as client_session:
+                results = await client_session.run_security_tests(
+                    config["url"],
+                    config["auth"]
+                )
+        else:
+            # For other auth types, use default SSL context
+            async with SecurityTestClient(config["url"]) as client:
+                results = await client.run_security_tests(
+                    config["url"],
+                    config["auth"]
+                )
+        # Print summary for this server
+        passed = sum(1 for r in results if r.success)
+        total = len(results)
+        print(f"\n📊 {name} Results: {passed}/{total} tests passed")
+        return results
+    async def run_all_tests(self) -> Dict[str, List[TestResult]]:
+        """Run tests against all server configurations."""
+        print("🚀 Starting comprehensive security testing")
+        print("=" * 60)
+        # Start all servers
+        for name, config in self.configs.items():
+            process = self.start_server(name, config["config"], config["port"])
+            if process:
+                self.servers[name] = process
+            else:
+                print(f"⚠️ Skipping tests for {name} due to startup failure")
+        # Wait for all servers to be ready
+        print("\n⏳ Waiting for servers to be ready...")
+        time.sleep(5)
+        # Test each server
+        all_results = {}
+        for name, config in self.configs.items():
+            if name in self.servers:
+                try:
+                    results = await self.test_server(name, config)
+                    all_results[name] = results
+                except Exception as e:
+                    print(f"❌ Error testing {name}: {e}")
+                    all_results[name] = []
+            else:
+                print(f"⚠️ Skipping {name} tests (server not running)")
+                all_results[name] = []
+        return all_results
+    def print_final_summary(self, all_results: Dict[str, List[TestResult]]):
+        """Print final test summary."""
+        print("\n" + "=" * 80)
+        print("📊 FINAL SECURITY TEST SUMMARY")
+        print("=" * 80)
+        total_tests = 0
+        total_passed = 0
+        for server_name, results in all_results.items():
+            if results:
+                passed = sum(1 for r in results if r.success)
+                total = len(results)
+                total_tests += total
+                total_passed += passed
+                status = "✅ PASS" if passed == total else "❌ FAIL"
+                print(f"{status} {server_name.upper()}: {passed}/{total} tests passed")
+                # Show failed tests
+                failed_tests = [r for r in results if not r.success]
+                for test in failed_tests:
+                    print(f"   ❌ {test.test_name}: {test.error_message}")
+            else:
+                print(f"⚠️ SKIP {server_name.upper()}: No tests run")
+        print("\n" + "-" * 80)
+        print(f"OVERALL: {total_passed}/{total_tests} tests passed")
+        if total_tests > 0:
+            success_rate = (total_passed / total_tests) * 100
+            print(f"SUCCESS RATE: {success_rate:.1f}%")
+        # Overall status
+        if total_passed == total_tests and total_tests > 0:
+            print("🎉 ALL TESTS PASSED!")
+        elif total_passed > 0:
+            print("⚠️ SOME TESTS FAILED")
+        else:
+            print("❌ ALL TESTS FAILED")
+    def cleanup(self):
+        """Cleanup all running servers."""
+        print("\n🧹 Cleaning up...")
+        for name, process in self.servers.items():
+            self.stop_server(name, process)
+        self.servers.clear()
+    def signal_handler(self, signum, frame):
+        """Handle interrupt signals."""
+        print(f"\n⚠️ Received signal {signum}, cleaning up...")
+        self.cleanup()
+        sys.exit(0)
+    async def run(self):
+        """Main run method."""
+        # Set up signal handlers
+        signal.signal(signal.SIGINT, self.signal_handler)
+        signal.signal(signal.SIGTERM, self.signal_handler)
+        try:
+            # Check prerequisites
+            if not self.check_prerequisites():
+                return False
+            # Run all tests
+            all_results = await self.run_all_tests()
+            # Print summary
+            self.print_final_summary(all_results)
+            return True
+        except Exception as e:
+            print(f"❌ Test runner error: {e}")
+            return False
+        finally:
+            # Always cleanup
+            self.cleanup()
+def main():
+    """Main function."""
+    import argparse
+    parser = argparse.ArgumentParser(description="Security Test Runner for MCP Proxy Adapter")
+    parser.add_argument("--config", help="Test specific configuration")
+    parser.add_argument("--no-cleanup", action="store_true", help="Don't cleanup servers after tests")
+    parser.add_argument("--verbose", "-v", action="store_true", help="Verbose output")
+    args = parser.parse_args()
+    # Change to examples directory
+    examples_dir = Path(__file__).parent
+    os.chdir(examples_dir)
+    # Create and run test runner
+    runner = SecurityTestRunner()
+    try:
+        success = asyncio.run(runner.run())
+        sys.exit(0 if success else 1)
+    except KeyboardInterrupt:
+        print("\n⚠️ Interrupted by user")
+        sys.exit(1)
+    except Exception as e:
+        print(f"❌ Unexpected error: {e}")
+        sys.exit(1)
+if __name__ == "__main__":
+    main()

mcp_proxy_adapter/examples/run_security_tests_fixed.py ADDED Viewed

@@ -0,0 +1,300 @@
+#!/usr/bin/env python3
+"""
+Security Testing Script - Fixed Version
+This script runs comprehensive security tests without fallback mode
+and with proper port management.
+Author: Vasiliy Zdanovskiy
+email: vasilyvz@gmail.com
+"""
+import asyncio
+import json
+import os
+import signal
+import subprocess
+import sys
+import time
+from pathlib import Path
+from typing import Dict, List, Optional, Tuple
+# Add project root to path
+project_root = Path(__file__).parent.parent.parent
+sys.path.insert(0, str(project_root))
+from security_test_client import SecurityTestClient, TestResult
+class SecurityTestRunner:
+    """Security test runner with proper port management."""
+    def __init__(self):
+        self.project_root = Path(__file__).parent.parent.parent
+        self.configs_dir = self.project_root / "mcp_proxy_adapter" / "examples" / "server_configs"
+        self.server_processes = {}
+        self.test_results = []
+    def kill_process_on_port(self, port: int) -> bool:
+        """Kill process using specific port."""
+        try:
+            # Find process using the port
+            result = subprocess.run(
+                ["lsof", "-ti", f":{port}"],
+                capture_output=True,
+                text=True,
+                timeout=5
+            )
+            if result.returncode == 0 and result.stdout.strip():
+                pid = result.stdout.strip()
+                # Kill the process
+                subprocess.run(["kill", "-9", pid], check=True)
+                print(f"✅ Killed process {pid} on port {port}")
+                time.sleep(1)  # Wait for port to be released
+                return True
+            else:
+                print(f"ℹ️ No process found on port {port}")
+                return True
+        except subprocess.TimeoutExpired:
+            print(f"⚠️ Timeout checking port {port}")
+            return False
+        except Exception as e:
+            print(f"❌ Error killing process on port {port}: {e}")
+            return False
+    def start_server(self, config_name: str, config_path: Path) -> Optional[subprocess.Popen]:
+        """Start server with proper error handling."""
+        try:
+            # Get port from config
+            with open(config_path) as f:
+                config = json.load(f)
+            port = config.get("server", {}).get("port", 8000)
+            # Kill any existing process on this port
+            self.kill_process_on_port(port)
+            # Start server
+            cmd = [
+                sys.executable, "-m", "mcp_proxy_adapter.main",
+                "--config", str(config_path)
+            ]
+            # For mTLS, start from examples directory
+            if config_name == "mtls":
+                cwd = self.project_root / "mcp_proxy_adapter" / "examples"
+            else:
+                cwd = self.project_root
+            print(f"🚀 Starting {config_name} on port {port}...")
+            process = subprocess.Popen(
+                cmd,
+                cwd=cwd,
+                stdout=subprocess.PIPE,
+                stderr=subprocess.PIPE,
+                text=True
+            )
+            # Wait a bit for server to start
+            time.sleep(3)
+            # Check if process is still running
+            if process.poll() is None:
+                print(f"✅ {config_name} started successfully on port {port}")
+                return process
+            else:
+                stdout, stderr = process.communicate()
+                print(f"❌ {config_name} failed to start:")
+                print(f"STDOUT: {stdout}")
+                print(f"STDERR: {stderr}")
+                return None
+        except Exception as e:
+            print(f"❌ Error starting {config_name}: {e}")
+            return None
+    def stop_server(self, config_name: str, process: subprocess.Popen):
+        """Stop server gracefully."""
+        try:
+            print(f"🛑 Stopping {config_name}...")
+            process.terminate()
+            process.wait(timeout=5)
+            print(f"✅ {config_name} stopped")
+        except subprocess.TimeoutExpired:
+            print(f"⚠️ Force killing {config_name}...")
+            process.kill()
+            process.wait()
+        except Exception as e:
+            print(f"❌ Error stopping {config_name}: {e}")
+    async def test_server(self, config_name: str, config_path: Path) -> List[TestResult]:
+        """Test a single server configuration."""
+        results = []
+        # Start server
+        process = self.start_server(config_name, config_path)
+        if not process:
+            return [TestResult(
+                test_name=f"{config_name}_startup",
+                server_url=f"http://localhost:{port}",
+                auth_type="none",
+                success=False,
+                error_message="Server failed to start"
+            )]
+        try:
+            # Get config for client setup
+            with open(config_path) as f:
+                config = json.load(f)
+            port = config.get("server", {}).get("port", 8000)
+            auth_enabled = config.get("security", {}).get("auth", {}).get("enabled", False)
+            auth_methods = config.get("security", {}).get("auth", {}).get("methods", [])
+            # Create test client with correct protocol
+            protocol = "https" if config.get("ssl", {}).get("enabled", False) else "http"
+            client = SecurityTestClient(base_url=f"{protocol}://localhost:{port}")
+            client.auth_enabled = auth_enabled
+            client.auth_methods = auth_methods
+            client.api_keys = config.get("security", {}).get("auth", {}).get("api_keys", {})
+            # For mTLS, override SSL context creation and change working directory
+            if config_name == "mtls":
+                client.create_ssl_context = client.create_ssl_context_for_mtls
+                # Ensure mTLS uses certificate auth
+                client.auth_methods = ["certificate"]
+                # Change to examples directory for mTLS tests
+                import os
+                os.chdir(self.project_root / "mcp_proxy_adapter" / "examples")
+            # Run tests
+            async with client:
+                # Test 1: Health check
+                result = await client.test_health()
+                results.append(result)
+                # Test 2: Command execution
+                result = await client.test_command_execution()
+                results.append(result)
+                # Test 3: Authentication (if enabled)
+                if auth_enabled:
+                    result = await client.test_authentication()
+                    results.append(result)
+                    # Test 4: Negative authentication
+                    result = await client.test_negative_authentication()
+                    results.append(result)
+                    # Test 5: Role-based access
+                    result = await client.test_role_based_access(client.base_url, "api_key")
+                    results.append(result)
+                    # Test 6: Role permissions
+                    result = await client.test_role_permissions(client.base_url, "api_key")
+                    results.append(result)
+                    # Test 7: Multiple roles test
+                    result = await client.test_multiple_roles(client.base_url, "api_key")
+                    results.append(result)
+                else:
+                    # Test 3: No authentication required
+                    result = await client.test_no_auth_required()
+                    results.append(result)
+                    # Test 4: Negative auth (should fail)
+                    result = await client.test_negative_authentication()
+                    results.append(result)
+        except Exception as e:
+            results.append(TestResult(
+                test_name=f"{config_name}_client_error",
+                server_url=f"http://localhost:{port}",
+                auth_type="none",
+                success=False,
+                error_message=str(e)
+            ))
+        finally:
+            # Stop server
+            self.stop_server(config_name, process)
+        return results
+    async def run_all_tests(self):
+        """Run all security tests."""
+        print("🔒 Starting Security Testing Suite")
+        print("=" * 50)
+        # Test configurations
+        configs = [
+            ("basic_http", "config_basic_http.json"),
+            ("http_token", "config_http_token.json"),
+            ("https", "config_https.json"),
+            ("https_token", "config_https_token.json"),
+            ("mtls", "config_mtls.json")
+        ]
+        total_tests = 0
+        passed_tests = 0
+        for config_name, config_file in configs:
+            config_path = self.configs_dir / config_file
+            if not config_path.exists():
+                print(f"❌ Configuration not found: {config_path}")
+                continue
+            print(f"\n📋 Testing {config_name.upper()} configuration")
+            print("-" * 30)
+            results = await self.test_server(config_name, config_path)
+            for result in results:
+                total_tests += 1
+                if result.success:
+                    passed_tests += 1
+                    print(f"✅ {result.test_name}: PASS")
+                else:
+                    print(f"❌ {result.test_name}: FAIL - {result.error_message}")
+            self.test_results.extend(results)
+        # Print summary
+        print("\n" + "=" * 50)
+        print("📊 TEST SUMMARY")
+        print("=" * 50)
+        print(f"Total tests: {total_tests}")
+        print(f"Passed: {passed_tests}")
+        print(f"Failed: {total_tests - passed_tests}")
+        print(f"Success rate: {(passed_tests/total_tests*100):.1f}%" if total_tests > 0 else "N/A")
+        # Detailed results
+        print("\n📋 DETAILED RESULTS")
+        print("-" * 30)
+        for result in self.test_results:
+            status = "✅ PASS" if result.success else "❌ FAIL"
+            print(f"{status} {result.test_name}")
+            if not result.success and result.error_message:
+                print(f"   Error: {result.error_message}")
+        return passed_tests == total_tests
+async def main():
+    """Main function."""
+    runner = SecurityTestRunner()
+    try:
+        success = await runner.run_all_tests()
+        sys.exit(0 if success else 1)
+    except KeyboardInterrupt:
+        print("\n⚠️ Testing interrupted by user")
+        sys.exit(1)
+    except Exception as e:
+        print(f"\n❌ Testing failed: {e}")
+        sys.exit(1)
+if __name__ == "__main__":
+    asyncio.run(main())

mcp-proxy-adapter 6.0.0__py3-none-any.whl → 6.1.1__py3-none-any.whl

mcp-proxy-adapter 6.0.0py3-none-any.whl → 6.1.1py3-none-any.whl