mcp-security-framework 1.2.1__tar.gz → 1.2.2__tar.gz

{mcp_security_framework-1.2.1 → mcp_security_framework-1.2.2}/PKG-INFO

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: mcp-security-framework
-Version: 1.2.1
+Version: 1.2.2
 Summary: Universal security framework for microservices with SSL/TLS, authentication, authorization, and rate limiting. Requires cryptography>=42.0.0 for certificate operations.
 Author-email: Vasiliy Zdanovskiy <vasilyvz@gmail.com>
 Maintainer-email: Vasiliy Zdanovskiy <vasilyvz@gmail.com>

{mcp_security_framework-1.2.1 → mcp_security_framework-1.2.2}/mcp_security_framework/__init__.py

@@ -71,7 +71,7 @@ from mcp_security_framework.schemas.responses import (
 )
 
 # Version information
-__version__ = "1.2.1"
+__version__ = "1.2.2"
 __author__ = "Vasiliy Zdanovskiy"
 __email__ = "vasilyvz@gmail.com"
 __license__ = "MIT"

{mcp_security_framework-1.2.1 → mcp_security_framework-1.2.2}/mcp_security_framework/schemas/config.py

@@ -247,8 +247,12 @@ class CertificateConfig(BaseModel):
     This model defines certificate management configuration settings
     including CA settings, certificate storage, and validation options.
 
+    BUGFIX: Added ca_creation_mode to allow CA certificate creation
+    without requiring existing CA paths.
+
     Attributes:
         enabled: Whether certificate management is enabled
+        ca_creation_mode: Whether we are in CA creation mode (bypasses CA path validation)
         ca_cert_path: Path to CA certificate
         ca_key_path: Path to CA private key
         cert_storage_path: Path for certificate storage
@@ -266,6 +270,9 @@ class CertificateConfig(BaseModel):
     enabled: bool = Field(
         default=False, description="Whether certificate management is enabled"
     )
+    ca_creation_mode: bool = Field(
+        default=False, description="Whether we are in CA creation mode (bypasses CA path validation)"
+    )
     ca_cert_path: Optional[str] = Field(
         default=None, description="Path to CA certificate"
     )
@@ -317,10 +324,13 @@ class CertificateConfig(BaseModel):
     def validate_certificate_configuration(self):
         """Validate certificate configuration consistency."""
         if self.enabled:
-            if not self.ca_cert_path or not self.ca_key_path:
-                raise ValueError(
-                    "Certificate management enabled but CA certificate and key paths are required"
-                )
+            # BUGFIX: Only require CA paths if not in CA creation mode
+            if not self.ca_creation_mode:
+                if not self.ca_cert_path or not self.ca_key_path:
+                    raise ValueError(
+                        "Certificate management enabled but CA certificate and key paths are required. "
+                        "Set ca_creation_mode=True if you are creating a CA certificate."
+                    )
 
         if self.crl_enabled and not self.crl_path:
             raise ValueError("CRL enabled but CRL path is required")

{mcp_security_framework-1.2.1 → mcp_security_framework-1.2.2}/mcp_security_framework.egg-info/PKG-INFO

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: mcp-security-framework
-Version: 1.2.1
+Version: 1.2.2
 Summary: Universal security framework for microservices with SSL/TLS, authentication, authorization, and rate limiting. Requires cryptography>=42.0.0 for certificate operations.
 Author-email: Vasiliy Zdanovskiy <vasilyvz@gmail.com>
 Maintainer-email: Vasiliy Zdanovskiy <vasilyvz@gmail.com>

{mcp_security_framework-1.2.1 → mcp_security_framework-1.2.2}/pyproject.toml

@@ -4,7 +4,7 @@ build-backend = "setuptools.build_meta"
 
 [project]
 name = "mcp-security-framework"
-version = "1.2.1"
+version = "1.2.2"
 description = "Universal security framework for microservices with SSL/TLS, authentication, authorization, and rate limiting. Requires cryptography>=42.0.0 for certificate operations."
 readme = "README.md"
 license = {text = "MIT"}

{mcp_security_framework-1.2.1 → mcp_security_framework-1.2.2}/tests/test_schemas/test_config.py

@@ -195,6 +195,7 @@ class TestCertificateConfig:
         config = CertificateConfig()
 
         assert config.enabled is False
+        assert config.ca_creation_mode is False
         assert config.ca_cert_path is None
         assert config.ca_key_path is None
         assert config.cert_storage_path == "./certs"
@@ -217,6 +218,7 @@ class TestCertificateConfig:
             "Certificate management enabled but CA certificate and key paths are required"
             in str(exc_info.value)
         )
+        assert "ca_creation_mode=True" in str(exc_info.value)
 
     def test_certificate_config_crl_enabled_without_path(self):
         """Test CertificateConfig validation when CRL enabled without path."""
@@ -272,6 +274,54 @@ class TestCertificateConfig:
         with pytest.raises(ValidationError):
             CertificateConfig(default_validity_days=3651)
 
+    def test_certificate_config_ca_creation_mode(self):
+        """Test CertificateConfig with CA creation mode enabled."""
+        config = CertificateConfig(
+            enabled=True,
+            ca_creation_mode=True,
+            cert_storage_path="./certs",
+            key_storage_path="./keys"
+        )
+
+        assert config.enabled is True
+        assert config.ca_creation_mode is True
+        assert config.ca_cert_path is None
+        assert config.ca_key_path is None
+        assert config.cert_storage_path == "./certs"
+        assert config.key_storage_path == "./keys"
+
+    def test_certificate_config_ca_creation_mode_with_ca_paths(self):
+        """Test CertificateConfig with CA creation mode and CA paths (should work)."""
+        config = CertificateConfig(
+            enabled=True,
+            ca_creation_mode=True,
+            ca_cert_path="./certs/ca.crt",
+            ca_key_path="./keys/ca.key",
+            cert_storage_path="./certs",
+            key_storage_path="./keys"
+        )
+
+        assert config.enabled is True
+        assert config.ca_creation_mode is True
+        assert config.ca_cert_path == "./certs/ca.crt"
+        assert config.ca_key_path == "./keys/ca.key"
+
+    def test_certificate_config_normal_mode_with_ca_paths(self):
+        """Test CertificateConfig in normal mode with CA paths."""
+        config = CertificateConfig(
+            enabled=True,
+            ca_creation_mode=False,
+            ca_cert_path="./certs/ca.crt",
+            ca_key_path="./keys/ca.key",
+            cert_storage_path="./certs",
+            key_storage_path="./keys"
+        )
+
+        assert config.enabled is True
+        assert config.ca_creation_mode is False
+        assert config.ca_cert_path == "./certs/ca.crt"
+        assert config.ca_key_path == "./keys/ca.key"
+
 
 class TestPermissionConfig:
     """Test suite for PermissionConfig class."""