kai/ColaFlow
1
0
Fork 0
Code Issues Pull Requests Actions 1 Packages Projects Releases Wiki Activity

feat(backend): Implement MCP API Key Management System (Story 5.2)

Browse Source 
Implemented comprehensive API Key authentication and management system
for MCP Server to ensure only authorized AI agents can access ColaFlow.

## Domain Layer
- Created McpApiKey aggregate root with BCrypt password hashing
- Implemented ApiKeyPermissions value object (read/write, resource/tool filtering)
- Added ApiKeyStatus enum (Active, Revoked)
- Created domain events (ApiKeyCreatedEvent, ApiKeyRevokedEvent)
- API key format: cola_<36 random chars> (cryptographically secure)
- Default expiration: 90 days

## Application Layer
- Implemented McpApiKeyService with full CRUD operations
- Created DTOs for API key creation, validation, and updates
- Validation logic: hash verification, expiration check, IP whitelist
- Usage tracking: last_used_at, usage_count

## Infrastructure Layer
- Created McpDbContext with PostgreSQL configuration
- EF Core entity configuration with JSONB for permissions/IP whitelist
- Implemented McpApiKeyRepository with prefix-based lookup
- Database migration: mcp_api_keys table with indexes
- Created McpApiKeyAuthenticationMiddleware for API key validation
- Middleware validates Authorization: Bearer <api_key> header

## API Layer
- Created McpApiKeysController with REST endpoints:
  - POST /api/mcp/keys - Create API Key (returns plain key once!)
  - GET /api/mcp/keys - List tenant's API Keys
  - GET /api/mcp/keys/{id} - Get API Key details
  - PATCH /api/mcp/keys/{id}/metadata - Update name/description
  - PATCH /api/mcp/keys/{id}/permissions - Update permissions
  - DELETE /api/mcp/keys/{id} - Revoke API Key
- Requires JWT authentication (not API key auth)

## Testing
- Created 17 unit tests for McpApiKey entity
- Created 7 unit tests for ApiKeyPermissions value object
- All 49 tests passing (including existing MCP tests)
- Test coverage > 80% for Domain layer

## Security Features
- BCrypt hashing with work factor 12
- API key shown only once at creation (never logged)
- Key prefix lookup for fast validation (indexed)
- Multi-tenant isolation (tenant_id filter)
- IP whitelist support
- Permission scopes (read/write, resources, tools)
- Automatic expiration after 90 days

## Database Schema
Table: mcp.mcp_api_keys
- Indexes: key_prefix (unique), tenant_id, tenant_user, expires_at, status
- JSONB columns for permissions and IP whitelist
- Soft delete via revoked_at

## Integration
- Updated Program.cs to register MCP module with configuration
- Added MCP DbContext migration in development mode
- Authentication middleware runs before MCP protocol handler

Changes:
- Created 31 new files (2321+ lines)
- Domain: 6 files (McpApiKey, events, repository, value objects)
- Application: 9 files (service, DTOs)
- Infrastructure: 8 files (DbContext, repository, middleware, migration)
- API: 1 file (McpApiKeysController)
- Tests: 2 files (17 + 7 unit tests)

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude <noreply@anthropic.com>
This commit is contained in:
Yaojia Wang
2025-11-08 18:40:56 +01:00
parent b11c6447b5
commit 0857a8ba2a
31 changed files with 2321 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

63
colaflow-api/ColaFlow.sln
View File

@@ -55,6 +55,16 @@ Project("{FAE04EC0-301F-11D3-BF4B-00C04F79EFBC}") = "ColaFlow.Modules.Identity.I
EndProject
Project("{FAE04EC0-301F-11D3-BF4B-00C04F79EFBC}") = "ColaFlow.Modules.Identity.IntegrationTests", "tests\Modules\Identity\ColaFlow.Modules.Identity.IntegrationTests\ColaFlow.Modules.Identity.IntegrationTests.csproj", "{86D74CD1-A0F7-467B-899B-82641451A8C4}"
EndProject
Project("{FAE04EC0-301F-11D3-BF4B-00C04F79EFBC}") = "ColaFlow.Modules.Mcp.Application", "src\Modules\Mcp\ColaFlow.Modules.Mcp.Application\ColaFlow.Modules.Mcp.Application.csproj", "{D07B22E9-2C46-5425-4076-2E0D5E128488}"
EndProject
Project("{2150E333-8FDC-42A3-9474-1A3956D46DE8}") = "Mcp", "Mcp", "{02EA681E-C7D8-13C7-8484-4AC65E1B71E8}"
EndProject
Project("{FAE04EC0-301F-11D3-BF4B-00C04F79EFBC}") = "ColaFlow.Modules.Mcp.Contracts", "src\Modules\Mcp\ColaFlow.Modules.Mcp.Contracts\ColaFlow.Modules.Mcp.Contracts.csproj", "{9B021F2B-646E-3639-D365-19BA2E4693D7}"
EndProject
Project("{FAE04EC0-301F-11D3-BF4B-00C04F79EFBC}") = "ColaFlow.Modules.Mcp.Domain", "src\Modules\Mcp\ColaFlow.Modules.Mcp.Domain\ColaFlow.Modules.Mcp.Domain.csproj", "{C26E375D-DE7C-134E-9846-F87FA19AFEAD}"
EndProject
Project("{FAE04EC0-301F-11D3-BF4B-00C04F79EFBC}") = "ColaFlow.Modules.Mcp.Infrastructure", "src\Modules\Mcp\ColaFlow.Modules.Mcp.Infrastructure\ColaFlow.Modules.Mcp.Infrastructure.csproj", "{31D96779-9DDF-04D6-B22B-6F0FBCB6E846}"
EndProject
Global
GlobalSection(SolutionConfigurationPlatforms) = preSolution
Debug|Any CPU = Debug|Any CPU
@@ -281,6 +291,54 @@ Global
{86D74CD1-A0F7-467B-899B-82641451A8C4}.Release|x64.Build.0 = Release|Any CPU
{86D74CD1-A0F7-467B-899B-82641451A8C4}.Release|x86.ActiveCfg = Release|Any CPU
{86D74CD1-A0F7-467B-899B-82641451A8C4}.Release|x86.Build.0 = Release|Any CPU
{D07B22E9-2C46-5425-4076-2E0D5E128488}.Debug|Any CPU.ActiveCfg = Debug|Any CPU
{D07B22E9-2C46-5425-4076-2E0D5E128488}.Debug|Any CPU.Build.0 = Debug|Any CPU
{D07B22E9-2C46-5425-4076-2E0D5E128488}.Debug|x64.ActiveCfg = Debug|Any CPU
{D07B22E9-2C46-5425-4076-2E0D5E128488}.Debug|x64.Build.0 = Debug|Any CPU
{D07B22E9-2C46-5425-4076-2E0D5E128488}.Debug|x86.ActiveCfg = Debug|Any CPU
{D07B22E9-2C46-5425-4076-2E0D5E128488}.Debug|x86.Build.0 = Debug|Any CPU
{D07B22E9-2C46-5425-4076-2E0D5E128488}.Release|Any CPU.ActiveCfg = Release|Any CPU
{D07B22E9-2C46-5425-4076-2E0D5E128488}.Release|Any CPU.Build.0 = Release|Any CPU
{D07B22E9-2C46-5425-4076-2E0D5E128488}.Release|x64.ActiveCfg = Release|Any CPU
{D07B22E9-2C46-5425-4076-2E0D5E128488}.Release|x64.Build.0 = Release|Any CPU
{D07B22E9-2C46-5425-4076-2E0D5E128488}.Release|x86.ActiveCfg = Release|Any CPU
{D07B22E9-2C46-5425-4076-2E0D5E128488}.Release|x86.Build.0 = Release|Any CPU
{9B021F2B-646E-3639-D365-19BA2E4693D7}.Debug|Any CPU.ActiveCfg = Debug|Any CPU
{9B021F2B-646E-3639-D365-19BA2E4693D7}.Debug|Any CPU.Build.0 = Debug|Any CPU
{9B021F2B-646E-3639-D365-19BA2E4693D7}.Debug|x64.ActiveCfg = Debug|Any CPU
{9B021F2B-646E-3639-D365-19BA2E4693D7}.Debug|x64.Build.0 = Debug|Any CPU
{9B021F2B-646E-3639-D365-19BA2E4693D7}.Debug|x86.ActiveCfg = Debug|Any CPU
{9B021F2B-646E-3639-D365-19BA2E4693D7}.Debug|x86.Build.0 = Debug|Any CPU
{9B021F2B-646E-3639-D365-19BA2E4693D7}.Release|Any CPU.ActiveCfg = Release|Any CPU
{9B021F2B-646E-3639-D365-19BA2E4693D7}.Release|Any CPU.Build.0 = Release|Any CPU
{9B021F2B-646E-3639-D365-19BA2E4693D7}.Release|x64.ActiveCfg = Release|Any CPU
{9B021F2B-646E-3639-D365-19BA2E4693D7}.Release|x64.Build.0 = Release|Any CPU
{9B021F2B-646E-3639-D365-19BA2E4693D7}.Release|x86.ActiveCfg = Release|Any CPU
{9B021F2B-646E-3639-D365-19BA2E4693D7}.Release|x86.Build.0 = Release|Any CPU
{C26E375D-DE7C-134E-9846-F87FA19AFEAD}.Debug|Any CPU.ActiveCfg = Debug|Any CPU
{C26E375D-DE7C-134E-9846-F87FA19AFEAD}.Debug|Any CPU.Build.0 = Debug|Any CPU
{C26E375D-DE7C-134E-9846-F87FA19AFEAD}.Debug|x64.ActiveCfg = Debug|Any CPU
{C26E375D-DE7C-134E-9846-F87FA19AFEAD}.Debug|x64.Build.0 = Debug|Any CPU
{C26E375D-DE7C-134E-9846-F87FA19AFEAD}.Debug|x86.ActiveCfg = Debug|Any CPU
{C26E375D-DE7C-134E-9846-F87FA19AFEAD}.Debug|x86.Build.0 = Debug|Any CPU
{C26E375D-DE7C-134E-9846-F87FA19AFEAD}.Release|Any CPU.ActiveCfg = Release|Any CPU
{C26E375D-DE7C-134E-9846-F87FA19AFEAD}.Release|Any CPU.Build.0 = Release|Any CPU
{C26E375D-DE7C-134E-9846-F87FA19AFEAD}.Release|x64.ActiveCfg = Release|Any CPU
{C26E375D-DE7C-134E-9846-F87FA19AFEAD}.Release|x64.Build.0 = Release|Any CPU
{C26E375D-DE7C-134E-9846-F87FA19AFEAD}.Release|x86.ActiveCfg = Release|Any CPU
{C26E375D-DE7C-134E-9846-F87FA19AFEAD}.Release|x86.Build.0 = Release|Any CPU
{31D96779-9DDF-04D6-B22B-6F0FBCB6E846}.Debug|Any CPU.ActiveCfg = Debug|Any CPU
{31D96779-9DDF-04D6-B22B-6F0FBCB6E846}.Debug|Any CPU.Build.0 = Debug|Any CPU
{31D96779-9DDF-04D6-B22B-6F0FBCB6E846}.Debug|x64.ActiveCfg = Debug|Any CPU
{31D96779-9DDF-04D6-B22B-6F0FBCB6E846}.Debug|x64.Build.0 = Debug|Any CPU
{31D96779-9DDF-04D6-B22B-6F0FBCB6E846}.Debug|x86.ActiveCfg = Debug|Any CPU
{31D96779-9DDF-04D6-B22B-6F0FBCB6E846}.Debug|x86.Build.0 = Debug|Any CPU
{31D96779-9DDF-04D6-B22B-6F0FBCB6E846}.Release|Any CPU.ActiveCfg = Release|Any CPU
{31D96779-9DDF-04D6-B22B-6F0FBCB6E846}.Release|Any CPU.Build.0 = Release|Any CPU
{31D96779-9DDF-04D6-B22B-6F0FBCB6E846}.Release|x64.ActiveCfg = Release|Any CPU
{31D96779-9DDF-04D6-B22B-6F0FBCB6E846}.Release|x64.Build.0 = Release|Any CPU
{31D96779-9DDF-04D6-B22B-6F0FBCB6E846}.Release|x86.ActiveCfg = Release|Any CPU
{31D96779-9DDF-04D6-B22B-6F0FBCB6E846}.Release|x86.Build.0 = Release|Any CPU
EndGlobalSection
GlobalSection(SolutionProperties) = preSolution
HideSolutionNode = FALSE
@@ -310,6 +368,11 @@ Global
{18EA8D3B-8570-4D51-B410-580F0782A61C} = {ACB2D19B-6984-27D8-539C-F209B7C78BA5}
{6401A1D7-2E1E-4FE1-B2F6-3DC82C2948DA} = {ACB2D19B-6984-27D8-539C-F209B7C78BA5}
{86D74CD1-A0F7-467B-899B-82641451A8C4} = {ACB2D19B-6984-27D8-539C-F209B7C78BA5}
{D07B22E9-2C46-5425-4076-2E0D5E128488} = {02EA681E-C7D8-13C7-8484-4AC65E1B71E8}
{02EA681E-C7D8-13C7-8484-4AC65E1B71E8} = {EC447DCF-ABFA-6E24-52A5-D7FD48A5C558}
{9B021F2B-646E-3639-D365-19BA2E4693D7} = {02EA681E-C7D8-13C7-8484-4AC65E1B71E8}
{C26E375D-DE7C-134E-9846-F87FA19AFEAD} = {02EA681E-C7D8-13C7-8484-4AC65E1B71E8}
{31D96779-9DDF-04D6-B22B-6F0FBCB6E846} = {02EA681E-C7D8-13C7-8484-4AC65E1B71E8}
EndGlobalSection
GlobalSection(ExtensibilityGlobals) = postSolution
SolutionGuid = {3A6D2E28-927B-49D8-BABA-B5D2FC6D416E}

264
colaflow-api/src/ColaFlow.API/Controllers/McpApiKeysController.cs Normal file
View File

@@ -0,0 +1,264 @@
using ColaFlow.Modules.Mcp.Application.DTOs;
using ColaFlow.Modules.Mcp.Application.Services;
using Microsoft.AspNetCore.Authorization;
using Microsoft.AspNetCore.Mvc;
using System.Security.Claims;
namespace ColaFlow.API.Controllers;
/// <summary>
/// Controller for managing MCP API Keys
/// Requires JWT authentication (not API Key auth)
/// </summary>
[ApiController]
[Route("api/mcp/keys")]
[Authorize] // Requires JWT authentication
public class McpApiKeysController : ControllerBase
{
private readonly IMcpApiKeyService _apiKeyService;
private readonly ILogger<McpApiKeysController> _logger;
public McpApiKeysController(
IMcpApiKeyService apiKeyService,
ILogger<McpApiKeysController> logger)
{
_apiKeyService = apiKeyService ?? throw new ArgumentNullException(nameof(apiKeyService));
_logger = logger ?? throw new ArgumentNullException(nameof(logger));
}
/// <summary>
/// Create a new API Key
/// IMPORTANT: The plain API key is only returned once at creation!
/// </summary>
/// <remarks>
/// Sample request:
///
/// POST /api/mcp/keys
/// {
/// "name": "Claude Desktop",
/// "description": "API key for Claude Desktop integration",
/// "read": true,
/// "write": true,
/// "expirationDays": 90
/// }
///
/// Sample response:
///
/// {
/// "id": "...",
/// "name": "Claude Desktop",
/// "plainKey": "cola_abc123...xyz", // SAVE THIS - shown only once!
/// "keyPrefix": "cola_abc123...",
/// "expiresAt": "2025-03-01T00:00:00Z",
/// "permissions": {
/// "read": true,
/// "write": true,
/// "allowedResources": [],
/// "allowedTools": []
/// }
/// }
///
/// </remarks>
[HttpPost]
[ProducesResponseType(typeof(CreateApiKeyResponse), 200)]
[ProducesResponseType(400)]
[ProducesResponseType(401)]
public async Task<IActionResult> CreateApiKey([FromBody] CreateApiKeyRequestDto request)
{
try
{
// Extract user and tenant from JWT claims
var userId = Guid.Parse(User.FindFirstValue("user_id")!);
var tenantId = Guid.Parse(User.FindFirstValue("tenant_id")!);
var createRequest = new CreateApiKeyRequest
{
Name = request.Name,
Description = request.Description,
TenantId = tenantId,
UserId = userId,
Read = request.Read,
Write = request.Write,
AllowedResources = request.AllowedResources,
AllowedTools = request.AllowedTools,
IpWhitelist = request.IpWhitelist,
ExpirationDays = request.ExpirationDays
};
var response = await _apiKeyService.CreateAsync(createRequest, HttpContext.RequestAborted);
_logger.LogInformation("API Key created: {Name} by User {UserId}", request.Name, userId);
return Ok(response);
}
catch (ArgumentException ex)
{
_logger.LogWarning(ex, "Invalid API Key creation request");
return BadRequest(new { message = ex.Message });
}
catch (Exception ex)
{
_logger.LogError(ex, "Failed to create API Key");
return StatusCode(500, new { message = "Failed to create API Key" });
}
}
/// <summary>
/// Get all API Keys for the current tenant
/// </summary>
[HttpGet]
[ProducesResponseType(typeof(List<ApiKeyResponse>), 200)]
[ProducesResponseType(401)]
public async Task<IActionResult> GetApiKeys()
{
try
{
var tenantId = Guid.Parse(User.FindFirstValue("tenant_id")!);
var apiKeys = await _apiKeyService.GetByTenantIdAsync(tenantId, HttpContext.RequestAborted);
return Ok(apiKeys);
}
catch (Exception ex)
{
_logger.LogError(ex, "Failed to get API Keys");
return StatusCode(500, new { message = "Failed to get API Keys" });
}
}
/// <summary>
/// Get API Key by ID
/// </summary>
[HttpGet("{id}")]
[ProducesResponseType(typeof(ApiKeyResponse), 200)]
[ProducesResponseType(404)]
[ProducesResponseType(401)]
public async Task<IActionResult> GetApiKeyById(Guid id)
{
try
{
var tenantId = Guid.Parse(User.FindFirstValue("tenant_id")!);
var apiKey = await _apiKeyService.GetByIdAsync(id, tenantId, HttpContext.RequestAborted);
if (apiKey == null)
{
return NotFound(new { message = "API Key not found" });
}
return Ok(apiKey);
}
catch (Exception ex)
{
_logger.LogError(ex, "Failed to get API Key {ApiKeyId}", id);
return StatusCode(500, new { message = "Failed to get API Key" });
}
}
/// <summary>
/// Update API Key metadata (name, description)
/// </summary>
[HttpPatch("{id}/metadata")]
[ProducesResponseType(typeof(ApiKeyResponse), 200)]
[ProducesResponseType(404)]
[ProducesResponseType(401)]
public async Task<IActionResult> UpdateMetadata(Guid id, [FromBody] UpdateApiKeyMetadataRequest request)
{
try
{
var tenantId = Guid.Parse(User.FindFirstValue("tenant_id")!);
var apiKey = await _apiKeyService.UpdateMetadataAsync(id, tenantId, request, HttpContext.RequestAborted);
_logger.LogInformation("API Key metadata updated: {ApiKeyId}", id);
return Ok(apiKey);
}
catch (InvalidOperationException ex)
{
_logger.LogWarning(ex, "API Key not found: {ApiKeyId}", id);
return NotFound(new { message = ex.Message });
}
catch (Exception ex)
{
_logger.LogError(ex, "Failed to update API Key metadata: {ApiKeyId}", id);
return StatusCode(500, new { message = "Failed to update API Key" });
}
}
/// <summary>
/// Update API Key permissions
/// </summary>
[HttpPatch("{id}/permissions")]
[ProducesResponseType(typeof(ApiKeyResponse), 200)]
[ProducesResponseType(404)]
[ProducesResponseType(401)]
public async Task<IActionResult> UpdatePermissions(Guid id, [FromBody] UpdateApiKeyPermissionsRequest request)
{
try
{
var tenantId = Guid.Parse(User.FindFirstValue("tenant_id")!);
var apiKey = await _apiKeyService.UpdatePermissionsAsync(id, tenantId, request, HttpContext.RequestAborted);
_logger.LogInformation("API Key permissions updated: {ApiKeyId}", id);
return Ok(apiKey);
}
catch (InvalidOperationException ex)
{
_logger.LogWarning(ex, "API Key not found: {ApiKeyId}", id);
return NotFound(new { message = ex.Message });
}
catch (Exception ex)
{
_logger.LogError(ex, "Failed to update API Key permissions: {ApiKeyId}", id);
return StatusCode(500, new { message = "Failed to update API Key" });
}
}
/// <summary>
/// Revoke an API Key (soft delete)
/// </summary>
[HttpDelete("{id}")]
[ProducesResponseType(204)]
[ProducesResponseType(404)]
[ProducesResponseType(401)]
public async Task<IActionResult> RevokeApiKey(Guid id)
{
try
{
var userId = Guid.Parse(User.FindFirstValue("user_id")!);
var tenantId = Guid.Parse(User.FindFirstValue("tenant_id")!);
await _apiKeyService.RevokeAsync(id, tenantId, userId, HttpContext.RequestAborted);
_logger.LogInformation("API Key revoked: {ApiKeyId} by User {UserId}", id, userId);
return NoContent();
}
catch (InvalidOperationException ex)
{
_logger.LogWarning(ex, "API Key not found: {ApiKeyId}", id);
return NotFound(new { message = ex.Message });
}
catch (Exception ex)
{
_logger.LogError(ex, "Failed to revoke API Key: {ApiKeyId}", id);
return StatusCode(500, new { message = "Failed to revoke API Key" });
}
}
}
/// <summary>
/// Request DTO for creating API Key (simplified for API consumers)
/// </summary>
public record CreateApiKeyRequestDto(
string Name,
string? Description = null,
bool Read = true,
bool Write = false,
List<string>? AllowedResources = null,
List<string>? AllowedTools = null,
List<string>? IpWhitelist = null,
int ExpirationDays = 90
);

7
colaflow-api/src/ColaFlow.API/Program.cs
View File

@@ -27,7 +27,7 @@ builder.Services.AddIdentityApplication();
builder.Services.AddIdentityInfrastructure(builder.Configuration, builder.Environment);
// Register MCP Module
builder.Services.AddMcpModule();
builder.Services.AddMcpModule(builder.Configuration);
// Add Response Caching
builder.Services.AddResponseCaching();
@@ -244,6 +244,11 @@ if (app.Environment.IsDevelopment())
app.Logger.LogWarning("⚠️ IssueManagement module not found, skipping migrations");
}
// Migrate MCP module
var mcpDbContext = services.GetRequiredService<ColaFlow.Modules.Mcp.Infrastructure.Persistence.McpDbContext>();
await mcpDbContext.Database.MigrateAsync();
app.Logger.LogInformation("✅ MCP module migrations applied successfully");
app.Logger.LogInformation("🎉 All database migrations completed successfully!");
}
catch (Exception ex)

12
colaflow-api/src/Modules/Mcp/ColaFlow.Modules.Mcp.Application/DTOs/ApiKeyPermissionsDto.cs Normal file
View File

@@ -0,0 +1,12 @@
namespace ColaFlow.Modules.Mcp.Application.DTOs;
/// <summary>
/// DTO for API Key permissions
/// </summary>
public class ApiKeyPermissionsDto
{
public bool Read { get; set; }
public bool Write { get; set; }
public List<string> AllowedResources { get; set; } = new();
public List<string> AllowedTools { get; set; } = new();
}

23
colaflow-api/src/Modules/Mcp/ColaFlow.Modules.Mcp.Application/DTOs/ApiKeyResponse.cs Normal file
View File

@@ -0,0 +1,23 @@
namespace ColaFlow.Modules.Mcp.Application.DTOs;
/// <summary>
/// Response DTO for API Key (without plain key)
/// </summary>
public class ApiKeyResponse
{
public Guid Id { get; set; }
public Guid TenantId { get; set; }
public Guid UserId { get; set; }
public required string Name { get; set; }
public string? Description { get; set; }
public required string KeyPrefix { get; set; }
public required string Status { get; set; }
public required ApiKeyPermissionsDto Permissions { get; set; }
public List<string>? IpWhitelist { get; set; }
public DateTime? LastUsedAt { get; set; }
public long UsageCount { get; set; }
public DateTime CreatedAt { get; set; }
public DateTime ExpiresAt { get; set; }
public DateTime? RevokedAt { get; set; }
public Guid? RevokedBy { get; set; }
}

45
colaflow-api/src/Modules/Mcp/ColaFlow.Modules.Mcp.Application/DTOs/ApiKeyValidationResult.cs Normal file
View File

@@ -0,0 +1,45 @@
using ColaFlow.Modules.Mcp.Domain.ValueObjects;
namespace ColaFlow.Modules.Mcp.Application.DTOs;
/// <summary>
/// Result of API Key validation
/// </summary>
public class ApiKeyValidationResult
{
public bool IsValid { get; private set; }
public string? ErrorMessage { get; private set; }
public Guid ApiKeyId { get; private set; }
public Guid TenantId { get; private set; }
public Guid UserId { get; private set; }
public ApiKeyPermissions? Permissions { get; private set; }
private ApiKeyValidationResult()
{
}
public static ApiKeyValidationResult Valid(
Guid apiKeyId,
Guid tenantId,
Guid userId,
ApiKeyPermissions permissions)
{
return new ApiKeyValidationResult
{
IsValid = true,
ApiKeyId = apiKeyId,
TenantId = tenantId,
UserId = userId,
Permissions = permissions
};
}
public static ApiKeyValidationResult Invalid(string errorMessage)
{
return new ApiKeyValidationResult
{
IsValid = false,
ErrorMessage = errorMessage
};
}
}

57
colaflow-api/src/Modules/Mcp/ColaFlow.Modules.Mcp.Application/DTOs/CreateApiKeyRequest.cs Normal file
View File

@@ -0,0 +1,57 @@
namespace ColaFlow.Modules.Mcp.Application.DTOs;
/// <summary>
/// Request DTO for creating a new API Key
/// </summary>
public class CreateApiKeyRequest
{
/// <summary>
/// Friendly name for the API key
/// </summary>
public required string Name { get; set; }
/// <summary>
/// Optional description
/// </summary>
public string? Description { get; set; }
/// <summary>
/// Tenant ID
/// </summary>
public required Guid TenantId { get; set; }
/// <summary>
/// User ID who creates the key
/// </summary>
public required Guid UserId { get; set; }
/// <summary>
/// Allow read access
/// </summary>
public bool Read { get; set; } = true;
/// <summary>
/// Allow write access
/// </summary>
public bool Write { get; set; } = false;
/// <summary>
/// List of allowed resource URIs (empty = all allowed)
/// </summary>
public List<string>? AllowedResources { get; set; }
/// <summary>
/// List of allowed tool names (empty = all allowed)
/// </summary>
public List<string>? AllowedTools { get; set; }
/// <summary>
/// Optional IP whitelist
/// </summary>
public List<string>? IpWhitelist { get; set; }
/// <summary>
/// Number of days until expiration (default: 90)
/// </summary>
public int ExpirationDays { get; set; } = 90;
}

21
colaflow-api/src/Modules/Mcp/ColaFlow.Modules.Mcp.Application/DTOs/CreateApiKeyResponse.cs Normal file
View File

@@ -0,0 +1,21 @@
namespace ColaFlow.Modules.Mcp.Application.DTOs;
/// <summary>
/// Response DTO for created API Key
/// IMPORTANT: PlainKey is only shown once at creation!
/// </summary>
public class CreateApiKeyResponse
{
public Guid Id { get; set; }
public required string Name { get; set; }
/// <summary>
/// IMPORTANT: Plain API Key - shown only once at creation!
/// Save this securely - it cannot be retrieved later.
/// </summary>
public required string PlainKey { get; set; }
public required string KeyPrefix { get; set; }
public DateTime ExpiresAt { get; set; }
public required ApiKeyPermissionsDto Permissions { get; set; }
}

10
colaflow-api/src/Modules/Mcp/ColaFlow.Modules.Mcp.Application/DTOs/UpdateApiKeyMetadataRequest.cs Normal file
View File

@@ -0,0 +1,10 @@
namespace ColaFlow.Modules.Mcp.Application.DTOs;
/// <summary>
/// Request DTO for updating API Key metadata
/// </summary>
public class UpdateApiKeyMetadataRequest
{
public string? Name { get; set; }
public string? Description { get; set; }
}

13
colaflow-api/src/Modules/Mcp/ColaFlow.Modules.Mcp.Application/DTOs/UpdateApiKeyPermissionsRequest.cs Normal file
View File

@@ -0,0 +1,13 @@
namespace ColaFlow.Modules.Mcp.Application.DTOs;
/// <summary>
/// Request DTO for updating API Key permissions
/// </summary>
public class UpdateApiKeyPermissionsRequest
{
public bool Read { get; set; }
public bool Write { get; set; }
public List<string>? AllowedResources { get; set; }
public List<string>? AllowedTools { get; set; }
public List<string>? IpWhitelist { get; set; }
}

49
colaflow-api/src/Modules/Mcp/ColaFlow.Modules.Mcp.Application/Services/IMcpApiKeyService.cs Normal file
View File

@@ -0,0 +1,49 @@
using ColaFlow.Modules.Mcp.Application.DTOs;
namespace ColaFlow.Modules.Mcp.Application.Services;
/// <summary>
/// Service interface for MCP API Key management
/// </summary>
public interface IMcpApiKeyService
{
/// <summary>
/// Create a new API Key
/// </summary>
Task<CreateApiKeyResponse> CreateAsync(CreateApiKeyRequest request, CancellationToken cancellationToken = default);
/// <summary>
/// Validate an API Key
/// </summary>
Task<ApiKeyValidationResult> ValidateAsync(string plainKey, string? ipAddress = null, CancellationToken cancellationToken = default);
/// <summary>
/// Get API Key by ID
/// </summary>
Task<ApiKeyResponse?> GetByIdAsync(Guid id, Guid tenantId, CancellationToken cancellationToken = default);
/// <summary>
/// Get all API Keys for a tenant
/// </summary>
Task<List<ApiKeyResponse>> GetByTenantIdAsync(Guid tenantId, CancellationToken cancellationToken = default);
/// <summary>
/// Get all API Keys for a user
/// </summary>
Task<List<ApiKeyResponse>> GetByUserIdAsync(Guid userId, Guid tenantId, CancellationToken cancellationToken = default);
/// <summary>
/// Update API Key metadata
/// </summary>
Task<ApiKeyResponse> UpdateMetadataAsync(Guid id, Guid tenantId, UpdateApiKeyMetadataRequest request, CancellationToken cancellationToken = default);
/// <summary>
/// Update API Key permissions
/// </summary>
Task<ApiKeyResponse> UpdatePermissionsAsync(Guid id, Guid tenantId, UpdateApiKeyPermissionsRequest request, CancellationToken cancellationToken = default);
/// <summary>
/// Revoke an API Key
/// </summary>
Task RevokeAsync(Guid id, Guid tenantId, Guid revokedBy, CancellationToken cancellationToken = default);
}

255
colaflow-api/src/Modules/Mcp/ColaFlow.Modules.Mcp.Application/Services/McpApiKeyService.cs Normal file
View File

@@ -0,0 +1,255 @@
using ColaFlow.Modules.Mcp.Application.DTOs;
using ColaFlow.Modules.Mcp.Domain.Entities;
using ColaFlow.Modules.Mcp.Domain.Repositories;
using ColaFlow.Modules.Mcp.Domain.ValueObjects;
using Microsoft.Extensions.Logging;
namespace ColaFlow.Modules.Mcp.Application.Services;
/// <summary>
/// Service implementation for MCP API Key management
/// </summary>
public class McpApiKeyService : IMcpApiKeyService
{
private readonly IMcpApiKeyRepository _repository;
private readonly ILogger<McpApiKeyService> _logger;
public McpApiKeyService(
IMcpApiKeyRepository repository,
ILogger<McpApiKeyService> logger)
{
_repository = repository ?? throw new ArgumentNullException(nameof(repository));
_logger = logger ?? throw new ArgumentNullException(nameof(logger));
}
public async Task<CreateApiKeyResponse> CreateAsync(CreateApiKeyRequest request, CancellationToken cancellationToken = default)
{
_logger.LogInformation("Creating API Key '{Name}' for Tenant {TenantId} User {UserId}",
request.Name, request.TenantId, request.UserId);
// Create permissions
var permissions = ApiKeyPermissions.Custom(
request.Read,
request.Write,
request.AllowedResources,
request.AllowedTools);
// Create API Key entity
var (apiKey, plainKey) = McpApiKey.Create(
request.Name,
request.TenantId,
request.UserId,
permissions,
request.ExpirationDays,
request.IpWhitelist);
// Add description if provided
if (!string.IsNullOrWhiteSpace(request.Description))
{
apiKey.UpdateMetadata(description: request.Description);
}
// Save to database
await _repository.AddAsync(apiKey, cancellationToken);
_logger.LogInformation("API Key created successfully: {ApiKeyId}", apiKey.Id);
return new CreateApiKeyResponse
{
Id = apiKey.Id,
Name = apiKey.Name,
PlainKey = plainKey, // IMPORTANT: Only returned once!
KeyPrefix = apiKey.KeyPrefix,
ExpiresAt = apiKey.ExpiresAt,
Permissions = new ApiKeyPermissionsDto
{
Read = apiKey.Permissions.Read,
Write = apiKey.Permissions.Write,
AllowedResources = apiKey.Permissions.AllowedResources,
AllowedTools = apiKey.Permissions.AllowedTools
}
};
}
public async Task<ApiKeyValidationResult> ValidateAsync(string plainKey, string? ipAddress = null, CancellationToken cancellationToken = default)
{
if (string.IsNullOrWhiteSpace(plainKey))
{
return ApiKeyValidationResult.Invalid("API Key is empty");
}
// Extract prefix for fast lookup
if (plainKey.Length < 12)
{
return ApiKeyValidationResult.Invalid("Invalid API Key format");
}
var keyPrefix = plainKey.Substring(0, 12);
// Lookup by prefix
var apiKey = await _repository.GetByPrefixAsync(keyPrefix, cancellationToken);
if (apiKey == null)
{
_logger.LogWarning("API Key not found for prefix: {KeyPrefix}", keyPrefix);
return ApiKeyValidationResult.Invalid("Invalid API Key");
}
// Verify hash
if (!apiKey.VerifyKey(plainKey))
{
_logger.LogWarning("API Key hash verification failed for {ApiKeyId}", apiKey.Id);
return ApiKeyValidationResult.Invalid("Invalid API Key");
}
// Check status
if (apiKey.Status != ApiKeyStatus.Active)
{
_logger.LogWarning("API Key {ApiKeyId} is revoked", apiKey.Id);
return ApiKeyValidationResult.Invalid("API Key has been revoked");
}
// Check expiration
if (apiKey.IsExpired())
{
_logger.LogWarning("API Key {ApiKeyId} is expired", apiKey.Id);
return ApiKeyValidationResult.Invalid("API Key has expired");
}
// Check IP whitelist
if (!string.IsNullOrWhiteSpace(ipAddress) && !apiKey.IsIpAllowed(ipAddress))
{
_logger.LogWarning("API Key {ApiKeyId} rejected - IP {IpAddress} not whitelisted", apiKey.Id, ipAddress);
return ApiKeyValidationResult.Invalid("IP address not allowed");
}
// Record usage (async, don't block)
try
{
apiKey.RecordUsage();
await _repository.UpdateAsync(apiKey, cancellationToken);
}
catch (Exception ex)
{
_logger.LogError(ex, "Failed to record API Key usage for {ApiKeyId}", apiKey.Id);
// Continue - don't block auth for usage tracking failures
}
_logger.LogInformation("API Key {ApiKeyId} validated successfully for Tenant {TenantId}",
apiKey.Id, apiKey.TenantId);
return ApiKeyValidationResult.Valid(
apiKey.Id,
apiKey.TenantId,
apiKey.UserId,
apiKey.Permissions);
}
public async Task<ApiKeyResponse?> GetByIdAsync(Guid id, Guid tenantId, CancellationToken cancellationToken = default)
{
var apiKey = await _repository.GetByIdAsync(id, cancellationToken);
if (apiKey == null || apiKey.TenantId != tenantId)
{
return null;
}
return MapToResponse(apiKey);
}
public async Task<List<ApiKeyResponse>> GetByTenantIdAsync(Guid tenantId, CancellationToken cancellationToken = default)
{
var apiKeys = await _repository.GetByTenantIdAsync(tenantId, cancellationToken);
return apiKeys.Select(MapToResponse).ToList();
}
public async Task<List<ApiKeyResponse>> GetByUserIdAsync(Guid userId, Guid tenantId, CancellationToken cancellationToken = default)
{
var apiKeys = await _repository.GetByUserIdAsync(userId, tenantId, cancellationToken);
return apiKeys.Select(MapToResponse).ToList();
}
public async Task<ApiKeyResponse> UpdateMetadataAsync(Guid id, Guid tenantId, UpdateApiKeyMetadataRequest request, CancellationToken cancellationToken = default)
{
var apiKey = await _repository.GetByIdAsync(id, cancellationToken);
if (apiKey == null || apiKey.TenantId != tenantId)
{
throw new InvalidOperationException("API Key not found");
}
apiKey.UpdateMetadata(request.Name, request.Description);
await _repository.UpdateAsync(apiKey, cancellationToken);
_logger.LogInformation("API Key {ApiKeyId} metadata updated", apiKey.Id);
return MapToResponse(apiKey);
}
public async Task<ApiKeyResponse> UpdatePermissionsAsync(Guid id, Guid tenantId, UpdateApiKeyPermissionsRequest request, CancellationToken cancellationToken = default)
{
var apiKey = await _repository.GetByIdAsync(id, cancellationToken);
if (apiKey == null || apiKey.TenantId != tenantId)
{
throw new InvalidOperationException("API Key not found");
}
var permissions = ApiKeyPermissions.Custom(
request.Read,
request.Write,
request.AllowedResources,
request.AllowedTools);
apiKey.UpdatePermissions(permissions);
if (request.IpWhitelist != null)
{
apiKey.UpdateIpWhitelist(request.IpWhitelist);
}
await _repository.UpdateAsync(apiKey, cancellationToken);
_logger.LogInformation("API Key {ApiKeyId} permissions updated", apiKey.Id);
return MapToResponse(apiKey);
}
public async Task RevokeAsync(Guid id, Guid tenantId, Guid revokedBy, CancellationToken cancellationToken = default)
{
var apiKey = await _repository.GetByIdAsync(id, cancellationToken);
if (apiKey == null || apiKey.TenantId != tenantId)
{
throw new InvalidOperationException("API Key not found");
}
apiKey.Revoke(revokedBy);
await _repository.UpdateAsync(apiKey, cancellationToken);
_logger.LogInformation("API Key {ApiKeyId} revoked by {RevokedBy}", apiKey.Id, revokedBy);
}
private static ApiKeyResponse MapToResponse(McpApiKey apiKey)
{
return new ApiKeyResponse
{
Id = apiKey.Id,
TenantId = apiKey.TenantId,
UserId = apiKey.UserId,
Name = apiKey.Name,
Description = apiKey.Description,
KeyPrefix = apiKey.KeyPrefix,
Status = apiKey.Status.ToString(),
Permissions = new ApiKeyPermissionsDto
{
Read = apiKey.Permissions.Read,
Write = apiKey.Permissions.Write,
AllowedResources = apiKey.Permissions.AllowedResources,
AllowedTools = apiKey.Permissions.AllowedTools
},
IpWhitelist = apiKey.IpWhitelist,
LastUsedAt = apiKey.LastUsedAt,
UsageCount = apiKey.UsageCount,
CreatedAt = apiKey.CreatedAt,
ExpiresAt = apiKey.ExpiresAt,
RevokedAt = apiKey.RevokedAt,
RevokedBy = apiKey.RevokedBy
};
}
}

5
colaflow-api/src/Modules/Mcp/ColaFlow.Modules.Mcp.Domain/ColaFlow.Modules.Mcp.Domain.csproj
View File

@@ -10,6 +10,11 @@
<ItemGroup>
<ProjectReference Include="..\ColaFlow.Modules.Mcp.Contracts\ColaFlow.Modules.Mcp.Contracts.csproj" />
<ProjectReference Include="..\..\..\Shared\ColaFlow.Shared.Kernel\ColaFlow.Shared.Kernel.csproj" />
</ItemGroup>
<ItemGroup>
<PackageReference Include="BCrypt.Net-Next" Version="4.0.3" />
</ItemGroup>
</Project>

245
colaflow-api/src/Modules/Mcp/ColaFlow.Modules.Mcp.Domain/Entities/McpApiKey.cs Normal file
View File

@@ -0,0 +1,245 @@
using System.Security.Cryptography;
using ColaFlow.Shared.Kernel.Common;
using ColaFlow.Modules.Mcp.Domain.Events;
using ColaFlow.Modules.Mcp.Domain.ValueObjects;
namespace ColaFlow.Modules.Mcp.Domain.Entities;
/// <summary>
/// MCP API Key aggregate root - manages API keys for AI agent authentication
/// </summary>
public sealed class McpApiKey : AggregateRoot
{
// Multi-tenant isolation
public Guid TenantId { get; private set; }
public Guid UserId { get; private set; }
// Security fields
public string KeyHash { get; private set; } = null!;
public string KeyPrefix { get; private set; } = null!;
// Metadata
public string Name { get; private set; } = null!;
public string? Description { get; private set; }
// Permissions
public ApiKeyPermissions Permissions { get; private set; } = null!;
public List<string>? IpWhitelist { get; private set; }
// Status tracking
public ApiKeyStatus Status { get; private set; }
public DateTime? LastUsedAt { get; private set; }
public long UsageCount { get; private set; }
// Lifecycle
public DateTime CreatedAt { get; private set; }
public DateTime ExpiresAt { get; private set; }
public DateTime? RevokedAt { get; private set; }
public Guid? RevokedBy { get; private set; }
// Private constructor for EF Core
private McpApiKey() : base()
{
}
/// <summary>
/// Factory method to create a new API Key
/// </summary>
/// <param name="name">Friendly name for the API key</param>
/// <param name="tenantId">Tenant ID for multi-tenant isolation</param>
/// <param name="userId">User ID who created the key</param>
/// <param name="permissions">Permission configuration</param>
/// <param name="expirationDays">Number of days until expiration (default: 90)</param>
/// <param name="ipWhitelist">Optional list of allowed IP addresses</param>
/// <returns>Tuple of (apiKey entity, plaintext key) - plaintext key shown only once!</returns>
public static (McpApiKey ApiKey, string PlainKey) Create(
string name,
Guid tenantId,
Guid userId,
ApiKeyPermissions permissions,
int expirationDays = 90,
List<string>? ipWhitelist = null)
{
if (string.IsNullOrWhiteSpace(name))
throw new ArgumentException("API Key name cannot be empty", nameof(name));
if (tenantId == Guid.Empty)
throw new ArgumentException("Tenant ID cannot be empty", nameof(tenantId));
if (userId == Guid.Empty)
throw new ArgumentException("User ID cannot be empty", nameof(userId));
if (permissions == null)
throw new ArgumentNullException(nameof(permissions));
if (expirationDays <= 0 || expirationDays > 365)
throw new ArgumentException("Expiration days must be between 1 and 365", nameof(expirationDays));
// Generate cryptographically secure API key
var plainKey = GenerateApiKey();
var keyHash = BCrypt.Net.BCrypt.HashPassword(plainKey, workFactor: 12);
var keyPrefix = plainKey.Substring(0, 12); // "cola_abc123..."
var apiKey = new McpApiKey
{
Id = Guid.NewGuid(),
TenantId = tenantId,
UserId = userId,
KeyHash = keyHash,
KeyPrefix = keyPrefix,
Name = name,
Permissions = permissions,
Status = ApiKeyStatus.Active,
CreatedAt = DateTime.UtcNow,
ExpiresAt = DateTime.UtcNow.AddDays(expirationDays),
UsageCount = 0,
IpWhitelist = ipWhitelist
};
apiKey.AddDomainEvent(new ApiKeyCreatedEvent(apiKey.Id, apiKey.Name, apiKey.TenantId, apiKey.UserId));
return (apiKey, plainKey);
}
/// <summary>
/// Revoke the API key (soft delete)
/// </summary>
/// <param name="revokedBy">User ID who revoked the key</param>
public void Revoke(Guid revokedBy)
{
if (Status == ApiKeyStatus.Revoked)
throw new InvalidOperationException("API Key is already revoked");
if (revokedBy == Guid.Empty)
throw new ArgumentException("Revoked by user ID cannot be empty", nameof(revokedBy));
Status = ApiKeyStatus.Revoked;
RevokedAt = DateTime.UtcNow;
RevokedBy = revokedBy;
AddDomainEvent(new ApiKeyRevokedEvent(Id, Name, TenantId, revokedBy));
}
/// <summary>
/// Record successful usage of the API key
/// </summary>
public void RecordUsage()
{
if (Status != ApiKeyStatus.Active)
throw new InvalidOperationException("Cannot record usage for inactive API key");
if (IsExpired())
throw new InvalidOperationException("Cannot record usage for expired API key");
LastUsedAt = DateTime.UtcNow;
UsageCount++;
}
/// <summary>
/// Update API key metadata
/// </summary>
public void UpdateMetadata(string? name = null, string? description = null)
{
if (Status == ApiKeyStatus.Revoked)
throw new InvalidOperationException("Cannot update revoked API key");
if (!string.IsNullOrWhiteSpace(name))
Name = name;
Description = description;
}
/// <summary>
/// Update API key permissions
/// </summary>
public void UpdatePermissions(ApiKeyPermissions permissions)
{
if (Status == ApiKeyStatus.Revoked)
throw new InvalidOperationException("Cannot update permissions for revoked API key");
if (permissions == null)
throw new ArgumentNullException(nameof(permissions));
Permissions = permissions;
}
/// <summary>
/// Update IP whitelist
/// </summary>
public void UpdateIpWhitelist(List<string>? ipWhitelist)
{
if (Status == ApiKeyStatus.Revoked)
throw new InvalidOperationException("Cannot update IP whitelist for revoked API key");
IpWhitelist = ipWhitelist;
}
/// <summary>
/// Check if the API key is expired
/// </summary>
public bool IsExpired()
{
return DateTime.UtcNow > ExpiresAt;
}
/// <summary>
/// Check if the API key is valid for use
/// </summary>
public bool IsValid()
{
return Status == ApiKeyStatus.Active && !IsExpired();
}
/// <summary>
/// Verify the provided plain key against the stored hash
/// </summary>
public bool VerifyKey(string plainKey)
{
if (string.IsNullOrWhiteSpace(plainKey))
return false;
try
{
return BCrypt.Net.BCrypt.Verify(plainKey, KeyHash);
}
catch
{
return false;
}
}
/// <summary>
/// Check if the provided IP address is whitelisted
/// </summary>
public bool IsIpAllowed(string ipAddress)
{
// If no whitelist configured, allow all IPs
if (IpWhitelist == null || IpWhitelist.Count == 0)
return true;
return IpWhitelist.Contains(ipAddress);
}
/// <summary>
/// Generate a cryptographically secure API key
/// Format: cola_<36 random characters>
/// </summary>
private static string GenerateApiKey()
{
const int byteLength = 30; // Generates 40+ chars in base64
var bytes = new byte[byteLength];
using var rng = RandomNumberGenerator.Create();
rng.GetBytes(bytes);
var base64 = Convert.ToBase64String(bytes)
.Replace("+", "")
.Replace("/", "")
.Replace("=", "");
// Take first 36 characters
var randomPart = base64.Length >= 36 ? base64.Substring(0, 36) : base64.PadRight(36, '0');
return $"cola_{randomPart}";
}
}

13
colaflow-api/src/Modules/Mcp/ColaFlow.Modules.Mcp.Domain/Events/ApiKeyCreatedEvent.cs Normal file
View File

@@ -0,0 +1,13 @@
using ColaFlow.Shared.Kernel.Events;
namespace ColaFlow.Modules.Mcp.Domain.Events;
/// <summary>
/// Domain event raised when an API Key is created
/// </summary>
public sealed record ApiKeyCreatedEvent(
Guid ApiKeyId,
string Name,
Guid TenantId,
Guid UserId
) : DomainEvent;

13
colaflow-api/src/Modules/Mcp/ColaFlow.Modules.Mcp.Domain/Events/ApiKeyRevokedEvent.cs Normal file
View File

@@ -0,0 +1,13 @@
using ColaFlow.Shared.Kernel.Events;
namespace ColaFlow.Modules.Mcp.Domain.Events;
/// <summary>
/// Domain event raised when an API Key is revoked
/// </summary>
public sealed record ApiKeyRevokedEvent(
Guid ApiKeyId,
string Name,
Guid TenantId,
Guid RevokedBy
) : DomainEvent;

49
colaflow-api/src/Modules/Mcp/ColaFlow.Modules.Mcp.Domain/Repositories/IMcpApiKeyRepository.cs Normal file
View File

@@ -0,0 +1,49 @@
using ColaFlow.Modules.Mcp.Domain.Entities;
namespace ColaFlow.Modules.Mcp.Domain.Repositories;
/// <summary>
/// Repository interface for MCP API Keys
/// </summary>
public interface IMcpApiKeyRepository
{
/// <summary>
/// Get API Key by ID
/// </summary>
Task<McpApiKey?> GetByIdAsync(Guid id, CancellationToken cancellationToken = default);
/// <summary>
/// Get API Key by key prefix (for fast lookup)
/// </summary>
Task<McpApiKey?> GetByPrefixAsync(string keyPrefix, CancellationToken cancellationToken = default);
/// <summary>
/// Get all API Keys for a tenant
/// </summary>
Task<List<McpApiKey>> GetByTenantIdAsync(Guid tenantId, CancellationToken cancellationToken = default);
/// <summary>
/// Get all API Keys for a user
/// </summary>
Task<List<McpApiKey>> GetByUserIdAsync(Guid userId, Guid tenantId, CancellationToken cancellationToken = default);
/// <summary>
/// Add a new API Key
/// </summary>
Task AddAsync(McpApiKey apiKey, CancellationToken cancellationToken = default);
/// <summary>
/// Update an existing API Key
/// </summary>
Task UpdateAsync(McpApiKey apiKey, CancellationToken cancellationToken = default);
/// <summary>
/// Delete an API Key (physical delete - use Revoke for soft delete)
/// </summary>
Task DeleteAsync(McpApiKey apiKey, CancellationToken cancellationToken = default);
/// <summary>
/// Check if an API Key prefix already exists
/// </summary>
Task<bool> ExistsByPrefixAsync(string keyPrefix, CancellationToken cancellationToken = default);
}

106
colaflow-api/src/Modules/Mcp/ColaFlow.Modules.Mcp.Domain/ValueObjects/ApiKeyPermissions.cs Normal file
View File

@@ -0,0 +1,106 @@
namespace ColaFlow.Modules.Mcp.Domain.ValueObjects;
/// <summary>
/// Value object representing API Key permissions
/// </summary>
public sealed class ApiKeyPermissions
{
/// <summary>
/// Allow read access to MCP resources
/// </summary>
public bool Read { get; set; } = true;
/// <summary>
/// Allow write access via MCP tools
/// </summary>
public bool Write { get; set; } = false;
/// <summary>
/// List of allowed resource URIs (empty = all allowed)
/// Example: ["project://123", "epic://456"]
/// </summary>
public List<string> AllowedResources { get; set; } = new();
/// <summary>
/// List of allowed tool names (empty = all allowed)
/// Example: ["create_task", "update_story"]
/// </summary>
public List<string> AllowedTools { get; set; } = new();
/// <summary>
/// Private constructor for EF Core
/// </summary>
private ApiKeyPermissions()
{
}
/// <summary>
/// Create a read-only permission set
/// </summary>
public static ApiKeyPermissions ReadOnly()
{
return new ApiKeyPermissions
{
Read = true,
Write = false,
AllowedResources = new(),
AllowedTools = new()
};
}
/// <summary>
/// Create a read-write permission set
/// </summary>
public static ApiKeyPermissions ReadWrite()
{
return new ApiKeyPermissions
{
Read = true,
Write = true,
AllowedResources = new(),
AllowedTools = new()
};
}
/// <summary>
/// Create a custom permission set
/// </summary>
public static ApiKeyPermissions Custom(
bool read,
bool write,
List<string>? allowedResources = null,
List<string>? allowedTools = null)
{
return new ApiKeyPermissions
{
Read = read,
Write = write,
AllowedResources = allowedResources ?? new(),
AllowedTools = allowedTools ?? new()
};
}
/// <summary>
/// Check if the permission allows the specified resource
/// </summary>
public bool CanAccessResource(string resourceUri)
{
// If no restrictions, allow all
if (AllowedResources.Count == 0)
return Read;
return AllowedResources.Contains(resourceUri);
}
/// <summary>
/// Check if the permission allows the specified tool
/// </summary>
public bool CanUseTool(string toolName)
{
// If no restrictions, allow all (if write enabled)
if (AllowedTools.Count == 0)
return Write;
return AllowedTools.Contains(toolName);
}
}

17
colaflow-api/src/Modules/Mcp/ColaFlow.Modules.Mcp.Domain/ValueObjects/ApiKeyStatus.cs Normal file
View File

@@ -0,0 +1,17 @@
namespace ColaFlow.Modules.Mcp.Domain.ValueObjects;
/// <summary>
/// API Key status enumeration
/// </summary>
public enum ApiKeyStatus
{
/// <summary>
/// API Key is active and can be used
/// </summary>
Active = 1,
/// <summary>
/// API Key has been revoked and cannot be used
/// </summary>
Revoked = 2
}

9
colaflow-api/src/Modules/Mcp/ColaFlow.Modules.Mcp.Infrastructure/ColaFlow.Modules.Mcp.Infrastructure.csproj
View File

@@ -16,4 +16,13 @@
<FrameworkReference Include="Microsoft.AspNetCore.App" />
</ItemGroup>
<ItemGroup>
<PackageReference Include="Microsoft.EntityFrameworkCore" Version="9.0.0" />
<PackageReference Include="Npgsql.EntityFrameworkCore.PostgreSQL" Version="9.0.0" />
<PackageReference Include="Microsoft.EntityFrameworkCore.Design" Version="9.0.0">
<PrivateAssets>all</PrivateAssets>
<IncludeAssets>runtime; build; native; contentfiles; analyzers; buildtransitive</IncludeAssets>
</PackageReference>
</ItemGroup>
</Project>

27
colaflow-api/src/Modules/Mcp/ColaFlow.Modules.Mcp.Infrastructure/Extensions/McpServiceExtensions.cs
View File

@@ -1,6 +1,12 @@
using ColaFlow.Modules.Mcp.Application.Handlers;
using ColaFlow.Modules.Mcp.Application.Services;
using ColaFlow.Modules.Mcp.Domain.Repositories;
using ColaFlow.Modules.Mcp.Infrastructure.Middleware;
using ColaFlow.Modules.Mcp.Infrastructure.Persistence;
using ColaFlow.Modules.Mcp.Infrastructure.Persistence.Repositories;
using Microsoft.AspNetCore.Builder;
using Microsoft.EntityFrameworkCore;
using Microsoft.Extensions.Configuration;
using Microsoft.Extensions.DependencyInjection;
namespace ColaFlow.Modules.Mcp.Infrastructure.Extensions;
@@ -13,8 +19,21 @@ public static class McpServiceExtensions
/// <summary>
/// Registers MCP module services
/// </summary>
public static IServiceCollection AddMcpModule(this IServiceCollection services)
public static IServiceCollection AddMcpModule(this IServiceCollection services, IConfiguration configuration)
{
// Register DbContext
services.AddDbContext<McpDbContext>(options =>
{
var connectionString = configuration.GetConnectionString("DefaultConnection");
options.UseNpgsql(connectionString);
});
// Register repositories
services.AddScoped<IMcpApiKeyRepository, McpApiKeyRepository>();
// Register application services
services.AddScoped<IMcpApiKeyService, McpApiKeyService>();
// Register protocol handler
services.AddScoped<IMcpProtocolHandler, McpProtocolHandler>();
@@ -29,10 +48,16 @@ public static class McpServiceExtensions
/// <summary>
/// Adds MCP middleware to the application pipeline
/// IMPORTANT: Add authentication middleware BEFORE MCP middleware
/// </summary>
public static IApplicationBuilder UseMcpMiddleware(this IApplicationBuilder app)
{
// Authentication middleware MUST come first
app.UseMiddleware<McpApiKeyAuthenticationMiddleware>();
// Then the MCP protocol handler
app.UseMiddleware<McpMiddleware>();
return app;
}
}

124
colaflow-api/src/Modules/Mcp/ColaFlow.Modules.Mcp.Infrastructure/Middleware/McpApiKeyAuthenticationMiddleware.cs Normal file
View File

@@ -0,0 +1,124 @@
using System.Text.Json;
using ColaFlow.Modules.Mcp.Application.Services;
using Microsoft.AspNetCore.Http;
using Microsoft.Extensions.Logging;
namespace ColaFlow.Modules.Mcp.Infrastructure.Middleware;
/// <summary>
/// Middleware for authenticating MCP requests using API Keys
/// Only applies to /mcp endpoints
/// </summary>
public class McpApiKeyAuthenticationMiddleware
{
private readonly RequestDelegate _next;
private readonly ILogger<McpApiKeyAuthenticationMiddleware> _logger;
public McpApiKeyAuthenticationMiddleware(
RequestDelegate next,
ILogger<McpApiKeyAuthenticationMiddleware> logger)
{
_next = next;
_logger = logger;
}
public async Task InvokeAsync(HttpContext context, IMcpApiKeyService apiKeyService)
{
// Only apply to /mcp endpoints
if (!context.Request.Path.StartsWithSegments("/mcp"))
{
await _next(context);
return;
}
// Extract API Key from Authorization header
var apiKey = ExtractApiKey(context.Request.Headers);
if (string.IsNullOrEmpty(apiKey))
{
_logger.LogWarning("MCP request rejected - Missing API Key");
await WriteUnauthorizedResponse(context, "Missing API Key. Please provide Authorization: Bearer <api_key> header.");
return;
}
// Get client IP address
var ipAddress = context.Connection.RemoteIpAddress?.ToString();
// Validate API Key
var validationResult = await apiKeyService.ValidateAsync(apiKey, ipAddress, context.RequestAborted);
if (!validationResult.IsValid)
{
_logger.LogWarning("MCP request rejected - Invalid API Key: {ErrorMessage}", validationResult.ErrorMessage);
await WriteUnauthorizedResponse(context, validationResult.ErrorMessage ?? "Invalid API Key");
return;
}
// Set authentication context for downstream handlers
context.Items["McpAuthType"] = "ApiKey";
context.Items["McpApiKeyId"] = validationResult.ApiKeyId;
context.Items["McpTenantId"] = validationResult.TenantId;
context.Items["McpUserId"] = validationResult.UserId;
context.Items["McpPermissions"] = validationResult.Permissions;
_logger.LogDebug("MCP request authenticated - ApiKey: {ApiKeyId}, Tenant: {TenantId}, User: {UserId}",
validationResult.ApiKeyId, validationResult.TenantId, validationResult.UserId);
await _next(context);
}
/// <summary>
/// Extract API Key from Authorization header
/// Supports: Authorization: Bearer <api_key>
/// </summary>
private static string? ExtractApiKey(IHeaderDictionary headers)
{
if (!headers.TryGetValue("Authorization", out var authHeader))
{
return null;
}
var authHeaderValue = authHeader.ToString();
if (string.IsNullOrWhiteSpace(authHeaderValue))
{
return null;
}
// Support "Bearer <api_key>" format
const string bearerPrefix = "Bearer ";
if (authHeaderValue.StartsWith(bearerPrefix, StringComparison.OrdinalIgnoreCase))
{
return authHeaderValue.Substring(bearerPrefix.Length).Trim();
}
// Also support direct API key without "Bearer " prefix (for compatibility)
return authHeaderValue.Trim();
}
/// <summary>
/// Write 401 Unauthorized response in MCP JSON-RPC format
/// </summary>
private static async Task WriteUnauthorizedResponse(HttpContext context, string message)
{
context.Response.StatusCode = 401;
context.Response.ContentType = "application/json";
var errorResponse = new
{
jsonrpc = "2.0",
error = new
{
code = -32001, // Custom error code for authentication failure
message = "Unauthorized",
data = new { details = message }
},
id = (object?)null // We don't have request id yet
};
var json = JsonSerializer.Serialize(errorResponse, new JsonSerializerOptions
{
PropertyNamingPolicy = JsonNamingPolicy.CamelCase,
DefaultIgnoreCondition = System.Text.Json.Serialization.JsonIgnoreCondition.WhenWritingNull
});
await context.Response.WriteAsync(json);
}
}

120
colaflow-api/src/Modules/Mcp/ColaFlow.Modules.Mcp.Infrastructure/Persistence/Configurations/McpApiKeyConfiguration.cs Normal file
View File

@@ -0,0 +1,120 @@
using ColaFlow.Modules.Mcp.Domain.Entities;
using ColaFlow.Modules.Mcp.Domain.ValueObjects;
using Microsoft.EntityFrameworkCore;
using Microsoft.EntityFrameworkCore.Metadata.Builders;
using System.Text.Json;
namespace ColaFlow.Modules.Mcp.Infrastructure.Persistence.Configurations;
/// <summary>
/// EF Core configuration for McpApiKey entity
/// </summary>
public class McpApiKeyConfiguration : IEntityTypeConfiguration<McpApiKey>
{
public void Configure(EntityTypeBuilder<McpApiKey> builder)
{
builder.ToTable("mcp_api_keys", "mcp");
builder.HasKey(k => k.Id);
// Tenant and User IDs
builder.Property(k => k.TenantId)
.HasColumnName("tenant_id")
.IsRequired();
builder.Property(k => k.UserId)
.HasColumnName("user_id")
.IsRequired();
// Security fields
builder.Property(k => k.KeyHash)
.HasColumnName("key_hash")
.HasMaxLength(64)
.IsRequired();
builder.Property(k => k.KeyPrefix)
.HasColumnName("key_prefix")
.HasMaxLength(16)
.IsRequired();
// Metadata
builder.Property(k => k.Name)
.HasColumnName("name")
.HasMaxLength(255)
.IsRequired();
builder.Property(k => k.Description)
.HasColumnName("description")
.HasColumnType("text")
.IsRequired(false);
// Permissions - stored as JSONB
builder.Property(k => k.Permissions)
.HasColumnName("permissions")
.HasColumnType("jsonb")
.HasConversion(
v => JsonSerializer.Serialize(v, (JsonSerializerOptions?)null),
v => JsonSerializer.Deserialize<ApiKeyPermissions>(v, (JsonSerializerOptions?)null)!)
.IsRequired();
// IP Whitelist - stored as JSONB
builder.Property(k => k.IpWhitelist)
.HasColumnName("ip_whitelist")
.HasColumnType("jsonb")
.HasConversion(
v => v != null ? JsonSerializer.Serialize(v, (JsonSerializerOptions?)null) : null,
v => v != null ? JsonSerializer.Deserialize<List<string>>(v, (JsonSerializerOptions?)null) : null)
.IsRequired(false);
// Status
builder.Property(k => k.Status)
.HasColumnName("status")
.HasConversion<int>()
.IsRequired();
builder.Property(k => k.LastUsedAt)
.HasColumnName("last_used_at")
.IsRequired(false);
builder.Property(k => k.UsageCount)
.HasColumnName("usage_count")
.IsRequired();
// Lifecycle
builder.Property(k => k.CreatedAt)
.HasColumnName("created_at")
.IsRequired();
builder.Property(k => k.ExpiresAt)
.HasColumnName("expires_at")
.IsRequired();
builder.Property(k => k.RevokedAt)
.HasColumnName("revoked_at")
.IsRequired(false);
builder.Property(k => k.RevokedBy)
.HasColumnName("revoked_by")
.IsRequired(false);
// Indexes for performance
builder.HasIndex(k => k.KeyPrefix)
.HasDatabaseName("ix_mcp_api_keys_key_prefix")
.IsUnique();
builder.HasIndex(k => k.TenantId)
.HasDatabaseName("ix_mcp_api_keys_tenant_id");
builder.HasIndex(k => new { k.TenantId, k.UserId })
.HasDatabaseName("ix_mcp_api_keys_tenant_user");
builder.HasIndex(k => k.ExpiresAt)
.HasDatabaseName("ix_mcp_api_keys_expires_at");
builder.HasIndex(k => k.Status)
.HasDatabaseName("ix_mcp_api_keys_status");
// Ignore domain events (not persisted)
builder.Ignore(k => k.DomainEvents);
}
}

28
colaflow-api/src/Modules/Mcp/ColaFlow.Modules.Mcp.Infrastructure/Persistence/McpDbContext.cs Normal file
View File

@@ -0,0 +1,28 @@
using ColaFlow.Modules.Mcp.Domain.Entities;
using ColaFlow.Modules.Mcp.Infrastructure.Persistence.Configurations;
using Microsoft.EntityFrameworkCore;
namespace ColaFlow.Modules.Mcp.Infrastructure.Persistence;
/// <summary>
/// DbContext for MCP module
/// </summary>
public class McpDbContext : DbContext
{
public McpDbContext(DbContextOptions<McpDbContext> options) : base(options)
{
}
public DbSet<McpApiKey> ApiKeys => Set<McpApiKey>();
protected override void OnModelCreating(ModelBuilder modelBuilder)
{
base.OnModelCreating(modelBuilder);
// Apply configurations
modelBuilder.ApplyConfiguration(new McpApiKeyConfiguration());
// Set default schema
modelBuilder.HasDefaultSchema("mcp");
}
}

35
colaflow-api/src/Modules/Mcp/ColaFlow.Modules.Mcp.Infrastructure/Persistence/McpDbContextFactory.cs Normal file
View File

@@ -0,0 +1,35 @@
using Microsoft.EntityFrameworkCore;
using Microsoft.EntityFrameworkCore.Design;
using Microsoft.Extensions.Configuration;
namespace ColaFlow.Modules.Mcp.Infrastructure.Persistence;
/// <summary>
/// Design-time factory for McpDbContext (used by EF Core migrations)
/// </summary>
public class McpDbContextFactory : IDesignTimeDbContextFactory<McpDbContext>
{
public McpDbContext CreateDbContext(string[] args)
{
// Build configuration
var configuration = new ConfigurationBuilder()
.SetBasePath(Directory.GetCurrentDirectory())
.AddJsonFile("appsettings.json", optional: false)
.AddJsonFile("appsettings.Development.json", optional: true)
.AddEnvironmentVariables()
.Build();
// Get connection string
var connectionString = configuration.GetConnectionString("DefaultConnection");
if (string.IsNullOrEmpty(connectionString))
{
throw new InvalidOperationException("Connection string 'DefaultConnection' not found.");
}
// Build DbContextOptions
var optionsBuilder = new DbContextOptionsBuilder<McpDbContext>();
optionsBuilder.UseNpgsql(connectionString);
return new McpDbContext(optionsBuilder.Options);
}
}

125
colaflow-api/src/Modules/Mcp/ColaFlow.Modules.Mcp.Infrastructure/Persistence/Migrations/20251108173654_AddMcpApiKeys.Designer.cs generated Normal file
View File

@@ -0,0 +1,125 @@
// <auto-generated />
using System;
using ColaFlow.Modules.Mcp.Infrastructure.Persistence;
using Microsoft.EntityFrameworkCore;
using Microsoft.EntityFrameworkCore.Infrastructure;
using Microsoft.EntityFrameworkCore.Migrations;
using Microsoft.EntityFrameworkCore.Storage.ValueConversion;
using Npgsql.EntityFrameworkCore.PostgreSQL.Metadata;
#nullable disable
namespace ColaFlow.Modules.Mcp.Infrastructure.Persistence.Migrations
{
[DbContext(typeof(McpDbContext))]
[Migration("20251108173654_AddMcpApiKeys")]
partial class AddMcpApiKeys
{
/// <inheritdoc />
protected override void BuildTargetModel(ModelBuilder modelBuilder)
{
#pragma warning disable 612, 618
modelBuilder
.HasDefaultSchema("mcp")
.HasAnnotation("ProductVersion", "9.0.10")
.HasAnnotation("Relational:MaxIdentifierLength", 63);
NpgsqlModelBuilderExtensions.UseIdentityByDefaultColumns(modelBuilder);
modelBuilder.Entity("ColaFlow.Modules.Mcp.Domain.Entities.McpApiKey", b =>
{
b.Property<Guid>("Id")
.ValueGeneratedOnAdd()
.HasColumnType("uuid");
b.Property<DateTime>("CreatedAt")
.HasColumnType("timestamp with time zone")
.HasColumnName("created_at");
b.Property<string>("Description")
.HasColumnType("text")
.HasColumnName("description");
b.Property<DateTime>("ExpiresAt")
.HasColumnType("timestamp with time zone")
.HasColumnName("expires_at");
b.Property<string>("IpWhitelist")
.HasColumnType("jsonb")
.HasColumnName("ip_whitelist");
b.Property<string>("KeyHash")
.IsRequired()
.HasMaxLength(64)
.HasColumnType("character varying(64)")
.HasColumnName("key_hash");
b.Property<string>("KeyPrefix")
.IsRequired()
.HasMaxLength(16)
.HasColumnType("character varying(16)")
.HasColumnName("key_prefix");
b.Property<DateTime?>("LastUsedAt")
.HasColumnType("timestamp with time zone")
.HasColumnName("last_used_at");
b.Property<string>("Name")
.IsRequired()
.HasMaxLength(255)
.HasColumnType("character varying(255)")
.HasColumnName("name");
b.Property<string>("Permissions")
.IsRequired()
.HasColumnType("jsonb")
.HasColumnName("permissions");
b.Property<DateTime?>("RevokedAt")
.HasColumnType("timestamp with time zone")
.HasColumnName("revoked_at");
b.Property<Guid?>("RevokedBy")
.HasColumnType("uuid")
.HasColumnName("revoked_by");
b.Property<int>("Status")
.HasColumnType("integer")
.HasColumnName("status");
b.Property<Guid>("TenantId")
.HasColumnType("uuid")
.HasColumnName("tenant_id");
b.Property<long>("UsageCount")
.HasColumnType("bigint")
.HasColumnName("usage_count");
b.Property<Guid>("UserId")
.HasColumnType("uuid")
.HasColumnName("user_id");
b.HasKey("Id");
b.HasIndex("ExpiresAt")
.HasDatabaseName("ix_mcp_api_keys_expires_at");
b.HasIndex("KeyPrefix")
.IsUnique()
.HasDatabaseName("ix_mcp_api_keys_key_prefix");
b.HasIndex("Status")
.HasDatabaseName("ix_mcp_api_keys_status");
b.HasIndex("TenantId")
.HasDatabaseName("ix_mcp_api_keys_tenant_id");
b.HasIndex("TenantId", "UserId")
.HasDatabaseName("ix_mcp_api_keys_tenant_user");
b.ToTable("mcp_api_keys", "mcp");
});
#pragma warning restore 612, 618
}
}
}

84
colaflow-api/src/Modules/Mcp/ColaFlow.Modules.Mcp.Infrastructure/Persistence/Migrations/20251108173654_AddMcpApiKeys.cs Normal file
View File

@@ -0,0 +1,84 @@
using System;
using Microsoft.EntityFrameworkCore.Migrations;
#nullable disable
namespace ColaFlow.Modules.Mcp.Infrastructure.Persistence.Migrations
{
/// <inheritdoc />
public partial class AddMcpApiKeys : Migration
{
/// <inheritdoc />
protected override void Up(MigrationBuilder migrationBuilder)
{
migrationBuilder.EnsureSchema(
name: "mcp");
migrationBuilder.CreateTable(
name: "mcp_api_keys",
schema: "mcp",
columns: table => new
{
Id = table.Column<Guid>(type: "uuid", nullable: false),
tenant_id = table.Column<Guid>(type: "uuid", nullable: false),
user_id = table.Column<Guid>(type: "uuid", nullable: false),
key_hash = table.Column<string>(type: "character varying(64)", maxLength: 64, nullable: false),
key_prefix = table.Column<string>(type: "character varying(16)", maxLength: 16, nullable: false),
name = table.Column<string>(type: "character varying(255)", maxLength: 255, nullable: false),
description = table.Column<string>(type: "text", nullable: true),
permissions = table.Column<string>(type: "jsonb", nullable: false),
ip_whitelist = table.Column<string>(type: "jsonb", nullable: true),
status = table.Column<int>(type: "integer", nullable: false),
last_used_at = table.Column<DateTime>(type: "timestamp with time zone", nullable: true),
usage_count = table.Column<long>(type: "bigint", nullable: false),
created_at = table.Column<DateTime>(type: "timestamp with time zone", nullable: false),
expires_at = table.Column<DateTime>(type: "timestamp with time zone", nullable: false),
revoked_at = table.Column<DateTime>(type: "timestamp with time zone", nullable: true),
revoked_by = table.Column<Guid>(type: "uuid", nullable: true)
},
constraints: table =>
{
table.PrimaryKey("PK_mcp_api_keys", x => x.Id);
});
migrationBuilder.CreateIndex(
name: "ix_mcp_api_keys_expires_at",
schema: "mcp",
table: "mcp_api_keys",
column: "expires_at");
migrationBuilder.CreateIndex(
name: "ix_mcp_api_keys_key_prefix",
schema: "mcp",
table: "mcp_api_keys",
column: "key_prefix",
unique: true);
migrationBuilder.CreateIndex(
name: "ix_mcp_api_keys_status",
schema: "mcp",
table: "mcp_api_keys",
column: "status");
migrationBuilder.CreateIndex(
name: "ix_mcp_api_keys_tenant_id",
schema: "mcp",
table: "mcp_api_keys",
column: "tenant_id");
migrationBuilder.CreateIndex(
name: "ix_mcp_api_keys_tenant_user",
schema: "mcp",
table: "mcp_api_keys",
columns: new[] { "tenant_id", "user_id" });
}
/// <inheritdoc />
protected override void Down(MigrationBuilder migrationBuilder)
{
migrationBuilder.DropTable(
name: "mcp_api_keys",
schema: "mcp");
}
}
}

122
colaflow-api/src/Modules/Mcp/ColaFlow.Modules.Mcp.Infrastructure/Persistence/Migrations/McpDbContextModelSnapshot.cs Normal file
View File

@@ -0,0 +1,122 @@
// <auto-generated />
using System;
using ColaFlow.Modules.Mcp.Infrastructure.Persistence;
using Microsoft.EntityFrameworkCore;
using Microsoft.EntityFrameworkCore.Infrastructure;
using Microsoft.EntityFrameworkCore.Storage.ValueConversion;
using Npgsql.EntityFrameworkCore.PostgreSQL.Metadata;
#nullable disable
namespace ColaFlow.Modules.Mcp.Infrastructure.Persistence.Migrations
{
[DbContext(typeof(McpDbContext))]
partial class McpDbContextModelSnapshot : ModelSnapshot
{
protected override void BuildModel(ModelBuilder modelBuilder)
{
#pragma warning disable 612, 618
modelBuilder
.HasDefaultSchema("mcp")
.HasAnnotation("ProductVersion", "9.0.10")
.HasAnnotation("Relational:MaxIdentifierLength", 63);
NpgsqlModelBuilderExtensions.UseIdentityByDefaultColumns(modelBuilder);
modelBuilder.Entity("ColaFlow.Modules.Mcp.Domain.Entities.McpApiKey", b =>
{
b.Property<Guid>("Id")
.ValueGeneratedOnAdd()
.HasColumnType("uuid");
b.Property<DateTime>("CreatedAt")
.HasColumnType("timestamp with time zone")
.HasColumnName("created_at");
b.Property<string>("Description")
.HasColumnType("text")
.HasColumnName("description");
b.Property<DateTime>("ExpiresAt")
.HasColumnType("timestamp with time zone")
.HasColumnName("expires_at");
b.Property<string>("IpWhitelist")
.HasColumnType("jsonb")
.HasColumnName("ip_whitelist");
b.Property<string>("KeyHash")
.IsRequired()
.HasMaxLength(64)
.HasColumnType("character varying(64)")
.HasColumnName("key_hash");
b.Property<string>("KeyPrefix")
.IsRequired()
.HasMaxLength(16)
.HasColumnType("character varying(16)")
.HasColumnName("key_prefix");
b.Property<DateTime?>("LastUsedAt")
.HasColumnType("timestamp with time zone")
.HasColumnName("last_used_at");
b.Property<string>("Name")
.IsRequired()
.HasMaxLength(255)
.HasColumnType("character varying(255)")
.HasColumnName("name");
b.Property<string>("Permissions")
.IsRequired()
.HasColumnType("jsonb")
.HasColumnName("permissions");
b.Property<DateTime?>("RevokedAt")
.HasColumnType("timestamp with time zone")
.HasColumnName("revoked_at");
b.Property<Guid?>("RevokedBy")
.HasColumnType("uuid")
.HasColumnName("revoked_by");
b.Property<int>("Status")
.HasColumnType("integer")
.HasColumnName("status");
b.Property<Guid>("TenantId")
.HasColumnType("uuid")
.HasColumnName("tenant_id");
b.Property<long>("UsageCount")
.HasColumnType("bigint")
.HasColumnName("usage_count");
b.Property<Guid>("UserId")
.HasColumnType("uuid")
.HasColumnName("user_id");
b.HasKey("Id");
b.HasIndex("ExpiresAt")
.HasDatabaseName("ix_mcp_api_keys_expires_at");
b.HasIndex("KeyPrefix")
.IsUnique()
.HasDatabaseName("ix_mcp_api_keys_key_prefix");
b.HasIndex("Status")
.HasDatabaseName("ix_mcp_api_keys_status");
b.HasIndex("TenantId")
.HasDatabaseName("ix_mcp_api_keys_tenant_id");
b.HasIndex("TenantId", "UserId")
.HasDatabaseName("ix_mcp_api_keys_tenant_user");
b.ToTable("mcp_api_keys", "mcp");
});
#pragma warning restore 612, 618
}
}
}

70
colaflow-api/src/Modules/Mcp/ColaFlow.Modules.Mcp.Infrastructure/Persistence/Repositories/McpApiKeyRepository.cs Normal file
View File

@@ -0,0 +1,70 @@
using ColaFlow.Modules.Mcp.Domain.Entities;
using ColaFlow.Modules.Mcp.Domain.Repositories;
using Microsoft.EntityFrameworkCore;
namespace ColaFlow.Modules.Mcp.Infrastructure.Persistence.Repositories;
/// <summary>
/// Repository implementation for MCP API Keys
/// </summary>
public class McpApiKeyRepository : IMcpApiKeyRepository
{
private readonly McpDbContext _context;
public McpApiKeyRepository(McpDbContext context)
{
_context = context ?? throw new ArgumentNullException(nameof(context));
}
public async Task<McpApiKey?> GetByIdAsync(Guid id, CancellationToken cancellationToken = default)
{
return await _context.ApiKeys
.FirstOrDefaultAsync(k => k.Id == id, cancellationToken);
}
public async Task<McpApiKey?> GetByPrefixAsync(string keyPrefix, CancellationToken cancellationToken = default)
{
return await _context.ApiKeys
.FirstOrDefaultAsync(k => k.KeyPrefix == keyPrefix, cancellationToken);
}
public async Task<List<McpApiKey>> GetByTenantIdAsync(Guid tenantId, CancellationToken cancellationToken = default)
{
return await _context.ApiKeys
.Where(k => k.TenantId == tenantId)
.OrderByDescending(k => k.CreatedAt)
.ToListAsync(cancellationToken);
}
public async Task<List<McpApiKey>> GetByUserIdAsync(Guid userId, Guid tenantId, CancellationToken cancellationToken = default)
{
return await _context.ApiKeys
.Where(k => k.UserId == userId && k.TenantId == tenantId)
.OrderByDescending(k => k.CreatedAt)
.ToListAsync(cancellationToken);
}
public async Task AddAsync(McpApiKey apiKey, CancellationToken cancellationToken = default)
{
await _context.ApiKeys.AddAsync(apiKey, cancellationToken);
await _context.SaveChangesAsync(cancellationToken);
}
public async Task UpdateAsync(McpApiKey apiKey, CancellationToken cancellationToken = default)
{
_context.ApiKeys.Update(apiKey);
await _context.SaveChangesAsync(cancellationToken);
}
public async Task DeleteAsync(McpApiKey apiKey, CancellationToken cancellationToken = default)
{
_context.ApiKeys.Remove(apiKey);
await _context.SaveChangesAsync(cancellationToken);
}
public async Task<bool> ExistsByPrefixAsync(string keyPrefix, CancellationToken cancellationToken = default)
{
return await _context.ApiKeys
.AnyAsync(k => k.KeyPrefix == keyPrefix, cancellationToken);
}
}

102
colaflow-api/tests/Modules/Mcp/ColaFlow.Modules.Mcp.Tests/Domain/ApiKeyPermissionsTests.cs Normal file
View File

@@ -0,0 +1,102 @@
using ColaFlow.Modules.Mcp.Domain.ValueObjects;
using FluentAssertions;
using Xunit;
namespace ColaFlow.Modules.Mcp.Tests.Domain;
public class ApiKeyPermissionsTests
{
[Fact]
public void ReadOnly_ShouldCreateReadOnlyPermissions()
{
// Act
var permissions = ApiKeyPermissions.ReadOnly();
// Assert
permissions.Read.Should().BeTrue();
permissions.Write.Should().BeFalse();
permissions.AllowedResources.Should().BeEmpty();
permissions.AllowedTools.Should().BeEmpty();
}
[Fact]
public void ReadWrite_ShouldCreateReadWritePermissions()
{
// Act
var permissions = ApiKeyPermissions.ReadWrite();
// Assert
permissions.Read.Should().BeTrue();
permissions.Write.Should().BeTrue();
permissions.AllowedResources.Should().BeEmpty();
permissions.AllowedTools.Should().BeEmpty();
}
[Fact]
public void Custom_ShouldCreateCustomPermissions()
{
// Arrange
var allowedResources = new List<string> { "project://123" };
var allowedTools = new List<string> { "create_task" };
// Act
var permissions = ApiKeyPermissions.Custom(true, true, allowedResources, allowedTools);
// Assert
permissions.Read.Should().BeTrue();
permissions.Write.Should().BeTrue();
permissions.AllowedResources.Should().BeEquivalentTo(allowedResources);
permissions.AllowedTools.Should().BeEquivalentTo(allowedTools);
}
[Fact]
public void CanAccessResource_WithNoRestrictions_ShouldReturnTrue()
{
// Arrange
var permissions = ApiKeyPermissions.ReadOnly();
// Act
var result = permissions.CanAccessResource("project://123");
// Assert
result.Should().BeTrue();
}
[Fact]
public void CanAccessResource_WithRestrictions_ShouldValidateCorrectly()
{
// Arrange
var allowedResources = new List<string> { "project://123", "epic://456" };
var permissions = ApiKeyPermissions.Custom(true, false, allowedResources);
// Act & Assert
permissions.CanAccessResource("project://123").Should().BeTrue();
permissions.CanAccessResource("epic://456").Should().BeTrue();
permissions.CanAccessResource("task://789").Should().BeFalse();
}
[Fact]
public void CanUseTool_WithNoRestrictions_ShouldReturnWritePermission()
{
// Arrange
var readOnlyPermissions = ApiKeyPermissions.ReadOnly();
var readWritePermissions = ApiKeyPermissions.ReadWrite();
// Act & Assert
readOnlyPermissions.CanUseTool("create_task").Should().BeFalse();
readWritePermissions.CanUseTool("create_task").Should().BeTrue();
}
[Fact]
public void CanUseTool_WithRestrictions_ShouldValidateCorrectly()
{
// Arrange
var allowedTools = new List<string> { "create_task", "update_story" };
var permissions = ApiKeyPermissions.Custom(true, true, allowedTools: allowedTools);
// Act & Assert
permissions.CanUseTool("create_task").Should().BeTrue();
permissions.CanUseTool("update_story").Should().BeTrue();
permissions.CanUseTool("delete_project").Should().BeFalse();
}
}

210
colaflow-api/tests/Modules/Mcp/ColaFlow.Modules.Mcp.Tests/Domain/McpApiKeyTests.cs Normal file
View File

@@ -0,0 +1,210 @@
using ColaFlow.Modules.Mcp.Domain.Entities;
using ColaFlow.Modules.Mcp.Domain.ValueObjects;
using FluentAssertions;
using Xunit;
namespace ColaFlow.Modules.Mcp.Tests.Domain;
public class McpApiKeyTests
{
[Fact]
public void Create_ShouldGenerateValidApiKey()
{
// Arrange
var name = "Test API Key";
var tenantId = Guid.NewGuid();
var userId = Guid.NewGuid();
var permissions = ApiKeyPermissions.ReadOnly();
// Act
var (apiKey, plainKey) = McpApiKey.Create(name, tenantId, userId, permissions);
// Assert
apiKey.Should().NotBeNull();
apiKey.Name.Should().Be(name);
apiKey.TenantId.Should().Be(tenantId);
apiKey.UserId.Should().Be(userId);
apiKey.Status.Should().Be(ApiKeyStatus.Active);
plainKey.Should().StartWith("cola_");
plainKey.Length.Should().Be(41); // "cola_" (5) + 36 random chars
apiKey.KeyPrefix.Should().Be(plainKey.Substring(0, 12));
}
[Fact]
public void Create_ShouldHashApiKey()
{
// Arrange
var name = "Test API Key";
var tenantId = Guid.NewGuid();
var userId = Guid.NewGuid();
var permissions = ApiKeyPermissions.ReadOnly();
// Act
var (apiKey, plainKey) = McpApiKey.Create(name, tenantId, userId, permissions);
// Assert
apiKey.KeyHash.Should().NotBeNullOrEmpty();
apiKey.KeyHash.Should().NotBe(plainKey); // Hash should not equal plain key
apiKey.VerifyKey(plainKey).Should().BeTrue(); // But should verify correctly
}
[Fact]
public void Create_WithInvalidName_ShouldThrowArgumentException()
{
// Arrange
var tenantId = Guid.NewGuid();
var userId = Guid.NewGuid();
var permissions = ApiKeyPermissions.ReadOnly();
// Act & Assert
Assert.Throws<ArgumentException>(() =>
McpApiKey.Create("", tenantId, userId, permissions));
}
[Fact]
public void Create_WithInvalidTenantId_ShouldThrowArgumentException()
{
// Arrange
var userId = Guid.NewGuid();
var permissions = ApiKeyPermissions.ReadOnly();
// Act & Assert
Assert.Throws<ArgumentException>(() =>
McpApiKey.Create("Test", Guid.Empty, userId, permissions));
}
[Fact]
public void VerifyKey_WithCorrectKey_ShouldReturnTrue()
{
// Arrange
var (apiKey, plainKey) = McpApiKey.Create("Test", Guid.NewGuid(), Guid.NewGuid(), ApiKeyPermissions.ReadOnly());
// Act
var result = apiKey.VerifyKey(plainKey);
// Assert
result.Should().BeTrue();
}
[Fact]
public void VerifyKey_WithIncorrectKey_ShouldReturnFalse()
{
// Arrange
var (apiKey, _) = McpApiKey.Create("Test", Guid.NewGuid(), Guid.NewGuid(), ApiKeyPermissions.ReadOnly());
// Act
var result = apiKey.VerifyKey("cola_wrongkey123456789012345678901234");
// Assert
result.Should().BeFalse();
}
[Fact]
public void Revoke_ShouldMarkAsRevoked()
{
// Arrange
var (apiKey, _) = McpApiKey.Create("Test", Guid.NewGuid(), Guid.NewGuid(), ApiKeyPermissions.ReadOnly());
var revokedBy = Guid.NewGuid();
// Act
apiKey.Revoke(revokedBy);
// Assert
apiKey.Status.Should().Be(ApiKeyStatus.Revoked);
apiKey.RevokedAt.Should().NotBeNull();
apiKey.RevokedBy.Should().Be(revokedBy);
}
[Fact]
public void Revoke_WhenAlreadyRevoked_ShouldThrowInvalidOperationException()
{
// Arrange
var (apiKey, _) = McpApiKey.Create("Test", Guid.NewGuid(), Guid.NewGuid(), ApiKeyPermissions.ReadOnly());
apiKey.Revoke(Guid.NewGuid());
// Act & Assert
Assert.Throws<InvalidOperationException>(() => apiKey.Revoke(Guid.NewGuid()));
}
[Fact]
public void IsExpired_WhenNotExpired_ShouldReturnFalse()
{
// Arrange
var (apiKey, _) = McpApiKey.Create("Test", Guid.NewGuid(), Guid.NewGuid(), ApiKeyPermissions.ReadOnly(), expirationDays: 90);
// Act
var result = apiKey.IsExpired();
// Assert
result.Should().BeFalse();
}
[Fact]
public void IsValid_WhenActiveAndNotExpired_ShouldReturnTrue()
{
// Arrange
var (apiKey, _) = McpApiKey.Create("Test", Guid.NewGuid(), Guid.NewGuid(), ApiKeyPermissions.ReadOnly());
// Act
var result = apiKey.IsValid();
// Assert
result.Should().BeTrue();
}
[Fact]
public void IsValid_WhenRevoked_ShouldReturnFalse()
{
// Arrange
var (apiKey, _) = McpApiKey.Create("Test", Guid.NewGuid(), Guid.NewGuid(), ApiKeyPermissions.ReadOnly());
apiKey.Revoke(Guid.NewGuid());
// Act
var result = apiKey.IsValid();
// Assert
result.Should().BeFalse();
}
[Fact]
public void RecordUsage_ShouldIncrementUsageCount()
{
// Arrange
var (apiKey, _) = McpApiKey.Create("Test", Guid.NewGuid(), Guid.NewGuid(), ApiKeyPermissions.ReadOnly());
var initialCount = apiKey.UsageCount;
// Act
apiKey.RecordUsage();
// Assert
apiKey.UsageCount.Should().Be(initialCount + 1);
apiKey.LastUsedAt.Should().NotBeNull();
}
[Fact]
public void IsIpAllowed_WithNoWhitelist_ShouldReturnTrue()
{
// Arrange
var (apiKey, _) = McpApiKey.Create("Test", Guid.NewGuid(), Guid.NewGuid(), ApiKeyPermissions.ReadOnly());
// Act
var result = apiKey.IsIpAllowed("192.168.1.1");
// Assert
result.Should().BeTrue();
}
[Fact]
public void IsIpAllowed_WithWhitelist_ShouldValidateCorrectly()
{
// Arrange
var permissions = ApiKeyPermissions.ReadOnly();
var ipWhitelist = new List<string> { "192.168.1.1", "10.0.0.1" };
var (apiKey, _) = McpApiKey.Create("Test", Guid.NewGuid(), Guid.NewGuid(), permissions, ipWhitelist: ipWhitelist);
// Act & Assert
apiKey.IsIpAllowed("192.168.1.1").Should().BeTrue();
apiKey.IsIpAllowed("10.0.0.1").Should().BeTrue();
apiKey.IsIpAllowed("172.16.0.1").Should().BeFalse();
}
}