kai/ColaFlow
1
0
Fork 0
Code Issues Pull Requests Actions 1 Packages Projects Releases Wiki Activity
Files
34a379750f5558557d0264dfd76676647d7731fd
ColaFlow/scripts/create-test-api-key.sql
Yaojia Wang 4479c9ef91 docs(mcp): Complete Phase 3 Runtime Testing and Validation 
Phase 3 runtime testing has been completed with critical findings:
- Microsoft MCP SDK is registered but NOT actually used at runtime
- Application uses custom HTTP-based MCP implementation instead of SDK's stdio
- SDK tools (Ping, GetServerTime, GetProjectInfo) discovered but not exposed
- Requires architecture decision: Remove SDK, Use SDK properly, or Hybrid approach

Test artifacts:
- Complete test report with detailed analysis
- Summary document for quick reference
- Runtime test scripts (PowerShell)
- API key creation utilities (SQL + PowerShell)

Key findings:
- Transport mismatch: SDK expects stdio, app uses HTTP
- Tool discovery works but not integrated with custom handler
- Cannot verify DI in SDK tools (tools never called)
- Claude Desktop integration blocked (requires stdio)

Next steps:
1. Make architecture decision (Remove/Use/Hybrid)
2. Either remove SDK or implement stdio transport
3. Bridge SDK tools to custom handler if keeping SDK

Test Status: Phase 3 Complete (Blocked on architecture decision)

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude <noreply@anthropic.com>
2025-11-09 22:47:19 +01:00

61 lines
1.9 KiB
SQL
Raw Blame History

-- Create Test API Key for MCP SDK Testing
-- This script inserts a test API key directly into the database
-- API Key: cola_test_runtime_validation_2025
DO $$
DECLARE
test_tenant_id UUID := '00000000-0000-0000-0000-000000000001';
test_user_id UUID := '00000000-0000-0000-0000-000000000001';
test_api_key_id UUID := gen_random_uuid();
plain_key TEXT := 'cola_test_runtime_validation_2025';
-- SHA-256 hash of 'cola_test_runtime_validation_2025'
key_hash TEXT := encode(digest(plain_key, 'sha256'), 'hex');
key_prefix TEXT := substring(plain_key, 1, 12) || '...';
BEGIN
-- Insert test API key
INSERT INTO mcp.api_keys (
id,
name,
description,
key_hash,
key_prefix,
tenant_id,
created_by,
"read",
write,
allowed_resources,
allowed_tools,
ip_whitelist,
expires_at,
created_at,
last_used_at,
revoked_at,
revoked_by
) VALUES (
test_api_key_id,
'SDK Runtime Test Key',
'Auto-generated test key for MCP SDK runtime validation',
key_hash,
key_prefix,
test_tenant_id,
test_user_id,
true, -- read permission
true, -- write permission
'{}', -- empty array = all resources allowed
'{}', -- empty array = all tools allowed
'{}', -- empty array = no IP whitelist
NOW() + INTERVAL '30 days', -- expires in 30 days
NOW(),
NULL, -- never used
NULL, -- not revoked
NULL
)
ON CONFLICT (id) DO NOTHING;
RAISE NOTICE 'Test API Key created successfully!';
RAISE NOTICE 'API Key ID: %', test_api_key_id;
RAISE NOTICE 'Plain Key (save this!): %', plain_key;
RAISE NOTICE 'Key Prefix: %', key_prefix;
RAISE NOTICE 'Expires At: %', (NOW() + INTERVAL '30 days')::TEXT;
END $$;
Reference in New Issue View Git Blame Copy Permalink