adityamparikh opened a new pull request, #21: URL: https://github.com/apache/solr-mcp/pull/21
1. Following: https://github.com/spring-ai-community/mcp-security?tab=readme-ov-file#mcp-server-security, make the MCP Server an OAuth2 Resource Server and add mcp-security. 2. Disable Security related autoconfiguration for stdio mode. 3. As an example secure the search and indexing tools. Can be changed to finer grained authorizations such as solr:read, solr:write, solr:admin in the future. 4. Added example run configurations to make it easier to run the application in Intellij Idea including one with OAUTH2_ISSUER_URI env variable. 5. Added Auth0 setup instructions. Could be switched with another issuer. 6. Added convenience scripts/get-auth0-token.sh script that will fetch the Bearer token from the authorization server (requires documented env variables set from 5). Added files that will contain env variable values and access token that will be obtained after running the script to .gitignore that should not be checked in. 7. Updated docs including screenshots of MCP inspector with authorization success and failure. Other MCP clients such as Claude desktop will follow. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected] --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
