[Performance]Add a controllable MCP Server DB Pool permission authentication system (#53)

* 0.5.1 Version * fix 0.5.1 schema async bug * fix security bug * fix security bug * Add complete Token, JWT, OAuth authentication system * Add complete Token, JWT, OAuth authentication system * Add complete Token, JWT, OAuth authentication system * Add complete Token, JWT, OAuth authentication system * Add a controllable MCP Server DB Pool permission authentication system, connect it with the Doris permission system, and provide it to enterprise-level applications concurrently with the multi-Worker mode.
2025-09-02 18:40:48 +08:00
parent c3d487ccdd
commit f99399c6c7
10 changed files with 636 additions and 47 deletions
--- a/doris_mcp_server/auth/auth_middleware.py
+++ b/doris_mcp_server/auth/auth_middleware.py
@@ -117,13 +117,15 @@ class AuthMiddleware:
            
            # Build authentication context
            auth_context = AuthContext(
+                token_id=payload.get('jti', ''),
                user_id=payload.get('sub'),
                roles=payload.get('roles', []),
                permissions=payload.get('permissions', []),
+                security_level=SecurityLevel(payload.get('security_level', 'internal')),
                session_id=payload.get('jti'),  # Use JWT ID as session ID
                login_time=datetime.fromtimestamp(payload.get('iat', 0)),
                last_activity=datetime.utcnow(),
-                security_level=SecurityLevel(payload.get('security_level', 'internal'))
+                token=token  # Store raw token for token-bound database configuration
            )
            
            logger.info(f"JWT authentication successful for user: {auth_context.user_id}")