Skip to content

Do not merge/hackathon 2025 #968

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Draft
wants to merge 15 commits into
base: main
Choose a base branch
from
Draft

Do not merge/hackathon 2025 #968

wants to merge 15 commits into from

Conversation

qbey
Copy link
Member

@qbey qbey commented May 14, 2025
edited
Loading

Purpose

Provide a branch to allow simple developments during the oncoming hackathon.

⚠️ This code is unsafe to use in production ⚠️

Please note the authentication in this PR is global and not restricted to some endpoints. We strongly advise to not deploy this as it is.

Add resource server authentication

Capture.video.du.2025-05-14.09-58-13.mp4

Add user token authentication

Capture.video.du.2025-05-14.15-00-46.mp4

Use with curl -X GET "http://localhost:8071/api/v1.0/documents/" -H "Authorization: Token <generated-token>"

Add a local MCP server

Thanks to the user token, we can deploy a local MCP server to use with cursor or mcphost.
Please check the documentation in ./src/mcp_server/README.md file.

Capture.video.du.2025-05-16.18-05-08.mp4
Capture.video.du.2025-05-19.11-33-55.mp4

Proposal

  • add resource server authentication
  • add user token authentication along with a simple (and AI written mostly, and not unit tested) page to mange those tokens
  • add a very simple MCP server prototype (based on user API token)

@qbey qbey force-pushed the do-not-merge/hackathon-2025 branch from d2d523e to aec1604 Compare May 16, 2025 07:51
@qbey qbey self-assigned this May 16, 2025
@qbey qbey force-pushed the do-not-merge/hackathon-2025 branch 3 times, most recently from 5719c0c to b73c31b Compare May 16, 2025 12:56
@qbey qbey force-pushed the do-not-merge/hackathon-2025 branch from 328f0e6 to 0f32206 Compare May 23, 2025 13:23
qbey added 3 commits May 26, 2025 11:39
@qbey
🔒️(oidc) disable OIDC authentication on API
43e529d 
Our authentication flow uses the Django authentication which creates a
session for the User. Then the session is used to make API calls,
therefore we don't need to accept OIDC tokens directly on the API.

Accepting the OIDC token on the API can allow to bypass the "resource
server mode" which allows to restrict provided information according to
the Service Provider which makes the request.
@qbey
🐛(auth) allow several auth backend on m2m API
fa819bc 
The previous `ServerToServerAuthentication` was raising authentication
failed error if anything is wrong (the header, the token) which prevents
any possibility to have several authentication backends.
@qbey
💩(resource-server) open all APIs to RS
e929fcc 
This provides a base configuration to allow to access all
API via OIDC resource server authentication.
@qbey qbey force-pushed the do-not-merge/hackathon-2025 branch 2 times, most recently from 15b91ad to b7dff08 Compare May 26, 2025 12:29
@qbey
💩(user-tokens) add back & front for Token auth
6bd136c 
This provides:
 - a frontend to allow user to create/delete User Token
 - the authentication process to allow any API to be called when
   authenticating with a User Token.
@qbey qbey force-pushed the do-not-merge/hackathon-2025 branch 8 times, most recently from 443a35a to 3d2f03c Compare May 28, 2025 08:07
qbey added 4 commits May 28, 2025 11:29
@qbey
💩(mcp) add a local MCP server configuration
83d8478 
This provides a way to start a local MCP server:
 - provided a user token, the MCP can create document
 - can be run locally and work with cursor or mcphost
@qbey
🧱(mcp) add server deployment
c1a591f 
Provide the helm chart declaration to deploy the MCP server.
@qbey
👷(hackdays) publish the docker image
abcd61c 
Publish the Docker images to deploy on a dedicated instance for the
Hackdays.
@qbey
👷(hackdays) publish the MCP docker image
4a81e15 
Publish the MCP Docker image on our registry.
@qbey qbey force-pushed the do-not-merge/hackathon-2025 branch 2 times, most recently from 667b8f9 to 4a81e15 Compare May 28, 2025 14:42
@AntoLC AntoLC force-pushed the do-not-merge/hackathon-2025 branch from 8c0b72d to f459c56 Compare May 30, 2025 15:48
@sampaccoud sampaccoud mentioned this pull request May 30, 2025
Open
@AntoLC AntoLC mentioned this pull request May 31, 2025
Open
@AntoLC
Copy link
Collaborator

AntoLC commented Jun 3, 2025

Instance with this banch: https://docs-ia.beta.numerique.gouv.fr/

@AntoLC AntoLC self-assigned this Jun 3, 2025
AntoLC added 2 commits June 3, 2025 12:20
@AntoLC
env.example
8cf06d6
@AntoLC
💩(backend) add document content endpoint
06c26a7 
Get the content of a document in markdown format.
Ex: http://localhost:8071/api/v1.0/documents/<ID>/content/
@AntoLC AntoLC added the keep track Label to keep track of interesting things label Jun 5, 2025
@AntoLC AntoLC removed their assignment Jun 11, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees

@qbey qbey

Labels
Hack Days 2025 keep track Label to keep track of interesting things
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@qbey @AntoLC @lunika