Files
ag-bids-mcp/ag_bids_mcp/server.py
T
justin e78733d55e Drop in-container auth — MetaMCP guards the user-facing edge
The MCP's port 8000 isn't exposed outside the private mcp-servers_mcp
Docker network, so only the MetaMCP gateway can ever reach it. MetaMCP
itself enforces auth at the gateway → MCP-client edge (bearer token in
its UI), which is the right layer for it. In-container Basic/Bearer was
defense-in-depth that turned out to be friction-in-depth.

Removed:
  - ag_bids_mcp/auth.py (HTTP Basic middleware)
  - tests/test_auth.py (3 tests covering the middleware)
  - AG_BIDS_MCP_USER / AG_BIDS_MCP_PASS env vars from .env.example, README,
    docker-compose.snippet.yml, and deploy/README.md

Server.py simplified — direct `mcp.run(transport=...)` like zerto-docs-mcp,
no Starlette wrapping. 21 tests passing.

Live on 192.168.0.2: container recreated, real MCP initialize handshake
returns 200 + capability metadata over the mcp-servers_mcp network with
no auth header.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
2026-05-20 16:05:41 -04:00

241 lines
7.9 KiB
Python

"""ag-bids MCP server.
Mirrors the zerto-docs-rag layout — FastMCP, ``@mcp.tool()`` decorators
returning markdown strings, dual stdio/streamable-http transport.
No in-container auth. The MCP's port 8000 isn't exposed outside the private
``mcp-servers_mcp`` Docker network; the only thing that can reach it is the
MetaMCP gateway, and MetaMCP handles auth at the gateway→client edge.
Run locally (stdio for Claude Desktop):
MCP_TRANSPORT=stdio python -m ag_bids_mcp.server
Run in a container (HTTP for MetaMCP upstream):
python -m ag_bids_mcp.server # default transport = streamable-http
"""
from __future__ import annotations
import argparse
import logging
import os
import sys
from typing import Annotated
from mcp.server.fastmcp import FastMCP
from pydantic import Field
from ag_bids_mcp import client, format as fmt
from ag_bids_mcp.usage import track
logging.basicConfig(
level=os.environ.get("LOG_LEVEL", "INFO"),
format="%(asctime)s %(levelname)s %(name)s %(message)s",
stream=sys.stderr,
)
log = logging.getLogger("ag-bids-mcp")
mcp = FastMCP("ag-bids", stateless_http=True)
VALID_GRAIN = {"corn", "soy", "wheat"}
VALID_INPUT = {"lime", "map", "potash"}
# ============================================================================
# Tools
# ============================================================================
@mcp.tool()
def best_local_bid(
commodity: Annotated[
str, Field(description="Grain to look up: 'corn', 'soy' (soybeans), or 'wheat'.")
],
) -> str:
"""Return the highest local bid for *this calendar month's* delivery for
the given grain. This is the "where should I haul today" answer."""
commodity = commodity.strip().lower()
with track("best_local_bid", commodity=commodity):
if commodity not in VALID_GRAIN:
return f"`commodity` must be one of: {sorted(VALID_GRAIN)}"
payload = client.best(commodity)
return fmt.fmt_best(commodity, payload)
@mcp.tool()
def current_lime_price() -> str:
"""Latest lime prices on file across all sources. Lime is rarely posted on
public bid pages — entries usually come from manual admin input."""
with track("current_lime_price"):
payload = client.inputs(product="lime")
return fmt.fmt_inputs(payload)
@mcp.tool()
def current_input_price(
product: Annotated[
str | None,
Field(description="One of: 'lime', 'map', 'potash'. Omit for all three."),
] = None,
) -> str:
"""Latest fertilizer / lime prices ($/ton)."""
p = product.strip().lower() if product else None
with track("current_input_price", product=p):
if p is not None and p not in VALID_INPUT:
return f"`product` must be one of: {sorted(VALID_INPUT)} (or omit)"
payload = client.inputs(product=p)
return fmt.fmt_inputs(payload)
@mcp.tool()
def latest_prices(
commodity: Annotated[
str | None,
Field(description="Filter to one commodity (corn / soy / wheat / map / potash / lime)."),
] = None,
source: Annotated[
str | None,
Field(description="Filter to one source by exact display name."),
] = None,
delivery: Annotated[
str | None,
Field(description="Filter to one delivery label (e.g. 'May 2026', 'Oct/Nov 2026')."),
] = None,
) -> str:
"""Snapshot of the latest scraped bid per (source, commodity, delivery)."""
cm = commodity.strip().lower() if commodity else None
with track("latest_prices", commodity=cm, source=source, delivery=delivery):
payload = client.latest(commodity=cm, source=source, delivery=delivery)
return fmt.fmt_latest(payload)
@mcp.tool()
def price_history(
commodity: Annotated[
str, Field(description="One of corn / soy / wheat / map / potash / lime.")
],
source: Annotated[
str | None,
Field(description="Optional source display name to narrow the chart."),
] = None,
delivery: Annotated[
str | None,
Field(description="Optional delivery label to narrow the chart."),
] = None,
days: Annotated[
int, Field(ge=1, le=365, description="Lookback window in days.")
] = 30,
) -> str:
"""Compact price history per (source, delivery) for the chosen commodity.
Returns per-series ▲/▼ trend annotations plus the raw points if the
window has fewer than ~60 samples."""
cm = commodity.strip().lower()
with track("price_history", commodity=cm, source=source, delivery=delivery, days=days):
payload = client.history(commodity=cm, delivery=delivery, days=days)
if source:
payload["rows"] = [r for r in payload.get("rows") or [] if r.get("source_name") == source]
return fmt.fmt_history(payload)
@mcp.tool()
def list_sources() -> str:
"""All active scrapers + their last-success timestamps and any pending failures."""
with track("list_sources"):
payload = client.sources()
return fmt.fmt_sources(payload)
@mcp.tool()
def list_commodities() -> str:
"""The complete set of commodities tracked by ag-monitor."""
with track("list_commodities"):
return fmt.fmt_commodities()
@mcp.tool()
def list_deliveries(
commodity: Annotated[
str, Field(description="Commodity whose posted delivery labels you want.")
],
) -> str:
"""All posted delivery labels for a commodity, sorted chronologically."""
cm = commodity.strip().lower()
with track("list_deliveries", commodity=cm):
payload = client.deliveries(cm)
return fmt.fmt_deliveries(payload)
@mcp.tool()
def source_health() -> str:
"""Operational status of every source: healthy, stale, or down."""
with track("source_health"):
payload = client.sources()
return fmt.fmt_health(payload)
@mcp.tool()
def todays_summary() -> str:
"""Today's market snapshot — same blob used by the morning email brief.
Includes CBOT corn + soy continuous futures vs the previous trading
day's close, and the best local bid for each commodity's current-month
delivery."""
with track("todays_summary"):
payload = client.todays_summary()
return fmt.fmt_summary(payload)
# ============================================================================
# Entry point
# ============================================================================
def main() -> None:
p = argparse.ArgumentParser()
p.add_argument(
"--transport",
default=os.environ.get("MCP_TRANSPORT", "stdio"),
choices=["stdio", "streamable-http", "sse"],
)
p.add_argument("--host", default=os.environ.get("MCP_HOST", "0.0.0.0"))
p.add_argument("--port", type=int, default=int(os.environ.get("MCP_PORT", "8000")))
args = p.parse_args()
if args.transport == "stdio":
log.info("starting ag-bids MCP on stdio")
mcp.run()
return
# Same DNS-rebinding logic as zerto-docs-rag: behind a Docker DNS name
# like "ag-bids-mcp:8000", FastMCP's default localhost-only check would
# 421 every request.
allowed_hosts = os.environ.get("MCP_ALLOWED_HOSTS")
allowed_origins = os.environ.get("MCP_ALLOWED_ORIGINS")
if (
os.environ.get("MCP_DISABLE_DNS_REBINDING_PROTECTION") in {"1", "true", "yes"}
or allowed_hosts == "*"
or allowed_origins == "*"
):
mcp.settings.transport_security.enable_dns_rebinding_protection = False
else:
if allowed_hosts:
mcp.settings.transport_security.allowed_hosts = [
h.strip() for h in allowed_hosts.split(",") if h.strip()
]
if allowed_origins:
mcp.settings.transport_security.allowed_origins = [
o.strip() for o in allowed_origins.split(",") if o.strip()
]
mcp.settings.host = args.host
mcp.settings.port = args.port
log.info("starting ag-bids MCP on %s://%s:%s", args.transport, args.host, args.port)
mcp.run(transport=args.transport)
if __name__ == "__main__":
main()