xinyin025/LangBot
1
0
Fork 0
mirror of https://github.com/langbot-app/LangBot.git synced 2026-06-21 21:14:20 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
85743cc75f3faf16cd751bafaf77e4d09d6f0e55
LangBot/tests/manual/mcp_smoke.py
T
Junyan Chin e9dd584792 feat: MCP server + in-repo skills (agent-friendly platform) (#2269) 
* feat(api): support global API key from config.yaml (api.global_api_key)

Accept a config-defined global API key anywhere a web-UI key is accepted
(X-API-Key / Bearer), with no login session and no DB record. Useful for
automated deployments and AI agents (HTTP API + MCP). Defaults to empty
(disabled); does not require the lbk_ prefix.

- templates/config.yaml: add api.global_api_key with security notes
- service/apikey.py: verify_api_key checks global key first (constant-time)
- docs/API_KEY_AUTH.md: document the global key + security guidance
- tests: cover global-key match, prefix-free, fallback-to-db, disabled

* feat(mcp): expose LangBot management as an MCP server at /mcp

Add an MCP (Model Context Protocol) server so external AI agents can manage a
LangBot instance. Reuses the same API-key auth as the HTTP API (including the
config.yaml global API key).

- pkg/api/mcp/server.py: FastMCP server wrapping the service layer; 21 curated
  tools across system/bots/pipelines/models/knowledge/mcp-servers/skills
- pkg/api/mcp/mount.py: ASGI dispatcher fronting Quart; authenticates /mcp
  requests with an API key, runs the streamable-HTTP session manager lifespan
- controller/main.py: serve the wrapped ASGI app via hypercorn (was run_task)
- web: new 'MCP' tab in the API integration dialog showing endpoint, auth, and
  client config; i18n for 8 locales
- tests/manual/mcp_smoke.py: e2e check (401 unauth, list tools, call tools)

Tool surface is intentionally curated (not all ~25 route groups) to keep the
agent surface small, safe, and maintainable. Extend deliberately.

* feat(skills): add in-repo skills/ as the single source of truth

Migrate the agent skills + QA/e2e test harness from the (now archived)
langbot-app/langbot-skills repo into LangBot/skills/, and add four new skills.

Migrated:
- langbot-plugin-dev, langbot-testing (e2e), langbot-env-setup,
  langbot-skills-maintenance, langbot-eba-adapter-dev
- the bin/lbs CLI (src/, test/, scripts/, schemas/, qa-agent-docs/)

New:
- langbot-dev      core backend + web development
- langbot-deploy   Docker/K8s deployment + config.yaml + global API key
- langbot-mcp-ops  operating the LangBot MCP server (/mcp)
- langbot-space-ops operating the Space marketplace MCP server

- src/cli.ts repoRoot(): recognize the skills assets root (skills.index.json +
  bin/lbs) so the CLI works when nested inside the LangBot repo
- README.md: unified skill catalog; skills.index.json regenerated

Parity with source verified: bin/lbs validate + node test suite match the
source repo (only the uncommitted .lbpkg build-artifact fixture differs).

* docs(agents): document agent-facing surfaces + API/MCP/skills sync rule

* docs(readme): add 'Built for AI Agents' section across all locales

Highlight MCP server, in-repo skills (single source of truth), AGENTS.md
sync rule, and llms.txt. Cross-link LangBot Space MCP marketplace.

* style(mcp): fix ruff format + prettier lint in MCP server and API panel

* style(web): prettier format MCP i18n locale entries

* docs(skills): note MCP instance control in dev/testing skills

All development-guidance skills now point to the LangBot instance MCP
server (/mcp) and the Space marketplace MCP server, reusing API keys.
2026-06-20 15:14:47 +08:00

133 lines
4.8 KiB
Python
Raw Blame History

"""End-to-end test: boot the real MCPMount on a port and drive it with an MCP client.
Exercises the ASGI dispatcher (auth + /mcp routing), the FastMCP streamable-HTTP
transport, and a real tool call against the (mocked) service layer.
Run: uv run --no-sync python tests/manual/mcp_smoke.py
"""
from __future__ import annotations
import asyncio
import contextlib
from types import SimpleNamespace
from unittest.mock import AsyncMock
from hypercorn.asyncio import serve
from hypercorn.config import Config
from quart import Quart
from langbot.pkg.api.mcp.mount import MCPMount
PORT = 5399
GLOBAL_KEY = 'test-global-key-123'
def build_ap() -> SimpleNamespace:
ap = SimpleNamespace()
ap.instance_config = SimpleNamespace(
data={'api': {'global_api_key': GLOBAL_KEY}, 'system': {'edition': 'community', 'instance_id': 'inst-1'}}
)
ap.ver_mgr = SimpleNamespace(get_current_version=lambda: '4.5.0-test')
ap.logger = SimpleNamespace(info=print, error=print, warning=print)
# API key verification: reuse real logic shape (global key match)
async def verify_api_key(key: str) -> bool:
return bool(key) and key == GLOBAL_KEY
ap.apikey_service = SimpleNamespace(verify_api_key=verify_api_key)
ap.bot_service = SimpleNamespace(
get_bots=AsyncMock(return_value=[{'uuid': 'bot-1', 'name': 'Demo Bot', 'adapter': 'telegram'}])
)
ap.pipeline_service = SimpleNamespace(get_pipelines=AsyncMock(return_value=[{'uuid': 'pl-1', 'name': 'default'}]))
ap.llm_model_service = SimpleNamespace(get_llm_models=AsyncMock(return_value=[]))
ap.embedding_models_service = SimpleNamespace(get_embedding_models=AsyncMock(return_value=[]))
ap.provider_service = SimpleNamespace(get_providers=AsyncMock(return_value=[]))
ap.knowledge_service = SimpleNamespace(get_knowledge_bases=AsyncMock(return_value=[]))
ap.mcp_service = SimpleNamespace(get_mcp_servers=AsyncMock(return_value=[]))
ap.skill_service = SimpleNamespace(list_skills=AsyncMock(return_value=[{'name': 'demo-skill'}]))
return ap
async def run_server(mount: MCPMount, shutdown: asyncio.Event) -> None:
quart_app = Quart(__name__)
@quart_app.route('/healthz')
async def healthz():
return {'code': 0, 'msg': 'ok'}
config = Config()
config.bind = [f'127.0.0.1:{PORT}']
config.accesslog = None
asgi = mount.wrap(quart_app)
await serve(asgi, config, shutdown_trigger=shutdown.wait)
async def main() -> int:
from mcp.client.session import ClientSession
from mcp.client.streamable_http import streamablehttp_client
ap = build_ap()
mount = MCPMount(ap)
await mount.start_session_manager()
shutdown = asyncio.Event()
server_task = asyncio.create_task(run_server(mount, shutdown))
await asyncio.sleep(1.0) # let the server bind
url = f'http://127.0.0.1:{PORT}/mcp'
failures = []
# 1. Unauthorized request is rejected.
import httpx
async with httpx.AsyncClient() as client:
r = await client.post(url, json={'jsonrpc': '2.0', 'id': 1, 'method': 'ping'})
if r.status_code != 401:
failures.append(f'expected 401 without key, got {r.status_code}')
else:
print('PASS: unauthorized request rejected (401)')
# 2. Authorized MCP session: list tools + call two.
headers = {'X-API-Key': GLOBAL_KEY}
async with streamablehttp_client(url, headers=headers) as (read, write, _):
async with ClientSession(read, write) as session:
await session.initialize()
tools = await session.list_tools()
names = [t.name for t in tools.tools]
print(f'PASS: listed {len(names)} tools')
for required in ('list_bots', 'get_system_info', 'list_skills'):
if required not in names:
failures.append(f'missing tool {required}')
res = await session.call_tool('list_bots', {})
text = res.content[0].text if res.content else ''
if 'Demo Bot' not in text:
failures.append(f'list_bots did not return expected data: {text!r}')
else:
print('PASS: list_bots returned bot data')
res2 = await session.call_tool('get_system_info', {})
text2 = res2.content[0].text if res2.content else ''
if '4.5.0-test' not in text2:
failures.append(f'get_system_info wrong: {text2!r}')
else:
print('PASS: get_system_info returned version')
shutdown.set()
with contextlib.suppress(Exception):
await asyncio.wait_for(server_task, timeout=5)
await mount.stop_session_manager()
if failures:
print('\nFAILURES:')
for f in failures:
print(' -', f)
return 1
print('\nALL MCP SMOKE CHECKS PASSED')
return 0
if __name__ == '__main__':
raise SystemExit(asyncio.run(main()))
Reference in New Issue View Git Blame Copy Permalink