gitea-mcp

mathias/gitea-mcp

Fork 0

Commit Graph

Author	SHA1	Message	Date
Mathias	b4176c1dec	chore: re-sync context adapters with upstream root Derived adapters drifted from canonical root .context/AGENT.md after the pgvector default change landed upstream. Pure regeneration via scripts/context-sync.sh, no manual edits. Required to make task check pass before the feature commits on this branch. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>	2026-05-16 23:00:23 +02:00
Mathias Bergqvist	91be18c100	feat(auth): JWT-or-static middleware + /.well-known/oauth-protected-resource (issue #5 ) Some checks failed CD / Lint / Test / Vet (push) Failing after 2s Details CD / Build & Import (push) Has been skipped Details CD / Deploy via GitOps (push) Has been skipped Details - internal/auth/jwt.go: JWTValidator via lestrrat-go/jwx/v2, JWKS auto-refresh - internal/auth/bearer.go: replace Gitea PAT validation with JWT->static->default chain - internal/gitea/client.go: always use service PAT; remove TokenFromContext lookup - internal/config/config.go: add DexIssuerURL, MCPAudience, MCPResourceURL, StaticToken - cmd/gitea-mcp/main.go: wire validator, fix /.well-known to return real AS list - bearer_test.go: rewrite for new API	2026-05-12 11:30:52 +02:00

Author

SHA1

Message

Date

Mathias

b4176c1dec

chore: re-sync context adapters with upstream root

Derived adapters drifted from canonical root .context/AGENT.md after
the pgvector default change landed upstream. Pure regeneration via
scripts/context-sync.sh, no manual edits. Required to make task check
pass before the feature commits on this branch.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>

2026-05-16 23:00:23 +02:00

Mathias Bergqvist

91be18c100

feat(auth): JWT-or-static middleware + /.well-known/oauth-protected-resource (issue #5 )

CD / Lint / Test / Vet (push) Failing after 2s

Details

CD / Build & Import (push) Has been skipped

Details

CD / Deploy via GitOps (push) Has been skipped

Details

- internal/auth/jwt.go: JWTValidator via lestrrat-go/jwx/v2, JWKS auto-refresh
- internal/auth/bearer.go: replace Gitea PAT validation with JWT->static->default chain
- internal/gitea/client.go: always use service PAT; remove TokenFromContext lookup
- internal/config/config.go: add DexIssuerURL, MCPAudience, MCPResourceURL, StaticToken
- cmd/gitea-mcp/main.go: wire validator, fix /.well-known to return real AS list
- bearer_test.go: rewrite for new API

2026-05-12 11:30:52 +02:00

2 Commits