entropic/mcp__authorization_8cpp_source.html

// SPDX-License-Identifier: Apache-2.0

#include <entropic/mcp/mcp_authorization.h>

#include <entropic/types/logging.h>


#include <nlohmann/json.hpp>


static auto logger = entropic::log::get("mcp.authorization");


namespace entropic {


void MCPAuthorizationManager::register_identity(

    const std::string& identity_name) {

    std::lock_guard<std::mutex> lock(auth_mutex_);

    key_sets_.try_emplace(identity_name);

    logger->info("Registered identity: {}", identity_name);

}


bool MCPAuthorizationManager::is_enforced(

    const std::string& identity_name) const {

    std::lock_guard<std::mutex> lock(auth_mutex_);

    return key_sets_.count(identity_name) > 0;

}


entropic_error_t MCPAuthorizationManager::grant(

    const std::string& identity_name,

    const std::string& pattern,

    MCPAccessLevel level) {

    std::lock_guard<std::mutex> lock(auth_mutex_);

    auto it = key_sets_.find(identity_name);

    if (it == key_sets_.end()) {

        return ENTROPIC_ERROR_IDENTITY_NOT_FOUND;

    }

    it->second.grant(pattern, level);

    return ENTROPIC_OK;

}


entropic_error_t MCPAuthorizationManager::revoke(

    const std::string& identity_name,

    const std::string& pattern) {

    std::lock_guard<std::mutex> lock(auth_mutex_);

    auto it = key_sets_.find(identity_name);

    if (it == key_sets_.end()) {

        return ENTROPIC_ERROR_IDENTITY_NOT_FOUND;

    }

    it->second.revoke(pattern);

    return ENTROPIC_OK;

}


bool MCPAuthorizationManager::check_access(

    const std::string& identity_name,

    const std::string& tool_name,

    MCPAccessLevel required_level) const {

    std::lock_guard<std::mutex> lock(auth_mutex_);

    auto it = key_sets_.find(identity_name);

    if (it == key_sets_.end()) {

        logger->info("Auth ALLOW: {} on {} (no enforcement)",

                     identity_name, tool_name);

        return true;

    }

    bool allowed = it->second.has_access(tool_name, required_level);

    logger->info("Auth {}: {} on {} (required={})",

                 allowed ? "ALLOW" : "DENY",

                 identity_name, tool_name,

                 static_cast<int>(required_level));

    return allowed;

}


entropic_error_t MCPAuthorizationManager::grant_from(

    const std::string& granter_name,

    const std::string& grantee_name,

    const std::string& pattern,

    MCPAccessLevel level) {

    std::lock_guard<std::mutex> lock(auth_mutex_);

    auto granter = key_sets_.find(granter_name);

    auto grantee = key_sets_.find(grantee_name);

    if (granter == key_sets_.end() ||

        grantee == key_sets_.end()) {

        return ENTROPIC_ERROR_IDENTITY_NOT_FOUND;

    }

    if (!granter->second.has_access(pattern, level)) {

        logger->warn("{} lacks {}:{} — cannot grant to {}",

                     granter_name, pattern,

                     mcp_access_level_name(level), grantee_name);

        return ENTROPIC_ERROR_PERMISSION_DENIED;

    }

    grantee->second.grant(pattern, level);

    logger->info("{} granted {}:{} to {}", granter_name, pattern,

                 mcp_access_level_name(level), grantee_name);

    return ENTROPIC_OK;

}


std::vector<MCPKey> MCPAuthorizationManager::list_keys(

    const std::string& identity_name) const {

    std::lock_guard<std::mutex> lock(auth_mutex_);

    auto it = key_sets_.find(identity_name);

    if (it == key_sets_.end()) {

        return {};

    }

    return it->second.list();

}


std::string MCPAuthorizationManager::serialize_all() const {

    std::lock_guard<std::mutex> lock(auth_mutex_);

    nlohmann::json obj = nlohmann::json::object();

    for (const auto& [name, key_set] : key_sets_) {

        auto keys_json = key_set.serialize();

        obj[name] = nlohmann::json::parse(keys_json);

    }

    return obj.dump();

}


bool MCPAuthorizationManager::deserialize_all(

    const std::string& json) {

    nlohmann::json obj;

    try {

        obj = nlohmann::json::parse(json);

    } catch (const nlohmann::json::exception& e) {

        logger->warn("Deserialize failed: {}", e.what());

        return false;

    }

    if (!obj.is_object()) {

        logger->warn("Deserialize: expected JSON object");

        return false;

    }

    std::lock_guard<std::mutex> lock(auth_mutex_);

    key_sets_.clear();

    for (const auto& [name, keys_arr] : obj.items()) {

        auto [it, _] = key_sets_.try_emplace(name);

        it->second.deserialize(keys_arr.dump());

    }

    return true;

}


void MCPAuthorizationManager::unregister_identity(

    const std::string& identity_name) {

    std::lock_guard<std::mutex> lock(auth_mutex_);

    key_sets_.erase(identity_name);

    logger->info("Unregistered identity: {}", identity_name);

}


} // namespace entropic

entropic::MCPAuthorizationManager::grant
entropic_error_t grant(const std::string &identity_name, const std::string &pattern, MCPAccessLevel level)
Grant a tool key to an identity.
Definition mcp_authorization.cpp:52

entropic::MCPAuthorizationManager::register_identity
void register_identity(const std::string &identity_name)
Register an empty key set for an identity.
Definition mcp_authorization.cpp:23

entropic::MCPAuthorizationManager::unregister_identity
void unregister_identity(const std::string &identity_name)
Remove an identity's key set (disables enforcement).
Definition mcp_authorization.cpp:215

entropic::MCPAuthorizationManager::deserialize_all
bool deserialize_all(const std::string &json)
Deserialize all identity key sets from JSON.
Definition mcp_authorization.cpp:187

entropic::MCPAuthorizationManager::is_enforced
bool is_enforced(const std::string &identity_name) const
Check if an identity has authorization enforcement enabled.
Definition mcp_authorization.cpp:37

entropic::MCPAuthorizationManager::revoke
entropic_error_t revoke(const std::string &identity_name, const std::string &pattern)
Revoke a tool key from an identity.
Definition mcp_authorization.cpp:73

entropic::MCPAuthorizationManager::serialize_all
std::string serialize_all() const
Serialize all identity key sets to JSON.
Definition mcp_authorization.cpp:170

entropic::MCPAuthorizationManager::list_keys
std::vector< MCPKey > list_keys(const std::string &identity_name) const
List all keys for an identity.
Definition mcp_authorization.cpp:154

entropic::MCPAuthorizationManager::grant_from
entropic_error_t grant_from(const std::string &granter_name, const std::string &grantee_name, const std::string &pattern, MCPAccessLevel level)
One identity grants a key to another identity.
Definition mcp_authorization.cpp:123

entropic::MCPAuthorizationManager::check_access
bool check_access(const std::string &identity_name, const std::string &tool_name, MCPAccessLevel required_level) const
Check if a tool call is authorized for an identity.
Definition mcp_authorization.cpp:94

entropic_error_t
entropic_error_t
Error codes returned by all C API functions.
Definition error.h:35

ENTROPIC_OK
@ ENTROPIC_OK
Success.
Definition error.h:36

ENTROPIC_ERROR_IDENTITY_NOT_FOUND
@ ENTROPIC_ERROR_IDENTITY_NOT_FOUND
Identity name not in config (v1.8.9)
Definition error.h:58

ENTROPIC_ERROR_PERMISSION_DENIED
@ ENTROPIC_ERROR_PERMISSION_DENIED
Tool call blocked by permission manager.
Definition error.h:44

logging.h
spdlog initialization and logger access.

entropic::log::get
ENTROPIC_EXPORT std::shared_ptr< spdlog::logger > get(const std::string &name)
Get or create a named logger.
Definition logging.cpp:211

mcp_authorization.h
Per-identity MCP authorization with runtime grant/revoke.

entropic
Activate model on GPU (WARM → ACTIVE).
Definition bundled_models.h:20

entropic::mcp_access_level_name
const char * mcp_access_level_name(MCPAccessLevel level)
Convert MCPAccessLevel to string representation.
Definition config.cpp:21

entropic::MCPAccessLevel
MCPAccessLevel
MCP tool access level for per-identity authorization.
Definition config.h:38