Wireshark MCP Server

utilities.py•5.6 KiB

""" Wireshark MCP Server Utilities Common utility functions for the Wireshark MCP server. """ import os import logging from typing import Dict, Any, Optional from fastmcp.server.dependencies import get_http_headers # Configure logging logger = logging.getLogger(__name__) def parse_boolean_env_var(env_var_name: str, default: bool = False) -> bool: """ Parse environment variable as boolean with multiple formats supported. Args: env_var_name: Name of the environment variable default: Default value if environment variable is not set Returns: Boolean value of the environment variable """ val = os.getenv(env_var_name, '').lower().strip() return val in ['true', '1', 'yes', 't', 'y'] if val else default def log_user_access(request: Optional[Dict[str, Any]], tool_name: str) -> None: """ Log user access if enabled. Args: request: Request object containing authentication information tool_name: Name of the tool being accessed """ if parse_boolean_env_var("ENABLE_AUTH_LOGGING") and request: claims = getattr(request, "auth", {}).get("claims", {}) if claims: name = claims.get("name") or claims.get("preferred_username") email = claims.get("email") or claims.get("upn") logger.info(f"[WIRESHARK] Tool '{tool_name}' accessed by user: {name} ({email})") def get_github_credentials() -> Dict[str, Optional[str]]: """ Extract GitHub credentials from HTTP headers or environment. Returns: Dictionary with GitHub username, PAT, repo, path, and branch """ headers = get_http_headers() or {} normalized_headers = {k.lower(): v for k, v in headers.items()} username = normalized_headers.get('x-github-username') or os.getenv('GITHUB_USERNAME') pat = normalized_headers.get('x-github-pat') or os.getenv('GITHUB_PAT') repo = normalized_headers.get('x-github-repo') or os.getenv('GITHUB_REPO') path = normalized_headers.get('x-github-path') or os.getenv('GITHUB_PATH', '') branch = normalized_headers.get('x-github-branch') or os.getenv('GITHUB_BRANCH', 'main') return { 'username': username, 'pat': pat, 'repo': repo, 'path': path, 'branch': branch } def validate_github_credentials() -> Dict[str, str]: """ Validate that required GitHub credentials are present. Raises ValueError if any required credential is missing. Returns: Validated credentials dictionary Raises: ValueError: If X-GitHub-Username or X-GitHub-PAT is not provided """ creds = get_github_credentials() missing = [] if not creds.get('username'): missing.append('X-GitHub-Username header or GITHUB_USERNAME env var') if not creds.get('pat'): missing.append('X-GitHub-PAT header or GITHUB_PAT env var') if not creds.get('repo'): missing.append('X-GitHub-Repo header or GITHUB_REPO env var') if missing: raise ValueError( f"Missing required GitHub credentials: {'; '.join(missing)}. " "Provide credentials via HTTP headers (X-GitHub-Username, X-GitHub-PAT, X-GitHub-Repo) " "or environment variables (GITHUB_USERNAME, GITHUB_PAT, GITHUB_REPO)." ) return creds def configure_auth(): """ Configure authentication based on environment variables. Returns: Configured authentication provider or None if authentication is disabled """ # Import FastMCP's native JWT verification from fastmcp.server.auth.providers.jwt import JWTVerifier # Get Azure AD tenant ID and client ID from environment variables tenant_id = os.getenv('AZURE_AD_TENANT_ID') client_id = os.getenv('AZURE_AD_CLIENT_ID') # Check for Docker environment and force disable auth if needed in_docker = os.path.exists('/.dockerenv') if in_docker: logger.warning("Running in Docker container - checking environment variables carefully") # Parse DISABLE_JWT_AUTH with multiple formats supported disable_jwt_auth = parse_boolean_env_var('DISABLE_JWT_AUTH') # Add explicit override for Docker if needed if in_docker and parse_boolean_env_var('DOCKER_DISABLE_AUTH'): logger.warning("Forcing authentication disabled due to DOCKER_DISABLE_AUTH") disable_jwt_auth = True logger.warning(f"DISABLE_JWT_AUTH value: '{os.getenv('DISABLE_JWT_AUTH')}', parsed as: {disable_jwt_auth}") # Configure authentication based on environment variables if disable_jwt_auth: logger.info("JWT authentication disabled by DISABLE_JWT_AUTH=true") return None # If auth is enabled, tenant_id is REQUIRED (client_id is optional) if not tenant_id: error_msg = "JWT authentication is enabled but AZURE_AD_TENANT_ID is not set. Set DISABLE_JWT_AUTH=true to explicitly disable authentication." logger.error(error_msg) raise ValueError(error_msg) # Configure JWT verification for Azure AD logger.info(f"Configuring JWT verification for Azure AD tenant {tenant_id}") if client_id: logger.info(f"Audience validation enabled with client_id: {client_id}") else: logger.warning("AZURE_AD_CLIENT_ID not set - audience validation will be skipped") jwks_uri = f"https://login.microsoftonline.com/{tenant_id}/discovery/v2.0/keys" issuer = f"https://login.microsoftonline.com/{tenant_id}/v2.0" return JWTVerifier( jwks_uri=jwks_uri, issuer=issuer, audience=client_id # Can be None - FastMCP will skip audience validation )

Loading blob content...

Latest Blog Posts

Redis vs ioredis vs valkey-glide
By punkpeye on January 26, 2026.
benchmark
Redis
valkey
Quickstart: Publish an MCP Server to the MCP Registry
By punkpeye on January 24, 2026.
mcp
official reference mirror
Official MCP Registry Server.json Requirements
By punkpeye on January 24, 2026.
mcp
official reference mirror

MCP directory API

We provide all the information about MCP servers via our MCP API.

curl -X GET 'https://glama.ai/api/mcp/v1/servers/Presidio-Federal/wireshark-mcp-container'

If you have feedback or need assistance with the MCP directory API, please join our Discord server

utilities.py•5.6 KiB