Gramps MCP

gramps-mcp
src
gramps_mcp

auth.py•6.79 KiB

# gramps-mcp - AI-Powered Genealogy Research & Management # Copyright (C) 2025 cabout.me # # This program is free software: you can redistribute it and/or modify # it under the terms of the GNU Affero General Public License as published # by the Free Software Foundation, either version 3 of the License, or # (at your option) any later version. # # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the # GNU Affero General Public License for more details. # # You should have received a copy of the GNU Affero General Public License # along with this program. If not, see <https://www.gnu.org/licenses/>. """ JWT Authentication handling for Gramps Web API. """ import asyncio import logging import threading from datetime import datetime, timedelta, timezone from typing import Optional import httpx import jwt from .config import get_settings logger = logging.getLogger(__name__) class AuthManager: """Singleton JWT authentication for Gramps Web API.""" _instance: Optional["AuthManager"] = None _lock = threading.Lock() def __new__(cls) -> "AuthManager": """Ensure only one instance exists.""" if cls._instance is None: with cls._lock: # Double-check pattern to prevent race conditions if cls._instance is None: cls._instance = super().__new__(cls) return cls._instance def __init__(self): """Initialize the authentication manager (only once).""" # Only initialize once if hasattr(self, "_initialized"): return self.settings = get_settings() self._access_token: Optional[str] = None self._token_expires_at: Optional[datetime] = None self._client = None self._loop = None self._initialized = True logger.info("Singleton AuthManager instance created") @classmethod def reset_instance(cls): """Reset the singleton instance (for testing purposes).""" with cls._lock: if cls._instance and hasattr(cls._instance, "_client"): # Note: This is synchronous cleanup for testing # In production, use the async close() method pass cls._instance = None async def close(self): """Close the HTTP client and clear references.""" if hasattr(self, "_client") and self._client is not None: if not self._client.is_closed: await self._client.aclose() self._client = None self._loop = None logger.info("AuthManager HTTP client closed and references cleared") @property def client(self) -> httpx.AsyncClient: """ Get the httpx.AsyncClient instance, creating it if necessary. Ensures the client is open and valid for the current asyncio event loop. """ try: current_loop = asyncio.get_running_loop() except RuntimeError: current_loop = None # Recreate client if: no client, client closed, or different event loop if ( not hasattr(self, "_client") or self._client is None or self._client.is_closed or getattr(self, "_loop", None) != current_loop ): # Log reason for recreation existing_loop = getattr(self, "_loop", None) if existing_loop and current_loop != existing_loop: logger.info( "HTTP client recreated due to event loop change in AuthManager" ) else: logger.info("HTTP client recreated in AuthManager") # Create new client with current event loop base_url = str(self.settings.gramps_api_url).rstrip("/") if not base_url.endswith("/api"): base_url += "/api" self._client = httpx.AsyncClient( base_url=base_url, timeout=httpx.Timeout(timeout=30.0, connect=10.0) ) self._loop = current_loop return self._client async def authenticate(self) -> str: """ Authenticate with Gramps Web API and get access token. Returns: Access token string """ try: response = await self.client.post( "/token/", json={ "username": self.settings.gramps_username, "password": self.settings.gramps_password, }, ) response.raise_for_status() data = response.json() self._access_token = data["access_token"] # Set expiration time try: payload = jwt.decode( self._access_token, options={"verify_signature": False} ) exp = payload.get("exp") if exp: self._token_expires_at = datetime.fromtimestamp( exp, tz=timezone.utc ) else: self._token_expires_at = datetime.now(timezone.utc) + timedelta( minutes=15 ) except Exception: self._token_expires_at = datetime.now(timezone.utc) + timedelta( minutes=15 ) logger.info("Successfully authenticated with Gramps Web API") return self._access_token except httpx.HTTPStatusError as e: if e.response.status_code == 403: raise ValueError("Invalid username or password") raise ValueError(f"Authentication failed: HTTP {e.response.status_code}") except httpx.ConnectError as e: raise ValueError(f"Cannot connect to Gramps API: {e}") except Exception as e: raise ValueError(f"Authentication error: {e}") async def get_token(self) -> str: """ Get a valid access token, authenticating if needed. Returns: Valid access token """ # Check if we need to authenticate if not self._access_token or not self._token_expires_at: return await self.authenticate() # Check if token is expired if datetime.now(timezone.utc) >= self._token_expires_at: return await self.authenticate() return self._access_token def get_headers(self) -> dict: """ Get authentication headers for API requests. Returns: Dict with Authorization header """ if not self._access_token: raise ValueError("Not authenticated") return { "Authorization": f"Bearer {self._access_token}", "Content-Type": "application/json", }

Loading blob content...

Latest Blog Posts

Redis vs ioredis vs valkey-glide
By punkpeye on January 26, 2026.
benchmark
Redis
valkey
Quickstart: Publish an MCP Server to the MCP Registry
By punkpeye on January 24, 2026.
mcp
official reference mirror
Official MCP Registry Server.json Requirements
By punkpeye on January 24, 2026.
mcp
official reference mirror

MCP directory API

We provide all the information about MCP servers via our MCP API.

curl -X GET 'https://glama.ai/api/mcp/v1/servers/cabout-me/gramps-mcp'

If you have feedback or need assistance with the MCP directory API, please join our Discord server

auth.py•6.79 KiB