Commvault MCP Server

cv_api_client.py•8.84 KiB

# -------------------------------------------------------------------------- # Copyright Commvault Systems, Inc. # # Licensed under the Apache License, Version 2.0 (the "License"); # you may not use this file except in compliance with the License. # You may obtain a copy of the License at # # http://www.apache.org/licenses/LICENSE-2.0 # # Unless required by applicable law or agreed to in writing, software # distributed under the License is distributed on an "AS IS" BASIS, # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. # See the License for the specific language governing permissions and # limitations under the License. # -------------------------------------------------------------------------- import requests import json from typing import Dict, Any, Optional, Union from urllib.parse import urljoin import time from dotenv import load_dotenv from src.auth.oauth_service import OAuthService from src.auth.auth_service import AuthService from src.logger import logger from src.utils import get_env_var, sanitize_endpoint_path load_dotenv() class CommvaultApiClient: def __init__(self, use_oauth=False): self.base_url = get_env_var("CC_SERVER_URL") + "/commandcenter/api/" self.ssl_verify = get_env_var("SSL_VERIFY", default="true").lower() == "true" # This is to disable SSL verification for development purposes self.use_oauth = use_oauth self.auth_service = OAuthService() if use_oauth else AuthService() def _get_headers(self, additional_headers: Optional[Dict[str, str]] = None) -> Dict[str, str]: auth_token, _ = self.auth_service.get_tokens() headers = { 'Accept': 'application/json' } if self.use_oauth: headers['Authorization'] = auth_token # this will have Bearer prefix else: headers['Authtoken'] = auth_token if additional_headers: headers.update(additional_headers) return headers def _build_url(self, endpoint: str) -> str: # Sanitize endpoint to prevent path traversal attacks try: sanitized_endpoint = sanitize_endpoint_path(endpoint) if sanitized_endpoint != endpoint: logger.warning(f"Endpoint was sanitized: '{endpoint}' -> '{sanitized_endpoint}'") except ValueError as e: logger.error(f"Invalid endpoint: {e}") raise Exception("Invalid endpoint") return urljoin(self.base_url, sanitized_endpoint) def _refresh_access_token(self) -> bool: try: refresh_url = self._build_url("V4/AccessToken/Renew") auth_token, refresh_token = self.auth_service.get_tokens() payload = { "accessToken": auth_token, "refreshToken": refresh_token } headers = { 'Accept': 'application/json', 'Content-Type': 'application/json' } response = requests.post( url=refresh_url, headers=headers, data=json.dumps(payload), verify= self.ssl_verify ) response.raise_for_status() new_access_token = response.json().get("accessToken") new_refresh_token = response.json().get("refreshToken") if not new_access_token or not new_refresh_token: raise Exception("No new tokens received") self.auth_service.set_tokens(new_access_token, new_refresh_token) logger.info("Access token refreshed successfully") return True except Exception as e: logger.error(f"Failed to refresh access token: {str(e)}") return False def request(self, method: str, endpoint: str, params: Optional[Dict[str, Any]] = None, data: Optional[Union[Dict[str, Any], str]] = None, headers: Optional[Dict[str, str]] = None, max_retries: int = 2, retry_delay: float = 1.0) -> requests.Response: # Check if the secret key is passed in the header for sse and streamable-http modes when OAuth is not used if get_env_var('USE_OAUTH', 'false')!="true" and get_env_var('MCP_TRANSPORT_MODE')!="stdio": is_valid, error_message = self.auth_service.is_client_token_valid() if not is_valid: raise Exception(f"{error_message}") url = self._build_url(endpoint) request_headers = self._get_headers(headers) logger.info(f"{method} request to: {url}") request_data = data if isinstance(data, dict): request_data = json.dumps(data) if 'Content-Type' not in request_headers: request_headers['Content-Type'] = 'application/json' retries = 0 while retries <= max_retries: try: response = requests.request( method=method.upper(), url=url, headers=request_headers, params=params, data=request_data, verify= self.ssl_verify ) logger.info(f"Response status code: {response.status_code}") # Handle 401 Unauthorized error (expired token) if response.status_code == 401 and not self.use_oauth: logger.info("Received 401 Unauthorized response. Attempting to refresh token...") success = self._refresh_access_token() if success: # Update headers with new token and retry the request request_headers = self._get_headers(headers) logger.info(f"Retrying {method} request with new token") continue # Catch other HTTP errors response.raise_for_status() try: response_json = response.json() logger.debug(f"Response content: {response_json}") return response_json except ValueError: logger.error(f"Invalid JSON response: {response.text[:100]}...") raise Exception("Invalid response format from server") except requests.exceptions.HTTPError as e: # Let the 401 handling above take care of auth errors if e.response.status_code != 401: retries += 1 if retries > max_retries: raise backoff_time = retry_delay * (2 ** (retries - 1)) logger.warning(f"Request failed with {e}. Retrying in {backoff_time} seconds...") time.sleep(backoff_time) else: # If we get here, it means we got a 401 and the token refresh failed if not self.use_oauth: raise Exception("Failed to refresh token. please create a new token update the keyring") raise e except requests.exceptions.RequestException as e: retries += 1 if retries > max_retries: raise Exception("Some issue occured. Please try again later.") backoff_time = retry_delay * (2 ** (retries - 1)) logger.warning(f"Request failed with {e}. Retrying in {backoff_time} seconds...") time.sleep(backoff_time) except Exception as e: logger.error(f"An unexpected error occurred: {str(e)}") raise # Convenience methods for common HTTP methods def get(self, endpoint: str, params: Optional[Dict[str, Any]] = None, headers: Optional[Dict[str, str]] = None) -> Dict[str, Any]: """Make a GET request to the API.""" return self.request("GET", endpoint, params=params, headers=headers) def post(self, endpoint: str, data: Optional[Union[Dict[str, Any], str]] = None, params: Optional[Dict[str, Any]] = None, headers: Optional[Dict[str, str]] = None) -> Dict[str, Any]: """Make a POST request to the API.""" return self.request("POST", endpoint, params=params, data=data, headers=headers) def put(self, endpoint: str, data: Optional[Union[Dict[str, Any], str]] = None, params: Optional[Dict[str, Any]] = None, headers: Optional[Dict[str, str]] = None) -> Dict[str, Any]: """Make a PUT request to the API.""" return self.request("PUT", endpoint, params=params, data=data, headers=headers) commvault_api_client = CommvaultApiClient(use_oauth=(get_env_var('USE_OAUTH', 'false').lower() == 'true'))

Loading blob content...

Latest Blog Posts

Redis vs ioredis vs valkey-glide
By punkpeye on January 26, 2026.
benchmark
Redis
valkey
Quickstart: Publish an MCP Server to the MCP Registry
By punkpeye on January 24, 2026.
mcp
official reference mirror
Official MCP Registry Server.json Requirements
By punkpeye on January 24, 2026.
mcp
official reference mirror

MCP directory API

We provide all the information about MCP servers via our MCP API.

curl -X GET 'https://glama.ai/api/mcp/v1/servers/chandansgowda-cv/commvault-mcp-server'

If you have feedback or need assistance with the MCP directory API, please join our Discord server

cv_api_client.py•8.84 KiB