Foreman MCP Server

Official

Overview Schema Related Servers Score Discussions

foreman-mcp-server
src
foreman_mcp_server

server.py•4.88 KiB

import logging import socket from pathlib import Path import apypie import click from fastmcp import FastMCP from fastmcp.server.dependencies import get_context from fastmcp.settings import LOG_LEVEL from fastmcp.utilities.logging import configure_logging from .middleware.auth import AuthMiddleware from .middleware.logging import LoggingMiddleware from .prompts import register_prompts from .resources import register_resources from .tools import register_tools # TODO: Revisit all the places to properly handle exceptions and errors. Consider using fastmcp's exceptions. def normalize_log_level(_ctx, _param, value): """Standardize log level input to uppercase.""" if value: value = value.upper() return value def assert_server_mode(foreman_username: str, foreman_password: str, transport: str): """Assert that the server is running in the correct mode.""" if transport == "streamable-http": if foreman_username or foreman_password: raise ValueError( "Foreman username and password should not be set when using streamable-http transport." ) else: if not foreman_username or not foreman_password: raise ValueError( "Foreman username and password must be set when using stdio transport." ) @click.command() @click.option( "--port", default=8080, help="Port to listen on for HTTP", envvar="PORT", show_default=True, ) @click.option( "--host", default="127.0.0.1", help="Host to listen on for HTTP", envvar="HOST", show_default=True, ) @click.option( "--log-level", default="INFO", help="Logging level (DEBUG, INFO, WARNING, ERROR, CRITICAL)", callback=normalize_log_level, show_default=True, ) @click.option( "--foreman-url", default=f"https://{socket.gethostname()}", help="Foreman URL to connect to", envvar="FOREMAN_URL", show_default=True, ) @click.option( "--foreman-username", help="Username for Foreman API authentication. Can be set via FOREMAN_USERNAME environment variable.", envvar="FOREMAN_USERNAME", ) @click.option( "--foreman-password", help="Password for Foreman API authentication. Can be set via FOREMAN_PASSWORD environment variable. Personal access tokens are recommended.", envvar="FOREMAN_PASSWORD", ) @click.option( "--transport", default="streamable-http", help="Transport protocol to use (streamable-http, stdio)", show_default=True, ) @click.option( "--verify-ssl/--no-verify-ssl", default=True, is_flag=True, help="Verify SSL certificates when connecting to Foreman API.", show_default=True, ) @click.option( "--ca-bundle", help="Path to CA certificate bundle file for SSL verification. If not specified, ./ca.pem will be used if it exists, otherwise system default CA bundle is used.", envvar="FOREMAN_CA_BUNDLE", ) @click.pass_context def main( ctx: click.Context, host: str, port: int, log_level: LOG_LEVEL, foreman_url: str, foreman_username: str, foreman_password: str, transport: str, verify_ssl: bool, ca_bundle: str, ) -> int: """Run the Foreman MCP server.""" # Default loggers logging.basicConfig(level=log_level) configure_logging(level=log_level) # Global logger for the MCP server logger = logging.getLogger("foreman_mcp_server") logger.setLevel(log_level) try: assert_server_mode(foreman_username, foreman_password, transport) except ValueError as e: logger.error(f"configuration: {e}") ctx.exit(1) mcp = FastMCP(name="Foreman MCP Server") # Resolve CA bundle path - check for ./ca.pem if none specified if ca_bundle is None: default_ca_path = Path.cwd() / "ca.pem" if default_ca_path.exists(): ca_bundle = str(default_ca_path) # apypie expects certificate path as verify_ssl parameter, not ca_bundle if ca_bundle: verify_ssl = ca_bundle foreman_api = None if transport == "stdio": foreman_api = apypie.ForemanApi( uri=foreman_url, username=foreman_username, password=foreman_password, verify_ssl=verify_ssl, ) register_tools(mcp, foreman_api, get_context) register_resources(mcp, foreman_api, get_context) register_prompts(mcp, foreman_api, get_context) # TODO: We should've probably used https://gofastmcp.com/servers/middleware#error-handling-middleware for error handling if transport == "streamable-http": mcp.add_middleware(AuthMiddleware(foreman_url, verify_ssl)) mcp.add_middleware(LoggingMiddleware()) if transport == "stdio": mcp.run(transport="stdio", show_banner=False) else: mcp.run( transport="streamable-http", host=host, port=port, show_banner=False, log_level=log_level, ) ctx.exit(0)

Loading blob content...

Latest Blog Posts

Don't Use Large Strings as Cache Keys
By punkpeye on January 11, 2026.
markdown
node-js
cache
What are Claude Skills?
By punkpeye on January 10, 2026.
mcp
skills
How to Test MCP Streamable HTTP Endpoints Using cURL
By punkpeye on January 2, 2026.
tutorial
bash

MCP directory API

We provide all the information about MCP servers via our MCP API.

curl -X GET 'https://glama.ai/api/mcp/v1/servers/theforeman/foreman-mcp-server'

If you have feedback or need assistance with the MCP directory API, please join our Discord server

server.py•4.88 KiB