MCPServer for Membrane (#2930)

* Refactor ROADMAP.md for clarity and remove outdated sections

* feat: add JSON-RPC request, response, and MCP initialization support

* refactor: streamline MCP request processing and response generation

* refactor: remove redundant IOException declaration in toolsList method

* Enhance MCP server error handling with detailed response generation

* Refactor MCP server to replace MCPResponse with JSONRPCResponse for consistent handling

* Add support for fetching Membrane runtime statistics in MCP server

* Limit MCP server exchange retrieval to the last 100 entries

* Refactor JSON-RPC request handling to distinguish between missing and null IDs, improving MCP server error handling and response generation.

* Add ResponseKind to JSONRPCResponse for explicit result/error distinction and customize serialization

* Improve JSON-RPC validation by rejecting notifications in MCPRequest parsing

* Rename "lastExchanges" capability to "listChanged" in MCP server

* Replace `Objects.requireNonNull` with static import `requireNonNull` for cleanup and consistency

* Remove unnecessary `IOException` declarations from MCP server methods for cleanup

* Add response details (status, body, headers) to MCP server exchange serialization

* Reorder case blocks in `MembraneMCPServer` for consistency

* Refactor error response handling in `MembraneMCPServer` to improve clarity and logging for notifications

* Refactor JSON-RPC utilities to improve validation, normalization, and serialization handling

* Add unit tests for `JSONRPCRequest` and `JSONRPCResponse` to validate parsing, normalization, and error handling

* Introduce MCP tool registration and utilities, including `McpToolRegistry`, `McpToolDefinition`, and `McpToolHandler`. Minor cleanup and refactoring in MCP initialization and request handling.

* Add `McpPayloadSanitizer` and `McpSessionContext` utilities for MCP payload sanitation and session state management

* Remove unused imports in `McpPayloadSanitizer` for cleanup

* Refactor and streamline MCP server request handling: add tool registration, session management, and improved error handling.

* Refactor `MembraneMCPServer`: improve HTTP 405 response handling and clean up imports

* Add unit tests for `MembraneMCPServer` and `MCPInitialize` to validate lifecycle handling, error scenarios, and MCP tool behaviors

* Refactor `MembraneMCPServer` error handling: introduce `InvalidToolArgumentsException`, improve protocol version validation, and enhance test coverage.

* Update `toString` implementation in `MCPToolsCall` to display argument keys instead of full argument details.

* Extract utility methods from `MembraneMCPServer` to new `MCPUtil` class for improved modularity and code reuse.

* Introduce session management in `MembraneMCPServer`: add `SESSION_HEADER` handling, session-based request processing, and enhanced error handling. Update corresponding unit tests for validation.

---------

Co-authored-by: Christian Gördes <christian.goerdes@outlook.de>
Co-authored-by: Christian Gördes <118011644+christiangoerdes@users.noreply.github.com>

Author: predic8

.gitignore

@@ -129,3 +129,4 @@ maven-plugin/target/surefire/
 /core/derby.log
 /distribution/conf/apis.yaml
 /distribution/conf/membrane.log
+/.codex

core/src/main/java/com/predic8/membrane/core/exchangestore/ClientStatistics.java

@@ -16,14 +16,14 @@
 
 public interface ClientStatistics {
 
-	public int getCount();
+	int getCount();
 
-	public String getClient();
+	String getClient();
 
-	public long getMinDuration();
+	long getMinDuration();
 
-	public long getMaxDuration();
+	long getMaxDuration();
 
-	public long getAvgDuration();
+	long getAvgDuration();
 
 }

core/src/main/java/com/predic8/membrane/core/interceptor/mcp/MCPUtil.java

@@ -0,0 +1,114 @@
+package com.predic8.membrane.core.interceptor.mcp;
+
+import com.predic8.membrane.core.exchange.AbstractExchange;
+import com.predic8.membrane.core.mcp.MCPToolsCall;
+import com.predic8.membrane.core.openapi.serviceproxy.APIProxy;
+import com.predic8.membrane.core.proxies.Proxy;
+import com.predic8.membrane.core.proxies.SOAPProxy;
+import com.predic8.membrane.core.proxies.ServiceProxy;
+import org.jetbrains.annotations.Nullable;
+
+import java.util.LinkedHashMap;
+import java.util.Map;
+import java.util.Set;
+
+public final class MCPUtil {
+
+    private MCPUtil() {
+    }
+
+    public static Map<String, Object> describeProxy(Proxy proxy, Object statistics) {
+        var description = new LinkedHashMap<String, Object>();
+        description.put("name", proxy.getName());
+
+        String type;
+        switch (proxy) {
+            case APIProxy ignored -> type = "API";
+            case SOAPProxy soapProxy -> {
+                type = "soapProxy";
+                description.put("wsdl", soapProxy.getWsdl());
+                description.put("serviceName", soapProxy.getServiceName());
+            }
+            case ServiceProxy ignored -> type = "serviceProxy";
+            default -> type = "unknown";
+        }
+
+        description.put("type", type);
+        description.put("rule", proxy.getKey().toString());
+        description.put("interceptors", proxy.getFlow().stream()
+                .map(interceptor -> Map.of("name", interceptor.getDisplayName()))
+                .toList());
+        description.put("statistics", statistics);
+        return description;
+    }
+
+    public static @Nullable Map<String, Object> describeExchange(AbstractExchange exchange, boolean includeBodies, McpPayloadSanitizer payloadSanitizer) {
+        if (exchange.getResponse() == null) {
+            return null;
+        }
+
+        var description = new LinkedHashMap<String, Object>();
+        description.put("id", exchange.getId());
+
+        var request = new LinkedHashMap<String, Object>();
+        request.put("method", exchange.getRequest().getMethod());
+        request.put("path", exchange.getRequest().getUri());
+        request.put("headers", payloadSanitizer.sanitizeHeaders(exchange.getRequest().getHeader()));
+        if (includeBodies) {
+            request.put("body", payloadSanitizer.sanitizeBody(exchange.getRequest()));
+        }
+
+        var response = new LinkedHashMap<String, Object>();
+        response.put("status", exchange.getResponse().getStatusCode());
+        response.put("headers", payloadSanitizer.sanitizeHeaders(exchange.getResponse().getHeader()));
+        if (includeBodies) {
+            response.put("body", payloadSanitizer.sanitizeBody(exchange.getResponse()));
+        }
+
+        description.put("request", request);
+        description.put("response", response);
+        return description;
+    }
+
+    public static int getOptionalIntArgument(MCPToolsCall call, String name, int defaultValue, int minimum, int maximum) {
+        Object value = call.getArgument(name);
+        if (value == null) {
+            return defaultValue;
+        }
+        if (!(value instanceof Number number) || number.doubleValue() != Math.rint(number.doubleValue())) {
+            throw new InvalidToolArgumentsException("Tool argument '" + name + "' must be an integer");
+        }
+        int parsed = number.intValue();
+        if (parsed < minimum || parsed > maximum) {
+            throw new InvalidToolArgumentsException(
+                    "Tool argument '" + name + "' must be between " + minimum + " and " + maximum
+            );
+        }
+        return parsed;
+    }
+
+    public static boolean getOptionalBooleanArgument(MCPToolsCall call, String name, boolean defaultValue) {
+        Object value = call.getArgument(name);
+        if (value == null) {
+            return defaultValue;
+        }
+        if (value instanceof Boolean bool) {
+            return bool;
+        }
+        throw new InvalidToolArgumentsException("Tool argument '" + name + "' must be a boolean");
+    }
+
+    public static void rejectUnexpectedArguments(MCPToolsCall call, Set<String> allowed) {
+        for (String argumentName : call.getArguments().keySet()) {
+            if (!allowed.contains(argumentName)) {
+                throw new InvalidToolArgumentsException("Unexpected tool argument: " + argumentName);
+            }
+        }
+    }
+
+    public static final class InvalidToolArgumentsException extends IllegalArgumentException {
+        private InvalidToolArgumentsException(String message) {
+            super(message);
+        }
+    }
+}

core/src/main/java/com/predic8/membrane/core/interceptor/mcp/McpPayloadSanitizer.java

@@ -0,0 +1,73 @@
+package com.predic8.membrane.core.interceptor.mcp;
+
+import com.predic8.membrane.core.http.Header;
+import com.predic8.membrane.core.http.HeaderField;
+import com.predic8.membrane.core.http.Message;
+import com.predic8.membrane.core.http.MimeType;
+
+import java.util.LinkedHashMap;
+import java.util.Map;
+import java.util.Set;
+
+import static com.predic8.membrane.core.http.Header.*;
+import static java.util.Locale.ROOT;
+
+public final class McpPayloadSanitizer {
+
+    private static final Set<String> SENSITIVE_HEADERS = Set.of(
+            AUTHORIZATION.toLowerCase(ROOT),
+            COOKIE.toLowerCase(ROOT),
+            SET_COOKIE.toLowerCase(ROOT),
+            PROXY_AUTHORIZATION.toLowerCase(ROOT)
+    );
+
+    private static final String REDACTED = "<redacted>";
+    private static final String BINARY_BODY_OMITTED = "<binary body omitted>";
+    private static final String BODY_UNAVAILABLE = "<body unavailable>";
+    private static final int MAX_BODY_LENGTH = 8 * 1024;
+
+    public Map<String, Object> sanitizeHeaders(Header header) {
+        var sanitized = new LinkedHashMap<String, Object>();
+        if (header == null) {
+            return sanitized;
+        }
+
+        for (HeaderField field : header.getAllHeaderFields()) {
+            String name = field.getHeaderName().toString();
+
+            sanitized.merge(name, redactIfSensitive(field, name), (previous, current) -> previous + ", " + current);
+        }
+
+        return sanitized;
+    }
+
+    private static String redactIfSensitive(HeaderField field, String name) {
+        return SENSITIVE_HEADERS.contains(name.toLowerCase(ROOT)) ? REDACTED : field.getValue();
+    }
+
+    public String sanitizeBody(Message message) {
+        if (message == null) {
+            return BODY_UNAVAILABLE;
+        }
+
+        try {
+            if (message.isBodyEmpty()) {
+                return "";
+            }
+
+            // TODO: keep this?
+            String contentType = message.getHeader().getContentType();
+            if (contentType != null && !(MimeType.isText(contentType) || MimeType.isJson(contentType) || MimeType.isXML(contentType))) {
+                return BINARY_BODY_OMITTED;
+            }
+
+            String body = message.getBodyAsStringDecoded();
+            if (body.length() <= MAX_BODY_LENGTH) {
+                return body;
+            }
+            return body.substring(0, MAX_BODY_LENGTH) + "... <truncated>";
+        } catch (Exception e) {
+            return BODY_UNAVAILABLE;
+        }
+    }
+}

core/src/main/java/com/predic8/membrane/core/interceptor/mcp/McpSessionContext.java

@@ -0,0 +1,62 @@
+package com.predic8.membrane.core.interceptor.mcp;
+
+import com.predic8.membrane.core.mcp.MCPInitialize.ClientInfo;
+
+import static com.predic8.membrane.core.interceptor.mcp.McpSessionContext.McpSessionState.*;
+
+public final class McpSessionContext {
+
+    private McpSessionState state = NEW;
+
+    // TODO: only if we want to support multiple versions (maybe in the future?)
+    private String negotiatedProtocolVersion;
+    private ClientInfo clientInfo;
+
+    public synchronized McpSessionState getState() {
+        return state;
+    }
+
+    public synchronized boolean initialize(String protocolVersion, ClientInfo clientInfo) {
+        if (state != NEW) {
+            return false;
+        }
+        negotiatedProtocolVersion = protocolVersion;
+        this.clientInfo = clientInfo;
+        state = INITIALIZED;
+        return true;
+    }
+
+    public synchronized boolean markReady() {
+        if (state != INITIALIZED) {
+            return false;
+        }
+        state = READY;
+        return true;
+    }
+
+    @SuppressWarnings("BooleanMethodIsAlwaysInverted")
+    public synchronized boolean isIn(McpSessionState... states) {
+        for (McpSessionState candidate : states) {
+            if (state == candidate) {
+                return true;
+            }
+        }
+        return false;
+    }
+
+    public synchronized String getNegotiatedProtocolVersion() {
+        return negotiatedProtocolVersion;
+    }
+
+    public synchronized ClientInfo getClientInfo() {
+        return clientInfo;
+    }
+
+    public enum McpSessionState {
+        NEW,
+        INITIALIZED,
+        READY,
+        CLOSED
+    }
+
+}

core/src/main/java/com/predic8/membrane/core/interceptor/mcp/McpToolDefinition.java

@@ -0,0 +1,16 @@
+package com.predic8.membrane.core.interceptor.mcp;
+
+import com.predic8.membrane.core.mcp.MCPToolsListResponse;
+
+import java.util.Map;
+
+public record McpToolDefinition(
+        String name,
+        String description,
+        Map<String, Object> inputSchema,
+        McpToolHandler handler
+) {
+    public MCPToolsListResponse.Tool toTool() {
+        return new MCPToolsListResponse.Tool(name, description, inputSchema);
+    }
+}

core/src/main/java/com/predic8/membrane/core/interceptor/mcp/McpToolHandler.java

@@ -0,0 +1,12 @@
+package com.predic8.membrane.core.interceptor.mcp;
+
+import com.predic8.membrane.core.exchange.Exchange;
+import com.predic8.membrane.core.mcp.MCPToolsCall;
+import com.predic8.membrane.core.mcp.MCPToolsCallResponse;
+
+@FunctionalInterface
+public interface McpToolHandler {
+
+    MCPToolsCallResponse handle(MCPToolsCall call, Exchange exc) throws Exception;
+
+}

core/src/main/java/com/predic8/membrane/core/interceptor/mcp/McpToolRegistry.java

@@ -0,0 +1,25 @@
+package com.predic8.membrane.core.interceptor.mcp;
+
+import java.util.Collection;
+import java.util.LinkedHashMap;
+import java.util.Map;
+
+public final class McpToolRegistry {
+
+    private final Map<String, McpToolDefinition> tools = new LinkedHashMap<>();
+
+    public McpToolRegistry register(McpToolDefinition definition) {
+        if (tools.putIfAbsent(definition.name(), definition) != null) {
+            throw new IllegalArgumentException("Duplicate MCP tool registration: " + definition.name());
+        }
+        return this;
+    }
+
+    public McpToolDefinition find(String name) {
+        return tools.get(name);
+    }
+
+    public Collection<McpToolDefinition> list() {
+        return tools.values();
+    }
+}