suse-ai-up
Verified Safeby SUSE
Overview
A comprehensive, modular Model Context Protocol (MCP) proxy system that enables secure, scalable, and extensible AI model integrations.
Installation
go run ./cmd/uniproxyEnvironment Variables
- AUTH_MODE (required, choices: local, github, rancher, dev)
- DEV_MODE (if AUTH_MODE is dev)
- CORS_ALLOWED_ORIGINS (e.g., "*")
- MCP_REGISTRY_URL (optional, for external registry source)
- REGISTRY_TIMEOUT (if MCP_REGISTRY_URL is set)
- ADMIN_PASSWORD (required if AUTH_MODE is local)
- GITHUB_CLIENT_ID (required if AUTH_MODE is github)
- GITHUB_CLIENT_SECRET (required if AUTH_MODE is github, stored in Kubernetes Secret)
- GITHUB_REDIRECT_URI (required if AUTH_MODE is github)
- RANCHER_ISSUER_URL (required if AUTH_MODE is rancher)
- RANCHER_CLIENT_ID (required if AUTH_MODE is rancher)
- RANCHER_CLIENT_SECRET (required if AUTH_MODE is rancher, stored in Kubernetes Secret)
- RANCHER_REDIRECT_URI (required if AUTH_MODE is rancher)
- CREATE_INITIAL_USERS
- INITIAL_USERS
- CREATE_INITIAL_GROUPS
- INITIAL_GROUPS
Security Notes
The core proxy system is designed with strong security practices, including RBAC for Kubernetes sidecars, running containers as non-root with dropped capabilities, and managing OAuth credentials via Kubernetes Secrets. TLS encryption is enabled by default. A 'development mode' (`DEV_MODE=true`) explicitly bypasses authentication and allows the use of `X-User-ID` headers, with clear documentation stating it should not be used in production. The proxy's design inherently involves deploying and running external MCP server implementations (e.g., via Docker or Python scripts in sidecars). While this extensibility is a core feature, it introduces a risk if untrusted or malicious MCP server implementations are registered and deployed. The system does log expected security warnings related to CSRF protection being disabled in development for FastMCP (a Python library used by some plugins), which is justified by the explicit development mode. Overall, security is well-considered for the proxy itself, but users must exercise caution when integrating or uploading third-party MCP server definitions.
Similar Servers
mcp-context-forge
Converts web content (HTML, PDF, DOCX, etc.) and local files from a URL into high-quality Markdown format. It supports multiple conversion engines, content optimization, batch processing, and image handling.
mcphub
An orchestration hub that aggregates, manages, and routes Model Context Protocol (MCP) servers and their tools, providing a centralized interface, user management, OAuth 2.0 authorization server capabilities, and AI-powered tool discovery and routing.
aicode-toolkit
An MCP proxy server that aggregates multiple Model Context Protocol (MCP) servers, enabling on-demand tool discovery and execution, thereby significantly reducing AI agent token usage and improving context window efficiency by loading tools progressively.
toolhive-studio
ToolHive is a desktop application (Electron UI) for discovering, deploying, and managing Model Context Protocol (MCP) servers in isolated containers, and connecting them to AI agents and clients.