Back to Home
dx-tooling icon

maas-webapp

Verified Safe

by dx-tooling

View Source

Overview

Web platform for managing and orchestrating containerized MCP (Machine Control Protocol) instances, including Playwright and Linux command-line environments, providing access via subdomains and securing endpoints with Traefik ForwardAuth.

Installation

Run Command
docker run -d -e INSTANCE_ID=my-instance maas-mcp-instance-linux-cmd-line-v1:latest

Environment Variables

  • APP_SECRET
  • TRUSTED_PROXIES
  • DATABASE_URL
  • MAILER_DSN
  • LOCK_DSN
  • APP_ROOT_DOMAIN
  • APP_WEBAPP_DOMAIN
  • MAAS_MAINTENANCE
  • INSTANCE_ID
  • MCP_PORT
  • INSTANCE_TYPE
  • VNC_PASSWORD
  • SCREEN_WIDTH
  • SCREEN_HEIGHT
  • COLOR_DEPTH
  • VNC_PORT
  • NOVNC_PORT
  • METABASE_URL
  • METABASE_API_KEY
  • TRAEFIK_VERSION
  • TRAEFIK_CONTAINER_NAME
  • TRAEFIK_NETWORK_SELF
  • TRAEFIK_NETWORK_OUTERMOST_ROUTER
  • TRAEFIK_DASHBOARD_PORT
  • TRAEFIK_HTTP_PORT
  • TRAEFIK_HTTPS_PORT
  • MCP_SUBDOMAIN_PATTERN
  • VNC_SUBDOMAIN_PATTERN
  • TRAEFIK_LOG_PATH
  • TRAEFIK_USER_ID
  • TRAEFIK_GROUP_ID
  • DOCKER_HOST_ALIAS
  • MCP_IMAGE_NAME
  • MCP_CONTAINER_PREFIX
  • MCP_NETWORK
  • MCP_MEMORY_LIMIT
  • MCP_RESTART_POLICY
  • TRAEFIK_ENTRYPOINT
  • ENABLE_FORWARDAUTH
  • FORWARDAUTH_URL

Security Notes

The system utilizes robust security patterns including Traefik as an edge router for TLS termination and ForwardAuth middleware for bearer token validation. Secrets (VNC password, MCP bearer token) are dynamically generated and stored in the database. Docker commands are executed via a controlled wrapper script with `sudo -n`, limiting privileges and preventing arbitrary shell command injection. `hash_equals` is used for constant-time token comparison. While highly secure, the complexity of the Traefik and `sudoers` configurations requires careful setup to avoid misconfigurations.

Similar Servers

symfony-mcp-server

25

Build intelligent AI agents by transforming Symfony applications into Model Context Protocol (MCP) servers, enabling LLM interaction with application logic, tools, prompts, and resources.

Other
5
$Medium

lex

23

Provides a UK legal research API for AI agents, offering capabilities to search legislation, caselaw, amendments, and explanatory notes using semantic and keyword search, and includes a Micro-Copilot (MCP) server for integration with AI assistants.

Other
9
$High

mcp-compose

7

This server provides a robust example of OAuth2 authentication for MCP (Model Context Protocol) servers, using GitHub as the identity provider. It demonstrates secure multi-server management, protocol translation, and integration with AI agents for tool invocation.

Other
8
$Medium

mcp-server

4

A web-based Docker management platform for deploying, managing, and building custom AI tools (MCP servers) for integration with language models.

Other
1
$Medium

Stats

Interest Score36
Security Score9
Cost ClassLow
Stars7
Forks0
Last Update2025-11-26

Tags

Web applicationDocker orchestrationMCP serverPlaywrightTraefik