Bill
8809095549
Replace startup token authentication with per-SSE-connection auth. Each client now passes Bearer token in Authorization header when connecting. Server validates against config.yaml tokens and creates isolated Server instance per connection. - server.py: accept (auth, agent) instead of (config_path, token) - main.py: extract Bearer token, authenticate, create server per connection - Remove GRIST_MCP_TOKEN from docker-compose environments
32 lines
776 B
YAML
32 lines
776 B
YAML
# Production environment - resource limits, logging, restart policy
|
|
services:
|
|
grist-mcp:
|
|
build:
|
|
context: ../..
|
|
dockerfile: Dockerfile
|
|
ports:
|
|
- "${PORT:-3000}:3000"
|
|
volumes:
|
|
- ./config.yaml:/app/config.yaml:ro
|
|
environment:
|
|
- CONFIG_PATH=/app/config.yaml
|
|
restart: unless-stopped
|
|
deploy:
|
|
resources:
|
|
limits:
|
|
memory: 512M
|
|
cpus: "1"
|
|
reservations:
|
|
memory: 128M
|
|
logging:
|
|
driver: "json-file"
|
|
options:
|
|
max-size: "50m"
|
|
max-file: "5"
|
|
healthcheck:
|
|
test: ["CMD", "python", "-c", "import urllib.request; urllib.request.urlopen('http://localhost:3000/health')"]
|
|
interval: 30s
|
|
timeout: 10s
|
|
retries: 3
|
|
start_period: 60s
|