feat(nginx): /mcp auf :8002 → bp-compliance-mcp (Repo-Scanner MCP-Endpoint)
Streamable-HTTP-MCP des Compliance-Repos (cra_assess_findings) erreichbar als macmini:8002/mcp. SSE-sicher: proxy_buffering off, http/1.1, read_timeout 3600s, Authorization (Bearer) wird durchgereicht. Additiv vor location / im 8002-Block. Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
This commit is contained in:
Benjamin Admin
@@ -422,6 +422,21 @@ server {
|
|||||||
ssl_ciphers ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256;
|
ssl_ciphers ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256;
|
||||||
ssl_prefer_server_ciphers off;
|
ssl_prefer_server_ciphers off;
|
||||||
|
|
||||||
|
# CRA MCP server for the external repo-scanner (Streamable HTTP + Bearer).
|
||||||
|
# Separate container (bp-compliance-mcp:8099); buffering off for SSE streaming.
|
||||||
|
location /mcp {
|
||||||
|
set $upstream_mcp bp-compliance-mcp:8099;
|
||||||
|
proxy_pass http://$upstream_mcp;
|
||||||
|
proxy_http_version 1.1;
|
||||||
|
proxy_set_header Host $host;
|
||||||
|
proxy_set_header X-Real-IP $remote_addr;
|
||||||
|
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
||||||
|
proxy_set_header X-Forwarded-Proto https;
|
||||||
|
proxy_set_header Connection "";
|
||||||
|
proxy_buffering off;
|
||||||
|
proxy_read_timeout 3600s;
|
||||||
|
}
|
||||||
|
|
||||||
location / {
|
location / {
|
||||||
set $upstream_compliance bp-compliance-backend:8002;
|
set $upstream_compliance bp-compliance-backend:8002;
|
||||||
proxy_pass http://$upstream_compliance;
|
proxy_pass http://$upstream_compliance;
|
||||||
|
|||||||
Reference in New Issue
Block a user