memos

Commit Graph

Author	SHA1	Message	Date
Johnny	803d488a5f	feat(mcp): refactor MCP server to standard protocol structure - Replace PAT-only auth with optional auth supporting both PAT and JWT via auth.Authenticator.Authenticate(); unauthenticated requests see only public memos, matching REST API visibility semantics - Inline auth middleware into mcp.go following fileserver pattern; remove auth_middleware.go - Introduce memoJSON response type that correctly serialises store.Memo (including Payload.Tags and Payload.Property) without proto marshalling - Add tools: list_memo_comments, create_memo_comment, list_tags - Extend list_memos with state (NORMAL/ARCHIVED), order_by_pinned, and page parameters - Extend update_memo with pinned and state parameters - Extract #tags from content on create/update via regex to pre-populate Payload.Tags without requiring a full markdown service rebuild - Add MCP Resources: memo://memos/{uid} template returns memo as Markdown with YAML frontmatter, allowing clients to read memos by URI - Add MCP Prompts: capture (save a thought) and review (search + summarise)	2026-03-01 23:10:23 +08:00
Steven	26d10212c6	refactor: consolidate duplicated auth logic into auth package Add ApplyToContext and AuthenticateToUser helpers to the auth package, then remove the duplicated auth code spread across the MCP middleware, file server, Connect interceptor, and gRPC-Gateway middleware. - auth.ApplyToContext: single place to set claims/user into context after Authenticate() - auth.AuthenticateToUser: resolves any credential (bearer token or refresh cookie) to a *store.User - MCP middleware: replaced manual PAT DB lookup + expiry check with Authenticator.AuthenticateByPAT - File server: replaced authenticateByBearerToken/authenticateByRefreshToken with AuthenticateToUser - Connect interceptor + Gateway middleware: replaced duplicated context-setting block with ApplyToContext - MCPService now accepts secret to construct its own Authenticator	2026-02-24 23:08:16 +08:00
Steven	47d9414702	feat: add MCP server with PAT authentication Embeds a Model Context Protocol (MCP) server into the Memos HTTP process, exposing memo operations as MCP tools at POST/GET /mcp using Streamable HTTP transport. Authentication is PAT-only — requests without a valid personal access token receive HTTP 401. Six tools are exposed: list_memos, get_memo, create_memo, update_memo, delete_memo, and search_memos, all scoped to the authenticated user.	2026-02-24 22:54:51 +08:00

Author

SHA1

Message

Date

Johnny

803d488a5f

feat(mcp): refactor MCP server to standard protocol structure

- Replace PAT-only auth with optional auth supporting both PAT and JWT
  via auth.Authenticator.Authenticate(); unauthenticated requests see
  only public memos, matching REST API visibility semantics
- Inline auth middleware into mcp.go following fileserver pattern;
  remove auth_middleware.go
- Introduce memoJSON response type that correctly serialises store.Memo
  (including Payload.Tags and Payload.Property) without proto marshalling
- Add tools: list_memo_comments, create_memo_comment, list_tags
- Extend list_memos with state (NORMAL/ARCHIVED), order_by_pinned, and
  page parameters
- Extend update_memo with pinned and state parameters
- Extract #tags from content on create/update via regex to pre-populate
  Payload.Tags without requiring a full markdown service rebuild
- Add MCP Resources: memo://memos/{uid} template returns memo as
  Markdown with YAML frontmatter, allowing clients to read memos by URI
- Add MCP Prompts: capture (save a thought) and review (search + summarise)

2026-03-01 23:10:23 +08:00

Steven

26d10212c6

refactor: consolidate duplicated auth logic into auth package

Add ApplyToContext and AuthenticateToUser helpers to the auth package,
then remove the duplicated auth code spread across the MCP middleware,
file server, Connect interceptor, and gRPC-Gateway middleware.

- auth.ApplyToContext: single place to set claims/user into context after Authenticate()
- auth.AuthenticateToUser: resolves any credential (bearer token or refresh cookie) to a *store.User
- MCP middleware: replaced manual PAT DB lookup + expiry check with Authenticator.AuthenticateByPAT
- File server: replaced authenticateByBearerToken/authenticateByRefreshToken with AuthenticateToUser
- Connect interceptor + Gateway middleware: replaced duplicated context-setting block with ApplyToContext
- MCPService now accepts secret to construct its own Authenticator

2026-02-24 23:08:16 +08:00

Steven

47d9414702

feat: add MCP server with PAT authentication

Embeds a Model Context Protocol (MCP) server into the Memos HTTP
process, exposing memo operations as MCP tools at POST/GET /mcp using
Streamable HTTP transport.

Authentication is PAT-only — requests without a valid personal access
token receive HTTP 401. Six tools are exposed: list_memos, get_memo,
create_memo, update_memo, delete_memo, and search_memos, all scoped to the authenticated user.

2026-02-24 22:54:51 +08:00

3 Commits