MCP-171 Implement Token-Based Authentication Strategy

Author: nquinquenel

README.md

@@ -68,7 +68,11 @@ env = { "SONARQUBE_TOKEN" = "<YOUR_TOKEN>", "SONARQUBE_URL" = "<YOUR_SERVER_URL>
 {
   "mcpServers": {
     "sonarqube-http": {
-      "url": "<host>:<port>/mcp"
+      "type": "http",
+      "url": "http://<host>:<port>/mcp",
+      "headers": {
+        "SONARQUBE_TOKEN": "<your-token>"
+      }
     }
   }
 }
@@ -474,42 +478,58 @@ You should add the following variable when running the MCP Server:
 
 ### HTTP Transport
 
-By default, the SonarQube MCP Server uses stdio transport for communication. You can optionally enable HTTP transport for advanced use cases such as web-based clients or multi-user scenarios:
+By default, the SonarQube MCP Server uses stdio transport. Enable HTTP transport for multi-user scenarios where multiple clients connect to a shared server:
 
 | Environment variable | Description                                                                                      | Default         |
 |----------------------|--------------------------------------------------------------------------------------------------|-----------------|
-| `SONARQUBE_HTTP_ENABLED`   | Enable HTTP transport mode instead of stdio. Set to `true` to enable HTTP mode.                | `false`         |
-| `SONARQUBE_HTTP_PORT`      | Port number for HTTP server when HTTP transport is enabled (1024-65535, unprivileged ports only). | `8080`          |
-| `SONARQUBE_HTTP_HOST`      | Host address to bind HTTP server to. Use `127.0.0.1` for localhost only, `0.0.0.0` for all interfaces. | `127.0.0.1`     |
+| `SONARQUBE_HTTP_ENABLED`   | Enable HTTP transport mode. Set to `true` to enable.                                           | `false`         |
+| `SONARQUBE_HTTP_PORT`      | Port number for HTTP server (1-65535).                                                         | `8080`          |
+| `SONARQUBE_HTTP_HOST`      | Host to bind. Use `127.0.0.1` for localhost, `0.0.0.0` for all interfaces.                     | `127.0.0.1`     |
 
-#### Security
+#### Multi-User Gateway Architecture
 
-The HTTP transport implementation follows the MCP Streamable HTTP specification and includes important security protections:
+In HTTP mode, the server acts as a **multi-user gateway**:
+- Each client provides their own SonarQube token via the `SONARQUBE_TOKEN` header
+- The `SONARQUBE_TOKEN` environment variable is still required at startup for server initialization only
+- Clients' tokens are used for all SonarQube API calls (not the server's startup token)
 
-**Network Binding:**
-- **Default:** `127.0.0.1` (localhost only) - Recommended for local development
-- **0.0.0.0** (all interfaces) - Only use when you need to accept connections from other machines on your network
-- ⚠️ **Warning:** Binding to `0.0.0.0` exposes your MCP server to your entire network. Only use this if you understand the security implications.
+#### Client Configuration
 
-#### HTTP Transport Examples
+Clients must include the `SONARQUBE_TOKEN` header in all requests:
+
+```json
+{
+  "mcpServers": {
+    "sonarqube-http": {
+      "type": "http",
+      "url": "http://localhost:8822/mcp",
+      "headers": {
+        "SONARQUBE_TOKEN": "your-sonarqube-token-here"
+      }
+    }
+  }
+}
+```
+
+#### Docker Example
 
-**Docker with HTTP transport:**
 ```bash
+# Start server (requires token for initialization)
 docker run -p 8080:8080 \
   -e SONARQUBE_HTTP_ENABLED=true \
-  -e SONARQUBE_HTTP_PORT=8080 \
-  -e SONARQUBE_HTTP_HOST="127.0.0.1" \
-  -e SONARQUBE_TOKEN="<token>" \
+  -e SONARQUBE_HTTP_PORT=8822 \
+  -e SONARQUBE_TOKEN="<init-token>" \
   -e SONARQUBE_ORG="<org>" \
   mcp/sonarqube
+
 ```
 
-The server will be available at `http://127.0.0.1:8080/mcp` and supports:
-- **POST /mcp** - JSON-RPC requests (tool calls, resource requests)
-- **GET /mcp** - Server-Sent Events for streaming notifications
-- **OPTIONS /mcp** - CORS preflight for web clients
+The server exposes:
+- `POST /mcp` - JSON-RPC requests
+- `GET /mcp` - Server-Sent Events stream
+- `OPTIONS /mcp` - CORS preflight
 
-**Note:** HTTP transport is designed for advanced integration scenarios. Most users should use the default stdio transport with their MCP client.
+**Note:** The SonarLint IDE bridge is automatically disabled in HTTP mode as it requires localhost communication.
 
 #### SonarQube Cloud
 

docs/http-authentication-architecture.md

@@ -0,0 +1,245 @@
+# HTTP Transport and Authentication Architecture
+
+---
+
+## Table of Contents
+
+1. [Overview](#overview)
+2. [Architecture Components](#architecture-components)
+3. [Authentication Flow](#authentication-flow)
+4. [Token Propagation](#token-propagation)
+5. [Thread Model and Context Management](#thread-model-and-context-management)
+6. [Security Considerations](#security-considerations)
+7. [Configuration](#configuration)
+8. [Troubleshooting](#troubleshooting)
+
+---
+
+## Overview
+
+The SonarQube MCP Server supports two transport modes:
+
+- **Stdio Transport**: Direct process communication (stdin/stdout)
+- **HTTP Transport**: Network-based communication using MCP Streamable HTTP specification
+
+This document focuses on the **HTTP Transport** and its authentication mechanism.
+
+---
+
+## Architecture Components
+
+### 1. Transport Layer
+
+```
+┌─────────────────────────────────────────────────────┐
+│                  MCP Client                         │
+│            (Cursor, VS Code, etc.)                  │
+└────────────────┬────────────────────────────────────┘
+                 │ HTTP POST/GET/DELETE
+                 │ Header: SONARQUBE_TOKEN
+                 ▼
+┌─────────────────────────────────────────────────────┐
+│              Jetty HTTP Server                      │
+│                (Port 8822)                          │
+└────────────────┬────────────────────────────────────┘
+                 │
+                 ▼
+┌─────────────────────────────────────────────────────┐
+│            Servlet Filter Chain                     │
+│  1. AuthenticationFilter (token extraction)         │
+│  2. McpSecurityFilter (CORS + Origin validation)    │
+└────────────────┬────────────────────────────────────┘
+                 │
+                 ▼
+┌─────────────────────────────────────────────────────┐
+│   HttpServletStreamableServerTransportProvider      │
+│         (MCP SDK - handles protocol)                │
+└────────────────┬────────────────────────────────────┘
+                 │
+                 ▼
+┌─────────────────────────────────────────────────────┐
+│            MCP Tool Execution                       │
+│        (uses token from RequestContext)             │
+└─────────────────────────────────────────────────────┘
+```
+
+### 2. Key Classes
+
+#### `HttpServerTransportProvider`
+- **Location**: `org.sonarsource.sonarqube.mcp.transport.HttpServerTransportProvider`
+- **Purpose**: Bootstraps Jetty server and configures servlet transport
+
+#### `AuthenticationFilter`
+- **Location**: `org.sonarsource.sonarqube.mcp.authentication.AuthenticationFilter`
+- **Purpose**: Extracts and validates client tokens
+
+#### `McpSecurityFilter`
+- **Location**: `org.sonarsource.sonarqube.mcp.transport.McpSecurityFilter`
+- **Purpose**: Security and CORS handling
+
+#### `RequestContext`
+- **Location**: `org.sonarsource.sonarqube.mcp.context.RequestContext`
+- **Purpose**: Thread-local storage for request-scoped data
+
+---
+
+## Authentication Flow
+
+### 1. Client Configuration
+
+Clients configure the HTTP endpoint with authentication:
+
+```json
+{
+  "servers": {
+    "sonarqube-http": {
+      "url": "http://localhost:8822/mcp",
+      "headers": {
+        "SONARQUBE_TOKEN": "your-sonarqube-token"
+      }
+    }
+  }
+}
+```
+
+### 2. Request Flow
+
+```
+1. Client sends HTTP POST with token header
+   └─> SONARQUBE_TOKEN: squ_abc123
+
+2. AuthenticationFilter intercepts request
+   ├─> Extract token from SONARQUBE_TOKEN header
+   ├─> Validate token presence
+   ├─> Store in RequestContext (InheritableThreadLocal)
+   └─> Pass to next filter
+
+3. McpSecurityFilter validates security
+   ├─> Check Origin header
+   ├─> Set CORS headers
+   └─> Pass to servlet
+
+4. MCP SDK servlet processes request
+   ├─> Parse JSON-RPC message
+   ├─> Dispatch to tool (async, new thread)
+   └─> Child thread inherits RequestContext
+
+5. Tool execution
+   ├─> Retrieve token from RequestContext
+   ├─> Create ServerApi with client's token
+   └─> Call SonarQube API
+
+6. Async completion
+   ├─> AsyncListener triggered
+   └─> RequestContext cleared
+```
+
+### 3. Authentication Modes
+
+#### `TOKEN` Mode (Default)
+- Clients provide their own SonarQube token
+- Token validated by SonarQube API (not MCP server)
+- Uses custom header format:
+  - `SONARQUBE_TOKEN: <token>`
+
+#### `OAUTH` Mode (Not Yet Implemented)
+- OAuth 2.1 with PKCE
+- Per MCP specification
+- Future enhancement
+
+---
+
+## Token Propagation
+
+### Problem: Async Processing and ThreadLocal
+
+The MCP SDK servlet uses **async processing** with **worker threads** to handle tool execution. This creates a challenge for `ThreadLocal` storage:
+
+```
+Request Thread (Filter)          Worker Thread (Tool)
+      │                                 │
+      ├─ Set RequestContext             │
+      ├─ doFilter() ──────────────> Async dispatch
+      └─ finally { clear() }            │
+         [Context cleared!]              │
+                                         ├─ Tool.execute()
+                                         └─ RequestContext.get() ❌ NULL!
+```
+
+### Solution 1: InheritableThreadLocal
+
+```java
+private static final ThreadLocal<RequestContext> CONTEXT = new InheritableThreadLocal<>();
+```
+
+`InheritableThreadLocal` automatically propagates values from parent thread to child threads:
+
+```
+Request Thread                   Worker Thread
+      │                                │
+      ├─ Set RequestContext            │
+      ├─ doFilter() ──────────────> Inherit context ✓
+      │                                │
+      │                                ├─ Tool.execute()
+      │                                └─ RequestContext.get() ✓ Has token!
+      │                                   │
+      └─ [Wait for async completion]     └─ Complete
+         │
+         └─ AsyncListener.onComplete()
+            └─ RequestContext.clear() ✓
+```
+
+### Solution 2: AsyncListener for Cleanup
+
+The filter registers an `AsyncListener` to clean up the context **after** async processing completes.
+
+This ensures:
+1. Token is available during entire request processing
+2. Context is properly cleaned up to prevent memory leaks
+3. No thread pool contamination
+
+### Why Not Store in Servlet Request Attributes?
+
+Servlet request attributes don't propagate to worker threads either.
+
+`InheritableThreadLocal` is the Java standard pattern for this use case.
+
+---
+
+## Security Considerations
+
+### DNS Rebinding Protection
+
+**Threat**: Attacker could use DNS rebinding to access local MCP server from remote website.
+
+**Mitigation**: `McpSecurityFilter` validates `Origin` header:
+
+**Allowed Origins**:
+- When bound to `127.0.0.1`: Only `http://localhost`, `http://127.0.0.1`, etc.
+- When bound to `0.0.0.0`: All origins allowed (less secure, logs warning)
+
+### Token Security
+
+**Server-side**:
+- Token **never logged** in plain text
+- Token **not validated** by MCP server (delegated to SonarQube API)
+- Token **cleared** from memory after request
+
+**Transport**:
+- HTTPS recommended for production (not enforced for localhost development)
+- Token in HTTP header (not URL query parameter)
+
+**Storage**:
+- Client responsible for secure token storage
+- Token never persisted by MCP server
+
+---
+
+## References
+
+- [MCP Specification - Streamable HTTP Transport](https://modelcontextprotocol.io/specification/2025-06-18/basic/transports)
+- [MCP Specification - Authorization](https://modelcontextprotocol.io/specification/2025-06-18/basic/authorization)
+- [MCP Java SDK Documentation](https://modelcontextprotocol.io/sdk/java/mcp-overview)
+- [Jakarta Servlet Specification](https://jakarta.ee/specifications/servlet/)
+
+---