remote-mcp/appsettings.json.example at main · scampcat/remote-mcp · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
{
  "Logging": {
    "LogLevel": {
      "Default": "Information",
      "Microsoft.AspNetCore": "Warning",
      "Authentication": "Information"
    }
  },
  "AllowedHosts": "*",
  "Server": {
    "Port": 3001,
    "Host": "0.0.0.0"
  },
  "Authentication": {
    "Mode": "AuthorizationServer",
    "OAuth": {
      "Issuer": "http://localhost:3001",
      "AccessTokenLifetime": "08:00:00",
      "RefreshTokenLifetime": "30.00:00:00",
      "EnableDynamicClientRegistration": true,
      "RequireClientApproval": false,
      "RequireClientCertificates": false,
      "Signing": {
        "Algorithm": "RS256",
        "KeyRotationInterval": "90.00:00:00",
        "UseHSM": false
      }
    },
    "WebAuthn": {
      "Enabled": true,
      "ServerDomain": "localhost",
      "ServerName": "Enterprise MCP Server",
      "AllowedOrigins": ["http://localhost:3001"],
      "RequireAttestationValidation": false,
      "AllowedAuthenticatorTypes": ["platform", "cross-platform"],
      "RequireUserVerification": true,
      "ChallengeTimeout": "00:02:00"
    },
    "MultiTenant": {
      "Enabled": false,
      "ResolutionStrategy": "Header",
      "TenantHeaderName": "X-Tenant-ID",
      "DefaultTenantId": "default",
      "EnforceStrictIsolation": true
    },
    "ExternalIdP": {
      "Provider": "AzureAD",
      "ClientSecret": "YOUR_AZURE_AD_CLIENT_SECRET_HERE",
      "AzureAD": {
        "TenantId": "YOUR-TENANT-ID-HERE",
        "ClientId": "YOUR-CLIENT-ID-HERE",
        "Authority": "https://login.microsoftonline.com/YOUR-TENANT-ID-HERE",
        "RedirectUris": [
          "http://localhost:3001/oauth/callback",
          "https://localhost:3001/oauth/callback"
        ],
        "RequiredScopes": ["User.Read"]
      },
      "TokenValidation": {
        "ValidIssuer": "https://login.microsoftonline.com/YOUR-TENANT-ID-HERE/v2.0",
        "ValidAudience": "YOUR-CLIENT-ID-HERE",
        "ClockSkew": "00:05:00"
      }
    },
    "Security": {
      "EnableAuditLogging": true,
      "EnableThreatDetection": false,
      "ComplianceFrameworks": [],
      "RateLimit": {
        "Enabled": true,
        "RequestsPerMinute": 60,
        "RequestsPerHourPerUser": 1000,
        "BurstAllowance": 10
      }
    }
  }
}