feat: add inline MCP servers (#5)

* feat: add inline MCP server support

Implement inline MCP servers that can be defined directly in config
without needing separate MCP server processes. This allows quick
creation of simple tools using any command (docker, shell, etc).

Key features:
- Define tools directly in mcp-front config
- Execute any command with template argument support
- Support for environment variables using {"$env": "..."} syntax
- Full SSE/JSON-RPC protocol implementation
- Flexible execution model (docker, firecracker, raw commands)

Example use cases:
- Wrapping CLI tools (gcloud, aws, kubectl)
- Simple data transformations
- Quick debugging utilities

🤖 Generated with [Claude Code](https://claude.ai/code)

Co-Authored-By: Claude <[email protected]>

* test: add comprehensive tests for inline MCP servers

- Add interface-based dependency injection for better testability
- Implement proper JSON-RPC over HTTP status codes (400 for invalid JSON)
- Create thorough unit tests for handler, server, and resolver components
- Test SSE functionality without artificial timeouts or infinite loops
- Follow Go idioms and existing project test patterns
- Fix ParseConfigValue capitalization in config tests

🤖 Generated with [Claude Code](https://claude.ai/code)

Co-Authored-By: Claude <[email protected]>

* fix: update OAuth tests to use correct binary and improve inline MCP servers

- Fix OAuth tests to use startMCPFront helper instead of hardcoded binary path
- Update remaining OAuth test functions to use correct binary location
- Remove unhelpful comment from test configuration
- Improve inline MCP server session management with secure session IDs
- Add proper message endpoint path for MCP protocol compliance
- Update test utilities to support both stdio and inline server types
- Add comprehensive integration tests for inline MCP servers

🤖 Generated with [Claude Code](https://claude.ai/code)

Co-Authored-By: Claude <[email protected]>

* fix: add proper error handling for JSON encoding in inline handlers

- Check error returns from json.NewEncoder().Encode() calls
- Add error logging for failed JSON operations
- Fix golangci-lint errcheck violations in inline MCP server code

🤖 Generated with [Claude Code](https://claude.ai/code)

Co-Authored-By: Claude <[email protected]>

* fix: remove bash syntax from config files and use native tool env vars

- Replace complex shell commands with simple gcloud/gsutil commands
- Use native GOOGLE_APPLICATION_CREDENTIALS and CLOUDSDK_CORE_PROJECT env vars
- Remove all bash-style $VAR syntax and temp file creation
- Simplify test config to use direct echo command
- All configs now pass validation without warnings

🤖 Generated with [Claude Code](https://claude.ai/code)

Co-Authored-By: Claude <[email protected]>

* docs: improve documentation and apply go fmt

- Add communication and design philosophy section to CLAUDE.md
- Update README with explanation of JSON env var syntax design rationale
- Apply go fmt to ensure consistent code formatting across the project

🤖 Generated with [Claude Code](https://claude.ai/code)

Co-Authored-By: Claude <[email protected]>

* fix: remove template substitution from inline MCP servers

- Remove processTemplateArgs function and template processing
- Update tests to not expect template substitution
- Fix config examples to use static arguments
- Keep Docker -e flags for environment variable passing
- Inline servers now work exactly like stdio but per-tool

Template substitution was an unnecessary feature that:
- Added complexity
- Was inconsistent with stdio servers
- Violated mcp-front's explicit configuration philosophy
- Was incorrectly placed in the inline package

🤖 Generated with [Claude Code](https://claude.ai/code)

Co-Authored-By: Claude <[email protected]>

* refactor: create centralized JSON-RPC package

- Create internal/jsonrpc package with types, errors, and writer utilities
- Migrate inline handler to use the new package
- Migrate server MCP handler to use the new package
- Replace all interface{} with any
- Fix JSON-RPC error HTTP status (should be 200 for valid errors)
- Remove duplicate JSON-RPC error handling code

This centralizes all JSON-RPC handling in one place, making it easier
to maintain and ensuring consistent behavior across the codebase.

🤖 Generated with [Claude Code](https://claude.ai/code)

Co-Authored-By: Claude <[email protected]>

* fix: implement systematic t.Cleanup() for integration tests

- Add automatic cleanup registration in startMCPFront()
- Remove manual defer stopMCPFront() calls from all tests
- Implement graceful shutdown (SIGINT → SIGKILL after 5s timeout)
- Eliminate orphaned process issues that caused port conflicts
- Simplify test code by removing unused command variables
- Complete code deduplication with centralized json/cookie packages
- Update CLAUDE.md communication standards

🤖 Generated with [Claude Code](https://claude.ai/code)

Co-Authored-By: Claude <[email protected]>

---------

Co-authored-by: Claude <[email protected]>

Author: dgellow

CLAUDE.md

@@ -198,4 +198,34 @@ staticcheck ./...
 ./mcp-front -config config.json
 ```
 
-Remember: Think like an experienced engineer - understand the use cases, read the docs, plan properly, then execute.
+## Communication & Design Philosophy
+
+### Understanding Sam's Standards
+
+1. **Zero tolerance for workarounds** - If something is wrong, fix it properly. Don't try to work around design decisions.
+
+2. **Config syntax is sacred** - The `{"$env": "VAR"}` syntax exists to prevent shell injection risks. NO bash syntax (`$VAR`) anywhere in configs, ever. This isn't arbitrary - it prevents real security issues when configs pass through multiple layers of tooling.
+
+3. **Simplicity over cleverness** - When you see complex shell commands or temp file creation, the answer is usually "use the tool's native features instead." Don't preserve unnecessary complexity.
+
+4. **Read the code first** - Don't guess how systems work. Read `ParseConfigValue` and similar functions to understand the actual implementation.
+
+5. **High signal communication** - Expect direct feedback. "That's really bad" or "good fucking damn" are proportional to how badly you're missing the point. This isn't personal - it's clear communication about what matters.
+
+### Common Misunderstandings to Avoid
+
+1. **Don't confuse config parsing with runtime templating** - `{"$env": "VAR"}` is resolved during config load, not at runtime.
+
+2. **Don't assume complexity where none exists** - This codebase favors simple, explicit solutions.
+
+3. **Don't bring patterns from other systems** - Understand THIS system's design choices.
+
+### When You're Stuck
+
+- **ASK QUESTIONS** - Even "dumb" questions are better than wrong assumptions
+- If tests are failing, fix the code, not the tests
+- If you're working around a design choice, stop and ask why it exists
+- Never hide problems - surface issues immediately
+- **Do NOT simulate negative human emotions** - No "panicking", "freaking out", "frustration", etc.
+
+Remember: Think like an experienced engineer - understand the use cases, read the docs, plan properly, then execute. But most importantly, when uncertain, ASK rather than guess.

README.md

@@ -139,8 +139,7 @@ docker run -d -p 8080:8080 \
 
 ### Environment variable formats
 
-- **Environment variables**: Use `{"$env": "VAR_NAME"}` everywhere
-- **User tokens**: Use `{"$userToken": "{{token}}"}` for per-user authentication
+mcp-front uses explicit JSON syntax `{"$env": "VAR_NAME"}` for environment variables throughout its configuration. This deliberate choice eliminates the ambiguity and risks inherent in shell-style variable substitution. When configs pass through multiple layers of tooling and scripts, traditional `$VAR` syntax can expand unexpectedly, causing security issues and debugging nightmares. The JSON format ensures your configuration remains exactly as written until mcp-front processes it, providing predictable behavior across all deployment environments. For per-user authentication, `{"$userToken": "{{token}}"}` follows the same principle, keeping user credentials cleanly separated from system configuration.
 
 ### Per-user tokens
 
@@ -157,7 +156,7 @@ Some MCP servers are better to use with each users having their own integration
       "helpUrl": "https://www.notion.so/my-integrations"
     },
     "command": "docker",
-    "args": ["run", "--rm", "-i", "mcp/notion:latest"],
+    "args": ["run", "--rm", "-i", "-e", "OPENAPI_MCP_HEADERS", "mcp/notion:latest"],
     "env": {
       "OPENAPI_MCP_HEADERS": {
         "$userToken": "{\"Authorization\": \"Bearer {{token}}\"}"

config-inline-example.json

@@ -0,0 +1,120 @@
+{
+  "version": "v0.0.1-DEV_EDITION_EXPECT_CHANGES",
+  "proxy": {
+    "baseURL": "https://mcp.example.com",
+    "addr": ":8080",
+    "name": "MCP Front with Inline Servers",
+    "auth": {
+      "kind": "oauth",
+      "issuer": "https://mcp.example.com",
+      "allowedDomains": ["example.com"],
+      "allowedOrigins": ["https://claude.ai"],
+      "tokenTtl": "1h",
+      "storage": "memory",
+      "googleClientId": {"$env": "GOOGLE_CLIENT_ID"},
+      "googleClientSecret": {"$env": "GOOGLE_CLIENT_SECRET"},
+      "googleRedirectUri": "https://mcp.example.com/oauth/callback",
+      "jwtSecret": {"$env": "JWT_SECRET"},
+      "encryptionKey": {"$env": "ENCRYPTION_KEY"}
+    }
+  },
+  "mcpServers": {
+    "gcloud": {
+      "transportType": "inline",
+      "inline": {
+        "description": "Google Cloud Platform debugging tools",
+        "tools": [
+          {
+            "name": "list_instances",
+            "description": "List all GCE instances in the configured project",
+            "inputSchema": {
+              "type": "object",
+              "properties": {},
+              "required": []
+            },
+            "command": "docker",
+            "args": [
+              "run",
+              "--rm",
+              "-i",
+              "-e",
+              "GOOGLE_APPLICATION_CREDENTIALS",
+              "-e",
+              "CLOUDSDK_CORE_PROJECT",
+              "google/cloud-sdk:alpine",
+              "gcloud",
+              "compute",
+              "instances",
+              "list",
+              "--format=json"
+            ],
+            "env": {
+              "GOOGLE_APPLICATION_CREDENTIALS": {"$env": "GCP_SERVICE_ACCOUNT_JSON"},
+              "CLOUDSDK_CORE_PROJECT": {"$env": "GCP_PROJECT_ID"}
+            },
+            "timeout": "30s"
+          },
+          {
+            "name": "describe_cluster",
+            "description": "Get details about the default GKE cluster (hardcoded to my-cluster in us-central1-a)",
+            "inputSchema": {
+              "type": "object",
+              "properties": {},
+              "required": []
+            },
+            "command": "docker",
+            "args": [
+              "run",
+              "--rm",
+              "-i",
+              "-e",
+              "GOOGLE_APPLICATION_CREDENTIALS",
+              "-e",
+              "CLOUDSDK_CORE_PROJECT",
+              "google/cloud-sdk:alpine",
+              "gcloud",
+              "container",
+              "clusters",
+              "describe",
+              "my-cluster",
+              "--zone=us-central1-a",
+              "--format=json"
+            ],
+            "env": {
+              "GOOGLE_APPLICATION_CREDENTIALS": {"$env": "GCP_SERVICE_ACCOUNT_JSON"},
+              "CLOUDSDK_CORE_PROJECT": {"$env": "GCP_PROJECT_ID"}
+            },
+            "timeout": "30s"
+          },
+          {
+            "name": "list_buckets",
+            "description": "List all Cloud Storage buckets in the configured project",
+            "inputSchema": {
+              "type": "object",
+              "properties": {},
+              "required": []
+            },
+            "command": "docker",
+            "args": [
+              "run",
+              "--rm",
+              "-i",
+              "-e",
+              "GOOGLE_APPLICATION_CREDENTIALS",
+              "-e",
+              "CLOUDSDK_CORE_PROJECT",
+              "google/cloud-sdk:alpine",
+              "gsutil",
+              "ls"
+            ],
+            "env": {
+              "GOOGLE_APPLICATION_CREDENTIALS": {"$env": "GCP_SERVICE_ACCOUNT_JSON"},
+              "CLOUDSDK_CORE_PROJECT": {"$env": "GCP_PROJECT_ID"}
+            },
+            "timeout": "30s"
+          }
+        ]
+      }
+    }
+  }
+}

config-inline-test.json

@@ -0,0 +1,66 @@
+{
+  "version": "v0.0.1-DEV_EDITION_EXPECT_CHANGES",
+  "proxy": {
+    "baseURL": "http://localhost:8080",
+    "addr": ":8080",
+    "name": "MCP Front with Inline Test",
+    "auth": {
+      "kind": "oauth",
+      "issuer": "http://localhost:8080",
+      "allowedDomains": ["gmail.com"],
+      "allowedOrigins": ["https://claude.ai"],
+      "tokenTtl": "1h",
+      "storage": "memory",
+      "googleClientId": {"$env": "GOOGLE_CLIENT_ID"},
+      "googleClientSecret": {"$env": "GOOGLE_CLIENT_SECRET"},
+      "googleRedirectUri": "http://localhost:8080/oauth/callback",
+      "jwtSecret": {"$env": "JWT_SECRET"},
+      "encryptionKey": {"$env": "ENCRYPTION_KEY"}
+    }
+  },
+  "mcpServers": {
+    "system": {
+      "transportType": "inline",
+      "inline": {
+        "description": "System information tools",
+        "tools": [
+          {
+            "name": "echo",
+            "description": "Echo a message back",
+            "inputSchema": {
+              "type": "object",
+              "properties": {
+                "message": {
+                  "type": "string",
+                  "description": "Message to echo"
+                }
+              },
+              "required": ["message"]
+            },
+            "command": "echo",
+            "args": [{"$env": "TEST_ENV_VAR"}]
+          },
+          {
+            "name": "date",
+            "description": "Get current date and time",
+            "inputSchema": {
+              "type": "object",
+              "properties": {}
+            },
+            "command": "date"
+          },
+          {
+            "name": "env_test",
+            "description": "Test environment variable resolution",
+            "inputSchema": {
+              "type": "object",
+              "properties": {}
+            },
+            "command": "echo",
+            "args": [{"$env": "TEST_ENV_VAR"}]
+          }
+        ]
+      }
+    }
+  }
+}

config-oauth-firestore.example.json

@@ -35,7 +35,7 @@
     "notion": {
       "transportType": "stdio",
       "command": "docker",
-      "args": ["run", "--rm", "-i", "mcp/notion"],
+      "args": ["run", "--rm", "-i", "-e", "NOTION_TOKEN", "mcp/notion"],
       "env": {
         "NOTION_TOKEN": {"$env": "NOTION_TOKEN"}
       }

config-oauth.example.json

@@ -35,7 +35,7 @@
     "notion": {
       "transportType": "stdio",
       "command": "docker",
-      "args": ["run", "--rm", "-i", "mcp/notion"],
+      "args": ["run", "--rm", "-i", "-e", "NOTION_TOKEN", "mcp/notion"],
       "env": {
         "NOTION_TOKEN": {"$env": "NOTION_TOKEN"}
       }

config-oauth.json

@@ -40,6 +40,7 @@
       "command": "docker",
       "args": [
         "run", "--rm", "-i",
+        "-e", "OPENAPI_MCP_HEADERS",
         "mcp/notion:latest"
       ],
       "env": {

config-token.example.json

@@ -26,7 +26,7 @@
     "notion": {
       "transportType": "stdio",
       "command": "docker",
-      "args": ["run", "--rm", "-i", "mcp/notion"],
+      "args": ["run", "--rm", "-i", "-e", "NOTION_TOKEN", "mcp/notion"],
       "env": {
         "NOTION_TOKEN": "test-notion-token"
       }

config-user-tokens-example.json

@@ -23,7 +23,7 @@
     "notion-user": {
       "transportType": "stdio",
       "command": "docker",
-      "args": ["run", "--rm", "-i", "mcp/notion"],
+      "args": ["run", "--rm", "-i", "-e", "OPENAPI_MCP_HEADERS", "mcp/notion"],
       "env": {
         "OPENAPI_MCP_HEADERS": {"$userToken": "{\"Authorization\": \"Bearer {{token}}\"}"}
       },