github/penpot-mcp
1
0
Fork 0
mirror of https://github.com/penpot/penpot-mcp.git synced 2026-04-25 11:18:37 +00:00
Code Issues Packages Projects Releases Wiki Activity

Add new concept of 'remote mode' (configurable via env var)

Browse Source 
In particular, remote mode disables file system access
This commit is contained in:
Dominik Jain 2026-01-12 20:51:32 +01:00
parent 7f60e78594
commit 2598a57080
1 changed files with 18 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

20
mcp-server/src/PenpotMcpServer.ts
View File

@ -75,13 +75,27 @@ export class PenpotMcpServer {
return this.isMultiUser; return this.isMultiUser;
} }
/**
* Indicates whether the server is running in remote mode.
*
* In remote mode, the server is not assumed to be accessed only by a local user on the same machine,
* with corresponding limitations being enforced.
* Remote mode can be explicitly enabled by setting the environment variable PENPOT_MCP_REMOTE_MODE
* to "true". Enabling multi-user mode forces remote mode, regardless of the value of the environment
* variable.
*/
public isRemoteMode(): boolean {
const isRemoteModeRequested: boolean = process.env.PENPOT_MCP_REMOTE_MODE === "true";
return this.isMultiUserMode() || isRemoteModeRequested;
}
/** /**
* Indicates whether file system access is enabled for MCP tools. * Indicates whether file system access is enabled for MCP tools.
* Access is enabled only in single-user mode, where the file system is assumed * Access is enabled only in local mode, where the file system is assumed
* to belong to the user running the server locally. * to belong to the user running the server locally.
*/ */
public isFileSystemAccessEnabled(): boolean { public isFileSystemAccessEnabled(): boolean {
return !this.isMultiUserMode(); return !this.isRemoteMode();
} }
public getInitialInstructions(): string { public getInitialInstructions(): string {
@ -211,6 +225,8 @@ export class PenpotMcpServer {
return new Promise((resolve) => { return new Promise((resolve) => {
this.app.listen(this.port, async () => { this.app.listen(this.port, async () => {
this.logger.info(`Penpot MCP Server started on port ${this.port}`); this.logger.info(`Penpot MCP Server started on port ${this.port}`);
this.logger.info(`Multi-user mode: ${this.isMultiUserMode()}`);
this.logger.info(`Remote mode: ${this.isRemoteMode()}`);
this.logger.info(`Modern Streamable HTTP endpoint: http://localhost:${this.port}/mcp`); this.logger.info(`Modern Streamable HTTP endpoint: http://localhost:${this.port}/mcp`);
this.logger.info(`Legacy SSE endpoint: http://localhost:${this.port}/sse`); this.logger.info(`Legacy SSE endpoint: http://localhost:${this.port}/sse`);
this.logger.info(`WebSocket server is on ws://localhost:${this.webSocketPort}`); this.logger.info(`WebSocket server is on ws://localhost:${this.webSocketPort}`);