feat: continuous verification job #219
Conversation
… domain verification
Co-authored-by: Copilot <[email protected]>
Co-authored-by: Copilot <[email protected]>
…protocol/registry into thomas-sickert/token-storage # Conflicts: # internal/verification/README.md # internal/verification/token.go # internal/verification/token_test.go
Closes [#22190](github/copilot#22190) <!-- Provide a brief summary of your changes --> ## Motivation and Context This PR implements DNS record verification functionality for the MCP Registry's server name verification system. This feature enables domain owners to prove ownership of their domains by adding specific TXT records to their DNS, which is required for publishing MCP servers under domain-scoped namespaces (e.g., com.example/my-server). This prevents domain impersonation and ensures only legitimate domain owners can publish under their domains. The implementation follows industry best practices used by certificate authorities and cloud services for domain ownership verification, providing a secure and reliable method for continuous domain validation. ## How Has This Been Tested? - Comprehensive unit tests: Added extensive test coverage for all DNS verification functions including success cases, failure scenarios, timeout handling, and retry logic - Mock DNS resolver: Implemented a complete mock DNS resolver system for reliable testing without external dependencies - Token generation and validation: Added tests for cryptographically secure token generation and format validation Error handling: Tested various error conditions including DNS failures, timeouts, and invalid inputs - Integration scenarios: Tested with both mock and real DNS configurations - Performance benchmarks: Added benchmark tests for token generation and validation functions - Example CLI tool: Created a dns-verify example application for manual testing and demonstration ## Breaking Changes <!-- Will users need to update their code or configurations? --> ## Types of changes <!-- What types of changes does your code introduce? Put an `x` in all the boxes that apply: --> - [ ] Bug fix (non-breaking change which fixes an issue) - [X] New feature (non-breaking change which adds functionality) - [ ] Breaking change (fix or feature that would cause existing functionality to change) - [ ] Documentation update ## Checklist <!-- Go over all the following points, and put an `x` in all the boxes that apply. --> - [X] I have read the [MCP Documentation](https://modelcontextprotocol.io) - [X] My code follows the repository's style guidelines - [X] New and existing tests pass locally - [X] I have added appropriate error handling - [X] I have added or updated documentation as needed ## Additional context - Cryptographically secure tokens: 128-bit random tokens using crypto/rand with base64url encoding - Robust DNS resolution: Configurable DNS resolvers with support for secure resolvers (8.8.8.8, 1.1.1.1) - Retry logic: Exponential backoff for transient DNS failures with configurable timeouts and retry limits - Comprehensive error handling: Detailed error types with proper error wrapping and retry logic - Security considerations: Uses secure DNS resolvers, validates token formats, and implements proper timeout handling - Extensive documentation: Added detailed README with usage examples, security considerations, and integration guides --------- Co-authored-by: Copilot <[email protected]> Co-authored-by: Trent Jones <[email protected]>
… domain verification and 3-strike failure policy
…per error handling, and shared utilities
aphansal123
changed the title
This comment was marked as outdated.
This comment was marked as outdated.
Sorry, something went wrong.
…se fields and methods
|
I'll update the well-known namespace format based on our thread earlier - |
This comment was marked as outdated.
This comment was marked as outdated.
Sorry, something went wrong.
This comment was marked as outdated.
This comment was marked as outdated.
Sorry, something went wrong.
…te test naming from BG to BackgroundJob
aphansal123
requested review from
thomas-sickert and
trent-j
and removed request for
trent-j and
thomas-sickert
There was a problem hiding this comment.
Pull Request Overview
This PR implements a comprehensive continuous verification job system for the MCP Registry to maintain domain ownership validation. The system provides automatic background verification of registered domains using both DNS TXT records and HTTP challenges, with robust error handling, retry logic, and notification systems.
Key changes include:
- Background verification job with cron-based scheduling and concurrent processing
- Enhanced database layer supporting domain verification lifecycle tracking
- Configuration system for background job behavior and thresholds
- Comprehensive test coverage for all verification components
Reviewed Changes
Copilot reviewed 18 out of 20 changed files in this pull request and generated 3 comments.
Show a summary per file
| File | Description |
|---|---|
internal/verification/background_job.go |
Core background verification job implementation with cron scheduling |
internal/verification/http.go |
HTTP-01 challenge verification with security hardening |
internal/verification/dns.go |
DNS TXT record verification with context support |
internal/verification/validation.go |
Common input validation logic for both verification methods |
internal/verification/wait.go |
Context-aware waiting utility |
internal/model/model.go |
Enhanced domain verification data models |
internal/database/*.go |
Database interface extensions for verification tracking |
internal/config/config.go |
Configuration options for background job system |
cmd/registry/main.go |
Integration of background job into main application |
| @@ -22,7 +22,7 @@ func (d *DefaultDNSResolver) LookupTXT(ctx context.Context, name string) ([]stri | |||
|
|
|||
| // NewDefaultDNSResolver creates a DNS resolver with the given configuration | |||
| // | |||
| //nolint:ireturn // Factory function returning interface is acceptable for dependency injection | |||
| //nolint:ireturn // Factory function intentionally returns interface for dependency injection | |||
There was a problem hiding this comment.
The comment has been corrected from 'Factory function returning interface is acceptable for dependency injection' to 'Factory function intentionally returns interface for dependency injection', which is clearer and more grammatically correct.
Copilot uses AI. Check for mistakes.
| @@ -1,7 +1,7 @@ | |||
| package config | |||
|
|
|||
| import ( | |||
| env "github.com/caarlos0/env/v11" | |||
| "github.com/caarlos0/env/v11" | |||
There was a problem hiding this comment.
The import alias has been removed (changed from env \"github.com/caarlos0/env/v11\" to just the standard import). This is good practice as the package name env is already clear and the alias was unnecessary.
Copilot uses AI. Check for mistakes.
| @@ -6,7 +6,6 @@ import ( | |||
| "fmt" | |||
| "log" | |||
| "net" | |||
| "strings" | |||
| "time" | |||
There was a problem hiding this comment.
The unused import \"strings\" has been removed from line 9, which improves code cleanliness. The string manipulation functionality has been moved to the shared validation module.
Copilot uses AI. Check for mistakes.
Breaking Changes
None - This is a purely additive feature that:
Types of changes
Checklist
Additional context
Key Features Implemented
Background Verification Job System
Dual Verification Methods
/.well-known/mcp-challenge/{token}endpoint_mcp-challenge.{domain}TXT recordsAdvanced Error Handling & Retry Logic
errors.Is()anderrors.As()Comprehensive Database Layer
Notification & Alerting System
Configuration Options