23911ea878
Implementa servidor MCP (Model Context Protocol) HTTP no Captain pra o Hermes Agent invocar tools do Captain via `hermes mcp add`. Substrato pra integração de Nível 2 onde o agente consulta tools quando precisa executar ações reais (buscar FAQ, adicionar label, futuramente Pix etc). Arquivos: - app/controllers/webhooks/captain/mcp_controller.rb Endpoint POST /webhooks/captain/mcp. Valida HMAC (CAPTAIN_MCP_SECRET), parseia JSON-RPC, despacha pro Server. Extrai params._captain_context com multi-tenant ids (conversation_id, inbox_id, account_id, etc). - enterprise/app/services/captain/mcp/server.rb Subset MCP suficiente: initialize, tools/list, tools/call, ping, notifications/initialized. JSON-RPC síncrono (sem SSE). - enterprise/app/services/captain/mcp/tool_registry.rb Lista centralizada de tools. - enterprise/app/services/captain/mcp/tools/base_tool.rb Interface base pras tools (.name, .description, .input_schema, #call). - enterprise/app/services/captain/mcp/tools/add_label_tool.rb Tool 1: aplica label na conversation atual. - enterprise/app/services/captain/mcp/tools/faq_lookup_tool.rb Tool 2: busca semântica em FAQs (Captain::AssistantResponse via pgvector cosine). Reaproveita SearchReplyDocumentationService pra paridade com o caminho legado do Captain. - config/routes.rb Rota POST /webhooks/captain/mcp. Conexão pelo Hermes: hermes mcp add captain-tools --url http://CAPTAIN_HOST/webhooks/captain/mcp Auth: HMAC X-Hub-Signature-256 quando CAPTAIN_MCP_SECRET setado. TODO próxima sprint: generate_pix_tool, send_suite_images_tool. Handoff fica via automation hoje (UI Chatwoot). Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
73 lines
2.5 KiB
Ruby
73 lines
2.5 KiB
Ruby
# Endpoint MCP (Model Context Protocol) HTTP do Captain.
|
|
#
|
|
# POST /webhooks/captain/mcp
|
|
#
|
|
# Hermes Agent (e qualquer cliente MCP) conecta aqui pra invocar tools do
|
|
# Captain (add_label, faq_lookup, generate_pix, etc).
|
|
#
|
|
# Conexão pelo Hermes:
|
|
# hermes mcp add captain-tools --url http://CAPTAIN_HOST/webhooks/captain/mcp
|
|
#
|
|
# Auth: HMAC-SHA256 do body via header `X-Hub-Signature-256`, secret
|
|
# compartilhado via env var `CAPTAIN_MCP_SECRET` (igual ao padrão de
|
|
# `hermes_callback`). Quando vazio, validação é desabilitada (PoC/dev).
|
|
#
|
|
# Multi-tenant: o cliente MCP pode mandar contexto (conversation_id,
|
|
# inbox_id, account_id) num campo de extensão chamado `_captain_context`
|
|
# dentro de `params` do JSON-RPC. Tools que precisam (add_label etc) leem
|
|
# esse contexto pra resolver a conversa correta.
|
|
class Webhooks::Captain::McpController < ApplicationController
|
|
skip_before_action :verify_authenticity_token, raise: false
|
|
before_action :verify_signature
|
|
|
|
def process_payload
|
|
request_body = parse_request_body
|
|
return head :bad_request if request_body.blank?
|
|
|
|
response = Captain::Mcp::Server.handle(
|
|
request_body,
|
|
context: extract_context(request_body)
|
|
)
|
|
|
|
return head :ok if response.nil? # MCP notifications
|
|
|
|
render json: response
|
|
rescue StandardError => e
|
|
Rails.logger.error "[Captain::Mcp] error: #{e.class}: #{e.message}"
|
|
Rails.logger.error e.backtrace.first(5).join("\n")
|
|
render json: { jsonrpc: '2.0', error: { code: -32_603, message: 'Internal error' } }, status: :internal_server_error
|
|
end
|
|
|
|
private
|
|
|
|
def parse_request_body
|
|
JSON.parse(request.raw_post)
|
|
rescue JSON::ParserError
|
|
nil
|
|
end
|
|
|
|
def verify_signature
|
|
secret = ENV.fetch('CAPTAIN_MCP_SECRET', nil)
|
|
return true if secret.blank?
|
|
|
|
signature = request.headers['X-Hub-Signature-256'].to_s
|
|
return head :unauthorized if signature.blank?
|
|
|
|
expected = "sha256=#{OpenSSL::HMAC.hexdigest('SHA256', secret, request.raw_post)}"
|
|
return head :unauthorized unless ActiveSupport::SecurityUtils.secure_compare(signature, expected)
|
|
|
|
true
|
|
end
|
|
|
|
# Cliente MCP pode mandar contexto multi-tenant em params._captain_context.
|
|
# Hermes inclui isso quando chama uma tool, pra Captain saber qual conversation
|
|
# é (já que MCP em si é stateless entre client/server).
|
|
def extract_context(request_body)
|
|
params = request_body['params'] || {}
|
|
ctx = params['_captain_context'] || {}
|
|
return {} unless ctx.is_a?(Hash)
|
|
|
|
ctx.symbolize_keys
|
|
end
|
|
end
|