feat: Add "secret" GitHub authentication with wrapper scripts #14
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
jfi
changed the title
This enhancement addresses the limitation of Zed's WASM sandbox which cannot access host environment variables for GitHub authentication. Key improvements: - Add wrapper script auto-detection for seamless authentication - Support multiple auth methods: GitHub CLI, environment variables, token files - Provide wrapper scripts for cross-platform compatibility (JS/Bash/PowerShell) - Maintain backwards compatibility with manual token configuration - Reorganize documentation with dedicated configuration and troubleshooting guides Features: - Automatic detection of wrapper scripts in extension directory - Fallback to manual token configuration if wrapper not available - Improved error handling and user feedback - Comprehensive documentation with examples This enables users to authenticate with GitHub without manual token management while preserving all existing functionality.
jfi
force-pushed
the
jfi/use-github-auth-token-from-cli
branch
from
7373e87 to
83491a4
Compare
|
I appreciate all the work that went into this. I prefer a first-party solution. The Zed team is keen to improve the extensions API, so I've taken this up with them. Correct me if I'm wrong. It's my understanding the key thing we need is to have access the shell env of the user's machine. Then we can access the correct environment variables. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
2 participants
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Overview
Following on from the discussion at #6, this PR enhances the GitHub MCP Extension for Zed by implementing automatic token authentication through wrapper scripts, addressing the limitation of Zed's WASM sandbox which cannot access host environment variables.
Problem Solved
Previously, users had to manually obtain and configure GitHub personal access tokens. This enhancement allows the extension to automatically use existing GitHub authentication from:
gh auth status)GITHUB_TOKEN).github_token)Key Features
🔄 Automatic Authentication
📁 Improved Project Structure
wrappers/directory🛠 Enhanced User Experience
"use_wrapper_script": truein settingsNOTE: This should support Windows, but I don't have a machine lying around to test it.
Technical Implementation
Wrapper Script Auto-Detection
The extension automatically searches for wrapper scripts in the following order:
github-mcp-wrapper.js(Node.js)github-mcp-wrapper.sh(Bash)github-mcp-wrapper.ps1(PowerShell)Authentication Flow
flowchart TD A[Extension Start] --> B{use_wrapper_script?} B -->|true| C[Detect Wrapper Script] B -->|false| D[Use Manual Token] C --> E{Script Found?} E -->|yes| F[Execute Wrapper] E -->|no| G[Log Warning + Use Manual Token] F --> H{Auth Successful?} H -->|yes| I[Initialize MCP Server] H -->|no| J[Show Error]Configuration
Simple Setup
{ "context_servers": { "mcp-server-github": { "source": "extension", "settings": { "use_wrapper_script": true } } } }Manual Fallback (Unchanged)
{ "context_servers": { "mcp-server-github": { "source": "extension", "settings": { "github_token": "your_token_here" } } } }Files Added/Modified
New Files
wrappers/github-mcp-wrapper.js- Node.js authentication wrapperwrappers/github-mcp-wrapper.sh- Bash authentication wrapperwrappers/github-mcp-wrapper.ps1- PowerShell authentication wrapperwrappers/README.md- Wrapper script documentationdocs/configuration.md- Comprehensive configuration guidedocs/troubleshooting.md- Common issues and solutionsCHANGELOG.md- Version historyModified Files
src/mcp_server_github.rs- Core extension logic with wrapper supportREADME.md- Updated with new features and simplified setupconfiguration/default_settings.jsonc- Added wrapper script optionRemoved Files
configuration/installation_instructions.md- Consolidated into docs/Testing
The enhancement has been tested with:
gh auth login)GITHUB_TOKEN).github_token)Backwards Compatibility