wip

Author: sylvesterdamgaard

src/Mcp/Middleware/RateLimitMiddleware.php

@@ -0,0 +1,227 @@
+<?php
+
+declare(strict_types=1);
+
+namespace Cboxdk\StatamicMcp\Mcp\Middleware;
+
+use Cboxdk\StatamicMcp\Mcp\Support\ErrorCodes;
+use Cboxdk\StatamicMcp\Mcp\Support\ToolLogger;
+use Cboxdk\StatamicMcp\Mcp\Support\ToolResponse;
+use Illuminate\Support\Facades\RateLimiter;
+
+/**
+ * Rate limiting middleware for MCP tools.
+ */
+class RateLimitMiddleware
+{
+    /**
+     * Default rate limits per tool category.
+     *
+     * @var array<string, array<string, int>>
+     */
+    private const DEFAULT_LIMITS = [
+        'high_cost' => ['attempts' => 10, 'decay' => 60], // 10 per minute for expensive operations
+        'medium_cost' => ['attempts' => 30, 'decay' => 60], // 30 per minute for moderate operations
+        'low_cost' => ['attempts' => 60, 'decay' => 60], // 60 per minute for cheap operations
+        'global' => ['attempts' => 100, 'decay' => 60], // 100 per minute global limit
+    ];
+
+    /**
+     * Tool categories based on computational cost.
+     *
+     * @var array<string, array<string>>
+     */
+    private const TOOL_CATEGORIES = [
+        'high_cost' => [
+            'statamic.system.tools.discover',
+            'statamic.development.detect_unused_templates',
+            'statamic.development.analyze_template_performance',
+            'statamic.system.health_check',
+            'statamic.blueprints.scan',
+        ],
+        'medium_cost' => [
+            'statamic.entries.list',
+            'statamic.blueprints.list',
+            'statamic.collections.list',
+            'statamic.users.list',
+            'statamic.assets.list',
+        ],
+        'low_cost' => [
+            'statamic.blueprints.get',
+            'statamic.entries.get',
+            'statamic.collections.get',
+            'statamic.users.get',
+        ],
+    ];
+
+    /**
+     * Check rate limits for a tool execution.
+     *
+     * @param  string|null  $identifier  User ID, IP, or other identifier
+     *
+     * @return array<string, mixed>|null Returns error response if rate limited, null if allowed
+     */
+    public static function checkRateLimit(string $toolName, ?string $identifier = null): ?array
+    {
+        if (! $identifier) {
+            $identifier = self::getDefaultIdentifier();
+        }
+
+        // Check global rate limit first
+        if (self::isRateLimited('global', $identifier)) {
+            ToolLogger::rateLimitEvent($toolName, 'global_rate_limit_exceeded', [
+                'identifier' => $identifier,
+                'limit_type' => 'global',
+            ]);
+
+            return ToolResponse::error(ErrorCodes::RATE_LIMITED, [
+                'limit_type' => 'global',
+                'retry_after' => 60,
+            ]);
+        }
+
+        // Check tool-specific rate limit
+        $category = self::getToolCategory($toolName);
+        if (self::isRateLimited($category, $identifier)) {
+            ToolLogger::rateLimitEvent($toolName, 'tool_rate_limit_exceeded', [
+                'identifier' => $identifier,
+                'limit_type' => $category,
+                'tool' => $toolName,
+            ]);
+
+            return ToolResponse::error(ErrorCodes::RATE_LIMITED, [
+                'limit_type' => $category,
+                'tool' => $toolName,
+                'retry_after' => self::DEFAULT_LIMITS[$category]['decay'],
+            ]);
+        }
+
+        // All checks passed - increment counters
+        self::incrementCounters($toolName, $category, $identifier);
+
+        return null;
+    }
+
+    /**
+     * Check if a specific rate limit is exceeded.
+     */
+    private static function isRateLimited(string $category, string $identifier): bool
+    {
+        $key = self::getRateLimitKey($category, $identifier);
+        $limits = self::DEFAULT_LIMITS[$category];
+
+        return RateLimiter::tooManyAttempts($key, $limits['attempts']);
+    }
+
+    /**
+     * Increment rate limit counters.
+     */
+    private static function incrementCounters(string $toolName, string $category, string $identifier): void
+    {
+        // Increment global counter
+        $globalKey = self::getRateLimitKey('global', $identifier);
+        RateLimiter::hit($globalKey, self::DEFAULT_LIMITS['global']['decay']);
+
+        // Increment category-specific counter
+        $categoryKey = self::getRateLimitKey($category, $identifier);
+        RateLimiter::hit($categoryKey, self::DEFAULT_LIMITS[$category]['decay']);
+
+        ToolLogger::rateLimitEvent($toolName, 'rate_limit_tracked', [
+            'identifier' => $identifier,
+            'category' => $category,
+            'global_remaining' => RateLimiter::remaining($globalKey, self::DEFAULT_LIMITS['global']['attempts']),
+            'category_remaining' => RateLimiter::remaining($categoryKey, self::DEFAULT_LIMITS[$category]['attempts']),
+        ]);
+    }
+
+    /**
+     * Get the category for a specific tool.
+     */
+    private static function getToolCategory(string $toolName): string
+    {
+        foreach (self::TOOL_CATEGORIES as $category => $tools) {
+            if (in_array($toolName, $tools, true)) {
+                return $category;
+            }
+        }
+
+        return 'low_cost'; // Default to low cost for unknown tools
+    }
+
+    /**
+     * Generate rate limit key.
+     */
+    private static function getRateLimitKey(string $category, string $identifier): string
+    {
+        return "mcp_rate_limit:{$category}:{$identifier}";
+    }
+
+    /**
+     * Get default identifier for rate limiting.
+     */
+    private static function getDefaultIdentifier(): string
+    {
+        // Try user ID first, fall back to IP address
+        if (auth()->check()) {
+            return 'user:' . auth()->id();
+        }
+
+        $request = request();
+        if ($request && $request->ip()) {
+            return 'ip:' . $request->ip();
+        }
+
+        // Fallback to session ID
+        return 'session:' . (session()->getId() ?: 'anonymous');
+    }
+
+    /**
+     * Get rate limit status for a tool.
+     *
+     *
+     * @return array<string, mixed>
+     */
+    public static function getRateLimitStatus(string $toolName, ?string $identifier = null): array
+    {
+        if (! $identifier) {
+            $identifier = self::getDefaultIdentifier();
+        }
+
+        $category = self::getToolCategory($toolName);
+        $globalKey = self::getRateLimitKey('global', $identifier);
+        $categoryKey = self::getRateLimitKey($category, $identifier);
+
+        $globalLimits = self::DEFAULT_LIMITS['global'];
+        $categoryLimits = self::DEFAULT_LIMITS[$category];
+
+        return [
+            'global' => [
+                'limit' => $globalLimits['attempts'],
+                'remaining' => RateLimiter::remaining($globalKey, $globalLimits['attempts']),
+                'reset_in' => RateLimiter::availableIn($globalKey),
+            ],
+            'category' => [
+                'name' => $category,
+                'limit' => $categoryLimits['attempts'],
+                'remaining' => RateLimiter::remaining($categoryKey, $categoryLimits['attempts']),
+                'reset_in' => RateLimiter::availableIn($categoryKey),
+            ],
+            'identifier' => $identifier,
+        ];
+    }
+
+    /**
+     * Clear rate limits for an identifier (admin function).
+     */
+    public static function clearRateLimits(string $identifier): void
+    {
+        foreach (array_keys(self::DEFAULT_LIMITS) as $category) {
+            $key = self::getRateLimitKey($category, $identifier);
+            RateLimiter::clear($key);
+        }
+
+        ToolLogger::rateLimitEvent('system', 'rate_limit_cleared', [
+            'identifier' => $identifier,
+        ]);
+    }
+}

src/Mcp/Security/PathValidator.php

@@ -0,0 +1,133 @@
+<?php
+
+declare(strict_types=1);
+
+namespace Cboxdk\StatamicMcp\Mcp\Security;
+
+use InvalidArgumentException;
+
+/**
+ * Validates file paths to prevent path traversal attacks.
+ */
+class PathValidator
+{
+    /**
+     * Validate that a path is within allowed directories.
+     *
+     * @param  string  $path  The path to validate
+     * @param  array<string>  $allowedBasePaths  Array of allowed base paths
+     *
+     * @throws InvalidArgumentException If path is invalid or outside allowed directories
+     */
+    public static function validatePath(string $path, array $allowedBasePaths): string
+    {
+        // Resolve the path to prevent directory traversal
+        $realPath = realpath($path);
+
+        if ($realPath === false) {
+            throw new InvalidArgumentException("Path does not exist: {$path}");
+        }
+
+        // Check if the resolved path is within any of the allowed base paths
+        foreach ($allowedBasePaths as $basePath) {
+            $realBasePath = realpath($basePath);
+
+            if ($realBasePath !== false && str_starts_with($realPath, $realBasePath . DIRECTORY_SEPARATOR)) {
+                return $realPath;
+            }
+        }
+
+        throw new InvalidArgumentException("Path traversal attempt detected: {$path}");
+    }
+
+    /**
+     * Get default allowed template base paths for Statamic.
+     *
+     * @return array<string>
+     */
+    public static function getAllowedTemplatePaths(): array
+    {
+        return [
+            resource_path('views'),
+            resource_path('blueprints'),
+            resource_path('fieldsets'),
+        ];
+    }
+
+    /**
+     * Get default allowed asset paths for Statamic.
+     *
+     * @return array<string>
+     */
+    public static function getAllowedAssetPaths(): array
+    {
+        return [
+            public_path(),
+            storage_path('app/public'),
+        ];
+    }
+
+    /**
+     * Sanitize a filename by removing dangerous characters.
+     */
+    public static function sanitizeFilename(string $filename): string
+    {
+        // Remove path separators and null bytes
+        $cleaned = str_replace(['/', '\\', "\0"], '', $filename);
+
+        // Remove relative path components
+        $cleaned = str_replace(['..', '.'], '', $cleaned);
+
+        // Remove leading/trailing whitespace and dots
+        $cleaned = trim($cleaned, " \t\n\r\0\x0B.");
+
+        if (empty($cleaned)) {
+            throw new InvalidArgumentException('Invalid filename after sanitization');
+        }
+
+        return $cleaned;
+    }
+
+    /**
+     * Validate file extension against allowed extensions.
+     *
+     * @param  array<string>  $allowedExtensions
+     *
+     * @throws InvalidArgumentException
+     */
+    public static function validateFileExtension(string $filename, array $allowedExtensions): void
+    {
+        $extension = strtolower(pathinfo($filename, PATHINFO_EXTENSION));
+
+        if (! in_array($extension, $allowedExtensions, true)) {
+            throw new InvalidArgumentException("File extension '{$extension}' not allowed");
+        }
+    }
+
+    /**
+     * Check if a path contains suspicious patterns.
+     */
+    public static function containsSuspiciousPatterns(string $path): bool
+    {
+        $suspiciousPatterns = [
+            '../',
+            '..\\',
+            '%2e%2e%2f',
+            '%2e%2e\\',
+            '..%2f',
+            '..%5c',
+            '%2e%2e/',
+            '..\/',
+        ];
+
+        $lowercasePath = strtolower($path);
+
+        foreach ($suspiciousPatterns as $pattern) {
+            if (str_contains($lowercasePath, $pattern)) {
+                return true;
+            }
+        }
+
+        return false;
+    }
+}