Skip to content

Add proposal for dynamic webhook middleware #2300

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 2 commits into
base: main
Choose a base branch
from
Open

Add proposal for dynamic webhook middleware #2300

wants to merge 2 commits into from
+862 −0

Conversation

@JAORMX
Copy link
Collaborator

@JAORMX JAORMX commented Oct 23, 2025

Summary

Introduces a dynamic webhook middleware system for ToolHive that enables external services to participate in the MCP request pipeline, inspired by Kubernetes admission webhooks.

Problem

Organizations need to integrate ToolHive with existing enterprise systems (policy engines, SIEM, ticketing, HR, CMDB) but currently require forking ToolHive and maintaining custom builds to add new middleware functionality.

Solution

Two new webhook types:

  • Validating webhooks: Accept/deny requests based on external policy decisions
  • Mutating webhooks: Transform requests (enrich with context, redact PII, etc.)

Key Features

  • ✅ Multiple webhooks with sequential execution (pipeline pattern)
  • ✅ File-based CLI configuration (--webhook-config webhook.yaml)
  • ✅ Kubernetes MCPWebhookConfig CRD for operator
  • ✅ TLS/mTLS support with file-based certificates
  • ✅ Configurable failure policies (fail-open/fail-closed)
  • ✅ Full observability (Prometheus metrics, audit logs, OpenTelemetry tracing)
  • ✅ Versioned protocol (version: v0.1.0) for evolution

Use Cases

  1. External Policy Engine Integration - Use OPA or custom policy engines
  2. Request Enrichment - Add context from HR/CMDB systems
  3. Approval Workflows - Require manager approval for high-risk operations
  4. SIEM Integration - Send custom-formatted logs to enterprise SIEM
  5. Rate Limiting - Enforce limits using external rate limiters
  6. PII Redaction - Remove sensitive data before processing

Architecture

Webhooks integrate into existing middleware chain:

  1. Authentication → 2. Token Exchange → 3. MCP Parser → 4. Tool Filter → 5. Mutating Webhooks → 6. Validating Webhooks → 7. Telemetry → 8. Authorization → 9. Audit

Multiple webhooks execute sequentially in configuration order.

Configuration Examples

CLI:

thv run postgres-mcp \
  --webhook-config policy-webhook.yaml \
  --webhook-config enrichment-webhook.yaml

Kubernetes:

apiVersion: toolhive.stacklok.dev/v1alpha1
kind: MCPWebhookConfig
metadata:
  name: company-policy-webhook
spec:
  type: validating
  url: https://policy.company.com/validate
  failure_policy: fail

Implementation Plan

  • Phase 1: Core HTTP client, CLI integration
  • Phase 2: Kubernetes operator and CRD
  • Phase 3: Advanced features (circuit breaker, caching)
  • Phase 4: Ecosystem (examples, SDKs, integration guides)

Documentation

Full proposal: docs/proposals/THV-0000-dynamic-webhook-middleware.md

Will update filename with issue number once PR is created.

🤖 Generated with Claude Code

@codecov
Copy link

codecov bot commented Oct 23, 2025
edited
Loading

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 53.61%. Comparing base (5948453) to head (e8a46d4).

Additional details and impacted files 
@@           Coverage Diff           @@
##             main    #2300   +/-   ##
=======================================
  Coverage   53.61%   53.61%           
=======================================
  Files         239      239           
  Lines       30704    30704           
=======================================
  Hits        16463    16463           
  Misses      13071    13071           
  Partials     1170     1170

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

JAORMX and others added 2 commits October 23, 2025 13:18
@JAORMX @claude
Add proposal for dynamic webhook middleware
a8a9f6c 
Introduces a webhook middleware system that enables external services to
participate in the MCP request pipeline through validating and mutating
webhooks, inspired by Kubernetes admission webhooks.

Key features:
- Validating webhooks for accept/deny decisions
- Mutating webhooks for request transformation
- Multiple webhook support with sequential execution
- File-based CLI configuration
- Kubernetes MCPWebhookConfig CRD
- TLS/mTLS support for webhook authentication
- Configurable failure policies (fail-open/fail-closed)
- Full observability (metrics, audit logs, tracing)

Benefits:
- Organizations can extend ToolHive without code changes
- Integrate with external systems (policy engines, SIEM, HR, CMDB)
- Enforce approval workflows and rate limits
- Request enrichment and PII redaction
- Consistent with ToolHive architecture and patterns

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude <noreply@anthropic.com>
@JAORMX
Rename proposal to THV-2300 to match PR number
e8a46d4
@JAORMX JAORMX force-pushed the proposal/dynamic-webhook-middleware branch from fcd94e7 to e8a46d4 Compare October 23, 2025 10:18
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@blkt blkt Awaiting requested review from blkt

@jhrozek jhrozek Awaiting requested review from jhrozek

@eleftherias eleftherias Awaiting requested review from eleftherias

@amirejaz amirejaz Awaiting requested review from amirejaz

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@JAORMX