feat: add OPA plugin for policy enforcement #853
Merged
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
monshri
requested review from
crivetimihai,
kevalmahajan and
madhav165
as code owners
araujof
changed the title
Signed-off-by: Shriti Priya <shritip@ibm.com>
Signed-off-by: Shriti Priya <shritip@ibm.com>
β¦ons, url changes and opa version (arm architecture 1.7.0) Signed-off-by: Shriti Priya <shritip@ibm.com>
Signed-off-by: Teryl Taylor <terylt@ibm.com>
Signed-off-by: Teryl Taylor <terylt@ibm.com>
Signed-off-by: Teryl Taylor <terylt@ibm.com>
Signed-off-by: Teryl Taylor <terylt@ibm.com>
Signed-off-by: Shriti Priya <shritip@ibm.com>
Signed-off-by: Shriti Priya <shritip@ibm.com>
Signed-off-by: Shriti Priya <shritip@ibm.com>
Signed-off-by: Shriti Priya <shritip@ibm.com>
Signed-off-by: Shriti Priya <shritip@ibm.com>
Signed-off-by: Shriti Priya <shritip@ibm.com>
Signed-off-by: Shriti Priya <shritip@ibm.com>
Signed-off-by: Shriti Priya <shritip@ibm.com>
Signed-off-by: Shriti Priya <shritip@ibm.com>
Signed-off-by: Shriti Priya <shritip@ibm.com>
Signed-off-by: Shriti Priya <shritip@ibm.com>
Signed-off-by: Shriti Priya <shritip@ibm.com>
Signed-off-by: Shriti Priya <shritip@ibm.com>
Signed-off-by: Shriti Priya <shritip@ibm.com>
Signed-off-by: Shriti Priya <shritip@ibm.com>
monshri
force-pushed
the
feat/271-opa-plugin
branch
from
fb50bba to
2a0fdd6
Compare
Signed-off-by: Shriti Priya <shritip@ibm.com>
Signed-off-by: Shriti Priya <shritip@ibm.com>
Signed-off-by: Shriti Priya <shritip@ibm.com>
Signed-off-by: Shriti Priya <shritip@ibm.com>
Member
OPA Plugin PR Review - Quick Summaryβ What Works
|
crivetimihai
approved these changes
Sep 9, 2025
rakdutta
pushed a commit
to rakdutta/mcp-context-forge
that referenced
this pull request
Sep 10, 2025
* Initial OPA plugin template Signed-off-by: Shriti Priya <shritip@ibm.com> * Adding opa server installation, tool invoke with policy evaluations Signed-off-by: Shriti Priya <shritip@ibm.com> * Sample policy holders for pre/post tool, resource and prompt invocations, url changes and opa version (arm architecture 1.7.0) Signed-off-by: Shriti Priya <shritip@ibm.com> * feat: add shared context capabilities and fixed error issues. Signed-off-by: Teryl Taylor <terylt@ibm.com> * fix: plugin cleanup to support multiple external plugins. Signed-off-by: Teryl Taylor <terylt@ibm.com> * fix(lint): fixed linting issues Signed-off-by: Teryl Taylor <terylt@ibm.com> * feat(error): update error handling with enforce_ignore_error Signed-off-by: Teryl Taylor <terylt@ibm.com> * Additiona of context-tool-policy mapping using applied_to Signed-off-by: Shriti Priya <shritip@ibm.com> * Changes in plugin config schema Signed-off-by: Shriti Priya <shritip@ibm.com> * Schema update models.py Signed-off-by: Shriti Priya <shritip@ibm.com> * updated schema Signed-off-by: Shriti Priya <shritip@ibm.com> * Adding endpoint to policy Signed-off-by: Shriti Priya <shritip@ibm.com> * documentation for OPA Plugin Signed-off-by: Shriti Priya <shritip@ibm.com> * documentation update Signed-off-by: Shriti Priya <shritip@ibm.com> * documentation update Signed-off-by: Shriti Priya <shritip@ibm.com> * documentation update Signed-off-by: Shriti Priya <shritip@ibm.com> * documentation update Signed-off-by: Shriti Priya <shritip@ibm.com> * fix: flake8 and doctest Signed-off-by: Shriti Priya <shritip@ibm.com> * fix: solving doctest errors Signed-off-by: Shriti Priya <shritip@ibm.com> * fix:doctest Signed-off-by: Shriti Priya <shritip@ibm.com> * Adding tool_name variable change Signed-off-by: Shriti Priya <shritip@ibm.com> * test cases for opapluginfilter Signed-off-by: Shriti Priya <shritip@ibm.com> * Update manifest.in with exclude Signed-off-by: Shriti Priya <shritip@ibm.com> * updated prehook Signed-off-by: Shriti Priya <shritip@ibm.com> * updating documentation Signed-off-by: Shriti Priya <shritip@ibm.com> * rebase Signed-off-by: Mihai Criveti <crivetimihai@gmail.com> --------- Signed-off-by: Shriti Priya <shritip@ibm.com> Signed-off-by: Teryl Taylor <terylt@ibm.com> Signed-off-by: Mihai Criveti <crivetimihai@gmail.com> Co-authored-by: Teryl Taylor <terylt@ibm.com> Co-authored-by: Mihai Criveti <crivetimihai@gmail.com>
vk-playground
pushed a commit
to vk-playground/mcp-context-forge
that referenced
this pull request
Sep 14, 2025
* Initial OPA plugin template Signed-off-by: Shriti Priya <shritip@ibm.com> * Adding opa server installation, tool invoke with policy evaluations Signed-off-by: Shriti Priya <shritip@ibm.com> * Sample policy holders for pre/post tool, resource and prompt invocations, url changes and opa version (arm architecture 1.7.0) Signed-off-by: Shriti Priya <shritip@ibm.com> * feat: add shared context capabilities and fixed error issues. Signed-off-by: Teryl Taylor <terylt@ibm.com> * fix: plugin cleanup to support multiple external plugins. Signed-off-by: Teryl Taylor <terylt@ibm.com> * fix(lint): fixed linting issues Signed-off-by: Teryl Taylor <terylt@ibm.com> * feat(error): update error handling with enforce_ignore_error Signed-off-by: Teryl Taylor <terylt@ibm.com> * Additiona of context-tool-policy mapping using applied_to Signed-off-by: Shriti Priya <shritip@ibm.com> * Changes in plugin config schema Signed-off-by: Shriti Priya <shritip@ibm.com> * Schema update models.py Signed-off-by: Shriti Priya <shritip@ibm.com> * updated schema Signed-off-by: Shriti Priya <shritip@ibm.com> * Adding endpoint to policy Signed-off-by: Shriti Priya <shritip@ibm.com> * documentation for OPA Plugin Signed-off-by: Shriti Priya <shritip@ibm.com> * documentation update Signed-off-by: Shriti Priya <shritip@ibm.com> * documentation update Signed-off-by: Shriti Priya <shritip@ibm.com> * documentation update Signed-off-by: Shriti Priya <shritip@ibm.com> * documentation update Signed-off-by: Shriti Priya <shritip@ibm.com> * fix: flake8 and doctest Signed-off-by: Shriti Priya <shritip@ibm.com> * fix: solving doctest errors Signed-off-by: Shriti Priya <shritip@ibm.com> * fix:doctest Signed-off-by: Shriti Priya <shritip@ibm.com> * Adding tool_name variable change Signed-off-by: Shriti Priya <shritip@ibm.com> * test cases for opapluginfilter Signed-off-by: Shriti Priya <shritip@ibm.com> * Update manifest.in with exclude Signed-off-by: Shriti Priya <shritip@ibm.com> * updated prehook Signed-off-by: Shriti Priya <shritip@ibm.com> * updating documentation Signed-off-by: Shriti Priya <shritip@ibm.com> * rebase Signed-off-by: Mihai Criveti <crivetimihai@gmail.com> --------- Signed-off-by: Shriti Priya <shritip@ibm.com> Signed-off-by: Teryl Taylor <terylt@ibm.com> Signed-off-by: Mihai Criveti <crivetimihai@gmail.com> Co-authored-by: Teryl Taylor <terylt@ibm.com> Co-authored-by: Mihai Criveti <crivetimihai@gmail.com>
vk-playground
pushed a commit
to vk-playground/mcp-context-forge
that referenced
this pull request
Sep 14, 2025
* Initial OPA plugin template Signed-off-by: Shriti Priya <shritip@ibm.com> * Adding opa server installation, tool invoke with policy evaluations Signed-off-by: Shriti Priya <shritip@ibm.com> * Sample policy holders for pre/post tool, resource and prompt invocations, url changes and opa version (arm architecture 1.7.0) Signed-off-by: Shriti Priya <shritip@ibm.com> * feat: add shared context capabilities and fixed error issues. Signed-off-by: Teryl Taylor <terylt@ibm.com> * fix: plugin cleanup to support multiple external plugins. Signed-off-by: Teryl Taylor <terylt@ibm.com> * fix(lint): fixed linting issues Signed-off-by: Teryl Taylor <terylt@ibm.com> * feat(error): update error handling with enforce_ignore_error Signed-off-by: Teryl Taylor <terylt@ibm.com> * Additiona of context-tool-policy mapping using applied_to Signed-off-by: Shriti Priya <shritip@ibm.com> * Changes in plugin config schema Signed-off-by: Shriti Priya <shritip@ibm.com> * Schema update models.py Signed-off-by: Shriti Priya <shritip@ibm.com> * updated schema Signed-off-by: Shriti Priya <shritip@ibm.com> * Adding endpoint to policy Signed-off-by: Shriti Priya <shritip@ibm.com> * documentation for OPA Plugin Signed-off-by: Shriti Priya <shritip@ibm.com> * documentation update Signed-off-by: Shriti Priya <shritip@ibm.com> * documentation update Signed-off-by: Shriti Priya <shritip@ibm.com> * documentation update Signed-off-by: Shriti Priya <shritip@ibm.com> * documentation update Signed-off-by: Shriti Priya <shritip@ibm.com> * fix: flake8 and doctest Signed-off-by: Shriti Priya <shritip@ibm.com> * fix: solving doctest errors Signed-off-by: Shriti Priya <shritip@ibm.com> * fix:doctest Signed-off-by: Shriti Priya <shritip@ibm.com> * Adding tool_name variable change Signed-off-by: Shriti Priya <shritip@ibm.com> * test cases for opapluginfilter Signed-off-by: Shriti Priya <shritip@ibm.com> * Update manifest.in with exclude Signed-off-by: Shriti Priya <shritip@ibm.com> * updated prehook Signed-off-by: Shriti Priya <shritip@ibm.com> * updating documentation Signed-off-by: Shriti Priya <shritip@ibm.com> * rebase Signed-off-by: Mihai Criveti <crivetimihai@gmail.com> --------- Signed-off-by: Shriti Priya <shritip@ibm.com> Signed-off-by: Teryl Taylor <terylt@ibm.com> Signed-off-by: Mihai Criveti <crivetimihai@gmail.com> Co-authored-by: Teryl Taylor <terylt@ibm.com> Co-authored-by: Mihai Criveti <crivetimihai@gmail.com>
vk-playground
pushed a commit
to vk-playground/mcp-context-forge
that referenced
this pull request
Sep 16, 2025
* Initial OPA plugin template Signed-off-by: Shriti Priya <shritip@ibm.com> * Adding opa server installation, tool invoke with policy evaluations Signed-off-by: Shriti Priya <shritip@ibm.com> * Sample policy holders for pre/post tool, resource and prompt invocations, url changes and opa version (arm architecture 1.7.0) Signed-off-by: Shriti Priya <shritip@ibm.com> * feat: add shared context capabilities and fixed error issues. Signed-off-by: Teryl Taylor <terylt@ibm.com> * fix: plugin cleanup to support multiple external plugins. Signed-off-by: Teryl Taylor <terylt@ibm.com> * fix(lint): fixed linting issues Signed-off-by: Teryl Taylor <terylt@ibm.com> * feat(error): update error handling with enforce_ignore_error Signed-off-by: Teryl Taylor <terylt@ibm.com> * Additiona of context-tool-policy mapping using applied_to Signed-off-by: Shriti Priya <shritip@ibm.com> * Changes in plugin config schema Signed-off-by: Shriti Priya <shritip@ibm.com> * Schema update models.py Signed-off-by: Shriti Priya <shritip@ibm.com> * updated schema Signed-off-by: Shriti Priya <shritip@ibm.com> * Adding endpoint to policy Signed-off-by: Shriti Priya <shritip@ibm.com> * documentation for OPA Plugin Signed-off-by: Shriti Priya <shritip@ibm.com> * documentation update Signed-off-by: Shriti Priya <shritip@ibm.com> * documentation update Signed-off-by: Shriti Priya <shritip@ibm.com> * documentation update Signed-off-by: Shriti Priya <shritip@ibm.com> * documentation update Signed-off-by: Shriti Priya <shritip@ibm.com> * fix: flake8 and doctest Signed-off-by: Shriti Priya <shritip@ibm.com> * fix: solving doctest errors Signed-off-by: Shriti Priya <shritip@ibm.com> * fix:doctest Signed-off-by: Shriti Priya <shritip@ibm.com> * Adding tool_name variable change Signed-off-by: Shriti Priya <shritip@ibm.com> * test cases for opapluginfilter Signed-off-by: Shriti Priya <shritip@ibm.com> * Update manifest.in with exclude Signed-off-by: Shriti Priya <shritip@ibm.com> * updated prehook Signed-off-by: Shriti Priya <shritip@ibm.com> * updating documentation Signed-off-by: Shriti Priya <shritip@ibm.com> * rebase Signed-off-by: Mihai Criveti <crivetimihai@gmail.com> --------- Signed-off-by: Shriti Priya <shritip@ibm.com> Signed-off-by: Teryl Taylor <terylt@ibm.com> Signed-off-by: Mihai Criveti <crivetimihai@gmail.com> Co-authored-by: Teryl Taylor <terylt@ibm.com> Co-authored-by: Mihai Criveti <crivetimihai@gmail.com>
8 tasks
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
3 participants
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
β¨ Feature / Enhancement PR
π Epic / Issue
Closes # #271
π Summary
This PR introduces an external OPA Plugin which is self-contained with the OPA server running as background service, with sample policies. The pre hooks on tools that talks to OPA server running as background service within the same container. Whenever a tool is invoked, if OPA Plugin is in action, a policy will be applied on the tool call to allow/deny it.
OPA Server
To define a policy file you need to go into opaserver/rego and create a sample policy file for you.
Example -
example.regois present.Once you have this file created in this location, when building the server, the opa binaries will be downloaded and a container will be build.
In the
run_server.shfile, the opa server will run as a background service in the container with the rego policy file.OPA Plugin
The OPA plugin runs as an external plugin with pre/post tool invocations. So everytime, a tool invocation is made, and if OPAPluginFilter has been defined in config.yaml file, the tool invocation will pass through this OPA Plugin.
The
applied_tokey in config.yaml, has been used to selectively apply policies and provide context for a specific tool.Here, using this, you can provide the
nameof the tool you want to apply policy on, you can also providecontext to the tool with the prefix
globalif it needs to check the context in global context provided.The key
opa_policy_contextis used to get context for policies and you can have multiple contexts within this key usinggit_contextkey.You can also provide policy within the
extensionskey where you can provide information to the pluginrelated to which policy to run and what endpoint to call for that policy.
In the
configkey inconfig.yamlfile OPAPlugin consists of the following things:opa_base_url: It is the base url on which opa server is running.More to come