Add Keycloak OAuth authentication for MCP server

- Add Keycloak container with pre-configured MCP realm (DCR enabled)
- Add keycloak_deployed_mcp.py with RemoteAuthProvider + JWTVerifier
- Add separate aca-noauth.bicep for non-authenticated MCP server
- Add LangChain agent example with Keycloak token acquisition
- Configure HTTP routes for multi-container deployment
- Scale Keycloak to 1 replica (fixes theme cache hash mismatch)
- Use direct Keycloak URL for issuer validation

Tested: DCR, token endpoint, MCP auth all working via LangChain agent

Author: madebygps

.vscode/mcp.json

@@ -1,33 +1,37 @@
 {
-  "servers": {
-    "expenses-mcp": {
-      "type": "stdio",
-      "command": "uv",
-      "cwd": "${workspaceFolder}",
-      "args": [
-        "run",
-        "servers/basic_mcp_stdio.py"
-      ]
-    },
-    "expenses-mcp-http": {
-      "type": "http",
-      "url": "http://localhost:8000/mcp"
-    },
-    "expenses-mcp-debug": {
-      "type": "stdio",
-      "command": "uv",
-      "cwd": "${workspaceFolder}",
-      "args": [
-        "run",
-        "--",
-        "python",
-        "-m",
-        "debugpy",
-        "--listen",
-        "0.0.0.0:5678",
-        "servers/basic_mcp_stdio.py"
-      ]
-    }
-  },
-  "inputs": []
-}
+	"servers": {
+		"expenses-mcp": {
+			"type": "stdio",
+			"command": "uv",
+			"cwd": "${workspaceFolder}",
+			"args": [
+				"run",
+				"servers/basic_mcp_stdio.py"
+			]
+		},
+		"expenses-mcp-http": {
+			"type": "http",
+			"url": "http://localhost:8000/mcp"
+		},
+		"expenses-mcp-debug": {
+			"type": "stdio",
+			"command": "uv",
+			"cwd": "${workspaceFolder}",
+			"args": [
+				"run",
+				"--",
+				"python",
+				"-m",
+				"debugpy",
+				"--listen",
+				"0.0.0.0:5678",
+				"servers/basic_mcp_stdio.py"
+			]
+		},
+		"auth-expenses": {
+			"url": "https://mcp-gps-key-n7pc5ej-ca.ashymeadow-ae27942e.eastus2.azurecontainerapps.io/mcp",
+			"type": "http"
+		}
+	},
+	"inputs": []
+}

agents/langchainv1_keycloak.py

@@ -0,0 +1,169 @@
+"""
+LangChain agent that connects to Keycloak-protected MCP server.
+
+This script demonstrates:
+1. Getting an OAuth token from Keycloak via client_credentials grant
+2. Connecting to the MCP server with Bearer token authentication
+3. Using MCP tools through LangChain
+
+Usage:
+    python agents/langchainv1_keycloak.py
+"""
+
+import asyncio
+import logging
+import os
+from datetime import datetime
+
+import azure.identity
+import httpx
+from dotenv import load_dotenv
+from langchain.agents import create_agent
+from langchain_core.messages import HumanMessage, SystemMessage
+from langchain_mcp_adapters.client import MultiServerMCPClient
+from langchain_openai import ChatOpenAI
+from pydantic import SecretStr
+from rich.logging import RichHandler
+
+# Configure logging
+logging.basicConfig(level=logging.INFO, format="%(message)s", datefmt="[%X]", handlers=[RichHandler()])
+logger = logging.getLogger("langchain_keycloak")
+
+# Load environment variables
+load_dotenv(override=True)
+
+# MCP Server and Keycloak configuration
+MCP_SERVER_URL = os.getenv(
+    "MCP_SERVER_URL",
+    "https://mcp-gps-key-n7pc5ej-ca.ashymeadow-ae27942e.eastus2.azurecontainerapps.io/mcp"
+)
+KEYCLOAK_REALM_URL = os.getenv(
+    "KEYCLOAK_REALM_URL",
+    "https://mcp-gps-key-n7pc5ej-kc.ashymeadow-ae27942e.eastus2.azurecontainerapps.io/realms/mcp"
+)
+
+# Test client credentials (from DCR)
+CLIENT_ID = os.getenv("TEST_CLIENT_ID", "4f061e11-d30c-4978-bb2e-2164ce26cc51")
+CLIENT_SECRET = os.getenv("TEST_CLIENT_SECRET", "UKZLK1eEga9FfZTFsqTHXK70ubq0PAJu")
+
+# Configure language model based on API_HOST
+API_HOST = os.getenv("API_HOST", "github")
+
+if API_HOST == "azure":
+    token_provider = azure.identity.get_bearer_token_provider(
+        azure.identity.DefaultAzureCredential(), "https://cognitiveservices.azure.com/.default"
+    )
+    base_model = ChatOpenAI(
+        model=os.environ.get("AZURE_OPENAI_CHAT_DEPLOYMENT"),
+        base_url=os.environ["AZURE_OPENAI_ENDPOINT"] + "/openai/v1/",
+        api_key=token_provider,
+    )
+elif API_HOST == "github":
+    base_model = ChatOpenAI(
+        model=os.getenv("GITHUB_MODEL", "gpt-4o"),
+        base_url="https://models.inference.ai.azure.com",
+        api_key=SecretStr(os.environ["GITHUB_TOKEN"]),
+    )
+elif API_HOST == "ollama":
+    base_model = ChatOpenAI(
+        model=os.environ.get("OLLAMA_MODEL", "llama3.1"),
+        base_url=os.environ.get("OLLAMA_ENDPOINT", "http://localhost:11434/v1"),
+        api_key=SecretStr(os.environ["OLLAMA_API_KEY"]),
+    )
+else:
+    base_model = ChatOpenAI(model=os.getenv("OPENAI_MODEL", "gpt-4o-mini"))
+
+
+async def get_keycloak_token() -> str:
+    """Get an access token from Keycloak using client_credentials grant."""
+    token_url = f"{KEYCLOAK_REALM_URL}/protocol/openid-connect/token"
+    
+    logger.info(f"🔑 Getting access token from Keycloak...")
+    
+    async with httpx.AsyncClient() as client:
+        response = await client.post(
+            token_url,
+            data={
+                "grant_type": "client_credentials",
+                "client_id": CLIENT_ID,
+                "client_secret": CLIENT_SECRET,
+            },
+            headers={"Content-Type": "application/x-www-form-urlencoded"},
+        )
+        
+        if response.status_code != 200:
+            raise Exception(f"Failed to get token: {response.status_code} - {response.text}")
+        
+        token_data = response.json()
+        access_token = token_data["access_token"]
+        expires_in = token_data.get("expires_in", "unknown")
+        
+        logger.info(f"✅ Got access token (expires in {expires_in}s)")
+        return access_token
+
+
+async def run_agent() -> None:
+    """
+    Run the agent to process expense-related queries using authenticated MCP tools.
+    """
+    # First, get OAuth token from Keycloak
+    access_token = await get_keycloak_token()
+    
+    logger.info(f"📡 Connecting to MCP server: {MCP_SERVER_URL}")
+    
+    # Initialize MCP client with Bearer token auth
+    client = MultiServerMCPClient(
+        {
+            "expenses": {
+                "url": MCP_SERVER_URL,
+                "transport": "streamable_http",
+                "headers": {
+                    "Authorization": f"Bearer {access_token}",
+                },
+            }
+        }
+    )
+
+    # Get tools and create agent
+    logger.info("🔧 Getting available tools...")
+    tools = await client.get_tools()
+    logger.info(f"✅ Found {len(tools)} tools: {[t.name for t in tools]}")
+    
+    agent = create_agent(base_model, tools)
+
+    # Prepare query with context
+    today = datetime.now().strftime("%Y-%m-%d")
+    user_query = "Add an expense: yesterday I bought a laptop for $1200 using my visa."
+
+    logger.info(f"💬 User query: {user_query}")
+
+    # Invoke agent
+    response = await agent.ainvoke(
+        {"messages": [SystemMessage(content=f"Today's date is {today}."), HumanMessage(content=user_query)]}
+    )
+
+    # Display result
+    logger.info("=" * 60)
+    logger.info("📊 Agent Response:")
+    logger.info("=" * 60)
+    
+    final_message = response["messages"][-1]
+    print(final_message.content)
+
+
+async def main():
+    print("=" * 60)
+    print("LangChain Agent with Keycloak-Protected MCP Server")
+    print("=" * 60)
+    print(f"\nConfiguration:")
+    print(f"  MCP Server:  {MCP_SERVER_URL}")
+    print(f"  Keycloak:    {KEYCLOAK_REALM_URL}")
+    print(f"  Client ID:   {CLIENT_ID[:20]}...")
+    print(f"  LLM Host:    {API_HOST}")
+    print()
+    
+    await run_agent()
+
+
+if __name__ == "__main__":
+    asyncio.run(main())

azure.yaml

@@ -4,14 +4,30 @@ name: python-mcp-demo
 metadata:
   template: [email protected]
 services:
-  # Not using remoteBuild due to private endpoint usage
+  # MCP Server WITH Keycloak authentication (keycloak_deployed_mcp.py)
   aca:
     project: .
     language: docker
     host: containerapp
     docker:
       path: ./servers/Dockerfile
       context: .
+  # MCP Server WITHOUT authentication (deployed_mcp.py)
+  mcpnoauth:
+    project: .
+    language: docker
+    host: containerapp
+    docker:
+      path: ./servers/Dockerfile.noauth
+      context: .
+  # Keycloak identity provider with MCP realm pre-configured
+  keycloak:
+    project: .
+    language: docker
+    host: containerapp
+    docker:
+      path: ./infra/Dockerfile.keycloak
+      context: .
 hooks:
   postprovision:
     posix:

infra/Dockerfile.keycloak

@@ -0,0 +1,15 @@
+FROM quay.io/keycloak/keycloak:26.0
+
+# Copy the MCP realm configuration for import on startup
+COPY infra/keycloak-realm.json /opt/keycloak/data/import/mcp-realm.json
+
+# Expose port 8080
+EXPOSE 8080
+
+ENTRYPOINT ["/opt/keycloak/bin/kc.sh"]
+
+# Start in dev mode with H2 database
+# --proxy-headers=xforwarded tells Keycloak it's behind a reverse proxy that sets X-Forwarded-* headers
+# --hostname-strict=false allows dynamic hostname resolution from proxy headers  
+# --import-realm imports the MCP realm on startup
+CMD ["start-dev", "--http-port=8080", "--proxy-headers=xforwarded", "--hostname-strict=false", "--import-realm"]

infra/aca-noauth.bicep

@@ -0,0 +1,71 @@
+// MCP Server WITHOUT Keycloak authentication (deployed_mcp.py)
+param name string
+param location string = resourceGroup().location
+param tags object = {}
+
+param identityName string
+param containerAppsEnvironmentName string
+param containerRegistryName string
+param serviceName string = 'mcpnoauth'
+param exists bool
+param openAiDeploymentName string
+param openAiEndpoint string
+param cosmosDbAccount string
+param cosmosDbDatabase string
+param cosmosDbContainer string
+
+resource mcpNoAuthIdentity 'Microsoft.ManagedIdentity/userAssignedIdentities@2023-01-31' = {
+  name: identityName
+  location: location
+}
+
+module app 'core/host/container-app-upsert.bicep' = {
+  name: '${serviceName}-container-app-module'
+  params: {
+    name: name
+    location: location
+    tags: union(tags, { 'azd-service-name': serviceName })
+    identityName: mcpNoAuthIdentity.name
+    exists: exists
+    containerAppsEnvironmentName: containerAppsEnvironmentName
+    containerRegistryName: containerRegistryName
+    ingressEnabled: true
+    env: [
+      {
+        name: 'AZURE_OPENAI_CHAT_DEPLOYMENT'
+        value: openAiDeploymentName
+      }
+      {
+        name: 'AZURE_OPENAI_ENDPOINT'
+        value: openAiEndpoint
+      }
+      {
+        name: 'RUNNING_IN_PRODUCTION'
+        value: 'true'
+      }
+      {
+        name: 'AZURE_CLIENT_ID'
+        value: mcpNoAuthIdentity.properties.clientId
+      }
+      {
+        name: 'AZURE_COSMOSDB_ACCOUNT'
+        value: cosmosDbAccount
+      }
+      {
+        name: 'AZURE_COSMOSDB_DATABASE'
+        value: cosmosDbDatabase
+      }
+      {
+        name: 'AZURE_COSMOSDB_CONTAINER'
+        value: cosmosDbContainer
+      }
+    ]
+    targetPort: 8000
+  }
+}
+
+output identityPrincipalId string = mcpNoAuthIdentity.properties.principalId
+output name string = app.outputs.name
+output hostName string = app.outputs.hostName
+output uri string = app.outputs.uri
+output imageName string = app.outputs.imageName

infra/aca.bicep

@@ -13,6 +13,11 @@ param cosmosDbAccount string
 param cosmosDbDatabase string
 param cosmosDbContainer string
 
+// Keycloak authentication parameters
+param keycloakRealmUrl string
+param mcpServerBaseUrl string
+param mcpServerAudience string = 'mcp-server'
+
 resource acaIdentity 'Microsoft.ManagedIdentity/userAssignedIdentities@2023-01-31' = {
   name: identityName
   location: location
@@ -58,6 +63,19 @@ module app 'core/host/container-app-upsert.bicep' = {
         name: 'AZURE_COSMOSDB_CONTAINER'
         value: cosmosDbContainer
       }
+      // Keycloak authentication environment variables
+      {
+        name: 'KEYCLOAK_REALM_URL'
+        value: keycloakRealmUrl
+      }
+      {
+        name: 'MCP_SERVER_BASE_URL'
+        value: mcpServerBaseUrl
+      }
+      {
+        name: 'MCP_SERVER_AUDIENCE'
+        value: mcpServerAudience
+      }
     ]
     targetPort: 8000
   }