feat: Add support for User (github#180)

* feat: Add support for user

Signed-off-by: Qasim Sarfraz <[email protected]>

* update: use "user" in aks

Signed-off-by: Qasim Sarfraz <[email protected]>

---------

Signed-off-by: Qasim Sarfraz <[email protected]>

Author: mqasimsarfraz

docs/configuration.md

@@ -85,6 +85,22 @@ run:
     - --transport=stdio
 ```
 
+## User
+
+If you need to run the container with a specific user, you can do it in the `run` block. If you want the user to be able to define the container user, you will need to create a parameter first and then add the `run` block to the server.
+
+```
+run:
+  user: '{{server_name.container_user}}'
+config:
+  description: example of a user
+  parameters:
+    type: object
+    properties:
+      container_user:
+        type: string
+```
+
 ## Full Example
 
 Here you can see a full example:

pkg/catalog/tile.go

@@ -183,6 +183,7 @@ func ToTile(ctx context.Context, server servers.Server) (Tile, error) {
 		Env:            env,
 		Command:        server.Run.Command,
 		Volumes:        server.Run.Volumes,
+		User:           server.Run.User,
 		DisableNetwork: server.Run.DisableNetwork,
 		AllowHosts:     server.Run.AllowHosts,
 		Config:         config,

pkg/catalog/types.go

@@ -147,6 +147,7 @@ type Tile struct {
 	Env            []Env          `json:"env,omitempty" yaml:"env,omitempty"`
 	Command        []string       `json:"command,omitempty" yaml:"command,omitempty"`
 	Volumes        []string       `json:"volumes,omitempty" yaml:"volumes,omitempty"`
+	User           string         `json:"user,omitempty" yaml:"user,omitempty"`
 	DisableNetwork bool           `json:"disableNetwork,omitempty" yaml:"disableNetwork,omitempty"`
 	AllowHosts     []string       `json:"allowHosts,omitempty" yaml:"allowHosts,omitempty"`
 	Prompts        int            `json:"prompts" yaml:"prompts"`

pkg/servers/types.go

@@ -107,6 +107,7 @@ type Source struct {
 type Run struct {
 	Command        []string          `yaml:"command,omitempty" json:"command,omitempty"`
 	Volumes        []string          `yaml:"volumes,omitempty" json:"volumes,omitempty"`
+	User           string            `yaml:"user,omitempty" json:"user,omitempty"`
 	Env            map[string]string `yaml:"env,omitempty" json:"env,omitempty"`
 	AllowHosts     []string          `yaml:"allowHosts,omitempty" json:"allowHosts,omitempty"`
 	DisableNetwork bool              `yaml:"disableNetwork,omitempty" json:"disableNetwork,omitempty"`

servers/aks/server.yaml

@@ -23,6 +23,7 @@ run:
   volumes:
     - '{{aks.azure_dir}}:/home/mcp/.azure'
     - '{{aks.kubeconfig}}:/home/mcp/.kube/config'
+  user: '{{aks.container_user}}'
 config:
   description: Configuration for AKS-MCP server
   parameters:
@@ -44,6 +45,9 @@ config:
       additional_tools:
         type: string
         description: Comma-separated list of additional tools, One of [ helm, cilium ]
+      container_user:
+        type: string
+        description: Username or UID of the container user (format <name|uid>[:<group|gid>] e.g. 10000), ensuring correct permissions to access the Azure and kubeconfig files. Leave empty to use default user in the container.
     required:
       - azure_dir
       - kubeconfig