docs: add demo Docker support and configuration files

Author: akshay5995

.env.example

@@ -0,0 +1,15 @@
+# Copy this file to .env and fill in your values
+
+# OAuth Provider Credentials
+GOOGLE_CLIENT_ID=your-google-client-id
+GOOGLE_CLIENT_SECRET=your-google-client-secret
+
+# Optional: GitHub OAuth (if using GitHub instead)
+# GITHUB_CLIENT_ID=your-github-client-id
+# GITHUB_CLIENT_SECRET=your-github-client-secret
+
+# Session Secret (generate a secure random string)
+SESSION_SECRET=change-this-to-a-secure-random-string
+
+# Redis Password (for production, use a secure password)
+REDIS_PASSWORD=mypassword

.gitignore

@@ -341,6 +341,7 @@ data/
 !config/*.example.yaml
 !config/*.example.yml
 !config.example.yaml
+!config.docker.yaml
 !.github/workflows/*.yml
 
 # =============================================================================

README.md

@@ -235,10 +235,23 @@ Services can use these headers for:
 
 ## Docker Deployment
 
-### Quick Start with Memory Storage
+### Pre-built Image (Recommended)
+
+Use the pre-built Docker image from GitHub Container Registry:
+
+```bash
+# Run with memory storage (development)
+docker run -p 8080:8080 \
+  -v $(pwd)/config.yaml:/app/config.yaml \
+  -e GOOGLE_CLIENT_ID="your-google-client-id" \
+  -e GOOGLE_CLIENT_SECRET="your-google-client-secret" \
+  ghcr.io/akshay5995/mcp-oauth-gateway:latest
+```
+
+### Build from Source
 
 ```bash
-# Build image
+# Build image locally
 docker build -t mcp-oauth-gateway .
 
 # Run with memory storage (development)
@@ -273,7 +286,7 @@ docker run -p 8080:8080 \
   -e GOOGLE_CLIENT_ID="your-google-client-id" \
   -e GOOGLE_CLIENT_SECRET="your-google-client-secret" \
   -e REDIS_PASSWORD="mypassword" \
-  mcp-oauth-gateway
+  ghcr.io/akshay5995/mcp-oauth-gateway:latest
 ```
 
 ### Enterprise with Vault Storage
@@ -302,7 +315,7 @@ docker run -p 8080:8080 \
   -e GOOGLE_CLIENT_ID="your-google-client-id" \
   -e GOOGLE_CLIENT_SECRET="your-google-client-secret" \
   -e VAULT_TOKEN="myroot" \
-  mcp-oauth-gateway
+  ghcr.io/akshay5995/mcp-oauth-gateway:latest
 ```
 
 ### Docker Compose Example
@@ -312,7 +325,7 @@ docker run -p 8080:8080 \
 version: '3.8'
 services:
   mcp-gateway:
-    build: .
+    image: ghcr.io/akshay5995/mcp-oauth-gateway:latest
     ports:
       - "8080:8080"
     volumes:

config.docker.yaml

@@ -0,0 +1,54 @@
+# MCP OAuth Gateway Configuration for Docker Compose
+# This config uses Docker service names for inter-container communication
+
+# Gateway settings
+host: "0.0.0.0"
+port: 8080
+issuer: "http://localhost:8080"  # This stays as localhost for external access
+session_secret: "${SESSION_SECRET:-change-this-secret-key-in-production}"
+debug: false
+
+# Storage backend configuration
+storage:
+  type: "redis"  # Using Redis in Docker Compose
+  
+  redis:
+    host: redis  # Docker service name, not localhost!
+    port: 6379
+    password: "${REDIS_PASSWORD:-mypassword}"
+    db: 0
+    ssl: false
+    max_connections: 10
+    socket_timeout: 5.0
+
+# OAuth providers for user authentication
+oauth_providers:  
+  google:
+    client_id: "${GOOGLE_CLIENT_ID}"
+    client_secret: "${GOOGLE_CLIENT_SECRET}"
+    scopes:
+      - "openid"
+      - "email"
+      - "profile"
+
+# MCP services to proxy
+mcp_services:
+  calculator:
+    name: "Calculator Service"
+    url: "http://calculator-service:3001/mcp/"  # Docker service name!
+    oauth_provider: "google"
+    auth_required: true
+    scopes:
+      - "read"
+      - "calculate"
+    timeout: 30000
+
+  # Optional: If you have services running on the host machine
+  # host_service:
+  #   name: "Host Service"
+  #   url: "http://host.docker.internal:3002/mcp/"  # For Mac/Windows
+  #   oauth_provider: "google"
+  #   auth_required: true
+  #   scopes:
+  #     - "read"
+  #   timeout: 30000

demo/Dockerfile

@@ -0,0 +1,18 @@
+# Dockerfile for FastMCP Calculator Demo Service
+FROM python:3.11-slim
+
+# Set working directory
+WORKDIR /app
+
+# Install dependencies
+COPY requirements.txt .
+RUN pip install --no-cache-dir -r requirements.txt
+
+# Copy application code
+COPY fastmcp_server.py .
+
+# Expose port
+EXPOSE 3001
+
+# Run the FastMCP server
+CMD ["python", "fastmcp_server.py"]

demo/fastmcp_server.py

@@ -34,7 +34,8 @@ def get_user_email(ctx: Context) -> str:
     return "[email protected]"
 
 
-mcp = FastMCP(name="CalculatorServer")
+# For Docker containers, specify host settings
+mcp = FastMCP(name="CalculatorServer", host="0.0.0.0")
 mcp.add_middleware(UserAuthMiddleware())
 
 
@@ -53,4 +54,11 @@ def multiply(a: int, b: int, ctx: Context) -> int:
 
 
 if __name__ == "__main__":
-    mcp.run(transport="http", port=3001, log_level="info")
+    # For Docker containers, specify host explicitly and use the /mcp/ path
+    mcp.run(
+        transport="http", 
+        host="0.0.0.0",  # Critical for Docker - bind to all interfaces
+        port=3001, 
+        path="/mcp/",    # FastMCP serves at /mcp/ path by default
+        log_level="debug"
+    )

docker-compose.yml

@@ -7,10 +7,11 @@ services:
   # MCP OAuth Gateway
   mcp-gateway:
     build: .
+    command: ["--config", "/app/config.yaml"]
     ports:
       - "8080:8080"
     volumes:
-      - ./config.yaml:/app/config.yaml
+      - ./config.docker.yaml:/app/config.yaml
     environment:
       # OAuth Provider (choose one)
       - GOOGLE_CLIENT_ID=${GOOGLE_CLIENT_ID}