Support separate Gitea MCP runtime profiles via environment configuration #19
Reference in New Issue
Block a user
Delete Branch "%!s()"
Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?
Parent
Roadmap #10 — Task-scoped MCP execution profiles for LLM-operated Gitea workflows
Problem
We want roles to be fluid across LLM sessions, but safe. The LLM should not be the role; the MCP credential/profile should be the role.
To support this, the same Gitea MCP server should be runnable as separate configured MCP instances, each with its own token and profile name.
Scope
Support runtime configuration for separate Gitea MCP profiles, such as:
gitea-authorgitea-reviewergitea-mergergitea-ownerEach runtime profile should be configured through environment variables or a safe secret provider.
Example env names:
Acceptance criteria
.env.examplecontains placeholders only.whoamiand reviewer eligibility checks.Non-goals
Proposed labels
mcp·gitea·securityReopened + claimed. Implementing the canonical single-file runtime-profiles config: one
GITEA_MCP_CONFIGJSON with multiple named profiles selected viaGITEA_MCP_PROFILE; thin per-LLM launchers carry only those two env vars; typed auth references (keychain id / env name) so no raw tokens live in LLM configs. Env-only behavior preserved. Branch:feat/issue-19-canonical-runtime-profiles.Update: implemented on the existing PR #30 (branch
feat/json-runtime-profiles), reworked to the canonical single-file schema — not a separate branch. #19 kept open + claimed so PR #30 tracks/completes it. Canonical config:version+profileswith typedauthreferences ({type: keychain|env}); thin LLM launchers carry only GITEA_MCP_CONFIG + GITEA_MCP_PROFILE; env-only mode preserved.