feat(mcp): add tools for contexts, API keys, spaces, worker pools, and blueprints (#392)

* feat(mcp): add tools for contexts, API keys, spaces, worker pools, and blueprints

Expose additional Spacelift GraphQL API resources as MCP tools:
- Contexts: list_contexts, get_context, search_contexts
- API Keys: list_api_keys, get_api_key
- Spaces: list_spaces, get_space
- Worker Pools: list_worker_pools, get_worker_pool
- Blueprints: list_blueprints, get_blueprint

Made-with: Cursor

* fix: correct struct field alignment to pass gci/gofmt linting

Made-with: Cursor

Author: frankstutz-at-globality

internal/cmd/apikey/mcp.go

@@ -0,0 +1,135 @@
+package apikey
+
+import (
+	"context"
+	"encoding/json"
+	"fmt"
+
+	"github.com/mark3labs/mcp-go/mcp"
+	"github.com/mark3labs/mcp-go/server"
+	"github.com/pkg/errors"
+	"github.com/shurcooL/graphql"
+
+	"github.com/spacelift-io/spacectl/internal/cmd/authenticated"
+)
+
+func RegisterMCPTools(s *server.MCPServer) {
+	registerListAPIKeysTool(s)
+	registerGetAPIKeyTool(s)
+}
+
+type apiKeyNode struct {
+	ID            string   `graphql:"id" json:"id"`
+	Name          string   `graphql:"name" json:"name"`
+	Description   string   `graphql:"description" json:"description"`
+	Type          string   `graphql:"type" json:"type"`
+	Admin         bool     `graphql:"admin" json:"admin"`
+	Creator       string   `graphql:"creator" json:"creator"`
+	CreatedAt     int      `graphql:"createdAt" json:"createdAt"`
+	LastUsedAt    *int     `graphql:"lastUsedAt" json:"lastUsedAt"`
+	Deleted       bool     `graphql:"deleted" json:"deleted"`
+	Teams         []string `graphql:"teams" json:"teams"`
+	TeamCount     int      `graphql:"teamCount" json:"teamCount"`
+	SpaceCount    int      `graphql:"spaceCount" json:"spaceCount"`
+	IsMachineUser bool     `graphql:"isMachineUser" json:"isMachineUser"`
+	ExpiresAt     *int     `graphql:"expiresAt" json:"expiresAt"`
+}
+
+type apiKeyDetail struct {
+	ID            string             `graphql:"id" json:"id"`
+	Name          string             `graphql:"name" json:"name"`
+	Description   string             `graphql:"description" json:"description"`
+	Type          string             `graphql:"type" json:"type"`
+	Admin         bool               `graphql:"admin" json:"admin"`
+	Creator       string             `graphql:"creator" json:"creator"`
+	CreatedAt     int                `graphql:"createdAt" json:"createdAt"`
+	LastUsedAt    *int               `graphql:"lastUsedAt" json:"lastUsedAt"`
+	Deleted       bool               `graphql:"deleted" json:"deleted"`
+	Teams         []string           `graphql:"teams" json:"teams"`
+	TeamCount     int                `graphql:"teamCount" json:"teamCount"`
+	SpaceCount    int                `graphql:"spaceCount" json:"spaceCount"`
+	IsMachineUser bool               `graphql:"isMachineUser" json:"isMachineUser"`
+	ExpiresAt     *int               `graphql:"expiresAt" json:"expiresAt"`
+	AccessRules   []apiKeyAccessRule `graphql:"accessRules" json:"accessRules"`
+}
+
+type apiKeyAccessRule struct {
+	Space            string `graphql:"space" json:"space"`
+	SpaceAccessLevel string `graphql:"spaceAccessLevel" json:"spaceAccessLevel"`
+}
+
+func registerListAPIKeysTool(s *server.MCPServer) {
+	tool := mcp.NewTool("list_api_keys",
+		mcp.WithDescription(`Retrieve the list of all API keys for the Spacelift account. Returns key metadata including name, type, creator, and usage information. Does not return the secret values.`),
+		mcp.WithToolAnnotation(mcp.ToolAnnotation{
+			Title:        "List API Keys",
+			ReadOnlyHint: mcp.ToBoolPtr(true),
+		}),
+	)
+
+	s.AddTool(tool, func(ctx context.Context, request mcp.CallToolRequest) (*mcp.CallToolResult, error) {
+		authenticated.Ensure(ctx, nil)
+
+		var query struct {
+			APIKeys []apiKeyNode `graphql:"apiKeys"`
+		}
+
+		if err := authenticated.Client().Query(ctx, &query, map[string]any{}); err != nil {
+			return nil, errors.Wrap(err, "failed to query API keys")
+		}
+
+		if len(query.APIKeys) == 0 {
+			return mcp.NewToolResultText("No API keys found."), nil
+		}
+
+		keysJSON, err := json.Marshal(query.APIKeys)
+		if err != nil {
+			return nil, errors.Wrap(err, "failed to marshal API keys to JSON")
+		}
+
+		output := fmt.Sprintf("Found %d API keys:\n%s", len(query.APIKeys), string(keysJSON))
+		return mcp.NewToolResultText(output), nil
+	})
+}
+
+func registerGetAPIKeyTool(s *server.MCPServer) {
+	tool := mcp.NewTool("get_api_key",
+		mcp.WithDescription(`Retrieve detailed information about a specific Spacelift API key including its access rules and space permissions.`),
+		mcp.WithToolAnnotation(mcp.ToolAnnotation{
+			Title:        "Get API Key",
+			ReadOnlyHint: mcp.ToBoolPtr(true),
+		}),
+		mcp.WithString("api_key_id", mcp.Description("The ID of the API key to retrieve"), mcp.Required()),
+	)
+
+	s.AddTool(tool, func(ctx context.Context, request mcp.CallToolRequest) (*mcp.CallToolResult, error) {
+		authenticated.Ensure(ctx, nil)
+		apiKeyID, err := request.RequireString("api_key_id")
+		if err != nil {
+			return nil, err
+		}
+
+		var query struct {
+			APIKey *apiKeyDetail `graphql:"apiKey(id: $id)"`
+		}
+
+		variables := map[string]any{
+			"id": graphql.ID(apiKeyID),
+		}
+
+		if err := authenticated.Client().Query(ctx, &query, variables); err != nil {
+			return nil, errors.Wrapf(err, "failed to query for API key ID %q", apiKeyID)
+		}
+
+		if query.APIKey == nil {
+			return mcp.NewToolResultText("API key not found"), nil
+		}
+
+		keyJSON, err := json.Marshal(query.APIKey)
+		if err != nil {
+			return nil, errors.Wrap(err, "failed to marshal API key to JSON")
+		}
+
+		return mcp.NewToolResultText(string(keyJSON)), nil
+	})
+}

internal/cmd/blueprint/mcp.go

@@ -0,0 +1,115 @@
+package blueprint
+
+import (
+	"context"
+	"encoding/json"
+	"fmt"
+
+	"github.com/mark3labs/mcp-go/mcp"
+	"github.com/mark3labs/mcp-go/server"
+	"github.com/pkg/errors"
+	"github.com/shurcooL/graphql"
+
+	"github.com/spacelift-io/spacectl/client/structs"
+	"github.com/spacelift-io/spacectl/internal/cmd/authenticated"
+)
+
+func RegisterMCPTools(s *server.MCPServer) {
+	registerListBlueprintsTool(s)
+	registerGetBlueprintTool(s)
+}
+
+func registerListBlueprintsTool(s *server.MCPServer) {
+	tool := mcp.NewTool("list_blueprints",
+		mcp.WithDescription(`Retrieve a paginated list of Spacelift blueprints. Blueprints are reusable templates for creating stacks.`),
+		mcp.WithToolAnnotation(mcp.ToolAnnotation{
+			Title:        "List Blueprints",
+			ReadOnlyHint: mcp.ToBoolPtr(true),
+		}),
+		mcp.WithNumber("limit", mcp.Description("The maximum number of blueprints to return, default is 50")),
+		mcp.WithString("search", mcp.Description("Perform a full text search on blueprint name and description")),
+		mcp.WithString("next_page_cursor", mcp.Description("The pagination cursor to use for fetching the next page of results")),
+	)
+
+	s.AddTool(tool, func(ctx context.Context, request mcp.CallToolRequest) (*mcp.CallToolResult, error) {
+		authenticated.Ensure(ctx, nil)
+		limit := request.GetInt("limit", 50)
+
+		var fullTextSearch *graphql.String
+		if searchParam := request.GetString("search", ""); searchParam != "" {
+			fullTextSearch = graphql.NewString(graphql.String(searchParam))
+		}
+
+		var nextPageCursor *graphql.String
+		if cursor := request.GetString("next_page_cursor", ""); cursor != "" {
+			nextPageCursor = graphql.NewString(graphql.String(cursor))
+		}
+
+		pageInput := structs.SearchInput{
+			First:          graphql.NewInt(graphql.Int(limit)), //nolint: gosec
+			FullTextSearch: fullTextSearch,
+			After:          nextPageCursor,
+		}
+
+		result, err := searchBlueprints(ctx, pageInput)
+		if err != nil {
+			return nil, errors.Wrap(err, "failed to search blueprints")
+		}
+
+		blueprintsJSON, err := json.Marshal(result.Blueprints)
+		if err != nil {
+			return nil, errors.Wrap(err, "failed to marshal blueprints to JSON")
+		}
+
+		output := string(blueprintsJSON)
+
+		if len(result.Blueprints) == 0 {
+			if nextPageCursor != nil {
+				output = "No more blueprints available. You have reached the end of the list."
+			} else {
+				output = "No blueprints found matching your criteria."
+			}
+		} else if result.PageInfo.HasNextPage {
+			output = fmt.Sprintf("Showing %d blueprints:\n%s\n\nThis is not the complete list. To view more blueprints, use this tool again with this cursor as \"next_page_cursor\": \"%s\"", len(result.Blueprints), output, result.PageInfo.EndCursor)
+		} else {
+			output = fmt.Sprintf("Showing %d blueprints:\n%s\n\nThis is the complete list. There are no more blueprints to fetch.", len(result.Blueprints), output)
+		}
+
+		return mcp.NewToolResultText(output), nil
+	})
+}
+
+func registerGetBlueprintTool(s *server.MCPServer) {
+	tool := mcp.NewTool("get_blueprint",
+		mcp.WithDescription(`Retrieve detailed information about a specific Spacelift blueprint including its template, inputs, and metadata.`),
+		mcp.WithToolAnnotation(mcp.ToolAnnotation{
+			Title:        "Get Blueprint",
+			ReadOnlyHint: mcp.ToBoolPtr(true),
+		}),
+		mcp.WithString("blueprint_id", mcp.Description("The ID of the blueprint to retrieve"), mcp.Required()),
+	)
+
+	s.AddTool(tool, func(ctx context.Context, request mcp.CallToolRequest) (*mcp.CallToolResult, error) {
+		authenticated.Ensure(ctx, nil)
+		blueprintID, err := request.RequireString("blueprint_id")
+		if err != nil {
+			return nil, err
+		}
+
+		b, found, err := getBlueprintByID(ctx, blueprintID)
+		if err != nil {
+			return nil, errors.Wrapf(err, "failed to query for blueprint ID %q", blueprintID)
+		}
+
+		if !found {
+			return mcp.NewToolResultText("Blueprint not found"), nil
+		}
+
+		blueprintJSON, err := json.Marshal(b)
+		if err != nil {
+			return nil, errors.Wrap(err, "failed to marshal blueprint to JSON")
+		}
+
+		return mcp.NewToolResultText(string(blueprintJSON)), nil
+	})
+}