jedarden/pdftract

Fork 0

Commit graph

Author	SHA1	Message	Date
jedarden	660a9401ef	feat(pdftract-59zz): implement MCP bearer token ingress channels and TH-03 enforcement Implements secure MCP bearer-token ingress channels and TH-03 startup abort enforcement per plan lines 874, 915-921, 922-924. ## Changes - Add `--auth-token-file PATH` flag (RECOMMENDED channel) - Add `PDFTRACT_MCP_TOKEN` env var support - Reject `--auth-token VALUE` unless `PDFTRACT_INSECURE_CLI_TOKEN=1` - Enforce TH-03: require token for non-loopback bind addresses (exit 78) - Loopback exemption for 127.0.0.0/8 and ::1/128 ## Files - crates/pdftract-cli/src/mcp/auth.rs: Token resolution with priority order - crates/pdftract-cli/src/mcp/bind.rs: TH-03 bind security check - crates/pdftract-cli/src/mcp/server.rs: MCP server entry point - crates/pdftract-cli/src/mcp/mod.rs: Module exports - crates/pdftract-cli/src/main.rs: CLI arguments - crates/pdftract-cli/Cargo.toml: Add secrecy, tempfile dependencies ## Acceptance Criteria - ✅ --auth-token-file PATH flag implemented - ✅ PDFTRACT_MCP_TOKEN env var resolved - ✅ --auth-token VALUE rejected (exit 64) unless PDFTRACT_INSECURE_CLI_TOKEN=1 - ✅ mcp --bind ADDR with non-loopback ADDR and no token: aborts with exit 78 - ✅ mcp --bind ADDR with loopback ADDR and no token: succeeds - ✅ mcp --bind ADDR with token: succeeds regardless of address - ⏸️ Inspector token: Phase 7.9 (not yet implemented) - ⏸️ TH-03 test: separate bead Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>	2026-05-18 02:47:54 -04:00
jedarden	633eba61b1	test(classifier): add 200-document labeled corpus for Phase 5.6 - Create tests/fixtures/classifier/ with 200 synthetic PDFs: - 50 invoices with bill-to/ship-to, item tables, totals - 50 scientific papers with abstracts, sections, references - 50 contracts with clauses, legal terminology, signatures - 50 misc documents (8 receipts, 8 forms, 7 bank statements, 7 slide decks, 7 legal filings, 6 book excerpts, 7 magazines) - Add MANIFEST.tsv mapping each document to its expected type with source URL and license (all MIT-0 synthetic data) - Add scripts/generate_test_corpus.py to regenerate the corpus using reportlab for PDF generation - Add tests/test_classifier_corpus.rs with validation harness: - test_corpus_manifest_validity: verifies manifest structure and file existence (PASSES) - test_classifier_corpus_accuracy: will validate precision/ recall/F1 when classifier is implemented (SKIP for now) - test_classifier_reproducibility: will verify deterministic classification (SKIP for now) - Add tests/fixtures/classifier/README.md documenting corpus structure, generation process, and acceptance criteria Total corpus size: ~0.4 MB (each PDF < 5 KB) Acceptance criteria (from plan.md Phase 5.6): - Per-class precision and recall >= 0.85 - Macro-F1 >= 0.88 - Reproducibility: identical output for same document Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>	2026-05-17 07:16:02 -04:00

Author

SHA1

Message

Date

jedarden

660a9401ef

feat(pdftract-59zz): implement MCP bearer token ingress channels and TH-03 enforcement

Implements secure MCP bearer-token ingress channels and TH-03 startup abort
enforcement per plan lines 874, 915-921, 922-924.

## Changes
- Add `--auth-token-file PATH` flag (RECOMMENDED channel)
- Add `PDFTRACT_MCP_TOKEN` env var support
- Reject `--auth-token VALUE` unless `PDFTRACT_INSECURE_CLI_TOKEN=1`
- Enforce TH-03: require token for non-loopback bind addresses (exit 78)
- Loopback exemption for 127.0.0.0/8 and ::1/128

## Files
- crates/pdftract-cli/src/mcp/auth.rs: Token resolution with priority order
- crates/pdftract-cli/src/mcp/bind.rs: TH-03 bind security check
- crates/pdftract-cli/src/mcp/server.rs: MCP server entry point
- crates/pdftract-cli/src/mcp/mod.rs: Module exports
- crates/pdftract-cli/src/main.rs: CLI arguments
- crates/pdftract-cli/Cargo.toml: Add secrecy, tempfile dependencies

## Acceptance Criteria
- ✅ --auth-token-file PATH flag implemented
- ✅ PDFTRACT_MCP_TOKEN env var resolved
- ✅ --auth-token VALUE rejected (exit 64) unless PDFTRACT_INSECURE_CLI_TOKEN=1
- ✅ mcp --bind ADDR with non-loopback ADDR and no token: aborts with exit 78
- ✅ mcp --bind ADDR with loopback ADDR and no token: succeeds
- ✅ mcp --bind ADDR with token: succeeds regardless of address
- ⏸️ Inspector token: Phase 7.9 (not yet implemented)
- ⏸️ TH-03 test: separate bead

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>

2026-05-18 02:47:54 -04:00

jedarden

633eba61b1

test(classifier): add 200-document labeled corpus for Phase 5.6

- Create tests/fixtures/classifier/ with 200 synthetic PDFs:
  - 50 invoices with bill-to/ship-to, item tables, totals
  - 50 scientific papers with abstracts, sections, references
  - 50 contracts with clauses, legal terminology, signatures
  - 50 misc documents (8 receipts, 8 forms, 7 bank statements,
    7 slide decks, 7 legal filings, 6 book excerpts, 7 magazines)

- Add MANIFEST.tsv mapping each document to its expected type
  with source URL and license (all MIT-0 synthetic data)

- Add scripts/generate_test_corpus.py to regenerate the corpus
  using reportlab for PDF generation

- Add tests/test_classifier_corpus.rs with validation harness:
  - test_corpus_manifest_validity: verifies manifest structure
    and file existence (PASSES)
  - test_classifier_corpus_accuracy: will validate precision/
    recall/F1 when classifier is implemented (SKIP for now)
  - test_classifier_reproducibility: will verify deterministic
    classification (SKIP for now)

- Add tests/fixtures/classifier/README.md documenting corpus
  structure, generation process, and acceptance criteria

Total corpus size: ~0.4 MB (each PDF < 5 KB)

Acceptance criteria (from plan.md Phase 5.6):
- Per-class precision and recall >= 0.85
- Macro-F1 >= 0.88
- Reproducibility: identical output for same document

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>

2026-05-17 07:16:02 -04:00

2 commits