Endpoints Catalogue Business
Le catalogue business expose les serveurs MCP deployables avec gestion du cycle de vie des conteneurs Podman.
Authentification
Tous les endpoints du catalogue business necessitent un token Bearer (Keycloak SSO).
Liste et recherche
| Methode | Endpoint | Description |
|---|---|---|
GET | /api/v1/mcp/catalog-business | Liste paginee avec filtres |
GET | /api/v1/mcp/catalog-business/stats | Statistiques agregees |
GET | /api/v1/mcp/catalog-business/:id | Detail d'un serveur |
GET /api/v1/mcp/catalog-business
Parametres de requete :
| Parametre | Type | Description |
|---|---|---|
sector | string | Filtrer par secteur (finance, sante, industrie, commerce, education, administration) |
category | string | Filtrer par categorie (erp, crm, analytics, communication, collaboration, security) |
euCompliant | boolean | Filtrer les serveurs conformes EU |
page | integer | Numero de page (defaut: 1) |
limit | integer | Resultats par page (defaut: 20) |
Reponse :
{
"data": [
{
"id": "odoo-eu",
"name": "Odoo Community",
"description": "ERP/CRM open-source",
"category": "erp",
"sector": ["commerce", "industrie"],
"image": "registry.chatbotaurus.eu/mcp-odoo-eu:latest",
"port": 8812,
"euCompliant": true,
"status": "available"
}
],
"pagination": {
"page": 1,
"limit": 20,
"total": 38
}
}
Cycle de vie des conteneurs
| Methode | Endpoint | Description |
|---|---|---|
POST | /api/v1/mcp/catalog-business/:id/deploy | Deployer un serveur (podman run) |
POST | /api/v1/mcp/catalog-business/:id/start | Demarrer un conteneur |
POST | /api/v1/mcp/catalog-business/:id/stop | Arreter un conteneur |
POST | /api/v1/mcp/catalog-business/:id/restart | Redemarrer un conteneur |
GET | /api/v1/mcp/catalog-business/:id/status | Statut du conteneur |
POST /api/v1/mcp/catalog-business/:id/deploy
Deploie un conteneur MCP via Podman sur le reseau mgaas-network. Un scan Trivy est execute automatiquement avant le deploiement. Les vulnerabilites CRITICAL bloquent le deploiement.
Body (optionnel) :
{
"profile": "business",
"env": {
"CUSTOM_VAR": "value"
}
}
Reponses :
200: Deploiement lance403: Scan Trivy CRITICAL, deploiement bloque404: Serveur non trouve dans le catalogue
Securite et secrets
| Methode | Endpoint | Description |
|---|---|---|
GET | /api/v1/mcp/catalog-business/:id/security | Rapport Trivy + SBOM |
POST | /api/v1/mcp/catalog-business/:id/secrets | Configurer secrets Vault |
GET /api/v1/mcp/catalog-business/:id/security
Retourne le dernier rapport de scan Trivy et le SBOM (Software Bill of Materials) au format SPDX.
{
"trivyScan": {
"date": "2026-02-23T10:00:00Z",
"vulnerabilities": {
"critical": 0,
"high": 1,
"medium": 3,
"low": 5
},
"status": "pass"
},
"sbom": {
"format": "spdx-json",
"packages": 142
}
}
POST /api/v1/mcp/catalog-business/:id/secrets
Les secrets sont stockes dans Vault (secret/data/mcp-servers/{id}), jamais en clair dans les reponses API.
Body :
{
"secrets": {
"API_KEY": "valeur-chiffree-en-transit",
"DB_PASSWORD": "valeur-chiffree-en-transit"
}
}
Profils de deploiement
| Methode | Endpoint | Description |
|---|---|---|
GET | /api/v1/mcp/catalog-business/profiles | Profils disponibles |
POST | /api/v1/mcp/catalog-business/profiles/:name/deploy | Deployer un profil complet |
Profils disponibles
| Profil | Serveurs | Usage |
|---|---|---|
starter | 5 | Demarrage rapide |
business | 12 | Utilisation complete |
enterprise | 38 | Tous les serveurs |
Monitoring
| Methode | Endpoint | Description |
|---|---|---|
GET | /api/v1/mcp/catalog-business/deployed | Serveurs deployes + sante |
Retourne la liste des serveurs actuellement deployes avec leur etat de sante (health check).