playground/docker-claude
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

feat(mcp): add GitHub, GitLab, Jira, and Confluence MCP servers

Browse source 
Install four MCP servers globally in the claude image:
  @modelcontextprotocol/server-github  → mcp-server-github
  @yoda.digital/gitlab-mcp-server      → gitlab-mcp-server
  @aashari/mcp-server-atlassian-jira   → mcp-atlassian-jira
  @aashari/mcp-server-atlassian-confluence → mcp-atlassian-confluence

Wire them in managed-settings.json via mcpServers with env var
pass-through. Jira and Confluence share ATLASSIAN_* credentials.
Add api.github.com, .gitlab.com, .atlassian.net to the squid
allowlist. All credentials are optional — servers are skipped
if the relevant env vars are unset.
This commit is contained in:
docker-claude 2026-04-14 23:09:42 +02:00
parent c65ed15653
commit e19d4eb0a3
5 changed files with 75 additions and 5 deletions
Download patch file Download diff file Expand all files Collapse all files

14
.env.example
View file

@ -25,3 +25,17 @@
# Required for ./claude.sh web # Required for ./claude.sh web
# WEBUI_USER=claude # WEBUI_USER=claude
# WEBUI_PASSWORD=changeme # WEBUI_PASSWORD=changeme
# ─── MCP servers (all optional) ───────────────────────────────────────────────
# GitHub — PAT with repo scope
# GITHUB_TOKEN=ghp_...
# GitLab — PAT with api scope; GITLAB_URL defaults to https://gitlab.com
# GITLAB_TOKEN=glpat_...
# GITLAB_URL=https://gitlab.com
# Jira + Confluence — shared Atlassian credentials
# ATLASSIAN_SITE_NAME=your-company # subdomain of .atlassian.net
# ATLASSIAN_USER_EMAIL=you@example.com
# ATLASSIAN_API_TOKEN=... # https://id.atlassian.com/manage-profile/security/api-tokens

7
claude/Dockerfile
View file

@ -18,6 +18,13 @@ COPY settings.json /etc/claude-code/managed-settings.json
# Install Claude Code globally # Install Claude Code globally
RUN npm install -g @anthropic-ai/claude-code RUN npm install -g @anthropic-ai/claude-code
# Install MCP servers globally — entry points land in /usr/local/lib/node_modules/
RUN npm install -g \
@modelcontextprotocol/server-github \
@yoda.digital/gitlab-mcp-server \
@aashari/mcp-server-atlassian-jira \
@aashari/mcp-server-atlassian-confluence
# Workspace and Claude config dir — owned by the built-in node user (uid 1000). # Workspace and Claude config dir — owned by the built-in node user (uid 1000).
# Pre-creating ~/.claude ensures the named volume is initialised with the # Pre-creating ~/.claude ensures the named volume is initialised with the
# correct ownership when first mounted (Docker copies image content into # correct ownership when first mounted (Docker copies image content into

41
claude/settings.json
View file

@ -1,10 +1,41 @@
{ {
"availableModels": ["sonnet", "opus", "haiku"], "availableModels": ["sonnet", "opus", "haiku"],
"permissions": { "permissions": {
"allow": [ "allow": ["Bash(*)", "Edit(*)", "Write(*)"],
"Bash(*)", "deny": ["Bash(curl *)", "Read(.*env*)"],
"Edit(*)", "env": {
"Write(*)" "CLAUDE_CODE_ENABLE_TELEMETRY": "0"
] }
},
"mcpServers": {
"github": {
"command": "mcp-server-github",
"env": {
"GITHUB_PERSONAL_ACCESS_TOKEN": "${GITHUB_TOKEN}"
}
},
"gitlab": {
"command": "gitlab-mcp-server",
"env": {
"GITLAB_PERSONAL_ACCESS_TOKEN": "${GITLAB_TOKEN}",
"GITLAB_URL": "${GITLAB_URL}"
}
},
"jira": {
"command": "mcp-atlassian-jira",
"env": {
"ATLASSIAN_SITE_NAME": "${ATLASSIAN_SITE_NAME}",
"ATLASSIAN_USER_EMAIL": "${ATLASSIAN_USER_EMAIL}",
"ATLASSIAN_API_TOKEN": "${ATLASSIAN_API_TOKEN}"
}
},
"confluence": {
"command": "mcp-atlassian-confluence",
"env": {
"ATLASSIAN_SITE_NAME": "${ATLASSIAN_SITE_NAME}",
"ATLASSIAN_USER_EMAIL": "${ATLASSIAN_USER_EMAIL}",
"ATLASSIAN_API_TOKEN": "${ATLASSIAN_API_TOKEN}"
}
}
} }
} }

14
docker-compose.yml
View file

@ -39,6 +39,13 @@ services:
- HTTPS_PROXY=http://proxy:3128 - HTTPS_PROXY=http://proxy:3128
- ALL_PROXY=http://proxy:3128 - ALL_PROXY=http://proxy:3128
- NO_PROXY=localhost,127.0.0.1 - NO_PROXY=localhost,127.0.0.1
# MCP server credentials — all optional; servers are skipped if unset
- GITHUB_TOKEN=${GITHUB_TOKEN:-}
- GITLAB_TOKEN=${GITLAB_TOKEN:-}
- GITLAB_URL=${GITLAB_URL:-https://gitlab.com}
- ATLASSIAN_SITE_NAME=${ATLASSIAN_SITE_NAME:-}
- ATLASSIAN_USER_EMAIL=${ATLASSIAN_USER_EMAIL:-}
- ATLASSIAN_API_TOKEN=${ATLASSIAN_API_TOKEN:-}
ports: ports:
# OAuth callback — required for browser-based login (claude login) # OAuth callback — required for browser-based login (claude login)
- "0.0.0.0:54545:54545" - "0.0.0.0:54545:54545"
@ -74,6 +81,13 @@ services:
- HTTPS_PROXY=http://proxy:3128 - HTTPS_PROXY=http://proxy:3128
- ALL_PROXY=http://proxy:3128 - ALL_PROXY=http://proxy:3128
- NO_PROXY=localhost,127.0.0.1 - NO_PROXY=localhost,127.0.0.1
# MCP server credentials — all optional; servers are skipped if unset
- GITHUB_TOKEN=${GITHUB_TOKEN:-}
- GITLAB_TOKEN=${GITLAB_TOKEN:-}
- GITLAB_URL=${GITLAB_URL:-https://gitlab.com}
- ATLASSIAN_SITE_NAME=${ATLASSIAN_SITE_NAME:-}
- ATLASSIAN_USER_EMAIL=${ATLASSIAN_USER_EMAIL:-}
- ATLASSIAN_API_TOKEN=${ATLASSIAN_API_TOKEN:-}
- WEBUI_USER=${WEBUI_USER:-claude} - WEBUI_USER=${WEBUI_USER:-claude}
- WEBUI_PASSWORD=${WEBUI_PASSWORD:-} - WEBUI_PASSWORD=${WEBUI_PASSWORD:-}
- WEBUI_PORT=7681 - WEBUI_PORT=7681

4
proxy/squid.conf
View file

@ -28,6 +28,10 @@ acl allowed_sites dstdomain api.anthropic.com
acl allowed_sites dstdomain statsig.anthropic.com acl allowed_sites dstdomain statsig.anthropic.com
acl allowed_sites dstdomain localhost acl allowed_sites dstdomain localhost
acl allowed_sites dstdomain .local acl allowed_sites dstdomain .local
# MCP servers
acl allowed_sites dstdomain api.github.com
acl allowed_sites dstdomain .gitlab.com
acl allowed_sites dstdomain .atlassian.net
# ─── Access rules ───────────────────────────────────────────────────────────── # ─── Access rules ─────────────────────────────────────────────────────────────
# Block requests to non-standard ports # Block requests to non-standard ports