github-starred/open-webui
2
0
Fork 0
mirror of https://github.com/open-webui/open-webui.git synced 2026-03-09 23:35:09 -05:00
Code Issues 308 Packages Projects Releases 100 Wiki Activity

feat: Enable per-user authentication in MCP for personalized tool access or consider implementing a proper MCP Client #5262

New Issue
Closed
opened 2025-11-11 16:15:51 -06:00 by GiteaMirror · 0 comments
GiteaMirror commented 2025-11-11 16:15:51 -06:00
Owner
Copy Link

Originally created by @florianchappaz on GitHub (May 21, 2025).

Check Existing Issues

  • I have searched the existing issues and discussions.

Problem Description

Hi team,

Atlassian recently released their Remote MCP Server, which uses OAuth authentication and ensures that users only access the Atlassian data they are permitted to see. This is a significant improvement for privacy and security, and it enables each user to connect their own Atlassian account when using AI tools.

However, when integrating this with OpenWebUI via the mcpo server, there is a limitation: the authentication workflow for Atlassian's Remote MCP is triggered at the server level when the MCP client starts. This means a single MCP client instance is shared across all OpenWebUI users, resulting in a shared authentication context. As a result, it is not possible for each user to authenticate with their own Atlassian account and access only their own data.

This architecture prevents leveraging the per-user authentication and access controls that Atlassian's Remote MCP Server is designed to provide.

With the rise of remote MCP servers from major vendors, some of the arguments in OpenWebUI's FAQ for preferring OpenAPI over MCP—such as authentication and security limitations—are becoming outdated. The new remote MCP approach offers robust, standards-based authentication and user isolation, which are essential for enterprise deployments.

Desired Solution you'd like

Please consider updating OpenWebUI and/or mcpo to support a per-user MCP client model. Ideally, each OpenWebUI user session should be able to initiate its own authentication flow with the Atlassian Remote MCP Server, so that users can access their own Atlassian data securely and privately. This would align OpenWebUI with the latest capabilities of remote MCP servers and meet enterprise security requirements.

Alternatives Considered

No response

Additional Context

I hesitated a bit creating the ticket here or in the mcpo repo, but I think there is an important architectural choice to make here.

It is an opportunity to question the previous reasons to privilege OpenAPI over MCP, and even consider the implementation of a proper MCP client in OpenWebUI.

Thank you!

Originally created by @florianchappaz on GitHub (May 21, 2025). ### Check Existing Issues - [x] I have searched the existing issues and discussions. ### Problem Description Hi team, Atlassian recently released their [Remote MCP Server](https://community.atlassian.com/forums/Atlassian-Platform-articles/Atlassian-Remote-MCP-Server-beta-now-available-for-desktop/ba-p/3022084), which uses OAuth authentication and ensures that users only access the Atlassian data they are permitted to see. This is a significant improvement for privacy and security, and it enables each user to connect their own Atlassian account when using AI tools. However, when integrating this with OpenWebUI via the mcpo server, there is a limitation: the authentication workflow for Atlassian's Remote MCP is triggered at the server level when the MCP client starts. This means a single MCP client instance is shared across all OpenWebUI users, resulting in a shared authentication context. As a result, it is not possible for each user to authenticate with their own Atlassian account and access only their own data. This architecture prevents leveraging the per-user authentication and access controls that Atlassian's Remote MCP Server is designed to provide. With the rise of remote MCP servers from major vendors, some of the arguments in [OpenWebUI's FAQ](https://docs.openwebui.com/openapi-servers/faq/#-q-why-choose-openapi-over-mcp) for preferring OpenAPI over MCP—such as authentication and security limitations—are becoming outdated. The new remote MCP approach offers robust, standards-based authentication and user isolation, which are essential for enterprise deployments. ### Desired Solution you'd like Please consider updating OpenWebUI and/or mcpo to support a per-user MCP client model. Ideally, each OpenWebUI user session should be able to initiate its own authentication flow with the Atlassian Remote MCP Server, so that users can access their own Atlassian data securely and privately. This would align OpenWebUI with the latest capabilities of remote MCP servers and meet enterprise security requirements. ### Alternatives Considered _No response_ ### Additional Context I hesitated a bit creating the ticket here or in the mcpo repo, but I think there is an important architectural choice to make here. It is an opportunity to question the previous reasons to privilege OpenAPI over MCP, and even consider the implementation of a proper MCP client in OpenWebUI. Thank you!
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
Labels
Clear labels
bug
core
documentation
enhancement
good first issue
help wanted
non-core
pull-request
Mirrored from GitHub Pull Request
 python
question
testing wanted
No Label
Milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
GiteaMirror ninjasurge
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: github-starred/open-webui#5262
Delete Branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?