mirror of
https://github.com/BillyOutlast/sec-mcp.git
synced 2026-07-01 12:50:00 -04:00
2.6 KiB
2.6 KiB
Open WebUI MCP Setup Guide
This stack exposes MCP servers through mcpo as OpenAPI endpoints.
mcpoURL from host:http://localhost:8000mcpoURL from inside Docker network (Open WebUI):http://mcpo:8000
1) Start the stack
docker compose up -d --build
For AMD GPU Ollama (Linux ROCm hosts):
docker compose -f docker-compose.yml -f docker-compose.ollama-amd.yml up -d --build
2) Open Open WebUI
- Open:
http://localhost:3000 - Create/sign in to your admin account.
3) Add MCP tools via OpenAPI servers
In Open WebUI, navigate to the OpenAPI server management screen (label can vary by version, typically under Admin/Settings/Tools/Integrations).
Add one OpenAPI server per MCP route from mcpo.
Suggested entries:
- Name:
triv3-kali-server- OpenAPI URL:
http://mcpo:8000/triv3-kali-server/openapi.json
- OpenAPI URL:
- Name:
k3nn3dy-kali-mcp- OpenAPI URL:
http://mcpo:8000/k3nn3dy-kali-mcp/openapi.json
- OpenAPI URL:
- Name:
metasploit-mcp- OpenAPI URL:
http://mcpo:8000/metasploit-mcp/openapi.json
- OpenAPI URL:
- Name:
mcp-zap-server- OpenAPI URL:
http://mcpo:8000/mcp-zap-server/openapi.json
- OpenAPI URL:
- Name:
nvd-cve-mcp-server- OpenAPI URL:
http://mcpo:8000/nvd-cve-mcp-server/openapi.json
- OpenAPI URL:
- Name:
markdownify-mcp- OpenAPI URL:
http://mcpo:8000/markdownify-mcp/openapi.json
- OpenAPI URL:
If your Open WebUI is outside Docker, use http://localhost:8000/.../openapi.json instead.
4) Authentication (if enabled)
mcpo is configured with API key auth (MCPO_API_KEY).
If Open WebUI asks for headers for an OpenAPI server, add:
- Header:
Authorization - Value:
Bearer <MCPO_API_KEY>
or
- Header:
X-API-Key - Value:
<MCPO_API_KEY>
Use whichever your Open WebUI version expects for OpenAPI auth headers.
5) Validate each server
From host browser:
http://localhost:8000/docshttp://localhost:8000/triv3-kali-server/docshttp://localhost:8000/k3nn3dy-kali-mcp/docshttp://localhost:8000/metasploit-mcp/docshttp://localhost:8000/mcp-zap-server/docshttp://localhost:8000/nvd-cve-mcp-server/docshttp://localhost:8000/markdownify-mcp/docs
If these are reachable, Open WebUI can import them.
Troubleshooting
- OpenAPI URL fails in Open WebUI container:
- Use
http://mcpo:8000/...(notlocalhost) when Open WebUI runs in Docker.
- Use
- Empty tools after import:
- Check
mcpologs:docker compose logs -f mcpo
- Check
- ZAP tools fail auth:
- Verify
.envvalues forMCP_ZAP_API_KEYandZAP_API_KEY.
- Verify
- Markdown file retrieval blocked:
- Verify
MD_SHARE_DIRin.envand ensure files are in that directory.
- Verify