feat(server): add HTTPS support

- Implement OpenSSL-based HTTPS transport protocol
- Add SSL certificate and private key file configuration
- Update config file structure with HTTPS related options
- Optimize server initialization flow to support HTTPS service
- todo:fix the Https SSL problems in next release version

Author: caomengxuan666

CMakeLists.txt

@@ -14,6 +14,7 @@ set(CMAKE_RUNTIME_OUTPUT_DIRECTORY ${CMAKE_BINARY_DIR}/bin)
 
 include(cmake/PluginCommon.cmake)
 include(cmake/CopyIniConfig.cmake)
+include(cmake/FindMCPOpenSSL.cmake)
 copy_ini_config()
 
 set(PROJECT_VERSION_MAJOR ${${PROJECT_NAME}_VERSION_MAJOR} CACHE STRING "Major version number")
@@ -48,6 +49,8 @@ add_executable(mcp-server++ src/main.cpp)
 add_compile_definitions(NOMINMAX)
 add_compile_definitions(WIN32_LEAN_AND_MEAN)
 
+include_directories(include)
+
 # header directories
 target_include_directories(mcp-server++ PRIVATE
     ${CMAKE_CURRENT_SOURCE_DIR}/src
@@ -96,6 +99,7 @@ if(UNIX)
         mcp_protocol
         -Wl,--end-group
         mcp_plugin_sdk
+        MCP::OpenSSL
     )
 else()
     target_link_libraries(mcp-server++ PRIVATE
@@ -104,6 +108,7 @@ else()
         mcp_transport
         mcp_protocol
         mcp_plugin_sdk
+        MCP::OpenSSL
     )
 endif()
 

README.md

@@ -35,6 +35,12 @@ The server implements the JSON-RPC 2.0 protocol over HTTP transport and supports
 
 ## Features
 
+- Full implementation of the Model Communication Protocol (MCP)
+- JSON-RPC 2.0 over HTTP/HTTPS transport
+- Plugin system for extending functionality
+- Built-in tools (echo, file operations, HTTP requests, system commands)
+- Streaming responses with Server-Sent Events (SSE)
+- Comprehensive logging and error handling
 - 🚀 **High Performance**: Built with C++20 and optimized with mimalloc for superior performance
 - 🔌 **Plugin System**: Extensible architecture with dynamic plugin loading
 - 🌐 **HTTP Transport**: Full HTTP/1.1 support with SSE streaming capabilities
@@ -205,7 +211,7 @@ The server implements the JSON-RPC 2.0 protocol over HTTP. All requests should b
 
 ### Example Request
 
-```json
+``json
 {
   "jsonrpc": "2.0",
   "id": 1,
@@ -216,7 +222,7 @@ The server implements the JSON-RPC 2.0 protocol over HTTP. All requests should b
 
 ### Example Response
 
-```json
+``json
 {
   "jsonrpc": "2.0",
   "id": 1,
@@ -282,4 +288,28 @@ This project is licensed under the MIT License - see the [LICENSE](LICENSE) file
 <div align="center">
   <p>Built with ❤️ for the AI community</p>
   <p><a href="https://github.com/caomengxuan666/MCPServer.cpp">GitHub</a> | <a href=https://github.com/caomengxuan666/MCPServer.cpp/issues>Issues</a></p>
-</div>
+</div>
+```
+
+## SSL/TLS Support (HTTPS)
+
+MCPServer++ now supports HTTPS connections for secure communication. To enable HTTPS, you need to:
+
+1. Generate SSL certificate and private key files
+2. Configure the server to use these files
+
+Example using OpenSSL to generate self-signed certificates:
+```bash
+openssl req -x509 -newkey rsa:4096 -keyout server.key -out server.crt -days 365 -nodes
+```
+
+Then configure the server in the config.ini file:
+```ini
+[server]
+https_enabled = true
+https_port = 6667
+ssl_cert_file = server.crt
+ssl_private_key_file = server.key
+```
+
+The server will then listen on both HTTP (port 6666) and HTTPS (port 6667) endpoints, allowing clients to choose their preferred connection method.

README_zh.md

@@ -16,7 +16,7 @@
 ## 目录
 
 - [简介](#简介)
-- [特性](#特性)
+- [功能特性](#功能特性)
 - [架构](#架构)
 - [快速开始](#快速开始)
 - [从源码构建](#从源码构建)
@@ -33,18 +33,37 @@ MCPServer.cpp 是一个使用现代 C++ 编写的高性能、跨平台的模型
 
 该服务器通过 HTTP 传输实现了 JSON-RPC 2.0 协议，并支持常规请求-响应和服务器发送事件（SSE）流式传输，以实现实时通信。
 
-## 特性
+## 功能特性
 
-- 🚀 **高性能**: 使用 C++20 构建，并通过 mimalloc 优化性能
-- 🔌 **插件系统**: 可扩展的架构，支持动态插件加载
-- 🌐 **HTTP 传输**: 完整的 HTTP/1.1 支持，具备 SSE 流式传输能力
-- 📦 **JSON-RPC 2.0**: 完整实现了 JSON-RPC 2.0 规范
-- 🛠️ **内置工具**: 包含文件操作、HTTP 请求和系统命令
-- 🧠 **AI 模型就绪**: 专为 AI 模型集成而设计
-- 🔄 **异步 I/O**: 基于 ASIO 实现高效的并发处理
-- 📊 **日志**: 使用 spdlog 实现全面的日志记录
-- 📈 **可扩展**: 多线程架构，可处理并发请求
-- 🌍 **跨平台**: 支持 Windows、Linux 和 macOS
+- 完整实现模型通信协议（MCP）
+- 基于 HTTP/HTTPS 的 JSON-RPC 2.0 传输协议
+- 插件系统，可扩展功能
+- 内置工具（echo、文件操作、HTTP请求、系统命令）
+- 使用服务器发送事件（SSE）的流式响应
+- 全面的日志记录和错误处理
+
+### SSL/TLS 支持（HTTPS）
+
+MCPServer++ 现在支持 HTTPS 连接以实现安全通信。要启用 HTTPS，您需要：
+
+1. 生成 SSL 证书和私钥文件
+2. 配置服务器使用这些文件
+
+使用 OpenSSL 生成自签名证书的示例：
+```bash
+openssl req -x509 -newkey rsa:4096 -keyout server.key -out server.crt -days 365 -nodes
+```
+
+然后在 config.ini 文件中配置服务器：
+```ini
+[server]
+https_enabled = true
+https_port = 6667
+ssl_cert_file = server.crt
+ssl_private_key_file = server.key
+```
+
+服务器将同时监听 HTTP（端口 6666）和 HTTPS（端口 6667）端点，允许客户端选择其首选的连接方式。
 
 ## 架构
 
@@ -205,7 +224,7 @@ MCPServer.cpp 支持强大的插件系统，允许在不修改核心服务器的
 
 ### 请求示例
 
-```json
+``json
 {
   "jsonrpc": "2.0",
   "id": 1,
@@ -216,7 +235,7 @@ MCPServer.cpp 支持强大的插件系统，允许在不修改核心服务器的
 
 ### 响应示例
 
-```json
+``json
 {
   "jsonrpc": "2.0",
   "id": 1,

certs/server.crt

@@ -0,0 +1,18 @@
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----

certs/server.key

@@ -0,0 +1,28 @@
+-----BEGIN PRIVATE KEY-----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+-----END PRIVATE KEY-----

cmake/FindMCPOpenSSL.cmake

@@ -0,0 +1,94 @@
+# FindMCPOpenSSL.cmake - Cross-platform OpenSSL resolver with Windows fallback
+#
+# Behavior:
+# 1. First tries system/vcpkg OpenSSL via find_package
+# 2. On Windows only, falls back to project-local libraries if not found
+# 3. Fails immediately if OpenSSL cannot be resolved
+#
+# Usage:
+# include(FindMCPOpenSSL)
+# target_link_libraries(your_target PRIVATE MCP::OpenSSL)
+
+include_guard(GLOBAL)
+
+# --- Phase 1: Primary detection via find_package ---
+find_package(OpenSSL QUIET)
+
+if(OPENSSL_FOUND)
+    message(STATUS "Found system OpenSSL: ${OPENSSL_VERSION}")
+    add_library(MCP::OpenSSL INTERFACE IMPORTED)
+    target_link_libraries(MCP::OpenSSL INTERFACE OpenSSL::SSL OpenSSL::Crypto)
+    return()
+endif()
+
+# --- Phase 2: Windows-specific fallback to local libraries ---
+if(WIN32 AND NOT OPENSSL_FOUND)
+    message(STATUS "Using project-local OpenSSL libraries")
+
+    # Configure paths based on build type
+    set(MCP_OPENSSL_ROOT "${CMAKE_SOURCE_DIR}/lib")
+
+    if(CMAKE_BUILD_TYPE STREQUAL "Debug")
+        set(OPENSSL_LIB_DIR "${MCP_OPENSSL_ROOT}/Debug")
+    else()
+        set(OPENSSL_LIB_DIR "${MCP_OPENSSL_ROOT}/Release")
+    endif()
+
+    # Verify files exist (both .lib and .dll)
+    set(REQUIRED_LIBS
+        "${OPENSSL_LIB_DIR}/libssl.lib"
+        "${OPENSSL_LIB_DIR}/libcrypto.lib"
+    )
+    set(REQUIRED_DLLS
+        "${OPENSSL_LIB_DIR}/libssl-3-x64.dll"
+        "${OPENSSL_LIB_DIR}/libcrypto-3-x64.dll"
+    )
+
+    foreach(LIB ${REQUIRED_LIBS})
+        if(NOT EXISTS ${LIB})
+            message(FATAL_ERROR "Missing OpenSSL library: ${LIB}")
+        endif()
+    endforeach()
+
+    foreach(DLL ${REQUIRED_DLLS})
+        if(NOT EXISTS ${DLL})
+            message(FATAL_ERROR "Missing OpenSSL DLL: ${DLL}")
+        endif()
+    endforeach()
+
+    # Create imported target for static linking
+    add_library(MCP::OpenSSL STATIC IMPORTED)
+    set_target_properties(MCP::OpenSSL PROPERTIES
+        IMPORTED_LOCATION "${OPENSSL_LIB_DIR}/libssl.lib"
+        INTERFACE_LINK_LIBRARIES "${OPENSSL_LIB_DIR}/libcrypto.lib"
+        INTERFACE_INCLUDE_DIRECTORIES "${MCP_OPENSSL_ROOT}/include"
+    )
+
+    # Copy DLLs to output directory
+    add_custom_command(TARGET your_target POST_BUILD
+        COMMAND ${CMAKE_COMMAND} -E copy
+        ${REQUIRED_DLLS}
+        $<TARGET_FILE_DIR:your_target>
+        COMMENT "Copying OpenSSL DLLs to output directory"
+    )
+
+    message(STATUS "Using OpenSSL libraries from: ${OPENSSL_LIB_DIR}")
+    set(OPENSSL_FOUND TRUE)
+    return()
+endif()
+
+# --- Phase 3: Non-Windows systems must have OpenSSL ---
+if((UNIX OR APPLE) AND NOT OPENSSL_FOUND)
+    message(FATAL_ERROR
+        "OpenSSL is required but not found. Install with:\n"
+        "  Linux: sudo apt install libssl-dev\n"
+        "  macOS: brew install openssl"
+    )
+endif()
+
+# --- Final fallthrough error ---
+if(NOT OPENSSL_FOUND)
+    message(FATAL_ERROR
+        "OpenSSL setup failed. This is a workflow-critical dependency."
+    )
+endif()

config.ini

@@ -7,6 +7,10 @@ title=MCP Server Configuration
 ip=0.0.0.0
 ;Network port for incoming connections
 port=6666
+;HTTP transport port (set to 0 to disable HTTP)
+http_port=6666
+;HTTPS transport port (set to 0 to disable HTTPS)
+https_port=6667
 ;Logging severity (trace, debug, info, warn, error)
 log_level=trace
 ;Filesystem path for log storage
@@ -20,4 +24,10 @@ plugin_dir=plugins
 ;Enable stdio transport (1=enable, 0=disable)
 enable_stdio=1
 ;Enable HTTP transport (1=enable, 0=disable)
-enable_streamable_http=1
+enable_http=1
+;Enable HTTPS transport (1=enable, 0=disable)
+enable_https=1
+;SSL certificate file path (required for HTTPS)
+ssl_cert_file=certs/server.crt
+;SSL private key file path (required for HTTPS)
+ssl_key_file=certs/server.key