manusa
diff --git a/‎README.md
+5-4 b/‎README.md
+5-4
diff --git a/‎pkg/kubernetes-mcp-server/cmd/root.go
+4-1 b/‎pkg/kubernetes-mcp-server/cmd/root.go
+4-1
diff --git a/‎pkg/kubernetes/configuration.go
+53-7 b/‎pkg/kubernetes/configuration.go
+53-7
diff --git a/‎pkg/kubernetes/configuration_test.go
+134 b/‎pkg/kubernetes/configuration_test.go
+134
diff --git a/‎pkg/kubernetes/kubernetes.go
+19-45 b/‎pkg/kubernetes/kubernetes.go
+19-45
@@ -130,10 +130,11 @@ npx kubernetes-mcp-server@latest --help
 
 ### Configuration Options
 
-| Option        | Description                                                                                                                                                                                                                                                                                   |
-|---------------|-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
-| `--sse-port`  | Starts the MCP server in Server-Sent Event (SSE) mode and listens on the specified port.                                                                                                                                                                                                      |
-| `--log-level` | Sets the logging level (values [from 0-9](https://github.com/kubernetes/community/blob/master/contributors/devel/sig-instrumentation/logging.md)). Similar to [kubectl logging levels](https://kubernetes.io/docs/reference/kubectl/quick-reference/#kubectl-output-verbosity-and-debugging). |
+| Option         | Description                                                                                                                                                                                                                                                                                   |
+|----------------|-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
+| `--sse-port`   | Starts the MCP server in Server-Sent Event (SSE) mode and listens on the specified port.                                                                                                                                                                                                      |
+| `--log-level`  | Sets the logging level (values [from 0-9](https://github.com/kubernetes/community/blob/master/contributors/devel/sig-instrumentation/logging.md)). Similar to [kubectl logging levels](https://kubernetes.io/docs/reference/kubectl/quick-reference/#kubectl-output-verbosity-and-debugging). |
+| `--kubeconfig` | Path to the Kubernetes configuration file. If not provided, it will try to resolve the configuration (in-cluster, default location, etc.).                                                                                                                                                    |
 
 ## 🛠️ Tools <a id="tools"></a>
 
 
@@ -45,7 +45,9 @@ Kubernetes Model Context Protocol (MCP) server
 			fmt.Println(version.Version)
 			return
 		}
-		mcpServer, err := mcp.NewSever()
+		mcpServer, err := mcp.NewSever(mcp.Configuration{
+			Kubeconfig: viper.GetString("kubeconfig"),
+		})
 		if err != nil {
 			fmt.Printf("Failed to initialize MCP server: %v\n", err)
 			os.Exit(1)
@@ -73,6 +75,7 @@ func init() {
 	rootCmd.Flags().IntP("log-level", "", 0, "Set the log level (from 0 to 9)")
 	rootCmd.Flags().IntP("sse-port", "", 0, "Start a SSE server on the specified port")
 	rootCmd.Flags().StringP("sse-base-url", "", "", "SSE public base URL to use when sending the endpoint message (e.g. https://example.com)")
+	rootCmd.Flags().StringP("kubeconfig", "", "", "Path to the kubeconfig file to use for authentication")
 	_ = viper.BindPFlags(rootCmd.Flags())
 }
 
 
@@ -1,29 +1,75 @@
 package kubernetes
 
 import (
+	"k8s.io/client-go/rest"
+	"k8s.io/client-go/tools/clientcmd"
 	clientcmdapi "k8s.io/client-go/tools/clientcmd/api"
 	"k8s.io/client-go/tools/clientcmd/api/latest"
 )
 
-func ConfigurationView(minify bool) (string, error) {
+// InClusterConfig is a variable that holds the function to get the in-cluster config
+// Exposed for testing
+var InClusterConfig = func() (*rest.Config, error) {
+	// TODO use kubernetes.default.svc instead of resolved server
+	// Currently running into: `http: server gave HTTP response to HTTPS client`
+	inClusterConfig, err := rest.InClusterConfig()
+	if inClusterConfig != nil {
+		inClusterConfig.Host = "https://kubernetes.default.svc"
+	}
+	return inClusterConfig, err
+}
+
+// resolveKubernetesConfigurations resolves the required kubernetes configurations and sets them in the Kubernetes struct
+func resolveKubernetesConfigurations(kubernetes *Kubernetes) error {
+	// Always set clientCmdConfig
+	pathOptions := clientcmd.NewDefaultPathOptions()
+	if kubernetes.Kubeconfig != "" {
+		pathOptions.LoadingRules.ExplicitPath = kubernetes.Kubeconfig
+	}
+	kubernetes.clientCmdConfig = clientcmd.NewNonInteractiveDeferredLoadingClientConfig(
+		&clientcmd.ClientConfigLoadingRules{ExplicitPath: pathOptions.GetDefaultFilename()},
+		&clientcmd.ConfigOverrides{ClusterInfo: clientcmdapi.Cluster{Server: ""}})
+	var err error
+	if kubernetes.IsInCluster() {
+		kubernetes.cfg, err = InClusterConfig()
+		if err == nil && kubernetes.cfg != nil {
+			return nil
+		}
+	}
+	// Out of cluster
+	kubernetes.cfg, err = kubernetes.clientCmdConfig.ClientConfig()
+	if kubernetes.cfg != nil && kubernetes.cfg.UserAgent == "" {
+		kubernetes.cfg.UserAgent = rest.DefaultKubernetesUserAgent()
+	}
+	return err
+}
+
+func (k *Kubernetes) IsInCluster() bool {
+	if k.Kubeconfig != "" {
+		return false
+	}
+	cfg, err := InClusterConfig()
+	return err == nil && cfg != nil
+}
+
+func (k *Kubernetes) ConfigurationView(minify bool) (string, error) {
 	var cfg clientcmdapi.Config
 	var err error
-	inClusterConfig, err := InClusterConfig()
-	if err == nil && inClusterConfig != nil {
+	if k.IsInCluster() {
 		cfg = *clientcmdapi.NewConfig()
 		cfg.Clusters["cluster"] = &clientcmdapi.Cluster{
-			Server:                inClusterConfig.Host,
-			InsecureSkipTLSVerify: inClusterConfig.Insecure,
+			Server:                k.cfg.Host,
+			InsecureSkipTLSVerify: k.cfg.Insecure,
 		}
 		cfg.AuthInfos["user"] = &clientcmdapi.AuthInfo{
-			Token: inClusterConfig.BearerToken,
+			Token: k.cfg.BearerToken,
 		}
 		cfg.Contexts["context"] = &clientcmdapi.Context{
 			Cluster:  "cluster",
 			AuthInfo: "user",
 		}
 		cfg.CurrentContext = "context"
-	} else if cfg, err = resolveConfig().RawConfig(); err != nil {
+	} else if cfg, err = k.clientCmdConfig.RawConfig(); err != nil {
 		return "", err
 	}
 	if minify {
 
@@ -0,0 +1,134 @@
+package kubernetes
+
+import (
+	"errors"
+	"k8s.io/client-go/rest"
+	"os"
+	"path"
+	"strings"
+	"testing"
+)
+
+func TestKubernetes_IsInCluster(t *testing.T) {
+	t.Run("with explicit kubeconfig", func(t *testing.T) {
+		k := Kubernetes{
+			Kubeconfig: "kubeconfig",
+		}
+		if k.IsInCluster() {
+			t.Errorf("expected not in cluster, got in cluster")
+		}
+	})
+	t.Run("with empty kubeconfig and in cluster", func(t *testing.T) {
+		originalFunction := InClusterConfig
+		InClusterConfig = func() (*rest.Config, error) {
+			return &rest.Config{}, nil
+		}
+		defer func() {
+			InClusterConfig = originalFunction
+		}()
+		k := Kubernetes{
+			Kubeconfig: "",
+		}
+		if !k.IsInCluster() {
+			t.Errorf("expected in cluster, got not in cluster")
+		}
+	})
+	t.Run("with empty kubeconfig and not in cluster (empty)", func(t *testing.T) {
+		originalFunction := InClusterConfig
+		InClusterConfig = func() (*rest.Config, error) {
+			return nil, nil
+		}
+		defer func() {
+			InClusterConfig = originalFunction
+		}()
+		k := Kubernetes{
+			Kubeconfig: "",
+		}
+		if k.IsInCluster() {
+			t.Errorf("expected not in cluster, got in cluster")
+		}
+	})
+	t.Run("with empty kubeconfig and not in cluster (error)", func(t *testing.T) {
+		originalFunction := InClusterConfig
+		InClusterConfig = func() (*rest.Config, error) {
+			return nil, errors.New("error")
+		}
+		defer func() {
+			InClusterConfig = originalFunction
+		}()
+		k := Kubernetes{
+			Kubeconfig: "",
+		}
+		if k.IsInCluster() {
+			t.Errorf("expected not in cluster, got in cluster")
+		}
+	})
+}
+
+func TestKubernetes_ResolveKubernetesConfigurations_Explicit(t *testing.T) {
+	t.Run("with missing file", func(t *testing.T) {
+		tempDir := t.TempDir()
+		k := Kubernetes{Kubeconfig: path.Join(tempDir, "config")}
+		err := resolveKubernetesConfigurations(&k)
+		if err == nil {
+			t.Errorf("expected error, got nil")
+		}
+		if !errors.Is(err, os.ErrNotExist) {
+			t.Errorf("expected file not found error, got %v", err)
+		}
+		if !strings.HasSuffix(err.Error(), ": no such file or directory") {
+			t.Errorf("expected file not found error, got %v", err)
+		}
+	})
+	t.Run("with empty file", func(t *testing.T) {
+		tempDir := t.TempDir()
+		kubeconfigPath := path.Join(tempDir, "config")
+		if err := os.WriteFile(kubeconfigPath, []byte(""), 0644); err != nil {
+			t.Fatalf("failed to create kubeconfig file: %v", err)
+		}
+		k := Kubernetes{Kubeconfig: kubeconfigPath}
+		err := resolveKubernetesConfigurations(&k)
+		if err == nil {
+			t.Errorf("expected error, got nil")
+		}
+		if !strings.Contains(err.Error(), "no configuration has been provided") {
+			t.Errorf("expected no kubeconfig error, got %v", err)
+		}
+	})
+	t.Run("with valid file", func(t *testing.T) {
+		tempDir := t.TempDir()
+		kubeconfigPath := path.Join(tempDir, "config")
+		kubeconfigContent := `
+apiVersion: v1
+kind: Config
+clusters:
+- cluster:
+    server: https://example.com
+  name: example-cluster
+contexts:
+- context:
+    cluster: example-cluster
+    user: example-user
+  name: example-context
+current-context: example-context
+users:
+- name: example-user
+  user:
+    token: example-token
+`
+		if err := os.WriteFile(kubeconfigPath, []byte(kubeconfigContent), 0644); err != nil {
+			t.Fatalf("failed to create kubeconfig file: %v", err)
+		}
+		k := Kubernetes{Kubeconfig: kubeconfigPath}
+		err := resolveKubernetesConfigurations(&k)
+		if err != nil {
+			t.Fatalf("expected no error, got %v", err)
+		}
+		if k.cfg == nil {
+			t.Errorf("expected non-nil config, got nil")
+		}
+		if k.cfg.Host != "https://example.com" {
+			t.Errorf("expected host https://example.com, got %s", k.cfg.Host)
+		}
+	})
+}
@@ -12,27 +12,16 @@ import (
 	"k8s.io/client-go/rest"
 	"k8s.io/client-go/restmapper"
 	"k8s.io/client-go/tools/clientcmd"
-	clientcmdapi "k8s.io/client-go/tools/clientcmd/api"
 	"sigs.k8s.io/yaml"
 )
 
-// InClusterConfig is a variable that holds the function to get the in-cluster config
-// Exposed for testing
-var InClusterConfig = func() (*rest.Config, error) {
-	// TODO use kubernetes.default.svc instead of resolved server
-	// Currently running into: `http: server gave HTTP response to HTTPS client`
-	inClusterConfig, err := rest.InClusterConfig()
-	if inClusterConfig != nil {
-		inClusterConfig.Host = "https://kubernetes.default.svc"
-	}
-	return inClusterConfig, err
-}
-
 type CloseWatchKubeConfig func() error
 
 type Kubernetes struct {
+	// Kubeconfig path override
+	Kubeconfig                  string
 	cfg                         *rest.Config
-	kubeConfigFiles             []string
+	clientCmdConfig             clientcmd.ClientConfig
 	CloseWatchKubeConfig        CloseWatchKubeConfig
 	scheme                      *runtime.Scheme
 	parameterCodec              runtime.ParameterCodec
@@ -42,14 +31,14 @@ type Kubernetes struct {
 	dynamicClient               *dynamic.DynamicClient
 }
 
-func NewKubernetes() (*Kubernetes, error) {
-	k8s := &Kubernetes{}
-	var err error
-	k8s.cfg, err = resolveClientConfig()
-	if err != nil {
+func NewKubernetes(kubeconfig string) (*Kubernetes, error) {
+	k8s := &Kubernetes{
+		Kubeconfig: kubeconfig,
+	}
+	if err := resolveKubernetesConfigurations(k8s); err != nil {
 		return nil, err
 	}
-	k8s.kubeConfigFiles = resolveConfig().ConfigAccess().GetLoadingPrecedence()
+	var err error
 	k8s.clientSet, err = kubernetes.NewForConfig(k8s.cfg)
 	if err != nil {
 		return nil, err
@@ -72,14 +61,18 @@ func NewKubernetes() (*Kubernetes, error) {
 }
 
 func (k *Kubernetes) WatchKubeConfig(onKubeConfigChange func() error) {
-	if len(k.kubeConfigFiles) == 0 {
+	if k.clientCmdConfig == nil {
+		return
+	}
+	kubeConfigFiles := k.clientCmdConfig.ConfigAccess().GetLoadingPrecedence()
+	if len(kubeConfigFiles) == 0 {
 		return
 	}
 	watcher, err := fsnotify.NewWatcher()
 	if err != nil {
 		return
 	}
-	for _, file := range k.kubeConfigFiles {
+	for _, file := range kubeConfigFiles {
 		_ = watcher.Add(file)
 	}
 	go func() {
@@ -131,35 +124,16 @@ func marshal(v any) (string, error) {
 	return string(ret), nil
 }
 
-func resolveConfig() clientcmd.ClientConfig {
-	pathOptions := clientcmd.NewDefaultPathOptions()
-	return clientcmd.NewNonInteractiveDeferredLoadingClientConfig(
-		&clientcmd.ClientConfigLoadingRules{ExplicitPath: pathOptions.GetDefaultFilename()},
-		&clientcmd.ConfigOverrides{ClusterInfo: clientcmdapi.Cluster{Server: ""}})
-}
-
-func resolveClientConfig() (*rest.Config, error) {
-	inClusterConfig, err := InClusterConfig()
-	if err == nil && inClusterConfig != nil {
-		return inClusterConfig, nil
-	}
-	cfg, err := resolveConfig().ClientConfig()
-	if cfg != nil && cfg.UserAgent == "" {
-		cfg.UserAgent = rest.DefaultKubernetesUserAgent()
-	}
-	return cfg, err
-}
-
-func configuredNamespace() string {
-	if ns, _, nsErr := resolveConfig().Namespace(); nsErr == nil {
+func (k *Kubernetes) configuredNamespace() string {
+	if ns, _, nsErr := k.clientCmdConfig.Namespace(); nsErr == nil {
 		return ns
 	}
 	return ""
 }
 
-func namespaceOrDefault(namespace string) string {
+func (k *Kubernetes) namespaceOrDefault(namespace string) string {
 	if namespace == "" {
-		return configuredNamespace()
+		return k.configuredNamespace()
 	}
 	return namespace
 }