mcp-container-ts
Verified Safeby Azure-Samples
Overview
Provides a secure, extensible Model Context Protocol (MCP) server using Node.js and TypeScript, designed to expose custom tools to LLMs, deployable on Azure Container Apps with robust JWT and RBAC security.
Installation
npm run devEnvironment Variables
- JWT_SECRET
- JWT_AUDIENCE
- JWT_ISSUER
- PORT
- ALLOWED_ORIGINS
- APPLICATIONINSIGHTS_CONNECTION_STRING
- NODE_ENV
- DEBUG
- API_KEYS
Security Notes
The server implements JWT-based authentication and role-based access control (RBAC) with granular permissions for tools. It uses `helmet` for security headers, `cors` for origin control, `express.json` with payload limits, and `express-rate-limit` for DDoS protection. SQL operations use prepared statements to prevent injection. Logs redact sensitive data in non-development environments. The `generate-token` script explicitly warns about token management, which is crucial for production deployments. The JSON-RPC validation middleware is commented out by default, which could be a minor security oversight if not enabled in production.
Similar Servers
opentelemetry-mcp-server
The OpenTelemetry Model Context Protocol (MCP) server enables LLMs to efficiently use the OpenTelemetry stack by providing tools to configure an OpenTelemetry collector through strict JSON schemas and validation.
sqlite-mcp
A Model Context Protocol (MCP) server that enables LLMs to interact with SQLite databases by providing tools and resources for querying and managing data.
mcp-typescript-simple
Production-ready MCP (Model Context Protocol) server with dual-mode operation (STDIO & HTTP), multi-LLM integration, and OAuth authentication, designed for horizontal scalability and comprehensive observability.
observe-community-mcp
Provides LLMs with intelligent access to Observe platform data through semantic search, automated dataset discovery, and metrics intelligence.