secure-ai-agent-with-asgardeo-and-mcp
Verified Safeby Bin4yi
Overview
An AI-powered pet care chatbot system integrating a secured MCP server with an intelligent LangGraph agent, using Asgardeo for authentication and OpenAI for AI capabilities.
Installation
python main.pyEnvironment Variables
- AUTH_ISSUER
- CLIENT_ID
- JWKS_URL
- OPENAI_API_KEY
Security Notes
The project uses robust OAuth2/OIDC authentication with Asgardeo and JWT token validation via JWKS, which are good security practices. Environment variables are correctly used for credentials, with warnings against committing them. However, the default CORS policy (`allow_credentials=True, expose_headers='*', allow_headers='*', allow_methods='*'`) is very permissive and should be restricted to specific origins for a production deployment. The `ssl_verify=False` option for development is mentioned in comments, which, while not active by default, points to a potential development pattern that should be avoided in production.
Similar Servers
fastmcp-example
Integrate Model Context Protocol (MCP) with LangChain and LangGraph to build AI agent workflows by exposing a variety of custom and pre-defined tools.
Synaptic.NET
Provides a .NET-based server for Model-Client Protocol (MCP), RESTful RAG, and Blazor web UI, secured with OAuth2, leveraging Qdrant and OpenAI.
Remote-ExpenseTracker-MCP-Server
An AI assistant leveraging LangGraph and Multi-Server MCP to manage expenses, fetch real-time data like stock prices, and perform general search queries.
agno-mcp-rag-langgraph-project
A comprehensive agentic AI framework integrating RAG, LangGraph workflows, and external tools via an MCP server to provide an AI assistant with capabilities spanning information retrieval, task automation, and multi-agent orchestration.