openfga-mcp
Verified Safeby Gyeom
Overview
Integrates OpenFGA authorization management with Claude Code, enabling AI agents to manage stores, models, tuples, and permissions.
Installation
node dist/index.jsEnvironment Variables
- OPENFGA_ENVIRONMENTS
- OPENFGA_LOCAL_URL
- OPENFGA_LOCAL_STORE_ID
- OPENFGA_INT_URL
- OPENFGA_INT_STORE_ID
- OPENFGA_STAGE_URL
- OPENFGA_STAGE_STORE_ID
- OPENFGA_PROD_URL
- OPENFGA_PROD_STORE_ID
- OPENFGA_REAL_URL
- OPENFGA_REAL_STORE_ID
Security Notes
The server uses `child_process.execSync` to invoke the `fga` CLI for model transformations (`openfga_model_write`). While the temporary file path used in the command is properly quoted, the content of the DSL passed to the `fga` CLI originates from user input. This introduces a dependency on the security of the `fga` CLI itself against potential vulnerabilities such as command injection through crafted DSL content. `execSync` is also a blocking call, which can impact performance and availability under high load for this specific operation.
Similar Servers
claude-code-subagents-collection
The repository serves as a comprehensive marketplace and registry for Claude Code, offering a wide array of specialized AI agents, commands, hooks, and a catalog of external Model Context Protocol (MCP) servers to enhance development workflows.
claude-code-mcp
Acts as an MCP server to enable LLMs to run Claude Code CLI in one-shot mode, bypassing permissions for complex coding, file system, Git, and terminal operations.
claude-codex-settings
A comprehensive toolkit and configuration for developing Claude Code plugins, integrating various external services and APIs, and enhancing AI-assisted coding workflows.
consult-llm-mcp
An MCP server that allows AI agents like Claude Code to consult stronger, more capable AI models (e.g., GPT-5.2, Gemini 3.0 Pro) for complex code analysis, debugging, and architectural advice.