mcp-server
by MagedDevOps
Overview
Provides a Model Context Protocol (MCP) server for AlSalam Hospital management operations, including appointment booking, patient services, and WhatsApp integration.
Installation
docker run -p 3000:3000 alsalam-hospital-mcpEnvironment Variables
- PORT
- REQUEST_TIMEOUT
- WHATSAPP_API_TOKEN
- ALSALAM_HOSPITAL_API_URL
Security Notes
CRITICAL: The WhatsApp API bearer token is hardcoded directly in the `send_whatsapp_message` tool's source code (`server.js`). This is a severe security vulnerability as it grants full access to send messages from the linked WhatsApp Business Account to anyone with access to the codebase. It should be stored as an environment variable and loaded securely. CORS is set to `Access-Control-Allow-Origin: *`, which is overly permissive. While the README mentions 'CORS support for browser compatibility', this 'allow all' setting is generally not recommended for APIs handling sensitive patient data unless strict IP-based access controls or other authentication mechanisms are in place upstream. The `REQUEST_TIMEOUT` is defined as an environment variable in the README but is hardcoded as a constant (`50000`ms) within `server.js`, meaning it cannot be configured via environment variables as advertised. Input validation is implemented using Zod schemas for tool arguments, which is a good practice.
Similar Servers
mcp-server
Provides server functionality, likely related to the Minecraft community or development (MCP).
mcp
Provides an MCP server for an AI agent to manage reminders by integrating with an external reminders application API.
general-mcp-server
This server acts as a Multi-Capability Protocol (MCP) server, integrating custom tools and orchestrating their use with an AI assistant.
filepuff-mcp
A Go-based MCP server enhancing Claude Code's file operations with fast, AST-aware search, LSP integration, and safe editing.