AgentforceMCP
by Mohit-Harsh
Overview
Integrates Model Context Protocol (MCP) clients and REST API applications with Salesforce Agentforce Agents.
Installation
npx -y @mohitharsh/agentforcemcp --username <your-username> --password <your-password> --securityToken <your-security-token> --agentName <agent-api-name>Environment Variables
- UNAME
- PASSWORD
- SECURITY_TOKEN
- CLIENT_ID
- CLIENT_SECRET
- DOMAIN_URL
Security Notes
The `src/streamable-http-agent-api/server.py` implementation exposes sensitive Salesforce Connected App credentials (`clientId`, `clientSecret`, `domainUrl`) via HTTP headers, which is a critical security risk as these can be intercepted or easily discovered. The `src/streamable-http-oauth/server.py` contains a `CustomTokenVerifier` that bypasses proper JWT verification for incoming tokens, effectively accepting any token as long as it is present, which significantly weakens the authentication mechanism of the MCP server. Additionally, the `src/stdio/server.py` and `npm-package/server.py` implementations (when run via `npx`) pass Salesforce credentials (`username`, `password`, `securityToken`, `agentName`) directly as command-line arguments, posing a risk of exposure via process listings (`ps -ef`) or command history.
Similar Servers
fastapi_mcp
Automatically converts FastAPI endpoints into Model Context Protocol (MCP) tools for seamless integration with LLM agents.
mcpo
Exposes Model Context Protocol (MCP) tools as OpenAPI-compatible HTTP servers for integration with LLM agents and other applications.
mcpstore
MCPStore acts as an orchestration layer for managing Microservice Context Protocol (MCP) services and adapting them as tools for AI frameworks like LangChain, AutoGen, and others.
AgentChat
AgentChat is an AI agent orchestration platform that enables users to create, configure, and manage AI assistants with integrated LLMs, external tools, knowledge bases, and multi-context protocol (MCP) servers for complex conversational and task automation scenarios.