common-mcp-server
Verified Safeby Originate-Group
Overview
Provides a reusable framework for building HTTP Model Context Protocol (MCP) servers with FastAPI, supporting OAuth 2.1 and Personal Access Token (PAT) authentication.
Installation
cd examples/docker && docker compose upEnvironment Variables
- KEYCLOAK_URL
- KEYCLOAK_REALM
- KEYCLOAK_CLIENT_ID
- APP_BASE_URL
Security Notes
The server design generally follows good security practices for OAuth 2.1 and PAT handling. OAuth token validation uses `python-jose` and fetches JWKS for signature verification, including checks for expiration and claims. PAT authentication relies on a user-provided asynchronous `verify_function` to integrate with a database or external service, which is crucial for secure PAT management. OAuth proxy endpoints are clearly defined and adhere to RFCs for discovery and client registration (returning a pre-configured public client ID with no secret). There are no obvious signs of `eval`, code obfuscation, or hardcoded secrets beyond what's expected in an example's `verify_pat` function, which explicitly notes to use a database in production.
Similar Servers
magnet-mcp-server
Integrates AI agent clients (like Claude, Cursor) with the Magnet task/issue management platform, enabling AI agents to read, create, update, and search issues and pages, and upload chat sessions.
mcp-server
A Model Context Protocol (MCP) server that provides real-time Indian options market data and volatility analytics from GetOutpost.in for integration with AI chat models like Claude.
Dida365MCP
This server integrates Dida365 (TickTick) task management capabilities, allowing an AI agent to create, read, update, and delete tasks and projects via the Model Context Protocol (MCP).
MCP-SERVER
Provides an MCP server for automated data analysis workflows including loading datasets, cleaning data, sentiment analysis, clustering, topic extraction, and generating comprehensive reports with visualizations for an AI client.