paymcp-subscription-demo
Verified Safeby PayMCP
Overview
Provides a Model Context Protocol (MCP) server that gates access to AI tools based on active Stripe subscriptions and OAuth/OIDC authentication.
Installation
yarn devEnvironment Variables
- HOST
- PORT
- OIDC_ISSUER
- AUTH_HOST
- AUTH_PORT
- AUTH_REALM
- OAUTH_CLIENT_ID
- OAUTH_CLIENT_SECRET
- STRIPE_SECRET_KEY
- STRIPE_SUBSCRIPTION_ID
Security Notes
The server uses robust security libraries (jose for JWT, MCP SDK for auth middleware) and strictly relies on environment variables for secrets. CORS is set to '*' for demo purposes, which is a security risk in production and would require hardening. The token verifier explicitly warns and skips audience validation if the 'aud' claim is missing from the JWT, which is a potential misconfiguration from the identity provider.
Similar Servers
mcp-context-forge
Converts web content (HTML, PDF, DOCX, etc.) and local files from a URL into high-quality Markdown format. It supports multiple conversion engines, content optimization, batch processing, and image handling.
mcp-openapi-server
A Model Context Protocol (MCP) server that exposes OpenAPI endpoints as MCP tools, along with optional support for MCP prompts and resources, enabling Large Language Models to interact with REST APIs.
mcp-servers
A curated collection of Model Context Protocol (MCP) server configurations to integrate various developer tools and services with AI agents.
example-remote-server
A reference server demonstrating all Model Context Protocol (MCP) features and OAuth 2.0 authentication patterns.