identity-service
Verified Safeby agntcy
Overview
Provides currency exchange rate and trading functionalities as an MCP (Model Context Protocol) server, integrating with an Identity Service for authorization and external financial APIs.
Installation
cd samples/mcp/currency_exchange && pip install . && python main.py --host 0.0.0.0 --port 9090Environment Variables
- CURRENCY_EXCHANGE_API_BASE_URL
- IDENTITY_SERVICE_API_KEY
- IDENTITY_SERVICE_GRPC_SERVER_URL
Security Notes
The MCP server uses `IdentityServiceMCPMiddleware` for authentication with the `AGNTCY Identity Service` via an API key, enabling centralized authorization. External API calls for currency exchange are made using `httpx.get` with f-strings to construct URLs, passing `from_currency` and `to_currency` parameters. While these parameters are assumed to be validated as currency codes by the external API, careful input validation within the MCP server itself is crucial to mitigate potential injection risks (e.g., SSRF on the external API if the base URL were user-controlled, or data injection if the external API used these parameters unsafely). There are no apparent uses of `eval` or similar dangerous patterns directly in the provided source code.
Similar Servers
klavis
Creates an AI agent that uses Klavis Strata to interact with Gmail and YouTube through MCP, demonstrating how to summarize a YouTube video and email the summary.
mcp-gateway-registry
A centralized platform for managing, discovering, and securely accessing AI development tools (MCP servers) and Agent-to-Agent (A2A) compatible agents, featuring enterprise-grade authentication, authorization, observability, and federation capabilities.
metorial-platform
The Metorial Platform is an open source integration platform for agentic AI, designed to connect any AI model to thousands of APIs, data sources, and tools with a single function call, built to scale for enterprise-grade AI applications.
AgentUp
AgentUp is an infrastructure framework for developing, deploying, and managing production-ready AI agents, providing Docker-like consistency, security, and extensibility.