belvg_mcp_auth
Verified Safeby belvg-public
Overview
Simplifies authentication for PrestaShop's Micro-Commerce Protocol (MCP) server for development and testing environments by replacing OAuth2 with a bearer token system.
Installation
No command providedSecurity Notes
The module explicitly warns that it is for 'DEVELOPMENT USE ONLY' and bypasses standard OAuth2 security protocols. It should not be used in a production environment without strict IP restrictions or additional security layers. The implementation itself uses cryptographically secure token generation (`random_bytes`) and sanitizes database inputs (`pSQL`), preventing common vulnerabilities like SQL injection. No 'eval', obfuscation, hardcoded secrets, or directly malicious patterns were found. The lower score reflects the inherent security reduction by design for its stated purpose (developer convenience) rather than flaws in its implementation.
Similar Servers
jetski
Jetski is an open-source platform providing analytics, authentication, and simplified client setup for Model Context Protocol (MCP) servers by acting as a proxy.
oauth-mcp-proxy
OAuth 2.1 authentication library for Go MCP servers, supporting both mark3labs and official SDKs for token validation and caching.
mcp-s-oauth
Universal OAuth middleware for MCP (Model Context Protocol) servers, enabling authentication with various OAuth providers.
mcp-oauth
Provider-agnostic OAuth 2.1 Authorization Server library for Model Context Protocol (MCP) servers, enabling URL-based client identifiers with dynamic metadata discovery (CIMD).