belvg_mcp_auth
Verified Safeby belvg-public
Overview
Simplifies authentication for PrestaShop's Micro-Commerce Protocol (MCP) server for development and testing environments by replacing OAuth2 with a bearer token system.
Installation
No command providedSecurity Notes
The module explicitly warns that it is for 'DEVELOPMENT USE ONLY' and bypasses standard OAuth2 security protocols. It should not be used in a production environment without strict IP restrictions or additional security layers. The implementation itself uses cryptographically secure token generation (`random_bytes`) and sanitizes database inputs (`pSQL`), preventing common vulnerabilities like SQL injection. No 'eval', obfuscation, hardcoded secrets, or directly malicious patterns were found. The lower score reflects the inherent security reduction by design for its stated purpose (developer convenience) rather than flaws in its implementation.
Similar Servers
jetski
Jetski is an Open Source MCP Analytics and Authentication Platform designed to simplify installation, authentication, and provide logs/analytics for Model Context Protocol (MCP) servers.
SageMCP
A scalable platform for hosting MCP servers with multi-tenant support, OAuth integration, and connector plugins for various services, deployed on Kubernetes.
oauth-mcp-proxy
Provides server-side OAuth 2.1 authentication for Go Model Context Protocol (MCP) servers, supporting both mark3labs/mcp-go and official go-sdk.
mcp-server-playground
A Model Context Protocol (MCP) server that acts as an OAuth proxy for 3rd party authorization servers like Auth0, provides stateful session management, and exposes various tools for system time, streaming, project keyword searching, and AWS services (S3, ECS, CloudWatch Logs, Bedrock).