public-api-mcp-application
by choseongje66
Overview
Provides a web-based chat client for interacting with public data via an MCP (Multi-Cloud Platform) and LLM.
Installation
cd appserver && npm run devEnvironment Variables
- CORS_ORIGIN
- JWT_SECRET
- MCP_BASE_URL
- PORT
- DATABASE_NAME
- DATABASE_USER
- DATABASE_PASSWORD
Security Notes
CRITICAL: The backend uses a hardcoded fallback JWT_SECRET 'devsecret' if the `JWT_SECRET` environment variable is not explicitly set. This is a severe vulnerability that makes the authentication easily bypassable. JWT tokens are stored in the browser's localStorage, which is susceptible to Cross-Site Scripting (XSS) attacks if other parts of the frontend are vulnerable. While the frontend uses `ReactMarkdown` with `rehype-highlight` for rendering LLM responses, direct streaming of potentially untrusted LLM output from the MCP to the client could theoretically pose risks if the markdown rendering or sanitization is not robust against all forms of injection, though `ReactMarkdown` typically offers good default protection.
Similar Servers
mcp-server-mysql
A backend server application for a Modular Control Platform (MCP) or Microservice Control Plane, likely built with Node.js/TypeScript and integrating with MySQL, potentially featuring AI/LLM evaluation capabilities.
generator-app-remote-mcp-server-generic
Provides backend services for a generic multi-cloud application generator, enabling remote application scaffolding and management across various cloud providers.
mcp-server-bbc
An AI assistant that manages BuilderBot projects by listing, retrieving, creating, updating, deleting, and duplicating projects using a set of defined tools.
personal-mcp
Provides an interface for AI agents to manage iCloud calendar events.