kiotviet-mcp
Verified Safeby dehuy69
Overview
An MCP server that enables AI agents to securely interact with the KiotViet Public API by proxying requests, providing a stateless interface for product, customer, order, and invoice management.
Installation
python kiotviet_mcp_server.pyEnvironment Variables
- CLIENT_ID
- CLIENT_SECRET
- RETAILER
Security Notes
The server explicitly states and implements a stateless architecture, meaning no sensitive tokens or session information are stored on the MCP server itself. `access_token` and `retailer` are passed with each request, reducing risk. `CLIENT_ID` and `CLIENT_SECRET` are expected to be managed by the upstream Culi backend and stored in environment variables (or similar secure method) for testing scripts, not hardcoded. No `eval` or dynamic code execution from untrusted input was identified. API communication uses HTTPS, and the `httpx` client handles standard secure practices.
Similar Servers
mcpo
Exposes Model Context Protocol (MCP) tools as OpenAPI-compatible HTTP servers.
mcp-context-forge
An MCP server for retrieving web content and files, then converting them to high-quality markdown format.
mcphub
A centralized hub for managing, orchestrating, and exposing Model Context Protocol (MCP) servers and their tools/prompts, including OAuth authorization, user/group management, and dynamic registration of clients.
mcp-k8s-go
An MCP server enabling AI assistants and users to interact with and manage Kubernetes clusters by listing, getting, applying, and executing commands on Kubernetes resources.