remote-mcp-server-auth
Verified Safeby itoyuya1005
Overview
A remote Model Context Protocol (MCP) server deployed on Cloudflare Workers, providing AI tools authenticated via Google OAuth for consumption by AI clients.
Installation
npm run devEnvironment Variables
- OAUTH_KV
- ALLOWED_DOMAIN
- MCP_OBJECT
- GOOGLE_CLIENT_ID
- GOOGLE_CLIENT_SECRET
- COOKIE_ENCRYPTION_KEY
Security Notes
The server implements Google OAuth for user authentication, using environment variables (`GOOGLE_CLIENT_ID`, `GOOGLE_CLIENT_SECRET`, `COOKIE_ENCRYPTION_KEY`) for sensitive credentials. OAuth state is stored in a KV namespace with an expiration TTL for CSRF protection. Email verification and optional domain restriction (`ALLOWED_DOMAIN`) enhance security. The current implementation of MCP tools (`add`, `calculate`, `whoami`) are simple and do not pose direct execution risks or external API calls beyond the OAuth flow. No 'eval' or obvious obfuscation is detected. The name 'remote-mcp-server-authless' in the README is misleading given the actual source code includes full OAuth.
Similar Servers
remote-mcp-server-authless
A remote Model Context Protocol (MCP) server providing basic calculator functionality on Cloudflare Workers, designed to be authentication-less for demonstration or private network usage.
bible-api-mcp-server
Deploys a remote Model Context Protocol (MCP) server on Cloudflare Workers, offering authentication-less calculator tools for AI agents and clients.
rest-api-mcp-server-2
Deploys a remote Model Context Protocol (MCP) server on Cloudflare Workers, providing custom AI tools (a calculator in this case) accessible via Server-Sent Events (SSE) without authentication.
remote-mcp-server-authless
Deploys a remote Model Context Protocol (MCP) server on Cloudflare Workers, providing an unauthenticated calculator agent for AI tools.