mold-inventory
Verified Safeby patkub
Overview
An MCP server that provides an LLM with authenticated access to a mold inventory management API, allowing it to retrieve mold data on behalf of a user.
Installation
pnpm run devEnvironment Variables
- AUTH0_DOMAIN
- AUTH0_CLIENT_ID
- AUTH0_CLIENT_SECRET
- AUTH0_AUDIENCE
- AUTH0_SCOPE
- API_BASE_URL
- NODE_ENV
Security Notes
The server implements OAuth 2.0 with PKCE using `oauth4webapi` and `Cloudflare Workers OAuth Provider`, handling authentication and token exchange securely. Sensitive configurations (Auth0 credentials, API base URL) are correctly managed via environment variables and Auth0 Action secrets, avoiding hardcoding. CSRF protection is used for the consent screen, and cookies are handled with `httpOnly` and `secure` flags (conditionally for development). The system relies on a well-configured Auth0 tenant and securely managed environment variables for its security posture. No direct 'eval' or obfuscation found.
Similar Servers
mcp-server-cloudflare
Enable Large Language Models (LLMs) to interact with and automate tasks across various Cloudflare services through a standardized Model Context Protocol (MCP).
remote-mcp-server-authless1
Deploys a remote Model Context Protocol (MCP) server on Cloudflare Workers, providing a set of calculator tools without requiring authentication.
remote-mcp-server-authless
Provides an unauthenticated remote Model Context Protocol (MCP) server for integrating custom tools with AI models on Cloudflare Workers.
cf-mcp-server-clerk
A Model Context Protocol (MCP) server that provides remote OAuth authentication using Clerk, enabling LLM agents to access tools with role-based access control.