quarkus-mcp-server
Verified Safeby quarkiverse
Overview
A secure Model Context Protocol (MCP) server that provides tools, prompts, and resources through SSE/HTTP and WebSocket, integrating with OIDC/OAuth2 providers for authentication.
Installation
jbang org.acme:secure-mcp-sse-server:1.0.0-SNAPSHOT:runnerEnvironment Variables
- QUARKUS_OIDC_GITHUB_CLIENT_ID
- QUARKUS_OIDC_GITHUB_CLIENT_SECRET
Security Notes
The server implements strong security practices by integrating with OIDC/OAuth2 providers (Keycloak, GitHub) and utilizing Quarkus Security for authentication and authorization, including role-based access control. Input validation is enforced through Hibernate Validator annotations, and a custom `WrapBusinessError` mechanism helps standardize error responses. There are no obvious signs of 'eval', code obfuscation, or hardcoded secrets in the provided snippets, with external configuration expected for sensitive credentials. Internal exceptions are generally handled, but some may still lead to generic 500 errors. Overall, the architecture emphasizes security for client interactions.
Similar Servers
mcpo
Exposes Model Context Protocol (MCP) tools as OpenAPI-compatible HTTP servers for integration with LLM agents and other applications.
solon-ai
Provides a client and server implementation for the Model Context Protocol (MCP), enabling AI models to interact with external tools, resources, and prompt templates through a standardized, asynchronous interface.
tmcp
Build Model Context Protocol (MCP) servers for AI agents, providing schema-agnostic tools, resources, and prompts, with optional OAuth 2.1 authentication and distributed session management.
MCP-Client-Host-Java
An MCP (Model Context Protocol) client that acts as a server to the MCP host, managing connections to various external MCP servers (tools) and orchestrating tool discovery and execution for AI assistants.