litium-admin-mcp-server
Verified Safeby tonnguyen
Overview
A Model Context Protocol (MCP) server that provides AI models programmatic access to the Litium e-commerce platform's Admin Web API, enabling natural language interaction for managing products, content, customers, media, and other e-commerce entities.
Installation
npm startEnvironment Variables
- NODE_ENV
- PORT
Security Notes
The server relies on client-supplied HTTP headers (X-Litium-Client-Id, X-Litium-Client-Secret) for OAuth2 authentication with the Litium Admin API. While these credentials are not hardcoded, passing sensitive secrets in headers for a publicly deployed server (e.g., on Vercel) carries inherent risks if the communication channel is not secure (e.g., not HTTPS) or if the client itself is compromised. The `Access-Control-Allow-Origin: *` header is broadly permissive. The file upload functionality (`manage_media` tool) is designed to read local file paths on the server, which could pose a security risk in certain deployment scenarios (e.g., if arbitrary file paths could be specified by an attacker, or if deployed in a serverless environment where local filesystem access is not intended for user-uploaded content).
Similar Servers
nuxt-mcp-dev
This server provides development context and real-time insights from Vite/Nuxt applications to AI models via a Model Context Protocol (MCP) server.
mcp-handler
Provides a Vercel adapter for the Model Context Protocol (MCP), enabling real-time communication between applications and AI models through Next.js or Nuxt.
boilerplate-mcp-server
Provides a production-ready foundation for developing custom Model Context Protocol (MCP) servers in TypeScript to connect AI assistants with external APIs and data sources, exemplified by an IP geolocation tool.
toolhive-cloud-ui
A UI for interacting with AI models via OpenRouter and managing/utilizing MCP (Model Context Protocol) servers and their tools from a centralized catalog.