MCP Salesforce Server

auth.js•6.07 KiB

import { TokenManager } from '../auth/token-manager.js'; import { FileStorageManager } from '../auth/file-storage.js'; export const reauth = { name: 'salesforce_auth', description: 'Authenticate with Salesforce. Automatically detects if authentication is needed and handles OAuth flow. Call this tool if any Salesforce operations fail due to authentication issues.', inputSchema: { type: 'object', properties: { force: { type: 'boolean', description: 'Force re-authentication even if current tokens appear valid', default: false } }, additionalProperties: false } }; export async function handleReauth(args) { const { force = false } = args; try { // Get stored credentials const fileStorage = new FileStorageManager(); const credentials = await fileStorage.getCredentials(); // Check if we have existing tokens even without credentials if (!credentials) { const tokens = await fileStorage.getTokens(); if (tokens && tokens.access_token && tokens.refresh_token) { // We have tokens but no credentials, try to use tokens directly const tokenManager = new TokenManager(null, null, tokens.instance_url); tokenManager.currentTokens = tokens; // Test if tokens are still valid const testResult = await tokenManager.testTokens(); if (testResult.valid) { return { success: true, message: 'Already authenticated with valid tokens', details: { authenticated: true, instanceUrl: tokens.instance_url, storedAt: tokens.stored_at }, nextSteps: [ 'Your MCP Salesforce tools should now work normally', 'Tokens are stored securely in your home directory with 600 permissions', 'They will auto-refresh before expiration' ] }; } } return { success: false, error: 'No Salesforce credentials found. Please run the salesforce_setup tool first to configure your credentials.', details: { setupRequired: true, requiredCredentials: ['clientId', 'clientSecret', 'instanceUrl'] } }; } const tokenManager = new TokenManager( credentials.clientId, credentials.clientSecret, credentials.instanceUrl ); // Check current token status if not forcing if (!force) { await tokenManager.initialize(); const tokenInfo = tokenManager.getTokenInfo(); if (tokenInfo.authenticated) { // Test if tokens are actually working const testResult = await tokenManager.testTokens(); if (testResult.valid) { return { success: true, message: 'Current tokens are still valid. Use force=true to re-authenticate anyway.', tokenInfo: { authenticated: true, expiresInMinutes: tokenInfo.expires_in_minutes, instanceUrl: tokenInfo.instance_url } }; } } } // Clear existing tokens if forcing or if they're invalid await tokenManager.clearTokens(); // Start OAuth flow const tokens = await tokenManager.authenticateWithOAuth(); // Verify the new tokens work const testResult = await tokenManager.testTokens(); if (!testResult.valid) { return { success: false, error: 'Authentication completed but token validation failed', details: testResult }; } const tokenInfo = tokenManager.getTokenInfo(); return { success: true, message: 'Successfully authenticated with Salesforce! New tokens have been stored securely.', authenticationFlow: 'OAuth completed successfully', tokenInfo: { authenticated: true, instanceUrl: tokenInfo.instance_url, expiresInMinutes: tokenInfo.expires_in_minutes, storedAt: tokenInfo.stored_at }, nextSteps: [ 'Your MCP Salesforce tools should now work normally', 'Tokens are stored securely in your home directory with 600 permissions', 'They will auto-refresh before expiration' ] }; } catch (error) { // Handle specific error types if (error.message.includes('OAuth flow timed out')) { return { success: false, error: 'Authentication timed out after 5 minutes', details: { reason: 'User did not complete OAuth flow in browser', suggestion: 'Please try again and complete the authentication in your browser quickly' } }; } if (error.message.includes('User denied')) { return { success: false, error: 'Authentication was denied by user', details: { reason: 'User cancelled or denied the OAuth authorization', suggestion: 'Please try again and accept the OAuth authorization' } }; } if (error.message.includes('invalid_client')) { return { success: false, error: 'Invalid Salesforce Connected App credentials', details: { reason: 'Client ID or Client Secret is incorrect', suggestion: 'Please verify your Client ID and Client Secret in ~/.mcp-salesforce.json configuration' } }; } if (error.message.includes('EADDRINUSE')) { return { success: false, error: 'Cannot start OAuth callback server - port conflict', details: { reason: 'OAuth callback port is already in use', suggestion: 'Please close any other applications using ports 8080-9000 and try again' } }; } return { success: false, error: `Authentication failed: ${error.message}`, details: { errorType: error.constructor.name, troubleshooting: [ 'Verify your Salesforce Connected App configuration', 'Check that callback URLs include http://localhost:8080/callback', 'Ensure your Salesforce credentials are correct in MCP config', 'Try running with force=true parameter' ] } }; } }

Loading blob content...

Latest Blog Posts

Redis vs ioredis vs valkey-glide
By punkpeye on January 26, 2026.
benchmark
Redis
valkey
Quickstart: Publish an MCP Server to the MCP Registry
By punkpeye on January 24, 2026.
mcp
official reference mirror
Official MCP Registry Server.json Requirements
By punkpeye on January 24, 2026.
mcp
official reference mirror

MCP directory API

We provide all the information about MCP servers via our MCP API.

curl -X GET 'https://glama.ai/api/mcp/v1/servers/AiondaDotCom/mcp-salesforce'

If you have feedback or need assistance with the MCP directory API, please join our Discord server

auth.js•6.07 KiB