Google Workspace MCP Server

server.ts•8.96 kB

import express from 'express'; import { OAuth2Client } from 'google-auth-library'; import { TokenManager } from './tokenManager.js'; import http from 'http'; import open from 'open'; import { loadCredentials } from './client.js'; import { getEnabledScopes, getEnabledServices } from '../config/services.js'; // Get OAuth scopes dynamically based on enabled services function getScopes(): string[] { return getEnabledScopes(); } export class AuthServer { private baseOAuth2Client: OAuth2Client; // Used by TokenManager for validation/refresh private flowOAuth2Client: OAuth2Client | null = null; // Used specifically for the auth code flow private app: express.Express; private server: http.Server | null = null; private tokenManager: TokenManager; private portRange: { start: number; end: number }; public authCompletedSuccessfully = false; // Flag for standalone script constructor(oauth2Client: OAuth2Client) { this.baseOAuth2Client = oauth2Client; this.tokenManager = new TokenManager(oauth2Client); this.app = express(); this.portRange = { start: 3000, end: 3004 }; this.setupRoutes(); } private setupRoutes(): void { this.app.get('/', (req, res) => { // Generate the URL using the active flow client if available, else base const clientForUrl = this.flowOAuth2Client || this.baseOAuth2Client; const authUrl = clientForUrl.generateAuthUrl({ access_type: 'offline', scope: getScopes(), prompt: 'consent' }); const enabledServices = getEnabledServices().join(', '); res.send(`<h1>Google Workspace Authentication</h1><p>Services: ${enabledServices}</p><a href="${authUrl}">Authenticate with Google</a>`); }); this.app.get('/oauth2callback', async (req, res) => { const code = req.query.code as string; if (!code) { res.status(400).send('Authorization code missing'); return; } // IMPORTANT: Use the flowOAuth2Client to exchange the code if (!this.flowOAuth2Client) { res.status(500).send('Authentication flow not properly initiated.'); return; } try { const { tokens } = await this.flowOAuth2Client.getToken(code); // Save tokens using the TokenManager (which uses the base client) await this.tokenManager.saveTokens(tokens); this.authCompletedSuccessfully = true; // Get the path where tokens were saved const tokenPath = this.tokenManager.getTokenPath(); // Send a more informative HTML response including the path res.send(` <!DOCTYPE html> <html lang="en"> <head> <meta charset="UTF-8"> <meta name="viewport" content="width=device-width, initial-scale=1.0"> <title>Authentication Successful</title> <style> body { font-family: sans-serif; display: flex; justify-content: center; align-items: center; height: 100vh; background-color: #f4f4f4; margin: 0; } .container { text-align: center; padding: 2em; background-color: #fff; border-radius: 8px; box-shadow: 0 2px 4px rgba(0,0,0,0.1); } h1 { color: #4CAF50; } p { color: #333; margin-bottom: 0.5em; } code { background-color: #eee; padding: 0.2em 0.4em; border-radius: 3px; font-size: 0.9em; } </style> </head> <body> <div class="container"> <h1>Authentication Successful!</h1> <p>Your authentication tokens have been saved successfully to:</p> <p><code>${tokenPath}</code></p> <p>You can now close this browser window.</p> </div> </body> </html> `); } catch (error: unknown) { this.authCompletedSuccessfully = false; const message = error instanceof Error ? error.message : 'Unknown error'; // Send an HTML error response res.status(500).send(` <!DOCTYPE html> <html lang="en"> <head> <meta charset="UTF-8"> <meta name="viewport" content="width=device-width, initial-scale=1.0"> <title>Authentication Failed</title> <style> body { font-family: sans-serif; display: flex; justify-content: center; align-items: center; height: 100vh; background-color: #f4f4f4; margin: 0; } .container { text-align: center; padding: 2em; background-color: #fff; border-radius: 8px; box-shadow: 0 2px 4px rgba(0,0,0,0.1); } h1 { color: #F44336; } p { color: #333; } </style> </head> <body> <div class="container"> <h1>Authentication Failed</h1> <p>An error occurred during authentication:</p> <p><code>${message}</code></p> <p>Please try again or check the server logs.</p> </div> </body> </html> `); } }); } async start(openBrowser = true): Promise<boolean> { if (await this.tokenManager.validateTokens()) { this.authCompletedSuccessfully = true; return true; } // Try to start the server and get the port const port = await this.startServerOnAvailablePort(); if (port === null) { this.authCompletedSuccessfully = false; return false; } // Successfully started server on `port`. Now create the flow-specific OAuth client. try { const { client_id, client_secret } = await loadCredentials(); this.flowOAuth2Client = new OAuth2Client( client_id, client_secret || undefined, `http://localhost:${port}/oauth2callback` ); } catch (error) { // Could not load credentials, cannot proceed with auth flow console.error('Failed to load credentials for auth flow:', error); this.authCompletedSuccessfully = false; await this.stop(); // Stop the server we just started return false; } if (openBrowser) { // Generate Auth URL using the newly created flow client const authorizeUrl = this.flowOAuth2Client.generateAuthUrl({ access_type: 'offline', scope: getScopes(), prompt: 'consent' }); console.error('\n🔐 AUTHENTICATION REQUIRED'); console.error('══════════════════════════════════════════'); console.error('\nOpening your browser to authenticate...'); console.error(`If the browser doesn't open, visit:\n${authorizeUrl}\n`); await open(authorizeUrl); } return true; // Auth flow initiated } private async startServerOnAvailablePort(): Promise<number | null> { for (let port = this.portRange.start; port <= this.portRange.end; port++) { try { await new Promise<void>((resolve, reject) => { // Create a temporary server instance to test the port const testServer = this.app.listen(port, () => { this.server = testServer; // Assign to class property *only* if successful console.error(`Authentication server listening on http://localhost:${port}`); resolve(); }); testServer.on('error', (err: NodeJS.ErrnoException) => { if (err.code === 'EADDRINUSE') { // Port is in use, close the test server and reject testServer.close(() => reject(err)); } else { // Other error, reject reject(err); } }); }); return port; // Port successfully bound } catch (error: unknown) { // Check if it's EADDRINUSE, otherwise rethrow or handle if (!(error instanceof Error && 'code' in error && (error as any).code === 'EADDRINUSE')) { // An unexpected error occurred during server start console.error('Failed to start auth server:', error); return null; } // EADDRINUSE occurred, loop continues } } console.error('No available ports for authentication server (tried ports', this.portRange.start, '-', this.portRange.end, ')'); return null; // No port found } public getRunningPort(): number | null { if (this.server) { const address = this.server.address(); if (typeof address === 'object' && address !== null) { return address.port; } } return null; } async stop(): Promise<void> { return new Promise((resolve, reject) => { if (this.server) { this.server.close((err) => { if (err) { reject(err); } else { this.server = null; resolve(); } }); } else { resolve(); } }); } }

Loading blob content...

Latest Blog Posts

Don't Use Large Strings as Cache Keys
By punkpeye on January 11, 2026.
markdown
node-js
cache
What are Claude Skills?
By punkpeye on January 10, 2026.
mcp
skills
How to Test MCP Streamable HTTP Endpoints Using cURL
By punkpeye on January 2, 2026.
tutorial
bash

MCP directory API

We provide all the information about MCP servers via our MCP API.

curl -X GET 'https://glama.ai/api/mcp/v1/servers/DonMrMango/google-workspace-mcp'

If you have feedback or need assistance with the MCP directory API, please join our Discord server

server.ts•8.96 kB