x-mcp

x-mcp
src

x-api.ts•13.5 KiB

import crypto from "crypto"; import OAuth from "oauth-1.0a"; const API_BASE = "https://api.x.com/2"; const UPLOAD_BASE = "https://upload.twitter.com/1.1"; interface RateLimitInfo { limit: number; remaining: number; reset: number; } interface XApiResponse<T = unknown> { data?: T; meta?: { result_count?: number; next_token?: string; previous_token?: string; }; includes?: Record<string, unknown[]>; errors?: Array<{ message: string; title?: string; detail?: string; type?: string }>; } export interface XApiConfig { apiKey: string; apiSecret: string; accessToken: string; accessTokenSecret: string; bearerToken: string; } export class XApiClient { private oauth: OAuth; private token: OAuth.Token; private bearerToken: string; private authenticatedUserId: string | null = null; constructor(private config: XApiConfig) { this.oauth = new OAuth({ consumer: { key: config.apiKey, secret: config.apiSecret }, signature_method: "HMAC-SHA1", hash_function(baseString, key) { return crypto.createHmac("sha1", key).update(baseString).digest("base64"); }, }); this.token = { key: config.accessToken, secret: config.accessTokenSecret }; this.bearerToken = config.bearerToken; } // --- Internal helpers --- private parseRateLimit(headers: Headers): RateLimitInfo | null { const limit = headers.get("x-rate-limit-limit"); const remaining = headers.get("x-rate-limit-remaining"); const reset = headers.get("x-rate-limit-reset"); if (limit && remaining && reset) { return { limit: parseInt(limit, 10), remaining: parseInt(remaining, 10), reset: parseInt(reset, 10), }; } return null; } private formatRateLimit(rl: RateLimitInfo): string { const resetDate = new Date(rl.reset * 1000); const secondsUntilReset = Math.max(0, Math.ceil((rl.reset * 1000 - Date.now()) / 1000)); return `Rate limit: ${rl.remaining}/${rl.limit} remaining. Resets at ${resetDate.toISOString()} (${secondsUntilReset}s)`; } private async oauthFetch( url: string, method: string, body?: unknown, contentType?: string, ): Promise<Response> { const requestData = { url, method }; const authHeader = this.oauth.toHeader(this.oauth.authorize(requestData, this.token)); const headers: Record<string, string> = { Authorization: authHeader.Authorization, }; if (contentType) { headers["Content-Type"] = contentType; } else if (body && !(body instanceof FormData)) { headers["Content-Type"] = "application/json"; } const init: RequestInit = { method, headers }; if (body) { if (body instanceof FormData) { init.body = body; } else { init.body = JSON.stringify(body); } } return fetch(url, init); } private async bearerFetch(url: string): Promise<Response> { return fetch(url, { method: "GET", headers: { Authorization: `Bearer ${this.bearerToken}`, }, }); } private async handleResponse<T>(response: Response, operation: string): Promise<{ result: T; rateLimit: string }> { const rateLimit = this.parseRateLimit(response.headers); const rateLimitStr = rateLimit ? this.formatRateLimit(rateLimit) : ""; if (response.status === 429) { const resetTime = rateLimit ? new Date(rateLimit.reset * 1000).toISOString() : "unknown"; throw new Error( `Rate limited on ${operation}. Reset at: ${resetTime}. ${rateLimitStr}`, ); } const text = await response.text(); let data: T; try { data = JSON.parse(text); } catch { throw new Error( `${operation} failed (HTTP ${response.status}): ${text.slice(0, 500)}`, ); } if (!response.ok) { const errorBody = data as unknown as XApiResponse; const errorMsg = errorBody.errors ?.map((e) => e.detail || e.message) .join("; ") || text.slice(0, 500); throw new Error( `${operation} failed (HTTP ${response.status}): ${errorMsg}. ${rateLimitStr}`, ); } return { result: data, rateLimit: rateLimitStr }; } async getAuthenticatedUserId(): Promise<string> { if (this.authenticatedUserId) return this.authenticatedUserId; const url = `${API_BASE}/users/me`; const response = await this.oauthFetch(url, "GET"); const { result } = await this.handleResponse<XApiResponse<{ id: string }>>(response, "getAuthenticatedUser"); this.authenticatedUserId = result.data!.id; return this.authenticatedUserId; } // --- Tweet operations --- async postTweet(params: { text: string; reply_to?: string; quote_tweet_id?: string; poll_options?: string[]; poll_duration_minutes?: number; media_ids?: string[]; }) { const body: Record<string, unknown> = { text: params.text }; if (params.reply_to) { body.reply = { in_reply_to_tweet_id: params.reply_to }; } if (params.quote_tweet_id) { body.quote_tweet_id = params.quote_tweet_id; } if (params.poll_options && params.poll_options.length > 0) { body.poll = { options: params.poll_options, duration_minutes: params.poll_duration_minutes || 1440, }; } if (params.media_ids && params.media_ids.length > 0) { body.media = { media_ids: params.media_ids }; } const response = await this.oauthFetch(`${API_BASE}/tweets`, "POST", body); return this.handleResponse(response, "postTweet"); } async deleteTweet(tweetId: string) { const response = await this.oauthFetch(`${API_BASE}/tweets/${tweetId}`, "DELETE"); return this.handleResponse(response, "deleteTweet"); } async getTweet(tweetId: string) { const params = new URLSearchParams({ "tweet.fields": "created_at,public_metrics,author_id,conversation_id,in_reply_to_user_id,referenced_tweets,attachments,entities,lang", expansions: "author_id,referenced_tweets.id,attachments.media_keys", "user.fields": "name,username,verified,profile_image_url,public_metrics", "media.fields": "url,preview_image_url,type,width,height,alt_text", }); const url = `${API_BASE}/tweets/${tweetId}?${params}`; const response = await this.bearerFetch(url); return this.handleResponse(response, "getTweet"); } async searchTweets(query: string, maxResults: number = 10, nextToken?: string) { const params = new URLSearchParams({ query, max_results: Math.min(Math.max(maxResults, 10), 100).toString(), "tweet.fields": "created_at,public_metrics,author_id,conversation_id,entities,lang", expansions: "author_id,attachments.media_keys", "user.fields": "name,username,verified,profile_image_url", "media.fields": "url,preview_image_url,type", }); if (nextToken) params.set("next_token", nextToken); const url = `${API_BASE}/tweets/search/recent?${params}`; const response = await this.bearerFetch(url); return this.handleResponse(response, "searchTweets"); } // --- User operations --- async getUser(params: { username?: string; userId?: string }) { const fields = new URLSearchParams({ "user.fields": "created_at,description,public_metrics,verified,profile_image_url,url,location,pinned_tweet_id", }); let url: string; if (params.username) { url = `${API_BASE}/users/by/username/${params.username}?${fields}`; } else if (params.userId) { url = `${API_BASE}/users/${params.userId}?${fields}`; } else { throw new Error("Either username or userId must be provided"); } const response = await this.bearerFetch(url); return this.handleResponse(response, "getUser"); } async getTimeline(userId: string, maxResults: number = 10, nextToken?: string) { const params = new URLSearchParams({ max_results: Math.min(Math.max(maxResults, 5), 100).toString(), "tweet.fields": "created_at,public_metrics,author_id,conversation_id,entities,lang", expansions: "author_id,attachments.media_keys,referenced_tweets.id", "user.fields": "name,username,verified", "media.fields": "url,preview_image_url,type", }); if (nextToken) params.set("pagination_token", nextToken); const url = `${API_BASE}/users/${userId}/tweets?${params}`; const response = await this.bearerFetch(url); return this.handleResponse(response, "getTimeline"); } async getMentions(maxResults: number = 10, nextToken?: string) { const userId = await this.getAuthenticatedUserId(); const params = new URLSearchParams({ max_results: Math.min(Math.max(maxResults, 5), 100).toString(), "tweet.fields": "created_at,public_metrics,author_id,conversation_id,entities", expansions: "author_id", "user.fields": "name,username,verified", }); if (nextToken) params.set("pagination_token", nextToken); const url = `${API_BASE}/users/${userId}/mentions?${params}`; const response = await this.oauthFetch(url, "GET"); return this.handleResponse(response, "getMentions"); } async getFollowers(userId: string, maxResults: number = 100, nextToken?: string) { const params = new URLSearchParams({ max_results: Math.min(Math.max(maxResults, 1), 1000).toString(), "user.fields": "created_at,description,public_metrics,verified,profile_image_url", }); if (nextToken) params.set("pagination_token", nextToken); const url = `${API_BASE}/users/${userId}/followers?${params}`; const response = await this.bearerFetch(url); return this.handleResponse(response, "getFollowers"); } async getFollowing(userId: string, maxResults: number = 100, nextToken?: string) { const params = new URLSearchParams({ max_results: Math.min(Math.max(maxResults, 1), 1000).toString(), "user.fields": "created_at,description,public_metrics,verified,profile_image_url", }); if (nextToken) params.set("pagination_token", nextToken); const url = `${API_BASE}/users/${userId}/following?${params}`; const response = await this.bearerFetch(url); return this.handleResponse(response, "getFollowing"); } // --- Engagement operations --- async likeTweet(tweetId: string) { const userId = await this.getAuthenticatedUserId(); const response = await this.oauthFetch(`${API_BASE}/users/${userId}/likes`, "POST", { tweet_id: tweetId, }); return this.handleResponse(response, "likeTweet"); } async retweet(tweetId: string) { const userId = await this.getAuthenticatedUserId(); const response = await this.oauthFetch(`${API_BASE}/users/${userId}/retweets`, "POST", { tweet_id: tweetId, }); return this.handleResponse(response, "retweet"); } // --- Media upload --- async uploadMedia( mediaData: string, mimeType: string, mediaCategory: string = "tweet_image", ) { const buffer = Buffer.from(mediaData, "base64"); const totalBytes = buffer.length; // INIT const initForm = new URLSearchParams({ command: "INIT", media_type: mimeType, total_bytes: totalBytes.toString(), media_category: mediaCategory, }); const initRes = await fetch(`${UPLOAD_BASE}/media/upload.json`, { method: "POST", headers: { ...this.getOAuthHeaders(`${UPLOAD_BASE}/media/upload.json`, "POST"), "Content-Type": "application/x-www-form-urlencoded", }, body: initForm.toString(), }); const { result: initData } = await this.handleResponse<{ media_id_string: string }>( initRes, "uploadMedia:INIT", ); const mediaId = initData.media_id_string; // APPEND -- upload in 1MB chunks const chunkSize = 1024 * 1024; for (let i = 0; i * chunkSize < totalBytes; i++) { const chunk = buffer.subarray(i * chunkSize, (i + 1) * chunkSize); const formData = new FormData(); formData.append("command", "APPEND"); formData.append("media_id", mediaId); formData.append("segment_index", i.toString()); formData.append("media_data", chunk.toString("base64")); const appendRes = await fetch(`${UPLOAD_BASE}/media/upload.json`, { method: "POST", headers: this.getOAuthHeaders(`${UPLOAD_BASE}/media/upload.json`, "POST"), body: formData, }); if (!appendRes.ok) { const text = await appendRes.text(); throw new Error(`uploadMedia:APPEND segment ${i} failed (HTTP ${appendRes.status}): ${text}`); } } // FINALIZE const finalizeForm = new URLSearchParams({ command: "FINALIZE", media_id: mediaId, }); const finalizeRes = await fetch(`${UPLOAD_BASE}/media/upload.json`, { method: "POST", headers: { ...this.getOAuthHeaders(`${UPLOAD_BASE}/media/upload.json`, "POST"), "Content-Type": "application/x-www-form-urlencoded", }, body: finalizeForm.toString(), }); const finalizeResult = await this.handleResponse(finalizeRes, "uploadMedia:FINALIZE"); return { mediaId, ...finalizeResult }; } private getOAuthHeaders(url: string, method: string): Record<string, string> { const requestData = { url, method }; const authHeader = this.oauth.toHeader(this.oauth.authorize(requestData, this.token)); return { Authorization: authHeader.Authorization }; } // --- Metrics --- async getTweetMetrics(tweetId: string) { const params = new URLSearchParams({ "tweet.fields": "public_metrics,non_public_metrics,organic_metrics", }); const url = `${API_BASE}/tweets/${tweetId}?${params}`; // Metrics require user context (OAuth 1.0a) for non_public_metrics const response = await this.oauthFetch(url, "GET"); return this.handleResponse(response, "getTweetMetrics"); } }

Loading blob content...

Latest Blog Posts

Redis vs ioredis vs valkey-glide
By punkpeye on January 26, 2026.
benchmark
Redis
valkey
Quickstart: Publish an MCP Server to the MCP Registry
By punkpeye on January 24, 2026.
mcp
official reference mirror
Official MCP Registry Server.json Requirements
By punkpeye on January 24, 2026.
mcp
official reference mirror

MCP directory API

We provide all the information about MCP servers via our MCP API.

curl -X GET 'https://glama.ai/api/mcp/v1/servers/Infatoshi/x-mcp'

If you have feedback or need assistance with the MCP directory API, please join our Discord server

x-api.ts•13.5 KiB