Skip to main content
Glama

MCP Server Boilerplate

by chrisleekr
GitHub
TypeScript
OverviewInspectNewSchemaRelated ServersReviewsScore
Need Help?View Source CodeReport Issue

MCP Server Boilerplate

A comprehensive Model Context Protocol (MCP) server boilerplate built with TypeScript and Streamable HTTP transport with an OAuth Proxy for 3rd party authorization servers like Auth0.

Features

  • MCP Server implementation: HTTP-Based Streamable transport using @modelcontextprotocol/sdk with HTTP transport, session management, and tool execution.
  • OAuth authentication/3rd party authorization: Implements an OAuth server for MCP clients to process 3rd party authorization servers like Auth0, providing Dynamic Application Registration for MCP server.
  • Storage: Provide storage for MCP server to store data like OAuth sessions, tokens, etc.
  • Built-in sample tools: echo, system-time, project for demonstration.

Why this project exists?

  • The Model Context Protocol spec requires Dynamic Application Registration because it provides a standardized way for MCP clients to automatically register with new servers and obtain OAuth client IDs without user interaction. The main reason for this mechanism is because MCP clients can't know all possible services in advance and manual registration would create significant effort for users and it is not scalable. If do not support Dynamic Application Registration, then MCP clients need to provide OAuth client ID and secret to the server, which is not secure and not scalable.
  • However, enabling Dynamic Application Registration (if supported) becomes a security risk because the endpoint is a public endpoint that anyone can create OAuth clients. It can easily be abused, such as by flooding with unwanted client registrations. Hence, Auth0 has disabled Dynamic Application Registration
  • As a result, this project provides a way to enable Dynamic Application Registration for MCP server by using OAuth Proxy, but delegating authorization to 3rd party authorization server like Auth0, Github, Google, etc.

Endpoints

EndpointDescription
GET /pingPing the server
POST /mcpMCP protocol request with authentication
DELETE /mcpSession termination
GET /.well-known/oauth-authorization-serverOAuth authorization server metadata
GET /.well-known/oauth-protected-resourceOAuth protected resources metadata
POST /oauth/registerRegister a new MCP client
GET /oauth/authorizeHandle authorization request
POST /oauth/tokenHandle token request
POST /oauth/revokeHandle token revocation
GET /oauth/statsGet OAuth service statistics
GET /oauth/auth0-callbackHandle Auth0 callback

Getting Started

Installation

  1. Clone the repository:
    git clone <your-repo> cd mcp-server-boilerplate
  2. Install dependencies:
    npm install
  3. Set up environment variables:
    cp .env.example .env
  4. Set up the MCP server for local development
    npm run dev:setup

Set up the MCP server for Cursor

  1. Create MCP configuration file for local buildCreate a .cursor/mcp.json file in your project directory (for project-specific setup) or ~/.cursor/mcp.json in your home directory (for global setup):
    { "mcpServers": { "mcp-server-boilerplate-cursor": { "type": "http", "url": "http://localhost:3000/mcp" } } }

Use npx @modelcontextprotocol/inspector to test the MCP server

  1. Copy mcp-config.example.json to mcp-config.json
  2. Edit mcp-config.json to point to the correct MCP server
  3. Run the inspector
    npm run docker:run # Then run the inspector npx @modelcontextprotocol/inspector -y --config ./mcp-config.json --server mcp-server-boilerplate-cursor
    or
    npm run test:inspector

Setup Auth0 for authorization

  1. Create a new application in Auth0
    • Go to Auth0 Dashboard
    • Click on "Applications"
    • Click on "Create Application"
      • Name: MCP Server Boilerplate
      • Application Type: Regular Web Application
    • Click on "Create"
  2. Set up the application
    • Click on "Settings"
    • Set the following settings:
      • Allowed Callback URLs: http://localhost:3000/oauth/auth0-callback
      • Allowed Web Origins: http://localhost:3000
  3. Create a new API
    • Click on "APIs"
    • Click on "Create API"
      • Name: MCP Server Boilerplate
      • Identifier: urn:mcp-server-boilerplate
      • JSON Web Token (JWT) Profile: Auth0
      • JSON Web Token (JWT) Signature Algorithm: RS256
    • Click on "Create"

Screenshots

Metadata DiscoveryClient RegistrationPreparing Authorization
Metadata DiscoveryClient RegistrationPreparing Authorization
Authorization with 3rd party serverRequest Authorization and acquire authorization codeToken Request and Authentication Complete
Request Authorization and acquire authorization codeToken RequestAuthentication Complete

References

This server cannot be installed

-
security - not tested
F
license - not found
-
quality - not tested

How are these scores calculated?

A comprehensive Model Context Protocol server template that implements HTTP-based transport with OAuth proxy for third-party authorization servers like Auth0, enabling AI tools to securely connect while supporting Dynamic Application Registration.

  1. Features
    1. Why this project exists?
      1. Endpoints
        1. Getting Started
          1. Installation
          2. Set up the MCP server for Cursor
          3. Use npx @modelcontextprotocol/inspector to test the MCP server
          4. Setup Auth0 for authorization
        2. Screenshots
          1. References

            Related MCP Servers

            • MCP Server Template

              stevennevins
              A
              security
              F
              license
              A
              quality
              A TypeScript-based template for developing Model Context Protocol servers with features like dependency injection and service-based architecture, facilitating the creation and integration of custom data processing tools.
              Last updated -
              1
              2
              TypeScript

            • Auth0 OAuth MCP Server

              pratham-svg
              -
              security
              F
              license
              -
              quality
              A Model Context Protocol server that requires user authentication via Auth0 before enabling secure API access on behalf of the authenticated user.
              Last updated -
              TypeScript

            • MCP Boilerplate

              iamsrikanthnani
              -
              security
              A
              license
              -
              quality
              A server that implements the Model Context Protocol, providing a standardized way to connect AI models to different data sources and tools.
              Last updated -
              3
              5
              TypeScript
              MIT License

            • Remote MCP Server with GitHub OAuth

              danrthompson
              -
              security
              -
              license
              -
              quality
              A Model Context Protocol server that supports remote connections and authenticates users via GitHub OAuth, allowing them to access tools based on their GitHub identity.
              Last updated -
              TypeScript

            View all related MCP servers

            New MCP Servers

            MCP directory API

            We provide all the information about MCP servers via our MCP API.

            curl -X GET 'https://glama.ai/api/mcp/v1/servers/chrisleekr/mcp-server-boilerplate'

            If you have feedback or need assistance with the MCP directory API, please join our Discord server