Google Analytics MCP Server

""" Google Analytics OAuth Authentication - integrated into tool calls """ import os import json import requests import logging from typing import Dict, Any # Google Auth libraries from google_auth_oauthlib.flow import InstalledAppFlow from google.oauth2.credentials import Credentials from google.auth.transport.requests import Request from google.auth.exceptions import RefreshError # Load environment variables try: from dotenv import load_dotenv load_dotenv() except ImportError: pass logger = logging.getLogger(__name__) # Constants - Updated for Google Analytics SCOPES = [ 'https://www.googleapis.com/auth/analytics', 'https://www.googleapis.com/auth/analytics.readonly' ] # Environment variables - Updated for Google Analytics GOOGLE_ANALYTICS_OAUTH_CONFIG_PATH = os.environ.get("GOOGLE_ANALYTICS_OAUTH_CONFIG_PATH") def get_oauth_credentials(): """Get and refresh OAuth user credentials for Google Analytics.""" if not GOOGLE_ANALYTICS_OAUTH_CONFIG_PATH: raise ValueError( "GOOGLE_ANALYTICS_OAUTH_CONFIG_PATH environment variable not set. " "Please set it to point to your OAuth credentials JSON file." ) if not os.path.exists(GOOGLE_ANALYTICS_OAUTH_CONFIG_PATH): raise FileNotFoundError(f"OAuth config file not found: {GOOGLE_ANALYTICS_OAUTH_CONFIG_PATH}") creds = None # Path to store the token (same directory as OAuth config) config_dir = os.path.dirname(os.path.abspath(GOOGLE_ANALYTICS_OAUTH_CONFIG_PATH)) token_path = os.path.join(config_dir, 'google_analytics_token.json') # Load existing token if it exists if os.path.exists(token_path): try: logger.info(f"Loading existing OAuth token from {token_path}") creds = Credentials.from_authorized_user_file(token_path, SCOPES) except Exception as e: logger.warning(f"Error loading existing token: {e}") creds = None # Check if credentials are valid if not creds or not creds.valid: if creds and creds.expired and creds.refresh_token: try: logger.info("Refreshing expired OAuth token") creds.refresh(Request()) logger.info("Token successfully refreshed") except RefreshError as e: logger.warning(f"Token refresh failed: {e}, will get new token") creds = None except Exception as e: logger.error(f"Unexpected error refreshing token: {e}") raise # Need new credentials - run OAuth flow if not creds: logger.info("Starting OAuth authentication flow") try: # Load client configuration with open(GOOGLE_ANALYTICS_OAUTH_CONFIG_PATH, 'r') as f: client_config = json.load(f) # Create flow flow = InstalledAppFlow.from_client_config(client_config, SCOPES) # Run OAuth flow with automatic local server try: creds = flow.run_local_server(port=0) logger.info("OAuth flow completed successfully using local server") except Exception as e: logger.warning(f"Local server failed: {e}, falling back to console") creds = flow.run_console() logger.info("OAuth flow completed successfully using console") except Exception as e: logger.error(f"OAuth flow failed: {e}") raise # Save the credentials if creds: try: logger.info(f"Saving credentials to {token_path}") os.makedirs(os.path.dirname(token_path), exist_ok=True) with open(token_path, 'w') as f: f.write(creds.to_json()) logger.info("Credentials saved successfully") except Exception as e: logger.warning(f"Could not save credentials: {e}") return creds def get_headers_with_auto_token() -> Dict[str, str]: """Get API headers with automatically managed token - integrated OAuth for Google Analytics.""" # This will automatically trigger OAuth flow if needed creds = get_oauth_credentials() headers = { 'Authorization': f'Bearer {creds.token}', 'Content-Type': 'application/json' } return headers