Skip to main content
Glama

Spotify Streamable MCP Server

by iceener
npmGitHub
TypeScript
2
59
OverviewInspectNewEndpointsSchemaRelated ServersReviewsScore
Need Help?View Source CodeReport Issue
README.md26.2 kB
## Spotify MCP Server (Streamable HTTP / OAuth / Remote) Streamable HTTP MCP server for Spotify exposes tools to search the catalog, read player status, control playback and devices, manage playlists, and manage your saved songs. Author: [overment](https://x.com/_overment). > [!WARNING] > This warning applies only to the HTTP transport and OAuth wrapper (Authorization Server / Resource Server) included for convenience. They are intended for personal/local use and are not production‑hardened. The bundled HTTP server exists solely to make it easy to connect your agent or UI. > > The MCP tools and schemas themselves are implemented with strong validation, slim outputs, clear error handling, and other best practices. > > If you plan to deploy remotely, replace the OAuth/HTTP layer with production infrastructure: proper token validation/introspection, secure storage, TLS termination, strict CORS/origin checks, rate limiting, audit logging, persistence for sessions/tokens, and compliance with Spotify’s terms. ### Motivation At first glance, a "Spotify MCP" may seem unnecessary—pressing play or skipping a song is often faster by hand. It becomes genuinely useful when you don’t know the exact title (e.g., “soundtrack from [movie title]”), when you want to “create and play a playlist that matches my mood”, or when you’re using voice. This MCP lets an LLM handle the fuzzy intent → search → selection → control loop, and it returns clear confirmations of what happened. It works well with voice interfaces and can be connected to agents/workflows for smart‑home automations. Example: ![](https://github.com/iceener/spotify-streamable-mcp-server/blob/main/_spec/heyalice-app.gif?raw=true) Note: This UI ^ is [Alice](https://heyalice.app), a desktop app. That’s one of my projects. ![](https://github.com/iceener/spotify-streamable-mcp-server/blob/main/_spec/claude-desktop.gif?raw=true) This UI ^ is Claude Desktop. ### Installation 1. Clone and install ```bash git clone https://github.com/overment/mcp.git cd mcp/servers/spotify bun install ``` 2. Prepare environment ```bash cp env.example .env ``` Edit `.env` and set at minimum: ```env PORT=3030 HOST=127.0.0.1 AUTH_ENABLED=true # Spotify developer app credentials SPOTIFY_CLIENT_ID=<your_client_id> SPOTIFY_CLIENT_SECRET=<your_client_secret> # Redirect URIs Allowlist OAUTH_REDIRECT_ALLOWLIST=https://claude.ai/api/mcp/auth_callback,https://claude.com/api/mcp/auth_callback # Authorization Server callback (this server) used to receive Spotify code REDIRECT_URI=http://127.0.0.1:3031/spotify/callback # Spotify endpoints (defaults) SPOTIFY_API_URL=https://api.spotify.com/v1 SPOTIFY_ACCOUNTS_URL=https://accounts.spotify.com ``` 3. Configure Redirect URIs in Spotify Dashboard In your Spotify Developer Dashboard → App → Redirect URIs, add: ```text alice://oauth/callback - that's for Alice app if you use it. http://127.0.0.1:3031/spotify/callback ``` 4. Run the server ```bash bun dev # MCP endpoint: http://127.0.0.1:3030/mcp # Authorization Server: http://127.0.0.1:3031 ``` 5. Connect your agent/UI Point your bridge/client to the MCP endpoint, for example `http://127.0.0.1:3030/mcp` (see “Client configuration” below for Claude Desktop). ### What the model sees (server instructions) The server advertises a concise description to clients so models can use it effectively without loading the full schema. This description summarizes tools, key rules, and usage patterns. Design notes (LLM-friendly by intent): - Tools do not mirror Spotify’s API 1:1. Interfaces are simplified and unified to reduce confusion. - Wherever possible, operations are batch-first (e.g., `queries[]`, `operations[]`) to minimize tool invocations and make intent explicit. - Every tool returns human-friendly feedback that clearly states what succeeded and what didn’t, with next-step guidance. - For player control, the server performs best‑effort background verification (e.g., checking device, context, and current track) because Spotify’s API can be ambiguous about immediate state. --- ### MCP identity - Name: `Spotify Music` - Instructions (shown to the model): > [!NOTE] > Server description below is what clients present to the model as the MCP Server’s "instructions." It’s designed to give a clear mental model of the server’s capabilities without diving into every schema detail. ```text Use these tools to find music, get the current player status, control and transfer playback, and manage playlists and saved songs. Tools - search_catalog: Find songs, artists, albums, or playlists. Inputs: queries[], types[album|artist|playlist|track], optional market (2-letter), limit (1-50), offset (0-1000), include_external['audio']. Returns per-query ordered items (slim fields like id, name, uri; tracks include artists). - player_status: Read current player, available devices, queue, and current track. Use this first to discover device_id before control. - spotify_control: Batch control with operations[]. action ∈ {play,pause,next,previous,seek,volume,shuffle,repeat,transfer,queue}. Provide matching params (position_ms, volume_percent, repeat, device_id, context_uri/uris, offset, queue_uri, transfer_play). Optional parallel=true runs operations concurrently. The tool automatically fetches player status after actions and reports whether playback is active, the target device, and current volume. Before transfer, call player_status to pick a device; if no active device exists, ask the user to open Spotify. - spotify_playlist: Manage playlists. action ∈ {list_user,get,items,create,update_details,add_items,remove_items,reorder_items}. - spotify_library: Manage saved songs. action ∈ {tracks_get,tracks_add,tracks_remove,tracks_contains}. Notes - If a call returns Unauthorized, ask the user to authenticate and retry. - Prefer small limits and minimal polling unless asked to do otherwise. - Use player_status to pick device_id before control. If no active device is found, prompt the user to open Spotify and/or transfer to a listed device. - After control actions, the tool includes a concise status. For full details, you can still call player_status. If not playing, ask the user to open Spotify or transfer to a listed device. ``` ### Tool design and conventions (LLM-friendly) - Batch-only where applicable: `queries: string[]` for search; `operations[]` for control. - Deterministic slim outputs: fixed shapes with minimal fields (`id`, `uri`, `name`, etc.). - Every tool returns a human-readable `_msg` summary. Control verifies context/track and device when possible. - Error handling: whole-call errors set `isError: true`; batch results include per-item `{ ok, error? }` and an aggregate summary. #### Returned messages - Each tool returns a concise human message in two places: - `structuredContent._msg` (or `structuredContent.error` on failure) - `content: [{ type: "text", text: "<same message>" }, ... ]` These are intended to be shown directly to users, with one of them designed for older MCP clients. ### Tools catalog (name, description, inputs, outputs) 1. `search_catalog` - Description: Search songs, artists, albums, and playlists. Inputs: `queries[]`, `types[album|artist|playlist|track]`, optional `market`, `limit(1-50)`, `offset(0-1000)`, `include_external['audio']`. - Auth/annotations: readOnlyHint=true, openWorldHint=true (app token; no user OAuth). - Input shape: ```ts { queries: string[]; types: ("album"|"artist"|"playlist"|"track")[]; market?: string; // 2-letter limit?: number; // 1..50 (default 20) offset?: number; // 0..1000 (default 0) include_external?: "audio"; } ``` - Output shape (SpotifySearchBatchOutput, slim): ```ts { _msg: string; queries: string[]; types: ("album"|"artist"|"playlist"|"track")[]; limit: number; offset: number; batches: Array<{ inputIndex: number; query: string; totals: Record<string, number>; items: Array<SlimTrack|SlimAlbum|SlimArtist|SlimPlaylist>; }>; } ``` 2. `player_status` - Description: Read the current player state, devices, queue, and current track. Use this to learn `device_id` before control. - Auth/annotations: readOnlyHint=true, openWorldHint=true (user OAuth required). - Input shape: ```ts { include?: ("player"|"devices"|"queue"|"current_track")[] } ``` - Output shape (SpotifyStatusOutput): ```ts { _msg: string; player?: { is_playing: boolean; shuffle_state?: boolean; repeat_state?: "off"|"track"|"context"; progress_ms?: number; timestamp?: number; device_id?: string; context_uri?: string|null; }; current_track?: SlimTrack | null; devices?: SlimDevice[]; devicesById?: Record<string, SlimDevice>; queue?: { current_id?: string | null; next_ids: string[] }; } ``` 3. `spotify_control` - Description: Control Spotify playback: play, pause, next/previous, seek, shuffle, repeat, volume, transfer, and queue. Batch interface; optional `parallel=true`. Verifies device/context/track when possible and returns a concise status. - Auth/annotations: readOnlyHint=false, openWorldHint=true (user OAuth required). - Input shape: ```ts { operations: Array<{ action: "play"|"pause"|"next"|"previous"|"seek"|"volume"|"shuffle"|"repeat"|"transfer"|"queue"; device_id?: string; position_ms?: number; volume_percent?: number; shuffle?: boolean; repeat?: "off"|"track"|"context"; context_uri?: string; uris?: string[]; offset?: { position?: number; uri?: string }; queue_uri?: string; transfer_play?: boolean; }>; parallel?: boolean; } ``` - Output shape (SpotifyControlBatchOutput): ```ts { _msg: string; results: Array<{ index: number; action: string; ok: boolean; error?: string; note?: string; device_id?: string; device_name?: string; from_device_id?: string; from_device_name?: string; }>; summary: { ok: number; failed: number; } } ``` Notes: - For play, set either `context_uri` (with optional `offset`) or `uris`, not both. - After actions, a concise status is included; use `player_status` for full details. 4. `spotify_playlist` - Description: Manage playlists for the current user. - Actions: `list_user`, `get`, `items`, `create`, `update_details`, `add_items`, `remove_items`, `reorder_items`. - Auth/annotations: readOnlyHint=false for mutating actions; true for reads; openWorldHint=true (user OAuth required). - Input shape: ```ts // List current user's playlists { action: "list_user"; limit?: number; offset?: number } // Get playlist details { action: "get"; playlist_id: string; market?: string; fields?: string } // Get playlist items { action: "items"; playlist_id: string; market?: string; limit?: number; offset?: number; fields?: string; additional_types?: string; } // Create playlist { action: "create"; name?: string; description?: string; public?: boolean; collaborative?: boolean; } // Update playlist details { action: "update_details"; playlist_id: string; name?: string; description?: string; public?: boolean; collaborative?: boolean; } // Add items to a playlist (URIs like spotify:track:ID) { action: "add_items"; playlist_id: string; uris: string[] } // Remove items from a playlist { action: "remove_items"; playlist_id: string; tracks: { uri: string; positions?: number[] }[]; snapshot_id?: string; } // Reorder items within a playlist { action: "reorder_items"; playlist_id: string; range_start: number; insert_before: number; range_length?: number; snapshot_id?: string; } ``` - Output shape: ```ts // Generic envelope used by all actions type SpotifyPlaylistOutputObject = { ok: boolean; action: string; _msg?: string; // concise human message error?: string; // present when ok=false code?: | "unauthorized" | "forbidden" | "rate_limited" | "bad_response" | "invalid_arguments"; data?: unknown; // varies by action (see below) }; // list_user → playlists summary type ListUserData = { limit: number; offset: number; total: number; items: Array<{ id: string; uri: string; name: string; type: "playlist" }>; }; // get → full playlist details (slimmed) type GetData = { id: string; uri: string; name: string; description?: string; owner_name?: string; public?: boolean; collaborative?: boolean; tracks_total?: number; }; // items → tracks with zero-based positions and the playlist context_uri type ItemsData = { playlist_id: string; playlist_uri: string; // spotify:playlist:... limit: number; offset: number; total: number; items: Array<{ type: "track"; id: string; uri: string; name: string; artists: string[]; album?: string; duration_ms?: number; position: number; // zero-based position for play offset }>; }; // create → details of the created playlist type CreateData = GetData; // update_details → confirmation only type UpdateDetailsData = { updated: true }; // add_items/remove_items/reorder_items → snapshot id for resulting state type SnapshotData = { snapshot_id?: string }; ``` - Notes: - Success responses set `{ ok: true, action, _msg?, data? }`; failures set `{ isError: true, structuredContent: { ok:false, action, error, code? } }`. - `items` annotates each returned track with zero-based `position` and includes `playlist_uri` for precise `spotify_control.play` with `{ context_uri, offset: { position } }`. 5. `spotify_library` - Description: Manage saved songs (Your Library). - Actions: `tracks_get`, `tracks_add`, `tracks_remove`, `tracks_contains`. - Auth/annotations: readOnlyHint=true for reads; false for writes; openWorldHint=true (user OAuth required). - Input shape: ```ts // List saved tracks { action: "tracks_get"; limit?: number; offset?: number; market?: string } // Save tracks by ID { action: "tracks_add"; ids: string[] } // track IDs (not URIs) // Remove saved tracks by ID { action: "tracks_remove"; ids: string[] } // Check if tracks are saved { action: "tracks_contains"; ids: string[] } ``` - Output shape: ```ts // Generic envelope used by all actions type SpotifyLibraryOutputObject = { ok: boolean; action: string; _msg?: string; // concise human message error?: string; // present when ok=false code?: | "unauthorized" | "forbidden" | "rate_limited" | "bad_response" | "invalid_arguments"; data?: unknown; // varies by action (see below) }; // tracks_get → saved tracks type TracksGetData = { limit: number; offset: number; total: number; items: Array<{ type: "track"; id: string; uri: string; name: string; artists: string[]; album?: string; duration_ms?: number; }>; }; // tracks_add → confirmation type TracksAddData = { saved: number; ids: string[] }; // tracks_remove → confirmation type TracksRemoveData = { removed: number; ids: string[] }; // tracks_contains → lookup results type TracksContainsData = { ids: string[]; contains: boolean[] }; ``` - Notes: - Success responses set `{ ok: true, action, _msg?, data? }`; failures set `{ isError: true, structuredContent: { ok:false, action, error, code? } }`. - Use track IDs for library actions; use full track URIs for playlist add/remove. ### HTTP Endpoints - `POST /mcp` — JSON-RPC 2.0 messages over Streamable HTTP. Initializes sessions and handles requests. - `GET /mcp` — Server-to-client notifications stream for an existing session; requires `Mcp-Session-Id` header. - `DELETE /mcp` — End a session; requires `Mcp-Session-Id` header. - `GET /health` — Health probe. - `GET /.well-known/oauth-authorization-server` — AS metadata (points to port `PORT+1`). Alias also at `/mcp/.well-known/oauth-authorization-server`. - `GET /.well-known/oauth-protected-resource` — RS metadata when `AUTH_ENABLED=true`. Alias also at `/mcp/.well-known/oauth-protected-resource`. Security middleware validates Origin and MCP protocol version headers, attaches a session ID when needed, challenges with `WWW-Authenticate` on 401, and maps RS tokens to Spotify tokens for session hydration. ### Client configuration (Claude Desktop) Claude Desktop connects to remote MCP servers through a local stdio bridge. Example configuration: ```json { "mcpServers": { "spotify": { "command": "bunx", "args": [ "mcp-remote", "http://127.0.0.1:3030/mcp", "--transport", "http-only" ], "env": { "NO_PROXY": "127.0.0.1,localhost" } } } } ``` If you enable local HTTPS in front of the server, change the URL to `https://localhost:3030/mcp` and ensure your client trusts the certificate. ### Cloudflare Worker (remote MCP) — Linear‑parity OAuth/RS flow The Worker at `src/worker.ts` implements Streamable HTTP with the same OAuth 2.1 Resource Server flow as the Linear Worker: - 401 challenge parity on `POST /mcp` with `WWW-Authenticate` and `Mcp-Session-Id` - RS bearer → upstream bearer mapping (Authorization header rewrite + request context) - `/.well-known/oauth-authorization-server` and `/.well-known/oauth-protected-resource` - `GET /authorize` (PKCE S256), `GET /spotify/callback`, `POST /token` (`authorization_code` + `refresh_token`) - `resources/list` and `prompts/list` return empty arrays (capability parity) - `GET /mcp` returns 405 (no SSE streaming by default) Required configuration (`wrangler.toml`): ```toml name = "spotify-mcp-worker" main = "src/worker.ts" compatibility_date = "2025-06-18" workers_dev = true compatibility_flags = ["nodejs_compat"] [vars] MCP_PROTOCOL_VERSION = "2025-06-18" AUTH_ENABLED = "true" AUTH_REQUIRE_RS = "true" AUTH_ALLOW_DIRECT_BEARER = "false" SPOTIFY_ACCOUNTS_URL = "https://accounts.spotify.com" OAUTH_AUTHORIZATION_URL = "https://accounts.spotify.com/authorize" OAUTH_TOKEN_URL = "https://accounts.spotify.com/api/token" OAUTH_SCOPES = "playlist-read-private playlist-read-collaborative playlist-modify-public playlist-modify-private user-read-playback-state user-modify-playback-state user-read-currently-playing user-library-read user-library-modify" OAUTH_REDIRECT_ALLOW_ALL = "false" # set "true" only in dev OAUTH_REDIRECT_ALLOWLIST = "alice://oauth/callback,https://claude.ai/api/mcp/auth_callback,https://claude.com/api/mcp/auth_callback" OAUTH_REDIRECT_URI = "alice://oauth/callback" OAUTH_PKCE_SKIP_VERIFY = "false" NODE_ENV = "development" [[kv_namespaces]] binding = "TOKENS" id = "<YOUR_KV_NAMESPACE_ID>" ``` Secrets (do not put these in `[vars]`): ```bash bunx wrangler secret put SPOTIFY_CLIENT_ID bunx wrangler secret put SPOTIFY_CLIENT_SECRET ``` Quick start (local): ```bash cd spotify bun x wrangler dev --local --port 8787 # Ready on http://localhost:8787 ``` Discovery check: ```bash curl -s http://127.0.0.1:8787/.well-known/oauth-protected-resource curl -s http://127.0.0.1:8787/.well-known/oauth-authorization-server ``` PKCE OAuth flow (manual test): ```bash VERIFIER=$(openssl rand -base64 32 | tr '+/' '-_' | tr -d '=') CHALLENGE=$(printf "%s" "$VERIFIER" | openssl dgst -sha256 -binary | openssl base64 | tr '+/' '-_' | tr -d '=') # Start authorization (redirects to your allowlisted redirect URI with ?code=...) curl -i "http://127.0.0.1:8787/authorize?response_type=code&client_id=mcp-client&state=abc123&code_challenge=$CHALLENGE&code_challenge_method=S256&redirect_uri=$(python3 - <<'PY'\nimport urllib.parse\nprint(urllib.parse.quote('alice://oauth/callback'))\nPY)" # After you obtain the code, exchange it: curl -s -X POST http://127.0.0.1:8787/token \ -H 'content-type: application/x-www-form-urlencoded' \ --data "grant_type=authorization_code&code=THE_CODE&code_verifier=$VERIFIER" # Call MCP with RS access token (Worker rewrites to Spotify bearer when mapped): curl -i -X POST http://127.0.0.1:8787/mcp \ -H 'content-type: application/json' \ -H "authorization: Bearer RS_ACCESS" \ --data '{"jsonrpc":"2.0","id":1,"method":"initialize"}' ``` Troubleshooting: - `invalid_grant`: PKCE mismatch or missing `/spotify/callback` step; ensure the client-followed redirect is allowlisted and you posted the same `code_verifier`. - 401 on `POST /mcp`: RS token not recognized (no mapping); complete OAuth again. In dev you can temporarily set `OAUTH_REDIRECT_ALLOW_ALL="true"`. - Tail logs: `bunx wrangler tail --format=pretty`. ### End-to-end example session This walkthrough shows a complete flow using all tools with actionable `_msg` outputs the AI can rely on. #### What's playing? Narration: I'll check what's currently playing on your Spotify account. Tool: player_status Request ```json { "include": ["player", "devices", "current_track"] } ``` Response ```text 'Come With Me - Radio Mix' is playing on device 'Adam’s MacBook Pro'. Context: spotify:playlist:2mMPIccnFiOd2xgkO0iABm. ``` Assistant: You're currently listening to "Come With Me - Radio Mix" on your MacBook Pro. The track is playing from a playlist. Would you like me to get more details about the current track or help you control playback in any way? #### Play "Protected" from this playlist Narration: I'll help you play "Protected" from your current playlist. Let me first get the playlist details to find that specific track. Tool: spotify_playlist Request ```json { "action": "items", "playlist_id": "2mMPIccnFiOd2xgkO0iABm", "limit": 50 } ``` Response ```text Loaded 50 items from 'Nora' (context: spotify:playlist:2mMPIccnFiOd2xgkO0iABm). - #0 Come with Me - Radio Mix — spotify:track:2FxwTax2LGVybNIrreiwXv - #1 Spring Embers — spotify:track:2slr1WHisMcjKMEz0RJ8u2 - #2 Come With Me - Radio Mix — spotify:track:1Ht4NJdY8adMsW540P5vG0 - #3 Senses of Comfort — spotify:track:79HByFhZMjYkMGRT5xQiDl - #4 Life on Hold — spotify:track:0uTkVCAf8PxMo8NJ3tFYzH - #5 Birthright — spotify:track:24KBMWfxD8l3z9JwfgU9oL - #6 I Love You Always Forever (Nora's Version) — spotify:track:4eMaX3oR9aD0JTwZOrNQ9Y - #7 Protected — spotify:track:1cRRIRrUiPnLOvsnWNhoH9 - #8 Indulgence — spotify:track:038yuRmrY7Vk8d6c3PDs7Q - #9 Aquatic — spotify:track:4PJaGVVVYNSN9EZJmMLtfK - #10 Tears In Your Eyes — spotify:track:4xs3eeuZb1WofrjlUp65QP - #11 Do No More — spotify:track:21YVPtVHmvpodDiy7GyhUU - #12 Sherwood Forest — spotify:track:4PweJp1SbwGcCtUWGUKHbw - #13 Train of Thoughts — spotify:track:1OoJQao2C0rvcUpr2BqgaM - #14 Hyperreal (Middle of the Night) — spotify:track:1f9H7N9ijHFnV0BqJufUIS - #15 Memories — spotify:track:6BiBQjBIl8ozwqRihm4hTV - #16 Polar Lights — spotify:track:485Th9A00AaXGv6CJUEtfi - #17 In Your Eyes — spotify:track:501sz40LhXSFQHA2LTXMpw - #18 In The Air Tonight - Croatia Squad Remix — spotify:track:3CdGMGuadrX7Dyw6Zwn1VR - #19 Pretoria — spotify:track:5ViijhC2983J1B8Bo1wbbo … and 30 more ``` Assistant: Perfect! I found "Protected" at position #7 in your playlist. Now I'll play it for you. Tool: spotify_control Request ```json { "operations": [ { "action": "play", "context_uri": "spotify:playlist:2mMPIccnFiOd2xgkO0iABm", "offset": { "position": 7 } } ] } ``` Response ```text Successful: play. Status: Now playing on 'Adam’s MacBook Pro'. Current track: 'Protected'. Context verified: spotify:playlist:2mMPIccnFiOd2xgkO0iABm ``` Assistant: Great! I've started playing "Protected" from your "Nora" playlist on your MacBook Pro. The track should be playing now! #### Add current track to favorites Narration: I'll add "Protected" to your saved tracks (favorites) right away! Tool: spotify_library Request ```json { "action": "tracks_add", "ids": ["1cRRIRrUiPnLOvsnWNhoH9"] } ``` Response ```text Saved 1 track: - Protected — spotify:track:1cRRIRrUiPnLOvsnWNhoH9 ``` Assistant: Perfect! I've added "Protected" to your saved tracks. It's now in your Liked Songs. Great choice! #### Switch to "Train of Thoughts" Narration: I'll play "Train of Thoughts" from your Nora playlist for you! Tool: spotify_control Request ```json { "operations": [ { "action": "play", "context_uri": "spotify:playlist:2mMPIccnFiOd2xgkO0iABm", "offset": { "position": 13 } } ] } ``` Response ```text Successful: play. Status: Now playing on 'Adam’s MacBook Pro'. Current track: 'Train of Thoughts'. Context verified: spotify:playlist:2mMPIccnFiOd2xgkO0iABm ``` Assistant: Done! "Train of Thoughts" is now playing on your MacBook Pro. I can see from the playlist that this is position #13 in your "Nora" playlist. #### Turn the volume up to 100% Narration: I'll turn the volume up to 100% for you! Tool: spotify_control Request ```json { "operations": [{ "action": "volume", "volume_percent": 100 }] } ``` Response ```text Successful: volume. Status: Now playing on 'Adam’s MacBook Pro'. Current track: 'Train of Thoughts'. Volume: 100% ``` Assistant: Perfect! I've cranked the volume up to 100% on your MacBook Pro. "Train of Thoughts" should now be playing at full volume. ### Troubleshooting - Missing user token: complete the OAuth flow. The server will log mapping/attachment events. - Unknown RS token: restart or mapping loss triggers a new OAuth prompt; the client should re-auth automatically. - No devices: open Spotify on a device, then use `player_status` to list devices or `spotify_control` → `transfer`. ### Development ```bash bun dev # start with hot reloading bun run test:client # run the included MCP test client bun run lint # code style bun run format # formatting bun run typecheck # TypeScript validation bun run build # production build bun start # start production server ``` ### Architecture (high level) ``` src/ ├── config/ # env + auth helpers ├── core/ # MCP server bootstrap, context, session ├── http/ # Hono app, routes, security, auth-proxy ├── tools/ # spotify_* and search_catalog tools ├── services/ # Spotify API clients ├── schemas/ # Zod input/output schemas ├── utils/ # logging, security, rate limiting └── index.ts # entry point ``` ### License MIT — see `LICENSE`.

MCP directory API

We provide all the information about MCP servers via our MCP API.

curl -X GET 'https://glama.ai/api/mcp/v1/servers/iceener/spotify-streamable-mcp-server'

If you have feedback or need assistance with the MCP directory API, please join our Discord server