Twenty MCP Server

clerk-client.ts•3.41 KiB

import { createClerkClient } from '@clerk/clerk-sdk-node'; import type { ClerkClient as ClerkSDKClient } from '@clerk/clerk-sdk-node'; export interface TokenValidationResult { valid: boolean; userId?: string; sessionId?: string; error?: string; } export interface UserMetadata { twentyApiKey?: string; twentyBaseUrl?: string; twentyApiKeyUpdatedAt?: string; } export class ClerkClient { private clerk: ClerkSDKClient; private enabled: boolean; constructor() { this.enabled = process.env.AUTH_ENABLED === 'true'; if (this.enabled) { const secretKey = process.env.CLERK_SECRET_KEY; const publishableKey = process.env.CLERK_PUBLISHABLE_KEY; if (!secretKey) { throw new Error('CLERK_SECRET_KEY is required when AUTH_ENABLED=true'); } this.clerk = createClerkClient({ secretKey, publishableKey, }); } else { // Create a dummy client for when auth is disabled this.clerk = null as any; } } isEnabled(): boolean { return this.enabled; } async validateToken(token: string): Promise<TokenValidationResult> { if (!this.enabled) { return { valid: false, error: 'Authentication is not enabled' }; } try { // Remove 'Bearer ' prefix if present const cleanToken = token.replace(/^Bearer\s+/i, ''); // Verify the session using the session ID from the token // First, we need to decode the JWT to get the session ID const tokenParts = cleanToken.split('.'); if (tokenParts.length !== 3) { return { valid: false, error: 'Invalid token format' }; } // Decode the payload (base64url decode) const payload = JSON.parse(Buffer.from(tokenParts[1], 'base64url').toString()); if (!payload.sid) { return { valid: false, error: 'No session ID in token' }; } // Verify the session exists and is active const session = await this.clerk.sessions.getSession(payload.sid); if (!session || session.status !== 'active') { return { valid: false, error: 'Invalid or inactive session' }; } return { valid: true, userId: session.userId, sessionId: session.id, }; } catch (error) { console.error('Token validation error:', error); return { valid: false, error: error instanceof Error ? error.message : 'Token validation failed', }; } } async getUserMetadata(userId: string): Promise<UserMetadata | null> { if (!this.enabled) { return null; } try { const user = await this.clerk.users.getUser(userId); return user.privateMetadata as UserMetadata || {}; } catch (error) { console.error('Failed to get user metadata:', error); return null; } } async updateUserMetadata(userId: string, metadata: UserMetadata): Promise<void> { if (!this.enabled) { throw new Error('Authentication is not enabled'); } try { await this.clerk.users.updateUser(userId, { privateMetadata: metadata as any, }); } catch (error) { console.error('Failed to update user metadata:', error); throw new Error('Failed to update user configuration'); } } getClerkDomain(): string { return process.env.CLERK_DOMAIN || ''; } getPublishableKey(): string { return process.env.CLERK_PUBLISHABLE_KEY || ''; } }

Loading blob content...

Latest Blog Posts

Redis vs ioredis vs valkey-glide
By punkpeye on January 26, 2026.
benchmark
Redis
valkey
Quickstart: Publish an MCP Server to the MCP Registry
By punkpeye on January 24, 2026.
mcp
official reference mirror
Official MCP Registry Server.json Requirements
By punkpeye on January 24, 2026.
mcp
official reference mirror

MCP directory API

We provide all the information about MCP servers via our MCP API.

curl -X GET 'https://glama.ai/api/mcp/v1/servers/jezweb/twenty-mcp'

If you have feedback or need assistance with the MCP directory API, please join our Discord server

clerk-client.ts•3.41 KiB