MCP Router

architecture.md•18.3 KiB

# Architecture Overview This document describes the high-level architecture of MCP Router. ## System Architecture MCP Router is built as an Electron application with a clear separation between the main process (backend) and renderer process (frontend). ``` ┌────────────────────────────────────────────────────────────────────┐ │ Electron Application │ ├────────────────────────────────────────────────────────────────────┤ │ │ │ ┌─────────────────────────┐ ┌─────────────────────────────┐ │ │ │ Main Process │ │ Renderer Process │ │ │ │ (Node.js) │ │ (Chromium) │ │ │ │ │ │ │ │ │ │ ┌─────────────────┐ │ │ ┌─────────────────────┐ │ │ │ │ │ DI Container │ │ │ │ React App │ │ │ │ │ │ (InversifyJS) │ │ │ │ │ │ │ │ │ └────────┬────────┘ │ │ │ ┌───────────────┐ │ │ │ │ │ │ │ │ │ │ Zustand │ │ │ │ │ │ ┌────────▼────────┐ │ │ │ │ Stores │ │ │ │ │ │ │ Services │ │ │ │ └───────────────┘ │ │ │ │ │ │ - Auth │ │ │ │ │ │ │ │ │ │ - Policy │ │ IPC │ │ ┌───────────────┐ │ │ │ │ │ │ - Server Mgr │◄───┼──────┼──┤ │ React Hooks │ │ │ │ │ │ │ - Approval │ │ │ │ │ (useXxx) │ │ │ │ │ │ │ - MCP Agg │ │ │ │ └───────────────┘ │ │ │ │ │ └────────┬────────┘ │ │ │ │ │ │ │ │ │ │ │ │ ┌───────────────┐ │ │ │ │ │ ┌────────▼────────┐ │ │ │ │ UI Components│ │ │ │ │ │ │ Repositories │ │ │ │ │ (shadcn/ui) │ │ │ │ │ │ └────────┬────────┘ │ │ │ └───────────────┘ │ │ │ │ │ │ │ │ └─────────────────────┘ │ │ │ │ ┌────────▼────────┐ │ │ │ │ │ │ │ SQLite DB │ │ │ │ │ │ │ └─────────────────┘ │ │ │ │ │ └─────────────────────────┘ └─────────────────────────────┘ │ │ │ └────────────────────────────────────────────────────────────────────┘ ``` ## Main Process Architecture ### Dependency Injection The main process uses InversifyJS for dependency injection, enabling: - Loose coupling between components - Easy testing with mocks - Clear dependency graphs ```typescript // Core DI Container Setup const container = new Container(); // Register services container.bind<ILogger>(TYPES.Logger).to(LoggerService).inSingletonScope(); container.bind<IDatabase>(TYPES.Database).to(SqliteDatabase).inSingletonScope(); container.bind<ITokenService>(TYPES.TokenService).to(TokenService).inSingletonScope(); // ... more bindings ``` ### Service Layer Services encapsulate business logic and are the primary units of functionality: | Service | Responsibility | |---------|---------------| | `TokenService` | API token CRUD, validation, hashing | | `TokenValidator` | Token scope and permission validation | | `ServerManager` | MCP server lifecycle management | | `PolicyEngine` | Policy rule evaluation | | `ApprovalQueueService` | Human-in-the-loop approvals | | `RateLimiter` | Request rate limiting | | `MemoryService` | Persistent memory/context storage | | `AuditService` | Event logging and audit trail | | `ToolCatalogService` | Aggregated tool discovery | | `McpAggregator` | MCP protocol aggregation | | `McpProtocolServer` | MCP SDK Server wrapper — routes protocol requests to services | | `RiskClassifier` | Regex-based tool risk classification (`read` / `write` / `exec`) | | `ClientSyncService` | Cross-platform config sync to AI clients (macOS, Windows, Linux) | | `SecureHttpServer` | Express HTTP gateway with SDK transports (StreamableHTTP + SSE) | | `McpClientFactory` | Creates SDK Client instances per upstream MCP server | ### Repository Layer Repositories handle data persistence with SQLite: ```typescript interface ITokenRepository { create(token: Token): Promise<Token>; findById(id: string): Promise<Token | null>; findByHash(hash: string): Promise<Token | null>; update(token: Token): Promise<void>; delete(id: string): Promise<void>; findAll(): Promise<Token[]>; } ``` ### IPC Communication The main and renderer processes communicate via Electron's IPC: ```typescript // Main process handler registration ipcMain.handle('servers:list', async () => { const serverManager = container.get<IServerManager>(TYPES.ServerManager); return serverManager.getAllServers(); }); // Renderer process invocation (via preload) const servers = await window.electron.servers.list(); ``` ## Renderer Process Architecture ### State Management (Zustand) Zustand stores manage UI state with a simple, hook-based API: ```typescript export const useServerStore = create<ServerState>()( devtools((set, get) => ({ servers: [], selectedServerId: null, isLoading: false, fetchServers: async () => { set({ isLoading: true }); const servers = await window.electron.servers.list(); set({ servers, isLoading: false }); }, // ... more actions })) ); ``` ### Custom Hooks React hooks abstract IPC communication and provide clean APIs: ```typescript export function useServers() { const api = useElectron(); const listServers = useCallback(() => api.servers.list(), [api]); const startServer = useCallback((id: string) => api.servers.start(id), [api]); return { listServers, startServer, /* ... */ }; } ``` ### Component Architecture UI follows a feature-based structure: ``` renderer/ ├── components/ │ └── ui/ # Base UI components (shadcn/ui) │ ├── button.tsx │ ├── card.tsx │ └── dialog.tsx ├── features/ │ ├── servers/ # Server management feature │ │ ├── ServerList.tsx │ │ ├── ServerCard.tsx │ │ └── AddServerDialog.tsx │ ├── policies/ # Policy management feature │ └── approvals/ # Approval queue feature └── stores/ # Zustand state stores ``` ## Data Flow ### Request Flow (Tool Execution) ``` 1. Client Request (StreamableHTTP or SSE) └─► Express Middleware (CORS, Helmet, Rate Limiting) └─► Auth Middleware (Bearer Token → TokenValidator) └─► MCP SDK Transport (StreamableHTTPServerTransport / SSEServerTransport) └─► McpProtocolServer (SDK Server request handlers) └─► Policy Check (PolicyEngineService) ├─► ALLOW: Execute Tool (McpAggregatorService) │ └─► McpClientFactory (SDK Client → upstream server) │ └─► Audit Log (AuditService) ├─► DENY: Return Error ├─► REDACT: Execute Tool → Mask redactFields in result └─► REQUIRE_APPROVAL: Queue Request (ApprovalQueueService) └─► User Decision ├─► Approve: Continue to Execute └─► Reject: Return Error ``` ### HTTP Transport Architecture ``` ┌──────────────────────────────────────────────────────────────┐ │ SecureHttpServer (Express) │ │ Middleware: helmet → CORS → rate-limit → auth → project │ ├──────────────────────────────────────────────────────────────┤ │ │ │ POST|GET|DELETE /mcp ──► StreamableHTTPServerTransport │ │ (stateless, per-request) │ │ │ │ GET /mcp/sse ──────────► SSEServerTransport │ │ POST /mcp/messages ────► (session-based, persistent) │ │ │ │ GET /mcp/tools/list ───► Legacy REST endpoints (convenience)│ │ POST /mcp/tools/call ──► │ │ │ ├──────────────────────────────────────────────────────────────┤ │ McpProtocolServer (SDK Server) │ │ Handlers: ListTools, CallTool, ListResources, │ │ ReadResource, ListPrompts, GetPrompt │ ├──────────────────────────────────────────────────────────────┤ │ McpAggregator → McpClientFactory │ │ SDK Client + StdioClientTransport (per server) │ └──────────────────────────────────────────────────────────────┘ ``` ### CLI Bridge (stdio-only clients) ``` Claude Desktop ←stdio→ mcp-router-cli bridge ←HTTP→ MCP Router (StdioServerTransport) (StreamableHTTPClientTransport) ``` ### IPC Data Flow ``` ┌─────────────┐ invoke ┌─────────────┐ handle ┌─────────────┐ │ Component │ ──────────────► │ Preload │ ─────────────► │ Handler │ │ (React) │ │ Bridge │ │ (Main) │ └─────────────┘ └─────────────┘ └─────────────┘ │ │ │ │ │ │ ▼ ▼ ▼ useXxxHook() contextBridge.exposeInMainWorld() ipcMain.handle() │ │ │ ▼ ▼ ▼ Zustand Store window.electron.xxx DI Container ``` ## Security Architecture ### Token Authentication ``` ┌─────────────────────────────────────────────────────────────┐ │ Token Structure │ ├─────────────────────────────────────────────────────────────┤ │ id: string Unique identifier │ │ name: string Human-readable name │ │ hash: string SHA-256 hash (stored, not plaintext) │ │ scopes: string[] Allowed operations │ │ serverIds: string[] Allowed server access │ │ expiresAt?: number Optional expiration timestamp │ │ rateLimit?: object Per-token rate limit config │ └─────────────────────────────────────────────────────────────┘ ``` ### Policy Evaluation Policies use **scope-based precedence** — the most specific matching scope wins. Within the same scope, rules are ordered by priority (descending), then creation date (newest first). | Scope | Specificity | Description | |-------|-------------|-------------| | `client` | 3 (highest) | Rules targeting a specific client token | | `server` / `workspace` | 2 | Rules scoped to a server or workspace | | `global` | 1 (lowest) | Rules applying to all requests | ```typescript interface PolicyRule { id: string; name: string; description?: string; scope: 'global' | 'client' | 'server'; scopeId?: string; resourceType: 'tool' | 'server' | 'resource' | 'prompt'; pattern: string; // Glob pattern action: 'allow' | 'deny' | 'require_approval' | 'redact'; priority: number; // Higher = evaluated first (within same scope) enabled: boolean; conditions?: Record<string, unknown>; redactFields?: string[]; // Dot-notation paths, e.g. ['auth.password', 'api_key'] } ``` When a `redact` policy matches, the tool call is allowed but specified fields in the result are replaced with `[REDACTED]`. Nested paths (e.g. `auth.password`) are traversed via dot-notation. ### Risk Classification Tools are automatically classified by risk level based on their name using regex pattern matching: | Risk Level | Pattern | Default Rate Limit | |------------|---------|-------------------| | `exec` | `/(exec\|run\|shell\|command\|terminal\|bash\|sh\|spawn\|evaluate)/i` | 10 req/min | | `write` | `/(create\|update\|delete\|write\|send\|post\|put\|patch\|remove\|insert\|modify\|set\|add\|push)/i` | 30 req/min | | `read` | Everything else | 100 req/min | Risk classification drives the default rate limits in `RateLimiterService.consumeForTool()`. Per-tool custom limits override risk-based defaults. ### Cross-Platform Client Sync The `ClientSyncService` exports MCP Router bridge configurations to AI client apps. Platform paths are resolved dynamically via `process.platform`: | Client | macOS | Windows | Linux | |--------|-------|---------|-------| | Claude | `~/Library/Application Support/Claude/...` | `%APPDATA%/Claude/...` | `~/.config/Claude/...` | | Cursor | `~/.cursor/mcp.json` | `%USERPROFILE%/.cursor/mcp.json` | `~/.cursor/mcp.json` | | VS Code | `~/Library/Application Support/Code/User/settings.json` | `%APPDATA%/Code/User/settings.json` | `~/.config/Code/User/settings.json` | | Windsurf | `~/.codeium/windsurf/mcp_config.json` | `%USERPROFILE%/.codeium/windsurf/mcp_config.json` | `~/.codeium/windsurf/mcp_config.json` | | Cline | VS Code globalStorage path | VS Code globalStorage path | VS Code globalStorage path | ## Database Schema ### Core Tables ```sql -- Tokens CREATE TABLE tokens ( id TEXT PRIMARY KEY, name TEXT NOT NULL, hash TEXT UNIQUE NOT NULL, scopes TEXT NOT NULL, -- JSON array server_ids TEXT, -- JSON array expires_at INTEGER, rate_limit TEXT, -- JSON object created_at INTEGER NOT NULL, updated_at INTEGER NOT NULL ); -- Servers CREATE TABLE servers ( id TEXT PRIMARY KEY, name TEXT NOT NULL, description TEXT, transport TEXT NOT NULL, -- 'stdio' | 'http' command TEXT, args TEXT, -- JSON array url TEXT, status TEXT NOT NULL, created_at INTEGER NOT NULL, updated_at INTEGER NOT NULL ); -- Policies CREATE TABLE policies ( id TEXT PRIMARY KEY, name TEXT NOT NULL, description TEXT, scope TEXT NOT NULL, scope_id TEXT, resource_type TEXT NOT NULL, pattern TEXT NOT NULL, action TEXT NOT NULL, -- 'allow' | 'deny' | 'require_approval' | 'redact' priority INTEGER NOT NULL, enabled INTEGER NOT NULL, conditions TEXT, -- JSON object redact_fields TEXT, -- JSON array of dot-notation paths created_at INTEGER NOT NULL, updated_at INTEGER NOT NULL ); -- Audit Events CREATE TABLE audit_events ( id TEXT PRIMARY KEY, event_type TEXT NOT NULL, actor_id TEXT, resource_type TEXT, resource_id TEXT, action TEXT NOT NULL, details TEXT, -- JSON object timestamp INTEGER NOT NULL ); ``` ## Extension Points ### Adding New Services 1. Define interface in `core/interfaces.ts` 2. Add type symbol in `core/types.ts` 3. Implement service class with `@injectable()` decorator 4. Register in `core/container.ts` 5. Create IPC handlers if needed 6. Add preload bridge methods 7. Create React hooks for renderer access ### Adding New UI Features 1. Create feature directory in `renderer/features/` 2. Implement components 3. Create Zustand store if needed 4. Add hooks for IPC communication 5. Integrate with main App layout

Loading blob content...

Latest Blog Posts

Redis vs ioredis vs valkey-glide
By punkpeye on January 26, 2026.
benchmark
Redis
valkey
Quickstart: Publish an MCP Server to the MCP Registry
By punkpeye on January 24, 2026.
mcp
official reference mirror
Official MCP Registry Server.json Requirements
By punkpeye on January 24, 2026.
mcp
official reference mirror

MCP directory API

We provide all the information about MCP servers via our MCP API.

curl -X GET 'https://glama.ai/api/mcp/v1/servers/justinpreston/mcp-router'

If you have feedback or need assistance with the MCP directory API, please join our Discord server

architecture.md•18.3 KiB