Gmail MCP Server

AUTOMATED_OAUTH_TESTING.md•6.58 kB

# Automated OAuth Testing Implementation This document explains the automated OAuth authentication implementation for Gmail MCP Server testing. ## Overview The test suite now supports fully automated OAuth authentication, eliminating the need for manual intervention during testing. This is achieved through Puppeteer browser automation that handles the Google OAuth flow programmatically. ## Implementation Details ### Key Features 1. **Automated Email/Password Entry**: Automatically fills in Gmail credentials 2. **App Password Support**: Recommended method for secure authentication 3. **2FA Handling**: Detects and provides guidance for 2FA scenarios 4. **Error Handling**: Comprehensive error reporting and debugging support 5. **Flexible Configuration**: Environment variable-based configuration ### Authentication Methods #### Method 1: App Passwords (Recommended) ```bash GMAIL_USE_APP_PASSWORD=true GMAIL_TEST_PASSWORD=your-16-char-app-password ``` **Advantages:** - Bypasses 2FA requirements - More secure than regular passwords - Designed for automated access - No "less secure app" settings needed #### Method 2: Regular Passwords ```bash GMAIL_USE_APP_PASSWORD=false GMAIL_TEST_PASSWORD=your-regular-password ``` **Considerations:** - May require 2FA handling - Less secure for automated testing - May need "less secure app access" (not recommended) ## Setup Instructions ### 1. Install Dependencies ```bash npm install ``` ### 2. Configure Environment ```bash cp .env.test.example .env.test # Edit .env.test with your credentials ``` ### 3. Set Up App Password (Recommended) 1. Enable 2FA on your Google account 2. Generate App Password at https://myaccount.google.com/apppasswords 3. Use the 16-character password in your `.env.test` ### 4. Run Tests ```bash # Using environment file npm run test:mcp:env # Direct execution npm run test:mcp # Debug mode (visible browser) npm run test:mcp:debug ``` ## Code Implementation ### OAuth Flow Handler The `handleGoogleOAuthFlow` function automates the OAuth process: ```typescript async function handleGoogleOAuthFlow(page: any, email: string, password: string) { // Wait for email input and enter email await page.waitForSelector('input[type="email"]'); await page.type('input[type="email"]', email); await page.click('#identifierNext'); // Wait for password input and enter password await page.waitForSelector('input[type="password"]'); await page.type('input[type="password"]', password); await page.click('#passwordNext'); // Handle consent screen if present const consentButton = await page.$('#submit_approve_access'); if (consentButton) { await page.click('#submit_approve_access'); } } ``` ### App Password Handler The `handleGoogleOAuthWithAppPassword` function is optimized for App Password authentication: ```typescript async function handleGoogleOAuthWithAppPassword(page: any, email: string, appPassword: string) { // Similar flow but optimized for App Password authentication // Handles consent screens and bypasses 2FA } ``` ### Browser Configuration Puppeteer is configured with optimal settings for OAuth automation: ```typescript const browser = await puppeteer.launch({ headless: process.env.HEADLESS_BROWSER !== 'false', userDataDir: newUserDataDir, // Isolated profile slowMo: 100, // Slower interactions for reliability args: [ "--disable-blink-features=AutomationControlled", "--disable-infobars", "--no-sandbox", "--disable-setuid-sandbox", ], }); ``` ## Environment Variables | Variable | Purpose | Default | Required | |----------|---------|---------|----------| | `GMAIL_TEST_EMAIL` | Test Gmail address | `sensennium.kushal4@gmail.com` | No | | `GMAIL_TEST_PASSWORD` | Password/App Password | - | Yes | | `GMAIL_USE_APP_PASSWORD` | Use App Password method | `false` | No | | `HEADLESS_BROWSER` | Run browser headlessly | `true` | No | ## Error Handling ### Common Scenarios 1. **Invalid Credentials**: Clear error message with setup instructions 2. **2FA Required**: Detection and guidance for App Password setup 3. **Network Issues**: Timeout handling and retry suggestions 4. **UI Changes**: Screenshot capture for debugging ### Debug Features - **Screenshot Capture**: Automatic screenshots on errors - **Visible Browser Mode**: Set `HEADLESS_BROWSER=false` for debugging - **Detailed Logging**: Step-by-step OAuth flow logging - **Error Context**: Comprehensive error messages with solutions ## Security Considerations ### Best Practices 1. **Use App Passwords**: More secure than regular passwords 2. **Separate Test Account**: Don't use production Gmail accounts 3. **Environment Isolation**: Keep test credentials separate 4. **Regular Rotation**: Update test credentials periodically ### Security Features - **Isolated Browser Profiles**: Each test run uses a fresh profile - **No Credential Storage**: Credentials are only in environment variables - **Secure Defaults**: App Password method is recommended default ## Troubleshooting ### OAuth Fails 1. **Check Credentials**: Verify email and password are correct 2. **Use App Password**: Switch to App Password method 3. **Enable Debug Mode**: Set `HEADLESS_BROWSER=false` 4. **Check Screenshots**: Look for error screenshots in project root 5. **Network Issues**: Verify internet connectivity ### 2FA Issues 1. **Use App Passwords**: Bypasses 2FA completely 2. **Check 2FA Settings**: Ensure 2FA is properly configured 3. **Generate New App Password**: Old ones may expire ### Browser Issues 1. **Chrome Path**: Verify Chrome installation path 2. **Permissions**: Ensure proper file system permissions 3. **Dependencies**: Run `npm install` to ensure all dependencies ## CI/CD Integration ### GitHub Actions Example ```yaml name: Test OAuth Flow on: [push, pull_request] jobs: test: runs-on: ubuntu-latest steps: - uses: actions/checkout@v3 - uses: actions/setup-node@v3 - run: npm install - run: npm run test:mcp env: GMAIL_TEST_EMAIL: ${{ secrets.GMAIL_TEST_EMAIL }} GMAIL_TEST_PASSWORD: ${{ secrets.GMAIL_TEST_PASSWORD }} GMAIL_USE_APP_PASSWORD: true HEADLESS_BROWSER: true ``` ## Future Enhancements 1. **Multiple Account Testing**: Support for testing with multiple Gmail accounts 2. **OAuth Token Caching**: Cache valid tokens to reduce OAuth calls 3. **Advanced 2FA**: Automated TOTP code generation 4. **Parallel Testing**: Support for concurrent OAuth flows 5. **Mock OAuth**: Optional mock OAuth server for faster testing

Loading blob content...

Latest Blog Posts

Don't Use Large Strings as Cache Keys
By punkpeye on January 11, 2026.
markdown
node-js
cache
What are Claude Skills?
By punkpeye on January 10, 2026.
mcp
skills
How to Test MCP Streamable HTTP Endpoints Using cURL
By punkpeye on January 2, 2026.
tutorial
bash

MCP directory API

We provide all the information about MCP servers via our MCP API.

curl -X GET 'https://glama.ai/api/mcp/v1/servers/kushal45/GmailMcpServer'

If you have feedback or need assistance with the MCP directory API, please join our Discord server

AUTOMATED_OAUTH_TESTING.md•6.58 kB