Google Apps Script MCP Server

# Enhanced OAuth Implementation Summary ## What We've Implemented ### 1. **Complete OAuth2 Flow** (`lib/oauth-helper.js`) - ✅ **Automatic browser opening** for OAuth authorization - ✅ **Local callback server** to handle OAuth responses - ✅ **Token management** with automatic refresh - ✅ **Fallback mechanisms** when refresh tokens expire - ✅ **Detailed logging** throughout the process - ✅ **Error handling** with specific troubleshooting guidance ### 2. **Enhanced Test Script** (`test-oauth.js`) - ✅ **Comprehensive logging** with timestamps and performance metrics - ✅ **Detailed error information** including stack traces - ✅ **Environment validation** checking for .env file and credentials - ✅ **System information** logging for debugging - ✅ **OAuth credential verification** (without exposing sensitive data) ### 3. **OAuth Setup Script** (`oauth-setup.js`) - ✅ **Interactive OAuth flow** to obtain refresh tokens - ✅ **Automatic .env file updates** with new refresh tokens - ✅ **Credential validation** before starting the flow - ✅ **User-friendly web interface** for OAuth completion - ✅ **Comprehensive error handling** and troubleshooting ### 4. **Updated Configuration** - ✅ **Package.json scripts** for easy access - ✅ **Environment variables** properly configured - ✅ **Dependencies installed** (googleapis, open) - ✅ **Comprehensive setup guide** (OAUTH_SETUP.md) ## Key Features Similar to Your Working App ### 🔐 **OAuth2 Client Creation** ```javascript const oAuth2Client = new google.auth.OAuth2(clientId, clientSecret, redirectUri); ``` ### 🌐 **Local Server for Callback** ```javascript const server = createServer(async (req, res) => { // Handle OAuth callback with detailed logging }); ``` ### 🔄 **Token Exchange & Storage** ```javascript const { tokens: newTokens } = await oAuth2Client.getToken(code); tokens = newTokens; ``` ### 📱 **Browser Automation** ```javascript open(authUrl).catch(err => { console.error('❌ Failed to open browser:', err); console.log('🔗 Please manually open this URL in your browser:', authUrl); }); ``` ### 🔄 **Automatic Token Refresh** ```javascript if (refreshToken && refreshToken !== 'your_refresh_token_here') { // Use refresh token to get new access token } ``` ## How to Use ### 1. **First Time Setup** ```bash npm run setup-oauth ``` - Opens browser automatically - Handles OAuth flow - Updates .env file with refresh token ### 2. **Test OAuth Setup** ```bash npm run test-oauth ``` - Validates credentials - Tests token retrieval - Shows detailed diagnostic information ### 3. **Use in Your MCP Tools** The OAuth helper will now: - ✅ Use refresh token if available - ✅ Start interactive OAuth flow if needed - ✅ Handle token expiration automatically - ✅ Provide detailed error information ## Enhanced Error Logging ### **Success Path Logging:** - ⏰ Timestamps for all operations - 📊 Performance metrics - 🔑 Token information (safely masked) - 📋 Request/response details ### **Error Path Logging:** - 🕐 Error timestamps - 📋 Complete error details (message, stack, status codes) - 🔍 Environment diagnostics - 📂 File system checks - 🔧 Comprehensive troubleshooting steps ### **Example Enhanced Error Output:** ``` ❌ OAuth authentication failed! 🕐 Error occurred at: 2025-05-31T10:30:45.123Z 📋 Error Details: 📄 Message: Failed to refresh token: invalid_grant 🏷️ Name: Error 📊 Stack trace: Error: Failed to refresh token: invalid_grant at getOAuthAccessToken (file:///oauth-helper.js:245:13) at testOAuthAuthentication (file:///test-oauth.js:28:31) 🔍 Environment Check: 📂 Current directory: c:\Users\mohal\Downloads\postman-mcp-server 🔧 Node.js version: v18.17.0 📄 .env file exists: true 🔑 GOOGLE_CLIENT_ID present: true 🔑 GOOGLE_CLIENT_SECRET present: true 🔑 GOOGLE_REFRESH_TOKEN present: true 🔧 Troubleshooting steps: 1. Check that your .env file contains valid OAuth credentials 2. Verify your client ID and client secret are correct 3. Ensure your refresh token is valid and not expired 4. Follow the OAUTH_SETUP.md guide to obtain new credentials if needed 5. Make sure the Google Apps Script API is enabled in your GCP project 6. Check your internet connection and firewall settings 7. Verify that the oauth-helper.js file exists and is accessible ``` ## Security Features - 🔐 **No credentials exposed** in logs - 🔑 **Secure token storage** in environment variables - 🌐 **Local-only callback server** (port 3001) - ⏱️ **Automatic server timeout** (5 minutes) - 🚪 **Clean token cleanup** on logout ## Next Steps 1. **Run the setup**: `npm run setup-oauth` 2. **Test the implementation**: `npm run test-oauth` 3. **Use your MCP tools** with confidence! The OAuth implementation now matches the robustness and user experience of your working Express app while providing enhanced debugging capabilities for easier troubleshooting.