Ghost MCP Server

delete_ghost_post.py•6.47 kB

import json import requests import os import base64 import hashlib import hmac import time from requests.adapters import HTTPAdapter from urllib3.util.retry import Retry def create_token(key_id: str, key_secret: str) -> str: """ Creates a Ghost Admin API JWT token without using PyJWT. Uses base64 encoding and HMAC-SHA256 for manual JWT creation. Args: key_id (str): The Ghost Admin API key ID key_secret (str): The Ghost Admin API key secret Returns: str: The JWT token """ # Create header header = { "alg": "HS256", "typ": "JWT", "kid": key_id } # Create payload iat = int(time.time()) payload = { "iat": iat, "exp": iat + 300, # Token expires in 5 minutes "aud": "/admin/" } # Base64 encode header and payload def b64encode(obj): return base64.urlsafe_b64encode(json.dumps(obj).encode()).rstrip(b'=').decode('utf-8') header_encoded = b64encode(header) payload_encoded = b64encode(payload) # Create signature message = f"{header_encoded}.{payload_encoded}" key = bytes.fromhex(key_secret) signature = hmac.new(key, message.encode(), hashlib.sha256).digest() signature_encoded = base64.urlsafe_b64encode(signature).rstrip(b'=').decode('utf-8') # Combine all parts token = f"{header_encoded}.{payload_encoded}.{signature_encoded}" return token def delete_ghost_post(post_id: str) -> str: """ Deletes a post from Ghost blog. This function supports two usage scenarios: 1) Deleting a post 2) Retrieving the tool's metadata by passing post_id="__tool_info__" Args: post_id (str): The ID of the post to delete Returns: str: JSON-formatted string containing the response """ if post_id == "__tool_info__": info = { "name": "delete_ghost_post", "description": "Deletes a post from Ghost blog", "args": { "post_id": { "type": "string", "description": "The ID of the post to delete", "required": True } } } return json.dumps(info) if not post_id: return json.dumps({"error": "Post ID is required"}) api_url = os.environ.get("GHOST_API_URL", "http://192.168.50.80:8083").rstrip("/") admin_id = "67b2d2824fdabf0001eb99ea" admin_secret = "100eda163e9fea6906fbd7ddc841812c70561b19ab2e6d7b31f844f6ccd7b05d" try: # Create JWT token manually header = { "alg": "HS256", "typ": "JWT", "kid": admin_id } iat = int(time.time()) payload = { "iat": iat, "exp": iat + 300, # Token expires in 5 minutes "aud": "/admin/" } # Base64 encode header and payload header_encoded = base64.urlsafe_b64encode(json.dumps(header).encode()).rstrip(b'=').decode('utf-8') payload_encoded = base64.urlsafe_b64encode(json.dumps(payload).encode()).rstrip(b'=').decode('utf-8') # Create signature message = f"{header_encoded}.{payload_encoded}" key = bytes.fromhex(admin_secret) signature = hmac.new(key, message.encode(), hashlib.sha256).digest() signature_encoded = base64.urlsafe_b64encode(signature).rstrip(b'=').decode('utf-8') # Combine into final token token = f"{header_encoded}.{payload_encoded}.{signature_encoded}" session = requests.Session() adapter = HTTPAdapter(max_retries=Retry( total=3, backoff_factor=1, status_forcelist=[429, 500, 502, 503, 504] )) session.mount("http://", adapter) session.mount("https://", adapter) headers = { "Authorization": f"Ghost {token}", "Accept": "application/json", "Content-Type": "application/json" } # Ghost Admin API endpoint url = f"{api_url}/ghost/api/admin/posts/{post_id}" print(f"Making request to: {url}") print(f"Headers: {headers}") response = session.delete( url, headers=headers, timeout=30 ) response.raise_for_status() # Ghost returns 204 No Content for successful deletion if response.status_code == 204: return json.dumps({"success": True, "message": f"Post {post_id} deleted successfully"}) return json.dumps(response.json()) except requests.exceptions.RequestException as e: error_msg = str(e) if hasattr(e, 'response') and e.response is not None: error_msg += f"\nResponse: {e.response.text}" return json.dumps({"error": f"Network or HTTP error - {error_msg}"}) except Exception as e: return json.dumps({"error": f"Unexpected error - {str(e)}"}) finally: session.close() if __name__ == "__main__": print("Testing delete_ghost_post tool...") # Example post deletion print("\nDeleting post...") try: # Get the most recently published post api_url = os.environ.get("GHOST_API_URL", "http://192.168.50.80:8083").rstrip("/") list_url = f"{api_url}/ghost/api/admin/posts/" list_headers = { "Authorization": f"Ghost {create_token('67b2d2824fdabf0001eb99ea', '100eda163e9fea6906fbd7ddc841812c70561b19ab2e6d7b31f844f6ccd7b05d')}", "Accept": "application/json" } posts = requests.get( list_url, params={"limit": 1}, headers=list_headers ) print(f"List posts response status: {posts.status_code}") posts_json = posts.json() print(f"List posts response: {posts_json}") if posts_json and len(posts_json.get("posts", [])) > 0: post_id = posts_json["posts"][0]["id"] print(f"Deleting post with ID: {post_id}") result = delete_ghost_post(post_id) response = json.loads(result) if "error" in response: print(f"Error deleting post: {response['error']}") else: print("Post deleted successfully!") print(json.dumps(response, indent=2)) else: print("No posts found to delete") except Exception as e: print(f"Error during test: {str(e)}")

Latest Blog Posts

OpenTelemetry for Model Context Protocol (MCP) Analytics and Agent Observability
By Om-Shree-0709 on .
observability
mcp
opentelemetry
Securing Enterprise AI Agents with Unique Identities in the Model Context Protocol (MCP)
By Om-Shree-0709 on .
When Your Year of Work Gets Copied Overnight: What Actually Matters?
By punkpeye on .
startups

MCP directory API

We provide all the information about MCP servers via our MCP API.

curl -X GET 'https://glama.ai/api/mcp/v1/servers/oculairmedia/Ghost-MCP'

If you have feedback or need assistance with the MCP directory API, please join our Discord server