MCP SSE Ory Server

Official
by ory

MCP SSE Ory Server

This project implements a Model Context Protocol (MCP) server that uses Server-Sent Events (SSE) for communication and integrates with Ory Network for OAuth 2.1 functionality.

Overview

The server provides:

  • MCP server implementation with SSE transport
  • OAuth 2.1 integration via Ory Network
  • Secure token verification and client management
  • Project management tools for Ory Network

Prerequisites

  • Node.js (v18 or later)
  • Ory Network account and API keys

Environment Variables

Create a .env file with the following variables (see .example.env for reference):

# Ory Network Configuration ORY_BASE_API_URL=https://api.console.ory.sh ORY_PROJECT_URL=https://yourprojectslug.projects.oryapis.com ORY_PROJECT_API_KEY=yourprojectapikey ORY_WORKSPACE_API_KEY=yourworkspaceapikey # Server Configuration MCP_SERVER_BASE_URL=http://localhost:4000 MCP_SERVER_DOCS_URL=https://ory.sh/docs MCP_SERVER_PORT=4000

Installation

  1. Clone the repository
  2. Install dependencies:
    npm install

Development

Run the development server:

npm run dev

Building

Build the TypeScript project:

npm run build

Running

Start the production server:

npm run start

API Endpoints

  • GET /mcp - Establishes SSE connection for MCP communication
  • POST /messages - Handles MCP messages from clients
  • OAuth endpoints (via Ory Network):
    • /oauth2/auth - Authorization endpoint
    • /oauth2/token - Token endpoint
    • /oauth2/revoke - Token revocation endpoint
    • /oauth2/register - Client registration endpoint

Features

  • MCP Server: Implements the Model Context Protocol for AI model communication
  • SSE Transport: Uses Server-Sent Events for real-time communication
  • OAuth Integration: Secure authentication via Ory Network
  • Client Management: Dynamic OAuth client verification and management
  • Project Tools: Tools for managing Ory Network projects including:
    • List projects in a workspace
    • Create new projects
    • Get project details
    • Update project configurations

Security

  • Bearer token authentication
  • PKCE support
  • Secure token verification
  • Client validation
  • Proper error handling and logging

Error Handling

The server implements graceful shutdown and proper error handling for:

  • Uncaught exceptions
  • Unhandled promise rejections
  • Process termination signals (SIGINT, SIGTERM)

License

Copyright 2025 Ory Corp

Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with the License. You may obtain a copy of the License at

http://www.apache.org/licenses/LICENSE-2.0

Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License.

-
security - not tested
-
license - not tested
-
quality - not tested

remote-capable server

The server can be hosted and run remotely because it primarily relies on remote services or has no dependency on the local environment.

Implements a Model Context Protocol server using Server-Sent Events for real-time communication with OAuth 2.1 integration via Ory Network, enabling secure AI model communication with authentication and client management.

  1. Overview
    1. Prerequisites
      1. Environment Variables
        1. Installation
          1. Development
            1. Building
              1. Running
                1. API Endpoints
                  1. Features
                    1. Security
                      1. Error Handling
                        1. License

                          Related MCP Servers

                          • -
                            security
                            F
                            license
                            -
                            quality
                            A Model Context Protocol server that provides a comprehensive interface for interacting with the ConnectWise Manage API, simplifying API discovery, execution, and management for both developers and AI assistants.
                            Last updated -
                            46
                            2
                            Python
                            • Linux
                            • Apple
                          • -
                            security
                            F
                            license
                            -
                            quality
                            A Model Context Protocol server that runs on Cloudflare Workers with OAuth login, allowing AI assistants like Claude to execute tools remotely through HTTP connections.
                            Last updated -
                            TypeScript
                          • -
                            security
                            F
                            license
                            -
                            quality
                            A Model Context Protocol server implementation that runs on Cloudflare Workers with OAuth login, allowing Claude and other AI models to access tools via the MCP standard.
                            Last updated -
                            TypeScript
                          • -
                            security
                            F
                            license
                            -
                            quality
                            A Model Context Protocol server that runs on Cloudflare Workers, supporting OAuth login and enabling Claude AI to access remote tools and services via MCP.
                            Last updated -
                            TypeScript

                          View all related MCP servers

                          ID: 5qbl7hkh4q