Skip to main content
Glama
devlimelabs

Firestore MCP Server

by devlimelabs
OverviewSchemaRelated ServersScoreDiscussions
TypeScript
Remote

Firestore MCP Server

A Model Context Protocol (MCP) server that provides secure, permission-controlled access to Firebase Firestore. This server allows AI assistants and other MCP clients to interact with Firestore databases through a standardized interface.

Features

Core Functionality

  • πŸ” Granular Permissions: Control access at the collection and operation level

  • πŸ“„ Full CRUD Operations: Create, read, update, and delete documents

  • πŸ” Advanced Queries: Support for filtering, ordering, and limiting results

  • πŸ“ Subcollection Support: Work with nested collections and documents

  • πŸ”„ Batch Operations: Execute multiple operations atomically

  • πŸ’Ύ Transactions: Ensure data consistency with transactional operations

  • 🎯 Field Value Operations: Atomic increments, array operations, and server timestamps

Security & Control

  • βœ… Collection-level access control

  • πŸ›‘οΈ Operation-specific permissions (read, write, delete, query)

  • πŸ”’ Default deny with explicit allow rules

  • πŸ“‹ Conditional permissions (coming soon)

Installation

Using npm/yarn/pnpm

npm install mcp-firestore
# or
yarn add mcp-firestore
# or
pnpm add mcp-firestore

From Source

git clone https://github.com/yourusername/mcp-firestore.git
cd mcp-firestore
pnpm install
pnpm build

Configuration

Environment Variables

Create a .env file with your Firestore configuration:

# Required
FIRESTORE_PROJECT_ID=your-project-id

# Optional - for authentication
GOOGLE_APPLICATION_CREDENTIALS=path/to/service-account.json

Permission Configuration

Create a permissions.json file to control access:

{
  "collections": [
    {
      "collectionId": "users",
      "operations": ["read", "write", "query"]
    },
    {
      "collectionId": "posts",
      "operations": ["read", "query"]
    }
  ],
  "defaultAllow": false
}

Usage

Starting the Server

# With default permissions
mcp-firestore

# With custom permissions file
mcp-firestore --config permissions.json

# With full access (development only)
mcp-firestore --full-access

# With read-only access to specific collections
mcp-firestore --read-only --collections users,posts

Claude Desktop Integration

Add to your Claude Desktop configuration:

{
  "servers": {
    "firestore": {
      "command": "mcp-firestore",
      "args": ["--config", "path/to/permissions.json"],
      "env": {
        "FIRESTORE_PROJECT_ID": "your-project-id"
      }
    }
  }
}

Available Tools

Basic Operations

  1. firestore-list-collections

    • List all accessible collections

    {}

  2. firestore-get-collection

    • Get all documents from a collection

    {
  "collectionId": "users"
}

  3. firestore-get-document

    • Get a specific document

    {
  "collectionId": "users",
  "documentId": "user123"
}

  4. firestore-create-document

    • Create a new document

    {
  "collectionId": "users",
  "documentId": "user123",
  "data": {
    "name": "John Doe",
    "email": "john@example.com"
  }
}

  5. firestore-update-document

    • Update an existing document

    {
  "collectionId": "users",
  "documentId": "user123",
  "data": {
    "name": "Jane Doe"
  }
}

  6. firestore-delete-document

    • Delete a document

    {
  "collectionId": "users",
  "documentId": "user123"
}

Query Operations

  1. firestore-query-collection

    • Query documents with filters

    {
  "collectionId": "users",
  "filters": [
    {
      "field": "age",
      "operator": ">",
      "value": 18
    }
  ],
  "orderBy": {
    "field": "createdAt",
    "direction": "desc"
  },
  "limit": 10
}

Subcollection Operations

  1. firestore-list-subcollections

    • List subcollections of a document

    {
  "documentPath": "users/user123"
}

  2. firestore-get-collection-by-path

    • Get documents from a subcollection

    {
  "collectionPath": "users/user123/orders"
}

  3. firestore-create-document-by-path

    • Create a document in a subcollection

    {
  "collectionPath": "users/user123/orders",
  "data": {
    "item": "Widget",
    "quantity": 2
  }
}

Batch Operations

  1. firestore-batch-write

    • Execute multiple write operations atomically

    {
  "operations": [
    {
      "type": "create",
      "collectionPath": "products",
      "documentId": "product1",
      "data": { "name": "Widget" }
    },
    {
      "type": "update",
      "documentPath": "inventory/product1",
      "data": { "count": 100 }
    }
  ]
}

  2. firestore-batch-read

    • Read multiple documents in one operation

    {
  "documentPaths": [
    "users/user1",
    "users/user2",
    "products/product1"
  ]
}

  3. firestore-transaction

    • Execute a transaction with reads and conditional writes

    {
  "reads": ["products/product1"],
  "operations": [
    {
      "type": "update",
      "documentPath": "products/product1",
      "data": { "stock": 99 }
    }
  ],
  "conditionScript": "return readResults['products/product1'].data.stock > 0;"
}

Field Value Operations

  1. firestore-increment-field

    • Atomically increment a numeric field

    {
  "documentPath": "stats/daily",
  "field": "visitCount",
  "incrementBy": 1
}

  2. firestore-array-union

    • Add elements to an array without duplicates

    {
  "documentPath": "users/user123",
  "field": "tags",
  "elements": ["premium", "verified"]
}

  3. firestore-server-timestamp

    • Set fields to server timestamp

    {
  "documentPath": "users/user123",
  "fields": ["lastLogin", "modifiedAt"]
}

Resources

The server also provides MCP resources for direct access to Firestore data:

  • firestore://collections - List all collections

  • firestore://collection/{collectionId} - Access collection data

  • firestore://collection/{collectionId}/document/{documentId} - Access document data

  • firestore://path/{path} - Access any path (collections or documents)

Examples

Basic CRUD Operations

// Create a new user
await client.callTool("firestore-create-document", {
  collectionId: "users",
  documentId: "user123",
  data: {
    name: "John Doe",
    email: "john@example.com",
    createdAt: new Date().toISOString()
  }
});

// Update user data
await client.callTool("firestore-update-document", {
  collectionId: "users",
  documentId: "user123",
  data: {
    lastLogin: new Date().toISOString()
  }
});

// Query active users
await client.callTool("firestore-query-collection", {
  collectionId: "users",
  filters: [
    { field: "status", operator: "==", value: "active" }
  ],
  orderBy: { field: "createdAt", direction: "desc" },
  limit: 10
});

Working with Subcollections

// Create an order for a user
await client.callTool("firestore-create-document-by-path", {
  collectionPath: "users/user123/orders",
  data: {
    items: ["widget1", "widget2"],
    total: 99.99,
    status: "pending"
  }
});

// Get all orders for a user
await client.callTool("firestore-get-collection-by-path", {
  collectionPath: "users/user123/orders"
});

Batch Operations

// Atomic updates across multiple documents
await client.callTool("firestore-batch-write", {
  operations: [
    {
      type: "update",
      documentPath: "products/widget1",
      data: { stock: 95 }
    },
    {
      type: "create",
      collectionPath: "orders",
      data: {
        product: "widget1",
        quantity: 5,
        userId: "user123"
      }
    },
    {
      type: "update",
      documentPath: "users/user123",
      data: { orderCount: 1 }
    }
  ]
});

Field Value Operations

// Increment a counter
await client.callTool("firestore-increment-field", {
  documentPath: "stats/global",
  field: "totalOrders",
  incrementBy: 1
});

// Add tags without duplicates
await client.callTool("firestore-array-union", {
  documentPath: "products/widget1",
  field: "tags",
  elements: ["bestseller", "featured"]
});

// Set server timestamp
await client.callTool("firestore-server-timestamp", {
  documentPath: "logs/access",
  fields: ["timestamp", "lastModified"]
});

Security Best Practices

  1. Use Minimal Permissions: Only grant access to collections and operations that are necessary

  2. Default Deny: Set defaultAllow: false in production environments

  3. Service Account Security: Protect your service account credentials

  4. Environment Variables: Never commit credentials to version control

  5. Audit Access: Regularly review permission configurations

Development

Running Tests

pnpm test
pnpm test:coverage

Building

pnpm build

Docker

# Build image
docker build -t mcp-firestore .

# Run container
docker run -e FIRESTORE_PROJECT_ID=your-project mcp-firestore

Troubleshooting

Common Issues

  1. Authentication Errors

    • Ensure GOOGLE_APPLICATION_CREDENTIALS points to a valid service account

    • Check that the service account has necessary Firestore permissions

  2. Permission Denied

    • Verify collection is listed in permissions configuration

    • Check that the operation is allowed for the collection

  3. Connection Issues

    • Confirm project ID is correct

    • Check network connectivity to Firestore

Contributing

Contributions are welcome! Please read our Contributing Guide for details.

License

MIT License - see LICENSE for details.

Acknowledgments

Built on the Model Context Protocol by Anthropic.

Install Server
A
security – no known vulnerabilities
A
license - permissive license
A
quality - confirmed to work

How are these scores calculated?

Resources

Looking for Admin?

Admins can modify the Dockerfile, update the server description, and track usage metrics. If you are the server author, to access the admin panel.

Tools

View all tools

Latest Blog Posts

MCP directory API

We provide all the information about MCP servers via our MCP API.

curl -X GET 'https://glama.ai/api/mcp/v1/servers/devlimelabs/firestore-mcp'

If you have feedback or need assistance with the MCP directory API, please join our Discord server