lark-mcp-on-agentcore
Click on "Install Server".
Wait a few minutes for the server to deploy. Once ready, it will show a "Started" state.
In the chat, type
@followed by the MCP server name and your instructions, e.g., "@lark-mcp-on-agentcore查一下我今天的日程"
That's it! The server will respond to your query, and you can continue using it as needed.
Here is a step-by-step guide with screenshots.
lark-mcp-on-agentcore
为 Amazon Quick Desktop 提供飞书工具能力的远程 MCP 服务,开箱即用 200+ 工具(覆盖飞书 2500+ API)。连接后,用户可通过自然语言完成发消息、管日程、读写多维表格等操作。基于 AWS Bedrock AgentCore 托管,支持多用户 OAuth 身份隔离、自动弹性伸缩(空闲缩零)、可观测性(5 板块 Dashboard + 10 项告警 + 飞书群通知)。
效果
在 Amazon Quick Desktop 中连接后,用自然语言操作飞书:
> 帮我查一下今天的飞书日程
> 发一条消息给产品研发群:明天下午3点对齐需求
> 把上周的会议纪要整理成文档发给我
> 在多维表格里新增一条 Bug 记录所有操作以用户自己的飞书身份执行,数据按用户隔离。
部署
bash <(curl -fsSL https://raw.githubusercontent.com/ddpie/lark-mcp-on-agentcore/main/scripts/install.sh)检查依赖 → 飞书凭证 → 区域 / WAF / 日志保留 / 告警预设 / Webhook → 确认 → 自动部署
重复部署或升级版本时自动填入上次配置,按需修改。
架构
用户通过 Quick Desktop 发起请求 → CloudFront → API Gateway → Middleware Lambda(验证 MCP Token + SigV4 签名)→ AgentCore Runtime(MCP 服务容器处理飞书 API 调用)。OAuth Lambda 负责用户授权和 Token 自动刷新(每 30 分钟),EventBridge 定时触发。所有 Token 加密存储在 Secrets Manager 中。
类别 | 组件 | 说明 |
计算 | AgentCore Runtime | MCP 服务容器,无状态,自动弹性,空闲缩零 |
计算 | Lambda × 3 | OAuth 流程 + MCP 代理 + 告警转发(告警转发 Lambda 仅在配置 webhook 时创建) |
边缘 | CloudFront | HTTPS 入口;可选 WAFv2 速率限制 |
可观测 | CloudWatch | Dashboard(5 板块 / 12 图表)+ 10 Alarms → SNS → 飞书群 |
状态 | SM + DDB + SSM | Token 加密存储 + Auth Code + 签名密钥 |
特点
特点 | 说明 |
200+ 工具 | 28 个高频工具直接提供,其余通过 |
多用户 | 一份部署多人共用,每位用户以自己飞书身份调用 |
按需付费 | AgentCore Runtime 空闲缩零,按 vCPU-秒 + 内存-秒计费 |
渐进授权 | 调用低频工具触发飞书未授权时,自动生成 incremental-auth 链接,用户点击链接跳转到飞书授权页确认新增权限即可,飞书会累积已有权限 |
低运维 | Token 自动刷新(30min)、异常自动告警到飞书群、日志按策略过期 |
安全 | PKCE + HMAC token + WAF + Secrets Manager 加密存储(详情) |
轻量升级 | lark-cli 新版本发布时,改 Dockerfile 中的 lark-cli 版本号 → 重新 |
文档
主题 | 链接 |
Quick Desktop 配置(图文 6 步) | |
安全设计 | |
可观测性 & 告警 | |
运维 & 命令 | |
常见问题 | |
成本估算 | |
项目结构 |
快速命令
./scripts/deploy.sh # 部署 / 更新
./scripts/ops.sh status # 系统状态
./scripts/ops.sh list-users # 已授权用户
./scripts/ops.sh logs # Lambda 日志
./scripts/teardown.sh # 销毁所有资源风险提示
AI Agent 以用户身份调用飞书 API 存在模型幻觉、prompt injection 等固有风险。详见 lark-cli 安全与风险提示。
License
MIT
English
A remote Feishu MCP service for Amazon Quick Desktop, shipping 200+ tools out of the box (covering Feishu's 2500+ APIs). Once connected, users send messages, manage calendars, read/write Bitable, and more through natural language. Hosted on AWS Bedrock AgentCore with multi-user OAuth isolation, auto-scaling (scale-to-zero), and observability (5-section dashboard + 10 alarms + Feishu group notifications).
What it looks like
Connect in Amazon Quick Desktop and interact with Feishu using natural language:
> Check my Feishu calendar for today
> Send a message to the product dev group: sync requirements tomorrow at 3pm
> Summarize last week's meeting notes into a doc
> Add a bug record to the BitableEvery action runs under the user's own Feishu identity — data is isolated per user.
Deploy
bash <(curl -fsSL https://raw.githubusercontent.com/ddpie/lark-mcp-on-agentcore/main/scripts/install.sh)Check deps → Feishu credentials → Region / WAF / Log retention / Alarm presets / Webhook → Confirm → Auto deploy
Re-deploys and upgrades pre-fill previous config; change only what you need.
Architecture
User requests from Quick Desktop → CloudFront → API Gateway → Middleware Lambda (MCP token verification + SigV4 signing) → AgentCore Runtime (MCP service container handles Feishu API calls). OAuth Lambda manages user authorization and auto-refreshes tokens every 30 minutes via EventBridge. All tokens encrypted in Secrets Manager.
Category | Component | Description |
Compute | AgentCore Runtime | MCP service container, stateless, auto-scaling, scale-to-zero |
Compute | Lambda × 3 | OAuth flow + MCP proxy + alarm relay (the alarm-relay Lambda is created only when a webhook is configured) |
Edge | CloudFront | HTTPS entry; optional WAFv2 rate limiting |
Observability | CloudWatch | Dashboard (5 sections / 12 charts) + 10 Alarms → SNS → Feishu group |
State | SM + DDB + SSM | Encrypted tokens + Auth codes + Signing keys |
Highlights
Highlight | Description |
200+ tools | 28 high-frequency tools exposed directly; the rest reachable via |
Multi-user | One deployment shared across users; each request runs under the user's own Feishu identity |
Pay-per-use | AgentCore Runtime scales to zero when idle, billed by vCPU-seconds + memory-seconds |
Incremental auth | Low-frequency tools that hit "permission denied" auto-generate an incremental-auth link; the user clicks the link, lands on the Feishu authorization page to approve the new scope, and Feishu accumulates the existing scopes |
Low-ops | Auto token refresh (30min), alarms auto-push to Feishu group, logs expire by policy |
Secure | PKCE + HMAC tokens + WAF + Secrets Manager encryption (details) |
Lightweight upgrade | When lark-cli releases a new version, bump the lark-cli version in Dockerfile → re-run |
Docs
Topic | Link |
Quick Desktop Setup (6 steps, screenshots) | |
Security | |
Observability & Alarms | |
Operations & Commands | |
FAQ | |
Cost | |
Project Structure |
Quick Commands
./scripts/deploy.sh # Deploy / update
./scripts/ops.sh status # System status
./scripts/ops.sh list-users # Authorized users
./scripts/ops.sh logs # Lambda logs
./scripts/teardown.sh # Destroy all resourcesRisk Notice
Having an AI Agent operate Feishu APIs as the user carries inherent risks such as model hallucination and prompt injection. See lark-cli Security Warnings.
License
MIT
This server cannot be installed
Maintenance
Resources
Unclaimed servers have limited discoverability.
Looking for Admin?
If you are the server author, to access and configure the admin panel.
Latest Blog Posts
MCP directory API
We provide all the information about MCP servers via our MCP API.
curl -X GET 'https://glama.ai/api/mcp/v1/servers/ddpie/lark-mcp-on-agentcore'
If you have feedback or need assistance with the MCP directory API, please join our Discord server