Specification Version Control MCP Server
Provides Auth0-based OAuth 2.0 authentication with PKCE flow, JWT token validation, and user data isolation for the specification management server.
Click on "Install Server".
Wait a few minutes for the server to deploy. Once ready, it will show a "Started" state.
In the chat, type
@followed by the MCP server name and your instructions, e.g., "@Specification Version Control MCP ServerCompare the latest two versions of the login spec"
That's it! The server will respond to your query, and you can continue using it as needed.
Here is a step-by-step guide with screenshots.
Specification Version Control MCP Server
An Auth0-authenticated Model Context Protocol (MCP) server for managing technical specifications with version control capabilities, deployed on Cloudflare Workers. Uses HTTP Streamable transport for efficient bidirectional communication.
🚀 Quick Start
# Clone the repository
git clone https://github.com/your-repo/specification-cloudflare-mcp.git
cd specification-cloudflare-mcp
# Install dependencies
npm install
# Deploy to production
npm run deploy:auth0Example endpoint: https://specification-mcp-auth0.<your-subdomain>.workers.dev/mcp
Related MCP server: MCP Knowledge Base Server
📚 Documentation
Core Documentation
📋 Project Overview - Complete project overview and features
🔧 Development Setup - Local development environment setup
🛡️ Security Guidelines - Security architecture and best practices
📖 API Documentation - Comprehensive API reference
🚀 Deployment Guide - Production deployment instructions
Legacy Documentation
⚡ Migration Summary - HTTP Streamable migration details
🔐 Auth0 Setup - Auth0 configuration guide
📝 Implementation Summary - Technical implementation details
📊 MCP Usage Guide - MCP tools usage examples
✨ Features
🔐 Security & Authentication
Auth0 OAuth 2.0 with PKCE - Industry-standard authentication
User Data Isolation - Private workspace for each user
JWT Token Validation - Secure token-based authentication
Manual Logout - Explicit authentication state clearing
Short-lived Tokens - 15-minute access tokens, 1-hour refresh tokens
📝 Specification Management
Full CRUD Operations - Create, read, update, delete specifications
Version Control - Track specification versions and changes
Advanced Search - Search by title, content, or tags
Comparison Tools - Compare different specification versions
Monthly Reports - Activity and usage analytics
Tag-based Organization - Categorize specifications
🏗️ Technical Architecture
HTTP Streamable Transport - Modern MCP protocol implementation
Cloudflare Workers - Serverless edge computing
D1 Database - SQLite-compatible database
KV Storage - Session and OAuth state management
TypeScript - Type-safe development with Zod validation
🛠️ Available Tools
Tool | Description | Parameters |
| Create new specification |
|
| List user's specifications |
|
| Get specific specification |
|
| Update existing specification |
|
| Delete specification |
|
| Search specifications |
|
| Compare two specifications |
|
| Generate activity report |
|
| Clear authentication state | None |
🔧 Configuration
Claude Desktop Integration
{
"mcpServers": {
"specification-server": {
"command": "npx",
"args": [
"mcp-remote",
"https://specification-mcp-auth0.<your-subdomain>.workers.dev/mcp"
]
}
}
}Production Configuration
Database: Cloudflare D1 (
specifications-prod)Authentication: Auth0 (
YOUR_TENANT.auth0.com)Transport: HTTP Streamable (port
/mcp)Storage: Cloudflare KV for OAuth state
🏗️ Project Structure
specification-cloudflare-mcp/
├── src/
│ ├── index-auth0-streamable.ts # Main MCP server
│ ├── auth.ts # OAuth authentication logic
│ ├── types.ts # TypeScript definitions
│ └── param-utils.ts # Parameter validation
├── migrations/ # Database schema migrations
├── documentation/ # Project documentation
│ ├── PROJECT_OVERVIEW.md
│ ├── DEVELOPMENT_SETUP.md
│ ├── SECURITY.md
│ ├── API_DOCUMENTATION.md
│ └── DEPLOYMENT_GUIDE.md
├── wrangler-auth0.toml # Cloudflare configuration
├── wrangler-auth0.jsonc # Cloudflare configuration (with comments)
├── deploy-auth0.sh # Deployment script
└── package.json # Dependencies and scripts🚀 Deployment Status
Example Deployment
Environment: Production
URL:
https://specification-mcp-auth0.<your-subdomain>.workers.dev/mcpTransport: HTTP Streamable
Database:
specifications-prodAuth0 Domain:
YOUR_TENANT.auth0.comOAuth Flow: PKCE with state protection
📊 Usage
Authentication Flow
User accesses MCP tool → Redirected to Auth0 consent screen
User approves permissions → Auth0 redirects with authorization code
Server exchanges code for JWT tokens → User can access tools
Example Usage
# Create a specification
curl -X POST https://specification-mcp-auth0.<your-subdomain>.workers.dev/mcp \
-H "Content-Type: application/json" \
-H "Authorization: Bearer YOUR_TOKEN" \
-d '{
"jsonrpc": "2.0",
"method": "create_specification",
"params": {
"title": "API Specification",
"content": "# API Spec\n\nThis is an API specification.",
"version": "1.0.0",
"tags": ["api", "backend"]
},
"id": "1"
}'
# List specifications
curl -X POST https://specification-mcp-auth0.<your-subdomain>.workers.dev/mcp \
-H "Content-Type: application/json" \
-H "Authorization: Bearer YOUR_TOKEN" \
-d '{
"jsonrpc": "2.0",
"method": "list_specifications",
"params": {"limit": 10},
"id": "2"
}'🔍 Development
Local Development
# Install dependencies
npm install
# Start development server
wrangler dev -c wrangler-auth0.toml --port 8787
# Run tests
npm test
# Deploy to production
npm run deploy:auth0Key Files
Entry Point:
src/index-auth0-streamable.tsAuthentication:
src/auth.tsConfiguration:
wrangler-auth0.tomlDatabase:
migrations/
📈 Monitoring
Performance Metrics
Request Latency: < 100ms average
Authentication Success Rate: > 99.5%
Database Query Time: < 50ms average
Error Rate: < 0.1%
Security Monitoring
Token Validation: All requests validated
User Isolation: 100% enforced
Failed Auth Attempts: Logged and monitored
Rate Limiting: 100 requests/minute per user
🤝 Contributing
Setup: Follow the Development Setup Guide
Security: Review Security Guidelines
API: Reference API Documentation
Deploy: Use Deployment Guide
Code Standards
TypeScript: Strict mode with Zod validation
Authentication: Always check
this.props?.claims?.subDatabase: Always filter by
user_idError Handling: Use structured error responses
Security: Log all authentication events
📞 Support
Documentation
Project Overview: PROJECT_OVERVIEW.md
Development: DEVELOPMENT_SETUP.md
Security: SECURITY.md
API Reference: API_DOCUMENTATION.md
Deployment: DEPLOYMENT_GUIDE.md
Community
GitHub Issues: Report issues
Email: api-support@yourcompany.com
Discord: Join our community
📜 License
This project is open source under the MIT License. See LICENSE.
Last Updated: August 2025
MCP Protocol: HTTP Streamable
Auth Provider: Auth0 OAuth 2.0
This server cannot be installed
Maintenance
Resources
Unclaimed servers have limited discoverability.
Looking for Admin?
If you are the server author, to access and configure the admin panel.
Latest Blog Posts
- Your AI Chatbot Just Exposed Your CEO's Salary to an InternBy Om-Shree-0709 on .Agent IdentityMCP SecurityOAuth Delegation
- Why MCP Servers Need Execution Sandboxing (And Why Your Current Stack Isn't Enough)By Om-Shree-0709 on .Agentic AiPrompt InjectionWebAssembly
MCP directory API
We provide all the information about MCP servers via our MCP API.
curl -X GET 'https://glama.ai/api/mcp/v1/servers/ruchit-p/specification-cloudflare-mcp'
If you have feedback or need assistance with the MCP directory API, please join our Discord server