README
ΒΆ
MCP DevTools
This is a modular MCP server that provides various developer tools that I find useful when working with agentic coding tools such as Cline.
It started as a solution for having to install and run many nodejs and python based MCP servers that were eating up resources and hard to maintain. The goal is to have a single server that can handle multiple tools and provide a consistent interface for them with a modular architecture to support additional tools that I may add as I find a need for them.
graph TD
A[MCP DevTools Server] --> B[Search Package Versions]
A --> C[Internet Search]
A --> D[Fetch Webpage]
A --> E[Think]
A --> F[ShadCN UI Components]
A --> G[Memory]
A --> H[Document Processing]
A --> I[Package Documentation]
A --> J[American to Intl. English]
A --> K[PDF Processing]
A --> L[OAuth 2.0/2.1 Authorisation]
C --> C1[Brave]
C --> C2[SearXNG]
C --> C3[DuckDuckGo]
D --> D1[Fetch URL as Markdown]
H --> H5[OCR]
H --> H6[vLLM]
K --> K1[Text Extraction]
K --> K2[Image Extraction]
K --> K3[Markdown Output]
classDef toolCategory fill:#E6E6FA,stroke:#756BB1,color:#756BB1
classDef tool fill:#EFF3FF,stroke:#9ECAE1,color:#3182BD
classDef searchTool fill:#E6FFE6,stroke:#4CAF50,color:#2E7D32
classDef memoryTool fill:#FFF3E6,stroke:#FF9800,color:#F57C00
classDef webTool fill:#E6F7FF,stroke:#2196F3,color:#1976D2
classDef docTool fill:#F0E6FF,stroke:#9C27B0,color:#7B1FA2
classDef packageTool fill:#FFF0E6,stroke:#FF6B35,color:#D84315
classDef pdfTool fill:#FFE6E6,stroke:#E91E63,color:#C2185B
class B,C,D,E,F,G,H,I,J,K,L toolCategory
class B1,B2,E1,F1 tool
class C1,C2,C3 searchTool
class G memoryTool
class D1 webTool
class H5,H6 docTool
class I1,I2 packageTool
class K1,K2,K3 pdfTool
- MCP DevTools
Architecture
The server is built with a modular architecture to make it easy to add new tools in the future. The main components are:
- Core Tool Interface: Defines the interface that all tools must implement.
- Central Tool Registry: Manages the registration and retrieval of tools.
- Tool Modules: Individual tool implementations organised by category.
Screenshots
Installation
go install github.com/sammcj/mcp-devtools@HEAD
Or clone the repository and build it:
git clone https://github.com/sammcj/mcp-devtools.git
cd mcp-devtools
make
Usage
Install
To install mcp-devtools you can either:
- Use go install:
go install github.com/sammcj/mcp-devtools@HEAD - Clone the repo and build it with
make build - Download the latest release binary from the releases page and save it in your PATH (e.g. /usr/local/bin/mcp-devtools)
Configuration
The server supports three transport modes: stdio (default), SSE (Server-Sent Events), and Streamable HTTP (with optional SSE upgrade).
STDIO Transport
To run it in STDIO mode add it to your MCP configuration file:
{
"mcpServers": {
"dev-tools": {
"type": "stdio",
"command": "/Users/samm/go/bin/mcp-devtools",
"env": {
"BRAVE_API_KEY": "your-brave-api-key-here-if-you-want-to-use-it"
}
}
}
}
Note: replace /Users/samm/go/bin/mcp-devtools with the path to your installed binary.
Streamable HTTP Transport
The Streamable HTTP transport provides a more robust HTTP-based communication with optional authentication:
# Basic Streamable HTTP
mcp-devtools --transport http --port 8080
# With simple authentication
mcp-devtools --transport http --port 8080 --auth-token mysecrettoken
# With OAuth 2.0/2.1 authorisation
# (See the [OAuth Setup Example](docs/oauth-authentik-setup.md) for more information)
mcp-devtools --transport http --port 8080 \
--oauth-enabled \
--oauth-issuer="https://auth.example.com" \
--oauth-audience="https://mcp.example.com" \
--oauth-jwks-url="https://auth.example.com/.well-known/jwks.json"
# With custom endpoint path
mcp-devtools --transport http --port 8080 --endpoint-path /api/mcp
Configure your MCP client to connect to the Streamable HTTP transport:
{
"mcpServers": {
"dev-tools": {
"type": "streamableHttp",
"url": "http://localhost:8080/http"
}
}
}
Or with authentication:
{
"mcpServers": {
"dev-tools": {
"type": "streamableHttp",
"url": "http://localhost:8080/http",
"headers": {
"Authorization": "Bearer mysecrettoken"
}
}
}
}
SSE (Only) Transport
mcp-devtools --transport sse --port 18080 --base-url http://localhost
Or if you built it locally:
./bin/mcp-devtools --transport sse --port 18080 --base-url http://localhost
And configure your MCP client to connect to the SSE transport:
{
"mcpServers": {
"dev-tools": {
"type": "sse",
"url": "http://localhost:18080/sse"
}
}
}
Command-line Options
--transport,-t: Transport type (stdio, sse, or http). Default: stdio--port: Port to use for HTTP transports (SSE and Streamable HTTP). Default: 18080--base-url: Base URL for HTTP transports. Default: http://localhost--auth-token: Authentication token for Streamable HTTP transport (optional)--endpoint-path: Endpoint path for Streamable HTTP transport. Default: /http--session-timeout: Session timeout for Streamable HTTP transport. Default: 30m0s--debug,-d: Enable debug logging. Default: false
Tools & Features
Currently, the server provides the following tools that should work across both macOS and Linux:
Think Tool
The think tool provides a structured thinking space for AI agents during complex workflows:
{
"name": "think",
"arguments": {
"thought": "I need to analyse the API response before deciding which action to take next..."
}
}
When to use the think tool:
- Analysing tool outputs before taking action
- Breaking down complex multi-step problems
- Reasoning through policy decisions or constraints
- Planning sequential actions where mistakes are costly
- Processing and reflecting on information gathered from previous tool calls
Benefits: Based on Anthropic's research, the think tool provides significant improvements in complex scenarios:
- 54% relative improvement in complex airline domain scenarios
- Better consistency across multiple trials
- Enhanced handling of edge cases and unusual scenarios
Package Documentation
The package documentation tools provide access to comprehensive library documentation through the Context7 API:
resolve_library_id
Resolves a library name to a Context7-compatible library ID:
{
"name": "resolve_library_id",
"arguments": {
"libraryName": "react"
}
}
Parameters:
libraryName(required): Library name to search for (e.g., "react", "tensorflow", "express")
Response: Returns the best matching library ID with alternatives and selection rationale based on name similarity, trust scores, and documentation coverage.
get_library_docs
Fetches comprehensive documentation for a specific library:
{
"name": "get_library_docs",
"arguments": {
"context7CompatibleLibraryID": "/facebook/react",
"topic": "hooks",
"tokens": 15000
}
}
Parameters:
context7CompatibleLibraryID(required): Exact library ID fromresolve_library_idtopic(optional): Focus on specific topics (e.g., "hooks", "routing", "authentication")tokens(optional): Maximum tokens to retrieve (default: 10,000, max: 100,000)
Response: Returns formatted documentation with metadata including topic focus, token limits, and content length.
Workflow:
- Use
resolve_library_idto find the correct library identifier - Use
get_library_docswith the resolved ID to fetch documentation
See the Package Documentation README for detailed information.
PDF Processing
The pdf tool extracts text and images from PDF files, creating markdown output with embedded image references:
Basic Usage
{
"name": "pdf",
"arguments": {
"file_path": "/absolute/path/to/document.pdf"
}
}
Advanced Usage
{
"name": "pdf",
"arguments": {
"file_path": "/absolute/path/to/document.pdf",
"output_dir": "/absolute/path/to/output",
"extract_images": true,
"pages": "1-5"
}
}
Parameters:
file_path(required): Absolute file path to the PDF document to processoutput_dir(optional): Output directory for markdown and images (defaults to same directory as PDF)extract_images(optional): Whether to extract images from the PDF (default: true)pages(optional): Page range to process. Options:"all"- Process all pages (default)"1-5"- Process pages 1 through 5"1,3,5"- Process pages 1, 3, and 5"1-3,7,10-12"- Process pages 1-3, 7, and 10-12
Response: Returns paths to generated markdown file, extracted images, and processing statistics.
Output: Creates a markdown file with page-by-page content and an images directory with extracted images properly linked in the markdown.
See the PDF Processing README for detailed information.
Unified Package Search
The search_packages tool provides a single interface for checking package versions across all supported ecosystems. Use the ecosystem parameter to specify which package manager to query:
NPM Packages
Search for NPM packages:
{
"name": "search_packages",
"arguments": {
"ecosystem": "npm",
"query": "lodash"
}
}
Or check multiple packages with constraints:
{
"name": "search_packages",
"arguments": {
"ecosystem": "npm",
"data": {
"react": "^17.0.2",
"react-dom": "^17.0.2",
"lodash": "4.17.21"
},
"constraints": {
"react": {
"majorVersion": 17
}
}
}
}
Python Packages
Search for Python packages (PyPI):
{
"name": "search_packages",
"arguments": {
"ecosystem": "python",
"query": "requests"
}
}
Or check packages from requirements.txt format:
{
"name": "search_packages",
"arguments": {
"ecosystem": "python",
"data": [
"requests==2.28.1",
"flask>=2.0.0",
"numpy"
]
}
}
For pyproject.toml format:
{
"name": "search_packages",
"arguments": {
"ecosystem": "python-pyproject",
"data": {
"dependencies": {
"requests": "^2.28.1",
"flask": ">=2.0.0"
}
}
}
}
Go Modules
Search for Go modules:
{
"name": "search_packages",
"arguments": {
"ecosystem": "go",
"query": "github.com/gin-gonic/gin"
}
}
Java Packages
Search for Maven dependencies:
{
"name": "search_packages",
"arguments": {
"ecosystem": "java-maven",
"data": [
{
"groupId": "org.springframework.boot",
"artifactId": "spring-boot-starter-web",
"version": "2.7.0"
}
]
}
}
Search for Gradle dependencies:
{
"name": "search_packages",
"arguments": {
"ecosystem": "java-gradle",
"data": [
{
"configuration": "implementation",
"group": "org.springframework.boot",
"name": "spring-boot-starter-web",
"version": "2.7.0"
}
]
}
}
Swift Packages
Search for Swift Package Manager dependencies:
{
"name": "search_packages",
"arguments": {
"ecosystem": "swift",
"data": [
{
"url": "https://github.com/apple/swift-argument-parser",
"version": "1.1.4"
}
],
"constraints": {
"swift-argument-parser": {
"majorVersion": 1
}
}
}
}
Docker Images
Search for Docker image tags:
{
"name": "search_packages",
"arguments": {
"ecosystem": "docker",
"query": "nginx",
"registry": "dockerhub",
"limit": 5,
"includeDetails": true
}
}
GitHub Actions
Search for GitHub Actions:
{
"name": "search_packages",
"arguments": {
"ecosystem": "github-actions",
"query": "actions/checkout@v3",
"includeDetails": true
}
}
AWS Bedrock Models
List all AWS Bedrock models:
{
"name": "search_packages",
"arguments": {
"ecosystem": "bedrock",
"action": "list"
}
}
Search for specific models:
{
"name": "search_packages",
"arguments": {
"ecosystem": "bedrock",
"action": "search",
"query": "claude"
}
}
shadcn ui Components
The shadcn tool provides a unified interface for working with shadcn ui components. Use the action parameter to specify what you want to do:
List all available shadcn ui components:
{
"name": "shadcn",
"arguments": {
"action": "list"
}
}
Search for shadcn ui components:
{
"name": "shadcn",
"arguments": {
"action": "search",
"query": "button"
}
}
Get detailed information for a specific shadcn ui component:
{
"name": "shadcn",
"arguments": {
"action": "details",
"componentName": "alert-dialog"
}
}
Get usage examples for a specific shadcn ui component:
{
"name": "shadcn",
"arguments": {
"action": "examples",
"componentName": "accordion"
}
}
Document Processing
The process_document tool provides intelligent document conversion capabilities for PDF, DOCX, XLSX, PPTX, HTML, CSV, PNG, and JPG files:
Simple Usage (Recommended)
Process a document using the simplified interface with processing profiles:
{
"name": "process_document",
"arguments": {
"source": "/path/to/document.pdf"
}
}
This uses the default text-and-image profile and automatically saves the processed content to /path/to/document.md.
Processing Profiles
Choose from preset profiles that configure multiple parameters automatically:
Basic Text Extraction:
{
"name": "process_document",
"arguments": {
"source": "/path/to/document.pdf",
"profile": "basic"
}
}
Scanned Document Processing:
{
"name": "process_document",
"arguments": {
"source": "/path/to/scanned-document.pdf",
"profile": "scanned"
}
}
Advanced Diagram Processing (requires LLM configuration):
{
"name": "process_document",
"arguments": {
"source": "/path/to/document.pdf",
"profile": "llm-external"
}
}
Return Content Inline:
{
"name": "process_document",
"arguments": {
"source": "/path/to/document.pdf",
"inline": true
}
}
Available Profiles
basic: Fast text extraction onlytext-and-image: Text and image extraction with tables (default)scanned: OCR-focused processing for scanned documentsllm-smoldocling: Enhanced with SmolDocling vision modelllm-external: Full diagram-to-Mermaid conversion (requires LLM configuration)
Advanced Usage
For fine-grained control, you can still use individual parameters:
{
"name": "process_document",
"arguments": {
"source": "/path/to/document.pdf",
"processing_mode": "advanced",
"enable_ocr": true,
"ocr_languages": ["en", "fr"],
"preserve_images": true,
"vision_mode": "smoldocling",
"diagram_description": true,
"cache_enabled": true,
"timeout": 600
}
}
Configuration
The document processing tool can be configured via environment variables:
# Python Configuration
DOCLING_PYTHON_PATH="/path/to/python" # Auto-detected if not set
# Cache Configuration
DOCLING_CACHE_DIR="~/.mcp-devtools/docling-cache"
DOCLING_CACHE_ENABLED="true"
# Hardware Acceleration
DOCLING_HARDWARE_ACCELERATION="auto" # auto, mps, cuda, cpu
# Processing Configuration
DOCLING_TIMEOUT="300" # 5 minutes
DOCLING_MAX_FILE_SIZE="100" # 100 MB
# OCR Configuration
DOCLING_OCR_LANGUAGES="en,fr,de"
Prerequisites: This tool requires Python 3.10+ (ideally 3.13+) with Docling installed:
pip install docling
Use With Custom MITM Certs: The document processing tool performs a pip install docling (if it's not found) and if you choose to use the advanced vLLM processing also has to download the SmolDocling model, as such some corporate environments that use MITM privacy-breaking proxies may need additional certs provided. Set the DOCLING_EXTRA_CA_CERTS environment variable to point to your certificate bundle:
DOCLING_EXTRA_CA_CERTS="/path/to/mitm-ca-bundle.pem"
For detailed installation and configuration instructions, see the Document Processing README.
Internet Search
Configuration: The internet search tool supports multiple providers. Configure the appropriate environment variables:
For Brave Search:
BRAVE_API_KEY="your-brave-api-key-here"
Get your API key from: https://brave.com/search/api/
For SearXNG:
SEARXNG_BASE_URL="https://your-searxng-instance.com"
# Optional authentication:
SEARXNG_USERNAME="your-username"
SEARXNG_PASSWORD="your-password"
The internet_search tool provides a unified interface for all internet search operations across different providers. Use the type parameter to specify the search type and provider to choose between available providers:
Web Search
Perform general web searches:
{
"name": "internet_search",
"arguments": {
"type": "web",
"query": "golang best practices",
"count": 10,
"provider": "brave",
"offset": 0,
"freshness": "pw"
}
}
Image Search
Search for images:
{
"name": "internet_search",
"arguments": {
"type": "image",
"query": "golang gopher mascot",
"count": 3,
"provider": "searxng"
}
}
News Search
Search for news articles and recent events:
{
"name": "internet_search",
"arguments": {
"type": "news",
"query": "artificial intelligence breakthrough",
"count": 10,
"provider": "brave",
"freshness": "pd"
}
}
Video Search
Search for videos:
{
"name": "internet_search",
"name": "internet_search",
"arguments": {
"type": "video",
"query": "golang tutorial",
"count": 10,
"provider": "searxng",
"time_range": "month"
}
}
Local Search
Search for local businesses and places (Brave only, requires Pro API plan):
{
"name": "internet_search",
"arguments": {
"type": "local",
"query": "Penny farthing bicycle shops in Fitzroy",
"count": 5,
"provider": "brave"
}
}
DuckDuckGo Web Search
Basic web search using DuckDuckGo (no API key required):
{
"name": "internet_search",
"arguments": {
"type": "web",
"query": "golang best practices",
"count": 5,
"provider": "duckduckgo"
}
}
Search Types:
web: General web search for broad information gatheringimage: Search for images (max 3 results)news: Search for recent news articles and eventsvideo: Search for video content and tutorialslocal: Search for local businesses and places (requires Pro API plan)
Freshness Parameter Options:
pd: Discovered within the last 24 hourspw: Discovered within the last 7 dayspm: Discovered within the last 31 dayspy: Discovered within the last 365 daysYYYY-MM-DDtoYYYY-MM-DD: Custom date range (e.g.,2022-04-01to2022-07-30)
Configuration
Environment Variables
Core Tools
BRAVE_API_KEY: (optional) Required for Brave search tools to be enabledSEARXNG_BASE_URL: (optional) Required for SearXNG search tools to be enabled (e.g.,https://your-searxng-instance.com)SEARXNG_USERNAME: (optional) Username for SearXNG authenticationSEARXNG_PASSWORD: (optional) Password for SearXNG authenticationMEMORY_FILE_PATH: (optional) Base directory or file path for memory storage (default:~/.mcp-devtools/)MEMORY_ENABLE_FUZZY_SEARCH: (optional) Enable fuzzy search capabilities for memory tool (default:true)DISABLED_FUNCTIONS: (optional) Comma-separated list of function names to disable, disabled functions will not appear in the tools list presented even if explicitly requested. e.g:DISABLED_FUNCTIONS="shadcn_get_component_details,shadcn_get_component_examples,brave_local_search,brave_video_search"
OAuth 2.0/2.1 Authorisation (Optional)
Note: OAuth support is new and my first attempt at implementing it with MCP, please report any issues you encounter along with your configuration.
Resource Server Mode (validates incoming tokens):
OAUTH_ENABLEDorMCP_OAUTH_ENABLED: Enable OAuth 2.0/2.1 authorisation (HTTP transport only)OAUTH_ISSUERorMCP_OAUTH_ISSUER: OAuth issuer URL (required if OAuth enabled)OAUTH_AUDIENCEorMCP_OAUTH_AUDIENCE: OAuth audience for this resource serverOAUTH_JWKS_URLorMCP_OAUTH_JWKS_URL: JWKS URL for token validationOAUTH_DYNAMIC_REGISTRATIONorMCP_OAUTH_DYNAMIC_REGISTRATION: Enable RFC7591 dynamic client registrationOAUTH_AUTHORIZATION_SERVERorMCP_OAUTH_AUTHORIZATION_SERVER: Authorisation server URL (if different from issuer)OAUTH_REQUIRE_HTTPSorMCP_OAUTH_REQUIRE_HTTPS: Require HTTPS for OAuth endpoints (default: true)
Browser Authentication Mode (interactive user authentication):
OAUTH_BROWSER_AUTHorMCP_OAUTH_BROWSER_AUTH: Enable browser-based OAuth authentication flow at startupOAUTH_CLIENT_IDorMCP_OAUTH_CLIENT_ID: OAuth client ID for browser authentication (required if browser auth enabled)OAUTH_CLIENT_SECRETorMCP_OAUTH_CLIENT_SECRET: OAuth client secret for browser authentication (optional for public clients)OAUTH_SCOPEorMCP_OAUTH_SCOPE: OAuth scopes to request during browser authentication (e.g., "mcp:tools mcp:resources")OAUTH_CALLBACK_PORTorMCP_OAUTH_CALLBACK_PORT: Port for OAuth callback server (default: 0 for random port)OAUTH_AUTH_TIMEOUTorMCP_OAUTH_AUTH_TIMEOUT: Timeout for browser authentication flow (default: 5m)
Shared Configuration (used by both modes):
OAUTH_ISSUERorMCP_OAUTH_ISSUER: OAuth issuer URL for endpoint discoveryOAUTH_AUDIENCEorMCP_OAUTH_AUDIENCE: OAuth audience for resource parameter (RFC8707)OAUTH_REQUIRE_HTTPSorMCP_OAUTH_REQUIRE_HTTPS: Require HTTPS for OAuth endpoints (default: true)
See OAuth Documentation and OAuth Client Documentation for detailed configuration and usage examples.
Docker Images
Docker images are available from GitHub Container Registry:
docker pull ghcr.io/sammcj/mcp-devtools:latest
Or with a specific version:
docker pull ghcr.io/sammcj/mcp-devtools:v1.0.0
Creating New Tools
See Creating New Tools for detailed instructions on how to create new tools for the MCP DevTools server.
OAuth 2.0/2.1 Authorisation
Note: OAuth support is new and my first attempt at implementing it with MCP, please report any issues you encounter along with your configuration.
MCP DevTools provides both resource server and client functionality for OAuth 2.0/2.1 following the MCP 2025-06-18 specification.
graph TD
User[π€ User] --> Browser{Browser Available?}
Browser -->|Yes| BrowserAuth[π Browser Authentication]
Browser -->|No/Server| ResourceServer[π‘οΈ Resource Server Mode]
BrowserAuth --> |User initiated| AuthFlow[Authorisation Code Flow + PKCE]
AuthFlow --> CallbackServer[π‘ Localhost Callback Server]
CallbackServer --> TokenExchange[π Token Exchange]
TokenExchange --> ServerReady[β
MCP Server Ready with Token]
ResourceServer --> |Client requests| TokenValidation[π JWT Token Validation]
TokenValidation --> |Valid token| ProtectedResources[π Protected MCP Resources]
TokenValidation --> |Invalid token| Unauthorized[β 401 Unauthorised]
subgraph "OAuth Components"
direction TB
ClientComp[π± OAuth Client<br/>Browser Authentication]
ServerComp[π‘οΈ OAuth Resource Server<br/>Token Validation]
ClientComp --> |Stores token for| ServerComp
end
subgraph "Use Cases"
direction LR
UC1[π₯οΈ Desktop/Development<br/>β Browser Auth]
UC2[π’ Production Server<br/>β Resource Server]
UC3[π API Integration<br/>β Both Components]
end
subgraph "Standards Compliance"
direction TB
OAuth21[π OAuth 2.1]
PKCE[π RFC7636 PKCE]
Discovery[π RFC8414 Discovery]
Resource[π― RFC8707 Resource Indicators]
Protected[π‘οΈ RFC9728 Protected Resource]
Registration[π RFC7591 Dynamic Registration]
end
classDef browser fill:#e1f5fe,stroke:#0277bd,color:#000
classDef server fill:#f3e5f5,stroke:#7b1fa2,color:#000
classDef security fill:#e8f5e8,stroke:#2e7d32,color:#000
classDef standards fill:#fff3e0,stroke:#ef6c00,color:#000
class BrowserAuth,AuthFlow,CallbackServer,TokenExchange browser
class ResourceServer,TokenValidation,ProtectedResources server
class PKCE,OAuth21,Discovery,Resource security
class Standards,Registration,Protected standards
Two OAuth Modes
π Browser Authentication (OAuth Client)
- Interactive user authentication via browser
- Authorisation code flow with PKCE
- Suitable for development and desktop environments
- Authenticates before MCP server starts
π‘οΈ Resource Server (OAuth Token Validation)
- Validates incoming JWT tokens from clients
- Protects MCP resources with OAuth authorisation
- Suitable for production API servers
- Validates tokens on each request
Key Features
- π JWT Token Validation: Validates access tokens with JWKS support and audience checking
- π Standards Compliant: Implements OAuth 2.1, RFC8414, RFC9728, RFC7591, and RFC8707
- π Dynamic Client Registration: RFC7591 compliant client registration endpoint
- π‘οΈ PKCE Support: Full PKCE implementation for authorisation code flow
- π Browser Integration: Cross-platform browser launching for authentication
- βοΈ Environment Variables: Configure via CLI flags or environment variables
- π Optional: Completely optional, disabled by default
Browser Authentication Quick Start
# Browser-based authentication for development/desktop
OAUTH_BROWSER_AUTH=true
OAUTH_CLIENT_ID="mcp-devtools-client"
OAUTH_ISSUER="https://auth.example.com"
OAUTH_AUDIENCE="https://mcp.example.com"
./mcp-devtools --transport=http
# With custom scopes and callback port
./mcp-devtools --transport=http \
--oauth-browser-auth \
--oauth-client-id="your-client-id" \
--oauth-issuer="https://auth.example.com" \
--oauth-scope="mcp:tools mcp:resources" \
--oauth-callback-port=8888
Resource Server Quick Start
# Resource server mode for production APIs
OAUTH_ENABLED=true
OAUTH_ISSUER="https://auth.example.com"
OAUTH_AUDIENCE="https://mcp.example.com"
OAUTH_JWKS_URL="https://auth.example.com/.well-known/jwks.json"
./mcp-devtools --transport=http
# Or via CLI flags
./mcp-devtools --transport=http \
--oauth-enabled \
--oauth-issuer="https://auth.example.com" \
--oauth-audience="https://mcp.example.com" \
--oauth-jwks-url="https://auth.example.com/.well-known/jwks.json"
OAuth Endpoints (Resource Server Mode)
When resource server mode is enabled, OAuth metadata endpoints are available:
/.well-known/oauth-authorization-server- Authorisation server metadata/.well-known/oauth-protected-resource- Protected resource metadata/oauth/register- Dynamic client registration (if enabled)
When to Use Which Mode
| Scenario | Browser Auth | Resource Server | Both |
|---|---|---|---|
| Development/Testing | β Primary | Optional | Recommended |
| Desktop Applications | β Required | β Not needed | β If serving APIs |
| Production API Server | β Not suitable | β Required | β Choose one |
| Microservice | β Not suitable | β Required | β Resource server only |
| CLI Tools | β Perfect fit | β Not needed | β Browser auth only |
See OAuth Documentation and OAuth Client Documentation for complete configuration details and OAuth Setup Example for provider configuration.
License
- Copyright 2025 Sam McLeod
- Apache Public License 2.0
Documentation
ΒΆ
There is no documentation for this package.
Source Files
Directories