π SSE MCP Server with JWT Authentication
This is a Model Context Protocol (MCP) SSE server with JWT-based authentication.
It allows you to expose multiple AI tools over an SSE transport, protected via secure Bearer Token flow.
Built with:
- π Node.js + Express
- 𧩠@modelcontextprotocol/sdk
- π JSON Web Tokens (JWT) for authentication
- βοΈ Zod for input validation
β Fully tested with
@modelcontextprotocol/inspector
π Project Structure
server/
βββ index.ts # Main Express + MCP server
βββ .env # Environment variables
βββ package.json # Project metadata & scripts
βββ tsconfig.json # TypeScript config
βββ README.md # You are here!
β¨ Features
- β Secure SSE connection using Bearer JWT token
- β Dynamic Tool registration (echo, time, random number, etc.)
- β Tested with MCP Inspector
- β Logs all request lifecycle events
- β Session management for /message endpoint
- π Ready to extend for production use
βοΈ Setup
1. Clone the repository
git clone https://github.com/anisirji/mcp-server-remote-setup-with-jwt-auth.git
cd mcp-server-remote-setup-with-jwt-auth
2. Install dependencies
npm install
3. Create .env file
echo "JWT_SECRET=your-secret-key" > .env
4. Run the server
npm run dev
β Server will run on:
http://localhost:3001/sse
π§ͺ Testing the server with MCP Inspector
Step 1 β Install MCP Inspector
π Official Docs: MCP Inspector
npx @modelcontextprotocol/inspector
Step 2 β Generate a token
Use cURL to get your JWT token:
curl "http://localhost:3001/auth/token?username=aniket&scope=mcp:access"
β Example response:
{
"token": "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9..."
}
Step 3 β Connect MCP Inspector
- Open Inspector UI
- Set Transport Type: SSE
- URL:
http://localhost:3001/sse - Add Authorization Header:
Authorization: Bearer <your-token> - Click Connect
π Success! Your server is now connected.
Step 4 β Test tools
Go to Tools tab in Inspector and click List Tools.
You will see:
- β
test - β
echo - β
get-time - β
random-number
Test them and enjoy!
π API Reference
π Generate Token
GET /auth/token?username=<username>&scope=mcp:access
π SSE Endpoint (requires token)
GET /sse
Authorization: Bearer <token>
π© Send Message to active session
POST /message?sessionId=<sessionId>
Authorization: Bearer <token>
𧩠Tools Reference
| Tool Name | Description |
|---|---|
test | Test connection (security check) |
echo | Echo back provided message |
get-time | Returns current server time |
random-number | Returns random number (min/max) |
ποΈ Upcoming Changes
- [ ] Token revocation list (blacklist)
- [ ] Role-based tool access (scope checks)
- [ ] Session heartbeat / keep-alive
- [ ] Rate limiting & logging
- [ ] Dockerization for deployment
π Useful Resources
- Model Context Protocol Introduction
- MCP Inspector Docs
- JWT.io Debugger
- Zod Validation Docs
π¨βπ» Maintainer
Aniket
π License
This project is open-source and free to use.
π Build. Secure. Empower.
SSE Server with JWT Authentication
Project Details
- anisirji/mcp-server-remote-setup-with-jwt-auth
- server
- Last Updated: 4/8/2025
Recomended MCP Servers
An OpenStreetMap MCP server implementation that enhances LLM capabilities with location-based services and geospatial data.
An MCP server for Cline that works with Binary Ninja
A self-hostable bookmark-everything app (links, notes and images) with AI-based automatic tagging and full text search
A simple POC to expose Mythic as a MCP server
A lightweight MCP server for session memory management
The core MCP extension for Systemprompt MCP multimodal client
Node.js MCP server using LLMs (Gemini/OpenRouter) for AI-assisted task planning, breakdown, and code review. Designed for Cursor integration.
πspring-rs is a microservice framework written in rust inspired by java's spring-boot
Fast and free zeroshot lipsync MCP server
Featured Templates
View More
