mcp-policy-gateway

The mcp-policy-gateway is a robust MCP policy gateway and reverse proxy designed to enhance security and management for Model Context Protocol servers. By implementing authentication and authorization, rate limits, tool allowlists, and OpenTelemetry audit logs, this server ensures that you enforce the principle of least privilege between agents and tools, making your development environment more secure and efficient.

Once connected to the mcp-policy-gateway, you can interact with your MCP servers by sending requests that adhere to the enforced policies. Utilize the built-in authentication and authorization frameworks to access various resources securely. While specific tools are not documented, you can craft queries that comply with the configured rate limits and allowlists for optimal performance and security.

Prerequisites

Before installing the mcp-policy-gateway, ensure you have Node.js installed on your machine. You can download it from nodejs.org.

Option A: Quick Start with npx

For a quick start, you can use npx to run the mcp-policy-gateway without installing it globally. Use the following command:

npx -y airblackbox/mcp-policy-gateway

Option B: Global Install Alternative

If you prefer to install the mcp-policy-gateway globally, you can clone the repository and run it locally. Use the following commands:

git clone https://github.com/airblackbox/mcp-policy-gateway.git
cd mcp-policy-gateway
npm install
npm start

For optimal configuration, consider setting environment variables to customize your authentication and authorization settings. Common variables include AUTH_URL, RATE_LIMIT, and ALLOWLIST. Be cautious of rate limit settings, as overly strict limits may hinder legitimate requests. Always refer to the repository for the latest configuration options and updates.