@floriscornel/teams-mcp 0.7.0 → 0.9.0

package/README.md

@@ -6,7 +6,7 @@
 [![License: MIT](https://img.shields.io/badge/License-MIT-yellow.svg)](https://opensource.org/licenses/MIT)
 [![GitHub stars](https://img.shields.io/github/stars/floriscornel/teams-mcp.svg)](https://github.com/floriscornel/teams-mcp/stargazers)
 
-A Model Context Protocol (MCP) server that provides seamless integration with Microsoft Graph APIs, enabling AI assistants to interact with Microsoft Teams, users, and organizational data.
+A Model Context Protocol (MCP) server that provides seamless integration with Microsoft Graph APIs, enabling AI assistants to interact with Microsoft Teams, users, chats, files, and organizational data.
 
 <a href="https://glama.ai/mcp/servers/@floriscornel/teams-mcp">
   <img width="380" height="200" src="https://glama.ai/mcp/servers/@floriscornel/teams-mcp/badge" alt="Teams MCP server" />
@@ -30,9 +30,11 @@ To use this MCP server in Cursor/Claude/VS Code, add the following configuration
 ## 🚀 Features
 
 ### 🔐 Authentication
-- OAuth 2.0 authentication flow with Microsoft Graph
-- Secure token management and refresh
-- Authentication status checking
+- OAuth 2.0 device code authentication flow with Microsoft Graph
+- Secure token management, cache persistence, and refresh token renewal
+- Authentication status checking and logout support
+- Read-only mode with reduced scopes
+- Direct `AUTH_TOKEN` support for pre-issued Microsoft Graph access tokens
 
 ### 👥 User Management
 - Get current user information
@@ -44,22 +46,27 @@ To use this MCP server in Cursor/Claude/VS Code, add the following configuration
 - **Teams Management**
   - List user's joined teams
   - Access team details and metadata
-  
+
 - **Channel Operations**
   - List channels within teams
-  - Retrieve channel messages
+  - Retrieve channel messages and replies
   - Send messages to team channels
-  - Support for message importance levels (normal, high, urgent)
-  
+  - Reply to existing channel threads
+  - Edit and soft delete channel messages and replies
+  - Support for message importance levels (`normal`, `high`, `urgent`)
+  - Support for inline image attachments via URL or base64 data
+
 - **Team Members**
   - List team members and their roles
   - Access member information
+  - Search users for `@mentions`
 
 ### 💬 Chat & Messaging
 - **1:1 and Group Chats**
   - List user's chats
   - Create new 1:1 or group conversations
-  - Retrieve chat message history with filtering and pagination
+  - Retrieve chat message history with filtering, ordering, and pagination
+  - Fetch all available messages via `@odata.nextLink` pagination
   - Send messages to existing chats
   - Edit previously sent chat messages
   - Soft delete chat messages
@@ -75,29 +82,38 @@ To use this MCP server in Cursor/Claude/VS Code, add the following configuration
 - **Hosted Content**
   - Download hosted content (images, files) from chat and channel messages
   - Access inline images and attachments shared in conversations
+  - Optionally save hosted content directly to disk
+
+- **File Upload**
+  - Upload and send any file type (PDF, DOCX, XLSX, ZIP, images, etc.) to channels and chats
+  - Large file support (>4 MB) via resumable upload sessions
+  - Channel uploads go to SharePoint and chat uploads go to OneDrive
+  - Optional message text, custom filename, formatting, and importance levels
 
 ### 🔍 Advanced Search & Discovery
 - **Message Search**
   - Search across all Teams channels and chats using Microsoft Search API
   - Support for KQL (Keyword Query Language) syntax
-  - Filter by sender, mentions, attachments, importance, and date ranges
+  - Filter by sender, mentions, attachments, read state, and date ranges
   - Get recent messages with advanced filtering options
-  - Find messages mentioning specific users
+  - Find messages mentioning the current user
 
 ## Rich Message Formatting Support
 
-The following tools now support rich message formatting in Teams channels and chats:
+The following tools support rich message formatting in Teams channels and chats:
 - `send_channel_message`
 - `send_chat_message`
 - `reply_to_channel_message`
 - `update_channel_message`
 - `update_chat_message`
+- `send_file_to_channel`
+- `send_file_to_chat`
 
 ### Format Options
 
 You can specify the `format` parameter to control the message formatting:
 - `text` (default): Plain text
-- `markdown`: Markdown formatting (bold, italic, lists, links, code, etc.) - converted to sanitized HTML
+- `markdown`: Markdown formatting (bold, italic, lists, links, code, etc.) converted to sanitized HTML
 
 When `format` is set to `markdown`, the message content is converted to HTML using a secure markdown parser and sanitized to remove potentially dangerous content before being sent to Teams.
 
@@ -110,7 +126,8 @@ If `format` is not specified, the message will be sent as plain text.
   "teamId": "...",
   "channelId": "...",
   "message": "**Bold text** and _italic text_\n\n- List item 1\n- List item 2\n\n[Link](https://example.com)",
-  "format": "markdown"
+  "format": "markdown",
+  "importance": "high"
 }
 ```
 
@@ -126,17 +143,16 @@ If `format` is not specified, the message will be sent as plain text.
 
 - **HTML Sanitization**: All markdown content is converted to HTML and sanitized to remove potentially dangerous elements (scripts, event handlers, etc.)
 - **Allowed Tags**: Only safe HTML tags are permitted (p, strong, em, a, ul, ol, li, h1-h6, code, pre, etc.)
-- **Safe Attributes**: Only safe attributes are allowed (href, target, src, alt, title, width, height)
+- **Safe Attributes**: Only safe attributes are allowed
 - **XSS Prevention**: Content is automatically sanitized to prevent cross-site scripting attacks
 
 ### Supported Markdown Features
 
 - **Text formatting**: Bold (`**text**`), italic (`_text_`), strikethrough (`~~text~~`)
-- **Links**: `[text](url)` 
+- **Links**: `[text](url)`
 - **Lists**: Bulleted (`- item`) and numbered (`1. item`)
-- **Code**: Inline `` `code` `` and blocks ``` ```code``` ```
+- **Code**: Inline `` `code` `` and fenced code blocks
 - **Headings**: `# H1` through `###### H6`
-- **Line breaks**: Automatic conversion of newlines to `<br>` tags
 - **Blockquotes**: `> quoted text`
 - **Tables**: GitHub-flavored markdown tables
 
@@ -158,19 +174,23 @@ Use the `contentFormat` parameter to control how message content is returned:
 
 ### What Gets Converted
 
-| HTML Element | Markdown Output |
-|---|---|
-| `<at id="0">Name</at>` (Teams mention) | `@Name` |
-| `<strong>text</strong>` | `**text**` |
-| `<em>text</em>` | `*text*` |
-| `<code>text</code>` | `` `text` `` |
-| `<a href="url">text</a>` | `[text](url)` |
-| `<ul><li>item</li></ul>` | `- item` |
-| `<table>...</table>` | GFM Markdown table |
-| `<attachment id="...">` | *(removed)* |
-| `<systemEventMessage/>` | *(removed)* |
-| `<hr>` | `---` |
-| `&nbsp;`, `&amp;`, etc. | Decoded to plain characters |
+| HTML Element                           | Markdown Output                                           |
+| -------------------------------------- | --------------------------------------------------------- |
+| `<at id="0">Name</at>` (Teams mention) | `@Name` (multi-word names merged using mentions metadata) |
+| `<strong>text</strong>`                | `**text**`                                                |
+| `<em>text</em>`                        | `*text*`                                                  |
+| `<code>text</code>`                    | `` `text` ``                                              |
+| `<a href="url">text</a>`               | `[text](url)`                                             |
+| `<ul><li>item</li></ul>`               | `- item`                                                  |
+| `<table>...</table>`                   | GFM Markdown table                                        |
+| `<attachment id="...">`                | `{attachment:id}`                                         |
+| `<systemEventMessage/>`                | *(removed)*                                               |
+| `<hr>`                                 | `---`                                                     |
+| `&nbsp;`, `&amp;`, etc.                | Decoded to plain characters                               |
+
+### Attachment Metadata
+
+Messages that contain file attachments or inline images include an `attachments` array in the response with metadata for each attachment (id, name, contentType, contentUrl, thumbnailUrl). The inline `{attachment:id}` markers in the markdown content correlate with entries in this array, allowing consumers to identify and download attachments via `download_message_hosted_content` or `download_chat_hosted_content`.
 
 ### Example Usage
 
@@ -182,7 +202,7 @@ Use the `contentFormat` parameter to control how message content is returned:
 }
 ```
 
-To get the original HTML (previous default behavior):
+To get the original HTML:
 
 ```json
 {
@@ -210,22 +230,66 @@ npm run auth
 ### Prerequisites
 - Node.js 18+
 - Microsoft 365 account with appropriate permissions
-- Azure App Registration with Microsoft Graph permissions
+- Microsoft Graph delegated permissions for the scopes below
 
 ### Required Microsoft Graph Permissions
+
+**Full mode (default):**
 - `User.Read` - Read user profile
 - `User.ReadBasic.All` - Read basic user info
 - `Team.ReadBasic.All` - Read team information
 - `Channel.ReadBasic.All` - Read channel information
 - `ChannelMessage.Read.All` - Read channel messages
-- `ChannelMessage.Send` - Send channel messages
+- `ChannelMessage.Send` - Send channel messages and replies
 - `ChannelMessage.ReadWrite` - Edit and delete channel messages
-- `Chat.Read` - Read chat messages
-- `Chat.ReadWrite` - Create and manage chats (including edit/delete messages)
-- `Mail.Read` - Required for Microsoft Search API
-- `Calendars.Read` - Required for Microsoft Search API
-- `Files.Read.All` - Required for Microsoft Search API
-- `Sites.Read.All` - Required for Microsoft Search API
+- `Chat.Read` - Read chat messages (included via read-only scopes)
+- `Chat.ReadWrite` - Create and manage chats, send/edit/delete chat messages (supersedes `Chat.Read`)
+- `TeamMember.Read.All` - Read team members
+- `Files.ReadWrite.All` - Required for file uploads to channels and chats
+
+**Read-only mode** (`TEAMS_MCP_READ_ONLY=true`) — only these scopes are requested:
+- `User.Read`
+- `User.ReadBasic.All`
+- `Team.ReadBasic.All`
+- `Channel.ReadBasic.All`
+- `ChannelMessage.Read.All`
+- `TeamMember.Read.All`
+- `Chat.Read`
+
+### Authentication Modes
+
+**Full access:**
+
+```bash
+npx @floriscornel/teams-mcp@latest authenticate
+```
+
+**Read-only access:**
+
+```bash
+npx @floriscornel/teams-mcp@latest authenticate --read-only
+```
+
+**Direct token injection with an existing Microsoft Graph JWT:**
+
+```json
+{
+  "mcpServers": {
+    "teams-mcp": {
+      "command": "npx",
+      "args": ["-y", "@floriscornel/teams-mcp@latest"],
+      "env": {
+        "AUTH_TOKEN": "<jwt-for-https://graph.microsoft.com>"
+      }
+    }
+  }
+}
+```
+
+### Token Storage
+
+- Auth metadata is stored locally at `~/.msgraph-mcp-auth.json`
+- Token cache is stored locally at `~/.teams-mcp-token-cache.json`
 
 ## 🛠️ Usage
 
@@ -236,43 +300,105 @@ npm run dev
 
 # Production mode
 npm run build && node dist/index.js
+
+# Start in read-only mode (disables all write tools)
+TEAMS_MCP_READ_ONLY=true node dist/index.js
 ```
 
+### CLI Commands
+
+```bash
+npx @floriscornel/teams-mcp@latest authenticate              # Authenticate with full scopes
+npx @floriscornel/teams-mcp@latest authenticate --read-only  # Authenticate with read-only scopes
+npx @floriscornel/teams-mcp@latest check                     # Check authentication status
+npx @floriscornel/teams-mcp@latest logout                    # Clear authentication
+npx @floriscornel/teams-mcp@latest auth                      # Alias for authenticate
+npx @floriscornel/teams-mcp@latest                           # Start MCP server (default)
+```
+
+### Environment Variables
+
+- `TEAMS_MCP_READ_ONLY=true` - Start the MCP server in read-only mode
+- `AUTH_TOKEN=<jwt>` - Use a pre-existing Microsoft Graph access token instead of MSAL login
+
+### Read-Only Mode
+
+The server supports a read-only mode that disables all write operations (sending messages, creating chats, uploading files, editing/deleting messages) and requests only read-permission scopes from Microsoft Graph.
+
+**Enable read-only mode** using either:
+- Environment variable: `TEAMS_MCP_READ_ONLY=true`
+- CLI flag: `--read-only`
+
+**Authenticate with reduced scopes:**
+```bash
+npx @floriscornel/teams-mcp@latest authenticate --read-only
+```
+
+**MCP server configuration (read-only):**
+```json
+{
+  "mcpServers": {
+    "teams-mcp": {
+      "command": "npx",
+      "args": ["-y", "@floriscornel/teams-mcp@latest"],
+      "env": {
+        "TEAMS_MCP_READ_ONLY": "true"
+      }
+    }
+  }
+}
+```
+
+**Switching modes:** When switching from read-only to full mode, the server detects the scope mismatch and warns you to re-authenticate:
+```bash
+npx @floriscornel/teams-mcp@latest authenticate
+```
+
+**Read-only tools (16):**
+`auth_status`, `get_current_user`, `search_users`, `get_user`, `list_teams`, `list_channels`, `get_channel_messages`, `get_channel_message_replies`, `list_team_members`, `search_users_for_mentions`, `download_message_hosted_content`, `list_chats`, `get_chat_messages`, `download_chat_hosted_content`, `search_messages`, `get_my_mentions`
+
+**Write tools disabled in read-only mode (10):**
+`send_channel_message`, `reply_to_channel_message`, `update_channel_message`, `delete_channel_message`, `send_file_to_channel`, `send_chat_message`, `create_chat`, `update_chat_message`, `delete_chat_message`, `send_file_to_chat`
+
 ### Available MCP Tools
 
 #### Authentication
-- `authenticate` - Initiate OAuth authentication flow
-- `logout` - Clear authentication tokens
-- `get_current_user` - Get authenticated user information
+- `auth_status` - Check current authentication status
 
 #### User Operations
+- `get_current_user` - Get authenticated user information
 - `search_users` - Search for users by name or email
 - `get_user` - Get detailed user information by ID or email
 
 #### Teams Operations
 - `list_teams` - List user's joined teams
 - `list_channels` - List channels in a specific team
-- `get_channel_messages` - Retrieve messages from a team channel with pagination and filtering
-- `send_channel_message` - Send a message to a team channel
-- `update_channel_message` - Edit a previously sent channel message
-- `delete_channel_message` - Soft delete a channel message (supports replies)
+- `get_channel_messages` - Retrieve messages from a team channel with attachment summaries and content format selection
+- `get_channel_message_replies` - Get replies to a specific channel message
+- `send_channel_message` - Send a message to a team channel with optional mentions, importance, and image attachments
+- `reply_to_channel_message` - Reply to an existing channel message
+- `update_channel_message` - Edit a previously sent channel message or reply
+- `delete_channel_message` - Soft delete a channel message or reply
 - `list_team_members` - List members of a specific team
+- `search_users_for_mentions` - Search for team members to @mention in messages
+- `send_file_to_channel` - Upload a local file and send it as a message to a channel
 
 #### Chat Operations
 - `list_chats` - List user's chats (1:1 and group)
-- `get_chat_messages` - Retrieve messages from a specific chat with pagination and filtering
+- `get_chat_messages` - Retrieve messages from a specific chat with pagination, filters, ordering, and `fetchAll`
 - `send_chat_message` - Send a message to a chat
 - `create_chat` - Create a new 1:1 or group chat
 - `update_chat_message` - Edit a previously sent chat message
 - `delete_chat_message` - Soft delete a chat message
+- `send_file_to_chat` - Upload a local file and send it as a message to a chat
 
 #### Media Operations
-- `download_message_hosted_content` - Download hosted content (images, files) from messages
+- `download_message_hosted_content` - Download hosted content (images, files) from channel messages
+- `download_chat_hosted_content` - Download hosted content (images, files) from chat messages
 
 #### Search Operations
 - `search_messages` - Search across all Teams messages using KQL syntax
-- `get_recent_messages` - Get recent messages with advanced filtering options
-- `get_my_mentions` - Find messages mentioning the current user
+- `get_my_mentions` - Find recent messages mentioning the current user
 
 ## 📋 Examples
 
@@ -281,7 +407,11 @@ npm run build && node dist/index.js
 First, authenticate with Microsoft Graph:
 
 ```bash
+# Full access (default)
 npx @floriscornel/teams-mcp@latest authenticate
+
+# Read-only (reduced permission scopes)
+npx @floriscornel/teams-mcp@latest authenticate --read-only
 ```
 
 Check your authentication status:
@@ -296,9 +426,52 @@ Logout if needed:
 npx @floriscornel/teams-mcp@latest logout
 ```
 
+### Chat Pagination Example
+
+```json
+{
+  "chatId": "19:meeting_...",
+  "limit": 100,
+  "fetchAll": true,
+  "orderBy": "createdDateTime",
+  "descending": true,
+  "contentFormat": "markdown"
+}
+```
+
+### Channel Message with Mentions and Image
+
+```json
+{
+  "teamId": "team-id",
+  "channelId": "channel-id",
+  "message": "Please review **today's update**",
+  "format": "markdown",
+  "importance": "high",
+  "mentions": [
+    {
+      "mention": "alex.chen",
+      "userId": "00000000-0000-0000-0000-000000000000"
+    }
+  ],
+  "imageUrl": "https://example.com/status.png"
+}
+```
+
+### File Upload Example
+
+```json
+{
+  "chatId": "19:meeting_...",
+  "filePath": "/absolute/path/to/report.pdf",
+  "message": "Please review the attached report",
+  "format": "markdown"
+}
+```
+
 ### Integrating with Cursor/Claude
 
-This MCP server is designed to work with AI assistants like Claude/Cursor/VS Code through the Model Context Protocol. 
+This MCP server is designed to work with AI assistants like Claude/Cursor/VS Code through the Model Context Protocol.
 
 ```json
 {
@@ -313,9 +486,12 @@ This MCP server is designed to work with AI assistants like Claude/Cursor/VS Cod
 
 ## 🔒 Security
 
-- All authentication is handled through Microsoft's OAuth 2.0 flow
+- All authentication is handled through Microsoft's OAuth 2.0 flow or a caller-provided Microsoft Graph token
 - **Refresh token support**: Access tokens are automatically renewed using cached refresh tokens, so you don't need to re-authenticate every hour
 - Token cache is stored locally at `~/.teams-mcp-token-cache.json`
+- Auth metadata is stored locally at `~/.msgraph-mcp-auth.json`
+- Markdown content is sanitized before sending HTML to Teams
+- `AUTH_TOKEN` is validated to ensure it targets `https://graph.microsoft.com`
 - No sensitive data is logged or exposed
 - Follows Microsoft Graph API security best practices
 
@@ -328,7 +504,7 @@ MIT License - see LICENSE file for details
 1. Fork the repository
 2. Create a feature branch
 3. Make your changes
-4. Run linting and formatting
+4. Run build, linting, and tests
 5. Submit a pull request
 
 ## 📞 Support
@@ -336,4 +512,4 @@ MIT License - see LICENSE file for details
 For issues and questions:
 - Check the existing GitHub issues
 - Review Microsoft Graph API documentation
-- Ensure proper authentication and permissions are configured
+- Ensure proper authentication and permissions are configured

package/dist/index.js

@@ -6,7 +6,7 @@ import { PublicClientApplication, } from "@azure/msal-node";
 import { McpServer } from "@modelcontextprotocol/sdk/server/mcp.js";
 import { StdioServerTransport } from "@modelcontextprotocol/sdk/server/stdio.js";
 import { cachePlugin } from "./msal-cache.js";
-import { GraphService } from "./services/graph.js";
+import { FULL_SCOPES, GraphService, READ_ONLY_SCOPES } from "./services/graph.js";
 import { registerAuthTools } from "./tools/auth.js";
 import { registerChatTools } from "./tools/chats.js";
 import { registerSearchTools } from "./tools/search.js";
@@ -16,23 +16,27 @@ import { registerUsersTools } from "./tools/users.js";
 const CLIENT_ID = "14d82eec-204b-4c2f-b7e8-296a70dab67e";
 const AUTHORITY = "https://login.microsoftonline.com/common";
 const AUTH_INFO_PATH = join(homedir(), ".msgraph-mcp-auth.json");
-// Scopes for delegated (user) authentication
-const DELEGATED_SCOPES = [
-    "User.Read",
-    "User.ReadBasic.All",
-    "Team.ReadBasic.All",
-    "Channel.ReadBasic.All",
-    "ChannelMessage.Read.All",
-    "ChannelMessage.Send",
-    "TeamMember.Read.All",
-    "Chat.ReadBasic",
-    "Chat.ReadWrite",
-];
+/** Check whether CLI args contain --read-only. */
+function hasReadOnlyFlag(args) {
+    return args.includes("--read-only");
+}
+/** Read the persisted auth info file (best-effort). */
+async function readAuthInfo() {
+    try {
+        const data = await fs.readFile(AUTH_INFO_PATH, "utf8");
+        return JSON.parse(data);
+    }
+    catch {
+        return undefined;
+    }
+}
 // Authentication functions
-async function authenticate() {
+async function authenticate(readOnly) {
+    const scopes = readOnly ? READ_ONLY_SCOPES : FULL_SCOPES;
+    const modeLabel = readOnly ? "read-only" : "full access";
     console.log("🔐 Microsoft Graph Authentication for MCP Server");
     console.log("=".repeat(50));
-    console.log("Using Microsoft Graph CLI app");
+    console.log(`Using Microsoft Graph CLI app (${modeLabel})`);
     try {
         console.log("\n📱 Using device code flow...");
         const msalConfig = {
@@ -46,7 +50,7 @@ async function authenticate() {
         };
         const client = new PublicClientApplication(msalConfig);
         const result = await client.acquireTokenByDeviceCode({
-            scopes: DELEGATED_SCOPES,
+            scopes,
             deviceCodeCallback: (response) => {
                 console.log("\n📱 Please complete authentication:");
                 console.log(`🌐 Visit: ${response.verificationUri}`);
@@ -62,10 +66,12 @@ async function authenticate() {
                 timestamp: new Date().toISOString(),
                 expiresAt: result.expiresOn?.toISOString(),
                 account: result.account?.username,
+                grantedScopes: result.scopes,
             };
             await fs.writeFile(AUTH_INFO_PATH, JSON.stringify(authInfo, null, 2));
             console.log("\n✅ Authentication successful!");
             console.log(`👤 Signed in as: ${result.account?.username || "Unknown"}`);
+            console.log(`🔒 Mode: ${modeLabel}`);
             console.log(`💾 Credentials saved to: ${AUTH_INFO_PATH}`);
             console.log("🔄 Refresh token cached for automatic renewal");
             console.log("\n🚀 You can now use the MCP server in Cursor!");
@@ -96,6 +102,18 @@ async function checkAuth() {
             console.log("✅ Authentication found");
             console.log(`👤 Account: ${authInfo.account || "Unknown"}`);
             console.log(`📅 Authenticated on: ${authInfo.timestamp}`);
+            // Show granted scope mode
+            const grantedScopes = authInfo.grantedScopes;
+            if (grantedScopes) {
+                const hasWriteScopes = grantedScopes.some((s) => s === "ChannelMessage.Send" ||
+                    s === "ChannelMessage.ReadWrite" ||
+                    s === "Chat.ReadWrite" ||
+                    s === "Files.ReadWrite.All");
+                console.log(`🔒 Scope mode: ${hasWriteScopes ? "full access" : "read-only"}`);
+            }
+            else {
+                console.log("⚠️  Scope mode: unknown (authenticated before read-only support)");
+            }
             // Check if we have expiration info
             if (authInfo.expiresAt) {
                 const expiresAt = new Date(authInfo.expiresAt);
@@ -140,34 +158,56 @@ async function logout() {
     console.log("🔄 Run 'npx @floriscornel/teams-mcp@latest authenticate' to re-authenticate");
 }
 // MCP Server setup
-async function startMcpServer() {
+async function startMcpServer(readOnly) {
     // Create MCP server
     const server = new McpServer({
         name: "teams-mcp",
-        version: "0.7.0",
+        version: "0.9.0",
     });
     // Initialize Graph service (singleton)
     const graphService = GraphService.getInstance();
-    // Register all tools
-    registerAuthTools(server, graphService);
-    registerUsersTools(server, graphService);
-    registerTeamsTools(server, graphService);
-    registerChatTools(server, graphService);
-    registerSearchTools(server, graphService);
+    graphService.readOnlyMode = readOnly;
+    // Detect scope mismatch: warn when switching from read-only → full mode
+    if (!readOnly && !process.env.AUTH_TOKEN) {
+        const authInfo = await readAuthInfo();
+        if (authInfo) {
+            const grantedScopes = authInfo.grantedScopes;
+            const hasWriteScopes = grantedScopes?.some((s) => s === "ChannelMessage.Send" ||
+                s === "ChannelMessage.ReadWrite" ||
+                s === "Chat.ReadWrite" ||
+                s === "Files.ReadWrite.All");
+            if (grantedScopes && !hasWriteScopes) {
+                console.error("⚠️  Warning: You authenticated with read-only scopes but the server is running in full mode.");
+                console.error("   Write operations may fail. Re-authenticate without --read-only:");
+                console.error("   npx @floriscornel/teams-mcp@latest authenticate");
+            }
+            else if (!grantedScopes) {
+                console.error("⚠️  Warning: Could not determine granted scopes. If you experience permission errors,");
+                console.error("   re-authenticate: npx @floriscornel/teams-mcp@latest authenticate");
+            }
+        }
+    }
+    // Register all tools (write tools are skipped when readOnly is true)
+    registerAuthTools(server, graphService, readOnly);
+    registerUsersTools(server, graphService, readOnly);
+    registerTeamsTools(server, graphService, readOnly);
+    registerChatTools(server, graphService, readOnly);
+    registerSearchTools(server, graphService, readOnly);
     // Start server
     const transport = new StdioServerTransport();
     await server.connect(transport);
-    console.error("Microsoft Graph MCP Server started");
+    console.error(`Microsoft Graph MCP Server started${readOnly ? " (read-only mode)" : ""}`);
 }
 // Main function to handle both CLI and MCP server modes
 async function main() {
     const args = process.argv.slice(2);
-    const command = args[0];
+    const command = args.find((arg) => arg !== "--read-only");
+    const readOnly = hasReadOnlyFlag(args) || process.env.TEAMS_MCP_READ_ONLY === "true";
     // CLI commands
     switch (command) {
         case "authenticate":
         case "auth":
-            await authenticate();
+            await authenticate(readOnly);
             return;
         case "check":
             await checkAuth();
@@ -181,14 +221,19 @@ async function main() {
             console.log("Microsoft Graph MCP Server");
             console.log("");
             console.log("Usage:");
-            console.log("  npx @floriscornel/teams-mcp@latest authenticate # Authenticate with Microsoft");
-            console.log("  npx @floriscornel/teams-mcp@latest check        # Check authentication status");
-            console.log("  npx @floriscornel/teams-mcp@latest logout       # Clear authentication");
-            console.log("  npx @floriscornel/teams-mcp@latest              # Start MCP server (default)");
+            console.log("  npx @floriscornel/teams-mcp@latest authenticate              # Authenticate with full scopes");
+            console.log("  npx @floriscornel/teams-mcp@latest authenticate --read-only  # Authenticate with read-only scopes");
+            console.log("  npx @floriscornel/teams-mcp@latest check                     # Check authentication status");
+            console.log("  npx @floriscornel/teams-mcp@latest logout                    # Clear authentication");
+            console.log("  npx @floriscornel/teams-mcp@latest                           # Start MCP server (default)");
+            console.log("");
+            console.log("Environment variables:");
+            console.log("  TEAMS_MCP_READ_ONLY=true  # Start MCP server in read-only mode");
+            console.log("  AUTH_TOKEN=<jwt>          # Use a pre-existing access token");
             return;
         case undefined:
             // No command = start MCP server
-            await startMcpServer();
+            await startMcpServer(readOnly);
             return;
         default:
             console.error(`Unknown command: ${command}`);