@letoribo/mcp-graphql-enhanced 2.1.6 → 2.1.9

package/README.md

@@ -1,5 +1,4 @@
 # mcp-graphql-enhanced
-[![Smithery](https://smithery.ai/badge/@letoribo/mcp-graphql-enhanced)](https://smithery.ai/server/@letoribo/mcp-graphql-enhanced)
 [![Glama](https://glama.ai/mcp/servers/@letoribo/mcp-graphql-enhanced/badge)](https://glama.ai/mcp/servers/@letoribo/mcp-graphql-enhanced)
 An **enhanced MCP (Model Context Protocol) server for GraphQL** that fixes real-world interoperability issues between LLMs and GraphQL APIs.
 > Drop-in replacement for `mcp-graphql` — with dynamic headers, robust variables parsing, and zero breaking changes.
@@ -7,7 +6,7 @@ An **enhanced MCP (Model Context Protocol) server for GraphQL** that fixes real-
 - ✅ **Dynamic headers** — pass `Authorization`, `X-API-Key`, etc., via tool arguments (no config restarts)
 - ✅ **Robust variables parsing** — fixes `“Query variables must be a null or an object”` error
 - ✅ **Filtered introspection** — request only specific types (e.g., `typeNames: ["Query", "User"]`) to reduce LLM context noise
-- ✅ **Full MCP compatibility** — works with **Claude Desktop**, **Cursor**, **Glama**, and **Smithery**
+- ✅ **Full MCP compatibility** — works with **Claude Desktop**, **Cursor**, **Glama**
 - ✅ **Secure by default** — mutations disabled unless explicitly enabled
 ## 🔍 Filtered Introspection (New!)
 Avoid 50k-line schema dumps. Ask for only what you need:
@@ -24,7 +23,7 @@ npx @modelcontextprotocol/inspector \
 
 | Environment Variable | Description | Default |
 |----------|-------------|---------|
-| `ENDPOINT` | GraphQL endpoint URL | `http://localhost:4000/graphql` |
+| `ENDPOINT` | GraphQL endpoint URL | `https://mcp-neo4j-discord.vercel.app/api/graphiql` |
 | `HEADERS` | JSON string containing headers for requests | `{}` |
 | `ALLOW_MUTATIONS` | Enable mutation operations (disabled by default) | `false` |
 | `NAME` | Name of the MCP server | `mcp-graphql-enhanced` |
@@ -105,12 +104,6 @@ The server provides two main tools:
 This uses either the local schema file, a schema file hosted at a URL, or an introspection query.
 Filtered introspection (typeNames) is only available when using a live GraphQL endpoint (not with SCHEMA file or URL).
 2. **query-graphql**: Execute GraphQL queries against the endpoint. By default, mutations are disabled unless `ALLOW_MUTATIONS` is set to `true`.
-## Installation
-#### Installing via Smithery
-To install GraphQL MCP Server for Claude Desktop automatically via [Smithery](https://smithery.ai/server/@letoribo/mcp-graphql-enhanced):
-```bash
-npx -y @smithery/cli install @letoribo/mcp-graphql-enhanced --client claude
-```
 ## Security Considerations
 Mutations are disabled by default to prevent unintended data changes. Always validate HEADERS and SCHEMA inputs in production. Use HTTPS endpoints and short-lived tokens where possible.
 ## Customize for your own server

package/dist/index.d.ts

@@ -1,18 +1,3 @@
 #!/usr/bin/env node
-declare const McpServer: any;
-declare const StdioServerTransport: any;
-declare const parse: any;
-declare const z: any;
-declare const checkDeprecatedArguments: any;
-declare const introspectEndpoint: any, introspectLocalSchema: any, introspectSchemaFromUrl: any, introspectTypes: any;
-declare const getVersion: () => any;
-declare const EnvSchema: any;
-declare const env: any;
-declare const server: any;
-interface IntrospectSchemaArgs {
-    typeNames?: string[];
-    descriptions?: boolean;
-    directives?: boolean;
-}
-declare function main(): Promise<void>;
+export {};
 //# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":";AAEA,QAAA,MAAQ,SAAS,KAAuD,CAAC;AACzE,QAAA,MAAQ,oBAAoB,KAAyD,CAAC;AACtF,QAAA,MAAQ,KAAK,KAAgC,CAAC;AAC9C,QAAA,MAAM,CAAC,KAAyB,CAAC;AACjC,QAAA,MAAQ,wBAAwB,KAAwC,CAAC;AACzE,QAAA,MACC,kBAAkB,OAClB,qBAAqB,OACrB,uBAAuB,OACvB,eAAe,KACyB,CAAC;AAG1C,QAAA,MAAM,UAAU,WAIf,CAAC;AAKF,QAAA,MAAM,SAAS,KAqBb,CAAC;AAEH,QAAA,MAAM,GAAG,KAA+B,CAAC;AAEzC,QAAA,MAAM,MAAM,KAIV,CAAC;AA+BH,UAAU,oBAAoB;IAC5B,SAAS,CAAC,EAAE,MAAM,EAAE,CAAC;IACrB,YAAY,CAAC,EAAE,OAAO,CAAC;IACvB,UAAU,CAAC,EAAE,OAAO,CAAC;CACtB;AAoKD,iBAAe,IAAI,kBAOlB"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":""}

package/dist/index.js

@@ -1,18 +1,17 @@
 #!/usr/bin/env node
 "use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+const http = require("node:http");
 const { McpServer } = require("@modelcontextprotocol/sdk/server/mcp.js");
 const { StdioServerTransport } = require("@modelcontextprotocol/sdk/server/stdio.js");
 const { parse } = require("graphql/language");
 const z = require("zod").default;
-const { checkDeprecatedArguments } = require("./helpers/deprecation.js");
-const { introspectEndpoint, introspectLocalSchema, introspectSchemaFromUrl, introspectTypes, } = require("./helpers/introspection.js");
-// Simulate macro import — since "with { type: 'macro' }" is not CommonJS compatible
+const { checkDeprecatedArguments } = require("./helpers/deprecation");
+const { introspectEndpoint, introspectLocalSchema, introspectSchemaFromUrl, introspectTypes, } = require("./helpers/introspection");
 const getVersion = () => {
-    // Replace with your actual version or read from package.json
     const pkg = require("../package.json");
     return pkg.version;
 };
-// Check for deprecated command line arguments
 checkDeprecatedArguments();
 const EnvSchema = z.object({
     NAME: z.string().default("mcp-graphql-enhanced"),
@@ -33,6 +32,7 @@ const EnvSchema = z.object({
         }
     }),
     SCHEMA: z.string().optional(),
+    MCP_PORT: z.preprocess((val) => (val ? parseInt(val) : 6274), z.number().int().min(1024).max(65535)).default(6274),
 });
 const env = EnvSchema.parse(process.env);
 const server = new McpServer({
@@ -68,19 +68,14 @@ server.resource("graphql-schema", new URL(env.ENDPOINT).href, async (uri) => {
         throw new Error(`Failed to get GraphQL schema: ${error}`);
     }
 });
-server.tool("introspect-schema", "Introspect the GraphQL schema. Optionally filter to specific types.", {
-    typeNames: z.array(z.string()).optional().describe("e.g., [\"Query\", \"User\"]"),
-    descriptions: z.boolean().optional().default(true),
-    directives: z.boolean().optional().default(true),
-}, async ({ typeNames, descriptions = true, directives = true }) => {
+const toolHandlers = new Map();
+const introspectSchemaHandler = async ({ typeNames, descriptions = true, directives = true }) => {
     try {
         if (typeNames && typeNames.length > 0) {
-            // ✅ Use your existing introspectTypes helper
             const filtered = await introspectTypes(env.ENDPOINT, env.HEADERS, typeNames);
             return { content: [{ type: "text", text: filtered }] };
         }
         else {
-            // Fallback to full schema
             let schema;
             if (env.SCHEMA) {
                 if (env.SCHEMA.startsWith("http://") || env.SCHEMA.startsWith("https://")) {
@@ -102,15 +97,14 @@ server.tool("introspect-schema", "Introspect the GraphQL schema. Optionally filt
             content: [{ type: "text", text: `Introspection failed: ${error}` }],
         };
     }
-});
-server.tool("query-graphql", "Query a GraphQL endpoint with the given query and variables. Optionally pass headers (e.g., for Authorization).", {
-    query: z.string(),
-    variables: z.string().optional(),
-    headers: z
-        .string()
-        .optional()
-        .describe("Optional JSON string of headers to include, e.g., {\"Authorization\": \"Bearer ...\"}"),
-}, async ({ query, variables, headers }) => {
+};
+toolHandlers.set("introspect-schema", introspectSchemaHandler);
+server.tool("introspect-schema", "Introspect the GraphQL schema. Optionally filter to specific types.", {
+    typeNames: z.array(z.string()).optional().describe("e.g., [\"Query\", \"User\"]"),
+    descriptions: z.boolean().optional().default(true),
+    directives: z.boolean().optional().default(true),
+}, introspectSchemaHandler);
+const queryGraphqlHandler = async ({ query, variables, headers }) => {
     try {
         const parsedQuery = parse(query);
         const isMutation = parsedQuery.definitions.some((def) => def.kind === "OperationDefinition" && def.operation === "mutation");
@@ -146,7 +140,6 @@ server.tool("query-graphql", "Query a GraphQL endpoint with the given query and
             ...env.HEADERS,
             ...toolHeaders,
         };
-        // Parse variables if it's a string
         let parsedVariables = null;
         if (variables) {
             if (typeof variables === 'string') {
@@ -177,7 +170,6 @@ server.tool("query-graphql", "Query a GraphQL endpoint with the given query and
             };
         }
         const rawData = await response.json();
-        // Type assertion for quick dev (replace with zod validation later)
         const data = rawData;
         if (data.errors && data.errors.length > 0) {
             return {
@@ -210,11 +202,114 @@ server.tool("query-graphql", "Query a GraphQL endpoint with the given query and
             ],
         };
     }
-});
+};
+toolHandlers.set("query-graphql", queryGraphqlHandler);
+server.tool("query-graphql", "Query a GraphQL endpoint with the given query and variables. Optionally pass headers (e.g., for Authorization).", {
+    query: z.string(),
+    variables: z.string().optional(),
+    headers: z
+        .string()
+        .optional()
+        .describe("Optional JSON string of headers to include, e.g., {\"Authorization\": \"Bearer ...\"}"),
+}, queryGraphqlHandler);
+function readBody(req) {
+    return new Promise((resolve, reject) => {
+        let body = '';
+        req.on('data', (chunk) => {
+            body += chunk.toString();
+        });
+        req.on('end', () => {
+            resolve(body);
+        });
+        req.on('error', reject);
+    });
+}
+async function handleHttpRequest(req, res) {
+    res.setHeader('Access-Control-Allow-Origin', '*');
+    res.setHeader('Access-Control-Allow-Methods', 'GET, POST, OPTIONS');
+    res.setHeader('Access-Control-Allow-Headers', 'Content-Type');
+    if (req.method === 'OPTIONS') {
+        res.writeHead(204);
+        res.end();
+        return;
+    }
+    const url = new URL(req.url, `http://${req.headers.host}`);
+    if (url.pathname === '/health' && req.method === 'GET') {
+        res.writeHead(200, { 'Content-Type': 'application/json' });
+        res.end(JSON.stringify({ status: 'ok', server: env.NAME }));
+        return;
+    }
+    if (url.pathname === '/mcp' && req.method === 'POST') {
+        let rawBody;
+        let request;
+        try {
+            rawBody = await readBody(req);
+            request = JSON.parse(rawBody);
+        }
+        catch (e) {
+            console.error("HTTP MCP Parse Error:", e);
+            res.writeHead(400, { 'Content-Type': 'application/json' });
+            res.end(JSON.stringify({
+                jsonrpc: '2.0',
+                id: null,
+                error: { code: -32700, message: 'Parse Error: Invalid JSON received in request body.' }
+            }));
+            return;
+        }
+        try {
+            const { method, params, id } = request;
+            if (!method || typeof id === 'undefined') {
+                res.writeHead(400, { 'Content-Type': 'application/json' });
+                res.end(JSON.stringify({
+                    jsonrpc: '2.0',
+                    id: id || null,
+                    error: { code: -32600, message: 'Invalid JSON-RPC Request structure (missing method or id).' }
+                }));
+                return;
+            }
+            const handler = toolHandlers.get(method);
+            if (!handler) {
+                res.writeHead(404, { 'Content-Type': 'application/json' });
+                res.end(JSON.stringify({
+                    jsonrpc: '2.0',
+                    id: id,
+                    error: { code: -32601, message: `Method not found: ${method}` }
+                }));
+                return;
+            }
+            const result = await handler(params);
+            res.writeHead(200, { 'Content-Type': 'application/json' });
+            res.end(JSON.stringify({
+                jsonrpc: '2.0',
+                id: id,
+                result: result
+            }));
+        }
+        catch (error) {
+            console.error("HTTP MCP Execution Error:", error);
+            res.writeHead(500, { 'Content-Type': 'application/json' });
+            res.end(JSON.stringify({
+                jsonrpc: '2.0',
+                id: request?.id || null,
+                error: { code: -32603, message: 'Internal server error during tool execution.' }
+            }));
+        }
+        return;
+    }
+    res.writeHead(404, { 'Content-Type': 'text/plain' });
+    res.end('Not Found. Use POST /mcp for JSON-RPC or GET /health.');
+}
+function startHttpTransport() {
+    const server = http.createServer(handleHttpRequest);
+    server.listen(env.MCP_PORT, () => {
+        console.error(`[HTTP] Started server on http://localhost:${env.MCP_PORT}. Listening for POST /mcp requests.`);
+    });
+}
 async function main() {
-    const transport = new StdioServerTransport();
-    await server.connect(transport);
-    console.error(`Started graphql mcp server ${env.NAME} for endpoint: ${env.ENDPOINT}`);
+    const stdioTransport = new StdioServerTransport();
+    await server.connect(stdioTransport);
+    startHttpTransport();
+    console.error(`[STDIO] Started graphql mcp server ${env.NAME} for endpoint: ${env.ENDPOINT}`);
 }
 main().catch((error) => {
     console.error(`Fatal error in main(): ${error}`);

package/package.json

@@ -14,6 +14,7 @@
 	"license": "MIT",
 	"repository": "github:letoribo/mcp-graphql-enhanced",
 	"main": "dist/index.js",
+	"module": "src/index.ts",
 	"types": "dist/index.d.ts",
 	"bin": {
 		"mcp-graphql-enhanced": "dist/index.js"
@@ -49,5 +50,5 @@
 		"ts-node": "^10.9.2",
 		"typescript": "5.8.3"
 	},
-	"version": "2.1.6"
+	"version": "2.1.9"
 }