link tool to HTTP client

Author: damilola-paystack

.env.example

@@ -1,2 +1,3 @@
 PAYSTACK_BASE_URL="https://api.paystack.co"
-USER_AGENT="paystack-mcp/1.0"
+USER_AGENT="paystack-mcp/1.0"
+PAYSTACK_TEST_SECRET_KEY="sk_secret_key_here"

package-lock.json

@@ -21,14 +21,15 @@
   "dependencies": {
     "@modelcontextprotocol/inspector": "^0.18.0",
     "@modelcontextprotocol/sdk": "^1.25.2",
+    "dotenv": "^17.2.3",
     "zod": "^4.3.6"
   },
   "devDependencies": {
     "@apidevtools/swagger-parser": "^12.1.0",
     "@types/mocha": "^10.0.10",
     "@types/node": "^25.0.7",
     "js-yaml": "^4.1.1",
-    "mocha": "^11.7.5",
+    "mocha": "^11.3.0",
     "openapi-types": "^12.1.3",
     "tsx": "^4.21.0",
     "typescript": "^5.9.3"

package.json

@@ -0,0 +1,38 @@
+# Paystack MCP Server
+
+This project implements a server for Paystack's [Model Context Protocol (MCP)](https://modelcontextprotocol.io/) server.
+
+
+## Requirements
+
+- Node.js (v14+ recommended)
+- npm or yarn
+
+## Setup
+
+1. Clone the repository:
+  ```
+  git clone https://github.com/yourusername/paystack-mcp-server.git
+  cd paystack-mcp
+  ```
+
+2. Install dependencies:
+  ```
+  npm install
+  ```
+
+3. Configure environment variables:
+  - Copy `.env.example` to `.env` and update with your Paystack credentials and server settings.
+
+4. Start the server:
+  ```
+  npm start
+  ```
+
+## Contributing
+
+Pull requests are welcome. For major changes, please open an issue first to discuss what you would like to change.
+
+## License
+
+MIT

readme.md

@@ -0,0 +1,41 @@
+import dotenv from 'dotenv';
+import { z } from 'zod';
+
+// Load environment variables from .env file
+dotenv.config();
+
+// Define schema for required environment variables
+const envSchema = z.object({
+  PAYSTACK_SECRET_KEY_TEST: z.string().min(30, 'PAYSTACK_SECRET_KEY_TEST is required').refine(val => val.startsWith('sk_test_'), {
+    message: 'PAYSTACK_SECRET_KEY_TEST must begin with "sk_test_. No live keys allowed."',
+  }),
+  NODE_ENV: z.enum(['development', 'production', 'test']).default('development'),
+  LOG_LEVEL: z.enum(['debug', 'info', 'warn', 'error']).default('info'),
+});
+
+// Validate environment variables
+function validateEnv() {
+  try {
+    return envSchema.parse({
+      PAYSTACK_SECRET_KEY_TEST: process.env.PAYSTACK_SECRET_KEY_TEST,
+      NODE_ENV: process.env.NODE_ENV || 'development',
+      LOG_LEVEL: process.env.LOG_LEVEL || 'info',
+    });
+  } catch (error) {
+    if (error instanceof z.ZodError) {
+      // Environment validation failed - exit silently
+      process.exit(1);
+    }
+    throw error;
+  }
+}
+
+// Export validated configuration
+export const config = validateEnv();
+
+// Paystack API configuration
+export const paystackConfig = {
+  baseURL: 'https://api.paystack.co',
+  secretKey: config.PAYSTACK_SECRET_KEY_TEST,
+  timeout: 30000, // 30 seconds
+} as const;

src/config.ts

@@ -4,9 +4,10 @@ import path from "path";
 import * as z from "zod";
 import { OpenAPIParser } from "./openapi-parser";
 import { CreateMessageResultSchema } from "@modelcontextprotocol/sdk/types.js";
+import { paystackClient } from "./paystack-client";
 
-const PAYSTACK_BASE_URL = process.env.PAYSTACK_BASE_URL || "https://api.paystack.co";
-const USER_AGENT = process.env.USER_AGENT || "paystack-mcp/1.0";
+// const PAYSTACK_BASE_URL = process.env.PAYSTACK_BASE_URL || "https://api.paystack.co";
+// const USER_AGENT = process.env.USER_AGENT || "paystack-mcp/1.0";
 
 // Create server instance
 const server = new McpServer({
@@ -95,12 +96,19 @@ async function initializeServer() {
         console.log("Request received:", request.method);
         console.log("Request received:", request.path);
         console.log("Request received:", request.data);
+        
+        const response = await paystackClient.makeRequest(
+          request.method,
+          request.path,
+          request.data
+        )
+        console.log("response: ", response)
 
         return {
           content: [
             {
               type: "text",
-              text: JSON.stringify({ "message": "API request processed successfully" }, null, 2),
+              text: JSON.stringify(response, null, 2),
               mimeType: "application/json",
             },
           ]
@@ -247,6 +255,7 @@ async function main() {
   console.error("Paystack MCP Server running on stdio...");
 }
 
+
 main().catch((error) => {
   console.error("Fatal error in main():", error);
   process.exit(1);

src/index.ts

@@ -0,0 +1,178 @@
+import { config } from './config.js';
+// Define log levels
+export enum LogLevel {
+  DEBUG = 'debug',
+  INFO = 'info',
+  WARN = 'warn',
+  ERROR = 'error',
+}
+
+// Map log levels to numeric values for comparison
+const logLevelValues: Record<LogLevel, number> = {
+  [LogLevel.DEBUG]: 0,
+  [LogLevel.INFO]: 1,
+  [LogLevel.WARN]: 2,
+  [LogLevel.ERROR]: 3,
+};
+
+// Sensitive field patterns to redact
+const SENSITIVE_PATTERNS = [
+  /authorization/i,
+  /secret/i,
+  /token/i,
+  /api[_-]?key/i,
+  /bearer/i,
+  /credential/i,
+  /secret[_-]?key/i,
+  /cvv/i,
+  /number/i,
+];
+/**
+ * Redact sensitive fields in card objects
+ * Only redacts cvv and number, keeps other fields visible
+ */
+function redactCardObject(card: any): any {
+  if (Array.isArray(card)) {
+    return card.map(redactCardObject);
+  }
+  
+  if (typeof card === 'object' && card !== null) {
+    const redactedCard: any = {};
+    for (const [key, value] of Object.entries(card)) {
+      // Only redact cvv and number fields in card object
+      if (key === 'cvv' || key === 'number') {
+        redactedCard[key] = '[REDACTED]';
+      } else {
+        // Keep other card fields but recursively redact if they're objects
+        redactedCard[key] = redactSensitiveData(value);
+      }
+    }
+    return redactedCard;
+  }
+  
+  return card;
+}
+
+
+function redactSensitiveData(obj: any): any {
+  if (obj === null || obj === undefined) {
+    return obj;
+  }
+
+  if (typeof obj === 'string') {
+    // Redact bearer tokens and API keys in strings
+    return obj.replace(/Bearer\s+\w+/gi, 'Bearer [REDACTED]')
+              .replace(/sk_test_\w+/g, '[REDACTED_SECRET_KEY]');
+  }
+
+  if (Array.isArray(obj)) {
+    return obj.map(redactSensitiveData);
+  }
+
+  if (typeof obj === 'object') {
+    const redacted: any = {};
+    for (const [key, value] of Object.entries(obj)) {
+      // Special handling for card objects - only redact cvv and number
+      if (key.toLowerCase() === 'card' && typeof value === 'object' && value !== null) {
+        redacted[key] = redactCardObject(value);
+      } 
+      // Check if key matches sensitive patterns
+      else if (SENSITIVE_PATTERNS.some(pattern => pattern.test(key))) {
+        redacted[key] = '[REDACTED]';
+      } else {
+        redacted[key] = redactSensitiveData(value);
+      }
+    }
+    return redacted;
+  }
+
+  return obj;
+}
+
+class Logger {
+  private currentLogLevel: LogLevel;
+
+  constructor() {
+    this.currentLogLevel = config.LOG_LEVEL as LogLevel;
+  }
+
+  private shouldLog(level: LogLevel): boolean {
+    return logLevelValues[level] >= logLevelValues[this.currentLogLevel];
+  }
+
+  private formatLog(level: LogLevel, message: string, meta?: any) {
+    const timestamp = new Date().toISOString();
+    const logEntry = {
+      timestamp,
+      level,
+      message,
+      ...(meta && { meta: redactSensitiveData(meta) }),
+    };
+
+    return JSON.stringify(logEntry);
+  }
+
+  debug(message: string, meta?: any) {
+    // Disabled for MCP stdio communication
+    if (this.shouldLog(LogLevel.DEBUG)) {
+      console.error(this.formatLog(LogLevel.DEBUG, message, meta));
+    }
+  }
+
+  info(message: string, meta?: any) {
+    // Disabled for MCP stdio communication
+    if (this.shouldLog(LogLevel.INFO)) {
+      console.error(this.formatLog(LogLevel.INFO, message, meta));
+    }
+  }
+
+  warn(message: string, meta?: any) {
+    // Disabled for MCP stdio communication
+    if (this.shouldLog(LogLevel.WARN)) {
+      console.error(this.formatLog(LogLevel.WARN, message, meta));
+    }
+  }
+
+  error(message: string, meta?: any) {
+    // Disabled for MCP stdio communication
+    if (this.shouldLog(LogLevel.ERROR)) {
+      console.error(this.formatLog(LogLevel.ERROR, message, meta));
+    }
+  }
+
+  /**
+   * Log API request
+   */
+  logRequest(method: string, url: string, data?: any, headers?: any) {
+    this.debug('API Request', {
+      method,
+      url,
+      data,
+      headers,
+    });
+  }
+
+  /**
+   * Log API response
+   */
+  logResponse(method: string, url: string, status: number, data?: any) {
+    this.debug('API Response', {
+      method,
+      url,
+      status,
+      data,
+    });
+  }
+
+  /**
+   * Log tool call
+   */
+  logToolCall(toolName: string, params?: any) {
+    this.info('Tool called', {
+      tool: toolName,
+      params,
+    });
+  }
+}
+
+export const logger = new Logger();

src/logger.ts

@@ -240,7 +240,7 @@ export class OpenAPIParser {
 
 
   getOperationById(operationId: string): Partial<Oas.Operation> | undefined {
-     return this.operations[operationId];
+    return this.operations[operationId];
   }
 
   getOperations(): Record<string, Partial<Oas.Operation>> {