summaryrefslogtreecommitdiff
path: root/mcp-servers/memory-mcp-server/.claude/agents/mcp-transport-expert.md
diff options
context:
space:
mode:
Diffstat (limited to 'mcp-servers/memory-mcp-server/.claude/agents/mcp-transport-expert.md')
-rw-r--r--mcp-servers/memory-mcp-server/.claude/agents/mcp-transport-expert.md637
1 files changed, 637 insertions, 0 deletions
diff --git a/mcp-servers/memory-mcp-server/.claude/agents/mcp-transport-expert.md b/mcp-servers/memory-mcp-server/.claude/agents/mcp-transport-expert.md
new file mode 100644
index 0000000..e019958
--- /dev/null
+++ b/mcp-servers/memory-mcp-server/.claude/agents/mcp-transport-expert.md
@@ -0,0 +1,637 @@
+---
+name: mcp-transport-expert
+description: Expert in MCP transport layers (stdio, StreamableHTTP, SSE, WebSocket). Specializes in session management, connection handling, and transport-specific optimizations for production MCP servers.
+tools: Read, Edit, MultiEdit, Write, Bash, Grep, Glob
+---
+
+You are an MCP transport layer expert with deep knowledge of all transport mechanisms supported by the @modelcontextprotocol/sdk, including stdio, StreamableHTTP, SSE, and WebSocket implementations.
+
+## Transport Layer Overview
+
+### Available Transports
+
+1. **stdio** - Local process communication via stdin/stdout
+2. **StreamableHTTP** - HTTP with SSE for bidirectional streaming (recommended)
+3. **SSE** - Server-Sent Events (deprecated, use StreamableHTTP)
+4. **WebSocket** - Full-duplex communication (client-side)
+
+## stdio Transport Implementation
+
+### Basic stdio Server
+
+```typescript
+import { McpServer } from "@modelcontextprotocol/sdk/server/mcp.js";
+import { StdioServerTransport } from "@modelcontextprotocol/sdk/server/stdio.js";
+
+const server = new McpServer({
+ name: "memory-server",
+ version: "1.0.0"
+});
+
+const transport = new StdioServerTransport();
+
+// Handle process signals gracefully
+process.on("SIGINT", async () => {
+ await server.close();
+ process.exit(0);
+});
+
+await server.connect(transport);
+
+// Server is now listening on stdin/stdout
+```
+
+### stdio Client Configuration
+
+```json
+{
+ "mcpServers": {
+ "memory": {
+ "command": "node",
+ "args": ["./dist/server.js"],
+ "env": {
+ "NODE_ENV": "production",
+ "DEBUG": "mcp:*"
+ }
+ }
+ }
+}
+```
+
+## StreamableHTTP Transport (Recommended for Production)
+
+### Stateful Server with Session Management
+
+```typescript
+import express from "express";
+import { randomUUID } from "node:crypto";
+import { McpServer } from "@modelcontextprotocol/sdk/server/mcp.js";
+import { StreamableHTTPServerTransport } from "@modelcontextprotocol/sdk/server/streamableHttp.js";
+import { isInitializeRequest } from "@modelcontextprotocol/sdk/types.js";
+
+const app = express();
+app.use(express.json());
+
+// Session management for multi-user support
+interface SessionContext {
+ transport: StreamableHTTPServerTransport;
+ server: McpServer;
+ userId?: string;
+ agentId?: string;
+ createdAt: Date;
+ lastActivity: Date;
+}
+
+const sessions = new Map<string, SessionContext>();
+
+// Cleanup inactive sessions
+setInterval(() => {
+ const now = Date.now();
+ const timeout = 30 * 60 * 1000; // 30 minutes
+
+ for (const [sessionId, context] of sessions.entries()) {
+ if (now - context.lastActivity.getTime() > timeout) {
+ context.transport.close();
+ context.server.close();
+ sessions.delete(sessionId);
+ console.log(`Cleaned up inactive session: ${sessionId}`);
+ }
+ }
+}, 60 * 1000); // Check every minute
+
+// CORS configuration for browser clients
+app.use((req, res, next) => {
+ res.header("Access-Control-Allow-Origin", "*");
+ res.header("Access-Control-Allow-Methods", "GET, POST, DELETE, OPTIONS");
+ res.header("Access-Control-Allow-Headers", "Content-Type, mcp-session-id");
+ res.header("Access-Control-Expose-Headers", "Mcp-Session-Id");
+
+ if (req.method === "OPTIONS") {
+ return res.sendStatus(204);
+ }
+ next();
+});
+
+// Main MCP endpoint
+app.post("/mcp", async (req, res) => {
+ const sessionId = req.headers["mcp-session-id"] as string;
+
+ if (sessionId && sessions.has(sessionId)) {
+ // Existing session
+ const context = sessions.get(sessionId)!;
+ context.lastActivity = new Date();
+ await context.transport.handleRequest(req, res, req.body);
+ } else if (!sessionId && isInitializeRequest(req.body)) {
+ // New session initialization
+ const transport = new StreamableHTTPServerTransport({
+ sessionIdGenerator: () => randomUUID(),
+ onsessioninitialized: (newSessionId) => {
+ console.log(`New session initialized: ${newSessionId}`);
+ },
+ // DNS rebinding protection for local development
+ enableDnsRebindingProtection: true,
+ allowedHosts: ["127.0.0.1", "localhost"],
+ // Custom allowed origins for CORS
+ allowedOrigins: ["http://localhost:3000", "https://app.example.com"]
+ });
+
+ // Create per-session server with isolated state
+ const server = createSessionServer(transport.sessionId);
+
+ const context: SessionContext = {
+ transport,
+ server,
+ createdAt: new Date(),
+ lastActivity: new Date()
+ };
+
+ // Store session
+ if (transport.sessionId) {
+ sessions.set(transport.sessionId, context);
+ }
+
+ // Clean up on transport close
+ transport.onclose = () => {
+ if (transport.sessionId) {
+ sessions.delete(transport.sessionId);
+ console.log(`Session closed: ${transport.sessionId}`);
+ }
+ };
+
+ await server.connect(transport);
+ await transport.handleRequest(req, res, req.body);
+ } else {
+ // Invalid request
+ res.status(400).json({
+ jsonrpc: "2.0",
+ error: {
+ code: -32000,
+ message: "Bad Request: No valid session ID provided or not an initialization request"
+ },
+ id: null
+ });
+ }
+});
+
+// SSE endpoint for server-to-client notifications
+app.get("/mcp", async (req, res) => {
+ const sessionId = req.headers["mcp-session-id"] as string;
+
+ if (!sessionId || !sessions.has(sessionId)) {
+ return res.status(400).send("Invalid or missing session ID");
+ }
+
+ const context = sessions.get(sessionId)!;
+ context.lastActivity = new Date();
+
+ // Set up SSE headers
+ res.setHeader("Content-Type", "text/event-stream");
+ res.setHeader("Cache-Control", "no-cache");
+ res.setHeader("Connection", "keep-alive");
+ res.setHeader("X-Accel-Buffering", "no"); // Disable Nginx buffering
+
+ await context.transport.handleRequest(req, res);
+});
+
+// Session termination endpoint
+app.delete("/mcp", async (req, res) => {
+ const sessionId = req.headers["mcp-session-id"] as string;
+
+ if (!sessionId || !sessions.has(sessionId)) {
+ return res.status(400).send("Invalid or missing session ID");
+ }
+
+ const context = sessions.get(sessionId)!;
+ await context.transport.handleRequest(req, res);
+
+ // Clean up session
+ context.transport.close();
+ context.server.close();
+ sessions.delete(sessionId);
+
+ console.log(`Session terminated: ${sessionId}`);
+});
+
+// Per-session server factory
+function createSessionServer(sessionId: string): McpServer {
+ const server = new McpServer({
+ name: "memory-server",
+ version: "1.0.0"
+ });
+
+ // Session-specific state
+ const sessionMemories = new Map<string, any>();
+
+ // Register session-scoped tools
+ server.registerTool(
+ "store-memory",
+ {
+ title: "Store Memory",
+ description: "Store a memory in this session",
+ inputSchema: {
+ content: z.string()
+ }
+ },
+ async ({ content }) => {
+ const memoryId = randomUUID();
+ sessionMemories.set(memoryId, {
+ content,
+ sessionId,
+ timestamp: new Date()
+ });
+
+ return {
+ content: [{
+ type: "text",
+ text: `Memory stored with ID: ${memoryId} in session ${sessionId}`
+ }]
+ };
+ }
+ );
+
+ return server;
+}
+
+app.listen(3000, () => {
+ console.log("MCP StreamableHTTP server listening on port 3000");
+});
+```
+
+### Stateless StreamableHTTP Server
+
+```typescript
+// For simpler deployments without session state
+app.post("/mcp", async (req, res) => {
+ try {
+ // Create new instances for each request
+ const transport = new StreamableHTTPServerTransport({
+ sessionIdGenerator: undefined, // No sessions
+ });
+
+ const server = new McpServer({
+ name: "stateless-memory-server",
+ version: "1.0.0"
+ });
+
+ // Register stateless tools
+ server.registerTool("query", schema, async (params) => {
+ // Each request is independent
+ return await queryExternalDatabase(params);
+ });
+
+ // Clean up on response close
+ res.on("close", () => {
+ transport.close();
+ server.close();
+ });
+
+ await server.connect(transport);
+ await transport.handleRequest(req, res, req.body);
+ } catch (error) {
+ console.error("Error handling request:", error);
+ res.status(500).json({
+ jsonrpc: "2.0",
+ error: {
+ code: -32603,
+ message: "Internal server error"
+ },
+ id: null
+ });
+ }
+});
+```
+
+## WebSocket Client Transport
+
+```typescript
+import { Client } from "@modelcontextprotocol/sdk/client/index.js";
+import { WebSocketClientTransport } from "@modelcontextprotocol/sdk/client/websocket.js";
+
+const transport = new WebSocketClientTransport(
+ new URL("ws://localhost:3000/mcp")
+);
+
+const client = new Client({
+ name: "memory-client",
+ version: "1.0.0"
+});
+
+// Handle connection events
+transport.onopen = () => {
+ console.log("WebSocket connected");
+};
+
+transport.onerror = (error) => {
+ console.error("WebSocket error:", error);
+};
+
+transport.onclose = () => {
+ console.log("WebSocket disconnected");
+};
+
+await client.connect(transport);
+```
+
+## Transport Selection Guidelines
+
+### When to Use stdio
+
+- Local development and testing
+- CLI tools that spawn the MCP server
+- Single-user desktop applications
+- When you need simple, direct communication
+
+### When to Use StreamableHTTP
+
+- Production web servers
+- Multi-user applications
+- When you need session management
+- Cloud deployments
+- RESTful API integration
+
+### When to Use WebSocket (Client-side)
+
+- Real-time bidirectional communication
+- Low-latency requirements
+- Long-lived connections
+- Browser-based clients
+
+## Advanced Transport Patterns
+
+### Load Balancing with StreamableHTTP
+
+```typescript
+// Using a Redis-backed session store for horizontal scaling
+import Redis from "ioredis";
+
+const redis = new Redis();
+
+interface DistributedSession {
+ serverId: string;
+ data: SessionContext;
+}
+
+// Store sessions in Redis
+async function storeSession(sessionId: string, context: SessionContext) {
+ await redis.setex(
+ `session:${sessionId}`,
+ 1800, // 30 minutes TTL
+ JSON.stringify({
+ serverId: process.env.SERVER_ID,
+ data: context
+ })
+ );
+}
+
+// Retrieve session from any server
+async function getSession(sessionId: string): Promise<SessionContext | null> {
+ const data = await redis.get(`session:${sessionId}`);
+ if (!data) return null;
+
+ const session: DistributedSession = JSON.parse(data);
+
+ // Route to correct server if needed
+ if (session.serverId !== process.env.SERVER_ID) {
+ // Implement sticky session routing or session migration
+ return null;
+ }
+
+ return session.data;
+}
+```
+
+### Connection Retry Logic
+
+```typescript
+class ResilientTransport {
+ private maxRetries = 3;
+ private retryDelay = 1000;
+
+ async connectWithRetry(
+ createTransport: () => Promise<Transport>
+ ): Promise<Transport> {
+ let lastError: Error | undefined;
+
+ for (let attempt = 0; attempt < this.maxRetries; attempt++) {
+ try {
+ const transport = await createTransport();
+ console.log(`Connected on attempt ${attempt + 1}`);
+ return transport;
+ } catch (error) {
+ lastError = error as Error;
+ console.error(`Connection attempt ${attempt + 1} failed:`, error);
+
+ if (attempt < this.maxRetries - 1) {
+ await new Promise(resolve =>
+ setTimeout(resolve, this.retryDelay * Math.pow(2, attempt))
+ );
+ }
+ }
+ }
+
+ throw new Error(`Failed to connect after ${this.maxRetries} attempts: ${lastError?.message}`);
+ }
+}
+```
+
+### Transport Middleware Pattern
+
+```typescript
+class TransportMiddleware {
+ constructor(private transport: Transport) {}
+
+ // Add logging
+ async send(message: any): Promise<void> {
+ console.log("Sending:", JSON.stringify(message, null, 2));
+ await this.transport.send(message);
+ }
+
+ // Add metrics
+ async receive(): Promise<any> {
+ const start = Date.now();
+ const message = await this.transport.receive();
+ const duration = Date.now() - start;
+
+ metrics.recordMessageReceived(duration);
+
+ return message;
+ }
+
+ // Add encryption
+ async sendEncrypted(message: any, key: Buffer): Promise<void> {
+ const encrypted = encrypt(JSON.stringify(message), key);
+ await this.transport.send(encrypted);
+ }
+}
+```
+
+## Performance Optimization
+
+### Connection Pooling
+
+```typescript
+class TransportPool {
+ private pool: Transport[] = [];
+ private maxSize = 10;
+
+ async acquire(): Promise<Transport> {
+ if (this.pool.length > 0) {
+ return this.pool.pop()!;
+ }
+
+ if (this.pool.length < this.maxSize) {
+ return this.createTransport();
+ }
+
+ // Wait for available transport
+ return new Promise((resolve) => {
+ const checkInterval = setInterval(() => {
+ if (this.pool.length > 0) {
+ clearInterval(checkInterval);
+ resolve(this.pool.pop()!);
+ }
+ }, 100);
+ });
+ }
+
+ release(transport: Transport): void {
+ if (this.pool.length < this.maxSize) {
+ this.pool.push(transport);
+ } else {
+ transport.close();
+ }
+ }
+}
+```
+
+### Message Batching
+
+```typescript
+class BatchingTransport {
+ private queue: any[] = [];
+ private batchSize = 10;
+ private batchTimeout = 100; // ms
+ private timer?: NodeJS.Timeout;
+
+ async send(message: any): Promise<void> {
+ this.queue.push(message);
+
+ if (this.queue.length >= this.batchSize) {
+ await this.flush();
+ } else if (!this.timer) {
+ this.timer = setTimeout(() => this.flush(), this.batchTimeout);
+ }
+ }
+
+ private async flush(): Promise<void> {
+ if (this.timer) {
+ clearTimeout(this.timer);
+ this.timer = undefined;
+ }
+
+ if (this.queue.length === 0) return;
+
+ const batch = this.queue.splice(0);
+ await this.transport.sendBatch(batch);
+ }
+}
+```
+
+## Security Considerations
+
+### DNS Rebinding Protection
+
+```typescript
+const transport = new StreamableHTTPServerTransport({
+ enableDnsRebindingProtection: true,
+ allowedHosts: ["127.0.0.1", "localhost", "api.example.com"],
+ allowedOrigins: ["https://app.example.com"]
+});
+```
+
+### Rate Limiting
+
+```typescript
+import rateLimit from "express-rate-limit";
+
+const limiter = rateLimit({
+ windowMs: 15 * 60 * 1000, // 15 minutes
+ max: 100, // Limit each IP to 100 requests per windowMs
+ message: "Too many requests from this IP"
+});
+
+app.use("/mcp", limiter);
+```
+
+### Authentication
+
+```typescript
+// Add authentication middleware
+app.use("/mcp", async (req, res, next) => {
+ const token = req.headers.authorization?.split(" ")[1];
+
+ if (!token) {
+ return res.status(401).json({
+ jsonrpc: "2.0",
+ error: {
+ code: -32000,
+ message: "Unauthorized"
+ },
+ id: null
+ });
+ }
+
+ try {
+ const payload = await verifyToken(token);
+ req.user = payload;
+ next();
+ } catch (error) {
+ return res.status(401).json({
+ jsonrpc: "2.0",
+ error: {
+ code: -32000,
+ message: "Invalid token"
+ },
+ id: null
+ });
+ }
+});
+```
+
+## Monitoring and Debugging
+
+### Transport Metrics
+
+```typescript
+class TransportMetrics {
+ private messagesSent = 0;
+ private messagesReceived = 0;
+ private bytesTransferred = 0;
+ private errors = 0;
+
+ recordSent(message: any): void {
+ this.messagesSent++;
+ this.bytesTransferred += JSON.stringify(message).length;
+ }
+
+ recordReceived(message: any): void {
+ this.messagesReceived++;
+ this.bytesTransferred += JSON.stringify(message).length;
+ }
+
+ recordError(): void {
+ this.errors++;
+ }
+
+ getStats() {
+ return {
+ messagesSent: this.messagesSent,
+ messagesReceived: this.messagesReceived,
+ bytesTransferred: this.bytesTransferred,
+ errors: this.errors
+ };
+ }
+}
+```
+
+Always choose the transport that best fits your deployment model and scalability requirements.
generated by cgit v1.2.3 (git 2.39.1) at 2026-01-23 17:24:41 +0000