TianGong-LCA-MCP Server

MIT License

cognito_auth.ts•2.77 kB

import { CognitoJwtVerifier } from 'aws-jwt-verify'; import { COGNITO_CLIENT_ID, COGNITO_USER_POOL_ID } from './config.js'; export interface AuthResult { isAuthenticated: boolean; response?: string; userId?: string; email?: string; supabaseSession?: { access_token: string; refresh_token?: string | null; }; } // Create Cognito JWT verifier for access tokens const verifier = CognitoJwtVerifier.create({ userPoolId: COGNITO_USER_POOL_ID, tokenUse: 'access', clientId: COGNITO_CLIENT_ID, }); /** * Authenticate Cognito JWT access token * @param token - JWT access token * @returns AuthResult containing authentication status and user information */ export async function authenticateCognitoToken(token: string): Promise<AuthResult> { try { // Verify JWT token directly with AWS Cognito const payload = await verifier.verify(token); // Extract user information from token payload const userId = (payload.sub as string) || (payload['cognito:username'] as string); const email = (payload.email as string) || (payload['cognito:email'] as string); if (!userId) { return { isAuthenticated: false, response: 'Invalid token: missing user ID', }; } return { isAuthenticated: true, response: userId, userId, email, }; } catch (error) { console.error('Cognito token verification failed:', error); return { isAuthenticated: false, response: error instanceof Error ? error.message : 'Token verification failed', }; } } // /** // * Authenticate Cognito ID token (contains more user information than access token) // * @param idToken - Cognito ID token // * @returns AuthResult containing authentication status and user information // */ // export async function authenticateCognitoIdToken(idToken: string): Promise<AuthResult> { // try { // // Create separate verifier for ID token // const idVerifier = CognitoJwtVerifier.create({ // userPoolId: COGNITO_USER_POOL_ID, // tokenUse: 'id', // clientId: COGNITO_CLIENT_ID, // }); // // Verify ID token with AWS Cognito // const payload = await idVerifier.verify(idToken); // // Extract user information from ID token payload // const userId = payload.sub as string; // const email = payload.email as string; // const name = payload.name as string; // return { // isAuthenticated: true, // response: userId, // userId, // email, // }; // } catch (error) { // console.error('Cognito ID token verification failed:', error); // return { // isAuthenticated: false, // response: error instanceof Error ? error.message : 'ID token verification failed', // }; // } // }

Latest Blog Posts

The 50MB Markdown Files That Broke Our Server
By punkpeye on December 3, 2025.
react
react-router
node-js
OpenTelemetry for Model Context Protocol (MCP) Analytics and Agent Observability
By Om-Shree-0709 on November 29, 2025.
observability
mcp
opentelemetry
Securing Enterprise AI Agents with Unique Identities in the Model Context Protocol (MCP)
By Om-Shree-0709 on November 27, 2025.

MCP directory API

We provide all the information about MCP servers via our MCP API.

curl -X GET 'https://glama.ai/api/mcp/v1/servers/linancn/tiangong-lca-mcp'

If you have feedback or need assistance with the MCP directory API, please join our Discord server