A production-ready API gateway for Model Context Protocol (MCP) servers, providing enterprise-grade infrastructure with authentication, logging, rate limiting, server discovery, and multi-protocol transport support.
Get the entire MCP Gateway stack running with a single command:
# Clone the repository
git clone https://github.com/mcp-gateway/mcp-gateway.git
cd mcp-gateway
# Copy env vars
cp .env.example .env
# Option 1: Using Docker Compose directly
docker compose up --build
# Option 2: Using Makefile (automatically detects docker compose vs docker-compose)
make setupAccess the application:
- Backend:
http://localhost:8080 - Frontend:
http://localhost:3000 - Admin user:
admin@admin.com/qwerty123
The MCP Gateway is designed with a modular architecture for scalability and maintainability:
βββββββββββββββββββ βββββββββββββββββββ βββββββββββββββββββ
β Users β β AI Agents β β AI Agents β
β (Web/Mobile) β β (External) β β (Internal) β
βββββββββββ¬ββββββββ βββββββββββ¬ββββββββ βββββββββββ¬ββββββββ
β β β
ββββββββββββββββββββββββΌβββββββββββββββββββββββ
β
βββββββββββββββΌββββββββββββββ
β MCP Gateway β
β β
β βββββββββββββββββββββββ β
β β Security Layer β β
β β β’ JWT Auth β β
β β β’ RBAC & Policies β β
β β β’ API Key Mgmt β β
β β β’ Rate Limiting β β
β βββββββββββββββββββββββ β
β β
β βββββββββββββββββββββββ β
β β Middleware β β
β β β’ Content Filtering β β
β β β’ Audit Logging β β
β β β’ CORS & Headers β β
β β β’ Request Tracking β β
β βββββββββββββββββββββββ β
β β
β βββββββββββββββββββββββ β
β β Core Services β β
β β β’ Server Discovery β β
β β β’ Namespace Manager β β
β β β’ Transport Proxy β β
β β β’ Virtual Servers β β
β β β’ Logging & Metrics β β
β βββββββββββββββββββββββ β
βββββββββββββββ¬ββββββββββββββ
β
ββββββββββββββββββββββββΌβββββββββββββββββββββββ
β β β
ββββββββΌβββββββ ββββββββΌβββββββ ββββββββΌβββββββ
β namespace-1 β β namespace-2 β β namespace-3 β
β β β β β β
βββββββββββββββ βββββββββββββββ βββββββββββββββ
ββMCP Server ββ ββMCP Server ββ ββVirtual ββ
ββ A ββ ββ C ββ ββServer A ββ
βββββββββββββββ βββββββββββββββ βββββββββββββββ
βββββββββββββββ βββββββββββββββ βββββββββββββββ
ββMCP Server ββ ββMCP Server ββ ββVirtual ββ
ββ B ββ ββ D ββ ββServer B ββ
βββββββββββββββ βββββββββββββββ βββββββββββββββ
βββββββββββββββ βββββββββββββββ βββββββββββββββ
- Authentication - Secure authentication (JWT, OAuth2, OIDC) with RBAC
- API Key Management - Role-based access control with fine-grained permissions
- Rate Limiting - IP-based limiting with Redis backing and memory fallback
- Content Filtering - PII detection, regex patterns, and custom filters
- Dynamic Discovery - Automatic MCP server discovery and registration
- Namespaces - Group servers with isolated namespaces for internal & external usage
- Health Monitoring - Server health checks with automated failover and recovery
- Public Endpoints - Auto-generated REST APIs for namespace access
- JSON-RPC 2.0 - Standard synchronous RPC over HTTP
- WebSocket - Full-duplex bidirectional communication
- Server-Sent Events - Real-time server-to-client streaming
- Streamable HTTP - Official MCP protocol implementation
- STDIO - Command-line interface bridge
- Protocol Support - REST APIs, GraphQL (coming soon), gRPC (coming soon)
- MCP Integration - Transform any HTTP service into MCP tools with schema validation
- Example Integrations - Internal API docs, microservers, etc.
- Audit Trails - Complete request/response logging with security event tracking
- Performance Metrics - Real-time monitoring with health checks and alerting
- External Integration - AWS CloudWatch, file-based logging, and custom exporters
- Session Tracking - Live session management with detailed interaction logs
Fast development with backend in Docker and frontend running locally:
# Terminal 1: Start backend services
make dev
# Terminal 2: Start frontend locally (much faster)
cd apps/frontend
bun install
bun run dev# Development
make dev # Start backend services (postgres, redis, backend)
make setup # Complete setup (DB + admin + orgs + namespaces)
make start # Production-ready local setup with services
make stop # Stop all services
make clean # Stop and remove all data
make logs # View service logs
make help # Show all available commands
# Database Operations
make migrate # Run database migrations
make migrate-down # Rollback migrations
make migrate-status # Show migration status
make db-shell # Open PostgreSQL shell
# Testing & Quality
make test # Run all tests
make lint # Run linters
# Build & Utilities
make build # Build containers
make rebuild # Rebuild and restart containers
make shell # Open shell in backend container
make bash # Open bash in backend containerDocker Compose Issues:
# The Makefile automatically detects your Docker Compose version
# Check what it's using:
make help # Will work with either docker-compose or docker compose
# Manual check:
docker compose version # Modern v2
docker-compose version # Legacy v1
# If you get "command not found":
# Install Docker Desktop (includes Compose v2) or standalone ComposeCommon Issues:
- Port conflicts: Stop other services on ports 8080, 3000, 5432, 6379
- Permission denied: Ensure Docker daemon is running
- Build failures: Try
make cleanthenmake setup
- Fork the repository
- Run
make devto start backend services - Run frontend locally:
cd apps/frontend && bun run dev - Make your changes
- Run
make testandmake lint - Submit a Pull Request
Please see our Contributing Guidelines for details.
This project follows the Contributor Covenant Code of Conduct.
This project is licensed under the Apache License 2.0 - see the LICENSE file for details.
Security is a top priority. Please review our Security Policy and report vulnerabilities responsibly.
- Model Context Protocol for the core specification
- All our contributors
Built with β€οΈ for the MCP community
β Star us on GitHub β’ π Report Bug β’ π‘ Request Feature