ado-server-mcp by benleane83 - MCP Server

Azure DevOps CLI MCP Server

This MCP server wraps Azure DevOps CLI commands and exposes them as MCP tools for AI agents. This server is specifically designed for Azure DevOps Server (on-premises) deployments.

⚠️ Important Notice for Azure DevOps Services Users:
If you're using Azure DevOps Services (dev.azure.com), please use the official Microsoft Azure DevOps MCP Server instead:
https://github.com/microsoft/azure-devops-mcp

This server is optimized for on-premises Azure DevOps Server installations.

Key Features

✅ Azure DevOps Server (on-premises) support via Azure CLI
✅ Automatic CLI Configuration - Sets organization and project defaults on startup
✅ Cross-platform - Works on Windows, macOS, and Linux
✅ Secure Authentication - Uses Azure CLI's standard PAT mechanism

Prerequisites

Node.js (v16+)
npm
Azure CLI with DevOps extension: az extension add --name azure-devops

Setup

Install Prerequisites:

# Install Azure CLI (if not already installed)
# Windows: https://aka.ms/installazurecliwindows
# macOS: brew install azure-cli
# Linux: https://docs.microsoft.com/en-us/cli/azure/install-azure-cli-linux

# Add Azure DevOps extension
az extension add --name azure-devops

Clone and Build:

git clone <repository-url>
cd ado-server-mcp
npm install
npm run build

Configure MCP Client:
- Add the configuration shown above to your MCP client
- Replace placeholder values with your actual PAT and organization URL
- Restart your MCP client to connect to the server

How It Works

Startup Configuration: When the server starts, it automatically runs az devops configure to set your organization and project as defaults
Tool Execution: MCP tools use the configured defaults, so you don't need to specify --organization or --project in individual commands
Authentication: Your PAT is securely passed to Azure CLI via environment variables

Configuration

Environment Variables

The server requires these environment variables to be configured in your MCP client:

Variable	Required	Description	Example
`AZURE_DEVOPS_PAT`	✅ Yes	Personal Access Token for authentication	`your_pat_token_here`
`AZURE_DEVOPS_ORG`	✅ Yes	Organization or server URL	See examples below
`AZURE_DEVOPS_PROJECT`	⚪ Optional	Default project name	`MyProject`

Organization URL Examples

Azure DevOps Server (On-premises):

https://devops.mycompany.com/DefaultCollection
https://tfs.mycompany.com:8080/tfs/DefaultCollection
https://ado-server.internal.company.com/DefaultCollection

Note: While this server can technically work with Azure DevOps Services URLs (e.g., https://dev.azure.com/yourorg), we recommend using the official Microsoft Azure DevOps MCP Server for cloud-based Azure DevOps Services.

MCP Client Configuration

Add this configuration to your MCP client (e.g., VS Code's mcp.json):

{
  "servers": {
    "ado-server-mcp": {
      "type": "stdio", 
      "command": "node",
      "args": ["z:/repos/ado-server-mcp/build/index.js"],
      "env": {
        "AZURE_DEVOPS_PAT": "your_pat_token_here",
        "AZURE_DEVOPS_ORG": "https://devops.mycompany.com/DefaultCollection",
        "AZURE_DEVOPS_PROJECT": "MyProject"
      }
    }
  }
}

Note: The AZURE_DEVOPS_PROJECT parameter is optional but recommended. When set, it becomes the default project for all Azure CLI commands, eliminating the need to specify --project in individual tool calls.

Available Tools

Organization & Project Management

list_projects - List Azure DevOps projects using az cli (uses configured defaults)
project_show - Show details for a specific project
teams_list - List teams in the project
team_show - Show details for a specific team
team_members_list - List members of a team

Azure Boards (Work Items)

boards_query - Query Azure Boards work items using WIQL (Work Item Query Language) or existing query ID/path
boards_work_item_show - Show details for a specific work item by ID
boards_work_item_create - Create a new work item
boards_work_item_update - Update an existing work item
boards_work_item_delete - Delete a work item (moves to recycle bin)
boards_area_list - List area paths for the project
boards_iteration_list - List iteration paths for the project
boards_work_item_relation_types - List supported work item relation types in the organization
boards_work_item_relation_add - Add relation(s) to a work item

Azure Pipelines

pipelines_list - List pipelines in the project
pipeline_show - Show details for a specific pipeline
pipelines_create - Create a new pipeline
pipelines_run - Run a pipeline
pipelines_update - Update a pipeline
pipelines_delete - Delete a pipeline
pipelines_runs_list - List pipeline runs
pipelines_runs_show - Show pipeline run details
pipelines_runs_tag_add - Add tag to pipeline run
pipelines_runs_tag_delete - Delete tag from pipeline run
pipelines_runs_tag_list - List pipeline run tags
pipelines_variable_create - Create a pipeline variable
pipelines_variable_list - List variables for a pipeline
pipelines_variable_update - Update a pipeline variable

Azure Repos

repos_list - List repositories in the project
repo_show - Show details for a specific repository
repos_create - Create a new repository

Azure DevOps Wiki

wiki_list - List wikis in the project
wiki_show - View wiki details
wiki_page_show - View a wiki page
wiki_page_create - Add a wiki page

Note: Additional tools for artifacts, security, service endpoints, and banners are available in the codebase but currently disabled. These can be enabled by uncommenting the relevant lines in src/tools/index.ts.

Development

Build: npm run build - Compiles TypeScript to build/
Start: npm run start - Runs the MCP server in stdio mode
Debug: Check MCP client logs for connection issues

Adding New Tools

Follow this pattern in src/index.ts:

server.tool("tool_name", "Description", {}, async (args, extra): Promise<MCPToolResponse> => {
  const pat = process.env.AZURE_DEVOPS_PAT;
  
  if (!pat) {
    return {
      content: [{ type: "text", text: "AZURE_DEVOPS_PAT not set in environment" }],
      isError: true
    };
  }
  
  // Use configured defaults - no need to specify --organization or --project
  return await runAzCli(["devops", "your-command", "--output", "json"], pat);
});

Key Points:

✅ Always validate the PAT environment variable
✅ Use --output json for structured responses
✅ Leverage configured defaults (no need for --organization or --project flags)
✅ Return proper MCPToolResponse format with error handling

Troubleshooting

Common Issues

Issue	Cause	Solution
"Server exited before responding"	stdout pollution	Use `dotenv@^16.x` not `@17.x`
"spawn az ENOENT"	Azure CLI not found	Ensure Azure CLI is installed and in PATH
Authentication errors	Invalid PAT or permissions	Verify PAT has appropriate Azure DevOps permissions
"Organization not found"	Wrong organization URL	Check URL format for your ADO type (Services vs Server)
"Project not found"	Invalid project name	Verify project exists and PAT has access

Debug Tips

Check MCP Client Logs: Look for connection and tool execution errors
Test Azure CLI Manually: Run az devops project list to verify CLI setup
Validate Environment Variables: Ensure PAT and organization URL are correct
Server Configuration: Check startup logs for Azure DevOps configuration status

PAT Permissions

Your Personal Access Token needs these scopes:

Project and Team: Read (minimum)
Work Items: Read (if working with work items)
Code: Read (if working with repositories)
Build: Read (if working with pipelines)

Security

PAT tokens are passed via environment variables, never logged
.env files are gitignored to prevent accidental commits
Authentication is handled through Azure CLI's standard mechanisms

References

Official Microsoft Azure DevOps MCP Server - Recommended for Azure DevOps Services users
MCP TypeScript SDK
MCP Server Concepts
Azure DevOps CLI Docs