template-express-oauth-sqlite

granular-software/template-express-oauth-sqlite

3.1

If you are the rightful owner of template-express-oauth-sqlite and would like to certify it and/or have it hosted online, please leave a comment on the right or send an email to henry@mcphub.com.

This template provides a simple MCP server with OAuth2.1 authentication using SQLite database, perfect for development and small-scale production deployments.

sqlite

A mcpresso MCP server

Quick Start

  1. Install dependencies

    npm install

  2. Set up environment variables

    cp .env.example .env
# Edit .env with your configuration

  3. Initialize the database

    npm run db:init

    This will create the SQLite database with all necessary tables and indexes.

  4. Start development server

    npm run dev

  5. Build for production

    npm run build
npm start

Database Setup

This template uses SQLite for authentication data storage (users, sessions, tokens, etc.). The database file is created automatically on init, and the init script creates the full schema.

Initialize the schema:

npm run db:init

Database Structure

The initialization script creates the following tables:

  • oauth_users - User accounts (username/email, hashed_password, scopes, profile)
  • oauth_clients - OAuth client registry (redirect URIs, scopes, grant types)
  • oauth_authorization_codes - Authorization codes (with PKCE fields)
  • oauth_access_tokens - Access tokens with expiry
  • oauth_refresh_tokens - Refresh tokens with expiry
  • notes - Example resource (user-authored notes)

Database Features

  • āœ… SQLite file-based storage - No external database required
  • āœ… Foreign key constraints - Maintains data integrity
  • āœ… Optimized indexes - Fast lookups for common queries
  • āœ… Automatic timestamps - Created/updated tracking
  • āœ… OAuth integration - Session and token management

Database Location

  • Default path: data/app.db
  • To customize, set DATABASE_PATH in .env before running init.

Features

  • OAuth2.1 authentication with SQLite
  • User management and sessions
  • Notes resource with author relationships
  • TypeScript support
  • Development and production builds
  • Environment variable configuration

Project Structure

src/
ā”œā”€ā”€ server.ts          # Main server file
ā”œā”€ā”€ auth/              # OAuth configuration
ā”‚   ā””ā”€ā”€ oauth.ts
ā”œā”€ā”€ resources/         # MCP resources
ā”‚   ā”œā”€ā”€ schemas/       # Resource schemas
ā”‚   ā”‚   ā””ā”€ā”€ Note.ts    # Note data model
ā”‚   ā””ā”€ā”€ handlers/      # Resource handlers
ā”‚       ā””ā”€ā”€ note.ts    # Notes with author relationships
ā””ā”€ā”€ storage/           # Database layer
    ā””ā”€ā”€ sqlite-storage.ts

Environment Variables

VariableDescriptionRequiredDefault
PORTServer portNo3000
SERVER_URLBase URL of your serverYes-
JWT_SECRETSecret key for JWT tokensYes-
DATABASE_PATHSQLite database file pathNodata/app.db

JWT Secret

Generate a secure JWT secret for token signing.

Option A ā€” script (uses openssl under the hood):

npm run secret:generate

Option B ā€” manual (with openssl):

JWT_SECRET=$(openssl rand -hex 64)
echo "JWT_SECRET=$JWT_SECRET" >> .env   # or replace existing JWT_SECRET in .env

Keep this value secret. Rotating it will invalidate existing tokens.

Development

  • npm run dev - Start development server with hot reload
  • npm run build - Build for production
  • npm run typecheck - Type check without building
  • npm run db:init - Initialize SQLite database and full schema
  • npm run secret:generate - Generate secure JWT secret

User Management

Create and manage users with secure password hashing:

  • npm run user:create - Create a user with default credentials
  • npm run user:create <username> <email> <password> - Create a user with custom credentials
  • npm run user:test-password - Test password verification functionality
  • npm run user:test-auth - Test OAuth authentication flow

For detailed user management documentation, see .

License

MIT