Visualisation from bbycroft.net/llm – Annotated with Nano Banana Welcome to the LLM Architecture Series This comprehensive 20-part series takes you from the fundamentals to advanced concepts in Large Language Model architecture. Using interactive visualisations from Brendan Bycroft’s excellent LLM Visualisation, we explore every component of a GPT-style transformer. Series Overview Part 1: Foundations (Articles 1-5)…
This final capstone assembles everything from the course into a complete MCP platform: a registry for server discovery, an API gateway for authentication and routing, a collection of domain-specific MCP servers, and a web interface where teams can explore available tools, run agent queries, and review audit logs. When you deploy this platform, you have the infrastructure that enterprise teams need to build and manage AI-powered workflows on MCP.
The complete MCP platform: registry, gateway, domain servers, and a management web interface.
Platform Architecture Overview
Component
Purpose
Lesson Reference
MCP Registry
Server discovery and health tracking
Lesson 44
API Gateway
Auth (OAuth), rate limiting, routing
Lessons 31, 41
Domain MCP Servers
Business tools (CRM, docs, analytics)
Parts I-III
Multi-Provider Agent
Route queries to OpenAI/Claude/Gemini
Lessons 28-30
Audit Service
Structured logs, compliance reporting
Lesson 35
Observability Stack
Prometheus + Grafana + OpenTelemetry
Lesson 42
Management UI
Tool explorer, query interface, logs
This lesson
Platform Bootstrap Script
// platform/bootstrap.js
// Register all MCP servers with the registry on startup
const REGISTRY_URL = process.env.REGISTRY_URL ?? 'http://localhost:4000';
const MCP_SERVERS = [
{
id: 'products',
name: 'Product Catalog Server',
description: 'Search, browse, and manage product catalog',
url: process.env.PRODUCTS_SERVER_URL,
tags: ['products', 'catalog', 'inventory'],
auth: { type: 'bearer' },
healthUrl: `${process.env.PRODUCTS_SERVER_URL}/health`,
},
{
id: 'analytics',
name: 'Analytics Server',
description: 'Business metrics, trends, and reports',
url: process.env.ANALYTICS_SERVER_URL,
tags: ['analytics', 'metrics', 'reports'],
auth: { type: 'bearer' },
healthUrl: `${process.env.ANALYTICS_SERVER_URL}/health`,
},
// ... more servers
];
async function registerAll() {
for (const server of MCP_SERVERS) {
await fetch(`${REGISTRY_URL}/servers`, {
method: 'POST',
headers: { 'Content-Type': 'application/json' },
body: JSON.stringify(server),
});
console.log(`Registered: ${server.name}`);
}
}
await registerAll();
Management API
// platform/management-api.js
// REST API for the management UI
import express from 'express';
const app = express();
app.use(express.json());
// List all registered MCP servers with health
app.get('/api/platform/servers', async (req, res) => {
const response = await fetch(`${REGISTRY_URL}/status`);
res.json(await response.json());
});
// List all tools from all healthy servers
app.get('/api/platform/tools', async (req, res) => {
const discovery = new McpDiscoveryClient(REGISTRY_URL);
await discovery.connect();
const tools = await discovery.getAllTools();
res.json({ tools, count: tools.length });
});
// Execute an agent query
app.post('/api/platform/query', async (req, res) => {
const { question, provider = 'auto', userId } = req.body;
// Rate limit, auth check, then:
const agent = await createAgent({ scope: getUserScope(userId), preferredProvider: provider });
const answer = await agent.run(question);
res.json({ answer });
await agent.close();
});
// Get audit logs for a user
app.get('/api/platform/audit', async (req, res) => {
const { userId, from, to, limit = 50 } = req.query;
const logs = await auditDb.query({ userId, from, to, limit });
res.json({ logs });
});
app.listen(5000, () => console.log('Management API on :5000'));
Component interaction: the discovery client queries the registry, builds the tool set, and routes through the agent.
A complete enterprise platform: registry, gateway, domain servers, management UI
MCP is the connective tissue of the AI application stack. You now know it from protocol fundamentals to enterprise deployment. Go build something important.
This capstone builds the most complete MCP application in the course: an enterprise AI assistant with OAuth 2.0 authentication, RBAC tool access control, full audit logging, rate limiting, and a multi-provider backend. It brings together patterns from every major part of the course into a single deployable system. Deploy it and you have a production-ready enterprise AI assistant that your security team can audit and your compliance team can sign off on.
Real-world AI assistants need to integrate many APIs: a CRM for customer data, a ticketing system for support requests, a payment processor for billing status, a calendar for scheduling. Each of these becomes an MCP server, and the multi-provider abstraction layer from Lesson 29 routes queries to the right provider. This capstone builds a multi-API integration hub that unifies five real-world APIs behind a single MCP interface, with tool routing, error handling, and a unified context window.
Five MCP servers, one agent: the hub aggregates tools from all servers and routes calls automatically.
const agent = await createHubAgent();
const answer = await agent.query(
'Customer john.smith@acme.com says their subscription renewal failed last week. ' +
'What is their account status, do they have any open support tickets, ' +
'and what does their payment history look like?'
);
// Agent will call: search_customers, get_subscription, list_tickets, get_payment_history
// in parallel, then synthesize a complete answer
console.log(answer);
await agent.close();
This capstone builds a filesystem agent powered by Claude 3.7 Sonnet. The agent can read files, search codebases, analyze code structure, and refactor files under user supervision. It applies the security patterns from Part VIII: roots for filesystem boundaries, tool safety for path validation, and confirmation-based elicitation for destructive file writes. The result is a safe, auditable codebase assistant that you can trust with your actual project files.
Filesystem agent: Claude plans file operations, MCP server executes them within roots-defined boundaries.
This capstone project builds a complete, production-ready PostgreSQL query agent using OpenAI GPT-4o and MCP. By the end you will have a fully functional system where a user can ask questions in natural language and the agent translates them to safe, parameterized SQL queries, executes them against a real PostgreSQL database, formats the results, and explains its reasoning. The project incorporates lessons from throughout the course: schema validation, tool safety, audit logging, retry logic, and graceful shutdown.
The database query agent: user asks a question, GPT-4o plans SQL queries, MCP tools execute them safely.
The MCP SDK ships with two built-in transports: stdio and Streamable HTTP. These cover the vast majority of use cases. But sometimes you need something different: an in-process transport for testing, a WebSocket transport for browser environments, an IPC transport for Electron apps, or a transport that encrypts the JSON-RPC stream at the application layer. The SDK’s transport interface is deliberately minimal, making it straightforward to implement your own. This lesson covers the interface, two reference implementations, and practical extension points.
The Transport interface is three methods: start, send, and close. Any communication channel can become an MCP transport.
The Transport Interface
// The MCP SDK Transport interface (TypeScript definition for reference)
// interface Transport {
// start(): Promise;
// send(message: JSONRPCMessage): Promise;
// close(): Promise;
// onmessage?: (message: JSONRPCMessage) => void;
// onerror?: (error: Error) => void;
// onclose?: () => void;
// }
// In JavaScript, implement the same shape:
class CustomTransport {
onmessage = null; // Called when a message is received
onerror = null; // Called on transport errors
onclose = null; // Called when the transport closes
async start() {
// Initialize the underlying communication channel
}
async send(message) {
// Send a JSONRPCMessage object
}
async close() {
// Clean up the channel
}
}
In-Process Transport for Testing
An in-process transport connects a client directly to a server in the same Node.js process. Essential for integration tests without spawning subprocesses:
// in-process-transport.js
export function createInProcessTransport() {
let clientTransport, serverTransport;
clientTransport = {
onmessage: null, onerror: null, onclose: null,
async start() {},
async send(msg) {
// Route to server
if (serverTransport.onmessage) serverTransport.onmessage(msg);
},
async close() {
if (clientTransport.onclose) clientTransport.onclose();
if (serverTransport.onclose) serverTransport.onclose();
},
};
serverTransport = {
onmessage: null, onerror: null, onclose: null,
async start() {},
async send(msg) {
// Route to client
if (clientTransport.onmessage) clientTransport.onmessage(msg);
},
async close() {
if (clientTransport.onclose) clientTransport.onclose();
if (serverTransport.onclose) serverTransport.onclose();
},
};
return { clientTransport, serverTransport };
}
// Usage in tests:
import { test } from 'node:test';
import { Client } from '@modelcontextprotocol/sdk/client/index.js';
import { McpServer } from '@modelcontextprotocol/sdk/server/mcp.js';
import { createInProcessTransport } from './in-process-transport.js';
test('in-process round trip', async (t) => {
const { clientTransport, serverTransport } = createInProcessTransport();
const server = buildServer();
const client = new Client({ name: 'test', version: '1.0.0' });
await server.connect(serverTransport);
await client.connect(clientTransport);
const { tools } = await client.listTools();
assert.ok(tools.length > 0);
await client.close();
});
In-process transport: no network, no subprocess, instant round trip – ideal for unit and integration testing.
WebSocket Transport
npm install ws
// websocket-transport.js - client side
import WebSocket from 'ws';
export class WebSocketClientTransport {
#url;
#ws = null;
onmessage = null;
onerror = null;
onclose = null;
constructor(url) {
this.#url = url;
}
async start() {
return new Promise((resolve, reject) => {
this.#ws = new WebSocket(this.#url);
this.#ws.once('open', resolve);
this.#ws.once('error', reject);
this.#ws.on('message', (data) => {
try {
const msg = JSON.parse(data.toString());
if (this.onmessage) this.onmessage(msg);
} catch (err) {
if (this.onerror) this.onerror(err);
}
});
this.#ws.on('close', () => {
if (this.onclose) this.onclose();
});
this.#ws.on('error', (err) => {
if (this.onerror) this.onerror(err);
});
});
}
async send(message) {
this.#ws.send(JSON.stringify(message));
}
async close() {
this.#ws?.close();
}
}
// WebSocket server transport
export class WebSocketServerTransport {
#socket;
onmessage = null;
onerror = null;
onclose = null;
constructor(socket) {
this.#socket = socket;
socket.on('message', (data) => {
try {
const msg = JSON.parse(data.toString());
if (this.onmessage) this.onmessage(msg);
} catch (err) {
if (this.onerror) this.onerror(err);
}
});
socket.on('close', () => {
if (this.onclose) this.onclose();
});
}
async start() {}
async send(message) {
this.#socket.send(JSON.stringify(message));
}
async close() {
this.#socket.close();
}
}
// Server side: wrap ws.WebSocketServer
import { WebSocketServer } from 'ws';
import { McpServer } from '@modelcontextprotocol/sdk/server/mcp.js';
const wss = new WebSocketServer({ port: 9000 });
wss.on('connection', async (socket) => {
const transport = new WebSocketServerTransport(socket);
const server = buildMcpServer();
await server.connect(transport);
});
Protocol Extensions: Custom Methods
// MCP allows custom methods beyond the spec - they are prefixed with your namespace
// Use this for proprietary extensions that are specific to your deployment
// Server side: handle a custom method
server.server.setRequestHandler(
{ method: 'com.mycompany/getServerMetrics' },
async (request) => {
return {
uptime: process.uptime(),
activeSessions: sessionStore.size,
memoryMB: Math.round(process.memoryUsage().heapUsed / 1024 / 1024),
};
}
);
// Client side: call a custom method
const metrics = await client.request(
{ method: 'com.mycompany/getServerMetrics', params: {} },
/* ResultSchema */ undefined
);
What to Build Next
Replace subprocess spawning in your integration tests with the in-process transport. Measure the test speedup.
If you have a browser-based MCP client, implement the WebSocket transport and test it against your existing MCP server with a WebSocket adapter.
The MCP specification evolves. New capabilities are added; some older mechanisms are deprecated; breaking changes occasionally ship. Building MCP servers that handle protocol version negotiation correctly means your clients and servers can interoperate across version boundaries without hard dependencies on a single spec revision. This lesson covers how MCP versioning works, how to negotiate capabilities with older clients, how to write migration guides when your own server schema changes, and the stability guarantees you can rely on from Anthropic.
MCP version negotiation: client offers supported versions, server selects the best match.
How MCP Protocol Versioning Works
MCP uses date-stamped version strings like 2024-11-05 or 2025-03-26. During initialization, the client sends the version it wants, and the server responds with the version it will use (typically the same or an older compatible one).
// The @modelcontextprotocol/sdk handles version negotiation automatically
// You do not need to implement it manually
// To check the negotiated version in your server:
server.server.oninitialized = () => {
const version = server.server.negotiatedProtocolVersion;
console.log(`MCP session initialized with protocol version: ${version}`);
};
Feature Detection (Capability Negotiation)
// Check if the connected client supports a specific capability
// before using it in your server code
server.server.oninitialized = () => {
const clientCaps = server.server.getClientCapabilities();
const supportsElicitation = !!clientCaps?.elicitation;
const supportsSampling = !!clientCaps?.sampling;
const supportsRoots = !!clientCaps?.roots;
console.log(`Client capabilities: elicitation=${supportsElicitation} sampling=${supportsSampling} roots=${supportsRoots}`);
if (!supportsElicitation) {
// Fall back to returning instructions in tool result instead of interactive elicitation
console.warn('Client does not support elicitation - using text fallback');
}
};
Always check client capabilities before using server-initiated features like elicitation or sampling.
Migrating Your Tool Schema
When you change a tool’s input schema, existing clients that have cached the old schema will break. Follow a compatibility-first migration process:
// Backwards-compatible schema evolution: add optional fields, never remove required ones
// Version 1 schema (existing clients use this)
// search_products: { query: z.string(), limit: z.number().optional().default(10) }
// Version 2: add optional 'category' filter without breaking v1 clients
server.tool('search_products', {
query: z.string(),
limit: z.number().optional().default(10),
category: z.string().optional(), // New optional field - backwards compatible
// NEVER remove or rename 'query' or 'limit' - that breaks v1 clients
// NEVER make an optional field required - that also breaks v1 clients
}, handler);
// Breaking change strategy: add a versioned tool name during transition
// Phase 1: add new tool alongside old one
server.tool('search_products_v2', {
query: z.string(),
limit: z.number().optional().default(10),
filters: z.object({ // New required field - would break v1 if added to original
category: z.string().optional(),
priceMax: z.number().optional(),
inStock: z.boolean().optional().default(true),
}),
}, handler);
// Phase 2: deprecate old tool via description
// server.tool('search_products', ...
// description: 'DEPRECATED: use search_products_v2 instead'
// Phase 3 (after client migration window): remove old tool
JSON-RPC 2.0 wire format: Stable. Will not change between spec versions.
Core methods (initialize, tools/call, resources/read, prompts/get): Stable across all versions.
New capabilities: Always added as optional, never required for a functional server.
Deprecated features: Maintained for at least 2 spec revisions before removal.
SDK APIs: The TypeScript/JavaScript SDK minor versions maintain backwards compatibility; only major versions may include breaking changes.
What to Build Next
Add a server://version resource to your MCP server that returns the current protocol version, SDK version, and your tool schema versions. Update it on every release.
Review your most-used tools for any fields that are currently optional but should be made required. Use the v2 naming strategy to transition safely.
Streaming responses, long-running tools, and multi-step agent pipelines all share a common challenge: what happens when the client stops listening? Without proper cancellation propagation, cancelled client connections leave expensive operations running on the server indefinitely. This lesson covers three related mechanisms: request cancellation using AbortSignal, progress reporting with real-time updates, and backpressure strategies that prevent fast producers from overwhelming slow consumers.
Cancellation must propagate through the entire call chain: from client disconnect to every active resource.
AbortSignal in MCP Tool Handlers
When a client disconnects or cancels a request, the MCP SDK calls server.setRequestHandler‘s signal. Tool handlers should check this signal and abort expensive operations:
import { McpServer } from '@modelcontextprotocol/sdk/server/mcp.js';
import { z } from 'zod';
const server = new McpServer({ name: 'streaming-server', version: '1.0.0' });
server.tool('search_large_dataset', {
query: z.string(),
maxResults: z.number().default(100),
}, async ({ query, maxResults }, { signal }) => {
// Pass signal to database query
const results = await db.search(query, { maxResults, signal });
// Pass signal to downstream HTTP calls
const enriched = await Promise.all(
results.map(r =>
fetch(`https://enrichment.api/v1/${r.id}`, { signal })
.then(res => res.json())
.catch(err => {
if (err.name === 'AbortError') throw err; // Re-throw cancellation
return r; // Return unenriched on other errors
})
)
);
return { content: [{ type: 'text', text: JSON.stringify(enriched) }] };
});
// In database clients that support AbortSignal
async function search(query, { maxResults, signal } = {}) {
const client = await pool.connect();
// Register cleanup on signal abort
const cleanup = () => {
client.query('SELECT pg_cancel_backend(pg_backend_pid())').catch(() => {});
client.release();
};
signal?.addEventListener('abort', cleanup, { once: true });
try {
const result = await client.query(
'SELECT * FROM products WHERE to_tsvector(description) @@ plainto_tsquery($1) LIMIT $2',
[query, maxResults]
);
return result.rows;
} finally {
signal?.removeEventListener('abort', cleanup);
client.release();
}
}
Progress Reporting via Streaming Tool Results
// MCP tools can emit progress events using the server's notification mechanism
// For now, progress is communicated via the task polling pattern from Lesson 45
// or via streaming text content updates
server.tool('process_batch', {
items: z.array(z.string()).max(1000),
}, async ({ items }, { signal }) => {
const results = [];
const total = items.length;
for (let i = 0; i < items.length; i++) {
if (signal?.aborted) {
return {
content: [{ type: 'text', text: JSON.stringify({
status: 'cancelled',
processed: i,
total,
results,
}) }],
};
}
const result = await processItem(items[i]);
results.push(result);
// Emit progress via logs/notification (visible in MCP Inspector)
if (i % 50 === 0) {
server.server.sendLoggingMessage({
level: 'info',
data: `Progress: ${i + 1}/${total} (${Math.round(((i + 1) / total) * 100)}%)`,
});
}
}
return { content: [{ type: 'text', text: JSON.stringify({ status: 'complete', results }) }] };
});
Batch tools check the AbortSignal on each iteration and emit progress via logging notifications.
Backpressure in Streaming Tool Results
// When a tool generates large amounts of streaming data,
// use a ReadableStream with backpressure control
server.tool('stream_logs', {
service: z.string(),
since: z.string(),
}, async ({ service, since }, { signal }) => {
// Generator-based streaming with backpressure
async function* generateLogs() {
const logStream = await getLiveLogStream(service, since, { signal });
let buffer = [];
for await (const logLine of logStream) {
if (signal?.aborted) break;
buffer.push(logLine);
// Yield batches of 50 lines to avoid overwhelming the response
if (buffer.length >= 50) {
yield buffer.join('\n');
buffer = [];
// Yield control to allow backpressure to work
await new Promise(r => setImmediate(r));
}
}
if (buffer.length > 0) yield buffer.join('\n');
}
// Collect all chunks (in practice, return first N lines for tool calls)
const chunks = [];
let totalLines = 0;
for await (const chunk of generateLogs()) {
chunks.push(chunk);
totalLines += chunk.split('\n').length;
if (totalLines > 500) {
chunks.push('[...truncated, 500 line limit reached]');
break;
}
}
return { content: [{ type: 'text', text: chunks.join('\n') }] };
});
Handling SSE Client Disconnections
// For Streamable HTTP servers, detect client disconnections via res.on('close')
app.post('/mcp', async (req, res) => {
const transport = getOrCreateTransport(req);
// Create an AbortController for this connection
const controller = new AbortController();
req.socket.on('close', () => controller.abort());
// Pass the signal to the MCP transport (SDK handles propagation to tool handlers)
await transport.handleRequest(req, res, req.body, { signal: controller.signal });
});
What to Build Next
Add signal?.addEventListener('abort', cleanup) to your longest-running tool handler. Test it by disconnecting the client mid-execution and verify resources are released.
Add a per-tool timeout using AbortSignal.timeout(ms) to prevent any single tool call from running indefinitely.
Most MCP tool calls complete in under a second: query a database, call an API, read a file. But some operations take minutes or hours: training a model, processing a large dataset, running a batch export, triggering a CI/CD pipeline. For these, a synchronous request-response model breaks down. The MCP Tasks API provides an async task model: a client submits a task, the server accepts it immediately, the client polls for updates, and the server streams progress events until completion. This lesson covers the full Tasks API implementation.
Tasks API: submit a long-running operation, poll for progress via SSE, receive the result when done.
When to Use Tasks API vs Regular Tools
Use regular tools for operations that complete in under 30 seconds. Keep them synchronous – the LLM waits for the result before proceeding.
Use Tasks API for operations that take longer than 30 seconds, produce intermediate results the user or LLM can act on, or may fail partway through and need resumability.
Server-Side Task Implementation
import { McpServer } from '@modelcontextprotocol/sdk/server/mcp.js';
import { z } from 'zod';
import crypto from 'node:crypto';
const server = new McpServer({ name: 'async-server', version: '1.0.0' });
// Task store (use Redis or PostgreSQL in production)
const tasks = new Map();
// Submit a long-running task - returns a task ID immediately
server.tool('start_data_export', {
datasetId: z.string(),
format: z.enum(['csv', 'json', 'parquet']),
dateRange: z.object({
from: z.string(),
to: z.string(),
}),
}, async ({ datasetId, format, dateRange }) => {
const taskId = crypto.randomUUID();
// Store task state
tasks.set(taskId, {
id: taskId,
status: 'pending',
progress: 0,
createdAt: new Date().toISOString(),
result: null,
error: null,
});
// Start the long-running operation asynchronously
runExportTask(taskId, datasetId, format, dateRange).catch(err => {
const task = tasks.get(taskId);
if (task) {
task.status = 'failed';
task.error = err.message;
}
});
return {
content: [{
type: 'text',
text: JSON.stringify({ taskId, status: 'pending', message: 'Export started. Use get_task_status to check progress.' }),
}],
};
});
// Poll task status
server.tool('get_task_status', {
taskId: z.string().uuid(),
}, async ({ taskId }) => {
const task = tasks.get(taskId);
if (!task) {
return {
content: [{ type: 'text', text: JSON.stringify({ error: 'Task not found' }) }],
isError: true,
};
}
return { content: [{ type: 'text', text: JSON.stringify(task) }] };
});
// The actual long-running work
async function runExportTask(taskId, datasetId, format, dateRange) {
const task = tasks.get(taskId);
task.status = 'running';
const totalRows = await db.countRows(datasetId, dateRange);
const batchSize = 1000;
const batches = Math.ceil(totalRows / batchSize);
const results = [];
for (let i = 0; i < batches; i++) {
const batch = await db.fetchBatch(datasetId, dateRange, i * batchSize, batchSize);
results.push(...batch);
task.progress = Math.round(((i + 1) / batches) * 100);
task.message = `Processed ${Math.min((i + 1) * batchSize, totalRows)} / ${totalRows} rows`;
// Small delay to not hammer the DB
await new Promise(r => setTimeout(r, 10));
}
const exportUrl = await uploadToStorage(results, format);
task.status = 'completed';
task.progress = 100;
task.result = { url: exportUrl, rowCount: results.length };
}
LLM polling pattern: call start_task, then poll get_task_status with increasing intervals until status is ‘completed’.
Client-Side: LLM-Driven Task Polling
// System prompt that teaches the LLM how to handle async tasks
const ASYNC_SYSTEM_PROMPT = `When you call a tool that returns a taskId (like start_data_export),
you must poll for the result using get_task_status.
Poll every 5 seconds until status is 'completed' or 'failed'.
When completed, use the result URL to complete the user's request.
When failed, report the error message.`;
// Add this as part of the tool description to hint the LLM
server.tool('start_data_export', /* ... */);
// Tool description: "Starts a data export. Returns a taskId. Use get_task_status to check progress.
// Poll until status is 'completed', then use the result.url."
In large organizations, the number of MCP servers grows quickly. A payments MCP server, a customer data MCP server, a product catalog server, an analytics server – each maintained by different teams. Without a registry, every agent developer must manually configure each server’s URL, credentials, and capabilities. A registry solves this: publish once, discover everywhere. This lesson builds an MCP server registry, a discovery client, and covers service mesh integration patterns for enterprise deployments.
MCP registry: servers publish capabilities, agents query the registry to build their tool set dynamically.
Registry Data Model
// A registry entry describes one MCP server
/**
* @typedef {Object} RegistryEntry
* @property {string} id - Unique server identifier (slug)
* @property {string} name - Human-readable name
* @property {string} description - What this server does
* @property {string} url - Base URL for Streamable HTTP transport
* @property {string} version - Server version (semver)
* @property {string[]} tags - Capability tags for discovery (e.g., ['products', 'inventory'])
* @property {Object} auth - Authentication requirements
* @property {string} auth.type - 'none' | 'bearer' | 'oauth2'
* @property {string} [auth.tokenEndpoint] - OAuth token endpoint if auth.type === 'oauth2'
* @property {string} healthUrl - Health check endpoint
* @property {Date} lastSeen - Last successful health check
* @property {'healthy' | 'degraded' | 'down'} status - Current health status
*/
Simple Registry Server
// registry-server.js - A lightweight HTTP registry for MCP servers
import express from 'express';
const app = express();
app.use(express.json());
// In-memory store (use Redis or PostgreSQL in production)
const registry = new Map();
// Register a server
app.post('/servers', (req, res) => {
const entry = {
...req.body,
registeredAt: new Date().toISOString(),
lastSeen: new Date().toISOString(),
status: 'healthy',
};
registry.set(entry.id, entry);
res.status(201).json({ id: entry.id });
});
// List all healthy servers (with optional tag filter)
app.get('/servers', (req, res) => {
const { tags, status = 'healthy' } = req.query;
let servers = [...registry.values()].filter(s => s.status === status);
if (tags) {
const filterTags = tags.split(',');
servers = servers.filter(s => filterTags.some(t => s.tags?.includes(t)));
}
res.json({ servers });
});
// Health check runner: poll all registered servers every 30 seconds
setInterval(async () => {
for (const [id, entry] of registry) {
try {
const res = await fetch(entry.healthUrl, { signal: AbortSignal.timeout(5000) });
entry.status = res.ok ? 'healthy' : 'degraded';
entry.lastSeen = new Date().toISOString();
} catch {
entry.status = 'down';
}
registry.set(id, entry);
}
}, 30_000);
app.listen(4000, () => console.log('Registry listening on :4000'));
Discovery Client for Agents
// discovery-client.js - Used by agent hosts to discover MCP servers
import { Client } from '@modelcontextprotocol/sdk/client/index.js';
import { StreamableHTTPClientTransport } from '@modelcontextprotocol/sdk/client/streamable-http.js';
class McpDiscoveryClient {
#registryUrl;
#connections = new Map();
constructor(registryUrl) {
this.#registryUrl = registryUrl;
}
// Discover servers by tags and establish connections
async connect(tags = []) {
const query = tags.length ? `?tags=${tags.join(',')}` : '';
const res = await fetch(`${this.#registryUrl}/servers${query}`);
const { servers } = await res.json();
const connected = [];
for (const server of servers) {
if (this.#connections.has(server.id)) {
connected.push(server);
continue;
}
try {
const transport = new StreamableHTTPClientTransport(new URL(`${server.url}/mcp`));
const client = new Client({ name: 'discovery-host', version: '1.0.0' });
await client.connect(transport);
this.#connections.set(server.id, { client, server });
connected.push(server);
console.log(`Connected to ${server.name} (${server.id})`);
} catch (err) {
console.error(`Failed to connect to ${server.name}: ${err.message}`);
}
}
return connected;
}
// Get all tools from all connected servers
async getAllTools() {
const allTools = [];
for (const [id, { client, server }] of this.#connections) {
try {
const { tools } = await client.listTools();
allTools.push(...tools.map(t => ({ ...t, serverId: id })));
} catch (err) {
console.error(`Failed to list tools from ${id}: ${err.message}`);
}
}
return allTools;
}
// Route a tool call to the correct server
async callTool(toolName, args) {
for (const [, { client }] of this.#connections) {
const { tools } = await client.listTools();
if (tools.some(t => t.name === toolName)) {
return client.callTool({ name: toolName, arguments: args });
}
}
throw new Error(`Tool '${toolName}' not found in any connected server`);
}
}
// Usage
const discovery = new McpDiscoveryClient('https://registry.internal');
await discovery.connect(['products', 'analytics']);
const allTools = await discovery.getAllTools();
console.log(`Discovered ${allTools.length} tools across all servers`);
Discovery flow: query registry by tags -> connect to relevant servers -> aggregate tools -> route calls.
Service Mesh Integration (Istio / Linkerd)
In Kubernetes environments, a service mesh handles mutual TLS, traffic routing, and observability for all service-to-service communication, including MCP connections:
# With Istio, MCP server-to-server communication is automatically mTLS
# No code changes required - the sidecar proxy handles it
# Example: VirtualService for traffic splitting during MCP server rollout
apiVersion: networking.istio.io/v1alpha3
kind: VirtualService
metadata:
name: mcp-product-server
spec:
hosts:
- mcp-product-server
http:
- route:
- destination:
host: mcp-product-server
subset: v2
weight: 10 # 10% to new version
- destination:
host: mcp-product-server
subset: v1
weight: 90 # 90% to stable version
Server Health Aggregation
// Aggregate health status across all registered servers for a status page
app.get('/status', async (req, res) => {
const servers = [...registry.values()];
const healthy = servers.filter(s => s.status === 'healthy').length;
const degraded = servers.filter(s => s.status === 'degraded').length;
const down = servers.filter(s => s.status === 'down').length;
const overall = down > 0 ? 'degraded' : (degraded > 0 ? 'degraded' : 'operational');
res.json({
status: overall,
summary: { total: servers.length, healthy, degraded, down },
servers: servers.map(s => ({
id: s.id, name: s.name, status: s.status, lastSeen: s.lastSeen,
})),
});
});
What to Build Next
Deploy the registry server alongside your existing MCP servers. Register each server on startup using a POST to the registry.
Build a simple status page that reads from /status and shows which MCP servers are healthy.
