Skip to content

Async-IO/pierre_mcp_server

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

536 Commits
.githooks
.githooks
 
 
.github
.github
 
 
docker/postgres-init
docker/postgres-init
 
 
docs
docs
 
 
examples
examples
 
 
frontend
frontend
 
 
scripts
scripts
 
 
sdk
sdk
 
 
src
src
 
 
templates
templates
 
 
test_data
test_data
 
 
tests
tests
 
 
.dockerignore
.dockerignore
 
 
.env.postgres.example
.env.postgres.example
 
 
.envrc.example
.envrc.example
 
 
.gitignore
.gitignore
 
 
CHANGELOG.md
CHANGELOG.md
 
 
CONTRIBUTING.md
CONTRIBUTING.md
 
 
Cargo.lock
Cargo.lock
 
 
Cargo.toml
Cargo.toml
 
 
Dockerfile
Dockerfile
 
 
Dockerfile.test
Dockerfile.test
 
 
LICENSE
LICENSE
 
 
LICENSE-APACHE
LICENSE-APACHE
 
 
LICENSE-MIT
LICENSE-MIT
 
 
README.md
README.md
 
 
docker-compose-with-envrc.sh
docker-compose-with-envrc.sh
 
 
docker-compose.postgres.yml
docker-compose.postgres.yml
 
 
docker-compose.prod.yml
docker-compose.prod.yml
 
 
docker-compose.yml
docker-compose.yml
 
 
docker-entrypoint.sh
docker-entrypoint.sh
 
 
llms.txt
llms.txt
 
 
package.json
package.json
 
 
rust-toolchain
rust-toolchain
 
 

Repository files navigation

Pierre MCP Server

Backend CI Frontend Tests MCP Compliance

Development Status: This project is under active development. APIs and features may change.

Pierre MCP Server connects AI assistants to fitness data from Strava, Garmin, and Fitbit. The server implements the Model Context Protocol (MCP) for integration with Claude, ChatGPT, and other AI assistants.

Features

  • MCP Protocol: JSON-RPC over HTTP for AI assistant integration
  • OAuth 2.0 Server: RFC 7591 dynamic client registration for MCP clients
  • RS256/JWKS: Asymmetric JWT signing with public key distribution
  • A2A Protocol: Agent-to-agent communication with capability discovery
  • Multi-Tenancy: Isolated data and configuration per organization
  • Real-Time Updates: Server-Sent Events for OAuth notifications
  • Plugin System: Compile-time plugin architecture with lifecycle management
  • PII Redaction: Middleware for sensitive data removal in logs and responses
  • Cursor Pagination: Keyset pagination for consistent large dataset traversal
  • Intelligent Caching: LRU cache with TTL for API response optimization
  • Atomic Operations: TOCTOU prevention with database-level atomic token operations
  • Structured Error Handling: Type-safe error propagation with AppError/DatabaseError/ProviderError

Architecture

Pierre runs as a single HTTP server on port 8081 (configurable). All protocols (MCP, OAuth 2.0, REST API) share the same port.

┌─────────────────┐    stdio     ┌─────────────────┐    HTTP+OAuth   ┌─────────────────┐
│   MCP Client    │ ◄─────────►  │ Pierre SDK      │ ◄─────────────► │ Pierre MCP      │
│                 │              │ Bridge          │                 │ Server          │
└─────────────────┘              └─────────────────┘                 └─────────────────┘

Core Components (from src/lib.rs:58-182):

  • mcp: MCP protocol server implementation
  • oauth2: OAuth 2.0 authorization server (RFC 7591)
  • a2a: Agent-to-agent protocol with agent cards
  • providers: Fitness provider integrations (Strava, Garmin, Fitbit)
  • intelligence: Activity analysis and insights
  • database_plugins: SQLite and PostgreSQL support
  • cache: Pluggable cache system (in-memory LRU, Redis future)
  • auth: JWT token authentication
  • crypto: Two-tier key management system

LLM Interaction

AI assistants query fitness data through natural language. The LLM determines which MCP tools to call and combines results.

Example Interactions

Natural Language Request What Happens Tools Used
"Get my last 10 activities and propose a week-long meal plan with protein targets based on my training load" Retrieves recent activities, analyzes intensity and duration, calculates caloric expenditure, generates nutrition recommendations with macro breakdowns get_activities, analyze_training_load, calculate_metrics
"Compare my three longest runs this month and identify areas for improvement" Fetches top runs by distance, analyzes pace consistency, heart rate zones, elevation patterns, provides feedback get_activities, compare_activities, analyze_performance_trends
"Analyze my cycling data from the past 3 months and suggest realistic goals for next quarter" Reviews historical performance, detects trends and patterns, evaluates fitness progression, recommends targets get_activities, analyze_performance_trends, suggest_goals, analyze_goal_feasibility
"Check my training load for the last two weeks and tell me if I need a recovery day" Calculates cumulative training stress, analyzes recovery metrics, provides rest recommendations analyze_training_load, get_activities, generate_recommendations
"When's the best day this week for an outdoor run based on my typical schedule and weather conditions?" Analyzes activity patterns, checks weather forecasts, recommends timing detect_patterns, get_activities, weather integration

Quick Start

Prerequisites

  • Rust 1.70+
  • SQLite (default) or PostgreSQL (production)

Installation

git clone https://github.com/Async-IO/pierre_mcp_server.git
cd pierre_mcp_server
cargo build --release

Configuration

Using .envrc (Recommended)

Pierre includes a .envrc file for environment configuration. Use direnv to automatically load environment variables:

# Install direnv (macOS)
brew install direnv

# Add to your shell profile (~/.zshrc or ~/.bashrc)
eval "$(direnv hook zsh)"  # or bash

# Allow direnv for this directory
cd pierre_mcp_server
direnv allow

The .envrc file includes all required configuration with development defaults. Edit .envrc to customize settings for your environment.

Manual Configuration

Required Environment Variables:

export DATABASE_URL="sqlite:./data/pierre.db"
export PIERRE_MASTER_ENCRYPTION_KEY="$(openssl rand -base64 32)"

Optional Environment Variables:

export HTTP_PORT=8081              # Server port (default: 8081)
export RUST_LOG=info               # Log level
export JWT_EXPIRY_HOURS=24         # JWT token expiry
export PIERRE_RSA_KEY_SIZE=4096    # RSA key size for JWT signing (default: 4096)

# Fitness provider OAuth (for data integration)
export STRAVA_CLIENT_ID=your_client_id
export STRAVA_CLIENT_SECRET=your_client_secret
export STRAVA_REDIRECT_URI=http://localhost:8081/oauth/callback/strava  # local dev only

# Garmin Connect OAuth (optional)
export GARMIN_CLIENT_ID=your_consumer_key
export GARMIN_CLIENT_SECRET=your_consumer_secret
export GARMIN_REDIRECT_URI=http://localhost:8081/oauth/callback/garmin  # local dev only

# Production: Use HTTPS for callback URLs
# export STRAVA_REDIRECT_URI=https://api.example.com/oauth/callback/strava
# export GARMIN_REDIRECT_URI=https://api.example.com/oauth/callback/garmin

# Weather data (optional)
export OPENWEATHER_API_KEY=your_api_key

# Cache configuration
export CACHE_MAX_ENTRIES=10000                    # Maximum cached entries (default: 10,000)
export CACHE_CLEANUP_INTERVAL_SECS=300            # Cleanup interval in seconds (default: 300)
# export REDIS_URL=redis://localhost:6379         # Redis cache (future support)

See src/constants/mod.rs:32-173 for all environment variables.

Starting the Server

cargo run --bin pierre-mcp-server

The server will start on port 8081 and display available endpoints.

Initial Setup

Create an admin user via REST API:

curl -X POST http://localhost:8081/admin/setup \
  -H "Content-Type: application/json" \
  -d '{
    "email": "[email protected]",
    "password": "SecurePass123!",
    "display_name": "Admin"
  }'

MCP Client Integration

Pierre includes an SDK bridge for direct integration with MCP clients. The SDK handles OAuth 2.0 authentication automatically.

SDK Installation

Option 1: Install from npm (Recommended)

npm install pierre-mcp-client@next

The SDK is published as a pre-release package (@next tag) during v0.x development.

Option 2: Build from source

The SDK is included in the sdk/ directory:

cd sdk
npm install
npm run build

MCP Client Configuration

Add Pierre to your MCP client configuration. For Claude Desktop:

Configuration File Location:

  • macOS: ~/Library/Application Support/Claude/claude_desktop_config.json
  • Windows: %APPDATA%\Claude\claude_desktop_config.json
  • Linux: ~/.config/claude/claude_desktop_config.json

Configuration (using npm package):

{
  "mcpServers": {
    "pierre-fitness": {
      "command": "npx",
      "args": [
        "-y",
        "pierre-mcp-client@next",
        "--server",
        "http://localhost:8081"
      ]
    }
  }
}

Alternative (using local installation):

{
  "mcpServers": {
    "pierre-fitness": {
      "command": "node",
      "args": [
        "/absolute/path/to/pierre_mcp_server/sdk/dist/cli.js",
        "--server",
        "http://localhost:8081"
      ]
    }
  }
}

Replace /absolute/path/to/ with your actual path for local installations.

Authentication Flow

When the MCP client starts, the SDK will:

  1. Register an OAuth 2.0 client with Pierre (RFC 7591)
  2. Open your browser for authentication
  3. Handle the OAuth callback and token exchange
  4. Use JWT tokens for all MCP requests

No manual token management required.

Available MCP Tools

Pierre provides 25 tools through the MCP protocol. Tool definitions are in src/protocols/universal/tool_registry.rs:12-45.

Core Fitness Data

Tool Description Parameters
get_activities Get user activities from fitness providers provider (optional), limit (optional)
get_athlete Get athlete profile information None
get_stats Get athlete statistics and metrics None
analyze_activity Analyze a specific activity with detailed insights activity_id (required)
get_activity_intelligence Get AI-powered analysis for an activity activity_id (required)
get_connection_status Check OAuth connection status for providers None
disconnect_provider Disconnect from a fitness provider provider (required)

Goals and Progress

Tool Description Parameters
set_goal Set a new fitness goal goal_type, target_value (required)
suggest_goals Get AI-suggested goals based on activity history None
analyze_goal_feasibility Analyze if a goal is achievable goal_data (required)
track_progress Track progress toward goals goal_id (required)

Performance Analysis

Tool Description Parameters
calculate_metrics Calculate custom fitness metrics activity_id (required)
analyze_performance_trends Analyze performance trends over time None
compare_activities Compare activities for performance analysis activity_ids (required)
detect_patterns Detect patterns in activity data None
generate_recommendations Generate personalized training recommendations None
calculate_fitness_score Calculate overall fitness score None
predict_performance Predict future performance based on training None
analyze_training_load Analyze training load and recovery None

Configuration Management

Tool Description Parameters
get_configuration_catalog Get complete configuration catalog None
get_configuration_profiles Get available configuration profiles None
get_user_configuration Get current user configuration None
update_user_configuration Update user configuration parameters profile or parameters (required)
calculate_personalized_zones Calculate personalized training zones None
validate_configuration Validate configuration parameters parameters (required)

Tool descriptions from src/protocols/universal/tool_registry.rs:114-162.

Authentication

Pierre supports multiple authentication methods for different use cases.

OAuth vs OAuth2 - Two Different Systems

Pierre implements two distinct OAuth systems with different purposes:

oauth module (Fitness Provider Integration):

  • Pierre acts as an OAuth client connecting TO external fitness providers (Strava, Garmin, Fitbit)
  • Manages user connections and tokens for accessing fitness data from these providers
  • Implementation in src/oauth/ and src/providers/
  • Configuration via STRAVA_CLIENT_ID, GARMIN_CLIENT_ID, etc.
  • Used internally when fetching fitness data

oauth2 module (Authorization Server):

  • Pierre acts as an OAuth server for MCP clients connecting TO Pierre
  • Implements RFC 7591 (Dynamic Client Registration) and RFC 7636 (PKCE)
  • Issues JWT access tokens for MCP protocol authentication
  • Implementation in src/oauth2/
  • Endpoints: /oauth2/register, /oauth2/authorize, /oauth2/token
  • Used by MCP clients (Claude, ChatGPT, etc.) to authenticate with Pierre

Summary: Use oauth configuration for fitness provider credentials. Use oauth2 endpoints when building MCP clients that connect to Pierre.

OAuth 2.0 Authorization Server

Pierre implements an OAuth 2.0 Authorization Server for MCP client authentication. Implementation in src/oauth2/.

OAuth 2.0 Endpoints:

  • GET /.well-known/oauth-authorization-server - Server metadata (RFC 8414)
  • POST /oauth2/register - Dynamic client registration (RFC 7591)
  • GET /oauth2/authorize - Authorization endpoint
  • POST /oauth2/token - Token endpoint (issues JWT access tokens)
  • GET /oauth2/jwks - JSON Web Key Set

OAuth 2.0 Flow:

The Pierre SDK handles this automatically. For manual integration:

# 1. Register OAuth 2.0 client (local development)
curl -X POST http://localhost:8081/oauth2/register \
  -H "Content-Type: application/json" \
  -d '{
    "redirect_uris": ["http://localhost:35535/oauth/callback"],
    "client_name": "My MCP Client (Dev)",
    "grant_types": ["authorization_code"]
  }'

# Production: Use HTTPS callback URLs
# curl -X POST https://api.example.com/oauth2/register \
#   -d '{"redirect_uris": ["https://client.example.com/oauth/callback"], ...}'

# Response includes client_id and client_secret

# 2. Browser authorization
# User opens: http://localhost:8081/oauth2/authorize?client_id=...&redirect_uri=...&response_type=code

# 3. Token exchange
curl -X POST http://localhost:8081/oauth2/token \
  -H "Content-Type: application/x-www-form-urlencoded" \
  -d "grant_type=authorization_code&code=...&client_id=...&client_secret=..."

# Response includes JWT access token

Implementation in src/oauth2/client_registration.rs:27-50.

JWT Authentication

For direct REST API access:

# Register user
curl -X POST http://localhost:8081/auth/register \
  -H "Content-Type: application/json" \
  -d '{"email": "[email protected]", "password": "password123", "display_name": "User"}'

# Login to get JWT token
curl -X POST http://localhost:8081/auth/login \
  -H "Content-Type: application/json" \
  -d '{"email": "[email protected]", "password": "password123"}'

# Use JWT token
curl -H "Authorization: Bearer YOUR_JWT_TOKEN" http://localhost:8081/mcp

API Key Authentication

For service-to-service integration:

# Create API key (requires admin or user JWT)
curl -X POST http://localhost:8081/api/keys \
  -H "Authorization: Bearer YOUR_JWT_TOKEN" \
  -H "Content-Type: application/json" \
  -d '{"name": "My Service", "tier": "professional"}'

# Use API key
curl -H "X-API-Key: YOUR_API_KEY" http://localhost:8081/api/endpoint

A2A (Agent-to-Agent) Protocol

Pierre supports agent-to-agent communication for autonomous AI systems. Implementation in src/a2a/.

A2A Features:

  • Agent Cards for capability discovery (src/a2a/agent_card.rs)
  • Cryptographic authentication between agents
  • Asynchronous messaging protocol
  • Protocol versioning (A2A 1.0.0)

A2A Endpoints:

  • GET /a2a/status - Get A2A protocol status
  • GET /a2a/tools - Get available A2A tools
  • POST /a2a/execute - Execute A2A tool
  • GET /a2a/monitoring - Get A2A monitoring information
  • GET /a2a/client/tools - Get client-specific A2A tools
  • POST /a2a/client/execute - Execute client A2A tool

Example A2A Integration:

use pierre_mcp_server::a2a::A2AClientManager;

#[tokio::main]
async fn main() -> Result<()> {
    let client = A2AClientManager::new("https://pierre-server.com/a2a").await?;

    let response = client.send_message(
        "fitness-analyzer-agent",
        serde_json::json!({
            "action": "analyze_performance",
            "user_id": "user-123",
            "timeframe": "last_30_days"
        })
    ).await?;

    println!("Analysis: {}", response);
    Ok(())
}

Real-Time Notifications

Pierre provides Server-Sent Events (SSE) for real-time updates. Implementation in src/notifications/sse.rs and src/sse.rs.

SSE Endpoint:

GET /notifications/sse?user_id={user_id}

Notification Types:

  • OAuth authorization completion
  • OAuth errors and failures
  • System status updates
  • A2A message notifications

Example JavaScript Integration:

const eventSource = new EventSource('/notifications/sse?user_id=user-123');

eventSource.onmessage = function(event) {
    const notification = JSON.parse(event.data);
    console.log('Notification:', notification);

    if (notification.type === 'oauth_complete') {
        // Handle OAuth completion
        window.location.reload();
    }
};

Testing

# Run all tests
cargo test

# Run specific test suite
cargo test --test mcp_protocol_comprehensive_test
cargo test --test mcp_multitenant_complete_test

# Run with output
cargo test -- --nocapture

# Lint and test (comprehensive validation)
./scripts/lint-and-test.sh

RSA Key Size Configuration

Pierre uses RS256 asymmetric signing for JWT tokens. Key size affects both security and performance:

Production (4096-bit keys - default):

  • Higher security with larger key size
  • Slower key generation (~10 seconds)
  • Use in production environments

Testing (2048-bit keys):

  • Faster key generation (~250ms)
  • Suitable for development and testing
  • Set via environment variable:
export PIERRE_RSA_KEY_SIZE=2048

Test Performance Optimization

Pierre includes a shared test JWKS manager to eliminate RSA key generation overhead:

Shared Test JWKS Pattern (implemented in tests/common.rs:40-52):

use pierre_mcp_server_integrations::common;

// Reuses shared JWKS manager across all tests (10x faster)
let jwks_manager = common::get_shared_test_jwks();

Performance Impact:

  • Without optimization: 100ms+ RSA key generation per test
  • With shared JWKS: One-time generation, instant reuse across test suite
  • Result: 10x faster test execution

E2E Tests: The SDK test suite (sdk/test/) automatically uses 2048-bit keys via PIERRE_RSA_KEY_SIZE=2048 in server startup configuration (sdk/test/helpers/server.js:82).

Development Tools

Automated Setup

# Clean database and fresh server start
./scripts/fresh-start.sh
cargo run --bin pierre-mcp-server &

# Complete workflow test (admin + user + tenant + login + MCP)
./scripts/complete-user-workflow.sh

# Load saved environment variables
source .workflow_test_env
echo "JWT Token: ${JWT_TOKEN:0:50}..."

Management Dashboard

A web dashboard is available for monitoring:

cd frontend
npm install && npm run dev

Access at http://localhost:5173 for:

  • User management and approval
  • API key monitoring
  • Usage analytics
  • Real-time request monitoring

See frontend/README.md for details.

Documentation

Complete documentation is in the docs/ directory:

Installation guide for MCP clients:

Code Quality

Pierre uses validation scripts to maintain code quality and prevent common issues:

Pre-commit Validation:

  • Pattern validation via scripts/validation-patterns.toml
  • Clippy linting with strict warnings
  • Test execution
  • Format checking

Run validation:

./scripts/lint-and-test.sh

Install git hooks:

./scripts/install-hooks.sh

Contributing

  1. Fork the repository
  2. Create a feature branch (git checkout -b feature/new-feature)
  3. Run validation (./scripts/lint-and-test.sh)
  4. Commit changes (git commit -m 'feat: add new feature')
  5. Push to branch (git push origin feature/new-feature)
  6. Open a Pull Request

License

This project is dual-licensed:

You may choose either license.

About

MCP/A2A server for fitness app supporting Strava and Fitbit

Topics

rust mcp strava fitbit fitness-tracker claude ai-assistant agentic-ai mcp-server a2a-server

Resources

Readme

License

Unknown and 2 other licenses found

Licenses found

Unknown
LICENSE
Unknown
LICENSE-APACHE
MIT
LICENSE-MIT

Contributing

Contributing
Activity
Custom properties

Stars

12 stars

Watchers

1 watching

Forks

2 forks
Report repository

Releases 1

Pierre MCP Server v0.1.1 Latest
Oct 14, 2025

Sponsor this project

 
Learn more about GitHub Sponsors

Contributors 2

  •  
  •  

Languages