craftgate_mcp_server

Spring Boot–based MCP (Model Context Protocol) server that integrates with Craftgate payment APIs to query/report/manage payment data, intended to run as an MCP stdio server via `-Dspring.ai.mcp.server.stdio=true` and a local JAR.

Evaluated Apr 04, 2026 (16d ago)

Repo ↗ Payments mcp payments spring-boot stdio craftgate agent-tools java

⚙ Agent Friendliness

/ 100

Can an agent use this?

🔒 Security

/ 100

Is it safe for agents?

⚡ Reliability

/ 100

Does it work consistently?

Score Breakdown

⚙ Agent Friendliness

MCP Quality

Documentation

Error Messages

Auth Simplicity

Rate Limits

🔒 Security

TLS Enforcement

Auth Strength

Scope Granularity

Dep. Hygiene

Secret Handling

Transport security for outbound Craftgate calls is not documented; assumes HTTPS via `craftgate.base-url` (sandbox) but TLS enforcement is not explicit. Authentication uses API key + secret, but no rotation, scope restriction, or secrets-management guidance is described. Credentials appear to be stored in `application.properties`, which can be risky if the file is checked in or logged.

⚡ Reliability

Uptime/SLA

Version Stability

Breaking Changes

Error Recovery

Best When

You want an on-prem/local MCP stdio tool that an AI agent can call to fetch and interpret Craftgate payment data (sandbox or controlled environment).

Avoid When

You cannot safely manage Craftgate API credentials in configuration, or you need strong documented operational guarantees (SLA, retry/idempotency semantics, rate-limit handling) from this project out of the box.

Use Cases

• Querying payment information through an MCP-enabled agent workflow
• Generating summaries/reports over Craftgate payment data
• Integrating Craftgate payment lookups into AI-assisted operations via MCP tools

Not For

• Direct customer-facing payment processing UI
• High-throughput, latency-critical payment systems without additional architecture
• Producing compliance-ready audit trails without additional logging/controls

Interface

REST API

GraphQL

gRPC

MCP Server

Yes

SDK

Webhooks

Authentication

Methods: Craftgate API key Craftgate secret key

OAuth: No Scopes: No

Authentication is configured via `application.properties` with `craftgate.api-key` and `craftgate.secret-key`. No OAuth/scopes are documented for the MCP layer.

Pricing

Free tier: No

Requires CC: No

No pricing information for the MCP server is provided; Craftgate API usage may incur costs depending on Craftgate’s terms.

Agent Metadata

Pagination

none

Idempotent

False

Retry Guidance

Not documented

Known Gotchas

⚠ Stdio MCP requires correct JVM arg `-Dspring.ai.mcp.server.stdio=true`; misconfiguration can prevent tool availability
⚠ The README does not document the specific MCP tool names/schemas, output formats, pagination, or whether operations are idempotent/safe to retry
⚠ Secrets are configured in `application.properties`, which agents/automation might accidentally expose if logs/config management are not handled carefully

Alternatives

Using Craftgate API directly from your own backend and exposing results to agents via your own tool layer A dedicated integration microservice with OpenAPI + structured error handling and explicit retry/idempotency policies Another MCP payment integration that provides richer tool schema/docs and clear operational guidance

Full Evaluation Report

Comprehensive deep-dive: security analysis, reliability audit, agent experience review, cost modeling, competitive positioning, and improvement roadmap for craftgate_mcp_server.

AI-powered analysis · PDF + markdown · Delivered within 30 minutes

$99

Package Brief

Quick verdict, integration guide, cost projections, gotchas with workarounds, and alternatives comparison.

Delivered within 10 minutes

Score Monitoring

Get alerted when this package's AF, security, or reliability scores change significantly. Stay ahead of regressions.

Continuous monitoring

$3/mo

API endpoint ↗ Agent guide ↗ Report inaccuracy

Scores are editorial opinions as of 2026-04-04.