{"id":"kaifcoder-spring-demo-mcp-server-sse","name":"spring-demo-mcp-server-sse","homepage":"https://docs.spring.io/spring-ai/reference/api/mcp/mcp-overview.html","repo_url":"https://github.com/kaifcoder/spring-demo-mcp-server-sse","category":"devtools","subcategories":[],"tags":["java","spring-boot","sse","mcp","json-rpc","spring-ai","tool-calling","demo","integration-tests"],"what_it_does":"Spring Boot demo that exposes a simple UserService both as REST endpoints and as MCP tools over an SSE session endpoint, with JSON-RPC messages sent to a per-session messages endpoint.","use_cases":["Create an MCP tool backed by a Spring Boot service","Demonstrate SSE-based session transport for JSON-RPC style messaging","Prototype LLM tool calling flows (e.g., VS Code MCP extensions) backed by Java services","Learn end-to-end integration of REST + MCP tool invocation"],"not_for":["Production-grade, internet-exposed deployments without adding authentication/authorization and transport security hardening","Use as a general-purpose data streaming platform without reviewing backpressure/session lifecycle behavior","Handling sensitive user data without explicit privacy and security controls"],"best_when":"You want a runnable reference implementation to integrate Spring Boot services with MCP tool calling using SSE as the transport.","avoid_when":"You need strong enterprise security guarantees out-of-the-box (authn/authz, rate limiting, and audit controls are not described here).","alternatives":["Dedicated MCP servers provided by vendors/platforms (with hosted infrastructure)","Self-hosted MCP over WebSockets/HTTP with a production framework and explicit authn/authz","Other Spring AI MCP examples or templates that include security and rate limiting"],"af_score":50.2,"security_score":25.2,"reliability_score":27.5,"package_type":"mcp_server","discovery_source":["github"],"priority":"low","status":"evaluated","version_evaluated":null,"last_evaluated":"2026-04-04T19:44:53.580964+00:00","interface":{"has_rest_api":true,"has_graphql":false,"has_grpc":false,"has_mcp_server":true,"mcp_server_url":"http://localhost:8080/mcp/sse","has_sdk":false,"sdk_languages":[],"openapi_spec_url":null,"webhooks":false},"auth":{"methods":["No authentication described for REST or MCP endpoints (demo)"],"oauth":false,"scopes":false,"notes":"The README does not mention authn/authz, API keys, OAuth, or any access control for the REST or MCP endpoints."},"pricing":{"model":null,"free_tier_exists":false,"free_tier_limits":null,"paid_tiers":[],"requires_credit_card":false,"estimated_workload_costs":null,"notes":"Open-source demo (Apache 2.0); no pricing information provided."},"requirements":{"requires_signup":false,"requires_credit_card":false,"domain_verification":false,"data_residency":[],"compliance":[],"min_contract":null},"agent_readiness":{"af_score":50.2,"security_score":25.2,"reliability_score":27.5,"mcp_server_quality":72.0,"documentation_accuracy":80.0,"error_message_quality":0.0,"error_message_notes":null,"auth_complexity":20.0,"rate_limit_clarity":5.0,"tls_enforcement":30.0,"auth_strength":10.0,"scope_granularity":10.0,"dependency_hygiene":45.0,"secret_handling":40.0,"security_notes":"No authentication/authorization or TLS requirements are described in the README. Because this is a demo, production deployment would need explicit security controls (authn/authz, CSRF considerations for browser clients, session lifecycle protections, rate limiting, and secure headers). Dependency hygiene and secret handling cannot be verified from the provided text.","uptime_documented":0.0,"version_stability":30.0,"breaking_changes_history":40.0,"error_recovery":40.0,"idempotency_support":"false","idempotency_notes":null,"pagination_style":"none","retry_guidance_documented":false,"known_agent_gotchas":["Requests must include a sessionId for MCP tool/completion requests (documented troubleshooting).","SSE is session-based: agents/clients must first create a session via /mcp/sse and use the returned messages endpoint for subsequent POSTs."]}}