Skip to content

acoyfellow/firestore-mcp-kit

BranchesTags

Repository files navigation

firestore-mcp-kit

Build secure, typed MCP tools backed by Firestore.

Node 20+. ESM-first. Early API.

firestore-mcp-kit is a minimal TypeScript library for defining explicit MCP tools in userland, validating them with Zod, and wiring them to document-centric Firestore operations.

It stays intentionally small:

  • Firestore is storage, not the public contract
  • schemas and policies live in app code
  • writes should be narrow and explicit
  • transports should stay thin

Tutorial

Install the package:

npm install firestore-mcp-kit zod

Build a minimal MCP tool with explicit schemas and a Firestore-backed path.

The flow is:

  1. define a resource schema with Zod
  2. define explicit tool input/output schemas
  3. create a Firestore resource path function
  4. implement tools with defineTool(...)
  5. run them directly or expose them over stdio or HTTP

Minimal package shape

import {
  createFirestoreResource,
  defineTool,
  getDocument,
} from 'firestore-mcp-kit'
import { z } from 'zod'

const NoteSchema = z.object({
  id: z.string(),
  title: z.string(),
  body: z.string(),
})

const GetNoteInputSchema = z.object({
  id: z.string().min(1),
})

const GetNoteOutputSchema = z.object({
  note: NoteSchema,
})

const resource = createFirestoreResource(firestore, (id) => `notes/${id}`)

const getNote = defineTool({
  name: 'notes.get',
  inputSchema: GetNoteInputSchema,
  outputSchema: GetNoteOutputSchema,
  async execute({ input }) {
    const note = await getDocument<z.infer<typeof NoteSchema>>(
      resource,
      input.id
    )

    if (!note) {
      throw new Error(`Note ${input.id} not found`)
    }

    return { note }
  },
})

Repo example

For a full end-to-end example, use examples/notes/src/index.ts in this repository.

If you are working in this repository, install dependencies first:

npm install

Run the example:

npm run dev:stdio
npm run dev:http

Use a real Firestore project with a local service-account file:

export GOOGLE_APPLICATION_CREDENTIALS=./credentials.json
npm run dev:http:firestore

Keep credentials out of git. The repo ignores common credential file names by default.

Status: early and intentionally small. The API is designed to stay narrow, explicit, and example-driven.

HTTP default endpoint:

  • http://localhost:8000/mcp
  • health check: http://localhost:8000/health

How-to guides

Add a Firestore-backed resource

  1. Define a resource schema in userland.
  2. Define explicit input/output schemas per tool.
  3. Create a FirestoreResource:
const resource = createFirestoreResource(firestore, (id) => `notes/${id}`)
  1. Implement tools with defineTool(...).
  2. Execute them directly or expose them through a transport.

Allow updates to only selected fields

Use createPatchSchema(...) and pickPatchedFields(...).

const NotePatchSchema = createPatchSchema(['title', 'body']).extend({
  title: z.string().min(1).optional(),
  body: z.string().optional(),
})

This keeps update behavior explicit and avoids broad arbitrary patching.

Expose tools over stdio

await startStdioServer({
  name: 'notes-example',
  version: '0.1.0',
  tools,
  getContext: async () => ({ actorId: 'local-user', canDelete: true }),
})

Expose tools over HTTP

await startHttpServer({
  name: 'notes-example',
  version: '0.1.0',
  port: 8000,
  tools,
  getContext: async () => ({ actorId: 'local-user', canDelete: true }),
})

Reference

Core tool API

  • defineTool(...)
  • executeTool(...)
  • createMcpServer(...)

Transport helpers

  • startStdioServer(...)
  • startHttpServer(...)

Firestore helpers

  • getDocument(...)
  • setDocument(...)
  • updateDocument(...)
  • deleteDocument(...)

Patch helpers

  • createPatchSchema(...)
  • pickPatchedFields(...)

Errors

  • FirestoreMcpError
  • AuthorizationError
  • ValidationError
  • NotFoundError

Firestore interfaces

  • FirestoreClient
  • FirestoreDocumentRef<TDocument>
  • FirestoreDocumentSnapshot<TDocument>
  • FirestoreResource

Explanation

These notes explain the design choices behind the library.

Why not expose raw Firestore directly?

Because MCP tools should expose narrow, typed operations instead of arbitrary database access.

Why do schemas live in userland?

Because applications own their resource shapes, policy checks, and dangerous-field rules.

Why are updates constrained?

Because unrestricted patching is too broad for the default path. Safe write behavior should feel deliberate.

Why keep transports thin?

Because the same tool definitions should work over stdio or HTTP without changing domain logic.

When should I use this instead of Firebase's MCP server?

Use this library when you want Firestore behind a narrow app contract instead of exposing broader platform capabilities directly. It is a better fit when you want tool names like notes.create or tickets.assign, app-owned Zod schemas, explicit authorization hooks, and constrained writes. Firebase's MCP server is a better fit when you want a more complete Firebase-integrated server with less userland code and are comfortable with a more platform-shaped surface area.

About

Build secure, typed MCP tools backed by Firestore with explicit Zod schemas, narrow write paths, and thin stdio/HTTP transports.

www.npmjs.com/package/firestore-mcp-kit

Topics

http firebase typescript sdk toolkit mcp developer-tools stdio firestore zod ai-tools model-context-protocol

Resources

Readme

License

MIT license

Contributing

Contributing

Security policy

Security policy
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases 1

v0.1.0 Latest
Mar 9, 2026

Contributors

Languages