feat: add AWS Lambda and API Gateway deployment infrastructure (#3)

Author: zxkane

.github/workflows/e2e.yml

@@ -63,7 +63,7 @@ jobs:
 
     - name: Start server for HTTP transport test
       env:
-        PORT: 3000
+        MCP_PORT: 3000
         QUIP_TOKEN: ${{ secrets.QUIP_TOKEN }}
         QUIP_BASE_URL: ${{ secrets.QUIP_BASE_URL }}
       run: |

README.md

@@ -14,6 +14,7 @@ A Model Context Protocol (MCP) server for interacting with Quip spreadsheets, im
   - [Transport Documentation](#transport-documentation)
   - [Configure for Claude.app](#configure-for-claudeapp)
   - [Command Line Arguments](#command-line-arguments)
+  - [Deploy to AWS Lambda + API Gateway](#deploy-to-aws-lambda--api-gateway)
 - [Available Tools](#available-tools)
   - [quip_read_spreadsheet](#quip_read_spreadsheet)
 - [Resource URIs](#resource-uris)
@@ -27,6 +28,8 @@ A Model Context Protocol (MCP) server for interacting with Quip spreadsheets, im
     - [Local Storage](#local-storage)
     - [S3 Storage](#s3-storage)
 - [Health Check Endpoint](#health-check-endpoint)
+- [Cloud Deployment](#cloud-deployment)
+  - [AWS Lambda + API Gateway](#aws-lambda--api-gateway)
 - [Development](#development)
   - [Project Structure](#project-structure)
   - [Setting Up a Development Environment](#setting-up-a-development-environment)
@@ -233,6 +236,18 @@ node dist/index.js --mock --storage-path /path/to/storage
 node dist/index.js --auth --api-key your_api_key_here
 ```
 
+### Deploy to AWS Lambda + API Gateway
+
+The Quip MCP server can be deployed to AWS Lambda with API Gateway to create a serverless, scalable HTTP endpoint. This setup is ideal for production environments and provides several benefits:
+
+- **Serverless Operation**: No need to manage servers
+- **Auto-scaling**: Handles varying loads automatically
+- **High Availability**: Distributed across multiple availability zones
+- **Cost-effective**: Pay only for what you use
+- **Streamable HTTP Interface**: Works with tools that support HTTP MCP servers
+
+For detailed deployment instructions, see the [Cloud Deployment](#aws-lambda--api-gateway) section.
+
 ## Available Tools
 
 ### quip_read_spreadsheet
@@ -510,6 +525,33 @@ The endpoint returns a simple JSON response with status "ok" when the server is
 
 This endpoint can be used by monitoring tools or container orchestration systems to check if the server is healthy and ready to handle requests.
 
+## Cloud Deployment
+
+### AWS Lambda + API Gateway
+
+The Quip MCP server can be deployed as a serverless application using AWS Lambda with API Gateway. This provides a scalable, low-maintenance deployment option with a streamable HTTP interface.
+
+The project includes an AWS CDK infrastructure setup that automates the deployment of:
+- Lambda function with the Quip MCP server
+- API Gateway endpoint
+- S3 bucket for storing CSV files
+- Secrets Manager for storing sensitive information
+
+For detailed deployment instructions, architecture overview, and usage information, see the [AWS Lambda Deployment Guide](infrastructure/README.md) in the infrastructure directory.
+
+To connect Claude.app to your deployed MCP server, add the following to your Claude settings (after deployment):
+
+```json
+"mcpServers": {
+  "quip-remote": {
+    "endpointUrl": "https://your-api-gateway-url/mcp",
+    "headers": {
+      "X-API-Key": "YOUR_API_KEY_VALUE"
+    }
+  }
+}
+```
+
 ## Development
 
 ### Project Structure
@@ -531,11 +573,33 @@ quip-mcp-server-typescript/
 │   ├── auth.ts                  # Authentication
 │   └── cache.ts                 # Caching mechanism
 ├── tests/
-│   ├── server.test.ts           # Unit tests for server
-│   ├── quipClient.test.ts       # Unit tests for Quip client
-│   ├── tools.test.ts            # Unit tests for tools
-│   ├── storage.test.ts          # Unit tests for storage
+│   ├── unit/                    # Unit tests
+│   │   ├── server.test.ts
+│   │   ├── quipClient.test.ts
+│   │   ├── tools.test.ts
+│   │   ├── storage.test.ts
+│   │   └── ...
 │   └── e2e/                     # End-to-end tests
+├── infrastructure/              # AWS deployment resources
+│   ├── cdk/                     # CDK project
+│   │   ├── bin/
+│   │   │   └── app.ts           # CDK app entry point
+│   │   ├── lib/
+│   │   │   └── quip-mcp-server-stack.ts  # Main CDK stack
+│   │   ├── lambda/              # Lambda function code
+│   │   │   ├── run.js           # Lambda handler
+│   │   │   └── package.json
+│   │   ├── package.json
+│   │   └── tsconfig.json
+│   └── README.md                # AWS deployment documentation
+├── example-client/              # Example MCP client implementation
+│   ├── src/
+│   │   ├── client-common.ts
+│   │   ├── http-client.ts
+│   │   ├── stdio-client.ts
+│   │   └── index.ts
+│   ├── package.json
+│   └── README.md
 ├── dist/                        # Compiled JavaScript output
 ├── .env.example                 # Example environment variables
 ├── .gitignore                   # Git ignore file

example-client/start-http-server.sh

@@ -70,7 +70,7 @@ fi
 echo "Starting Quip MCP server in HTTP mode on port $PORT..."
 
 # Define base command
-CMD="QUIP_TOKEN=\"$QUIP_TOKEN\" QUIP_BASE_URL=\"$QUIP_BASE_URL\" PORT=$PORT"
+CMD="QUIP_TOKEN=\"$QUIP_TOKEN\" QUIP_BASE_URL=\"$QUIP_BASE_URL\" MCP_PORT=$PORT"
 
 # Add storage type
 CMD="$CMD STORAGE_TYPE=$STORAGE_TYPE"

infrastructure/README.md

@@ -0,0 +1,186 @@
+# Quip MCP Server on AWS Lambda
+
+This project contains the AWS CDK infrastructure code to deploy the quip-mcp-server-typescript project on AWS Lambda with API Gateway.
+
+## Architecture Overview
+
+The architecture consists of the following components:
+
+1. **AWS Lambda Function**: Hosts the Quip MCP server using AWS Lambda Web Adapter to convert API Gateway requests to HTTP requests.
+2. **API Gateway**: Provides the HTTP endpoint for clients to interact with the MCP server.
+3. **S3 Bucket**: Stores the CSV files exported from Quip spreadsheets.
+4. **AWS Secrets Manager**: Stores sensitive information like the Quip API token.
+
+## Architecture Diagram
+
+```mermaid
+flowchart TB
+    Client[Client] -->|HTTP Request| APIGW[API Gateway]
+    APIGW -->|Proxy Request| Lambda[Lambda Function]
+    Lambda -->|Adapter| WebAdapter[AWS Lambda Web Adapter]
+    WebAdapter -->|Forward Request| MCP[Quip MCP Server]
+    MCP -->|Store/Retrieve Files| S3[(S3 Bucket)]
+    MCP -->|Access Quip API| QuipAPI[Quip API]
+    Lambda -->|Get Secrets| SecretsManager[Secrets Manager]
+    
+    subgraph "AWS Cloud"
+        APIGW
+        Lambda
+        WebAdapter
+        MCP
+        S3
+        SecretsManager
+    end
+    
+    subgraph "External"
+        QuipAPI
+        Client
+    end
+```
+
+## Prerequisites
+
+Before deploying this project, you need to have the following:
+
+1. AWS CLI installed and configured with appropriate credentials
+2. Node.js 20.x or later
+3. A Quip API token
+
+## Project Structure
+
+```
+infrastructure/
+├── cdk/                  # CDK project
+│   ├── bin/
+│   │   └── app.ts        # CDK app entry point
+│   ├── lib/
+│   │   └── quip-mcp-server-stack.ts  # Main CDK stack
+│   ├── lambda/           # Lambda function code
+│   │   ├── run.js        # Lambda handler
+│   │   └── package.json
+│   ├── package.json
+│   └── tsconfig.json
+└── README.md
+```
+
+## Deployment Instructions
+
+### 1. Install Dependencies
+
+First, install the dependencies for the CDK project:
+
+```bash
+cd infrastructure/cdk
+npm install
+```
+
+### 2. Bootstrap AWS Environment (First Time Only)
+
+If you haven't used CDK in your AWS account before, you need to bootstrap it:
+
+```bash
+npx cdk bootstrap
+```
+
+### 3. Configure Secrets
+
+Before deploying, you need to create a secret in AWS Secrets Manager with the following values:
+
+- `QUIP_TOKEN`: Your Quip API token
+- `QUIP_BASE_URL`: The base URL for the Quip API (optional, defaults to `https://platform.quip.com/`)
+
+You can create this secret manually in the AWS Console or use the AWS CLI:
+
+```bash
+aws secretsmanager create-secret \
+    --name quip-mcp-server/secrets \
+    --description "Secrets for Quip MCP Server" \
+    --secret-string '{"QUIP_TOKEN":"your-quip-api-token","QUIP_BASE_URL":"your-quip-base-url-if-needed"}'
+```
+
+### 4. Deploy the CDK Stack
+
+Deploy the CDK stack to your AWS account:
+
+```bash
+cd infrastructure/cdk
+npx cdk deploy
+```
+
+This command will:
+1. Synthesize the CloudFormation template
+2. Deploy the stack to your AWS account
+3. Output the API Gateway URL and API Key ID
+
+### 5. Retrieve the API Key
+
+After deployment, you need to retrieve the API key value from AWS Console or using the AWS CLI:
+
+```bash
+aws apigateway get-api-key \
+    --api-key YOUR_API_KEY_ID \
+    --include-value
+```
+
+Replace `YOUR_API_KEY_ID` with the API Key ID from the CDK output.
+
+## Using the Deployed MCP Server
+
+To use the deployed MCP server, you need to:
+
+1. Use the API Gateway URL from the CDK output
+2. Include the API key in the `X-API-Key` header of your requests
+3. Send POST requests to the `/mcp` endpoint
+
+Example:
+
+```bash
+curl -X POST \
+    -H "Content-Type: application/json" \
+    -H "Accept: application/json, text/event-stream" \
+    -H "X-API-Key: YOUR_API_KEY_VALUE" \
+    -d '{
+      "jsonrpc": "2.0",
+      "id": "1",
+      "method": "tools/call",
+      "params": {
+        "name": "quip_read_spreadsheet",
+        "arguments": {
+          "threadId": "YOUR_THREAD_ID"
+        }
+      }
+    }' \
+    https://your-api-gateway-url/mcp
+```
+
+## Monitoring and Troubleshooting
+
+You can monitor your Lambda function and API Gateway using AWS CloudWatch:
+
+1. Lambda logs are available in CloudWatch Logs
+2. API Gateway metrics are available in CloudWatch Metrics
+3. You can set up CloudWatch Alarms for error rates and latency
+
+## Cleanup
+
+To remove all resources created by this CDK stack:
+
+```bash
+cd infrastructure/cdk
+npx cdk destroy
+```
+
+Note: This will not delete the S3 bucket contents or the Secrets Manager secret due to the retention policy. You need to delete them manually if required.
+
+## Security Considerations
+
+1. The API Gateway is protected with an API key
+2. Sensitive information is stored in Secrets Manager
+3. The S3 bucket is encrypted with SSE-S3
+4. The Lambda function has minimal IAM permissions
+
+## Cost Optimization
+
+1. The Lambda function is configured with 1024MB of memory
+2. S3 lifecycle rules delete objects after 180 days
+3. Consider using provisioned concurrency for consistent performance if needed

infrastructure/cdk/.gitignore

@@ -0,0 +1,4 @@
+*.d.ts
+*.js
+!lambda/run.js
+cdk.out/

infrastructure/cdk/bin/app.ts

@@ -0,0 +1,22 @@
+#!/usr/bin/env node
+import 'source-map-support/register';
+import * as cdk from 'aws-cdk-lib';
+import { QuipMcpServerStack } from '../lib/quip-mcp-server-stack';
+
+const app = new cdk.App();
+
+new QuipMcpServerStack(app, 'QuipMcpServerStack', {
+  /* If you don't specify 'env', this stack will be environment-agnostic.
+   * Account/Region-dependent features and context lookups will not work,
+   * but a single synthesized template can be deployed anywhere. */
+
+  /* Uncomment the next line to specialize this stack for the AWS Account
+   * and Region that are implied by the current CLI configuration. */
+  // env: { account: process.env.CDK_DEFAULT_ACCOUNT, region: process.env.CDK_DEFAULT_REGION },
+
+  /* Uncomment the next line if you know exactly what Account and Region you
+   * want to deploy the stack to. */
+  // env: { account: '123456789012', region: 'us-east-1' },
+
+  /* For more information, see https://docs.aws.amazon.com/cdk/latest/guide/environments.html */
+});

infrastructure/cdk/cdk.json

@@ -0,0 +1,21 @@
+{
+  "app": "npx ts-node -P tsconfig.json --prefer-ts-exts bin/app.ts",
+  "output": "cdk.out",
+  "build": "npm run build",
+  "watch": {
+    "include": [
+      "bin/**/*.ts",
+      "lib/**/*.ts"
+    ],
+    "exclude": [
+      "README.md",
+      "cdk*.json",
+      "**/*.d.ts",
+      "**/*.js",
+      "tsconfig.json",
+      "package*.json",
+      "yarn.lock",
+      "node_modules"
+    ]
+  }
+}

infrastructure/cdk/lambda/package.json

@@ -0,0 +1,20 @@
+{
+  "name": "quip-mcp-server-lambda",
+  "version": "1.0.0",
+  "description": "Lambda handler for quip-mcp-server-typescript",
+  "main": "lambda-handler.js",
+  "scripts": {
+    "test": "echo \"Error: no test specified\" && exit 1"
+  },
+  "keywords": [
+    "aws",
+    "lambda",
+    "quip",
+    "mcp"
+  ],
+  "author": "",
+  "license": "ISC",
+  "dependencies": {
+    "@aws-sdk/client-secrets-manager": "^3.806.0"
+  }
+}