MCP security risk: Excessive permisisons - OAuth Tutorial

Contents

• Introduction Introduction

  • Why MCP changes everything

    1m 7s
• 1. MCP: The Model Context Protocol 1. MCP: The Model Context Protocol

  • Understanding what MCP means

    3m 8s
  • The problem MCP solves

    3m 24s
  • MCP's revolutionary approach

    5m 5s
  • Real-world examples of MCP in Claude

    6m 38s
  • Safety concerns and safe usage of MCP

    7m 24s
  • (Locked)
    Why MCP makes automation easier

    3m 25s
• 2. Building an MCP Server 2. Building an MCP Server

  • (Locked)
    How to build your own MCP server

    1m 36s
  • (Locked)
    Setting up your MCP development environment

    1m 25s
  • (Locked)
    SDKs and setup

    1m 31s
  • (Locked)
    Installing and using UV

    2m 19s
  • (Locked)
    Running an MCP server locally

    2m 33s
  • (Locked)
    Using the MCP Inspector

    3m 6s
  • (Locked)
    Testing an MCP server in VS Code

    3m 50s
  • (Locked)
    Using Resources and Prompts

    1m 18s
  • (Locked)
    Building an MCP server from a template

    6m 14s
  • (Locked)
    Writing tools, resources, and prompts

    7m 37s
  • (Locked)
    Testing your MCP server

    4m 31s
  • (Locked)
    Using an MCP server in Claude Desktop

    3m 42s
  • (Locked)
    Customizing your MCP server to fit your needs

    1m 22s
  • (Locked)
    Extending your MCP server with GitHub Copilot

    1m 54s
• 3. MCP Elicitation and Sampling 3. MCP Elicitation and Sampling

  • (Locked)
    Elicitation and sampling: The bleeding edge of MCP

    1m 35s
  • (Locked)
    Understanding MCP elicitation

    3m 15s
  • (Locked)
    Why and when elicitation is useful

    2m 26s
  • (Locked)
    Demo: MCP elicitation in VS Code

    3m 58s
  • (Locked)
    Why elecitiation matters

    1m 18s
  • (Locked)
    MCP elicitation in code

    3m 38s
  • (Locked)
    Testing a new MCP elicitation

    4m 15s
  • (Locked)
    MCP sampling: The server uses AI tools

    4m 53s
  • (Locked)
    Demo: MCP sampling in VS Code

    3m 5s
  • (Locked)
    Innovating with elicitation and sampling

    1m 37s
• 4. MCP Authorization and Security 4. MCP Authorization and Security

  • (Locked)
    Why authorization and security matter

    1m 53s
  • (Locked)
    The MCP authorization spec

    4m 23s
  • (Locked)
    Implementing MCP authorization

    2m 44s
  • (Locked)
    The MCP OAuth 2.0 flow visualized

    4m 22s
  • (Locked)
    Best-practices for MCP authorization

    5m 8s
  • (Locked)
    Options for MCP authorization

    5m 32s
  • (Locked)
    MCP and security

    46s
  • (Locked)
    MCP security risk: Vibe coding

    2m 26s
  • (Locked)
    MCP security risk: Excessive permisisons

    3m 20s
  • (Locked)
    MCP security risk: Agent error

    1m 53s
  • (Locked)
    MCP security risk: Prompt injection

    2m 29s
  • (Locked)
    MCP security risk: Confused deputy

    1m 42s
  • (Locked)
    MCP security risk: Session hijacking

    1m 16s
  • (Locked)
    Authorization and security are job #1

    2m 3s
• 5. Deploying Remote MCP Servers with OAuth 5. Deploying Remote MCP Servers with OAuth

  • (Locked)
    Why remote MCP servers are so useful

    1m 11s
  • (Locked)
    Deploying a rempote MCP server on Cloudflare Workers

    1m 21s
  • (Locked)
    Testing a remote MCP server

    5m 5s
  • (Locked)
    Adding tools and updating a remote MCP server

    3m 42s
  • (Locked)
    Implementing GitHub OAuth 2.0 in a remote MCP server

    5m 3s
  • (Locked)
    Testing MCP OAuth in local development

    4m 11s
  • (Locked)
    Setting up MCP OAuth on Cloudflare

    4m 35s
  • (Locked)
    Testing a remote MCP server with OAuth

    5m 39s
• Conclusion Conclusion

  • (Locked)
    Build MCP servers and pave the cowpaths of agentic AI

    1m 36s