StifLi Flex MCP
| 开发者 | estebandezafra |
|---|---|
| 更新时间 | 2026年1月7日 17:26 |
| 捐献地址: | 去捐款 |
| PHP版本: | 7.4 及以上 |
| WordPress版本: | 6.9 |
| 版权: | GPLv2 or later |
| 版权网址: | 版权信息 |
详情介绍:
StifLi Flex MCP transforms your WordPress site into a powerful Model Context Protocol (MCP) server, exposing 117 tools that AI agents like ChatGPT, Claude, and LibreChat can use to manage your WordPress and WooCommerce site.
Key Features:
- 55 WordPress tools (posts, pages, comments, media, taxonomies, options)
- 61 WooCommerce tools (products, orders, coupons, shipping, taxes, webhooks)
- JSON-RPC 2.0 compliant REST endpoint
- Server-Sent Events (SSE) support for real-time streaming
- Profile-based tool management (8 predefined profiles + custom profiles)
- WordPress Application Passwords authentication (recommended by WordPress.org)
- Compatible with ChatGPT Custom Connectors, Claude Desktop, LibreChat
- Granular permissions control
- WordPress Read Only - Safe read-only access to WordPress data
- WordPress Full Management - Complete WordPress CRUD operations
- WooCommerce Read Only - Query WooCommerce data without modifications
- WooCommerce Store Management - Full store management capabilities
- Complete E-commerce - All WooCommerce tools including advanced settings
- Complete Site - All 117 tools enabled
- Safe Mode - Non-sensitive read-only access
- Development/Debug - Diagnostic and configuration tools
- Automate content publishing with AI assistants
- Manage WooCommerce stores through conversational interfaces
- Build AI-powered WordPress dashboards
- Create automated workflows for content management
- Enable AI agents to query and modify WordPress data
- WordPress Application Passwords (native WordPress 5.6+ feature)
- HTTP Basic Authentication (industry standard)
- Tool-level capability checks
- Profile-based tool restrictions
安装:
- Upload the
stifli-flex-mcpfolder to/wp-content/plugins/directory - Activate the plugin through the 'Plugins' menu in WordPress
- Go to StifLi Flex MCP → Settings for setup instructions
- Create an Application Password in your WordPress profile (Users → Profile → Application Passwords)
- Use HTTP Basic Authentication with your username and application password
- HTTP JSON-RPC:
https://yoursite.com/wp-json/stifli-flex-mcp/v1/messages - SSE Streaming:
https://yoursite.com/wp-json/stifli-flex-mcp/v1/sse
屏幕截图:
常见问题:
What is MCP?
Model Context Protocol (MCP) is a standard protocol for exposing tools and data to AI agents. This plugin implements an MCP-compatible server for WordPress.
How do I connect ChatGPT?
- Create an Application Password in your WordPress profile (Users → Profile)
- Create a custom connector in ChatGPT
- Use the SSE endpoint URL with HTTP Basic Authentication
- ChatGPT will discover all available tools automatically
Is this safe for production sites?
Yes, when configured properly:
- Uses WordPress Application Passwords (native security feature)
- Each Application Password is tied to a WordPress user with specific permissions
- Use profile-based restrictions (e.g., "WordPress Read Only")
- Review enabled tools in the Tools Management tab
- You can revoke Application Passwords at any time
What permissions do AI agents have?
Permissions are determined by:
- The WordPress user's Application Password used for authentication
- The active profile (which tools are enabled)
- Individual tool capability requirements
Can I customize which tools are available?
Yes! You can:
- Apply predefined profiles
- Manually enable/disable individual tools
- Create custom profiles
- Export/import profile configurations
Does this work with WooCommerce?
Yes! The plugin includes 61 WooCommerce-specific tools. WooCommerce tools will only function when WooCommerce is installed and active.
How do I troubleshoot connection issues?
- Check the Settings tab for test commands
- Test with PowerShell scripts (included in examples/)
- Verify your hosting doesn't block SSE connections
- Check WAF/CDN settings (may block long-lived connections)
- Review debug.log with WP_DEBUG enabled
Can I use this without WooCommerce?
Absolutely! The 55 WordPress tools work independently. WooCommerce tools are optional.
更新日志:
1.0.4
- New: Debug logging system with dedicated log file (wp-content/uploads/sflmcp-logs/)
- New: Logs tab in admin UI to enable/disable logging and view debug logs
- New: Clear logs and refresh functionality from admin panel
- New: "WordPress Full Management" profile now active by default on fresh installs
- Security: Log directory protected with .htaccess and index.php
- Security: Replaced custom token authentication with WordPress Application Passwords
- Security: Removed wp_set_current_user calls for compliance with WordPress.org guidelines
- Removed: User management tools (wp_create_user, wp_update_user, wp_delete_user)
- Removed: Customer management tools (wc_get_customers, wc_create_customer, wc_update_customer, wc_delete_customer)
- Updated: Settings page now guides users to create Application Passwords
- Improved: Authentication uses native WordPress security features
- Initial public release
- 55 WordPress management tools (posts, pages, comments, media, taxonomies, options)
- 61 WooCommerce tools (products, orders, coupons, shipping, taxes, webhooks)
- Profile-based tool management with 8 predefined profiles
- WordPress Application Passwords authentication
- JSON-RPC 2.0 compliant REST API endpoint
- Server-Sent Events (SSE) support for real-time streaming
- Full internationalization support (i18n/l10n ready)
- Granular permission control per tool
- Profile import/export functionality
- Compatible with ChatGPT Custom Connectors, Claude Desktop, LibreChat