headless gmail.com
headless gmail.com logo

Headless Gmail

Enables headless Gmail access by separating credential storage from implementation, allowing clients to complete OAuth f...

Created byApr 22, 2025

MCP Headless Gmail Server

![Docker Pulls](https://img.shields.io/docker/pulls/buryhuang/mcp-headless-gmail) ![License: MIT](https://img.shields.io/badge/License-MIT-yellow.svg)
A MCP (Model Context Protocol) server that provides get, send Gmails without local credential or token setup.

Why MCP Headless Gmail Server?

Critical Advantages

  • Headless & Remote Operation: Unlike other MCP Gmail solutions that require running outside of docker and local file access, this server can run completely headless in remote environments with no browser no local file access.
  • Decoupled Architecture: Any client can complete the OAuth flow independently, then pass credentials as context to this MCP server, creating a complete separation between credential storage and server implementation.

Nice but not critical

  • Focused Functionality: In many use cases, especially for marketing applications, only Gmail access is needed without additional Google services like Calendar, making this focused implementation ideal.
  • Docker-Ready: Designed with containerization in mind for a well-isolated, environment-independent, one-click setup.
  • Reliable Dependencies: Built on the well-maintained google-api-python-client library.

Features

  • Get most recent emails from Gmail with the first 1k characters of the body
  • Get full email body content in 1k chunks using offset parameter
  • Send emails through Gmail
  • Refresh access tokens separately
  • Automatic refresh token handling

Prerequisites

  • Python 3.10 or higher
  • Google API credentials (client ID, client secret, access token, and refresh token)

Installation

Docker

Building the Docker Image

Usage with Claude Desktop

Docker Usage

You can configure Claude Desktop to use the Docker image by adding the following to your Claude configuration:
Note: With this configuration, you'll need to provide your Google API credentials in the tool calls as shown in the Using the Tools section. Gmail credentials are not passed as environment variables to maintain separation between credential storage and server implementation.

Cross-Platform Publishing

To publish the Docker image for multiple platforms, you can use the docker buildx command. Follow these steps:
  1. Create a new builder instance (if you haven't already):
  1. Build and push the image for multiple platforms:
  1. Verify the image is available for the specified platforms:

Usage

The server provides Gmail functionality through MCP tools. Authentication handling is simplified with a dedicated token refresh tool.

Starting the Server

Using the Tools

When using an MCP client like Claude, you have two main ways to handle authentication:

Refreshing Tokens (First Step or When Tokens Expire)

If you have both access and refresh tokens:
If your access token has expired, you can refresh with just the refresh token:
This will return a new access token and its expiration time, which you can use for subsequent calls.

Getting Recent Emails

Retrieves recent emails with the first 1k characters of each email body:
Response includes:
  • Email metadata (id, threadId, from, to, subject, date, etc.)
  • First 1000 characters of the email body
  • body_size_bytes: Total size of the email body in bytes
  • contains_full_body: Boolean indicating if the entire body is included (true) or truncated (false)

Getting Full Email Body Content

For emails with bodies larger than 1k characters, you can retrieve the full content in chunks:
You can also get email content by thread ID:
The response includes:
  • A 1k chunk of the email body starting from the specified offset
  • body_size_bytes: Total size of the email body
  • chunk_size: Size of the returned chunk
  • contains_full_body: Boolean indicating if the chunk contains the remainder of the body
To retrieve the entire email body of a long message, make sequential calls increasing the offset by 1000 each time until contains_full_body is true.

Sending an Email

Token Refresh Workflow

  1. Start by calling the gmail_refresh_token tool with either:
  1. Use the returned new access token for subsequent API calls.
  1. If you get a response indicating token expiration, call the gmail_refresh_token tool again to get a new token.
This approach simplifies most API calls by not requiring client credentials for every operation, while still enabling token refresh when needed.

Obtaining Google API Credentials

To obtain the required Google API credentials, follow these steps:
  1. Go to the Google Cloud Console
  1. Create a new project
  1. Enable the Gmail API
  1. Configure OAuth consent screen
  1. Create OAuth client ID credentials (select "Desktop app" as the application type)
  1. Save the client ID and client secret
  1. Use OAuth 2.0 to obtain access and refresh tokens with the following scopes:

Token Refreshing

This server implements automatic token refreshing. When your access token expires, the Google API client will use the refresh token, client ID, and client secret to obtain a new access token without requiring user intervention.

Security Note

This server requires direct access to your Google API credentials. Always keep your tokens and credentials secure and never share them with untrusted parties.

License

See the LICENSE file for details.

MCP Headless Gmail Server

![Docker Pulls](https://img.shields.io/docker/pulls/buryhuang/mcp-headless-gmail) ![License: MIT](https://img.shields.io/badge/License-MIT-yellow.svg)
A MCP (Model Context Protocol) server that provides get, send Gmails without local credential or token setup.

Why MCP Headless Gmail Server?

Critical Advantages

  • Headless & Remote Operation: Unlike other MCP Gmail solutions that require running outside of docker and local file access, this server can run completely headless in remote environments with no browser no local file access.
  • Decoupled Architecture: Any client can complete the OAuth flow independently, then pass credentials as context to this MCP server, creating a complete separation between credential storage and server implementation.

Nice but not critical

  • Focused Functionality: In many use cases, especially for marketing applications, only Gmail access is needed without additional Google services like Calendar, making this focused implementation ideal.
  • Docker-Ready: Designed with containerization in mind for a well-isolated, environment-independent, one-click setup.
  • Reliable Dependencies: Built on the well-maintained google-api-python-client library.

Features

  • Get most recent emails from Gmail with the first 1k characters of the body
  • Get full email body content in 1k chunks using offset parameter
  • Send emails through Gmail
  • Refresh access tokens separately
  • Automatic refresh token handling

Prerequisites

  • Python 3.10 or higher
  • Google API credentials (client ID, client secret, access token, and refresh token)

Installation

Docker

Building the Docker Image

Usage with Claude Desktop

Docker Usage

You can configure Claude Desktop to use the Docker image by adding the following to your Claude configuration:
Note: With this configuration, you'll need to provide your Google API credentials in the tool calls as shown in the Using the Tools section. Gmail credentials are not passed as environment variables to maintain separation between credential storage and server implementation.

Cross-Platform Publishing

To publish the Docker image for multiple platforms, you can use the docker buildx command. Follow these steps:
  1. Create a new builder instance (if you haven't already):
  1. Build and push the image for multiple platforms:
  1. Verify the image is available for the specified platforms:

Usage

The server provides Gmail functionality through MCP tools. Authentication handling is simplified with a dedicated token refresh tool.

Starting the Server

Using the Tools

When using an MCP client like Claude, you have two main ways to handle authentication:

Refreshing Tokens (First Step or When Tokens Expire)

If you have both access and refresh tokens:
If your access token has expired, you can refresh with just the refresh token:
This will return a new access token and its expiration time, which you can use for subsequent calls.

Getting Recent Emails

Retrieves recent emails with the first 1k characters of each email body:
Response includes:
  • Email metadata (id, threadId, from, to, subject, date, etc.)
  • First 1000 characters of the email body
  • body_size_bytes: Total size of the email body in bytes
  • contains_full_body: Boolean indicating if the entire body is included (true) or truncated (false)

Getting Full Email Body Content

For emails with bodies larger than 1k characters, you can retrieve the full content in chunks:
You can also get email content by thread ID:
The response includes:
  • A 1k chunk of the email body starting from the specified offset
  • body_size_bytes: Total size of the email body
  • chunk_size: Size of the returned chunk
  • contains_full_body: Boolean indicating if the chunk contains the remainder of the body
To retrieve the entire email body of a long message, make sequential calls increasing the offset by 1000 each time until contains_full_body is true.

Sending an Email

Token Refresh Workflow

  1. Start by calling the gmail_refresh_token tool with either:
  1. Use the returned new access token for subsequent API calls.
  1. If you get a response indicating token expiration, call the gmail_refresh_token tool again to get a new token.
This approach simplifies most API calls by not requiring client credentials for every operation, while still enabling token refresh when needed.

Obtaining Google API Credentials

To obtain the required Google API credentials, follow these steps:
  1. Go to the Google Cloud Console
  1. Create a new project
  1. Enable the Gmail API
  1. Configure OAuth consent screen
  1. Create OAuth client ID credentials (select "Desktop app" as the application type)
  1. Save the client ID and client secret
  1. Use OAuth 2.0 to obtain access and refresh tokens with the following scopes:

Token Refreshing

This server implements automatic token refreshing. When your access token expires, the Google API client will use the refresh token, client ID, and client secret to obtain a new access token without requiring user intervention.

Security Note

This server requires direct access to your Google API credentials. Always keep your tokens and credentials secure and never share them with untrusted parties.

License

See the LICENSE file for details.

Related servers

magicslides
magicslides logo

MagicSlides MCP Server

A server that implements the Model Context Protocol (MCP) to generate PowerPoint presentations from text, YouTube videos, or structured JSON data.

A server that implements the Model Context Protocol (MCP) to generate PowerPoint presentations from text, YouTube videos, or structured JSON data.

Zerodha
Zerodha logo

Zerodha MCP Integration

Mcp server to connect with zerodha's kite trade apis

Mcp server to connect with zerodha's kite trade apis

tddt
tddt logo

Stock Info (AKShare)

Provides real-time financial market data from Chinese and global markets through AKShare API integration for traders and...

Provides real-time financial market data from Chinese and global markets through AKShare API integration for traders and...

Aaron Allsbury
Aaron Allsbury logo

QuickBooks Time

Integrates with QuickBooks Time API to provide unified access for managing timesheets, users, projects, and generating r...

Integrates with QuickBooks Time API to provide unified access for managing timesheets, users, projects, and generating r...