A fully local bridge between your AI agent and your documents — wherever they live. Google Drive, Sheets, Docs, BigQuery, Gmail, Notion, Slack, Telegram, Cloudflare, GitLab.
Tells Claude Code where to find your data and how to access it, without exposing anything to the network. No hosted service, no open ports, no HTTP server. Just a local process talking to Claude over stdio, with credentials locked in your OS secure storage.
Claude Code can't see your private data — Drive files, Notion pages, Slack messages, BigQuery tables. Existing solutions often involve hosted proxies or browser extensions. This is different:
- Fully local — stdio transport, no listening ports, no server to expose
- OS-level credential storage — macOS Keychain, Windows DPAPI, or Linux secret-tool — encrypted at rest, never in config files or env vars
- Direct API calls — your machine talks to Google/Notion/Slack directly, no middleman
- Read-only by default — service accounts and tokens use minimal permissions
What it does:
- Search across all connected sources with one tool call
- Read any document, spreadsheet, page, or chat by ID
- Query BigQuery and Cloudflare D1 with SQL
- Check & send email via Gmail
| Source | Auth method | What you get |
|---|---|---|
| Google Drive | OAuth2 browser flow | Search files, read Docs & Sheets |
| Google Sheets | OAuth2 browser flow | All tabs with headers and data |
| BigQuery | Service Account | SQL queries, explore datasets/tables/schemas |
| Gmail | OAuth2 refresh tokens | Search inbox, read emails, send emails |
| Notion | Integration token | Search pages, read page content |
| Slack | Bot/User token | Search messages, read channel history |
| Telegram | Client API (MTProto) | Search messages, read chats |
| Cloudflare | API token | Zones, Workers, Pages, D1, KV, R2 |
| GitLab | Personal Access Token | Projects, merge requests, issues, diffs |
git clone https://github.com/Zerocreds-com/gated-knowledge.git
cd gated-knowledge
npm installRequires Node.js 22+ (uses native TypeScript via --experimental-strip-types).
node --experimental-strip-types bin/gated-knowledge.ts setupThis writes the MCP config to ~/.claude.json. Restart Claude Code to pick it up.
Pick any source below and run the auth command. You can connect as many as you need.
node --experimental-strip-types bin/gated-knowledge.ts scanBuilds structure.json — an index of all your documents, tables, and channels. This powers the dynamic tool descriptions so Claude knows what data is available.
The server also auto-scans on startup if the structure is stale.
Restart Claude Code. The MCP tools are now available — Claude will call them automatically when you ask about your data.
Zero setup required. Just run:
node --experimental-strip-types bin/gated-knowledge.ts auth googleA browser window opens → sign in with your Google account → done. Credentials are stored permanently in your OS credential store — no re-login needed.
Note: You'll see a "Google hasn't verified this app" warning. This is normal for local CLI tools. Click "Advanced" → "Go to gated-knowledge (unsafe)" to proceed. This is safe: credentials stay on your machine, nothing is sent anywhere except directly to Google APIs.
Multi-account: To add another Google account (e.g. a work account alongside personal):
node --experimental-strip-types bin/gated-knowledge.ts auth google --forceSearch and scan will aggregate across all connected accounts.
Alternative: Service Account (for shared/team drives)
- Create a Google Cloud project (free)
- Enable APIs: Drive, Sheets, Docs — via API Library
- Create a Service Account → Keys tab → Create new key → JSON
- Share your Google Drive folders with the service account email (Viewer access)
node --experimental-strip-types bin/gated-knowledge.ts auth google --service-account ~/Downloads/key.jsonAfter auth, you can delete the key file — it's stored in your OS credential store.
Detailed walkthrough: docs/google-setup.md
Uses a Google service account with Domain-Wide Delegation. Grant it IAM roles:
gcloud projects add-iam-policy-binding YOUR_PROJECT \
--member="serviceAccount:SA_EMAIL" \
--role="roles/bigquery.user"
gcloud projects add-iam-policy-binding YOUR_PROJECT \
--member="serviceAccount:SA_EMAIL" \
--role="roles/bigquery.dataViewer"Enable the API: BigQuery API
Gmail uses OAuth2 with refresh tokens — one-time browser consent, then permanent access. No admin needed, works with personal Gmail and Workspace.
Two separate tokens for least privilege: read-only and send.
- Enable Gmail API
- Create OAuth Client ID → Desktop app → download JSON
- Connect read access:
node --experimental-strip-types bin/gated-knowledge.ts auth gmail --client-secret-file ~/Downloads/client_secret_*.json- (Optional) Connect send access — reuses the same client credentials:
node --experimental-strip-types bin/gated-knowledge.ts auth gmail --sendEach step opens a browser for one-time consent. Refresh tokens stored permanently in your OS credential store.
- Create an integration → copy the token (
ntn_...) - In Notion, share databases/pages with the integration
node --experimental-strip-types bin/gated-knowledge.ts auth notion --token ntn_xxxx- Create a Slack app → From scratch
- OAuth & Permissions → add scopes:
- Bot:
channels:read,channels:history - User (for search):
search:read
- Bot:
- Install to workspace → copy the token
node --experimental-strip-types bin/gated-knowledge.ts auth slack --token xoxb-xxxx- Get
api_idandapi_hashfrom my.telegram.org → API development tools - Run auth (interactive — you'll receive a code via Telegram):
node --experimental-strip-types bin/gated-knowledge.ts auth telegram --api-id 12345 --api-hash abc123- Create an API token with Custom template
- Permissions (all Read): Zone, DNS, Workers Scripts, Pages, D1, Workers KV Storage, R2
node --experimental-strip-types bin/gated-knowledge.ts auth cloudflare --token cf-xxxxWorks with gitlab.com and self-hosted GitLab instances.
- Go to your GitLab → User Settings → Access Tokens (or
/-/user_settings/personal_access_tokens) - Create a token with scopes:
read_api,read_repository
# gitlab.com
node --experimental-strip-types bin/gated-knowledge.ts auth gitlab --token glpat-xxxx
# Self-hosted
node --experimental-strip-types bin/gated-knowledge.ts auth gitlab --token glpat-xxxx --url https://gitlab.example.comClaude can then search and read your projects, merge requests (with full diffs and comments), and issues.
No auth needed. If you have session-snapshot installed, session tools are automatically available.
node --experimental-strip-types bin/gated-knowledge.ts init sessionsOnce connected, Claude Code gets up to 16 tools (depending on connected sources):
| Tool | Description |
|---|---|
search |
Full-text search across all sources, or filter by source |
read_document |
Read a document, spreadsheet, page, channel, or resource by ID |
write_document |
Overwrite content in a Google Doc |
delete_document |
Move a Google Drive file to trash (reversible) |
list_sources |
Show connected sources and all indexed documents |
bigquery_query |
Run SQL against BigQuery, get tab-separated results |
bigquery_explore |
List datasets, tables, schemas, or running jobs |
d1_query |
Run SQL against Cloudflare D1 (SQLite syntax) |
check_email |
Search Gmail inbox, read full emails, find verification codes |
send_email |
Send an email via Gmail (requires auth gmail --send) |
session_list |
List Claude Code sessions from local archive |
session_search |
Full-text search across session content with date filters |
session_stats |
Aggregated statistics: tool usage, files touched, turn counts |
session_summary |
Structured session summaries: goal, files changed, outcome |
auth_status |
Check credential health (live_check=true for API validation) |
auth_fix |
Step-by-step fix instructions for a broken credential |
Tool descriptions are dynamically generated from your scan data — Claude sees exactly what documents, tables, and schemas are available.
Once the MCP is connected, just ask Claude in natural language:
"Find the Q1 marketing report in Drive and summarize it"
"What tables do we have in BigQuery? Show me the schema for the events table"
"Check my email for the verification code from GitHub"
"Search Slack for messages about the deploy issue yesterday"
"Read the project roadmap from Notion"
"Show me the DNS records for example.com on Cloudflare"
"Read my last merge request on GitLab and prepare responses to the review comments"
"Send an email to john@example.com about the meeting tomorrow"
Claude will call the right MCP tools automatically.
| Operation | Time | Details |
|---|---|---|
| MCP server startup | ~2-3s | Loads structure.json, registers tools |
| Scan: Google Drive (100 files) | ~15-20s | Includes metadata enrichment (sheet headers, folder names) |
| Scan: Google Drive (500 files) | ~60-90s | Progress reported to stderr every 200 files |
| Scan: Cloudflare | ~3-5s | All zones, workers, pages, D1, KV, R2 |
| Scan: Sessions (30 sessions) | <1s | Local file listing |
| Search | <1s | Direct API call to each service |
| Read document | <1s | Single API call (spreadsheets may take longer with many tabs) |
| Session stats/summary | <1s | In-memory parsing of MD files |
Connectors are lazy-imported on first call — if you only use Google, Slack connector code is never loaded. Structure is loaded once at startup and cached.
All commands:
gated-knowledge setup # Register MCP in ~/.claude.json
gated-knowledge auth google # Connect Google Drive (OAuth2 browser flow)
gated-knowledge auth google --force # Add another Google account
gated-knowledge auth google --service-account <key.json> # Connect Google Drive (SA, for teams)
gated-knowledge auth notion --token <ntn_xxx> # Connect Notion
gated-knowledge auth slack --token <xoxb-xxx> # Connect Slack
gated-knowledge auth telegram --api-id <N> --api-hash <hash> # Connect Telegram
gated-knowledge auth cloudflare --token <cf-token> # Connect Cloudflare
gated-knowledge auth gitlab --token <pat> [--url <url>] # Connect GitLab (self-hosted or gitlab.com)
gated-knowledge auth gmail --client-secret-file <json> # Connect Gmail read (OAuth2)
gated-knowledge auth gmail --send # Connect Gmail send (reuses client creds)
gated-knowledge auth deepgram --token <api-key> # Enable video/audio transcription
gated-knowledge init sessions # Set up session archiving
gated-knowledge scan # Rebuild document index
gated-knowledge status # Show connections & stats
gated-knowledge search "query" # Test search from terminal
gated-knowledge check-email [query] # Test email from terminal
gated-knowledge deauth <source> # Remove credentialsRun via:
node --experimental-strip-types bin/gated-knowledge.ts <command>┌─────────────────────────────────────────────────────────┐
│ Your machine (everything runs here) │
│ │
│ Claude Code ──stdio──> gated-knowledge (local process) │
│ │ │
│ structure.json (doc index) │
│ OS credentials (Keychain/DPAPI) │
│ │ │
└──────────────────────────────┼──────────────────────────┘
│ HTTPS (outbound only)
▼
Google · Notion · Slack · Telegram · Cloudflare · GitLab
- Auth stores credentials in OS secure storage (base64-encoded for JSON values)
- Scan calls each connector to index documents → saves
structure.json - MCP server loads the structure at startup, generates dynamic tool descriptions
- Search uses native APIs per source (Drive fulltext, Notion search, Slack search, Telegram global search)
- Read fetches full content via the appropriate API
- Connectors are lazy-imported on first call — fast startup even with many sources
No inbound connections. The only network traffic is outbound HTTPS to the services you've connected.
| Path | Purpose |
|---|---|
~/.config/gated-knowledge/config.json |
Enabled sources and settings |
~/.config/gated-knowledge/structure.json |
Scan output (document index, schemas) |
| OS credential store | All credentials (see below) |
~/.claude.json |
MCP server registration |
Credential storage by platform:
- macOS: Keychain Access (
gated-knowledge-*entries) - Windows: DPAPI-encrypted file (
%APPDATA%\gated-knowledge\credentials.json) - Linux: libsecret via
secret-tool
The entire security story is: local process + OS-level credential storage.
- stdio transport — the server is a child process of Claude Code, communicating over stdin/stdout. There is no HTTP server, no open port, nothing reachable from the network
- OS-level credential storage — all credentials (service account keys, OAuth tokens, API tokens) are stored encrypted via macOS Keychain, Windows DPAPI, or Linux secret-tool. Never written to config files or env vars
- Minimal permissions — service accounts use read-only access, Gmail uses separate tokens for read vs. send (least privilege)
- No intermediaries — API calls go directly from your machine to Google/Notion/Slack/etc. No proxy, no hosted backend, no telemetry
- No vector DB, no embeddings — search uses native APIs per service (Drive fulltext, Notion search, Slack search). Nothing is indexed locally beyond a lightweight
structure.jsonwith document names and schemas
- macOS, Windows, or Linux
- Node.js 22+ (native TypeScript support)
- Claude Code (MCP client)
"Google hasn't verified this app" — This is normal for local CLI tools using OAuth2. Click "Advanced" → "Go to gated-knowledge (unsafe)" to proceed. Your credentials stay on your machine and are only sent directly to Google APIs. No data passes through any intermediary.
Credentials broken? — Claude can diagnose and fix them automatically:
- Claude calls
auth_status(live_check=true)to check which credentials are healthy - Claude calls
auth_fix(source="...")to get step-by-step repair instructions - Claude runs the fix command for you
"403 Forbidden" — API not enabled or SA doesn't have access:
- Check API is enabled: APIs & Services
- Check file/folder is shared with the service account email
- For BigQuery: check IAM roles are granted
"Key creation is not allowed" — Org policy blocks SA key creation:
gcloud resource-manager org-policies delete iam.disableServiceAccountKeyCreation --project=YOUR_PROJECT"Token expired" for Gmail — Re-auth with OAuth2:
node --experimental-strip-types bin/gated-knowledge.ts auth gmail --client-secret-file ~/Downloads/client_secret_*.jsonBigQuery "Access Denied" — SA needs project-level roles. See BigQuery setup.
More details: docs/google-setup.md
MIT