jason/google-mcp
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fixerup

Browse Source
This commit is contained in:
Taylor Wilsdon
2025-08-08 19:34:07 -04:00
parent 73d44693aa
commit 34b18b2ca4
2 changed files with 53 additions and 45 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
auth/oauth_common_handlers.py
View File

@@ -228,7 +228,7 @@ async def handle_proxy_token_exchange(request: Request):
async def handle_oauth_protected_resource(request: Request):
"""
Handle OAuth protected resource metadata requests with VS Code compatibility.
Handle OAuth protected resource metadata requests.
"""
origin = request.headers.get("origin")
@@ -242,9 +242,13 @@ async def handle_oauth_protected_resource(request: Request):
config = get_oauth_config()
base_url = config.get_oauth_base_url()
# For streamable-http transport, the MCP server runs at /mcp/
# This is the actual resource being protected
resource_url = f"{base_url}/mcp/"
# Build metadata response per RFC 9449
metadata = {
"resource": base_url, # MUST identify the actual resource server
"resource": resource_url, # The MCP server endpoint that needs protection
"authorization_servers": [base_url], # Our proxy acts as the auth server
"bearer_methods_supported": ["header"],
"scopes_supported": get_current_scopes(),