[Server] Oauth2 based on middleware#221
Conversation
sveneld
requested review from
CodeWithKyrian,
Nyholm and
chr-hertel
as code owners
|
Thanks @sveneld - it will take some time for me to give some proper feedback here, just to let you know - needs quite some focus & attention - still really appreciated! |
chr-hertel
changed the title
chr-hertel
added
Server
chr-hertel
left a comment
chr-hertel
left a comment
There was a problem hiding this comment.
Hi again @sveneld! This is great already - went to a first round of very detailed review directly. Thanks again for working on this! 🙏
Didn't manage to go through all, but dropping the first round of comments.
|
@chr-hertel I updated pull request |
|
Can you please rebase this now when the Middleware Handler is merged? |
sveneld
force-pushed
the
oauth_middleware
branch
from
84ad698 to
9d801c9
Compare
Signed-off-by: Volodymyr Panivko <sveneld300@gmail.com>
sveneld
force-pushed
the
oauth_middleware
branch
from
9d801c9 to
eb2a422
Compare
Done. |
Nyholm
left a comment
Nyholm
left a comment
There was a problem hiding this comment.
Great. Looks good.
I only have small things to comment at. I have not tested it out.
|
I have updated the pull request, but I am not satisfied with the result. I need more time to rethink the flow and improve the implementation. |
|
@sveneld anything in particular you would need feedback here? |
|
Thank you, no feedback needed. |
|
@chr-hertel take a look. |
…nversion Signed-off-by: Volodymyr Panivko <sveneld300@gmail.com>
@sveneld will do so this weekend - thanks! 👍 |
chr-hertel
left a comment
chr-hertel
left a comment
There was a problem hiding this comment.
Hi @sveneld, getting into polishing here I feel - thanks again for your work! Pretty sure i missed some parts, but you get the overall vibe of my review i guess.
Could you as well add some docs, especially what users would need to enable this feature? or could be a follow up PR if you like
chr-hertel
added
the
needs more work
…into oauth_middleware # Conflicts: # composer.json # examples/server/oauth-keycloak/Dockerfile # examples/server/oauth-keycloak/McpElements.php # examples/server/oauth-keycloak/README.md # examples/server/oauth-keycloak/docker-compose.yml # examples/server/oauth-keycloak/server.php # examples/server/oauth-microsoft/Dockerfile # examples/server/oauth-microsoft/McpElements.php # examples/server/oauth-microsoft/README.md # examples/server/oauth-microsoft/docker-compose.yml # examples/server/oauth-microsoft/server.php # src/Server/Transport/StreamableHttpTransport.php
|
@chr-hertel I’ve updated the pull request. If everything looks good, I’ll rebase and squash the commits. |
|
@chr-hertel should i change something else? |
|
@sveneld can you please double check the diff - feels a bit bloated, see |
Remove old Mcp\Server\Transport\Middleware\ classes that were duplicated in Mcp\Server\Transport\Http\Middleware\ and Http\OAuth\. Update docs to reference the correct namespaces.
|
@chr-hertel I reviewed the diff — you were right, the Removed the duplicate namespace and updated the docs accordingly. The diff should be clean now. |
…add JSON_THROW_ON_ERROR - JwtTokenValidator: replace catch(\Throwable) with explicit \InvalidArgumentException|\UnexpectedValueException|\DomainException, letting RuntimeException from JwksProvider propagate as infrastructure errors - OAuthProxyMiddleware: add \JSON_THROW_ON_ERROR to json_encode for metadata response - Update tests to expect RuntimeException for JWKS infrastructure failures
chr-hertel
left a comment
chr-hertel
left a comment
There was a problem hiding this comment.
Thanks a ton @sveneld - I know it really took some effort and loops with all those changes! Thanks for your patience and endurance! 🥳
3 participants
Motivation and Context
Implementation of OAuth based on middlewares from #218
How Has This Been Tested?
Breaking Changes
Types of changes
Checklist
Additional context
Fix #214