fix(mcp): harden OAuth callback recovery#1926
Open
mattzcarey wants to merge 2 commits into
Open
Conversation
🦋 Changeset detectedLatest commit: 7908442 The changes in this PR will be included in the next version bump. This PR includes changesets to release 2 packages
Not sure what this means? Click here to learn what changesets are. Click here if you're a maintainer who wants to add another changeset to this PR |
agents
@cloudflare/ai-chat
@cloudflare/codemode
create-think
hono-agents
@cloudflare/shell
@cloudflare/think
@cloudflare/voice
@cloudflare/worker-bundler
commit: |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
failedaddMcpServer()return live or persisted authorization URLs only while their embedded state is still redeemable; otherwise reconnect to mint a fresh flowWhy
A well-formed callback carrying an unknown state nonce could move an in-flight authorization from
authenticatingtofailed, preventing the genuine callback from completing. An abandoned OAuth flow could also keep returning the same expired authorization URL after its ten-minute state lifetime.Invalid, expired, or already-consumed callbacks now return their error without mutating the active connection. A genuine authorization-server error with a currently redeemable nonce still fails the connection. Calling
addMcpServer()on a stale flow re-enters OAuth using the existing server id and persists the newly minted URL.Review follow-up
errorandcode) verify state before mutating the connectionauthenticatingandfailed)failed; the nextaddMcpServer()call mints a new flowaddMcpServer()recovery. SynchronousgetMcpServers()snapshots do not perform asynchronous state validation on their own; a stale displayed URL is replaced when the application callsaddMcpServer()Validation
pnpm --filter agents exec vitest run src/tests/mcp— 29 files, 538 tests passedpnpm run check— passedIncludes a patch changeset for
agents.