Build Model Context Protocol servers that scale from a 20‑line stdio prototype to a horizontally scaled, OIDC‑protected streaming HTTP deployment — without rewriting business logic.
Go module: github.com/ggoodman/mcp-server-go
Add to your project:
go get github.com/ggoodman/mcp-server-go@latestBrowse documentation: https://pkg.go.dev/github.com/ggoodman/mcp-server-go
Minimum Go version: as declared in go.mod (currently 1.24). The module follows standard Go module semantic import versioning (no v2 path yet).
Below is a tiny CLI MCP server exposing a single vibe-checking tool. The tool demonstrates using sampling and elicitation. It also shows how a response can be constructed through a http.ResponseWriter-like API.
package main
import (
"context"
"fmt"
"log"
"github.com/ggoodman/mcp-server-go/mcpservice"
"github.com/ggoodman/mcp-server-go/sessions"
"github.com/ggoodman/mcp-server-go/sessions/sampling"
"github.com/ggoodman/mcp-server-go/stdio"
)
// Minimal args: none needed to start the interaction.
type VibeArgs struct{}
type VibePrompt struct {
Phrase string `json:"phrase" jsonschema:"minLength=3,description=How are you feeling?,title=Vibe"`
}
func vibeCheck(ctx context.Context, s sessions.Session, w mcpservice.ToolResponseWriter, r *mcpservice.ToolRequest[VibeArgs]) error {
el, ok := s.GetElicitationCapability()
if !ok {
return fmt.Errorf("elicitation capability not available in this session")
}
var prompt VibePrompt
// Below, the reference to prompt both documents the expected response shape
// and populates it when the user accepts the elicitation.
action, err := el.Elicit(ctx, "What's the vibe?", &prompt)
if err != nil {
return err
}
if action != sessions.ElicitActionAccept {
w.AppendText("the user is not feeling it")
w.SetError(true)
return nil
}
samp, ok := s.GetSamplingCapability()
if !ok {
return fmt.Errorf("sampling capability not available in this session")
}
// Sample host LLM for a single whimsical word (new ergonomic API).
res, err := samp.CreateMessage(ctx,
"Respond with short phrase, capturing the emotional vibe of the submitted message with a touch of whimsy.",
sampling.UserText(prompt.Phrase),
sampling.WithMaxTokens(50),
)
if err != nil {
return err
}
w.AppendBlocks(res.Message.Content.AsContentBlock())
if txt, ok := res.Message.Content.(sampling.Text); ok {
w.AppendText(txt.Text)
}
return nil
}
func main() {
tools := mcpservice.NewToolsContainer(
mcpservice.NewTool("vibe_check", vibeCheck, mcpservice.WithToolDescription("Herein lies the answer when the question is vibe.")),
)
server := mcpservice.NewServer(
mcpservice.WithServerInfo(mcpservice.StaticServerInfo("vibe-check-demo", "0.0.1")),
mcpservice.WithToolsCapability(tools),
mcpservice.WithInstructions(mcpservice.StaticInstructions("Your finger is on the pulse of the inter-webs. You can feel it. You can help others feel it too.")),
)
h := stdio.NewHandler(server)
if err := h.Serve(context.Background()); err != nil {
log.Fatal(err)
}
}Upgrade path: swap the transport + host; your server value is unchanged and you layer in authorization.
Below is an end‑to‑end sketch showing how you take the earlier stdio server and run it behind the streaming HTTP transport with:
- A distributed session host (Redis) for fan‑out + durability.
- OIDC discovery (single line) OR a manual static JWT config (offline / air‑gapped environments).
- Automatic well‑known metadata advertisement (protected resource + authorization server mirrors) sourced solely from one
auth.SecurityConfig.
// (Sketch – not a full program)
ctx := context.Background()
// 1. Construct (or reuse) your MCP server capabilities (same as stdio)
server := buildServer() // from earlier snippet
// 2. Pick a SessionHost implementation (memory for single node; redis for scale)
host, _ := redishost.New(os.Getenv("REDIS_ADDR"))
publicEndpoint := "https://mcp.example.com/mcp" // the full public URL path clients will call
issuer := "https://issuer.example" // your OIDC issuer
// 3a. Discovery-based auth (recommended when you control / trust the AS metadata)
authn, _ := auth.NewFromDiscovery(ctx, issuer, publicEndpoint)
// 3b. OR manual static JWT validation (no discovery). You MUST supply advertisement fields explicitly.
// jwksURL := "https://issuer.example/jwks.json"
// sec := auth.SecurityConfig{
// Issuer: issuer,
// Audiences: []string{publicEndpoint},
// JWKSURL: jwksURL,
// Advertise: true, // serve well-known endpoints
// OIDC: &auth.OIDCExtra{ // ONLY fields you populate here will be advertised.
// ResponseTypesSupported: []string{"code"}, // required by our strict policy (discovery would have enforced)
// },
// }
// sec.Normalize()
// authn, _ := sec.NewManualJWTAuthenticator(ctx)
// 4. Create transport. If an authenticator implements auth.SecurityDescriptor the handler
// derives the SecurityConfig from it; you can also pass a SecurityConfig explicitly via option.
httpHandler, _ := streaminghttp.New(
ctx,
publicEndpoint,
host,
server,
authn,
streaminghttp.WithServerName("reverse-prod"),
)
http.Handle("/mcp", httpHandler)Key points:
- One source of truth:
auth.SecurityConfig(exposed by the authenticator or provided directly) feeds all advertisement (no duplicated issuer/audience/JWKS in transport options). - Discovery path: strict validation — fails fast if required metadata (
jwks_uri,authorization_endpoint,token_endpoint,response_types_supported) is missing so clients get a complete picture. - Manual path: you control exactly what is advertised; nothing is synthesized. If you want clients to know supported response or grant types you must set the corresponding slices in
OIDCExtra. - Horizontal scale requires only swapping the session host; capability logic is untouched.
At initialization the client sends its ClientCapabilities; the server responds with ServerCapabilities. Each negotiated capability unlocks a method set (see mcp/messages.go). Server implementations choose between:
- Containers (static sets) – simple, mutation helpers, built‑in pagination and change notifications.
- Provider funcs (dynamic) – per session logic (return (cap, ok, err)).
Each capability is configured by a single With*Capability option that accepts a provider:
- Pass a container (e.g.
NewToolsContainer) directly – containers self‑implement the provider. - Or pass an
XCapabilityProviderFuncfor per‑session logic.
The streaming HTTP transport now derives all advertised security metadata from a single auth.SecurityConfig exposed by the authenticator (it implements auth.SecurityDescriptor) or provided explicitly via streaminghttp.WithSecurityConfig.
Typical pattern:
authn, _ := auth.NewFromDiscovery(ctx, issuerURL, publicURL)
handler, _ := streaminghttp.New(ctx, publicURL, host, server, authn)If the resolved SecurityConfig.Advertise is true, the handler automatically:
- Serves Protected Resource Metadata (
/.well-known/oauth-protected-resource<endpoint-path>) - Mirrors Authorization Server Metadata (
/.well-known/oauth-authorization-server) - Emits
WWW-Authenticateheaders pointing at the resource metadata on auth failures
To override or supply metadata without discovery (e.g. offline environments) pass:
streaminghttp.WithSecurityConfig(auth.SecurityConfig{Issuer: issuerURL, Audiences: []string{"my-aud"}, JWKSURL: jwksURL, Advertise: true})No more duplicated issuer/audience across transport options—one source of truth.
Every capability is configured via exactly one option: WithResourcesCapability, WithToolsCapability, WithPromptsCapability, WithLoggingCapability, etc. Each option takes a provider – something implementing the corresponding XCapabilityProvider interface.
Three ergonomic patterns:
- Static constant: use the
StaticXhelpers, e.g.WithProtocolVersion(StaticProtocolVersion("2025-06-18"))orWithServerInfo(StaticServerInfo("name", "version", WithServerInfoTitle("Nice Title"))). - Self-providing container: pass a container directly.
NewToolsContainer(...)andNewResourcesContainer(...)implement both the capability and its provider; just doWithToolsCapability(tools). - Per-session dynamic logic: provide an
XCapabilityProviderFuncclosure. It receives context + session and can return a tailored capability (orok=falseto omit it for that session).
Return (value, ok=true, nil) to advertise a capability even if its list is empty. Return ok=false to omit that capability altogether.
ListChanged notifications are emitted when underlying containers signal a change (e.g. Replace / ReplaceResources). This works uniformly for static containers and dynamic implementations.
Prefer dynamic? Provide an XCapabilityProviderFunc closure when constructing the server.
Collect user input mid-tool without designing a new schema manually. Below a tool elicits a favorite snack then responds with two content blocks.
tool := mcpservice.NewTool[struct{}]("snack_oracle", func(ctx context.Context, s sessions.Session, w mcpservice.ToolResponseWriter, r *mcpservice.ToolRequest[struct{}]) error {
if el, ok := s.GetElicitationCapability(); ok {
type Snack struct { Name string `json:"name" jsonschema:"minLength=2,description=Favorite snack"` }
var sn Snack
dec := elicitation.BindStruct(&sn)
action, err := el.Elicit(ctx, "What snack fuels your coding?", dec)
if err != nil || action != sessions.ElicitActionAccept { return nil } // minimal handling
_ = w.AppendText("Crunching the data...")
_ = w.AppendBlocks(mcp.ContentBlock{Type: mcp.ContentTypeText, Text: "Consensus: " + sn.Name + " increases bug-free LOC by 0%. Delicious anyway."})
return nil
}
_ = w.AppendText("Client can't elicit. Falling back to generic advice: hydrate.")
return nil
}, mcpservice.WithToolDescription("Politely asks for your favorite snack."))Add it next to your other tools in a container; structured schema is auto-reflected.
After initialization you work with a sessions.Session value that exposes optional per-session capabilities negotiated during the handshake. These sit alongside the server capability interfaces and let you bridge user workflows that require client cooperation (sampling, roots, elicitation) while keeping domain logic cohesive.
Session (excerpt):
type Session interface {
SessionID() string
UserID() string
ProtocolVersion() string
GetSamplingCapability() (cap SamplingCapability, ok bool)
GetRootsCapability() (cap RootsCapability, ok bool)
GetElicitationCapability() (cap ElicitationCapability, ok bool)
}Pattern: fetch capability → if present call → honor context cancellation.
Use when you need the client (or host application) to produce a model-generated message given prior exchange context.
if samp, ok := sess.GetSamplingCapability(); ok {
res, err := samp.CreateMessage(
ctx,
"Be concise", // system prompt
sampling.UserText("Summarize current plan"), // user message
sampling.WithMaxTokens(256),
)
if err != nil { return err }
// The returned assistant message is in res.Message
if txt, ok := res.Message.Content.(sampling.Text); ok {
log.Printf("model=%s reply=%s", res.Model, txt.Text)
}
}Guidelines:
- Keep requests minimal; let client/host append its own context.
- Validate with
sampling.ValidateCreateMessagein development to catch mistakes early. - Treat absence (
ok == false) as “feature not negotiated” and degrade gracefully.
Represents a logical workspace hierarchy (e.g. project roots / mount points) the client can surface. Use for enumerating base folders before listing resources from another subsystem or external index.
if rootsCap, ok := sess.GetRootsCapability(); ok {
roots, err := rootsCap.ListRoots(ctx)
if err != nil { return err }
for _, r := range roots.Roots {
log.Printf("root: %s (%s)", r.URI, r.Name)
}
// Optional: register change listener if supported
_, _ = rootsCap.RegisterRootsListChangedListener(ctx, func(lctx context.Context) error {
updated, err := rootsCap.ListRoots(lctx)
if err == nil {
log.Printf("roots changed: %d", len(updated.Roots))
}
return nil // keep listening
})
}Listener semantics: returning an error stops delivery; returning nil keeps the registration active (implementation may re-call on change events).
Collect structured user input (with validation) mid-flight without inventing ad-hoc tool schemas for every prompt.
if el, ok := sess.GetElicitationCapability(); ok {
type Input struct {
Name string `json:"name" jsonschema:"minLength=1,description=Your name"`
}
var in Input
// Bind struct into a decoder
dec := elicitation.BindStruct(&in) // (builder constructs schema + decoder)
action, err := el.Elicit(ctx, "Who are you?", dec, sessions.WithStrictKeys())
if err != nil { return err }
if action != sessions.ElicitActionAccept { /* user declined or cancelled */ return nil }
log.Printf("user identified as %s", in.Name)
}Options:
sessions.WithStrictKeys()– reject unexpected properties.sessions.WithRawCapture(&m)– capture raw map for auditing or secondary parsing.
Best practices:
- Fail fast on schema reflection errors before issuing Elicit calls.
- Keep elicitation schemas shallow (current implementation rejects nested objects/arrays for simplicity/performance).
- Treat non-accept actions as soft negative signals — do not log as errors.
res := []mcp.Resource{{URI: "file:///README.md", Name: "readme"}}
contents := map[string][]mcp.ResourceContents{
"file:///README.md": {{Contents: []mcp.ContentBlock{{Type: "text", Text: "hello"}}}},
}
rc := mcpservice.NewResourcesContainer(res, nil, contents)
server := mcpservice.NewServer(mcpservice.WithResourcesCapability(rc))Resource subscriptions & change notifications are bridged automatically when the transport and client both advertise support.
You can combine containers for straightforward domains and dynamic providers where session‑aware filtering or expensive lazy construction is needed. Each With*Capability sets a static implementation; the corresponding With*Provider overrides it if both are supplied.
Client initialization request (initialize) includes:
Server decides preferred protocol (GetPreferredProtocolVersion) and optionally returns human instructions. The negotiated server capabilities then govern which MCP methods are valid for the session. If you omit a capability (e.g. tools) the transport simply rejects those method calls up front — your code never sees them.
Long running tool calls can emit notifications/progress (server -> client) and clients can cancel by sending notifications/cancelled. The engine mediates this for you; just pay attention to ctx.Done() inside handlers.
Use sessions/sampling for constructing user / assistant / system messages with exactly one content block (e.g. UserText("hello")). Invoke SamplingCapability.CreateMessage with the system prompt, the current user message, and option helpers (e.g. sessions.WithMaxTokens). The elicitation package provides a reflective schema-driven workflow for gathering structured user input mid-tool.
SessionHost is the persistence + messaging abstraction the engine uses (see sessions/host.go). It unifies:
- Ordered, resumable per‑session outbound stream (
PublishSession/SubscribeSession). - Internal pub/sub topics (
PublishEvent/SubscribeEvents) for cross‑node coordination. - Session metadata lifecycle (create / mutate / touch / delete).
- Per‑session bounded key/value store.
Reference implementations:
| Package | Characteristics | When to Use |
|---|---|---|
sessions/memoryhost |
In‑memory, ephemeral, zero deps | Tests, prototyping, stdio, single-node |
sessions/redishost |
Durable metadata + streams via Redis | Streaming HTTP, multi-node, need fan-out |
Implement your own by satisfying sessions.SessionHost. Focus areas:
- At‑least‑once delivery for session stream (client handles idempotency).
- Minimal latency for publish + subscribe paths.
- Safe concurrent access (multiple engines / transports may share host).
flowchart LR
Client -- JSON-RPC (stdio / SSE over HTTP) --> Transport
subgraph ServerProcess
Transport --> Engine
Engine --> Capabilities[Server Capabilities Impl]
Engine --> Host[(SessionHost)]
Capabilities <--> Host
end
Host -. horizontal scale .- HostReplica[(SessionHost on another node)]
- Transport (stdio or streaming HTTP) performs framing + auth (HTTP mode) and session header validation.
- Engine owns the session handshake, capability discovery, dispatch, fan‑out of subscription notifications, progress + cancellation bridging.
- Capabilities implement domain logic (tools, resources, prompts…). They stay ignorant of transport and persistence details.
SessionHostprovides ordered event streams + metadata durability; swapping it changes scaling characteristics without touching capability logic.
Key property: A single logical pipeline of JSON‑RPC messages flows through transport → engine → capability and back. Horizontal scaling comes from making the host and engine stateless aside from what is persisted in SessionHost.
| Phase | Transport | Host | Auth | Notes |
|---|---|---|---|---|
| Proto | stdio |
memoryhost |
none | 0 infra, fastest iteration |
| Pilot | streaming HTTP | memoryhost (single pod) |
OIDC (optional) | Introduce real clients, measure |
| Scale | streaming HTTP (multi) | redishost |
OIDC + scopes | Add observability, autoscale |
| Custom | streaming HTTP | your host | OIDC + custom claims | Special persistence / tenancy |
- Capability interfaces isolate protocol surface; containers reduce boilerplate for static cases.
- Functional options allow mixing static and dynamic providers without config structs.
- At‑least‑once delivery chosen over exactly-once to avoid distributed consensus complexity; handlers must be idempotent.
- Separation of concerns: transport handles framing & auth; engine handles protocol flow; capabilities handle business data; host handles durability & fan-out.
- Structured logging adapter examples.
- Additional host implementations (SQL / S3 hybrid, memory+lru shard, etc.).
- Metrics hooks (per method latency, subscription churn).
- Richer prompt templating helpers.
Contributions welcome — see CONTRIBUTING.md.
Q: Do I need Redis to start? No — stdio + memory host gets you running instantly.
Q: How do I add authentication? Call auth.NewFromDiscovery(ctx, issuerURL, publicURL) (issuer + audience are required positional args) then pass the authenticator to streaminghttp.New.
Q: How do I emit progress? The tool writer returned by NewTool* supports _ = w.Progress(fraction). Honor context cancellation to be well-behaved.
Q: Are method names stable? Protocol revision tags define stability; this SDK tracks the spec revision you compile against.
MIT – see LICENSE.
Feedback, missing ergonomics, or sharp edges? Open an issue with a focused description; API changes are still on the table before 1.0.
{ "protocolVersion": "2025-06-18", // example "capabilities": { /* client capability bits */ }, "clientInfo": {"name":"my-client","version":"1.2.3"} }