apply OAuthClientInformationMixed type

chipgpt · chipgpt · commit 9bda5df6b05a · 2025-10-27T20:46:06.000-05:00
diff --git a/src/client/auth.test.ts b/src/client/auth.test.ts
@@ -1588,8 +1588,7 @@ describe('OAuth Authorization', () => {
             // Mock provider methods for authorization flow
             (mockProvider.clientInformation as jest.Mock).mockResolvedValue({
                 client_id: 'test-client',
-                client_secret: 'test-secret',
-                redirect_uris: ['http://localhost:3000/callback']
+                client_secret: 'test-secret'
             });
             (mockProvider.tokens as jest.Mock).mockResolvedValue(undefined);
             (mockProvider.saveCodeVerifier as jest.Mock).mockResolvedValue(undefined);
@@ -1659,8 +1658,7 @@ describe('OAuth Authorization', () => {
             // Mock provider methods for token exchange
             (mockProvider.clientInformation as jest.Mock).mockResolvedValue({
                 client_id: 'test-client',
-                client_secret: 'test-secret',
-                redirect_uris: ['http://localhost:3000/callback']
+                client_secret: 'test-secret'
             });
             (mockProvider.codeVerifier as jest.Mock).mockResolvedValue('test-verifier');
             (mockProvider.saveTokens as jest.Mock).mockResolvedValue(undefined);
@@ -1726,8 +1724,7 @@ describe('OAuth Authorization', () => {
             // Mock provider methods for token refresh
             (mockProvider.clientInformation as jest.Mock).mockResolvedValue({
                 client_id: 'test-client',
-                client_secret: 'test-secret',
-                redirect_uris: ['http://localhost:3000/callback']
+                client_secret: 'test-secret'
             });
             (mockProvider.tokens as jest.Mock).mockResolvedValue({
                 access_token: 'old-access',
@@ -1793,8 +1790,7 @@ describe('OAuth Authorization', () => {
             // Mock provider methods
             (providerWithCustomValidation.clientInformation as jest.Mock).mockResolvedValue({
                 client_id: 'test-client',
-                client_secret: 'test-secret',
-                redirect_uris: ['http://localhost:3000/callback']
+                client_secret: 'test-secret'
             });
             (providerWithCustomValidation.tokens as jest.Mock).mockResolvedValue(undefined);
             (providerWithCustomValidation.saveCodeVerifier as jest.Mock).mockResolvedValue(undefined);
@@ -1849,8 +1845,7 @@ describe('OAuth Authorization', () => {
             // Mock provider methods
             (mockProvider.clientInformation as jest.Mock).mockResolvedValue({
                 client_id: 'test-client',
-                client_secret: 'test-secret',
-                redirect_uris: ['http://localhost:3000/callback']
+                client_secret: 'test-secret'
             });
             (mockProvider.tokens as jest.Mock).mockResolvedValue(undefined);
             (mockProvider.saveCodeVerifier as jest.Mock).mockResolvedValue(undefined);
@@ -1908,8 +1903,7 @@ describe('OAuth Authorization', () => {
             // Mock provider methods
             (mockProvider.clientInformation as jest.Mock).mockResolvedValue({
                 client_id: 'test-client',
-                client_secret: 'test-secret',
-                redirect_uris: ['http://localhost:3000/callback']
+                client_secret: 'test-secret'
             });
             (mockProvider.tokens as jest.Mock).mockResolvedValue(undefined);
             (mockProvider.saveCodeVerifier as jest.Mock).mockResolvedValue(undefined);
@@ -1976,8 +1970,7 @@ describe('OAuth Authorization', () => {
             // Mock provider methods for token exchange
             (mockProvider.clientInformation as jest.Mock).mockResolvedValue({
                 client_id: 'test-client',
-                client_secret: 'test-secret',
-                redirect_uris: ['http://localhost:3000/callback']
+                client_secret: 'test-secret'
             });
             (mockProvider.codeVerifier as jest.Mock).mockResolvedValue('test-verifier');
             (mockProvider.saveTokens as jest.Mock).mockResolvedValue(undefined);
@@ -2040,8 +2033,7 @@ describe('OAuth Authorization', () => {
             // Mock provider methods for token refresh
             (mockProvider.clientInformation as jest.Mock).mockResolvedValue({
                 client_id: 'test-client',
-                client_secret: 'test-secret',
-                redirect_uris: ['http://localhost:3000/callback']
+                client_secret: 'test-secret'
             });
             (mockProvider.tokens as jest.Mock).mockResolvedValue({
                 access_token: 'old-access',
@@ -2102,8 +2094,7 @@ describe('OAuth Authorization', () => {
             // Mock provider methods
             (mockProvider.clientInformation as jest.Mock).mockResolvedValue({
                 client_id: 'test-client',
-                client_secret: 'test-secret',
-                redirect_uris: ['http://localhost:3000/callback']
+                client_secret: 'test-secret'
             });
             (mockProvider.tokens as jest.Mock).mockResolvedValue(undefined);
             (mockProvider.saveCodeVerifier as jest.Mock).mockResolvedValue(undefined);
@@ -2165,8 +2156,7 @@ describe('OAuth Authorization', () => {
                 },
                 clientInformation: jest.fn().mockResolvedValue({
                     client_id: 'client123',
-                    client_secret: 'secret123',
-                    redirect_uris: ['http://localhost:3000/callback']
+                    client_secret: 'secret123'
                 }),
                 tokens: jest.fn().mockResolvedValue(undefined),
                 saveTokens: jest.fn(),
diff --git a/src/client/auth.ts b/src/client/auth.ts
@@ -2,6 +2,8 @@ import pkceChallenge from 'pkce-challenge';
 import { LATEST_PROTOCOL_VERSION } from '../types.js';
 import {
     OAuthClientMetadata,
+    OAuthClientInformation,
+    OAuthClientInformationMixed,
     OAuthTokens,
     OAuthMetadata,
     OAuthClientInformationFull,
@@ -55,7 +57,7 @@ export interface OAuthClientProvider {
      * server, or returns `undefined` if the client is not registered with the
      * server.
      */
-    clientInformation(): OAuthClientInformationFull | undefined | Promise<OAuthClientInformationFull | undefined>;
+    clientInformation(): OAuthClientInformationMixed | undefined | Promise<OAuthClientInformationMixed | undefined>;
 
     /**
      * If implemented, this permits the OAuth client to dynamically register with
@@ -65,7 +67,7 @@ export interface OAuthClientProvider {
      * This method is not required to be implemented if client information is
      * statically known (e.g., pre-registered).
      */
-    saveClientInformation?(clientInformation: OAuthClientInformationFull): void | Promise<void>;
+    saveClientInformation?(clientInformation: OAuthClientInformationMixed): void | Promise<void>;
 
     /**
      * Loads any existing OAuth tokens for the current session, or returns
@@ -167,7 +169,7 @@ const AUTHORIZATION_CODE_CHALLENGE_METHOD = 'S256';
  * @param supportedMethods - Authentication methods supported by the authorization server
  * @returns The selected authentication method
  */
-function selectClientAuthMethod(clientInformation: OAuthClientInformationFull, supportedMethods: string[]): ClientAuthMethod {
+function selectClientAuthMethod(clientInformation: OAuthClientInformationMixed, supportedMethods: string[]): ClientAuthMethod {
     const hasClientSecret = clientInformation.client_secret !== undefined;
 
     // If server doesn't specify supported methods, use RFC 6749 defaults
@@ -177,6 +179,7 @@ function selectClientAuthMethod(clientInformation: OAuthClientInformationFull, s
 
     // Prefer the method returned by the server during client registration if valid and supported
     if (
+        'token_endpoint_auth_method' in clientInformation &&
         clientInformation.token_endpoint_auth_method &&
         isClientAuthMethod(clientInformation.token_endpoint_auth_method) &&
         supportedMethods.includes(clientInformation.token_endpoint_auth_method)
@@ -217,7 +220,7 @@ function selectClientAuthMethod(clientInformation: OAuthClientInformationFull, s
  */
 function applyClientAuthentication(
     method: ClientAuthMethod,
-    clientInformation: OAuthClientInformationFull,
+    clientInformation: OAuthClientInformation,
     headers: Headers,
     params: URLSearchParams
 ): void {
@@ -805,7 +808,7 @@ export async function startAuthorization(
         resource
     }: {
         metadata?: AuthorizationServerMetadata;
-        clientInformation: OAuthClientInformationFull;
+        clientInformation: OAuthClientInformationMixed;
         redirectUrl: string | URL;
         scope?: string;
         state?: string;
@@ -888,7 +891,7 @@ export async function exchangeAuthorization(
         fetchFn
     }: {
         metadata?: AuthorizationServerMetadata;
-        clientInformation: OAuthClientInformationFull;
+        clientInformation: OAuthClientInformationMixed;
         authorizationCode: string;
         codeVerifier: string;
         redirectUri: string | URL;
@@ -967,7 +970,7 @@ export async function refreshAuthorization(
         fetchFn
     }: {
         metadata?: AuthorizationServerMetadata;
-        clientInformation: OAuthClientInformationFull;
+        clientInformation: OAuthClientInformationMixed;
         refreshToken: string;
         resource?: URL;
         addClientAuthentication?: OAuthClientProvider['addClientAuthentication'];
diff --git a/src/client/sse.test.ts b/src/client/sse.test.ts
@@ -357,8 +357,7 @@ describe('SSEClientTransport', () => {
                 },
                 clientInformation: jest.fn(() => ({
                     client_id: 'test-client-id',
-                    client_secret: 'test-client-secret',
-                    redirect_uris: ['http://localhost/callback']
+                    client_secret: 'test-client-secret'
                 })),
                 tokens: jest.fn(),
                 saveTokens: jest.fn(),
@@ -1163,8 +1162,7 @@ describe('SSEClientTransport', () => {
             const clientInfo = config.clientRegistered
                 ? {
                       client_id: 'test-client-id',
-                      client_secret: 'test-client-secret',
-                      redirect_uris: ['http://localhost/callback']
+                      client_secret: 'test-client-secret'
                   }
                 : undefined;
 
diff --git a/src/client/streamableHttp.test.ts b/src/client/streamableHttp.test.ts
@@ -17,8 +17,7 @@ describe('StreamableHTTPClientTransport', () => {
             },
             clientInformation: jest.fn(() => ({
                 client_id: 'test-client-id',
-                client_secret: 'test-client-secret',
-                redirect_uris: ['http://localhost/callback']
+                client_secret: 'test-client-secret'
             })),
             tokens: jest.fn(),
             saveTokens: jest.fn(),
diff --git a/src/examples/client/simpleOAuthClient.ts b/src/examples/client/simpleOAuthClient.ts
@@ -6,7 +6,7 @@ import { URL } from 'node:url';
 import { exec } from 'node:child_process';
 import { Client } from '../../client/index.js';
 import { StreamableHTTPClientTransport } from '../../client/streamableHttp.js';
-import { OAuthClientInformationFull, OAuthClientMetadata, OAuthTokens } from '../../shared/auth.js';
+import { OAuthClientInformationMixed, OAuthClientMetadata, OAuthTokens } from '../../shared/auth.js';
 import { CallToolRequest, ListToolsRequest, CallToolResultSchema, ListToolsResultSchema } from '../../types.js';
 import { OAuthClientProvider, UnauthorizedError } from '../../client/auth.js';
 
@@ -20,7 +20,7 @@ const CALLBACK_URL = `http://localhost:${CALLBACK_PORT}/callback`;
  * In production, you should persist tokens securely
  */
 class InMemoryOAuthClientProvider implements OAuthClientProvider {
-    private _clientInformation?: OAuthClientInformationFull;
+    private _clientInformation?: OAuthClientInformationMixed;
     private _tokens?: OAuthTokens;
     private _codeVerifier?: string;
 
@@ -46,11 +46,11 @@ class InMemoryOAuthClientProvider implements OAuthClientProvider {
         return this._clientMetadata;
     }
 
-    clientInformation(): OAuthClientInformationFull | undefined {
+    clientInformation(): OAuthClientInformationMixed | undefined {
         return this._clientInformation;
     }
 
-    saveClientInformation(clientInformation: OAuthClientInformationFull): void {
+    saveClientInformation(clientInformation: OAuthClientInformationMixed): void {
         this._clientInformation = clientInformation;
     }
 
diff --git a/src/shared/auth.ts b/src/shared/auth.ts
@@ -226,6 +226,7 @@ export type OAuthErrorResponse = z.infer<typeof OAuthErrorResponseSchema>;
 export type OAuthClientMetadata = z.infer<typeof OAuthClientMetadataSchema>;
 export type OAuthClientInformation = z.infer<typeof OAuthClientInformationSchema>;
 export type OAuthClientInformationFull = z.infer<typeof OAuthClientInformationFullSchema>;
+export type OAuthClientInformationMixed = OAuthClientInformation | OAuthClientInformationFull;
 export type OAuthClientRegistrationError = z.infer<typeof OAuthClientRegistrationErrorSchema>;
 export type OAuthTokenRevocationRequest = z.infer<typeof OAuthTokenRevocationRequestSchema>;
 export type OAuthProtectedResourceMetadata = z.infer<typeof OAuthProtectedResourceMetadataSchema>;
