UNPKG

@modelcontextprotocol/sdk

Version:

Model Context Protocol implementation for TypeScript

modelcontextprotocol.io

modelcontextprotocol/typescript-sdk

45 lines 1.88 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
import * as z from 'zod/v4'; import { InvalidRequestError, InvalidClientError, ServerError, OAuthError } from '../errors.js'; const ClientAuthenticatedRequestSchema = z.object({ client_id: z.string(), client_secret: z.string().optional() }); export function authenticateClient({ clientsStore }) { return async (req, res, next) => { try { const result = ClientAuthenticatedRequestSchema.safeParse(req.body); if (!result.success) { throw new InvalidRequestError(String(result.error)); } const { client_id, client_secret } = result.data; const client = await clientsStore.getClient(client_id); if (!client) { throw new InvalidClientError('Invalid client_id'); } if (client.client_secret) { if (!client_secret) { throw new InvalidClientError('Client secret is required'); } if (client.client_secret !== client_secret) { throw new InvalidClientError('Invalid client_secret'); } if (client.client_secret_expires_at && client.client_secret_expires_at < Math.floor(Date.now() / 1000)) { throw new InvalidClientError('Client secret has expired'); } } req.client = client; next(); } catch (error) { if (error instanceof OAuthError) { const status = error instanceof ServerError ? 500 : 400; res.status(status).json(error.toResponseObject()); } else { const serverError = new ServerError('Internal Server Error'); res.status(500).json(serverError.toResponseObject()); } } }; } //# sourceMappingURL=clientAuth.js.map