mirror of
https://github.com/mauriceboe/TREK.git
synced 2026-06-23 07:11:46 +00:00
Julien G.
de6c0fb781
* fix: prevent Invalid URL crash when APP_URL lacks a protocol (issue #970) - Add getMcpSafeUrl() to notifications.ts: wraps getAppUrl() and guarantees a result that satisfies the MCP SDK's checkIssuerUrl requirement (https:// or http://localhost). Non-HTTPS, non-localhost URLs fall back to http://localhost:{PORT} instead of propagating an "Issuer URL must be HTTPS" error. - Switch app.ts, mcp/index.ts, mcp/oauthProvider.ts, and oauthService.ts to import getMcpSafeUrl instead of getAppUrl for all MCP resource URL construction, so a misconfigured APP_URL never crashes the metadata router initialisation. - Restrict the SDK metadata router middleware to /.well-known/* paths only. Previously it was invoked on every request; in production the lazy getMetaRouter() init ran on GET / and threw "Invalid URL" when APP_URL had no scheme, returning 500 for every page load. - Log a startup warning when APP_URL is set but not usable, and include the resolved App URL in the startup banner so operators can confirm the correct value at a glance. - Update oauth.test.ts mock to target notifications.getMcpSafeUrl. * fix: show getAppUrl in banner and add two separate APP_URL startup checks - Banner now displays getAppUrl() (the resolved app URL) rather than getMcpSafeUrl() so operators see the actual configured value - Two independent startup warnings after the banner when APP_URL is set: 1. whether APP_URL is a valid URL (parseable by new URL()) 2. whether APP_URL is MCP-safe (https:// or http://localhost) - Fix getMcpSafeUrl() fallback port to use Number(PORT) || 3001, consistent with how index.ts parses PORT * fix: update oidc.ts to import getAppUrl from notifications
220 lines
9.6 KiB
TypeScript
220 lines
9.6 KiB
TypeScript
import type { Response } from 'express';
|
|
import type { OAuthServerProvider } from '@modelcontextprotocol/sdk/server/auth/provider';
|
|
import type { OAuthClientInformationFull, OAuthTokenRevocationRequest, OAuthTokens } from '@modelcontextprotocol/sdk/shared/auth';
|
|
import type { AuthInfo } from '@modelcontextprotocol/sdk/server/auth/types';
|
|
import type { AuthorizationParams } from '@modelcontextprotocol/sdk/server/auth/provider';
|
|
import type { OAuthRegisteredClientsStore } from '@modelcontextprotocol/sdk/server/auth/clients';
|
|
import { InvalidClientMetadataError, ServerError } from '@modelcontextprotocol/sdk/server/auth/errors';
|
|
import { db } from '../db/database';
|
|
import {
|
|
createOAuthClient,
|
|
consumeAuthCode,
|
|
issueTokens,
|
|
refreshTokens,
|
|
revokeToken as serviceRevokeToken,
|
|
verifyPKCE,
|
|
getUserByAccessToken,
|
|
} from '../services/oauthService';
|
|
import { ALL_SCOPES } from './scopes';
|
|
import { getMcpSafeUrl } from '../services/notifications';
|
|
import { writeAudit } from '../services/auditLog';
|
|
|
|
// ---------------------------------------------------------------------------
|
|
// DB row type (mirrors oauthService.ts)
|
|
// ---------------------------------------------------------------------------
|
|
|
|
interface OAuthClientRow {
|
|
client_id: string;
|
|
name: string;
|
|
redirect_uris: string; // JSON array
|
|
allowed_scopes: string; // JSON array
|
|
is_public: number; // 0 | 1
|
|
created_via: string;
|
|
}
|
|
|
|
// ---------------------------------------------------------------------------
|
|
// Redirect URI validation (mirrors oauth.ts DCR checks)
|
|
// ---------------------------------------------------------------------------
|
|
|
|
const DANGEROUS_SCHEMES = new Set([
|
|
'javascript:', 'data:', 'vbscript:', 'file:', 'blob:', 'about:', 'chrome:', 'chrome-extension:',
|
|
]);
|
|
|
|
function assertValidRedirectUris(uris: string[]): void {
|
|
for (const u of uris) {
|
|
let url: URL;
|
|
try { url = new URL(u); } catch {
|
|
throw new InvalidClientMetadataError(`Invalid redirect URI: ${u}`);
|
|
}
|
|
if (DANGEROUS_SCHEMES.has(url.protocol))
|
|
throw new InvalidClientMetadataError(`Dangerous redirect URI scheme: ${u}`);
|
|
if (url.protocol === 'https:') continue;
|
|
if (url.protocol === 'http:' && (url.hostname === 'localhost' || url.hostname === '127.0.0.1' || url.hostname === '[::1]')) continue;
|
|
const scheme = url.protocol.slice(0, -1);
|
|
if (/^[a-z][a-z0-9+.-]*$/i.test(scheme) && scheme.includes('.')) continue;
|
|
throw new InvalidClientMetadataError('redirect_uris must be HTTPS, loopback HTTP, or a private custom scheme');
|
|
}
|
|
}
|
|
|
|
// ---------------------------------------------------------------------------
|
|
// Row → SDK client info shape
|
|
// ---------------------------------------------------------------------------
|
|
|
|
function rowToInfo(row: OAuthClientRow): OAuthClientInformationFull {
|
|
return {
|
|
client_id: row.client_id,
|
|
client_name: row.name,
|
|
redirect_uris: JSON.parse(row.redirect_uris) as string[],
|
|
scope: (JSON.parse(row.allowed_scopes) as string[]).join(' '),
|
|
token_endpoint_auth_method: row.is_public ? 'none' : 'client_secret_post',
|
|
grant_types: ['authorization_code', 'refresh_token'],
|
|
response_types: ['code'],
|
|
};
|
|
}
|
|
|
|
// ---------------------------------------------------------------------------
|
|
// Clients store
|
|
// ---------------------------------------------------------------------------
|
|
|
|
export const trekClientsStore: OAuthRegisteredClientsStore = {
|
|
async getClient(clientId: string): Promise<OAuthClientInformationFull | undefined> {
|
|
const row = db.prepare(
|
|
'SELECT client_id, name, redirect_uris, allowed_scopes, is_public, created_via FROM oauth_clients WHERE client_id = ?'
|
|
).get(clientId) as OAuthClientRow | undefined;
|
|
return row ? rowToInfo(row) : undefined;
|
|
},
|
|
|
|
async registerClient(
|
|
metadata: Omit<OAuthClientInformationFull, 'client_id' | 'client_id_issued_at'>,
|
|
): Promise<OAuthClientInformationFull> {
|
|
const uris = metadata.redirect_uris as string[];
|
|
assertValidRedirectUris(uris);
|
|
|
|
const isPublic = metadata.token_endpoint_auth_method === 'none';
|
|
const name = (typeof metadata.client_name === 'string' ? metadata.client_name.trim() : '').slice(0, 100) || 'MCP Client';
|
|
|
|
// When scope is absent (ChatGPT DCR), default to all scopes.
|
|
// The user still grants only what they approve at the consent screen.
|
|
const rawScopes = metadata.scope ? metadata.scope.split(' ') : ALL_SCOPES;
|
|
const scopes = rawScopes.filter(s => (ALL_SCOPES as string[]).includes(s));
|
|
if (scopes.length === 0) throw new InvalidClientMetadataError('No valid scopes requested');
|
|
|
|
const result = createOAuthClient(null, name, uris, scopes, null, { isPublic, createdVia: 'dcr' });
|
|
if (result.error) throw new InvalidClientMetadataError(result.error);
|
|
|
|
const c = result.client!;
|
|
return {
|
|
client_id: c.client_id as string,
|
|
client_name: c.name as string,
|
|
redirect_uris: c.redirect_uris as string[],
|
|
scope: (c.allowed_scopes as string[]).join(' '),
|
|
token_endpoint_auth_method: isPublic ? 'none' : 'client_secret_post',
|
|
grant_types: ['authorization_code', 'refresh_token'],
|
|
response_types: ['code'],
|
|
...(c.client_secret ? { client_secret: c.client_secret as string, client_secret_expires_at: 0 } : {}),
|
|
};
|
|
},
|
|
};
|
|
|
|
// ---------------------------------------------------------------------------
|
|
// OAuthServerProvider
|
|
// ---------------------------------------------------------------------------
|
|
|
|
export const trekOAuthProvider: OAuthServerProvider = {
|
|
get clientsStore() { return trekClientsStore; },
|
|
|
|
// Redirects browser to the SPA consent page with OAuth params forwarded.
|
|
async authorize(client: OAuthClientInformationFull, params: AuthorizationParams, res: Response): Promise<void> {
|
|
const mcpResource = `${getMcpSafeUrl().replace(/\/+$/, '')}/mcp`;
|
|
const resource = params.resource ? params.resource.href.replace(/\/+$/, '') : mcpResource;
|
|
|
|
if (resource !== mcpResource) {
|
|
const url = new URL(params.redirectUri);
|
|
url.searchParams.set('error', 'invalid_target');
|
|
url.searchParams.set('error_description', 'Requested resource must be the TREK MCP endpoint');
|
|
if (params.state) url.searchParams.set('state', params.state);
|
|
res.redirect(302, url.toString());
|
|
return;
|
|
}
|
|
|
|
const qs = new URLSearchParams({
|
|
client_id: client.client_id,
|
|
redirect_uri: params.redirectUri,
|
|
scope: params.scopes.join(' '),
|
|
code_challenge: params.codeChallenge,
|
|
code_challenge_method: 'S256',
|
|
});
|
|
if (params.state) qs.set('state', params.state);
|
|
if (params.resource) qs.set('resource', params.resource.href);
|
|
|
|
res.redirect(302, `/oauth/consent?${qs.toString()}`);
|
|
},
|
|
|
|
// Not called because skipLocalPkceValidation = true.
|
|
// PKCE verification is done inline in exchangeAuthorizationCode.
|
|
skipLocalPkceValidation: true,
|
|
|
|
async challengeForAuthorizationCode(_client: OAuthClientInformationFull, _code: string): Promise<string> {
|
|
throw new ServerError('PKCE validation is handled by the provider directly');
|
|
},
|
|
|
|
async exchangeAuthorizationCode(
|
|
client: OAuthClientInformationFull,
|
|
code: string,
|
|
codeVerifier?: string,
|
|
redirectUri?: string,
|
|
resource?: URL,
|
|
): Promise<OAuthTokens> {
|
|
const pending = consumeAuthCode(code);
|
|
if (!pending || pending.clientId !== client.client_id)
|
|
throw new Error('Authorization grant is invalid.');
|
|
|
|
if (redirectUri && pending.redirectUri !== redirectUri)
|
|
throw new Error('Authorization grant is invalid.');
|
|
|
|
const resourceStr = resource ? resource.href.replace(/\/+$/, '') : null;
|
|
if (pending.resource && resourceStr && pending.resource !== resourceStr)
|
|
throw new Error('Authorization grant is invalid.');
|
|
|
|
if (codeVerifier && !verifyPKCE(codeVerifier, pending.codeChallenge))
|
|
throw new Error('Authorization grant is invalid.');
|
|
|
|
const tokens = issueTokens(client.client_id, pending.userId, pending.scopes, null, pending.resource ?? null);
|
|
writeAudit({
|
|
userId: pending.userId,
|
|
action: 'oauth.token.issue',
|
|
details: { client_id: client.client_id, scopes: pending.scopes, audience: pending.resource ?? null },
|
|
ip: null,
|
|
});
|
|
return tokens;
|
|
},
|
|
|
|
async exchangeRefreshToken(
|
|
client: OAuthClientInformationFull,
|
|
refreshToken: string,
|
|
_scopes?: string[],
|
|
_resource?: URL,
|
|
): Promise<OAuthTokens> {
|
|
const result = refreshTokens(refreshToken, client.client_id, client.client_secret, null);
|
|
if (result.error) throw new Error(result.error === 'invalid_client' ? 'Invalid client credentials' : 'Refresh token is invalid or expired');
|
|
return result.tokens!;
|
|
},
|
|
|
|
async verifyAccessToken(token: string): Promise<AuthInfo> {
|
|
const info = getUserByAccessToken(token);
|
|
if (!info) throw new Error('Invalid or expired token');
|
|
return {
|
|
token,
|
|
clientId: info.clientId,
|
|
scopes: info.scopes,
|
|
extra: { user: info.user },
|
|
};
|
|
},
|
|
|
|
async revokeToken(
|
|
client: OAuthClientInformationFull,
|
|
request: OAuthTokenRevocationRequest,
|
|
): Promise<void> {
|
|
serviceRevokeToken(request.token, client.client_id, undefined, null);
|
|
},
|
|
}; |