MCP Tool Authorization Field for Responses API

[iamemilio]

🚀 Describe the new functionality needed

OpenAI Responses API Spec for MCP Tools has a field authorization which can pass an authentication token to an MCP server. This is a critical piece of security infrastructure, and needs to be implemented in llama stack. It's defined as follows in openai_python:

class Mcp(BaseModel):
    authorization: Optional[str] = None
    """
    An OAuth access token that can be used with a remote MCP server, either with a
    custom MCP server URL or a service connector. Your application must handle the
    OAuth authorization flow and provide the token here.
    """

Please add it to the MCP tool object in llama stack responses API.

💡 Why is this needed? What if we don't build it?

This simplifies passing auth tokens through responses API.

Other thoughts

No response

[grs]

You can use the headers field of the MCP tool definition. Not arguing we should not support the new field, but it is not insecure without it if you set the authorization header.

[iamemilio]

Ack will update

[github-actions]

This issue has been automatically marked as stale because it has not had activity within 60 days. It will be automatically closed if no further activity occurs within 30 days.

[omaryashraf5]

Independent Authorization field outside MCP header is now supported via PR 4052 and PR 4161.