Add client_secret_basic authentication support #1334
Conversation
felixweinberger
added
needs more eyes
There was a problem hiding this comment.
Hi @jonshea, thanks for sending this PR!
Looks generally great. Client-side support would be good to add too, e.g. in src/mcp/client/auth.py decide to use basic auth if it's the preferred (first) or only method listed in self.context.oauth_metadata.token_endpoint_auth_methods_supported, and in that case set something like headers["Authorization"] = f"Basic {64encode(f"{self.client_info.client_id}:{self.client_info.client_secret}")}" in both _exchange_token and _refresh_token?
| raise AuthenticationError("Client ID mismatch in Basic auth") | ||
| except AuthenticationError: | ||
| raise | ||
| except Exception: |
There was a problem hiding this comment.
Maybe except (ValueError, UnicodeDecodeError, base64.binascii.Error): to be more explicit about what exceptions we should tolerate here?
| ) | ||
|
|
||
| try: | ||
| form_data = await request.form() |
There was a problem hiding this comment.
Are we not reading the request.form() twice here? (once in authenticate_request, and here again? (Think starlette might complain about this)
Might wanna push the form data (maybe other request fields, e.g. auth header) to the authenticator method?
There was a problem hiding this comment.
My understanding is that the current version of starlette caches calls to form(), json(), and body(), so it is safe to call them multiple times. For example, https://github.com/Kludex/starlette/blob/main/starlette/requests.py#L254-L287 . But I am not a starlette expert and I might be misunderstanding. There seems to be an edge case
with reading form() and then body() later. But if it was ever unsafe to call form() multiple times, I was unable to find when it changed after a modest search.
My first implementation parsed out the form in the request handler and passed it into the authenticate method, as you suggest, but I thought it felt clunky to duplicate the code that parsed "form data and auth header" across both the token and revoke endpoints. It’s not the end of the world, but it turns
# Current version
async def handle(self, request: Request):
try:
client_info = await self.client_authenticator.authenticate_request(request)
into something like this
# Parse out form and auth_header
async def handle(self, request: Request):
try:
form_data = await request.form()
except Exception:
return self.response(
TokenErrorResponse(
error="invalid_request",
error_description="Unable to parse request body",
)
)
auth_header = request.headers.get("Authorization")
try:
client_info = await self.client_authenticator.authenticate_request(form_data, auth_header)
Or I suppose we could handle invalid for data in the authenticate method:
# Parse out form and auth_header, handle form error in client_authenticator
async def handle(self, request: Request):
form_data = None
try:
form_data = await request.form()
except Exception:
pass
auth_header = request.headers.get("Authorization")
try:
client_info = await self.client_authenticator.authenticate_request(form_data, auth_header)
Anyway, I defer to the maintainers. If you would like me to switch to one of the above implementations, I would be happy to do so.
| decoded = base64.b64decode(encoded_credentials).decode("utf-8") | ||
| if ":" not in decoded: | ||
| raise ValueError("Invalid Basic auth format") | ||
| basic_client_id, request_client_secret = decoded.split(":", 1) |
There was a problem hiding this comment.
We should probably urldecode both parts, as per RFC 6749 Section 2.3.1
The client identifier is encoded using the 'application/x-www-form-urlencoded' encoding algorithm per Appendix B, and the encoded value is used as the username; the client password is encoded using the same algorithm and used as the password.
There was a problem hiding this comment.
Good catch. Thank you.
| raise AuthenticationError("Client secret is required") | ||
|
|
||
| if client.client_secret != client_secret: | ||
| if client.client_secret != request_client_secret: |
There was a problem hiding this comment.
meganit: in theory we should use compare_digest() here to avoid any chance of timing attack, although it's probably drowned in the noise of network and Python execution overheads.
felixweinberger
added
needs more work
jonshea
force-pushed
the
support-client_secret_basic-authentication
branch
from
1544000 to
97cf2c3
Compare
|
|
||
| # If token_endpoint_auth_method is None, auto-select based on server support | ||
| if self.context.client_metadata.token_endpoint_auth_method is None: | ||
| preference_order = ["client_secret_basic", "client_secret_post", "none"] |
There was a problem hiding this comment.
I am torn on whether or not we should allow auto-selecting "none". It seems possibly like bad security to allow that, but I suppose if the server allows it then it is ok?
I suppose ideally we should allow the user to pick a list of auth methods they want to allow to be auto-configured, but I am not sure anyone cares enough to want to use it.
jonshea
force-pushed
the
support-client_secret_basic-authentication
branch
from
97cf2c3 to
3a704d7
Compare
|
Thank you for the thoughtful review, @ochafik. I believe I have addressed all of the provided feedback, though with a reply / question about the concern around calling As suggested, I also added support for I put the client-side |
Add support for HTTP Basic Authentication (client_secret_basic) as a client authentication method for the token and revoke endpoints, alongside the existing client_secret_post method. This improves compatibility with OAuth servers like Keycloak that use Basic auth. Key changes: - Update OAuthClientMetadata to accept "client_secret_basic" as valid token_endpoint_auth_method - Return 401 status for authentication failures (was 400) - Update metadata endpoints to advertise both auth methods - Add tests for both auth methods and edge cases
- Use hmac.compare_digest() for secret validation - url decode client_secret_basic username / password - Narrow the `except` clause on `client_secret_basic` validation
- Implement HTTP Basic auth for OAuth token requests - Automatically sets selects auth method when OAuthClientProvider is configured with OAuthClientMetadata that has token_endpoint_auth_method=None. - Made OAuthClientMetadata.token_endpoint_auth_method optional to support the above auto-configuration. - Removed ` "token_endpoint_auth_method": "client_secret_post"` from the simple-auth-client example as is now auto-configured.
jonshea
force-pushed
the
support-client_secret_basic-authentication
branch
from
3a704d7 to
a31031c
Compare
Add support for HTTP Basic Authentication (client_secret_basic) as a
client authentication method for the token and revoke endpoints, alongside
the existing client_secret_post method. This improves compatibility with
OAuth servers like Keycloak that use Basic auth.
Key changes:
token_endpoint_auth_method