Add internal ModelContextProtocol.AspNetCore.Stateless namespace

Author: halter73

src/ModelContextProtocol.AspNetCore/HttpMcpSession.cs

@@ -1,4 +1,5 @@
-using ModelContextProtocol.Protocol.Transport;
+using ModelContextProtocol.AspNetCore.Stateless;
+using ModelContextProtocol.Protocol.Transport;
 using ModelContextProtocol.Server;
 using System.Security.Claims;
 
@@ -7,7 +8,7 @@ namespace ModelContextProtocol.AspNetCore;
 internal sealed class HttpMcpSession<TTransport>(
     string sessionId,
     TTransport transport,
-    StatelessUserId? userId,
+    UserIdClaim? userId,
     TimeProvider timeProvider) : IAsyncDisposable
     where TTransport : ITransport
 {
@@ -17,7 +18,7 @@ internal sealed class HttpMcpSession<TTransport>(
 
     public string Id { get; } = sessionId;
     public TTransport Transport { get; } = transport;
-    public StatelessUserId? UserIdClaim { get; } = userId;
+    public UserIdClaim? UserIdClaim { get; } = userId;
 
     public CancellationToken SessionClosed => _disposeCts.Token;
 

…rotocol.AspNetCore/StatelessSessionId.cs …pNetCore/Stateless/StatelessSessionId.cssrc/ModelContextProtocol.AspNetCore/StatelessSessionId.cs renamed to src/ModelContextProtocol.AspNetCore/Stateless/StatelessSessionId.cs src/ModelContextProtocol.AspNetCore/StatelessSessionId.cs renamed to src/ModelContextProtocol.AspNetCore/Stateless/StatelessSessionId.cs

@@ -1,13 +1,13 @@
 using ModelContextProtocol.Protocol.Types;
 using System.Text.Json.Serialization;
 
-namespace ModelContextProtocol.AspNetCore;
+namespace ModelContextProtocol.AspNetCore.Stateless;
 
 internal sealed class StatelessSessionId
 {
     [JsonPropertyName("clientInfo")]
     public Implementation? ClientInfo { get; init; }
 
     [JsonPropertyName("userIdClaim")]
-    public StatelessUserId? UserIdClaim { get; init; }
+    public UserIdClaim? UserIdClaim { get; init; }
 }

…NetCore/StatelessSessionIdJsonContext.cs …ateless/StatelessSessionIdJsonContext.cssrc/ModelContextProtocol.AspNetCore/StatelessSessionIdJsonContext.cs renamed to src/ModelContextProtocol.AspNetCore/Stateless/StatelessSessionIdJsonContext.cs src/ModelContextProtocol.AspNetCore/StatelessSessionIdJsonContext.cs renamed to src/ModelContextProtocol.AspNetCore/Stateless/StatelessSessionIdJsonContext.cs

@@ -1,6 +1,6 @@
 using System.Text.Json.Serialization;
 
-namespace ModelContextProtocol.AspNetCore;
+namespace ModelContextProtocol.AspNetCore.Stateless;
 
 [JsonSerializable(typeof(StatelessSessionId))]
 internal sealed partial class StatelessSessionIdJsonContext : JsonSerializerContext;

src/ModelContextProtocol.AspNetCore/Stateless/UserIdClaim.cs

@@ -0,0 +1,3 @@
+namespace ModelContextProtocol.AspNetCore.Stateless;
+
+internal sealed record UserIdClaim(string Type, string Value, string Issuer);

src/ModelContextProtocol.AspNetCore/StatelessUserId.cs

@@ -5,6 +5,7 @@
 using Microsoft.Extensions.Logging;
 using Microsoft.Extensions.Options;
 using Microsoft.Net.Http.Headers;
+using ModelContextProtocol.AspNetCore.Stateless;
 using ModelContextProtocol.Protocol.Messages;
 using ModelContextProtocol.Protocol.Transport;
 using ModelContextProtocol.Protocol.Types;
@@ -314,7 +315,7 @@ internal static Task RunSessionAsync(HttpContext httpContext, IMcpServer session
     // SignalR only checks for ClaimTypes.NameIdentifier in HttpConnectionDispatcher, but AspNetCore.Antiforgery checks that plus the sub and UPN claims.
     // However, we short-circuit unlike antiforgery since we expect to call this to verify MCP messages a lot more frequently than
     // verifying antiforgery tokens from <form> posts.
-    internal static StatelessUserId? GetUserIdClaim(ClaimsPrincipal user)
+    internal static UserIdClaim? GetUserIdClaim(ClaimsPrincipal user)
     {
         if (user?.Identity?.IsAuthenticated != true)
         {