Remove and rename DynamicClientRegistrationDelegate

halter73 · halter73 · commit 79f5aa8d6d92 · 2025-08-26T10:09:27.000-07:00
- Make client_name optional since it's only RECOMMENDED by https://www.rfc-editor.org/rfc/rfc7591
diff --git a/src/ModelContextProtocol.Core/Authentication/ClientOAuthProvider.cs b/src/ModelContextProtocol.Core/Authentication/ClientOAuthProvider.cs
@@ -1,6 +1,5 @@
 using Microsoft.Extensions.Logging;
 using Microsoft.Extensions.Logging.Abstractions;
-using System.Collections.Specialized;
 using System.Diagnostics.CodeAnalysis;
 using System.Net.Http.Headers;
 using System.Security.Cryptography;
@@ -28,12 +27,12 @@ internal sealed partial class ClientOAuthProvider
     private readonly IDictionary<string, string> _additionalAuthorizationParameters;
     private readonly Func<IReadOnlyList<Uri>, Uri?> _authServerSelector;
     private readonly AuthorizationRedirectDelegate _authorizationRedirectDelegate;
-    private readonly DynamicClientRegistrationDelegate? _dynamicClientRegistrationDelegate;
 
-    // _clientName, _clientUri, and _initialAccessToken is used for dynamic client registration (RFC 7591)
-    private readonly string? _clientName;
-    private readonly Uri? _clientUri;
-    private readonly string? _initialAccessToken;
+    // _dcrClientName, _dcrClientUri, _dcrInitialAccessToken and _dcrResponseDelegate are used for dynamic client registration (RFC 7591)
+    private readonly string? _dcrClientName;
+    private readonly Uri? _dcrClientUri;
+    private readonly string? _dcrInitialAccessToken;
+    private readonly Func<DynamicClientRegistrationResponse, CancellationToken, Task>? _dcrResponseDelegate;
 
     private readonly HttpClient _httpClient;
     private readonly ILogger _logger;
@@ -79,20 +78,10 @@ public ClientOAuthProvider(
         // Set up authorization URL handler (use default if not provided)
         _authorizationRedirectDelegate = options.AuthorizationRedirectDelegate ?? DefaultAuthorizationUrlHandler;
 
-        if (string.IsNullOrEmpty(_clientId))
-        {
-            if (options.DynamicClientRegistration is null)
-            {
-                throw new ArgumentException("ClientOAuthOptions.DynamicClientRegistration must be configured when ClientId is not set.", nameof(options));
-            }
-
-            _clientName = options.DynamicClientRegistration.ClientName;
-            _clientUri = options.DynamicClientRegistration.ClientUri;
-            _initialAccessToken = options.DynamicClientRegistration.InitialAccessToken;
-
-            // Set up dynamic client registration delegate
-            _dynamicClientRegistrationDelegate = options.DynamicClientRegistration.DynamicClientRegistrationDelegate;
-        }
+        _dcrClientName = options.DynamicClientRegistration?.ClientName;
+        _dcrClientUri = options.DynamicClientRegistration?.ClientUri;
+        _dcrInitialAccessToken = options.DynamicClientRegistration?.InitialAccessToken;
+        _dcrResponseDelegate = options.DynamicClientRegistration?.ResponseDelegate;
     }
 
     /// <summary>
@@ -463,8 +452,8 @@ private async Task PerformDynamicClientRegistrationAsync(
             GrantTypes = ["authorization_code", "refresh_token"],
             ResponseTypes = ["code"],
             TokenEndpointAuthMethod = "client_secret_post",
-            ClientName = _clientName,
-            ClientUri = _clientUri?.ToString(),
+            ClientName = _dcrClientName,
+            ClientUri = _dcrClientUri?.ToString(),
             Scope = _scopes is not null ? string.Join(" ", _scopes) : null
         };
 
@@ -476,9 +465,9 @@ private async Task PerformDynamicClientRegistrationAsync(
             Content = requestContent
         };
 
-        if (!string.IsNullOrEmpty(_initialAccessToken))
+        if (!string.IsNullOrEmpty(_dcrInitialAccessToken))
         {
-            request.Headers.Authorization = new AuthenticationHeaderValue(BearerScheme, _initialAccessToken);
+            request.Headers.Authorization = new AuthenticationHeaderValue(BearerScheme, _dcrInitialAccessToken);
         }
 
         using var httpResponse = await _httpClient.SendAsync(request, cancellationToken).ConfigureAwait(false);
@@ -509,9 +498,9 @@ private async Task PerformDynamicClientRegistrationAsync(
 
         LogDynamicClientRegistrationSuccessful(_clientId!);
 
-        if (_dynamicClientRegistrationDelegate is not null)
+        if (_dcrResponseDelegate is not null)
         {
-            await _dynamicClientRegistrationDelegate(registrationResponse, cancellationToken).ConfigureAwait(false);
+            await _dcrResponseDelegate(registrationResponse, cancellationToken).ConfigureAwait(false);
         }
     }
 
diff --git a/src/ModelContextProtocol.Core/Authentication/DynamicClientRegistrationDelegate.cs b/src/ModelContextProtocol.Core/Authentication/DynamicClientRegistrationDelegate.cs
diff --git a/src/ModelContextProtocol.Core/Authentication/DynamicClientRegistrationOptions.cs b/src/ModelContextProtocol.Core/Authentication/DynamicClientRegistrationOptions.cs
@@ -11,7 +11,7 @@ public sealed class DynamicClientRegistrationOptions
     /// <remarks>
     /// This is a human-readable name for the client that may be displayed to users during authorization.
     /// </remarks>
-    public required string ClientName { get; set; }
+    public string? ClientName { get; set; }
 
     /// <summary>
     /// Gets or sets the client URI to use during dynamic client registration.
@@ -45,5 +45,5 @@ public sealed class DynamicClientRegistrationOptions
     /// The implementation should save the client credentials securely for future use.
     /// </para>
     /// </remarks>
-    public DynamicClientRegistrationDelegate? DynamicClientRegistrationDelegate { get; set; }
+    public Func<DynamicClientRegistrationResponse, CancellationToken, Task>? ResponseDelegate { get; set; }
 }
diff --git a/tests/ModelContextProtocol.AspNetCore.Tests/AuthEventTests.cs b/tests/ModelContextProtocol.AspNetCore.Tests/AuthEventTests.cs
@@ -155,7 +155,7 @@ public async Task CanAuthenticate_WithDynamicClientRegistration_FromEvent()
                     {
                         ClientName = "Test MCP Client",
                         ClientUri = new Uri("https://example.com"),
-                        DynamicClientRegistrationDelegate = (response, cancellationToken) =>
+                        ResponseDelegate = (response, cancellationToken) =>
                         {
                             dcrResponse = response;
                             return Task.CompletedTask;
diff --git a/tests/ModelContextProtocol.AspNetCore.Tests/AuthTests.cs b/tests/ModelContextProtocol.AspNetCore.Tests/AuthTests.cs
@@ -174,8 +174,6 @@ public async Task CanAuthenticate_WithDynamicClientRegistration()
 
         await app.StartAsync(TestContext.Current.CancellationToken);
 
-        DynamicClientRegistrationResponse? dcrResponse = null;
-
         await using var transport = new SseClientTransport(new()
         {
             Endpoint = new(McpServerUrl),
@@ -188,21 +186,12 @@ public async Task CanAuthenticate_WithDynamicClientRegistration()
                 {
                     ClientName = "Test MCP Client",
                     ClientUri = new Uri("https://example.com"),
-                    DynamicClientRegistrationDelegate = (response, cancellationToken) =>
-                    {
-                        dcrResponse = response;
-                        return Task.CompletedTask;
-                    },
                 },
             },
         }, HttpClient, LoggerFactory);
 
         await using var client = await McpClientFactory.CreateAsync(
             transport, loggerFactory: LoggerFactory, cancellationToken: TestContext.Current.CancellationToken);
-
-        Assert.NotNull(dcrResponse);
-        Assert.False(string.IsNullOrEmpty(dcrResponse.ClientId));
-        Assert.False(string.IsNullOrEmpty(dcrResponse.ClientSecret));
     }
 
     [Fact]

Original file line number	Diff line number	Diff line change
`@@ -155,7 +155,7 @@ public async Task CanAuthenticate_WithDynamicClientRegistration_FromEvent()`
`155`	`155`	`{`
`156`	`156`	`ClientName = "Test MCP Client",`
`157`	`157`	`ClientUri = new Uri("https://example.com"),`
`158`		`- DynamicClientRegistrationDelegate = (response, cancellationToken) =>`
	`158`	`+ ResponseDelegate = (response, cancellationToken) =>`
`159`	`159`	`{`
`160`	`160`	`dcrResponse = response;`
`161`	`161`	`return Task.CompletedTask;`