Mock handler

localden · localden · commit a43984015f18 · 2025-05-02T00:13:24.000-07:00
diff --git a/samples/SecureWeatherClient/Program.cs b/samples/SecureWeatherClient/Program.cs
@@ -14,49 +14,24 @@ static async Task Main(string[] args)
         Console.WriteLine("==================================================");
         Console.WriteLine();
 
-        Console.WriteLine("Select authentication mode:");
-        Console.WriteLine("1. Normal OAuth flow with browser");
-        Console.WriteLine("2. Mock authentication (accepts any token for testing)");
-        Console.Write("Enter your choice (1-2): ");
-        var choice = Console.ReadLine()?.Trim();
+        // Create the authorization config with HTTP listener
+        var authConfig = new AuthorizationConfig
+        {
+            ClientId = "04f79824-ab56-4511-a7cb-d7deaea92dc0",
+            Scopes = ["User.Read"]
+        }.UseHttpListener(hostname: "localhost", listenPort: 1170);
 
         // Create an HTTP client with OAuth handling
-        DelegatingHandler oauthHandler;
-        
-        if (choice == "2")
-        {
-            Console.WriteLine("\nUsing mock authentication for testing (no browser will open).\n");
-            
-            // Create a mock OAuth handler that always returns a token
-            oauthHandler = new MockOAuthHandler()
-            {
-                InnerHandler = new HttpClientHandler()
-            };
-        }
-        else
+        var oauthHandler = new OAuthDelegatingHandler(
+            redirectUri: authConfig.RedirectUri,
+            clientId: authConfig.ClientId,
+            clientName: authConfig.ClientName,
+            scopes: authConfig.Scopes,
+            authorizationHandler: authConfig.AuthorizationHandler)
         {
-            Console.WriteLine("\nUsing standard OAuth flow with browser authentication.\n");
-            
-            // Create the authorization config with HTTP listener
-            var authConfig = new AuthorizationConfig
-            {
-                ClientId = "04f79824-ab56-4511-a7cb-d7deaea92dc0",
-                ClientName = "SecureWeatherClient",
-                Scopes = ["weather.read"]
-            }.UseHttpListener(hostname: "localhost", listenPort: 1170);
-
-            // Create an HTTP client with OAuth handling
-            oauthHandler = new OAuthDelegatingHandler(
-                redirectUri: authConfig.RedirectUri,
-                clientId: authConfig.ClientId,
-                clientName: authConfig.ClientName,
-                scopes: authConfig.Scopes,
-                authorizationHandler: authConfig.AuthorizationHandler)
-            {
-                // The OAuth handler needs an inner handler
-                InnerHandler = new HttpClientHandler()
-            };
-        }
+            // The OAuth handler needs an inner handler
+            InnerHandler = new HttpClientHandler()
+        };
 
         var httpClient = new HttpClient(oauthHandler);
         var serverUrl = "http://localhost:7071/sse"; // Default server URL
@@ -71,13 +46,8 @@ static async Task Main(string[] args)
 
         Console.WriteLine();
         Console.WriteLine($"Connecting to weather server at {serverUrl}...");
-        
-        if (choice != "2")
-        {
-            Console.WriteLine("When prompted for authorization, a browser window will open automatically.");
-            Console.WriteLine("Complete the authentication in the browser, and this application will continue automatically.");
-        }
-        
+        Console.WriteLine("When prompted for authorization, a browser window will open automatically.");
+        Console.WriteLine("Complete the authentication in the browser, and this application will continue automatically.");
         Console.WriteLine();
 
         try
@@ -127,21 +97,4 @@ static async Task Main(string[] args)
         Console.WriteLine("Press any key to exit...");
         Console.ReadKey();
     }
-}
-
-/// <summary>
-/// A mock OAuth handler that always returns a predefined token without going through the OAuth flow.
-/// This is useful for testing without requiring a real OAuth server.
-/// </summary>
-public class MockOAuthHandler : DelegatingHandler
-{
-    private readonly string _mockToken = "mock_test_token_" + Guid.NewGuid().ToString("N");
-
-    protected override Task<HttpResponseMessage> SendAsync(HttpRequestMessage request, CancellationToken cancellationToken)
-    {
-        // Always attach the mock token to outgoing requests
-        request.Headers.Authorization = new System.Net.Http.Headers.AuthenticationHeaderValue("Bearer", _mockToken);
-        
-        return base.SendAsync(request, cancellationToken);
-    }
 }
diff --git a/samples/SecureWeatherServer/Program.cs b/samples/SecureWeatherServer/Program.cs
@@ -110,17 +110,19 @@
 Console.WriteLine("Starting MCP server with authorization at http://localhost:7071");
 Console.WriteLine("PRM Document URL: http://localhost:7071/.well-known/oauth-protected-resource");
 
+Console.WriteLine();
+Console.WriteLine("Testing mode: Server will accept ANY non-empty token for authentication");
 Console.WriteLine();
 Console.WriteLine("To test the server:");
 Console.WriteLine("1. Use an MCP client that supports authorization");
-Console.WriteLine("2. When prompted for authorization, enter 'valid_token' to gain access");
-Console.WriteLine("3. Any other token value will be rejected with a 401 Unauthorized");
+Console.WriteLine("2. The server will accept any non-empty token sent by the client");
+Console.WriteLine("3. Tokens will be logged to the console for debugging");
 Console.WriteLine();
 Console.WriteLine("Press Ctrl+C to stop the server");
 
 await app.RunAsync();
 
-// Simple auth handler that validates a test token
+// Simple auth handler that accepts any non-empty token for testing
 // In a real app, you'd use a JWT handler or other proper authentication
 class SimpleAuthHandler : AuthenticationHandler<AuthenticationSchemeOptions>
 {
@@ -149,12 +151,15 @@ protected override Task<AuthenticateResult> HandleAuthenticateAsync()
         
         var token = headerValue["Bearer ".Length..].Trim();
         
-        // Validate the token - in a real app, this would validate a JWT
-        if (token != "valid_token")
+        // Accept any non-empty token for testing purposes
+        if (string.IsNullOrEmpty(token))
         {
-            return Task.FromResult(AuthenticateResult.Fail("Invalid token"));
+            return Task.FromResult(AuthenticateResult.Fail("Token cannot be empty"));
         }
         
+        // Log the received token for debugging
+        Console.WriteLine($"Received and accepted token: {token}");
+        
         // Create a claims identity with required claims
         var claims = new[]
         {
