test: Add Ktor authentication tests for protecting MCP routes

- Introduced `SseAuthenticationTest`, demonstrating how to protect MCP endpoints with authentication.

Author: kpavlov

gradle/libs.versions.toml

@@ -49,6 +49,7 @@ ktor-client-logging = { group = "io.ktor", name = "ktor-client-logging", version
 ktor-server-content-negotiation = { group = "io.ktor", name = "ktor-server-content-negotiation", version.ref = "ktor" }
 ktor-client-content-negotiation = { group = "io.ktor", name = "ktor-client-content-negotiation", version.ref = "ktor" }
 ktor-serialization = { group = "io.ktor", name = "ktor-serialization-kotlinx-json", version.ref = "ktor" }
+ktor-server-auth = { group = "io.ktor", name = "ktor-server-auth", version.ref = "ktor" }
 ktor-server-core = { group = "io.ktor", name = "ktor-server-core", version.ref = "ktor" }
 ktor-server-sse = { group = "io.ktor", name = "ktor-server-sse", version.ref = "ktor" }
 ktor-server-websockets = { group = "io.ktor", name = "ktor-server-websockets", version.ref = "ktor" }

integration-test/build.gradle.kts

@@ -22,6 +22,7 @@ kotlin {
                 implementation(libs.ktor.server.content.negotiation)
                 implementation(libs.ktor.serialization)
                 implementation(libs.ktor.server.websockets)
+                implementation(libs.ktor.server.auth)
                 implementation(libs.ktor.server.test.host)
                 implementation(libs.ktor.server.content.negotiation)
                 implementation(libs.ktor.serialization)

integration-test/src/jvmTest/kotlin/io/modelcontextprotocol/kotlin/sdk/integration/AbstractAuthenticationTest.kt

@@ -0,0 +1,196 @@
+package io.modelcontextprotocol.kotlin.sdk.integration
+
+import io.kotest.matchers.shouldBe
+import io.ktor.client.HttpClient
+import io.ktor.client.request.get
+import io.ktor.http.HttpStatusCode
+import io.ktor.serialization.kotlinx.json.json
+import io.ktor.server.application.Application
+import io.ktor.server.application.ApplicationCall
+import io.ktor.server.application.install
+import io.ktor.server.auth.Authentication
+import io.ktor.server.auth.UserIdPrincipal
+import io.ktor.server.auth.authenticate
+import io.ktor.server.auth.basic
+import io.ktor.server.auth.principal
+import io.ktor.server.engine.embeddedServer
+import io.ktor.server.plugins.contentnegotiation.ContentNegotiation
+import io.ktor.server.routing.Route
+import io.ktor.server.routing.routing
+import io.modelcontextprotocol.kotlin.sdk.client.Client
+import io.modelcontextprotocol.kotlin.sdk.server.Server
+import io.modelcontextprotocol.kotlin.sdk.server.ServerOptions
+import io.modelcontextprotocol.kotlin.sdk.shared.Transport
+import io.modelcontextprotocol.kotlin.sdk.types.Implementation
+import io.modelcontextprotocol.kotlin.sdk.types.McpJson
+import io.modelcontextprotocol.kotlin.sdk.types.ReadResourceRequest
+import io.modelcontextprotocol.kotlin.sdk.types.ReadResourceRequestParams
+import io.modelcontextprotocol.kotlin.sdk.types.ReadResourceResult
+import io.modelcontextprotocol.kotlin.sdk.types.ServerCapabilities
+import io.modelcontextprotocol.kotlin.sdk.types.TextResourceContents
+import io.modelcontextprotocol.kotlin.test.utils.actualPort
+import kotlinx.coroutines.Dispatchers
+import kotlinx.coroutines.runBlocking
+import java.util.UUID
+import kotlin.test.Test
+import io.ktor.client.engine.cio.CIO as ClientCIO
+import io.ktor.server.cio.CIO as ServerCIO
+import io.ktor.server.sse.SSE as ServerSSE
+
+/**
+ * Base class for MCP authentication integration tests.
+ *
+ * This class provides a common setup for testing MCP servers behind Ktor authentication.
+ * It verifies that unauthenticated requests are rejected and that the authenticated principal
+ * is accessible within MCP resource handlers.
+ */
+abstract class AbstractAuthenticationTest {
+
+    protected companion object {
+        const val HOST = "127.0.0.1"
+        const val AUTH_REALM = "mcp-auth"
+        const val WHOAMI_URI = "whoami://me"
+    }
+
+    protected val validUser: String = "user-${UUID.randomUUID().toString().take(8)}"
+    protected val validPassword: String = UUID.randomUUID().toString()
+
+    /**
+     * Installs Ktor plugins required by the transport under test.
+     *
+     * The default installs [ServerSSE] (required by both SSE and StreamableHttp transports)
+     * and [ContentNegotiation] with [McpJson] (required by StreamableHttp for JSON body
+     * serialization). Subclasses may override to add transport-specific plugins.
+     */
+    protected open fun Application.configurePlugins() {
+        install(ServerSSE)
+        // ContentNegotiation is required by the StreamableHttp transport for JSON body handling.
+        // Installing it for SSE tests as well is harmless.
+        install(ContentNegotiation) { json(McpJson) }
+    }
+
+    /**
+     * Registers the MCP server on the given route.
+     * Concrete implementations should use transport-specific extensions (e.g., [Route.mcp] for SSE).
+     */
+    abstract fun Route.registerMcpServer(serverFactory: ApplicationCall.() -> Server)
+
+    /**
+     * Creates a client transport configured with the given credentials.
+     */
+    abstract fun createClientTransport(baseUrl: String, user: String, pass: String): Transport
+
+    @Test
+    fun `mcp behind basic auth rejects unauthenticated requests with 401`() {
+        runBlocking(Dispatchers.IO) {
+            val server = embeddedServer(ServerCIO, host = HOST, port = 0) {
+                configurePlugins()
+                install(Authentication) {
+                    basic(AUTH_REALM) {
+                        validate { credentials ->
+                            if (credentials.name == validUser && credentials.password == validPassword) {
+                                UserIdPrincipal(credentials.name)
+                            } else {
+                                null
+                            }
+                        }
+                    }
+                }
+                routing {
+                    authenticate(AUTH_REALM) {
+                        registerMcpServer {
+                            createMcpServer { principal<UserIdPrincipal>()?.name }
+                        }
+                    }
+                }
+            }.startSuspend(wait = false)
+
+            val httpClient = HttpClient(ClientCIO)
+            try {
+                httpClient.get("http://$HOST:${server.actualPort()}").status shouldBe HttpStatusCode.Unauthorized
+            } finally {
+                httpClient.close()
+                server.stopSuspend(500, 1000)
+            }
+        }
+    }
+
+    @Test
+    fun `authenticated mcp client can read resource scoped to principal`() {
+        runBlocking(Dispatchers.IO) {
+            val server = embeddedServer(ServerCIO, host = HOST, port = 0) {
+                configurePlugins()
+                install(Authentication) {
+                    basic(AUTH_REALM) {
+                        validate { credentials ->
+                            if (credentials.name == validUser && credentials.password == validPassword) {
+                                UserIdPrincipal(credentials.name)
+                            } else {
+                                null
+                            }
+                        }
+                    }
+                }
+                routing {
+                    authenticate(AUTH_REALM) {
+                        registerMcpServer {
+                            // `this` is the ApplicationCall at connection time.
+                            // The lambda passed to createMcpServer captures this call;
+                            // principal<T>() is safe to call from resource handlers because
+                            // the call's authentication context remains valid for the session lifetime.
+                            createMcpServer { principal<UserIdPrincipal>()?.name }
+                        }
+                    }
+                }
+            }.startSuspend(wait = false)
+
+            val baseUrl = "http://$HOST:${server.actualPort()}"
+            var mcpClient: Client? = null
+            try {
+                mcpClient = Client(Implementation(name = "test-client", version = "1.0.0"))
+                mcpClient.connect(createClientTransport(baseUrl, validUser, validPassword))
+
+                val result = mcpClient.readResource(
+                    ReadResourceRequest(ReadResourceRequestParams(uri = WHOAMI_URI)),
+                )
+
+                result.contents shouldBe listOf(
+                    TextResourceContents(
+                        text = validUser,
+                        uri = WHOAMI_URI,
+                        mimeType = "text/plain",
+                    ),
+                )
+            } finally {
+                mcpClient?.close()
+                server.stopSuspend(500, 1000)
+            }
+        }
+    }
+
+    protected fun createMcpServer(principalProvider: () -> String?): Server = Server(
+        serverInfo = Implementation(name = "test-server", version = "1.0.0"),
+        options = ServerOptions(
+            capabilities = ServerCapabilities(
+                resources = ServerCapabilities.Resources(),
+            ),
+        ),
+    ).apply {
+        addResource(
+            uri = WHOAMI_URI,
+            name = "Current User",
+            description = "Returns the name of the authenticated user",
+            mimeType = "text/plain",
+        ) {
+            ReadResourceResult(
+                contents = listOf(
+                    TextResourceContents(
+                        text = principalProvider() ?: "anonymous",
+                        uri = WHOAMI_URI,
+                        mimeType = "text/plain",
+                    ),
+                ),
+            )
+        }
+    }
+}

integration-test/src/jvmTest/kotlin/io/modelcontextprotocol/kotlin/sdk/integration/sse/SseAuthenticationTest.kt

@@ -0,0 +1,38 @@
+package io.modelcontextprotocol.kotlin.sdk.integration.sse
+
+import io.ktor.client.HttpClient
+import io.ktor.client.plugins.sse.SSE
+import io.ktor.client.request.basicAuth
+import io.ktor.server.application.ApplicationCall
+import io.ktor.server.auth.principal
+import io.ktor.server.routing.Route
+import io.modelcontextprotocol.kotlin.sdk.client.SseClientTransport
+import io.modelcontextprotocol.kotlin.sdk.integration.AbstractAuthenticationTest
+import io.modelcontextprotocol.kotlin.sdk.server.Server
+import io.modelcontextprotocol.kotlin.sdk.server.mcp
+import io.modelcontextprotocol.kotlin.sdk.shared.Transport
+import io.ktor.client.engine.cio.CIO as ClientCIO
+
+/**
+ * Integration tests for MCP-over-SSE placed behind Ktor authentication middleware.
+ *
+ * Demonstrates the pattern for issue #236: [io.ktor.server.auth.principal] is
+ * accessible inside the `mcp { }` factory block via
+ * [io.ktor.server.sse.ServerSSESession.call]. The principal is captured once per
+ * SSE connection and can be closed over in resource/tool handlers to scope
+ * responses to the authenticated user.
+ */
+class SseAuthenticationTest : AbstractAuthenticationTest() {
+
+    override fun Route.registerMcpServer(serverFactory: ApplicationCall.() -> Server) {
+        mcp {
+            serverFactory(call)
+        }
+    }
+
+    override fun createClientTransport(baseUrl: String, user: String, pass: String): Transport = SseClientTransport(
+        client = HttpClient(ClientCIO) { install(SSE) },
+        urlString = baseUrl,
+        requestBuilder = { basicAuth(user, pass) },
+    )
+}

integration-test/src/jvmTest/kotlin/io/modelcontextprotocol/kotlin/sdk/integration/streamablehttp/StreamableHttpAuthenticationTest.kt

@@ -0,0 +1,29 @@
+package io.modelcontextprotocol.kotlin.sdk.integration.streamablehttp
+
+import io.ktor.client.HttpClient
+import io.ktor.client.plugins.sse.SSE
+import io.ktor.client.request.basicAuth
+import io.ktor.server.application.ApplicationCall
+import io.ktor.server.routing.Route
+import io.modelcontextprotocol.kotlin.sdk.client.StreamableHttpClientTransport
+import io.modelcontextprotocol.kotlin.sdk.integration.AbstractAuthenticationTest
+import io.modelcontextprotocol.kotlin.sdk.server.Server
+import io.modelcontextprotocol.kotlin.sdk.server.mcpStreamableHttp
+import io.modelcontextprotocol.kotlin.sdk.shared.Transport
+import io.ktor.client.engine.cio.CIO as ClientCIO
+
+class StreamableHttpAuthenticationTest : AbstractAuthenticationTest() {
+
+    override fun Route.registerMcpServer(serverFactory: ApplicationCall.() -> Server) {
+        mcpStreamableHttp {
+            serverFactory(call)
+        }
+    }
+
+    override fun createClientTransport(baseUrl: String, user: String, pass: String): Transport =
+        StreamableHttpClientTransport(
+            client = HttpClient(ClientCIO) { install(SSE) },
+            url = baseUrl,
+            requestBuilder = { basicAuth(user, pass) },
+        )
+}

kotlin-sdk-server/api/kotlin-sdk-server.api

@@ -8,10 +8,30 @@ public final class io/modelcontextprotocol/kotlin/sdk/server/KtorServerKt {
 	public static final fun mcp (Lio/ktor/server/application/Application;Lkotlin/jvm/functions/Function1;)V
 	public static final fun mcp (Lio/ktor/server/routing/Route;Ljava/lang/String;Lkotlin/jvm/functions/Function1;)V
 	public static final fun mcp (Lio/ktor/server/routing/Route;Lkotlin/jvm/functions/Function1;)V
-	public static final fun mcpStatelessStreamableHttp (Lio/ktor/server/application/Application;Ljava/lang/String;ZLjava/util/List;Ljava/util/List;Lio/modelcontextprotocol/kotlin/sdk/server/EventStore;Lkotlin/jvm/functions/Function1;)V
-	public static synthetic fun mcpStatelessStreamableHttp$default (Lio/ktor/server/application/Application;Ljava/lang/String;ZLjava/util/List;Ljava/util/List;Lio/modelcontextprotocol/kotlin/sdk/server/EventStore;Lkotlin/jvm/functions/Function1;ILjava/lang/Object;)V
-	public static final fun mcpStreamableHttp (Lio/ktor/server/application/Application;Ljava/lang/String;ZLjava/util/List;Ljava/util/List;Lio/modelcontextprotocol/kotlin/sdk/server/EventStore;Lkotlin/jvm/functions/Function1;)V
-	public static synthetic fun mcpStreamableHttp$default (Lio/ktor/server/application/Application;Ljava/lang/String;ZLjava/util/List;Ljava/util/List;Lio/modelcontextprotocol/kotlin/sdk/server/EventStore;Lkotlin/jvm/functions/Function1;ILjava/lang/Object;)V
+	public static final fun mcpStatelessStreamableHttp (Lio/ktor/server/application/Application;Ljava/lang/String;Lkotlin/jvm/functions/Function1;Lkotlin/jvm/functions/Function1;)V
+	public static final fun mcpStatelessStreamableHttp (Lio/ktor/server/routing/Route;Ljava/lang/String;Lkotlin/jvm/functions/Function1;Lkotlin/jvm/functions/Function1;)V
+	public static final fun mcpStatelessStreamableHttp (Lio/ktor/server/routing/Route;Lkotlin/jvm/functions/Function1;Lkotlin/jvm/functions/Function1;)V
+	public static synthetic fun mcpStatelessStreamableHttp$default (Lio/ktor/server/application/Application;Ljava/lang/String;Lkotlin/jvm/functions/Function1;Lkotlin/jvm/functions/Function1;ILjava/lang/Object;)V
+	public static synthetic fun mcpStatelessStreamableHttp$default (Lio/ktor/server/routing/Route;Ljava/lang/String;Lkotlin/jvm/functions/Function1;Lkotlin/jvm/functions/Function1;ILjava/lang/Object;)V
+	public static synthetic fun mcpStatelessStreamableHttp$default (Lio/ktor/server/routing/Route;Lkotlin/jvm/functions/Function1;Lkotlin/jvm/functions/Function1;ILjava/lang/Object;)V
+	public static final fun mcpStreamableHttp (Lio/ktor/server/application/Application;Ljava/lang/String;Lkotlin/jvm/functions/Function1;Lkotlin/jvm/functions/Function1;)V
+	public static final fun mcpStreamableHttp (Lio/ktor/server/routing/Route;Ljava/lang/String;Lkotlin/jvm/functions/Function1;Lkotlin/jvm/functions/Function1;)V
+	public static final fun mcpStreamableHttp (Lio/ktor/server/routing/Route;Lkotlin/jvm/functions/Function1;Lkotlin/jvm/functions/Function1;)V
+	public static synthetic fun mcpStreamableHttp$default (Lio/ktor/server/application/Application;Ljava/lang/String;Lkotlin/jvm/functions/Function1;Lkotlin/jvm/functions/Function1;ILjava/lang/Object;)V
+	public static synthetic fun mcpStreamableHttp$default (Lio/ktor/server/routing/Route;Ljava/lang/String;Lkotlin/jvm/functions/Function1;Lkotlin/jvm/functions/Function1;ILjava/lang/Object;)V
+	public static synthetic fun mcpStreamableHttp$default (Lio/ktor/server/routing/Route;Lkotlin/jvm/functions/Function1;Lkotlin/jvm/functions/Function1;ILjava/lang/Object;)V
+}
+
+public final class io/modelcontextprotocol/kotlin/sdk/server/McpStreamableHttpConfig {
+	public fun <init> ()V
+	public final fun getAllowedHosts ()Ljava/util/List;
+	public final fun getAllowedOrigins ()Ljava/util/List;
+	public final fun getEnableDnsRebindingProtection ()Z
+	public final fun getEventStore ()Lio/modelcontextprotocol/kotlin/sdk/server/EventStore;
+	public final fun setAllowedHosts (Ljava/util/List;)V
+	public final fun setAllowedOrigins (Ljava/util/List;)V
+	public final fun setEnableDnsRebindingProtection (Z)V
+	public final fun setEventStore (Lio/modelcontextprotocol/kotlin/sdk/server/EventStore;)V
 }
 
 public final class io/modelcontextprotocol/kotlin/sdk/server/RegisteredPrompt : io/modelcontextprotocol/kotlin/sdk/server/Feature {

kotlin-sdk-server/src/jvmTest/kotlin/io/modelcontextprotocol/kotlin/sdk/server/AbstractKtorExtensionsTest.kt

@@ -3,6 +3,7 @@ package io.modelcontextprotocol.kotlin.sdk.server
 import io.kotest.assertions.ktor.client.shouldHaveContentType
 import io.kotest.assertions.ktor.client.shouldHaveStatus
 import io.ktor.client.HttpClient
+import io.ktor.client.request.HttpRequestBuilder
 import io.ktor.client.request.post
 import io.ktor.client.request.prepareGet
 import io.ktor.client.request.setBody
@@ -29,9 +30,14 @@ abstract class AbstractKtorExtensionsTest {
      * - GET returns 200 with `text/event-stream` content type (SSE endpoint)
      * - POST with a valid MCP payload and session returns 202 Accepted
      * - POST without a sessionId returns 400 Bad Request
+     *
+     * Use [configureRequest] to add headers (e.g. `basicAuth(...)`) to every request.
      */
-    protected suspend fun HttpClient.assertMcpEndpointsAt(path: String) {
-        prepareGet(path).execute { response ->
+    protected suspend fun HttpClient.assertMcpEndpointsAt(
+        path: String,
+        configureRequest: HttpRequestBuilder.() -> Unit = {},
+    ) {
+        prepareGet(path) { configureRequest() }.execute { response ->
             response.shouldHaveStatus(HttpStatusCode.OK)
             response.shouldHaveContentType(sseContentType)
 
@@ -58,11 +64,12 @@ abstract class AbstractKtorExtensionsTest {
             val postResponse = post("$path?sessionId=$sessionId") {
                 contentType(ContentType.Application.Json)
                 setBody("""{"jsonrpc":"2.0","id":1,"method":"ping"}""")
+                configureRequest()
             }
             postResponse.shouldHaveStatus(HttpStatusCode.Accepted)
         }
 
         // POST without sessionId returns 400 Bad Request
-        post(path).shouldHaveStatus(HttpStatusCode.BadRequest)
+        post(path) { configureRequest() }.shouldHaveStatus(HttpStatusCode.BadRequest)
     }
 }