fix(compat): export OAuth subclass type aliases (value+type binding like v1); fix changeset count

felixweinberger · felixweinberger · commit 28c5c7a142ad · 2026-04-17T10:53:55.000Z
diff --git a/.changeset/error-compat-aliases.md b/.changeset/error-compat-aliases.md
@@ -3,4 +3,4 @@
 '@modelcontextprotocol/server': patch
 ---
 
-Add v1-compat `@deprecated` error aliases: `McpError`/`ErrorCode` (alias `ProtocolError`/`ProtocolErrorCode`, with `ConnectionClosed`/`RequestTimeout` from `SdkErrorCode`), `OAuthError.errorCode` getter (alias `.code`), `JSONRPCError`/`isJSONRPCError`, the 17 v1 OAuth error subclasses (`InvalidTokenError`, `ServerError`, …) as thin wrappers around `OAuthError` + `OAuthErrorCode`, and `StreamableHTTPError` as an `SdkError` subclass that the StreamableHTTP client transport now throws (so `instanceof StreamableHTTPError` matches; `.status` carries the HTTP status code).
+Add v1-compat `@deprecated` error aliases: `McpError`/`ErrorCode` (alias `ProtocolError`/`ProtocolErrorCode`, with `ConnectionClosed`/`RequestTimeout` from `SdkErrorCode`), `OAuthError.errorCode` getter (alias `.code`), `JSONRPCError`/`isJSONRPCError`, 16 of the 17 v1 OAuth error subclasses (`InvalidTokenError`, `ServerError`, … — `InvalidRequestError` is omitted from the public surface to avoid colliding with the JSON-RPC `InvalidRequest` type) as thin wrappers around `OAuthError` + `OAuthErrorCode`, and `StreamableHTTPError` as an `SdkError` subclass that the StreamableHTTP client transport now throws (so `instanceof StreamableHTTPError` matches; `.status` carries the HTTP status code).
diff --git a/packages/core/src/errors/oauthErrorsCompat.ts b/packages/core/src/errors/oauthErrorsCompat.ts
@@ -27,42 +27,59 @@ function sub(code: OAuthErrorCode, name: string): OAuthErrorSubclass {
     return Sub;
 }
 
-/* eslint-disable @typescript-eslint/naming-convention */
+/* eslint-disable @typescript-eslint/naming-convention, @typescript-eslint/no-redeclare */
 
 /** @deprecated Use `OAuthError` with `OAuthErrorCode.InvalidRequest`. */
 export const InvalidRequestError = sub(OAuthErrorCode.InvalidRequest, 'InvalidRequestError');
+export type InvalidRequestError = InstanceType<typeof InvalidRequestError>;
 /** @deprecated Use `OAuthError` with `OAuthErrorCode.InvalidClient`. */
 export const InvalidClientError = sub(OAuthErrorCode.InvalidClient, 'InvalidClientError');
+export type InvalidClientError = InstanceType<typeof InvalidClientError>;
 /** @deprecated Use `OAuthError` with `OAuthErrorCode.InvalidGrant`. */
 export const InvalidGrantError = sub(OAuthErrorCode.InvalidGrant, 'InvalidGrantError');
+export type InvalidGrantError = InstanceType<typeof InvalidGrantError>;
 /** @deprecated Use `OAuthError` with `OAuthErrorCode.UnauthorizedClient`. */
 export const UnauthorizedClientError = sub(OAuthErrorCode.UnauthorizedClient, 'UnauthorizedClientError');
+export type UnauthorizedClientError = InstanceType<typeof UnauthorizedClientError>;
 /** @deprecated Use `OAuthError` with `OAuthErrorCode.UnsupportedGrantType`. */
 export const UnsupportedGrantTypeError = sub(OAuthErrorCode.UnsupportedGrantType, 'UnsupportedGrantTypeError');
+export type UnsupportedGrantTypeError = InstanceType<typeof UnsupportedGrantTypeError>;
 /** @deprecated Use `OAuthError` with `OAuthErrorCode.InvalidScope`. */
 export const InvalidScopeError = sub(OAuthErrorCode.InvalidScope, 'InvalidScopeError');
+export type InvalidScopeError = InstanceType<typeof InvalidScopeError>;
 /** @deprecated Use `OAuthError` with `OAuthErrorCode.AccessDenied`. */
 export const AccessDeniedError = sub(OAuthErrorCode.AccessDenied, 'AccessDeniedError');
+export type AccessDeniedError = InstanceType<typeof AccessDeniedError>;
 /** @deprecated Use `OAuthError` with `OAuthErrorCode.ServerError`. */
 export const ServerError = sub(OAuthErrorCode.ServerError, 'ServerError');
+export type ServerError = InstanceType<typeof ServerError>;
 /** @deprecated Use `OAuthError` with `OAuthErrorCode.TemporarilyUnavailable`. */
 export const TemporarilyUnavailableError = sub(OAuthErrorCode.TemporarilyUnavailable, 'TemporarilyUnavailableError');
+export type TemporarilyUnavailableError = InstanceType<typeof TemporarilyUnavailableError>;
 /** @deprecated Use `OAuthError` with `OAuthErrorCode.UnsupportedResponseType`. */
 export const UnsupportedResponseTypeError = sub(OAuthErrorCode.UnsupportedResponseType, 'UnsupportedResponseTypeError');
+export type UnsupportedResponseTypeError = InstanceType<typeof UnsupportedResponseTypeError>;
 /** @deprecated Use `OAuthError` with `OAuthErrorCode.UnsupportedTokenType`. */
 export const UnsupportedTokenTypeError = sub(OAuthErrorCode.UnsupportedTokenType, 'UnsupportedTokenTypeError');
+export type UnsupportedTokenTypeError = InstanceType<typeof UnsupportedTokenTypeError>;
 /** @deprecated Use `OAuthError` with `OAuthErrorCode.InvalidToken`. */
 export const InvalidTokenError = sub(OAuthErrorCode.InvalidToken, 'InvalidTokenError');
+export type InvalidTokenError = InstanceType<typeof InvalidTokenError>;
 /** @deprecated Use `OAuthError` with `OAuthErrorCode.MethodNotAllowed`. */
 export const MethodNotAllowedError = sub(OAuthErrorCode.MethodNotAllowed, 'MethodNotAllowedError');
+export type MethodNotAllowedError = InstanceType<typeof MethodNotAllowedError>;
 /** @deprecated Use `OAuthError` with `OAuthErrorCode.TooManyRequests`. */
 export const TooManyRequestsError = sub(OAuthErrorCode.TooManyRequests, 'TooManyRequestsError');
+export type TooManyRequestsError = InstanceType<typeof TooManyRequestsError>;
 /** @deprecated Use `OAuthError` with `OAuthErrorCode.InvalidClientMetadata`. */
 export const InvalidClientMetadataError = sub(OAuthErrorCode.InvalidClientMetadata, 'InvalidClientMetadataError');
+export type InvalidClientMetadataError = InstanceType<typeof InvalidClientMetadataError>;
 /** @deprecated Use `OAuthError` with `OAuthErrorCode.InsufficientScope`. */
 export const InsufficientScopeError = sub(OAuthErrorCode.InsufficientScope, 'InsufficientScopeError');
+export type InsufficientScopeError = InstanceType<typeof InsufficientScopeError>;
 /** @deprecated Use `OAuthError` with `OAuthErrorCode.InvalidTarget`. */
 export const InvalidTargetError = sub(OAuthErrorCode.InvalidTarget, 'InvalidTargetError');
+export type InvalidTargetError = InstanceType<typeof InvalidTargetError>;
 
 /**
  * @deprecated Construct {@link OAuthError} directly with a custom code string.
diff --git a/packages/core/test/errors/compat.test.ts b/packages/core/test/errors/compat.test.ts
@@ -50,6 +50,13 @@ describe('v1-compat error aliases', () => {
         expect(e.constructor.name).toBe('InvalidTokenError');
     });
 
+    it('OAuth subclasses are usable in type position (value + type binding like v1 classes)', () => {
+        const e: InvalidTokenError = new InvalidTokenError('expired');
+        const handle = (err: ServerError): string => err.code;
+        expect(handle(new ServerError('boom'))).toBe('server_error');
+        expect(e.code).toBe('invalid_token');
+    });
+
     it('subclass static errorCode and toResponseObject() match v1 wire format', () => {
         expect(ServerError.errorCode).toBe('server_error');
         const e = new ServerError('boom');
