fix(client): preserve OAuth metadata across repeated 401s

Author: rechedev9

.changeset/fix-scope-overwrite-infinite-reauth.md

@@ -1,5 +1,6 @@
 ---
 '@modelcontextprotocol/client': patch
+'@modelcontextprotocol/core': patch
 ---
 
 Fix: accumulate OAuth scopes on 401/403 instead of overwriting

packages/client/src/client/sse.ts

@@ -142,7 +142,9 @@ export class SSEClientTransport implements Transport {
                         this._last401Response = response;
                         if (response.headers.has('www-authenticate')) {
                             const { resourceMetadataUrl, scope } = extractWWWAuthenticateParams(response);
-                            this._resourceMetadataUrl = resourceMetadataUrl;
+                            if (resourceMetadataUrl) {
+                                this._resourceMetadataUrl = resourceMetadataUrl;
+                            }
                             this._scope = mergeScopes(this._scope, scope);
                         }
                     }
@@ -277,7 +279,9 @@ export class SSEClientTransport implements Transport {
                 if (response.status === 401 && this._authProvider) {
                     if (response.headers.has('www-authenticate')) {
                         const { resourceMetadataUrl, scope } = extractWWWAuthenticateParams(response);
-                        this._resourceMetadataUrl = resourceMetadataUrl;
+                        if (resourceMetadataUrl) {
+                            this._resourceMetadataUrl = resourceMetadataUrl;
+                        }
                         this._scope = mergeScopes(this._scope, scope);
                     }
 

packages/client/src/client/streamableHttp.ts

@@ -222,7 +222,9 @@ export class StreamableHTTPClientTransport implements Transport {
                 if (response.status === 401 && this._authProvider) {
                     if (response.headers.has('www-authenticate')) {
                         const { resourceMetadataUrl, scope } = extractWWWAuthenticateParams(response);
-                        this._resourceMetadataUrl = resourceMetadataUrl;
+                        if (resourceMetadataUrl) {
+                            this._resourceMetadataUrl = resourceMetadataUrl;
+                        }
                         this._scope = mergeScopes(this._scope, scope);
                     }
 
@@ -515,7 +517,9 @@ export class StreamableHTTPClientTransport implements Transport {
                     // Store WWW-Authenticate params for interactive finishAuth() path
                     if (response.headers.has('www-authenticate')) {
                         const { resourceMetadataUrl, scope } = extractWWWAuthenticateParams(response);
-                        this._resourceMetadataUrl = resourceMetadataUrl;
+                        if (resourceMetadataUrl) {
+                            this._resourceMetadataUrl = resourceMetadataUrl;
+                        }
                         this._scope = mergeScopes(this._scope, scope);
                     }
 

packages/client/test/client/sse.test.ts

@@ -1252,6 +1252,79 @@ describe('SSEClientTransport', () => {
             const finalScopeTokens = String(finalScope).split(' ').toSorted();
             expect(finalScopeTokens).toEqual(['read:op1', 'read:op2']);
         });
+
+        it('preserves resource metadata URL across repeated 401 POST responses without resource_metadata', async () => {
+            resourceServer.close();
+
+            let postCallCount = 0;
+            const resourceMetadataUrl = 'http://example.com/.well-known/oauth-protected-resource';
+            resourceServer = createServer((req, res) => {
+                lastServerRequest = req;
+
+                if (req.method === 'GET') {
+                    if (req.url !== '/') {
+                        res.writeHead(404).end();
+                        return;
+                    }
+
+                    res.writeHead(200, {
+                        'Content-Type': 'text/event-stream',
+                        'Cache-Control': 'no-cache, no-transform',
+                        Connection: 'keep-alive'
+                    });
+                    res.write('event: endpoint\n');
+                    res.write(`data: ${resourceBaseUrl.href}\n\n`);
+                    return;
+                }
+
+                if (req.method === 'POST') {
+                    postCallCount++;
+                    if (postCallCount === 1) {
+                        res.writeHead(401, {
+                            'WWW-Authenticate': `Bearer resource_metadata="${resourceMetadataUrl}", scope="read:op1"`
+                        });
+                        res.end();
+                    } else if (postCallCount === 2) {
+                        res.writeHead(401, {
+                            'WWW-Authenticate': 'Bearer scope="read:op2"'
+                        });
+                        res.end();
+                    } else {
+                        res.writeHead(200);
+                        res.end();
+                    }
+                }
+            });
+
+            resourceBaseUrl = await listenOnRandomPort(resourceServer);
+
+            const minimalAuthProvider: AuthProvider = {
+                token: vi.fn().mockResolvedValue('test-token')
+            };
+
+            transport = new SSEClientTransport(resourceBaseUrl, {
+                authProvider: minimalAuthProvider
+            });
+
+            await transport.start();
+
+            const message: JSONRPCMessage = {
+                jsonrpc: '2.0',
+                id: '1',
+                method: 'test',
+                params: {}
+            };
+
+            await expect(transport.send(message)).rejects.toThrow(UnauthorizedError);
+            expect((transport as unknown as { _resourceMetadataUrl: URL | undefined })['_resourceMetadataUrl']).toEqual(
+                new URL(resourceMetadataUrl)
+            );
+
+            await expect(transport.send(message)).rejects.toThrow(UnauthorizedError);
+            expect((transport as unknown as { _resourceMetadataUrl: URL | undefined })['_resourceMetadataUrl']).toEqual(
+                new URL(resourceMetadataUrl)
+            );
+        });
     });
 
     describe('custom fetch in auth code paths', () => {

packages/client/test/client/streamableHttp.test.ts

@@ -723,21 +723,23 @@ describe('StreamableHTTPClientTransport', () => {
         const authSpy = vi.spyOn(authModule, 'auth');
         authSpy.mockResolvedValue('AUTHORIZED');
 
-        await transport.send(message);
-
-        // Verify fetch was called twice
-        expect(fetchMock).toHaveBeenCalledTimes(2);
+        try {
+            await transport.send(message);
 
-        // Verify auth was called with the new scope
-        expect(authSpy).toHaveBeenCalledWith(
-            mockAuthProvider,
-            expect.objectContaining({
-                scope: 'new_scope',
-                resourceMetadataUrl: new URL('http://example.com/resource')
-            })
-        );
+            // Verify fetch was called twice
+            expect(fetchMock).toHaveBeenCalledTimes(2);
 
-        authSpy.mockRestore();
+            // Verify auth was called with the new scope
+            expect(authSpy).toHaveBeenCalledWith(
+                mockAuthProvider,
+                expect.objectContaining({
+                    scope: 'new_scope',
+                    resourceMetadataUrl: new URL('http://example.com/resource')
+                })
+            );
+        } finally {
+            authSpy.mockRestore();
+        }
     });
 
     it('prevents infinite upscoping on repeated 403', async () => {
@@ -765,21 +767,23 @@ describe('StreamableHTTPClientTransport', () => {
         const authSpy = vi.spyOn(authModule as typeof import('../../src/client/auth.js'), 'auth');
         authSpy.mockResolvedValue('AUTHORIZED');
 
-        // First send: should trigger upscoping
-        await expect(transport.send(message)).rejects.toThrow('Server returned 403 after trying upscoping');
+        try {
+            // First send: should trigger upscoping
+            await expect(transport.send(message)).rejects.toThrow('Server returned 403 after trying upscoping');
 
-        expect(fetchMock).toHaveBeenCalledTimes(2); // Initial call + one retry after auth
-        expect(authSpy).toHaveBeenCalledTimes(1); // Auth called once
+            expect(fetchMock).toHaveBeenCalledTimes(2); // Initial call + one retry after auth
+            expect(authSpy).toHaveBeenCalledTimes(1); // Auth called once
 
-        // Second send: should fail immediately without re-calling auth
-        fetchMock.mockClear();
-        authSpy.mockClear();
-        await expect(transport.send(message)).rejects.toThrow('Server returned 403 after trying upscoping');
+            // Second send: should fail immediately without re-calling auth
+            fetchMock.mockClear();
+            authSpy.mockClear();
+            await expect(transport.send(message)).rejects.toThrow('Server returned 403 after trying upscoping');
 
-        expect(fetchMock).toHaveBeenCalledTimes(1); // Only one fetch call
-        expect(authSpy).not.toHaveBeenCalled(); // Auth not called again
-
-        authSpy.mockRestore();
+            expect(fetchMock).toHaveBeenCalledTimes(1); // Only one fetch call
+            expect(authSpy).not.toHaveBeenCalled(); // Auth not called again
+        } finally {
+            authSpy.mockRestore();
+        }
     });
 
     describe('mergeScopes behavior (via transport)', () => {
@@ -965,17 +969,60 @@ describe('StreamableHTTPClientTransport', () => {
         const authSpy = vi.spyOn(authModule, 'auth');
         authSpy.mockResolvedValue('AUTHORIZED');
 
-        await expect(
-            transport.send({
-                jsonrpc: '2.0',
-                method: 'test',
-                params: {},
-                id: 'test-id'
+        try {
+            await expect(
+                transport.send({
+                    jsonrpc: '2.0',
+                    method: 'test',
+                    params: {},
+                    id: 'test-id'
+                })
+            ).rejects.toThrow('Server returned 403 after trying upscoping');
+
+            expect(authSpy).toHaveBeenCalledTimes(1);
+        } finally {
+            authSpy.mockRestore();
+        }
+    });
+
+    it('preserves resource metadata URL across 401 responses without resource_metadata', async () => {
+        const message: JSONRPCMessage = {
+            jsonrpc: '2.0',
+            method: 'test',
+            params: {},
+            id: 'test-id'
+        };
+
+        const resourceMetadataUrl = 'http://example.com/.well-known/oauth-protected-resource';
+        (globalThis.fetch as Mock)
+            .mockResolvedValueOnce({
+                ok: false,
+                status: 401,
+                statusText: 'Unauthorized',
+                headers: new Headers({
+                    'WWW-Authenticate': `Bearer resource_metadata="${resourceMetadataUrl}", scope="read:op1"`
+                }),
+                text: () => Promise.resolve('Unauthorized')
             })
-        ).rejects.toThrow('Server returned 403 after trying upscoping');
+            .mockResolvedValueOnce({
+                ok: false,
+                status: 401,
+                statusText: 'Unauthorized',
+                headers: new Headers({
+                    'WWW-Authenticate': 'Bearer scope="read:op2"'
+                }),
+                text: () => Promise.resolve('Unauthorized')
+            });
+
+        await expect(transport.send(message)).rejects.toThrow(UnauthorizedError);
+        expect((transport as unknown as { _resourceMetadataUrl: URL | undefined })._resourceMetadataUrl).toEqual(
+            new URL(resourceMetadataUrl)
+        );
 
-        expect(authSpy).toHaveBeenCalledTimes(1);
-        authSpy.mockRestore();
+        await expect(transport.send(message)).rejects.toThrow(UnauthorizedError);
+        expect((transport as unknown as { _resourceMetadataUrl: URL | undefined })._resourceMetadataUrl).toEqual(
+            new URL(resourceMetadataUrl)
+        );
     });
 
     describe('Reconnection Logic', () => {