revert

Author: sks

server/handlers.go

@@ -103,36 +103,6 @@ type discoveryOAuth2 struct {
 	AuthMethods       []string `json:"token_endpoint_auth_methods_supported,omitempty"`
 }
 
-// protectedResourceMetadata represents the OAuth 2.0 Protected Resource Metadata
-// defined in RFC 9728. This enables MCP clients to discover the authorization
-// server(s) that protect this resource.
-type protectedResourceMetadata struct {
-	Resource               string   `json:"resource"`
-	AuthorizationServers   []string `json:"authorization_servers"`
-	ScopesSupported        []string `json:"scopes_supported,omitempty"`
-	BearerMethodsSupported []string `json:"bearer_methods_supported,omitempty"`
-}
-
-func (s *Server) handleProtectedResourceMetadata(w http.ResponseWriter, r *http.Request) {
-	meta := protectedResourceMetadata{
-		Resource:               s.issuerURL.String(),
-		AuthorizationServers:   []string{s.issuerURL.String()},
-		ScopesSupported:        []string{"openid", "email", "groups", "profile", "offline_access"},
-		BearerMethodsSupported: []string{"header"},
-	}
-
-	data, err := json.MarshalIndent(meta, "", "  ")
-	if err != nil {
-		s.logger.ErrorContext(r.Context(), "failed to marshal protected resource metadata", "err", err)
-		s.renderError(r, w, http.StatusInternalServerError, "Internal server error.")
-		return
-	}
-
-	w.Header().Set("Content-Type", "application/json")
-	w.Header().Set("Content-Length", strconv.Itoa(len(data)))
-	w.Write(data)
-}
-
 type DiscoveryType int
 
 const (

server/handlers_test.go

@@ -151,29 +151,6 @@ func TestHandleDiscoveryOAuth2(t *testing.T) {
 	}, res)
 }
 
-func TestHandleProtectedResourceMetadata(t *testing.T) {
-	httpServer, server := newTestServer(t, nil)
-	defer httpServer.Close()
-
-	rr := httptest.NewRecorder()
-	server.ServeHTTP(rr, httptest.NewRequest("GET", "/.well-known/oauth-protected-resource", nil))
-
-	if rr.Code != http.StatusOK {
-		t.Errorf("expected 200 got %d", rr.Code)
-	}
-
-	var res protectedResourceMetadata
-	err := json.NewDecoder(rr.Result().Body).Decode(&res)
-	require.NoError(t, err)
-
-	require.Equal(t, protectedResourceMetadata{
-		Resource:               httpServer.URL,
-		AuthorizationServers:   []string{httpServer.URL},
-		ScopesSupported:        []string{"openid", "email", "groups", "profile", "offline_access"},
-		BearerMethodsSupported: []string{"header"},
-	}, res)
-}
-
 func TestHandleHealthFailure(t *testing.T) {
 	httpServer, server := newTestServer(t, func(c *Config) {
 		c.HealthChecker = gosundheit.New()