Skip to content

feat: add positive tests for the Authorization Code Grant #267

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
Michito-Okai wants to merge 1 commit into
base: main
Choose a base branch
from
Open

feat: add positive tests for the Authorization Code Grant #267

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
18 changes: 17 additions & 1 deletion src/index.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -464,6 +464,14 @@ program
'Run conformance tests against an authorization server implementation'
)
.requiredOption('--url <url>', 'URL of the authorization server issuer')
.requiredOption('--client-id <client>', 'Client ID')
.requiredOption('--secret <secret>', 'Client Secret')
.option(
'-p, --port <port>',
'redirect uri port',
(value) => Number(value),
3000
)
.option('-o, --output-dir <path>', 'Save results to this directory')
.option(
'--spec-version <version>',
Expand Down Expand Up @@ -492,14 +500,22 @@ program
);

const allResults: { scenario: string; checks: ConformanceCheck[] }[] = [];
const details: Record<string, unknown> = {};
for (const scenarioName of scenarios) {
console.log(`\n=== Running scenario: ${scenarioName} ===`);
try {
const result = await runAuthorizationServerConformanceTest(
validated.url,
validated,
scenarioName,
details,
outputDir
);
if (
result.checks[0].status === 'SUCCESS' &&
result.checks[0].details
) {
details[scenarioName] = result.checks[0].details;
}
allResults.push({ scenario: scenarioName, checks: result.checks });
} catch (error) {
console.error(`Failed to run scenario ${scenarioName}:`, error);
Expand Down
8 changes: 5 additions & 3 deletions src/runner/authorization-server.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -3,10 +3,12 @@ import path from 'path';
import { ConformanceCheck } from '../types';
import { getClientScenarioForAuthorizationServer } from '../scenarios';
import { createResultDir } from './utils';
import { AuthorizationServerOptions } from '../schemas';

export async function runAuthorizationServerConformanceTest(
serverUrl: string,
option: AuthorizationServerOptions,
scenarioName: string,
details: Record<string, unknown>,
outputDir?: string
): Promise<{
checks: ConformanceCheck[];
Expand All @@ -28,10 +30,10 @@ export async function runAuthorizationServerConformanceTest(
const scenario = getClientScenarioForAuthorizationServer(scenarioName)!;

console.log(
`Running client scenario for authorization server '${scenarioName}' against server: ${serverUrl}`
`Running client scenario for authorization server '${scenarioName}' against server: ${option.url}`
);

const checks = await scenario.run(serverUrl);
const checks = await scenario.run(option, details);

if (resultDir) {
await fs.writeFile(
Expand Down
40 changes: 40 additions & 0 deletions src/scenarios/authorization-server/auth/helpers/createCallbackServer.ts
View file
Open in desktop
Copy link
Copy Markdown
Contributor

@tnorimat tnorimat May 15, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

It seems that the files under client directory should be for MCP client tests. Therefore, it might be good that the file be moved to authorization-server/auth/helpers directory.
What do you think about that?

Copy link
Copy Markdown
Contributor Author

@Michito-Okai Michito-Okai May 15, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I added authorization-server/auth/helpers/createCallbackServer.ts and removed client/auth/helpers/createCallbackServer.ts.

Copy link
Copy Markdown
Contributor

@tnorimat tnorimat May 15, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thank you.

Original file line number Diff line number Diff line change
@@ -0,0 +1,40 @@
import express from 'express';

export interface CallbackServer {
waitForCallback: (timeoutMs: number) => Promise<string>;
}

export function startCallbackServer(port: number): CallbackServer {
const app = express();

let resolveFn: (url: string) => void;

const promise = new Promise<string>((resolve) => {
resolveFn = resolve;
});

const server = app.listen(port, '127.0.0.1', () => {
console.log(`Callback server started: http://localhost:${port}`);
});

app.use((req, res) => {
const fullUrl = `${req.protocol}://${req.get('host')}${req.originalUrl}`;
res.send('OK. You can close this page.');

server.close();
resolveFn(fullUrl);
});

return {
waitForCallback: (timeoutMs: number) =>
Promise.race([
promise,
new Promise<string>((_, reject) =>
setTimeout(() => {
server.close();
reject(new Error('Timeout: No callback received'));
}, timeoutMs)
)
])
};
}
12 changes: 12 additions & 0 deletions src/scenarios/authorization-server/auth/spec-references.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,12 @@
import { SpecReference } from '../../../types';

export const SpecReferences: { [key: string]: SpecReference } = {
MCP_AUTH_DISCOVERY: {
id: 'MCP-Authorization-metadata-discovery',
url: 'https://modelcontextprotocol.io/specification/2025-11-25/basic/authorization#authorization-server-metadata-discovery'
},
OAUTH_2_1_AUTHORIZATION_CODE_GRANT: {
id: 'OAUTH-2.1-authorization-code-grant',
url: 'https://www.ietf.org/archive/id/draft-ietf-oauth-v2-1-13.html#section-4.1'
}
};
Loading
Loading