MCP authorization 2025-03-26 server spec implementation

lib/mcp.rb

@@ -2,6 +2,7 @@
 
 require_relative "mcp/server"
 require_relative "mcp/string_utils"
+require_relative "mcp/serialization_utils"
 require_relative "mcp/tool"
 require_relative "mcp/tool/input_schema"
 require_relative "mcp/tool/annotations"
@@ -18,6 +19,24 @@
 require_relative "mcp/version"
 require_relative "mcp/configuration"
 require_relative "mcp/methods"
+require_relative "mcp/auth/errors"
+require_relative "mcp/auth/models"
+require_relative "mcp/auth/server/provider"
+require_relative "mcp/auth/server/settings"
+require_relative "mcp/auth/server/uri_helper"
+require_relative "mcp/auth/server/registries/client_registry"
+require_relative "mcp/auth/server/registries/state_registry"
+require_relative "mcp/auth/server/registries/auth_code_registry"
+require_relative "mcp/auth/server/registries/token_registry"
+require_relative "mcp/auth/server/registries/in_memory_registry"
+require_relative "mcp/auth/server/request_parser"
+require_relative "mcp/auth/server/providers/mcp_authorization_server_provider"
+require_relative "mcp/auth/server/handlers"
+require_relative "mcp/auth/server/handlers/metadata_handler"
+require_relative "mcp/auth/server/handlers/registration_handler"
+require_relative "mcp/auth/server/handlers/authorization_handler"
+require_relative "mcp/auth/server/handlers/callback_handler"
+require_relative "mcp/auth/server/handlers/token_handler"
 
 module MCP
   class << self

lib/mcp/auth/errors.rb

@@ -0,0 +1,72 @@
+# frozen_string_literal: true
+
+module MCP
+  module Auth
+    module Errors
+      class InvalidScopeError < StandardError; end
+
+      class InvalidGrantsError < StandardError; end
+
+      class InvalidRedirectUriError < StandardError; end
+
+      class MissingClientIdError < StandardError; end
+
+      class RegistrationError < StandardError
+        INVALID_REDIRECT_URI = "invalid_redirect_uri"
+        INVALID_CLIENT_METADATA = "invalid_client_metadata"
+        INVALID_SOFTWARE_STATEMENT = "invalid_software_statement"
+        UNAPPROVED_SOFTARE_STATEMENT = "unapproved_software_statement"
+
+        attr_reader :error_code
+
+        def initialize(error_code:, message: nil)
+          super(message)
+          @error_code = error_code
+        end
+      end
+
+      class ClientAuthenticationError < StandardError; end
+
+      class AuthorizationError < StandardError
+        INVALID_REQUEST = "invalid_request"
+        UNAUTHORIZED_CLIENT = "unauthorized_client"
+        ACCESS_DENIED = "access_denied"
+        UNSUPPORTED_RESPONSE_TYPE = "unsupported_response_type"
+        INVALID_SCOPE = "invalid_scope"
+        SERVER_ERROR = "server_error"
+        TEMPORARILY_UNAVAILABLE = "temporarily_unavailable"
+
+        attr_reader :error_code
+
+        def initialize(error_code:, message: nil)
+          super(message)
+          @error_code = error_code
+        end
+
+        class << self
+          def invalid_request(message)
+            AuthorizationError.new(error_code: INVALID_REQUEST, message:)
+          end
+
+          def invalid_grant(message)
+            AuthorizationError.new(error_code: INVALID_GRANT, message:)
+          end
+        end
+      end
+
+      class TokenError < StandardError
+        INVALID_REQUEST = "invalid_request"
+        INVALID_CLIENT = "invalid_client"
+        INVALID_GRANT = "invalid_grant"
+        UNAUTHORIZED_CLIENT = "unauthorized_client"
+        UNSUPPORTED_GRANT_TYPE = "unsupported_grant_type"
+        INVALID_SCOPE = "invalid_scope"
+
+        def initialize(error_code:, message: nil)
+          super(message)
+          @error_code = error_code
+        end
+      end
+    end
+  end
+end