28 Commits

Author	SHA1	Message	Date
Sandy Tao	0228c2b9f0	refactor(core): extract shared OAuth flow primitives from MCPOAuthProvider (#20895)	2026-03-05 17:01:37 +00:00
Adam Weidman	a468407098	chore(core): improve encapsulation and remove unused exports (#19556)	2026-02-19 20:19:32 +00:00
garrettsparks	037061e2e0	use issuer instead of authorization_endpoint for oauth discovery (#17332) ... Co-authored-by: Tommaso Sciortino <sciortino@gmail.com>	2026-02-18 22:38:04 +00:00
Christian Gunderman	fd65416a2f	Disallow unsafe type assertions (#18688)	2026-02-10 00:10:15 +00:00
Emily Hedlund	69f8273481	feat(core): require user consent before MCP server OAuth (#18132)	2026-02-03 21:26:00 +00:00
Adib234	488d5fc439	Refactor: Migrate CLI appEvents to Core coreEvents (#15737)	2026-01-23 16:45:46 +00:00
Jerop Kipruto	798900a6c8	fix(core): Include MCP server name in OAuth message (#17351)	2026-01-23 02:48:15 +00:00
Sehoon Shon	41e01c2321	fix(core): resolve PKCE length issue and stabilize OAuth redirect port (#16815)	2026-01-17 17:18:40 +00:00
Gal Zahavi	9383b54d50	Validate OAuth resource parameter matches MCP server URL (#15289)	2025-12-19 19:33:20 +00:00
Christian Gunderman	942bcfc61e	Disallow redundant typecasts. (#15030)	2025-12-13 01:43:43 +00:00
Chris Coutinho	ab73051298	fix(mcp): replace hardcoded port 7777 with dynamic port allocation for OAuth (#12520)	2025-11-04 07:16:56 +00:00
Chris Coutinho	9187f6f6d1	fix: preserve path components in OAuth issuer URLs (#12448) ... Co-authored-by: gemini-code-assist[bot] <176961590+gemini-code-assist[bot]@users.noreply.github.com> Co-authored-by: Gregory Shikhman <cornmander@cornmander.com>	2025-11-02 21:19:46 +00:00
Sehoon Shon	ab013fb7e9	migrating console.error to debugger for installationManager, oauth-provider, modifiable-tool (#12279)	2025-10-31 18:17:51 +00:00
Jack Wotherspoon	23c906b085	fix: user configured oauth scopes should take precedence over discovered scopes (#12088)	2025-10-27 16:57:12 +00:00
Abhi	b364f37655	refactor(logging): Centralize console logging with debugLogger (#11590)	2025-10-21 20:35:22 +00:00
jleong-stripe	e0ba7e4ffb	For dynamic client registration - use registration endpoint in config if available instead of performing OAuth discovery again (#9231)	2025-09-24 20:53:42 +00:00
Sarah Price	d54cdd8802	fix(mcp): Display OAuth authentication messages in CLI UI instead of debug console (#6919) ... Co-authored-by: Yoichiro Tanaka <yoichiro6642@gmail.com> Co-authored-by: Jacob Richman <jacob314@gmail.com>	2025-09-17 22:25:33 +00:00
shishu314	918ab3c2ec	feat(security) - Make oauth token storage implement the shared interface (#7802) ... Co-authored-by: Shi Shu <shii@google.com>	2025-09-05 16:08:50 +00:00
shishu314	35a841f71a	Feat(security) - Make the OAuthTokenStorage non static (#7716) ... Co-authored-by: Shi Shu <shii@google.com>	2025-09-04 20:42:47 +00:00
shishu314	366483853e	feat(cli) - Define shared interface for storage (#7049) ... Co-authored-by: Shi Shu <shii@google.com>	2025-08-26 21:03:11 +00:00
Pascal Birchler	0f031a7f89	Explict imports & exports with type modifier (#3774)	2025-08-25 22:04:53 +00:00
Brian Ray	2c07dc0757	fixes for oauth spec - adds github oauth support. Resource paramater. (#6281)	2025-08-15 19:14:48 +00:00
Richie Foreman	a90aeb3d8f	chore(build/compiler): Enable a bunch of strict TS compiler options. (#6138)	2025-08-13 20:17:38 +00:00
Mikhail Aksenov	dadf05809c	feat: mcp - support audiences for OAuth2 (#5265)	2025-08-05 22:02:16 +00:00
David East	43d5aaa798	fix(mcp): ensure authorization url is valid when containing query params (#5545) ... Co-authored-by: Jacob Richman <jacob314@gmail.com>	2025-08-05 18:44:30 +00:00
Brian Ray	dc9f17bb4a	New browser launcher for MCP OAuth. (#5261)	2025-08-01 05:47:22 +00:00
Brian Ray	c45c14ee0e	Bug: add resource parameter to MCP OAuth Flow (#4981) ... Co-authored-by: Your Name <you@example.com>	2025-07-27 18:09:45 +00:00
Brian Ray	c5761317f4	MCP OAuth Part 1 - OAuth Infrastructure (#4316)	2025-07-18 14:14:23 +00:00