Skip to content

Add IncludeResourceIndicator option for OAuth and DI client sample#1402

Open
Varun6578 wants to merge 2 commits intomodelcontextprotocol:mainfrom
Varun6578:fix/oauth-resource-indicator-and-di-sample
Open

Add IncludeResourceIndicator option for OAuth and DI client sample#1402
Varun6578 wants to merge 2 commits intomodelcontextprotocol:mainfrom
Varun6578:fix/oauth-resource-indicator-and-di-sample

Conversation

@Varun6578
Copy link

@Varun6578 Varun6578 commented Feb 28, 2026

Summary

This PR addresses two issues from the Backlog milestone:

Fix #648: OAuth authentication fails with MS Entra-ID

The SDK sends a resource parameter (RFC 8707) in OAuth authorization, token exchange, and token refresh requests. MS Entra-ID v2.0 does not support this parameter and returns AADSTS901002.

Changes:

  • Added IncludeResourceIndicator property to ClientOAuthOptions (defaults to true for backward compatibility)
  • When set to false, the resource parameter is omitted from all OAuth requests
  • Added test verifying the authorization URL omits the resource parameter when the option is disabled

Usage:

OAuth = new()
{
    ClientId = "my-client",
    RedirectUri = new Uri("http://localhost:1179/callback"),
    IncludeResourceIndicator = false, // For Entra-ID compatibility
    AuthorizationRedirectDelegate = HandleAuthorizationUrlAsync,
}

Fix #147: Add client sample with DI guidance

  • Created samples/DependencyInjectionClient showing how to register McpClient as a singleton via IServiceCollection and consume it from an IHostedService
  • Added DI wiring + Docker transport guidance section to docs/concepts/getting-started.md
  • Added new sample project to the solution file

Testing

  • All 49 OAuth tests pass across net8.0, net9.0, and net10.0
  • New test CanAuthenticate_WithoutResourceIndicator validates the feature
  • DI sample compiles and builds successfully

Varun Sharma and others added 2 commits February 28, 2026 14:31
Add IncludeResourceIndicator option for OAuth and DI client sample
ac75230 
Fix modelcontextprotocol#648: Add IncludeResourceIndicator option to ClientOAuthOptions to
allow suppressing the RFC 8707 'resource' parameter in OAuth requests.
This enables compatibility with OAuth providers like MS Entra-ID (Azure
AD v2.0) that do not support the resource parameter.

Fix modelcontextprotocol#147: Add DependencyInjectionClient sample project demonstrating
how to wire up MCP clients with Microsoft.Extensions.DependencyInjection
and IHostedService. Add DI guidance section to getting-started docs.

Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
Fix silent token refresh to respect IncludeResourceIndicator and add …
b653294 
…doc warning

- GetAccessTokenSilentAsync now omits the resource parameter from token
  refresh requests when IncludeResourceIndicator is false, matching the
  behavior of the 401 handler and authorization URL paths.
- Added warning comment in getting-started.md about .GetAwaiter().GetResult()
  deadlock risk in SynchronizationContext environments.
- Added end-to-end tests with mock Entra ID server (ExpectResource=false)
  validating full auth flow and token refresh without resource parameter.

Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
@Varun6578 Varun6578 force-pushed the fix/oauth-resource-indicator-and-di-sample branch from 5819a96 to b653294 Compare February 28, 2026 10:19
halter73
halter73 reviewed Mar 2, 2026
View reviewed changes
src/ModelContextProtocol.Core/Authentication/ClientOAuthOptions.cs
/// which returns error <c>AADSTS901002</c> when the parameter is present.
/// </para>
/// </remarks>
public bool IncludeResourceIndicator { get; set; } = true;
Copy link
Contributor

@halter73 halter73 Mar 2, 2026
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Configuring this to false is insecure for MCP apps. We're required by the spec to send the resource parameter because of this.

See #940 (comment) for more context.

MCP servers are different than most HTTP servers using OAuth authorization code flow that can rely on TLS and limiting redirect URIs to ensure authorization codes and ultimately access tokens don't get sent to the wrong HTTP server (which is the OAuth client in the scenario). MCP uses the authorization code flow to send the authorization code to a non-first-party, non-browser client. Without a resource parameter, neither Entra nor any other OAuth server have any way to validate that the token will be sent to the expected MCP server. And your MCP server has no way to validate that the access token was sent directly to it rather than main-in-the-middled (MITM'd).

The lack of a resource parameter would make it trivial for another MCP server to copy your Protected Resource Metadata document and then MITM your MCP server. All the attacker would need to do is convince someone to enter the wrong URL into their MCP config while protending to be your server. The end-user's browser will happily autofill their credentials as they go to the real OAuth provider's website even though the resulting access token will ultimately be sent to the attackers MCP server first by the non-conforming MCP client that does not send the resource parameter.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@halter73 halter73 halter73 left review comments

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

OAuth authentication request fails with MS Entra-ID Add client sample w/ guidance on wiring up dependency injection

2 participants

@Varun6578 @halter73