mcp-remote 0.1.7 → 0.1.8

package/README.md

@@ -152,6 +152,37 @@ npx mcp-remote https://example.remote/server --transport sse-only
 - `http-only`: Only uses HTTP transport, fails if the server doesn't support it
 - `sse-only`: Only uses SSE transport, fails if the server doesn't support it
 
+### Static OAuth Client Metadata
+
+MCP Remote supports providing static OAuth client metadata instead of using the mcp-remote defaults.
+This is useful when connecting to OAuth servers that expect specific client/software IDs or scopes.
+
+Provide the client metadata as a JSON string or as a `@` prefixed filepath with the `--static-oauth-client-metadata` flag:
+
+```bash
+npx mcp-remote https://example.remote/server --static-oauth-client-metadata '{ "scope": "space separated scopes" }'
+# uses node readfile, so you probably want to use absolute paths if you're not sure what the cwd is
+npx mcp-remote https://example.remote/server --static-oauth-client-metadata '@/Users/username/Library/Application Support/Claude/oauth_client_metadata.json'
+```
+
+### Static OAuth Client Information
+
+Per the [spec](https://modelcontextprotocol.io/specification/2025-03-26/basic/authorization#2-4-dynamic-client-registration),
+servers are encouraged but not required to support [OAuth dynamic client registration](https://datatracker.ietf.org/doc/html/rfc7591).
+
+For these servers, MCP Remote supports providing static OAuth client information instead.
+This is useful when connecting to OAuth servers that require pre-registered clients.
+
+Provide the client metadata as a JSON string or as a `@` prefixed filepath with the `--static-oauth-client-info` flag:
+
+```bash
+export MCP_REMOTE_CLIENT_ID=xxx
+export MCP_REMOTE_CLIENT_SECRET=yyy
+npx mcp-remote https://example.remote/server --static-oauth-client-info "{ \"client_id\": \"$MCP_REMOTE_CLIENT_ID\", \"client_secret\": \"$MCP_REMOTE_CLIENT_SECRET\" }"
+# uses node readfile, so you probably want to use absolute paths if you're not sure what the cwd is
+npx mcp-remote https://example.remote/server --static-oauth-client-info '@/Users/username/Library/Application Support/Claude/oauth_client_info.json'
+```
+
 ### Claude Desktop
 
 [Official Docs](https://modelcontextprotocol.io/quickstart/user)
@@ -208,7 +239,7 @@ Then restarting your MCP client.
 
 ### Check your Node version
 
-Make sure that the version of Node you have installed is [18 or 
+Make sure that the version of Node you have installed is [18 or
 higher](https://modelcontextprotocol.io/quickstart/server). Claude
 Desktop will use your system version of Node, even if you have a newer
 version installed elsewhere.

package/dist/{chunk-ETC3CC4Y.js → chunk-WTVTTD74.js}

@@ -14,7 +14,7 @@ var require_package = __commonJS({
   "package.json"(exports, module) {
     module.exports = {
       name: "mcp-remote",
-      version: "0.1.7",
+      version: "0.1.8",
       description: "Remote proxy for Model Context Protocol, allowing local-only clients to connect to remote servers using oAuth",
       keywords: [
         "mcp",
@@ -6733,7 +6733,7 @@ async function writeTextFile(serverUrlHash, filename, text) {
 import express from "express";
 import net from "net";
 import crypto2 from "crypto";
-import fs2 from "fs/promises";
+import fs2, { readFile } from "fs/promises";
 import path2 from "path";
 import os2 from "os";
 var REASON_AUTH_NEEDED = "authentication-needed";
@@ -7005,8 +7005,8 @@ function setupOAuthCallbackServerWithLongPoll(options) {
       Authorization successful!
       You may close this window and return to the CLI.
       <script>
-        // If this is a non-interactive session (no manual approval step was required) then 
-        // this should automatically close the window. If not, this will have no effect and 
+        // If this is a non-interactive session (no manual approval step was required) then
+        // this should automatically close the window. If not, this will have no effect and
         // the user will see the message above.
         window.close();
       </script>
@@ -7105,6 +7105,32 @@ async function parseCommandLineArgs(args, usage) {
     host = args[hostIndex + 1];
     log(`Using callback hostname: ${host}`);
   }
+  let staticOAuthClientMetadata = null;
+  const staticOAuthClientMetadataIndex = args.indexOf("--static-oauth-client-metadata");
+  if (staticOAuthClientMetadataIndex !== -1 && staticOAuthClientMetadataIndex < args.length - 1) {
+    const staticOAuthClientMetadataArg = args[staticOAuthClientMetadataIndex + 1];
+    if (staticOAuthClientMetadataArg.startsWith("@")) {
+      const filePath = staticOAuthClientMetadataArg.slice(1);
+      staticOAuthClientMetadata = JSON.parse(await readFile(filePath, "utf8"));
+      log(`Using static OAuth client metadata from file: ${filePath}`);
+    } else {
+      staticOAuthClientMetadata = JSON.parse(staticOAuthClientMetadataArg);
+      log(`Using static OAuth client metadata from string`);
+    }
+  }
+  let staticOAuthClientInfo = null;
+  const staticOAuthClientInfoIndex = args.indexOf("--static-oauth-client-info");
+  if (staticOAuthClientInfoIndex !== -1 && staticOAuthClientInfoIndex < args.length - 1) {
+    const staticOAuthClientInfoArg = args[staticOAuthClientInfoIndex + 1];
+    if (staticOAuthClientInfoArg.startsWith("@")) {
+      const filePath = staticOAuthClientInfoArg.slice(1);
+      staticOAuthClientInfo = JSON.parse(await readFile(filePath, "utf8"));
+      log(`Using static OAuth client information from file: ${filePath}`);
+    } else {
+      staticOAuthClientInfo = JSON.parse(staticOAuthClientInfoArg);
+      log(`Using static OAuth client information from string`);
+    }
+  }
   if (!serverUrl) {
     log(usage);
     process.exit(1);
@@ -7156,7 +7182,7 @@ async function parseCommandLineArgs(args, usage) {
       }
     });
   }
-  return { serverUrl, callbackPort, headers, transportStrategy, host, debug };
+  return { serverUrl, callbackPort, headers, transportStrategy, host, debug, staticOAuthClientMetadata, staticOAuthClientInfo };
 }
 function setupSignalHandlers(cleanup) {
   process.on("SIGINT", async () => {
@@ -7190,6 +7216,8 @@ var NodeOAuthClientProvider = class {
     this.clientUri = options.clientUri || "https://github.com/modelcontextprotocol/mcp-cli";
     this.softwareId = options.softwareId || "2e6dc280-f3c3-4e01-99a7-8181dbd1d23d";
     this.softwareVersion = options.softwareVersion || MCP_REMOTE_VERSION;
+    this.staticOAuthClientMetadata = options.staticOAuthClientMetadata;
+    this.staticOAuthClientInfo = options.staticOAuthClientInfo;
   }
   serverUrlHash;
   callbackPath;
@@ -7197,6 +7225,8 @@ var NodeOAuthClientProvider = class {
   clientUri;
   softwareId;
   softwareVersion;
+  staticOAuthClientMetadata;
+  staticOAuthClientInfo;
   get redirectUrl() {
     return `http://${this.options.host}:${this.options.callbackPort}${this.callbackPath}`;
   }
@@ -7209,7 +7239,8 @@ var NodeOAuthClientProvider = class {
       client_name: this.clientName,
       client_uri: this.clientUri,
       software_id: this.softwareId,
-      software_version: this.softwareVersion
+      software_version: this.softwareVersion,
+      ...this.staticOAuthClientMetadata
     };
   }
   /**
@@ -7218,6 +7249,10 @@ var NodeOAuthClientProvider = class {
    */
   async clientInformation() {
     if (DEBUG) await debugLog(this.serverUrlHash, "Reading client info");
+    if (this.staticOAuthClientInfo) {
+      if (DEBUG) await debugLog(this.serverUrlHash, "Returning static client info");
+      return this.staticOAuthClientInfo;
+    }
     const clientInfo = await readJsonFile(this.serverUrlHash, "client_info.json", OAuthClientInformationFullSchema);
     if (DEBUG) await debugLog(this.serverUrlHash, "Client info result:", clientInfo ? "Found" : "Not found");
     return clientInfo;

package/dist/client.js

@@ -11,11 +11,11 @@ import {
   log,
   parseCommandLineArgs,
   setupSignalHandlers
-} from "./chunk-ETC3CC4Y.js";
+} from "./chunk-WTVTTD74.js";
 
 // src/client.ts
 import { EventEmitter } from "events";
-async function runClient(serverUrl, callbackPort, headers, transportStrategy = "http-first", host) {
+async function runClient(serverUrl, callbackPort, headers, transportStrategy = "http-first", host, staticOAuthClientMetadata, staticOAuthClientInfo) {
   const events = new EventEmitter();
   const serverUrlHash = getServerUrlHash(serverUrl);
   const authCoordinator = createLazyAuthCoordinator(serverUrlHash, callbackPort, events);
@@ -23,7 +23,9 @@ async function runClient(serverUrl, callbackPort, headers, transportStrategy = "
     serverUrl,
     callbackPort,
     host,
-    clientName: "MCP CLI Client"
+    clientName: "MCP CLI Client",
+    staticOAuthClientMetadata,
+    staticOAuthClientInfo
   });
   const client = new Client(
     {
@@ -95,8 +97,8 @@ async function runClient(serverUrl, callbackPort, headers, transportStrategy = "
     process.exit(1);
   }
 }
-parseCommandLineArgs(process.argv.slice(2), "Usage: npx tsx client.ts <https://server-url> [callback-port] [--debug]").then(({ serverUrl, callbackPort, headers, transportStrategy, host, debug }) => {
-  return runClient(serverUrl, callbackPort, headers, transportStrategy, host);
+parseCommandLineArgs(process.argv.slice(2), "Usage: npx tsx client.ts <https://server-url> [callback-port] [--debug]").then(({ serverUrl, callbackPort, headers, transportStrategy, host, staticOAuthClientMetadata, staticOAuthClientInfo }) => {
+  return runClient(serverUrl, callbackPort, headers, transportStrategy, host, staticOAuthClientMetadata, staticOAuthClientInfo);
 }).catch((error) => {
   console.error("Fatal error:", error);
   process.exit(1);

package/dist/proxy.js

@@ -9,7 +9,7 @@ import {
   mcpProxy,
   parseCommandLineArgs,
   setupSignalHandlers
-} from "./chunk-ETC3CC4Y.js";
+} from "./chunk-WTVTTD74.js";
 
 // src/proxy.ts
 import { EventEmitter } from "events";
@@ -110,7 +110,7 @@ var StdioServerTransport = class {
 };
 
 // src/proxy.ts
-async function runProxy(serverUrl, callbackPort, headers, transportStrategy = "http-first", host) {
+async function runProxy(serverUrl, callbackPort, headers, transportStrategy = "http-first", host, staticOAuthClientMetadata, staticOAuthClientInfo) {
   const events = new EventEmitter();
   const serverUrlHash = getServerUrlHash(serverUrl);
   const authCoordinator = createLazyAuthCoordinator(serverUrlHash, callbackPort, events);
@@ -118,7 +118,9 @@ async function runProxy(serverUrl, callbackPort, headers, transportStrategy = "h
     serverUrl,
     callbackPort,
     host,
-    clientName: "MCP CLI Proxy"
+    clientName: "MCP CLI Proxy",
+    staticOAuthClientMetadata,
+    staticOAuthClientInfo
   });
   const localTransport = new StdioServerTransport();
   let server = null;
@@ -182,8 +184,8 @@ to the CA certificate file. If using claude_desktop_config.json, this might look
     process.exit(1);
   }
 }
-parseCommandLineArgs(process.argv.slice(2), "Usage: npx tsx proxy.ts <https://server-url> [callback-port] [--debug]").then(({ serverUrl, callbackPort, headers, transportStrategy, host, debug }) => {
-  return runProxy(serverUrl, callbackPort, headers, transportStrategy, host);
+parseCommandLineArgs(process.argv.slice(2), "Usage: npx tsx proxy.ts <https://server-url> [callback-port] [--debug]").then(({ serverUrl, callbackPort, headers, transportStrategy, host, debug, staticOAuthClientMetadata, staticOAuthClientInfo }) => {
+  return runProxy(serverUrl, callbackPort, headers, transportStrategy, host, staticOAuthClientMetadata, staticOAuthClientInfo);
 }).catch((error) => {
   log("Fatal error:", error);
   process.exit(1);

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "mcp-remote",
-  "version": "0.1.7",
+  "version": "0.1.8",
   "description": "Remote proxy for Model Context Protocol, allowing local-only clients to connect to remote servers using oAuth",
   "keywords": [
     "mcp",