universal-mcp 0.1.23rc2__py3-none-any.whl → 0.1.24rc3__py3-none-any.whl

universal_mcp/client/oauth.py

@@ -1,21 +1,45 @@
 import threading
 import time
 from http.server import BaseHTTPRequestHandler, HTTPServer
+from typing import Any
 from urllib.parse import parse_qs, urlparse
 
 from universal_mcp.utils.singleton import Singleton
 
 
 class CallbackHandler(BaseHTTPRequestHandler):
-    """Simple HTTP handler to capture OAuth callback."""
-
-    def __init__(self, request, client_address, server, callback_data):
-        """Initialize with callback data storage."""
+    """Handles the HTTP GET request for an OAuth 2.0 callback.
+
+    This handler is designed to capture the authorization code and state
+    (or an error) returned by an OAuth 2.0 authorization server as query
+    parameters in the redirect URI. It stores these values in a shared
+    `callback_data` dictionary.
+
+    It sends a simple HTML response to the user's browser indicating
+    success or failure of the authorization attempt.
+    """
+
+    def __init__(self, request, client_address, server, callback_data: dict):
+        """Initializes the CallbackHandler.
+
+        Args:
+            request: The HTTP request.
+            client_address: The client's address.
+            server: The server instance.
+            callback_data (dict): A dictionary shared with the `CallbackServer`
+                to store the captured OAuth parameters (e.g.,
+                `authorization_code`, `state`, `error`).
+        """
         self.callback_data = callback_data
         super().__init__(request, client_address, server)
 
     def do_GET(self):
-        """Handle GET request from OAuth redirect."""
+        """Handles the GET request from the OAuth authorization server's redirect.
+
+        Parses the URL query parameters to find 'code' and 'state', or 'error'.
+        Stores these values into the `self.callback_data` dictionary.
+        Responds to the browser with a success or failure HTML page.
+        """
         parsed = urlparse(self.path)
         query_params = parse_qs(parsed.query)
 
@@ -44,7 +68,7 @@ class CallbackHandler(BaseHTTPRequestHandler):
             <html>
             <body>
                 <h1>Authorization Failed</h1>
-                <p>Error: {query_params['error'][0]}</p>
+                <p>Error: {query_params["error"][0]}</p>
                 <p>You can close this window and return to the terminal.</p>
             </body>
             </html>
@@ -54,23 +78,68 @@ class CallbackHandler(BaseHTTPRequestHandler):
             self.send_response(404)
             self.end_headers()
 
-    def log_message(self, format, *args):
-        """Suppress default logging."""
+    def log_message(self, format: str, *args: Any):
+        """Suppresses the default logging of HTTP requests.
+
+        Overrides the base class method to prevent request logs from being
+        printed to stderr, keeping the console cleaner during the OAuth flow.
+        """
         pass
 
 
 class CallbackServer(metaclass=Singleton):
-    """Simple server to handle OAuth callbacks."""
-
-    def __init__(self, port=3000):
+    """A singleton HTTP server to manage OAuth 2.0 redirect callbacks.
+
+    This server runs in a background thread, listening on a specified
+    localhost port. It uses the `CallbackHandler` to capture the
+    authorization code or error returned by an OAuth 2.0 provider
+    after user authentication.
+
+    Being a Singleton, only one instance of this server will run per
+    application, even if instantiated multiple times.
+
+    Attributes:
+        port (int): The port number on localhost where the server listens.
+        server (HTTPServer | None): The underlying `HTTPServer` instance.
+            None if the server is not running.
+        thread (threading.Thread | None): The background thread in which
+            the server runs. None if the server is not running.
+        callback_data (dict): A dictionary to store data received from the
+            OAuth callback (e.g., `authorization_code`, `state`, `error`).
+            This is shared with the `CallbackHandler`.
+        _running (bool): A flag indicating whether the server is currently
+            started and listening.
+    """
+
+    def __init__(self, port: int = 3000):
+        """Initializes the CallbackServer.
+
+        Args:
+            port (int, optional): The port number on localhost for the server
+                to listen on. Defaults to 3000.
+        """
         self.port = port
         self.server = None
         self.thread = None
         self.callback_data = {"authorization_code": None, "state": None, "error": None}
         self._running = False
 
+    @property
+    def is_running(self) -> bool:
+        return self._running
+
     def _create_handler_with_data(self):
-        """Create a handler class with access to callback data."""
+        """Creates a `CallbackHandler` subclass with shared `callback_data`.
+
+        This method dynamically defines a new handler class that inherits from
+        `CallbackHandler`. The purpose is to allow the handler instances
+        to access and modify the `self.callback_data` dictionary of this
+        `CallbackServer` instance, enabling communication of OAuth parameters
+        from the handler back to the server logic.
+
+        Returns:
+            type: A new class, subclass of `CallbackHandler`.
+        """
         callback_data = self.callback_data
 
         class DataCallbackHandler(CallbackHandler):
@@ -80,7 +149,13 @@ class CallbackServer(metaclass=Singleton):
         return DataCallbackHandler
 
     def start(self):
-        """Start the callback server in a background thread."""
+        """Starts the HTTP callback server in a background daemon thread.
+
+        If the server is not already running, it initializes an `HTTPServer`
+        with a specialized `CallbackHandler` and starts it in a new
+        daemon thread. This allows the main application flow to continue
+        while waiting for the OAuth callback.
+        """
         if self._running:
             return
         handler_class = self._create_handler_with_data()
@@ -91,15 +166,37 @@ class CallbackServer(metaclass=Singleton):
         self._running = True
 
     def stop(self):
-        """Stop the callback server."""
+        """Stops the HTTP callback server and cleans up resources.
+
+        Shuts down the `HTTPServer` and waits for its background thread
+        to complete.
+        """
         if self.server:
             self.server.shutdown()
             self.server.server_close()
         if self.thread:
             self.thread.join(timeout=1)
 
-    def wait_for_callback(self, timeout=300):
-        """Wait for OAuth callback with timeout."""
+    def wait_for_callback(self, timeout: int = 300) -> str:
+        """Waits for the OAuth callback to provide an authorization code.
+
+        This method polls the `self.callback_data` dictionary until an
+        authorization code is received or an error is reported by the
+        `CallbackHandler`, or until the timeout is reached.
+
+        Args:
+            timeout (int, optional): The maximum time in seconds to wait
+                for the callback. Defaults to 300 seconds (5 minutes).
+
+        Returns:
+            str: The received authorization code.
+
+        Raises:
+            Exception: If an error is reported in the callback
+                       (e.g., "OAuth error: <error_message>").
+            Exception: If the timeout is reached before a code or error
+                       is received (e.g., "Timeout waiting for OAuth callback").
+        """
         start_time = time.time()
         while time.time() - start_time < timeout:
             if self.callback_data["authorization_code"]:
@@ -109,6 +206,13 @@ class CallbackServer(metaclass=Singleton):
             time.sleep(0.1)
         raise Exception("Timeout waiting for OAuth callback")
 
-    def get_state(self):
-        """Get the received state parameter."""
+    def get_state(self) -> str | None:
+        """Retrieves the 'state' parameter received during the OAuth callback.
+
+        The state parameter is often used to prevent cross-site request forgery (CSRF)
+        attacks by matching its value with one sent in the initial authorization request.
+
+        Returns:
+            str | None: The 'state' parameter value if received, otherwise None.
+        """
         return self.callback_data["state"]

universal_mcp/client/token_store.py

@@ -6,27 +6,86 @@ from universal_mcp.stores.store import KeyringStore
 
 
 class TokenStore(MCPTokenStorage):
-    """Simple in-memory token storage implementation."""
+    """Persistent storage for OAuth tokens and client information using KeyringStore.
+
+    This class implements the `mcp.client.auth.TokenStorage` interface,
+    providing a mechanism to securely store and retrieve OAuth 2.0 tokens
+    (as `OAuthToken` objects) and OAuth client registration details
+    (as `OAuthClientInformationFull` objects).
+
+    It utilizes an underlying `KeyringStore` instance, which typically
+    delegates to the operating system's secure credential management
+    system (e.g., macOS Keychain, Windows Credential Manager, Linux KWallet).
+    This ensures that sensitive token data is stored securely and persistently.
+
+    Attributes:
+        store (KeyringStore): The `KeyringStore` instance used for actually
+            storing and retrieving the serialized token and client info data.
+    """
 
     def __init__(self, store: KeyringStore):
+        """Initializes the TokenStore.
+
+        Args:
+            store (KeyringStore): An instance of `KeyringStore` that will be
+                used for the actual persistence of tokens and client information.
+        """
         self.store = store
-        self._tokens: OAuthToken | None = None
-        self._client_info: OAuthClientInformationFull | None = None
+        # These are not meant to be persistent caches in this implementation
+        # self._tokens: OAuthToken | None = None
+        # self._client_info: OAuthClientInformationFull | None = None
 
     async def get_tokens(self) -> OAuthToken | None:
+        """Retrieves OAuth tokens from the persistent KeyringStore.
+
+        Fetches the JSON string representation of tokens from the store using
+        the key "tokens" and deserializes it into an `OAuthToken` object.
+
+        Returns:
+            OAuthToken | None: The deserialized `OAuthToken` object if found
+                               and successfully parsed, otherwise None.
+        """
         try:
             return OAuthToken.model_validate_json(self.store.get("tokens"))
         except KeyNotFoundError:
             return None
 
     async def set_tokens(self, tokens: OAuthToken) -> None:
+        """Serializes OAuth tokens to JSON and saves them to the KeyringStore.
+
+        The provided `OAuthToken` object is converted to its JSON string
+        representation and stored in the `KeyringStore` under the key "tokens".
+
+        Args:
+            tokens (OAuthToken): The `OAuthToken` object to store.
+        """
         self.store.set("tokens", tokens.model_dump_json())
 
     async def get_client_info(self) -> OAuthClientInformationFull | None:
+        """Retrieves OAuth client information from the persistent KeyringStore.
+
+        Fetches the JSON string representation of client information from the
+        store using the key "client_info" and deserializes it into an
+        `OAuthClientInformationFull` object.
+
+        Returns:
+            OAuthClientInformationFull | None: The deserialized object if found
+                                              and successfully parsed, otherwise None.
+        """
         try:
             return OAuthClientInformationFull.model_validate_json(self.store.get("client_info"))
         except KeyNotFoundError:
             return None
 
     async def set_client_info(self, client_info: OAuthClientInformationFull) -> None:
+        """Serializes OAuth client information to JSON and saves it to KeyringStore.
+
+        The provided `OAuthClientInformationFull` object is converted to its
+        JSON string representation and stored in the `KeyringStore` under the
+        key "client_info".
+
+        Args:
+            client_info (OAuthClientInformationFull): The client information object
+                to store.
+        """
         self.store.set("client_info", client_info.model_dump_json())

universal_mcp/client/{client.py → transport.py}

@@ -1,7 +1,7 @@
 import os
 import webbrowser
 from contextlib import AsyncExitStack
-from typing import Any, Literal
+from typing import Any, Literal, Self
 
 from loguru import logger
 from mcp import ClientSession, StdioServerParameters
@@ -9,7 +9,6 @@ from mcp.client.auth import OAuthClientProvider
 from mcp.client.sse import sse_client
 from mcp.client.stdio import stdio_client
 from mcp.client.streamable_http import streamablehttp_client
-from mcp.server import Server
 from mcp.shared.auth import OAuthClientMetadata
 from mcp.types import (
     CallToolResult as MCPCallToolResult,
@@ -21,13 +20,20 @@ from openai.types.chat import ChatCompletionToolParam
 
 from universal_mcp.client.oauth import CallbackServer
 from universal_mcp.client.token_store import TokenStore
-from universal_mcp.config import ClientTransportConfig
+from universal_mcp.config import ClientConfig, ClientTransportConfig
 from universal_mcp.stores.store import KeyringStore
 from universal_mcp.tools.adapters import transform_mcp_tool_to_openai_tool
 
 
-class MCPClient:
-    """Manages MCP server connections and tool execution."""
+class ClientTransport:
+    """
+    Client for connecting to and interacting with a single MCP server.
+
+    Manages the lifecycle of a connection to an MCP server, handles various
+    transport mechanisms (stdio, sse, streamable_http), and facilitates
+    authentication, including OAuth 2.0 client flows. Allows listing tools
+    available on the server and calling them.
+    """
 
     def __init__(self, name: str, config: ClientTransportConfig) -> None:
         self.name: str = name
@@ -35,14 +41,12 @@ class MCPClient:
         self.session: ClientSession | None = None
         self.server_url: str = config.url
 
-        # Set up callback server
-        self.callback_server = CallbackServer(port=3000)
-        self.callback_server.start()
-
-        # Create OAuth authentication handler using the new interface
-        if self.server_url and not self.config.headers:
-            self.store = KeyringStore(self.name)
-            self.auth = OAuthClientProvider(
+        # Create OAuth authentication handler if needed
+        if self.server_url and not getattr(self.config, "headers", None):
+            # Set up callback server
+            self._callback_server = CallbackServer(port=3000)
+            self.store: KeyringStore | None = KeyringStore(self.name)
+            self.auth: OAuthClientProvider | None = OAuthClientProvider(
                 server_url="/".join(self.server_url.split("/")[:-1]),
                 client_metadata=OAuthClientMetadata.model_validate(self.client_metadata_dict),
                 storage=TokenStore(self.store),
@@ -50,10 +54,18 @@ class MCPClient:
                 callback_handler=self._callback_handler,
             )
         else:
+            self._callback_server = None
+            self.store = None
             self.auth = None
 
+    @property
+    def callback_server(self) -> CallbackServer:
+        if self._callback_server and not self._callback_server.is_running:
+            self._callback_server.start()
+        return self._callback_server
+
     async def _callback_handler(self) -> tuple[str, str | None]:
-        """Wait for OAuth callback and return auth code and state."""
+        """Handles the OAuth callback by waiting for and returning auth details."""
         print("⏳ Waiting for authorization callback...")
         try:
             auth_code = self.callback_server.wait_for_callback(timeout=300)
@@ -63,38 +75,45 @@ class MCPClient:
 
     @property
     def client_metadata_dict(self) -> dict[str, Any]:
+        """Provides OAuth 2.0 client metadata for registration or authentication."""
         return {
-            "client_name": "Simple Auth Client",
-            "redirect_uris": ["http://localhost:3000/callback"],
+            "client_name": self.name,
+            "redirect_uris": [self.callback_server.redirect_uri],  # type: ignore
             "grant_types": ["authorization_code", "refresh_token"],
             "response_types": ["code"],
             "token_endpoint_auth_method": "client_secret_post",
         }
 
     async def _default_redirect_handler(self, authorization_url: str) -> None:
-        """Default redirect handler that opens the URL in a browser."""
+        """Default handler for OAuth redirects; opens URL in a web browser."""
         print(f"Opening browser for authorization: {authorization_url}")
         webbrowser.open(authorization_url)
 
-    async def initialize(self, exit_stack: AsyncExitStack):
-        """Initialize the server connection."""
-        transport = self.config.transport
+    async def initialize(self, exit_stack: AsyncExitStack) -> None:
+        """
+        Establishes and initializes the connection to the MCP server.
+
+        Raises:
+            ValueError: If the transport type is unknown or if required
+                        configuration for a transport is missing.
+        """
+        transport = getattr(self.config, "transport", None)
+        session = None
         try:
             if transport == "stdio":
-                command = self.config["command"]
-                if command is None:
+                command = self.config.get("command")
+                if not command:
                     raise ValueError("The command must be a valid string and cannot be None.")
 
                 server_params = StdioServerParameters(
                     command=command,
-                    args=self.config["args"],
-                    env={**os.environ, **self.config["env"]} if self.config.get("env") else None,
+                    args=self.config.get("args", []),
+                    env={**os.environ, **self.config.get("env", {})} if self.config.get("env") else None,
                 )
                 stdio_transport = await exit_stack.enter_async_context(stdio_client(server_params))
                 read, write = stdio_transport
                 session = await exit_stack.enter_async_context(ClientSession(read, write))
                 await session.initialize()
-                self.session = session
             elif transport == "streamable_http":
                 url = self.config.get("url")
                 headers = self.config.get("headers", {})
@@ -106,10 +125,9 @@ class MCPClient:
                 read, write, _ = streamable_http_transport
                 session = await exit_stack.enter_async_context(ClientSession(read, write))
                 await session.initialize()
-                self.session = session
             elif transport == "sse":
-                url = self.config.url
-                headers = self.config.headers
+                url = self.config.get("url")
+                headers = self.config.get("headers", {})
                 if not url:
                     raise ValueError("'url' must be provided for sse transport.")
                 sse_transport = await exit_stack.enter_async_context(
@@ -118,73 +136,126 @@ class MCPClient:
                 read, write = sse_transport
                 session = await exit_stack.enter_async_context(ClientSession(read, write))
                 await session.initialize()
-                self.session = session
             else:
                 raise ValueError(f"Unknown transport: {transport}")
+            self.session = session
         except Exception as e:
+            if session:
+                await session.aclose()
             logger.error(f"Error initializing server {self.name}: {e}")
             raise
 
     async def list_tools(self) -> list[MCPTool]:
-        """List available tools from the server."""
+        """Lists all tools available on the connected MCP server."""
         if self.session:
-            tools = await self.session.list_tools()
-            return list(tools.tools)
+            try:
+                tools = await self.session.list_tools()
+                return list(tools.tools)
+            except Exception as e:
+                logger.warning(f"Failed to list tools for client {self.name}: {e}")
         return []
 
     async def call_tool(self, tool_name: str, arguments: dict[str, Any]) -> MCPCallToolResult:
-        """Call a tool on the server."""
+        """Calls a specified tool on the connected MCP server with given arguments."""
         if self.session:
-            return await self.session.call_tool(tool_name, arguments)
+            try:
+                return await self.session.call_tool(tool_name, arguments)
+            except Exception as e:
+                logger.error(f"Error calling tool '{tool_name}' on client {self.name}: {e}")
         return MCPCallToolResult(
             content=[],
             isError=True,
         )
 
 
-class MultiClientServer(Server):
+class MultiClientTransport:
     """
-    Manages multiple MCP servers and maintains a mapping from tool name to the server that provides it.
+    Aggregates multiple ClientTransport instances to act as a single MCP Server.
+
+    Provides a unified Server interface for a collection of ClientTransport
+    instances, each potentially connected to a different MCP server.
+    Maintains a mapping of tool names to the specific ClientTransport that
+    provides that tool.
     """
 
     def __init__(self, clients: dict[str, ClientTransportConfig]):
-        self.clients: list[MCPClient] = [MCPClient(name, config) for name, config in clients.items()]
-        self.tool_to_client: dict[str, MCPClient] = {}
+        self.clients: list[ClientTransport] = [ClientTransport(name, config) for name, config in clients.items()]
+        self.tool_to_client: dict[str, ClientTransport] = {}
         self._mcp_tools: list[MCPTool] = []
         self._exit_stack: AsyncExitStack = AsyncExitStack()
 
+    @classmethod
+    def from_file(cls, path: str) -> Self:
+        mcp_config = ClientConfig.load_json_config(path)
+        return cls(mcp_config.mcpServers)
+
+    def save_to_file(self, path: str) -> None:
+        mcp_config = ClientConfig(mcpServers={name: config.model_dump() for name, config in self.clients.items()})
+        mcp_config.save_json_config(path)
+
+    async def add_client(self, name: str, config: ClientTransportConfig) -> None:
+        if name in self.tool_to_client:
+            logger.warning(f"Client {name} already exists. Skipping.")
+            return
+        self.clients.append(ClientTransport(name, config))
+        self.tool_to_client[name] = self.clients[-1]
+        logger.info(f"Added client: {name}")
+        await self._populate_tool_mapping()
+
+    async def remove_client(self, name: str) -> None:
+        if name not in self.tool_to_client:
+            logger.warning(f"Client {name} not found. Skipping.")
+            return
+        self.clients.remove(self.tool_to_client[name])
+        del self.tool_to_client[name]
+        logger.info(f"Removed client: {name}")
+        await self._populate_tool_mapping()
+
     async def __aenter__(self):
-        """Initialize the server connection."""
         for client in self.clients:
             await client.initialize(self._exit_stack)
         await self._populate_tool_mapping()
         return self
 
     async def __aexit__(self, exc_type, exc_val, exc_tb):
-        """Clean up the server connection."""
         self.clients.clear()
         self.tool_to_client.clear()
         self._mcp_tools.clear()
         await self._exit_stack.aclose()
 
     async def _populate_tool_mapping(self):
-        """Populate the mapping from tool name to server."""
         self.tool_to_client.clear()
         self._mcp_tools.clear()
         for client in self.clients:
             try:
                 tools = await client.list_tools()
                 for tool in tools:
-                    self._mcp_tools.append(tool)
-                    tool_name = tool.name
-                    logger.info(f"Found tool: {tool_name} from client: {client.name}")
+                    tool_name = getattr(tool, "name", None)
                     if tool_name:
-                        self.tool_to_client[tool_name] = client
+                        if tool_name not in self.tool_to_client:
+                            self._mcp_tools.append(tool)
+                            self.tool_to_client[tool_name] = client
+                            logger.info(f"Found tool: {tool_name} from client: {client.name}")
+                        else:
+                            logger.warning(
+                                f"Duplicate tool name '{tool_name}' found in client '{client.name}'. Skipping."
+                            )
             except Exception as e:
                 logger.warning(f"Failed to list tools for client {client.name}: {e}")
 
     async def list_tools(self, format: Literal["mcp", "openai"] = "mcp") -> list[MCPTool | ChatCompletionToolParam]:
-        """List available tools from all servers."""
+        """
+        Lists all unique tools available from all managed clients.
+
+        Args:
+            format: The desired format for the returned tools.
+
+        Returns:
+            List of tools in the specified format.
+
+        Raises:
+            ValueError: If an unsupported format is requested.
+        """
         if format == "mcp":
             return self._mcp_tools
         elif format == "openai":
@@ -193,6 +264,14 @@ class MultiClientServer(Server):
             raise ValueError(f"Invalid format: {format}")
 
     async def call_tool(self, tool_name: str, arguments: dict[str, Any]) -> MCPCallToolResult:
-        """Call a tool on the server."""
-        client = self.tool_to_client[tool_name]
+        """
+        Calls a tool by routing the request to the appropriate ClientTransport.
+
+        Raises:
+            KeyError: If the tool_name is not found.
+        """
+        client = self.tool_to_client.get(tool_name)
+        if not client:
+            logger.error(f"Tool '{tool_name}' not found in any client.")
+            return MCPCallToolResult(content=[], isError=True)
         return await client.call_tool(tool_name, arguments)