npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

@onivoro/server-mcp-auth

v24.38.2

Published

JWT authentication for MCP servers — JWKS validation, scope auto-discovery, and RFC 9728 Protected Resource Metadata

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

icedlee337icedlee337

Keywords

mcpmodel-context-protocolmodelcontextprotocolnestjsjwtjwksoauthauthauthenticationauthorizationcognitoauth0entrascopesrfc-9728protected-resource-metadataaillm

Readme

@onivoro/server-mcp-auth

Resource server auth for MCP servers built with @onivoro/server-mcp. Validates incoming JWT tokens, enriches auth context, auto-discovers scopes, and serves RFC 9728 Protected Resource Metadata.

Start here

Use this package when your MCP server should trust tokens issued by an external provider such as Cognito, Auth0, Entra, or another JWKS-backed OAuth/OIDC server.

If you are choosing between the @onivoro/server-mcp* packages, start with: MCP Server Package Guide

What this package does

  • validates JWT bearer tokens using JWKS
  • enriches MCP auth context before guards and handlers run
  • serves Protected Resource Metadata for MCP auth discovery
  • provides a tested McpJwtAuthStrategy that also implements the MCP SDK verifier interface

What this package does not do

  • publish OAuth authorization-server endpoints
  • protect the MCP HTTP route by itself unless the transport also enables bearer challenges
  • replace @onivoro/server-mcp

Installation

npm install @onivoro/server-mcp-auth

Peer dependencies: @onivoro/server-mcp, @modelcontextprotocol/sdk, @nestjs/common, @nestjs/core, jsonwebtoken, jwks-rsa

Quick start

import { Module } from '@nestjs/common';
import { McpHttpModule } from '@onivoro/server-mcp';
import { McpAuthModule, McpCognitoAuthStrategy } from '@onivoro/server-mcp-auth';

@Module({
  imports: [
    McpAuthModule.configureCognito({
      region: 'us-east-1',
      userPoolId: '<pool>',
      clientId: '<client-id>',
      resourceServerUrl: 'https://api.example.com/mcp',
    }),
    McpHttpModule.registerAndServeHttp({
      metadata: { name: 'my-server', version: '1.0.0' },
      authStrategy: McpCognitoAuthStrategy,
      requireBearerAuth: true,
    }),
  ],
})
export class AppModule {}

McpAuthModule makes the selected strategy available in the DI container. McpHttpModule resolves that existing provider via the authStrategy class reference; it does not register the strategy on its own.

With requireBearerAuth: true, unauthenticated HTTP requests are rejected at the transport layer with a standards-compliant 401 challenge and WWW-Authenticate metadata. That is the configuration MCP HTTP clients need to trigger OAuth automatically.

Without requireBearerAuth, McpJwtAuthStrategy still validates and enriches auth during tool execution, but anonymous HTTP requests are not challenged automatically.

Import McpAuthModule in the same Nest application that imports McpHttpModule.registerAndServeHttp() or McpStdioModule.registerAndServeStdio(), otherwise Nest will not be able to resolve the selected auth strategy and its config dependencies.

Standalone vs bolted-on servers

resourceServerUrl must be the public MCP endpoint URL. This package cannot infer that URL reliably because deployments may use Nest global prefixes, reverse proxies, custom domains, or custom MCP routes.

| App shape | McpHttpModule route | Nest global prefix | Public MCP URL / resourceServerUrl | |-----------|-----------------------|--------------------|--------------------------------------| | Standalone default | omitted or 'mcp' | none | https://api.example.com/mcp | | Standalone custom | 'internal/mcp' | none | https://api.example.com/internal/mcp | | Existing app default | omitted or 'mcp' | api | https://api.example.com/api/mcp | | Existing app custom | 'internal/mcp' | api | https://api.example.com/api/internal/mcp |

For MCP clients to start OAuth automatically, the same app should also import McpHttpModule.registerAndServeHttp({ authStrategy: McpJwtAuthStrategy, requireBearerAuth: true }). The auth module provides validation and metadata; the HTTP module sends the 401 challenge on the MCP route.

What you get

| Feature | Description | |---------|-------------| | JWT validation | Signature verification via JWKS, issuer/audience/expiry checks | | Auth enrichment | Extracts clientId, scopes, expiresAt, and custom claims into McpAuthInfo | | Scope auto-discovery | Collects all scopes from @McpGuard(McpScopeGuard, { scopes }) across tools | | Protected Resource Metadata | Serves /.well-known/oauth-protected-resource (RFC 9728) | | SDK compatibility | Implements both McpAuthStrategy and the SDK's OAuthTokenVerifier | | Testing utilities | McpTestAuthStrategy, createMockAuthInfo(), createMockJwt() |

Configuration

Minimum required config

For JWT validation only

McpAuthModule.configureJwt({
  jwksUri: 'https://auth.example.com/.well-known/jwks.json',
  serveProtectedResourceMetadata: false,
})

For Protected Resource Metadata

McpAuthModule.configureJwt({
  jwksUri: 'https://auth.example.com/.well-known/jwks.json',
  issuer: 'https://auth.example.com',
  resourceServerUrl: 'https://api.example.com/mcp',
})

For automatic MCP OAuth challenge flow

McpAuthModule.configureJwt({
  jwksUri: 'https://auth.example.com/.well-known/jwks.json',
  issuer: 'https://auth.example.com',
  resourceServerUrl: 'https://api.example.com/mcp',
})

McpHttpModule.registerAndServeHttp({
  metadata: { name: 'my-server', version: '1.0.0' },
  authStrategy: McpJwtAuthStrategy,
  requireBearerAuth: true,
})

Without requireBearerAuth, the strategy still validates tokens during tool execution, but MCP HTTP clients will not receive the transport-level 401 challenge they use to start OAuth automatically.

McpAuthConfig

| Field | Type | Default | Description | |-------|------|---------|-------------| | jwksUri | string | required | JWKS endpoint URL | | issuer | string? | — | Expected JWT issuer (iss claim) | | audience | string? | — | Expected audience (aud claim) | | algorithms | string[]? | ['RS256'] | Accepted signing algorithms | | clientIdClaim | string? | 'client_id' | JWT claim for client ID. Cognito: 'client_id', Auth0: 'azp', Entra: 'appid' | | scopeClaim | string? | 'scope' | JWT claim for scopes. Auth0: 'permissions' | | scopeFormat | 'string' \| 'array' \| 'auto' | 'auto' | Whether scope claim is space-delimited or array | | extraClaims | Record<string, string>? | — | Map JWT claim names to McpAuthInfo.extra keys | | resourceIdentifier | string? | — | RFC 8707 resource indicator | | resourceServerUrl | string? | — | Public MCP endpoint URL for PRM resource field | | authorizationServers | string[]? | — | Auth server URLs for PRM | | serveProtectedResourceMetadata | boolean? | true | Serve /.well-known/oauth-protected-resource | | protectedResourceMetadataMode | 'root' \| 'path' \| 'both' | 'both' | Which RFC 9728 discovery routes to serve | | resourceName | string? | — | Human-readable name for PRM | | resourceDocumentationUrl | string? | — | Docs URL for PRM | | jwksCache | boolean? | true | Cache JWKS responses | | jwksCacheMaxAge | number? | 600_000 | Cache TTL in ms | | jwksRateLimit | boolean? | true | Rate-limit JWKS requests | | jwksRequestsPerMinute | number? | 10 | Max JWKS requests per minute |

Async configuration

McpAuthModule.configureJwtAsync({
  imports: [ConfigModule],
  inject: [ConfigService],
  useFactory: (config: ConfigService) => ({
    jwksUri: config.get('JWKS_URI'),
    issuer: config.get('JWT_ISSUER'),
    audience: config.get('JWT_AUDIENCE'),
  }),
})

Provider-specific examples

AWS Cognito

McpAuthModule.configureCognito({
  region,
  userPoolId: poolId,
  clientId,
  resourceServerUrl: 'https://api.example.com/mcp',
})

Auth0

McpAuthModule.configureJwt({
  jwksUri: `https://${domain}/.well-known/jwks.json`,
  issuer: `https://${domain}/`,
  audience: apiIdentifier,
  clientIdClaim: 'azp',
  scopeClaim: 'permissions',
  scopeFormat: 'array',
})

Microsoft Entra ID

McpAuthModule.configureJwt({
  jwksUri: `https://login.microsoftonline.com/${tenantId}/discovery/v2.0/keys`,
  issuer: `https://login.microsoftonline.com/${tenantId}/v2.0`,
  audience: clientId,
  clientIdClaim: 'appid',
  extraClaims: { 'tid': 'tenantId', 'oid': 'objectId' },
})

Execution pipeline

When requireBearerAuth is enabled, HTTP auth happens before MCP request handling. After that, the auth strategy still runs during tool execution:

| Stage | Component | Role | |-------|-----------|------| | 1 | Transport | Extracts raw authInfo from the HTTP/stdio request | | 2 | McpJwtAuthStrategy | Validates JWT, enriches McpAuthInfo with decoded claims | | 3 | Guards | Check scopes, roles, or custom rules against enriched auth | | 4 | Validation | Zod schema validation of tool params | | 5 | Interceptors | Cross-cutting concerns (logging, metrics) | | 6 | Handler | Tool implementation |

McpScopeRegistry

Auto-discovers all scopes declared via @McpGuard(McpScopeGuard, { scopes: [...] }):

@McpTool({ name: 'delete-item', description: 'Delete an item', schema })
@McpGuard(McpScopeGuard, { scopes: ['write', 'admin'] })
async deleteItem(params: DeleteParams) { ... }

The McpScopeRegistry collects ['write', 'admin'] and exposes them via getScopesArray(). These are automatically included in the Protected Resource Metadata scopes_supported field.

Dynamically registered tools are picked up via McpToolRegistry.onRegistrationChange().

Protected Resource Metadata routes

When serveProtectedResourceMetadata is enabled, this package can serve:

  • Root discovery: /.well-known/oauth-protected-resource
  • Path-derived discovery: /.well-known/oauth-protected-resource/<resource-path>

Choose the route mode with protectedResourceMetadataMode:

  • 'root': serve only the root route
  • 'path': serve only the path-derived route for resourceServerUrl
  • 'both': serve both routes for compatibility

@onivoro/server-mcp defaults its bearer challenge to the path-derived PRM URL for the actual request path. This supports both standalone MCP servers and existing Nest apps that use app.setGlobalPrefix(). For example, route: 'mcp' serves /mcp standalone and /api/mcp behind a global api prefix; the default challenge URLs are /.well-known/oauth-protected-resource/mcp and /api/.well-known/oauth-protected-resource/api/mcp respectively.

If you need to advertise the root route instead, set requireBearerAuth: { resourceMetadataUrl: '/.well-known/oauth-protected-resource' } in McpHttpModule.

Tested behavior

The package test suite covers:

  • JWT validation and enrichment
  • resourceIdentifier enforcement
  • Protected Resource Metadata route modes
  • config validation
  • composition with McpHttpModule for real HTTP 401 challenges

Troubleshooting

  • Tool calls still work anonymously You likely configured McpJwtAuthStrategy but did not enable requireBearerAuth in McpHttpModule.
  • PRM is not discoverable Set resourceServerUrl, and ensure serveProtectedResourceMetadata is not disabled.
  • Startup fails on auth config That is expected for invalid PRM config. When PRM is enabled, resourceServerUrl and an authorization-server source are required.
  • JWT validation fails for the wrong issuer or audience Verify issuer, audience, and resourceIdentifier against the provider’s actual token claims.

Testing

import { McpTestAuthStrategy, createMockAuthInfo, createMockJwt } from '@onivoro/server-mcp-auth';

// Use McpTestAuthStrategy in integration tests
const module = await Test.createTestingModule({
  imports: [
    McpHttpModule.registerAndServeHttp({
      metadata: { name: 'test', version: '1.0.0' },
      authStrategy: McpTestAuthStrategy,
    }),
  ],
}).compile();

const testAuth = module.get(McpTestAuthStrategy);
testAuth.setAuthInfo(createMockAuthInfo({ scopes: ['admin'], extra: { userId: 'u-1' } }));

// createMockJwt for unit tests (decodable but unsigned)
const token = createMockJwt({ sub: 'test-user', scope: 'read write' });

Exports

| Export | Type | Description | |--------|------|-------------| | McpAuthModule | Module | Dynamic module with configureJwt(), configureJwtAsync(), configureCognito(), and configureCognitoAsync() | | McpCognitoAuthStrategy | Class | Cognito-aware access-token verifier for authStrategy | | McpAuthConfig | Interface | Configuration options | | McpAuthAsyncOptions | Interface | Async factory options | | MCP_AUTH_CONFIG | Symbol | Injection token for config | | McpJwtAuthStrategy | Service | JWT auth strategy — implements McpAuthStrategy + OAuthTokenVerifier | | McpJwksService | Service | JWKS key fetching with caching and rate limiting | | McpScopeRegistry | Service | Auto-discovers scopes from guard metadata | | McpProtectedResourceController | Controller | RFC 9728 metadata endpoint | | McpTestAuthStrategy | Service | Test-friendly auth strategy | | createMockAuthInfo | Function | Factory for test McpAuthInfo objects | | createMockJwt | Function | Creates decodable unsigned JWTs for testing |