TTypeScript SDKSource ↗
Resource-server-only auth: requireBearerAuth from @modelcontextprotocol/express in front of createMcpHandler . The client asserts 401 + WWW-Authenticate without a token, and that the verified authInfo reaches …truncated by Smolify import.

bearer-auth

Resource-server-only auth: requireBearerAuth from @modelcontextprotocol/express in front of createMcpHandler. The client asserts 401 + WWW-Authenticate without a token, and that the verified authInfo reaches the factory (ctx.authInfo) with one.

HTTP-only by definition. The full interactive OAuth set lives under ../oauth/ (run headlessly in CI via the demo AS's auto-consent mode).


Source: examples/bearer-auth/README.md

Generated by smolify with deterministic-repository-import-v1 · 1 source file
bearer-auth — TypeScript SDK · Smolify