Skip to content

fix(oauth): respect oauth-protected-resource discovery #511

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Nov 5, 2025
Merged

fix(oauth): respect oauth-protected-resource discovery #511

merged 1 commit into from
Nov 5, 2025
+32 −4

Conversation

@gpeal
Copy link
Contributor

@gpeal gpeal commented Nov 5, 2025

Motivation and Context

The Todoist MCP which was previously confirmed to work in Codex stopped working. We (Codex) also got reports of other enterprise MCP servers failing to do oauth discovery correctly.

It turns out that the resource metadata was never looking for oauth-protected-resource paths.

How Has This Been Tested?

Verified oauth discovery with todoist (broken before this PR), supabase, notion, and linear.

Breaking Changes

None

Types of changes

  • Bug fix (non-breaking change which fixes an issue)
  • New feature (non-breaking change which adds functionality)
  • Breaking change (fix or feature that would cause existing functionality to change)
  • Documentation update

Checklist

  • I have read the MCP Documentation
  • My code follows the repository's style guidelines
  • New and existing tests pass locally
  • I have added appropriate error handling
  • I have added or updated documentation as needed

Additional context

@github-actions github-actions bot added T-core Core library changes T-transport Transport layer changes labels Nov 5, 2025
@alexhancock alexhancock merged commit 82f9b09 into modelcontextprotocol:main Nov 5, 2025
11 checks passed
@github-actions github-actions bot mentioned this pull request Nov 5, 2025
Merged
@gpeal gpeal mentioned this pull request Nov 5, 2025
Merged
gpeal added a commit to openai/codex that referenced this pull request Nov 5, 2025
@gpeal
Update rmcp to 0.8.5 (#6261)
79aa83e 
Picks up modelcontextprotocol/rust-sdk#511 which
should fix todoist and some other MCP server oauth and may further
resolve issues in #5045
gabrielekarra pushed a commit to gabrielekarra/codex that referenced this pull request Nov 8, 2025
@gpeal
Update rmcp to 0.8.5 (openai#6261)
18254ea 
Picks up modelcontextprotocol/rust-sdk#511 which
should fix todoist and some other MCP server oauth and may further
resolve issues in openai#5045
Holovkat pushed a commit to Holovkat/codex-pro that referenced this pull request Nov 8, 2025
@gpeal @Holovkat
Update rmcp to 0.8.5 (#6261)
97e7d1c 
Picks up modelcontextprotocol/rust-sdk#511 which
should fix todoist and some other MCP server oauth and may further
resolve issues in openai/codex#5045
DioNanos pushed a commit to DioNanos/codex-termux that referenced this pull request Nov 10, 2025
@gpeal
Update rmcp to 0.8.5 (openai#6261)
c0fab59 
Picks up modelcontextprotocol/rust-sdk#511 which
should fix todoist and some other MCP server oauth and may further
resolve issues in openai#5045
@alexhancock alexhancock mentioned this pull request Nov 10, 2025
Closed
cpjet64 pushed a commit to cpjet64/codex-windows that referenced this pull request Nov 11, 2025
@gpeal @cpjet64
Update rmcp to 0.8.5 (openai#6261)
2ebc8ae 
Picks up modelcontextprotocol/rust-sdk#511 which
should fix todoist and some other MCP server oauth and may further
resolve issues in openai#5045
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@alexhancock alexhancock alexhancock approved these changes

Assignees

No one assigned

Labels

T-core Core library changes T-transport Transport layer changes

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@gpeal @alexhancock