When no authorization is required dont fail on missing user scope 401 Unauthorized #615 #616

yonigottesman · 2025-05-02T11:17:05Z

While developing a mcp server that wil run locally I want to use the sse protocal and not stdio. Because im running local i dont need any authentication, but the default RequireAuthMiddleware will fail if if not isinstance(auth_user, AuthenticatedUser).

I want the solution to be
if not isinstance(auth_user, AuthenticatedUser) and self.required_scopes: so if there are no required scopes I wont have to do anything and i can just connect to the server withtou any autherization

I submitted a pr #615

The text was updated successfully, but these errors were encountered:

yonigottesman changed the title ~~When no authorization is required dont fail on missing user scope #615~~ When no authorization is required dont fail on missing user scope 401 Unauthorized #615 May 2, 2025

ihrpr self-assigned this May 2, 2025

ihrpr added this to the 2025-03-26 spec release milestone May 2, 2025

ihrpr mentioned this issue May 2, 2025

SSE FastMCP - do not go though auth when it's not needed #619

Merged

ihrpr closed this as completed May 2, 2025

ihrpr reopened this May 2, 2025

ihrpr closed this as completed May 2, 2025

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

When no authorization is required dont fail on missing user scope 401 Unauthorized #615 #616

When no authorization is required dont fail on missing user scope 401 Unauthorized #615 #616

yonigottesman commented May 2, 2025

When no authorization is required dont fail on missing user scope 401 Unauthorized #615 #616

When no authorization is required dont fail on missing user scope 401 Unauthorized #615 #616

Comments

yonigottesman commented May 2, 2025