Merge pull request #28 from sacha-development-stuff/codex/fix-failing-test-for-oauth-token-response

SoldierSacha · web-flow · commit 58928e196bb1 · 2025-11-11T19:14:32.000-05:00
Improve OAuth token response handling
diff --git a/src/mcp/client/auth/oauth2.py b/src/mcp/client/auth/oauth2.py
@@ -222,7 +222,7 @@ async def _handle_oauth_metadata_response(self, response: httpx.Response) -> Non
             self.client_metadata.scope = " ".join(metadata.scopes_supported)
 
     def _create_registration_request(self, metadata: OAuthMetadata | None = None) -> httpx.Request | None:
-        if self._client_info:
+        if self._client_info or self.context.client_info:
             return None
         if metadata and metadata.registration_endpoint:
             registration_url = str(metadata.registration_endpoint)
@@ -534,15 +534,27 @@ async def _exchange_token_authorization_code(
 
         return httpx.Request("POST", token_url, data=token_data, headers=headers)
 
+    async def _read_response_content(self, response: httpx.Response) -> bytes:
+        """Read response content, handling preloaded or streaming bodies."""
+        try:
+            content = response.content
+            if content:
+                return content
+        except RuntimeError:
+            # Streaming response that hasn't been consumed yet - fall back to async read.
+            pass
+
+        return await response.aread()
+
     async def _handle_token_response(self, response: httpx.Response) -> None:
         """Handle token exchange response."""
         if response.status_code != 200:  # pragma: no cover
-            body = await response.aread()
+            body = await self._read_response_content(response)
             body = body.decode("utf-8")
             raise OAuthTokenError(f"Token exchange failed ({response.status_code}): {body}")
 
         try:
-            content = await response.aread()
+            content = await self._read_response_content(response)
             token_response = OAuthToken.model_validate_json(content)
 
             # Validate scopes
@@ -597,7 +609,7 @@ async def _handle_refresh_response(self, response: httpx.Response) -> bool:  # p
             return False
 
         try:
-            content = await response.aread()
+            content = await self._read_response_content(response)
             token_response = OAuthToken.model_validate_json(content)
 
             self.context.current_tokens = token_response
@@ -614,6 +626,8 @@ async def _initialize(self) -> None:  # pragma: no cover
         """Load stored tokens and client info."""
         self.context.current_tokens = await self.context.storage.get_tokens()
         self.context.client_info = await self.context.storage.get_client_info()
+        if self.context.client_info:
+            self._client_info = self.context.client_info
         self._initialized = True
 
     def _add_auth_header(self, request: httpx.Request) -> None:
@@ -694,7 +708,16 @@ async def async_auth_flow(self, request: httpx.Request) -> AsyncGenerator[httpx.
                         self.context.client_info = self._client_info
 
                     # Step 5: Perform authorization and complete token exchange
-                    token_response = yield await self._perform_authorization()
+                    auth_result = await self._perform_authorization()
+                    if isinstance(auth_result, httpx.Request):
+                        token_request = auth_result
+                    else:
+                        auth_code, code_verifier = auth_result
+                        token_request = await self._exchange_token_authorization_code(
+                            auth_code, code_verifier
+                        )
+
+                    token_response = yield token_request
                     await self._handle_token_response(token_response)
                 except Exception:  # pragma: no cover
                     logger.exception("OAuth flow error")
@@ -715,7 +738,16 @@ async def async_auth_flow(self, request: httpx.Request) -> AsyncGenerator[httpx.
                         self._select_scopes(response)
 
                         # Step 2b: Perform (re-)authorization and token exchange
-                        token_response = yield await self._perform_authorization()
+                        auth_result = await self._perform_authorization()
+                        if isinstance(auth_result, httpx.Request):
+                            token_request = auth_result
+                        else:
+                            auth_code, code_verifier = auth_result
+                            token_request = await self._exchange_token_authorization_code(
+                                auth_code, code_verifier
+                            )
+
+                        token_response = yield token_request
                         await self._handle_token_response(token_response)
                     except Exception:  # pragma: no cover
                         logger.exception("OAuth flow error")
