ProxyOAuthServerProvider: redirect_uri missing in token request

**Describe the bug**

When calling the /token endpoint in [exchangeAuthorizationCode](https://github.com/modelcontextprotocol/typescript-sdk/blob/bced33d8bc57419c6d498ca9a26a284f3ccf6016/src/server/auth/providers/proxyProvider.ts#L156) the ProxyOAuthServerProvider does not send **redirect_uri** - which is [required according to the spec](https://datatracker.ietf.org/doc/html/rfc6749#section-4.1.3). This leads to token endpoints returning 400/500  when (for example) proxying to Amazon Cognito.

**To Reproduce**
Steps to reproduce the behavior:
1. Leverage ProxyOAuthServerProvider as described in the docs
2. Return 401 to trigger Authorization Flow
3. /authorize works
4. /token fails

**Expected behavior**

The **redirect_uri** that was used during /authorize should be sent to the token endpoint. 


Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

ProxyOAuthServerProvider: redirect_uri missing in token request #479

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

ProxyOAuthServerProvider: redirect_uri missing in token request #479

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions