Spring MCP Client security not working when controller exposes streaming HTTP endpoint

[robynico]

When the MCP client is exposed through a Flux-based streaming HTTP endpoint, the thread-bound request context does not appear to be propagated correctly.

In this scenario, calls to RequestContextHolder.getRequestAttributes() within AuthenticationMcpTransportContextProvider.java consistently return null.

It seems that the thread architecture used in reactive endpoints (WebFlux) does not maintain the same request context as in traditional WebMVC controllers.

@GetMapping("/stream-chat")
public Flux<String> index(@RequestParam(required = false) String query) {
    if (StringUtils.hasText(query)) {
        String prompt = String.format("""
            What is the weather in %s right now?
            Compare to historical data over the past 5 years.
            Concisely tell me if it is within the usual range.
            Format the output in plain HTML, no CSS.
            """, query);

        return RequestContextReactorHelper.withRequestContext(
                chatClient.prompt(prompt)
                        .toolCallbacks(mcpToolCallbacks)
                        .stream()
                        .call()
                        .content()
        );
    }
    return Flux.just("no query");
}

[Kehrlann]

Hey @robynico 👋

This looks like a WebFlux-based app. Is that correct?

At the moment, those are not supported. Only WebMvc is support for now.

[robynico]

Hi @Kehrlann, I tried both WebFlux and WebMVC, and I get the same problem with WebMVC.
I created a test repo for (WebMVC) to reproduce the issue and posted it on stackoverflow.com :

https://stackoverflow.com/questions/79796845/spring-mcp-client-do-not-access-to-http-headers-from-mcptransportcontext-in-stre

https://github.com/robynico/spring-mcp-client-stream

Thanks for your work!

[Kehrlann]

I answered on the StackOverflow thread.

I'm working on streamlining this a bit, so that users have less work to do.

[Kehrlann]

This is now released. Check the documentation update: https://github.com/spring-ai-community/mcp-security?tab=readme-ov-file#use-with-streaming-chat-client

[robynico]

@Kehrlann Thanks a lot for your work. I had tried the "contextWrite" solution, but in my concurrent access tests, the results didn’t seem to be thread‑safe. I’ll set aside some time next week to confirm this. Have a great weekend!

[Kehrlann]

Interested in hearing more about it. Again, it’s for Servlet apps, not webflux.

[robynico]

@Kehrlann All concurrent tests are passing successfully.

ToolCallReactiveContextHolder.getContext() does the work!

Implementation tests are available here:
ChatControllerIntegrationTest.java

[Kehrlann]

Great! Have you tried the new v0.0.4 with AuthenticationMcpTransportContextProvider.writeToReactorContext()?

[robynico]

Not yet, I will do it as soon as possible.