rs-fast-mcp 0.2.0

High-performance, async-first Rust implementation of the Model Context Protocol (MCP)
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64

use crate::error::FastMCPError;
use crate::mcp::types::JsonRpcRequest;
use crate::server::auth::oidc::OIDCProvider;
use crate::server::auth::{AuthContext, AuthProvider};
use async_trait::async_trait;
use std::env;

/// WorkOS Authentication Provider.
///
/// Implements authentication using WorkOS AuthKit (User Management) via OIDC/OAuth2.
/// See <https://workos.com/docs/user-management>
pub struct WorkOSProvider {
    inner: OIDCProvider,
    /// WorkOS API domain (e.g. `https://api.workos.com`).
    #[allow(dead_code)]
    domain: String,
}

impl WorkOSProvider {
    /// Create a new WorkOSProvider.
    ///
    /// # Arguments
    /// * `client_id` - The WorkOS Client ID
    /// * `authkit_domain` - The WorkOS AuthKit Domain (e.g., `https://your-domain.authkit.app`)
    pub async fn new(client_id: &str, authkit_domain: &str) -> Result<Self, FastMCPError> {
        let issuer_url = authkit_domain.trim_end_matches('/');

        let inner = OIDCProvider::new(issuer_url, client_id)
            .await
            .map_err(|e| {
                FastMCPError::new(format!("Failed to initialize WorkOS provider: {}", e))
            })?;

        Ok(Self {
            inner,
            domain: issuer_url.to_string(),
        })
    }

    /// Load configuration from environment variables.
    ///
    /// Expected variables:
    /// - `OXFASTMCP_SERVER_AUTH_WORKOS_CLIENT_ID`
    /// - `OXFASTMCP_SERVER_AUTH_WORKOS_AUTHKIT_DOMAIN`
    pub async fn from_env() -> Result<Self, FastMCPError> {
        let client_id = env::var("OXFASTMCP_SERVER_AUTH_WORKOS_CLIENT_ID").map_err(|_| {
            FastMCPError::new("Missing OXFASTMCP_SERVER_AUTH_WORKOS_CLIENT_ID".to_string())
        })?;

        let authkit_domain =
            env::var("OXFASTMCP_SERVER_AUTH_WORKOS_AUTHKIT_DOMAIN").map_err(|_| {
                FastMCPError::new("Missing OXFASTMCP_SERVER_AUTH_WORKOS_AUTHKIT_DOMAIN".to_string())
            })?;

        Self::new(&client_id, &authkit_domain).await
    }
}

#[async_trait]
impl AuthProvider for WorkOSProvider {
    async fn verify(&self, request: &JsonRpcRequest) -> Result<AuthContext, FastMCPError> {
        self.inner.verify(request).await
    }
}