Skip to content

feat(cmid-server): Implement Server-Side Support for Client ID Metadata Documents (CIMD)#1810

Open
punitmahes wants to merge 1 commit intomodelcontextprotocol:mainfrom
punitmahes:feat/server-cimd-support
Open

feat(cmid-server): Implement Server-Side Support for Client ID Metadata Documents (CIMD)#1810
punitmahes wants to merge 1 commit intomodelcontextprotocol:mainfrom
punitmahes:feat/server-cimd-support

Conversation

@punitmahes
Copy link
Copy Markdown

@punitmahes punitmahes commented Dec 20, 2025
edited
Loading

Implement Server-Side Support for Client ID Metadata Documents (CIMD)

Motivation and Context

This PR addresses issue #1801 by implementing server-side support for Client ID Metadata Documents (CIMD), as defined in SEP-991 and the MCP authorization specification.
Previously, the Authorization Server logic in the Python SDK could not resolve or validate clients that identify themselves via a URL (CIMD). This change enables the server to:

  • Advertise Support: Tells clients the server supports CIMD by adding client_id_metadata_document_supported: True to the server metadata.
  • Dynamic Resolution: Detects when a client_id is an HTTPS URL during the authorization flow.
  • Fetch & Validate: Fetches the metadata document from the provided URL and validates that the client_id inside the document matches the request.
  • Fallback Mechanism: If a client is not found in the static provider registry, it attempts to resolve it as a CIMD before returning an error.

How Has This Been Tested?

Added Unit Test Cases for the CIMD Server authorization flow -

  • test_cimd_authorization_flow
  • test_cimd_authorization_invalid_cimd_url
  • test_cimd_authorization_invalid_client_id
  • test_cimd_authorization_metadata_fetch_error

Breaking Changes

No

Types of changes

  • New feature (non-breaking change which adds functionality)

Checklist

  • I have read the MCP Documentation
  • My code follows the repository's style guidelines
  • New and existing tests pass locally
  • I have added appropriate error handling
  • I have added or updated documentation as needed

@punitmahes punitmahes force-pushed the feat/server-cimd-support branch from 86fce91 to fa13db7 Compare December 21, 2025 12:44
@punitmahes punitmahes mentioned this pull request Dec 21, 2025
Open
@maxisbey maxisbey added enhancement Request for a new feature that's not currently supported auth Issues and PRs related to Authentication / OAuth P2 Moderate issues affecting some users, edge cases, potentially valuable feature labels Dec 31, 2025
@maxisbey maxisbey mentioned this pull request Feb 10, 2026
Closed
@punitmahes
Copy link
Copy Markdown
Author

punitmahes commented Mar 4, 2026

@maxisbey Any updates on this PR?

@maxisbey maxisbey requested a review from pcarleton March 6, 2026 10:59
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@pcarleton pcarleton Awaiting requested review from pcarleton

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

auth Issues and PRs related to Authentication / OAuth enhancement Request for a new feature that's not currently supported P2 Moderate issues affecting some users, edge cases, potentially valuable feature

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@punitmahes @maxisbey