get metadata from oauth server

Rodriguespn · Rodriguespn · commit cb2a7cebff2e · 2025-08-17T12:45:43.000+01:00
diff --git a/package-lock.json b/package-lock.json
diff --git a/package.json b/package.json
@@ -10,5 +10,8 @@
   "devDependencies": {
     "@biomejs/biome": "1.9.4",
     "supabase": "^2.1.1"
+  },
+  "dependencies": {
+    "axios": "^1.11.0"
   }
 }
diff --git a/packages/mcp-server-supabase/src/transports/http.ts b/packages/mcp-server-supabase/src/transports/http.ts
@@ -1,4 +1,5 @@
 import { Hono } from 'hono';
+import axios from 'axios';
 import { createSupabaseMcpServer } from '../server.js';
 import { StatelessHttpServerTransport } from '@supabase/mcp-utils';
 import { serve } from '@hono/node-server';
@@ -85,42 +86,19 @@ app.delete('/mcp', async (c) => {
   );
 });
 
-const oauthMetadata = {
-  issuer: `${managementApiUrl}`,
-  authorization_endpoint: `${managementApiUrl}/v1/oauth/authorize`,
-  token_endpoint: `${managementApiUrl}/v1/oauth/token`,
-  registration_endpoint: `${managementApiUrl}/platform/oauth/apps/register`,
-  token_endpoint_auth_methods_supported: ['client_secret_post'],
-  scopes_supported: [
-    'analytics:read',
-    'analytics:write',
-    'auth:read',
-    'auth:write',
-    'database:read',
-    'database:write',
-    'domains:read',
-    'domains:write',
-    'edge_functions:read',
-    'edge_functions:write',
-    'environment:read',
-    'environment:write',
-    'organizations:read',
-    'organizations:write',
-    'projects:read',
-    'projects:write',
-    'rest:read',
-    'rest:write',
-    'secrets:read',
-    'secrets:write',
-    'storage:read',
-    'storage:write',
-  ],
-  response_types_supported: ['code'],
-  response_modes_supported: ['query'],
-  grant_types_supported: ['authorization_code', 'refresh_token'],
-  code_challenge_methods_supported: ['S256'],
+const fetchOauthMetadata = async () => {
+  const response = await axios.get(
+    `${managementApiUrl}/.well-known/oauth-authorization-server`
+  );
+  if (response.status != 200) {
+    throw new Error('Failed to fetch OAuth metadata');
+  }
+
+  return response.data;
 };
 
+const oauthMetadata = await fetchOauthMetadata();
+
 const protectedResourceMetadata = {
   resource: `http://localhost:${port}`, // "https://api.supabase.io/mcp",
   authorization_servers: [oauthMetadata.issuer],

Original file line number	Diff line number	Diff line change
`@@ -10,5 +10,8 @@`
`10`	`10`	`"devDependencies": {`
`11`	`11`	`"@biomejs/biome": "1.9.4",`
`12`	`12`	`"supabase": "^2.1.1"`
	`13`	`+ },`
	`14`	`+ "dependencies": {`
	`15`	`+ "axios": "^1.11.0"`
`13`	`16`	`}`
`14`	`17`	`}`