Tests, ValueTasks, and dedicated type for caching.

Author: halllo

src/ModelContextProtocol.Core/Authentication/ClientOAuthProvider.cs

@@ -136,7 +136,8 @@ public ClientOAuthProvider(
     {
         ThrowIfNotBearerScheme(scheme);
 
-        var token = await _tokenCache.GetTokenAsync(cancellationToken).ConfigureAwait(false);
+        var cachedToken = await _tokenCache.GetTokenAsync(cancellationToken).ConfigureAwait(false);
+        var token = cachedToken?.ForUse();
 
         // Return the token if it's valid
         if (token != null && token.ExpiresAt > DateTimeOffset.UtcNow.AddMinutes(5))
@@ -150,7 +151,7 @@ public ClientOAuthProvider(
             var newToken = await RefreshTokenAsync(token.RefreshToken, resourceUri, _authServerMetadata, cancellationToken).ConfigureAwait(false);
             if (newToken != null)
             {
-                await _tokenCache.StoreTokenAsync(newToken, cancellationToken).ConfigureAwait(false);
+                await _tokenCache.StoreTokenAsync(newToken.ForCache(), cancellationToken).ConfigureAwait(false);
                 return newToken.AccessToken;
             }
         }
@@ -237,7 +238,7 @@ private async Task PerformOAuthAuthorizationAsync(
             ThrowFailedToHandleUnauthorizedResponse($"The {nameof(AuthorizationRedirectDelegate)} returned a null or empty token.");
         }
 
-        await _tokenCache.StoreTokenAsync(token, cancellationToken).ConfigureAwait(false);
+        await _tokenCache.StoreTokenAsync(token.ForCache(), cancellationToken).ConfigureAwait(false);
         LogOAuthAuthorizationCompleted();
     }
 

src/ModelContextProtocol.Core/Authentication/ITokenCache.cs

@@ -6,12 +6,12 @@ namespace ModelContextProtocol.Authentication;
 public interface ITokenCache
 {
     /// <summary>
-    /// Cache the token.
+    /// Cache the token. After a new access token is acquired, this method is invoked to store it.
     /// </summary>
-    Task StoreTokenAsync(TokenContainer token, CancellationToken cancellationToken);
+    ValueTask StoreTokenAsync(TokenContainerCacheable token, CancellationToken cancellationToken);
 
     /// <summary>
-    /// Get the cached token.
+    /// Get the cached token. This method is invoked for every request.
     /// </summary>
-    Task<TokenContainer?> GetTokenAsync(CancellationToken cancellationToken);
+    ValueTask<TokenContainerCacheable?> GetTokenAsync(CancellationToken cancellationToken);
 }

src/ModelContextProtocol.Core/Authentication/InMemoryTokenCache.cs

@@ -6,22 +6,22 @@ namespace ModelContextProtocol.Authentication;
 /// </summary>
 internal class InMemoryTokenCache : ITokenCache
 {
-    private TokenContainer? _token;
+    private TokenContainerCacheable? _token;
 
     /// <summary>
     /// Cache the token.
     /// </summary>
-    public Task StoreTokenAsync(TokenContainer token, CancellationToken cancellationToken)
+    public ValueTask StoreTokenAsync(TokenContainerCacheable token, CancellationToken cancellationToken)
     {
         _token = token;
-        return Task.CompletedTask;
+        return default;
     }
 
     /// <summary>
     /// Get the cached token.
     /// </summary>
-    public Task<TokenContainer?> GetTokenAsync(CancellationToken cancellationToken)
+    public ValueTask<TokenContainerCacheable?> GetTokenAsync(CancellationToken cancellationToken)
     {
-        return Task.FromResult(_token);
+        return new ValueTask<TokenContainerCacheable?>(_token);
     }
 }

src/ModelContextProtocol.Core/Authentication/TokenContainer.cs

@@ -5,7 +5,7 @@ namespace ModelContextProtocol.Authentication;
 /// <summary>
 /// Represents a token response from the OAuth server.
 /// </summary>
-public sealed class TokenContainer
+internal sealed class TokenContainer
 {
     /// <summary>
     /// Gets or sets the access token.
@@ -46,7 +46,7 @@ public sealed class TokenContainer
     /// <summary>
     /// Gets or sets the timestamp when the token was obtained.
     /// </summary>
-    [JsonPropertyName("obtained_at")]
+    [JsonIgnore]
     public DateTimeOffset ObtainedAt { get; set; }
 
     /// <summary>

src/ModelContextProtocol.Core/Authentication/TokenContainerCacheable.cs

@@ -0,0 +1,42 @@
+namespace ModelContextProtocol.Authentication;
+
+/// <summary>
+/// Represents a cacheable token representation.
+/// </summary>
+public class TokenContainerCacheable
+{
+    /// <summary>
+    /// Gets or sets the access token.
+    /// </summary>
+    public string AccessToken { get; set; } = string.Empty;
+
+    /// <summary>
+    /// Gets or sets the refresh token.
+    /// </summary>
+    public string? RefreshToken { get; set; }
+
+    /// <summary>
+    /// Gets or sets the number of seconds until the access token expires.
+    /// </summary>
+    public int ExpiresIn { get; set; }
+
+    /// <summary>
+    /// Gets or sets the extended expiration time in seconds.
+    /// </summary>
+    public int ExtExpiresIn { get; set; }
+
+    /// <summary>
+    /// Gets or sets the token type (typically "Bearer").
+    /// </summary>
+    public string TokenType { get; set; } = string.Empty;
+
+    /// <summary>
+    /// Gets or sets the scope of the access token.
+    /// </summary>
+    public string Scope { get; set; } = string.Empty;
+
+    /// <summary>
+    /// Gets or sets the timestamp when the token was obtained.
+    /// </summary>
+    public DateTimeOffset ObtainedAt { get; set; }
+}

src/ModelContextProtocol.Core/Authentication/TokenContainerConvert.cs

@@ -0,0 +1,26 @@
+namespace ModelContextProtocol.Authentication;
+
+internal static class TokenContainerConvert
+{
+    internal static TokenContainer ForUse(this TokenContainerCacheable token) => new TokenContainer
+    {
+        AccessToken = token.AccessToken,
+        RefreshToken = token.RefreshToken,
+        ExpiresIn = token.ExpiresIn,
+        ExtExpiresIn = token.ExtExpiresIn,
+        TokenType = token.TokenType,
+        Scope = token.Scope,
+        ObtainedAt = token.ObtainedAt,
+    };
+
+    internal static TokenContainerCacheable ForCache(this TokenContainer token) => new()
+    {
+        AccessToken = token.AccessToken,
+        RefreshToken = token.RefreshToken,
+        ExpiresIn = token.ExpiresIn,
+        ExtExpiresIn = token.ExtExpiresIn,
+        TokenType = token.TokenType,
+        Scope = token.Scope,
+        ObtainedAt = token.ObtainedAt,
+    };
+}

tests/ModelContextProtocol.Tests/Client/CustomTokenCacheTests.cs

@@ -0,0 +1,233 @@
+using ModelContextProtocol.Client;
+using ModelContextProtocol.Protocol;
+using ModelContextProtocol.Authentication;
+using System.Text.Json;
+using Moq;
+using Moq.Protected;
+using System.Net;
+using System.Text.Json.Nodes;
+using System.Linq.Expressions;
+
+namespace ModelContextProtocol.Tests.Client;
+
+public class CustomTokenCacheTests
+{
+    [Fact]
+    public async Task GetTokenAsync_CachedAccessTokenIsUsedForOutgoingRequests()
+    {
+        // Arrange
+        var cachedAccessToken = $"my_access_token_{Guid.NewGuid()}";
+
+        var tokenCacheMock = new Mock<ITokenCache>();
+        MockCachedAccessToken(tokenCacheMock, cachedAccessToken);
+
+        var httpMessageHandlerMock = new Mock<HttpMessageHandler>();
+        MockInitializeResponse(httpMessageHandlerMock);
+
+        var httpClientTransport = new HttpClientTransport(
+            transportOptions: NewHttpClientTransportOptions(tokenCacheMock.Object),
+            httpClient: new HttpClient(httpMessageHandlerMock.Object));
+
+        var connectedTransport = await httpClientTransport.ConnectAsync(cancellationToken: TestContext.Current.CancellationToken);
+
+        // Act
+        var initializeRequest = new JsonRpcRequest { Method = RequestMethods.Initialize, Id = new RequestId(1) };
+        await connectedTransport.SendMessageAsync(initializeRequest, cancellationToken: TestContext.Current.CancellationToken);
+
+        // Assert
+        httpMessageHandlerMock
+            .Protected()
+            .Verify("SendAsync", Times.AtLeastOnce(), ItExpr.Is<HttpRequestMessage>(req =>
+                   req.RequestUri == new Uri("http://localhost:1337/")
+                && req.Headers.Authorization != null
+                && req.Headers.Authorization.Scheme == "Bearer"
+                && req.Headers.Authorization.Parameter == cachedAccessToken
+            ), ItExpr.IsAny<CancellationToken>());
+
+        httpMessageHandlerMock
+            .Protected()
+            .Verify("SendAsync", Times.Never(), ItExpr.Is<HttpRequestMessage>(req =>
+                   req.RequestUri == new Uri("http://localhost:1337/")
+                && (req.Headers.Authorization == null || req.Headers.Authorization.Parameter != cachedAccessToken)
+            ), ItExpr.IsAny<CancellationToken>());
+    }
+
+    [Fact]
+    public async Task StoreTokenAsync_NewlyAcquiredAccessTokenIsCached()
+    {
+        // Arrange
+        var tokenCacheMock = new Mock<ITokenCache>();
+        MockNoAccessTokenUntilStored(tokenCacheMock);
+
+        var newAccessToken = $"new_access_token_{Guid.NewGuid()}";
+
+        var httpMessageHandlerMock = new Mock<HttpMessageHandler>();
+        MockUnauthorizedResponse(httpMessageHandlerMock);
+        MockProtectedResourceMetadataResponse(httpMessageHandlerMock);
+        MockAuthorizationServerMetadataResponse(httpMessageHandlerMock);
+        MockAccessTokenResponse(httpMessageHandlerMock, newAccessToken);
+        MockInitializeResponse(httpMessageHandlerMock);
+
+        var httpClientTransport = new HttpClientTransport(
+            transportOptions: NewHttpClientTransportOptions(tokenCacheMock.Object),
+            httpClient: new HttpClient(httpMessageHandlerMock.Object));
+
+        var connectedTransport = await httpClientTransport.ConnectAsync(cancellationToken: TestContext.Current.CancellationToken);
+
+        // Act
+        var initializeRequest = new JsonRpcRequest { Method = RequestMethods.Initialize, Id = new RequestId(1) };
+        await connectedTransport.SendMessageAsync(initializeRequest, cancellationToken: TestContext.Current.CancellationToken);
+
+        // Assert
+        tokenCacheMock
+            .Verify(tc => tc.StoreTokenAsync(
+                It.Is<TokenContainerCacheable>(token => token.AccessToken == newAccessToken),
+                It.IsAny<CancellationToken>()), Times.Once);
+    }
+
+    static HttpClientTransportOptions NewHttpClientTransportOptions(ITokenCache? tokenCache = null) => new()
+    {
+        Name = "MCP Server",
+        Endpoint = new Uri("http://localhost:1337/"),
+        TransportMode = HttpTransportMode.StreamableHttp,
+        OAuth = new()
+        {
+            ClientId = "mcp_inspector",
+            RedirectUri = new Uri("http://localhost:6274/oauth/callback"),
+            Scopes = ["openid", "profile", "offline_access"],
+            AuthorizationRedirectDelegate = (authorizationUrl, redirectUri, cancellationToken) => Task.FromResult<string?>($"auth_code_{Guid.NewGuid()}"),
+            TokenCache = tokenCache,
+        },
+    };
+
+    static void MockCachedAccessToken(Mock<ITokenCache> tokenCache, string cachedAccessToken)
+    {
+        tokenCache
+            .Setup(tc => tc.GetTokenAsync(It.IsAny<CancellationToken>()))
+            .ReturnsAsync(new TokenContainerCacheable
+            {
+                AccessToken = cachedAccessToken,
+                ObtainedAt = DateTimeOffset.UtcNow,
+                ExpiresIn = (int)TimeSpan.FromHours(1).TotalSeconds,
+            });
+    }
+
+    static void MockNoAccessTokenUntilStored(Mock<ITokenCache> tokenCache)
+    {
+        tokenCache
+            .Setup(tc => tc.StoreTokenAsync(It.IsAny<TokenContainerCacheable>(), It.IsAny<CancellationToken>()))
+            .Callback<TokenContainerCacheable, CancellationToken>((token, ct) =>
+            {
+                // Simulate that the token is now cached
+                MockCachedAccessToken(tokenCache, token.AccessToken);
+            })
+            .Returns(default(ValueTask));
+    }
+
+    static void MockUnauthorizedResponse(Mock<HttpMessageHandler> httpMessageHandler)
+    {
+        MockHttpResponse(httpMessageHandler,
+            request: req => req.RequestUri == new Uri("http://localhost:1337/") 
+                && req.Method == HttpMethod.Post
+                && (req.Headers.Authorization == null || string.IsNullOrWhiteSpace(req.Headers.Authorization.Parameter)),
+            response: new HttpResponseMessage(HttpStatusCode.Unauthorized)
+            {
+                Headers = {
+                    { "WWW-Authenticate", "Bearer realm=\"Bearer\", resource_metadata=\"http://localhost:1337/.well-known/oauth-protected-resource\"" }
+                },
+            });
+    }
+
+    static void MockProtectedResourceMetadataResponse(Mock<HttpMessageHandler> httpMessageHandler)
+    {
+        MockHttpResponse(httpMessageHandler,
+            request: req => req.RequestUri == new Uri("http://localhost:1337/.well-known/oauth-protected-resource"),
+            response: new HttpResponseMessage(HttpStatusCode.OK)
+            {
+                Content = ToJsonContent(new
+                {
+                    resource = "http://localhost:1337/",
+                    authorization_servers = new[] { "http://localhost:1336/" },
+                })
+            });
+    }
+
+    static void MockAuthorizationServerMetadataResponse(Mock<HttpMessageHandler> httpMessageHandler)
+    {
+        MockHttpResponse(httpMessageHandler,
+            request: req => req.RequestUri == new Uri("http://localhost:1336/.well-known/openid-configuration"),
+            response: new HttpResponseMessage(HttpStatusCode.OK)
+            {
+                Content = ToJsonContent(new
+                {
+                    authorization_endpoint = "http://localhost:1336/connect/authorize",
+                    token_endpoint = "http://localhost:1336/connect/token",
+                })
+            });
+    }
+
+    static void MockAccessTokenResponse(Mock<HttpMessageHandler> httpMessageHandler, string accessToken)
+    {
+        MockHttpResponse(httpMessageHandler,
+            request: req => req.RequestUri == new Uri("http://localhost:1336/connect/token"),
+            response: new HttpResponseMessage(HttpStatusCode.OK)
+            {
+                Content = ToJsonContent(new
+                {
+                    access_token = accessToken,
+                })
+            });
+    }
+
+    static void MockInitializeResponse(Mock<HttpMessageHandler> httpMessageHandler)
+    {
+        MockHttpResponse(httpMessageHandler,
+            request: req => req.RequestUri == new Uri("http://localhost:1337/")
+                && req.Method == HttpMethod.Post
+                && req.Headers.Authorization != null
+                && req.Headers.Authorization.Scheme == "Bearer"
+                && !string.IsNullOrWhiteSpace(req.Headers.Authorization.Parameter),
+            response: new HttpResponseMessage(HttpStatusCode.OK)
+            {
+                Content = ToJsonContent(new JsonRpcResponse
+                {
+                    Id = new RequestId(1),
+                    Result = ToJson(new InitializeResult
+                    {
+                        ProtocolVersion = "2024-11-05",
+                        Capabilities = new ServerCapabilities
+                        {
+                            Prompts = new PromptsCapability { ListChanged = true },
+                            Resources = new ResourcesCapability { Subscribe = true, ListChanged = true },
+                            Tools = new ToolsCapability { ListChanged = true },
+                            Logging = new LoggingCapability(),
+                            Completions = new CompletionsCapability(),
+                        },
+                        ServerInfo = new Implementation
+                        {
+                            Name = "mcp-test-server",
+                            Version = "1.0.0"
+                        },
+                        Instructions = "This server provides weather information and file system access."
+                    })
+                }),
+            });
+    }
+
+    static void MockHttpResponse(Mock<HttpMessageHandler> httpMessageHandler, Expression<Func<HttpRequestMessage, bool>>? request = null, HttpResponseMessage? response = null)
+    {
+        httpMessageHandler
+            .Protected()
+            .Setup<Task<HttpResponseMessage>>("SendAsync", request != null ? ItExpr.Is(request) : ItExpr.IsAny<HttpRequestMessage>(), ItExpr.IsAny<CancellationToken>())
+            .ReturnsAsync(response ?? new HttpResponseMessage());
+    }
+
+    static StringContent ToJsonContent<T>(T content) => new(
+        content: JsonSerializer.Serialize(content, McpJsonUtilities.DefaultOptions),
+        encoding: System.Text.Encoding.UTF8,
+        mediaType: "application/json");
+
+    static JsonNode? ToJson<T>(T content) => JsonSerializer.SerializeToNode(
+        value: content,
+        options: McpJsonUtilities.DefaultOptions);
+}