feat(client/sse): add {EventSource,Request}Init options param #109
Conversation
This enables users of the SSE client to optionally send cookie-based credentials to the event source MCP server using `EventSourceInit` [1] parameters and set the outgoing request headers for the POST call. [1]: https://developer.mozilla.org/en-US/docs/Web/API/EventSource/EventSource#options
|
This might cover the same needs as #105, too, while allowing additional headers to be set on the outgoing |
| @@ -90,14 +94,17 @@ export class SSEClientTransport implements Transport { | |||
| } | |||
|
|
|||
| try { | |||
| const response = await fetch(this._endpoint, { | |||
| const headers = new Headers(this._requestInit?.headers); | |||
| headers.set("content-type", "application/json"); | |||
There was a problem hiding this comment.
I wonder if we should set this before the user's given values, so they can apply a different content type if needed. I could see an argument either way (the argument to do it this way being: well, we will actually send JSON).
What are your thoughts?
There was a problem hiding this comment.
Yeah – I lean towards the library's content-type taking precedence because, like you said, the library ultimately controls the body of the request.
That said, in similar libraries I've had some success letting the user inject their own fetch / EventSource for greater control; that would let the user replace the body with their own encoding (if say, they wanted to send the request encoded in msgpack or XML instead of JSON.) I waffled a bit on adding that interface to this PR since it can feel like "over-injection", but it'd look something like this:
diff --git a/src/client/sse.ts b/src/client/sse.ts
index 0e6e7eb..b6a37c0 100644
--- a/src/client/sse.ts
+++ b/src/client/sse.ts
@@ -1,6 +1,9 @@
import { Transport } from "../shared/transport.js";
import { JSONRPCMessage, JSONRPCMessageSchema } from "../types.js";
+type Fetch = typeof globalThis.fetch
+type EventSourceCtor = typeof globalThis.EventSource
+
/**
* Client transport for SSE: this will connect to a server using Server-Sent Events for receiving
* messages and make separate POST requests for sending messages.
@@ -14,15 +17,24 @@ export class SSEClientTransport implements Transport {
private _url: URL;
private _eventSourceInit?: EventSourceInit;
private _requestInit?: RequestInit;
+ private _fetch: Fetch;
+ private _EventSource: EventSourceCtor;
onclose?: () => void;
onerror?: (error: Error) => void;
onmessage?: (message: JSONRPCMessage) => void;
- constructor(url: URL, opts?: { eventSourceInit?: EventSourceInit, requestInit?: RequestInit }) {
+ constructor(url: URL, opts?: {
+ eventSourceInit?: EventSourceInit,
+ requestInit?: RequestInit,
+ fetch?: Fetch,
+ EventSource?: EventSourceCtor
+ }) {
this._url = url;
this._eventSourceInit = opts?.eventSourceInit;
this._requestInit = opts?.requestInit;
+ this._fetch = opts?.fetch ?? globalThis.fetch;
+ this._EventSource = opts?.EventSource ?? globalThis.EventSource;
}
start(): Promise<void> {
@@ -33,7 +45,7 @@ export class SSEClientTransport implements Transport {
}
return new Promise((resolve, reject) => {
- this._eventSource = new EventSource(this._url.href, this._eventSourceInit);
+ this._eventSource = new this._EventSource(this._url.href, this._eventSourceInit);
this._abortController = new AbortController();
this._eventSource.onerror = (event) => {
@@ -104,7 +116,7 @@ export class SSEClientTransport implements Transport {
signal: this._abortController?.signal
};
- const response = await fetch(this._endpoint, init);
+ const response = await this._fetch(this._endpoint, init);
if (!response.ok) {
const text = await response.text().catch(() => null);
(If you're interested I can open this up as a separate PR!)
There was a problem hiding this comment.
Makes sense, thanks!
I think my preference would be to stick to standard fetch and EventSource, and suggest that extreme levels of customization should just go into a custom, user-defined transport class. Transports are meant to be quite pluggable, specifically to support stuff like this. 🙂
Motivation and Context
This enables users of the SSE client to optionally send cookie-based credentials to the event source MCP server using
EventSourceInit1 & set outgoing request headers for the POST call usingRequestInit2.How Has This Been Tested?
I ran through
npm test; if there's interest in this I'll add some additional tests and make sure the change integrates cleanly with@modelcontextprotocol/inspectorBreaking Changes
N/A
Types of changes
Checklist
Additional context
Alternatively, giving the user the ability to inject their own
EventSource/fetchimplementations would achieve the same goal a bit more flexibly.(Also hi! First time contributing here – great project, thanks for all the hard work!)