Add official Asana MCP via mcp-remote OAuth bridge#16
Merged
Conversation
Reach the official Asana MCP server (remote, OAuth-protected at https://mcp.asana.com/v2/mcp) through the mcp-remote stdio bridge, which performs the OAuth 2.1 authorization-code (PKCE) flow and refreshes the access token automatically. - process_runner: scrape the authorization URL printed to stderr via a background reader into a shared pending_auth_urls registry, and extend the initialize-handshake timeout (MCPPROXY_AUTH_INIT_TIMEOUT, default 300s) so a first-time interactive OAuth flow can complete. The stderr tail buffer still surfaces crash causes on EOF. - frontend: add GET /api/pending-auth and a wizard poller that shows a clickable Authorize link while introspection is blocked on auth. - docker-compose: persist the token cache (mcpproxy-mcp-auth volume at /app/.mcp-auth, kept out of /app/files so tokens aren't exposed via mcpproxy__getfile), set MCP_REMOTE_CONFIG_DIR, and map the OAuth callback port 3334. Dev override bind-mounts ./.mcp-auth (gitignored). - examples/asana.yaml + README: document the provider and the authorize-once-then-silent-refresh flow. - tests: cover auth-URL extraction, stderr capture, and registry clearing. https://claude.ai/code/session_01WBwGMEMH6xsuV3gNVtdLba
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
2 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Reach the official Asana MCP server (remote, OAuth-protected at
https://mcp.asana.com/v2/mcp) through the mcp-remote stdio bridge, which
performs the OAuth 2.1 authorization-code (PKCE) flow and refreshes the
access token automatically.
background reader into a shared pending_auth_urls registry, and extend the
initialize-handshake timeout (MCPPROXY_AUTH_INIT_TIMEOUT, default 300s) so a
first-time interactive OAuth flow can complete. The stderr tail buffer still
surfaces crash causes on EOF.
clickable Authorize link while introspection is blocked on auth.
/app/.mcp-auth, kept out of /app/files so tokens aren't exposed via
mcpproxy__getfile), set MCP_REMOTE_CONFIG_DIR, and map the OAuth callback
port 3334. Dev override bind-mounts ./.mcp-auth (gitignored).
authorize-once-then-silent-refresh flow.
https://claude.ai/code/session_01WBwGMEMH6xsuV3gNVtdLba