Elgato_dark/gemini-cli
1
0
Fork 0
mirror of https://github.com/google-gemini/gemini-cli synced 2026-04-21 13:37:17 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 19

fix: allow prefix-based OAuth resource validation for path-based servers

Browse source
This commit is contained in:
김범환 2026-04-16 13:48:42 +09:00
parent 6d7974f1ef
commit e0f46ee86d
1 changed files with 11 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

13
packages/core/src/mcp/oauth-utils.ts
View file

@ -418,13 +418,22 @@ export class OAuthUtils {
): boolean {
const normalize = (resource: string): string => {
try {
return this.buildResourceParameter(resource);
let normalized = this.buildResourceParameter(resource);
if (!normalized.endsWith("/")) {
normalized += "/";
}
return normalized;
} catch {
return resource;
}
};
return normalize(discoveredResource) === normalize(expectedResource);
const normalizedDiscovered = normalize(discoveredResource);
const normalizedExpected = normalize(expectedResource);
// Allow if the discovered resource is a prefix of the expected resource.
// This supports path-based MCP servers where the OAuth resource is at the root.
return normalizedExpected.startsWith(normalizedDiscovered);
}
/**