Only the first authorization server is used in the SDK

[spacewander]

According to the spec,

The specific use of authorization_servers is beyond the scope of this specification; implementers should consult OAuth 2.0 Protected Resource Metadata (RFC9728) for guidance on implementation details.

https://modelcontextprotocol.io/specification/2025-06-18/basic/authorization

In the SDK I checked, only the first authorization server is used:

https://github.com/modelcontextprotocol/typescript-sdk/blob/4d0977bc9169965233120e823c8024e210132ad9/src/client/auth.ts#L328

https://github.com/modelcontextprotocol/python-sdk/blob/c7671e470c235971b63c41be183537074ff8fa91/src/mcp/client/auth.py#L250

Are they by design?

[pavinduLakshan]

As per the PRM specification, selecting the authorization server is the client’s responsibility. Therefore, the SDK’s OAuthClientProvider[1] should be updated to allow the client to implement the logic for choosing the authorization server.

Eg:

export interface OAuthClientProvider {
   // ... rest of the methods

  /**
   * The URL of the authorization server
   */
  get authorizationServerUrl(): string | URL;
}

[1] https://github.com/modelcontextprotocol/typescript-sdk/blob/f657ead4722cfb419d857965a59bd52164c9c99a/src/client/auth.ts#L33

[localden]

@spacewander this seems like something that needs to be addressed directly on the SDK side rather than the spec.

For TypeScript, this is tracked here:

modelcontextprotocol/typescript-sdk#584

For Python, I opened this:

modelcontextprotocol/python-sdk#1319