telegram-bot-mcp

mikkel/telegram-bot-mcp

Fork 0

Commit graph

Author	SHA1	Message	Date
Mikkel Georgsen	15e3582787	feat: switch OAuth to authorization code + PKCE flow Claude Desktop uses authorization code flow, not client credentials. Added /authorize endpoint that auto-approves (single-user setup) and redirects with code. Token endpoint now supports both grant types. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-03-30 10:44:05 +00:00
Mikkel Georgsen	205b978b89	feat: add OAuth client credentials auth to MCP server - OAuth 2.0 discovery at /.well-known/oauth-authorization-server - Token endpoint at /token (client_credentials grant) - Bearer token middleware on /mcp (all MCP requests require auth) - Health, ingest, and OAuth endpoints remain public - Tokens expire after 1 hour, stored hashed in memory Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-03-30 09:45:04 +00:00

Author

SHA1

Message

Date

Mikkel Georgsen

15e3582787

feat: switch OAuth to authorization code + PKCE flow

Claude Desktop uses authorization code flow, not client credentials.
Added /authorize endpoint that auto-approves (single-user setup) and
redirects with code. Token endpoint now supports both grant types.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

2026-03-30 10:44:05 +00:00

Mikkel Georgsen

205b978b89

feat: add OAuth client credentials auth to MCP server

- OAuth 2.0 discovery at /.well-known/oauth-authorization-server
- Token endpoint at /token (client_credentials grant)
- Bearer token middleware on /mcp (all MCP requests require auth)
- Health, ingest, and OAuth endpoints remain public
- Tokens expire after 1 hour, stored hashed in memory

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

2026-03-30 09:45:04 +00:00

2 commits