mcp-abap-adt

StreamableHttpServer.ts•8.29 kB

import type { Logger } from '@mcp-abap-adt/logger'; import { StreamableHTTPServerTransport } from '@modelcontextprotocol/sdk/server/streamableHttp.js'; import express, { type Request, type Response } from 'express'; import type { AuthBrokerFactory } from '../lib/auth/index.js'; import { noopLogger } from '../lib/handlerLogger.js'; import type { IHandlersRegistry } from '../lib/handlers/interfaces.js'; import { BaseMcpServer } from './BaseMcpServer.js'; import type { IHttpApplication, RouteRegistrationOptions, } from './IHttpApplication.js'; const DEFAULT_VERSION = process.env.npm_package_version ?? '1.0.0'; export interface StreamableHttpServerOptions { /** * Host to bind to (only used when no external app is provided) * @default "127.0.0.1" */ host?: string; /** * Port to listen on (only used when no external app is provided) * @default 3000 */ port?: number; /** * Whether to return JSON responses (vs SSE streams) * @default true */ enableJsonResponse?: boolean; /** * Default SAP destination to use if not specified in headers */ defaultDestination?: string; /** * Path for the MCP endpoint * @default "/mcp/stream/http" */ path?: string; /** * Logger instance */ logger?: Logger; /** * Server version */ version?: string; /** * External HTTP application to register routes on * When provided, start() will only register routes without creating a server * This enables integration with existing Express/CDS/CAP servers */ app?: IHttpApplication; } /** * Minimal Streamable HTTP server implementation. * Creates new transport for each HTTP POST and forwards request to the MCP server. * Destination is taken from x-mcp-destination header or defaultDestination. * * Supports two modes: * 1. Standalone mode: Creates its own Express server (when no app option provided) * 2. Embedded mode: Registers routes on external app (when app option provided) */ export class StreamableHttpServer extends BaseMcpServer { private readonly host: string; private readonly port: number; private readonly enableJsonResponse: boolean; private readonly defaultDestination?: string; private readonly path: string; private readonly externalApp?: IHttpApplication; constructor( private readonly handlersRegistry: IHandlersRegistry, private readonly authBrokerFactory: AuthBrokerFactory, opts?: StreamableHttpServerOptions, ) { super({ name: 'mcp-abap-adt', version: opts?.version ?? DEFAULT_VERSION, logger: opts?.logger ?? noopLogger, }); this.host = opts?.host ?? '127.0.0.1'; this.port = opts?.port ?? 3000; this.enableJsonResponse = opts?.enableJsonResponse ?? true; this.defaultDestination = opts?.defaultDestination; this.path = opts?.path ?? '/mcp/stream/http'; this.externalApp = opts?.app; // Register handlers once for shared MCP server this.registerHandlers(this.handlersRegistry); } /** * Creates the request handler function * Can be used to register on external app or internal Express */ private createRequestHandler(): ( req: Request, res: Response, ) => Promise<void> { return async (req: Request, res: Response) => { const clientId = `${req.socket.remoteAddress}:${req.socket.remotePort}`; console.error( `[StreamableHttpServer] ${req.method} ${req.path} from ${clientId}`, ); try { let destination: string | undefined; let broker: any; // Priority 1: Check x-mcp-destination header const destinationHeader = (req.headers['x-mcp-destination'] as string | undefined) ?? (req.headers['X-MCP-Destination'] as string | undefined); if (destinationHeader) { destination = destinationHeader; broker = await this.authBrokerFactory.getOrCreateAuthBroker(destination); } // Priority 2: Check SAP connection headers (x-sap-url + auth params) // Headers will be passed directly to handlers, no broker needed else if (this.hasSapConnectionHeaders(req.headers)) { // No destination, no broker - create connection directly from headers destination = undefined; broker = undefined; this.setConnectionContextFromHeaders(req.headers); } // Priority 3: Use default destination else if (this.defaultDestination) { destination = this.defaultDestination; broker = await this.authBrokerFactory.getOrCreateAuthBroker(destination); } // Priority 4: No auth params at all // Allow request to proceed - metadata methods (tools/list, etc.) will work // tools/call will fail with appropriate error in handler // Set connection context only if we have destination or broker if (destination && broker) { await this.setConnectionContext(destination, broker); } const transport = new StreamableHTTPServerTransport({ sessionIdGenerator: undefined, // stateless mode to avoid ID collisions enableJsonResponse: this.enableJsonResponse, }); res.on('close', () => { void transport.close(); }); await this.connect(transport); await transport.handleRequest(req, res, req.body); } catch (err) { console.error('[StreamableHttpServer] Error handling request:', err); if (!res.headersSent) { res.status(500).send('Internal Server Error'); } } }; } /** * Register routes on an external HTTP application * Use this when integrating with existing Express/CDS/CAP server * * @param app - External HTTP application (Express, CDS, etc.) * @param options - Route registration options */ registerRoutes( app: IHttpApplication, _options?: RouteRegistrationOptions, ): void { const handler = this.createRequestHandler(); // Only handle POST requests - GET SSE streams cause abort errors on disconnect app.post(this.path, handler as any); // Return 405 for other methods to avoid SSE stream issues app.all(this.path, ((_req: Request, res: Response) => { res.status(405).send('Method Not Allowed'); }) as any); console.error( `[StreamableHttpServer] Routes registered on external app at ${this.path}`, ); console.error( `[StreamableHttpServer] JSON response mode: ${this.enableJsonResponse}`, ); if (this.defaultDestination) { console.error( `[StreamableHttpServer] Default destination: ${this.defaultDestination}`, ); } } /** * Get the configured endpoint path */ getPath(): string { return this.path; } /** * Start the server * * In standalone mode (no external app): Creates Express server and starts listening * In embedded mode (external app provided): Only registers routes on external app */ async start(): Promise<void> { // If external app was provided in constructor, register routes on it if (this.externalApp) { this.registerRoutes(this.externalApp); return; } // Standalone mode: create own Express server const app = express(); app.use(express.json()); this.registerRoutes(app as unknown as IHttpApplication); await new Promise<void>((resolve, reject) => { const _srv = app .listen(this.port, this.host, () => { console.error( `[StreamableHttpServer] Server started on ${this.host}:${this.port}`, ); console.error( `[StreamableHttpServer] Endpoint: http://${this.host}:${this.port}${this.path}`, ); resolve(); }) .on('error', reject); }); } /** * Check if request has SAP connection headers */ private hasSapConnectionHeaders(headers: any): boolean { const hasUrl = headers['x-sap-url'] || headers['X-SAP-URL']; const hasJwtAuth = headers['x-sap-jwt-token'] || headers['X-SAP-JWT-Token']; const hasBasicAuth = (headers['x-sap-login'] || headers['X-SAP-Login']) && (headers['x-sap-password'] || headers['X-SAP-Password']); return !!(hasUrl && (hasJwtAuth || hasBasicAuth)); } }

Loading blob content...

Latest Blog Posts

How to Test MCP Streamable HTTP Endpoints Using cURL
By punkpeye on January 2, 2026.
tutorial
bash
What is Streamable HTTP in MCP?
By punkpeye on January 2, 2026.
Streamable HTTP
What Is Context Bloat in MCP?
By Om-Shree-0709 on December 16, 2025.
mcp
Context Bloat

MCP directory API

We provide all the information about MCP servers via our MCP API.

curl -X GET 'https://glama.ai/api/mcp/v1/servers/fr0ster/mcp-abap-adt'

If you have feedback or need assistance with the MCP directory API, please join our Discord server

StreamableHttpServer.ts•8.29 kB