Skip to main content
Glama
kdkiss

Stepstone Job Search MCP Server

by kdkiss
OverviewSchemaRelated ServersScoreDiscussions
Remote
test_http_server.py4.04 kB
from starlette.testclient import TestClient import stepstone_http_server def test_cors_preflight_respects_request_origin(): app = stepstone_http_server.create_app() with TestClient(app) as client: response = client.options( "/mcp", headers={ "Origin": "https://example.com", "Access-Control-Request-Method": "POST", "Access-Control-Request-Headers": "mcp-session-id, content-type", }, ) assert response.status_code in (200, 204) assert response.headers["access-control-allow-origin"] == "https://example.com" assert response.headers["access-control-allow-credentials"] == "true" assert "GET" in response.headers["access-control-allow-methods"] assert ( response.headers["access-control-allow-headers"] == "mcp-session-id, content-type" ) assert response.headers["vary"] == "origin" def test_homepage_reports_status(): app = stepstone_http_server.create_app() with TestClient(app) as client: response = client.get("/", headers={"Origin": "https://foo"}) assert response.status_code == 200 payload = response.json() assert payload["status"] == "ok" assert payload["endpoints"]["mcp"].endswith("/mcp") assert payload["endpoints"]["mcpPath"] == "/mcp" assert response.headers["access-control-allow-origin"] == "https://foo" assert response.headers["access-control-allow-credentials"] == "true" assert response.headers["vary"] == "origin" def test_homepage_preflight_includes_cors_headers(): app = stepstone_http_server.create_app() with TestClient(app) as client: response = client.options( "/", headers={ "Origin": "https://foo", "Access-Control-Request-Method": "GET", "Access-Control-Request-Headers": "content-type", }, ) assert response.status_code in (200, 204) assert response.headers["access-control-allow-origin"] == "https://foo" assert response.headers["access-control-allow-headers"] == "content-type" assert response.headers["access-control-allow-credentials"] == "true" assert response.headers["vary"] == "origin" def test_health_endpoint_includes_cors_headers(): app = stepstone_http_server.create_app() with TestClient(app) as client: response = client.get("/health") assert response.status_code == 200 assert response.headers["access-control-allow-origin"] == "*" assert response.headers["access-control-allow-methods"] assert response.headers["access-control-expose-headers"] == "mcp-session-id" def test_mcp_session_header_is_exposed(): app = stepstone_http_server.create_app() with TestClient(app) as client: response = client.post( "/mcp/", headers={"Accept": "application/json, text/event-stream"}, json={"jsonrpc": "2.0", "id": "noop", "method": "ping"}, ) assert response.headers["access-control-expose-headers"] == "mcp-session-id" assert "mcp-session-id" in response.headers assert response.headers["access-control-allow-origin"] == "*" assert "access-control-allow-credentials" not in response.headers def test_initialize_without_accept_header_succeeds(): app = stepstone_http_server.create_app() payload = { "jsonrpc": "2.0", "id": 123, "method": "initialize", "params": { "protocolVersion": "2025-06-18", "capabilities": {}, "clientInfo": {"name": "pytest", "version": "0.0.0"}, }, } with TestClient(app) as client: response = client.post("/mcp", json=payload) assert response.status_code == 200 assert response.headers["mcp-session-id"] assert response.headers["content-type"].startswith("application/json") assert response.headers["access-control-allow-origin"] == "*" assert "access-control-allow-credentials" not in response.headers

Latest Blog Posts

MCP directory API

We provide all the information about MCP servers via our MCP API.

curl -X GET 'https://glama.ai/api/mcp/v1/servers/kdkiss/mcp-stepstone'

If you have feedback or need assistance with the MCP directory API, please join our Discord server