USCardForum MCP Server

get_current_session

Check authentication status and retrieve current user information to verify login state on USCardForum.

Instructions

Get information about the current session.

Returns a Session object with:
- is_authenticated: Whether logged in
- current_user: CurrentUser object with user info (if authenticated)

Use to verify authentication status.

Input Schema

TableJSON Schema

Name	Required	Description	Default
No arguments

Output Schema

TableJSON Schema

Name	Required	Description	Default
`current_user`	No	Logged-in user
`is_authenticated`	No	Whether authenticated

Implementation Reference

src/uscardforum/server_tools/auth.py:64-76 (handler)

MCP tool handler implementation for 'get_current_session'. This is the core FastMCP tool function decorated with @mcp.tool(), which delegates to the client.

@mcp.tool()
def get_current_session() -> Session:
    """
    Get information about the current session.

    Returns a Session object with:
    - is_authenticated: Whether logged in
    - current_user: CurrentUser object with user info (if authenticated)

    Use to verify authentication status.
    """
    return get_client().get_current_session()

src/uscardforum/models/auth.py:46-64 (schema)

Pydantic BaseModel defining the Session output schema for the tool, including current_user and is_authenticated fields.

class Session(BaseModel):
    """Current session information."""

    current_user: CurrentUser | None = Field(None, description="Logged-in user")
    is_authenticated: bool = Field(False, description="Whether authenticated")

    class Config:
        extra = "ignore"

    @classmethod
    def from_api_response(cls, data: dict[str, Any]) -> Session:
        """Parse from raw API response."""
        user_data = data.get("current_user") or data.get("user")
        current_user = CurrentUser(**user_data) if user_data else None
        return cls(
            current_user=current_user,
            is_authenticated=current_user is not None,
        )

src/uscardforum/server_core.py:136-181 (helper)

Shared get_client() helper function that initializes and returns the global DiscourseClient instance, handling auto-login from env vars.

def get_client() -> DiscourseClient:
    """Get or create the Discourse client instance."""
    global _client, _login_attempted

    if _client is None:
        base_url = os.environ.get("USCARDFORUM_URL", "https://www.uscardforum.com")
        timeout = float(os.environ.get("USCARDFORUM_TIMEOUT", "15.0"))

        username = os.environ.get("NITAN_USERNAME")
        password = os.environ.get("NITAN_PASSWORD")
        user_api_key = os.environ.get("NITAN_API_KEY")
        user_api_client_id = os.environ.get("NITAN_API_CLIENT_ID")

        _client = DiscourseClient(
            base_url=base_url,
            timeout_seconds=timeout,
            user_api_key=user_api_key if not (username and password) else None,
            user_api_client_id=(
                user_api_client_id if not (username and password) else None
            ),
        )

        if _client.is_authenticated:
            print("[uscardforum] Using User API Key authentication")
        elif not _login_attempted:
            _login_attempted = True

            if username and password:
                try:
                    result = _client.login(username, password)
                    if result.success:
                        print(f"[uscardforum] Auto-login successful as '{result.username}'")
                    elif result.requires_2fa:
                        print(
                            "[uscardforum] Auto-login failed: 2FA required. Use login() tool with second_factor_token."
                        )
                    else:
                        print(
                            f"[uscardforum] Auto-login failed: {result.error or 'Unknown error'}"
                        )
                except Exception as e:  # pragma: no cover - logging side effect
                    print(f"[uscardforum] Auto-login error: {e}")

    return _client

src/uscardforum/api/auth.py:109-123 (handler)

AuthAPI.get_current_session() implementation: fetches /session/current.json from Discourse API and parses response into Session model.

def get_current_session(self) -> Session:
    """Get current session info.

    Returns:
        Session data including user info (unauthenticated if no session)
    """
    try:
        payload = self._get("/session/current.json")
        return Session.from_api_response(payload)
    except requests.exceptions.HTTPError as e:
        # 404 means no session - return unauthenticated session
        if e.response is not None and e.response.status_code == 404:
            return Session(is_authenticated=False, current_user=None)
        raise

src/uscardforum/client.py:498-504 (handler)

DiscourseClient.get_current_session() convenience wrapper that delegates to the internal AuthAPI instance.

def get_current_session(self) -> Session:
    """Get current session info.

    Returns:
        Session data including user info
    """
    return self._auth.get_current_session()

Tool Definition Quality

A3.9/5.0

Behavior3/5

Does the description disclose side effects, auth requirements, rate limits, or destructive behavior?

No annotations are provided, so the description carries the full burden. It discloses that the tool returns a Session object with specific fields (is_authenticated, current_user), which adds behavioral context beyond just stating the purpose. However, it doesn't mention potential errors, rate limits, or other operational details. The description adds some value but is not comprehensive.

Agents need to know what a tool does to the world before calling it. Descriptions should go beyond structured annotations to explain consequences.

Conciseness5/5

Is the description appropriately sized, front-loaded, and free of redundancy?

The description is concise and well-structured: it starts with the core purpose, details the return values in a bulleted list, and ends with usage guidance. Every sentence adds value without redundancy, making it easy to scan and understand.

Shorter descriptions cost fewer tokens and are easier for agents to parse. Every sentence should earn its place.

Completeness4/5

Given the tool's complexity, does the description cover enough for an agent to succeed on first attempt?

Given the tool's low complexity (0 parameters, simple purpose) and the presence of an output schema (implied by 'Returns a Session object'), the description is fairly complete. It explains what the tool does and what it returns, though it could benefit from more behavioral context (e.g., error cases). The output schema reduces the need for detailed return value explanations.

Complex tools with many parameters or behaviors need more documentation. Simple tools need less. This dimension scales expectations accordingly.

Parameters4/5

Does the description clarify parameter syntax, constraints, interactions, or defaults beyond what the schema provides?

The input schema has 0 parameters with 100% coverage, so no parameter documentation is needed. The description appropriately doesn't discuss parameters, which is efficient. Baseline is 4 for zero parameters, as it avoids unnecessary details.

Input schemas describe structure but not intent. Descriptions should explain non-obvious parameter relationships and valid value ranges.

Purpose4/5

Does the description clearly state what the tool does and how it differs from similar tools?

The description clearly states the tool's purpose: 'Get information about the current session.' It specifies the verb ('Get') and resource ('current session'), but doesn't explicitly differentiate it from sibling tools like 'login' or 'get_user_summary', which might also relate to authentication or user data. The purpose is clear but lacks sibling differentiation.

Agents choose between tools based on descriptions. A clear purpose with a specific verb and resource helps agents select the right tool.

Usage Guidelines4/5

Does the description explain when to use this tool, when not to, or what alternatives exist?

The description provides clear usage context: 'Use to verify authentication status.' This indicates when to use the tool (for checking login state), but doesn't explicitly state when not to use it or name alternatives among siblings (e.g., 'login' for authentication actions). The guidance is helpful but not exhaustive.

Agents often have multiple tools that could apply. Explicit usage guidance like "use X instead of Y when Z" prevents misuse.

Install Server

Latest Blog Posts

Tool Definition Quality Score (TDQS)
By punkpeye on April 3, 2026.
mcp
The Hackers Who Tracked My Sleep Cycle
By punkpeye on March 26, 2026.
security
Open Source Has a Bot Problem
By punkpeye on March 19, 2026.
open source

MCP directory API

We provide all the information about MCP servers via our MCP API.

curl -X GET 'https://glama.ai/api/mcp/v1/servers/raidenrock/uscardforum-mcp'

If you have feedback or need assistance with the MCP directory API, please join our Discord server