Merge branch 'main' into main

Author: buzo1234

docs/docs.json

@@ -203,7 +203,8 @@
                 "group": "Client Features",
                 "pages": [
                   "specification/draft/client/roots",
-                  "specification/draft/client/sampling"
+                  "specification/draft/client/sampling",
+                  "specification/draft/client/elicitation"
                 ]
               },
               {

docs/specification/draft/basic/lifecycle.mdx

@@ -61,7 +61,8 @@ The client **MUST** initiate this phase by sending an `initialize` request conta
       "roots": {
         "listChanged": true
       },
-      "sampling": {}
+      "sampling": {},
+      "elicitation": {}
     },
     "clientInfo": {
       "name": "ExampleClient",
@@ -148,6 +149,7 @@ Key capabilities include:
 | -------- | -------------- | -------------------------------------------------------------------------- |
 | Client   | `roots`        | Ability to provide filesystem [roots](/specification/draft/client/roots)       |
 | Client   | `sampling`     | Support for LLM [sampling](/specification/draft/client/sampling) requests      |
+| Client   | `elicitation`  | Support for server [elicitation](/specification/draft/client/elicitation) requests |
 | Client   | `experimental` | Describes support for non-standard experimental features                   |
 | Server   | `prompts`      | Offers [prompt templates](/specification/draft/server/prompts)                 |
 | Server   | `resources`    | Provides readable [resources](/specification/draft/server/resources)           |

docs/specification/draft/changelog.mdx

@@ -13,11 +13,11 @@ the previous revision, [2025-03-26](/specification/2025-03-26).
    (PR [#371](https://github.com/modelcontextprotocol/modelcontextprotocol/pull/371))
 3. Classified MCP servers as [OAuth Resource Servers](https://modelcontextprotocol.io/specification/draft/basic/authorization#2-3-authorization-server-discovery), adding protected resource metadata to discover the corresponding Authorization server. (PR [#338](https://github.com/modelcontextprotocol/modelcontextprotocol/pull/338))
 4. Clarified [security considerations](https://modelcontextprotocol.io/specification/draft/basic/authorization#3-security-considerations) and best practices in the authorization spec and in a new [security best practices page](https://modelcontextprotocol.io/specification/draft/basic/security_best_practices).
+5. Added support for **[elicitation](/specification/draft/client/elicitation)**, enabling
+   servers to request additional information from users during interactions. (PR [#382](https://github.com/modelcontextprotocol/modelcontextprotocol/pull/382))
 
 ## Other schema changes
 
-- TODO
-
 ## Full changelog
 
 For a complete list of all changes that have been made since the last protocol revision,

docs/specification/draft/client/elicitation.mdx

@@ -0,0 +1,318 @@
+---
+title: Elicitation
+---
+
+<Info>**Protocol Revision**: draft</Info>
+
+<Note>
+This version of the spec introduces the elicitation feature. It may change in future versions of the protocol.
+</Note>
+
+The Model Context Protocol (MCP) provides a standardized way for servers to request additional
+information from users through the client during interactions. This flow allows clients to
+maintain control over user interactions and data sharing while enabling servers to gather
+necessary information dynamically.
+Servers can request structured data from users with optional JSON schemas to validate responses.
+
+## User Interaction Model
+
+Elicitation in MCP allows servers to implement interactive workflows by enabling user input
+requests to occur _nested_ inside other MCP server features.
+
+Implementations are free to expose elicitation through any interface pattern that suits
+their needs&mdash;the protocol itself does not mandate any specific user interaction
+model.
+
+<Warning>
+For trust & safety and security:
+
+- Servers **MUST NOT** use elicitation to request sensitive information.
+
+Applications **SHOULD**:
+
+- Provide UI that makes it clear which server is requesting information
+- Allow users to review and modify their responses before sending
+- Respect user privacy and provide clear decline and cancel options
+</Warning>
+
+## Capabilities
+
+Clients that support elicitation **MUST** declare the `elicitation` capability during
+[initialization](/specification/draft/basic/lifecycle#initialization):
+
+```json
+{
+  "capabilities": {
+    "elicitation": {}
+  }
+}
+```
+
+## Protocol Messages
+
+### Creating Elicitation Requests
+
+To request information from a user, servers send an `elicitation/create` request:
+
+#### Simple Text Request
+
+**Request:**
+
+```json
+{
+  "jsonrpc": "2.0",
+  "id": 1,
+  "method": "elicitation/create",
+  "params": {
+    "message": "Please provide your GitHub username",
+    "requestedSchema": {
+      "type": "object",
+      "properties": {
+        "name": {
+          "type": "string",
+        },
+      },
+      "required": ["name"]
+    }
+  }
+}
+```
+
+**Response:**
+
+```json
+{
+  "jsonrpc": "2.0",
+  "id": 1,
+  "result": {
+    "action": "accept",
+    "content": {
+      "name": "octocat"
+    }
+  }
+}
+```
+
+#### Structured Data Request
+
+**Request:**
+
+```json
+{
+  "jsonrpc": "2.0",
+  "id": 2,
+  "method": "elicitation/create",
+  "params": {
+    "message": "Please provide your contact information",
+    "requestedSchema": {
+      "type": "object",
+      "properties": {
+        "name": {
+          "type": "string",
+          "description": "Your full name"
+        },
+        "email": {
+          "type": "string",
+          "format": "email",
+          "description": "Your email address"
+        },
+        "age": {
+          "type": "number",
+          "minimum": 18,
+          "description": "Your age"
+        }
+      },
+      "required": ["name", "email"]
+    }
+  }
+}
+```
+
+**Response:**
+
+```json
+{
+  "jsonrpc": "2.0",
+  "id": 2,
+  "result": {
+    "action": "accept",
+    "content": {
+      "name": "Monalisa Octocat",
+      "email": "[email protected]",
+      "age": 30
+    }
+  }
+}
+```
+
+**Decline Response Example:**
+
+```json
+{
+  "jsonrpc": "2.0",
+  "id": 2,
+  "result": {
+    "action": "decline"
+  }
+}
+```
+
+**Cancel Response Example:**
+
+```json
+{
+  "jsonrpc": "2.0",
+  "id": 2,
+  "result": {
+    "action": "cancel"
+  }
+}
+```
+
+## Message Flow
+
+```mermaid
+sequenceDiagram
+    participant Server
+    participant Client
+    participant User
+    
+    Note over Server,Client: Server initiates elicitation
+    Server->>Client: elicitation/create
+    
+    Note over Client,User: Human interaction
+    Client->>User: Present elicitation UI
+    User-->>Client: Provide requested information
+    
+    Note over Server,Client: Complete request
+    Client-->>Server: Return user response
+    
+    Note over Server: Continue processing with new information
+```
+
+## Request Schema
+
+The `requestedSchema` field allows servers to define the structure of the expected response using a restricted subset of JSON Schema. To simplify implementation for clients, elicitation schemas are limited to flat objects with primitive properties only:
+
+```json
+"requestedSchema": {
+  "type": "object",
+  "properties": {
+    "propertyName": {
+      "type": "string",
+      "title": "Display Name",
+      "description": "Description of the property"
+    },
+    "anotherProperty": {
+      "type": "number",
+      "minimum": 0,
+      "maximum": 100
+    }
+  },
+  "required": ["propertyName"]
+}
+```
+
+### Supported Schema Types
+
+The schema is restricted to these primitive types:
+
+1. **String Schema**
+   ```json
+   {
+     "type": "string",
+     "title": "Display Name",
+     "description": "Description text",
+     "minLength": 3,
+     "maxLength": 50,
+     "pattern": "^[A-Za-z]+$",
+     "format": "email"
+   }
+   ```
+   Supported formats: `email`, `uri`, `date`, `date-time`
+
+2. **Number Schema**
+   ```json
+   {
+     "type": "number", // or "integer"
+     "title": "Display Name",
+     "description": "Description text",
+     "minimum": 0,
+     "maximum": 100
+   }
+   ```
+
+3. **Boolean Schema**
+   ```json
+   {
+     "type": "boolean",
+     "title": "Display Name",
+     "description": "Description text",
+     "default": false
+   }
+   ```
+
+4. **Enum Schema**
+   ```json
+   {
+     "type": "string",
+     "title": "Display Name",
+     "description": "Description text",
+     "enum": ["option1", "option2", "option3"],
+     "enumNames": ["Option 1", "Option 2", "Option 3"]
+   }
+   ```
+
+Clients can use this schema to:
+1. Generate appropriate input forms
+2. Validate user input before sending
+3. Provide better guidance to users
+
+Note that complex nested structures, arrays of objects, and other advanced JSON Schema features are intentionally not supported to simplify client implementation.
+
+## Response Actions
+
+Elicitation responses use a three-action model to clearly distinguish between different user actions:
+
+```json
+{
+  "jsonrpc": "2.0",
+  "id": 1,
+  "result": {
+    "action": "accept", // or "decline" or "cancel"
+    "content": {
+      "propertyName": "value",
+      "anotherProperty": 42
+    }
+  }
+}
+```
+
+The three response actions are:
+
+1. **Accept** (`action: "accept"`): User explicitly approved and submitted with data
+   - The `content` field contains the submitted data matching the requested schema
+   - Example: User clicked "Submit", "OK", "Confirm", etc.
+
+2. **Decline** (`action: "decline"`): User explicitly rejected the request
+   - The `content` field is typically omitted
+   - Example: User clicked "Decline", "Reject", "No", etc.
+
+3. **Cancel** (`action: "cancel"`): User dismissed without making an explicit choice
+   - The `content` field is typically omitted
+   - Example: User closed the dialog, clicked outside, pressed Escape, etc.
+
+Servers should handle each state appropriately:
+- **Accept**: Process the submitted data
+- **Decline**: Handle explicit rejection (e.g., offer alternatives)
+- **Cancel**: Handle dismissal (e.g., prompt again later)
+
+## Security Considerations
+
+1. Servers **MUST NOT** request sensitive information through elicitation
+2. Clients **SHOULD** implement user approval controls
+3. Both parties **SHOULD** validate elicitation content against the provided schema
+4. Clients **SHOULD** provide clear indication of which server is requesting information
+5. Clients **SHOULD** allow users to reject elicitation requests at any time
+6. Clients **SHOULD** implement rate limiting
+7. Clients **SHOULD** present elicitation requests in a way that makes it clear what information is being requested and why

docs/specification/draft/index.mdx

@@ -59,9 +59,10 @@ Servers offer any of the following features to clients:
 - **Prompts**: Templated messages and workflows for users
 - **Tools**: Functions for the AI model to execute
 
-Clients may offer the following feature to servers:
+Clients may offer the following features to servers:
 
 - **Sampling**: Server-initiated agentic behaviors and recursive LLM interactions
+- **Elicitation**: Server-initiated requests for additional information from users
 
 ### Additional Utilities