Refactor FastAPI server initialization in server.py; implement combined lifespan for MCP integration and enhance documentation for clarity

rafaljanicki · rafaljanicki · commit 04895cb4aa6b · 2025-10-08T13:07:48.000+02:00
diff --git a/src/sandbox_api_mcp_server/server.py b/src/sandbox_api_mcp_server/server.py
@@ -91,51 +91,65 @@ async def check_send(message):
 
 
 def run():
-    app = FastAPI(title="SandboxApiMCP", lifespan=lifespan)
-    app.include_router(get_sandbox_api_router())
-    app.add_middleware(
-        CORSMiddleware,
-        allow_origins=["*"],
-        allow_credentials=True,
-        allow_methods=["*"],
-        allow_headers=["*"],
-    )
-    app.add_middleware(ProxyHeadersMiddleware)
-    app.add_middleware(SecurityHeadersMiddleware)
+    """
+    Run the FastAPI server with MCP integration.
+
+    IMPORTANT: This uses a combined lifespan approach because http_app() requires
+    its lifespan to be run to initialize the task group. Simply mounting http_app
+    on a FastAPI app will NOT work - you MUST combine the lifespans.
 
-    # Get port from environment or use default
+    See: https://gofastmcp.com/integrations/asgi#asgi-starlette-fastmcp
+    """
     port = int(os.getenv("PORT", 9100))
 
-    # Define route maps to exclude health_check endpoint from MCP tools
+    # Step 1: Create temporary FastAPI app for MCP conversion
+    temp_app = FastAPI(title="SandboxApiMCP")
+    temp_app.include_router(get_sandbox_api_router())
+
     route_maps = [
         # Exclude health endpoint from MCP tools
         RouteMap(
             methods=["GET"],
             pattern=r".*/health$",
             mcp_type=MCPType.EXCLUDE,  # Exclude from MCP
         ),
-        # Map all other endpoints to tools (default behavior)
     ]
 
-    # Convert FastAPI app to MCP server using from_fastapi
-    # This will expose FastAPI endpoints as MCP tools
+    # Step 2: Convert to MCP and get http_app
     mcp = FastMCP.from_fastapi(
-        app=app,
+        app=temp_app,
         name="Neo4j Sandbox API MCP Server",
         route_maps=route_maps,
     )
+    http_app = mcp.http_app()
 
-    # Mount MCP transports - support both for maximum compatibility
-    sse_app = mcp.sse_app()
-    app.mount("/sse", sse_app)
+    # Step 3: Create combined lifespan
+    @asynccontextmanager
+    async def combined_lifespan(app: FastAPI):
+        # Initialize JWKS public key
+        app.state.jwks_public_key = await fetch_jwks_public_key(Auth0Settings().auth0_jwks_url)
+        # Run MCP app lifespan (required for task group initialization)
+        async with http_app.lifespan(app):
+            yield
+
+    # Step 4: Create final FastAPI app with combined lifespan
+    app = FastAPI(title="SandboxApiMCP", lifespan=combined_lifespan)
+    app.include_router(get_sandbox_api_router())
+    app.add_middleware(
+        CORSMiddleware,
+        allow_origins=["*"],
+        allow_credentials=True,
+        allow_methods=["*"],
+        allow_headers=["*"],
+    )
+    app.add_middleware(ProxyHeadersMiddleware)
+    app.add_middleware(SecurityHeadersMiddleware)
 
-    # HTTP transport for modern clients (recommended for production)
-    http_app = mcp.http_app()
+    # Step 5: Mount HTTP app at root
     app.mount("", http_app)
 
-    logger.info("MCP server available at multiple transports:")
-    logger.info("  - /sse (SSE transport - legacy, backward compatible)")
-    logger.info("  - /mcp (Streamable HTTP transport - modern, recommended)")
+    logger.info("MCP server available at:")
+    logger.info("  - /mcp (HTTP transport)")
 
     # Authentication Note:
     # - FastAPI routes use Depends(verify_auth) which handles both:
