mcp-server: rename mcpServerAuthorization to mcpServerOAuth2

Signed-off-by: Daniel Garnier-Moiroux <[email protected]>

Author: Kehrlann

README.md

@@ -96,7 +96,7 @@ class McpServerConfiguration {
                 .authorizeHttpRequests(auth -> auth.anyRequest().authenticated())
                 // Configure OAuth2 on the MCP server
                 .with(
-                        McpResourceServerConfigurer.mcpServerAuthorization(),
+                        McpResourceServerConfigurer.mcpServerOAuth2(),
                         (mcpAuthorization) -> {
                             // REQUIRED: the issuerURI
                             mcpAuthorization.authorizationServer(issuerUrl);
@@ -139,7 +139,7 @@ class McpServerConfiguration {
                 })
                 // Configure OAuth2 on the MCP server
                 .with(
-                        McpResourceServerConfigurer.mcpServerAuthorization(),
+                        McpResourceServerConfigurer.mcpServerOAuth2(),
                         (mcpAuthorization) -> {
                             // REQUIRED: the issuerURI
                             mcpAuthorization.authorizationServer(issuerUrl);

mcp-server-security/src/main/java/org/springaicommunity/mcp/security/server/config/McpServerOAuth2Configurer.java

@@ -38,7 +38,7 @@
 /**
  * @author Daniel Garnier-Moiroux
  */
-public class McpResourceServerConfigurer extends AbstractHttpConfigurer<McpResourceServerConfigurer, HttpSecurity> {
+public class McpServerOAuth2Configurer extends AbstractHttpConfigurer<McpServerOAuth2Configurer, HttpSecurity> {
 
 	private String issuerUri = null;
 
@@ -54,38 +54,38 @@ public class McpResourceServerConfigurer extends AbstractHttpConfigurer<McpResou
 
 	private boolean validateAudienceClaim = false;
 
-	public McpResourceServerConfigurer authorizationServer(String issuerUri) {
+	public McpServerOAuth2Configurer authorizationServer(String issuerUri) {
 		this.issuerUri = issuerUri;
 		return this;
 	}
 
-	public McpResourceServerConfigurer scope(String scope) {
+	public McpServerOAuth2Configurer scope(String scope) {
 		this.scopes.add(scope);
 		return this;
 	}
 
-	public McpResourceServerConfigurer bearerMethod(String bearerMethod) {
+	public McpServerOAuth2Configurer bearerMethod(String bearerMethod) {
 		this.bearerMethod = bearerMethod;
 		return this;
 	}
 
-	public McpResourceServerConfigurer resourceName(String resourceName) {
+	public McpServerOAuth2Configurer resourceName(String resourceName) {
 		this.resourceName = resourceName;
 		return this;
 	}
 
-	public McpResourceServerConfigurer resourcePath(String resourceIdentifier) {
+	public McpServerOAuth2Configurer resourcePath(String resourceIdentifier) {
 		this.resourceIdentifier = new ResourceIdentifier(resourceIdentifier);
 		return this;
 	}
 
-	public McpResourceServerConfigurer protectedResourceMetadataCustomizer(
+	public McpServerOAuth2Configurer protectedResourceMetadataCustomizer(
 			Consumer<OAuth2ProtectedResourceMetadata.Builder> customizer) {
 		this.customizer = customizer;
 		return this;
 	}
 
-	public McpResourceServerConfigurer validateAudienceClaim(boolean validateAudienceClaim) {
+	public McpServerOAuth2Configurer validateAudienceClaim(boolean validateAudienceClaim) {
 		this.validateAudienceClaim = validateAudienceClaim;
 		return this;
 	}
@@ -133,8 +133,8 @@ private Consumer<OAuth2ProtectedResourceMetadata.Builder> getProtectedMetadataCu
 			.bearerMethod(this.bearerMethod);
 	}
 
-	public static McpResourceServerConfigurer mcpServerAuthorization() {
-		return new McpResourceServerConfigurer();
+	public static McpServerOAuth2Configurer mcpServerOAuth2() {
+		return new McpServerOAuth2Configurer();
 	}
 
 }

samples/integration-tests/src/test/java/org/springaicommunity/mcp/security/tests/common/configuration/McpServerConfiguration.java

@@ -4,7 +4,7 @@
 import org.eclipse.aether.repository.RemoteRepository;
 import org.junit.jupiter.api.Order;
 import org.springaicommunity.mcp.security.server.oauth2.authentication.BearerResourceMetadataTokenAuthenticationEntryPoint;
-import org.springaicommunity.mcp.security.server.config.McpResourceServerConfigurer;
+import org.springaicommunity.mcp.security.server.config.McpServerOAuth2Configurer;
 import org.springaicommunity.mcp.security.server.oauth2.metadata.ResourceIdentifier;
 import org.springaicommunity.mcp.security.tests.AllowAllCorsConfigurationSource;
 
@@ -43,7 +43,7 @@ public CommonsExecWebServerFactoryBean mcpServer(@Value("${authorization.server.
 				.entries(springBootStarter("web"), springBootStarter("oauth2-resource-server"),
 						springAiStarter("mcp-server-webmvc"))
 				.entries(new ResourceClasspathEntry(mcpServerResourceName, mcpServerResourceName))
-				.classes(McpResourceServerConfigurer.class)
+				.classes(McpServerOAuth2Configurer.class)
 				.classes(BearerResourceMetadataTokenAuthenticationEntryPoint.class)
 				.classes(AllowAllCorsConfigurationSource.class)
 				.scan(ResourceIdentifier.class));

samples/integration-tests/src/test/java/org/springaicommunity/mcp/security/tests/streamable/sync/server/StreamableHttpMcpServer.java

@@ -15,7 +15,7 @@
 import org.springframework.security.config.annotation.web.configurers.CsrfConfigurer;
 import org.springframework.security.core.context.SecurityContextHolder;
 import org.springframework.security.web.SecurityFilterChain;
-import static org.springaicommunity.mcp.security.server.config.McpResourceServerConfigurer.mcpServerAuthorization;
+import static org.springaicommunity.mcp.security.server.config.McpServerOAuth2Configurer.mcpServerOAuth2;
 
 @Configuration
 @EnableWebSecurity
@@ -64,7 +64,7 @@ List<McpStatelessServerFeatures.SyncToolSpecification> statelessTools() {
 	SecurityFilterChain securityFilterChain(HttpSecurity http,
 			@Value("${spring.security.oauth2.resourceserver.jwt.issuer-uri}") String issuerUrl) throws Exception {
 		return http.authorizeHttpRequests(auth -> auth.anyRequest().authenticated())
-			.with(mcpServerAuthorization(), (mcpAuthorization) -> {
+			.with(mcpServerOAuth2(), (mcpAuthorization) -> {
 				mcpAuthorization.authorizationServer(issuerUrl).resourcePath("/mcp");
 			})
 			// MCP inspector

samples/integration-tests/src/test/java/org/springaicommunity/mcp/security/tests/streamable/sync/server/StreamableHttpMcpServerToolsSecured.java

@@ -14,7 +14,7 @@
 import org.springframework.security.config.annotation.web.configurers.CsrfConfigurer;
 import org.springframework.security.core.context.SecurityContextHolder;
 import org.springframework.security.web.SecurityFilterChain;
-import static org.springaicommunity.mcp.security.server.config.McpResourceServerConfigurer.mcpServerAuthorization;
+import static org.springaicommunity.mcp.security.server.config.McpServerOAuth2Configurer.mcpServerOAuth2;
 
 /**
  * An MCP server where only tool calling is secured with OAuth2, and not connecting or
@@ -59,7 +59,7 @@ SecurityFilterChain securityFilterChain(HttpSecurity http,
 		return http.authorizeHttpRequests(auth -> {
 			auth.requestMatchers("/mcp").permitAll();
 			auth.anyRequest().denyAll();
-		}).with(mcpServerAuthorization(), (mcpAuthorization) -> {
+		}).with(mcpServerOAuth2(), (mcpAuthorization) -> {
 			mcpAuthorization.authorizationServer(issuerUrl).resourcePath("/mcp");
 		})
 			// MCP inspector

samples/sample-mcp-server-secured-tools/src/main/java/org/springaicommunity/mcp/security/sample/server/securedtools/McpServerConfiguration.java

@@ -30,7 +30,7 @@
 import org.springframework.web.cors.CorsConfiguration;
 import org.springframework.web.cors.CorsConfigurationSource;
 import org.springframework.web.cors.UrlBasedCorsConfigurationSource;
-import static org.springaicommunity.mcp.security.server.config.McpResourceServerConfigurer.mcpServerAuthorization;
+import static org.springaicommunity.mcp.security.server.config.McpServerOAuth2Configurer.mcpServerOAuth2;
 
 @Configuration
 @EnableMethodSecurity
@@ -45,7 +45,7 @@ ToolCallbackProvider toolCallbackProvider(WeatherService weatherService) {
 	SecurityFilterChain securityFilterChain(HttpSecurity http,
 			@Value("${spring.security.oauth2.resourceserver.jwt.issuer-uri}") String issuerUrl) throws Exception {
 		return http.authorizeHttpRequests(auth -> auth.anyRequest().permitAll())
-			.with(mcpServerAuthorization(), (mcpAuthorization) -> {
+			.with(mcpServerOAuth2(), (mcpAuthorization) -> {
 				mcpAuthorization.authorizationServer(issuerUrl).resourcePath("/mcp");
 			})
 			// MCP inspector

samples/sample-mcp-server/src/main/java/org/springaicommunity/mcp/security/sample/server/streamable/McpServerConfiguration.java

@@ -29,7 +29,7 @@
 import org.springframework.web.cors.CorsConfiguration;
 import org.springframework.web.cors.CorsConfigurationSource;
 import org.springframework.web.cors.UrlBasedCorsConfigurationSource;
-import static org.springaicommunity.mcp.security.server.config.McpResourceServerConfigurer.mcpServerAuthorization;
+import static org.springaicommunity.mcp.security.server.config.McpServerOAuth2Configurer.mcpServerOAuth2;
 
 @Configuration
 class McpServerConfiguration {
@@ -43,7 +43,7 @@ ToolCallbackProvider toolCallbackProvider(HistoricalWeatherService weatherServic
 	SecurityFilterChain securityFilterChain(HttpSecurity http,
 			@Value("${spring.security.oauth2.resourceserver.jwt.issuer-uri}") String issuerUrl) throws Exception {
 		return http.authorizeHttpRequests(auth -> auth.anyRequest().authenticated())
-			.with(mcpServerAuthorization(), (mcpAuthorization) -> mcpAuthorization.authorizationServer(issuerUrl))
+			.with(mcpServerOAuth2(), (mcpAuthorization) -> mcpAuthorization.authorizationServer(issuerUrl))
 			// MCP inspector
 			.cors(cors -> cors.configurationSource(corsConfigurationSource()))
 			.csrf(CsrfConfigurer::disable)