This topic was automatically generated from Slack. You can find the original thread here.
Hi, I wanted to ask about authorisation support in Pipedream MCP. Do you have anything planned or not right now? For my use case, I will have to expose the URL of the hosted MCP to the user, so it will be insecure if not authenticated.
We’re looking at supporting OAuth on our server URLs, but I don’t imagine you’d want your customers to auth to Pipedream, right? I assume you’d want them to be linked to your app?
Yes I would want to use my auth token to authenticate
Since you’re hosting the MCP server, you should be able to implement that, right?
I can definitely add custom auth on top of the current server. My main concern is around future maintainability. If the server receives major updates later on, I would likely need to re-apply the auth changes manually, which could lead to extra work and potential issues.
To make things more sustainable, it would be ideal if the server supports a modular setup where auth logic can be added through middleware or clean extension points. That way, future upgrades to the core server wouldn’t require reworking the auth each time.
If the team built the server with that flexibility in mind, it would greatly help.
Yep that makes total sense, thanks for the feedback. We’re starting to look into this now.
Thank you.