Skip to content

feat: add --proxy mode for transparent HTTP MCP interception#19

Merged
nikitaclicks merged 25 commits into
mainfrom
feat/mcp-proxy-mode
Apr 14, 2026
Merged

feat: add --proxy mode for transparent HTTP MCP interception#19
nikitaclicks merged 25 commits into
mainfrom
feat/mcp-proxy-mode

Conversation

@nikitaclicks
Copy link
Copy Markdown
Owner

@nikitaclicks nikitaclicks commented Apr 13, 2026
edited
Loading

Summary

  • Adds --proxy <url> flag to context-cutter-mcp — makes it a transparent stdio↔HTTP proxy in front of any HTTP MCP server
  • Large tool responses (≥ --proxy-threshold, default 2 KB) are stored as handles and replaced with a compact preview; query_handle is injected alongside the upstream tools
  • --proxy-token-file delegates auth to a token file (e.g. Claude Code's saved OAuth token), with automatic browser-based re-authentication via OAuth 2.0 + PKCE when the token expires
  • MCP server starts immediately so the client handshake completes at once; upstream OAuth + tool discovery runs in the background
  • Normal mode (no flags) is completely unchanged

Usage

{
  "clickup": {
    "command": "npx",
    "args": [
      "-y", "context-cutter-mcp",
      "--proxy", "https://mcp.clickup.com/mcp",
      "--proxy-token-file", "~/.claude/clickup-token"
    ]
  }
}

With explicit auth header instead of a token file:

{ "args": ["...", "--proxy-header", "Authorization: Bearer $TOKEN"] }

What Claude sees for large responses

[context-cutter] Response stored (18.3 KB → handle: hdl_a1b2c3d4e5f6)

Preview:
  id: "86cxyz123"
  name: "Fix login bug"
  status: "in progress"
  assignees: Array[2]
  custom_fields: Array[8]

Call query_handle("hdl_a1b2c3d4e5f6", "$.field") to extract specific fields.

CLI flags added

Flag Default Description
--proxy <url> Upstream HTTP MCP URL
--proxy-threshold <bytes> 2048 Interception threshold
--proxy-header <K: V> Extra upstream header (repeatable)
--proxy-token-file <path> Bearer token file; re-read per request, auto-OAuth on expiry

Test plan

  • cargo test — all Rust unit tests pass
  • pytest — Python tests pass including 2 new integration tests (mock HTTP MCP server)
  • Normal mode (context-cutter-mcp with no flags) unchanged
  • --help shows all proxy flags
  • Tested against a real HTTP MCP endpoint — large responses intercepted, query_handle extracted specific fields

🤖 Generated with Claude Code

nikitaclicks and others added 25 commits April 13, 2026 13:59
@nikitaclicks
docs: add MCP proxy mode design spec
a00ee36
@nikitaclicks
docs: add MCP proxy mode implementation plan
e9beb71
@nikitaclicks @claude
feat(proxy): add --proxy CLI flag and refactor main() into run_normal…
032d5ee 
…_mode()

Co-Authored-By: Claude Sonnet 4.6 (1M context) <noreply@anthropic.com>
@nikitaclicks @claude
fix(proxy): remove redundant let _ stubs, annotate clap as binary dep
271fcef 
Co-Authored-By: Claude Sonnet 4.6 (1M context) <noreply@anthropic.com>
@nikitaclicks
feat(proxy): add parse_proxy_headers and upstream_call helpers
6029f26
@nikitaclicks @claude
feat(proxy): add ProxyServer struct and init_proxy_server upstream ha…
fcd0356 
…ndshake

Adds ProxyServer with upstream tool merging, query_handle_tool_def()
for advertising the local tool, and init_proxy_server() async fn that
runs the MCP initialize + tools/list handshake with the upstream server.

Co-Authored-By: Claude Sonnet 4.6 (1M context) <noreply@anthropic.com>
@nikitaclicks
fix(proxy): use rmcp::ErrorData instead of deprecated rmcp::Error
3075fec
@nikitaclicks @claude
feat(proxy): implement ServerHandler for ProxyServer
dfb3202 
Implements list_tools and call_tool for ProxyServer: local query_handle
dispatch + upstream forwarding via spawn_blocking. Adds text_content
helper and intercept_if_large stub (Task 5 placeholder).

Co-Authored-By: Claude Sonnet 4.6 (1M context) <noreply@anthropic.com>
@nikitaclicks
feat(proxy): add interception logic and preview formatting
55bbbe1 
Replace intercept_if_large stub with real implementation that stores large
responses as handles and returns a preview with build_preview_text/format_preview_value.
Add 5 TDD unit tests covering passthrough, interception, and preview formatting.
@nikitaclicks
fix(proxy): use char-safe truncation in format_preview_value
1da126c
@nikitaclicks @claude
feat(proxy): wire run_proxy_mode — proxy mode fully implemented
1e6484c 
Co-Authored-By: Claude Sonnet 4.6 (1M context) <noreply@anthropic.com>
@nikitaclicks
fix(proxy): tighten localhost URL validation to prevent subdomain bypass
2e2d12a 
Replaces the inline prefix check with is_localhost_proxy_url(), which validates
that the character immediately after "http://localhost" or "http://127.0.0.1" is
a port separator, path, query, fragment, or end-of-string — blocking URLs like
http://localhost.attacker.com from matching.
@nikitaclicks
test(proxy): add acceptance tests for is_localhost_proxy_url
061b2d4
@nikitaclicks @claude
test(proxy): add integration tests for --proxy mode interception
7206db3 
Adds two pytest integration tests (marked `integration`) that spin up
an in-process HTTP MCP mock server, run the binary in proxy mode, and
verify large responses are intercepted with a handle+preview while
small responses pass through unchanged. Also registers the `integration`
marker in pyproject.toml.

Co-Authored-By: Claude Sonnet 4.6 (1M context) <noreply@anthropic.com>
@nikitaclicks
docs: replace superpowers specs with README proxy mode section
49d6919
@nikitaclicks
docs: restore deployment.md accidentally removed
da701b8
@nikitaclicks
feat(proxy): add --proxy-token-file for Claude Code OAuth token deleg…
8cd5f01 
…ation
@nikitaclicks
fix: update ProxyServer::new call in test to pass token_file arg
da74eca
@nikitaclicks
feat(proxy): implement OAuth 2.0 + PKCE browser flow for automatic to…
09983e2 
…ken refresh
@nikitaclicks
fix(proxy): start MCP server immediately, run OAuth+handshake in back…
e4e6f93 
…ground

Claude Code was killing the proxy because it got no MCP response while
the proxy was blocked waiting for OAuth. Now the server accepts stdio
right away; list_tools/call_tool wait on a Notify that fires once the
upstream handshake (and any browser OAuth flow) completes.
@nikitaclicks
fix(proxy): treat JWE/opaque tokens as valid; parse SSE responses fro…
74e2f27 
…m upstream
@nikitaclicks
docs: document --proxy-token-file and OAuth auto-refresh in README
1bcc615
@nikitaclicks
docs: use clickup.com (prod) URL in proxy mode examples
dfc6966
@nikitaclicks
fix(ci): resolve cargo fmt and clippy errors; exclude integration tes…
1895d66 
…ts from CI
@nikitaclicks
fix(proxy): fix race condition in ready_tools — use AtomicUsize flag …
ea69795 
…+ pinned Notify
@nikitaclicks nikitaclicks marked this pull request as ready for review April 14, 2026 12:01
@nikitaclicks nikitaclicks merged commit 4ce52c2 into main Apr 14, 2026
6 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@nikitaclicks