fix(mcp): stop OAuth callback server after authentication completes

hchangjae · hchangjae · commit cfcdb47c7656 · 2026-04-20T23:47:40.000+09:00
diff --git a/packages/opencode/src/mcp/index.ts b/packages/opencode/src/mcp/index.ts
@@ -839,10 +839,13 @@ export const layer = Layer.effect(
       const storedState = yield* auth.getOAuthState(mcpName)
       if (storedState !== result.oauthState) {
         yield* auth.clearOAuthState(mcpName)
+        yield* Effect.tryPromise(() => McpOAuthCallback.stopIfIdle()).pipe(Effect.ignore)
         throw new Error("OAuth state mismatch - potential CSRF attack")
       }
       yield* auth.clearOAuthState(mcpName)
-      return yield* finishAuth(mcpName, code)
+      const status = yield* finishAuth(mcpName, code)
+      yield* Effect.tryPromise(() => McpOAuthCallback.stopIfIdle()).pipe(Effect.ignore)
+      return status
     })
 
     const finishAuth = Effect.fn("MCP.finishAuth")(function* (mcpName: string, authorizationCode: string) {
diff --git a/packages/opencode/src/mcp/oauth-callback.ts b/packages/opencode/src/mcp/oauth-callback.ts
@@ -225,6 +225,12 @@ export async function stop(): Promise<void> {
   mcpNameToState.clear()
 }
 
+export async function stopIfIdle(): Promise<void> {
+  if (pendingAuths.size === 0) {
+    await stop()
+  }
+}
+
 export function isRunning(): boolean {
   return server !== undefined
 }

Original file line number	Diff line number	Diff line change
`@@ -225,6 +225,12 @@ export async function stop(): Promise<void> {`
`225`	`225`	`mcpNameToState.clear()`
`226`	`226`	`}`
`227`	`227`
	`228`	`+export async function stopIfIdle(): Promise<void> {`
	`229`	`+ if (pendingAuths.size === 0) {`
	`230`	`+ await stop()`
	`231`	`+ }`
	`232`	`+}`
	`233`	`+`
`228`	`234`	`export function isRunning(): boolean {`
`229`	`235`	`return server !== undefined`
`230`	`236`	`}`